}
$delete_code = '';
-if (isset ($_GET['d']) && !empty ($_GET['d']))
+if (isset ($_GET['d']) && !empty ($_GET['d']) && $_GET['d'] != '1')
$delete_code = $_GET['d'];
$crypt_key = '';
$crypt_key = $_GET['k'];
$do_download = false;
-if (isset ($_GET['d']) && !empty ($_GET['d']))
+if (isset ($_GET['d']) && $_GET['d'] == '1')
$do_download = true;
$do_preview = false;
'<form action = "';
echo $cfg['web_root'] . '/f.php';
echo '" ' .
- 'method = "post" id = "submit">'; ?>
+ 'method = "post" id = "submit_post">'; ?>
<input type = "hidden" name = "jirafeau" value = "<?php echo JIRAFEAU_VERSION ?>"/><?php
echo '<fieldset>' .
'<legend>' . t('Password protection') .
'<input type = "password" name = "key" />' .
'</td></tr>' .
'<tr><td>' .
- t('By using our services, you accept of our'). ' <a href="' . $cfg['web_root'] . '/tos.php' . '">' . t('Term Of Service') . '</a>' .
+ t('By using our services, you accept our'). ' <a href="' . $cfg['web_root'] . '/tos.php' . '">' . t('Term Of Service') . '</a>' .
'</td></tr>' .
'<tr><td>';
?><input type="submit" id = "submit_download" value="<?php echo t('Download'); ?>"
- onclick="document.getElementById('submit').action='
+ onclick="document.getElementById('submit_post').action='
<?php
echo $cfg['web_root'] . '/f.php?h=' . $link_name . '&d=1';
if (!empty($crypt_key))
echo '&k=' . urlencode($crypt_key);
?>';
document.getElementById('submit_download').submit ();"/><?php
- if ($cfg['download_page'] && $cfg['preview'])
+ if ($cfg['download_page'] && $cfg['preview'] && jirafeau_is_viewable($link['mime_type']))
{
?><input type="submit" id = "submit_preview" value="<?php echo t('Preview'); ?>"
- onclick="document.getElementById('submit').action='
-<?php
- echo $cfg['web_root'] . '/f.php?h=' . $link_name . '&p=1';
- if (!empty($crypt_key))
- echo '&k=' . urlencode($crypt_key);
-?>';
- document.getElementById('submit_preview').submit ();"/><?php
+ onclick="document.getElementById('submit_post').action='
+ <?php
+ echo $cfg['web_root'] . '/f.php?h=' . $link_name . '&p=1';
+ if (!empty($crypt_key))
+ echo '&k=' . urlencode($crypt_key);
+ ?>';
+ document.getElementById('submit_preview').submit ();"/><?php
}
echo '</td></tr></table></fieldset></form></div>';
require (JIRAFEAU_ROOT.'lib/template/footer.php');
$password_challenged = true;
else
{
- header ("Access denied");
require (JIRAFEAU_ROOT.'lib/template/header.php');
echo '<div class="error"><p>' . t('Access denied') .
'</p></div>';
'<form action = "';
echo $cfg['web_root'] . '/f.php';
echo '" ' .
- 'method = "post" id = "submit">'; ?>
+ 'method = "post" id = "submit_post">'; ?>
<input type = "hidden" name = "jirafeau" value = "<?php echo JIRAFEAU_VERSION ?>"/><?php
echo '<fieldset><legend>' . $link['file_name'] . '</legend><table>' .
'<tr><td>' .
t('You are about to download') . ' "' . $link['file_name'] . '" (' . jirafeau_human_size($link['file_size']) . ')' .
'</td></tr>' .
'<tr><td>' .
- t('By using our services, you accept of our'). ' <a href="' . $cfg['web_root'] . '/tos.php' . '">' . t('Term Of Service') . '</a>';
+ t('By using our services, you accept our'). ' <a href="' . $cfg['web_root'] . '/tos.php' . '">' . t('Term Of Service') . '</a>';
?></td></tr><tr><td><input type="submit" id = "submit_download" value="<?php echo t('Download'); ?>"
- onclick="document.getElementById('submit').action='
+ onclick="document.getElementById('submit_post').action='
<?php
echo $cfg['web_root'] . '/f.php?h=' . $link_name . '&d=1';
if (!empty($crypt_key))
echo '&k=' . urlencode($crypt_key);
?>';
- document.getElementById('submit_download').submit ();"/><?php
+ document.getElementById('submit_post').submit ();"/><?php
- if ($cfg['download_page'] && $cfg['preview'])
+ if ($cfg['download_page'] && $cfg['preview'] && jirafeau_is_viewable($link['mime_type']))
{
?><input type="submit" id = "submit_preview" value="<?php echo t('Preview'); ?>"
- onclick="document.getElementById('submit').action='
+ onclick="document.getElementById('submit_post').action='
<?php
echo $cfg['web_root'] . '/f.php?h=' . $link_name . '&p=1';
if (!empty($crypt_key))
echo '&k=' . urlencode($crypt_key);
?>';
- document.getElementById('submit_preview').submit ();"/><?php
+ document.getElementById('submit_post').submit ();"/><?php
}
echo '</td></tr>';
echo '</table></fieldset></form></div>';
header ('HTTP/1.0 200 OK');
header ('Content-Length: ' . $link['file_size']);
if (!jirafeau_is_viewable ($link['mime_type']) || !$cfg['preview'] || $do_download)
- header ('Content-Disposition: attachment; filename="' .
- $link['file_name'] . '"');
+ header ('Content-Disposition: attachment; filename="' . $link['file_name'] . '"');
+else
+ header ('Content-Disposition: filename="' . $link['file_name'] . '"');
header ('Content-Type: ' . $link['mime_type']);
/* Read encrypted file. */