/branches/2.8.x/wb/admin/media/rename.php - Annotate - WB 2.08.x - Tracking

wb-archiv283/branches/2.8.x/wb/admin/media/rename.php @ 2136

-            stefan
+<?php
-            FrankH
+/**
+ *
  * @category        admin
-            Luisehahne
+ * @package         media
-            Luisehahne
+ * @author          Ryan Djurovich (2004-2009), WebsiteBaker Project
  * @copyright       2009-2012, WebsiteBaker Org. e.V.
-            FrankH
+ * @link			http://www.websitebaker2.org/
  * @license         http://www.gnu.org/licenses/gpl.html
  * @platform        WebsiteBaker 2.8.x
  * @requirements    PHP 5.2.2 and higher
  * @version         $Id$
-            Luisehahne
+ * @filesource		$HeadURL$
  * @lastmodified    $Date$
             FrankH
  */
             stefan
-            Luisehahne
+if(!defined('WB_URL'))
+{
     $config_file = realpath('../../config.php');
     if(file_exists($config_file) && !defined('WB_URL'))
+    {
     	require($config_file);
+    }
+}
-            darkviper
+//if(!class_exists('admin', false)){ include(WB_PATH.'/framework/class.admin.php'); }
 $oTrans = Translate::getInstance();
 $oTrans->enableAddon('admin\\media');
             stefan
-            Luisehahne
+$admin = new admin('Media', 'media', false);
-            stefan
+// Include the WB functions file
-            Luisehahne
+if(!function_exists('directory_list')) { require(WB_PATH.'/framework/functions.php'); }
             stefan
 // Get the current dir
 $directory = $admin->get_get('dir');
-            Luisehahne
+$directory = ($directory == '/') ?  '' : $directory;
             FrankH
-            Luisehahne
+$dirlink = 'browse.php?dir='.$directory;
 $rootlink = 'browse.php?dir=';
 // $file_id = intval($admin->get_get('id'));
-            Luisehahne
+// Get the current dir
 $currentHome = $admin->get_home_folder();
 // check for correct directory
 if ($currentHome && stripos(WB_PATH.MEDIA_DIRECTORY.$rootlink,WB_PATH.MEDIA_DIRECTORY.$currentHome)===false) {
 	$rootlink = $currentHome;
+}
-            Luisehahne
+// first Check to see if it contains ..
-            FrankH
+if (!check_media_path($directory)) {
-            darkviper
+	$admin->print_error($oTrans->MESSAGE_MEDIA_DIR_DOT_DOT_SLASH, $rootlink, false);
             stefan
 // Get the temp id
-            Luisehahne
+$file_id = intval($admin->checkIDKEY('id', false, $_SERVER['REQUEST_METHOD']));
-            FrankH
+if (!$file_id) {
-            darkviper
+	$admin->print_error($oTrans->MESSAGE_GENERIC_SECURITY_ACCESS, $dirlink, false);
             stefan
 // Get home folder not to show
 $home_folders = get_home_folders();
-            Luisehahne
+// Check for potentially malicious files
 $forbidden_file_types  = preg_replace( '/\s*[,;\|#]\s*/','|',RENAME_FILES_ON_UPLOAD);
             stefan
 // Figure out what folder name the temp id is
 if($handle = opendir(WB_PATH.MEDIA_DIRECTORY.'/'.$directory)) {
 	// Loop through the files and dirs an add to list
    while (false !== ($file = readdir($handle))) {
-            Luisehahne
+		$info = pathinfo($file);
 		$ext = isset($info['extension']) ? $info['extension'] : '';
-            stefan
+		if(substr($file, 0, 1) != '.' AND $file != '.svn' AND $file != 'index.php') {
-            Luisehahne
+			if( !preg_match('/'.$forbidden_file_types.'$/i', $ext) ) {
 				if(is_dir(WB_PATH.MEDIA_DIRECTORY.$directory.'/'.$file)) {
 					if(!isset($home_folders[$directory.'/'.$file])) {
 						$DIR[] = $file;
+					}
 				} else {
 					$FILE[] = $file;
             stefan
+			}
+		}
+	}
             Luisehahne
-            stefan
+	$temp_id = 0;
 	if(isset($DIR)) {
-            Ruebenwurz
+		sort($DIR);
-            stefan
+		foreach($DIR AS $name) {
 			$temp_id++;
 			if($file_id == $temp_id) {
 				$rename_file = $name;
 				$type = 'folder';
+			}
+		}
+	}
             Luisehahne
-            stefan
+	if(isset($FILE)) {
-            Ruebenwurz
+		sort($FILE);
-            stefan
+		foreach($FILE AS $name) {
 			$temp_id++;
 			if($file_id == $temp_id) {
 				$rename_file = $name;
 				$type = 'file';
+			}
+		}
+	}
+}
 if(!isset($rename_file)) {
-            darkviper
+	$admin->print_error($oTrans->MESSAGE_MEDIA_FILE_NOT_FOUND, $dirlink, false);
             stefan
-            Luisehahne
+// Setup template object, parse vars to it, then parse it
 // Create new template object
-            Luisehahne
+$template = new Template(dirname($admin->correct_theme_source('media_rename.htt')));
-            Ruebenwurz
+$template->set_file('page', 'media_rename.htt');
-            stefan
+$template->set_block('page', 'main_block', 'main');
 //echo WB_PATH.'/media/'.$directory.'/'.$rename_file;
-            darkviper
+$template->set_var($oTrans->getLangArray());
-            stefan
+if($type == 'folder') {
 	$template->set_var('DISPlAY_EXTENSION', 'hide');
 	$extension = '';
 } else {
 	$template->set_var('DISPlAY_EXTENSION', '');
 	$extension = strstr($rename_file, '.');
+}
 if($type == 'folder') {
 	$type = $TEXT['FOLDER'];
 } else {
 	$type = $TEXT['FILE'];
+}
 $template->set_var(array(
-            Luisehahne
+					'THEME_URL' => THEME_URL,
 					'FILENAME' => $rename_file,
 					'DIR' => $directory,
 					'FILE_ID' => $admin->getIDKEY($file_id),
-            Luisehahne
+					// 'FILE_ID' => $file_id,
-            Luisehahne
+					'TYPE' => $type,
 					'EXTENSION' => $extension,
 					'FTAN' => $admin->getFTAN()
+				)
 			);
-            stefan
+// Parse template object
 $template->parse('main', 'main_block', false);
 $template->pparse('output', 'page');

Project

General

Profile

WB 2.08.x