* * This class handles file/dir access for eGroupWare * * Copyright (C) 2001 Jason Wies * * -------------------------------------------------------------------------* * This library is part of the eGroupWare API * * http://www.egroupware.org/api * * ------------------------------------------------------------------------ * * This library is free software; you can redistribute it and/or modify it * * under the terms of the GNU Lesser General Public License as published by * * the Free Software Foundation; either version 2.1 of the License, * * or any later version. * * This library is distributed in the hope that it will be useful, but * * WITHOUT ANY WARRANTY; without even the implied warranty of * * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. * * See the GNU Lesser General Public License for more details. * * You should have received a copy of the GNU Lesser General Public License * * along with this library; if not, write to the Free Software Foundation, * * Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * \**************************************************************************/ /*! @class vfs @abstract Virtual File System with SQL backend @description Authors: Zone */ /* These are used in calls to extra_sql () */ define ('VFS_SQL_SELECT', 1); define ('VFS_SQL_DELETE', 2); define ('VFS_SQL_UPDATE', 4); class vfs extends vfs_shared { var $working_id; var $working_lid; var $my_home; var $meta_types; var $now; var $file_actions; /*! @function vfs @abstract constructor, sets up variables */ function vfs () { $this->vfs_shared (); $this->basedir = $GLOBALS['phpgw_info']['server']['files_dir']; $this->working_id = $GLOBALS['phpgw_info']['user']['account_id']; $this->working_lid = $GLOBALS['phpgw']->accounts->id2name($this->working_id); $this->my_home = $this->fakebase.'/'.$this->working_lid; $this->now = date ('Y-m-d H:i:s'); /* File/dir attributes, each corresponding to a database field. Useful for use in loops If an attribute was added to the table, add it here and possibly add it to set_attributes () set_attributes now uses this array(). 07-Dec-01 skeeter */ $this->attributes[] = 'deleteable'; $this->attributes[] = 'content'; $this->attributes[] = 'type'; /* Decide whether to use any actual filesystem calls (fopen(), fread(), unlink(), rmdir(), touch(), etc.). If not, then we're working completely in the database. */ $this->file_actions = $GLOBALS['phpgw_info']['server']['file_store_contents'] == 'filesystem' || !$GLOBALS['phpgw_info']['server']['file_store_contents']; // test if the files-dir is inside the document-root, and refuse working if so // if ($this->file_actions && $this->in_docroot($this->basedir)) { $GLOBALS['phpgw']->common->phpgw_header(); if ($GLOBALS['phpgw_info']['flags']['noheader']) { echo parse_navbar(); } echo '
'.lang('Path to user and group files HAS TO BE OUTSIDE of the webservers document-root!!!')."
\n"; $GLOBALS['phpgw']->common->phpgw_exit(); } /* These are stored in the MIME-type field and should normally be ignored. Adding a type here will ensure it is normally ignored, but you will have to explicitly add it to acl_check (), and to any other SELECT's in this file */ $this->meta_types = array ('journal', 'journal-deleted'); /* We store the linked directories in an array now, so we don't have to make the SQL call again */ if ($GLOBALS['phpgw_info']['server']['db_type']=='mssql' || $GLOBALS['phpgw_info']['server']['db_type']=='sybase') { $query = $GLOBALS['phpgw']->db->query ("SELECT directory, name, link_directory, link_name FROM phpgw_vfs WHERE CONVERT(varchar,link_directory) != '' AND CONVERT(varchar,link_name) != ''" . $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)), __LINE__,__FILE__); } else { $query = $GLOBALS['phpgw']->db->query ("SELECT directory, name, link_directory, link_name FROM phpgw_vfs WHERE (link_directory IS NOT NULL or link_directory != '') AND (link_name IS NOT NULL or link_name != '')" . $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)), __LINE__,__FILE__); } $this->linked_dirs = array (); while ($GLOBALS['phpgw']->db->next_record ()) { $this->linked_dirs[] = $GLOBALS['phpgw']->db->Record; } } /*! @function in_docroot @abstract test if $path lies within the webservers document-root */ function in_docroot($path) { $docroots = array(PHPGW_SERVER_ROOT,$_SERVER['DOCUMENT_ROOT']); foreach ($docroots as $docroot) { $len = strlen($docroot); if ($docroot == substr($path,0,$len)) { $rest = substr($path,$len); if (!strlen($rest) || $rest[0] == DIRECTORY_SEPARATOR) { return True; } } } return False; } /*! @function extra_sql @abstract Return extra SQL code that should be appended to certain queries @param query_type The type of query to get extra SQL code for, in the form of a VFS_SQL define @result Extra SQL code */ function extra_sql ($data) { if (!is_array ($data)) { $data = array ('query_type' => VFS_SQL_SELECT); } if ($data['query_type'] == VFS_SQL_SELECT || $data['query_type'] == VFS_SQL_DELETE || $data['query_type'] = VFS_SQL_UPDATE) { $sql = ' AND (('; foreach ($this->meta_types as $num => $type) { if ($num) $sql .= ' AND '; $sql .= "mime_type != '$type'"; } $sql .= ') OR mime_type IS NULL)'; } return ($sql); } /*! @function add_journal @abstract Add a journal entry after (or before) completing an operation, and increment the version number. This function should be used internally only @discussion Note that state_one and state_two are ignored for some VFS_OPERATION's, for others they are required. They are ignored for any "custom" operation The two operations that require state_two: operation state_two VFS_OPERATION_COPIED fake_full_path of copied to VFS_OPERATION_MOVED fake_full_path of moved to If deleting, you must call add_journal () before you delete the entry from the database @param string File or directory to add entry for @param relatives Relativity array @param operation The operation that was performed. Either a VFS_OPERATION define or a non-integer descriptive text string @param state_one The first "state" of the file or directory. Can be a file name, size, location, whatever is appropriate for the specific operation @param state_two The second "state" of the file or directory @param incversion Boolean True/False. Increment the version for the file? Note that this is handled automatically for the VFS_OPERATION defines. i.e. VFS_OPERATION_EDITED would increment the version, VFS_OPERATION_COPIED would not @result Boolean True/False */ function add_journal ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT), 'state_one' => False, 'state_two' => False, 'incversion' => True ); $data = array_merge ($this->default_values ($data, $default_values), $data); $account_id = $GLOBALS['phpgw_info']['user']['account_id']; $p = $this->path_parts (array ('string' => $data['string'], 'relatives' => array ($data['relatives'][0]))); /* We check that they have some sort of access to the file other than read */ if (!$this->acl_check (array ('string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_WRITE)) && !$this->acl_check (array ('string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_EDIT)) && !$this->acl_check (array ('string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_DELETE))) { return False; } if (!$this->file_exists (array ('string' => $p->fake_full_path, 'relatives' => array ($p->mask)))) { return False; } $ls_array = $this->ls (array ( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'checksubdirs' => False, 'mime_type' => False, 'nofiles' => True ) ); $file_array = $ls_array[0]; $sql = 'INSERT INTO phpgw_vfs ('; $sql2 .= ' VALUES ('; for ($i = 0; list ($attribute, $value) = each ($file_array); ++$i) { if ($attribute == 'file_id' || $attribute == 'content') { continue; } if ($attribute == 'owner_id') { $value = $account_id; } if ($attribute == 'created') { $value = $this->now; } if ($attribute == 'modified' && !$modified) { unset ($value); } if ($attribute == 'mime_type') { $value = 'journal'; } if ($attribute == 'summary') { $value = ''; } if ($attribute == 'comment') { switch ($data['operation']) { case VFS_OPERATION_CREATED: $value = 'Created'; $data['incversion'] = True; break; case VFS_OPERATION_EDITED: $value = 'Edited'; $data['incversion'] = True; break; case VFS_OPERATION_EDITED_COMMENT: $value = 'Edited comment'; $data['incversion'] = False; break; case VFS_OPERATION_COPIED: if (!$data['state_one']) { $data['state_one'] = $p->fake_full_path; } if (!$data['state_two']) { return False; } $value = 'Copied '.$data['state_one'].' to '.$data['state_two']; $data['incversion'] = False; break; case VFS_OPERATION_MOVED: if (!$data['state_one']) { $data['state_one'] = $p->fake_full_path; } if (!$data['state_two']) { return False; } $value = 'Moved '.$data['state_one'].' to '.$data['state_two']; $data['incversion'] = False; break; case VFS_OPERATION_DELETED: $value = 'Deleted'; $data['incversion'] = False; break; default: $value = $data['operation']; break; } } /* Let's increment the version for the file itself. We keep the current version when making the journal entry, because that was the version that was operated on. The maximum numbers for each part in the version string: none.99.9.9 */ if ($attribute == 'version' && $data['incversion']) { $version_parts = preg_split('/\./', $value); $newnumofparts = $numofparts = count ($version_parts); if ($version_parts[3] >= 9) { $version_parts[3] = 0; $version_parts[2]++; $version_parts_3_update = 1; } elseif (isset ($version_parts[3])) { $version_parts[3]++; } if ($version_parts[2] >= 9 && $version_parts[3] == 0 && $version_parts_3_update) { $version_parts[2] = 0; $version_parts[1]++; } if ($version_parts[1] > 99) { $version_parts[1] = 0; $version_parts[0]++; } for ($i = 0; $i < $newnumofparts; ++$i) { if (!isset ($version_parts[$i])) { break; } if ($i) { $newversion .= '.'; } $newversion .= $version_parts[$i]; } $this->set_attributes (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'attributes' => array( 'version' => $newversion ) ) ); } if (isset ($value)) { if ($i > 1) { $sql .= ', '; $sql2 .= ', '; } $sql .= "$attribute"; $sql2 .= "'" . $this->clean_string (array ('string' => $value)) . "'"; } } $sql .= ')'; $sql2 .= ')'; $sql .= $sql2; /* These are some special situations where we need to flush the journal entries or move the 'journal' entries to 'journal-deleted'. Kind of hackish, but they provide a consistent feel to the system */ if ($data['operation'] == VFS_OPERATION_CREATED) { $flush_path = $p->fake_full_path; $deleteall = True; } if ($data['operation'] == VFS_OPERATION_COPIED || $data['operation'] == VFS_OPERATION_MOVED) { $flush_path = $data['state_two']; $deleteall = False; } if ($flush_path) { $flush_path_parts = $this->path_parts (array( 'string' => $flush_path, 'relatives' => array (RELATIVE_NONE) ) ); $this->flush_journal (array( 'string' => $flush_path_parts->fake_full_path, 'relatives' => array ($flush_path_parts->mask), 'deleteall' => $deleteall ) ); } if ($data['operation'] == VFS_OPERATION_COPIED) { /* We copy it going the other way as well, so both files show the operation. The code is a bad hack to prevent recursion. Ideally it would use VFS_OPERATION_COPIED */ $this->add_journal (array( 'string' => $data['state_two'], 'relatives' => array (RELATIVE_NONE), 'operation' => 'Copied '.$data['state_one'].' to '.$data['state_two'], 'state_one' => NULL, 'state_two' => NULL, 'incversion' => False ) ); } if ($data['operation'] == VFS_OPERATION_MOVED) { $state_one_path_parts = $this->path_parts (array( 'string' => $data['state_one'], 'relatives' => array (RELATIVE_NONE) ) ); $query = $GLOBALS['phpgw']->db->query ("UPDATE phpgw_vfs SET mime_type='journal-deleted' WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($state_one_path_parts->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($state_one_path_parts->fake_name_clean)."' AND mime_type='journal'"); /* We create the file in addition to logging the MOVED operation. This is an advantage because we can now search for 'Create' to see when a file was created */ $this->add_journal (array( 'string' => $data['state_two'], 'relatives' => array (RELATIVE_NONE), 'operation' => VFS_OPERATION_CREATED ) ); } /* This is the SQL query we made for THIS request, remember that one? */ $query = $GLOBALS['phpgw']->db->query ($sql, __LINE__, __FILE__); /* If we were to add an option of whether to keep journal entries for deleted files or not, it would go in the if here */ if ($data['operation'] == VFS_OPERATION_DELETED) { $query = $GLOBALS['phpgw']->db->query ("UPDATE phpgw_vfs SET mime_type='journal-deleted' WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."' AND mime_type='journal'"); } return True; } /*! @function flush_journal @abstract Flush journal entries for $string. Used before adding $string @discussion flush_journal () is an internal function and should be called from add_journal () only @param string File/directory to flush journal entries of @param relatives Realtivity array @param deleteall Delete all types of journal entries, including the active Create entry. Normally you only want to delete the Create entry when replacing the file Note that this option does not effect $deleteonly @param deletedonly Only flush 'journal-deleted' entries (created when $string was deleted) @result Boolean True/False */ function flush_journal ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT), 'deleteall' => False, 'deletedonly' => False ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); $sql = "DELETE FROM phpgw_vfs WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean).SEP .$GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."'"; if (!$data['deleteall']) { $sql .= " AND (mime_type != 'journal' AND comment != 'Created')"; } $sql .= " AND (mime_type='journal-deleted'"; if (!$data['deletedonly']) { $sql .= " OR mime_type='journal'"; } $sql .= ")"; $query = $GLOBALS['phpgw']->db->query ($sql, __LINE__, __FILE__); if ($query) { return True; } else { return False; } } /* * See vfs_shared */ function get_journal ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT), 'type' => False ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask) ))) { return False; } $sql = "SELECT * FROM phpgw_vfs WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."'"; if ($data['type'] == 1) { $sql .= " AND mime_type='journal'"; } elseif ($data['type'] == 2) { $sql .= " AND mime_type='journal-deleted'"; } else { $sql .= " AND (mime_type='journal' OR mime_type='journal-deleted')"; } $query = $GLOBALS['phpgw']->db->query ($sql, __LINE__, __FILE__); while ($GLOBALS['phpgw']->db->next_record ()) { $rarray[] = $GLOBALS['phpgw']->db->Record; } return $rarray; } /* * See vfs_shared */ function acl_check ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT), 'operation' => PHPGW_ACL_READ, 'must_exist' => False ); $data = array_merge ($this->default_values ($data, $default_values), $data); /* Accommodate special situations */ if ($this->override_acl || $data['relatives'][0] == RELATIVE_USER_APP) { return True; } /* ExpressoLivre principle: In your home you do what you want*/ if (strpos($data['string'],$this->my_home) === 0) return True; if ($data['relatives'][0] == RELATIVE_NONE || $data['relatives'][0] == RELATIVE_ALL) { $path = explode(SEP,$data['string']); $data['string'] = SEP.$path[1].SEP.$path[2]; } if ($data['operation'] == PHPGW_ACL_READ){ $user_groups = $GLOBALS['phpgw']->accounts->membership(); foreach($user_groups as $val){ if (strpos($data['string'],$this->fakebase.SEP.$GLOBALS['phpgw']->accounts->id2name($val['account_id'])) === 0) return true; } } if (!$data['owner_id']) { $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); /* Temporary, until we get symlink type files set up */ if ($p->outside) { return True; } /* Read access is always allowed here, but nothing else is */ if ($data['string'] == '/' || $data['string'] == $this->fakebase) { if ($data['operation'] == PHPGW_ACL_READ) { return True; } else { return False; } } /* If the file doesn't exist, we get ownership from the parent directory */ if (!$this->file_exists (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask) )) ) { if ($data['must_exist']) { return False; } $data['string'] = $p->fake_leading_dirs; $p2 = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($p->mask) ) ); if (!$this->file_exists (array( 'string' => $data['string'], 'relatives' => array ($p->mask) )) ) { return False; } } else { $p2 = $p; } /* We don't use ls () to get owner_id as we normally would, because ls () calls acl_check (), which would create an infinite loop */ $owner_id = $this->ownerOf($p2->fake_leading_dirs_clean,$p2->fake_name_clean); } else { $owner_id = $data['owner_id']; } $user_id = $GLOBALS['phpgw_info']['user']['account_id']; /* They always have access to their own files */ if ($owner_id == $user_id) { return True; } /* Check if they're in the group */ $memberships = $GLOBALS['phpgw']->accounts->membership ($user_id); if (is_array ($memberships)) { foreach ($memberships as $group_array) { if ($owner_id == $group_array['account_id']) { $group_ok = 1; break; } } } $acl = CreateObject ('phpgwapi.acl', $owner_id); $acl->account_id = $owner_id; $acl->read_repository (); $rights = $acl->get_rights ($user_id); /* Add privileges from the groups this user belongs to */ if (is_array ($memberships)) { foreach ($memberships as $group_array) { $rights |= $acl->get_rights ($group_array['account_id']); } } if ($rights & $data['operation']) { return True; } elseif (!$rights && $group_ok) { $conf = CreateObject('phpgwapi.config', 'phpgwapi'); $conf->read_repository(); if ($conf->config_data['acl_default'] == 'grant') { return True; } else { return False; } } else { return False; } } function ownerOf($base,$path){ $query = $GLOBALS['phpgw']->db->query ("SELECT owner_id FROM phpgw_vfs WHERE ". "( directory='".$GLOBALS['phpgw']->db->db_addslashes($base)."' AND name='".$GLOBALS['phpgw']->db->db_addslashes($path)."' ". "OR directory='/home/".$GLOBALS['phpgw']->db->db_addslashes($path)."') ". $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)), __LINE__, __FILE__); $GLOBALS['phpgw']->db->next_record(); $owner_id = $GLOBALS['phpgw']->db->Record['owner_id']; if (!$owner_id) { $owner_id = 0; } return $owner_id; } /*used to save memory in downloads*/ function print_content ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_READ )) ) { return False; } //avoid stuck request session_write_close(); //reset time limit for big files set_time_limit(0); ob_end_flush(); $bufferSize = 10240; if ($fp = fopen ($p->real_full_path, 'rb')) { for ($i=$bufferSize; $i<=filesize($p->real_full_path); $i+=$bufferSize) { echo fread($fp, $i); flush(); } fclose ($fp); } else { return False; } return True; } /* * See vfs_shared */ function read ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_READ )) ) { return False; } $conf = CreateObject('phpgwapi.config', 'phpgwapi'); $conf->read_repository(); if ($this->file_actions || $p->outside) { if ($fp = fopen ($p->real_full_path, 'rb')) { $contents = fread ($fp, filesize ($p->real_full_path)); fclose ($fp); } else { $contents = False; } } else { $ls_array = $this->ls (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), ) ); $contents = $ls_array[0]['content']; } return $contents; } /* * See vfs_shared */ function write ($data) { if (!is_array ($data)) { $data = array (); } $path = explode('/',$data['string']); $quota = $this->get_quota(array('string' => '/'.$path[1].'/'.$path[2])); if ($quota > 0 && $this->get_size('/'.$path[1].'/'.$path[2]) >= $quota * 1024 * 1024) return false; $default_values = array ( 'relatives' => array (RELATIVE_CURRENT), 'content' => '' ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if ($this->file_exists (array ( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask) )) ) { $acl_operation = PHPGW_ACL_EDIT; $journal_operation = VFS_OPERATION_EDITED; } else { $acl_operation = PHPGW_ACL_ADD; } umask(0177); /* If 'string' doesn't exist, touch () creates both the file and the database entry If 'string' does exist, touch () sets the modification time and modified by */ $this->touch (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask) ) ); $conf = CreateObject('phpgwapi.config', 'phpgwapi'); $conf->read_repository(); if ($this->file_actions) { if ($fp = fopen ($p->real_full_path, 'wb')) { fwrite ($fp, $data['content']); fclose ($fp); $write_ok = 1; } } if ($write_ok || !$this->file_actions) { if ($this->file_actions) { $set_attributes_array = array( 'size' => filesize ($p->real_full_path) ); } else { $set_attributes_array = array ( 'size' => strlen ($data['content']), 'content' => $data['content'] ); } $this->set_attributes (array ( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'attributes' => $set_attributes_array ) ); if ($journal_operation) { $this->add_journal (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => $journal_operation ) ); } return True; } else { return False; } } /* * See vfs_shared */ function touch ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $account_id = $GLOBALS['phpgw_info']['user']['account_id']; $currentapp = $GLOBALS['phpgw_info']['flags']['currentapp']; $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); umask (0177); if ($this->file_actions) { /* PHP's touch function will automatically decide whether to create the file or set the modification time */ $rr = @touch ($p->real_full_path); if ($p->outside) { return $rr; } } /* We, however, have to decide this ourselves */ if ($this->file_exists (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask) )) ) { if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_EDIT ))) { return False; } $vr = $this->set_attributes (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'attributes' => array( 'modifiedby_id' => $account_id, 'modified' => $this->now ) ) ); } else { if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_ADD )) ) { return False; } $query = $GLOBALS['phpgw']->db->query ("INSERT INTO phpgw_vfs (owner_id, directory, name) VALUES ($this->working_id, '". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."', '". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."')", __LINE__, __FILE__); $this->set_attributes(array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'attributes' => array ( 'createdby_id' => $account_id, 'created' => $this->now, 'size' => 0, 'deleteable' => 'Y', 'app' => $currentapp, 'comment' => '' ) ) ); $this->correct_attributes (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask) ) ); $this->add_journal (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => VFS_OPERATION_CREATED ) ); } if ($rr || $vr || $query) { return True; } else { return False; } } /* * See vfs_shared * If $data['symlink'] the file is symlinked instead of copied */ function cp ($data) { if (!is_array ($data)) { $data = array (); } if ($data['relatives'][1] == RELATIVE_NONE) $path = explode(SEP,$data['to']); else $path = explode(SEP,$this->my_home); $quota = $this->get_quota(array('string' => SEP.$path[1].SEP.$path[2])); $size = $this->get_size(array('string' => SEP.$path[1].SEP.$path[2], 'relatives' => $data['relatives'][1])); if ($quota > 0 && ($quota * 1024 * 1024) < $size) return false; $default_values = array ( 'relatives' => array (RELATIVE_CURRENT, RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $account_id = $GLOBALS['phpgw_info']['user']['account_id']; $f = $this->path_parts (array( 'string' => $data['from'], 'relatives' => array ($data['relatives'][0]) ) ); $t = $this->path_parts (array( 'string' => $data['to'], 'relatives' => array ($data['relatives'][1]) ) ); if (!$this->acl_check (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask), 'operation' => PHPGW_ACL_READ )) ) { return False; } if ($exists = $this->file_exists (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask) )) ) { if (!$this->acl_check (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask), 'operation' => PHPGW_ACL_EDIT )) ) { return False; } } else { if (!$this->acl_check (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask), 'operation' => PHPGW_ACL_ADD )) ) { return False; } } umask(0177); if ($this->file_type (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask) )) != 'Directory' ) { if ($this->file_actions) { if (@$data['symlink']) { if ($exists) { @unlink($t->real_full_path); } if (!symlink($f->real_full_path, $t->real_full_path)) { return False; } } elseif (!copy ($f->real_full_path, $t->real_full_path)) { return False; } $size = filesize ($t->real_full_path); } else { $content = $this->read (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask) ) ); $size = strlen ($content); } if ($t->outside) { return True; } $ls_array = $this->ls (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask), 'checksubdirs' => False, 'mime_type' => False, 'summary' => True, 'nofiles' => True ) ); $record = $ls_array[0]; if ($this->file_exists (array( 'string' => $data['to'], 'relatives' => array ($data['relatives'][1]) )) ) { $query = $GLOBALS['phpgw']->db->query ("UPDATE phpgw_vfs SET owner_id='$this->working_id', directory='". $GLOBALS['phpgw']->db->db_addslashes($t->fake_leading_dirs_clean)."', name='". $GLOBALS['phpgw']->db->db_addslashes($t->fake_name_clean)."' WHERE owner_id='$this->working_id' AND directory='". $GLOBALS['phpgw']->db->db_addslashes($t->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($t->fake_name_clean)."'" . $this->extra_sql (VFS_SQL_UPDATE), __LINE__, __FILE__); $set_attributes_array = array ( 'createdby_id' => $account_id, 'created' => $this->now, 'size' => $size, 'mime_type' => $record['mime_type'], 'deleteable' => $record['deleteable'], 'comment' => $record['comment'], 'app' => $record['app'] ); if (!$this->file_actions) { $set_attributes_array['content'] = $content; } $this->set_attributes(array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask), 'attributes' => $set_attributes_array ) ); $this->add_journal (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask), 'operation' => VFS_OPERATION_EDITED ) ); } else { $this->touch (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask) ) ); $set_attributes_array = array ( 'createdby_id' => $account_id, 'created' => $this->now, 'size' => $size, 'mime_type' => $record['mime_type'], 'deleteable' => $record['deleteable'], 'comment' => $record['comment'], 'app' => $record['app'] ); if (!$this->file_actions) { $set_attributes_array['content'] = $content; } $this->set_attributes(array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask), 'attributes' => $set_attributes_array ), true ); if (!(strpos(strtoupper($record['mime_type']),'IMAGE') === FALSE)) { $this->set_summary(array( 'string'=> $data['to'], 'relatives' => array ($data['relatives'][1]), 'summary'=> $record['summary'] )); unset($record['summary']); } } $this->correct_attributes (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask) ) ); } else /* It's a directory */ { /* First, make the initial directory */ $this->mkdir (array( 'string' => $data['to'], 'relatives' => array ($data['relatives'][1]) ) ); /* Next, we create all the directories below the initial directory */ foreach($this->ls (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask), 'checksubdirs' => True, 'mime_type' => 'Directory' )) as $entry) { $newdir = preg_replace("/^$f->fake_full_path/", "$t->fake_full_path", $entry['directory']); $this->mkdir (array( 'string' => $newdir.'/'.$entry['name'], 'relatives' => array ($t->mask) ) ); } /* Lastly, we copy the files over */ foreach($this->ls (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask) )) as $entry) { if ($entry['mime_type'] == 'Directory') { continue; } $newdir = preg_replace("/^$f->fake_full_path/", "$t->fake_full_path", $entry['directory']); $this->cp (array( 'from' => "$entry[directory]/{$entry['name']}", 'to' => "$newdir/{$entry['name']}", 'relatives' => array ($f->mask, $t->mask) ) ); } } if (!$f->outside) { $this->add_journal (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask), 'operation' => VFS_OPERATION_COPIED, 'state_one' => NULL, 'state_two' => $t->fake_full_path ) ); } return True; } /* * See vfs_shared */ function mv ($data) { if (!is_array ($data)) { $data = array (); } if ($data['relatives'][1] == RELATIVE_NONE) { $path = explode('/',$data['to']); $quota = $this->get_quota(array('string' => '/'.$path[1].'/'.$path[2])); $size = $this->get_size(array('string' => '/'.$path[1].'/'.$path[2], 'relatives' => $data['relatives'][1])); } else { $quota = $this->get_quota(array('string' => $this->my_home)); $size = $this->get_size(array('string' => $this->my_home, 'relatives' => $data['relatives'][1])); } if ($quota > 0 && $size >= $quota * 1024 * 1024) return false; $default_values = array ( 'relatives' => array (RELATIVE_CURRENT, RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $account_id = $GLOBALS['phpgw_info']['user']['account_id']; $f = $this->path_parts (array( 'string' => $data['from'], 'relatives' => array ($data['relatives'][0]) ) ); $t = $this->path_parts (array( 'string' => $data['to'], 'relatives' => array ($data['relatives'][1]) ) ); if (!$this->acl_check (array( 'string' => $data['to'], 'relatives' => array ($t->mask), 'operation' => PHPGW_ACL_ADD )) ) { return False; } if (!$this->acl_check (array( 'string' => $data['from'], 'relatives' => array ($t->mask), 'operation' => PHPGW_ACL_DELETE )) ) { return False; } if ($this->file_exists (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask) )) ) { if (!$this->acl_check (array( 'string' => $data['to'], 'relatives' => array ($t->mask), 'operation' => PHPGW_ACL_EDIT )) ) { return False; } } umask (0177); /* We can't move directories into themselves */ if (($this->file_type (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask) ) == 'Directory')) && preg_match("/^$f->fake_full_path/", $t->fake_full_path) ) { if (($t->fake_full_path == $f->fake_full_path) || substr ($t->fake_full_path, strlen ($f->fake_full_path), 1) == '/') { return False; } } if ($this->file_exists (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask) )) ) { /* We get the listing now, because it will change after we update the database */ $ls = $this->ls (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask) ) ); if ($this->file_exists (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask) )) ) { $this->rm (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask) ) ); } /* We add the journal entry now, before we delete. This way the mime_type field will be updated to 'journal-deleted' when the file is actually deleted */ if (!$f->outside) { $this->add_journal (array( 'string' => $f->fake_full_path, 'relatives' => array ($f->mask), 'operation' => VFS_OPERATION_MOVED, 'state_one' => $f->fake_full_path, 'state_two' => $t->fake_full_path ) ); } /* If the from file is outside, it won't have a database entry, so we have to touch it and find the size */ if ($f->outside) { $size = filesize ($f->real_full_path); $this->touch (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask) ) ); $query = $GLOBALS['phpgw']->db->query ("UPDATE phpgw_vfs SET size=$size WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($t->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($t->fake_name_clean)."'" . $this->extra_sql (array ('query_type' => VFS_SQL_UPDATE)), __LINE__, __FILE__); } elseif (!$t->outside) { $query = $GLOBALS['phpgw']->db->query ("UPDATE phpgw_vfs SET name='". $GLOBALS['phpgw']->db->db_addslashes($t->fake_name_clean)."', directory='". $GLOBALS['phpgw']->db->db_addslashes($t->fake_leading_dirs_clean)."' WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($f->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($f->fake_name_clean)."'" . $this->extra_sql (array ('query_type' => VFS_SQL_UPDATE)), __LINE__, __FILE__); } $this->set_attributes(array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask), 'attributes' => array ( 'modifiedby_id' => $account_id, 'modified' => $this->now ) ) ); $this->correct_attributes (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask) ) ); if ($this->file_actions) { $rr = rename ($f->real_full_path, $t->real_full_path); } /* This removes the original entry from the database The actual file is already deleted because of the rename () above */ if ($t->outside) { $this->rm (array( 'string' => $f->fake_full_path, 'relatives' => $f->mask ) ); } } else { return False; } if ($this->file_type (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask) )) == 'Directory' ) { /* We got $ls from above, before we renamed the directory */ foreach ($ls as $entry) { $newdir = preg_replace("/^$f->fake_full_path/", $t->fake_full_path, $entry['directory']); $newdir_clean = $this->clean_string (array ('string' => $newdir)); $query = $GLOBALS['phpgw']->db->query ("UPDATE phpgw_vfs SET directory='". $GLOBALS['phpgw']->db->db_addslashes($newdir_clean)."' WHERE file_id='{$entry['file_id']}'" . $this->extra_sql (array ('query_type' => VFS_SQL_UPDATE)), __LINE__, __FILE__); $this->correct_attributes (array( 'string' => "$newdir/{$entry['name']}", 'relatives' => array ($t->mask) ) ); } } $this->add_journal (array( 'string' => $t->fake_full_path, 'relatives' => array ($t->mask), 'operation' => VFS_OPERATION_MOVED, 'state_one' => $f->fake_full_path, 'state_two' => $t->fake_full_path ) ); return True; } /* * See vfs_shared */ function rm ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_DELETE) ) ) { return False; } if (!$this->file_exists (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) )) ) { if ($this->file_actions) { $rr = unlink ($p->real_full_path); } else { $rr = True; } if ($rr) { return True; } else { return False; } } if ($this->file_type (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) )) != 'Directory' ) { $this->add_journal (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => VFS_OPERATION_DELETED ) ); $query = $GLOBALS['phpgw']->db->query ("DELETE FROM phpgw_vfs WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."'".$this->extra_sql (array ('query_type' => VFS_SQL_DELETE)), __LINE__, __FILE__); if ($this->file_actions) { $rr = unlink ($p->real_full_path); } else { $rr = True; } if ($query || $rr) { return True; } else { return False; } } else { $ls = $this->ls (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask) ) ); /* First, we cycle through the entries and delete the files */ foreach($ls as $entry) { if ($entry['mime_type'] == 'Directory') { continue; } $this->rm (array( 'string' => "{$entry['directory']}/{$entry['name']}", 'relatives' => array ($p->mask) ) ); } /* Now we cycle through again and delete the directories */ foreach ($ls as $entry) { if ($entry['mime_type'] != 'Directory') { continue; } /* Only the best in confusing recursion */ $this->rm (array( 'string' => "{$entry['directory']}/{$entry['name']}", 'relatives' => array ($p->mask) ) ); } /* If the directory is linked, we delete the placeholder directory */ $ls_array = $this->ls (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'checksubdirs' => False, 'mime_type' => False, 'nofiles' => True ) ); $link_info = $ls_array[0]; if ($link_info['link_directory'] && $link_info['link_name']) { $path = $this->path_parts (array( 'string' => $link_info['directory'] . '/' . $link_info['name'], 'relatives' => array ($p->mask), 'nolinks' => True ) ); if ($this->file_actions) { rmdir ($path->real_full_path); } } /* Last, we delete the directory itself */ $this->add_journal (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operaton' => VFS_OPERATION_DELETED ) ); $query = $GLOBALS['phpgw']->db->query ("DELETE FROM phpgw_vfs WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."'" . $this->extra_sql (array ('query_type' => VFS_SQL_DELETE)), __LINE__, __FILE__); if ($this->file_actions) { rmdir ($p->real_full_path); } return True; } } /* * See vfs_shared */ function mkdir ($data) { if (!is_array ($data)) { $data = array(); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $account_id = $GLOBALS['phpgw_info']['user']['account_id']; $currentapp = $GLOBALS['phpgw_info']['flags']['currentapp']; $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_ADD) ) ) { return False; } /* We don't allow /'s in dir names, of course */ if (preg_match('/\//', $p->fake_name)) { return False; } umask (077); if ($this->file_actions) { if (!@is_dir($p->real_leading_dirs_clean)) // eg. /home or /group does not exist { if (!@mkdir($p->real_leading_dirs_clean,0770)) // ==> create it { return False; } } if (@is_dir($p->real_full_path)) // directory already exists { $this->update_real($data,True); // update its contents } elseif (!@mkdir ($p->real_full_path, 0770)) { return False; } } if (!$this->file_exists (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask) )) ) { $query = $GLOBALS['phpgw']->db->query ("INSERT INTO phpgw_vfs (owner_id, name, directory) VALUES ($this->working_id, '". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."', '". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."')", __LINE__, __FILE__); $this->set_attributes(array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'attributes' => array ( 'createdby_id' => $account_id, 'size' => 4096, 'mime_type' => 'Directory', 'created' => $this->now, 'deleteable' => 'Y', 'app' => $currentapp ) ) ); $this->correct_attributes (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask) ) ); $this->add_journal (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => VFS_OPERATION_CREATED ) ); } else { return False; } return True; } /* * See vfs_shared */ function make_link ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT, RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $account_id = $GLOBALS['phpgw_info']['user']['account_id']; $currentapp = $GLOBALS['phpgw_info']['flags']['currentapp']; $vp = $this->path_parts (array( 'string' => $data['vdir'], 'relatives' => array ($data['relatives'][0]) ) ); $rp = $this->path_parts (array( 'string' => $data['rdir'], 'relatives' => array ($data['relatives'][1]) ) ); if (!$this->acl_check (array( 'string' => $vp->fake_full_path, 'relatives' => array ($vp->mask), 'operation' => PHPGW_ACL_ADD )) ) { return False; } if ((!$this->file_exists (array( 'string' => $rp->real_full_path, 'relatives' => array ($rp->mask) ))) && !mkdir ($rp->real_full_path, 0770)) { return False; } if (!$this->mkdir (array( 'string' => $vp->fake_full_path, 'relatives' => array ($vp->mask) )) ) { return False; } $size = $this->get_size (array( 'string' => $rp->real_full_path, 'relatives' => array ($rp->mask) ) ); $this->set_attributes(array( 'string' => $vp->fake_full_path, 'relatives' => array ($vp->mask), 'attributes' => array ( 'link_directory' => $rp->real_leading_dirs, 'link_name' => $rp->real_name, 'size' => $size ) ) ); $this->correct_attributes (array( 'string' => $vp->fake_full_path, 'relatives' => array ($vp->mask) ) ); return True; } function summary ($data) { if (!$this->acl_check (array( 'string' => $data['path'].'/'.$data['string'], 'relatives' => array (RELATIVE_NONE), 'operation' => PHPGW_ACL_READ )) ) { return False; } $query = "SELECT summary FROM phpgw_vfs WHERE directory = '" .$data['path']."' AND name = '".$data['string']."' and mime_type != 'journal' and mime_type != 'journal-deleted' LIMIT 1"; if ($GLOBALS['phpgw']->db->query($query) && $GLOBALS['phpgw']->db->next_record()){ $val = $GLOBALS['phpgw']->db->row(); return $val['summary']; } } function set_summary($data){ if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT), 'attributes' => array () ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_EDIT )) ) { return False; } if (!$this->file_exists (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) )) ) { return False; } $ls_array = $this->ls (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'checksubdirs' => False, 'nofiles' => True ) ); $record = $ls_array[0]; $data['summary'] = pg_escape_bytea($data['summary']); $sql = 'UPDATE phpgw_vfs SET summary = \''.$data['summary'].'\''; $sql .= ' WHERE file_id='.(int) $ls_array[0]['file_id']; $sql .= $this->extra_sql (array ('query_type' => VFS_SQL_UPDATE)); $query = $GLOBALS['phpgw']->db->query ($sql, __LINE__, __FILE__); } /* * See vfs_shared */ function set_attributes ($data,$isNewFile = false) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT), 'attributes' => array () ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); /* This is kind of trivial, given that set_attributes () can change owner_id, size, etc. */ if($isNewFile) { if ( !$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_ADD )) ) { return False; } }elseif (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_EDIT )) ) { return False; } if (!$this->file_exists (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) )) ) { return False; } /* All this voodoo just decides which attributes to update depending on if the attribute was supplied in the 'attributes' array */ $ls_array = $this->ls (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'checksubdirs' => False, 'nofiles' => True ) ); $record = $ls_array[0]; $sql = 'UPDATE phpgw_vfs SET '; $change_attributes = 0; foreach ($this->attributes as $attribute) { if (isset ($data['attributes'][$attribute])) { /* Indicate that the EDITED_COMMENT operation needs to be journaled, but only if the comment changed */ if ($attribute == 'comment' && $data['attributes'][$attribute] != $record[$attribute]) { $edited_comment = 1; } if ($change_attributes > 0) { $sql .= ', '; } // RalfBecker 2004/07/24: // this is only a hack to fix bug [ 991222 ] Error uploading file // the whole class need to be reworked with the new db-functions if (!isset($this->column_defs)) { $table_defs = $GLOBALS['phpgw']->db->get_table_definitions('phpgwapi','phpgw_vfs'); $this->column_defs = $table_defs['fd']; } $sql .= $attribute.'=' .$GLOBALS['phpgw']->db->quote($data['attributes'][$attribute],$this->column_defs[$attribute]['type']); ++$change_attributes; } } if (!$change_attributes) { return True; // nothing to do } $sql .= ' WHERE file_id='.(int) $record['file_id']; $sql .= $this->extra_sql (array ('query_type' => VFS_SQL_UPDATE)); $query = $GLOBALS['phpgw']->db->query ($sql, __LINE__, __FILE__); if ($query) { if ($edited_comment) { $this->add_journal (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => VFS_OPERATION_EDITED_COMMENT ) ); } return True; } else { return False; } } /*! @function correct_attributes @abstract Set the correct attributes for 'string' (e.g. owner) @param string File/directory to correct attributes of @param relatives Relativity array @result Boolean True/False */ function correct_attributes ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if ($p->fake_leading_dirs != $this->fakebase && $p->fake_leading_dirs != '/') { $ls_array = $this->ls (array( 'string' => $p->fake_leading_dirs, 'relatives' => array ($p->mask), 'checksubdirs' => False, 'nofiles' => True ) ); $set_attributes_array = Array( 'owner_id' => $ls_array[0]['owner_id'] ); } elseif (preg_match ("+^$this->fakebase\/(.*)$+U", $p->fake_full_path, $matches)) { $set_attributes_array = Array( 'owner_id' => $GLOBALS['phpgw']->accounts->name2id ($matches[1]) ); } else { $set_attributes_array = Array( 'owner_id' => 0 ); } $this->set_attributes (array( 'string' => $p->fake_full_name, 'relatives' => array ($p->mask), 'attributes' => $set_attributes_array ) ); return True; } /* * See vfs_shared */ function file_type ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_READ, 'must_exist' => True )) ) { return False; } if ($p->outside) { if (is_dir ($p->real_full_path)) { return ('Directory'); } /* We don't return an empty string here, because it may still match with a database query because of linked directories */ } /* We don't use ls () because it calls file_type () to determine if it has been passed a directory */ $db2 = $GLOBALS['phpgw']->db; $db2->query ("SELECT mime_type FROM phpgw_vfs WHERE directory='". $db2->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $db2->db_addslashes($p->fake_name_clean)."'" . $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)), __LINE__, __FILE__); $db2->next_record (); $mime_type = $db2->Record['mime_type']; if(!$mime_type) { $mime_type = $this->get_ext_mime_type (array ('string' => $data['string'])); { $db2->query ("UPDATE phpgw_vfs SET mime_type='$mime_type' WHERE directory='". $db2->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $db2->db_addslashes($p->fake_name_clean)."'" . $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)), __LINE__, __FILE__); } } return $mime_type; } /* * See vfs_shared */ function file_exists ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if ($p->outside) { $rr = file_exists ($p->real_full_path); return $rr; } $db2 = $GLOBALS['phpgw']->db; $db2->query ("SELECT name FROM phpgw_vfs WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."'" . $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)), __LINE__, __FILE__); if ($db2->next_record ()) { return True; } else { return False; } } /* * See vfs_shared */ function get_size ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT), 'checksubdirs' => True ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_READ, 'must_exist' => True )) ) { return False; } /* WIP - this should run through all of the subfiles/directories in the directory and tally up their sizes. Should modify ls () to be able to return a list for files outside the virtual root */ if ($p->outside) { $size = filesize ($p->real_full_path); return $size; } foreach($this->ls (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'checksubdirs' => $data['checksubdirs'], 'nofiles' => !$data['checksubdirs'] )) as $file_array) { /* Make sure the file is in the directory we want, and not some deeper nested directory with a similar name */ /* if (@!preg_match("/^$file_array['directory']/", $p->fake_full_path)) { continue; } */ $size += $file_array['size']; } if ($data['checksubdirs']) { $query = $GLOBALS['phpgw']->db->query ("SELECT size FROM phpgw_vfs WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."'" . $this->extra_sql (array ('query_text' => VFS_SQL_SELECT))); $GLOBALS['phpgw']->db->next_record (); $size += $GLOBALS['phpgw']->db->Record[0]; } return $size; } function get_size_all($owner_id) { $query = $GLOBALS['phpgw']->db->query ("SELECT Sum(size) FROM phpgw_vfs WHERE owner_id = '".$owner_id."'" . $this->extra_sql(array ('query_text' => VFS_SQL_SELECT))); $GLOBALS['phpgw']->db->next_record (); $size = $GLOBALS['phpgw']->db->Record[0]; return $size; } /*return the total number of files in path*/ function count_files($data){ if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => RELATIVE_NONE ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => $p->mask, 'operation' => PHPGW_ACL_READ )) ) { return False; } $sql = "SELECT count(*) FROM phpgw_vfs WHERE directory = '".$GLOBALS['phpgw']->db->db_addslashes($data['string'])."'"; $sql .= $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)); $query = $GLOBALS['phpgw']->db->query ($sql, __LINE__,__FILE__); $GLOBALS['phpgw']->db->next_record (); $record = $GLOBALS['phpgw']->db->Record; return $record['count']; } /* * get the quota defined for the path in sql table */ function get_quota($data){ if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $data['string'] = $GLOBALS['phpgw']->db->db_addslashes($data['string']); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => RELATIVE_NONE ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => $p->mask, 'operation' => PHPGW_ACL_READ )) ) { return False; } $query = $GLOBALS['phpgw']->db->query ("SELECT quota_size FROM phpgw_vfs_quota WHERE directory = '".$data['string']."' LIMIT 1;", __LINE__,__FILE__); $GLOBALS['phpgw']->db->next_record (); $record = $GLOBALS['phpgw']->db->Record; return $record['quota_size']; } function set_quota($data){ if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_READ )) ) { return False; } return $GLOBALS['phpgw']->db->query("INSERT INTO phpgw_vfs_quota VALUES ('".$data['string']."',".$data['new_quota'].");", __LINE__,__FILE__); } /*! @function checkperms @abstract Check if $this->working_id has write access to create files in $dir @discussion Simple call to acl_check @param string Directory to check access of @param relatives Relativity array @result Boolean True/False */ function checkperms ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (!$this->acl_check (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_ADD )) ) { return False; } else { return True; } } /* * See vfs_shared * If $data['readlink'] then a readlink is tryed on the real file * If $data['file_id'] then the file_id is used instead of a path */ function ls ($data,$recursive) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT), 'checksubdirs' => True, 'mime_type' => False, 'nofiles' => False, 'summary' => False, 'orderby' => 'directory', 'otype' => 1 ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); $dir = $p->fake_full_path; if($data['summary']) $this->attributes['summary'] = 'summary'; $type = $this->file_type (array( 'string' => $dir, 'relatives' => array ($p->mask) )); /* If they pass us a file or 'nofiles' is set, return the info for $dir only */ if (@$data['file_id'] || ($type != 'Directory' || $data['nofiles']) && !$p->outside) { /* SELECT all, the, attributes */ $sql = 'SELECT '; foreach ($this->attributes as $num => $attribute) { if ($num) { $sql .= ', '; } $sql .= $attribute; } $sql .= " FROM phpgw_vfs WHERE "; if (@$data['file_id']) { $sql .= 'file_id='.(int)$data['file_id']; } else { $sql .= " directory='".$GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."' AND". " name='".$GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."'". $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)); } $query = $GLOBALS['phpgw']->db->query ($sql, __LINE__, __FILE__); $GLOBALS['phpgw']->db->next_record (); $record = $GLOBALS['phpgw']->db->Record; /* We return an array of one array to maintain the standard */ $rarray = array (); foreach($this->attributes as $attribute) { if ($attribute == 'mime_type' && !$record[$attribute]) { $db2 = $GLOBALS['phpgw']->db; $record[$attribute] = $this->get_ext_mime_type (array( 'string' => $p->fake_name_clean ) ); if($record[$attribute]) { $db2->query ("UPDATE phpgw_vfs SET mime_type='".$record[$attribute]."' WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."'" . $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)), __LINE__, __FILE__); } } $rarray[0][$attribute] = $record[$attribute]; } if ($this->file_actions && @$data['readlink']) // test if file is a symlink and get it's target { $rarray[0]['symlink'] = @readlink($p->real_full_path); } if($data['summary']) unset($this->attributes['summary']); return $rarray; } //WIP - this should recurse using the same options the virtual part of ls () does /* If $dir is outside the virutal root, we have to check the file system manually */ if ($p->outside) { if ($this->file_type (array( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask) )) == 'Directory' && !$data['nofiles'] ) { $dir_handle = opendir ($p->real_full_path); while ($filename = readdir ($dir_handle)) { if ($filename == '.' || $filename == '..') { continue; } $rarray[] = $this->get_real_info (array( 'string' => $p->real_full_path . SEP . $filename, 'relatives' => array ($p->mask) ) ); } } else { $rarray[] = $this->get_real_info (array( 'string' => $p->real_full_path, 'relatives' => array ($p->mask) ) ); } return $rarray; } /* $dir's not a file, is inside the virtual root, and they want to check subdirs */ /* SELECT all, the, attributes FROM phpgw_vfs WHERE file=$dir */ $sql = 'SELECT '; if (!$this->acl_check (array ( 'string' => $p->fake_full_path, 'relatives' => array ($p->mask), 'operation' => PHPGW_ACL_PRIVATE) )) $query_type = " type != 1 AND"; else $query_type = ""; foreach($this->attributes as $num => $attribute) { if ($num) { $sql .= ", "; } $sql .= $attribute; } $dir_clean = $this->clean_string (array ('string' => $dir)); if ($recursive) $sql .= " FROM phpgw_vfs WHERE ".$query_type." directory like '".$GLOBALS['phpgw']->db->db_addslashes($dir_clean)."%'"; else $sql .= " FROM phpgw_vfs WHERE ".$query_type." directory = '".$GLOBALS['phpgw']->db->db_addslashes($dir_clean)."'"; $sql .= $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)); if ($data['mime_type']) { $sql .= " AND mime_type='".$data['mime_type']."'"; } if (strlen($data['orderby']) > 0 && $data['orderby'] != 'directory'){ $order_direction = $data['otype'] ? ' ASC' : ' DESC'; if ($data['orderby'] == 'name' || $data['orderby'] == 'comment') $sql .= ' ORDER BY upper('.$data['orderby'].')'.$order_direction; else $sql .= ' ORDER BY '.$data['orderby'].$order_direction; if ($data['orderby'] != 'name') $sql .= ', upper(name)'.$order_direction; } $data['offset'] = $data['offset'] ? $data['offset'] : 0; $data['limit'] = $data['limit'] ? $data['limit'] : 10000; if ($data['orderby'] != 'directory') $sql .= ' LIMIT '.$data['limit'].' OFFSET '.$data['offset']; $query = $GLOBALS['phpgw']->db->query ($sql, __LINE__, __FILE__); $rarray = array (); for ($i = 0; $GLOBALS['phpgw']->db->next_record (); ++$i) { $record = $GLOBALS['phpgw']->db->Record; foreach($this->attributes as $attribute) { if ($attribute == 'mime_type' && !$record[$attribute]) { $db2 = $GLOBALS['phpgw']->db; $record[$attribute] = $this->get_ext_mime_type (array( 'string' => $p->fake_name_clean ) ); if($record[$attribute]) { $db2->query ("UPDATE phpgw_vfs SET mime_type='".$record[$attribute]."' WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."'" . $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)), __LINE__, __FILE__); } } $rarray[$i][$attribute] = $record[$attribute]; } } return $rarray; } /* * See vfs_shared */ function update_real ($data,$recursive = False) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (file_exists ($p->real_full_path)) { if (is_dir ($p->real_full_path)) { $dir_handle = opendir ($p->real_full_path); while ($filename = readdir ($dir_handle)) { if ($filename == '.' || $filename == '..') { continue; } $rarray[] = $this->get_real_info (array( 'string' => $p->fake_full_path . '/' . $filename, 'relatives' => array (RELATIVE_NONE) ) ); } } else { $rarray[] = $this->get_real_info (array( 'string' => $p->fake_full_path, 'relatives' => array (RELATIVE_NONE) ) ); } if (!is_array ($rarray)) { $rarray = array (); } foreach($rarray as $num => $file_array) { $p2 = $this->path_parts (array( 'string' => $file_array['directory'] . '/' . $file_array['name'], 'relatives' => array (RELATIVE_NONE) ) ); /* Note the mime_type. This can be "Directory", which is how we create directories */ $set_attributes_array = Array( 'size' => $file_array['size'], 'mime_type' => $file_array['mime_type'] ); if (!$this->file_exists (array( 'string' => $p2->fake_full_path, 'relatives' => array (RELATIVE_NONE) )) ) { $this->touch (array( 'string' => $p2->fake_full_path, 'relatives' => array (RELATIVE_NONE) ) ); } $this->set_attributes (array( 'string' => $p2->fake_full_path, 'relatives' => array (RELATIVE_NONE), 'attributes' => $set_attributes_array ) ); if ($recursive && $file_array['mime_type'] == 'Directory') { $dir_data = $data; $dir_data['string'] = $file_array['directory'] . '/' . $file_array['name']; $this->update_real($dir_data,$recursive); } } } } /* Helper functions */ /* This fetchs all available file system information for string (not using the database) */ function get_real_info ($data) { if (!is_array ($data)) { $data = array (); } $default_values = array ( 'relatives' => array (RELATIVE_CURRENT) ); $data = array_merge ($this->default_values ($data, $default_values), $data); $p = $this->path_parts (array( 'string' => $data['string'], 'relatives' => array ($data['relatives'][0]) ) ); if (is_dir ($p->real_full_path)) { $mime_type = 'Directory'; } else { $mime_type = $this->get_ext_mime_type (array( 'string' => $p->fake_name ) ); if($mime_type) { $GLOBALS['phpgw']->db->query ("UPDATE phpgw_vfs SET mime_type='".$mime_type."' WHERE directory='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_leading_dirs_clean)."' AND name='". $GLOBALS['phpgw']->db->db_addslashes($p->fake_name_clean)."'" . $this->extra_sql (array ('query_type' => VFS_SQL_SELECT)), __LINE__, __FILE__); } } $size = filesize ($p->real_full_path); $rarray = array( 'directory' => $p->fake_leading_dirs, 'name' => $p->fake_name, 'size' => $size, 'mime_type' => $mime_type ); return ($rarray); } } ?>