From b8a2031767eb6166e3dddb817878c692ac7e075b Mon Sep 17 00:00:00 2001 From: "Mr.Lin" Date: Wed, 4 Mar 2020 11:53:11 +0800 Subject: [PATCH] Delete common.php --- function/common.php | 1091 ------------------------------------------- 1 file changed, 1091 deletions(-) delete mode 100644 function/common.php diff --git a/function/common.php b/function/common.php deleted file mode 100644 index 2779720..0000000 --- a/function/common.php +++ /dev/null @@ -1,1091 +0,0 @@ -fetch($str); -} - -function savecache($key, $value, $exp = 3300) -{ - $cache = null; - $cache = new \Doctrine\Common\Cache\FilesystemCache(sys_get_temp_dir(), __DIR__.'/Onedrive/'.$_SERVER['disktag']); - $cache->save($key, $value, $exp); -} - -function getconstStr($str) -{ - global $constStr; - if ($constStr[$str][$constStr['language']]!='') return $constStr[$str][$constStr['language']]; - return $constStr[$str]['en-us']; -} - -function config_oauth() -{ - $_SERVER['sitename'] = getConfig('sitename'); - if (empty($_SERVER['sitename'])) $_SERVER['sitename'] = getconstStr('defaultSitename'); - $_SERVER['redirect_uri'] = 'https://scfonedrive.github.io'; - - if (getConfig('Onedrive_ver')=='MS') { - // MS - // https://portal.azure.com - $_SERVER['client_id'] = '4da3e7f2-bf6d-467c-aaf0-578078f0bf7c'; - $_SERVER['client_secret'] = '7/+ykq2xkfx:.DWjacuIRojIaaWL0QI6'; - $_SERVER['oauth_url'] = 'https://login.microsoftonline.com/common/oauth2/v2.0/'; - $_SERVER['api_url'] = 'https://graph.microsoft.com/v1.0/me/drive/root'; - $_SERVER['scope'] = 'https://graph.microsoft.com/Files.ReadWrite.All offline_access'; - } - if (getConfig('Onedrive_ver')=='CN') { - // CN - // https://portal.azure.cn - $_SERVER['client_id'] = '04c3ca0b-8d07-4773-85ad-98b037d25631'; - $_SERVER['client_secret'] = 'h8@B7kFVOmj0+8HKBWeNTgl@pU/z4yLB'; - $_SERVER['oauth_url'] = 'https://login.partner.microsoftonline.cn/common/oauth2/v2.0/'; - $_SERVER['api_url'] = 'https://microsoftgraph.chinacloudapi.cn/v1.0/me/drive/root'; - $_SERVER['scope'] = 'https://microsoftgraph.chinacloudapi.cn/Files.ReadWrite.All offline_access'; - } - if (getConfig('Onedrive_ver')=='MSC') { - // MS Customer - // https://portal.azure.com - $_SERVER['client_id'] = getConfig('client_id'); - $_SERVER['client_secret'] = getConfig('client_secret'); - $_SERVER['oauth_url'] = 'https://login.microsoftonline.com/common/oauth2/v2.0/'; - $_SERVER['api_url'] = 'https://graph.microsoft.com/v1.0/me/drive/root'; - $_SERVER['scope'] = 'https://graph.microsoft.com/Files.ReadWrite.All offline_access'; - } - - $_SERVER['client_secret'] = urlencode($_SERVER['client_secret']); - $_SERVER['scope'] = urlencode($_SERVER['scope']); -} - -function getListpath($domain) -{ - $domain_path1 = getConfig('domain_path'); - $public_path = getConfig('public_path'); - $tmp_path=''; - if ($domain_path1!='') { - $tmp = explode("|",$domain_path1); - foreach ($tmp as $multidomain_paths){ - $pos = strpos($multidomain_paths,":"); - if ($pos>0) { - $domain1 = substr($multidomain_paths,0,$pos); - $tmp_path = path_format(substr($multidomain_paths,$pos+1)); - $domain_path[$domain1] = $tmp_path; - if ($public_path=='') $public_path = $tmp_path; - //if (substr($multidomain_paths,0,$pos)==$host_name) $private_path=$tmp_path; - } - } - } - if (isset($domain_path[$domain])) return spurlencode($domain_path[$domain],'/'); - return spurlencode($public_path,'/'); -} - -function path_format($path) -{ - $path = '/' . $path; - while (strpos($path, '//') !== FALSE) { - $path = str_replace('//', '/', $path); - } - return $path; -} - -function spurlencode($str,$split='') -{ - $str = str_replace(' ', '%20',$str); - $tmp=''; - if ($split!='') { - $tmparr=explode($split,$str); - for($x=0;$x $headerVal) { - $sendHeaders[] = $headerName . ': ' . $headerVal; - } - $ch = curl_init(); - curl_setopt($ch, CURLOPT_URL, $url); - if ($data !== false) { - curl_setopt($ch, CURLOPT_POST, 1); - curl_setopt($ch, CURLOPT_POSTFIELDS, $data); - } - curl_setopt($ch, CURLOPT_TIMEOUT, 5); - curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 10); - curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); - curl_setopt($ch, CURLOPT_HEADER, 0); - curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); - curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); - curl_setopt($ch, CURLOPT_HTTPHEADER, $sendHeaders); - $response['body'] = curl_exec($ch); - $response['stat'] = curl_getinfo($ch,CURLINFO_HTTP_CODE); - curl_close($ch); - if ($response['stat']==0) return curl_request($url, $data, $headers); - return $response; -} - -function clearbehindvalue($path,$page1,$maxpage,$pageinfocache) -{ - for ($page=$page1+1;$page<$maxpage;$page++) { - $pageinfocache['nextlink_' . $path . '_page_' . $page] = ''; - } - $pageinfocache = array_filter($pageinfocache, 'array_value_isnot_null'); - return $pageinfocache; -} - -function comppass($pass) -{ - if ($_POST['password1'] !== '') if (md5($_POST['password1']) === $pass ) { - date_default_timezone_set('UTC'); - $_SERVER['Set-Cookie'] = 'password='.$pass.'; expires='.date(DATE_COOKIE,strtotime('+1hour')); - date_default_timezone_set(get_timezone($_COOKIE['timezone'])); - return 2; - } - if ($_COOKIE['password'] !== '') if ($_COOKIE['password'] === $pass ) return 3; - return 4; -} - -function encode_str_replace($str) -{ - $str = str_replace('&','&',$str); - $str = str_replace('+','%2B',$str); - $str = str_replace('#','%23',$str); - return $str; -} - -function gethiddenpass($path,$passfile) -{ - $path1 = path_format($_SERVER['list_path'] . path_format($path)); - $password=getcache('path_' . $path1 . '/?password'); - if ($password=='') { - $ispassfile = fetch_files(path_format($path . '/' . urlencode($passfile))); - //echo $path . '
' . json_encode($ispassfile, JSON_PRETTY_PRINT) . '
'; - if (isset($ispassfile['file'])) { - $arr = curl_request($ispassfile['@microsoft.graph.downloadUrl']); - if ($arr['stat']==200) { - $passwordf=explode("\n",$arr['body']); - $password=$passwordf[0]; - if ($password!='') $password=md5($password); - savecache('path_' . $path1 . '/?password', $password); - return $password; - } else { - //return md5('DefaultP@sswordWhenNetworkError'); - return md5( md5(time()).rand(1000,9999) ); - } - } else { - savecache('path_' . $path1 . '/?password', 'null'); - if ($path !== '' ) { - $path = substr($path,0,strrpos($path,'/')); - return gethiddenpass($path,$passfile); - } else { - return ''; - } - } - } elseif ($password==='null') { - if ($path !== '' ) { - $path = substr($path,0,strrpos($path,'/')); - return gethiddenpass($path,$passfile); - } else { - return ''; - } - } else return $password; - // return md5('DefaultP@sswordWhenNetworkError'); -} - -function get_timezone($timezone = '8') -{ - $timezones = array( - '-12'=>'Pacific/Kwajalein', - '-11'=>'Pacific/Samoa', - '-10'=>'Pacific/Honolulu', - '-9'=>'America/Anchorage', - '-8'=>'America/Los_Angeles', - '-7'=>'America/Denver', - '-6'=>'America/Mexico_City', - '-5'=>'America/New_York', - '-4'=>'America/Caracas', - '-3.5'=>'America/St_Johns', - '-3'=>'America/Argentina/Buenos_Aires', - '-2'=>'America/Noronha', - '-1'=>'Atlantic/Azores', - '0'=>'UTC', - '1'=>'Europe/Paris', - '2'=>'Europe/Helsinki', - '3'=>'Europe/Moscow', - '3.5'=>'Asia/Tehran', - '4'=>'Asia/Baku', - '4.5'=>'Asia/Kabul', - '5'=>'Asia/Karachi', - '5.5'=>'Asia/Calcutta', //Asia/Colombo - '6'=>'Asia/Dhaka', - '6.5'=>'Asia/Rangoon', - '7'=>'Asia/Bangkok', - '8'=>'Asia/Shanghai', - '9'=>'Asia/Tokyo', - '9.5'=>'Australia/Darwin', - '10'=>'Pacific/Guam', - '11'=>'Asia/Magadan', - '12'=>'Asia/Kamchatka' - ); - if ($timezone=='') $timezone = '8'; - return $timezones[$timezone]; -} - -function message($message, $title = 'Message', $statusCode = 200) -{ - return output(' - - - - -

' . $title . '

-

- -' . $message . ' - -

- -', $statusCode); -} - -function needUpdate() -{ - $current_ver = file_get_contents(__DIR__ . '/../version'); - $current_ver = substr($current_ver, strpos($current_ver, '.')+1); - $current_ver = explode(urldecode('%0A'),$current_ver)[0]; - $current_ver = explode(urldecode('%0D'),$current_ver)[0]; - $github_version = file_get_contents('https://raw.githubusercontent.com/qkqpttgf/OneManager-php/master/version'); - $github_ver = substr($github_version, strpos($github_version, '.')+1); - $github_ver = explode(urldecode('%0A'),$github_ver)[0]; - $github_ver = explode(urldecode('%0D'),$github_ver)[0]; - if ($current_ver != $github_ver) { - $_SERVER['github_version'] = $github_version; - return 1; - } - return 0; -} - -function output($body, $statusCode = 200, $headers = ['Content-Type' => 'text/html'], $isBase64Encoded = false) -{ - return [ - 'isBase64Encoded' => $isBase64Encoded, - 'statusCode' => $statusCode, - 'headers' => $headers, - 'body' => $body - ]; -} - -function passhidden($path) -{ - $path = str_replace('+','%2B',$path); - $path = str_replace('&','&', path_format(urldecode($path))); - if (getConfig('passfile') != '') { - $path = spurlencode($path,'/'); - if (substr($path,-1)=='/') $path=substr($path,0,-1); - $hiddenpass=gethiddenpass($path,getConfig('passfile')); - if ($hiddenpass != '') { - return comppass($hiddenpass); - } else { - return 1; - } - } else { - return 0; - } - return 4; -} - -function size_format($byte) -{ - $i = 0; - while (abs($byte) >= 1024) { - $byte = $byte / 1024; - $i++; - if ($i == 3) break; - } - $units = array('B', 'KB', 'MB', 'GB', 'TB'); - $ret = round($byte, 2); - return ($ret . ' ' . $units[$i]); -} - -function time_format($ISO) -{ - $ISO = str_replace('T', ' ', $ISO); - $ISO = str_replace('Z', ' ', $ISO); - //return $ISO; - return date('Y-m-d H:i:s',strtotime($ISO . " UTC")); -} - -function get_thumbnails_url($path = '/') -{ - $path1 = path_format($path); - $path = path_format($_SERVER['list_path'] . path_format($path)); - $thumb_url = getcache($path); - if ($thumb_url!='') return output($thumb_url); - $url = $_SERVER['api_url']; - if ($path !== '/') { - $url .= ':' . $path; - if (substr($url,-1)=='/') $url=substr($url,0,-1); - } - $url .= ':/thumbnails/0/medium'; - $files = json_decode(curl_request($url, false, ['Authorization' => 'Bearer ' . $_SERVER['access_token']])['body'], true); - if (isset($files['url'])) { - savecache($path, $files['url']); - return output($files['url']); - } - return output('', 404); -} - -function bigfileupload($path) -{ - $path1 = path_format($_SERVER['list_path'] . path_format($path)); - if (substr($path1,-1)=='/') $path1=substr($path1,0,-1); - if ($_GET['upbigfilename']!=''&&$_GET['filesize']>0) { - $fileinfo['name'] = $_GET['upbigfilename']; - $fileinfo['size'] = $_GET['filesize']; - $fileinfo['lastModified'] = $_GET['lastModified']; - $filename = spurlencode( $fileinfo['name'] ); - $cachefilename = '.' . $fileinfo['lastModified'] . '_' . $fileinfo['size'] . '_' . $filename . '.tmp'; - $getoldupinfo=fetch_files(path_format($path . '/' . $cachefilename)); - //echo json_encode($getoldupinfo, JSON_PRETTY_PRINT); - if (isset($getoldupinfo['file'])&&$getoldupinfo['size']<5120) { - $getoldupinfo_j = curl_request($getoldupinfo['@microsoft.graph.downloadUrl']); - $getoldupinfo = json_decode($getoldupinfo_j['body'], true); - if ( json_decode( curl_request($getoldupinfo['uploadUrl'])['body'], true)['@odata.context']!='' ) return output($getoldupinfo_j['body'], $getoldupinfo_j['stat']); - } - if (!$_SERVER['admin']) $filename = spurlencode( $fileinfo['name'] ) . '.scfupload'; - $response=MSAPI('createUploadSession',path_format($path1 . '/' . $filename),'{"item": { "@microsoft.graph.conflictBehavior": "fail" }}',$_SERVER['access_token']); - $responsearry = json_decode($response['body'],true); - if (isset($responsearry['error'])) return output($response['body'], $response['stat']); - $fileinfo['uploadUrl'] = $responsearry['uploadUrl']; - MSAPI('PUT', path_format($path1 . '/' . $cachefilename), json_encode($fileinfo, JSON_PRETTY_PRINT), $_SERVER['access_token'])['body']; - return output($response['body'], $response['stat']); - } - return output('error', 400); -} - -function main($path) -{ - global $exts; - global $constStr; -//echo 'main.enterpath:'.$path.' -//'; - $constStr['language'] = $_COOKIE['language']; - if ($constStr['language']=='') $constStr['language'] = getConfig('language'); - if ($constStr['language']=='') $constStr['language'] = 'en-us'; - $_SERVER['language'] = $constStr['language']; - $_SERVER['PHP_SELF'] = path_format($_SERVER['base_path'] . $path); - $_SERVER['base_disk_path'] = $_SERVER['base_path']; - $disktags = explode("|",getConfig('disktag')); -// echo 'count$disk:'.count($disktags); - if (count($disktags)>1) { - if ($path=='/'||$path=='') return output('', 302, [ 'Location' => path_format($_SERVER['PHP_SELF'].'/'.$disktags[0]) ]); - $_SERVER['disktag'] = $path; - $pos = strpos($path, '/'); - if ($pos>1) $_SERVER['disktag'] = substr($path, 0, $pos); - $path = substr($path, strlen('/'.$_SERVER['disktag'])); - if ($_SERVER['disktag']!='') $_SERVER['base_disk_path'] = path_format($_SERVER['base_disk_path']. '/' . $_SERVER['disktag'] . '/'); - } else $_SERVER['disktag'] = $disktags[0]; -// echo 'main.disktag:'.$_SERVER['disktag'].',path:'.$path.' -//'; - $_SERVER['list_path'] = getListpath($_SERVER['HTTP_HOST']); - if ($_SERVER['list_path']=='') $_SERVER['list_path'] = '/'; - $_SERVER['is_guestup_path'] = is_guestup_path($path); - $_SERVER['ajax']=0; - if (isset($_SERVER['HTTP_X_REQUESTED_WITH'])) if ($_SERVER['HTTP_X_REQUESTED_WITH']=='XMLHttpRequest') $_SERVER['ajax']=1; - - if (getConfig('adminloginpage')=='') { - $adminloginpage = 'admin'; - } else { - $adminloginpage = getConfig('adminloginpage'); - } - if ($_GET[$adminloginpage]) { - if ($_GET['preview']) { - $url = $_SERVER['PHP_SELF'] . '?preview'; - } else { - $url = path_format($_SERVER['PHP_SELF'] . '/'); - } - if (getConfig('admin')!='') { - if ($_POST['password1']==getConfig('admin')) { - return adminform('admin',md5($_POST['password1']),$url); - } else return adminform(); - } else { - return output('', 302, [ 'Location' => $url ]); - } - } - if (getConfig('admin')!='') - if ( $_COOKIE['admin']==md5(getConfig('admin')) || $_POST['password1']==getConfig('admin') ) { - $_SERVER['admin']=1; - $_SERVER['needUpdate'] = needUpdate(); - } else { - $_SERVER['admin']=0; - } - if ($_GET['setup']) - if ($_SERVER['admin']) { - // setup Environments. 设置,对环境变量操作 - return EnvOpt($_SERVER['function_name'], $_SERVER['needUpdate']); - } else { - $url = path_format($_SERVER['PHP_SELF'] . '/'); - return output('', 302, [ 'Location' => $url ]); - } - - if (getConfig('admin')=='') return install(); - config_oauth(); - if ($_SERVER['admin']) if ($_GET['AddDisk']||$_GET['authorization_code']) return get_refresh_token(); - $refresh_token = getConfig('refresh_token'); - //if (!$refresh_token) return get_refresh_token(); - if (!$refresh_token) { - return render_list(); - } else { - if (!($_SERVER['access_token'] = getcache('access_token'))) { - $response = curl_request( $_SERVER['oauth_url'] . 'token', 'client_id='. $_SERVER['client_id'] .'&client_secret='. $_SERVER['client_secret'] .'&grant_type=refresh_token&requested_token_use=on_behalf_of&refresh_token=' . $refresh_token ); - if ($response['stat']==200) $ret = json_decode($response['body'], true); - if (!isset($ret['access_token'])) { - error_log($_SERVER['oauth_url'] . 'token'.'?client_id='. $_SERVER['client_id'] .'&client_secret='. $_SERVER['client_secret'] .'&grant_type=refresh_token&requested_token_use=on_behalf_of&refresh_token=' . $refresh_token); - error_log('failed to get access_token. response' . json_encode($ret)); - throw new Exception($response['stat'].', failed to get access_token.'.$response['body']); - } - error_log('Get access token:'.json_encode($ret, JSON_PRETTY_PRINT)); - $_SERVER['access_token'] = $ret['access_token']; - savecache('access_token', $_SERVER['access_token'], $ret['expires_in'] - 300); - if (time()>getConfig('token_expires')) setConfig([ 'refresh_token' => $ret['refresh_token'], 'token_expires' => time()+30*24*60*60 ]); - } - - $_SERVER['retry'] = 0; - if ($_SERVER['ajax']) { - if ($_GET['action']=='del_upload_cache'&&substr($_GET['filename'],-4)=='.tmp') { - // del '.tmp' without login. 无需登录即可删除.tmp后缀文件 - error_log('del.tmp:GET,'.json_encode($_GET,JSON_PRETTY_PRINT)); - $tmp = MSAPI('DELETE',path_format(path_format($_SERVER['list_path'] . path_format($path)) . '/' . spurlencode($_GET['filename']) ),'',$_SERVER['access_token']); - $path1 = path_format($_SERVER['list_path'] . path_format($path)); - savecache('path_' . $path1, json_decode('{}',true), 1); - return output($tmp['body'],$tmp['stat']); - } - if ($_GET['action']=='uploaded_rename') { - // rename .scfupload file without login. - // 无需登录即可重命名.scfupload后缀文件,filemd5为用户提交,可被构造,问题不大,以后处理 - $oldname = spurlencode($_GET['filename']); - $pos = strrpos($oldname, '.'); - if ($pos>0) $ext = strtolower(substr($oldname, $pos)); - $oldname = path_format(path_format($_SERVER['list_path'] . path_format($path)) . '/' . $oldname . '.scfupload' ); - $data = '{"name":"' . $_GET['filemd5'] . $ext . '"}'; - //echo $oldname .'
'. $data; - $tmp = MSAPI('PATCH',$oldname,$data,$_SERVER['access_token']); - if ($tmp['stat']==409) MSAPI('DELETE',$oldname,'',$_SERVER['access_token'])['body']; - $path1 = path_format($_SERVER['list_path'] . path_format($path)); - savecache('path_' . $path1, json_decode('{}',true), 1); - return output($tmp['body'],$tmp['stat']); - } - if ($_GET['action']=='upbigfile') return bigfileupload($path); - } - if ($_SERVER['admin']) { - $tmp = adminoperate($path); - if ($tmp['statusCode'] > 0) { - $path1 = path_format($_SERVER['list_path'] . path_format($path)); - savecache('path_' . $path1, json_decode('{}',true), 1); - return $tmp; - } - } else { - if ($_SERVER['ajax']) return output(getconstStr('RefreshtoLogin'),401); - } - $_SERVER['ishidden'] = passhidden($path); - if ($_GET['thumbnails']) { - if ($_SERVER['ishidden']<4) { - if (in_array(strtolower(substr($path, strrpos($path, '.') + 1)), $exts['img'])) { - return get_thumbnails_url($path); - } else return output(json_encode($exts['img']),400); - } else return output('',401); - } - $files = list_files($path); - if (isset($files['file']) && !$_GET['preview']) { - // is file && not preview mode - if ( $_SERVER['ishidden']<4 || (!!getConfig('downloadencrypt')&&$files['name']!=getConfig('passfile')) ) return output('', 302, [ 'Location' => $files['@microsoft.graph.downloadUrl'] ]); - } - if ( isset($files['folder']) || isset($files['file']) ) { - return render_list($path, $files); - } else { - return message(''.getconstStr('Back').getconstStr('Home').'
' . $files['error']['message'] . '
'.getconstStr('Back').'', $files['error']['code'], $files['error']['stat']); - } - } -} - -function list_files($path) -{ - $path = path_format($path); - if ($_SERVER['is_guestup_path']&&!$_SERVER['admin']) { - $files = json_decode('{"folder":{}}', true); - } elseif (!getConfig('downloadencrypt')) { - if ($_SERVER['ishidden']==4) $files = json_decode('{"folder":{}}', true); - else $files = fetch_files($path); - } else { - $files = fetch_files($path); - } - if ( isset($files['folder']) || isset($files['file']) || isset($files['error']) ) { - return $files; - } else { - error_log( json_encode($files) . ' Network Error
' ); - $_SERVER['retry']++; - if ($_SERVER['retry'] < 3) { - return list_files($path); - } else return $files; - } -} - -function adminform($name = '', $pass = '', $path = '') -{ - $statusCode = 401; - $html = ''.getconstStr('AdminLogin').''; - if ($name!=''&&$pass!='') { - $html .= ''.getconstStr('LoginSuccess').''; - $statusCode = 302; - date_default_timezone_set('UTC'); - $header = [ - 'Set-Cookie' => $name.'='.$pass.'; path=/; expires='.date(DATE_COOKIE,strtotime('+1hour')), - 'Location' => $path, - 'Content-Type' => 'text/html' - ]; - return output($html,$statusCode,$header); - } - $html .= ' - -
-

'.getconstStr('InputPassword').'

-
-
- - -
-
-
-
-'; - $html .= ''; - return output($html,$statusCode); -} - -function adminoperate($path) -{ - $path1 = path_format($_SERVER['list_path'] . path_format($path)); - if (substr($path1,-1)=='/') $path1=substr($path1,0,-1); - $tmparr['statusCode'] = 0; - if ($_GET['rename_newname']!=$_GET['rename_oldname'] && $_GET['rename_newname']!='') { - // rename 重命名 - $oldname = spurlencode($_GET['rename_oldname']); - $oldname = path_format($path1 . '/' . $oldname); - $data = '{"name":"' . $_GET['rename_newname'] . '"}'; - //echo $oldname; - $result = MSAPI('PATCH',$oldname,$data,$_SERVER['access_token']); - //savecache('path_' . $path1, json_decode('{}',true), 1); - return output($result['body'], $result['stat']); - } - if ($_GET['delete_name']!='') { - // delete 删除 - $filename = spurlencode($_GET['delete_name']); - $filename = path_format($path1 . '/' . $filename); - //echo $filename; - $result = MSAPI('DELETE', $filename, '', $_SERVER['access_token']); - //savecache('path_' . $path1, json_decode('{}',true), 1); - return output($result['body'], $result['stat']); - } - if ($_GET['operate_action']==getconstStr('encrypt')) { - // encrypt 加密 - if (getConfig('passfile')=='') return message(getconstStr('SetpassfileBfEncrypt'),'',403); - if ($_GET['encrypt_folder']=='/') $_GET['encrypt_folder']==''; - $foldername = spurlencode($_GET['encrypt_folder']); - $filename = path_format($path1 . '/' . $foldername . '/' . getConfig('passfile')); - //echo $foldername; - $result = MSAPI('PUT', $filename, $_GET['encrypt_newpass'], $_SERVER['access_token']); - $path1 = path_format($path1 . '/' . $foldername ); - savecache('path_' . $path1 . '/?password', '', 1); - return output($result['body'], $result['stat']); - } - if ($_GET['move_folder']!='') { - // move 移动 - $moveable = 1; - if ($path == '/' && $_GET['move_folder'] == '/../') $moveable=0; - if ($_GET['move_folder'] == $_GET['move_name']) $moveable=0; - if ($moveable) { - $filename = spurlencode($_GET['move_name']); - $filename = path_format($path1 . '/' . $filename); - $foldername = path_format('/'.urldecode($path1).'/'.$_GET['move_folder']); - $data = '{"parentReference":{"path": "/drive/root:'.$foldername.'"}}'; - $result = MSAPI('PATCH', $filename, $data, $_SERVER['access_token']); - //savecache('path_' . $path1, json_decode('{}',true), 1); - if ($_GET['move_folder'] == '/../') $path2 = path_format( substr($path1, 0, strrpos($path1, '/')) . '/' ); - else $path2 = path_format( $path1 . '/' . $_GET['move_folder'] . '/' ); - savecache('path_' . $path2, json_decode('{}',true), 1); - return output($result['body'], $result['stat']); - } else { - return output('{"error":"'.getconstStr('CannotMove').'"}', 403); - } - } - if ($_GET['copy_name']!='') { - // copy 复制 - $filename = spurlencode($_GET['copy_name']); - $filename = path_format($path1 . '/' . $filename); - $namearr = splitlast($_GET['copy_name'], '.'); - if ($namearr[0]!='') { - $newname = $namearr[0] . ' (' . getconstStr('Copy') . ')'; - if ($namearr[1]!='') $newname .= '.' . $namearr[1]; - } else { - $newname = '.' . $namearr[1] . ' (' . getconstStr('Copy') . ')'; - } - //$newname = spurlencode($newname); - //$foldername = path_format('/'.urldecode($path1).'/./'); - //$data = '{"parentReference":{"path": "/drive/root:'.$foldername.'"}}'; - $data = '{ "name": "' . $newname . '" }'; - $result = MSAPI('copy', $filename, $data, $_SERVER['access_token']); - $num = 0; - while ($result['stat']==409 && json_decode($result['body'], true)['error']['code']=='nameAlreadyExists') { - $num++; - if ($namearr[0]!='') { - $newname = $namearr[0] . ' (' . getconstStr('Copy') . ' ' . $num . ')'; - if ($namearr[1]!='') $newname .= '.' . $namearr[1]; - } else { - $newname = '.' . $namearr[1] . ' ('.getconstStr('Copy'). ' ' . $num .')'; - } - //$newname = spurlencode($newname); - $data = '{ "name": "' . $newname . '" }'; - $result = MSAPI('copy', $filename, $data, $_SERVER['access_token']); - } - //echo $result['stat'].$result['body']; - //savecache('path_' . $path1, json_decode('{}',true), 1); - //if ($_GET['move_folder'] == '/../') $path2 = path_format( substr($path1, 0, strrpos($path1, '/')) . '/' ); - //else $path2 = path_format( $path1 . '/' . $_GET['move_folder'] . '/' ); - //savecache('path_' . $path2, json_decode('{}',true), 1); - return output($result['body'].json_encode($result['Location']), $result['stat']); - } - if ($_POST['editfile']!='') { - // edit 编辑 - $data = $_POST['editfile']; - /*TXT一般不会超过4M,不用二段上传 - $filename = $path1 . ':/createUploadSession'; - $response=MSAPI('POST',$filename,'{"item": { "@microsoft.graph.conflictBehavior": "replace" }}',$_SERVER['access_token']); - $uploadurl=json_decode($response,true)['uploadUrl']; - echo MSAPI('PUT',$uploadurl,$data,$_SERVER['access_token']);*/ - $result = MSAPI('PUT', $path1, $data, $_SERVER['access_token'])['body']; - //echo $result; - $resultarry = json_decode($result,true); - if (isset($resultarry['error'])) return message($resultarry['error']['message']. '
'.getconstStr('Back').'','Error',403); - } - if ($_GET['create_name']!='') { - // create 新建 - if ($_GET['create_type']=='file') { - $filename = spurlencode($_GET['create_name']); - $filename = path_format($path1 . '/' . $filename); - $result = MSAPI('PUT', $filename, $_GET['create_text'], $_SERVER['access_token']); - } - if ($_GET['create_type']=='folder') { - $data = '{ "name": "' . $_GET['create_name'] . '", "folder": { }, "@microsoft.graph.conflictBehavior": "rename" }'; - $result = MSAPI('children', $path1, $data, $_SERVER['access_token']); - } - //savecache('path_' . $path1, json_decode('{}',true), 1); - return output($result['body'], $result['stat']); - } - if ($_GET['RefreshCache']) { - $path1 = path_format($_SERVER['list_path'] . path_format($path)); - savecache('path_' . $path1 . '/?password', '', 1); - return message('', getconstStr('RefreshCache'), 302); - } - return $tmparr; -} - -function splitlast($str, $split) -{ - $pos = strrpos($str, $split); - if ($pos===false) { - $tmp[0] = $str; - $tmp[1] = ''; - } elseif ($pos>0) { - $tmp[0] = substr($str, 0, $pos); - $tmp[1] = substr($str, $pos+1); - } else { - $tmp[0] = ''; - $tmp[1] = $str; - } - return $tmp; -} - -function MSAPI($method, $path, $data = '', $access_token) -{ - if (substr($path,0,7) == 'http://' or substr($path,0,8) == 'https://') { - $url=$path; - $lenth=strlen($data); - $headers['Content-Length'] = $lenth; - $lenth--; - $headers['Content-Range'] = 'bytes 0-' . $lenth . '/' . $headers['Content-Length']; - } else { - $url = $_SERVER['api_url']; - if ($path=='' or $path=='/') { - $url .= '/'; - } else { - $url .= ':' . $path; - if (substr($url,-1)=='/') $url=substr($url,0,-1); - } - if ($method=='PUT') { - if ($path=='' or $path=='/') { - $url .= 'content'; - } else { - $url .= ':/content'; - } - $headers['Content-Type'] = 'text/plain'; - } elseif ($method=='PATCH') { - $headers['Content-Type'] = 'application/json'; - } elseif ($method=='POST') { - $headers['Content-Type'] = 'application/json'; - } elseif ($method=='DELETE') { - $headers['Content-Type'] = 'application/json'; - } else { - if ($path=='' or $path=='/') { - $url .= $method; - } else { - $url .= ':/' . $method; - } - $method='POST'; - $headers['Content-Type'] = 'application/json'; - } - } - $headers['Authorization'] = 'Bearer ' . $access_token; - if (!isset($headers['Accept'])) $headers['Accept'] = '*/*'; - //if (!isset($headers['Referer'])) $headers['Referer'] = $url;* - $sendHeaders = array(); - foreach ($headers as $headerName => $headerVal) { - $sendHeaders[] = $headerName . ': ' . $headerVal; - } - $ch = curl_init(); - curl_setopt($ch, CURLOPT_URL, $url); - curl_setopt($ch, CURLOPT_CUSTOMREQUEST,$method); - curl_setopt($ch, CURLOPT_POSTFIELDS,$data); - curl_setopt($ch, CURLOPT_TIMEOUT, 5); - curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 10); - curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); - curl_setopt($ch, CURLOPT_HEADER, 0); - curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0); - curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); - //curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); - curl_setopt($ch, CURLOPT_HTTPHEADER, $sendHeaders); - $response['body'] = curl_exec($ch); - $response['stat'] = curl_getinfo($ch,CURLINFO_HTTP_CODE); - //$response['Location'] = curl_getinfo($ch); - curl_close($ch); - error_log($response['stat'].' -'.$response['body'].' -'); - return $response; -} - -function fetch_files($path = '/') -{ - $path1 = path_format($path); - $path = path_format($_SERVER['list_path'] . path_format($path)); - if (!($files = getcache('path_' . $path))) { - // https://docs.microsoft.com/en-us/graph/api/driveitem-get?view=graph-rest-1.0 - // https://docs.microsoft.com/zh-cn/graph/api/driveitem-put-content?view=graph-rest-1.0&tabs=http - // https://developer.microsoft.com/zh-cn/graph/graph-explorer - $pos = strrpos($path, '/'); - if ($pos>1) { - $parentpath = substr($path, 0, $pos); - $filename = substr($path, $pos+1); - if ($parentfiles = getcache('path_' . $parentpath)) - foreach ($parentfiles['children'] as $file) - if ($file['name']==$filename) - if (isset($file['@microsoft.graph.downloadUrl'])) - return $file; - } - $url = $_SERVER['api_url']; - if ($path !== '/') { - $url .= ':' . $path; - if (substr($url,-1)=='/') $url=substr($url,0,-1); - } - $url .= '?expand=children(select=name,size,file,folder,parentReference,lastModifiedDateTime,@microsoft.graph.downloadUrl)'; - $arr = curl_request($url, false, ['Authorization' => 'Bearer ' . $_SERVER['access_token']]); - if ($arr['stat']<500) { - $files = json_decode($arr['body'], true); - // echo $path . '
' . json_encode($files, JSON_PRETTY_PRINT) . '
'; - if (isset($files['folder'])) { - if ($files['folder']['childCount']>200) { - // files num > 200 , then get nextlink - $page = $_POST['pagenum']==''?1:$_POST['pagenum']; - $files=fetch_files_children($files, $path1, $page); - } else { - // files num < 200 , then cache - savecache('path_' . $path, $files); - } - } - if (isset($files['error'])) { - $files['error']['stat'] = $arr['stat']; - } - } else { - error_log($arr['body']); - $files = json_decode( '{"unknownError":{ "stat":'.$arr['stat'].',"message":"'.$arr['body'].'"}}', true); - } - } - return $files; -} - -function fetch_files_children($files, $path, $page) -{ - $path1 = path_format($path); - $path = path_format($_SERVER['list_path'] . path_format($path)); - $cachefilename = '.SCFcache_'.$_SERVER['function_name']; - $maxpage = ceil($files['folder']['childCount']/200); - if (!($files['children'] = getcache('files_' . $path . '_page_' . $page))) { - // down cache file get jump info. 下载cache文件获取跳页链接 - $cachefile = fetch_files(path_format($path1 . '/' .$cachefilename)); - if ($cachefile['size']>0) { - $pageinfo = curl_request($cachefile['@microsoft.graph.downloadUrl'])['body']; - $pageinfo = json_decode($pageinfo,true); - for ($page4=1;$page4<$maxpage;$page4++) { - savecache('nextlink_' . $path . '_page_' . $page4, $pageinfo['nextlink_' . $path . '_page_' . $page4]); - $pageinfocache['nextlink_' . $path . '_page_' . $page4] = $pageinfo['nextlink_' . $path . '_page_' . $page4]; - } - } - $pageinfochange=0; - for ($page1=$page;$page1>=1;$page1--) { - $page3=$page1-1; - $url = getcache('nextlink_' . $path . '_page_' . $page3); - if ($url == '') { - if ($page1==1) { - $url = $_SERVER['api_url']; - if ($path !== '/') { - $url .= ':' . $path; - if (substr($url,-1)=='/') $url=substr($url,0,-1); - $url .= ':/children?$select=name,size,file,folder,parentReference,lastModifiedDateTime'; - } else { - $url .= '/children?$select=name,size,file,folder,parentReference,lastModifiedDateTime'; - } - $children = json_decode(curl_request($url, false, ['Authorization' => 'Bearer ' . $_SERVER['access_token']])['body'], true); - // echo $url . '
' . json_encode($children, JSON_PRETTY_PRINT) . '
'; - savecache('files_' . $path . '_page_' . $page1, $children['value']); - $nextlink=getcache('nextlink_' . $path . '_page_' . $page1); - if ($nextlink!=$children['@odata.nextLink']) { - savecache('nextlink_' . $path . '_page_' . $page1, $children['@odata.nextLink']); - $pageinfocache['nextlink_' . $path . '_page_' . $page1] = $children['@odata.nextLink']; - $pageinfocache = clearbehindvalue($path,$page1,$maxpage,$pageinfocache); - $pageinfochange = 1; - } - $url = $children['@odata.nextLink']; - for ($page2=$page1+1;$page2<=$page;$page2++) { - sleep(1); - $children = json_decode(curl_request($url, false, ['Authorization' => 'Bearer ' . $_SERVER['access_token']])['body'], true); - savecache('files_' . $path . '_page_' . $page2, $children['value']); - $nextlink=getcache('nextlink_' . $path . '_page_' . $page2); - if ($nextlink!=$children['@odata.nextLink']) { - savecache('nextlink_' . $path . '_page_' . $page2, $children['@odata.nextLink']); - $pageinfocache['nextlink_' . $path . '_page_' . $page2] = $children['@odata.nextLink']; - $pageinfocache = clearbehindvalue($path,$page2,$maxpage,$pageinfocache); - $pageinfochange = 1; - } - $url = $children['@odata.nextLink']; - } - //echo $url . '
' . json_encode($children, JSON_PRETTY_PRINT) . '
'; - $files['children'] = $children['value']; - $files['folder']['page']=$page; - $pageinfocache['filenum'] = $files['folder']['childCount']; - $pageinfocache['dirsize'] = $files['size']; - $pageinfocache['cachesize'] = $cachefile['size']; - $pageinfocache['size'] = $files['size']-$cachefile['size']; - if ($pageinfochange == 1) MSAPI('PUT', path_format($path.'/'.$cachefilename), json_encode($pageinfocache, JSON_PRETTY_PRINT), $_SERVER['access_token'])['body']; - return $files; - } - } else { - for ($page2=$page3+1;$page2<=$page;$page2++) { - sleep(1); - $children = json_decode(curl_request($url, false, ['Authorization' => 'Bearer ' . $_SERVER['access_token']])['body'], true); - savecache('files_' . $path . '_page_' . $page2, $children['value'], 3300); - $nextlink=getcache('nextlink_' . $path . '_page_' . $page2); - if ($nextlink!=$children['@odata.nextLink']) { - savecache('nextlink_' . $path . '_page_' . $page2, $children['@odata.nextLink'], 3300); - $pageinfocache['nextlink_' . $path . '_page_' . $page2] = $children['@odata.nextLink']; - $pageinfocache = clearbehindvalue($path,$page2,$maxpage,$pageinfocache); - $pageinfochange = 1; - } - $url = $children['@odata.nextLink']; - } - //echo $url . '
' . json_encode($children, JSON_PRETTY_PRINT) . '
'; - $files['children'] = $children['value']; - $files['folder']['page']=$page; - $pageinfocache['filenum'] = $files['folder']['childCount']; - $pageinfocache['dirsize'] = $files['size']; - $pageinfocache['cachesize'] = $cachefile['size']; - $pageinfocache['size'] = $files['size']-$cachefile['size']; - if ($pageinfochange == 1) MSAPI('PUT', path_format($path.'/'.$cachefilename), json_encode($pageinfocache, JSON_PRETTY_PRINT), $_SERVER['access_token'])['body']; - return $files; - } - } - } else { - $files['folder']['page']=$page; - for ($page4=1;$page4<=$maxpage;$page4++) { - if (!($url = getcache('nextlink_' . $path . '_page_' . $page4))) { - if ($files['folder'][$path.'_'.$page4]!='') savecache('nextlink_' . $path . '_page_' . $page4, $files['folder'][$path.'_'.$page4]); - } else { - $files['folder'][$path.'_'.$page4] = $url; - } - } - } - return $files; -} - -function render_list($path = '', $files = '') -{ - global $exts; - global $constStr; - - $path = str_replace('%20','%2520',$path); - $path = str_replace('+','%2B',$path); - $path = str_replace('&','&',path_format(urldecode($path))) ; - $path = str_replace('%20',' ',$path); - $path = str_replace('#','%23',$path); - $p_path=''; - if ($path !== '/') { - if (isset($files['file'])) { - $pretitle = str_replace('&','&', $files['name']); - $n_path=$pretitle; - } else { - $pretitle = substr($path,-1)=='/'?substr($path,0,-1):$path; - $n_path=substr($pretitle,strrpos($pretitle,'/')+1); - $pretitle = substr($pretitle,1); - } - if (strrpos($path,'/')!=0) { - $p_path=substr($path,0,strrpos($path,'/')); - $p_path=substr($p_path,strrpos($p_path,'/')+1); - } - } else { - $pretitle = getconstStr('Home'); - $n_path=$pretitle; - } - $n_path=str_replace('&','&',$n_path); - $p_path=str_replace('&','&',$p_path); - $pretitle = str_replace('%23','#',$pretitle); - $statusCode=200; - date_default_timezone_set(get_timezone($_COOKIE['timezone'])); - @ob_start(); - - $theme = getConfig('theme'); - if ( $theme=='' || !file_exists('theme/'.$theme) ) $theme = 'classic.php'; - $htmlpage = include 'theme/'.$theme; - - $html = '' . ob_get_clean(); - if (isset($htmlpage['statusCode'])) return $htmlpage; - if ($_SERVER['Set-Cookie']!='') return output($html, $statusCode, [ 'Set-Cookie' => $_SERVER['Set-Cookie'], 'Content-Type' => 'text/html' ]); - return output($html,$statusCode); -}