Inicio Explorar Ayuda
Registro Iniciar sesión
aj
/
chamilo-lms2
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Rama: 1.9.x
Ramas Etiquetas
chamilo-lms2
/
main
/
exercice
/
Hpdownload.php

Hpdownload.php 4.5 KB
Permalink Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153 
  1. <?php
    2. 

  2. /* For licensing terms, see /license.txt */
    3. 

  3. /**
    4. 

  4. *	This script shows the list of exercises for administrators and students.
    5. 

  5. *	@package chamilo.exercise
    6. 

  6. * 	@author Istvan Mandak
    7. 

  7. * 	@version $Id: Hpdownload.php 22201 2009-07-17 19:57:03Z cfasanando $
    8. 

  8. */
    9. 

  9. /**
    10. 

  10.  * Code
    11. 

  11.  */
    12. 

  12. session_cache_limiter('public');
    13. 

  13. 

  14. require_once '../inc/global.inc.php';
    15. 

  15. $this_section=SECTION_COURSES;
    16. 

  16. 

  17. $tbl_document = Database::get_course_table(TABLE_DOCUMENT);
    18. 

  18. 

  19. $doc_url=str_replace(array('../','\\..','\\0','..\\'),array('','','',''),urldecode($_GET['doc_url']));
    20. 

  20. $filename=basename($doc_url);
    21. 

  21. 

  22. // launch event
    23. 

  23. //event_download($doc_url);
    24. 

  24. if (isset($_course['path'])) {
    25. 

  25.     $course_path = api_get_path(SYS_COURSE_PATH).$_course['path'].'/document';
    26. 

  26. 	$full_file_name = $course_path.Security::remove_XSS($doc_url);
    27. 

  27. } else {
    28. 

  28.     $course_path = api_get_path(SYS_COURSE_PATH).$cid.'/document';
    29. 

  29. 	$full_file_name = $course_path.Security::remove_XSS($doc_url);
    30. 

  30. }
    31. 

  31. 

  32. if(!is_file($full_file_name)) {
    33. 

  33. 	exit;
    34. 

  34. }
    35. 

  35. 

  36. if (!Security::check_abs_path($full_file_name, $course_path.'/')) {
    37. 

  37.     exit;   
    38. 

  38. }
    39. 

  39. 

  40. $extension=explode('.',$filename);
    41. 

  41. $extension=strtolower($extension[sizeof($extension)-1]);
    42. 

  42. 

  43. switch($extension) {
    44. 

  44. 	case 'gz':		$content_type='application/x-gzip';			break;
    45. 

  45. 	case 'zip':		$content_type='application/zip';			break;
    46. 

  46. 	case 'pdf':		$content_type='application/pdf';			break;
    47. 

  47. 	case 'png':		$content_type='image/png';					break;
    48. 

  48. 	case 'gif':		$content_type='image/gif';					break;
    49. 

  49. 	case 'jpg':		$content_type='image/jpeg';					break;
    50. 

  50. 	case 'txt':		$content_type='text/plain';					break;
    51. 

  51. 	case 'htm':		$content_type='text/html';					break;
    52. 

  52. 	case 'html':	$content_type='text/html';					break;
    53. 

  53. 	default:		$content_type='application/octet-stream';	break;
    54. 

  54. }
    55. 

  55. 

  56. header('Content-disposition: filename='.$filename);
    57. 

  57. header('Content-Type: '.$content_type);
    58. 

  58. header('Expires: '.gmdate('D, d M Y H:i:s',time()+10).' GMT');
    59. 

  59. header('Last-Modified: '.gmdate('D, d M Y H:i:s',time()+10).' GMT');
    60. 

  60. 

  61. /*
    62. 

  62. 	Dynamic parsing section
    63. 

  63. 	is activated whenever a user views an html file
    64. 

  64. 	work in progress
    65. 

  65. 	- question: we could also parse per line,
    66. 

  66. 	perhaps this would be faster.
    67. 

  67. 	($file_content = file($full_file_name) returns file in array)
    68. 

  68. */
    69. 

  69. 

  70. if ($content_type == 'text/html') {
    71. 

  71. 	require_once api_get_path(LIBRARY_PATH).'fileUpload.lib.php';
    72. 

  72. 	$directory_name = dirname($full_file_name);
    73. 

  73. 

  74. 	$dir=str_replace(array('\\',$_configuration['root_sys']."courses/".$_course['path'].'/document'),array('/',''),$directory_name);
    75. 

  75. 

  76. 	if($dir[strlen($dir)-1] != '/') {
    77. 

  77. 		$dir.='/';
    78. 

  78. 	}
    79. 

  79. 

  80. 

  81. 	//Parse whole file at one
    82. 

  82. 	$fp = fopen($full_file_name, "r");
    83. 

  83. 	$file_content = fread ($fp, filesize ($full_file_name));
    84. 

  84. 	fclose($fp);
    85. 

  85. 	//$file_content = api_replace_parameter($dir, $file_content, "src");
    86. 

  86. 	//$file_content = api_replace_parameter($dir, $file_content, "href");
    87. 

  87. 

  88. 	/*
    89. 

  89. 	//parse line per line
    90. 

  90. 	$file_content_array = file($full_file_name);
    91. 

  91. 

  92. 	foreach($file_content_array as $line)
    93. 

  93. 	{
    94. 

  94. 		$line = api_replace_parameter($dir, $line, "src");
    95. 

  95. 		$line = api_replace_parameter($dir, $line, "href");
    96. 

  96. 		$file_content .= $line;
    97. 

  97. 	}
    98. 

  98. 	*/
    99. 

  99. 

  100. 

  101.     $exercicePath = api_get_self();
    102. 

  102.   	$exfile = explode('/',$exercicePath);
    103. 

  103.   	$exfile = $exfile[sizeof($exfile)-1];
    104. 

  104.   	$exercicePath = substr($exercicePath,0,strpos($exercicePath,$exfile));
    105. 

  105.   	$exercicePath = $exercicePath;
    106. 

  106. 

  107. 		$content = $file_content;
    108. 

  108. 		$mit = "function Finish(){";
    109. 

  109. 

  110. 		$js_content = "var SaveScoreVariable = 0; // This variable included by Dokeos System\n".
    111. 

  111. 		"function mySaveScore() // This function included by Dokeos System\n".
    112. 

  112. "{\n".
    113. 

  113. "   if (SaveScoreVariable==0)\n".
    114. 

  114. "		{\n".
    115. 

  115. "			SaveScoreVariable = 1;\n".
    116. 

  116. "			if (C.ie)\n".
    117. 

  117. "			{\n".
    118. 

  118. "				document.location.href = \"".$exercicePath."savescores.php?origin=$origin&time=$time&test=".$doc_url."&uid=".$_user['user_id']."&cid=".$cid."&score=\"+Score;\n".
    119. 

  119. "				//window.alert(Score);\n".
    120. 

  120. "			}\n".
    121. 

  121. "			else\n".
    122. 

  122. "			{\n".
    123. 

  123. "			}\n".
    124. 

  124. "		}\n".
    125. 

  125. "}\n".
    126. 

  126. "// Must be included \n".
    127. 

  127. "function Finish(){\n".
    128. 

  128. " mySaveScore();";
    129. 

  129. 		$newcontent = str_replace($mit,$js_content,$content);
    130. 

  130. 

  131. 		$prehref="javascript:void(0);";
    132. 

  132. 		$posthref=$_configuration['root_web']."main/exercice/Hpdownload.php?doc_url=".$doc_url."&cid=".$cid."&uid=".$uid;
    133. 

  133. 		$newcontent = str_replace($prehref,$posthref,$newcontent);
    134. 

  134. 

  135. 

  136. 		$prehref="class=\"GridNum\" onclick=";
    137. 

  137. 		$posthref="class=\"GridNum\" onMouseover=";
    138. 

  138. 		$newcontent = str_replace($prehref,$posthref,$newcontent);
    139. 

  139. 

  140. 

  141. 		header('Content-length: '.strlen($newcontent));
    142. 

  142. 		// Dipsp.
    143. 

  143. 		echo $newcontent;
    144. 

  144. 

  145. 	exit();
    146. 

  146. }
    147. 

  147. 

  148. //normal case, all non-html files
    149. 

  149. //header('Content-length: '.filesize($full_file_name));
    150. 

  150. $fp=fopen($full_file_name,'rb');
    151. 

  151. fpassthru($fp);
    152. 

  152. fclose($fp);
    153. 

  153. ?>
    154.