From 43933b5939b329a4ab333b093a370dabe995e0ad Mon Sep 17 00:00:00 2001 From: root Date: Wed, 26 Mar 2014 23:51:57 +0100 Subject: Small changes. --- www/functions/func_rewrite.php | 2 ++ www/functions/func_upload.php | 7 ++----- www/index.php | 16 ++++++---------- 3 files changed, 10 insertions(+), 15 deletions(-) (limited to 'www') diff --git a/www/functions/func_rewrite.php b/www/functions/func_rewrite.php index d9f694d..0a123d6 100755 --- a/www/functions/func_rewrite.php +++ b/www/functions/func_rewrite.php @@ -16,7 +16,9 @@ function rewrite($db){ } if($_SESSION["login"]){ + $scheme = $GLOBALS["scheme"]; header("Refresh: 0; ".$scheme.$_SERVER["HTTP_HOST"]."/" . $_SESSION['username'] . "/" . $_GET["name"] . "/" . $folder . ""); + exit; } return false; diff --git a/www/functions/func_upload.php b/www/functions/func_upload.php index 8059191..dd113fc 100755 --- a/www/functions/func_upload.php +++ b/www/functions/func_upload.php @@ -50,10 +50,7 @@ function upload($db){ return UPLOAD_FOLDER_NOT_OWNER; } - $ownername = SQLite3::escapeString($_SESSION['username']); - $owner_db = $db->query("SELECT id FROM user WHERE name='" . $ownername . "';"); - $owner_ar = $owner_db->fetchArray(SQLITE3_NUM); - $owner = $owner_ar[0]; + $owner = $_SESSION["userid"]; $overall_size_db = $db->query("SELECT size FROM files WHERE owner=" . $owner . " AND size > 0;"); $overall_size = 0; @@ -62,7 +59,7 @@ function upload($db){ $overall_size = $overall_size + $row[$count]; $count++; } - + if($overall_size > 2147483648){ // == 2GB return UPLOAD_QUOTA; } diff --git a/www/index.php b/www/index.php index 5866411..de33f64 100755 --- a/www/index.php +++ b/www/index.php @@ -23,11 +23,12 @@ if(empty($_GET)){ if(empty($_GET["name"])){ switch($_GET["task"]){ case("login"): + if($_SESSION["login"]){ + header("Refresh: 0; ".$scheme.$_SERVER["HTTP_HOST"]."/".$_SESSION["username"]); + exit; + } + if($_SERVER['REQUEST_METHOD'] == 'POST'){ - if($_SESSION["login"]){ - header("Refresh: 0; ".$scheme.$_SERVER["HTTP_HOST"]."/".$_SESSION["username"]); - exit; - } $var = login($db); if($var == LOGIN_SUCCESSFULL){ header("Refresh: 0; ".$scheme.$_SERVER["HTTP_HOST"]."/".$_SESSION["username"]); @@ -36,12 +37,7 @@ if(empty($_GET)){ print_login($var); } } else { - if(!$_SESSION["login"]){ - print_login(constant("EMPTY")); - } else { - header("Refresh: 0; ".$scheme.$_SERVER["HTTP_HOST"]."/" . $_SESSION["username"]); - exit; - } + print_login(constant("EMPTY")); } break; -- cgit v1.2.3 From 768f0f6a1ec5aaaa576fdc1bd283973a8a5ffc89 Mon Sep 17 00:00:00 2001 From: Horus3 Date: Thu, 27 Mar 2014 00:22:55 +0100 Subject: Fixed upload(); --- www/constants.php | 3 +-- www/functions/func_select.php | 2 +- www/functions/func_upload.php | 25 ++++--------------------- 3 files changed, 6 insertions(+), 24 deletions(-) (limited to 'www') diff --git a/www/constants.php b/www/constants.php index 3fcd67b..804743d 100644 --- a/www/constants.php +++ b/www/constants.php @@ -40,12 +40,11 @@ define("UPLOAD_SUCCESS", 29); define("UPLOAD_DATABASE", 30); define("UPLOAD_LOGIN", 31); define("UPLOAD_UPLOAD", 32); -define("UPLOAD_PARENTFOLDER", 33); // cur. tested if integer. Later should be if owner and uploader the same person +define("UPLOAD_FOLDER_NOT_OWNER", 33); define("UPLOAD_QUOTA", 34); define("UPLOAD_FILE_HANDLING", 35); define("UPLOAD_MOVING", 36); define("UPLOAD_DUPLICATE", 37); -define("UPLOAD_FOLDER_NOT_OWNER", 67); define("MKDIR_SLASH_IN_FOLDER_NAME", 38); //check TODO diff --git a/www/functions/func_select.php b/www/functions/func_select.php index ae76121..9f10cd6 100755 --- a/www/functions/func_select.php +++ b/www/functions/func_select.php @@ -32,7 +32,7 @@ function select_file_id($db, $owner, $folder_path){ for($i=0; $i<$length; $i++){ - $parentdir_db = $db->query("SELECT id, parent FROM files WHERE owner=" . $owner . $share . " AND parent=" . $parentdir . " AND name='" . SQLite3::escapeString($folder_array_unsafe[$i]) . "';"); + $parentdir_db = $db->query("SELECT id, parent FROM files WHERE owner=" . $owner . $share . " AND parent=" . $parentdir . " AND name='" . SQLite3::escapeString($folder_array_unsafe[$i]) . "' COLLATE NOCASE;"); $prim_id = $parentdir_db->fetchArray(SQLITE3_NUM); diff --git a/www/functions/func_upload.php b/www/functions/func_upload.php index 8059191..674b4cd 100755 --- a/www/functions/func_upload.php +++ b/www/functions/func_upload.php @@ -1,20 +1,5 @@ -
-

File :

- -

PWD:

-

Share: -

-
- -*/ - function database_upload($db, $parentdir, $owner, $filename, $folder, $mime, $size, $share, $filehash){ if($db->exec(" BEGIN TRANSACTION; @@ -27,7 +12,9 @@ function database_upload($db, $parentdir, $owner, $filename, $folder, $mime, $si } } -function upload($db){ +function upload($path){ + + $db = $GLOBALS["db"]; if(!$_SESSION["login"]){ return UPLOAD_LOGIN; @@ -37,11 +24,7 @@ function upload($db){ return UPLOAD_UPLOAD; } - $parentdir = select_file_id($db, $_SESSION["userid"], $_POST["path"]); - //$parentdir = SQLite3::escapeString("$_POST[pwd]"); - if(!preg_match("/[0-9]+/", $parentdir)){ - return UPLOAD_PARENTFOLDER; - } + $parentdir = select_file_id($db, $_SESSION["userid"], $path); $folder_owner_db = $db->query("SELECT owner FROM files WHERE id=".$parentdir.";"); $folder_owner_ar = $folder_owner_db->fetchArray(SQLITE3_NUM); -- cgit v1.2.3 From 84f44351d1f9e11d6b1421aa2de77c3414058159 Mon Sep 17 00:00:00 2001 From: Horus3 Date: Thu, 27 Mar 2014 01:09:06 +0100 Subject: Bug fixes. --- www/functions/func_folder.php | 4 ++-- www/setup.php | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) (limited to 'www') diff --git a/www/functions/func_folder.php b/www/functions/func_folder.php index c511897..c911e23 100644 --- a/www/functions/func_folder.php +++ b/www/functions/func_folder.php @@ -1,6 +1,6 @@ exec(" BEGIN TRANSACTION; INSERT INTO files (id, parent, owner, name, folder, size, share, hash) VALUES (Null, " . $file_id . ", " . $_SESSION['userid'] . ", '" . SQLite3::escapeString($new_folder_name) . "', 'DIRECTORY', 0, '" . SQLite3::escapeString($share) . "', ''); @@ -42,7 +42,7 @@ function create_folder($path, $new_folder_name, $share){ } } - if(database_mkdir($file_id, $new_folder_name, $share)){ + if(database_mkdir($db, $file_id, $new_folder_name, $share)){ return MKDIR_SUCCESS; } else { return MKDIR_DATABASE; diff --git a/www/setup.php b/www/setup.php index 93551aa..d2290c3 100755 --- a/www/setup.php +++ b/www/setup.php @@ -64,9 +64,9 @@ if($bool){ $_SESSION["username"] = "admin"; $_SESSION["userid"] = 1; + header("Refresh: 2; ".$scheme.$_SERVER["HTTP_HOST"]."/admin"); echo "Success! You will redirected any moment."; include("include.php"); - header("Refresh: 2; ".$scheme.$_SERVER["HTTP_HOST"]."/admin"); } else { echo "Failure! :(
"; echo "Your password: ".$hash_password; -- cgit v1.2.3 From 9469e30334580ada1a8c5761301fc2b1481e4355 Mon Sep 17 00:00:00 2001 From: oweissbarth Date: Thu, 27 Mar 2014 01:48:34 +0100 Subject: Added upload ui --- www/browse.php | 47 ++++++++++++++++++++++++++++++---------- www/static/browser.css | 59 +++++++++++++++++++++++++++++++++++++++++++++++--- 2 files changed, 92 insertions(+), 14 deletions(-) (limited to 'www') diff --git a/www/browse.php b/www/browse.php index d01df6e..a4b9e84 100644 --- a/www/browse.php +++ b/www/browse.php @@ -7,8 +7,11 @@ function print_browser($content){ if($_SERVER['REQUEST_METHOD'] == 'POST'){ //echo "created_folder : ". $_POST["foldername"] . " in ". $_GET["folder"]; - - create_folder($_POST["path"], $_POST["foldername"], /*$_POST["public"]?*/"PUBLIC"/*:"PRIVATE"*/); + if($_POST["task"]=="new-folder"){ + create_folder($_POST["path"], $_POST["foldername"], /*$_POST["public"]?*/"PUBLIC"/*:"PRIVATE"*/); + }elseif($_POST["task"]=="upload"){ + upload($_POST["path"]); + } browse(collect_content($GLOBALS["db"], $_SESSION["username"] , $_POST["path"])); }else{ browse(collect_content($GLOBALS["db"], $_GET["name"] , $_GET["folder"])); @@ -24,7 +27,7 @@ function browse($content){ $file_list = ""; - if($content){ + if($content != EMPTY_FOLDER){ foreach($content as $file){ $file_list .= get_item($file); } @@ -34,23 +37,45 @@ function browse($content){
-

New Folder

+

New Folder

- - + + + +
+
+
+ +
+
+

Upload

+
+ + + + +
@@ -79,7 +104,7 @@ function get_item($file){ function print_menu(){ echo ''; } diff --git a/www/static/browser.css b/www/static/browser.css index a6031dc..c040695 100644 --- a/www/static/browser.css +++ b/www/static/browser.css @@ -86,7 +86,7 @@ td{ } -input.new-folder-input[type=text], input.new-folder-input[type=checkbox]{ +input.new-folder-input[type=text]{ border: none; box-shadow: inset 0px 0px 1px 1px #1F3D4C; border-radius: 0; @@ -94,21 +94,74 @@ input.new-folder-input[type=text], input.new-folder-input[type=checkbox]{ font-size: 25px; margin-top: 15px; width: 395px; - display:block; padding-left: 5px; } +/*input.new-folder-input[type=checkbox]*/ + +input[type=checkbox]{ + display:inline; + margin-left: 5px; + width: 10px; +} + + input.new-folder-input:focus{ background: #D6E0E5 } + +#upload-bg{ + width: 100%; + height: 100%; + background: white; + position: fixed; + z-index: 99; + top: 0px; + opacity: 0.75; + visibility: hidden; +} + +#upload-form{ + +} + +#upload-area{ + height: 190px; + width: 400px; + position: fixed; + top: 50%; + margin-top: -100px; + + padding: 10px; + + left: 50%; + margin-left: -200px; + + border: 1px solid black; +} + + + +input.upload-input[type=file]{ + border: none; + margin-top: 15px; + margin-bottom: 15px; + display:block; + padding-left: 5px; +} + #button-input{ height: 40px; width: 120px; - display:inline; border: none; box-shadow: inset 0px 0px 1px 1px #1F3D4C; border-radius: 0; font-size: 25px; margin-top: 15px; + display:block; +} +label{ + display: inline; } +dis \ No newline at end of file -- cgit v1.2.3 From a35197cefeb2dae3e3688eec5762824263d16f0c Mon Sep 17 00:00:00 2001 From: Horus3 Date: Thu, 27 Mar 2014 02:04:04 +0100 Subject: Fixed wrong input. --- www/functions/func_upload.php | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) (limited to 'www') diff --git a/www/functions/func_upload.php b/www/functions/func_upload.php index 89bfbc0..850c501 100755 --- a/www/functions/func_upload.php +++ b/www/functions/func_upload.php @@ -51,7 +51,12 @@ function upload($path){ $folder = "FILE"; $mime = $_FILES['userfile']['type']; $size = $_FILES['userfile']['size']; - $share = SQLite3::escapeString($_POST['share']); + + if(isset($_POST["share"])){ + $share = "PUBLIC"; + } else { + $share = "PRIVATE"; + } $uploaddir = "../files/"; -- cgit v1.2.3