ConLite
/
ConLite
1
0
Fork 0
Code Issues 22 Pull-Requests Projekte 2 Releases 2 Wiki Aktivität
ConLite/conlite/includes/functions.file.php

330 Zeilen
12 KiB
PHP
Originalformat Blame Verlauf

<?php
/**
* Project:
* Contenido Content Management System
*
* Description:
* Functions to edit files. Included in Area style,
* js, htmltpl in Frame right_bottom.
*
* Requirements:
* @con_php_req 5.0
*
*
* @package Contenido Backend includes
* @version 1.0.3
* @author Willi Man
* @copyright four for business AG <info@contenido.org>
* @license http://www.contenido.org/license/LIZENZ.txt
* @link http://www.4fb.de
* @link http://www.contenido.org
* @since file available since contenido release >= 4.6
*
* {@internal
* created 2004-07-13
* modified 2008-06-26, Frederic Schneider, add security fix
* modified 2008-08-14, Timo.Trautmann added file_information functions for storing file meta indormations
* modified 2009-10-23, Murat Purc, removed deprecated function (PHP 5.3 ready), added new function fileValidateFilename() and commented code
*
* $Id$:
* }}
*
*/
if (!defined('CON_FRAMEWORK')) {
die('Illegal call');
}
/**
* Function removes file meta information from database (used when a file is deleted)
*
* @author Timo Trautmann
* @param integer $iIdClient - id of client which contains this file
* @param string $sFilename - name of corresponding file
* @param string $sType - type of file (css, js or templates)
* @param object $oDb - contenido database object
*
* @return void
*/
function removeFileInformation($iIdClient, $sFilename, $sType, $oDb) {
global $cfg;
if (!isset($oDb) || !is_object($oDb)) {
$oDb = new DB_ConLite();
}
$iIdClient = Contenido_Security::toInteger($iIdClient);
$sFilename = Contenido_Security::filter((string) $sFilename, $oDb);
$sType = Contenido_Security::filter((string) $sType, $oDb);
$sSql = "DELETE FROM `" . $cfg["tab"]["file_information"] . "` WHERE idclient=$iIdClient AND
filename='$sFilename' AND
type='$sType';";
$oDb->query($sSql);
$oDb->free();
}
/**
* Function returns file meta information from database (used when files were versionned or description is displayed)
*
* @author Timo Trautmann
* @param integer $iIdClient - id of client which contains this file
* @param string $sFilename - name of corresponding file
* @param string $sType - type of file (css, js or templates)
* @param object $oDb - contenido database object
*
* @return array Indexes:
* idsfi - Primary key of database record
* created - Datetime when file was created
* lastmodified - Datetime when file was last modified
* author - Author of file (Contenido Backend User)
* modifiedby - Last modifier of file (Contenido Backend User)
* description - Description which was inserted for this file
*
*/
function getFileInformation($iIdClient, $sFilename, $sType, $oDb) {
global $cfg;
if (!isset($oDb) || !is_object($oDb)) {
$oDb = new DB_ConLite();
}
$iIdClient = Contenido_Security::toInteger($iIdClient);
$sFilename = Contenido_Security::filter((string) $sFilename, $oDb);
$sType = Contenido_Security::filter((string) $sType, $oDb);
$aFileInformation = array();
$sSql = "SELECT * FROM `" . $cfg["tab"]["file_information"] . "` WHERE idclient=$iIdClient AND
filename='$sFilename' AND
type='$sType';";
$oDb->query($sSql);
if ($oDb->num_rows() > 0) {
$oDb->next_record();
$aFileInformation['idsfi'] = $oDb->f('idsfi');
$aFileInformation['created'] = $oDb->f('created');
$aFileInformation['lastmodified'] = $oDb->f('lastmodified');
$aFileInformation['author'] = Contenido_Security::unFilter($oDb->f('author'));
$aFileInformation['modifiedby'] = $oDb->f('modifiedby');
$aFileInformation['description'] = Contenido_Security::unFilter($oDb->f('description'));
}
$oDb->free();
return $aFileInformation;
}
/**
* Function updates file meta information (used when files were created or edited).
* It creates new database record for file meta informations if database record does
* not exist. Otherwise, existing record will be updated
*
* @author Timo Trautmann
* @param integer $iIdClient - id of client which contains this file
* @param string $sFilename - name of corresponding file
* @param string $sType - type of file (css, js or templates)
* @param string $sAuthor - author of file
* @param string $sDescription - description of file
* @param object $oDb - contenido database object
* @param string $sFilenameNew - new filename if filename was changed (optional)
*
* @return void
*/
function updateFileInformation($iIdClient, $sFilename, $sType, $sAuthor, $sDescription, $oDb, $sFilenameNew = '') {
global $cfg;
if (!isset($oDb) || !is_object($oDb)) {
$oDb = new DB_ConLite();
}
if ($sFilenameNew == '') {
$sFilenameNew = $sFilename;
}
$iIdClient = Contenido_Security::toInteger($iIdClient);
$sFilename = Contenido_Security::filter((string) $sFilename, $oDb);
$sType = Contenido_Security::filter((string) $sType, $oDb);
$sDescription = Contenido_Security::filter((string) stripslashes($sDescription), $oDb);
$sAuthor = Contenido_Security::filter((string) $sAuthor, $oDb);
$sSql = "SELECT * from `" . $cfg["tab"]["file_information"] . "` WHERE idclient=$iIdClient AND
filename='$sFilename' AND
type='$sType';";
$oDb->query($sSql);
if ($oDb->num_rows() == 0) {
$iNextId = $oDb->nextid('con_style_file_information');
$sSql = "INSERT INTO `" . $cfg["tab"]["file_information"] . "` ( `idsfi` ,
`idclient` ,
`type` ,
`filename` ,
`created` ,
`lastmodified` ,
`author` ,
`modifiedby` ,
`description` )
VALUES (
$iNextId ,
$iIdClient,
'$sType',
'$sFilenameNew',
NOW(),
'1000-01-01 00:00:00',
'$sAuthor',
'',
'$sDescription'
);";
} else {
$sSql = "UPDATE `" . $cfg["tab"]["file_information"] . "` SET `lastmodified` = NOW(),
`modifiedby` = '$sAuthor',
`description` = '$sDescription',
`filename` = '$sFilenameNew'
WHERE idclient=$iIdClient AND
filename='$sFilename' AND
type='$sType';";
}
$oDb->free();
$oDb->query($sSql);
$oDb->free();
}
/**
* Writes passed data into a file using binary mode.
*
* Exits the script, if file could not opened!
*
* @param string $filename The file to write the content
* @param string $sCode File content to write
* @param string $path Path to the file
* @return (string|void) Either content of file o nothing
*/
function fileEdit($filename, $sCode, $path) {
$oNot = new Contenido_Notification();
// FIXME: fileValidateFilename does also the validation but display another message!
if (strlen(trim($filename)) == 0) {
$oNot->displayNotification("error", i18n("Please insert filename."));
return false;
}
cFileHandler::validateFilename($filename);
if (is_writable($path . $filename)) {
if (strlen(stripslashes(trim($sCode))) > 0) {
if (!empty($sCode)) {
$sCode = mb_convert_encoding($sCode, 'UTF-8', 'OLD-ENCODING');
}
cFileHandler::write($path . $filename, $sCode);
return true;
} else {
return false;
}
} else {
$oNot->displayNotification("error", sprintf(i18n("%s is not writable"), $path . $filename));
exit;
}
}
/**
* Reads content of file into memory using binary mode and returns it back.
*
* Exits the script, if file could not opened!
*
* @param string $filename The file to get the content
* @param string $path Path to the file
* @return (string|void) Either content of file o nothing
*/
function getFileContent($filename, $path) {
$sCode = cFileHandler::read($path . $filename);
if (!empty($sCode)) {
$sCode = mb_convert_encoding($sCode, 'UTF-8', 'OLD-ENCODING');
}
return $sCode;
}
/**
* Returns the filetype (extension).
*
* @param string $filename The file to get the type
* @return string Filetype
*/
function getFileType($filename) {
$aFileName = explode(".", $filename);
return $aFileName[count($aFileName) - 1];
}
/**
* Creates a file.
*
* Exits the script, if filename is not valid or creation (touch or chmod) fails!
*
* @param string $filename The file to create
* @param string $path Path to the file
* @return (void|bool) Either true on success or nothing
*/
function createFile($filename, $path) {
$oNot = new Contenido_Notification();
cFileHandler::validateFilename($filename);
if (cFileHandler::create($path . $filename)) {
return true;
} else {
$oNot->displayNotification("error", sprintf(i18n("Unable to create file %s"), $path . $filename));
exit;
}
}
/**
* Renames a existing file.
*
* Exits the script, if new filename is not valid or renaming fails!
*
* @param string $sOldFile Old filename
* @param string $sNewFile New filename
* @param string $path Path to the file
* @return (void|string) Either new filename or nothing
*/
function renameFile($sOldFile, $sNewFile, $path) {
$oNot = new Contenido_Notification();
fileValidateFilename($sNewFile, true);
if (is_writable($path . $sOldFile)) {
# rename file
if (rename($path . $sOldFile, $path . $sNewFile)) {
return $sNewFile;
} else {
$oNot->displayNotification("error", sprintf(i18n("Can not rename file %s"), $path . $sOldFile));
exit;
}
} else {
$oNot->displayNotification("error", sprintf(i18n("%s is not writable"), $path . $sOldFile));
exit;
}
}
/**
* Validates passed filename. Filename can contain alphanumeric characters, dot, underscore or a hyphen.
*
* Exits the script, if second parameter is set to true and validation fails!
*
* @param string $filename The filename to validate
* @param bool $notifyAndExitOnFailure Flag to display notification and to exit further script
* execution, ifd validation fails
* @return (void|bool) Either validation result or nothing (depends on second parameter)
*/
function fileValidateFilename($filename, $notifyAndExitOnFailure = true) {
if (preg_match('/[^a-z0-9._-]/i', $filename)) {
// validation failure...
if ($notifyAndExitOnFailure == true) {
$oNot = new Contenido_Notification();
// display notification and exit
$oNot->displayNotification('error', i18n('Wrong filename.'));
exit;
}
return false;
}
return true;
}
?>
In neuem Issue referenzieren Git Blame ansehen Permalink kopieren