]> git.p6c8.net - jirafeau.git/blob - script.php
c5adf95cd648b838c2200ba3fd6603ad6533d08f
[jirafeau.git] / script.php
1 <?php
2 /*
3 * Jirafeau, your web file repository
4 * Copyright (C) 2015 Jerome Jutteau <j.jutteau@gmail.com>
5 *
6 * This program is free software: you can redistribute it and/or modify
7 * it under the terms of the GNU Affero General Public License as
8 * published by the Free Software Foundation, either version 3 of the
9 * License, or (at your option) any later version.
10 *
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU Affero General Public License for more details.
15 *
16 * You should have received a copy of the GNU Affero General Public License
17 * along with this program. If not, see <https://www.gnu.org/licenses/>.
18 */
19
20 /*
21 * This file permits to easyly script file sending, receiving, deleting, ...
22 * If you don't want this feature, you can simply delete this file from your
23 * web directory.
24 */
25
26 define ('JIRAFEAU_ROOT', dirname (__FILE__) . '/');
27
28 require (JIRAFEAU_ROOT . 'lib/config.original.php');
29 require (JIRAFEAU_ROOT . 'lib/settings.php');
30 require (JIRAFEAU_ROOT . 'lib/functions.php');
31 require (JIRAFEAU_ROOT . 'lib/lang.php');
32
33 global $script_langages;
34 $script_langages = array ('bash' => 'Bash');
35
36 /* Operations may take a long time.
37 * Be sure PHP's safe mode is off.
38 */
39 @set_time_limit(0);
40 /* Remove errors. */
41 @error_reporting(0);
42
43 if ($_SERVER['REQUEST_METHOD'] == "GET" && count ($_GET) == 0)
44 {
45 require (JIRAFEAU_ROOT . 'lib/template/header.php');
46 check_errors ($cfg);
47 if (has_error ())
48 {
49 show_errors ();
50 require (JIRAFEAU_ROOT . 'lib/template/footer.php');
51 exit;
52 }
53 ?>
54 <div class="info">
55 <h2>Scripting interface</h2>
56 <p>This interface permits to script your uploads and downloads.</p>
57 <p>See <a href="https://gitlab.com/mojo42/Jirafeau/blob/master/script.php">source code</a> of this interface to get available calls :)</p>
58 <p>Alternatively, go to <a href="<?php echo $cfg['web_root'] . 'script.php?lang=bash'; ?>">this page</a> to download a bash script.</p>
59 </div>
60 <br />
61 <?php
62 require (JIRAFEAU_ROOT . 'lib/template/footer.php');
63 exit;
64 }
65
66 /* Lets use interface now. */
67 header('Content-Type: text; charset=utf-8');
68
69 check_errors ($cfg);
70 if (has_error ())
71 {
72 echo 'Error 1';
73 exit;
74 }
75
76 /* Upload file */
77 if (isset ($_FILES['file']) && is_writable (VAR_FILES)
78 && is_writable (VAR_LINKS))
79 {
80 if (!jirafeau_challenge_upload_ip ($cfg, get_ip_address($cfg)))
81 {
82 echo 'Error 2';
83 exit;
84 }
85
86 if (jirafeau_has_upload_password ($cfg) &&
87 (!isset ($_POST['upload_password']) ||
88 !jirafeau_challenge_upload_password ($cfg, $_POST['upload_password'])))
89 {
90 echo 'Error 3';
91 exit;
92 }
93
94 $key = '';
95 if (isset ($_POST['key']))
96 $key = $_POST['key'];
97
98 $time = time ();
99 if (!isset ($_POST['time']) || !$cfg['availabilities'][$_POST['time']])
100 {
101 echo 'Error 4: The parameter time is invalid.';
102 exit;
103 }
104 else
105 switch ($_POST['time'])
106 {
107 case 'minute':
108 $time += JIRAFEAU_MINUTE;
109 break;
110 case 'hour':
111 $time += JIRAFEAU_HOUR;
112 break;
113 case 'day':
114 $time += JIRAFEAU_DAY;
115 break;
116 case 'week':
117 $time += JIRAFEAU_WEEK;
118 break;
119 case 'month':
120 $time += JIRAFEAU_MONTH;
121 break;
122 case 'quarter':
123 $time += JIRAFEAU_QUARTER;
124 break;
125 case 'year':
126 $time += JIRAFEAU_YEAR;
127 break;
128 default:
129 $time = JIRAFEAU_INFINITY;
130 break;
131 }
132
133 // Check file size
134 if ($cfg['maximal_upload_size'] > 0 &&
135 $_FILES['file']['size'] > $cfg['maximal_upload_size'] * 1024 * 1024)
136 {
137 echo 'Error 5: Your file exceeds the maximum authorized file size.';
138 exit;
139 }
140
141 $res = jirafeau_upload ($_FILES['file'],
142 isset ($_POST['one_time_download']),
143 $key, $time, get_ip_address($cfg),
144 $cfg['enable_crypt'], $cfg['link_name_length']);
145
146 if (empty($res) || $res['error']['has_error'])
147 {
148 echo 'Error 6 ' . $res['error']['why'];
149 exit;
150 }
151 /* Print direct link. */
152 echo $res['link'];
153 /* Print delete link. */
154 echo NL;
155 echo $res['delete_link'];
156 /* Print decrypt key. */
157 echo NL;
158 echo urlencode($res['crypt_key']);
159 }
160 elseif (isset ($_GET['h']))
161 {
162 $link_name = $_GET['h'];
163 $key = '';
164 if (isset ($_POST['key']))
165 $key = $_POST['key'];
166 $d = '';
167 if (isset ($_GET['d']))
168 $d = $_GET['d'];
169
170 if (!preg_match ('/[0-9a-zA-Z_-]+$/', $link_name))
171 {
172 echo 'Error 7';
173 exit;
174 }
175
176 $link = jirafeau_get_link ($link_name);
177 if (count ($link) == 0)
178 {
179 echo 'Error 8';
180 exit;
181 }
182 if (strlen ($d) > 0 && $d == $link['link_code'])
183 {
184 jirafeau_delete_link ($link_name);
185 echo "Ok";
186 exit;
187 }
188 if ($link['time'] != JIRAFEAU_INFINITY && time () > $link['time'])
189 {
190 jirafeau_delete_link ($link_name);
191 echo 'Error 9';
192 exit;
193 }
194 if (strlen ($link['key']) > 0 && md5 ($key) != $link['key'])
195 {
196 sleep (2);
197 echo 'Error 10';
198 exit;
199 }
200 $p = s2p ($link['md5']);
201 if (!file_exists (VAR_FILES . $p . $link['md5']))
202 {
203 echo 'Error 11';
204 exit;
205 }
206
207 /* Read file. */
208 header ('Content-Length: ' . $link['file_size']);
209 header ('Content-Type: ' . $link['mime_type']);
210 header ('Content-Disposition: attachment; filename="' .
211 $link['file_name'] . '"');
212
213 $r = fopen (VAR_FILES . $p . $link['md5'], 'r');
214 while (!feof ($r))
215 {
216 print fread ($r, 1024);
217 ob_flush();
218 }
219 fclose ($r);
220
221 if ($link['onetime'] == 'O')
222 jirafeau_delete_link ($link_name);
223 exit;
224 }
225 elseif (isset ($_GET['get_capacity']))
226 {
227 echo min (jirafeau_ini_to_bytes (ini_get ('post_max_size')),
228 jirafeau_ini_to_bytes (ini_get ('upload_max_filesize')));
229 }
230 elseif (isset ($_GET['get_maximal_upload_size']))
231 {
232 echo $cfg['maximal_upload_size'];
233 }
234 elseif (isset ($_GET['get_version']))
235 {
236 echo JIRAFEAU_VERSION;
237 }
238 elseif (isset ($_GET['lang']))
239 {
240 $l=$_GET['lang'];
241 if ($l == "bash")
242 {
243 ?>
244 #!/bin/bash
245
246 # This script has been auto-generated by Jirafeau but you can still edit
247 # options below.
248
249 # Config
250 proxy='' # ex: proxy='proxysever.test.com:3128' or set JIRAFEAU_PROXY global variable
251 url='<?php echo $cfg['web_root'] . 'script.php'; ?>' # or set JIRAFEAU_URL ex: url='http://mysite/jirafeau/script.php'
252 time='<?php echo $cfg['availability_default']; ?>' # minute, hour, day, week, month, quarted, year or none. Or set JIRAFEAU_TIME.
253 one_time='' # ex: one_time="1" or set JIRAFEAU_ONE_TIME.
254 curl='' # curl path to download or set JIRAFEAU_CURL_PATH.
255 # End of config
256
257 if [ -n "$JIRAFEAU_PROXY" ]; then
258 proxy="$JIRAFEAU_PROXY"
259 fi
260
261 if [ -n "$JIRAFEAU_URL" ]; then
262 url="$JIRAFEAU_URL"
263 fi
264
265 if [ -z "$url" ]; then
266 echo "Please set url in script parameters or export JIRAFEAU_URL"
267 fi
268
269 if [ -n "$JIRAFEAU_TIME" ]; then
270 time="$JIRAFEAU_TIME"
271 fi
272
273 if [ -n "$JIRAFEAU_ONE_TIME" ]; then
274 one_time='1'
275 fi
276
277 if [ -z "$curl" ]; then
278 curl="$JIRAFEAU_CURL_PATH"
279 fi
280
281 if [ -z "$curl" ] && [ -e "/usr/bin/curl" ]; then
282 curl="/usr/bin/curl"
283 fi
284
285 if [ -z "$curl" ] && [ -e "/bin/curl.exe" ]; then
286 curl="/bin/curl.exe"
287 fi
288
289 if [ -z "$curl" ]; then
290 echo "Please set your curl binary path (by editing this script or export JIRAFEAU_CURL_PATH global variable)."
291 exit
292 fi
293
294 if [ -z "$2" ]; then
295 echo "man:"
296 echo " $0 send PATH [PASSWORD]"
297 echo " $0 get URL [PASSWORD]"
298 echo " $0 delete URL"
299 echo ""
300 echo "Global variables to export:"
301 echo " JIRAFEAU_PROXY : example: proxysever.test.com:3128"
302 echo " JIRAFEAU_URL : example: http://mysite/jirafeau/script.php"
303 echo " JIRAFEAU_TIME : minute, hour, day, week, quarter, year, month or none"
304 echo " JIRAFEAU_ONE_TIME : set anything or set empty"
305 echo " JIRAFEAU_CURL : path to your curl binary"
306
307 exit 0
308 fi
309
310 if [ -n "$proxy" ]; then
311 proxy="-x $proxy"
312 fi
313
314 options=''
315 if [ -n "$one_time" ]; then
316 options="$options -F one_time_download=1"
317 fi
318
319 password=''
320 if [ -n "$3" ]; then
321 password="$3"
322 options="$options -F key=$password"
323 fi
324
325 if [ "$1" == "send" ]; then
326 if [ ! -f "$2" ]; then
327 echo "File \"$2\" does not exists."
328 exit
329 fi
330
331 # Ret result
332 res=$($curl -X POST --http1.0 $proxy $options \
333 -F "time=$time" \
334 -F "file=@$2" \
335 $url)
336
337 if [[ "$res" == Error* ]]; then
338 echo "Error while uploading."
339 echo $res
340 exit
341 fi
342
343 # Not using head or tail to minimise command dependencies
344 code=$(cnt=0; echo "$res" | while read l; do
345 if [[ "$cnt" == "0" ]]; then
346 echo "$l"
347 fi
348 cnt=$(( cnt + 1 ))
349 done)
350 del_code=$(cnt=0; echo "$res" | while read l; do
351 if [[ "$cnt" == "1" ]]; then
352 echo "$l"
353 fi
354 cnt=$(( cnt + 1 ))
355 done)
356 echo "Download link:"
357 echo "${url}?h=$code"
358 echo "Direct download link:"
359 echo "${url}?h=$code&d=1"
360 echo "Delete link:"
361 echo "${url}?h=$code&d=$del_code"
362 elif [ "$1" == "get" ]; then
363 if [ -z "$password" ]; then
364 $curl $proxy -OJ "$2"
365 else
366 $curl $proxy -OJ -X POST -F key=$password "$2"
367 fi
368 elif [ "$1" == "delete" ]; then
369 $curl $proxy "$2"
370 fi
371 <?php
372 }
373 else
374 {
375 echo 'Error 12';
376 exit;
377 }
378 }
379 /* Create alias. */
380 elseif (isset ($_GET['alias_create']))
381 {
382 $ip = get_ip_address($cfg);
383 if (!jirafeau_challenge_upload_ip ($cfg, $ip))
384 {
385 echo 'Error 13';
386 exit;
387 }
388
389 if (jirafeau_has_upload_password ($cfg) &&
390 (!isset ($_POST['upload_password']) ||
391 !jirafeau_challenge_upload_password ($cfg, $_POST['upload_password'])))
392 {
393 echo 'Error 14';
394 exit;
395 }
396
397 if (!isset ($_POST['alias']) ||
398 !isset ($_POST['destination']) ||
399 !isset ($_POST['password']))
400 {
401 echo 'Error 15';
402 exit;
403 }
404
405 echo jirafeau_alias_create ($_POST['alias'],
406 $_POST['destination'],
407 $_POST['password'],
408 $ip);
409 }
410 /* Get alias. */
411 elseif (isset ($_GET['alias_get']))
412 {
413 if (!isset ($_POST['alias']))
414 {
415 echo 'Error 16';
416 exit;
417 }
418
419 echo jirafeau_alias_get ($_POST['alias']);
420 }
421 /* Update alias. */
422 elseif (isset ($_GET['alias_update']))
423 {
424 if (!isset ($_POST['alias']) ||
425 !isset ($_POST['destination']) ||
426 !isset ($_POST['password']))
427 {
428 echo 'Error 17';
429 exit;
430 }
431
432 $new_password = '';
433 if (isset ($_POST['new_password']))
434 $new_password = $_POST['new_password'];
435
436 echo jirafeau_alias_update ($_POST['alias'],
437 $_POST['destination'],
438 $_POST['password'],
439 $new_password,
440 get_ip_address($cfg));
441 }
442 /* Delete alias. */
443 elseif (isset ($_GET['alias_delete']))
444 {
445 if (!isset ($_POST['alias']) ||
446 !isset ($_POST['password']))
447 {
448 echo 'Error 18';
449 exit;
450 }
451
452 echo jirafeau_alias_delete ($_POST['alias'],
453 $_POST['password']);
454 }
455 /* Initialize an asynchronous upload. */
456 elseif (isset ($_GET['init_async']))
457 {
458 if (!jirafeau_challenge_upload_ip ($cfg, get_ip_address($cfg)))
459 {
460 echo 'Error 19';
461 exit;
462 }
463
464 if (jirafeau_has_upload_password ($cfg) &&
465 (!isset ($_POST['upload_password']) ||
466 !jirafeau_challenge_upload_password ($cfg, $_POST['upload_password'])))
467 {
468 echo 'Error 20';
469 exit;
470 }
471
472 if (!isset ($_POST['filename']))
473 {
474 echo 'Error 21';
475 exit;
476 }
477
478 $type = '';
479 if (isset ($_POST['type']))
480 $type = $_POST['type'];
481
482 $key = '';
483 if (isset ($_POST['key']))
484 $key = $_POST['key'];
485
486 $time = time ();
487 if (!isset ($_POST['time']) || !$cfg['availabilities'][$_POST['time']])
488 {
489 echo 'Error 22';
490 exit;
491 }
492 else
493 switch ($_POST['time'])
494 {
495 case 'minute':
496 $time += JIRAFEAU_MINUTE;
497 break;
498 case 'hour':
499 $time += JIRAFEAU_HOUR;
500 break;
501 case 'day':
502 $time += JIRAFEAU_DAY;
503 break;
504 case 'week':
505 $time += JIRAFEAU_WEEK;
506 break;
507 case 'month':
508 $time += JIRAFEAU_MONTH;
509 break;
510 case 'quarter':
511 $time += JIRAFEAU_QUARTER;
512 break;
513 case 'year':
514 $time += JIRAFEAU_YEAR;
515 break;
516 default:
517 $time = JIRAFEAU_INFINITY;
518 break;
519 }
520 echo jirafeau_async_init ($_POST['filename'],
521 $type,
522 isset ($_POST['one_time_download']),
523 $key,
524 $time,
525 get_ip_address($cfg));
526 }
527 /* Continue an asynchronous upload. */
528 elseif (isset ($_GET['push_async']))
529 {
530 if ((!isset ($_POST['ref']))
531 || (!isset ($_FILES['data']))
532 || (!isset ($_POST['code'])))
533 echo 'Error 23';
534 else
535 {
536 echo jirafeau_async_push ($_POST['ref'],
537 $_FILES['data'],
538 $_POST['code'],
539 $cfg['maximal_upload_size']);
540 }
541 }
542 /* Finalize an asynchronous upload. */
543 elseif (isset ($_GET['end_async']))
544 {
545 if (!isset ($_POST['ref'])
546 || !isset ($_POST['code']))
547 echo 'Error 24';
548 else
549 echo jirafeau_async_end ($_POST['ref'], $_POST['code'], $cfg['enable_crypt'], $cfg['link_name_length']);
550 }
551 else
552 echo 'Error 25';
553 exit;
554 ?>

patrick-canterino.de