From 7f67235a44f3241b18d1a9d3ebd991ef7f90c28f Mon Sep 17 00:00:00 2001 From: adam Date: Mon, 15 Feb 2021 14:36:23 +0200 Subject: hacks and contents --- php/upload.php | 12 +++++++++--- 1 file changed, 9 insertions(+), 3 deletions(-) (limited to 'php') diff --git a/php/upload.php b/php/upload.php index 04f2214..94e30d1 100644 --- a/php/upload.php +++ b/php/upload.php @@ -6,7 +6,7 @@ require_once "user.php"; require_once "node.php"; session_start(); -if (!isset( $_POST["filename"]) || !isset($_FILES["the_file"]) || !isset($_POST['parent_directory']) || !isset($_POST['overwrite'])) +if (!isset( $_POST["filename"]) || (!isset($_FILES["the_file"]) && (!isset($_POST['content'] || gettype($_POST['content'])!="string"))|| !isset($_POST['parent_directory']) || !isset($_POST['overwrite'])) { error_log("someone tried to upload something impropperly"); http_response_code(400); @@ -41,8 +41,14 @@ if($codename=="filename taken") http_response_code(409); exit(0); } -unlink("$storage_root/$codename"); -move_uploaded_file($file['tmp_name'], "$storage_root/$codename"); +if(isset($_POST['content'])) +{ + file_put_contents("$storage_root/$codename",$_POST['content']); +}else +{ + unlink("$storage_root/$codename"); + move_uploaded_file($file['tmp_name'], "$storage_root/$codename"); +} http_response_code(200); exit(0); -- cgit v1.2.3 From 7532e744e0be43657cafffce171f875ffe94fc3f Mon Sep 17 00:00:00 2001 From: adam Date: Mon, 15 Feb 2021 14:46:48 +0200 Subject: mimetype problems --- php/upload.php | 13 +++++++++++-- 1 file changed, 11 insertions(+), 2 deletions(-) (limited to 'php') diff --git a/php/upload.php b/php/upload.php index 94e30d1..f3ef550 100644 --- a/php/upload.php +++ b/php/upload.php @@ -6,7 +6,9 @@ require_once "user.php"; require_once "node.php"; session_start(); -if (!isset( $_POST["filename"]) || (!isset($_FILES["the_file"]) && (!isset($_POST['content'] || gettype($_POST['content'])!="string"))|| !isset($_POST['parent_directory']) || !isset($_POST['overwrite'])) +if (!isset( $_POST["filename"]) || + (!isset($_FILES["the_file"]) && (!isset($_POST['content']) || gettype($_POST['content'])!="string")) + || !isset($_POST['parent_directory']) || !isset($_POST['overwrite'])) { error_log("someone tried to upload something impropperly"); http_response_code(400); @@ -18,10 +20,17 @@ $filename=$_POST["filename"]; $parent_directory=$_POST["parent_directory"]; $user=$_SESSION['user_object']; $homedir=$user->home_directory; -$mimetype=file_type($file['tmp_name']); $overwrite=$_POST['overwrite']; $dir = get_directory($parent_directory, $user); + +if(isset($_POST['content'])) +{ + $mimetype="text/plain"; +}else +{ + $mimetype=file_type($file['tmp_name']); +} if (!$dir) { error_log("trying to upload to invalid directory"); -- cgit v1.2.3