X-Git-Url: https://git.p6c8.net/jirafeau_project.git/blobdiff_plain/6dc6c81936d5b4e76af3cbdb1d33305347e52177..a995e194d8f5e997cfc1032389497a9f20b7d7e3:/file.php diff --git a/file.php b/file.php index 8e4451a..710ce3d 100644 --- a/file.php +++ b/file.php @@ -24,117 +24,182 @@ require (JIRAFEAU_ROOT . 'lib/config.php'); require (JIRAFEAU_ROOT . 'lib/settings.php'); require (JIRAFEAU_ROOT . 'lib/functions.php'); -if (isset ($_GET['h']) && !empty ($_GET['h'])) +if (!isset ($_GET['h']) || empty ($_GET['h'])) { - $link_name = $_GET['h']; + header ('Location: ' . $cfg['web_root']); + exit; +} - $delete_code = ''; - if (isset ($_GET['d']) && !empty ($_GET['d'])) - $delete_code = $_GET['d']; +/* Operations may take a long time. + * Be sure PHP's safe mode is off. + */ + set_time_limit(0); - if (!preg_match ('/[0-9a-f]{32}$/', $link_name)) - { - require (JIRAFEAU_ROOT.'lib/template/header.php'); - echo '

' . _('Sorry, the requested file is not found') . '

'; - require (JIRAFEAU_ROOT.'lib/template/footer.php'); - exit; - } +$link_name = $_GET['h']; - $link = jirafeau_get_link ($link_name); - if (count ($link) == 0) - { - require (JIRAFEAU_ROOT.'lib/template/header.php'); - echo '

' . _('Sorry, the requested file is not found') . - '

'; - require (JIRAFEAU_ROOT.'lib/template/footer.php'); - exit; - } - - if (!file_exists (VAR_FILES . $link['md5'])) - { - jirafeau_delete ($link_name); - require (JIRAFEAU_ROOT.'lib/template/header.php'); - echo '

'._('File not available.'). - '

'; - require (JIRAFEAU_ROOT.'lib/template/footer.php'); - exit; - } +if (!preg_match ('/[0-9a-zA-Z_-]{22}$/', $link_name)) +{ + require (JIRAFEAU_ROOT.'lib/template/header.php'); + echo '

' . t('Sorry, the requested file is not found') . '

'; + require (JIRAFEAU_ROOT.'lib/template/footer.php'); + exit; +} - if (!empty ($delete_code) && $delete_code == $link['link_code']) - { - jirafeau_delete ($link_name); - require (JIRAFEAU_ROOT.'lib/template/header.php'); - echo '

'._('File has been deleted.'). - '

'; - require (JIRAFEAU_ROOT.'lib/template/footer.php'); - exit; - } +$link = jirafeau_get_link ($link_name); +if (count ($link) == 0) +{ + require (JIRAFEAU_ROOT.'lib/template/header.php'); + echo '

' . t('Sorry, the requested file is not found') . + '

'; + require (JIRAFEAU_ROOT.'lib/template/footer.php'); + exit; +} - if ($link['time'] != JIRAFEAU_INFINITY && time ()> $link['time']) +$delete_code = ''; +if (isset ($_GET['d']) && !empty ($_GET['d'])) + $delete_code = $_GET['d']; + +$button_download = false; +if (isset ($_GET['bd']) && !empty ($_GET['bd'])) + $button_download = true; + +$button_preview = false; +if (isset ($_GET['bp']) && !empty ($_GET['bp'])) + $button_preview = true; + +$p = s2p ($link['md5']); +if (!file_exists (VAR_FILES . $p . $link['md5'])) +{ + jirafeau_delete_link ($link_name); + require (JIRAFEAU_ROOT.'lib/template/header.php'); + echo '

'.t('File not available.'). + '

'; + require (JIRAFEAU_ROOT.'lib/template/footer.php'); + exit; +} + +if (!empty ($delete_code) && $delete_code == $link['link_code']) +{ + jirafeau_delete_link ($link_name); + require (JIRAFEAU_ROOT.'lib/template/header.php'); + echo '

'.t('File has been deleted.'). + '

'; + require (JIRAFEAU_ROOT.'lib/template/footer.php'); + exit; +} + +if ($link['time'] != JIRAFEAU_INFINITY && time () > $link['time']) +{ + jirafeau_delete_link ($link_name); + require (JIRAFEAU_ROOT.'lib/template/header.php'); + echo '

'. + t('The time limit of this file has expired.') . ' ' . + t('File has been deleted.') . + '

'; + require (JIRAFEAU_ROOT . 'lib/template/footer.php'); + exit; +} + +$password_challenged = false; +if (!empty ($link['key'])) +{ + if (!isset ($_POST['key'])) { - jirafeau_delete ($link_name); require (JIRAFEAU_ROOT.'lib/template/header.php'); - echo '

'. - _('The time limit of this file has expired.') . ' ' . - _('File has been deleted.') . - '

'; + echo '
' . + '
'; ?> + ' . + '' . t('Password protection') . + '' . + '' . + '
' . + t('Give the password of this file') . ' : ' . + '' . + '
' . + t('By using our services, you accept of our'). ' ' . t('Term Of Service') . '' . + '
'; + ?>
'; require (JIRAFEAU_ROOT.'lib/template/footer.php'); exit; } - - if (!empty ($link['key'])) + else { - if (!isset ($_POST['key'])) - { - require (JIRAFEAU_ROOT.'lib/template/header.php'); - ?>
-
" method = - "post"> " />
- -
" - />
-

' . _('Access denied') . + echo '

' . t('Access denied') . '

'; require (JIRAFEAU_ROOT.'lib/template/footer.php'); exit; } - } + else + $password_challenged = true; } +} - header ('Content-Length: ' . $link['file_size']); - header ('Content-Type: ' . $link['mime_type']); - if (!jirafeau_is_viewable ($link['mime_type'])) - { - header ('Content-Disposition: attachment; filename="' . - $link['file_name'] . '"'); - } - readfile (VAR_FILES . $link['md5']); +if ($cfg['download_page'] && !$password_challenged && !$button_download && !$button_preview) +{ + require (JIRAFEAU_ROOT.'lib/template/header.php'); + echo '
' . + '
'; ?> + ' . $link['file_name'] . '' . + '' . + ''; + echo '
' . + t('You are about to download') . ' "' . $link['file_name'] . '" (' . jirafeau_human_size($link['file_size']) . ')' . + '
' . + t('By using our services, you accept of our'). ' ' . t('Term Of Service') . ''; + ?>
'; + require (JIRAFEAU_ROOT.'lib/template/footer.php'); + exit; } + +header ('HTTP/1.0 200 OK'); +header ('Content-Length: ' . $link['file_size']); +if (!jirafeau_is_viewable ($link['mime_type']) || !$cfg['preview'] || $button_download) + header ('Content-Disposition: attachment; filename="' . + $link['file_name'] . '"'); else + header ('Content-Type: ' . $link['mime_type']); + +/* Read file */ +$r = fopen (VAR_FILES . $p . $link['md5'], 'r'); +while (!feof ($r)) { - header ('Location: '.$cfg['web_root']); - exit; + print fread ($r, 1024); + ob_flush(); } +fclose ($r); + +//readfile (VAR_FILES . $p . $link['md5']); + +if ($link['onetime'] == 'O') + jirafeau_delete_link ($link_name); +exit; ?>