Splitreflection File Manager

#!/usr/bin/perl use strict 'refs'; use lib '..'; use CGI qw(:standard); use CGI::Carp qw/fatalsToBrowser/; my $cgi = CGI->new; $msg = $cgi->param('msg'); if($credentials{'srfile'}) { die "$credentials{'username'} is not authorized to use this service\n"; exit; } open my $fh, "; close $fh; open my $fh, "<$credentials{'home'}/.web/filemanager.conf"; my @userdirs = <$fh>; close $fh; if($userdirs[0] =~ /!/) { shift @userdirs; @basedirs = @userdirs; } else { push @basedirs, @userdirs; } @basedirs = grep($_ !~ /^$/, @basedirs); my %dirs; grep { chomp $_; my ($key, $value) = split " ", $_, 2; $key =~ s/^\~/$credentials{'home'}/; $key =~ s/\/$//; $key =~ s/(.*)/$1/; $dirs{$key} = ($value || $dirs{$key} || $key); $_ = $key; } @basedirs; $currentdir = $cgi->param('currentdir'); if(! grep { my $bd = $_; my $ret = 0; if($currentdir =~ /^($bd(\/.*)?)$/) { $currentdir = $1; $ret = 1; } $ret; } @basedirs ) { $currentdir = $basedirs[0]; } #if(grep($currentdir =~ /^$_/, @basedirs)) #{ # #ok #} #else #{ # $currentdir = $basedirs[0]; #} if (my $file = $cgi->param('filename')) { if($currentdir =~ /(.*)/){$currentdir = $1;} $fixedfile = $file; $fixedfile =~ s/^.*[\\\/]//g; if("$currentdir/$fixedfile" =~ /(.*)/){$fixedfile = $1;} if(open my $fh, ">$fixedfile") { my $line; while(read($file, $line, 1024 * 10)) { print $fh $line; } close $fh; $msg = $fixedfile." uploaded."; } else { $msg = "Could not create file $fixedfile: $!."; } } if($folder = $cgi->param('newfolder')) { $fixedfolder = $folder; $fixedfolder =~ s/^.*[\\\/]//g; if("$currentdir/$fixedfolder" =~ /(.*)/){$fixedfolder = $1;} if(mkdir "$fixedfolder") { $msg = "$fixedfolder created."; } else { $msg = "Error creating folder $fixedfolder."; } } if($folder = $cgi->param('deletedir')) { $fixedfolder = $folder; $fixedfolder =~ s/^.*[\\\/]//g; if(!(rmdir "$currentdir/$fixedfolder")){ $msg="Error deleting $fixedfolder. Might not be empty."; } else {$msg="$fixedfolder deleted.";} } if($file = $cgi->param('deletefile')) { $fixedfile = $file; $fixedfile =~ s/^.*[\\\/]//g; if("$currentdir/$fixedfile" =~ /(.*)/){$fixedfile = $1;} if(!(unlink "$fixedfile")){ $msg="Error deleting $fixedfile."; } else {$msg = "$fixedfile deleted.";} } if($file = $cgi->param('unzip')) { if($currentdir =~ /(.*)/){$currentdir = $1;} $fixedfile = $file; $fixedfile =~ s/^.*[\\\/]//g; if($fixedfile =~ /(.*)/){$fixedfile = $1;} chdir $currentdir; open my $fh, "/usr/bin/unzip -o $fixedfile|"; @filedata = <$fh>; close $fh; @filedata = grep($_ =~ /^ /g, @filedata); $msg = join "
\n", @filedata; } if((! -d $currentdir) || $currentdir =~ /\.\./g) { $msg = "Invalid Directory $currentdir"; $currentdir = $basedirs[0]; } if($cgi->param('action') eq "download") { my $file = $currentdir."/".$cgi->param('file'); if($file =~ /(.*)/){$file = $1;} my $ct = `/usr/bin/file -bi \"$file\"`; chomp $ct; my @stat = stat $file; print "Content-type: $ct\n". "Cache-Control: no-cache\n". "Content-disposition: inline; filename=".$cgi->param('file')."\n". "Content-length: $stat[7]\n\n"; open my $fh, "<$file" or die "$file: $!"; while(my $line = <$fh>) { print $line; } close $fh; exit; } opendir my $dh, $currentdir; my @files = readdir $dh; closedir $dh; @files = grep(/^[^\.]/, @files); @files = sort {uc($a) cmp uc($b)} @files; my @list = @files; @files = grep(-f "$currentdir/$_", @files); @list = grep(-d "$currentdir/$_", @list); my $output = "Content-type: text/html\n\n". "\n". " \n". " Splitreflection File Manager\n". " \n". " \n". " Available Filesystems
\n"; my $subdir = $currentdir; my $dirhead; while(my ($key, $value) = each %dirs) { $output .= "$value
\n"; if($subdir eq $currentdir) { if($subdir =~ s/^$key//) { $dirhead = $key; } } } $output .= "$msg
\n". "Current directory - $dirhead"; grep { if($_) { $dirhead .= "/$_"; $output .= "/$_"; } } split "/", $subdir; $output .= "\n". "\n

\n\n"; grep { if($cgi->param('deletemode')) { $output .= "\n"; } else { $output .= "\n"; } } @list; $output .= "

$_	Delete
$_

\n\n"; print $output; grep { my @stat = stat "$currentdir/$_"; $stat[9] = &time2text($stat[9]); my $icon = "misc"; if($_ =~ /\.gif$|\.jpe?g$/i){ $icon = "img"; } if($_ =~ /\.html?$/i){ $icon = "htm"; } if($_ =~ /\.zip$/i){ $icon = "zip"; } my $url = "?action=download¤tdir=$currentdir&file=".&text2href($_); if($currentdir =~ /([^\/]*)\/public_html(.*)/) { $url = "http://www.splitreflection.com/~$1$2/$_"; } if($currentdir =~ /^\/home\/websites\/([^\/]+)\/htdocs(.*)/) { $url = "http://www.$1$2/$_"; } my $output = "". "\n"; } else { if($_ =~ /\.zip$/) { $output .= "$stat[7]\n"; } else { $output .= "$stat[7]\n"; } } print $output; } @files; print "". "

$_	"; if($cgi->param('deletemode')) { $output .= "Delete
$stat[9]	unzip
$stat[9]

\n"; if($cgi->param('deletemode')) { print "Switch to normal mode"; } else { print "Switch to delete mode"; } # Start a multipart form. print start_multipart_form(). filefield('filename','',45). "". submit('submit','Upload File'). endform. start_multipart_form(). textfield('newfolder', '',45). "". submit('folder', 'Create Folder'). endform. hr(). end_html; exit; sub href2text { my $line = join "", @_; while($line =~ /%([0-9A-Fa-f][0-9A-Fa-f])/){ my $char = chr(hex($1)); $line =~ s/%$1/$char/g; } return $line; } sub text2href { my $percent = sprintf "%%%x", ord "%"; my $line = join "", @_; $line =~ s/%/$percent/g; while($line =~ /([^a-zA-Z0-9%\\\]])/){ my $char = sprintf "%%%x", ord $1; $line =~ s/[$1]/$char/g; } return $line; } sub time2text { my @wday = ("Sun", "Mon", "Tue", "Wed", "Thu", "Fri", "Sat"); my @month = ("Jan", "Feb", "Mar", "Apr", "May", "Jun", "Jul", "Aug", "Sep", "Oct", "Nov", "Dec"); my $time = shift; my @ltime = localtime($time); $ltime[5] += 1900; my $m = "AM"; if($ltime[2] >= 12){ $m = "PM"; } $ltime[2] %= 12; $ltime[2] ||= 12; return "$wday[$ltime[6]] $month[$ltime[4]] $ltime[3] $ltime[5] ".sprintf("%02d:%02d:%02d",$ltime[2],$ltime[1],$ltime[0])." $m"; }