首頁 探索 說明
登入
yosoyhendrix
/
vesta
1
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
瀏覽代碼

FileManager latest changes

Serghey Rodin 10 年之前
父節點
5dbb80aaf3
當前提交
e02e470d34
共有 5 個文件被更改,包括 16 次插入19 次删除
統一視圖 顯示文件統計
  1. 5 0
      web/download/file/index.php
  2. 2 11
      web/edit/file/index.php
  3. 1 7
      web/file_manager/fm_core.php
  4. 3 0
      web/file_manager/index.php
  5. 5 1
      web/view/file/index.php

+ 5 - 0
web/download/file/index.php
查看文件 

@@ -1,6 +1,11 @@
 
 <?php
 
 <?php
 
 include($_SERVER['DOCUMENT_ROOT']."/inc/main.php");
 
 include($_SERVER['DOCUMENT_ROOT']."/inc/main.php");
 
 
 
+if ((!isset($_SESSION['FILEMANAGER_KEY'])) || (empty($_SESSION['FILEMANAGER_KEY']))) {
 
+    header("Location: /login/");
 
+    exit;
 
+}
 
+
 
 $user = $_SESSION['user'];
 
 $user = $_SESSION['user'];
 
 if (($_SESSION['user'] == 'admin') && (!empty($_SESSION['look']))) {
 
 if (($_SESSION['user'] == 'admin') && (!empty($_SESSION['look']))) {
 
     $user=$_SESSION['look'];
 
     $user=$_SESSION['look'];

+ 2 - 11
web/edit/file/index.php
查看文件 

@@ -47,7 +47,7 @@ if (($_SESSION['user'] == 'admin') && (!empty($_SESSION['look']))) {
 
                 chmod($fn, 0644);
 
                 chmod($fn, 0644);
 
 
 
                 if ($f) {
 
                 if ($f) {
 
-                    exec (VESTA_CMD . "v-copy-fs-file {$user} {$fn} {$path}", $output, $return_var);
 
+                    exec (VESTA_CMD . "v-copy-fs-file {$user} {$fn} ".escapeshellarg($path), $output, $return_var);
 
                     $error = check_return_code($return_var, $output);
 
                     $error = check_return_code($return_var, $output);
 
                     if ($return_var != 0) {
 
                     if ($return_var != 0) {
 
                         print('<p style="color: white">Error while saving file</p>');
 
                         print('<p style="color: white">Error while saving file</p>');
 
@@ -58,16 +58,7 @@ if (($_SESSION['user'] == 'admin') && (!empty($_SESSION['look']))) {
 
             }
 
             }
 
         }
 
         }
 
 
 
-        exec (VESTA_CMD . "v-check-fs-permission {$user} '{$path}'", $content, $return_var);
 
-        if ($return_var != 0) {
 
-            var_dump($return_var);
 
-            var_dump($content);
 
-            exit;
 
-            print 'Error while opening file'; // todo: handle this more styled
 
-            exit;
 
-        }
 
-
 
-        exec (VESTA_CMD . "v-open-fs-file {$user} {$path}", $content, $return_var);
 
+        exec (VESTA_CMD . "v-open-fs-file {$user} ".escapeshellarg($path), $content, $return_var);
 
         if ($return_var != 0) {
 
         if ($return_var != 0) {
 
             print 'Error while opening file'; // todo: handle this more styled
 
             print 'Error while opening file'; // todo: handle this more styled
 
             exit;
 
             exit;

+ 1 - 7
web/file_manager/fm_core.php
查看文件 

@@ -74,13 +74,7 @@ class FileManager {
 
     
     
     function deleteItem($dir, $item) {
 
     function deleteItem($dir, $item) {
 
         $dir = $this->formatFullPath($item);
 
         $dir = $this->formatFullPath($item);
 
-        //if (is_dir($item)) {
 
-            //var_dump(VESTA_CMD . "v-delete-fs-directory {$this->user} {$dir}");die();
 
-            exec (VESTA_CMD . "v-delete-fs-directory {$this->user} {$dir}", $output, $return_var);
 
-        //}
 
-        //else {
 
-        //    exec (VESTA_CMD . "v-delete-fs-file {$this->user} {$dir}", $output, $return_var);
 
-        //}
 
+        exec (VESTA_CMD . "v-delete-fs-directory {$this->user} {$dir}", $output, $return_var);
 
 
 
         $error = self::check_return_code($return_var, $output);
 
         $error = self::check_return_code($return_var, $output);

+ 3 - 0
web/file_manager/index.php
查看文件 

@@ -0,0 +1,3 @@
 
+<?php
 
+header("Location: /login/");
 
+exit;

+ 5 - 1
web/view/file/index.php
查看文件 

@@ -2,7 +2,11 @@
 
 
 
 include($_SERVER['DOCUMENT_ROOT']."/inc/main.php");
 
 include($_SERVER['DOCUMENT_ROOT']."/inc/main.php");
 
 
 
-// Check login_as feature
 
+if ((!isset($_SESSION['FILEMANAGER_KEY'])) || (empty($_SESSION['FILEMANAGER_KEY']))) {
 
+    header("Location: /login/");
 
+    exit;
 
+}
 
+
 
 $user = $_SESSION['user'];
 
 $user = $_SESSION['user'];
 
 if (($_SESSION['user'] == 'admin') && (!empty($_SESSION['look']))) {
 
 if (($_SESSION['user'] == 'admin') && (!empty($_SESSION['look']))) {
 
     $user=$_SESSION['look'];
 
     $user=$_SESSION['look'];