Changeset 2701888
- Timestamp:
- 03/30/2022 12:32:46 PM (4 years ago)
- Location:
- file-manager
- Files:
-
- 16 edited
-
tags/5.2.3/BootStart/BootStart.php (modified) (2 diffs)
-
tags/5.2.3/file-manager.php (modified) (7 diffs)
-
tags/5.2.3/inc/class.review.php (modified) (1 diff)
-
tags/5.2.3/views/admin/files.php (modified) (4 diffs)
-
tags/5.2.3/views/admin/footer.php (modified) (1 diff)
-
tags/5.2.3/views/admin/header.php (modified) (1 diff)
-
tags/5.2.3/views/admin/settings.php (modified) (1 diff)
-
tags/5.2.3/views/admin/utility.php (modified) (1 diff)
-
trunk/BootStart/BootStart.php (modified) (2 diffs)
-
trunk/file-manager.php (modified) (7 diffs)
-
trunk/inc/class.review.php (modified) (1 diff)
-
trunk/views/admin/files.php (modified) (4 diffs)
-
trunk/views/admin/footer.php (modified) (1 diff)
-
trunk/views/admin/header.php (modified) (1 diff)
-
trunk/views/admin/settings.php (modified) (1 diff)
-
trunk/views/admin/utility.php (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
file-manager/tags/5.2.3/BootStart/BootStart.php
r2701235 r2701888 229 229 230 230 // elFinder Scripts depends on jQuery UI core, selectable, draggable, droppable, resizable, dialog and slider. 231 wp_register_script( 'fmp-elfinder-script', $this->url('elFinder/js/elfinder.full.js'), array('jquery', 'jquery-ui-core', 'jquery-ui-selectable', 'jquery-ui-draggable', 'jquery-ui-droppable', 'jquery-ui-resizable', 'jquery-ui-dialog', 'jquery-ui-slider', 'jquery-ui-tabs') ); 231 $elfinder_script = $this->is_minified_file_load('fmp-elfinder-script'); 232 wp_register_script( $elfinder_script['handle'] , $this->url('elFinder/js/elfinder'.$elfinder_script['file_type'].'js'), array('jquery', 'jquery-ui-core', 'jquery-ui-selectable', 'jquery-ui-draggable', 'jquery-ui-droppable', 'jquery-ui-resizable', 'jquery-ui-dialog', 'jquery-ui-slider', 'jquery-ui-tabs') ); 233 $editor_script = $this->is_minified_file_load('fmp-elfinder-editor-script'); 234 wp_register_script( $editor_script['handle'], $this->url('elFinder/js/extras/editors.default'.$editor_script['file_type'].'js'), array($elfinder_script['handle']) ); 235 232 236 $fm_nonce = wp_create_nonce( 'fm_nonce' ); 233 234 wp_localize_script('fmp-elfinder-script', "fm", array( 237 wp_localize_script($elfinder_script['handle'], "fm", array( 235 238 'ajax_url' => admin_url( 'admin-ajax.php' ), 236 239 'nonce' => $fm_nonce, … … 240 243 'elfinder' => plugin_dir_url(__DIR__)."elFinder/" 241 244 )); 242 243 244 245 // wp_register_script( 'fmp-elfinder-editor-script', $this->url('elFinder/js/extras/editors.default.js'), array('fmp-elfinder-script') ); 246 245 } 246 247 /** 248 * Load minified files if WP_DEBUG || WP_DEBUG_LOG true 249 */ 250 public function is_minified_file_load($handle_name){ 251 252 if(WP_DEBUG) { 253 return [ 254 'handle' => $handle_name, 255 'file_type' => ('fmp-elfinder-script' === $handle_name ) ? '.full.': '.' 256 ]; 257 } 258 259 return [ 260 'handle' => $handle_name.'-min', 261 'file_type' => '.min.' 262 ]; 263 247 264 } 248 265 -
file-manager/tags/5.2.3/file-manager.php
r2701235 r2701888 39 39 $upload_dir = wp_upload_dir(); 40 40 41 // Upload dir path 42 if( !defined( 'FM_UPLOAD_DIR_PATH' ) ) define("FM_UPLOAD_DIR_PATH", $upload_dir['path']); 43 44 // Upload dir url 45 if( !defined( 'FM_UPLOAD_DIR_URL' ) ) define("FM_UPLOAD_DIR_URL", $upload_dir['url']); 46 47 // Media basedir 48 if( !defined( 'FM_MEDIA_BASE_DIR_PATH' ) ) define("FM_MEDIA_BASE_DIR_PATH", $upload_dir['basedir']); 49 50 // Media baseurl 51 if( !defined( 'FM_MEDIA_BASE_DIR_URL' ) ) define("FM_MEDIA_BASE_DIR_URL", $upload_dir['baseurl']); 52 53 // File manager upload dir basedir 41 54 defined( 'FM_UPLOAD_BASE_DIR' ) || define( 'FM_UPLOAD_BASE_DIR', $upload_dir['basedir'] . DS . 'file-manager' . DS ); 55 56 // File manager upload dir baseurl 57 defined( 'FM_UPLOAD_BASE_URL' ) || define( 'FM_UPLOAD_BASE_URL', $upload_dir['baseurl'] . DS . 'file-manager' . DS ); 42 58 43 59 // Including elFinder class … … 128 144 // Admin Notices 129 145 add_action('admin_notices', array(&$this, 'admin_notice')); 146 147 130 148 } 131 149 … … 141 159 // Allowed mime types 142 160 $mime = new FMMIME( plugin_dir_path(__FILE__) . 'elFinder/php/mime.types' ); 143 $wp_upload_dir = wp_upload_dir();144 161 145 162 $opts = array( … … 164 181 'disabled' => array(), // List of disabled operations 165 182 'dispInlineRegex' => '^(?:image|application/(?:vnd\.)?(?:ms(?:-office|word|-excel|-powerpoint)|openxmlformats-officedocument)|text/plain$)', 183 'attributes' => array( 184 array(// hide specipic folder. 185 'pattern' => '!^/img!', 186 'hidden' => false, 187 'read' => true, 188 'write' => true, 189 'locked' => false, 190 ), 191 array( // hide specipic folder. 192 'pattern' => '!^/inc!', 193 'hidden' => false, 194 'read' => true, 195 'write' => true, 196 'locked' => false, 197 ), 198 // array( // hide specipic file type. 199 // 'pattern' => '!\.env!', 200 // 'hidden' => false, 201 // 'read' => true, 202 // 'write' => true, 203 // 'locked' => false, 204 // ) 205 ) 166 206 ), 167 207 array( 168 208 'alias' => 'Media', 169 209 'driver' => 'LocalFileSystem', // driver for accessing file system (REQUIRED) 170 'path' => $wp_upload_dir['path'], // path to files (REQUIRED)171 'URL' => $wp_upload_dir['url'], // URL to files (REQUIRED)210 'path' => FM_MEDIA_BASE_DIR_PATH, // path to files (REQUIRED) 211 'URL' => FM_MEDIA_BASE_DIR_URL, // URL to files (REQUIRED) 172 212 'uploadDeny' => array(), // All Mimetypes not allowed to upload 173 213 'uploadAllow' => $mime->get_types(), // All MIME types is allowed … … 178 218 ) 179 219 ); 220 180 221 181 222 /** … … 194 235 public function security_check(){ 195 236 // Checks if the current user have enough authorization to operate. 196 if( ! wp_verify_nonce( $_POST['file_manager_security_token'] ,'f ile-manager-security-token') || !current_user_can( 'manage_options' ) ) wp_die();197 check_ajax_referer('f ile-manager-security-token', 'file_manager_security_token');237 if( ! wp_verify_nonce( $_POST['file_manager_security_token'] ,'fm_nonce') || !current_user_can( 'manage_options' ) ) wp_die(); 238 check_ajax_referer('fm_nonce', 'file_manager_security_token'); 198 239 } 199 240 … … 254 295 $FileManager = new FM('File Manager'); 255 296 297 298 256 299 if(!function_exists('pr')): 257 300 function pr($obj){ -
file-manager/tags/5.2.3/inc/class.review.php
r2701235 r2701888 20 20 function __construct(){ 21 21 // Checking the review status 22 if(isset($_GET['fm-review-status']))23 $_GET['fm-review-status'] = sanitize_text_field($_GET['fm-review-status']);22 $review_status = isset($_GET['fm-review-status']) ? sanitize_text_field($_GET['fm-review-status']): ''; 23 if( in_array( $review_status, $this->status ) ){ 24 24 25 if(!empty($_GET['fm-review-status']) && in_array($_GET['fm-review-status'], $this->status)){26 $review_status = $_GET['fm-review-status'];27 25 switch($review_status){ 28 26 case 'review-successfull': -
file-manager/tags/5.2.3/views/admin/files.php
r2701235 r2701888 35 35 36 36 37 37 38 // Command options modifier 38 39 $commandOptions = []; … … 51 52 wp_enqueue_style( 'fmp-elfinder-theme-css' ); 52 53 53 wp_enqueue_script('fmp-elfinder-script'); 54 wp_enqueue_script('fmp-elfinder-editor-script'); 54 55 wp_enqueue_script($FileManager->is_minified_file_load('fmp-elfinder-script')['handle']); 56 wp_enqueue_script( $FileManager->is_minified_file_load('fmp-elfinder-editor-script')['handle']); 55 57 56 58 // Testing … … 68 70 <script> 69 71 70 PLUGINS_URL = '<?php echo plugins_url();?>';72 PLUGINS_URL = '<?php echo esc_js(plugins_url());?>'; 71 73 72 74 jQuery(document).ready(function(){ 73 75 console.log(ajaxurl); 74 76 jQuery('#file-manager').elfinder({ 75 77 url: ajaxurl, … … 79 81 ] 80 82 }, 81 customData:{action: 'connector', file_manager_security_token: '<?php echo wp_create_nonce( "file-manager-security-token" ); ?>'},83 customData:{action: 'connector', file_manager_security_token: fm.nonce}, 82 84 lang: '<?php if( isset($language_code) ) echo esc_js($language_code); ?>', 83 85 requestType: 'post', -
file-manager/tags/5.2.3/views/admin/footer.php
r2701235 r2701888 16 16 <li><a href='https://wpjos.com/contacts/'><?php _e("Contacts", 'file-manager'); ?></a></li> 17 17 <li><a href='https://wpjos.com/documentations/'><?php _e("Docs", 'file-manager'); ?></a></li> 18 <li><a href='<? = $FileManager->feedback_page; ?>'><?php _e("Review", 'file-manager'); ?></a></li>19 <li><a href='<? = $FileManager->support_page; ?>'><?php _e("Help & Support", 'file-manager'); ?></a></li>20 <li><a href='<? = $FileManager->site; ?>'>WPJos</a></li>18 <li><a href='<?php esc_url($FileManager->feedback_page); ?>'><?php _e("Review", 'file-manager'); ?></a></li> 19 <li><a href='<?php esc_url($FileManager->support_page); ?>'><?php _e("Help & Support", 'file-manager'); ?></a></li> 20 <li><a href='<?php esc_url($FileManager->site); ?>'>WPJos</a></li> 21 21 </ul> 22 22 -
file-manager/tags/5.2.3/views/admin/header.php
r2701235 r2701888 17 17 18 18 <ul class='top-right-menu'> 19 <li><a href='<?php echo $FileManager->support_page; ?>'><?php _e("Need help?", 'file-manager'); ?></a></li>20 <li><a href='<?php echo $FileManager->feedback_page; ?>'><?php _e("Leave us a feedback", 'file-manager'); ?></a></li>21 <li class='fm-marketing'><a href='<?php echo $FileManager->giribaz_landing_page; ?>'><?php _e("Extend", 'file-manager'); ?></a></li>19 <li><a href='<?php echo esc_url($FileManager->support_page); ?>'><?php _e("Need help?", 'file-manager'); ?></a></li> 20 <li><a href='<?php echo esc_url($FileManager->feedback_page); ?>'><?php _e("Leave us a feedback", 'file-manager'); ?></a></li> 21 <li class='fm-marketing'><a href='<?php echo esc_url($FileManager->giribaz_landing_page); ?>'><?php _e("Extend", 'file-manager'); ?></a></li> 22 22 </ul> 23 23 -
file-manager/tags/5.2.3/views/admin/settings.php
r2701235 r2701888 23 23 24 24 $admin_page_url = admin_url()."admin.php?page={$FileManager->prefix}"; 25 26 if( !isset($_GET['sub_page']) || empty($_GET['sub_page']) ) $_GET['sub_page'] = 'files';27 28 $_GET['sub_page'] = sanitize_text_field($_GET['sub_page']);29 25 30 26 // Enqueing admin assets -
file-manager/tags/5.2.3/views/admin/utility.php
r2701235 r2701888 51 51 <tr> 52 52 <td><?php _e("Browser and OS", 'file-manager'); ?></td> 53 <td><?php echo $_SERVER['HTTP_USER_AGENT']; ?></td>53 <td><?php echo esc_html($_SERVER['HTTP_USER_AGENT']); ?></td> 54 54 </tr> 55 55 -
file-manager/trunk/BootStart/BootStart.php
r2700615 r2701888 229 229 230 230 // elFinder Scripts depends on jQuery UI core, selectable, draggable, droppable, resizable, dialog and slider. 231 wp_register_script( 'fmp-elfinder-script', $this->url('elFinder/js/elfinder.full.js'), array('jquery', 'jquery-ui-core', 'jquery-ui-selectable', 'jquery-ui-draggable', 'jquery-ui-droppable', 'jquery-ui-resizable', 'jquery-ui-dialog', 'jquery-ui-slider', 'jquery-ui-tabs') ); 231 $elfinder_script = $this->is_minified_file_load('fmp-elfinder-script'); 232 wp_register_script( $elfinder_script['handle'] , $this->url('elFinder/js/elfinder'.$elfinder_script['file_type'].'js'), array('jquery', 'jquery-ui-core', 'jquery-ui-selectable', 'jquery-ui-draggable', 'jquery-ui-droppable', 'jquery-ui-resizable', 'jquery-ui-dialog', 'jquery-ui-slider', 'jquery-ui-tabs') ); 233 $editor_script = $this->is_minified_file_load('fmp-elfinder-editor-script'); 234 wp_register_script( $editor_script['handle'], $this->url('elFinder/js/extras/editors.default'.$editor_script['file_type'].'js'), array($elfinder_script['handle']) ); 235 232 236 $fm_nonce = wp_create_nonce( 'fm_nonce' ); 233 234 wp_localize_script('fmp-elfinder-script', "fm", array( 237 wp_localize_script($elfinder_script['handle'], "fm", array( 235 238 'ajax_url' => admin_url( 'admin-ajax.php' ), 236 239 'nonce' => $fm_nonce, … … 240 243 'elfinder' => plugin_dir_url(__DIR__)."elFinder/" 241 244 )); 242 243 244 245 // wp_register_script( 'fmp-elfinder-editor-script', $this->url('elFinder/js/extras/editors.default.js'), array('fmp-elfinder-script') ); 246 245 } 246 247 /** 248 * Load minified files if WP_DEBUG || WP_DEBUG_LOG true 249 */ 250 public function is_minified_file_load($handle_name){ 251 252 if(WP_DEBUG) { 253 return [ 254 'handle' => $handle_name, 255 'file_type' => ('fmp-elfinder-script' === $handle_name ) ? '.full.': '.' 256 ]; 257 } 258 259 return [ 260 'handle' => $handle_name.'-min', 261 'file_type' => '.min.' 262 ]; 263 247 264 } 248 265 -
file-manager/trunk/file-manager.php
r2701235 r2701888 39 39 $upload_dir = wp_upload_dir(); 40 40 41 // Upload dir path 42 if( !defined( 'FM_UPLOAD_DIR_PATH' ) ) define("FM_UPLOAD_DIR_PATH", $upload_dir['path']); 43 44 // Upload dir url 45 if( !defined( 'FM_UPLOAD_DIR_URL' ) ) define("FM_UPLOAD_DIR_URL", $upload_dir['url']); 46 47 // Media basedir 48 if( !defined( 'FM_MEDIA_BASE_DIR_PATH' ) ) define("FM_MEDIA_BASE_DIR_PATH", $upload_dir['basedir']); 49 50 // Media baseurl 51 if( !defined( 'FM_MEDIA_BASE_DIR_URL' ) ) define("FM_MEDIA_BASE_DIR_URL", $upload_dir['baseurl']); 52 53 // File manager upload dir basedir 41 54 defined( 'FM_UPLOAD_BASE_DIR' ) || define( 'FM_UPLOAD_BASE_DIR', $upload_dir['basedir'] . DS . 'file-manager' . DS ); 55 56 // File manager upload dir baseurl 57 defined( 'FM_UPLOAD_BASE_URL' ) || define( 'FM_UPLOAD_BASE_URL', $upload_dir['baseurl'] . DS . 'file-manager' . DS ); 42 58 43 59 // Including elFinder class … … 128 144 // Admin Notices 129 145 add_action('admin_notices', array(&$this, 'admin_notice')); 146 147 130 148 } 131 149 … … 141 159 // Allowed mime types 142 160 $mime = new FMMIME( plugin_dir_path(__FILE__) . 'elFinder/php/mime.types' ); 143 $wp_upload_dir = wp_upload_dir();144 161 145 162 $opts = array( … … 164 181 'disabled' => array(), // List of disabled operations 165 182 'dispInlineRegex' => '^(?:image|application/(?:vnd\.)?(?:ms(?:-office|word|-excel|-powerpoint)|openxmlformats-officedocument)|text/plain$)', 183 'attributes' => array( 184 array(// hide specipic folder. 185 'pattern' => '!^/img!', 186 'hidden' => false, 187 'read' => true, 188 'write' => true, 189 'locked' => false, 190 ), 191 array( // hide specipic folder. 192 'pattern' => '!^/inc!', 193 'hidden' => false, 194 'read' => true, 195 'write' => true, 196 'locked' => false, 197 ), 198 // array( // hide specipic file type. 199 // 'pattern' => '!\.env!', 200 // 'hidden' => false, 201 // 'read' => true, 202 // 'write' => true, 203 // 'locked' => false, 204 // ) 205 ) 166 206 ), 167 207 array( 168 208 'alias' => 'Media', 169 209 'driver' => 'LocalFileSystem', // driver for accessing file system (REQUIRED) 170 'path' => $wp_upload_dir['path'], // path to files (REQUIRED)171 'URL' => $wp_upload_dir['url'], // URL to files (REQUIRED)210 'path' => FM_MEDIA_BASE_DIR_PATH, // path to files (REQUIRED) 211 'URL' => FM_MEDIA_BASE_DIR_URL, // URL to files (REQUIRED) 172 212 'uploadDeny' => array(), // All Mimetypes not allowed to upload 173 213 'uploadAllow' => $mime->get_types(), // All MIME types is allowed … … 178 218 ) 179 219 ); 220 180 221 181 222 /** … … 194 235 public function security_check(){ 195 236 // Checks if the current user have enough authorization to operate. 196 if( ! wp_verify_nonce( $_POST['file_manager_security_token'] ,'f ile-manager-security-token') || !current_user_can( 'manage_options' ) ) wp_die();197 check_ajax_referer('f ile-manager-security-token', 'file_manager_security_token');237 if( ! wp_verify_nonce( $_POST['file_manager_security_token'] ,'fm_nonce') || !current_user_can( 'manage_options' ) ) wp_die(); 238 check_ajax_referer('fm_nonce', 'file_manager_security_token'); 198 239 } 199 240 … … 254 295 $FileManager = new FM('File Manager'); 255 296 297 298 256 299 if(!function_exists('pr')): 257 300 function pr($obj){ -
file-manager/trunk/inc/class.review.php
r2701235 r2701888 20 20 function __construct(){ 21 21 // Checking the review status 22 if(isset($_GET['fm-review-status']))23 $_GET['fm-review-status'] = sanitize_text_field($_GET['fm-review-status']);22 $review_status = isset($_GET['fm-review-status']) ? sanitize_text_field($_GET['fm-review-status']): ''; 23 if( in_array( $review_status, $this->status ) ){ 24 24 25 if(!empty($_GET['fm-review-status']) && in_array($_GET['fm-review-status'], $this->status)){26 $review_status = $_GET['fm-review-status'];27 25 switch($review_status){ 28 26 case 'review-successfull': -
file-manager/trunk/views/admin/files.php
r2701235 r2701888 35 35 36 36 37 37 38 // Command options modifier 38 39 $commandOptions = []; … … 51 52 wp_enqueue_style( 'fmp-elfinder-theme-css' ); 52 53 53 wp_enqueue_script('fmp-elfinder-script'); 54 wp_enqueue_script('fmp-elfinder-editor-script'); 54 55 wp_enqueue_script($FileManager->is_minified_file_load('fmp-elfinder-script')['handle']); 56 wp_enqueue_script( $FileManager->is_minified_file_load('fmp-elfinder-editor-script')['handle']); 55 57 56 58 // Testing … … 68 70 <script> 69 71 70 PLUGINS_URL = '<?php echo plugins_url();?>';72 PLUGINS_URL = '<?php echo esc_js(plugins_url());?>'; 71 73 72 74 jQuery(document).ready(function(){ 73 75 console.log(ajaxurl); 74 76 jQuery('#file-manager').elfinder({ 75 77 url: ajaxurl, … … 79 81 ] 80 82 }, 81 customData:{action: 'connector', file_manager_security_token: '<?php echo wp_create_nonce( "file-manager-security-token" ); ?>'},83 customData:{action: 'connector', file_manager_security_token: fm.nonce}, 82 84 lang: '<?php if( isset($language_code) ) echo esc_js($language_code); ?>', 83 85 requestType: 'post', -
file-manager/trunk/views/admin/footer.php
r2625875 r2701888 16 16 <li><a href='https://wpjos.com/contacts/'><?php _e("Contacts", 'file-manager'); ?></a></li> 17 17 <li><a href='https://wpjos.com/documentations/'><?php _e("Docs", 'file-manager'); ?></a></li> 18 <li><a href='<? = $FileManager->feedback_page; ?>'><?php _e("Review", 'file-manager'); ?></a></li>19 <li><a href='<? = $FileManager->support_page; ?>'><?php _e("Help & Support", 'file-manager'); ?></a></li>20 <li><a href='<? = $FileManager->site; ?>'>WPJos</a></li>18 <li><a href='<?php esc_url($FileManager->feedback_page); ?>'><?php _e("Review", 'file-manager'); ?></a></li> 19 <li><a href='<?php esc_url($FileManager->support_page); ?>'><?php _e("Help & Support", 'file-manager'); ?></a></li> 20 <li><a href='<?php esc_url($FileManager->site); ?>'>WPJos</a></li> 21 21 </ul> 22 22 -
file-manager/trunk/views/admin/header.php
r2628736 r2701888 17 17 18 18 <ul class='top-right-menu'> 19 <li><a href='<?php echo $FileManager->support_page; ?>'><?php _e("Need help?", 'file-manager'); ?></a></li>20 <li><a href='<?php echo $FileManager->feedback_page; ?>'><?php _e("Leave us a feedback", 'file-manager'); ?></a></li>21 <li class='fm-marketing'><a href='<?php echo $FileManager->giribaz_landing_page; ?>'><?php _e("Extend", 'file-manager'); ?></a></li>19 <li><a href='<?php echo esc_url($FileManager->support_page); ?>'><?php _e("Need help?", 'file-manager'); ?></a></li> 20 <li><a href='<?php echo esc_url($FileManager->feedback_page); ?>'><?php _e("Leave us a feedback", 'file-manager'); ?></a></li> 21 <li class='fm-marketing'><a href='<?php echo esc_url($FileManager->giribaz_landing_page); ?>'><?php _e("Extend", 'file-manager'); ?></a></li> 22 22 </ul> 23 23 -
file-manager/trunk/views/admin/settings.php
r2701235 r2701888 23 23 24 24 $admin_page_url = admin_url()."admin.php?page={$FileManager->prefix}"; 25 26 if( !isset($_GET['sub_page']) || empty($_GET['sub_page']) ) $_GET['sub_page'] = 'files';27 28 $_GET['sub_page'] = sanitize_text_field($_GET['sub_page']);29 25 30 26 // Enqueing admin assets -
file-manager/trunk/views/admin/utility.php
r2701235 r2701888 51 51 <tr> 52 52 <td><?php _e("Browser and OS", 'file-manager'); ?></td> 53 <td><?php echo $_SERVER['HTTP_USER_AGENT']; ?></td>53 <td><?php echo esc_html($_SERVER['HTTP_USER_AGENT']); ?></td> 54 54 </tr> 55 55
Note: See TracChangeset
for help on using the changeset viewer.