} elseif (isset($_POST['session'])) { $pwd = $_POST['session'][0]; $iv = $_POST['session'][1]; } $registry->sessionId = Utility::decodeString($pwd, $iv); try { $registry->db = new DB_Admin($registry); $registry->session = new Session($registry); //user_agent|s:15:"Shockwave Flash";remote_addr|s:9:"127.0.0.1" function UploadIsAuthenticated($get) { global $registry; if (!empty($get['session'])) { if (isset($_SESSION['user_id']) && isset($_SESSION['username']) && $_SERVER['HTTP_USER_AGENT'] == 'Shockwave Flash') { // Query the database. $row = $registry->db->getResult('user_id, username, user_group', $registry->user . 'users', $registry->user . 'user_groups', array('where' => 'user_id=' . $_SESSION['user_id'], 'and' => array("username='******'username'] . "'", "user_group != 'registered'")), false); return count($row) == 1 ? true : false; } else { return false; } } return false; } $browser = new File_Manager($registry, array('baseURL' => $registry->get('config.server.web_url') . '/userfiles/', 'directory' => DS . 'home' . DS . $registry->settings['dir'] . DS . 'Public' . DS . $registry->settings['resolve'], 'assetBasePath' => BASE . '/Uthando-Images/FileManager', 'move' => true, 'create' => true, 'upload' => true, 'destroy' => true, 'filter' => isset($_POST['filter']) && is_string($_POST['filter']) && !empty($_POST['filter']) ? $_POST['filter'] . '/' : null)); $browser->fireEvent(!empty($_GET['event']) ? $_GET['event'] : null); } catch (PDOException $e) { $registry->Error($e->getMessage()); } $registry->db = null; unset($uthando, $registry); ob_end_flush();
define('HOST', $_SERVER['HTTP_HOST']); define('REQUEST_URI', $_SERVER['REQUEST_URI']); // Set include paths. $ini_path = get_include_path() . PS . CLASSES . PS . FUNCS . PS . MODULES . PS . COMPONENTS; set_include_path($ini_path); // Include functions. require_once 'functions.php'; require_once 'admin_functions.php'; $timer = new Benchmark_Timer(); $timer->start(); $registry = new Admin_Registry(); $registry->setSite(BASE . DS . 'Uthando-ini' . DS . 'UthandoSites.ini' . EXT); $registry->loadIniFiles(array('admin_config' => 'uthandoAdmin', 'config' => 'uthando')); $registry->setDefaults(); $uthando = new Admin_Uthando($registry); $registry->template = new HTML_Template($registry, $registry->get('admin_config.site.template')); require 'Dbug/FirePHP.class.php'; $registry->firephp = FirePHP::getInstance(true); try { $registry->db = new DB_Admin($registry); $registry->session = new Session($registry); UthandoUser::setUserInfo(); if ($uthando->authorize()) { $registry->template->addParameter('login_status', 'You are logged in as: ' . $_SESSION['username']); // Load component. $uthando->loadComponent(); // Get Modules and add them. $uthando->addModules(); } else { // set action and path. if ($uthando->getPath() != "/user/login") {
} elseif (isset($_POST['session'])) { $pwd = $_POST['session'][0]; $iv = $_POST['session'][1]; } $registry->sessionId = Utility::decodeString($pwd, $iv); try { $registry->db = new DB_Admin($registry); $registry->session = new Session($registry); //user_agent|s:15:"Shockwave Flash";remote_addr|s:9:"127.0.0.1" function UploadIsAuthenticated($get) { global $registry; if (!empty($get['session'])) { if (isset($_SESSION['user_id']) && isset($_SESSION['username']) && $_SERVER['HTTP_USER_AGENT'] == 'Shockwave Flash') { // Query the database. $row = $registry->db->getResult('user_id, username, user_group', $registry->user . 'users', $registry->user . 'user_groups', array('where' => 'user_id=' . $_SESSION['user_id'], 'and' => array("username='******'username'] . "'", "user_group != 'registered'")), false); return count($row) == 1 ? true : false; } else { return false; } } return false; } $browser = new File_Manager($registry, array('baseURL' => $registry->get('config.server.web_url') . '/', 'directory' => $_SERVER['DOCUMENT_ROOT'] . '/../userfiles/' . $registry->settings['resolve'], 'assetBasePath' => $_SERVER['DOCUMENT_ROOT'] . '/templates/admin/images/FileManager', 'move' => true, 'create' => true, 'upload' => true, 'destroy' => true, 'filter' => is_string($_POST['filter']) ? $_POST['filter'] . '/' : null)); $browser->fireEvent(!empty($_GET['event']) ? $_GET['event'] : null); } catch (PDOException $e) { $registry->Error($e->getMessage()); } $registry->db = null; unset($uthando, $registry); ob_end_flush();