]>
git.p6c8.net - devedit.git/blob - devedit.pl
1 #!C:/Programme/Perl/bin/perl.exe -w
6 # Dev-Editor's main program
8 # Author: Patrick Canterino <patrick@patshaping.de>
9 # Last modified: 2005-06-14
13 use CGI
::Carp
qw(fatalsToBrowser);
15 use vars
qw($VERSION);
27 # Path to configuration file
28 # Change if necessary!
30 use constant CONFIGFILE => 'devedit.conf';
32 # Read the configuration file
34 my $config = read_config(CONFIGFILE);
35 error_template($config->{'templates'}->{'error'}); # Yes, I'm lazy...
37 # Check if the root directory exists
39 abort($config->{'errors'}->{'no_root_dir'}) unless(-d $config->{'fileroot'} && not -l $config->{'fileroot'});
41 # Check if we are able to access the root directory
43 abort($config->{'errors'}->{'no_root_access'}) unless(-r $config->{'fileroot'} && -x $config->{'fileroot'});
45 # Read the most important form data
49 my $command = $cgi->param('command') || 'show';
50 my $file = $cgi->param('file') || '/';
51 my $curdir = $cgi->param('curdir') || '';
52 my $newfile = $cgi->param('newfile') || '';
54 # Create physical and virtual path for the new file
56 my $new_physical = '';
59 if($newfile ne '' && $newfile !~ /^\s+$/)
61 $curdir = upper_path($file) if($curdir eq '');
62 my $path = $curdir.'/'.$newfile;
64 # Extract file and directory name...
66 my $file = file_name($path);
67 my $dir = upper_path($path);
69 # ... check if the directory exists ...
71 my $temp_path = clean_path($config->{'fileroot'}.'/'.$dir);
73 unless(-d $temp_path && not -l $temp_path)
75 abort($config->{'errors'}->{'dir_not_exist'},'/');
78 # ... and check if the path is above the root directory
80 unless(($new_physical,$new_virtual) = check_path($config->{'fileroot'},$dir))
82 abort($config->{'errors'}->{'create_above_root'},'/');
85 # Check if we have enough permissions to create a file
88 unless(-r $new_physical && -w $new_physical && -x $new_physical)
90 abort($config->{'errors'}->{'dir_no_create'},'/',{DIR => encode_html($new_virtual)});
93 # Create the physical and the virtual path
95 $new_physical = File::Spec->canonpath($new_physical.'/'.$file);
96 $new_virtual .= $file;
98 # Check if accessing this file is forbidden
100 if(is_forbidden_file($config->{'forbidden'},$new_virtual))
102 abort($config->{'errors'}->{'forbidden_file'},'/');
106 # This check has to be performed first or abs_path() will be confused
108 my $temp_path = clean_path($config->{'fileroot'}.'/'.$file);
110 if(-e $temp_path || -l $temp_path)
112 if(my ($physical,$virtual) = check_path($config->{'fileroot'},$file))
114 if(is_forbidden_file($config->{'forbidden'},$virtual))
116 abort($config->{'errors'}->{'forbidden_file'},'/');
120 # Create a hash containing data submitted by the user
121 # (some other necessary information are also included)
123 my %data = (physical => $physical,
125 new_physical => $new_physical,
126 new_virtual => $new_virtual,
129 configfile => CONFIGFILE);
131 # Execute the command...
133 my $output = exec_command($command,\%data,$config);
135 # ... and show its output
142 abort($config->{'errors'}->{'above_root'},'/');
147 abort($config->{'errors'}->{'not_found'},'/');
patrick-canterino.de