http://masui.net/pukiwiki/ modified by PANDA http://home.arino.jp/ */ // upload dir(must set end of /) if (!defined('UPLOAD_DIR')) { define('UPLOAD_DIR','./attach/'); } // max file size for upload on PHP(PHP default 2MB) ini_set('upload_max_filesize','2M'); // max file size for upload on script of PukiWiki(default 1MB) define('MAX_FILESIZE',1000000); // 管理者だけが添付ファイルをアップロードできるようにする define('ATTACH_UPLOAD_ADMIN_ONLY',FALSE); // FALSE or TRUE // 管理者だけが添付ファイルを削除できるようにする define('ATTACH_DELETE_ADMIN_ONLY',FALSE); // FALSE or TRUE // アップロード/削除時にパスワードを要求する(ADMIN_ONLYが優先) define('ATTACH_PASSWORD_REQUIRE',FALSE); // FALSE or TRUE // file icon image if (!defined('FILE_ICON')) { define('FILE_ICON','

'); } // mime-typeを記述したページ define('ATTACH_CONFIG_PAGE_MIME','plugin/attach/mime-type'); //-------- init function plugin_attach_init() { $messages = array( '_attach_messages'=>array( 'msg_uploaded' => '$1 にアップロードしました', 'msg_deleted' => '$1 からファイルを削除しました', 'msg_freezed' => '添付ファイルを凍結しました。', 'msg_unfreezed'=> '添付ファイルを凍結解除しました。', 'msg_upload' => '$1 への添付', 'msg_info' => '添付ファイルの情報', 'msg_confirm' => '

%s を削除します。

', 'msg_list' => '添付ファイル一覧', 'msg_listpage' => '$1 の添付ファイル一覧', 'msg_listall' => '全ページの添付ファイル一覧', 'msg_file' => '添付ファイル', 'msg_maxsize' => 'アップロード可能最大ファイルサイズは %s です。', 'msg_count' => ' %s件', 'msg_password' => 'パスワード', 'msg_adminpass'=> '管理者パスワード', 'msg_delete' => 'このファイルを削除します。', 'msg_freeze' => 'このファイルを凍結します。', 'msg_unfreeze' => 'このファイルを凍結解除します。', 'msg_isfreeze' => 'このファイルは凍結されています。', 'msg_require' => '(管理者パスワードが必要です)', 'msg_filesize' => 'サイズ', 'msg_date' => '登録日時', 'msg_dlcount' => 'アクセス数', 'msg_md5hash' => 'MD5ハッシュ値', 'msg_page' => 'ページ', 'msg_filename' => '格納ファイル名', 'err_noparm' => '$1 へはアップロード・削除はできません', 'err_exceed' => '$1 へのファイルサイズが大きすぎます', 'err_exists' => '$1 に同じファイル名が存在します', 'err_notfound' => '$1 にそのファイルは見つかりません', 'err_noexist' => '添付ファイルがありません。', 'err_delete' => '$1 からファイルを削除できませんでした', 'err_password' => 'パスワードが一致しません。', 'err_adminpass'=> '管理者パスワードが一致しません。', 'btn_upload' => 'アップロード', 'btn_info' => '詳細', 'btn_submit' => '実行' ) ); set_plugin_messages($messages); } //-------- convert function plugin_attach_convert() { global $vars; if (!ini_get('file_uploads')) { return 'file_uploads disabled'; } $nolist = $noform = FALSE; if (func_num_args() > 0) { foreach (func_get_args() as $arg) { $arg = strtolower($arg); $nolist |= ($arg == 'nolist'); $noform |= ($arg == 'noform'); } } $ret = ''; if (!$nolist) { $obj = &new AttachPages($vars['page']); $ret .= $obj->to_string($vars['page'],TRUE); } if (!$noform) { $ret .= attach_form($vars['page']); } return $ret; } //-------- action function plugin_attach_action() { global $vars; if (array_key_exists('openfile',$vars)) { $vars['pcmd'] = 'open'; $vars['file'] = $vars['openfile']; } if (array_key_exists('delfile',$vars)) { $vars['pcmd'] = 'delete'; $vars['file'] = $vars['delfile']; } if (array_key_exists('attach_file',$_FILES) and is_uploaded_file($_FILES['attach_file']['tmp_name'])) { return attach_upload(); } $age = array_key_exists('age',$vars) ? $vars['age'] : 0; $pcmd = array_key_exists('pcmd',$vars) ? $vars['pcmd'] : ''; switch ($pcmd) { case 'info': return attach_info(); case 'delete': return attach_delete(); case 'open': return attach_open($vars['refer'],$vars['file'],$age); case 'list': return attach_list(); case 'freeze': return attach_freeze(TRUE); case 'unfreeze':return attach_freeze(FALSE); case 'upload': return attach_showform(); } if ($vars['page'] == '' or !is_page($vars['page'])) { return attach_list(); } return attach_showform(); } //-------- call from skin function attach_filelist() { global $vars,$_attach_messages; plugin_attach_init(); $obj = &new AttachPages($vars['page'],0); if (!array_key_exists($vars['page'],$obj->pages)) { return ''; } return $_attach_messages['msg_file'].': '.$obj->to_string($vars['page'],TRUE)."\n"; } //-------- 実体 //ファイルアップロード function attach_upload($force = FALSE) { global $vars,$adminpass; global $_attach_messages; if ($_FILES['attach_file']['size'] > MAX_FILESIZE) { return array('msg'=>$_attach_messages['err_exceed']); } if (!$force and !is_editable($vars['refer'])) { return array('msg'=>$_attach_messages['err_noparm']); } if (ATTACH_UPLOAD_ADMIN_ONLY and md5($vars['pass']) != $adminpass) { return array('msg'=>$_attach_messages['err_adminpass']); } $obj = &new AttachFile($vars['refer'],$_FILES['attach_file']['name']); if ($obj->exist) { return array('msg'=>$_attach_messages['err_exists']); } move_uploaded_file($_FILES['attach_file']['tmp_name'],$obj->filename); if (is_page($vars['refer'])) { touch(get_filename($vars['refer'])); } $obj->getstatus(); $obj->status['pass'] = array_key_exists('pass',$vars) ? md5($vars['pass']) : ''; $obj->putstatus(); return array('msg'=>$_attach_messages['msg_uploaded']); } //詳細フォームを表示 function attach_info($err='') { global $script,$vars; global $_attach_messages; $retval = array(); $age = array_key_exists('age',$vars) ? $vars['age'] : 0; $obj = &new AttachFile($vars['refer'],$vars['file'],$age); $obj->getstatus(); if (!$obj->exist) { return array('msg' => $_attach_messages['err_notfound']); } $s_file = htmlspecialchars($vars['file']); $s_refer = htmlspecialchars($vars['refer']); $r_refer = rawurlencode($vars['refer']); $retval['msg'] = sprintf($_attach_messages['msg_info'],$s_file); $retval['body'] = ($err == '') ? '' : '

'.$_attach_messages[$err].'

'; $retval['body'] .= << [{$_attach_messages['msg_list']}] [{$_attach_messages['msg_listall']}]
EOD; if ($obj->status['freeze']) { $msg_freezed = '

'.$_attach_messages['msg_isfreeze'].'

'; $msg_delete = ''; $msg_freeze = ''.$_attach_messages['msg_unfreeze']; } else { $msg_freezed = ''; $msg_delete = ''.$_attach_messages['msg_delete']; if (ATTACH_DELETE_ADMIN_ONLY) { $msg_delete .= $_attach_messages['msg_require']; } $msg_delete .= '
'; $msg_freeze = ''.$_attach_messages['msg_freeze']; } $info = $obj->to_string(TRUE,FALSE); $type = attach_mime_content_type($obj->filename); $age = (array_key_exists('age',$vars) and is_numeric($vars['age'])) ? $vars['age'] : 0; $s_page = htmlspecialchars($obj->page); $retval['body'] .= <<< EOD

$info: {$_attach_messages['msg_page']}:$s_page; {$_attach_messages['msg_filename']}:{$obj->filename}; {$_attach_messages['msg_md5hash']}:{$obj->md5hash}; {$_attach_messages['msg_filesize']}:{$obj->size_str} ({$obj->size} bytes); Content-type:$type; {$_attach_messages['msg_date']}:{$obj->time_str}; {$_attach_messages['msg_dlcount']}:{$obj->status['count'][$age]}

EOD; if ($obj->age) { return $retval; } $retval['body'] .= <<< EOD

EOD; return $retval; } //削除 function attach_delete() { global $vars,$adminpass; global $_attach_messages; if (is_freeze($vars['refer']) or !is_editable($vars['refer'])) { return array('msg' => $_attach_messages['err_noparm']); } $obj = &new AttachFile($vars['refer'],$vars['file']); if (!$obj->exist) { return array('msg' => $_attach_messages['err_notfound']); } $obj->getstatus(); if ($obj->status['freeze']) { return attach_info('msg_isfreeze'); } if (md5($vars['pass']) != $adminpass) { if (ATTACH_DELETE_ADMIN_ONLY) { return attach_info('err_adminpass'); } else if (ATTACH_PASSWORD_REQUIRE and md5($vars['pass']) != $obj->status['pass']) { return attach_info('err_password'); } } //バックアップ do { $age = ++$obj->status['age']; } while (file_exists($obj->basename.'.'.$age)); if (!rename($obj->basename,$obj->basename.'.'.$age)) { // 削除失敗 why? return array('msg' => $_attach_messages['err_delete']); } $obj->status['count'][$age] = $obj->status['count'][0]; $obj->status['count'][0] = 0; $obj->putstatus(); if (is_page($vars['refer'])) { touch(get_filename($vars['refer'])); } return array('msg' => $_attach_messages['msg_deleted']); } //凍結 function attach_freeze($freeze) { global $vars,$adminpass; global $_attach_messages; if (is_freeze($vars['refer']) or !is_editable($vars['refer'])) { return array('msg' => $_attach_messages['err_noparm']); } $obj = &new AttachFile($vars['refer'],$vars['file']); if (!$obj->exist) { return array('msg' => $_attach_messages['err_notfound']); } if (md5($vars['pass']) != $adminpass) { return attach_info('err_adminpass'); } $obj->getstatus(); $obj->status['freeze'] = $freeze; $obj->putstatus(); return array('msg' => $_attach_messages[$freeze ? 'msg_freezed' : 'msg_unfreezed']); } //ダウンロード function attach_open($page,$file,$age=0) { global $_attach_messages; $obj = &new AttachFile($page,$file,$age); if (!$obj->exist) { return array('msg' => $_attach_messages['err_notfound']); } $obj->getstatus(); $obj->status['count'][$age]++; $obj->putstatus(); $type = attach_mime_content_type($obj->filename); $name = htmlspecialchars($obj->file); // for japanese (???) $name = mb_convert_encoding($name,'SJIS','auto'); header('Content-Disposition: inline; filename="'.$name.'"'); header('Content-Length: '.$obj->size); header('Content-Type: '.$type); @readfile($obj->filename); exit; } //一覧取得 function attach_list() { global $vars; global $_attach_messages; $refer = array_key_exists('refer',$vars) ? $vars['refer'] : ''; $obj = &new AttachPages($refer); $msg = $_attach_messages[$refer == '' ? 'msg_listall' : 'msg_listpage']; $body = ($refer == '' or array_key_exists($refer,$obj->pages)) ? $obj->to_string($refer,FALSE) : $_attach_messages['err_noexist']; return array('msg'=>$msg,'body'=>$body); } //アップロードフォームを表示 function attach_showform() { global $vars; global $_attach_messages; $vars['refer'] = $vars['page']; $body = ini_get('file_uploads') ? attach_form($vars['page']) : 'file_uploads disabled.'; return array('msg'=>$_attach_messages['msg_upload'],'body'=>$body); } //-------- サービス //mime-typeの決定 function attach_mime_content_type($filename) { $type = 'application/octet-stream'; //default if (!file_exists($filename)) { return $type; } $size = @getimagesize($filename); if (is_array($size)) { switch ($size[2]) { case 1: return 'image/gif'; case 2: return 'image/jpeg'; case 3: return 'image/png'; case 4: return 'application/x-shockwave-flash'; } } if (!preg_match('/_([0-9A-Z]+)$/',$filename,$matches)) { return $type; } $filename = decode($matches[1]); // mime-type一覧表を取得 $config = new Config(ATTACH_CONFIG_PAGE_MIME); $table = $config->read() ? $config->get('MimeType') : array(); // メモリ節約 unset($config); foreach ($table as $row) { $_type = trim($row[0]); $exts = preg_split('/\s+|,/',trim($row[1]),-1,PREG_SPLIT_NO_EMPTY); foreach ($exts as $ext) { if (preg_match("/\.$ext$/i",$filename)) { return $_type; } } } return $type; } //アップロードフォーム function attach_form($page) { global $script,$vars; global $_attach_messages; $r_page = rawurlencode($page); $s_page = htmlspecialchars($page); $navi = << [{$_attach_messages['msg_list']}] [{$_attach_messages['msg_listall']}]
EOD; if (!(bool)ini_get('file_uploads')) { return $navi; } $maxsize = MAX_FILESIZE; $msg_maxsize = sprintf($_attach_messages['msg_maxsize'],number_format($maxsize/1000)."KB"); $pass = ''; if (ATTACH_PASSWORD_REQUIRE or ATTACH_UPLOAD_ADMIN_ONLY) { $title = $_attach_messages[ATTACH_UPLOAD_ADMIN_ONLY ? 'msg_adminpass' : 'msg_password']; $pass = '
'.$title.': '; } return <<

$navi $msg_maxsize
{$_attach_messages['msg_file']}: $pass

EOD; } //-------- クラス //ファイル class AttachFile { var $page,$file,$age,$basename,$filename,$logname; var $time = 0; var $size = 0; var $time_str = ''; var $size_str = ''; var $status = array('count'=>array(0),'age'=>'','pass'=>'','freeze'=>FALSE); function AttachFile($page,$file,$age=0) { $this->page = $page; $this->file = $file; $this->age = is_numeric($age) ? $age : 0; $this->basename = UPLOAD_DIR.encode($page).'_'.encode($file); $this->filename = $this->basename . ($age ? '.'.$age : ''); $this->logname = $this->basename.'.log'; $this->exist = file_exists($this->filename); $this->time = $this->exist ? filemtime($this->filename) - LOCALZONE : 0; $this->md5hash = $this->exist ? md5_file($this->filename) : ''; } // ファイル情報取得 function getstatus() { if (!$this->exist) { return; } // ログファイル取得 if (file_exists($this->logname)) { $data = file($this->logname); foreach ($this->status as $key=>$value) { $this->status[$key] = chop(array_shift($data)); } $this->status['count'] = explode(',',$this->status['count']); } $this->time_str = get_date('Y/m/d H:i:s',$this->time); $this->size = filesize($this->filename); $this->size_str = sprintf('%01.1f',round($this->size)/1000,1).'KB'; } //ステータス保存 function putstatus() { $this->status['count'] = join(',',$this->status['count']); $fp = fopen($this->logname,'wb') or die_message('cannot write '.$this->logname); flock($fp,LOCK_EX); foreach ($this->status as $key=>$value) { fwrite($fp,$value."\n"); } flock($fp,LOCK_UN); fclose($fp); } function datecomp($a,$b) { return ($a->time == $b->time) ? 0 : (($a->time > $b->time) ? -1 : 1); } function to_string($showicon,$showinfo) { global $script,$date_format,$time_format,$weeklabels; global $_attach_messages; $this->getstatus(); $param = '&file='.rawurlencode($this->file).'&refer='.rawurlencode($this->page). ($this->age ? '&age='.$this->age : ''); $title = $this->time_str.' '.$this->size_str; $label = ($showicon ? FILE_ICON : '').htmlspecialchars($this->file); if ($this->age) { $label .= ' (backup No.'.$this->age.')'; } $info = $count = ''; if ($showinfo) { $_title = str_replace('$1',rawurlencode($this->file),$_attach_messages['msg_info']); $info = "\n[{$_attach_messages['btn_info']}]"; $count = ($showicon and !empty($this->status['count'][$this->age])) ? sprintf($_attach_messages['msg_count'],$this->status['count'][$this->age]) : ''; } return "$label$count$info"; } } // ファイルコンテナ class AttachFiles { var $page; var $files = array(); function AttachFiles($page) { $this->page = $page; } function add($file,$age) { $this->files[$file][$age] = &new AttachFile($this->page,$file,$age); } // ファイル一覧を取得 function to_string($flat) { if ($flat) { return $this->to_flat(); } $ret = ''; $files = array_keys($this->files); sort($files); foreach ($files as $file) { $_files = array(); foreach (array_keys($this->files[$file]) as $age) { $_files[$age] = $this->files[$file][$age]->to_string(FALSE,TRUE); } if (!array_key_exists(0,$_files)) { $_files[0] = htmlspecialchars($file); } ksort($_files); $_file = $_files[0]; unset($_files[0]); $ret .= "

$_file\n"; if (count($_files)) { $ret .= "

".join("
",$_files)."

\n"; } $ret .= "

\n"; } return make_pagelink($this->page)."\n

\n$ret\n"; } // ファイル一覧を取得(inline) function to_flat() { $ret = ''; $files = array(); foreach (array_keys($this->files) as $file) { if (array_key_exists(0,$this->files[$file])) { $files[$file] = &$this->files[$file][0]; } } uasort($files,array('AttachFile','datecomp')); foreach (array_keys($files) as $file) { $ret .= $files[$file]->to_string(TRUE,TRUE).' '; } return $ret; } } // ページコンテナ class AttachPages { var $pages = array(); function AttachPages($page='',$age=NULL) { $dir = opendir(UPLOAD_DIR) or die('directory '.UPLOAD_DIR.' is not exist or not readable.'); $page_pattern = ($page == '') ? '[0-9A-F]+' : preg_quote(encode($page),'/'); $age_pattern = ($age === NULL) ? '(?:\.([0-9]+))?' : ($age ? "\.($age)" : ''); $pattern = "/^({$page_pattern})_([0-9A-F]+){$age_pattern}$/"; while ($file = readdir($dir)) { if (!preg_match($pattern,$file,$matches)) { continue; } $_page = decode($matches[1]); $_file = decode($matches[2]); $_age = array_key_exists(3,$matches) ? $matches[3] : 0; if (!array_key_exists($_page,$this->pages)) { $this->pages[$_page] = &new AttachFiles($_page); } $this->pages[$_page]->add($_file,$_age); } closedir($dir); } function to_string($page='',$flat=FALSE) { if ($page != '') { if (!array_key_exists($page,$this->pages)) { return ''; } return $this->pages[$page]->to_string($flat); } $ret = ''; $pages = array_keys($this->pages); sort($pages); foreach ($pages as $page) { $ret .= '

'.$this->pages[$page]->to_string($flat)."

\n"; } return "\n

\n".$ret."\n"; } } ?>