X-Git-Url: https://git.p6c8.net/devedit.git/blobdiff_plain/4b377fd01878a6214ec590368185cc16c2fc466e..59507c0a5e5507868ebf6db407219da3f17c8ed9:/modules/Command.pm?ds=inline diff --git a/modules/Command.pm b/modules/Command.pm index 28c6777..34a2541 100644 --- a/modules/Command.pm +++ b/modules/Command.pm @@ -6,7 +6,15 @@ package Command; # Execute Dev-Editor's commands # # Author: Patrick Canterino -# Last modified: 2005-08-01 +# Last modified: 2009-05-10 +# +# Copyright (C) 1999-2000 Roland Bluethgen, Frank Schoenmann +# Copyright (C) 2003-2009 Patrick Canterino +# All Rights Reserved. +# +# This file can be distributed and/or modified under the terms of +# of the Artistic License 1.0 (see also the LICENSE file found at +# the top level of the Dev-Editor distribution). # use strict; @@ -31,17 +39,18 @@ use Template; my $script = encode_html($ENV{'SCRIPT_NAME'}); my $users = eval('getpwuid(0)') && eval('getgrgid(0)'); -my %dispatch = ('show' => \&exec_show, - 'beginedit' => \&exec_beginedit, - 'endedit' => \&exec_endedit, - 'mkdir' => \&exec_mkdir, - 'mkfile' => \&exec_mkfile, - 'upload' => \&exec_upload, - 'copy' => \&exec_copy, - 'rename' => \&exec_rename, - 'remove' => \&exec_remove, - 'chprop' => \&exec_chprop, - 'about' => \&exec_about +my %dispatch = ('show' => \&exec_show, + 'beginedit' => \&exec_beginedit, + 'endedit' => \&exec_endedit, + 'mkdir' => \&exec_mkdir, + 'mkfile' => \&exec_mkfile, + 'upload' => \&exec_upload, + 'copy' => \&exec_copy, + 'rename' => \&exec_rename, + 'remove' => \&exec_remove, + 'remove_multi' => \&exec_remove_multi, + 'chprop' => \&exec_chprop, + 'about' => \&exec_about ); ### Export ### @@ -108,6 +117,8 @@ sub exec_show($$) my $dirlist = ''; + my $count = 0; + my $filter1 = $data->{'cgi'}->param('filter') || '*'; # The real wildcard my $filter2 = ($filter1 && $filter1 ne '*') ? $filter1 : ''; # Wildcard for output @@ -116,6 +127,8 @@ sub exec_show($$) unless($virtual eq '/') { + $count++; + my @stat = stat($physical.'/..'); my $udtpl = new Template; @@ -132,8 +145,11 @@ sub exec_show($$) foreach my $dir(@$dirs) { + next if($config->{'hide_dot_files'} && substr($dir,0,1) eq '.'); next unless(dos_wildcard_match($filter1,$dir)); + $count++; + my $phys_path = $physical.'/'.$dir; my $virt_path = multi_string($virtual.$dir.'/'); @@ -151,6 +167,7 @@ sub exec_show($$) $dtpl->parse_if_block('forbidden',is_forbidden_file($config->{'forbidden'},$virt_path->{'normal'})); $dtpl->parse_if_block('readable',-r $phys_path && -x $phys_path); $dtpl->parse_if_block('users',$users && -o $phys_path); + $dtpl->parse_if_block('even',($count % 2) == 0); $dirlist .= $dtpl->get_template; } @@ -159,8 +176,11 @@ sub exec_show($$) foreach my $file(@$files) { + next if($config->{'hide_dot_files'} && substr($file,0,1) eq '.'); next unless(dos_wildcard_match($filter1,$file)); + $count++; + my $phys_path = $physical.'/'.$file; my $virt_path = multi_string($virtual.$file); @@ -191,6 +211,8 @@ sub exec_show($$) $ftpl->parse_if_block('users',$users && -o $phys_path); + $ftpl->parse_if_block('even',($count % 2) == 0); + $dirlist .= $ftpl->get_template; } @@ -451,8 +473,10 @@ sub exec_mkfile($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'mkfile'}); - $tpl->fillin('DIR','/'); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('DIR','/'); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -490,8 +514,10 @@ sub exec_mkdir($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'mkdir'}); - $tpl->fillin('DIR','/'); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('DIR','/'); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -521,6 +547,14 @@ sub exec_upload($$) if(my $uploaded_file = $cgi->param('uploaded_file')) { + if($cgi->param('remote_file')) + { + $uploaded_file = $cgi->param('remote_file'); + + $uploaded_file =~ s!/!!g; + $uploaded_file =~ s!\\!!g; + } + # Process file upload my $filename = file_name($uploaded_file); @@ -553,10 +587,12 @@ sub exec_upload($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'upload'}); - $tpl->fillin('DIR',encode_html($virtual)); - $tpl->fillin('DIR_URL',escape($virtual)); - $tpl->fillin('URL',encode_html(equal_url($config->{'httproot'},$virtual))); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('DIR',encode_html($virtual)); + $tpl->set_var('DIR_URL',escape($virtual)); + $tpl->set_var('URL',encode_html(equal_url($config->{'httproot'},$virtual))); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -612,16 +648,18 @@ sub exec_copy($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'confirm_replace'}); - $tpl->fillin('FILE',encode_html($virtual)); - $tpl->fillin('NEW_FILE',$new_virtual->{'html'}); - $tpl->fillin('NEW_FILENAME',file_name($new_virtual->{'html'})); - $tpl->fillin('NEW_DIR',encode_html($new_dir)); - $tpl->fillin('DIR',encode_html($dir)); - $tpl->fillin('DIR_URL',escape($dir)); + $tpl->set_var('FILE',encode_html($virtual)); + $tpl->set_var('NEW_FILE',$new_virtual->{'html'}); + $tpl->set_var('NEW_FILENAME',file_name($new_virtual->{'html'})); + $tpl->set_var('NEW_DIR',encode_html($new_dir)); + $tpl->set_var('DIR',encode_html($dir)); + $tpl->set_var('DIR_URL',escape($dir)); + + $tpl->set_var('COMMAND','copy'); + $tpl->set_var('URL',encode_html(equal_url($config->{'httproot'},$virtual))); + $tpl->set_var('SCRIPT',$script); - $tpl->fillin('COMMAND','copy'); - $tpl->fillin('URL',encode_html(equal_url($config->{'httproot'},$virtual))); - $tpl->fillin('SCRIPT',$script); + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -641,11 +679,13 @@ sub exec_copy($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'copydir'}); - $tpl->fillin('FILE',encode_html($virtual)); - $tpl->fillin('DIR',encode_html($dir)); - $tpl->fillin('DIR_URL',escape($dir)); - $tpl->fillin('URL',encode_html(equal_url($config->{'httproot'},$virtual))); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('FILE',encode_html($virtual)); + $tpl->set_var('DIR',encode_html($dir)); + $tpl->set_var('DIR_URL',escape($dir)); + $tpl->set_var('URL',encode_html(equal_url($config->{'httproot'},$virtual))); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -657,11 +697,13 @@ sub exec_copy($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'copyfile'}); - $tpl->fillin('FILE',encode_html($virtual)); - $tpl->fillin('DIR',encode_html($dir)); - $tpl->fillin('DIR_URL',escape($dir)); - $tpl->fillin('URL',encode_html(equal_url($config->{'httproot'},$virtual))); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('FILE',encode_html($virtual)); + $tpl->set_var('DIR',encode_html($dir)); + $tpl->set_var('DIR_URL',escape($dir)); + $tpl->set_var('URL',encode_html(equal_url($config->{'httproot'},$virtual))); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -706,15 +748,17 @@ sub exec_rename($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'confirm_replace'}); - $tpl->fillin('FILE',encode_html($virtual)); - $tpl->fillin('NEW_FILE',$new_virtual->{'html'}); - $tpl->fillin('NEW_FILENAME',file_name($new_virtual->{'html'})); - $tpl->fillin('NEW_DIR',encode_html($new_dir)); - $tpl->fillin('DIR',encode_html($dir)); + $tpl->set_var('FILE',encode_html($virtual)); + $tpl->set_var('NEW_FILE',$new_virtual->{'html'}); + $tpl->set_var('NEW_FILENAME',file_name($new_virtual->{'html'})); + $tpl->set_var('NEW_DIR',encode_html($new_dir)); + $tpl->set_var('DIR',encode_html($dir)); - $tpl->fillin('COMMAND','rename'); - $tpl->fillin('URL',encode_html(equal_url($config->{'httproot'},$virtual))); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('COMMAND','rename'); + $tpl->set_var('URL',encode_html(equal_url($config->{'httproot'},$virtual))); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -731,11 +775,13 @@ sub exec_rename($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'renamefile'}); - $tpl->fillin('FILE',encode_html($virtual)); - $tpl->fillin('DIR',encode_html($dir)); - $tpl->fillin('DIR_URL',escape($dir)); - $tpl->fillin('URL',encode_html(equal_url($config->{'httproot'},$virtual))); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('FILE',encode_html($virtual)); + $tpl->set_var('DIR',encode_html($dir)); + $tpl->set_var('DIR_URL',escape($dir)); + $tpl->set_var('URL',encode_html(equal_url($config->{'httproot'},$virtual))); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -777,12 +823,14 @@ sub exec_remove($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'confirm_rmdir'}); - $tpl->fillin('DIR',encode_html($virtual)); - $tpl->fillin('DIR_URL',escape($virtual)); - $tpl->fillin('UPPER_DIR',encode_html($dir)); - $tpl->fillin('UPPER_DIR_URL',escape($dir)); - $tpl->fillin('URL',encode_html(equal_url($config->{'httproot'},$virtual))); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('DIR',encode_html($virtual)); + $tpl->set_var('DIR_URL',escape($virtual)); + $tpl->set_var('UPPER_DIR',encode_html($dir)); + $tpl->set_var('UPPER_DIR_URL',escape($dir)); + $tpl->set_var('URL',encode_html(equal_url($config->{'httproot'},$virtual))); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -804,12 +852,172 @@ sub exec_remove($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'confirm_rmfile'}); - $tpl->fillin('FILE',encode_html($virtual)); - $tpl->fillin('FILE_URL',escape($virtual)); - $tpl->fillin('DIR',encode_html($dir)); - $tpl->fillin('DIR_URL',escape($dir)); - $tpl->fillin('URL',encode_html(equal_url($config->{'httproot'},$virtual))); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('FILE',encode_html($virtual)); + $tpl->set_var('FILE_URL',escape($virtual)); + $tpl->set_var('DIR',encode_html($dir)); + $tpl->set_var('DIR_URL',escape($dir)); + $tpl->set_var('URL',encode_html(equal_url($config->{'httproot'},$virtual))); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; + + my $output = header(-type => 'text/html'); + $output .= $tpl->get_template; + + return \$output; + } + } +} + +# exec_remove_multi() +# +# Remove a file or a directory and return to directory view +# +# Params: 1. Reference to user input hash +# 2. Reference to config hash +# +# Return: Output of the command (Scalar Reference) + +sub exec_remove_multi($$) +{ + my ($data,$config) = @_; + my $physical = $data->{'physical'}; + my $virtual = $data->{'virtual'}; + my $cgi = $data->{'cgi'}; + + my @files = $cgi->param('files'); + my @new_files; + + if(@files) + { + foreach my $file(@files) + { + # Filter out some "bad" files (e.g. files going up in the + # directory hierarchy or files containing slashes (it's too + # dangerous...) + + next if($file =~ m!^\.+$!); + next if($file =~ m!/!); + next if($file =~ m!\\!); + + push(@new_files,$file); + } + } + + if(@new_files) + { + if($cgi->param('confirmed')) + { + my @success; + my @failed; + + foreach my $file(@new_files) + { + my $file_path = clean_path($physical.'/'.$file); + + if(-e $file_path) + { + if(-d $file_path && not -l $file_path) + { + # Remove a directory + + if(rmtree($file_path)) + { + push(@success,clean_path($file)); + } + else + { + push(@failed,clean_path($file)); + } + } + else + { + # Remove a file + + if(unlink($file_path)) + { + push(@success,clean_path($file)); + } + else + { + push(@failed,clean_path($file)); + } + } + } + else + { + push(@failed,clean_path($file)); + } + } + + my $tpl = new Template; + $tpl->read_file($config->{'templates'}->{'rmmulti'}); + + if(scalar(@success) > 0) + { + if(scalar(@success) == scalar(@new_files) && scalar(@failed) == 0) + { + return devedit_reload({command => 'show', file => $virtual}); + } + else + { + $tpl->parse_if_block('success',1); + + foreach my $file_success(@success) + { + $tpl->add_loop_data('SUCCESS',{FILE => encode_html($file_success), + FILE_PATH => encode_html(clean_path($virtual.'/'.$file_success))}); + } + } + } + else + { + $tpl->parse_if_block('success',0); + } + + if(scalar(@failed) > 0) + { + $tpl->parse_if_block('failed',1); + + foreach my $file_failed(@failed) + { + $tpl->add_loop_data('FAILED',{FILE => encode_html($file_failed), + FILE_PATH => encode_html(clean_path($virtual.'/'.$file_failed))}); + } + } + else + { + $tpl->parse_if_block('failed',0); + } + + + $tpl->set_var('DIR',encode_html($virtual)); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; + + my $output = header(-type => 'text/html'); + $output .= $tpl->get_template; + + return \$output; + } + else + { + my $tpl = new Template; + $tpl->read_file($config->{'templates'}->{'confirm_rmmulti'}); + + foreach my $file(@new_files) + { + $tpl->add_loop_data('FILES',{FILE => encode_html($file), + FILE_PATH => encode_html(clean_path($virtual.'/'.$file))}); + } + + $tpl->set_var('COUNT',scalar(@new_files)); + + $tpl->set_var('DIR',encode_html($virtual)); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -817,6 +1025,10 @@ sub exec_remove($$) return \$output; } } + else + { + return devedit_reload({command => 'show', file => $virtual}); + } } # exec_chprop() @@ -877,13 +1089,13 @@ sub exec_chprop($$) # Insert file properties into the template - $tpl->fillin('MODE_OCTAL',substr(sprintf('%04o',$mode),-4)); - $tpl->fillin('MODE_STRING',mode_string($mode)); - $tpl->fillin('GID',$gid); + $tpl->set_var('MODE_OCTAL',substr(sprintf('%04o',$mode),-4)); + $tpl->set_var('MODE_STRING',mode_string($mode)); + $tpl->set_var('GID',$gid); if(my $group = getgrgid($gid)) { - $tpl->fillin('GROUP',encode_html($group)); + $tpl->set_var('GROUP',encode_html($group)); $tpl->parse_if_block('group_detected',1); } else @@ -893,12 +1105,14 @@ sub exec_chprop($$) # Insert other information - $tpl->fillin('FILE',encode_html($virtual)); - $tpl->fillin('FILE_URL',escape($virtual)); - $tpl->fillin('DIR',encode_html($dir)); - $tpl->fillin('DIR_URL',escape($dir)); - $tpl->fillin('URL',encode_html(equal_url($config->{'httproot'},$virtual))); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('FILE',encode_html($virtual)); + $tpl->set_var('FILE_URL',escape($virtual)); + $tpl->set_var('DIR',encode_html($dir)); + $tpl->set_var('DIR_URL',escape($dir)); + $tpl->set_var('URL',encode_html(equal_url($config->{'httproot'},$virtual))); + $tpl->set_var('SCRIPT',$script); + + $tpl->parse; my $output = header(-type => 'text/html'); $output .= $tpl->get_template; @@ -923,35 +1137,35 @@ sub exec_about($$) my $tpl = new Template; $tpl->read_file($config->{'templates'}->{'about'}); - $tpl->fillin('SCRIPT',$script); + $tpl->set_var('SCRIPT',$script); # Dev-Editor's version number - $tpl->fillin('VERSION',$data->{'version'}); + $tpl->set_var('VERSION',$data->{'version'}); # Some path information - $tpl->fillin('SCRIPT_PHYS',encode_html($ENV{'SCRIPT_FILENAME'})); - $tpl->fillin('CONFIG_PATH',encode_html($data->{'configfile'})); - $tpl->fillin('FILE_ROOT', encode_html($config->{'fileroot'})); - $tpl->fillin('HTTP_ROOT', encode_html($config->{'httproot'})); + $tpl->set_var('SCRIPT_PHYS',encode_html($ENV{'SCRIPT_FILENAME'})); + $tpl->set_var('CONFIG_PATH',encode_html($data->{'configfile'})); + $tpl->set_var('FILE_ROOT', encode_html($config->{'fileroot'})); + $tpl->set_var('HTTP_ROOT', encode_html($config->{'httproot'})); # Perl - $tpl->fillin('PERL_PROG',encode_html($^X)); - $tpl->fillin('PERL_VER', sprintf('%vd',$^V)); + $tpl->set_var('PERL_PROG',encode_html($^X)); + $tpl->set_var('PERL_VER', sprintf('%vd',$^V)); # Information about the server - $tpl->fillin('HTTPD',encode_html($ENV{'SERVER_SOFTWARE'})); - $tpl->fillin('OS', encode_html($^O)); - $tpl->fillin('TIME', encode_html(strftime($config->{'timeformat'},($config->{'use_gmt'}) ? gmtime : localtime))); + $tpl->set_var('HTTPD',encode_html($ENV{'SERVER_SOFTWARE'})); + $tpl->set_var('OS', encode_html($^O)); + $tpl->set_var('TIME', encode_html(strftime($config->{'timeformat'},($config->{'use_gmt'}) ? gmtime : localtime))); $tpl->parse_if_block('gmt',$config->{'use_gmt'}); # Process information - $tpl->fillin('PID',$$); + $tpl->set_var('PID',$$); # The following information is only available on systems supporting # users and groups @@ -968,14 +1182,14 @@ sub exec_about($$) # IDs of user and group - $tpl->fillin('UID',$uid); - $tpl->fillin('GID',$gid); + $tpl->set_var('UID',$uid); + $tpl->set_var('GID',$gid); # Names of user and group if(my $user = getpwuid($uid)) { - $tpl->fillin('USER',encode_html($user)); + $tpl->set_var('USER',encode_html($user)); $tpl->parse_if_block('user_detected',1); } else @@ -985,7 +1199,7 @@ sub exec_about($$) if(my $group = getgrgid($gid)) { - $tpl->fillin('GROUP',encode_html($group)); + $tpl->set_var('GROUP',encode_html($group)); $tpl->parse_if_block('group_detected',1); } else @@ -995,13 +1209,15 @@ sub exec_about($$) # Process umask - $tpl->fillin('UMASK',sprintf('%04o',umask)); + $tpl->set_var('UMASK',sprintf('%04o',umask)); } else { $tpl->parse_if_block('users',0); } + $tpl->parse; + my $output = header(-type => 'text/html'); $output .= $tpl->get_template;