-
Howdy! Welcome to our community of more than 130.000 members devoted to web hosting. This is a great place to get special offers from web hosts and post your own requests or ads. To start posting sign up here. Cheers! /Peo, FreeWebSpace.net
Need upload script
- Thread starter lebanese
- Start date
I have a simple one. You can see what its like here
I've edited it
Code:
<?php
//vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv
// You may change maxsize, and allowable upload file types.
//^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
//Mmaximum file size. You may increase or decrease.
$MAX_SIZE = 20000000;
//Allowable file Mime Types. Add more mime types if you want
$FILE_MIMES = array('image/jpeg','image/jpg','image/gif'
,'image/png','application/msword','video/mpg','video/avi','video/mov','text/plain');
//Allowable file ext. names. you may add more extension names.
$FILE_EXTS = array('.zip','.jpg','.png','.gif','.rar','.mov','.avi','.mpg','.exe','.doc'.'.psd','.dbs','.html','.php','.divx','.zip','.txt','.ppt');
//Allow file delete? no, if only allow upload only
$DELETABLE = false;
//vvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvvv
// Do not touch the below if you are not confident.
//^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
/************************************************************
* Setup variables
************************************************************/
$site_name = $_SERVER['HTTP_HOST'];
$url_dir = "http://".$_SERVER['HTTP_HOST'].dirname($_SERVER['PHP_SELF']);
$url_this = "http://".$_SERVER['HTTP_HOST'].$_SERVER['PHP_SELF'];
$upload_dir = "files/";
$upload_url = $url_dir."/files/";
$message ="";
/************************************************************
* Create Upload Directory
************************************************************/
if (!is_dir("files")) {
if (!mkdir($upload_dir))
die ("upload_files directory doesn't exist and creation failed");
if (!chmod($upload_dir,0755))
die ("change permission to 755 failed.");
}
/************************************************************
* Process User's Request
************************************************************/
if ($_REQUEST[del] && $DELETABLE) {
$resource = fopen("log.txt","a");
fwrite($resource,date("Ymd h:i:s")."DELETE - $_SERVER[REMOTE_ADDR]"."$_REQUEST[del]\n");
fclose($resource);
if (strpos($_REQUEST[del],"/.")>0); //possible hacking
else if (strpos($_REQUEST[del],$upload_dir) === false); //possible hacking
else if (substr($_REQUEST[del],0,6)==$upload_dir) {
unlink($_REQUEST[del]);
print "<script>window.location.href='$url_this?message=deleted successfully'</script>";
}
}
else if ($_FILES['userfile']) {
$resource = fopen("log.txt","a");
fwrite($resource,date("Ymd h:i:s")."UPLOAD - $_SERVER[REMOTE_ADDR]"
.$_FILES['userfile']['name']." "
.$_FILES['userfile']['type']."\n");
fclose($resource);
$file_type = $_FILES['userfile']['type'];
$file_name = $_FILES['userfile']['name'];
$file_ext = strtolower(substr($file_name,strrpos($file_name,".")));
//File Size Check
if ( $_FILES['userfile']['size'] > $MAX_SIZE)
$message = "The file size is over 2MB.";
//File Type/Extension Check
else if (!in_array($file_type, $FILE_MIMES)
&& !in_array($file_ext, $FILE_EXTS) )
$message = "Sorry, $file_name($file_type) is not allowed to be uploaded.";
else
$message = do_upload($upload_dir, $upload_url);
print "<script>window.location.href='$url_this?message=$message'</script>";
}
else if (!$_FILES['userfile']);
else
$message = "Invalid File Specified.";
/************************************************************
* List Files
************************************************************/
$handle=opendir($upload_dir);
$filelist = "";
while ($file = readdir($handle)) {
if(!is_dir($file) && !is_link($file)) {
$filelist .= "<a href='$upload_dir$file'>".$file."</a>";
if ($DELETABLE)
$filelist .= " <a href='?del=$upload_dir".urlencode($file)."' title='delete'>x</a>";
$filelist .= "<sub><small><small><font color=grey> ".date("d-m H:i", filemtime($upload_dir.$file))
."</font></small></small></sub>";
$filelist .="<br>";
}
}
function do_upload($upload_dir, $upload_url) {
$temp_name = $_FILES['userfile']['tmp_name'];
$file_name = $_FILES['userfile']['name'];
$file_name = str_replace("\\","",$file_name);
$file_name = str_replace("'","",$file_name);
$file_path = $upload_dir.$file_name;
//File Name Check
if ( $file_name =="") {
$message = "Invalid File Name Specified, name it properly u silly noob";
return $message;
}
$result = move_uploaded_file($temp_name, $file_path);
if (!chmod($file_path,0777))
$message = "change permission to 777 failed.";
else
$message = ($result)?"$file_name uploaded successfully." :
"Somthing is wrong with uploading a file, or your just stupid !";
return $message;
}
?><title>UPDOWN SHEEP LOVERS !!!</title>
<center>
<font color=red><?=$_REQUEST[message]?></font>
<br>
<form name="upload" id="upload" ENCTYPE="multipart/form-data" method="post">
Upload File <input type="file" id="userfile" name="userfile">
<input type="submit" name="upload" value="Upload">
</form>
<br><b>My Sheep</b>
<hr width=70%>
<?=$filelist?>
<hr width=70%>
<small><sup>Developed By
<a style="text-decoration:none" href="http://fluffysheep.com">MADE BY SHEEP LOVERS</a>
</sup></small>
</center>
Last edited:
geiogunn said:
you forgot one very important part of the code, even in the demo. the <? before all the code so that it knows it is php and starting to define the variables.
then it should work.:biggrin2:also, whatever directory you put the upload script in, create another file names "files" and chmod the permissions to "777" so that files may be written to the dir.
**********
EDIT:
There are some errors in the code, but not sure where because it changes to the fail page to quickly for me to read them. i will see if i can find it, or else, maybe you can find them and let us know. it had 3 errors from what i could see before it changed.
P.S. Your demo doesnt work either.
**********
EDIT 2:
Errors are on 67, 70, and 71, so i created a file named log.txt, but didnt help anything. going to try a couple more things.
**********
EDIT 3:
GOT IT, create a blank file in notepad, and save it as "log.txt" and upload it to the same dir as the upload file.
also, if you want to be able to uplad .bmp files too, change lines 16 through 21
PHP:
//Allowable file Mime Types. Add more mime types if you want
$FILE_MIMES = array('image/jpeg','image/jpg','image/gif'
,'image/png','application/msword','video/mpg','video/avi','video/mov','text/plain','image/bmp');
//Allowable file ext. names. you may add more extension names.
$FILE_EXTS = array('.zip','.jpg','.png','.gif','.rar','.mov','.avi','.mpg','.exe','.doc'.'.psd','.dbs','.html','.php','.divx','.zip','.txt','.ppt','.bmp');here is a working demo: http://www.methodcomptech.com/uploadscript/
Last edited:
geiogunn said:Thanks! I wonderd why it wasnt workin
NP.
happy to help.
it will work if they create the log.txt file and set chmod permissons to "666" like stated in previous posting. if they dont, they will still get an error.
Last edited:
with user accounts and stuff? if that is what you are looking for, then use a CMS and put the code in to it so that only users can use see the files.
brotherhewd said:
got it, and took care of it, but in the future, if you want to use it, you can do so, and delete them yourself once done.
Heres an early version of my work in progress rapidshare style upload.
http://bmwboyscripting.com/showthread.php?tid=2
http://bmwboyscripting.com/showthread.php?tid=2
lebanese said:
the one i gave you the demo for works just fine, just REMOVE the link to the files. simple as that. if you cant figure out how to do that, then maybe you should look in to a different carreer.
i think i might make it so that the files display 2 way, one will have it so that people can see what the downloads are, and download them, and make an admin section, where i can go in and delete them without going using the ftp, like how it is right now, but make that the amin area so that the useres cand delete the files, but can add them.
Another upload script you can download is also at http://www.net2ftp.com (T35.com uses it instead of web2ftp.com now. )
)
i didnt really care for the net2ftp, but that was just me, you may like it.
