--- docman.php 2001/10/29 16:20:28 1.46 +++ docman.php 2001/12/15 20:33:37 1.50 @@ -174,7 +174,22 @@ - - - [logout] + + []
Document Manager , based on ANYPORTAL(php) Site Manager @@ -371,7 +386,7 @@ $log=fopen($logname,"r"); $cl1=" class=LST"; $cl2=""; $logarr = array(); - while($line = fgetcsv($log,255,"\t")) { + while($line = fgetcsv($log,512,"\t")) { $cl=$cl1; $cl1=$cl2; $cl2=$cl; array_unshift($logarr,array($cl,$line[0],$line[1],$line[2],$line[3])); } @@ -701,7 +716,7 @@ CELLSPACING=3 WIDTH=\"100%\">" ; // updir bar - if ($fsDir != $fsRoot) { + if (chopsl($fsDir) != chopsl($fsRoot)) { $parent = dirname($relDir) ; if ($parent == "") $parent = "/" ; ?> @@ -849,7 +864,7 @@
@@ -950,6 +965,8 @@ $title = "(401 Unauthorized)" ; $text = "No trespassing !" ; + + global $PHP_AUTH_USER,$PHP_AUTH_PW,$gblPw,$relogin; StartHTML($title,$text) ; EndHTML() ; @@ -1145,6 +1162,7 @@ $log=fopen("$gblFsRoot/.changelog","a+"); if (substr($target,0,strlen($gblFsRoot)) == $gblFsRoot) $target=substr($target,strlen($gblFsRoot),strlen($target)-strlen($gblFsRoot)); + $msg=str_replace("\t"," ",$msg); fputs($log,time()."\t$target\t$GLOBALS[gblUserName]\t$msg\n"); fclose($log); @@ -1156,7 +1174,12 @@ if (!file_exists("$gblFsRoot/.changelog")) return; $log=fopen("$gblFsRoot/.changelog","r"); $logarr = array(); - while($line = fgetcsv($log,255,"\t")) { + while($line = fgetcsv($log,512,"\t")) { + $line[0] .= sizeof($line); + while (sizeof($line) > 4) { + $tmp = array_pop($line); + $line.=" $tmp"; + } if ($day!=1 || ($day==1 && (time()-$line[0] < 24*60*60))) { array_unshift($logarr,array($line[0],$line[1],$line[2],$line[3])); } @@ -1199,6 +1222,13 @@ ////////////////////////////////////////////////////////////////// +function chopsl($path) { + if (substr($path,strlen($path)-1,1) == "/") $path=substr($path,0,strlen($path)-1); + $path=str_replace("//","/",$path); + return $path; +} + +////////////////////////////////////////////////////////////////// // MAIN PROGRAM // ============ // query parameters: capital letters @@ -1230,9 +1260,24 @@ Error("Configuration error","Can't find user handling module at $gblIncDir/$gblUsers.php ! Please fix $fsScriptDir/.docman.conf"); } + // if no password, or empty password logout + if ( + isset($PHP_AUTH_USER) && ( + !isset($relogin) || ( + isset($relogin) && $relogin != md5($PHP_AUTH_USER.$PHP_AUTH_PW) + ) + ) && ( + $PHP_AUTH_PW == "" || !isset($PHP_AUTH_PW) + ) + ) { + StartHTML("Logout completed","Your login credentials has been erased") ; + EndHTML() ; + exit ; + } + // authentication failure if ( md5($PHP_AUTH_USER.$PHP_AUTH_PW) != $gblPw || - isset($relogin) && $gblPw == $relogin ) { + isset($relogin) && $gblPw == $relogin) { header("WWW-authenticate: basic realm=\"$HTTP_HOST\"") ; header("HTTP/1.0 401 Unauthorized") ; NoEntry() ; @@ -1456,6 +1501,7 @@ // $A=Co : checkout file $D/$F // $A=Ci : checkin file $D/$F // $A=V : view file (do nothing except log) + // $A=I : include file .$F.php from $gblFsRoot // default : display directory $D switch ($A) { @@ -1515,6 +1561,19 @@ DisplayChangeLog(1); EndHTML() ; exit; + case "I" : + $F=stripSlashes($F); + $inc_file="${gblFsRoot}/.${F}.php"; + if (!isset($F) || $F == "" || !file_exists($inc_file)) Error("Fatal error $inc_file"); // can't find file to include + if (!is_readable($inc_file)) + Error("Read access to include file denied",".${F}.php"); + $text = "Your include file should define \$text variable which holds this text and \$title variable which is page title"; + $title = "You should define \$title variable with page title"; + include($inc_file); + StartHTML($title, $text) ; + print "

".GifIcon(up)." Back to front page.

"; + EndHTML() ; + exit ; } // default: display directory $relDir