upload.php 11 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331
  1. <?php
  2. /* For licensing terms, see /license.txt */
  3. /**
  4. * Main script for the documents tool
  5. *
  6. * This script allows the user to manage files and directories on a remote http server.
  7. *
  8. * The user can : - navigate through files and directories.
  9. * - upload a file
  10. * - delete, copy a file or a directory
  11. * - edit properties & content (name, comments, html content)
  12. *
  13. * The script is organised in four sections.
  14. *
  15. * 1) Execute the command called by the user
  16. * Note: somme commands of this section are organised in two steps.
  17. * The script always begins with the second step,
  18. * so it allows to return more easily to the first step.
  19. *
  20. * Note (March 2004) some editing functions (renaming, commenting)
  21. * are moved to a separate page, edit_document.php. This is also
  22. * where xml and other stuff should be added.
  23. *
  24. * 2) Define the directory to display
  25. *
  26. * 3) Read files and directories from the directory defined in part 2
  27. * 4) Display all of that on an HTML page
  28. *
  29. * @todo eliminate code duplication between
  30. * document/document.php, scormdocument.php
  31. *
  32. * @package chamilo.document
  33. */
  34. // Including the global initialization file
  35. require_once __DIR__.'/../inc/global.inc.php';
  36. // Including additional libraries
  37. require_once api_get_path(LIBRARY_PATH).'specific_fields_manager.lib.php';
  38. // Adding extra javascript to the form
  39. $htmlHeadXtra[] = api_get_jquery_libraries_js(array('jquery-ui', 'jquery-upload'));
  40. // Variables
  41. $is_allowed_to_edit = api_is_allowed_to_edit(null, true);
  42. $_course = api_get_course_info();
  43. $groupId = api_get_group_id();
  44. $courseDir = $_course['path'].'/document';
  45. $sys_course_path = api_get_path(SYS_COURSE_PATH);
  46. $base_work_dir = $sys_course_path.$courseDir;
  47. $sessionId = api_get_session_id();
  48. $selectcat = isset($_GET['selectcat']) ? Security::remove_XSS($_GET['selectcat']) : null;
  49. $document_data = [];
  50. if (isset($_REQUEST['id'])) {
  51. $document_data = DocumentManager::get_document_data_by_id(
  52. $_REQUEST['id'],
  53. api_get_course_id(),
  54. true,
  55. $sessionId
  56. );
  57. if ($sessionId != 0 && !$document_data) {
  58. $document_data = DocumentManager::get_document_data_by_id(
  59. $_REQUEST['id'],
  60. api_get_course_id(),
  61. true,
  62. 0
  63. );
  64. }
  65. }
  66. if (empty($document_data)) {
  67. $document_id = $parent_id = 0;
  68. $path = '/';
  69. } else {
  70. $document_id = $document_data['id'];
  71. $path = $document_data['path'];
  72. $parent_id = DocumentManager::get_document_id(
  73. api_get_course_info(),
  74. dirname($path)
  75. );
  76. }
  77. $group_properties = array();
  78. $htmlHeadXtra[] = '<script>
  79. function check_unzip() {
  80. if (document.upload.unzip.checked){
  81. document.upload.if_exists[0].disabled=true;
  82. document.upload.if_exists[1].checked=true;
  83. document.upload.if_exists[2].disabled=true;
  84. } else {
  85. document.upload.if_exists[0].checked=true;
  86. document.upload.if_exists[0].disabled=false;
  87. document.upload.if_exists[2].disabled=false;
  88. }
  89. }
  90. function setFocus(){
  91. $("#title_file").focus();
  92. }
  93. </script>';
  94. $groupIid = 0;
  95. // This needs cleaning!
  96. if (!empty($groupId)) {
  97. // If the group id is set, check if the user has the right to be here
  98. // Get group info
  99. $group_properties = GroupManager::get_group_properties($groupId);
  100. $groupIid = $group_properties['iid'];
  101. // Only courseadmin or group members allowed
  102. if ($is_allowed_to_edit || GroupManager::is_user_in_group(api_get_user_id(), $group_properties)) {
  103. $interbreadcrumb[] = array(
  104. 'url' => api_get_path(WEB_CODE_PATH).'group/group_space.php?'.api_get_cidreq(),
  105. 'name' => get_lang('GroupSpace'),
  106. );
  107. } else {
  108. api_not_allowed(true);
  109. }
  110. } elseif ($is_allowed_to_edit ||
  111. DocumentManager::is_my_shared_folder(api_get_user_id(), $path, api_get_session_id())) {
  112. } else {
  113. // No course admin and no group member...
  114. api_not_allowed(true);
  115. }
  116. // Group docs can only be uploaded in the group directory
  117. if ($groupId != 0 && $path == '/') {
  118. $path = $group_properties['directory'];
  119. }
  120. // I'm in the certification module?
  121. $is_certificate_mode = false;
  122. $is_certificate_array = explode('/', $path);
  123. array_shift($is_certificate_array);
  124. if ($is_certificate_array[0] == 'certificates') {
  125. $is_certificate_mode = true;
  126. }
  127. // Title of the tool
  128. $add_group_to_title = null;
  129. if ($groupId != 0) {
  130. // Add group name after for group documents
  131. $add_group_to_title = ' ('.$group_properties['name'].')';
  132. }
  133. if (isset($_REQUEST['certificate'])) {
  134. $nameTools = get_lang('UploadCertificate').$add_group_to_title;
  135. $is_certificate_mode = true;
  136. } else {
  137. $nameTools = get_lang('UplUploadDocument').$add_group_to_title;
  138. }
  139. // Breadcrumbs
  140. if ($is_certificate_mode) {
  141. $interbreadcrumb[] = array(
  142. 'url' => '../gradebook/index.php?'.api_get_cidreq(),
  143. 'name' => get_lang('Gradebook'),
  144. );
  145. } else {
  146. $interbreadcrumb[] = array(
  147. 'url' => './document.php?id='.$document_id.'&'.api_get_cidreq(),
  148. 'name' => get_lang('Documents'),
  149. );
  150. }
  151. // Interbreadcrumb for the current directory root path
  152. if ($document_data) {
  153. if (empty($document_data['parents'])) {
  154. $interbreadcrumb[] = array('url' => '#', 'name' => $document_data['title']);
  155. } else {
  156. foreach ($document_data['parents'] as $document_sub_data) {
  157. $interbreadcrumb[] = array(
  158. 'url' => $document_sub_data['document_url'],
  159. 'name' => $document_sub_data['title']
  160. );
  161. }
  162. }
  163. }
  164. $this_section = SECTION_COURSES;
  165. /* Here we do all the work */
  166. $unzip = isset($_POST['unzip']) ? $_POST['unzip'] : null;
  167. $index = isset($_POST['index_document']) ? $_POST['index_document'] : null;
  168. // User has submitted a file
  169. if (!empty($_FILES)) {
  170. DocumentManager::upload_document(
  171. $_FILES,
  172. $_POST['curdirpath'],
  173. $_POST['title'],
  174. $_POST['comment'],
  175. $unzip,
  176. $_POST['if_exists'],
  177. $index,
  178. true
  179. );
  180. $redirectUrl = api_get_self().'?'.api_get_cidreq();
  181. if ($document_data) {
  182. $redirectUrl .= '&'.http_build_query([
  183. 'id' => $document_data['iid']
  184. ]);
  185. }
  186. header("Location: $redirectUrl");
  187. exit;
  188. }
  189. // Display the header
  190. Display::display_header($nameTools, 'Doc');
  191. // Actions
  192. // Link back to the documents overview
  193. if ($is_certificate_mode) {
  194. $actions = '<a href="document.php?id='.$document_id.'&selectcat='.$selectcat.'&'.api_get_cidreq().'">'.
  195. Display::return_icon('back.png', get_lang('BackTo').' '.get_lang('CertificateOverview'), '', ICON_SIZE_MEDIUM).'</a>';
  196. } else {
  197. $actions = '<a href="document.php?id='.$document_id.'&'.api_get_cidreq().'">'.
  198. Display::return_icon('back.png', get_lang('BackTo').' '.get_lang('DocumentsOverview'), '', ICON_SIZE_MEDIUM).'</a>';
  199. }
  200. // Link to create a folder
  201. echo $toolbar = Display::toolbarAction('toolbar-upload', array($actions));
  202. // Form to select directory
  203. $folders = DocumentManager::get_all_document_folders(
  204. $_course,
  205. $groupIid,
  206. $is_allowed_to_edit
  207. );
  208. if (!$is_certificate_mode) {
  209. echo DocumentManager::build_directory_selector(
  210. $folders,
  211. $document_id,
  212. (isset($group_properties['directory']) ? $group_properties['directory'] : array())
  213. );
  214. }
  215. $action = api_get_self().'?'.api_get_cidreq().'&id='.$document_id;
  216. $form = new FormValidator(
  217. 'upload',
  218. 'POST',
  219. $action.'#tabs-2',
  220. '',
  221. array('enctype' => 'multipart/form-data')
  222. );
  223. $form->addElement('hidden', 'id', $document_id);
  224. $form->addElement('hidden', 'curdirpath', $path);
  225. $course_quota = format_file_size(DocumentManager::get_course_quota() - DocumentManager::documents_total_space());
  226. $label = get_lang('MaxFileSize').': '.ini_get('upload_max_filesize').'<br/>'.get_lang('DocumentQuota').': '.$course_quota;
  227. $form->addElement('file', 'file', array(get_lang('File'), $label), 'style="width: 250px" id="user_upload"');
  228. $form->addElement('text', 'title', get_lang('Title'), array('id' => 'title_file'));
  229. $form->addElement('textarea', 'comment', get_lang('Comment'));
  230. // Advanced parameters
  231. $form->addButtonAdvancedSettings('advanced_params');
  232. $form->addElement('html', '<div id="advanced_params_options" style="display:none">');
  233. // Check box options
  234. $form->addElement(
  235. 'checkbox',
  236. 'unzip',
  237. get_lang('Options'),
  238. get_lang('Uncompress'),
  239. 'onclick="javascript: check_unzip();" value="1"'
  240. );
  241. if (api_get_setting('search_enabled') === 'true') {
  242. //TODO: include language file
  243. $supported_formats = get_lang('SupportedFormatsForIndex').': HTML, PDF, TXT, PDF, Postscript, MS Word, RTF, MS Power Point';
  244. $form->addElement('checkbox', 'index_document', '', get_lang('SearchFeatureDoIndexDocument').'<div style="font-size: 80%" >'.$supported_formats.'</div>');
  245. $form->addElement('html', '<br /><div class="sub-form">');
  246. $form->addElement('html', '<div class="label">'.get_lang('SearchFeatureDocumentLanguage').'</div>');
  247. $form->addLabel(get_lang('Language'), api_get_languages_combo());
  248. $form->addElement('html', '</div><div class="sub-form">');
  249. $specific_fields = get_specific_field_list();
  250. foreach ($specific_fields as $specific_field) {
  251. $form->addElement('text', $specific_field['code'], $specific_field['name']);
  252. }
  253. $form->addElement('html', '</div>');
  254. }
  255. $form->addElement('radio', 'if_exists', get_lang('UplWhatIfFileExists'), get_lang('UplDoNothing'), 'nothing');
  256. $form->addElement('radio', 'if_exists', '', get_lang('UplOverwriteLong'), 'overwrite');
  257. $form->addElement('radio', 'if_exists', '', get_lang('UplRenameLong'), 'rename');
  258. // Close the java script and avoid the footer up
  259. $form->addElement('html', '</div>');
  260. // Button upload document
  261. $form->addButtonSend(get_lang('SendDocument'), 'submitDocument');
  262. $form->addProgress('DocumentUpload', 'file');
  263. $fileExistsOption = api_get_setting('document_if_file_exists_option');
  264. $defaultFileExistsOption = 'rename';
  265. if (!empty($fileExistsOption)) {
  266. $defaultFileExistsOption = $fileExistsOption;
  267. }
  268. $defaults = array(
  269. 'index_document' => 'checked="checked"',
  270. 'if_exists' => $defaultFileExistsOption
  271. );
  272. $form->setDefaults($defaults);
  273. $url = api_get_path(WEB_AJAX_PATH).'document.ajax.php?'.api_get_cidreq().'&a=upload_file&curdirpath='.$path;
  274. $multipleForm = new FormValidator(
  275. 'drag_drop',
  276. 'post',
  277. '#',
  278. array('enctype' => 'multipart/form-data')
  279. );
  280. $multipleForm->addMultipleUpload($url);
  281. $headers = array(
  282. get_lang('Upload'),
  283. get_lang('Upload').' ('.get_lang('Simple').')'
  284. );
  285. echo Display::tabs($headers, array($multipleForm->returnForm(), $form->returnForm()), 'tabs');
  286. Display::display_footer();