function strcmpin($str1, $str2) { $str1 = strtolower($str1); $str2 = strtolower($str2); return strcmp($str1,$str2); } if (!isset($path)) { $path = "../../pds/"; } if (!isset($alert)) $alert = 0; $conn = mysql_pconnect("localhost", "itscluster","ahnsomin"); $tmp = mysql_select_db("itscluster"); if (!strcmp($submit,"upload file")) { $filesize = $_FILES['userfile']['size']; if ($userfile && $filesize) { // ¾÷·Îµå Æú´õ´Â Çϳª·Î Á¤ÇØÁ® ÀÖ¾î¾ß¸¸ ÇÑ´Ù. (½ºÆå¿ä±¸»çÇ×) // $uploaddir = $path; $uploaddir = "../../pds/"; $uploadfile = $uploaddir.$_FILES['userfile']['name']; $upname = $_FILES['userfile']['name']; // ¾÷·ÎµåÇÏ·Á´Â ÆÄÀÏÀ̸§°ú °°Àº Æú´õ°¡ Á¸ÀçÇÏ´ÂÁö È®ÀÎÇÏ´Â ·çƾ $query = "select * from folder where upper = '$path'"; $result = mysql_query($query); while($row = mysql_fetch_object($result)) { if (!strcmpin($row->lower,$uploadfile."/")) { $alert = 10; } } if ($alert != 10) { // ¾÷·ÎµåÇÏ°íÀÚ ÇÏ´Â ÆÄÀÏÀÌ µ¿ÀÏ Æú´õ¿¡ ÀÌ¹Ì Á¸ÀçÇÏ¸é ¾÷·Îµå¸¦ Ãë¼ÒÇÑ´Ù. $query = "select * from file where filename='$upname' and folder = '$path'"; $result = mysql_query($query); $num = mysql_num_rows($result); // µ¿ÀÏ ÆÄÀÏÀÌ Á¸ÀçÇÏÁö ¾ÊÀ» °æ¿ì¸¸ ÀÛ¾÷À» ¼öÇàÇÑ´Ù if (!$num) { $filename = $_FILES['userfile']['name']; $filesize = $_FILES['userfile']['size']; if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadfile)) { // print "
upload is successfuly finished"; $query = "insert into file (filename, size, folder) values ('$filename', '$filesize','$path')"; mysql_query($query); // ¾÷·ÎµåµÈ ÆÄÀÏÀÇ °íÀ¯ ID¸¦ ¹Þ´Â´Ù. $query = "select * from file where filename = '$filename' and folder = '$path'"; $result = mysql_query($query); $row = mysql_fetch_object($result); rename("../../pds/".$filename,"../../pds/".$row->id."_".$filename); } else { // print "
Error. upload fail"; $alert = 1; } } else { // echo "same file already exist"; $alert = 6; } } } else { $alert = 7; } } else if (!strcmp($submit, "create folder")) { if ($foldername) { // »ý¼ºÇÏ·Á´Â Æú´õÀ̸§°ú °°Àº ÆÄÀÏÀÌ Á¸ÀçÇÏ´ÂÁö È®ÀÎÇÏ´Â ·çƾ $query = "select * from file where folder = '$path'"; $result = mysql_query($query); while($row = mysql_fetch_object($result)) { if (!strcmpin($row->filename,$foldername)) { $alert = 9; } } if ($alert != 9) { $query = "select * from folder where upper = '$path'"; $result = mysql_query($query); while ($row = mysql_fetch_object($result)) { if (!strcmpin($row->lower, $path.$foldername."/")) { $count++; } } if ($count == 0) { $query = "insert into folder (upper,lower,foldername) values ('$path', '$path$foldername/', '$foldername')"; mysql_query($query); } else { // echo "Error. duplicated folder name. try again
"; $alert = 2; } } } else { $alert = 8; } } else if (!strcmp($submit, "remove folder")) { // echo $delfoldername."
"; // echo "remove folder is executed
";
$check = 0; // »èÁ¦°¡´ÉÇÑÁö¸¦ È®ÀÎÇϱâÀ§ÇÑ º¯¼ö
// ¼ºê µð·ºÅ丮°¡ ÀÖ³ª È®ÀÎ
$query = "select * from folder where upper = '$delfoldername'";
$result = mysql_query($query);
$num = mysql_num_rows($result);
// ¼ºêµð·ºÅ丮°¡ Á¸ÀçÇÒ °æ¿ì
if ($num)
{
// echo "Error. sub directory already exists
";
$check = 1;
$alert = 3;
}
// µð·ºÅ丮³»¿¡ ÆÄÀÏÀÌ ÀÖ³ª È®ÀÎ
$query = "select * from file where folder = '$delfoldername'";
$result = mysql_query($query);
$num = mysql_num_rows($result);
// µð·ºÅ丮³»¿¡ ÆÄÀÏÀÌ ÀÖÀ» °æ¿ì
if ($num)
{
// echo "Error. files exist in current directory";
$check = 1;
$alert = 4;
}
if (!$check)
{
$query = "delete from folder where lower = '$delfoldername'";
mysql_query($query);
}
}
else if (!strcmp($submit, " delete file "))
{
// »èÁ¦Çϱâ À§ÇØ ÆÄÀÏ °íÀ¯ ID¸¦ Æ÷ÇÔÇÑ ÆÄÀϸíÀ» ¸¸µé¾î ÁÖ´Â ·çƾ
$query = "select * from file where filename = '".$delfilename."' and folder = '$path'";
$result = mysql_query($query);
$row = mysql_fetch_object($result);
$name = "../../pds/".$row->id."_".$delfilename;
if(!unlink($name))
{
// echo "Error. deletion fail";
$alert = 5;
}
else
{
// echo "deletoin is successfuly finished";
}
//µ¥ÀÌÅͺ£À̽º¿¡¼ ÆÄÀÏ Á¤º¸ Á¦°Å
$query = "delete from file where filename = '".$delfilename."' and folder = '$path'";
mysql_query($query);
}
?>
|
||||
|
||||