DedeV6/src/admin/swfupload.php

<?php
/**
 * swfupload上传
 *
 * @version        $id:swfupload.php 16:22 2010年7月20日 tianya $
 * @package        DedeBIZ.Administrator
 * @copyright      Copyright (c) 2022 DedeBIZ.COM
 * @license        GNU GPL v2 (https://www.dedebiz.com/license)
 * @link           https://www.dedebiz.com
 */
require_once(dirname(__FILE__).'/config.php');
require_once(DEDEINC.'/image.func.php');
//上传
if (empty($dopost)) {
    ini_set('html_errors', '0');
    if (empty($Filedata) || !is_uploaded_file($Filedata)) {
        echo 'ERROR: Upload Error! ';
        exit(0);
    }
    //把文件移动到临时目录
    $tmpdir = DEDEDATA.'/uploadtmp';
    if (!is_dir($tmpdir)) {
        MkdirAll($tmpdir, $cfg_dir_purview);
        if (!is_dir($tmpdir)) {
            echo "ERROR: Create {$tmpdir} dir Error! ";
            exit(0);
        }
    }
    $FiledataNew = str_replace("\\", '/', $Filedata);
    $FiledataNew = $tmpdir.'/'.preg_replace("/(.*)[\/]/isU", "", $FiledataNew);
    $mime = get_mime_type($Filedata);
    if (preg_match("#^unknow#", $mime)) {
        echo "ERROR: Create {$tmpdir} dir Error! ";
        exit;
    }
    if (!preg_match("#^(image|video|audio|application)#i", $mime)) {
        echo "ERROR: Create {$tmpdir} dir Error! ";
        exit;
    }
    move_uploaded_file($Filedata, $FiledataNew);
    $info = $ftype = $sname = '';
    $srcInfo = GetImageSize($FiledataNew, $info);
    //检测文件类型
    if (!is_array($srcInfo)) {
        @unlink($Filedata);
        echo "ERROR: Image info Error! ";
        exit(0);
    } else {
        switch ($srcInfo[2]) {
            case 1:
                $ftype = 'image/gif';
                $sname = '.gif';
                break;
            case 2:
                $ftype = 'image/jpeg';
                $sname = '.jpg';
                break;
            case 3:
                $ftype = 'image/png';
                $sname = '.png';
                break;
            case 6:
                $ftype = 'image/bmp';
                $sname = '.bmp';
                break;
        }
    }
    if ($ftype == '') {
        @unlink($Filedata);
        echo "ERROR: Image type Error! ";
        exit(0);
    }
    //保存原图
    $filedir = $cfg_image_dir.'/'.MyDate($cfg_addon_savetype, time());
    if (!is_dir(DEDEROOT.$filedir)) {
        MkdirAll($cfg_basedir.$filedir, $cfg_dir_purview);
    }
    $filename = $cuserLogin->getUserID().'-'.dd2char(MyDate('ymdHis', time()));
    if (file_exists($cfg_basedir.$filedir.'/'.$filename.$sname)) {
        for ($i = 50; $i <= 5000; $i++) {
            if (!file_exists($cfg_basedir.$filedir.'/'.$filename.'-'.$i.$sname)) {
                $filename = $filename.'-'.$i;
                break;
            }
        }
    }
    $fileurl = $filedir.'/'.$filename.$sname;
    $rs = copy($FiledataNew, $cfg_basedir.$fileurl);
    unlink($FiledataNew);
    if (!$rs) {
        echo "ERROR: Copy Uploadfile Error! ";
        exit(0);
    }
    //WaterImg($cfg_basedir.$fileurl, 'up');
    $title = $filename.$sname;
    $inquery = "INSERT INTO `#@__uploads` (title,url,mediatype,width,height,playtime,filesize,uptime,mid)
        VALUES ('$title','$fileurl','$ftype','0','0','0','".filesize($cfg_basedir.$fileurl)."','".time()."','".$cuserLogin->getUserID()."'); ";
    if (!empty($arcid)) {
        $inquery = "INSERT INTO `#@__uploads` (arcid,title,url,mediatype,width,height,playtime,filesize,uptime,mid)
        VALUES ('$arcid','$title','$fileurl','$ftype','0','0','0','".filesize($cfg_basedir.$fileurl)."','".time()."','".$cuserLogin->getUserID()."'); ";
    }
    $dsql->ExecuteNoneQuery($inquery);
    $fid = $dsql->GetLastID();
    AddMyAddon($fid, $fileurl);
    //生成缩略图
    ob_start();
    ImageResizeNew($cfg_basedir.$fileurl, $cfg_ddimg_width, $cfg_ddimg_height, '', false);
    $imagevariable = ob_get_contents();
    ob_end_clean();
    //保存信息到 session
    if (!isset($_SESSION['file_info'])) $_SESSION['file_info'] = array();
    if (!isset($_SESSION['bigfile_info'])) $_SESSION['bigfile_info'] = array();
    if (!isset($_SESSION['fileid'])) $_SESSION['fileid'] = 1;
    else $_SESSION['fileid']++;
    $_SESSION['bigfile_info'][$_SESSION['fileid']] = $fileurl;
    $_SESSION['file_info'][$_SESSION['fileid']] = $imagevariable;
    echo "FILEID:".$_SESSION['fileid'];
    exit(0);
}
//生成缩图
else if ($dopost == 'thumbnail') {
    if (empty($id)) {
        header('HTTP/1.1 500 Internal Server Error');
        echo 'No ID';
        exit(0);
    }
    if (!is_array($_SESSION['file_info']) || !isset($_SESSION['file_info'][$id])) {
        header('HTTP/1.1 404 Not found');
        exit(0);
    }
    header('Content-type: image/jpeg');
    header('Content-Length: '.strlen($_SESSION['file_info'][$id]));
    echo $_SESSION['file_info'][$id];
    exit(0);
}
//删除指定id的图片
else if ($dopost == 'del') {
    if (!isset($_SESSION['bigfile_info'][$id])) {
        echo '';
        exit();
    }
    $dsql->ExecuteNoneQuery("DELETE FROM `#@__uploads` WHERE url LIKE '{$_SESSION['bigfile_info'][$id]}';");
    @unlink($cfg_basedir.$_SESSION['bigfile_info'][$id]);
    $_SESSION['file_info'][$id] = '';
    $_SESSION['bigfile_info'][$id] = '';
    echo "已删除";
    exit();
}
//获取图片地址
else if ($dopost == 'addtoedit') {
    if (!isset($_SESSION['bigfile_info'][$id])) {
        echo '';
        exit();
    }
    echo $_SESSION['bigfile_info'][$id];
    exit();
}
//获取本地图片的缩略预览图
else if ($dopost == 'ddimg') {
    //生成缩略图
    ob_start();
    if (!preg_match("/^(http[s]?:\/\/)?([^\/]+)/i", $img)) $img = $cfg_basedir.$img;
    ImageResizeNew($img, $cfg_ddimg_width, $cfg_ddimg_height, '', false);
    $imagevariable = ob_get_contents();
    ob_end_clean();
    header('Content-type: image/jpeg');
    header('Content-Length: '.strlen($imagevariable));
    echo $imagevariable;
    exit();
}
//删除指定的图片修改图片时用
else if ($dopost == 'delold') {
    $imgfile = $cfg_basedir.$picfile;
    if (!file_exists($imgfile) && !is_dir($imgfile) && preg_match("#^".$cfg_medias_dir."#", $imgfile)) {
        @unlink($imgfile);
    }
    $dsql->ExecuteNoneQuery("DELETE FROM `#@__uploads` WHERE url LIKE '{$picfile}';");
    echo "已删除";
    exit();
}
?>