**************************************************************************** **************************************************************************** ** DESCRIPTION FILE FORMAT ** **************************************************************************** Hardcore definition: ::= * ::= ::= + ::= defined by the $separationString variable, default "\t" ::= + ::= "\r\n" | "\n" // OS dependent Simple example: . This directory contains downloadable files for MyProgram 12.0. myprogram_12.0.exe Installer version of MyProgram 12.0 (recommended) myprogram_12.0.zip Zip file distribution of MyProgram 12.0 releasenotes.txt Release notes for MyProgram 12.0 Please note that the room between the filename and the description is not filled with multiple spaces, but with one single tab. It doesn't matter if the descriptions in a file align or not, just use one tab. If you use a description for the current directory (.) as in the first line in the above example, it will be used as a heading in the directory listing. Put your descriptions in a text file within the same directory as the files to describe. Then put the text file's name in the $useDescriptionsFrom variable below. It is suggested that you use the same description file name in all subdirectories you want to list. Reason: Read the next paragraph. To make it even easier: For my download folder at http://www.bitfolge.de/download, I have put the description file at http://www.bitfolge.de/download/descript.ion You can download it and use it as another example. Filenames in the description file are case insensitive as of 1.2.10. This means that myprogram.zip and MyProgram.ZIP both are regarded as the same file. If case sensitivity matters for you, you can disable this with the $descriptionFilenamesCaseSensitive variable in the advanced settings. **************************************************************************** ** HANDLING SUBDIRECTORY LISTINGS ** **************************************************************************** Say you've put the snif index.php into www.yourhost.com/download. Now somebody makes a request to www.yourhost.com/download/releases. In order to deal with this properly, you would have to copy the snif index.php to that directory, too. But this will prevent the user to go to www.yourhost.com/download from www.yourhost.com/download/releases directly by selecting the .. link. If you have this situation, use the index.php file from the subdirectory called "subdir" in the snif archive file. All it does is automatically forward the user to the parent directory and set URL parameters so that the real snif will handle the request. OK, that may be confusing. Again, a simple example: /download/descript.ion << descriptions for /download/*.* /download/index.php << this file you're reading now, >25 KB /download/license.txt /download/notes.txt /download/releases/bigprogram_2.0.zip /download/releases/descript.ion << descriptions for /download/releases/*.* /download/releases/index.php << subdir/index.php, <2 KB /download/releases/nightly/2.1_20031103.zip /download/releases/nightly/2.1_20031104.zip /download/releases/nightly/index.php << subdir/index.php, <2 KB If a users points his browser to www.yourhost.com/download/releases/nightly/ The small index.php will forward him to www.yourhost.com/download/releases/?path=nightly/ And then the index file in that directory will forward him again, this time to www.yourhost.com/download/?path=releases/nightly/ Now we've reached the directory with the real snif (should get a copyright on that phrase ;-)), which will take over and miraculously lists the directory the user typed as an URL. /***************************************************************************/ /** SET YOUR CONFIGURATION HERE **/ /***************************************************************************/ /************** BASIC SETTINGS *******************************************/ /* These settings configure the most basic functions of snif. You should */ /* be able to understand them quickly. */ /***************************************************************************/ /** * Specify which files should be hidden in the file listing using * unix/DOS wildcards (? and *). * This is case insensitive. This script, the current directory (.), the * description file and the external stylesheet will be automatically hidden. **/ $hiddenFilesWildcards = Array("*.php", "*~"); /** * Show sub directories and let the user change to them. * It will be impossible to go above the directory this script is in. **/ $allowSubDirs = true; /** * Allow the users to download .php files. This will expose the full contents * of the downloaded files (including any password used in it). Be careful * with this! * This only makes sense if you don't hide all .php files. **/ $allowPHPDownloads = false; /** * Automatically generate and display thumbnails for image files. This * feature requires GDlib 2.0+. **/ $useAutoThumbnails = true; /** * Cache any thumbnails created for later use in a subdirectory called * .snifthumbs. This subdirectory is created in every directory and contains * the cached thumbnails of its parent directory. This directory is hidden * by the default settings of snif. If an image file is updated, so is the * thumbnail. If an image is removed though, the thumbnail has to be removed * manually. **/ $cacheThumbnails = true; /************** ADVANCED SETTINGS ****************************************/ /* Usually you won't need to change these, but you may have a look if you */ /* want snif to do something you think it can't. Maybe there's a setting */ /* which lets you do it. */ /***************************************************************************/ /** * Set the server name to be reported on generated pages. Use this only if * your server reports the wrong name if $_SERVER['HTTP_HOST'] (which is * the default) is used. **/ $snifServer = $_SERVER['HTTP_HOST']; //$snifServer = 'www.yourdomain.com'; /** * Set the date and time format used for file modified dates. For the syntax * of this string, please refer to http://www.php.net/manual/en/function.date.php * DEPRECATED, please use languageStrings instead. * @deprecated **/ $snifDateFormat = 'd-m-y'; /** * Specify which files should be hidden in the file listing using * regular expressions. Do not use expression limiters or modifiers. * These patterns will be merged with $hiddenFilesWildcards. **/ $hiddenFilesRegex = Array(); /** * Description file, leave blank for no descriptions. **/ $useDescriptionsFrom = "descript.ion"; /** * Define the string that should be used to separate file names and * descriptions in the description files. Defaults to "\t" (tab). **/ $separationString = "\t"; /** * Use external images instead of built-in ones. If you set this to * true, you should specify every value in the $externalIcons array below. * If you don't, internal images will be used instead. **/ $useExternalImages = false; /** * State the filenames for external file icons. Only used if * $useExternalImages == true. Paths are relative to the directory of snif. * Icon size should be 16x16 pixels, except where noted otherwise. * Use an empty string to use the internally stored image for that icon. **/ $externalIcons = Array ( "archive" => "", "binary" => "", "dirup" => "", "folder" => "", "HTML" => "", "image" => "", "text" => "", "unknown" => "", "download" => "", // 7x16 pixels "asc" => "", // 5x3 pixels "desc" => "" // 5x3 pixels ); /** * Use an external stylesheet file for setting the colors of the snif output. * Have a look at the colors section in the default snif stylesheet for the * names of the styles that are used by snif. * Set to an empty string to use the built-in stylesheet. **/ $externalStylesheet = ""; /** * Use an external configuration file. This can be used to configure multiple * installations of snif on the same machine the same way without changing * the individual scripts. Should be an absolute path, like "/etc/snif.conf". * Set to an empy string to use the settings that are set in this file. * * Settings are read in the following order: First, the built-in settings * of the snif file are read. If $externalConfig is set to a file, this file * is include()ed afterwards, overwriting the previous settings. Then, snif * begins its work. * This means that you can just copy this config section into your config * file, set $externalConfig in the snif index file to the config file location, * and change the config file according to your needs. If you want to use * the default of a particular setting, just delete it from the config file, * as the default will be used then. * Still unclear? Email me! **/ $externalConfig = ""; /** * Filenames in description files are case insensitive. If a file in a * directory is called MyProgram.ZIP, adding a description line for * myprogram.zip will be used for this file. * If you set this to true, filenames in description files and directories * must be exactly the same. **/ $descriptionFilenamesCaseSensitive = false; /** * If a directory contains more than this number of files, display it on * multiple pages. Useful for very large directories. $usePaging sets the * number of files displayed per page. Set to 0 to disable multiple pages. **/ $usePaging = 0; /** * Make links to directories in a file listing point directly to that * directory. Defaults to false. Set this to true if you want to display * individual index files for each directory. If you want to display a * subdirectory with snif, copy the subdir/index.php from the snif archive * to that directory. **/ $directDirectoryLinks = false; /** * Sets the maximum size of thumbnails. Images with one dimension bigger than * the respective value will be downsized. Smaller images will stay unchanged. * Defaults to 50 height and 150 width. **/ $thumbnailHeight = 50; $thumbnailWidth = 150; /** * Use "back" instead of ".." to go up in directories. **/ $useBackForDirUp = true; /** * Determines which columns to display and in which order. * To hide a column, delete it from this array. To rearrange columns, * change their order in this array. * Default value is * $displayColumns = Array("download, "icon", "name", "type", "size", "date", "description"); * Possible values are: * download a link to download instead of open files * icon a file icon according to its extension * name the filename * type the file extension * size the file size * date the file's modified date * description the file's description, if any * cvsversion the file's CVS version tag **/ $displayColumns = Array( "download", "icon", "name", "type", "size", "date", "description" ); /** * Sets the listing to always occupy the whole width of the screen instead of * only the necessary space. **/ $tableWidth100Percent = false; /** * Turns on and sets fixed width description column. Set to 0 to not restrict * description column width. * Can lead to strange results when not zero and $tableWidth100Percent==true and * does not fully work with IE. **/ $descriptionColumnWidth = 0; /** * Specifies how long file and directory names are to be truncated. Defaults * to 30, set to 0 to turn off truncation. **/ $truncateLength = 0; /** * Specifies whether to hide and forbid access to all directories that contain * a .htaccess file. This is to prevent access to directories that are forbidden * for normal HTTP access. There is no way for snif to no which directories * are forbidden, therefore as .htaccess files are mostly used to restrict * access, you may use this directive to forbid access to them through snif. **/ $protectDirsWithHtaccess = true; /** * Specifies whether to use automatic translation selection (default) or always * use the same language. Set to an empty string to enable automatic selection, * or set to a two-character language code. * Valid language codes are: de, en, nl, no, pl, sv (for a complete and * up-to-date list, see the $languageStrings array below. **/ $alwaysUseLanguage = ""; /***************************************************************************/ /** TRANSLATIONS **/ /***************************************************************************/ $languageStrings = Array( "en" => Array( // only serves as the default language, no translations needed // if you don't translate a string, the english version will be used "Index of" => "", // displayed in the page title "name" => "", // column name in the file listing "type" => "", // column name in the file listing "size" => "", // column name in the file listing "date" => "", // column name in the file listing "description" => "", // column name in the file listing "DATEFORMAT" => $snifDateFormat, // special string, sets the format of the date (see http://www.php.net/manual/en/function.date.php) "folder" => "", // a folder in the file listing "archive" => "", // an archive file in the file listing "image" => "", // an image file in the file listing "text" => "", // a text file in the file listing "HTML" => "", // an archive file in the file listing "unknown" => "", // an unknown file in the file listing "valid" => "", // used for "valid XHTML, valid CSS" "binary" => "", // a binary file "dirup" => "", // tooltip of the .. folder icon "download" => "", // tooltip of the download icon to the left "asc" => "", // sort in ascending order "desc" => "", // sort in descending order "[ back ]" => "", // special name displayed for the .. folder "1 item" => "", // displayed when a subdirectory contains exactly one file or directory "%d items" => "", // 0 items, 42 items; displays the number of files and directories in a subdirectory. Leave %d as it is. "%s is not a subdirectory of the current directory." => "", // leave %s as it is, it is replaced by the directory name "File not found: %s" => "", // leave %s as it is, it is replaced by the file name "Illegal characters detected in URL, ignoring." => "", // displayed when an URL parameter contains HTML special characters "Illegal path specified, ignoring." => "", // displayed when the path URL parameter contains a potentially dangerous path "Bytes" => "", // appended to the exact file size in the tooltip ("462 Bytes") "B" => "", // abbreviation of Bytes ("462 B") "KB" => "", // abbreviation of kilobyte ("12.4 KB") "MB" => "", // abbreviation of megabyte ("3.4 MB") "GB" => "", // abbreviation of gigabyte ("4.3 GB") "TB" => "", // abbreviation of terabyte ("820 TB") "pages" => "", // as in "4 pages" "previous" => "", // as in "previous page" "next" => "" // as in "next page" ) ); /***************************************************************************/ /** REAL CODE STARTS HERE, NO NEED TO CHANGE ANYTHING **/ /***************************************************************************/ /***************************************************************************/ /** TRANSLATION **/ /***************************************************************************/ function translate($string) { GLOBAL $languageStrings, $alwaysUseLanguage; static $requestLanguage; if ($requestLanguage=="") { $validLanguages = array_keys($languageStrings); if ($alwaysUseLanguage!="" && in_array($alwaysUseLanguage, $validLanguages)) { $requestLanguage = $alwaysUseLanguage; } else { if ($requestLanguage == "") { $acceptLanguages = explode(",", $_SERVER["HTTP_ACCEPT_LANGUAGE"]); for ($i=0; $i $value) { $_GET[$key] = strip_tags($value); if ($_GET[$key] != $value) { $displayError[] = translate("Illegal characters detected in URL, ignoring."); } if (!get_magic_quotes_gpc()) { $_GET[$key] = stripslashes($value); } } // read external config file if ($externalConfig!="") { include($externalConfig); } // first of all, security: prevent any unauthorized paths // if sub directories are forbidden, ignore any path setting if (!$allowSubDirs) { $path = ""; } else { $path = $_GET["path"]; // ignore any potentially malicious paths $path = safeDirectory($path); } // default sorting is by name if ($_GET["sort"]=="") $_GET["sort"] = "name"; // default order is ascending if ($_GET["order"]=="") { $_GET["order"] = "asc"; } else { $_GET["order"] = strtolower($_GET["order"]); } // hide descriptions column if no description file is specified if ($useDescriptionsFrom=="") { $index = array_search("description", $displayColumns); if ($index!==false && $index!==null) { unset($displayColumns[$index]); } } // add files used by snif to hidden file list if ($useDescriptionsFrom!="") { $hiddenFilesWildcards[] = $useDescriptionsFrom; } if ($externalStylesheet!="") { $hiddenFilesWildcards[] = $externalStylesheet; } $hiddenFilesWildcards[] = "."; $hiddenFilesWildcards[] = basename($_SERVER["PHP_SELF"]); // build hidden files regular expression for ($i=0;$i "\\.", "*" => ".*", "?" => ".?", "+" => "\\+", "[" => "\\[", "]" => "\\]", "(" => "\\(", ")" => "\\)", "{" => "\\{", "}" => "\\}", "^" => "\\^", "\$" => "\\\$", "\\" => "\\\\", ); $hiddenFilesRegex[] = "^".strtr($hiddenFilesWildcards[$i],$translate)."$"; } // hide .* $hiddenFilesRegex[] = "^\\.[^.].*$"; $hiddenFilesWholeRegex = "/".join("|",$hiddenFilesRegex)."/i"; /***************************************************************************/ /** REQUEST HANDLING **/ /***************************************************************************/ // handle image requests if ($_GET["getimage"]!="") { $imagesEncoded = Array( "archive" => "R0lGODlhEAAQAJECAAAAAP///////wAAACH5BAEAAAIALAAAAAAQABAAAAI3lA+pxxgfUhNKPRAbhimu2kXiRUGeFwIlN47qdlnuarokbG46nV937UO9gDMHsMLAcSYU0GJSAAA7", "asc" => "R0lGODlhBQADAIABAN3d3f///yH5BAEAAAEALAAAAAAFAAMAAAIFTGAHuF0AOw==", "binary" => "R0lGODlhEAAQAJECAAAAAP///////wAAACH5BAEAAAIALAAAAAAQABAAAAI0lICZxgYBY0DNyfhAfROrxoVQBo5mpzFih5bsFLoX5iLYWK6xyur5ubPAbhPZrKhSKCmCAgA7", "desc" => "R0lGODlhBQADAIABAN3d3f///yH5BAEAAAEALAAAAAAFAAMAAAIFhB0XC1sAOw==", "dirup" => "R0lGODlhEAAQAJECAAAAAP///////wAAACH5BAEAAAIALAAAAAAQABAAAAIulI+JwKAJggzuiThl2wbnT3WZN4oaA1bYRobXCLpkq5nnVr9xqe85C2xYhkRFAQA7", "folder" => "R0lGODlhEAAQAJECAAAAAP///////wAAACH5BAEAAAIALAAAAAAQABAAAAIplI+JwKAJggzuiThl2wbnT3UgWHmjJp5Tqa5py7bhJc/mWW46Z/V+UgAAOw==", "HTML" => "R0lGODlhEAAQAKIHABsb/2ho/4CA/0BA/zY2/wAAAP///////yH5BAEAAAcALAAAAAAQABAAAANEeFfcrVAVQ6thUdo6S57b9UBgSHmkyUWlMAzCmlKxAZ9s5Q5AjWqGwIAS8OVsNYJxJgDwXrHfQoVLEa7Y6+Wokjq+owQAOw==", "image" => "R0lGODlhEAAQAKIEAK6urmRkZAAAAP///////wAAAAAAAAAAACH5BAEAAAQALAAAAAAQABAAAANCSCTcrVCJQetgUdo6RZ7b9UBgSHnkAKwscEZTy74pG9zuBavA7dOanu+H0gyGxN0RGdClKEjgwvKTlkzFhWOLISQAADs=", "text" => "R0lGODlhEAAQAJECAAAAAP///////wAAACH5BAEAAAIALAAAAAAQABAAAAI0lICZxgYBY0DNyfhAfXcuxnWQBnoKMjXZ6qUlFroWLJHzGNtHnat87cOhRkGRbGc8npakAgA7", "download" => "R0lGODlhBwAQAIABAAAAAP///yH5BAEAAAEALAAAAAAHABAAAAISjI+pywb6UkQzgHsPls3h2gUFADs=", "blank" => "R0lGODlhAQABAIAAAP///wAAACH5BAEAAAAALAAAAAABAAEAAAICRAEAOw==", "unknown" => "R0lGODlhEAAQAJECAAAAAP///////wAAACH5BAEAAAIALAAAAAAQABAAAAI1lICZxgYBY0DNyfhAfXcuxnkI1nCjB2lgappld6qWdE4vFtprR+4sffv1ZjwdkSc7KJYUQQEAOw==" ); $imageDataEnc = $imagesEncoded[$_GET["getimage"]]; if ($imageDataEnc) { $maxAge = 31536000; // one year doConditionalGet($_GET["getimage"], gmmktime(1,0,0,1,1,2004)); $imageDataRaw = base64_decode($imageDataEnc); Header("Content-Type: image/gif"); Header("Content-Length: ".strlen($imageDataRaw)); Header("Cache-Control: public, max-age=$maxAge, must-revalidate"); Header("Expires: ".createHTTPDate(time()+$maxAge)); echo $imageDataRaw; } die(); } // handle thumbnail creation if ($_GET["thumbnail"]!="") { GLOBAL $thumbnailHeight, $cacheThumbnails; $thumbnailCacheSubdir = ".snifthumbs"; $file = safeDirectory(urldecode($_GET["thumbnail"])); doConditionalGet($_GET["thumbnail"],filemtime($file)); $thumbDir = dirname($file)."/".$thumbnailCacheSubdir; $thumbFile = $thumbDir."/".basename($file); if ($cacheThumbnails) { if (file_exists($thumbDir)) { if (!is_dir($thumbDir)) { $cacheThumbnails = false; } } else { if (@mkdir($thumbDir)) { chmod($thumbDir, "0777"); } else { $cacheThumbnails = false; } } if (file_exists($thumbFile)) { if (filemtime($thumbFile)>=filemtime($file)) { Header("Location: ".dirname($_SERVER["PHP_SELF"])."/".$thumbFile); die(); } } } $contentType = ""; $extension = strtolower(substr(strrchr($file, "."), 1)); switch ($extension) { case "gif": $src = imagecreatefromgif($file); $contentType="image/gif"; break; case "jpg": // fall through case "jpeg": $src = imagecreatefromjpeg($file); $contentType="image/jpeg"; break; case "png": $src = imagecreatefrompng($file); $contentType="image/png"; break; default: die(); break; } $srcWidth = imagesx($src); $srcHeight = imagesy($src); $srcAspectRatio = $srcWidth / $srcHeight; $maxAge = 3600; // one hour Header("Cache-Control: public, max-age=$maxAge, must-revalidate"); Header("Expires: ".createHTTPDate(time()+$maxAge)); if ($srcHeight<=$thumbnailHeight AND $srcWidth<=$thumbnailWidth) { Header("Content-Type: $contentType"); readfile($file); } else { if ($srcWidth > $srcHeight) { $thumbWidth = $thumbnailWidth; $thumbHeight = $thumbWidth / $srcAspectRatio; } else { $thumbHeight = $thumbnailHeight; $thumbWidth = $thumbHeight * $srcAspectRatio; } if (function_exists('imagecreatetruecolor')) { $thumb = imagecreatetruecolor($thumbWidth, $thumbHeight); } else { $thumb = imagecreate($thumbWidth, $thumbHeight); } imagecopyresampled($thumb, $src, 0, 0, 0, 0, $thumbWidth, $thumbHeight, $srcWidth, $srcHeight); Header("Content-Type: image/jpeg"); if ($cacheThumbnails) { imagejpeg($thumb, $thumbFile); chmod($thumbFile, "0777"); readfile($thumbFile); } else { imagejpeg($thumb); } } die(); } // handle download requests if ($_GET["download"]!="") { $download = stripslashes($_GET["download"]); $filename = safeDirectory($path.rawurldecode($download)); if ( !file_exists($filename) OR fileIsHidden($filename) OR (substr(strtolower($filename), -4)==".php" AND !$allowPHPDownloads)) { Header("HTTP/1.0 404 Not Found"); $displayError[] = sprintf(translate("File not found: %s"), $filename); } else { //doConditionalGet($filename, filemtime($filename)); Header("Content-Length: ".filesize($filename)); Header("Content-Type: application/x-download"); Header("Content-Disposition: attachment; filename=\"".rawurlencode($download)."\""); readfile($filename); die(); } } /***************************************************************************/ /** FUNCTIONS **/ /***************************************************************************/ // create a HTTP conform date function createHTTPDate($time) { return gmdate("D, d M Y H:i:s", $time)." GMT"; } // this function is from http://simon.incutio.com/archive/2003/04/23/conditionalGet function doConditionalGet($file, $timestamp) { $last_modified = createHTTPDate($timestamp); $etag = '"'.md5($file.$last_modified).'"'; // Send the headers Header("Last-Modified: $last_modified"); Header("ETag: $etag"); // See if the client has provided the required headers $if_modified_since = isset($_SERVER['HTTP_IF_MODIFIED_SINCE']) ? stripslashes($_SERVER['HTTP_IF_MODIFIED_SINCE']) : false; $if_none_match = isset($_SERVER['HTTP_IF_NONE_MATCH']) ? stripslashes($_SERVER['HTTP_IF_NONE_MATCH']) : false; if (!$if_modified_since && !$if_none_match) { return; } // At least one of the headers is there - check them if ($if_none_match && $if_none_match != $etag) { return; // etag is there but doesn't match } if ($if_modified_since && $if_modified_since != $last_modified) { return; // if-modified-since is there but doesn't match } // Nothing has changed since their last request - serve a 304 and exit Header('HTTP/1.0 304 Not Modified'); die(); } function safeDirectory($path) { GLOBAL $displayError; $result = $path; if (strpos($path,"..")!==false) $result = ""; if (substr($path,0,1)=="/") { $result = ""; } if ($result!=$path) { $displayError[] = translate("Illegal path specified, ignoring."); } return $result; } /** * Formats a file's size nicely (750 B, 3.4 KB etc.) **/ function niceSize($size) { define("SIZESTEP", 1024.0); static $sizeUnits = Array(); if (count($sizeUnits)==0) { $sizeUnits[] = " ".translate("B"); $sizeUnits[] = translate("KB"); $sizeUnits[] = translate("MB"); $sizeUnits[] = translate("GB"); $sizeUnits[] = translate("TB"); } if ($size==="") return ""; $unitIndex = 0; while ($size>SIZESTEP) { $size = $size / SIZESTEP; $unitIndex++; } if ($unitIndex==0) { return number_format($size, 0)." ".$sizeUnits[$unitIndex]; } else { return number_format($size, 1, ".", ",")." ".$sizeUnits[$unitIndex]; } } /** * Compare two strings or numbers. Return values as strcmp(). **/ function myCompare($arrA, $arrB, $caseSensitive=false) { $a = $arrA[$_GET["sort"]]; $b = $arrB[$_GET["sort"]]; // sort .. first if ($arrA["isBack"]) return -1; if ($arrB["isBack"]) return 1; // sort directories above everything else if ($arrA["isDirectory"]!=$arrB["isDirectory"]) { $result = $arrB["isDirectory"]-$arrA["isDirectory"]; } else if ($arrA["isDirectory"] && $arrB["isDirectory"] && ($_GET["sort"]=="type" || $_GET["sort"]=="size")) { $result = 0; } else { if (is_string($a) OR is_string($b)) { if (!$caseSensitive) { $a = strtoupper($a); $b = strtoupper($b); } $result = strcoll($a,$b); } else { $result = $a-$b; } } if (strtolower($_GET["order"])=="desc") { return -$result; } else { return $result; } } /** * URLEncodes some characters in a string. PHP's urlencode and rawurlencode * produce very unsatisfying results for special and reserved characters in * filenames. **/ function myEncode($path, $filename) { // % must be the first, as it is the escape character /* $from = Array("%"," ","#","&"); $to = Array("%25","%20","%23","%26"); return str_replace($from, $to, $string); */ return $path.rawurlencode($filename); } /** * Build a URL using new sorting settings. **/ function getNewSortURL($newSort) { GLOBAL $path; $base = $_SERVER["PHP_SELF"]; $url = $base."?sort=$newSort"; if ($newSort==$_GET["sort"]) { if ($_GET["order"]=="asc" OR $_GET["order"]=="") { $url.= "&order=desc"; } } if ($path!="") { $url.= "&path=$path"; } return $url; } /** * Determine a file's file type based on its extension. **/ function getFileType($fileInfo) { // put any additional extensions in here $extension = $fileInfo["type"]; static $fileTypes = Array( "HTML" => Array("html","htm"), "image" => Array("gif","jpg","jpeg","png","tif","tiff","bmp","art"), "text" => Array("asp","c","cfg","cpp","css","csv","conf","cue","diz","h","inf","ini","java","js","log","nfo","php","phps","pl","py","rdf","rss","rtf","sql","txt","vbs","xml"), //"code" => Array("asp","c","cpp","h","java","js","php","phps","pl","py","sql","vbs"), //"xml" => Array("rdf","rss","xml"), "binary" => Array("asf","au","avi","bin","class","divx","doc","exe","mov","mpg","mpeg","mp3","ogg","ogm","pdf","ppt","ps","rm","swf","wmf","wmv","xls"), //"document"=> Array("doc","pdf","ppt","ps","rtf","xls"), "archive" => Array("ace","arc","bz2","cab","gz","lha","jar","rar","sit","tar","tbz2","tgz","z","zip","zoo") ); static $extensions = null; if ($extensions==null) { $extensions = Array(); foreach($fileTypes AS $keyType => $value) { foreach($value AS $ext) $extensions[$ext] = $keyType; } } if ($fileInfo["isDirectory"]) { if ($fileInfo["isBack"]) { return "dirup"; } else { return "folder"; } } $type = $extensions[strtolower($extension)]; if ($type=="") { return "unknown"; } else { return $type; } } function getIcon($fileType) { GLOBAL $useExternalImages, $externalIcons; if ($useExternalImages && $externalIcons[$fileType]!="") { return $externalIcons[$fileType]; } else { return $_SERVER["PHP_SELF"]."?getimage=$fileType"; } } function dirContainsHtAccess($dirname) { if(is_dir($dirname)) { if ($dirname=="." || $dirname=="..") return false; $d = dir($dirname); while($f = $d->read()) { if ($f==".htaccess") return true; } } return false; } // checks if a file is hidden from view function fileIsHidden($filename) { GLOBAL $hiddenFilesWholeRegex,$protectDirsWithHtaccess; if (is_dir($filename) && $protectDirsWithHtaccess) { if (!($filename=="." || $filename=="..")) { $d = dir($filename); while($f = $d->read()) { if ($f==".htaccess") return true; } } } return preg_match($hiddenFilesWholeRegex,$filename); } function getVersion($filename) { $version = "–"; $contents = file_get_contents($filename); $no_matches = preg_match("/Id: (\S+) (\d+.\d+)/i", $contents, $matches); if ($no_matches>0) $version = $matches[2]; return $version; } /** * Gets a file's description from the description array. **/ function getDescription($filename) { GLOBAL $descriptions, $descriptionFilenamesCaseSensitive; if (!$descriptionFilenamesCaseSensitive) { $filename = strtolower($filename); } return $descriptions[$filename]; } function getPageLink($startNumber, $linkText, $linkTitle="") { GLOBAL $snifServer, $path; $url = "http://".$snifServer.$_SERVER["PHP_SELF"]."?path=".$path."&sort=".$_GET["sort"]."&order=".$_GET["order"]."&start=".$startNumber; if ($linkTitle!="") { $titleAttribute = " title=\"$linkTitle\""; } else { $titleAttribute = ""; } return "$linkText "; } function getPagingHeader() { GLOBAL $pageStart, $usePaging, $pagingNumberOfPages, $pagingActualPage, $pageNumber, $files; static $displayPages = Array(); if (count($displayPages)==0) { $displayPages[] = 0; for ($i=$pagingActualPage-1; $i<$pagingActualPage+3; $i++) { if ($i>=0 && $i<$pagingNumberOfPages) { $displayPages[] = $i; } } $displayPages[] = $pagingNumberOfPages-1; $displayPages = array_unique($displayPages); } $header = translate("pages")."  "; if ($pageStart>0) { $header.= getPageLink($pageStart-$usePaging, "«", translate("previous")); } if ($pageStart+$usePaging $pageNumber) { if ($pageNumber-$displayPages[$i-1] > 1) { $header.= ".. "; } if ($pageNumber==$pagingActualPage) { $header.= "".($pageNumber+1)." "; } else { $header.= getPageLink($pageNumber*$usePaging, $pageNumber+1); } } return $header; } function getPathLink($directory) { GLOBAL $directDirectoryLinks; if ($directDirectoryLinks) { return $directory."/"; } else { return $_SERVER["PHP_SELF"]."?path=".urlEncode($directory)."/"; } } /** * Truncates a string to a certain length at the most sensible point. * First, if there's a '.' character near the end of the string, the string is truncated after this character. * If there is no '.', the string is truncated after the last ' ' character. * If the string is truncated, " ..." is appended. * If the string is already shorter than $length, it is returned unchanged. * * @static * @param string string A string to be truncated. * @param int length the maximum length the string should be truncated to * @return string the truncated string */ function iTrunc($string, $length) { if ($length==0) { return $string; } if (strlen($string)<=$length) { return $string; } $pos = strrpos($string,"."); if ($pos>=$length-4) { $string = substr($string,0,$length-4); $pos = strrpos($string,"."); } if ($pos>=$length*0.4) { return substr($string,0,$pos+1)."..."; } $pos = strrpos($string," "); if ($pos>=$length-4) { $string = substr($string,0,$length-4); $pos = strrpos($string," "); } if ($pos>=$length*0.4) { return substr($string,0,$pos)."..."; } return substr($string,0,$length-4)."..."; } function getDirSize($dirname) { $dir = dir($dirname); $fileCount = 0; while ($filename = $dir->read()) { if (!fileIsHidden($dirname."/".$filename)) $fileCount++; } return $fileCount-2; // . and .. do not count } /***************************************************************************/ /** LIST BUILDING **/ /***************************************************************************/ // change directory // must be done before description file is parsed if ($path!="") { $hidden = fileIsHidden(substr($path,0,-1)); if ($hidden || !@chdir($path)) { $displayError[] = sprintf(translate("%s is not a subdirectory of the current directory."), $path); $path = ""; } } $dir = dir("."); // parsing description file $descriptions = Array(); if ($useDescriptionsFrom!="") { $descriptionsFile = @file($useDescriptionsFrom); if ($descriptionsFile!==false) { for ($i=0;$iread()) { if ($entry=="lost+found") continue; if ($entry==".." && $path=="") continue; // if the filename matches one of the hidden files wildcards, skip the file if (fileIsHidden($entry)) continue; // if the file is a directory and if directories are forbidden, skip it if (!$allowSubDirs AND is_dir($entry)) continue; $f = Array(); $f["name"] = $entry; $f["isDownloadable"] = (substr(strtolower($entry), -4)!=".php") || $allowPHPDownloads; $f["isDirectory"] = is_dir($entry); $fDate = @filemtime($entry); $f["date"] = $fDate; $f["fullDate"] = date("r", $fDate); $f["shortDate"] = date(translate("DATEFORMAT"), $fDate); //setlocale(LC_ALL,"German"); //$f["shortDate"] = strftime("%x"); $f["description"] = getDescription($entry); if ($f["isDirectory"]) { $f["type"] = "<DIR>"; $f["size"] = ""; $f["niceSize"] = ""; // building the link if ($entry=="..") { // strip the last directory from the path $pathArr = explode("/",$path); $link = implode("/",array_slice($pathArr,0,count($pathArr)-2)); // if there is no path set, don't add it to the link if ($link=="") { // we're already in $baseDir, so skip the file if ($path=="") continue; $f["link"] = $_SERVER["PHP_SELF"]; } else { $link.= "/"; $f["link"] = $_SERVER["PHP_SELF"]."?path=".urlEncode($link); } $f["isBack"] = true; if ($useBackForDirUp) { $f["displayName"] = translate("[ back ]"); } } else { $filesInDir = getDirSize($entry); if ($filesInDir==1) { $f["niceSize"] = translate("1 item"); } else { $f["niceSize"] = sprintf(translate("%d items"),$filesInDir); } $f["link"] = getPathLink($path.$entry); } } else { if (is_link($entry)) { $linkTarget = readlink($entry); $pi = pathinfo($linkTarget); $scriptDir = dirname($_SERVER["SCRIPT_FILENAME"]); if (strpos($pi["dirname"], $scriptDir)===0) { $f["type"] = "<LINK>"; // links have no date, so take the target's date $f["date"] = filemtime($linkTarget); $f["link"] = $path.urlencode(substr($linkTarget, strlen($scriptDir)+1)); } else { // link target is outside of script directory, so skip it continue; } } else { $fSize = @filesize($entry); $f["size"] = $fSize; $f["fullSize"] = number_format($fSize,0,".",","); $f["niceSize"] = nicesize($fSize); $pi = pathinfo($entry); $f["type"] = $pi["extension"]; $f["link"] = myEncode($path,$entry); if (in_array("cvsversion", $displayColumns)) { $f["cvsversion"] = getVersion($entry); } } } if (!$f["isBack"]) { $f["displayName"] = htmlentities(iTrunc($f["name"], $truncateLength)); } $f["filetype"] = getFileType($f); $f["icon"] = getIcon($f["filetype"]); if ($useAutoThumbnails && $f["filetype"]=="image") { $f["thumbnail"] = "\"\"/"; } $files[] = $f; } usort($files, "myCompare"); $pagingInEffect = $usePaging>0 && count($files)>$usePaging; if ($usePaging>0) { $pageStart = $_GET["start"]; if ($pageStart=="" || $pageStart<0 || $pageStart>count($files)) $pageStart = 0; $pagingActualPage = floor($pageStart / $usePaging); $pagingNumberOfPages = ceil(count($files) / $usePaging); } else { $pageStart = 0; $usePaging = count($files); } $pageEnd = min(count($files),$pageStart+$usePaging); /***************************************************************************/ /** HTML OUTPUT **/ /***************************************************************************/ $columns = count($displayColumns); Header("Content-Type: text/html; charset=UTF-8"); echo ""; ?> <?php echo translate("Index of")." ".htmlentities(dirname($_SERVER["PHP_SELF"])."/".$path);?> 0) { foreach($displayError AS $error) { echo "$error
"; } echo "
"; } ?> "> "; if ($files[$i]["isDirectory"] OR !$files[$i]["isDownloadable"]) { ?> ">" alt="" title="" width="7" height="16" style="vertical-align:middle;"/>"; break; case "icon": echo ""; break; case "type": echo ""; break; case "size": echo ""; break; case "date": echo ""; break; case "description": ?>"; echo $files[$i]["cvsversion"]; echo ""; break; } } ?>
".join("/",array_slice($pathToSnif, -1)).""; $pathArr = explode("/",$path); for ($i=0; $i".htmlentities($pathArr[$i]).""; } ?>
    "> "; ?> "> "; ?> "; ?> "> "> "; ?> 0) echo " style=\"width:".$descriptionColumnWidth."px;\"";?>>
"; ?> " title="">" alt="" title="" width="16" height="16" style="vertical-align:middle;"/> "; break; case "name": echo ""; ?>" title="">"; echo ""; echo $files[$i]["type"]; echo ""; if ($files[$i]["fullSize"]!="") echo " "; echo $files[$i]["niceSize"]; if ($files[$i]["fullSize"]!="") echo " "; echo ""; echo "".$files[$i]["shortDate"].""; echo "