AS1024
/
itflow
mirror of https://github.com/itflow-org/itflow
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #252 from wrongecho/files 

File uploads
This commit is contained in:
Johnny 2022-01-07 14:39:41 -05:00 committed by GitHub
parent 8118b5fc0c d0483f2472
commit 00a7fdb6f7
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
post.php
View File

@ -1015,6 +1015,7 @@ if(isset($_POST['add_client'])){
if(!file_exists("uploads/clients/$session_company_id/$client_id")) { if(!file_exists("uploads/clients/$session_company_id/$client_id")) {
mkdir("uploads/clients/$session_company_id/$client_id"); mkdir("uploads/clients/$session_company_id/$client_id");
file_put_contents("uploads/clients/$session_company_id/$client_id/index.php", "");
} }
//Add Location //Add Location
@ -5027,7 +5028,7 @@ if(isset($_POST['add_file'])){
$file_reference_name = md5(time() . $file_name) . '.' . $file_extension; $file_reference_name = md5(time() . $file_name) . '.' . $file_extension;
// check if file has one of the following extensions // check if file has one of the following extensions
$allowed_file_extensions = array('jpg', 'gif', 'png', 'pdf', 'txt', 'doc', 'docx', 'xls', 'xlsx', 'zip', 'tar', 'gz'); $allowed_file_extensions = array('jpg', 'gif', 'png', 'pdf', 'txt', 'doc', 'docx', 'csv', 'xls', 'xlsx', 'zip', 'tar', 'gz');
if(in_array($file_extension,$allowed_file_extensions) === false){ if(in_array($file_extension,$allowed_file_extensions) === false){
$file_error = 1; $file_error = 1;

4
setup.php
View File

@ -482,9 +482,13 @@ if(isset($_POST['add_company_settings'])){
$config_aes_key = keygen(); $config_aes_key = keygen();
mkdir_missing("uploads/clients/$company_id"); mkdir_missing("uploads/clients/$company_id");
file_put_contents("uploads/clients/$company_id/index.php", "");
mkdir_missing("uploads/expenses/$company_id"); mkdir_missing("uploads/expenses/$company_id");
file_put_contents("uploads/expenses/$company_id/index.php", "");
mkdir_missing("uploads/settings/$company_id"); mkdir_missing("uploads/settings/$company_id");
file_put_contents("uploads/settings/$company_id/index.php", "");
mkdir_missing("uploads/tmp/$company_id"); mkdir_missing("uploads/tmp/$company_id");
file_put_contents("uploads/tmp/$company_id/index.php", "");
//Check to see if a file is attached //Check to see if a file is attached
if($_FILES['file']['tmp_name'] != ''){ if($_FILES['file']['tmp_name'] != ''){