$lang_upload_php['upload_swf'], 'html_single' => $lang_upload_php['upload_single'], ); // Filter upload choices to allow plugins to add upload methods $upload_choices = CPGPluginAPI::filter('upload_options',$upload_choices); // Default upload method set by the gallery administrator $upload_form = $CONFIG['upload_mechanism']; // Populate Icon array $icon_array = array(); $icon_array['continue'] = cpg_fetch_icon('right', 2); $icon_array['ok'] = cpg_fetch_icon('ok', 0); $icon_array['cancel'] = cpg_fetch_icon('cancel', 2); $icon_array['upload'] = cpg_fetch_icon('upload', 2); $icon_array['info'] = cpg_fetch_icon('info', 2); // If we have "single" key in GET then we will force the upload form mechanism to single file upload // This acts as a fallback if js or flash is disabled if ($superCage->get->keyExists('single')) { $upload_form = 'html_single'; } elseif ($CONFIG['allow_user_upload_choice'] && $superCage->get->keyExists('method')) { // pull in upload method from GET parameter 'method' $matches = $superCage->get->getMatched('method','/^[0-9A-Za-z_]+$/'); $upload_form = $matches[0]; $USER['upload_method'] = $upload_form; } elseif ($superCage->post->keyExists('method')) { // pull in upload method from POST parameter 'method' $matches = $superCage->post->getMatched('method','/^[0-9A-Za-z_]+$/'); $upload_form = $matches[0]; } elseif ($CONFIG['allow_user_upload_choice'] && isset($USER['upload_method'])) { $upload_form = $USER['upload_method']; } // Confirm that upload method chosen is one of the available choices if (!in_array($upload_form, array_keys($upload_choices))) { // Try gallery default upload method $upload_form = $CONFIG['upload_mechanism']; if (!in_array($upload_form, array_keys($upload_choices))) { $upload_form = 'html_single'; } unset($USER['upload_method']); } // If upload method is swf then only include the JS files and other code for it if ('swfupload' == $upload_form) { js_include('js/swfupload/swfupload.js'); js_include('js/swfupload/swfupload.swfobject.js'); js_include('js/swfupload/swfupload.queue.js'); js_include('js/swfupload/fileprogress.js'); js_include('js/swfupload/handlers.js'); js_include('js/setup_swf_upload.js'); // Set the lang_upload_swf_php language array for use in js set_js_var('lang_upload_swf_php', $lang_upload_swf_php); set_js_var('notify_admin', $CONFIG['upl_notify_admin_email']); set_js_var('max_upl_size', $CONFIG['max_upl_size']); } js_include('js/upload.js'); //___________________________________Function Block_______________________________________ // The text box form input function. Takes the text label for the box, the input name, the maximum length for text boxes, // and the number of iterations. function text_box_input($text, $name, $max_length, $iterations, $default='') { global $CONFIG, $LINEBREAK; $ordinal = ''; if (($text == '') and ($iterations == '')) { echo ' ' . $LINEBREAK; return; } // Begin loop for ($counter=0; $counter<$iterations; $counter++) { // Create a numbering system when necessary. if ($text == '') { $cardinal = $counter + 1; $ordinal = "".$cardinal.". "; } // Create a text box. echo << $text $ordinal EOT; } } // The file input function. Takes the label, field name, and number of iterations as arguments. function file_input($text, $name, $iterations) { $ordinal = ''; // Begin loop for ($counter=0; $counter<$iterations; $counter++) { // Create a numbering system when necessary. if ($text == '') { $cardinal = $counter + 1; $ordinal = "".$cardinal.". "; } // Create the file input box. echo << $text $ordinal EOT; } } // The function for text areas on forms. Takes the label, field name, and maximum length as arguments. function text_area_input($text, $name, $max_length,$default='') { // Create the text area. echo << $text EOT; } // The hidden form input function. Takes the hidden input field name and value. function hidden_input($name, $value) { echo << EOT; } // The form label creation function. Takes a non-array element form $data as its argument. function form_label($text) { echo << $text EOT; } // Creates the album list drop down function form_alb_list_box($text, $name) { $superCage = Inspekt::makeSuperCage(); // Pull the $CONFIG array and the GET array into the function global $CONFIG, $lang_upload_php, $lang_common, $LINEBREAK; // Also pull the album lists into the function global $user_albums_list, $public_albums_list; // Check to see if an album has been preselected by URL addition or the last selected album. If so, make $sel_album the album number. Otherwise, make $sel_album 0. if ($superCage->get->keyExists('album')) { $sel_album = $superCage->get->getInt('album'); } elseif ($superCage->post->keyExists('album')) { $sel_album = $superCage->post->getInt('album'); } else { $sel_album = 0; } // Create the opening of the drop down box echo << $text '; foreach ($upload_choices as $key => $label) { $upload_select .= ''; } $upload_select .= '' . ' ' . cpg_display_help('f=configuration.htm&as=admin_upload_mechanism&ae=admin_upload_mechanism_end', '450', '300'); } // Call active plugins for alternate upload forms CPGPluginAPI::action('upload_form',array($upload_form,$upload_select)); if ($upload_form == 'swfupload') { // Get the user password hash $user_pass = $cpg_udb->get_user_pass(USER_ID); // Serialize and base64 encode the password set_js_var('user', base64_encode(serialize($user_pass))); set_js_var('user_id', USER_ID); set_js_var('allow_guests_enter_file_details', $CONFIG['allow_guests_enter_file_details']); } // Do some cleanup in the edit directory. spring_cleaning('./'.$CONFIG['fullpath'].'edit',CPG_HOUR); // Create upload form headers. pageheader($lang_upload_php['title']); if ($upload_form == 'html_single') { // For single upload form, send the request to db_input.php open_form('db_input.php'); $upload_help = cpg_display_help('f=uploading_http.htm&as=upload_http_interface_html&ae=upload_http_interface_html_end', '450', '300'); } else { if ($USER_DATA['pub_upl_need_approval'] == 1 || $USER_DATA['priv_upl_need_approval'] == 1) { echo ''; } $restriction_filesize = sprintf($lang_upload_php['restriction_filesize'], '' . cpg_format_bytes($CONFIG['max_upl_size'] * 1024) . ''); if ($CONFIG['allowed_img_types'] != '') { $allowed_img_types = '
  • ' . sprintf ($lang_upload_php['allowed_img_types'], $CONFIG['allowed_img_types']) . '
    • '; } else { $allowed_img_types = ''; } if ($CONFIG['allowed_mov_types'] != '') { $allowed_mov_types = '
  • ' . sprintf ($lang_upload_php['allowed_mov_types'], $CONFIG['allowed_mov_types']) . '
    • '; } else { $allowed_mov_types = ''; } if ($CONFIG['allowed_snd_types'] != '') { $allowed_snd_types = '
  • ' . sprintf ($lang_upload_php['allowed_snd_types'], $CONFIG['allowed_snd_types']) . '
    • '; } else { $allowed_snd_types = ''; } if ($CONFIG['allowed_doc_types'] != '') { $allowed_doc_types = '
  • ' . sprintf ($lang_upload_php['allowed_doc_types'], $CONFIG['allowed_doc_types']) . '
    • '; } else { $allowed_doc_types = ''; } $help_page = <<< EOT
    • {$lang_upload_php['up_instr_1']}
    • {$lang_upload_php['up_instr_2']}
    • {$lang_upload_php['up_instr_3']}
    • {$lang_upload_php['up_instr_4']}
    • {$lang_upload_php['up_instr_5']}

    {$lang_upload_php['restrictions']}

    • {$restriction_filesize}
    • {$lang_upload_php['restriction_zip']}
    • {$lang_upload_php['allowed_types']}
        {$allowed_img_types} {$allowed_mov_types} {$allowed_snd_types} {$allowed_doc_types}
    EOT; $upload_help = cpg_display_help('f=empty.htm&base=64&h='.urlencode(base64_encode(serialize($lang_upload_php['title']))).'&t='.urlencode(base64_encode(serialize($help_page))),470,245); } $upload_table_header = <<< EOT
    {$icon_array['upload']}{$lang_upload_php['title']} {$upload_help} {$upload_select}
    EOT; // Open the form table. starttable('100%', $upload_table_header, 2); if ($upload_form == 'html_single') { // Declare an array containing the various upload form box definitions. $captionLabel = $lang_upload_php['description']; $keywordLabel = sprintf($lang_common['keywords_insert1'],$lang_common['keyword_separators'][$CONFIG['keyword_separator']]) . '
    ' . $lang_common['keywords_insert2'] .''; if ($CONFIG['show_bbcode_help']) {$captionLabel .= ' '. cpg_display_help('f=empty.htm&base=64&h='.urlencode(base64_encode(serialize($lang_bbcode_help_title))).'&t='.urlencode(base64_encode(serialize($lang_bbcode_help))),470,245);} $form_array = array( sprintf($lang_upload_php['max_fsize'], cpg_format_bytes($CONFIG['max_upl_size'] * 1024)), array($lang_common['album'], 'album', 2), //array('MAX_FILE_SIZE', $max_file_size, 4), // removed to avoid misleading error message (thread ID 61711) array($lang_upload_php['picture'], 'userpicture', 1, 1) ); if (USER_ID > 0 || $CONFIG['allow_guests_enter_file_details'] == 1) { $form_array[] = array($lang_upload_php['pic_title'], 'title', 0, 255, 1); $form_array[] = array($captionLabel, 'caption', 3, $CONFIG['max_img_desc_length']); $form_array[] = array($keywordLabel, 'keywords', 0, 255, 1); if(!empty($CONFIG['user_field1_name'])) { $form_array[] = array($CONFIG['user_field1_name'], 'user1', 0, 255, 1); } if(!empty($CONFIG['user_field2_name'])) { $form_array[] = array($CONFIG['user_field2_name'], 'user2', 0, 255, 1); } if(!empty($CONFIG['user_field3_name'])) { $form_array[] = array($CONFIG['user_field3_name'], 'user3', 0, 255, 1); } if(!empty($CONFIG['user_field4_name'])) { $form_array[] = array($CONFIG['user_field4_name'], 'user4', 0, 255, 1); } } $form_array[] = array('event', 'picture', 4); // Create the upload form create_form_simple($form_array); // Close the form with an submit button close_form($lang_upload_php['title'],1, 'ok'); list($timestamp, $form_token) = getFormToken(); echo <<< EOT EOT; // Close the table. endtable(); echo <<< EOT EOT; } elseif ($upload_form == 'swfupload') { // Show form instructions form_instructions(); // Create the upload form create_form_swfupload(); // Close the table. endtable(); } if ($CONFIG['display_xp_publish_link'] == 1) { print '
    '; starttable('100%', $icon_array['info'] . $lang_upload_php['alternative_upload'],1); print <<< EOT {$lang_upload_php['xp_publish_promote']}
    [{$lang_common['more']}] EOT; endtable(); echo '
    '; } pagefooter(); // The form has been displayed, so exit the script. exit; // Process a plugin's form submission } elseif ($superCage->post->keyExists('plugin_process')) { // Call active plugins for alternate upload forms CPGPluginAPI::action('upload_process',$upload_form); // Process the SWF upload form submission } elseif ($superCage->post->keyExists('process')) { // Make sure there is no output yet ob_clean(); header("Content-Type: text/plain"); $error_code = $superCage->files->getInt("/Filedata/error"); // Check for upload errors if (!($error_code == '0')) { // PHP has detected a file upload error. if ($error_code == '1') { $error_message = $lang_upload_php['exc_php_ini']; } elseif ($error_code == '2') { $error_message = $lang_upload_php['exc_file_size']; } elseif ($error_code == '3') { $error_message = $lang_upload_php['partial_upload']; } elseif ($error_code == '4') { $error_message = $lang_upload_php['no_upload']; } else { $error_message = $lang_upload_php['unknown_code']; } //Make a note in the error array. echo "error|$error_message|0"; // There is no need for further tests or action, so skip the remainder of the iteration. exit; } if (!$superCage->files->getRaw('/Filedata/name')) { echo "error|{$lang_upload_php['no_name']}|0"; exit; } if (!$superCage->files->getRaw('/Filedata/tmp_name')) { echo "error|{$lang_upload_php['no_tmp_name']}|0"; exit; } // Check to make sure the file was uploaded via POST. if (!is_uploaded_file($superCage->files->getRaw("/Filedata/tmp_name"))) { // We reject the file, and return the error. echo "error|{$lang_upload_php['no_post']}|0"; exit; } // Check the size of the file if $max_file_size is set to greater than 0 if ($max_file_size && filesize($superCage->files->getRaw('/Filedata/tmp_name')) > $max_file_size) { // We reject this files as file size exceeds the value set in config echo "error|{$lang_upload_php['exc_file_size']}|0"; exit; } // Check filename and extension: // Check that the file uploaded has a valid name and extension, and replace forbidden chars with underscores. // Initialise the $matches array. $matches = array(); // If magic quotes is on, remove the slashes it added to the file name. if (get_magic_quotes_gpc()) { //Using getRaw() as we have custom sanitization code below $picture_name = stripslashes($superCage->files->getRaw("/Filedata/name")); } else { $picture_name = $superCage->files->getRaw("/Filedata/name"); } $picture_name = CPGPluginAPI::filter('upload_file_name', $picture_name); // Create the holder $picture_name by translating the file name. Translate any forbidden character into an underscore. $picture_name = replace_forbidden($picture_name); // Analyze the file extension using regular expressions. if (!preg_match("/(.+)\.(.*?)\Z/", $picture_name, $matches)) { // The file name is invalid. $matches[1] = 'invalid_fname'; // Make a bogus file extension to trigger Coppermine's defenses. $matches[2] = 'xxx'; } // If there is no extension, or if the extension is unknown/not permitted by Coppermine, zap the intruder. if ($matches[2] == '' || !is_known_filetype($matches)) { // We reject the file, and make a note of the error. echo 'error|' . $lang_db_input_php['err_invalid_fext'] . ' ' . $CONFIG['allowed_file_extensions'] . '|0'; exit; } // Now we need to move the file into the /edit directory. // We need specify the path for the transitory file. // Create a prefix for easier human recognition. $prefix = "mHTTP_temp_"; //Set the correct file extension. $suffix = $matches[2]; // Generate the unique name. Keep generating new names until one that is not in use is found. do { // Create a random seed by taking the first 8 characters of an MD5 hash of a concatenation of the current UNIX epoch time and the current server process ID. $seed = substr(md5(uniqid("")), 0, 8); // Assemble the file path. $path_to_image = './'.$CONFIG['fullpath'].'edit/'. $prefix . $seed . '.' . $suffix; } while (file_exists($path_to_image)); // Create a holder called $tempname. $tempname = $prefix . $seed . '.' . $suffix; //Now we upload the file. if (!(move_uploaded_file($superCage->files->getRaw("/Filedata/tmp_name"), $path_to_image))) { // The file upload has failed. echo "error|{$lang_upload_php['impossible']}|0"; // There is no need for further tests or action, so skip the remainder of the iteration. exit; } // Change file permission @chmod($path_to_image, octdec($CONFIG['default_file_mode'])); //silence the output in case chmod is disabled // Create a testing alias. $picture_alias = $matches[1].".".$matches[2]; // Check if user selected an album to upload picture to. If not, die with error. // added by frogfoot $album = $superCage->post->getInt('album'); // If no album was select then give an error if (!$album) { echo "error|{$lang_db_input_php['album_not_selected']}|0"; exit; } // Check if the album id provided is valid if (!GALLERY_ADMIN_MODE) { $result = cpg_db_query("SELECT category FROM {$CONFIG['TABLE_ALBUMS']} WHERE aid='$album' and (uploads = 'YES' OR category = '" . (USER_ID + FIRST_USER_CAT) . "' OR owner = '" . USER_ID . "')"); if (mysql_num_rows($result) == 0) { echo "error|{$lang_db_input_php['unknown_album']}|1"; exit; } $row = mysql_fetch_array($result); mysql_free_result($result); $category = $row['category']; } else { $result = cpg_db_query("SELECT category FROM {$CONFIG['TABLE_ALBUMS']} WHERE aid='$album'"); if (mysql_num_rows($result) == 0) { echo "error|{$lang_db_input_php['unknown_album']}|1"; exit; } $row = mysql_fetch_array($result); mysql_free_result($result); $category = $row['category']; } // Pictures are moved in a directory named 10000 + USER_ID if (USER_ID && $CONFIG['silly_safe_mode'] != 1) { $filepath = $CONFIG['userpics'] . (USER_ID + FIRST_USER_CAT); $dest_dir = $CONFIG['fullpath'] . $filepath; if (!is_dir($dest_dir)) { mkdir($dest_dir, octdec($CONFIG['default_dir_mode'])); if (!is_dir($dest_dir)) { echo sprintf('error|'.$lang_db_input_php['err_mkdir'].'|1', $dest_dir); exit; } @chmod($dest_dir, octdec($CONFIG['default_dir_mode'])); //silence the output in case chmod is disabled $fp = fopen($dest_dir . '/index.php', 'w'); fwrite($fp, ' '); fclose($fp); } // Upload pictures in a sub-directory named according to the album ID if ($CONFIG['upload_create_album_directory']) { $filepath .= '/'.$album; $dest_dir .= '/'.$album; if (!is_dir($dest_dir)) { mkdir($dest_dir, octdec($CONFIG['default_dir_mode'])); if (!is_dir($dest_dir)) { echo sprintf('error|'.$lang_db_input_php['err_mkdir'].'|1', $dest_dir); exit; } @chmod($dest_dir, octdec($CONFIG['default_dir_mode'])); //silence the output in case chmod is disabled $fp = fopen($dest_dir . '/index.php', 'w'); fwrite($fp, ' '); fclose($fp); } } $dest_dir .= '/'; $filepath .= '/'; } else { $filepath = $CONFIG['userpics']; $dest_dir = $CONFIG['fullpath'] . $filepath; } // Check that target dir is writable if (!is_writable($dest_dir)) { echo sprintf('error|'.$lang_db_input_php['dest_dir_ro'].'|1', $dest_dir); exit; } //Add the Perl regex to break the actual name. preg_match("/(.+)\.(.*?)\Z/", $picture_alias, $matches); // Create a unique name for the uploaded file $nr = 0; $picture_name = $matches[1] . '.' . $matches[2]; while (file_exists($dest_dir . $picture_name)) { $picture_name = $matches[1] . '~' . $nr++ . '.' . $matches[2]; } // Create path for final location. $uploaded_pic = $dest_dir . $picture_name; // Form path to temporary image. $path_to_image = './'.$CONFIG['fullpath'].'edit/'.$tempname; // prevent moving the edit directory... if (is_dir($path_to_image)) { echo 'error|'.$lang_upload_php['failure'] . " - '$path_to_image'|0"; exit; } CPGPluginAPI::action('upload_swf_pre_move', $path_to_image); // Move the picture into its final location if (rename($path_to_image, $uploaded_pic)) { // Change file permission @chmod($uploaded_pic, octdec($CONFIG['default_file_mode'])); //silence the output in case chmod is disabled $CURRENT_PIC_DATA = array(); // Create thumbnail and intermediate image and add the image into the DB $result = add_picture($album, $filepath, $picture_name, 0, '', '', '', '', '', '', '', $category); if ($result !== true) { // The file could not be placed. $file_placement = 'no'; } else { $CURRENT_PIC_DATA['url_prefix'] = 0; // The file was placed successfully. $file_placement = 'yes'; $thumb_url = get_pic_url($CURRENT_PIC_DATA, 'thumb'); } } else { // The file was not placed successfully. $file_placement = 'no'; } if ($file_placement == 'yes') { // The previous picture was placed successfully. echo "success". ($PIC_NEED_APPROVAL ? '1' : '0') . "|" . $thumb_url; } else { // The previous image placement failed. if (isset($result['error'])) { if (isset($result['halt_upload'])) { echo "error|{$result['error']}|{$result['halt_upload']}"; } else { echo "error|{$result['error']}|0"; } } else { echo "error|{$lang_upload_php['no_place']}|0"; } } } cpg_db_query("CREATE TABLE {$CONFIG['TABLE_PREFIX']}tmp_1 (user1 varchar(255), pid int(11))"); cpg_db_query("INSERT INTO `famgallery`.`{$CONFIG['TABLE_PREFIX']}tmp_1` SET `user1` = (SELECT `title` FROM {$CONFIG['TABLE_ALBUMS']} WHERE `aid` = (SELECT aid FROM {$CONFIG['TABLE_PICTURES']} WHERE pid=(select max(pid) from {$CONFIG['TABLE_PICTURES']})))"); cpg_db_query("UPDATE `famgallery`.`{$CONFIG['TABLE_PREFIX']}tmp_1` SET `pid` = (SELECT MAX(pid) FROM {$CONFIG['TABLE_PICTURES']})"); cpg_db_query("UPDATE {$CONFIG['TABLE_PICTURES']} f, {$CONFIG['TABLE_PREFIX']}tmp_1 t SET f.user1 = t.user1 WHERE f.pid = t.pid"); cpg_db_query("DROP TABLE {$CONFIG['TABLE_PREFIX']}tmp_1"); ?>