streams/mod/filestorage.php

<?php
/**
 * @file mod/filestorage.php
 *
 */

require_once('include/attach.php');

/**
 *
 * @param object &$a
 */
function filestorage_post(&$a) {

	$channel_id = ((x($_POST, 'uid')) ? intval($_POST['uid']) : 0);

	if((! $channel_id) || (! local_user()) || ($channel_id != local_user())) {
		notice( t('Permission denied.') . EOL);
		return;
	}

	$recurse = ((x($_POST, 'recurse')) ? intval($_POST['recurse']) : 0);
	$resource = ((x($_POST, 'filehash')) ? notags($_POST['filehash']) : '');

	if(! $resource) {
		notice(t('Item not found.') . EOL);
		return;
	}

	$str_group_allow   = perms2str($_REQUEST['group_allow']);
	$str_contact_allow = perms2str($_REQUEST['contact_allow']);
	$str_group_deny    = perms2str($_REQUEST['group_deny']);
	$str_contact_deny  = perms2str($_REQUEST['contact_deny']);
 
	attach_change_permissions($channel_id, $resource, $str_contact_allow, $str_group_allow, $str_contact_deny,$str_group_deny, $recurse = false);

	//Build directory tree and redirect
	$channel = $a->get_channel();
	$cloudPath = get_parent_cloudpath($channel_id, $channel['channel_address'], $resource);
	goaway($cloudPath);
}

function filestorage_content(&$a) {

	if(argc() > 1)
		$which = argv(1);
	else {
		notice( t('Requested profile is not available.') . EOL );
		$a->error = 404;
		return;
	}

	$r = q("select * from channel where channel_address = '%s'",
		dbesc($which)
	);
	if($r) {
		$channel = $r[0];
		$owner = intval($r[0]['channel_id']);
	}

	$observer = $a->get_observer();
	$ob_hash = (($observer) ? $observer['xchan_hash'] : '');

	$perms = get_all_perms($owner, $ob_hash);

	if(! $perms['view_storage']) {
		notice( t('Permission denied.') . EOL);
		return;
	}

	// Since we have ACL'd files in the wild, but don't have ACL here yet, we
	// need to return for anyone other than the owner, despite the perms check for now.

	$is_owner = (((local_user()) && ($owner  == local_user())) ? true : false);
	if(! $is_owner) {
		info( t('Permission Denied.') . EOL );
		return;
	}

	if(argc() > 3 && argv(3) === 'delete') {
		if(! $perms['write_storage']) {
			notice( t('Permission denied.') . EOL);
			return;
		}

		$file = intval(argv(2));
		$r = q("SELECT hash FROM attach WHERE id = %d AND uid = %d LIMIT 1",
			dbesc($file),
			intval($owner)
		);
		if(! $r) {
			notice( t('File not found.') . EOL);
			goaway(z_root() . '/cloud/' . $which);
		}

		$f = $r[0];
		$channel = $a->get_channel();

		$parentpath = get_parent_cloudpath($channel['channel_id'], $channel['channel_address'], $f['hash']);

		attach_delete($owner, $f['hash']);

		goaway($parentpath);
	}

	if(argc() > 3 && argv(3) === 'edit') {
		require_once('include/acl_selectors.php');
		if(! $perms['write_storage']) {
			notice( t('Permission denied.') . EOL);
			return;
		}
		$file = intval(argv(2));

		$r = q("select id, uid, folder, filename, revision, flags, hash, allow_cid, allow_gid, deny_cid, deny_gid from attach where id = %d and uid = %d limit 1",
			intval($file),
			intval($owner)
		);

		$f = $r[0];
		$channel = $a->get_channel();

		$cloudpath = get_cloudpath($f) . (($f['flags'] & ATTACH_FLAG_DIR) ? '?f=&davguest=1' : '');
		$parentpath = get_parent_cloudpath($channel['channel_id'], $channel['channel_address'], $f['hash']);

		$aclselect_e = populate_acl($f, false);
		$is_a_dir = (($f['flags'] & ATTACH_FLAG_DIR) ? true : false);

		$lockstate = (($f['allow_cid'] || $f['allow_gid'] || $f['deny_cid'] || $f['deny_gid']) ? 'lock' : 'unlock'); 

		$o = replace_macros(get_markup_template('attach_edit.tpl'), array(
			'$header' => t('Edit file permissions'),
			'$file' => $f,
			'$cloudpath' => z_root() . '/' . $cloudpath,
			'$parentpath' => $parentpath,
			'$uid' => $channel['channel_id'],
			'$channelnick' => $channel['channel_address'],
			'$permissions' => t('Permissions'),
			'$aclselect' => $aclselect_e,
			'$lockstate' => $lockstate,
			'$permset' => t('Set/edit permissions'),
			'$recurse' => t('Include all files and sub folders'),
			'$backlink' => t('Return to file list'),
			'$isadir' => $is_a_dir,
			'$cpdesc' => t('Copy/paste this code to attach file to a post'),
			'$cpldesc' => t('Copy/paste this URL to link file from a web page'),
			'$submit' => t('Submit')
		));

		return $o;
	}

	goaway(z_root() . '/cloud/' . $which);
}
Quick and dirty file storage module. 2013-09-09 01:06:21 +00:00			`<?php`
When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`/**`
			`* @file mod/filestorage.php`
			`*`
			`*/`
Quick and dirty file storage module. 2013-09-09 01:06:21 +00:00
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`require_once('include/attach.php');`

When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`/**`
			`*`
			`* @param object &$a`
			`*/`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`function filestorage_post(&$a) {`

When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`$channel_id = ((x($_POST, 'uid')) ? intval($_POST['uid']) : 0);`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00
			`if((! $channel_id) \|\| (! local_user()) \|\| ($channel_id != local_user())) {`
			`notice( t('Permission denied.') . EOL);`
			`return;`
			`}`

When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`$recurse = ((x($_POST, 'recurse')) ? intval($_POST['recurse']) : 0);`
			`$resource = ((x($_POST, 'filehash')) ? notags($_POST['filehash']) : '');`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00
			`if(! $resource) {`
			`notice(t('Item not found.') . EOL);`
			`return;`
			`}`

			`$str_group_allow = perms2str($_REQUEST['group_allow']);`
			`$str_contact_allow = perms2str($_REQUEST['contact_allow']);`
			`$str_group_deny = perms2str($_REQUEST['group_deny']);`
			`$str_contact_deny = perms2str($_REQUEST['contact_deny']);`

When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`attach_change_permissions($channel_id, $resource, $str_contact_allow, $str_group_allow, $str_contact_deny,$str_group_deny, $recurse = false);`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00
Fixes to links and forward URLs in filestorage 2014-06-24 10:05:11 +00:00			`//Build directory tree and redirect`
			`$channel = $a->get_channel();`
When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`$cloudPath = get_parent_cloudpath($channel_id, $channel['channel_address'], $resource);`
Fixes to links and forward URLs in filestorage 2014-06-24 10:05:11 +00:00			`goaway($cloudPath);`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`}`

Quick and dirty file storage module. 2013-09-09 01:06:21 +00:00			`function filestorage_content(&$a) {`

			`if(argc() > 1)`
			`$which = argv(1);`
			`else {`
			`notice( t('Requested profile is not available.') . EOL );`
			`$a->error = 404;`
			`return;`
			`}`

make storage limit service classes apply to accounts, not channels. Also include a css file that was missing from work yesterday. 2014-01-07 22:10:28 +00:00			`$r = q("select * from channel where channel_address = '%s'",`
cleanup mod/filestorage before embarking on further changes to it 2014-01-06 21:37:25 +00:00			`dbesc($which)`
			`);`
			`if($r) {`
make storage limit service classes apply to accounts, not channels. Also include a css file that was missing from work yesterday. 2014-01-07 22:10:28 +00:00			`$channel = $r[0];`
cleanup mod/filestorage before embarking on further changes to it 2014-01-06 21:37:25 +00:00			`$owner = intval($r[0]['channel_id']);`
Quick and dirty file storage module. 2013-09-09 01:06:21 +00:00			`}`

cleanup mod/filestorage before embarking on further changes to it 2014-01-06 21:37:25 +00:00			`$observer = $a->get_observer();`
			`$ob_hash = (($observer) ? $observer['xchan_hash'] : '');`
Filestorage perms (no ACL), fix nav for browsers that can't handle PCSS, put content wrapper back now JS is fixed for features page. 2013-09-18 01:45:49 +00:00
When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`$perms = get_all_perms($owner, $ob_hash);`
Filestorage perms (no ACL), fix nav for browsers that can't handle PCSS, put content wrapper back now JS is fixed for features page. 2013-09-18 01:45:49 +00:00
cleanup mod/filestorage before embarking on further changes to it 2014-01-06 21:37:25 +00:00			`if(! $perms['view_storage']) {`
			`notice( t('Permission denied.') . EOL);`
			`return;`
			`}`
Filestorage perms (no ACL), fix nav for browsers that can't handle PCSS, put content wrapper back now JS is fixed for features page. 2013-09-18 01:45:49 +00:00
When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`// Since we have ACL'd files in the wild, but don't have ACL here yet, we`
			`// need to return for anyone other than the owner, despite the perms check for now.`
Filestorage perms (no ACL), fix nav for browsers that can't handle PCSS, put content wrapper back now JS is fixed for features page. 2013-09-18 01:45:49 +00:00
Quick and dirty file storage module. 2013-09-09 01:06:21 +00:00			`$is_owner = (((local_user()) && ($owner == local_user())) ? true : false);`
cleanup mod/filestorage before embarking on further changes to it 2014-01-06 21:37:25 +00:00			`if(! $is_owner) {`
			`info( t('Permission Denied.') . EOL );`
			`return;`
Quick and dirty file storage module. 2013-09-09 01:06:21 +00:00			`}`
Filestorage perms (no ACL), fix nav for browsers that can't handle PCSS, put content wrapper back now JS is fixed for features page. 2013-09-18 01:45:49 +00:00
cleanup mod/filestorage before embarking on further changes to it 2014-01-06 21:37:25 +00:00			`if(argc() > 3 && argv(3) === 'delete') {`
			`if(! $perms['write_storage']) {`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`notice( t('Permission denied.') . EOL);`
cleanup mod/filestorage before embarking on further changes to it 2014-01-06 21:37:25 +00:00			`return;`
Filestorage perms (no ACL), fix nav for browsers that can't handle PCSS, put content wrapper back now JS is fixed for features page. 2013-09-18 01:45:49 +00:00			`}`

cleanup mod/filestorage before embarking on further changes to it 2014-01-06 21:37:25 +00:00			`$file = intval(argv(2));`
When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`$r = q("SELECT hash FROM attach WHERE id = %d AND uid = %d LIMIT 1",`
Quick and dirty file storage module. 2013-09-09 01:06:21 +00:00			`dbesc($file),`
			`intval($owner)`
			`);`
keep the to-do list somewhat current. 2014-01-08 08:03:01 +00:00			`if(! $r) {`
			`notice( t('File not found.') . EOL);`
Fixes to links and forward URLs in filestorage 2014-06-24 10:05:11 +00:00			`goaway(z_root() . '/cloud/' . $which);`
keep the to-do list somewhat current. 2014-01-08 08:03:01 +00:00			`}`

When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`$f = $r[0];`
			`$channel = $a->get_channel();`

			`$parentpath = get_parent_cloudpath($channel['channel_id'], $channel['channel_address'], $f['hash']);`
Quick and dirty file storage module. 2013-09-09 01:06:21 +00:00
When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`attach_delete($owner, $f['hash']);`

			`goaway($parentpath);`
			`}`
Quick and dirty file storage module. 2013-09-09 01:06:21 +00:00
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`if(argc() > 3 && argv(3) === 'edit') {`
			`require_once('include/acl_selectors.php');`
			`if(! $perms['write_storage']) {`
			`notice( t('Permission denied.') . EOL);`
			`return;`
			`}`
			`$file = intval(argv(2));`

mod_filestorage: provide a URL for linking to webpages and other websites 2014-01-10 05:01:53 +00:00			`$r = q("select id, uid, folder, filename, revision, flags, hash, allow_cid, allow_gid, deny_cid, deny_gid from attach where id = %d and uid = %d limit 1",`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`intval($file),`
			`intval($owner)`
			`);`

			`$f = $r[0];`
			`$channel = $a->get_channel();`

add davguest param to cut/paste link for directories in mod/filestorage 2014-01-26 22:41:43 +00:00			`$cloudpath = get_cloudpath($f) . (($f['flags'] & ATTACH_FLAG_DIR) ? '?f=&davguest=1' : '');`
Set backlink to the parent folder, not cloud's root. If you edit a file and click on the backlink you always returned to the root folder of your cloud. This patch sets the correct parent folder as backlink. Bit messy, but looks like it works. 2014-06-24 19:05:00 +00:00			`$parentpath = get_parent_cloudpath($channel['channel_id'], $channel['channel_address'], $f['hash']);`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00
When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`$aclselect_e = populate_acl($f, false);`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`$is_a_dir = (($f['flags'] & ATTACH_FLAG_DIR) ? true : false);`

missing permissions block in mod_filestorage 2014-04-30 23:35:50 +00:00			`$lockstate = (($f['allow_cid'] \|\| $f['allow_gid'] \|\| $f['deny_cid'] \|\| $f['deny_gid']) ? 'lock' : 'unlock');`

provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`$o = replace_macros(get_markup_template('attach_edit.tpl'), array(`
			`'$header' => t('Edit file permissions'),`
			`'$file' => $f,`
mod_filestorage: provide a URL for linking to webpages and other websites 2014-01-10 05:01:53 +00:00			`'$cloudpath' => z_root() . '/' . $cloudpath,`
Set backlink to the parent folder, not cloud's root. If you edit a file and click on the backlink you always returned to the root folder of your cloud. This patch sets the correct parent folder as backlink. Bit messy, but looks like it works. 2014-06-24 19:05:00 +00:00			`'$parentpath' => $parentpath,`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`'$uid' => $channel['channel_id'],`
			`'$channelnick' => $channel['channel_address'],`
			`'$permissions' => t('Permissions'),`
			`'$aclselect' => $aclselect_e,`
missing permissions block in mod_filestorage 2014-04-30 23:35:50 +00:00			`'$lockstate' => $lockstate,`
			`'$permset' => t('Set/edit permissions'),`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`'$recurse' => t('Include all files and sub folders'),`
			`'$backlink' => t('Return to file list'),`
			`'$isadir' => $is_a_dir,`
filestorage re-org and cleanup 2014-01-07 03:43:54 +00:00			`'$cpdesc' => t('Copy/paste this code to attach file to a post'),`
mod_filestorage: provide a URL for linking to webpages and other websites 2014-01-10 05:01:53 +00:00			`'$cpldesc' => t('Copy/paste this URL to link file from a web page'),`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00			`'$submit' => t('Submit')`
			`));`

			`return $o;`
When you delete something in /cloud stay in the right folder. When you deleted a file in /cloud you was always jumped back to /cloud/[channel], now you will stay in the parent folder. Some more doxygen documentation. Removed duplicate data from logging output and reduced logging in RedDAV in general. 2014-10-13 22:08:55 +00:00			`}`
provide ability to change attachment/file permissions 2014-01-07 00:49:07 +00:00
Fixes to links and forward URLs in filestorage 2014-06-24 10:05:11 +00:00			`goaway(z_root() . '/cloud/' . $which);`
Quick and dirty file storage module. 2013-09-09 01:06:21 +00:00			`}`