, * Andreas Oesterreicher * Rudolf Hangl < rudolf.hangl@technikum-wien.at > * Gerald Simane-Sequens < gerald.simane-sequens@technikum-wien.at > */ require_once('../../../config/cis.config.inc.php'); require_once('../../../include/basis_db.class.php'); require_once('../../../include/functions.inc.php'); require_once('../../../include/benutzerberechtigung.class.php'); require_once ('../../../include/phrasen.class.php'); $sprache = getSprache(); $p=new phrasen($sprache); if (!$db = new basis_db()) die($p->t('global/fehlerBeimOeffnenDerDatenbankverbindung')); $user = get_uid(); if(isset($_GET['course_id'])) $course_id = $_GET['course_id']; if(isset($_GET['term_id'])) $term_id = $_GET['term_id']; if(isset($_GET['short'])) $short = $_GET['short']; if(isset($_GET['subdir'])) $subdir = $_GET['subdir']; if(isset($_POST['overwrite'])) $overwrite = $_POST['overwrite']; if(isset($_POST['create_dir'])) $create_dir = $_POST['create_dir']; if(isset($_POST['new_dir_name_text'])) $new_dir_name_text = $_POST['new_dir_name_text']; if(isset($_POST['rename_dir'])) $rename_dir = $_POST['rename_dir']; if(isset($_POST['confirm_rename'])) $confirm_rename = $_POST['confirm_rename']; if(isset($_POST['link_cut'])) $link_cut = $_POST['link_cut']; if(isset($_POST['delete_dir'])) $delete_dir = $_POST['delete_dir']; if(isset($_POST['rename_file'])) $rename_file = $_POST['rename_file']; if(isset($_POST['delete_file'])) $delete_file = $_POST['delete_file']; /* if($course_id!='' && !is_numeric($course_id)) die('Fehlerhafter Parameter'); if($term_id!='' && !is_numeric($term_id)) die('Fehlerhafter Parameter'); */ $rechte = new benutzerberechtigung(); $rechte->getBerechtigungen($user); if(check_lektor($user)) $is_lector=true; else $is_lector=false; $upload_root = DOC_ROOT.'/documents';//"../../../documents"; $link_cut = DOC_ROOT.'/documents'; if(isset($subdir)) { if(substr_count($subdir, '..') > 0 || substr_count($subdir, '.') > 0) { unset($subdir); } } if($is_lector) { $islector = true; } else { $sql_query = "SELECT student_uid FROM public.tbl_student WHERE student_uid=".$db->db_add_param($user); if($result_student = $db->db_query($sql_query)) { $num_rows_student = $db->db_num_rows($result_student); if(!($num_rows_student > 0)) { die('

'.$p->t('upload/benutzerKonnteNichtZugeordnetWerden',array($user)).'!

'); } } else die('

'.$p->t('upload/benutzerKonnteNichtZugeordnetWerden',array($user)).'!

'); $islector = false; } ?> db_add_param($user)." AND tbl_lehrveranstaltung.lehre=true AND tbl_lehrveranstaltung.lehreverzeichnis<>'' ORDER BY typ, kurzbz"; if(!$result_lector_dispatch = $db->db_query($sql_query)) die('Fehler beim Lesen aus der Datenbank'); $num_rows_lector_dispatch = $db->db_num_rows($result_lector_dispatch); echo ''; echo ''; echo ''; } else { //$sql_query = "SELECT DISTINCT ON(bz2, lehrevz) tbl_student.studiengang_kz AS id, kurzbzlang, lehrevz AS kuerzel, (tbl_lehrfach.bezeichnung || '; XX') AS bezeichnung, SUBSTRING(tbl_lehrfach.bezeichnung || '; XX', 1, CHAR_LENGTH(tbl_lehrfach.bezeichnung || '; XX') - 4) AS bz2 FROM tbl_lehrfach, public.tbl_studiengang, public.tbl_student WHERE tbl_student.studiengang_kz='$course_id' AND tbl_student.semester='$term_id' AND lehrevz='$short' AND tbl_student.uid='$user' AND tbl_studiengang.studiengang_kz=tbl_student.studiengang_kz LIMIT 1"; $sql_query = "SELECT DISTINCT tbl_lehrveranstaltung.bezeichnung, lehreverzeichnis, UPPER(tbl_studiengang.typ::varchar(1) || tbl_studiengang.kurzbz) as kurzbz FROM public.tbl_student, lehre.tbl_lehrveranstaltung, public.tbl_studiengang WHERE lehreverzeichnis=".$db->db_add_param($short)." AND tbl_student.studiengang_kz=".$db->db_add_param($course_id)." AND tbl_student.semester=".$db->db_add_param($term_id)." AND tbl_student.student_uid=".$db->db_add_param($user)." AND tbl_studiengang.studiengang_kz=tbl_student.studiengang_kz AND tbl_lehrveranstaltung.studiengang_kz=tbl_student.studiengang_kz AND tbl_lehrveranstaltung.semester=tbl_student.semester AND tbl_lehrveranstaltung.lehre=true LIMIT 1"; if(!$result_path_elements = $db->db_query($sql_query)) die('

'.$p->t('upload/benutzerKonnteNichtZugeordnetWerden',array($user)).'!

'); if(!$result_path_elements) die('

'.$p->t('upload/benutzerKonnteNichtZugeordnetWerden',array($user)).'!

'); $num_rows_path_elements = $db->db_num_rows($result_path_elements); if(!($num_rows_path_elements > 0)) { // Pruefen ob dieser Kurs ein Wahlfach ist $sql_query = "SELECT DISTINCT vw_student_lehrveranstaltung.bezeichnung, vw_student_lehrveranstaltung.lehreverzeichnis, UPPER(tbl_studiengang.typ::varchar(1) || tbl_studiengang.kurzbz) as kurzbz FROM campus.vw_student_lehrveranstaltung , public.tbl_studiengang WHERE vw_student_lehrveranstaltung.lehre=true AND vw_student_lehrveranstaltung.studiengang_kz=".$db->db_add_param($course_id)." AND vw_student_lehrveranstaltung.semester=".$db->db_add_param($term_id)." AND vw_student_lehrveranstaltung.lehreverzeichnis=".$db->db_add_param($short)." AND vw_student_lehrveranstaltung.uid=".$db->db_add_param($user)." AND tbl_studiengang.studiengang_kz=vw_student_lehrveranstaltung.studiengang_kz LIMIT 1; "; if(!$result_path_elements = $db->db_query($sql_query)) die('

'.$p->t('upload/benutzerKonnteNichtZugeordnetWerden',array($user)).'!

'); if(!$result_path_elements) die('

'.$p->t('upload/benutzerKonnteNichtZugeordnetWerden',array($user)).'!

'); $num_rows_path_elements = $db->db_num_rows($result_path_elements); if(!($num_rows_path_elements > 0)) { echo "
'; echo '
'; if(!($num_rows_lector_dispatch > 0) && !$rechte->isBerechtigt('admin') && !$rechte->isBerechtigt('lehre') && !$rechte->isBerechtigt('assistenz')) { die('

'.$p->t('upload/keineStudiengaengeDefiniert').'!

'); } echo $p->t('global/studiengang').': '; echo "\n\n"; echo ' '; if(!isset($course_id)) { foreach ($stg_arr as $key=>$elem) { $course_id=$key; $course_short = $elem; break; } } //$sql_query = "SELECT DISTINCT ON(semester) semester FROM lehre.tbl_lehrfachzuteilung WHERE lektor_uid='$user' AND NOT(lehrfachzuteilung_kurzbz='') AND studiengang_kz='$course_id' ORDER BY semester"; $sql_query = "SELECT DISTINCT semester FROM lehre.tbl_lehreinheit, lehre.tbl_lehreinheitmitarbeiter, lehre.tbl_lehrveranstaltung WHERE tbl_lehreinheit.lehrveranstaltung_id=tbl_lehrveranstaltung.lehrveranstaltung_id AND tbl_lehreinheit.lehreinheit_id=tbl_lehreinheitmitarbeiter.lehreinheit_id AND mitarbeiter_uid=".$db->db_add_param($user)." AND studiengang_kz=".$db->db_add_param($course_id)." AND tbl_lehrveranstaltung.lehre=true AND tbl_lehrveranstaltung.lehreverzeichnis<>'' ORDER BY semester"; if(!$result_lector_dispatch = $db->db_query($sql_query)) die($p->t('global/fehlerBeimLesenAusDatenbank')); $num_rows_lector_dispatch = $db->db_num_rows($result_lector_dispatch); if(!($num_rows_lector_dispatch > 0) && !$rechte->isBerechtigt('admin') && !$rechte->isBerechtigt('lehre') && !$rechte->isBerechtigt('assistenz')) die('

'.$p->t('upload/keineSemesterDefiniert').'!

'); echo $p->t('global/semester').': '; echo "\n\n"; echo ' '; if(!isset($term_id)) $term_id=$sem_arr[0]; //$sql_query = "SELECT DISTINCT ON(bz2, lehrfachzuteilung_kurzbz) lehrfachzuteilung_kurzbz AS kuerzel, (bezeichnung || '; XX') AS bezeichnung, SUBSTRING(bezeichnung || '; XX', 1, CHAR_LENGTH(bezeichnung || '; XX') - 4) AS bz2 FROM lehre.tbl_lehrfachzuteilung WHERE studiengang_kz='$course_id' AND semester='$term_id' AND NOT(lehrfachzuteilung_kurzbz='') AND lektor_uid='$user' ORDER BY bz2, lehrfachzuteilung_kurzbz"; //Nur Lehrfachzuteilungen //$sql_query = "SELECT DISTINCT lehrevz AS kuerzel, (bezeichnung || '; XX') AS bezeichnung, SUBSTRING(bezeichnung || '; XX', 1, CHAR_LENGTH(bezeichnung || '; XX') - 4) AS bz2 FROM tbl_lehrfach Join tbl_lehrveranstaltung using (lehrfach_nr) WHERE tbl_lehrfach.studiengang_kz='$course_id' AND tbl_lehrveranstaltung.semester='$term_id' AND lektor='$user' AND NOT(lehrevz='')"; $sql_query = "SELECT DISTINCT lehreverzeichnis as kuerzel, tbl_lehrveranstaltung.bezeichnung FROM lehre.tbl_lehreinheit, lehre.tbl_lehreinheitmitarbeiter, lehre.tbl_lehrveranstaltung WHERE tbl_lehreinheit.lehreinheit_id=tbl_lehreinheitmitarbeiter.lehreinheit_id AND tbl_lehrveranstaltung.lehrveranstaltung_id=tbl_lehreinheit.lehrveranstaltung_id AND tbl_lehreinheitmitarbeiter.mitarbeiter_uid=".$db->db_add_param($user)." AND tbl_lehrveranstaltung.semester=".$db->db_add_param($term_id)." AND tbl_lehrveranstaltung.studiengang_kz=".$db->db_add_param($course_id)." AND tbl_lehrveranstaltung.lehre=true"; //Admin und Lehreberechtigung if($rechte->isBerechtigt('admin',$course_id) || $rechte->isBerechtigt('lehre',$course_id) || $rechte->isBerechtigt('assistenz',$course_id)) { $sql_query = "SELECT DISTINCT lehreverzeichnis AS kuerzel, bezeichnung FROM lehre.tbl_lehrveranstaltung WHERE studiengang_kz=".$db->db_add_param($course_id)." AND semester=".$db->db_add_param($term_id)." AND tbl_lehrveranstaltung.lehre=true AND tbl_lehrveranstaltung.lehreverzeichnis<>''"; } //Fachbereichsberechtigung if($rechte->isBerechtigt('lehre') || $rechte->isBerechtigt('admin') || $rechte->isBerechtigt('assistenz')) { $arr=$rechte->getFbKz(); $ids="'-1'"; foreach ($arr as $elem) $ids.=",'$elem'"; $sql_query = $sql_query . " UNION SELECT DISTINCT tbl_lehrveranstaltung.lehreverzeichnis AS kuerzel, tbl_lehrveranstaltung.bezeichnung FROM lehre.tbl_lehrveranstaltung, lehre.tbl_lehreinheit, lehre.tbl_lehrveranstaltung as lehrfach, public.tbl_fachbereich WHERE tbl_lehrveranstaltung.lehrveranstaltung_id=tbl_lehreinheit.lehrveranstaltung_id AND tbl_lehreinheit.lehrfach_id = lehrfach.lehrveranstaltung_id AND tbl_fachbereich.oe_kurzbz = lehrfach.oe_kurzbz AND tbl_lehrveranstaltung.studiengang_kz=".$db->db_add_param($course_id)." AND tbl_lehrveranstaltung.semester=".$db->db_add_param($term_id)." AND fachbereich_kurzbz in ($ids) AND tbl_lehrveranstaltung.lehre=true AND tbl_lehrveranstaltung.lehreverzeichnis<>''"; } $sql_query .= ' ORDER BY bezeichnung, kuerzel'; //LEHRFAECHER if(!$result_lector_dispatch = $db->db_query($sql_query)) die('

'.$p->t('upload/keineGegenstaendeDefiniert').'!

'); $num_rows_lector_dispatch = $db->db_num_rows($result_lector_dispatch); //echo $sql_query; //echo ''; if(!($num_rows_lector_dispatch > 0)) { die('

'.$p->t('upload/keineGegenstaendeDefiniert').'!

'); } //echo ''; echo $p->t('global/lehrveranstaltung').': '; echo "\n\n"; echo ''; echo '
"; die('

'.$p->t('global/keineBerechtigungFuerDieseSeite') .'

'); } } $row = $db->db_fetch_object($result_path_elements, 0); $uploaddir = mb_strtolower($row->kurzbz).'/'.$term_id.'/'.mb_strtolower($row->lehreverzeichnis).'/upload'; } ?>
'; for($i = 0; $i < $numoffile; $i++) { $j = $i + 1; echo " "; echo " "; echo " "; echo " \n"; } ?>
".$p->t('upload/dateinameDarfNurBuchstaben', array($i+1))."."; } else { if($file_name != "") { if(isset($subdir) && $subdir != "") { $uploadfile = $upload_root.'/'.$uploaddir.'/'.$subdir.'/'.$file_name; } else { $uploadfile = $upload_root.'/'.$uploaddir.'/'.$file_name; } if(!file_exists($uploadfile)) { if(isset($subdir) && $subdir != "") { if(!@is_dir($upload_root.'/'.$uploaddir.'/'.$subdir)) { unset($subdir); } else { if(!stristr($uploadfile, '.php') && !stristr($uploadfile, '.cgi') && !stristr($uploadfile, '.pl') && !stristr($uploadfile, '.phtml') && !stristr($file_name,'.htaccess')) { if(copy($_FILES[$file]['tmp_name'], $uploadfile)) { exec('chmod 664 '.escapeshellarg($uploadfile)); if($islector) { exec('sudo chown :teacher '.escapeshellarg($uploadfile)); } else { exec('sudo chown :student '.escapeshellarg($uploadfile)); } } } else { $unallowed_upload = true; } } } else { if(!stristr($uploadfile, '.php') && !stristr($uploadfile, '.cgi') && !stristr($uploadfile, '.pl') && !stristr($uploadfile, '.phtml') && !stristr($file_name,'.htaccess')) { if(copy($_FILES[$file]['tmp_name'], $uploadfile)) { exec('chmod 664 '.escapeshellarg($uploadfile)); if($islector) { exec('sudo chown :teacher '.escapeshellarg($uploadfile)); } else { exec('sudo chown :student '.escapeshellarg($uploadfile)); } } } else { $unallowed_upload = true; } } } else { if(isset($overwrite)) { if(isset($subdir) && $subdir != "") { if(!@is_dir($upload_root.'/'.$uploaddir.'/'.$subdir)) { unset($subdir); } else { if(!stristr($uploadfile, '.php') && !stristr($uploadfile, '.cgi') && !stristr($uploadfile, '.pl') && !stristr($uploadfile, '.phtml') && !stristr($file_name,'.htaccess')) { if(copy($_FILES[$file]['tmp_name'], $uploadfile)) { exec('chmod 664 '.escapeshellarg($uploadfile)); if($islector) { exec('sudo chown :teacher '.escapeshellarg($uploadfile)); } else { exec('sudo chown :student '.escapeshellarg($uploadfile)); } } } else { $unallowed_upload = true; } } } else { if(!stristr($uploadfile, '.php') && !stristr($uploadfile, '.cgi') && !stristr($uploadfile, '.pl') && !stristr($uploadfile, '.phtml') && !stristr($file_name,'.htaccess')) { if(copy($_FILES[$file]['tmp_name'], $uploadfile)) { exec('chmod 664 '.escapeshellarg($uploadfile)); if($islector) { exec('sudo chown :teacher '.escapeshellarg($uploadfile)); } else { exec('sudo chown :student '.escapeshellarg($uploadfile)); } } } else { $unallowed_upload = true; } } $no_overwrite_error=false; } else $no_overwrite_error=true; } } } } } } if(isset($row_lesson) && !isset($short)) { if(isset($subdir) && $subdir != "") { echo "
kuerzel&subdir=$subdir\" enctype=\"multipart/form-data\">"; } else { echo "kuerzel\" enctype=\"multipart/form-data\">"; } } else if(isset($short)) { if(isset($subdir) && $subdir != "") { echo ""; } else { echo ""; } } else { if(isset($subdir) && $subdir != "") { echo ""; } else { echo ""; } } echo '
 
"; echo " $j. ".$p->t('global/datei').": "; echo " "; echo " "; echo "
    t('upload/dateienAutomatischUeberschreiben');?>
"; echo " "; echo " "; echo "".$p->t('upload/maxUploadgroesse').": 15 MB"; echo " "; echo " "; echo "  "; echo " "; echo ""; ?>


 t('upload/umEinenOrdnerOderEineDatei');?>


'.$p->t('upload/verzeichnisnameDarfNurBuchstaben').'!'; } else { $new_dir_name_text = trim($new_dir_name_text); if(isset($subdir) && $subdir != "") { if(!@is_dir($upload_root.'/'.$uploaddir.'/'.$subdir)) { unset($subdir); $dest_create_dir = @dir($upload_root.'/'.$uploaddir); } else { $dest_create_dir = @dir($upload_root.'/'.$uploaddir.'/'.$subdir); } } else { $dest_create_dir = @dir($upload_root.'/'.$uploaddir); } if($dest_create_dir) { if(!@is_dir($dest_create_dir->path.'/'.$new_dir_name_text) && !@file_exists($dest_create_dir->path.'/'.$new_dir_name_text) && $new_dir_name_text != "") { @mkdir($dest_create_dir->path.'/'.$new_dir_name_text); exec('chmod 775 '.escapeshellarg($dest_create_dir->path.'/'.$new_dir_name_text)); if($islector) { exec('sudo chown :teacher '.escapeshellarg($dest_create_dir->path.'/'.$new_dir_name_text)); } else { exec('sudo chown :student '.escapeshellarg($dest_create_dir->path.'/'.$new_dir_name_text)); } } } } unset($new_dir_name_text); } unset($create_dir); } if(isset($row_lesson) && !isset($short)) { if(isset($subdir) && $subdir != "") { echo "

kuerzel&subdir=$subdir\" enctype=\"multipart/form-data\">"; } else { echo "kuerzel\" enctype=\"multipart/form-data\">"; } } else if(isset($short)) { if(isset($subdir) && $subdir != "") { echo ""; } else { echo ""; } } else { if(isset($subdir) && $subdir != "") { echo ""; } else { echo ""; } } echo " ".$p->t('upload/verzeichnisname').": "; echo " t('upload/neuesVerzeichnisErstellen')."\" name=\"create_dir\" onclick='return checkvz(\"new_dir_name_text\")'>"; echo ""; echo ""; echo "
"; ?> '; } else { // XXX if(isset($short)) { echo ''; } else { echo ''; } } } else { echo ''; } echo "".$p->t('upload/unterordnerVon'); if(isset($subdir) && $subdir != "") { if(!@is_dir($upload_root.'/'.$uploaddir.'/'.$subdir)) { unset($subdir); echo '/'; } else { echo '/'.htmlentities($subdir,ENT_QUOTES,'UTF-8'); } } else { echo '/'; } ?>: t('upload/auswaehlen');?> t('upload/name');?> t('upload/aktionen');?> # t('upload/dateien');?> t('upload/kbGespeichert');?> kuerzel&subdir=$subdir\" enctype=\"multipart/form-data\" onSubmit=\"return ConfirmDir(this);\">"; } else { echo "
kuerzel\" enctype=\"multipart/form-data\" onSubmit=\"return ConfirmDir(this);\">"; } } else if(isset($short)) { if(isset($subdir) && $subdir != "") { echo ""; } else { echo ""; } } else { if(isset($subdir) && $subdir != "") { echo ""; } else { echo ""; } } while($entry = $dest_dir->read()) { unset($check_state); if($entry != "." && $entry != ".." && @is_dir($dest_dir->path.'/'.$entry)) { $dir_empty = false; if(isset($_POST['_check_state_'.$dir_count])) $check_state = $_POST['_check_state_'.$dir_count]; if(isset($check_state)) { echo "  "; } else { echo "  "; } if(isset($row_lesson) && !isset($short)) { if(isset($subdir) && $subdir != "") { echo "kuerzel&subdir=$subdir/$entry\"> ".htmlentities($entry,ENT_QUOTES,'UTF-8')." "; } else { echo "kuerzel&subdir=$entry\"> ".htmlentities($entry,ENT_QUOTES,'UTF-8')." "; } } else if(isset($short)) { if(isset($subdir) && $subdir != "") { echo " ".htmlentities($entry,ENT_QUOTES,'UTF-8')." "; } else { echo " ".htmlentities($entry,ENT_QUOTES,'UTF-8')." "; } } else { if(isset($subdir) && $subdir != "") { echo " ".htmlentities($entry,ENT_QUOTES,'UTF-8')." "; } else { echo " ".htmlentities($entry,ENT_QUOTES,'UTF-8')." "; } } if(isset($_POST["new_dir_name".$dir_count])) $new_dir_name_ = $_POST["new_dir_name".$dir_count]; if(isset($rename_dir) && isset($check_state)) { echo " "; } else if(isset($confirm_rename) && isset($check_state)) { if(isset($new_dir_name_) && $new_dir_name_ != "") { if(!@is_dir($dest_dir->path.'/'.$new_dir_name_) && !@file_exists($dest_dir->path.'/'.$new_dir_name_)) { rename($dest_dir->path.'/'.$entry, $dest_dir->path.'/'.$new_dir_name_); $b_refresh_dir = true; unset($check_state); } else { unset($check_state); $b_refresh_dir = true; } } echo "t('global/umbenennen')."\"> t('global/loeschen')."\" onClick=\"del=true;\">"; } else if(isset($delete_dir) && isset($check_state)) { if(@is_dir($dest_dir->path.'/'.$entry)) { writeCISlog('DELETE', 'rm -r "'.$dest_dir->path.'/'.$entry.'"'); exec('rm -r '.escapeshellarg($dest_dir->path.'/'.$entry)); } unset($check_state); } else { if(@is_dir($dest_dir->path.'/'.$entry)) { $tmp_dir_entry = dir($dest_dir->path.'/'.$entry); } echo "t('global/umbenennen')."\"> t('global/loeschen')."\" onClick=\"del=true;\">"; } if(isset($tmp_dir_entry)) { while($sub_entry = $tmp_dir_entry->read()) { if(!@is_dir($tmp_dir_entry->path.'/'.$sub_entry) && $sub_entry != "") { @$sub_dir_filesize += round(filesize($tmp_dir_entry->path.'/'.$sub_entry) / 1024); @$sub_dir_filecount++; } } } if(!isset($sub_dir_filesize)) { $sub_dir_filesize = 0; } if(!isset($sub_dir_filecount)) { $sub_dir_filecount = 0; } @$total_filesize += $sub_dir_filesize; @$total_filecount += $sub_dir_filecount; echo "$sub_dir_filecount $sub_dir_filesize "; $sub_dir_filesize = 0; $sub_dir_filecount = 0; $dir_count++; } } if(isset($delete_dir)) { unset($delete_dir); die(""); } if(isset($b_refresh_dir)) { die(""); } if(!isset($dir_empty) || $dir_empty == true) { echo ""; echo "  ".$p->t('upload/keineOrdnerGefunden')."."; echo ""; } echo ""; } else { $dir_count = 0; echo ""; echo "  ".$p->t('upload/keineOrdnerGefunden')."."; echo ""; } ?> '; } else { // XXX if(isset($short)) { echo ''; } else { echo ''; } } } else { echo ''; } ?> t('upload/dateienImOrdner');?> : t('upload/auswaehlen');?> t('upload/name');?> t('upload/aktionen');?> # t('upload/dateien');?> t('upload/kbGespeichert');?> path); if(isset($dest_dir) && $dest_dir != "") { $file_count = 0; if(isset($row_lesson) && !isset($short)) { if(isset($subdir) && $subdir != "") { echo "
kuerzel&subdir=$subdir\" enctype=\"multipart/form-data\" onSubmit=\"return ConfirmFile(this);\">"; } else { echo "kuerzel\" enctype=\"multipart/form-data\" onSubmit=\"return ConfirmFile(this);\">"; } } else if($short) { if(isset($subdir) && $subdir != "") { echo ""; } else { echo ""; } } else { if(isset($subdir) && $subdir != "") { echo ""; } else { echo ""; } } while($entry = $dest_dir->read()) { if(!@is_dir($dest_dir->path.'/'.$entry) && substr($entry,0,1)!=".") { unset($check_state); $null_file = false; if(isset($_POST['_check_state_f'.$file_count])) $check_state = $_POST['_check_state_f'.$file_count]; if(isset($check_state)) { echo "  "; } else { echo "  "; } if(!isset($link_cut)) $link_cut=''; $link_path = '../../../documents'.mb_substr($dest_dir->path, mb_strlen($link_cut)).'/'.urlencode($entry); //+ durch %20 ersetzten damit Files mit leerzeichen geoeffnet werden koennen $link_path = str_replace("+","%20",$link_path); echo "  ".htmlentities($entry, ENT_QUOTES, 'UTF-8')." "; $new_file_name_=''; if(isset($_POST['new_file_name'.$file_count])) $new_file_name_ = $_POST['new_file_name'.$file_count]; if(stristr($new_file_name_,'..')) die('Invalid Parameter detected'); if(isset($rename_file) && isset($check_state)) { echo " "; } else if(isset($confirm_rename) && isset($check_state)) { if(isset($new_file_name_) && $new_file_name_ != "") { if(!@file_exists($dest_dir->path.'/'.$new_file_name_) && !@is_dir($dest_dir->path.'/'.$new_file_name_)) { if(!stristr($new_file_name_, '.php') && !stristr($new_file_name_, '.cgi') && !stristr($new_file_name_, '.pl') && !stristr($new_file_name_, '.phtml') && !stristr($new_file_name_,'.htaccess')) { rename($dest_dir->path.'/'.$entry, $dest_dir->path.'/'.$new_file_name_); $b_refresh_files = true; unset($check_state); } else { $unallowed_rename = true; } } else { unset($check_state); $b_refresh_files = true; } } echo "t('global/umbenennen')."\"> t('global/loeschen')."\" onClick=\"del=true;\">"; } else if(isset($delete_file) && isset($check_state)) { if(!@is_dir($dest_dir->path.'/'.$entry)) { writeCISlog('DELETE', 'rm -r "'.$dest_dir->path.'/'.$entry.'"'); exec('rm -r '.escapeshellarg($dest_dir->path.'/'.$entry)); } unset($check_state); } else { echo "t('global/umbenennen')."\"> t('global/loeschen')."\" onClick=\"del=true;\">"; } if(!isset($delete_file) && !isset($b_refresh_files)) { $cur_filesize = round(filesize($dest_dir->path.'/'.$entry) / 1024); $file_last_access = date("j F Y, H:i:s", filemtime($dest_dir->path.'/'.$entry)); } else { $cur_filesize=0; $file_last_access=''; } echo "$cur_filesize $file_last_access "; @$total_filesize += $cur_filesize; $file_count++; } } if(!isset($total_filesize)) { $total_filesize = 0; } if(isset($delete_file)) { unset($delete_file); die(""); } if(isset($b_refresh_files)) { die(""); } if(!isset($null_file) || $null_file == true) { echo ""; echo "  ".$p->t('upload/keineDateienGefunden')."."; echo ""; } else { echo " "; } echo ""; } else { $file_count = 0; echo ""; echo "  Es wurden keine Dateien gefunden / Hauptordner nicht gefunden."; echo ""; echo ""; } @$total_filecount += $file_count; if(!isset($total_filesize)) { $total_filesize = 0; } ?> t('upload/dateienInOrdnern',array($total_filecount,$dir_count,$total_filesize) );?> '.$p->t('upload/dateiAufServerDateiformat').'.'; } else if(isset($unallowed_rename) && $unallowed_rename == true) { unset($unallowed_rename); echo ''.$p->t('upload/formattributInEinNeues').'.'; } if(isset($no_overwrite_error) && $no_overwrite_error == true) { unset($no_overwrite_error); echo ''.$p->t('upload/dateiExistiertBereits').''; } ?>