3 This program is free software: you can redistribute it and/or modify
4 it under the terms of the GNU General Public License as published by
5 the Free Software Foundation, either version 3 of the License, or
6 (at your option) any later version.
8 This program is distributed in the hope that it will be useful,
9 but WITHOUT ANY WARRANTY; without even the implied warranty of
10 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 GNU General Public License for more details.
13 You should have received a copy of the GNU General Public License
14 along with this program. If not, see <http://www.gnu.org/licenses/>.
17 // =============={ Configuration Begin }==============
21 'title' => 'strace.club',
23 // Directory to store uploaded files
26 // Display list uploaded files
29 // Allow users to delete files that they have uploaded (will enable sessions)
30 'allow_deletion' => true,
32 // Allow users to mark files as hidden
33 'allow_private' => true,
36 'listfiles_size' => true,
39 'listfiles_date' => true,
41 // Display file dates format
42 'listfiles_date_format' => 'F d Y H:i:s',
44 // Randomize file names (number of 'false')
45 'random_name_len' => 8,
47 // Keep filetype information (if random name is activated)
48 'random_name_keep_type' => true,
50 // Random file name letters
51 'random_name_alphabet' => 'qazwsxedcrfvtgbyhnujmikolp1234567890',
53 // Display debugging information
56 // Complete URL to your directory (including tracing slash)
57 'url' => 'http://strace.club/',
59 // Amount of seconds that each file should be stored for (0 for no limit)
61 'time_limit' => 60 * 60 * 24 * 30,
63 // Files that will be ignored
64 'ignores' => array('.', '..', 'LICENSE', 'README.md'),
73 'remove_old_files' => true,
75 // Privacy: Allow external references (the "fork me" ribbon)
76 'allow_external_refs' => true,
78 // =============={ Configuration End }==============
80 // Is the local config file there?
81 if (isReadableFile('config-local.php')) {
83 include('config-local.php');
86 // Enabling error reporting
87 if ($settings['debug']) {
88 error_reporting(E_ALL);
89 ini_set('display_startup_errors',1);
90 ini_set('display_errors',1);
96 $data['scriptname'] = $settings['url'] . '/' . pathinfo(__FILE__, PATHINFO_BASENAME);
98 // Adding current script name to ignore list
99 $data['ignores'] = $settings['ignores'];
100 $data['ignores'][] = basename($data['scriptname']);
102 // Use canonized path
103 $data['uploaddir'] = realpath(dirname(__FILE__) . DIRECTORY_SEPARATOR . $settings['uploaddir']);
105 // Maximum upload size, set by system
106 $data['max_upload_size'] = ini_get('upload_max_filesize');
108 // If file deletion or private files are allowed, starting a session.
109 // This is required for user authentification
110 if ($settings['allow_deletion'] || $settings['allow_private']) {
114 if (!isset($_SESSION['upload_user_id']))
115 $_SESSION['upload_user_id'] = mt_rand(100000, 999999);
117 // List of filenames that were uploaded by this user
118 if (!isset($_SESSION['upload_user_files']))
119 $_SESSION['upload_user_files'] = array();
122 // If debug is enabled, logging all variables
123 if ($settings['debug']) {
124 // Displaying debug information
125 echo '<h2>Settings:</h2>';
130 // Displaying debug information
131 echo '<h2>Data:</h2>';
137 // Displaying debug information
138 echo '<h2>SESSION:</h2>';
145 function formatSize ($bytes) {
146 $units = array('B', 'KB', 'MB', 'GB', 'TB');
148 $bytes = max($bytes, 0);
149 $pow = floor(($bytes ? log($bytes) : 0) / log(1024));
150 $pow = min($pow, count($units) - 1);
152 $bytes /= pow(1024, $pow);
154 return ceil($bytes) . ' ' . $units[$pow];
157 // Rotating a two-dimensional array
158 function diverseArray ($vector) {
160 foreach ($vector as $key1 => $value1)
161 foreach ($value1 as $key2 => $value2)
162 $result[$key2][$key1] = $value2;
166 // Handling file upload
167 function uploadFile ($file_data) {
168 global $settings, $data;
170 $file_data['uploaded_file_name'] = basename($file_data['name']);
171 $file_data['target_file_name'] = $file_data['uploaded_file_name'];
173 // Generating random file name
174 if ($settings['random_name_len'] !== false) {
176 $file_data['target_file_name'] = '';
177 while (strlen($file_data['target_file_name']) < $settings['random_name_len'])
178 $file_data['target_file_name'] .= $settings['random_name_alphabet'][mt_rand(0, strlen($settings['random_name_alphabet']) - 1)];
179 if ($settings['random_name_keep_type'])
180 $file_data['target_file_name'] .= '.' . pathinfo($file_data['uploaded_file_name'], PATHINFO_EXTENSION);
181 } while (isReadableFile($file_data['target_file_name']));
183 $file_data['upload_target_file'] = $data['uploaddir'] . DIRECTORY_SEPARATOR . $file_data['target_file_name'];
185 // Do now allow to overwriting files
186 if (isReadableFile($file_data['upload_target_file'])) {
187 echo 'File name already exists' . "\n";
191 // Moving uploaded file OK
192 if (move_uploaded_file($file_data['tmp_name'], $file_data['upload_target_file'])) {
193 if ($settings['allow_deletion'] || $settings['allow_private'])
194 $_SESSION['upload_user_files'][] = $file_data['target_file_name'];
195 echo $settings['url'] . $file_data['target_file_name'] . "\n";
197 echo 'Error: unable to upload the file.';
202 function deleteFile ($file) {
205 if (in_array(substr($file, 1), $_SESSION['upload_user_files']) || in_array($file, $_SESSION['upload_user_files'])) {
206 $fqfn = $data['uploaddir'] . DIRECTORY_SEPARATOR . $file;
207 if (!in_array($file, $data['ignores']) && isReadableFile($fqfn)) {
209 echo 'File has been removed';
215 // Mark/unmark file as hidden
216 function markUnmarkHidden ($file) {
219 if (in_array(substr($file, 1), $_SESSION['upload_user_files']) || in_array($file, $_SESSION['upload_user_files'])) {
220 $fqfn = $data['uploaddir'] . DIRECTORY_SEPARATOR . $file;
221 if (!in_array($file, $data['ignores']) && isReadableFile($fqfn)) {
222 if (substr($file, 0, 1) === '.') {
223 rename($fqfn, substr($fqfn, 1));
224 echo 'File has been made visible';
226 rename($fqfn, $data['uploaddir'] . DIRECTORY_SEPARATOR . '.' . $file);
227 echo 'File has been hidden';
234 // Checks if the given file is a file and is readable
235 function isReadableFile ($file) {
236 return (is_file($file) && is_readable($file));
239 // Files are being POSEed. Uploading them one by one.
240 if (isset($_FILES['file'])) {
241 header('Content-type: text/plain');
242 if (is_array($_FILES['file'])) {
243 $file_array = diverseArray($_FILES['file']);
244 foreach ($file_array as $file_data)
245 uploadFile($file_data);
247 uploadFile($_FILES['file']);
252 // Other file functions (delete, private).
254 if ($settings['allow_deletion'] && (isset($_POST['target'])) && isset($_POST['action']) && $_POST['action'] === 'delete')
255 deleteFile($_POST['target']);
257 if ($settings['allow_private'] && (isset($_POST['target'])) && isset($_POST['action']) && $_POST['action'] === 'privatetoggle')
258 markUnmarkHidden($_POST['target']);
261 // List files in a given directory, excluding certain files
262 function createArrayFromPath ($dir) {
265 $file_array = array();
269 while ($filename = readdir($dh)) {
270 $fqfn = $dir . DIRECTORY_SEPARATOR . $filename;
271 if (isReadableFile($fqfn) && !in_array($filename, $data['ignores']))
272 $file_array[filemtime($fqfn)] = $filename;
277 $file_array = array_reverse($file_array, true);
283 function removeOldFiles ($dir) {
284 global $file_array, $settings;
286 foreach ($file_array as $file) {
287 $fqfn = $dir . DIRECTORY_SEPARATOR . $file;
288 if ($settings['time_limit'] < time() - filemtime($fqfn))
293 // Only read files if the feature is enabled
294 if ($settings['listfiles']) {
295 $file_array = createArrayFromPath($data['uploaddir']);
297 // Removing old files
298 if ($settings['remove_old_files'])
299 removeOldFiles($data['uploaddir']);
301 $file_array = createArrayFromPath($data['uploaddir']);
304 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
305 <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="<?=$settings['lang']?>" lang="<?=$settings['lang']?>" dir="<?=$settings['lang_dir']?>">
307 <meta http-equiv="content-type" content="text/html;charset=UTF-8" />
308 <meta http-equiv="content-style-type" content="text/css" />
309 <meta http-equiv="content-script-type" content="text/javascript" />
310 <meta http-equiv="language" content="de" />
312 <meta name="robots" content="noindex" />
313 <meta name="referrer" content="origin-when-crossorigin" />
314 <title><?=$settings['title']?></title>
315 <style type="text/css" media="screen">
320 font-family: sans-serif;
325 background: rgba(255, 255, 255, 0.05);
333 background: rgba(255, 255, 255, 0.075);
356 background: rgba(255, 255, 255, 0.1);
358 text-decoration: none;
363 body > ul > li > a:hover {
367 body > ul > li > a:active {
371 body > ul > li > a > span {
376 body > ul > li > form {
377 display: inline-block;
382 body > ul > li.owned {
386 body > ul > li > form > button {
388 display: inline-block;
392 background: rgba(255, 255, 255, 0.1);
396 body > ul > li > form > button:hover {
400 body > ul > li > form > button:active {
404 body > ul > li.uploading {
405 animation: upanim 2s linear 0s infinite alternate;
419 <h1><?=$settings['title']?></h1>
420 <form action="<?= $data['scriptname'] ?>" method="post" enctype="multipart/form-data" class="dropzone" id="simpleupload-form">
421 Maximum upload size: <?php echo $data['max_upload_size']; ?><br />
422 <input type="file" name="file[]" id="simpleupload-input" />
424 <?php if ($settings['listfiles']) { ?>
425 <ul id="simpleupload-ul">
427 foreach ($file_array as $mtime => $filename) {
428 $fqfn = $data['uploaddir'] . DIRECTORY_SEPARATOR . $filename;
429 $file_info = array();
431 $file_private = $filename[0] === '.';
433 if ($settings['listfiles_size'])
434 $file_info[] = formatSize(filesize($fqfn));
436 if ($settings['listfiles_size'])
437 $file_info[] = date($settings['listfiles_date_format'], $mtime);
439 if ($settings['allow_deletion'] || $settings['allow_private'])
440 if (in_array(substr($filename, 1), $_SESSION['upload_user_files']) || in_array($filename, $_SESSION['upload_user_files']))
443 $file_info = implode(', ', $file_info);
445 if (strlen($file_info) > 0)
446 $file_info = ' (' . $file_info . ')';
452 if (!$file_private || $file_owner) {
453 echo "<li class=\"' . $class . '\">";
455 // Create full-qualified URL and clean it a bit
456 $url = str_replace('/./', '/', sprintf('%s%s/%s', $settings['url'], $settings['uploaddir'], $filename));
458 echo "<a href=\"$url\" target=\"_blank\">$filename<span>$file_info</span></a>";
461 if ($settings['allow_deletion'])
462 echo '<form action="' . $data['scriptname'] . '" method="post"><input type="hidden" name="target" value="' . $filename . '" /><input type="hidden" name="action" value="delete" /><button type="submit">delete</button></form>';
464 if ($settings['allow_private'])
466 echo '<form action="' . $data['scriptname'] . '" method="post"><input type="hidden" name="target" value="' . $filename . '" /><input type="hidden" name="action" value="privatetoggle" /><button type="submit">make public</button></form>';
468 echo '<form action="' . $data['scriptname'] . '" method="post"><input type="hidden" name="target" value="' . $filename . '" /><input type="hidden" name="action" value="privatetoggle" /><button type="submit">make private</button></form>';
479 if ($settings['allow_external_refs']) {
481 <a href="https://github.com/muchweb/simple-php-upload" target="_blank"><img style="position: absolute; top: 0; right: 0; border: 0;" src="https://camo.githubusercontent.com/38ef81f8aca64bb9a64448d0d70f1308ef5341ab/68747470733a2f2f73332e616d617a6f6e6177732e636f6d2f6769746875622f726962626f6e732f666f726b6d655f72696768745f6461726b626c75655f3132313632312e706e67" alt="Fork me on GitHub" data-canonical-src="https://s3.amazonaws.com/github/ribbons/forkme_right_darkblue_121621.png"></a>
485 <a href="https://github.com/muchweb/simple-php-upload" target="_blank">Fork me on GitHub</a>
489 <script type="text/javascript">
491 // Init some variales to shorten code
492 var target_form = document.getElementById('simpleupload-form');
493 var target_ul = document.getElementById('simpleupload-ul');
494 var target_input = document.getElementById('simpleupload-input');
495 var settings_listfiles = <?=($settings['listfiles'] ? 'true' : 'false')?>;
498 * Initializes the upload form
501 // Register drag-over event listener
502 target_form.addEventListener('dragover', function (event) {
503 event.preventDefault();
506 // ... and the drop event listener
507 target_form.addEventListener('drop', handleFiles, false);
509 // Register onchange-event function
510 target_input.onchange = function () {
511 addFileLi('Uploading...', '');
512 target_form.submit();
517 * Adds given file in a new li-tag to target_ul list
519 * @param name Name of the file
520 * @param info Some more informations
522 function addFileLi (name, info) {
523 if (settings_listfiles == false) {
527 target_form.style.display = 'none';
529 var new_li = document.createElement('li');
530 new_li.className = 'uploading';
532 var new_a = document.createElement('a');
533 new_a.innerHTML = name;
534 new_li.appendChild(new_a);
536 var new_span = document.createElement('span');
537 new_span.innerHTML = info;
538 new_a.appendChild(new_span);
540 target_ul.insertBefore(new_li, target_ul.firstChild);
544 * Handles given event for file upload
546 * @param event Event to handle file upload for
548 function handleFiles (event) {
549 event.preventDefault();
551 var files = event.dataTransfer.files;
553 var form = new FormData();
555 for (var i = 0; i < files.length; i++) {
556 form.append('file[]', files[i]);
557 addFileLi(files[i].name, files[i].size + ' bytes');
560 var xhr = new XMLHttpRequest();
561 xhr.onload = function() {
562 window.location.reload();
565 xhr.open('post', '<?php echo $data['scriptname']; ?>', true);
569 // Initialize upload form