mirror of
https://github.com/icecoder/ICEcoder.git
synced 2026-03-03 07:13:59 +01:00
9ac6ce909d
Now making $file the common filename (instead of $saveFile) This is changed to a full path now as we receive a relative path $fileName and $fileLoc chunks worked out from this isset catching on newFileName before looking at value Renaming the tab on saving new file htmlentities wrapped around loaded file on overwrite collision Not giving away fullpath info on unwritable files if we're not logged Conditional getInput dialog prompt Simplified code in quite a few areas
305 lines
14 KiB
PHP
305 lines
14 KiB
PHP
<?php include("settings.php");?>
|
|
<?php
|
|
|
|
// Establish the full file path reference
|
|
$file=strClean($_GET['file']);
|
|
if (isset($_GET['saveType'])) {$saveType = strClean($_GET['saveType']);};
|
|
|
|
// Not done the first time we are on the save loop (ie, before the form posting reload)
|
|
if ($_GET['action']=="load"||$_GET['action']=="newFolder"||$_GET['action']=="rename"||$_GET['action']=="delete"||$_GET['action']=="perms"||isset($_POST['contents'])) {
|
|
$file= str_replace("|","/",$file);
|
|
}
|
|
|
|
// If we're due to open a file...
|
|
if ($_GET['action']=="load") {
|
|
echo '<script>action="load";</script>';
|
|
|
|
// Determine what to do based on filename
|
|
// Everything is opened as text in the editor unless specified otherwise
|
|
$fileType="text";
|
|
if (strpos($file,".jpg")>0||strpos($file,".jpeg")>0||strpos($file,".gif")>0||strpos($file,".png")>0) {$fileType="image";};
|
|
|
|
if ($fileType=="text") {
|
|
$bannedFile=false;
|
|
for ($i=0;$i<count($ICEcoder["restrictedFiles"]);$i++) {
|
|
if (strpos($file,$ICEcoder["restrictedFiles"][$i])!="") {
|
|
$bannedFile=true;
|
|
}
|
|
}
|
|
if ($_SESSION['userLevel'] == 10 || ($_SESSION['userLevel'] < 10 && $bannedFile==false)) {
|
|
if (strpos($file,$docRoot)===false) {$file=$docRoot.$iceRoot.$file;};
|
|
echo '<script>fileType="text";top.ICEcoder.rightClickedFile=top.ICEcoder.thisFileFolderLink=\''.$file.'\';';
|
|
echo "top.ICEcoder.shortURL = '".str_replace($docRoot,"",str_replace("|","/",$file))."';";
|
|
echo '</script>';
|
|
$loadedFile = file_get_contents($file);
|
|
echo '<textarea name="loadedFile" id="loadedFile">'.str_replace("</textarea>","<ICEcoder:/:textarea>",htmlentities($loadedFile)).'</textarea>';
|
|
} else {
|
|
echo '<script>fileType="nothing";</script>';
|
|
echo '<script>top.ICEcoder.message(\'Sorry, you need a higher admin level to view this file\');</script>';
|
|
}
|
|
};
|
|
|
|
if ($fileType=="image") {
|
|
echo '<script>fileType="image";fileName=\''.$iceRoot.$file.'\'</script>';
|
|
};
|
|
};
|
|
|
|
// If we're due to add a new folder...
|
|
if ($_GET['action']=="newFolder") {
|
|
if (strpos($file,$docRoot)===false) {$file=$docRoot.$iceRoot.$file;};
|
|
$fileName = substr($file,strrpos($file,"/")+1);
|
|
$fileLoc = substr(str_replace($docRoot,"",$file),0,strrpos(str_replace($docRoot,"",$file),"/"));
|
|
if ($_SESSION['userLevel'] > 0) {
|
|
mkdir($file, 0705);
|
|
// Reload file manager
|
|
if ($fileLoc=="") {$fileLoc = "/";};
|
|
echo '<script>top.ICEcoder.selectedFiles=[];top.ICEcoder.updateFileManagerList(\'add\',\''.$fileLoc.'\',\''.$fileName.'\');top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);action="newFolder";</script>';
|
|
} else {
|
|
if (!is_writable($file)) {
|
|
echo "<script>top.ICEcoder.message('Sorry, cannot create folder at\\n".$fileLoc."');</script>";
|
|
} else {
|
|
echo '<script>top.ICEcoder.message(\'Sorry, you need to be logged in to add folders\');</script>';
|
|
}
|
|
echo '<script>top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);action="nothing";</script>';
|
|
}
|
|
}
|
|
|
|
// If we're due to rename a file...
|
|
if ($_GET['action']=="rename") {
|
|
if ($_SESSION['userLevel'] > 0 && is_writable($docRoot.$iceRoot.str_replace("|","/",$_GET['oldFileName']))) {
|
|
rename($docRoot.$iceRoot.str_replace("|","/",strClean($_GET['oldFileName'])),$docRoot.$iceRoot.str_replace("|","/",$file));
|
|
// Reload file manager
|
|
$fileName = substr($file,strrpos($file,"/")+1);
|
|
$fileLoc = substr($file,0,strrpos($file,"/"));
|
|
if ($fileLoc=="") {$fileLoc = "/";};
|
|
echo '<script>top.ICEcoder.selectedFiles=[];top.ICEcoder.updateFileManagerList(\'rename\',\''.str_replace($docRoot,"",$fileLoc).'\',\''.$fileName.'\',\'\',\''.str_replace($iceRoot,"",strClean($_GET['oldFileName'])).'\');top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);action="rename";</script>';
|
|
} else {
|
|
if (!is_writable($_GET['oldFileName'])) {
|
|
echo "<script>top.ICEcoder.message('Sorry, cannot rename\\n".strClean($_GET['oldFileName'])."');</script>";
|
|
} else {
|
|
echo '<script>top.ICEcoder.message(\'Sorry, you need to be logged in to rename\');</script>';
|
|
}
|
|
echo '<script>top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);action="nothing";</script>';
|
|
}
|
|
}
|
|
|
|
// If we're due to change permissions on a file/folder...
|
|
if ($_GET['action']=="perms") {
|
|
if (strpos($file,$docRoot)===false) {$file=$docRoot.$iceRoot.$file;};
|
|
$fileName = substr($file,strrpos($file,"/")+1);
|
|
$fileLoc = substr(str_replace($docRoot,"",$file),0,strrpos(str_replace($docRoot,"",$file),"/"));
|
|
if ($_SESSION['userLevel'] > 0 && is_writable($file)) {
|
|
chmod($file,octdec(numClean($_GET['perms'])));
|
|
// Reload file manager
|
|
$fileName = substr($file,strrpos($file,"/")+1);
|
|
$fileLoc = substr($file,0,strrpos($file,"/"));
|
|
if ($fileLoc=="") {$fileLoc = "/";};
|
|
echo '<script>top.ICEcoder.selectedFiles=[];top.ICEcoder.updateFileManagerList(\'chmod\',\''.$fileLoc.'\',\''.$fileName.'\',\''.numClean($_GET['perms']).'\');top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);action="perms";</script>';
|
|
} else {
|
|
if (!is_writable($file)) {
|
|
echo "<script>top.ICEcoder.message('Sorry, cannot change permissions on \\n".strClean($file)."');</script>";
|
|
} else {
|
|
echo '<script>top.ICEcoder.message(\'Sorry, you need to be logged in to change permissions\');</script>';
|
|
}
|
|
echo '<script>top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);action="nothing";</script>';
|
|
}
|
|
}
|
|
|
|
// If we're due to delete a file...
|
|
if ($_GET['action']=="delete") {
|
|
if (strpos($file,$docRoot)===false) {$file=$docRoot.$iceRoot.$file;};
|
|
if ($_SESSION['userLevel'] > 0) {
|
|
$filesArray = split(";",$file); // May contain more than one file here
|
|
for ($i=0;$i<=count($filesArray)-1;$i++) {
|
|
if (is_writable($iceRoot.$filesArray[$i])) {
|
|
if (is_dir($iceRoot.$filesArray[$i])) {
|
|
rrmdir($iceRoot.$filesArray[$i]);
|
|
} else {
|
|
unlink($iceRoot.$filesArray[$i]);
|
|
}
|
|
// Reload file manager
|
|
$fileName = substr($file,strrpos($file,"/")+1);
|
|
$fileLoc = substr($file,0,strrpos($file,"/"));
|
|
if ($fileLoc=="") {$fileLoc = "/";};
|
|
echo '<script>top.ICEcoder.selectedFiles=[];top.ICEcoder.updateFileManagerList(\'delete\',\''.str_replace($docRoot,"",$fileLoc).'\',\''.$fileName.'\');top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);action="delete";</script>';
|
|
} else {
|
|
echo "<script>top.ICEcoder.message('Sorry can\\'t delete\\n".$filesArray[$i]."');</script>";
|
|
}
|
|
echo '<script>top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);action="nothing";</script>';
|
|
}
|
|
} else {
|
|
if (!is_writable($iceRoot.$filesArray[$i])) {
|
|
echo "<script>top.ICEcoder.message('Sorry, cannot delete\\n".$iceRoot.$filesArray[$i]."');</script>";
|
|
} else {
|
|
echo '<script>top.ICEcoder.message(\'Sorry, you need to be logged in to delete\');</script>';
|
|
}
|
|
echo '<script>top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);action="nothing";</script>';
|
|
}
|
|
}
|
|
|
|
// The function to recursively remove folders & files
|
|
function rrmdir($dir) {
|
|
if (is_dir($dir)) {
|
|
$objects = scandir($dir);
|
|
foreach ($objects as $object) {
|
|
if ($object != "." && $object != "..") {
|
|
if (filetype($dir."/".$object) == "dir") rrmdir($dir."/".$object); else unlink($dir."/".$object);
|
|
}
|
|
}
|
|
reset($objects);
|
|
rmdir($dir);
|
|
}
|
|
}
|
|
|
|
if ($_GET['action']=="save") {
|
|
echo '<script>action="save";</script>';
|
|
// on the form posting via a reload, save the file
|
|
if (isset($_POST['contents'])) {
|
|
if ($_SESSION['userLevel'] > 0) {
|
|
if (isset($_POST['newFileName'])&&$_POST['newFileName']!="") {
|
|
$file = strClean($_POST['newFileName']);
|
|
}
|
|
if (strpos($file,$docRoot)===false) {$file=$docRoot.$iceRoot.$file;};
|
|
$fileName = substr($file,strrpos($file,"/")+1);
|
|
$fileLoc = substr(str_replace($docRoot,"",$file),0,strrpos(str_replace($docRoot,"",$file),"/"));
|
|
|
|
if ((file_exists($file) && is_writable($file)) || isset($_POST['newFileName']) && $_POST['newFileName']!="") {
|
|
if (filemtime($file)==$_GET['fileMDT']||!(isset($_GET['fileMDT']))) {
|
|
$fh = fopen($file, 'w') or die("Sorry, cannot save");
|
|
fwrite($fh, $_POST['contents']);
|
|
fclose($fh);
|
|
clearstatcache();
|
|
echo '<script>top.ICEcoder.openFileMDTs[top.ICEcoder.selectedTab-1]="'.filemtime($file).'";</script>';
|
|
// Reload file manager & rename tab if it was a new file
|
|
if (isset($_POST['newFileName'])&&$_POST['newFileName']!="") {
|
|
if ($fileLoc == "") {$fileLoc = "/";};
|
|
echo '<script>top.ICEcoder.selectedFiles=[];top.ICEcoder.updateFileManagerList(\'add\',\''.$fileLoc.'\',\''.$fileName.'\');</script>';
|
|
echo '<script>top.ICEcoder.renameTab(top.ICEcoder.selectedTab,\''.$fileLoc.$fileName.'\');</script>';
|
|
}
|
|
// Reload stickytab window
|
|
echo '<script>if (top.ICEcoder.stickyTabWindow.location) {top.ICEcoder.stickyTabWindow.location.reload()};action="doneSave";</script>';
|
|
} else {
|
|
$loadedFile = file_get_contents($file);
|
|
echo '<textarea name="loadedFile" id="loadedFile">'.str_replace("</textarea>","<ICEcoder:/:textarea>",htmlentities($loadedFile)).'</textarea>';
|
|
echo '<textarea name="userVersionFile" id="userVersionFile"></textarea>';
|
|
?>
|
|
<script>
|
|
var refreshFile = top.ICEcoder.ask('Sorry, this file has changed, cannot save\n<?php echo $file;?>\n\nReload this file and copy your version to a new document?');
|
|
if (refreshFile) {
|
|
var cM = top.ICEcoder.getcMInstance();
|
|
var thisTab = top.ICEcoder.selectedTab;
|
|
document.getElementById('userVersionFile').value = cM.getValue();
|
|
// Revert back to original
|
|
cM.setValue(document.getElementById('loadedFile').value);
|
|
top.ICEcoder.changedContent[thisTab-1] = 0;
|
|
top.ICEcoder.openFileMDTs[top.ICEcoder.selectedTab-1] = "<?php echo filemtime($file); ?>";
|
|
cM.clearHistory();
|
|
// Now for the new file
|
|
top.ICEcoder.newTab();
|
|
cM = top.ICEcoder.getcMInstance();
|
|
cM.setValue(document.getElementById('userVersionFile').value);
|
|
cM.clearHistory();
|
|
// Finally, switch back to original tab
|
|
top.ICEcoder.switchTab(thisTab);
|
|
}
|
|
</script>
|
|
<?php
|
|
echo "<script>action='nothing';</script>";
|
|
}
|
|
} else {
|
|
echo "<script>top.ICEcoder.message('Sorry, cannot write\\n".$file."');action='nothing';</script>";
|
|
}
|
|
} else {
|
|
echo "<script>top.ICEcoder.message('Sorry, you need to be logged in to save');action='nothing';</script>";
|
|
}
|
|
echo '<script>top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);</script>';
|
|
}
|
|
};
|
|
?>
|
|
<script>
|
|
if (action=="load") {
|
|
if (fileType=="text") {
|
|
top.ICEcoder.loadingFile = true;
|
|
// Reset the various states back to their initial setting
|
|
selectedTab = top.ICEcoder.openFiles.length; // The tab that's currently selected
|
|
|
|
// Finally, store all data, show tabs etc
|
|
top.ICEcoder.createNewTab();
|
|
top.ICEcoder.cMInstances.push(top.ICEcoder.nextcMInstance);
|
|
window.onload=top.ICEcoder.content.contentWindow.createNewCMInstance(top.ICEcoder.nextcMInstance);
|
|
|
|
// Set the value & innerHTML of the code textarea to that of our loaded file plus make it visible (it's hidden on _coder's load)
|
|
top.ICEcoder.switchMode();
|
|
cM = top.ICEcoder.getcMInstance();
|
|
cM.setValue(document.getElementById('loadedFile').value);
|
|
top.document.getElementById('content').style.visibility='visible';
|
|
top.ICEcoder.switchTab(top.ICEcoder.selectedTab);
|
|
cM.focus();
|
|
|
|
// Then clean it up, set the text cursor, update the display and get the character data
|
|
top.ICEcoder.contentCleanUp();
|
|
top.ICEcoder.content.contentWindow['cM'+top.ICEcoder.cMInstances[top.ICEcoder.selectedTab-1]].setLineClass(top.ICEcoder['cMActiveLine'+top.ICEcoder.selectedTab], null);
|
|
top.ICEcoder['cMActiveLine'+top.ICEcoder.selectedTab] = top.ICEcoder.content.contentWindow['cM'+top.ICEcoder.cMInstances[top.ICEcoder.selectedTab-1]].setLineClass(0, "cm-s-activeLine");
|
|
top.ICEcoder.nextcMInstance++;
|
|
top.ICEcoder.openFileMDTs.push('<?php echo filemtime($file); ?>');
|
|
top.ICEcoder.loadingFile = false;
|
|
}
|
|
|
|
if (fileType=="image") {
|
|
top.document.getElementById('blackMask').style.visibility = "visible";
|
|
top.document.getElementById('mediaContainer').innerHTML = "<img src=\"<?php echo $file;?>\" class=\"whiteGlow\" style=\"border: solid 10px #fff; max-width: 700px; max-height: 500px\" onClick=\"return false\"><br><span class=\"whiteGlow\" style=\"border: solid 10px #fff; color: #000; background-color: #fff\" onClick=\"return false\"><?php echo $file;?></span>";
|
|
}
|
|
|
|
top.ICEcoder.serverMessage();
|
|
top.ICEcoder.serverQueue("del",0);
|
|
}
|
|
</script>
|
|
|
|
<form name="saveFile" action="file-control.php?action=save&file=<?php if (isset($file)) {echo $file;}; if (isset($_GET['fileMDT']) && $_GET['fileMDT']!="undefined") {echo "&fileMDT=".numClean($_GET['fileMDT']);};?>" method="POST">
|
|
<textarea name="contents"></textarea>
|
|
<input type="hidden" name="newFileName" value="">
|
|
</form>
|
|
|
|
<script>
|
|
if (action=="save") {
|
|
<?php
|
|
if ($file=="|[NEW]"||$saveType=="saveAs") {
|
|
if (strpos($file,$docRoot)===false) {$fileRef=str_replace("|","/",$docRoot.$iceRoot.$file);};
|
|
$fileName = substr($file,strrpos($fileRef,"/")+1);
|
|
$fileLoc = substr(str_replace($docRoot,"",$fileRef),0,strrpos(str_replace($docRoot,"",$fileRef),"/"));
|
|
if ($saveType=="saveAs") {
|
|
echo "fileLoc = '".$fileLoc."';";
|
|
|
|
} else {
|
|
echo "fileLoc = '';";
|
|
}
|
|
?>
|
|
newFileName = top.ICEcoder.getInput(fileLoc != ""
|
|
? 'Enter filename to save at '+fileLoc
|
|
: 'Enter filename (including path, prefixed with /)'
|
|
,'');
|
|
if (newFileName) {
|
|
newFileName = fileLoc == "" ? newFileName : fileLoc + "/" + fileName;
|
|
}
|
|
if (newFileName && top.document.getElementById('filesFrame').contentWindow.document.getElementById(newFileName.replace(/\//g,"|"))) {
|
|
overwriteOK = top.ICEcoder.ask('That file exists already, overwrite?');
|
|
}
|
|
document.saveFile.newFileName.value = '<?php echo $docRoot; ?>' + newFileName;
|
|
<?php ;};?>
|
|
if ("undefined" == typeof newFileName || (newFileName && "undefined" == typeof overwriteOK) || ("undefined" != typeof overwriteOK && overwriteOK)) {
|
|
top.ICEcoder.serverMessage('<b>Saving</b><br>'+ <?php echo $file=="|[NEW]" ? "newFileName" : "'$file'"; ?>);
|
|
document.saveFile.contents.value = top.document.getElementById('saveTemp1').value;
|
|
document.saveFile.submit();
|
|
} else {
|
|
top.ICEcoder.serverMessage();top.ICEcoder.serverQueue("del",0);
|
|
action=="nothing";
|
|
}
|
|
}
|
|
</script>
|
|
|
|
<script>
|
|
if (action=="doneSave") {
|
|
top.ICEcoder.changedContent[top.ICEcoder.selectedTab-1] = 0;
|
|
top.ICEcoder.redoTabHighlight(top.ICEcoder.selectedTab);
|
|
}
|
|
</script>
|