/[docman2]/docman.php
This is repository of my old source code which isn't updated any more. Go to git.rot13.org for current projects!
ViewVC logotype

Contents of /docman.php

Parent Directory Parent Directory | Revision Log Revision Log

Revision 1.41 - (show annotations)
Thu Jun 12 18:11:36 2003 UTC (20 years, 10 months ago) by dpavlin
Branch: MAIN
Changes since 1.40: +1 -1 lines 
works in browsers which don't send accept language
1 <?php
2
3 /*
4 * Document Manager ][
5 *
6 * Dobrica Pavlinusic <dpavlin@rot13.org>
7 *
8 * License: GPL2
9 *
10 * Document Manager 1.x was based on
11 * Copyright 1999 by John Martin d/b/a www.ANYPORTAL.com
12 * PHP version Copyright 2000 by Stefan@Wiesendanger.org
13 *
14 * For more info, please see web pages at
15 * http://www.rot13.org/~dpavlin/docman.html
16 *
17 */
18
19
20 //////////////////////////////////////////////////////////////////
21 // CONFIGURATION OPTIONS
22
23 error_reporting(E_ALL) ; // how verbose ?
24
25 // try to do some guessing about configuration
26 $script = $HTTP_SERVER_VARS["SCRIPT_FILENAME"];
27 if (is_link($script)) $script=readlink($script);
28 $gblIncDir = dirname($script);
29 $html = $gblIncDir."/html";
30
31 // location of master docman configuration file
32 $docman_conf = "/etc/docman.conf";
33 if (! file_exists($docman_conf)) {
34 $error = "Can't find master configuration file <tt>$docman_conf</tt>. See <tt>docman2/doc/upgrade.html#docman_conf</tt> for more informations";
35
36 error_log("docman: $error");
37 Error("docman not installed completly",$error);
38 }
39 include($docman_conf);
40
41 if (! isset($gblIncDir)) {
42 $error = "Can't findi <tt>\$gblIncDir</tt> in master configuration file <tt>$docman_conf</tt>. This variable should point to docman installation directory";
43
44 error_log("docman: $error");
45 Error("docman not installed completly",$error);
46 }
47
48 // location of html files
49 $html = $gblIncDir."/html";
50
51 // force download on view (so it won't open in associated application)
52 $gblForceDownload = 0;
53
54 // date format
55 $gblDateFmt="Y-m-d";
56 // $gblDateFmt="D, F d, Y";
57
58 // time format
59 $gblTimeFmt="H:i:s";
60 // $gblTimeFmt="g:i:sA";
61
62 // Number of backup files to keep
63 $gblNumBackups=3;
64
65 // show red star if newer than ... days
66 $gblModDays=1;
67
68 // choose GifIcon below unless you have the M$
69 // WingDings font installed on your system
70
71 $gblIcon="GifIcon"; // MockIcon or GifIcon
72
73 // the directory below should be /icons/ or /icons/small/
74 // on Apache; a set of icons is included in the distribution
75
76 $gblIconLocation="/icons/";
77
78 // files you want to be able to edit in text mode
79 // and view with (primitive) syntax highlighting
80
81 $gblEditable = array( ".txt",".asa",".asp",".htm",".html",
82 ".cfm",".php3",".php",".phtml",
83 ".shtml",".css" ) ;
84
85 // files that will display as images on the detail page
86 // (useless if your browser doesn't support them)
87
88 $gblImages = array( ".jpg",".jpeg",".gif",".png",".ico",
89 ".bmp",".xbm") ;
90
91 // which files to hide (separated by ,)
92 $gblHide = "";
93
94 // Where are users? (by default in .htusers file)
95 $gblUsers = "file";
96
97 //////////////////////////////////////////////////////////////////
98
99 $gblTitle = "Document Manager";
100 $gblVersion = "2.0-pre4";
101
102 $secHash = "";
103
104 // load language
105 if (isset($HTTP_SERVER_VARS["HTTP_ACCEPT_LANGUAGE"])) {
106 LoadLanguage($HTTP_SERVER_VARS["HTTP_ACCEPT_LANGUAGE"]);
107 }
108
109 // does gettext locale function exits?
110 if (! function_exists("_")) {
111 function _($str) { return $str; }
112 }
113
114 // for security and configuration
115 $realm=$HTTP_SERVER_VARS["HTTP_HOST"];
116
117 // globals for later
118 $gblLogin = HTTP_SERVER_VAR("PHP_AUTH_USER");
119 $gblPasswd = HTTP_SERVER_VAR("PHP_AUTH_PW");
120
121 //////////////////////////////////////////////////////////////////
122
123 function LoadLanguage($lang) {
124
125 global $gblIncDir,$html;
126
127 if (file_exists($gblIncDir."/lang/$lang.php")) {
128 include($gblIncDir."/lang/$lang.php");
129 $html .= "-$lang";
130 } elseif (file_exists($gblIncDir."/lang/default.php")) {
131 include($gblIncDir."/lang/default.php");
132 }
133 }
134
135 function StartHTML($title,$text="") {
136
137 global $html,$gblIncDir,$gblTitle,$HTTP_SERVER_VARS;
138
139 $host = $HTTP_SERVER_VARS["HTTP_HOST"] ;
140 $self = $HTTP_SERVER_VARS["PHP_SELF"] ;
141
142 if (file_exists("$gblIncDir/docman.css")) {
143 $css = "";
144 $d = dirname($self);
145 if ($d != "/") $css = $d;
146 $css .= "/docman.css";
147 } else {
148 $css=$self."?STYLE=get";
149 }
150 include("$html/head.html");
151 }
152
153 //////////////////////////////////////////////////////////////////
154
155 function EndHTML() {
156
157 global $gblDateFmt, $gblTimeFmt, $gblUserName, $PHP_SELF,
158 $secHash, $gblVersion, $html,
159 $gblLogin,$gblPasswd;
160
161 $url = $PHP_SELF."?relogin=";
162 if (isset($secHash) && $secHash != "") {
163 $url .= $secHash;
164 } else {
165 $url .= md5($gblLogin.$gblPasswd);
166 }
167 if ( ( (isset($gblLogin) && $gblLogin != "") ||
168 (!isset($gblLogin) || $gblLogin == "")
169 ) && ($gblPasswd == "" || !isset($gblPasswd))) {
170 $url_title="login";
171 $url .= "&force_login=1";
172 } else {
173 $url_title="relogin";
174 }
175 include("$html/footer.html");
176
177 # global $debug;
178 # if ($debug) print $debug;
179 } // end function EndHTML
180
181 //////////////////////////////////////////////////////////////////
182
183 function DetailPage($fsRoot,$relDir,$fn) {
184
185 global $gblEditable, $gblImages,
186 $gblDateFmt, $gblTimeFmt,
187 $gblPermNote,
188 $webRoot, $html,
189 $HTTP_SERVER_VARS ;
190 $self = $HTTP_SERVER_VARS["PHP_SELF"] ;
191
192 $relPath = $relDir . "/" . $fn ;
193 $fsPath = $fsRoot . $relPath ;
194 $fsDir = $fsRoot . $relDir ;
195
196 $exists = file_exists($fsPath) ;
197 $ext = strtolower(strrchr($relPath,".")) ;
198 $editable = ( $ext=="" || strstr(join(" ",$gblEditable),$ext)) &&
199 check_perm($relPath,trperm_w);
200 $writable = is_writeable($fsPath) && check_perm($relPath,trperm_w) ;
201 $writable_dir = is_writeable($fsDir) && check_perm($relDir,trperm_w) ;
202 $file_lock = CheckLock($fsPath);
203
204 if (!$editable && !$exists)
205 Error("Creation denied","Can't create <tt>$relPath</tt>") ;
206 if (!$exists && !$writable_dir )
207 Error("Creation denied","Can't write in directory <tt>$relDir</tt> while creating <tt>$relPath</tt>for which user has permissions.",1);
208
209 $text = _("Use this page to view, modify or ") ;
210 if (is_dir($fsPath)) {
211 $text .=_("delete a directory on this ") ;
212 } else {
213 $text .= _("delete a single document on this ") ;
214 };
215 $text .= _("web site.") ;
216 $title = "("._("Detail Page").")" ;
217 StartHTML($title, $text) ;
218
219 print "<H3>".$relDir.$fn."</H3>";
220
221 if ($exists) { // get file info
222 $fsize = filesize($fsPath) ;
223 $fmodified = date("$gblDateFmt $gblTimeFmt", filemtime($fsPath)) ;
224 $faccessed = date("$gblDateFmt $gblTimeFmt", fileatime($fsPath)) ;
225 $fuid=fileowner($fsPath);
226 $fgid=filegroup($fsPath);
227 $userinfo = posix_getpwuid($fuid);
228 $grpinfo = posix_getgrgid($fgid);
229
230 include("$html/DetailPage-file.html");
231 }
232
233 if ( !is_dir($fsPath) && $editable && ($writable || !$exists) && !$file_lock ) {
234 $fh = fopen($fsPath,"a+") ;
235 rewind($fh) ;
236 $fstr = fread($fh,filesize($fsPath)) ;
237 fclose($fh) ;
238 $fstr = htmlentities( $fstr ) ;
239
240 include("$html/DetailPage-edit.html");
241 }
242 if ( !$file_lock && $ext!="" && strstr(join(' ',$gblImages),$ext) ) {
243 $info = getimagesize($fsPath) ;
244 $tstr = "<IMG SRC=\"$self?A=V&D=".urlpath(dirname($relPath))."&F=".urlpath(basename($relPath))."\" BORDER=0 " ;
245 $tstr .= $info[3] . " ALT=\"" . $fn . " - " ;
246 $tstr .= (int)(($fsize+1023)/1024) . "Kb\">" ;
247 // echo htmlentities($tstr) . "<BR><BR>" . $tstr ;
248 echo $tstr ;
249 }
250
251
252 print '<FORM ACTION="'.$self.'" METHOD="POST">
253 <INPUT TYPE="HIDDEN" NAME="DIR" VALUE="'.$relDir.'">
254 <INPUT TYPE="HIDDEN" NAME="FN" VALUE="'.$fn.'">
255 <INPUT TYPE="SUBMIT" NAME="POSTACTION" VALUE="CANCEL"><BR>
256 ';
257
258 if ($file_lock && check_perm($relDir.$fn,trperm_w)) {
259 include("$html/DetailPage-unlock.html");
260 } // file_lock
261
262 if (substr($fn,0,4) == ".del") {
263 $action="UNDELETE";
264 $desc="undelete previously deleted file";
265 } else {
266 $action="DELETE";
267 $desc="delete";
268 }
269
270 if ($exists && $writable) {
271 include("$html/DetailPage-undelete.html");
272 include("$html/DetailPage-rename.html");
273
274 }
275
276 if (check_perm($relDir.$fn,$gblPermNote)) {
277 include("$html/DetailPage-note.html");
278 }
279
280 print "</FORM>";
281
282 $name=basename("$fsDir/$fn");
283 $logname=dirname("$fsDir/$fn")."/.log/$name";
284 $bakdir=dirname("$fsDir/$fn")."/.bak";
285 if (file_exists($logname)) {
286 $log=fopen($logname,"r");
287 $cl1=" class=LST"; $cl2="";
288 $logarr = array();
289 while($line = fgetcsv($log,512,"\t")) {
290 $cl=$cl1; $cl1=$cl2; $cl2=$cl;
291 array_unshift($logarr,array($cl,$line[0],$line[1],$line[2],$line[3]));
292 }
293 fclose($log);
294 if (is_dir("$fsDir/$fn")) {
295 $whatis="DIRECTORY";
296 } else {
297 $whatis="FILE";
298 }
299 print "<hr><br><b>CHANGES TO THIS $whatis</b><br><table border=0 width=100%>\n";
300 $bakcount = 0; // start from 0, skip fist backup (it's current)
301 while ($e = array_shift($logarr)) {
302 if (strstr($e[4],"upload")) {
303 if (file_exists("$bakdir/$bakcount/$name")) {
304 $e[4]="<a href=\"$webRoot".urlpath(dirname($relPath)."/.bak/$bakcount/$name")."\">$e[4]</a>";
305 }
306 $bakcount++;
307 }
308 print "<tr><td$e[0]>$e[1]</td><td$e[0]>$e[2]</td><td$e[0]>$e[3]</td><td$e[0]>$e[4]</td></tr>\n";
309 }
310 print "</table>";
311 }
312
313 EndHTML() ;
314
315 } // end function DetailPage
316
317 //////////////////////////////////////////////////////////////////
318
319 function DisplayCode($fsRoot,$relDir,$fn) {
320
321 $path = $fsRoot . $relDir . "/" . $fn ;
322
323 if (!file_exists($path)) Error("File not found",$path) ;
324
325 StartHTML("(".$relDir."/".$fn.")","");
326
327 $tstr = join("",file($path)) ;
328 $tstr = htmlentities($tstr) ;
329
330 // Tabs
331 $tstr = str_replace(chr(9)," ",$tstr) ;
332
333 // ASP tags & XML/PHP tags
334 $aspbeg = "<SPAN CLASS=XML>&lt;%</SPAN><SPAN CLASS=BLK>" ;
335 $aspend = "</SPAN><SPAN CLASS=XML>%&gt;</SPAN>" ;
336 $tstr = str_replace("&lt;%",$aspbeg,$tstr) ;
337 $tstr = str_replace("%&gt;",$aspend,$tstr) ;
338
339 $xmlbeg = "<SPAN CLASS=XML>&lt;?</SPAN><SPAN CLASS=BLK>" ;
340 $xmlend = "</SPAN><SPAN CLASS=XML>?&gt;</SPAN>" ;
341 $tstr = str_replace("&lt;?",$xmlbeg,$tstr) ;
342 $tstr = str_replace("?&gt;",$xmlend,$tstr) ;
343
344 // C style comment
345 $tstr = str_replace("/*","<SPAN CLASS=REM>/*",$tstr) ;
346 $tstr = str_replace("*/","*/</SPAN>",$tstr) ;
347
348 // HTML comments
349 $tstr = str_replace("&lt;!--","<I CLASS=RED>&lt;!--",$tstr) ;
350 $tstr = str_replace("--&gt;","--&gt;</I>",$tstr) ;
351
352 echo "<PRE>" ;
353
354 $tstr = split("\n",$tstr) ;
355 for ($i = 0 ; $i < sizeof($tstr) ; ++$i) {
356 // add line numbers
357 echo "<BR><EM>" ;
358 echo substr(("000" . ($i+1)), -4) . ":</EM> " ;
359 $line = $tstr[$i] ;
360 // C++ style comments
361 $pos = strpos($line,"//") ;
362 // exceptions: two slashes aren't a script comment
363 if (strstr($line,"//") &&
364 ! ($pos>0 && substr($line,$pos-1,1)==":") &&
365 ! (substr($line,$pos,8) == "//--&gt;") &&
366 ! (substr($line,$pos,9) == "// --&gt;")) {
367 $beg = substr($line,0,strpos($line,"//")) ;
368 $end = strstr($line,"//") ;
369 $line = $beg."<SPAN CLASS=REM>".$end."</SPAN>";
370 }
371 // shell & asp style comments
372 $first = substr(ltrim($line),0,1) ;
373 if ($first == "#" || $first == "'") {
374 $line = "<SPAN CLASS=REM>".$line."</SPAN>";
375 }
376 print($line) ;
377 } // next i
378
379 echo "</PRE>" ;
380
381 EndHTML() ;
382
383 } // end function DisplayCode
384
385 //////////////////////////////////////////////////////////////////
386
387 function MockIcon($txt) {
388 $tstr = "<SPAN CLASS=MCK>" ;
389
390 switch (strtolower($txt)) {
391 case ".bmp" :
392 case ".gif" :
393 case ".jpg" :
394 case ".jpeg":
395 case ".tif" :
396 case ".tiff":
397 $d = 176 ;
398 break ;
399 case ".doc" :
400 $d = 50 ;
401 break ;
402 case ".exe" :
403 case ".bat" :
404 $d = 255 ;
405 break ;
406 case ".bas" :
407 case ".c" :
408 case ".cc" :
409 case ".src" :
410 $d = 255 ;
411 break ;
412 case "file" :
413 $d = 51 ;
414 break ;
415 case "fldr" :
416 $d = 48 ;
417 break ;
418 case ".htm" :
419 case ".html":
420 case ".asa" :
421 case ".asp" :
422 case ".cfm" :
423 case ".php3":
424 case ".php" :
425 case ".phtml" :
426 case ".shtml" :
427 $d = 182 ;
428 break ;
429 case ".pdf" :
430 $d = 38 ;
431 break;
432 case ".txt" :
433 case ".ini" :
434 $d = 52 ;
435 break ;
436 case ".xls" :
437 $d = 252 ;
438 break ;
439 case ".zip" :
440 case ".arc" :
441 case ".sit" :
442 case ".tar" :
443 case ".gz" :
444 case ".tgz" :
445 case ".Z" :
446 $d = 59 ;
447 break ;
448 case "view" :
449 $d = 52 ;
450 break ;
451 case "up" :
452 $d = 199 ;
453 break ;
454 case "blank" :
455 return "&nbsp;&nbsp;</SPAN>" ;
456 break ;
457 default :
458 $d = 51 ;
459 }
460
461 return $tstr . chr($d) . "</SPAN>" ;
462 } // end function MockIcon
463
464 //////////////////////////////////////////////////////////////////
465
466 function GifIcon($txt = "") {
467 global $gblIconLocation, $gblImages ;
468
469 switch (strtolower($txt)) {
470 case ".doc" :
471 $d = "layout.gif" ;
472 break ;
473 case ".exe" :
474 case ".bat" :
475 $d = "screw2.gif" ;
476 break ;
477 case ".bas" :
478 case ".c" :
479 case ".cc" :
480 case ".src" :
481 $d = "c.gif" ;
482 break ;
483 case "file" :
484 $d = "generic.gif" ;
485 break ;
486 case "fldr" :
487 $d = "dir.gif" ;
488 break ;
489 case ".phps" :
490 $d = "phps.gif" ;
491 break ;
492 case ".php3" :
493 $d = "php3.gif" ;
494 break ;
495 case ".htm" :
496 case ".html":
497 case ".asa" :
498 case ".asp" :
499 case ".cfm" :
500 case ".php3":
501 case ".php" :
502 case ".phtml" :
503 case ".shtml" :
504 $d = "world1.gif" ;
505 break ;
506 case ".pdf" :
507 $d = "pdf.gif" ;
508 break;
509 case ".txt" :
510 case ".ini" :
511 $d = "text.gif" ;
512 break ;
513 case ".xls" :
514 $d = "box2.gif" ;
515 break ;
516 case ".zip" :
517 case ".arc" :
518 case ".sit" :
519 case ".tar" :
520 case ".gz" :
521 case ".tgz" :
522 case ".Z" :
523 $d = "compressed.gif" ;
524 break ;
525 case "view" :
526 $d = "index.gif" ;
527 break ;
528 case "up" :
529 $d = "back.gif" ;
530 break ;
531 case "blank" :
532 $d = "blank.gif" ;
533 break ;
534 case "checkout":
535 $d = "box2.gif";
536 break;
537 case "checkin":
538 $d = "hand.up.gif";
539 break;
540 case "locked":
541 $d = "screw2.gif";
542 break;
543 case "note":
544 $d = "quill.gif";
545 break;
546 default :
547 if (in_array(strtolower($txt),$gblImages)) {
548 $d = "image2.gif" ;
549 } else {
550 $d = "generic.gif" ;
551 }
552 }
553
554
555 return "<IMG SRC=\"$gblIconLocation" . $d . "\" BORDER=0>" ;
556 } // end function GifIcon
557
558 //////////////////////////////////////////////////////////////////
559
560 function Navigate($fsRoot,$relDir) {
561
562 global $gblEditable, $gblIcon, $gblModDays, $webRoot, $gblHide,
563 $gblIgnoreUnknownFileType, $gblRepositoryDir,
564 $gblLogin, $gblUserName, $gblDateFmt, $gblTimeFmt,
565 $gblPermNote,
566 $fsRealmDir, $realm, $realm_sep,
567 $html, $realm_config,
568 $HTTP_GET_VARS, $HTTP_SERVER_VARS;
569
570 $self = $HTTP_SERVER_VARS["PHP_SELF"] ;
571
572 $relDir = chopsl($relDir)."/";
573 $fsDir = $fsRoot.$relDir; // current directory
574
575 if (!is_dir($fsDir)) Error("Dir not found","Directory <tt>$relDir<tt> not found on filesystem at <tt>$fsDir</tt>",1) ;
576
577 global $debug;
578 $debug .= "[$gblLogin|$relDir] before >";
579
580 if (! check_perm($relDir,trperm_b))
581 Error("Access denied","User <tt>$gblLogin</tt> tried to access <tt>$relDir</tt> without valid trustee.",1);
582 $debug .= "< afeter";
583
584 $hide_items=",$gblHide,";
585
586 $dirList = array();
587 $fileList = array();
588
589 // read directory contents
590 if ( !($dir = @opendir($fsDir)) )
591 Error("Read Access denied",$relDir,1) ;
592 while ($item = readdir($dir)) {
593 if ( substr($item,0,1) == "." || strstr($hide_items,",$item,") ) continue ;
594 if (is_dir($fsDir.$item) || is_link ($fsDir.$item)) {
595 if (check_perm($relDir.$item,trperm_b)) {
596 $dirList[$item] = $item ;
597 $dirNote[$item] = ReadNote($fsDir.$item);
598 }
599 } else if (is_file($fsDir.$item)) {
600 if (check_perm($relDir.$item,trperm_r)) {
601 $fileList[$item] = $item ;
602 $fileDate[$item] = filemtime($fsDir.$item) ;
603 $fileSize[$item] = filesize($fsDir.$item) ;
604 $fileNote[$item] = ReadNote($fsDir.$item);
605 }
606 } else {
607 if (! $gblIgnoreUnknownFileType) Error("File Type Error", "Item <tt>".$fsDir.$item."</tt> is not file, directory or link. If you want to ignore errors like this, set <tt>\$gblIgnoreUnknownFileType = 1</tt> in <tt>$realm_config</tt>.",1);
608 }
609 }
610 closedir($dir) ;
611
612 // scan deleted files
613 if ( HTTP_GET_VAR("show_deleted") == 1 && ($dir = @opendir("$fsDir/.del")) ) {
614 while ($item = readdir($dir)) {
615 if ( substr($item,0,1) == "." || strstr($hide_items,",$item,") || !check_perm($relDir.$item,trperm_w) ) continue ;
616 if (is_file($fsDir.".del/$item")) {
617 $fileList[$item] = ".del/$item" ;
618 $fileDate[$item] = filemtime($fsDir.".del/$item") ;
619 $fileSize[$item] = filesize($fsDir.".del/$item") ;
620 $fileNote[$item] = ReadNote($fsDir.".del/$item");
621 } else {
622 $dirList[$item] = ".del/$item" ;
623 $dirNote[$item] = ReadNote($fsDir.".del/$item");
624 }
625 }
626 closedir($dir) ;
627 }
628
629 $emptyDir = ! (sizeof($dirList) || sizeof($fileList)) ;
630
631 // start navigation page
632 $text = "Use this page to add, delete";
633 if (! isset($HTTP_GET_VARS["show_deleted"])) {
634 $text .= ", <a href=$self?D=".urlencode($relDir)."&show_deleted=1>undelete</a>";
635 }
636 $text .= " or revise files on this web site." ;
637 $text .= "<br>Examine list of files <a href=\"$self?A=Ch1\">changed in last day</a> or <a href=\"$self?A=Ch\">all changes</a>.";
638 StartHTML("(Navigate)",$text) ;
639
640 print "<TABLE BORDER=0 CELLPADDING=2 CELLSPACING=3 WIDTH=\"100%\">" ;
641
642 // updir (parent) bar
643 if (chopsl($fsDir) != chopsl($fsRoot)) {
644 $parent = dirname($relDir) ;
645 if ($parent == "") $parent = "/" ;
646
647 include("$html/Navigate-parent.html");
648 }
649
650 function plural($name,$count) {
651 $out="$count $name";
652 if ($count > 1) {
653 $out.="s";
654 }
655 return $out;
656 }
657
658 $dsort = HTTP_GET_VAR("dsort");
659 if (! isset($dsort)) $dsort = "name"; // default directory sort
660
661 $dsort_arr = array(
662 "name" => array ("rname", "note"),
663 "rname" => array ("name", "note"),
664 "note" => array ("name", "rnote"),
665 "rnote" => array ("name", "note")
666 );
667
668 $fsort = HTTP_GET_VAR("fsort");
669 if (! isset($fsort)) $fsort = "name"; // default directory sort
670
671 $fsort_arr = array(
672 "name" => array ("rname", "note", "date", "size"),
673 "rname" => array ("name", "note", "date", "size"),
674 "note" => array ("name", "rnote", "date", "size"),
675 "rnote" => array ("name", "note", "date", "size"),
676 "date" => array ("name", "note", "rdate", "size"),
677 "rdate" => array ("name", "note", "date", "size"),
678 "size" => array ("name", "note", "date", "rsize"),
679 "rsize" => array ("name", "note", "date", "size")
680 );
681
682 $D="D=".urlencode($relDir);
683
684 function self_args($arr = array()) {
685 global $self;
686 $arg = implode("&",$arr);
687 if ($arg) {
688 return $self."?".$arg;
689 } else {
690 return $self;
691 }
692 }
693 // output subdirs
694 if (sizeof($dirList) > 0) {
695 switch ($dsort) {
696 case "note":
697 $items = $dirNote;
698 asort($items);
699 break;
700 case "rnote":
701 $items = $dirNote;
702 arsort($items);
703 break;
704 case "rname":
705 $items = $dirList;
706 krsort($items);
707 break;
708 default:
709 $items = $dirList;
710 ksort($items);
711 break;
712 }
713 $durl = self_args(array($D,"dsort=".$dsort_arr[$dsort][0]));
714 $nurl = self_args(array($D,"dsort=".$dsort_arr[$dsort][1]));
715
716 include("$html/Navigate-dirHeader.html");
717
718 while (list($key,$dir) = each($items)) {
719
720 $dir = $dirList[$key];
721
722 $info_url=self_args(array("A"=>"A=E", "F"=>"F=".urlencode($dir), "D"=>$D));
723 if (substr($dir,0,5) == ".del/") {
724 $dir = substr($dir,5,strlen($dir)-5);
725 $deleted = " <a href=\"$info_url#undelete\"><SPAN CLASS=deleted TITLE=\"deleted\">deleted</span></a>";
726 } else {
727 $deleted = "";
728 }
729
730 $dir_url=$self."?D=".urlencode(chopsl($relDir)."/".$dir);
731 if (check_perm($relDir.$dir,$gblPermNote)) {
732 $note_html="<a href=\"$info_url#note\">".$gblIcon("note")."</a>".$dirNote[$key];
733 } else {
734 $note_html=$dirNote[$key];
735 }
736
737 $dir_html = isBlank($dir,"directory");
738
739 include("$html/Navigate-dirEntry.html");
740
741 } // iterate over dirs
742 } // end if no dirs
743
744 $durl = self_args(array($D,"fsort=".$fsort_arr[$fsort][0]));
745 $nurl = self_args(array($D,"fsort=".$fsort_arr[$fsort][1]));
746 $uurl = self_args(array($D,"fsort=".$fsort_arr[$fsort][2]));
747 $surl = self_args(array($D,"fsort=".$fsort_arr[$fsort][3]));
748
749 $html_uri = $webRoot;
750
751 if (substr($relDir,0,1) == "/") {
752 $html_uri .= substr($relDir,1,strlen($relDir)-1);
753 } else {
754 $html_uri .= $relDir;
755 }
756
757 include("$html/Navigate-fileHeader.html");
758
759 if (sizeof($fileList) > 0) {
760 switch ($fsort) {
761 case "note":
762 $items = $fileNote;
763 asort($items);
764 break;
765 case "rnote":
766 $items = $fileNote;
767 arsort($items);
768 break;
769 case "date":
770 $items = $fileDate;
771 asort($items);
772 break;
773 case "rdate":
774 $items = $fileDate;
775 arsort($items);
776 break;
777 case "size":
778 $items = $fileSize;
779 asort($items);
780 break;
781 case "rsize":
782 $items = $fileSize;
783 arsort($items);
784 break;
785 case "rname":
786 $items = $fileList;
787 krsort($items);
788 break;
789 default:
790 $items = $fileList;
791 ksort($items);
792 break;
793 }
794
795 while (list($key,$file) = each($items)) {
796 $file = $fileList[$key];
797 $path = $fsDir."/".$file ;
798 $mod = $fileDate[$key];
799 $sz = $fileSize[$key];
800
801 if ($sz >= 10240) {
802 $sz = (int)(($sz+1023)/1024) . " k" ;
803 } else {
804 $sz .= " " ;
805 } // end size
806
807 $a = $b = "" ;
808
809 $info_url=$self."?A=E&F=".urlencode($file)."&D=".urlencode($relDir);
810
811 if ( ($mod + $gblModDays*86400) > time() ) {
812 $a = "<SPAN CLASS=RED TITLE=\"Newer" ;
813 $a .= " than $gblModDays days\"> * </SPAN>" ;
814 }
815
816 $file_lock=CheckLock($path);
817
818 $file_url_html="<A HREF=\"$self?A=V&D=".urlencode($relDir)."&F=".urlencode($file);
819 $file_url_html.="\" TITLE=\"View file\">" ;
820
821 if (substr($file,0,5) != ".del/") {
822 $file_url_html .= isBlank($file) . "</A>" . $a ;
823 } else {
824 $file_url_html .= isBlank(substr($file,5,strlen($file)-5)) . "</a> <a href=\"$info_url#undelete\"><SPAN CLASS=deleted TITLE=\"deleted\">deleted</span></a>";
825 }
826
827 if (check_perm($relDir.$file,$gblPermNote)) {
828 $note_html="<a href=\"$info_url#note\">".$gblIcon("note")."</a>".$fileNote[$key];
829 } else {
830 $note_html=$fileNote[$key];
831 }
832
833 $ext = strtolower(strrchr($file,".")) ;
834
835 if ($file_lock) {
836 if ($file_lock == $gblUserName) {
837 $b.="<A HREF=\"$self?A=Ci&D=".urlencode($relDir)."&F=".urlencode($file);
838 $b.="\" TITLE=\"Checkin (update) file on server\">" ;
839 $file_url_html=$b;
840 $b.=$gblIcon("checkin")."</A>" ;
841 $b.= $gblIcon("blank");
842 $file_url_html.="$file</a> $a";
843 $note_html = $gblIcon("blank")."<b>Please check-in (update) this file</b>";
844 } else {
845 $b = $gblIcon("locked");
846 $b.= $gblIcon("blank");
847 $note_html = $gblIcon("blank")."<b>File locked by $file_lock</b>";
848 $file_url_html = "$file $a";
849 }
850 } else {
851 if (check_perm($relDir.$file,trperm_w)) {
852 $b.="<A HREF=\"$self?A=Co&D=".urlencode($relDir)."&F=".urlencode($file);
853 $b.="\" TITLE=\"Checkout file for edit\">" ;
854 $b.=$gblIcon("checkout")."</A>";
855 }
856
857 if ( $ext=="" || strstr(join(" ",$gblEditable),$ext) ) {
858 $b.="<A HREF=\"$self?A=C&D=".urlencode($relDir)."&F=".urlencode($file);
859 $b.="\" TITLE=\"List contents\">" ;
860 $b.=$gblIcon("view")."</A>" ;
861 } else {
862 $b.= $gblIcon("blank");
863 }
864 }
865
866 $mod = date("$gblDateFmt $gblTimeFmt",$mod);
867
868 include("$html/Navigate-fileEntry.html");
869
870 } // iterate over files
871 } else { // end if no files
872 include("$html/Navigate-noFiles.html");
873 }
874
875 if ($emptyDir && $relDir != "") {
876 include("$html/Navigate-emptyDir.html");
877 } // end if emptyDir
878
879 include("$html/Navigate-hr.html");
880
881 if (file_exists("$fsRealmDir/$realm".$realm_sep."info.inc")) {
882 print "<TR><TD></TD><TD COLSPAN=5>";
883 include("$fsRealmDir/$realm".$realm_sep."info.inc");
884 print "</TD></TR>";
885 include("$html/Navigate-hr.html");
886 } elseif (file_exists("$gblRepositoryDir/.info.inc")) {
887 print "<TR><TD></TD><TD COLSPAN=5>";
888 include("$gblRepositoryDir/.info.inc");
889 print "</TD></TR>";
890 include("$html/Navigate-hr.html");
891 }
892
893 include("$html/Navigate-createNew.html");
894
895 print "</TABLE>";
896
897 EndHTML() ;
898 } // end function Navigate
899
900 //////////////////////////////////////////////////////////////////
901
902 function UploadPage($fsRoot, $relDir, $filename="") {
903
904 global $html, $HTTP_SERVER_VARS;
905
906 $self = $HTTP_SERVER_VARS["PHP_SELF"] ;
907 include("$html/UploadPage.html");
908
909 } // end function UploadPage
910
911 //////////////////////////////////////////////////////////////////
912
913 // Error with sysadmin flag are reported to error_log or hidden from
914 // users
915
916 function Error($title,$text="",$sysadmin=0,$no_404=0) {
917 global $gblSeparateAdminMessages,
918 $gblMailAdminMessages,$realm,
919 $HTTP_SERVER_VARS;
920 if (! headers_sent() && ! $no_404) header("HTTP/1.0 404 Not Found");
921 if ($sysadmin) {
922 if ($gblSeparateAdminMessages) {
923 $user="Your administrator ";
924 if ($gblMailAdminMessages) {
925 mail($HTTP_SERVER_VARS["SERVER_ADMIN"], "docman $realm error message: $title", strip_tags($text));
926 $user.="<tt>".$HTTP_SERVER_VARS["SERVER_ADMIN"]."</tt> ";
927 }
928 $user.="has been notified about error" ;
929 StartHTML("($title)",$user);
930 echo "<P ALIGN=center>Hit your Browser's Back Button.</P>" ;
931 EndHTML();
932 error_log("docman $realm: ".strip_tags($text));
933 } else {
934 StartHTML("ADMIN: ".$title,$text) ;
935 echo "<P ALIGN=center>Hit your Browser's Back Button.</P>" ;
936 EndHTML();
937 }
938 } else {
939 StartHTML("(".$title.")",$text) ;
940 echo "<P ALIGN=center>Hit your Browser's Back Button.</P>" ;
941 EndHTML() ;
942 }
943 exit ;
944 } // end function Error
945
946 function LogIt($target,$msg, $changelog=0) {
947
948 global $gblDateFmt, $gblTimeFmt, $gblUserName, $gblFsRoot;
949
950 $dir=dirname($target);
951 if (! file_exists($dir."/.log")) {
952 if (! @mkdir($dir."/.log",0700)) Error("docman installation problem","can't create log directory <tt>$dir/.log</tt>",1);
953 }
954 $file=basename($target);
955
956 $log=fopen("$dir/.log/$file","a+");
957 fputs($log,date("$gblDateFmt\t$gblTimeFmt").
958 "\t$gblUserName\t$msg\n");
959 fclose($log);
960
961 if (! $changelog) return;
962
963 $log=fopen("$gblFsRoot/.changelog","a+");
964 if (substr($target,0,strlen($gblFsRoot)) == $gblFsRoot)
965 $target=substr($target,strlen($gblFsRoot),strlen($target)-strlen($gblFsRoot));
966 $msg=str_replace("\t"," ",$msg);
967 fputs($log,time()."\t$target\t$gblUserName\t$msg\n");
968 fclose($log);
969
970 // FIX: implement e-mail notification based on $changelog
971 // permission
972 }
973
974
975 //////////////////////////////////////////////////////////////////
976
977 function WriteNote($target,$msg) {
978
979 $target=stripSlashes($target);
980 $dir=dirname($target);
981 if (! file_exists($dir."/.note")) {
982 mkdir($dir."/.note",0700);
983 }
984 $file=basename($target);
985
986 $note=fopen("$dir/.note/$file","w");
987 if (! $note) {
988 Error("Error writing note","Can't open note file <tt>$dir/.note/$file</tt> for writing",1);
989 }
990 fputs($note,"$msg\n");
991 fclose($note);
992
993 LogIt($target,"added note $msg");
994
995 }
996
997 function ReadNote($target) {
998
999 $target=stripSlashes($target);
1000 $dir=dirname($target);
1001 $file=basename($target);
1002 $msg="";
1003 if (file_exists($dir."/.note/$file")) {
1004 $note=fopen("$dir/.note/$file","r");
1005 $msg=fgets($note,4096);
1006 fclose($note);
1007 }
1008 return HtmlSpecialChars(StripSlashes($msg));
1009
1010 }
1011
1012 //////////////////////////////////////////////////////////////////
1013
1014 function MoveTo($source,$folder) {
1015
1016 $source=stripSlashes($source);
1017 $file=basename($source);
1018 if (! file_exists($folder)) {
1019 mkdir($folder,0700);
1020 }
1021 if (file_exists($source)) {
1022 rename($source,"$folder/$file");
1023 }
1024 }
1025
1026 //////////////////////////////////////////////////////////////////
1027
1028 function Lock($target) {
1029
1030 global $gblUserName;
1031
1032 $target=stripSlashes($target);
1033 $dir=dirname($target);
1034 if (! file_exists($dir."/.lock")) {
1035 mkdir($dir."/.lock",0700);
1036 }
1037 $file=basename($target);
1038
1039 if (file_exists("$dir/.lock/$file")) {
1040 LogIt($target,"attempt to locked allready locked file!");
1041 } else {
1042 $lock=fopen("$dir/.lock/$file","w");
1043 fputs($lock,"$gblUserName\n");
1044 fclose($lock);
1045
1046 LogIt($target,"file locked");
1047 }
1048
1049 }
1050
1051 function CheckLock($target) {
1052
1053 $target=stripSlashes($target);
1054 $dir=dirname($target);
1055 $file=basename($target);
1056 $msg=0;
1057 if (file_exists($dir."/.lock/$file")) {
1058 $lock=fopen("$dir/.lock/$file","r");
1059 $msg=fgets($lock,4096);
1060 fclose($lock);
1061 }
1062 return chop($msg);
1063
1064 }
1065
1066 function Unlock($target) {
1067
1068 $target=stripSlashes($target);
1069 $dir=dirname($target);
1070 $file=basename($target);
1071 if (file_exists($dir."/.lock/$file")) {
1072 unlink("$dir/.lock/$file");
1073 LogIt($target,"file unlocked");
1074 } else {
1075 LogIt($target,"attempt to unlocked non-locked file!");
1076 }
1077
1078 }
1079
1080 //////////////////////////////////////////////////////////////////
1081
1082 function urlpath($url) {
1083 $url=urlencode(StripSlashes("$url"));
1084 $url=str_replace("%2F","/",$url);
1085 $url=str_replace("+","%20",$url);
1086 return($url);
1087 }
1088
1089 //////////////////////////////////////////////////////////////////
1090
1091 function safe_rename($fromdir,$fromfile,$tofile) {
1092
1093 global $gblNumBackups;
1094
1095 function try_rename($from,$to) {
1096 # print "$from -> $to\n";
1097 if (file_exists($from) && is_writeable(dirname($to))) {
1098 return rename($from,$to);
1099 } else {
1100 return 0;
1101 }
1102 }
1103
1104 function try_dir($todir) {
1105 if (! file_exists($todir)) {
1106 @mkdir($todir,0700);
1107 }
1108 }
1109
1110 $to="$fromdir/$tofile";
1111 $todir=dirname($to);
1112 $tofile=basename($to);
1113
1114 # print "<pre>$fromdir / $fromfile -> $todir / $tofile\n\n";
1115
1116 if (! try_rename("$fromdir/$fromfile","$todir/$tofile")) Error("Rename error","Can't rename file <tt>$fromfile</tt> to <tt>$tofile</tt>",1);
1117 try_dir("$todir/.log");
1118 try_rename("$fromdir/.log/$fromfile","$todir/.log/$tofile");
1119 try_dir("$todir/.note");
1120 try_rename("$fromdir/.note/$fromfile","$todir/.note/$tofile");
1121 try_dir("$todir/.lock");
1122 try_rename("$fromdir/.lock/$fromfile","$todir/.lock/$tofile");
1123 try_dir("$todir/.bak");
1124 for($i=0;$i<=$gblNumBackups;$i++) {
1125 try_rename("$fromdir/.bak/$i/$fromfile","$todir/.bak/$i/$tofile");
1126 }
1127 }
1128
1129
1130 //////////////////////////////////////////////////////////////////
1131
1132 // recursivly delete directory
1133
1134 function rrmdir($dir) {
1135 $handle=opendir($dir);
1136 while ($file = readdir($handle)) {
1137 if ($file != "." && $file != "..") {
1138 if (is_dir("$dir/$file"))
1139 rrmdir("$dir/$file");
1140 else
1141 if (! @unlink("$dir/$file")) return(0);
1142 }
1143 }
1144 closedir($handle);
1145 return @rmdir($dir);
1146 }
1147
1148 //////////////////////////////////////////////////////////////////
1149
1150 function DisplayChangeLog($day) {
1151
1152 global $gblFsRoot, $gblDateFmt, $gblTimeFmt,
1153 $HTTP_SERVER_VARS;
1154
1155 $self = $HTTP_SERVER_VARS["PHP_SELF"];
1156
1157 if (!file_exists("$gblFsRoot/.changelog")) return;
1158 $log=fopen("$gblFsRoot/.changelog","r");
1159 $logarr = array();
1160 while($line = fgetcsv($log,512,"\t")) {
1161 while (sizeof($line) > 4) {
1162 $tmp = array_pop($line);
1163 $line.=" $tmp";
1164 }
1165 if ($day!=1 || ($day==1 && (time()-$line[0] < 24*60*60))) {
1166 array_unshift($logarr,array($line[0],$line[1],$line[2],$line[3]));
1167 }
1168 }
1169 fclose($log);
1170 $cl1=" class=LST"; $cl2="";
1171 print "<table border=0 width=100%>\n";
1172 while ($e = array_shift($logarr)) {
1173 $cl=$cl1; $cl1=$cl2; $cl2=$cl;
1174 $date = date($gblDateFmt, $e[0]);
1175 $time = date($gblTimeFmt, $e[0]);
1176 $dir = dirname($e[1]);
1177 $file = basename($e[1]);
1178 print "<tr><td$cl>$date</td><td$cl>$time</td><td$cl><a href=\"$HTTP_SERVER_VARS[PHP_SELF]?D=".urlencode($dir)."\">$dir</a>/$file</td><td$cl>$e[2]</td><td$cl>$e[3]</td></tr>\n";
1179 }
1180 print "</table>";
1181 print "<p>".GifIcon("up")." Back to <a href=\"$self\">front page</a>.</p>";
1182 }
1183
1184 //////////////////////////////////////////////////////////////////
1185
1186 function Download($path,$force=0) {
1187 global $HTTP_SERVER_VARS,$mime_type;
1188
1189 // default transfer-encoding
1190 $encoding = "binary";
1191
1192 // known transfer encodings
1193 $encoding_ext = array(
1194 "gz" => "x-gzip",
1195 "Z" => "x-compress",
1196 );
1197
1198 $file = basename($path);
1199 $size = filesize($path);
1200
1201 $ext_arr = explode(".",$file);
1202 $ext = array_pop($ext_arr);
1203 if (isset($encoding_ext[$ext])) {
1204 $encoding = $encoding_ext[$ext];
1205 $ext = array_pop($ext_arr);
1206 }
1207
1208 if ($force || !isset($mime_type[$ext])) {
1209 header("Content-Type: application/force-download");
1210 } else {
1211 header("Content-Type: $mime_type[$ext]");
1212 }
1213
1214 // IE5.5 just downloads index.php if we don't do this
1215 if(preg_match("/MSIE 5.5/", $HTTP_SERVER_VARS["HTTP_USER_AGENT"])) {
1216 header("Content-Disposition: filename=$file");
1217 } else {
1218 header("Content-Disposition: attachment; filename=$file");
1219 }
1220
1221 header("Content-Transfer-Encoding: $encoding");
1222 $fh = fopen($path, "r");
1223 fpassthru($fh);
1224 }
1225
1226
1227 //////////////////////////////////////////////////////////////////
1228
1229 function chopsl($path) {
1230 $path=str_replace("//","/",$path);
1231 if (substr($path,strlen($path)-1,1) == "/") $path=substr($path,0,strlen($path)-1);
1232 return $path;
1233 }
1234
1235 //////////////////////////////////////////////////////////////////
1236 /*
1237 Document manager ACL implementation
1238
1239 Written by Dobrica Pavlinusic <dpavlin@rot13.org>
1240
1241 Based on ideas from Linux trustees code
1242 by Vyacheslav Zavadsky <zavadsky@braysystems.com>
1243 */
1244
1245 define('trmask_not',1 << 0);
1246 define('trmask_clear',1 << 1);
1247 define('trmask_deny',1 << 2);
1248 define('trmask_one_level',1 << 3);
1249 define('trmask_group',1 << 4);
1250
1251 define('trperm_r',1 << 5);
1252 define('trperm_w',1 << 6);
1253 define('trperm_b',1 << 7);
1254 define('trperm_n',1 << 8);
1255
1256 $trustee_a2n = array(
1257 '!' => trmask_not,
1258 'C' => trmask_clear,
1259 'D' => trmask_deny,
1260 'O' => trmask_one_level,
1261 '+' => trmask_group,
1262 'R' => trperm_r,
1263 'W' => trperm_w,
1264 'B' => trperm_b,
1265 'N' => trperm_n,
1266 );
1267
1268 // debugging function
1269 function display_trustee($t) {
1270 global $trustee_a2n;
1271 $out="";
1272 foreach ($trustee_a2n as $c=>$v) {
1273 if ($t & $v) $out.=$c;
1274 }
1275 return $out;
1276 }
1277 function display_all_trustee() {
1278 global $trustees;
1279 print "trustee dump:<br>\n";
1280 foreach ($trustees as $path => $tr) {
1281 print "<br><tt>$path</tt>\n";
1282 foreach ($tr as $user=>$perm) {
1283 print "$user == $perm (".display_trustee($perm).")<br>\n";
1284 }
1285 }
1286 }
1287
1288 function init_trustee() {
1289
1290 global $trustee_conf,$trustee_php,$trustee_a2n,$groups,$trustees;
1291
1292 // do we need to re-create compiled trustees?
1293 if (! file_exists($trustee_conf)) {
1294 # $error="$trustee_conf doesn't exits";
1295 return 0; # don't use trustees
1296 } elseif (file_exists($trustee_conf) && !is_readable($trustee_conf)) {
1297 $error="<tt>$trustee_conf</tt> exits, but is not readable";
1298 } elseif (!is_writable(dirname($trustee_php))) {
1299 $error="<tt>".dirname($trustee_php)."</tt> must be writable by web server user";
1300 } elseif (file_exists($trustee_php) && !is_writable($trustee_php)) {
1301 $error="trustees cache file <tt>$trustee_php</tt> exists, but is not writable by web server";
1302 } elseif (@filemtime($trustee_conf) >= @filemtime($trustee_php)) {
1303 $fp_php=@fopen($trustee_php,"w");
1304 fputs($fp_php,"<?php // don't edit by hand!\n");
1305
1306 $fp_conf=fopen($trustee_conf,"r");
1307
1308 $groups_arr = array();
1309 $perm_arr = array();
1310
1311 $tr_arr = array();
1312
1313 while (! feof($fp_conf)) {
1314 $l = trim(fgets($fp_conf,4096));
1315 if (substr($l,0,1) == "+") { // no comment
1316 $arr=explode(":",$l);
1317 $groups_arr[$arr[0]] = str_replace(" ","",$arr[1]) ;
1318 } elseif (substr($l,0,1) != "#") {
1319 $arr=explode(":",$l);
1320 $path=array_shift($arr);
1321 if ($path == "") continue;
1322 $sep2="";
1323 while ($user=array_shift($arr)) {
1324 $perm=0;
1325 if (substr($user,0,1) == "+") {
1326 $perm|=trmask_group;
1327 $user=substr($user,1,strlen($user)-1);
1328 }
1329 $perm_ascii=array_shift($arr);
1330 for ($i=0;$i<strlen($perm_ascii);$i++) {
1331 $ch=strtoupper($perm_ascii[$i]);
1332 if (isset($trustee_a2n[$ch])) {
1333 $perm|=$trustee_a2n[$ch];
1334 } else {
1335 $error.="trustee error in line '$l' [Unknown modifier '$ch']<br>\n";
1336 }
1337 }
1338 if (isset($tr_arr[$path][$user])) {
1339 $tr_arr[$path][$user] |= $perm;
1340 } else {
1341 $tr_arr[$path][$user] = $perm;
1342 }
1343 }
1344 }
1345 }
1346
1347 fclose($fp_conf);
1348
1349 // save trustees
1350 $tr_out='$trustees = array (';
1351 $sep1="";
1352 while (list ($path, $tr) = each ($tr_arr)) {
1353 $tr_out.="$sep1\n\t'$path'=>array(";
1354 $sep2="";
1355 while (list($user,$perm)=each($tr)) {
1356 $tr_out.="$sep2\n\t\t'$user'=>$perm";
1357 $sep2=",";
1358 }
1359 $tr_out.="\n\t)";
1360 $sep1=",";
1361 }
1362 $tr_out.="\n);";
1363
1364 // save groups
1365 $gr_out='$groups = array (';
1366 $sep="";
1367 while (list ($group, $members) = each ($groups_arr)) {
1368 $gr_out.="$sep\n\t'";
1369 $gr_out.=substr($group,1,strlen($group)-1);
1370 $gr_out.="'=>array('".join("','",explode(",",$members))."')";
1371 $sep=",";
1372 }
1373 $gr_out.="\n);\n";
1374
1375 fputs($fp_php,$gr_out);
1376 fputs($fp_php,$tr_out);
1377 fputs($fp_php,"?>\n");
1378 fclose($fp_php);
1379 }
1380
1381 if (isset($error)) {
1382 Error("Trustee error",$error,1);
1383 } else {
1384 include_once("$trustee_php");
1385 }
1386
1387 return 1;
1388
1389 }//init_trustee
1390
1391 function in_group($user,$group) {
1392 global $groups;
1393 return in_array($user,$groups[$group]);
1394 }
1395
1396 // helper function
1397 function unroll_perm($u,$t,$perm,$one_level) {
1398
1399 if ($t & trmask_one_level && !$one_level) return $perm;
1400
1401 if ($t & trmask_deny) {
1402 if ($t & trmask_clear) {
1403 $perm['deny'] &= ~$t;
1404 } else {
1405 $perm['deny'] |= $t;
1406 }
1407 } elseif ($t & trmask_clear) {
1408 $perm['allow'] &= ~$t;
1409 } else {
1410 $perm['allow'] |= $t;
1411 }
1412 return $perm;
1413 }// end of helper function
1414
1415 function check_trustee($user,$path) {
1416 global $trustees,$HAVE_TRUSTEE;
1417 $perm['allow'] = 0;
1418 $perm['deny'] = 0;
1419
1420 // do we use trustees?
1421 if (! $HAVE_TRUSTEE) return $perm;
1422
1423 if (! isset($trustees)) Error("Trustees not found","Can't find in-memory trustee structure <tt>\$trustees</tt>. Probably bug in code. Contact <tt>dpavlin@rot13.org</tt>",1);
1424
1425 global $debug;
1426 $debug .= "<br>check_trustee $path ... ";
1427
1428 $path_arr=explode("/",$path);
1429 $tmppath="";
1430 while (count($path_arr)) {
1431 $p = array_shift($path_arr);
1432 $debug.= "[$p] ";
1433 # add trailing slash
1434 if (substr($tmppath,strlen($tmppath)-1,1) != "/") {
1435 $tmppath.="/";
1436 }
1437 # append currnet dir to tmppath
1438 if (isset($p)) {
1439 $tmppath.=$p;
1440 }
1441 $debug.= ">> $tmppath ";
1442
1443 if (! isset($trustees[$tmppath])) continue;
1444 $tr = $trustees[$tmppath];
1445
1446 $one_level = (!count($path_arr));
1447 $debug.=" O($one_level) ";
1448
1449 if (isset($tr)) {
1450 // first apply trustee for all
1451 if (isset($tr['*']) && $user!="anonymous") {
1452 $perm = unroll_perm($user,$tr['*'],$perm, $one_level);
1453 unset($tr['*']);
1454 }
1455 // then apply not and group policies
1456 foreach ($tr as $g=>$t) {
1457 if ($t & trmask_not && $g != $user) {
1458 $t = $t & ~trmask_not;
1459 $perm = unroll_perm($user,$t,$perm, $one_level);
1460 unset($tr[$g]);
1461
1462 } elseif ($t & trmask_group && in_group($user,$g)) {
1463 // resolv user
1464 $t = $t & ~trmask_group;
1465 $perm = unroll_perm($user,$t,$perm, $one_level);
1466 unset($tr[$g]);
1467 }
1468 }
1469 // then apply user policy
1470 if (isset($tr[$user])) {
1471 $perm = unroll_perm($user,$tr[$user],$perm,$one_level);
1472 unset($tr[$user]);
1473 }
1474 }
1475 $debug.="d(".display_trustee($perm['deny']).") a(".display_trustee($perm['allow']).") ";
1476
1477 }
1478 $debug.="<br>check_trustee: user: $user path: $path==$tmppath perm: ";
1479 $debug.="d: ".$perm['deny']." (".display_trustee($perm['deny']).") a: ".$perm['allow']." (".display_trustee($perm['allow']).")<Br>\n";
1480 return $perm;
1481 }
1482
1483 // handy functions
1484
1485 function check_perm($path,$trperm) {
1486 global $gblLogin,$HAVE_TRUSTEE;
1487
1488 $path = str_replace("//","/",$path);
1489
1490 global $debug;
1491 $debug.="<br>check_perm: on <tt>$path</tt> for perm ".display_trustee($trperm)."<br>\n";
1492
1493 $return = ! $HAVE_TRUSTEE;
1494 if ($HAVE_TRUSTEE) {
1495 $perm = check_trustee($gblLogin,$path);
1496 $debug.=" d: ".$perm['deny']." (".display_trustee($perm['deny']).") a: ".$perm['allow']." (".display_trustee($perm['allow']).") perm to have: $trperm (".display_trustee($trperm).")";
1497 if ($perm['deny'] & $trperm) $return=0;
1498 elseif (($perm['allow'] & $trperm) == $trperm) $return=1;
1499 }
1500 $debug.=" return: $return<br>\n";
1501 return($return);
1502 }
1503
1504 //////////////////////////////////////////////////////////////////
1505
1506 function readMime() {
1507 global $mime_type, $gblMimeTypes;
1508
1509 if (! isset($gblMimeTypes)) {
1510 $gblMimeTypes = "/etc/mime.types";
1511 }
1512
1513 $mime = @fopen($gblMimeTypes,"r");
1514
1515 if (! $mime) Error("Can't read MIME types","<tt>$gblMimeTypes</tt> file not found. You can setup other <tt>mime.types</tt> file using <tt>\$gblMimeTypes</tt> in <tt>$realm_config</tt>");
1516
1517 while($line = fgets($mime,80)) {
1518 if (substr($line,0,1) == "#") continue; // skip comment
1519 $arr = preg_split("/[\s\t]+/",$line);
1520 $type = array_shift($arr);
1521 while ($ext = array_shift($arr)) {
1522 $mime_type[$ext] = $type;
1523 }
1524 }
1525
1526 fclose($mime);
1527 }
1528
1529 //////////////////////////////////////////////////////////////////
1530
1531 // check for invalid characters in filename and dirname (.. and /)
1532
1533 function check_dirname($file) {
1534 if (strstr($file,"..")) Error("Security violation","No parent dir <tt>..</tt> allowed in directory name <tt>$file</tt>",1);
1535 }
1536
1537 function check_filename($file) {
1538 if (strstr($file,"..")) Error("Security violation","No parent dir <tt>..</tt> allowed in file name <tt>$file</tt>",1);
1539 // remove deleted directory (for undelete to work)
1540 $file = str_replace(".del/","",$file);
1541 if (strstr($file,"/")) Error("Security violation","No slashes <tt>/</tt> allowed in file name <tt>$file</tt>",1);
1542 }
1543
1544 // bla/blo/../foo will return bla/foo
1545 function remove_parent($path) {
1546 while (preg_match(",/[^/]+/\.\./,",$path)) {
1547 $path = preg_replace(",/[^/]+/\.\./,","",$path);
1548 }
1549 if (substr($path,0,1) != "/") $path = "/".$path;
1550 return $path;
1551 }
1552
1553 //////////////////////////////////////////////////////////////////
1554
1555 // functions to move HTTP server variables to global namespace
1556 // [replacement for register_globals in php.ini]
1557
1558 function HTTP_GET_VAR($var) {
1559 global $HTTP_GET_VARS, ${$var};
1560 if (isset($HTTP_GET_VARS[$var])) {
1561 $$var = stripSlashes($HTTP_GET_VARS[$var]);
1562 return $$var;
1563 }
1564 }
1565
1566 function HTTP_POST_VAR($var) {
1567 global $HTTP_POST_VARS, ${$var};
1568 if (isset($HTTP_POST_VARS[$var])) {
1569 $$var = $HTTP_POST_VARS[$var];
1570 return $$var;
1571 }
1572 }
1573
1574 function HTTP_SERVER_VAR($var) {
1575 global $HTTP_SERVER_VARS, ${$var};
1576 if (isset($HTTP_SERVER_VARS[$var])) {
1577 $$var = $HTTP_SERVER_VARS[$var];
1578 return $$var;
1579 }
1580 }
1581
1582 //////////////////////////////////////////////////////////////////
1583
1584 function Warn($text) {
1585 }
1586
1587 //////////////////////////////////////////////////////////////////
1588
1589 function isBlank($file,$what = "filename") {
1590 if (trim($file) == "") return "<i>whitespace $what</i>";
1591 if ($file == "") return "<i>no $what</i>";
1592 return $file;
1593 }
1594
1595 //////////////////////////////////////////////////////////////////
1596 // MAIN PROGRAM
1597
1598 $gblFilePerms = 0640 ; // default for new files
1599 $gblDirPerms = 0750 ; // default for new dirs
1600
1601 if (isset($HTTP_GET_VARS["STYLE"]) && $HTTP_GET_VARS["STYLE"] == "get") {
1602 include("$html/docman.css");
1603 exit;
1604 }
1605
1606 // set fsRealmDir
1607 if (! isset($fsRealmDir)) {
1608 $fsRealmDir = "$gblIncDir/realm";
1609 }
1610
1611 // try to add dir to script name to realm var
1612 if (is_dir("$fsRealmDir/$realm/".dirname($HTTP_SERVER_VARS["SCRIPT_NAME"]))) {
1613 $realm .= dirname($HTTP_SERVER_VARS["SCRIPT_NAME"]);
1614 $realm_sep = "/";
1615 } else {
1616 $realm_sep = ".";
1617 }
1618
1619 $realm_config = $fsRealmDir."/".$realm.$realm_sep."conf";
1620
1621 // read user-defined configuration
1622 if (file_exists($realm_config)) {
1623 include($realm_config);
1624 } else {
1625 Error("Configuration error","Can't find configuration file at <tt>$realm_config</tt> !");
1626 }
1627
1628 if (! isset($gblRepositoryDir)) Error("Configuration error","<tt>\$gblRepositoryDir</tt> is not setuped in realm configuration file <tt>$realm_config</tt>");
1629
1630 // where do we get users from?
1631 if (file_exists("$gblIncDir/htusers/$gblUsers.php")) {
1632 include("$gblIncDir/htusers/$gblUsers.php");
1633 } else {
1634 Error("Configuration error","Can't find user handling module at <tt>$gblIncDir/htusers/$gblUsers.php</tt> ! Please fix <tt>$realm_config</tt>");
1635 }
1636
1637 // take additional login vars
1638 HTTP_GET_VAR("relogin");
1639 HTTP_GET_VAR("force_login");
1640
1641 // if no password, or empty password logout
1642 if (
1643 isset($gblLogin) && (
1644 !isset($relogin) || (
1645 isset($relogin) && $relogin != md5($gblLogin.$gblPasswd)
1646 )
1647 ) && (
1648 $gblPasswd == "" || !isset($gblPasswd)
1649 ) && !isset($force_login) && $gblLogin != "anonymous"
1650 ) {
1651 StartHTML("Logout completed","Your login credentials has been erased") ;
1652 EndHTML() ;
1653 exit ;
1654 }
1655
1656 if (!is_dir($gblRepositoryDir)) Error("Repository dir not found","Can't find repository directory <tt>$gblRepositoryDir</tt>. Please fix that in <tt>$realm_config</tt> variable <tt>\$gblRepositoryDir</tt>.",1);
1657
1658 // trustee (ACL) file configuration
1659 $trustee_conf="$fsRealmDir/$realm".$realm_sep."trustee";
1660 // compiled version of trustee file
1661 $trustee_php="$gblRepositoryDir/.trustee.php";
1662 // get ACL informations
1663 $HAVE_TRUSTEE = init_trustee();
1664
1665 if (strtolower($gblLogin) == "anonymous" || !isset($gblLogin)) {
1666 $perm = check_trustee("anonymous","/");
1667 // browsing must be explicitly allowed for root directory
1668 // of repository for anonymous user to work!
1669 if ($perm['allow'] & trperm_b) {
1670 $gblLogin = $gblPasswd = "anonymous";
1671 $secHash = md5($gblLogin.$gblPasswd);
1672 $gblUserName = "Anonymous user";
1673 }
1674 }
1675
1676 // authentication failure
1677 if ( md5($gblLogin.$gblPasswd) != $secHash ||
1678 isset($relogin) && $secHash == $relogin) {
1679 header("WWW-authenticate: basic realm=\"$realm\"") ;
1680 header("HTTP/1.0 401 Unauthorized") ;
1681 Error("401 Unauthorized","No trespassing !",0,1);
1682 }
1683
1684
1685 // read mime.types
1686 readMime();
1687
1688 if (! isset($gblPermNote)) {
1689 $gblPermNote = trperm_r;
1690 }
1691
1692 HTTP_POST_VAR("FN");
1693
1694 if ($HTTP_SERVER_VARS["REQUEST_METHOD"] == "POST") {
1695 // take variables from server
1696 if (HTTP_POST_VAR("FN"))
1697 check_filename($FN);
1698 if (HTTP_POST_VAR("DIR")) {
1699 check_dirname($DIR);
1700 $relDir = $DIR;
1701 } else {
1702 trigger_error("Can't get DIR",E_USER_WARNING);
1703 $relDir = "/";
1704 }
1705 if (HTTP_POST_VAR("RELPATH")) check_dirname($RELPATH);
1706 HTTP_POST_VAR("T");
1707 HTTP_POST_VAR("CONFIRM");
1708 } else {
1709 // get
1710 HTTP_GET_VAR("A");
1711 if (HTTP_GET_VAR("D")) {
1712 check_dirname($D);
1713 $D=urldecode($D);
1714 $relDir = $D;
1715 } else {
1716 //trigger_error("Can't get D",E_USER_WARNING);
1717 $relDir = "/";
1718 }
1719 if (HTTP_GET_VAR("F")) check_filename($F);
1720 }
1721
1722 $relScriptDir = dirname($HTTP_SERVER_VARS["SCRIPT_NAME"]) ;
1723 // i.e. /docman
1724
1725 // start on server root
1726 $gblFsRoot = $gblRepositoryDir;
1727 // i.e. /home/httpd/repository
1728
1729 $fsDir = $gblFsRoot . $relDir ; // current directory
1730 if ( !is_dir($fsDir) ) Error("Dir not found","Can't find <tt>$relDir</tt> which points to <tt>$fsDir</tt>",1) ;
1731
1732 if ($relDir == "") $relDir="/";
1733
1734 if (isset($HTTP_SERVER_VARS["HTTPS"]) && $HTTP_SERVER_VARS["HTTPS"] == "on") {
1735 $webRoot = "https://";
1736 } else {
1737 $webRoot = "http://";
1738 }
1739 $webRoot .= $HTTP_SERVER_VARS["HTTP_HOST"] . $relScriptDir;
1740
1741 if (HTTP_POST_VAR("POSTACTION")) switch ($POSTACTION) {
1742 case "UPLOAD" :
1743 $FN_name=stripSlashes($HTTP_POST_FILES["FN"]["tmp_name"]);
1744 $FN=stripSlashes($HTTP_POST_FILES["FN"]["name"]);
1745 if (!is_writeable($fsDir)) Error("Write denied",$relDir) ;
1746
1747 $source = $FN_name ;
1748 if (! file_exists($source)) {
1749 Error("You must select file with browse to upload it!","If file is too big, you might need to modify php configuration options <tt>post_max_size</tt> and <tt>upload_max_filesize</tt>",1);
1750 }
1751
1752 if (HTTP_POST_VAR("FILENAME")) check_filename($FILENAME);
1753
1754 if (! isset($FILENAME)) { // from update file
1755 $target = "$fsDir/".basename($FN);
1756 } else {
1757 $target = "$fsDir/$FILENAME";
1758 }
1759
1760 if (! check_perm("$relDir/".basename($target), trperm_w))
1761 Error("Access denied","User <tt>$gblLogin</tt> tried to upload <tt>$relDir/".basename($target)."</tt> without valid trustee.",1);
1762
1763 // backup old files first
1764 $dir=dirname($target);
1765 if (! file_exists($dir."/.bak")) {
1766 mkdir($dir."/.bak",0700);
1767 }
1768 if (! file_exists($dir."/.bak/$gblNumBackups")) {
1769 mkdir($dir."/.bak/$gblNumBackups",0700);
1770 }
1771 $file=basename($target);
1772 for($i=$gblNumBackups-1;$i>0;$i--) {
1773 MoveTo("$dir/.bak/$i/$file","$dir/.bak/".($i+1)."/");
1774 }
1775 MoveTo($target,$dir."/.bak/1/");
1776
1777 copy($source,$target) ;
1778 chmod($target,$gblFilePerms) ;
1779 clearstatcache() ;
1780 if (isset($FILENAME)) {
1781 LogIt($target,"check-in",trperm_r | trperm_w);
1782 Unlock($target);
1783 } else {
1784 LogIt($target,"uploaded",trperm_r | trperm_w);
1785 }
1786 break ;
1787
1788 case "SAVE" :
1789 $path = $gblFsRoot . $RELPATH ;
1790 $path=stripSlashes($path);
1791
1792 if (! check_perm("$RELPATH", trperm_w))
1793 Error("Access denied","User <tt>$gblLogin</tt> tried to save <tt>$RELPATH</tt> without valid trustee.",1);
1794
1795 $writable = is_writeable($path) ;
1796 $legaldir = is_writeable(dirname($path)) ;
1797 $exists = (file_exists($path)) ? 1 : 0 ;
1798 // FIX: more verbose error message
1799 if (!($writable || (!$exists && $legaldir)))
1800 Error("Write denied",$RELPATH) ;
1801 $fh = fopen($path, "w") ;
1802 HTTP_POST_VAR("FILEDATA");
1803 fwrite($fh,$FILEDATA) ;
1804 fclose($fh) ;
1805 clearstatcache() ;
1806 LogIt($path,"saved changes",trperm_r);
1807 break ;
1808
1809 case "CREATE" :
1810 // we know $fsDir exists
1811 if (! check_perm($relDir, trperm_w))
1812 Error("Write access denied","You don't have permission to write in <tt>$relDir</tt>");
1813 if ($T == "D") $type = "directory";
1814 else $type ="file";
1815 if ($FN == "") Error("Can't create $type","You must enter name of $type to create it.");
1816 if (!is_writeable($fsDir)) Error("Write denied","User <tt>$gblLogin</tt> has trustee to write in <tt>$relDir</tt> but permissions on <tt>$fsDir</tt> are wrong!", 1) ;
1817 $path = "$fsDir/$FN"; // file or dir to create
1818 $relPath = "$relDir/$FN";
1819
1820 if (file_exists($path))
1821 Error("Can't create $type","Object <tt>$relPath</tt> allready exists");
1822
1823 switch ( $T ) {
1824 case "D" : // create a directory
1825 if ( ! @mkdir($path,$gblDirPerms) )
1826 Error("Mkdir failed",$relPath) ; // eg. if it exists
1827 else
1828 LogIt($path."/","dir created",trperm_w);
1829 clearstatcache() ;
1830 break ;
1831 case "F" : // create a new file
1832 // this functionality is doubled in DetailView().
1833 // better keep it here altogether
1834 // chmod perms to $gblFilePerms
1835 if ( file_exists($path) && !is_writeable($path) )
1836 Error("File not writable", "User <tt>$gblLogin</tt> has trustee to write in <tt>$relPath</tt> but permissions on <tt>$path</tt> are wrong!", 1) ;
1837 $fh = fopen($path, "w+") ;
1838 if ($fh) {
1839 fputs($fh,"\n");
1840 fclose($fh) ;
1841 LogIt($path,"file created",trperm_r | trperm_w);
1842 } else {
1843 Error("Creation of file $relPath failed", "User <tt>$gblLogin</tt> has trustee to write in <tt>$relPath</tt> but creation of <tt>$path</tt> failed!", 1) ;
1844 }
1845 $tstr = $HTTP_SERVER_VARS["PHP_SELF"]."?A=E&D=".urlencode($relDir)."&F=".urlencode($FN) ;
1846 header("Location: " . $tstr) ;
1847 exit ;
1848 }
1849 break ;
1850
1851 case "DELETE" :
1852 if ( $CONFIRM != "on" ) break;
1853
1854 if ( isset($FN) && $FN != "") {
1855 $path=$fsDir."/".$FN;
1856 $what = "file";
1857 } elseif (isset($DIR)) {
1858 $path=$gblFsRoot."/".$DIR;
1859 $what = "directory";
1860 } else {
1861 Error("Can't delete object","Can't find filename <tt>\$FN</tt> or dirname in <tt>\$DIR</tt>",1);
1862 }
1863
1864 if (! check_perm("$relDir/$FN", trperm_w))
1865 Error("Access denied","User <tt>$gblLogin</tt> tried to erase $what <tt>$relDir/$FN</tt> without valid trustee.",1);
1866
1867 $tstr = "Attempt to delete non-existing object or insufficient privileges: " ;
1868
1869 $dir=dirname($path);
1870 $file=basename($path);
1871
1872 if (! file_exists("$dir/.del")) {
1873 mkdir("$dir/.del",0700);
1874 }
1875
1876 if ( ! @rename($path,"$dir/.del/$file") ) {
1877 LogIt($path,"$what delete failed");
1878 Error("Can't delete $what",$tstr."<tt>".$relDir."/".$FN."</tt>") ;
1879 } else {
1880 LogIt($path,"$what deleted",trperm_w);
1881 MoveTo("$dir/.log/$file","$dir/.del/.log/");
1882 MoveTo("$dir/.note/$file","$dir/.del/.note/");
1883 MoveTo("$dir/.lock/$file","$dir/.del/.lock/");
1884 }
1885 break ;
1886
1887 case "UNDELETE" :
1888 if ( $CONFIRM != "on" ) break ;
1889
1890 if (substr($FN,0,4) != ".del") break ;
1891 $file=substr($FN,4,strlen($FN)-4);
1892
1893 if (! check_perm("$relDir/$file", trperm_w))
1894 Error("Access denied","User <tt>$gblLogin</tt> tried to undelete <tt>$relDir/$file</tt> without valid trustee.",1);
1895
1896 LogIt("$fsDir/.del/$file","undeleted",trperm_w);
1897 MoveTo("$fsDir/.del/$file","$fsDir/");
1898 MoveTo("$fsDir/.del/.log/$file","$fsDir/.log/");
1899 MoveTo("$fsDir/.del/.note/$file","$fsDir/.note/");
1900 MoveTo("$fsDir/.del/.lock/$file","$fsDir/.lock/");
1901
1902 break ;
1903
1904 case "RENAME" :
1905 if ( $CONFIRM != "on" ) break ;
1906
1907 if (HTTP_POST_VAR("NEWNAME")) {
1908 $dest = remove_parent($relDir.$NEWNAME);
1909 if (! check_perm($relDir.$FN, trperm_w) ||
1910 ! check_perm($dest, trperm_w) )
1911 Error("Access denied","User <tt>$gblLogin</tt> tried to rename <tt>$relDir$FN</tt> to <tt>$dest</tt> without valid trustee.",1);
1912 } else {
1913 Error("Rename error","Can't find new name in var <tt>\$NEWNAME</tt>",1);
1914 }
1915 LogIt("$fsDir/$FN","renamed $FN to $NEWNAME",trperm_r);
1916 safe_rename($fsDir,$FN,$NEWNAME);
1917 break ;
1918
1919 case "NOTE" :
1920 if (! HTTP_POST_VAR("NOTE"))
1921 Error("Can't add note to object","Can't find var <tt>\$NOTE</tt>",1);
1922 if (! check_perm("$relDir/$FN", trperm_w))
1923 Error("Access denied","User <tt>$gblLogin</tt> tried to add note to <tt>$relDir/$FN</tt> without valid trustee.",1);
1924
1925 WriteNote("$fsDir/$FN",$NOTE);
1926 break ;
1927
1928 case "UNLOCK" :
1929 if ( $CONFIRM != "on" ) break ;
1930 if (! check_perm("$relDir/$FN", trperm_w))
1931 Error("Access denied","User <tt>$gblLogin</tt> tried to unlock <tt>$relDir/$FN</tt> without valid trustee.",1);
1932 Unlock("$fsDir/$FN");
1933 break ;
1934
1935 default :
1936 // user hit "CANCEL" or undefined action
1937 }
1938
1939 // common to all POSTs : redirect to directory view ($relDir)
1940 if (isset($POSTACTION)) {
1941 $tstr = $HTTP_SERVER_VARS["PHP_SELF"]."?D=".urlencode($relDir);
1942 header("Location: ".$tstr) ;
1943 exit ;
1944 }
1945
1946 // check for mode.. navigate, code display, upload, or detail?
1947 // $A=U : upload to path given in $D
1948 // $A=E : display detail of file $D/$F and edit
1949 // $A=C : display code in file $D/$F
1950 // $A=Co : checkout file $D/$F
1951 // $A=Ci : checkin file $D/$F
1952 // $A=V : view file (do nothing except log)
1953 // $A=I : include file .$F.php from [$gblIncDir|realm]/include_php
1954 // default : display directory $D
1955
1956 if (isset($A)) switch ($A) {
1957 case "U" :
1958 // upload to $relDir
1959 if (! check_perm($relDir, trperm_w))
1960 Error("Write access denied","You don't have permission to write in <tt>$relDir</tt>");
1961 if (!is_writeable($gblFsRoot . $relDir))
1962 Error("Write access denied","User <tt>$gblLogin</tt> has permission on <tt>$relDir</tt>, but directory is not writable",1);
1963 $text = "Use this page to upload a single " ;
1964 $text .= "file to <B>$realm</B>." ;
1965 StartHTML("(Upload Page)", $text) ;
1966 UploadPage($gblFsRoot, $relDir) ;
1967 EndHTML() ;
1968 exit ;
1969 case "E" :
1970 // detail of $relDir/$F
1971 if (is_file("$gblFsRoot/$relDir/$F") || is_dir("$gblFsRoot/$relDir/$F")) DetailPage($gblFsRoot, $relDir, $F) ;
1972 exit ;
1973 case "C" :
1974 $F=stripSlashes($F);
1975 // listing of $relDir/$F
1976 DisplayCode($gblFsRoot, $relDir, $F) ;
1977 exit ;
1978 case "Co" :
1979 // checkout
1980 Lock("$gblFsRoot/$relDir/$F");
1981 Download("$gblFsRoot/$relDir/$F",1);
1982 exit;
1983 case "Ci" :
1984 $F=stripSlashes($F);
1985 // upload && update to $relDir
1986 if (!is_writeable($gblFsRoot . $relDir))
1987 Error("Write access denied",$relDir) ;
1988 $text = "Use this page to update a single " ;
1989 $text .= "file to <B>$realm</B>." ;
1990 StartHTML("(Update file Page)", $text) ;
1991 UploadPage($gblFsRoot, $relDir, $F) ;
1992 EndHTML() ;
1993 exit ;
1994 case "V" :
1995 // view
1996 LogIt("$gblFsRoot/$relDir/$F","viewed");
1997 Download("$gblFsRoot/$relDir/$F",$gblForceDownload);
1998 exit;
1999 case "Ch" :
2000 StartHTML("(File changes)","All changes chronologicaly...");
2001 DisplayChangeLog(0); // all
2002 EndHTML() ;
2003 exit;
2004 case "Ch1" :
2005 StartHTML("(File changes)","Changes to files in last day...");
2006 DisplayChangeLog(1);
2007 EndHTML() ;
2008 exit;
2009 case "I" :
2010 if (! isset($F) || $F == "")
2011 Error("Can't find file to include","Your request didn't specify file to include which should be in variable <tt>F</tt> like <tt>$HTTP_SERVER_VARS[REQUEST_URI]<b>&F=include_php_file</b></tt>",1);
2012 $inc_file="$fsRealmDir/$realm".$realm_sep.$F.".php";
2013 if (! file_exists($inc_file)) {
2014 Error("Can't find file to include","Can't find include file <tt>$F.php</tt> in <tt>$fsRealmDir/$realm/</tt>. Meybe you should copy <tt>$gblIncDir/include_php/$F.php</tt> to <tt>$inc_file<tt> ?",1);
2015 }
2016 if (!is_readable($inc_file))
2017 Error("Read access to include file denied","Can't read PHP include file <tt>$inc_file</tt>. Fix permissions on it.",1);
2018 $text = "Your include file should define \$text variable which holds this text and \$title variable which is page title";
2019 $title = "You should define \$title variable with page title";
2020 include($inc_file);
2021 StartHTML($title, $text) ;
2022 print "<p>".GifIcon(up)." Back to <a href=$HTTP_SERVER_VARS[PHP_SELF]>front page</a>.</p>";
2023 EndHTML() ;
2024 exit ;
2025 }
2026
2027 // default: display directory $relDir
2028 Navigate($gblFsRoot,$relDir) ;
2029 exit ;
2030
2031 Error("Whooah!","By cartesian logic, this never happens",1) ;
2032 ?>
2033
  ViewVC Help
Powered by ViewVC 1.1.26