DedeBIZ
/
DedeV6
Watch 2
Star 0
Fork 0
Code Pull Requests 0 Releases 25 Activity
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
404 Commits
3 Branches
110MB
Tree: 2a053b606f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2a053b606f'
${ noResults }
DedeV6/src/dede/dialog/select_soft_post.php

105 lines
3.9KB
Raw Blame History 

  1. <?php

  2. 

  3. /**

  4.  * 软件发送

  5.  *

  6.  * @version        $Id: select_soft_post.php 1 9:43 2010年7月8日Z tianya $

  7.  * @package        DedeBIZ.Dialog

  8.  * @copyright      Copyright (c) 2021, DedeBIZ.COM

  9.  * @license        https://www.dedebiz.com/license

  10.  * @link           https://www.dedebiz.com

  11.  */

  12. if (!isset($cfg_basedir)) {

  13.     include_once(dirname(__FILE__).'/config.php');

  14. }

  15. if (empty($uploadfile)) $uploadfile = '';

  16. if (empty($uploadmbtype)) $uploadmbtype = '软件类型';

  17. if (empty($bkurl)) $bkurl = 'select_soft.php';

  18. $CKEditorFuncNum = (isset($CKEditorFuncNum)) ? $CKEditorFuncNum : 1;

  19. $newname = (empty($newname) ? '' : preg_replace("#[\\ \"\*\?\t\r\n<>':\/|]#", "", $newname));

  20. 

  21. $uploadfile = isset($imgfile) && empty($uploadfile) ? $imgfile : $uploadfile;

  22. $uploadfile_name = isset($imgfile_name) && empty($uploadfile_name) ? $imgfile_name : $uploadfile_name;

  23. 

  24. if (!is_uploaded_file($uploadfile)) {

  25.     ShowMsg("您没有选择上传的文件或选择的文件大小超出限制!", "-1");

  26.     exit();

  27. }

  28. 

  29. //软件类型所有支持的附件

  30. $cfg_softtype = $cfg_softtype;

  31. 

  32. $cfg_softtype = str_replace('||', '|', $cfg_softtype);

  33. $uploadfile_name = trim(preg_replace("#[ \r\n\t\*\%\\\/\?><\|\":]{1,}#", '', $uploadfile_name));

  34. if (!preg_match("#\.(".$cfg_softtype.")#i", $uploadfile_name)) {

  35.     ShowMsg("您所上传的{$uploadmbtype}不在许可列表,请更改系统对扩展名限定的配置!", "");

  36.     exit();

  37. }

  38. 

  39. $nowtme = time();

  40. if ($activepath == $cfg_soft_dir) {

  41.     $newdir = MyDate($cfg_addon_savetype, $nowtme);

  42.     $activepath = $activepath.'/'.$newdir;

  43.     if (!is_dir($cfg_basedir.$activepath)) {

  44.         MkdirAll($cfg_basedir.$activepath, $cfg_dir_purview);

  45.         CloseFtp();

  46.     }

  47. }

  48. 

  49. //文件名(前为手工指定, 后者自动处理)

  50. if (!empty($newname)) {

  51.     $filename = $newname;

  52.     if (!preg_match("#\.#", $filename)) $fs = explode('.', $uploadfile_name);

  53.     else $fs = explode('.', $filename);

  54.     if (preg_match("#".$cfg_not_allowall."#", $fs[count($fs) - 1])) {

  55.         ShowMsg("您指定的文件名被系统禁止!", 'javascript:;');

  56.         exit();

  57.     }

  58.     if (!preg_match("#\.#", $filename)) $filename = $filename.'.'.$fs[count($fs) - 1];

  59. } else {

  60.     $filename = $cuserLogin->getUserID().'-'.dd2char(MyDate('ymdHis', $nowtme));

  61.     $fs = explode('.', $uploadfile_name);

  62.     if (preg_match("#".$cfg_not_allowall."#", $fs[count($fs) - 1])) {

  63.         ShowMsg("您上传了某些可能存在不安全因素的文件,系统拒绝操作!", 'javascript:;');

  64.         exit();

  65.     }

  66.     $filename = $filename.'.'.$fs[count($fs) - 1];

  67. }

  68. 

  69. $fullfilename = $cfg_basedir.$activepath.'/'.$filename;

  70. $fullfileurl = $activepath.'/'.$filename;

  71. move_uploaded_file($uploadfile, $fullfilename) or die("上传文件到 $fullfilename 失败!");

  72. @unlink($uploadfile);

  73. 

  74. if ($uploadfile_type == 'application/x-shockwave-flash') {

  75.     $mediatype = 2;

  76. } else if (preg_match('#image#i', $uploadfile_type)) {

  77.     $mediatype = 1;

  78. } else if (preg_match('#audio|media|video#i', $uploadfile_type)) {

  79.     $mediatype = 3;

  80. } else {

  81.     $mediatype = 4;

  82. }

  83. 

  84. 

  85. $inquery = "INSERT INTO `#@__uploads`(arcid,title,url,mediatype,width,height,playtime,filesize,uptime,mid)

  86.    VALUES ('0','$filename','$fullfileurl','$mediatype','0','0','0','{$uploadfile_size}','{$nowtme}','".$cuserLogin->getUserID()."'); ";

  87. 

  88. $dsql->ExecuteNoneQuery($inquery);

  89. $fid = $dsql->GetLastID();

  90. AddMyAddon($fid, $fullfileurl);

  91. 

  92. if ($ck == 1) {

  93.     $funcNum = isset($_GET['CKEditorFuncNum']) ? $_GET['CKEditorFuncNum'] : 1;

  94.     $url = $fullfileurl;

  95.     $arr = array(

  96.         "uploaded" => 1,

  97.         "fileName" => $filename,

  98.         "url" => $url,

  99.     );

  100.     echo json_encode($arr);

  101. } else {

  102.     ShowMsg("成功上传文件!", $bkurl."?comeback=".urlencode($filename)."&f=$f&CKEditorFuncNum=$CKEditorFuncNum&activepath=".urlencode($activepath)."&d=".time());

  103.     exit();

  104. }