function showUpload() { global $mybasedir; $mainframe = JFactory::getApplication(); $database = JFactory::getDBO(); $my = JFactory::getUser(); // print_r(JAccess::getGroups()); if (checkAccess($database, 'core.manage')) { $jfu_config['idn_url'] = JFUHelper::getVariable($database, 'idn_url'); $row = new joomla_flash_uploader($database); $b_prof = selectBackendProfile($database, $my->groups); $row->load($b_prof); $uploadfolder = $row->folder; $pathfix = ''; if ($mybasedir == '') { $pathfix = '../'; } // we go back to the main folder! if ($uploadfolder == "") { $folder = "./" . $pathfix . "../../.."; $filefolder = ''; // this setting make the folder check always true } else { $folder = "./" . $pathfix . "../../../" . $uploadfolder; $filefolder = "./../" . $uploadfolder; } // settings for the flash JFUHelper::setJFUSession($row, $folder, $database); $_SESSION["IS_ADMIN"] = "TRUE"; unset($_SESSION["IS_FRONTEND"]); $my = JFactory::getUser(); $_SESSION["TFU_USER"] = $my->username . " (backend)"; $_SESSION["TFU_USER_ID"] = $my->id; $_SESSION["TFU_USER_NAME"] = $my->name; $_SESSION["TFU_USER_EMAIL"] = $my->email; JFUHelper::setContactDetailsToSession($my->id); JFUHelper::fixSession(); store_temp_session(); HTML_joomla_flash_uploader::showUpload($row, $uploadfolder, $filefolder, $jfu_config); } else { HTML_joomla_flash_uploader::errorRights(); } }
function showUpload() { global $mainframe; $database =& JFactory::getDBO(); $my =& JFactory::getUser(); if (checkAccess($database, $my->usertype, 'backend_access_upload')) { $row = new joomla_flash_uploader($database); $row->load(1); $uploadfolder = $row->folder; // we go back to the main folder! if ($uploadfolder == "") { $folder = "./../../../.."; $filefolder = ""; } else { $folder = "./../../../../" . $uploadfolder; $filefolder = "./../" . $uploadfolder; } // settings for the flash JFUHelper::setJFUSession($row, $folder); $_SESSION["TFU_FILE_CHMOD"] = JFUHelper::getVariable($database, 'file_chmod'); $_SESSION["TFU_DIR_CHMOD"] = JFUHelper::getVariable($database, 'dir_chmod'); $_SESSION["IS_ADMIN"] = "TRUE"; unset($_SESSION["IS_FRONTEND"]); $my = $mainframe->getUser(); $_SESSION["TFU_USER"] = $my->username . " (backend)"; $_SESSION["TFU_USER_ID"] = $my->id; store_temp_session(); JFUHelper::fixSession(); HTML_joomla_flash_uploader::showUpload($row, $uploadfolder, $filefolder); } else { HTML_joomla_flash_uploader::errorRights(); } }