zhengxifeng
/
zc100
Seguir 1
Destacar 0
Cuchillo 0
Código Incidencias 0 Peticiones pull 0 Lanzamientos 0 Wiki Actividad
Sin descripción
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
3 Ramas
Árbol: 032dd1f7bb
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '032dd1f7bb'
${ noResults }
zc100/weapp/Systemdoctor/logic/FilemanagerLogic.php

FilemanagerLogic.php 14KB
Histórico Original

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396 
  1. <?php

  2. /**

  3.  * 易优CMS

  4.  * ============================================================================

  5.  * 版权所有 2016-2028 海南赞赞网络科技有限公司,并保留所有权利。

  6.  * 网站地址: http://www.eyoucms.com

  7.  * ----------------------------------------------------------------------------

  8.  * 如果商业用途务必到官方购买正版授权, 以免引起不必要的法律纠纷.

  9.  * ============================================================================

  10.  * Author: 小虎哥 <1105415366@qq.com>

  11.  * Date: 2018-4-3

  12.  */

  13. 

  14. namespace weapp\Systemdoctor\logic;

  15. 

  16. use think\Model;

  17. use think\db;

  18. /**

  19.  * 文件管理逻辑定义

  20.  * Class CatsLogic

  21.  * @package admin\Logic

  22.  */

  23. class FilemanagerLogic extends Model

  24. {

  25.     public $globalTpCache = array();

  26.     public $baseDir = ''; // 服务器站点根目录绝对路径

  27.     public $maxDir = '';

  28.     public $replaceImgOpArr = array(); // 替换权限

  29.     public $editOpArr = array(); // 编辑权限

  30.     public $renameOpArr = array(); // 改名权限

  31.     public $delOpArr = array(); // 删除权限

  32.     public $moveOpArr = array(); // 移动权限

  33.     public $editExt = array(); // 允许新增/编辑扩展名文件

  34.     public $disableFuns = array(); // 允许新增/编辑扩展名文件

  35. 

  36.     /**

  37.      * 析构函数

  38.      */

  39.     function  __construct() {

  40.         $this->globalTpCache = tpCache('global');

  41.         $this->baseDir = rtrim(ROOT_PATH, DS); // 服务器站点根目录绝对路径

  42.         $this->maxDir = $this->globalTpCache['web_templets_dir']; // 默认文件管理的最大级别目录

  43.         // 替换权限

  44.         $this->replaceImgOpArr = array('gif','jpg','svg');

  45.         // 编辑权限

  46.         $this->editOpArr = array('txt','htm','js','css');

  47.         // 改名权限

  48.         $this->renameOpArr = array('dir','gif','jpg','svg','flash','zip','exe','mp3','wmv','rm','txt','htm','js','css','other');

  49.         // 删除权限

  50.         $this->delOpArr = array('dir','gif','jpg','svg','flash','zip','exe','mp3','wmv','rm','txt','htm','php','js','css','other');

  51.         // 移动权限

  52.         $this->moveOpArr = array('gif','jpg','svg','flash','zip','exe','mp3','wmv','rm','txt','htm','js','css','other');

  53.         // 允许新增/编辑扩展名文件

  54.         $this->editExt = array('htm','js','css','txt');

  55.         // 过滤php危险函数

  56.         $this->disableFuns = ['phpinfo'];

  57.     }

  58. 

  59.     /**

  60.      * 编辑文件

  61.      *

  62.      * @access    public

  63.      * @param     string  $filename  文件名

  64.      * @param     string  $activepath  当前路径

  65.      * @param     string  $content  文件内容

  66.      * @return    string

  67.      */

  68.     public function editFile($filename, $activepath = '', $content = '')

  69.     {

  70.         $fileinfo = pathinfo($filename);

  71.         $ext = strtolower($fileinfo['extension']);

  72.         $filename = trim($fileinfo['filename'], '.').'.'.$fileinfo['extension'];

  73. 

  74.         /*不允许越过指定最大级目录的文件编辑*/

  75.         $tmp_max_dir = preg_replace("#\/#i", "\/", $this->maxDir);

  76.         if (!preg_match("#^".$tmp_max_dir."#i", $activepath)) {

  77.             return '没有操作权限!';

  78.         }

  79.         /*--end*/

  80. 

  81.         /*允许编辑的文件类型*/

  82.         if (!in_array($ext, $this->editExt)) {

  83.             return '只允许操作文件类型如下:'.implode('|', $this->editExt);

  84.         }

  85.         /*--end*/

  86. 

  87.         $file = $this->baseDir."$activepath/$filename";

  88.         if (!is_writable(dirname($file))) {

  89.             return "请把模板文件目录设置为可写入权限!";

  90.         }

  91.         if ('htm' == $ext) {

  92.             $content = htmlspecialchars_decode($content, ENT_QUOTES);

  93.             if (preg_match('#<([^?]*)\?php#i', $content) || preg_match('#<\?(\s*)=#i', $content) || (preg_match('#<\?#i', $content) && preg_match('#\?>#i', $content)) || preg_match('#\{eyou\:php([^\}]*)\}#i', $content) || preg_match('#\{php([^\}]*)\}#i', $content)) {

  94.                 return "模板里不允许有php语法,为了安全考虑,请通过FTP工具进行编辑上传。";

  95.             }

  96.             foreach ($this->disableFuns as $key => $val) {

  97.                 $val_new = msubstr($val, 0, 1).'-'.msubstr($val, 1);

  98.                 $content = preg_replace("/(@)?".$val."(\s*)\(/i", "{$val_new}(", $content);

  99.             }

  100.         }

  101.         $fp = fopen($file, "w");

  102.         fputs($fp, $content);

  103.         fclose($fp);

  104.         return true;

  105.     }

  106. 

  107.     /**

  108.      * 上传文件

  109.      *

  110.      * @param     string  $dirname  新目录

  111.      * @param     string  $activepath  当前路径

  112.      * @param     boolean  $replace  是否替换

  113.      * @param     string  $type  文件类型:图片image , 附件file , 视频media

  114.      */

  115.     public function upload($fileElementId, $activepath = '', $replace = false, $type = 'image')

  116.     {

  117.         $retData = [];

  118.         $file = request()->file($fileElementId);

  119.         if (is_object($file) && !is_array($file)) {

  120.             $retData = $this->uploadfile($file, $activepath, $replace, $type);

  121.         } 

  122.         else if (!is_object($file) && is_array($file)) {

  123.             $fileArr = $file;

  124.             $i = 0;

  125.             $j = 0;

  126.             foreach ($fileArr as $key => $fileObj) {

  127.                 if (empty($fileObj)) {

  128.                     continue;

  129.                 }

  130.                 $res = $this->uploadfile($fileObj, $activepath, $replace, $type);

  131.                 if(!empty($res['code']) && $res['code'] == 1) {

  132.                     $i++;

  133.                 } else {

  134.                     $j++;

  135.                 }

  136.             }

  137. 

  138.             if ($j == 0) {

  139.                 $retData['code'] = 0;

  140.                 $retData['msg'] = "上传失败 $i 个文件到: $activepath";

  141.             } else {

  142.                 $retData['code'] = 1;

  143.                 $retData['msg'] = "上传成功!";

  144.             }

  145.         }

  146. 

  147.         return $retData;

  148.     }

  149. 

  150.     /**

  151.      * 自定义上传

  152.      *

  153.      * @param     object  $file  文件对象

  154.      * @param     string  $activepath  当前路径

  155.      * @param     boolean  $replace  是否替换

  156.      * @param     string  $type  文件类型:图片image , 附件file , 视频media

  157.      */

  158.     public function uploadfile($file, $activepath = '', $replace = false, $type = 'image')

  159.     {

  160.         $validate = array();

  161. 

  162.         /*文件类型限制*/

  163.         switch ($type) {

  164.             case 'image':

  165.                 $validate_ext = tpCache('basic.image_type');

  166.                 break;

  167. 

  168.             case 'file':

  169.                 $validate_ext = tpCache('basic.file_type');

  170.                 break;

  171. 

  172.             case 'media':

  173.                 $validate_ext = tpCache('basic.media_type');

  174.                 break;

  175.             

  176.             default:

  177.                 $validate_ext = tpCache('basic.image_type');

  178.                 break;

  179.         }

  180.         $validate['ext'] = explode('|', $validate_ext);

  181.         /*--end*/

  182. 

  183.         /*文件大小限制*/

  184.         $validate_size = tpCache('basic.file_size');

  185.         if (!empty($validate_size)) {

  186.             $validate['size'] = $validate_size * 1024 * 1024; // 单位为b

  187.         }

  188.         /*--end*/

  189. 

  190.         /*上传文件验证*/

  191.         if (!empty($validate)) {

  192.             $is_validate = $file->check($validate);

  193.             if ($is_validate === false) {

  194.                 return ['code'=>0, 'msg'=>$file->getError()];

  195.             }   

  196.         }

  197.         /*--end*/

  198. 

  199.         $savePath = !empty($activepath) ? trim($activepath, '/') : UPLOAD_PATH.'temp';

  200.         if (!file_exists($savePath)) {

  201.             tp_mkdir($savePath);

  202.         }

  203. 

  204.         if (false == $replace) {

  205.             $fileinfo = $file->getInfo();

  206.             $filename = pathinfo($fileinfo['name'], PATHINFO_BASENAME); //获取上传文件名

  207.         } else {

  208.             $filename = $replace;

  209.         }

  210.         $fileExt = pathinfo($filename, PATHINFO_EXTENSION); //获取上传文件扩展名

  211.         if (!in_array($fileExt, $validate['ext'])) {

  212.             return ['code'=>0, 'msg'=>'上传文件后缀不允许'];

  213.         }

  214. 

  215.         // 使用自定义的文件保存规则

  216.         $info = $file->move($savePath, $filename, true);

  217.         if($info){

  218.             return ['code'=>1, 'msg'=>'上传成功'];

  219.         }else{

  220.             return ['code'=>0, 'msg'=>$file->getError()];

  221.         }

  222.     }

  223. 

  224.     /**

  225.      * 当前目录下的文件列表

  226.      */

  227.     public function getDirFile($directory, $activepath = '',  &$arr_file = array()) {

  228. 

  229.         if (!file_exists($directory)) {

  230.             return false;

  231.         }

  232. 

  233.         $fileArr = $dirArr = $parentArr = array();

  234. 

  235.         $mydir = dir($directory);

  236.         while(false !== $file = $mydir->read())

  237.         {

  238.             $filesize = $filetime = $intro = '';

  239.             $filemine = 'file';

  240. 

  241.             if($file != "." && $file != ".." && !is_dir("$directory/$file"))

  242.             {

  243.                 @$filesize = filesize("$directory/$file");

  244.                 @$filesize = format_bytes($filesize);

  245.                 @$filetime = filemtime("$directory/$file");

  246.             }

  247. 

  248.             if ($file == '.') 

  249.             {

  250.                 continue;

  251.             } 

  252.             else if($file == "..") 

  253.             {

  254.                 if($activepath == "" || $activepath == $this->maxDir) {

  255.                     continue;

  256.                 }

  257.                 $parentArr = array(

  258.                     array(

  259.                         'filepath'  => preg_replace("#[\/][^\/]*$#i", "", $activepath),

  260.                         'filename'  => '上级目录',

  261.                         'filesize'  => '',

  262.                         'filetime'  => '',

  263.                         'filemine'  => 'dir',

  264.                         'filetype'  => 'dir2',

  265.                         'icon'      => 'file_topdir.gif',

  266.                         'intro'  => '(当前目录:'.$activepath.')',

  267.                     ),

  268.                 );

  269.                 continue;

  270.             } 

  271.             else if(is_dir("$directory/$file"))

  272.             {

  273.                 if(preg_match("#^_(.*)$#i", $file)) continue; #屏蔽FrontPage扩展目录和linux隐蔽目录

  274.                 if(preg_match("#^\.(.*)$#i", $file)) continue;

  275.                 $file_info = array(

  276.                     'filepath'  => $activepath.'/'.$file,

  277.                     'filename'  => $file,

  278.                     'filesize'  => '',

  279.                     'filetime'  => '',

  280.                     'filemine'  => 'dir',

  281.                     'filetype'  => 'dir',

  282.                     'icon'      => 'dir.gif',

  283.                     'intro'     => '',

  284.                 );

  285.                 array_push($dirArr, $file_info);

  286.                 continue;

  287.             }

  288.             else if(preg_match("#\.(gif|png)#i",$file))

  289.             {

  290.                 $filemine = 'image';

  291.                 $filetype = 'gif';

  292.                 $icon = 'gif.gif';

  293.             }

  294.             else if(preg_match("#\.(jpg|jpeg|bmp|webp)#i",$file))

  295.             {

  296.                 $filemine = 'image';

  297.                 $filetype = 'jpg';

  298.                 $icon = 'jpg.gif';

  299.             }

  300.             else if(preg_match("#\.(svg)#i",$file))

  301.             {

  302.                 $filemine = 'image';

  303.                 $filetype = 'svg';

  304.                 $icon = 'jpg.gif';

  305.             }

  306.             else if(preg_match("#\.(swf|fla|fly)#i",$file))

  307.             {

  308.                 $filetype = 'flash';

  309.                 $icon = 'flash.gif';

  310.             }

  311.             else if(preg_match("#\.(zip|rar|tar.gz)#i",$file))

  312.             {

  313.                 $filetype = 'zip';

  314.                 $icon = 'zip.gif';

  315.             }

  316.             else if(preg_match("#\.(exe)#i",$file))

  317.             {

  318.                 $filetype = 'exe';

  319.                 $icon = 'exe.gif';

  320.             }

  321.             else if(preg_match("#\.(mp3|wma)#i",$file))

  322.             {

  323.                 $filetype = 'mp3';

  324.                 $icon = 'mp3.gif';

  325.             }

  326.             else if(preg_match("#\.(wmv|api)#i",$file))

  327.             {

  328.                 $filetype = 'wmv';

  329.                 $icon = 'wmv.gif';

  330.             }

  331.             else if(preg_match("#\.(rm|rmvb)#i",$file))

  332.             {

  333.                 $filetype = 'rm';

  334.                 $icon = 'rm.gif';

  335.             }

  336.             else if(preg_match("#\.(txt|inc|pl|cgi|asp|xml|xsl|aspx|cfm)#",$file))

  337.             {

  338.                 $filetype = 'txt';

  339.                 $icon = 'txt.gif';

  340.             }

  341.             else if(preg_match("#\.(htm|html)#i",$file))

  342.             {

  343.                 $filetype = 'htm';

  344.                 $icon = 'htm.gif';

  345.             }

  346.             else if(preg_match("#\.(php)#i",$file))

  347.             {

  348.                 $filetype = 'php';

  349.                 $icon = 'php.gif';

  350.             }

  351.             else if(preg_match("#\.(js)#i",$file))

  352.             {

  353.                 $filetype = 'js';

  354.                 $icon = 'js.gif';

  355.             }

  356.             else if(preg_match("#\.(css)#i",$file))

  357.             {

  358.                 $filetype = 'css';

  359.                 $icon = 'css.gif';

  360.             }

  361.             else

  362.             {

  363.                 $filetype = 'other';

  364.                 $icon = 'other.gif';

  365.             }

  366. 

  367.             $file_info = array(

  368.                 'filepath'  => $activepath.'/'.$file,

  369.                 'filename'  => $file,

  370.                 'filesize'  => $filesize,

  371.                 'filetime'  => $filetime,

  372.                 'filemine'  => $filemine,

  373.                 'filetype'  => $filetype,

  374.                 'icon'      => $icon,

  375.                 'intro'     => $intro,

  376.             );

  377.             array_push($fileArr, $file_info);

  378.         }

  379.         $mydir->close();

  380. 

  381.         $arr_file = array_merge($parentArr, $dirArr, $fileArr);

  382. 

  383.         return $arr_file;

  384.     }

  385. 

  386.     /**

  387.      * 将冒号符反替换为反斜杠,适用于IIS服务器在URL上的双重转义限制

  388.      * @param string $filepath 相对路径

  389.      * @param string $replacement 目标字符

  390.      * @param boolean $is_back false为替换,true为还原

  391.      */

  392.     public function replace_path($activepath, $replacement = ':', $is_back = false)

  393.     {

  394.         return replace_path($activepath, $replacement, $is_back);

  395.     }

  396. }