| 831 |
florian |
1 |
<?php
|
|
|
2 |
|
|
|
3 |
////////////////////////////////////////////////////////////////////////////////
|
|
|
4 |
// //
|
|
|
5 |
// Copyright (C) 2006 Phorum Development Team //
|
|
|
6 |
// http://www.phorum.org //
|
|
|
7 |
// //
|
|
|
8 |
// This program is free software. You can redistribute it and/or modify //
|
|
|
9 |
// it under the terms of either the current Phorum License (viewable at //
|
|
|
10 |
// phorum.org) or the Phorum License that was distributed with this file //
|
|
|
11 |
// //
|
|
|
12 |
// This program is distributed in the hope that it will be useful, //
|
|
|
13 |
// but WITHOUT ANY WARRANTY, without even the implied warranty of //
|
|
|
14 |
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. //
|
|
|
15 |
// //
|
|
|
16 |
// You should have received a copy of the Phorum License //
|
|
|
17 |
// along with this program. //
|
|
|
18 |
////////////////////////////////////////////////////////////////////////////////
|
|
|
19 |
|
|
|
20 |
if(!defined("PHORUM")) return;
|
|
|
21 |
|
|
|
22 |
if ($do_detach)
|
|
|
23 |
{
|
|
|
24 |
// Find the message to detach.
|
|
|
25 |
foreach ($message["attachments"] as $id => $info)
|
|
|
26 |
{
|
|
|
27 |
if ($info["file_id"] == $do_detach && $info["keep"])
|
|
|
28 |
{
|
|
|
29 |
// Attachments which are not yet linked to a message
|
|
|
30 |
// can be deleted immediately. Linked attachments should
|
|
|
31 |
// be kept in the db, in case the users clicks "Cancel".
|
|
|
32 |
if (! $info["linked"]) {
|
|
|
33 |
phorum_db_file_delete($info["file_id"]);
|
|
|
34 |
unset($message["attachments"][$id]);
|
|
|
35 |
} else {
|
|
|
36 |
$message["attachments"][$id]["keep"] = false;
|
|
|
37 |
}
|
|
|
38 |
|
|
|
39 |
// Run the after_detach hook.
|
|
|
40 |
list($message,$info) =
|
|
|
41 |
phorum_hook("after_detach", array($message,$info));
|
|
|
42 |
|
|
|
43 |
$attach_count--;
|
|
|
44 |
|
|
|
45 |
break;
|
|
|
46 |
}
|
|
|
47 |
}
|
|
|
48 |
}
|
|
|
49 |
|
|
|
50 |
// Attachment(s) uploaded.
|
|
|
51 |
elseif ($do_attach && ! empty($_FILES))
|
|
|
52 |
{
|
|
|
53 |
// The editor template that I use only supports one upload
|
|
|
54 |
// at a time. This code supports multiple uploads.
|
|
|
55 |
$attached = 0;
|
|
|
56 |
foreach ($_FILES as $file)
|
|
|
57 |
{
|
|
|
58 |
// Not too many attachments?
|
|
|
59 |
if ($attach_count >= $PHORUM["max_attachments"]) break;
|
|
|
60 |
|
|
|
61 |
// Check if the tempfile is an uploaded file?
|
|
|
62 |
if(! is_uploaded_file($file["tmp_name"])) continue;
|
|
|
63 |
|
|
|
64 |
// Some problems in uploading result in files which are
|
|
|
65 |
// zero in size. We asume that people who upload zero byte
|
|
|
66 |
// files will almost always have problems uploading.
|
|
|
67 |
if ($file["size"] == 0) continue;
|
|
|
68 |
|
|
|
69 |
// check with PHP and MySQL on attachment size
|
|
|
70 |
$php_limit = ini_get('upload_max_filesize')*1024;
|
|
|
71 |
$max_packetsize = phorum_db_maxpacketsize();
|
|
|
72 |
if ($max_packetsize == NULL) {
|
|
|
73 |
$db_limit = $php_limit;
|
|
|
74 |
} else {
|
|
|
75 |
$db_limit = $max_packetsize/1024*.6;
|
|
|
76 |
}
|
|
|
77 |
if($PHORUM["max_attachment_size"]==0){
|
|
|
78 |
$PHORUM["max_attachment_size"] = min($php_limit, $db_limit);
|
|
|
79 |
} else {
|
|
|
80 |
$PHORUM["max_attachment_size"] = min($PHORUM["max_attachment_size"], $php_limit, $db_limit);
|
|
|
81 |
}
|
|
|
82 |
|
|
|
83 |
// Isn't the attachment too large?
|
|
|
84 |
if ($PHORUM["max_attachment_size"] > 0 &&
|
|
|
85 |
$file["size"] > $PHORUM["max_attachment_size"]*1024) {
|
|
|
86 |
$PHORUM["DATA"]["ERROR"] = str_replace(
|
|
|
87 |
'%size%',
|
|
|
88 |
phorum_filesize($PHORUM["max_attachment_size"] * 1024),
|
|
|
89 |
$PHORUM["DATA"]["LANG"]["AttachFileSize"]
|
|
|
90 |
);
|
|
|
91 |
phorum_filesize($PHORUM["max_attachment_size"] * 1024);
|
|
|
92 |
$error_flag = true;
|
|
|
93 |
break;
|
|
|
94 |
}
|
|
|
95 |
|
|
|
96 |
// Isn't the total attachment size too large?
|
|
|
97 |
if ($PHORUM["max_totalattachment_size"] > 0 &&
|
|
|
98 |
($file["size"] + $attach_totalsize) > $PHORUM["max_totalattachment_size"]*1024) {
|
|
|
99 |
$PHORUM["DATA"]["ERROR"] = str_replace(
|
|
|
100 |
'%size%',
|
|
|
101 |
phorum_filesize($PHORUM["max_totalattachment_size"] * 1024),
|
|
|
102 |
$PHORUM["DATA"]["LANG"]["AttachTotalFileSize"]
|
|
|
103 |
);
|
|
|
104 |
$error_flag = true;
|
|
|
105 |
break;
|
|
|
106 |
}
|
|
|
107 |
|
|
|
108 |
// Is the type of file acceptable?
|
|
|
109 |
if(! empty($PHORUM["allow_attachment_types"]))
|
|
|
110 |
{
|
|
|
111 |
$ext=substr($file["name"], strrpos($file["name"], ".")+1);
|
|
|
112 |
$allowed_exts=explode(";", $PHORUM["allow_attachment_types"]);
|
|
|
113 |
if (! in_array(strtolower($ext), $allowed_exts)) {
|
|
|
114 |
$PHORUM["DATA"]["ERROR"] =
|
|
|
115 |
$PHORUM["DATA"]["LANG"]["AttachInvalidType"] . " ".
|
|
|
116 |
str_replace('%types%', str_replace(";", ", ", $PHORUM["allow_attachment_types"]), $PHORUM["DATA"]["LANG"]["AttachFileTypes"]);
|
|
|
117 |
$error_flag = true;
|
|
|
118 |
break;
|
|
|
119 |
}
|
|
|
120 |
}
|
|
|
121 |
|
|
|
122 |
// Read in the file.
|
|
|
123 |
$fp = fopen($file["tmp_name"], "r");
|
|
|
124 |
if (! $fp) continue;
|
|
|
125 |
$file["data"] = base64_encode(fread($fp, $file["size"]));
|
|
|
126 |
fclose($fp);
|
|
|
127 |
|
|
|
128 |
// copy the current user_id to the $file array for the hook
|
|
|
129 |
$file["user_id"]=$PHORUM["user"]["user_id"];
|
|
|
130 |
|
|
|
131 |
// Run the before_attach hook.
|
|
|
132 |
list($message, $file) =
|
|
|
133 |
phorum_hook("before_attach", array($message, $file));
|
|
|
134 |
|
|
|
135 |
// Add the file to the database. We add it using message_id
|
|
|
136 |
// 0 (zero). Only when the message gets saved definitely,
|
|
|
137 |
// the message_id will be updated to link the file to the
|
|
|
138 |
// forum message. This is mainly done so we can support
|
|
|
139 |
// attachments for new messages, which do not yet have
|
|
|
140 |
// a message_id assigned.
|
|
|
141 |
$file_id = phorum_db_file_save(
|
|
|
142 |
$PHORUM["user"]["user_id"],
|
|
|
143 |
$file["name"], $file["size"],
|
|
|
144 |
$file["data"], 0, PHORUM_LINK_EDITOR
|
|
|
145 |
);
|
|
|
146 |
|
|
|
147 |
// Create new attachment information.
|
|
|
148 |
$new_attachment = array(
|
|
|
149 |
"file_id" => $file_id,
|
|
|
150 |
"name" => $file["name"],
|
|
|
151 |
"size" => $file["size"],
|
|
|
152 |
"keep" => true,
|
|
|
153 |
"linked" => false,
|
|
|
154 |
);
|
|
|
155 |
|
|
|
156 |
// Run the after_attach hook.
|
|
|
157 |
list($message, $new_attachment) =
|
|
|
158 |
phorum_hook("after_attach", array($message, $new_attachment));
|
|
|
159 |
|
|
|
160 |
// Add the attachment to the message.
|
|
|
161 |
$message['attachments'][] = $new_attachment;
|
|
|
162 |
$attach_totalsize += $new_attachment["size"];
|
|
|
163 |
$attach_count++;
|
|
|
164 |
$attached++;
|
|
|
165 |
}
|
|
|
166 |
|
|
|
167 |
// Show a generic error message if nothing was attached and
|
|
|
168 |
// no specific message was set.
|
|
|
169 |
if (! $error_flag && ! $attached) {
|
|
|
170 |
$PHORUM["DATA"]["ERROR"] =
|
|
|
171 |
$PHORUM["DATA"]["LANG"]["AttachmentsMissing"];
|
|
|
172 |
$error_flag = true;
|
|
|
173 |
}
|
|
|
174 |
|
|
|
175 |
// Show a success message in case an attachment is added.
|
|
|
176 |
if (! $error_flag && $attached) {
|
|
|
177 |
$PHORUM["DATA"]["OKMSG"] = $PHORUM["DATA"]["LANG"]["AttachmentAdded"];
|
|
|
178 |
|
|
|
179 |
}
|
|
|
180 |
}
|
|
|
181 |
?>
|