160 lines
4.5 KiB
PHP
160 lines
4.5 KiB
PHP
<?php
|
||
/**
|
||
* KindEditor PHP
|
||
*
|
||
* 本PHP程序是演示程序,建议不要直接在实际项目中使用。
|
||
* 如果您确定直接使用本程序,使用之前请仔细确认相关安全设置。
|
||
*
|
||
*/
|
||
@session_start();
|
||
require_once("../../include/db_info.inc.php");
|
||
if (!(isset($_SESSION[$OJ_NAME.'_'.'administrator'])
|
||
||isset($_SESSION[$OJ_NAME.'_'.'problem_editor'])
|
||
||isset($_SESSION[$OJ_NAME.'_'.'contest_creator'])
|
||
)){
|
||
echo "<a href='../loginpage.php'>Please Login First!</a>";
|
||
//echo $_SESSION[$OJ_NAME.'_'.'administrator']."[$OJ_NAME]";
|
||
exit(1);
|
||
}
|
||
|
||
|
||
require_once 'JSON.php';
|
||
|
||
$php_path = dirname(__FILE__) . '/';
|
||
|
||
//文件保存目录路径
|
||
$save_path = $php_path . '../../upload/';
|
||
//文件保存目录URL
|
||
$save_url = dirname(dirname(dirname($_SERVER['PHP_SELF']) )) . '/upload/';
|
||
//定义允许上传的文件扩展名
|
||
$ext_arr = array(
|
||
'image' => array('gif', 'jpg', 'jpeg', 'png', 'bmp'),
|
||
'flash' => array('swf', 'flv'),
|
||
'media' => array('swf', 'flv', 'mp3', 'wav', 'wma', 'wmv', 'mid', 'avi', 'mpg', 'asf', 'rm', 'rmvb', "mp4"),
|
||
'file' => array('pdf','doc', 'docx', 'xls', 'xlsx', 'ppt', 'htm', 'html', 'txt', 'zip', 'rar', 'gz', 'bz2'),
|
||
);
|
||
//最大文件大小
|
||
$max_size = 400*1024*1024;
|
||
|
||
$save_path = realpath($save_path) . '/';
|
||
|
||
//PHP上传失败
|
||
if (!empty($_FILES['imgFile']['error'])) {
|
||
switch($_FILES['imgFile']['error']){
|
||
case '1':
|
||
$error = '超过php.ini允许的大小。';
|
||
break;
|
||
case '2':
|
||
$error = '超过表单允许的大小。';
|
||
break;
|
||
case '3':
|
||
$error = '图片只有部分被上传。';
|
||
break;
|
||
case '4':
|
||
$error = '请选择图片。';
|
||
break;
|
||
case '6':
|
||
$error = '找不到临时目录。';
|
||
break;
|
||
case '7':
|
||
$error = '写文件到硬盘出错。';
|
||
break;
|
||
case '8':
|
||
$error = 'File upload stopped by extension。';
|
||
break;
|
||
case '999':
|
||
default:
|
||
$error = '未知错误。';
|
||
}
|
||
alert($error);
|
||
}
|
||
|
||
//有上传文件时
|
||
if (empty($_FILES) === false) {
|
||
//原文件名
|
||
$file_name = $_FILES['imgFile']['name'];
|
||
//服务器上临时文件名
|
||
$tmp_name = $_FILES['imgFile']['tmp_name'];
|
||
//文件大小
|
||
$file_size = $_FILES['imgFile']['size'];
|
||
//检查文件名
|
||
if (!$file_name) {
|
||
alert("请选择文件。");
|
||
}
|
||
//检查目录
|
||
if (@is_dir($save_path) === false) {
|
||
alert("上传目录不存在。");
|
||
}
|
||
//检查目录写权限
|
||
if (@is_writable($save_path) === false) {
|
||
alert("上传目录没有写权限。在服务器上执行下述命令解决该问题:\n chown www-data -R \"$save_path\" \n");
|
||
}
|
||
//检查是否已上传
|
||
if (@is_uploaded_file($tmp_name) === false) {
|
||
alert("上传失败。");
|
||
}
|
||
//检查文件大小
|
||
if ($file_size > $max_size) {
|
||
alert("上传文件大小超过限制。");
|
||
}
|
||
//获得文件扩展名
|
||
$temp_arr = explode(".", $file_name);
|
||
$file_ext = array_pop($temp_arr);
|
||
$file_ext = trim($file_ext);
|
||
$file_ext = strtolower($file_ext);
|
||
//检查目录名
|
||
$dir_name="";
|
||
foreach($ext_arr as $key => $value){
|
||
if(in_array($file_ext,$value)){
|
||
$dir_name=$key;
|
||
break;
|
||
}
|
||
}
|
||
if($dir_name=="") $dir_name="image";
|
||
if (empty($ext_arr[$dir_name])) {
|
||
alert("目录名不正确。".$ext_arr[$dir_name]."dirname[".($dir_name)."]");
|
||
}
|
||
//检查扩展名
|
||
if (in_array($file_ext, $ext_arr[$dir_name]) === false) {
|
||
alert("上传文件扩展名是不允许的扩展名。\n只允许" . implode(",", $ext_arr[$dir_name]) . "格式。");
|
||
}
|
||
if(strlen($domain)>0){
|
||
$dir_name="$domain/$dir_name";
|
||
}
|
||
//创建文件夹
|
||
if ($dir_name !== '') {
|
||
$save_path .= $dir_name . "/";
|
||
$save_url .= $dir_name . "/";
|
||
if (!file_exists($save_path)) {
|
||
mkdir($save_path,0744,true);
|
||
}
|
||
}
|
||
$ymd = date("Ymd");
|
||
$save_path .= $ymd . "/";
|
||
$save_url .= $ymd . "/";
|
||
if (!file_exists($save_path)) {
|
||
mkdir($save_path);
|
||
}
|
||
//新文件名
|
||
$new_file_name = date("YmdHis") . '_' . rand(10000, 99999) . '.' . $file_ext;
|
||
//移动文件
|
||
$file_path = $save_path . $new_file_name;
|
||
if (move_uploaded_file($tmp_name, $file_path) === false) {
|
||
alert("上传文件失败。");
|
||
}
|
||
@chmod($file_path, 0644);
|
||
$file_url = $save_url . $new_file_name;
|
||
|
||
header('Content-type: text/html; charset=UTF-8');
|
||
$json = new Services_JSON();
|
||
echo $json->encode(array('error' => 0, 'url' => $file_url));
|
||
exit;
|
||
}
|
||
|
||
function alert($msg) {
|
||
header('Content-type: text/html; charset=UTF-8');
|
||
$json = new Services_JSON();
|
||
echo $json->encode(array('error' => 1, 'message' => $msg));
|
||
exit;
|
||
}
|