LDAPAccountManager/lam/templates/upload/massDoUpload.php

<?php
/*
$Id$

  This code is part of LDAP Account Manager (http://www.ldap-account-manager.org/)
  Copyright (C) 2004 - 2013  Roland Gruber

  This program is free software; you can redistribute it and/or modify
  it under the terms of the GNU General Public License as published by
  the Free Software Foundation; either version 2 of the License, or
  (at your option) any later version.

  This program is distributed in the hope that it will be useful,
  but WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  GNU General Public License for more details.

  You should have received a copy of the GNU General Public License
  along with this program; if not, write to the Free Software
  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA

*/

/**
* Creates LDAP accounts for file upload.
*
* @author Roland Gruber
* @package tools
*/

/** security functions */
include_once("../../lib/security.inc");
/** access to configuration */
include_once('../../lib/config.inc');
/** LDAP handle */
include_once('../../lib/ldap.inc');
/** status messages */
include_once('../../lib/status.inc');
/** account modules */
include_once('../../lib/modules.inc');
/** PDF */
include_once('../../lib/pdf.inc');


// Start session
startSecureSession();

// check if this tool may be run
checkIfToolIsActive('toolFileUpload');

// die if no write access
if (!checkIfWriteAccessIsAllowed()) die();

// Redirect to startpage if user is not loged in
if (!isLoggedIn()) {
	metaRefresh("../login.php");
	exit;
}

// Set correct language, codepages, ....
setlanguage();

include '../main_header.php';
$scope = htmlspecialchars($_SESSION['mass_scope']);

// check if account type is ok
if (isAccountTypeHidden($scope)) {
	logNewMessage(LOG_ERR, 'User tried to access hidden upload: ' . $scope);
	die();
}
if (!checkIfNewEntriesAreAllowed($scope) || !checkIfWriteAccessIsAllowed($scope)) {
	logNewMessage(LOG_ERR, 'User tried to access forbidden upload: ' . $scope);
	die();
}

echo '<div id="uploadContent" class="' . $scope . '-bright smallPaddingContent">';
$tokenPrefix = '?' . getSecurityTokenName() . '=' . getSecurityTokenValue();
?>
	<script type="text/javascript">
		jQuery(document).ready(function(){
			window.lam.upload.continueUpload('../misc/ajax.php' + '<?php echo $tokenPrefix; ?>' + '&function=upload&scope=' + '<?php echo $scope ?>');
		});
	</script>

<?php
echo '</div>';
include '../main_footer.php';
?>
Ajax file upload 2016-12-07 20:18:06 +00:00			`<?php`
			`/*`
			$Id$

			`This code is part of LDAP Account Manager (http://www.ldap-account-manager.org/)`
			`Copyright (C) 2004 - 2013 Roland Gruber`

			`This program is free software; you can redistribute it and/or modify`
			`it under the terms of the GNU General Public License as published by`
			`the Free Software Foundation; either version 2 of the License, or`
			`(at your option) any later version.`

			`This program is distributed in the hope that it will be useful,`
			`but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`GNU General Public License for more details.`

			`You should have received a copy of the GNU General Public License`
			`along with this program; if not, write to the Free Software`
			`Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA`

			`*/`

			`/**`
			`* Creates LDAP accounts for file upload.`
			`*`
			`* @author Roland Gruber`
			`* @package tools`
			`*/`

			`/** security functions */`
			`include_once("../../lib/security.inc");`
			`/** access to configuration */`
			`include_once('../../lib/config.inc');`
			`/** LDAP handle */`
			`include_once('../../lib/ldap.inc');`
			`/** status messages */`
			`include_once('../../lib/status.inc');`
			`/** account modules */`
			`include_once('../../lib/modules.inc');`
			`/** PDF */`
			`include_once('../../lib/pdf.inc');`


			`// Start session`
			`startSecureSession();`

			`// check if this tool may be run`
			`checkIfToolIsActive('toolFileUpload');`

			`// die if no write access`
			`if (!checkIfWriteAccessIsAllowed()) die();`

			`// Redirect to startpage if user is not loged in`
			`if (!isLoggedIn()) {`
			`metaRefresh("../login.php");`
			`exit;`
			`}`

			`// Set correct language, codepages, ....`
			`setlanguage();`

			`include '../main_header.php';`
			`$scope = htmlspecialchars($_SESSION['mass_scope']);`

			`// check if account type is ok`
			`if (isAccountTypeHidden($scope)) {`
			`logNewMessage(LOG_ERR, 'User tried to access hidden upload: ' . $scope);`
			`die();`
			`}`
			`if (!checkIfNewEntriesAreAllowed($scope) \|\| !checkIfWriteAccessIsAllowed($scope)) {`
			`logNewMessage(LOG_ERR, 'User tried to access forbidden upload: ' . $scope);`
			`die();`
			`}`

			`echo '<div id="uploadContent" class="' . $scope . '-bright smallPaddingContent">';`
			`$tokenPrefix = '?' . getSecurityTokenName() . '=' . getSecurityTokenValue();`
			`?>`
			`<script type="text/javascript">`
			`jQuery(document).ready(function(){`
			`window.lam.upload.continueUpload('../misc/ajax.php' + '<?php echo $tokenPrefix; ?>' + '&function=upload&scope=' + '<?php echo $scope ?>');`
			`});`
			`</script>`

			`<?php`
			`echo '</div>';`
			`include '../main_footer.php';`
			`?>`