// Check the user to be admin or owner or the gallery is public if ($tiki_p_admin_file_galleries != 'y' && (!$user || $user != $gal_info["user"]) && $gal_info["public"] != 'y') { $smarty->assign('msg', tra("Permission denied you can upload files but not to this file gallery")); $smarty->display("error.tpl"); die; } $error_msg = ''; $errors = array(); $uploads = array(); $didFileReplace = false; for ($i = 1; $i <= 6; $i++) { // We process here file uploads if (isset($_FILES["userfile{$i}"]) && !empty($_FILES["userfile{$i}"]['name'])) { // Were there any problems with the upload? If so, report here. if (!is_uploaded_file($_FILES["userfile{$i}"]['tmp_name'])) { $errors[] = tra('Upload was not successful') . ': ' . FileGalLib::convert_error_to_string($_FILES["userfile{$i}"]['error']); continue; } // Check the name if (!empty($fgal_match_regex)) { if (!preg_match("/{$fgal_match_regex}/", $_FILES["userfile{$i}"]['name'], $reqs)) { $errors[] = tra('Invalid filename (using filters for filenames)') . ': ' . $_FILES["userfile{$i}"]['name']; } } if (!empty($fgal_nmatch_regex)) { if (preg_match("/{$fgal_nmatch_regex}/", $_FILES["userfile{$i}"]['name'], $reqs)) { $errors[] = tra('Invalid filename (using filters for filenames)') . ': ' . $_FILES["userfile{$i}"]['name']; } } $name = $_FILES["userfile{$i}"]['name']; if (isset($_REQUEST["isbatch"]) && $_REQUEST["isbatch"] == 'on' && substr($name, strlen($name) - 3) == 'zip') {
<?php // esse arquivo salva o upload require_once "tiki-setup.php"; include_once "el-gallery_set_publication.php"; $formNum = isset($_REQUEST['formNum']) ? $_REQUEST['formNum'] : "0"; $fileName = "arquivo" . $formNum; if ($arquivoId && isset($_FILES[$fileName]) && !empty($_FILES[$fileName]['name'])) { $errorMsg = ''; if (!is_uploaded_file($_FILES[$fileName]['tmp_name'])) { require_once "lib/filegals/filegallib.php"; $errorMsg = tra('Upload was not successful') . ': ' . FileGalLib::convert_error_to_string($_FILES[$fileName]['error']); } elseif ($error = FileReference::isForbiddenExtension($_FILES[$fileName]['name'])) { $errorMsg = $error . ' Veja a <a href="tiki-index.php?page=Formatos+de+arquivos+do+Acervo+Livre">lista de formatos suportados</a>'; } else { echo "<script language=\"javaScript\">parent.finishedUpload({$formNum});</script>"; require_once "FileReference.php"; $fileClass = FileReference::getSubClass($_FILES[$fileName]['name'], $_FILES[$fileName]['tmp_name']); $fields = $_FILES[$fileName]; $fields["publicationId"] = $arquivoId; require_once $fileClass . ".php"; $file = new $fileClass($fields); if ($arquivo->allFile) { unlink($arquivo->allFile); } } if ($errorMsg) { echo "<script language=\"javaScript\">parent.setUploadErrorMsg('{$errorMsg}');</script>"; } }