ilch.de :: Forum :: Ilch Clan 1.1 :: Allgemein :: Dürfen User Dateien hochladen? Frage

Zitat geschrieben von legalsauger

Admins können doch im AdminCP Dateien hochladen...

Ja aber es ist angenehmer es direkt bei Downloads zu machen.

Und sorry aber ich finde da nichts drin

/include/contents/downloads.php

<?php 
function download_time($file) {
# Downloadzeiten Mod
# Copyright by Revolution

 

if(!function_exists("sec_format")) {
function sec_format($seconds) {
$units = array( "Tag|e"=>86400,
"Stunde|n"=>3600,
"Minute|n"=>60,
"Sekunde|n"=>1
);
if($seconds < 1) {
return "<b>weniger</b> als 1 Sekunde";
} else {
$show = FALSE;
$ausg = "";
foreach($units as $key=>$value) {
$t = round($seconds/$value);
$seconds = $seconds%$value;
list($s, $pl) = explode("|", $key);
if($t > 0 || $show) {
if($t == 1) {
$ausg .= $t." ".$s.", ";
} else {
$ausg .= $t." ".$s.$pl.", ";
}
$show = TRUE;
}
}
$ausg = substr($ausg, 0, strlen($ausg)-2);
return $ausg;
}
}
}
$values = array("<b><font color='#cc0000'>DSL </font></b>"=>768,
"<b><font color='#cc0000'>DSL 1000 </font></b>"=>1000,
"<b><font color='#cc0000'>DSL 2000 </font></b>"=>2000,
"<b><font color='#cc0000'>DSL 6000 </font></b>"=>6000,
"<b><font color='#cc0000'>DSL 25000 </font></b>"=>25000,
"<b><font color='#cc0000'>DSL 50000 </font></b>"=>50000,

"<b><font color='#cc00cc'>Kabel 10 MB </font></b>"=>10000,
"<b><font color='#cc00cc'>Kabel 20 MB </font></b>"=>20000,

"<b><font color='#00cc00'>ISDN 64 </font></b>"=>64,
"<b><font color='#00cc00'>ISDN 128 </font></b>"=>128,

"<b><font color='#0000cc'>Modem 56 k </font></b>"=>56.6,
"<b<font color='#0000cc'>Modem 28,8 k </font></b>"=>28.8,
"<b><font color='#0000cc'>Modem 14,4 k </font></b>"=>14.4,
"<b><font color='#0000cc'>Modem 9,6 k </font></b>"=>9.6

);
$size = filesize($file);
$ausg =''; ##round($size/(1024), 0)." KB<br />";
$size *= 8;
foreach($values as $key=>$value) {
$time = sec_format($size/($value*1024));
$ausg .='<tr class="Cnorm_2"><td>' .$time."</td><td> @ ".$value." kBaud</td><td> (".$key.")</td></tr>";
}
return $ausg;
}



defined ('main') or die ( 'no direct access' );


function get_cats_title ( $catsar ) {
  $l = '';
	foreach($catsar as $k => $v) {
	  if ( $k != '' AND $v != '' ) {
		  $l = $v.' :: '.$l;
		}
	}
	return ($l);
}

function get_cats_urls ( $catsar ) {
  $l = '';
	foreach($catsar as $k => $v) {
	  if ( $k != '' AND $v != '' ) {
		  $l = '<a class="smalfont" href="?downloads-'.$k.'">'.$v.'</a><b> &raquo; </b>'.$l;
		}
	}
	return ($l);
}

function get_cats_array ( $cid , $ar ) {
	if ( empty($cid) ) {
	  return ($ar);
	} else { 
	  $erg = db_query("SELECT cat,id,name FROM prefix_downcats WHERE id = ".$cid);
		$row = db_fetch_assoc($erg);
		$ar[$row['id']] = $row['name'];
	  return ( get_cats_array($row['cat'],$ar) );
	}
	if ( $r ) {
	  return ($l);
	}
}

function get_download_size($file) {
  $sizes = array(" Bytes", " KB", " MB", " GB", " TB", " PB", " EB", " ZB", " YB");  
  $size = @filesize($file); if ($size == 0) { return('n/a'); } else {
  return (round($size/pow(1024, ($i = floor(log($size, 1024)))), 2) . $sizes[$i]); }
}

function count_files ($cid) {
  $zges = 0;
	$e = db_query("SELECT id FROM prefix_downcats WHERE cat = ".$cid);
	if ( db_num_rows($e) > 0 ) {
	  while ($r = db_fetch_assoc($e) ) {
	    $zges = $zges + count_files ( $r['id'] );
	  }
	}
	$zges = $zges + db_count_query("SELECT COUNT(*) FROM prefix_downloads WHERE cat = ".$cid);
	return ( $zges );
}

function icUpload () {
	    
      $name = escape($_POST['name'],'string');
	    $version = escape($_POST['version'],'string');
	    $autor = escape($_POST['autor'],'string');
	    $surl = escape($_POST['surl'],'string');
	    $ssurl = escape($_POST['ssurl'],'string');
      $url = ( empty($_POST['url']) ? '' : escape($_POST['url'],'string') );
	    $desc = escape($_POST['desc'],'string');
	    $descl = escape($_POST['descl'],'textarea');
      
      if (empty($name)) {
        return ('keinen Namen angegeben.');
      }

      if (empty($desc) or empty($descl)) {
        return ('kein langer oder/und kein kurzer Text angegeben.');
      }
      
      if (empty($url) AND empty($_FILES['file']['name'])) {
        return ('Keine Datei oder Link angegeben.');
      }
  
	    if (!empty ($_FILES['file']['name']) ) {
      
		    $rtype = trim(ic_mime_type ($_FILES['file']['tmp_name']));
        $fname = escape($_FILES['file']['name'],'string');
        $fende = preg_replace("/.+\.([a-zA-Z]+)$/", "\\1", $fname);
        $fende = strtolower($fende);
        
		    if ( $_FILES['file']['size'] > 2097000 ) { # 2 mb (2 097 152)
          return ('Die Datei darf NICHT gr&ouml;sser als 2 MBytes sein.');
        }
        
        if (
		      ($fende != 'rar' AND $fende != 'zip' AND $fende != 'tar')
                   
          OR (
          $rtype != 'application/x-rar' AND
          $rtype != 'application/x-zip' AND
          $rtype != 'application/x-tar')

		    ) {
          return ('Die Datei darf nur die Endungen: .zip, .tar oder .rar haben.');
        }
        
        $fname = str_replace ('.'.$fende, '', $fname);
        $fname = preg_replace("/[^a-zA-Z0-9]/", "", $fname);
        $fname = $fname.'.'.$fende;
        
        if (file_exists( 'include/downs/downloads/user_upload/'.$fname ) ) {
          return ('Die Datei existiert bereits und kann nicht &uuml;berschrieben werden.');
        }
        
        if ( move_uploaded_file($_FILES['file']['tmp_name'], 'include/downs/downloads/user_upload/'.$fname) ) {
          $url = 'include/downs/downloads/user_upload/'.$fname;
          @chmod($url, 0777);
			  }
      }
        
      if (empty($url)) {
        return ('Keine Datei oder Link angegeben');
      }
        
      db_query("INSERT INTO prefix_downloads (`time`,`cat`,`creater`,`version`,`url`,surl,`ssurl`,`name`,`desc`,`descl`,pos) VALUES (NOW(),-1,'".$autor."','".$version."','".$url."','".$surl."','".$ssurl."','".$name."','".$desc."','".$descl."','0')");
        
      return (true);
}

switch ( $menu->get(1) ) {
  default :
		$cid = ( $menu->get(1) ? escape($menu->get(1), 'integer') : 0 );
		$erg = db_query("SELECT cat,name FROM prefix_downcats WHERE id = ".$cid." ORDER BY pos");
		if ( db_num_rows($erg) > 0 ) {
		  $row = db_fetch_assoc($erg);
			$array = get_cats_array($row['cat'],'');
			if ( !empty($array) ) {
			  $titelzw = get_cats_title($array);
			  $namezw = get_cats_urls($array);
			} else {
			  $titelzw = '';
				$namezw = '';
			}
		  $cattitle = ':: '.$titelzw.$row['name'];
			$catname = '<b> &raquo; </b>'.$namezw.$row['name'];	
		} else {
		  $cattitle = '';
			$catname = '';
		}
		$title = $allgAr['title'].' :: Downloads '.$cattitle;
    $hmenu = '<a class="smalfont" href="?downloads">Downloads</a>'.$catname;
    $design = new design ( $title , $hmenu );
	  $design->header();
		$tpl = new tpl ('downloads' );
    require_once('include/contents/downloadsinfo.php');
    $tpl->set('cid', $cid);
    $erg = db_query("SELECT id,name,`desc` FROM prefix_downcats WHERE cat = ".$cid." AND recht >= ".$_SESSION['authright']." ORDER BY pos");
    if ( db_num_rows($erg) > 0 ) {
		  $tpl->out(1); $class = 'Cnorm';
			while ($row = db_fetch_assoc($erg) ) {
			  $row['files'] = count_files($row['id']);
			  $class = ( $class == 'Cmite' ? 'Cnorm' : 'Cmite' );
				$row['class'] = $class;
			  $tpl->set_ar_out($row,2);
      }
		  $tpl->out(3);
		}
		
    # sortierung festlegen
    $sortierung = 'pos ASC';
    $DOM = 'ASC';
    $POM = 'ASC';
    $DAM = 'ASC';
    
    switch ($menu->get(2)) {
      case 'positionDESC' : $sortierung = 'pos DESC'; break;
      case 'positionASC' : $sortierung = 'pos ASC';  $POM = 'DESC'; break;
      case 'downsDESC' : $sortierung = 'downs DESC'; break;
      case 'downsASC' : $sortierung = 'downs ASC'; $DOM = 'DESC'; break;
      case 'dateDESC' : $sortierung = 'time DESC'; break;
      case 'dateASC' : $sortierung = 'time ASC'; $DAM = 'DESC'; break;
    }

    $tpl->set ('POM', $POM);
    $tpl->set ('DOM', $DOM);
    $tpl->set ('DAM', $DAM);
    
		$erg = db_query("select id,name,version,ssurl,`desc`,downs,DATE_FORMAT(time,'%d.%m.%Y') as datum from prefix_downloads WHERE cat = ".$cid." ORDER BY ".$sortierung);
		if ( db_num_rows($erg) > 0 ) {
		  $tpl->out(4); $class = 'Cnorm';
			while($row = db_fetch_assoc($erg) ) {
        # smal screenshot url
				$row['ssurl'] = ( (file_exists($row['ssurl']) AND $row['ssurl'] != '') ? '<img src="'.$row['ssurl'].'" alt="'.$row['name'].' '.$row['version'].'" title="'.$row['name'].' '.$row['version'].'" style="float:left; border: none; padding-right:3px;" />' : '' );
        $class = ( $class == 'Cmite' ? 'Cnorm' : 'Cmite' );
				$row['class'] = $class;
			  $tpl->set_ar_out($row,5);
			}
			$tpl->out(6);
		}
    
    if ( $cid == 0 AND $allgAr['archiv_down_userupload'] == 1 AND loggedin() AND is_writeable ( 'include/downs/downloads/user_upload' ) ) {
      $tpl->out(7);
    }
    
		$design->footer();
	  break;
	case 'show' :
	  
    $fid = escape($menu->get(2), 'integer');
    $erg = db_query("SELECT prefix_downloads.cat,ssurl,surl,url,hits,vote_klicks,vote_wertung,prefix_downloads.name,version,creater,downs,descl,drecht,prefix_downloads.id,DATE_FORMAT(time,'%d.%m.%Y') as datum FROM prefix_downloads LEFT JOIN prefix_downcats ON prefix_downcats.id = prefix_downloads.cat WHERE prefix_downloads.id = ".$fid." AND (".$_SESSION['authright']." <= prefix_downcats.recht OR (prefix_downloads.cat = 0 AND prefix_downcats.recht IS NULL))");    
    if (@db_num_rows($erg) <> 1) {
      $title = $allgAr['title'].' :: Downloads ';
      $hmenu = '<a class="smalfont" href="?downloads">Downloads</a>';
      $design = new design ( $title , $hmenu );
      $design->header();
      echo 'Der Download wurde nicht gefunden';
      $design->footer(1);
    }   
    
		$row = db_fetch_assoc($erg);
    
    # umfrage einen hoch zaehlen ...
    if ( $menu->getA(3) == 'z' AND is_numeric($menu->getE(3)) AND !isset ($_SESSION['downDoVote'][$row['id']]) AND loggedin() ) {
      $_SESSION['downDoVote'][$row['id']] = 'o';
      $row['vote_wertung'] = round ( ( ( $row['vote_wertung'] * $row['vote_klicks'] ) + $menu->getE(3) ) / ( $row['vote_klicks'] + 1 ) , 3 ); 
      $row['vote_klicks']++;
      db_query("UPDATE prefix_downloads SET vote_wertung = ".$row['vote_wertung'].", vote_klicks = ".$row['vote_klicks']." WHERE id = ".$row['id']);
    }
    if ( !isset ($_SESSION['downDoKlick'][$row['id']]) ) {
      $_SESSION['downDoKlick'][$row['id']] = 'o';
      db_query("UPDATE prefix_downloads SET hits = hits +1 WHERE id = ".$fid);
    }
    
		$cid = $row['cat'];
		$erg1 = db_query("SELECT id,cat,name FROM prefix_downcats WHERE id = ".$cid);
		if ( db_num_rows($erg1) > 0 ) {
		  $row1 = db_fetch_assoc($erg1);
			$array = get_cats_array($row1['cat'],'');
			if ( !empty($array) ) {
			  $titelzw = get_cats_title($array);
			  $namezw = get_cats_urls($array);
			} else {
			  $titelzw = '';
				$namezw = '';
			}
		  $cattitle = ':: '.$titelzw.$row1['name'].' :: '.$row['name'].' '.$row['version'];
			$catname = '<b> &raquo; </b>'.$namezw.'<a class="smalfont" href="?downloads-'.$row1['id'].'">'.$row1['name'].'</a><b> &raquo; </b>'.$row['name'].' '.$row['version'];	
		} else {
		  $cattitle = '';
			$catname = '';
		}
		$tpl = new tpl ('downloads_show' );
		$drecht = $row['drecht'];
    if ( $_SESSION['authright'] <= $drecht ) {
		$row['downlink'] = '<a href="index.php?downloads-down-'.$row['id'].'"><img src="include/images/buttons/download.gif" alt="Download" border="0"></a>';
		} else {
		$row['downlink'] = '<a href="index.php?downloads-error"><img src="include/images/buttons/download.gif" alt="Download" border="0"></a>'; 
		}
    $row['ssurl'] = ( $row['ssurl'] != '' ? '<img src="'.$row['ssurl'].'" alt="'.$row['name'].' '.$row['version'].'" title="'.$row['name'].' '.$row['version'].'" style="float:left; border: none; padding-right:5px;" />' : '' );
    
    $row['surl'] = ( empty($row['surl']) ? '' : '&nbsp;&nbsp;&nbsp; <a href="'.$row['surl'].'" target="_blank">Demo/Screenshot</a>' );
$row['DEMO'] = ( $row['surl'] != '' ? 'Demo / Screenshot</a>' : '' );
$row['size'] = get_download_size($row['url']);
$row['downloadtime'] = ( $row['size'] == 'n/a' ? '<td colspan="4" class="Cnorm">Ermittlung der Downloadzeit nicht möglich !!!</td>' : download_time($row['url'] )); ##download_time($row['url'] ))
		$row['descl'] = bbcode($row['descl']);
		$row['version_kl'] = (empty($row['version'])?'':'('.$row['version'].')');
    $title = $allgAr['title'].' :: Downloads '.$cattitle;
    $hmenu = '<a class="smalfont" href="?downloads">Downloads</a>'.$catname;
    $design = new design ( $title , $hmenu );
	  $design->header();
		$tpl->set_ar_out($row,0);
    $design->footer();
	  break;
	case 'down' :
    $fid = $menu->get(2);
    $erg = db_query("SELECT drecht FROM prefix_downloads LEFT JOIN prefix_downcats ON prefix_downcats.id = prefix_downloads.cat WHERE prefix_downloads.id = ".$fid." AND (".$_SESSION['authright']." <= prefix_downloads.drecht OR (prefix_downloads.cat = 0 AND prefix_downcats.recht IS NULL))");    
    if (@db_num_rows($erg) <> 1) {
      $title = $allgAr['title'].' :: Downloads ';
      $hmenu = '<a class="smalfont" href="?downloads">Downloads</a>';
      $design = new design ( $title , $hmenu );
      $design->header();
      echo $lang['nopermission'];
      $design->footer(1);
    }   
 
    $recht = @db_result(db_query("SELECT `recht` FROM `prefix_downcats` LEFT JOIN `prefix_downloads` ON `prefix_downcats`.`id` = `prefix_downloads`.`cat` WHERE `prefix_downloads`.`id` = $fid"),0);
	  $recht = (is_int($recht)?$recht:0);
    if (has_right($recht)) {
      $row = db_fetch_assoc(db_query("SELECT url FROM prefix_downloads WHERE id = ".$fid));
      $url = iurlencode($row['url']);
    } else {
      $url = 'http://'.$_SERVER["HTTP_HOST"].dirname($_SERVER["SCRIPT_NAME"]).'/index.php?downloads';
    }
    db_query("UPDATE prefix_downloads SET downs = downs +1 WHERE id = ".$fid);
		header('location: '.$url);
	  break;
  case 'upload' :
    if ( $allgAr['archiv_down_userupload'] == 1 AND loggedin() AND is_writeable ( 'include/downs/downloads/user_upload' ) ) {
      $title = $allgAr['title'].' :: Downloads :: User - Upload';
      $hmenu = '<a class="smalfont" href="?downloads">Downloads</a><b> &raquo; </b>User - Upload';
      $design = new design ( $title , $hmenu );
	    $design->header();
      
      $re = icUpload(); 
	    if ($re === true) {
        echo 'Erfolgreich eingetragen! ... ein Moderator oder Admin dieser Seite wird den Download in n&auml;chster Zeit freischalten.';
      } else {
        echo '<b>Error:</b><br />'.$re;
      }
      
      $design->footer();
    }
    break;
    case 'error' :
      $title = $allgAr['title'].' :: Downloads Error';
      $hmenu = '<a class="smalfont" href="?downloads">Downloads Error</a>';
      $design = new design ( $title , $hmenu );
      $design->header();
      echo '<table width="100%" class="border" border="0" cellspacing="2" cellpadding="3" align="center">
      <tr><td class="Chead" align="center"><b>Sie haben leider nicht die n&ouml;tigen Rechte um diesen Download nutzen zu k&ouml;nnen.</b></td>
      </tr><tr class="Cdark"><td align="center"><a href="javascript:history.back();"><u>Zurück</u></a> oder <a href="/index.php"><u>Auf die Startseite</u></a></td></tr></table>';
      $design->footer();
   break;
}
?>

include/templates/downloads.htm

{EXPLODE}
<table width="100%" class="border" border="0" cellspacing="1" cellpadding="3">
  <tr class="Chead">
		<th width="80%" align="center"><b>{_lang_category}</b></th>
    <th width="20%" align="center">{_lang_files}</th>
	</tr>
	{EXPLODE}
	<tr class="{class}">
	  <td><a href="index.php?downloads-{id}">{name}</a><br /><span class="smalfont">&raquo;&nbsp;{desc}</span></td>
		<td align="center">{files}</td>
	</tr>
	{EXPLODE}
</table>
<br /><br />
{EXPLODE}
<table width="100%" class="border" border="0" cellspacing="1" cellpadding="3">
  <tr class="Chead">
		<th width="65%" align="center"><b><a href="index.php?downloads-{cid}-position{POM}">{_lang_files}</b></a></th>
    <th width="20%" align="center"><a href="index.php?downloads-{cid}-date{DAM}">{_lang_date}</a></th>
    <th width="15%" align="center"><a href="index.php?downloads-{cid}-downs{DOM}">{_lang_downs}</a></th>
	</tr>
  {EXPLODE}
   <tr class="{class}">
	   <td><a href="index.php?downloads-show-{id}">{ssurl}{name} {version}</a><br /><span class="smalfont">&raquo;&nbsp;{desc}</span></td>
		 <td align="center">{datum}</td>
     <td align="center">{downs}</td>
	 </tr>
   {EXPLODE}
</table>


{EXPLODE}
<p></p><p></p>
<form action="index.php?downloads-upload" method="POST" enctype="multipart/form-data">
  <fieldset>
    <legend><b>{_lang_fileup}</b></legend>
	  <label style="width:100px; float:left;">{_lang_name}</label><input type="text" name="name" maxlength="50" value="" /><br />
	  <label style="width:100px; float:left;">{_lang_version}</label><input type="text" name="version" maxlength="10" size="11" value="" /><br />
	  <label style="width:100px; float:left;">{_lang_author}</label><input type="text" name="autor" maxlength="50" value="" /><br />
	  <label style="width:100px; float:left;">{_lang_linkor}</label><input type="text" name="url" size="40" maxlength="100" value="" /><br />
	  <label style="width:100px; float:left;">{_lang_upload}</label><input type="file" name="file" size="28" /><br />
	  <label style="width:100px; float:left;">{_lang_demolink}</label><input type="text" name="surl" size="40" maxlength="100" value="" /><br />
	  <label style="width:100px; float:left;">{_lang_preview}</label><input type="text" name="ssurl" size="40" maxlength="100" value="" /><br />
	  <label style="width:100px; float:left;">{_lang_shortdesc}</label><input type="text" name="desc" size="40" maxlength="100" value="" /><br />
	  <label style="width:100px; float:left;">{_lang_desc}</label><textarea cols="40" rows="4" name="descl"></textarea><br />
	  <label style="width:100px; float:left;"></label><input type="submit" value="Absenden" name="sub"><br />
  </fieldset>
</form>

Geschlossen

	Zurück zu Allgemein

Beitrag zur Merkliste hinzufügen

ilch Forum » Ilch Clan 1.1 » Allgemein » Dürfen User Dateien hochladen? Frage