Вход Регистрация
Файл: upload-2031-rs1/admin/controller/extension/installer.php
Строк: 726
<?php
class ControllerExtensionInstaller extends Controller {
    private 
$error = array();

    public function 
index() {
        
$this->load->language('extension/installer');

        
$this->document->setTitle($this->language->get('heading_title'));

        
$data['heading_title'] = $this->language->get('heading_title');

        
$data['text_loading'] = $this->language->get('text_loading');

        
$data['entry_upload'] = $this->language->get('entry_upload');
        
$data['entry_overwrite'] = $this->language->get('entry_overwrite');
        
$data['entry_progress'] = $this->language->get('entry_progress');

        
$data['help_upload'] = $this->language->get('help_upload');

        
$data['button_upload'] = $this->language->get('button_upload');
        
$data['button_clear'] = $this->language->get('button_clear');
        
$data['button_continue'] = $this->language->get('button_continue');

        
$data['breadcrumbs'] = array();

        
$data['breadcrumbs'][] = array(
            
'text' => $this->language->get('text_home'),
            
'href' => $this->url->link('common/dashboard''token=' $this->session->data['token'], 'SSL')
        );

        
$data['breadcrumbs'][] = array(
            
'text' => $this->language->get('heading_title'),
            
'href' => $this->url->link('extension/installer''token=' $this->session->data['token'], 'SSL')
        );

        
$data['token'] = $this->session->data['token'];

        
$directories glob(DIR_UPLOAD 'temp-*'GLOB_ONLYDIR);

        if (
$directories) {
            
$data['error_warning'] = $this->language->get('error_temporary');
        } else {
            
$data['error_warning'] = '';
        }

        
$data['header'] = $this->load->controller('common/header');
        
$data['column_left'] = $this->load->controller('common/column_left');
        
$data['footer'] = $this->load->controller('common/footer');

        
$this->response->setOutput($this->load->view('extension/installer.tpl'$data));
    }

    public function 
upload() {
        
$this->load->language('extension/installer');

        
$json = array();

        
// Check user has permission
        
if (!$this->user->hasPermission('modify''extension/installer')) {
            
$json['error'] = $this->language->get('error_permission');
        }

        if (!
$json) {
            if (!empty(
$this->request->files['file']['name'])) {
                if (
substr($this->request->files['file']['name'], -10) != '.ocmod.zip' && substr($this->request->files['file']['name'], -10) != '.ocmod.xml') {
                    
$json['error'] = $this->language->get('error_filetype');
                }

                if (
$this->request->files['file']['error'] != UPLOAD_ERR_OK) {
                    
$json['error'] = $this->language->get('error_upload_' $this->request->files['file']['error']);
                }
            } else {
                
$json['error'] = $this->language->get('error_upload');
            }
        }

        if (!
$json) {
            
// If no temp directory exists create it
            
$path 'temp-' md5(mt_rand());

            if (!
is_dir(DIR_UPLOAD $path)) {
                
mkdir(DIR_UPLOAD $path0777);
            }

            
// Set the steps required for installation
            
$json['step'] = array();
            
$json['overwrite'] = array();

            if (
strrchr($this->request->files['file']['name'], '.') == '.xml') {
                
$file DIR_UPLOAD $path '/install.xml';

                
// If xml file copy it to the temporary directory
                
move_uploaded_file($this->request->files['file']['tmp_name'], $file);

                if (
file_exists($file)) {
                    
$json['step'][] = array(
                        
'text' => $this->language->get('text_xml'),
                        
'url'  => str_replace('&amp;''&'$this->url->link('extension/installer/xml''token=' $this->session->data['token'], 'SSL')),
                        
'path' => $path
                    
);

                    
// Clear temporary files
                    
$json['step'][] = array(
                        
'text' => $this->language->get('text_remove'),
                        
'url'  => str_replace('&amp;''&'$this->url->link('extension/installer/remove''token=' $this->session->data['token'], 'SSL')),
                        
'path' => $path
                    
);
                } else {
                    
$json['error'] = $this->language->get('error_file');
                }
            }

            
// If zip file copy it to the temp directory
            
if (strrchr($this->request->files['file']['name'], '.') == '.zip') {
                
$file DIR_UPLOAD $path '/upload.zip';

                
move_uploaded_file($this->request->files['file']['tmp_name'], $file);

                if (
file_exists($file)) {
                    
$zip zip_open($file);

                    if (
$zip) {
                        
// Zip
                        
$json['step'][] = array(
                            
'text' => $this->language->get('text_unzip'),
                            
'url'  => str_replace('&amp;''&'$this->url->link('extension/installer/unzip''token=' $this->session->data['token'], 'SSL')),
                            
'path' => $path
                        
);

                        
// FTP
                        
$json['step'][] = array(
                            
'text' => $this->language->get('text_ftp'),
                            
'url'  => str_replace('&amp;''&'$this->url->link('extension/installer/ftp''token=' $this->session->data['token'], 'SSL')),
                            
'path' => $path
                        
);

                        
// Send make and array of actions to carry out
                        
while ($entry zip_read($zip)) {
                            
$zip_name zip_entry_name($entry);

                            
// SQL
                            
if (substr($zip_name011) == 'install.sql') {
                                
$json['step'][] = array(
                                    
'text' => $this->language->get('text_sql'),
                                    
'url'  => str_replace('&amp;''&'$this->url->link('extension/installer/sql''token=' $this->session->data['token'], 'SSL')),
                                    
'path' => $path
                                
);
                            }

                            
// XML
                            
if (substr($zip_name011) == 'install.xml') {
                                
$json['step'][] = array(
                                    
'text' => $this->language->get('text_xml'),
                                    
'url'  => str_replace('&amp;''&'$this->url->link('extension/installer/xml''token=' $this->session->data['token'], 'SSL')),
                                    
'path' => $path
                                
);
                            }

                            
// PHP
                            
if (substr($zip_name011) == 'install.php') {
                                
$json['step'][] = array(
                                    
'text' => $this->language->get('text_php'),
                                    
'url'  => str_replace('&amp;''&'$this->url->link('extension/installer/php''token=' $this->session->data['token'], 'SSL')),
                                    
'path' => $path
                                
);
                            }

                            
// Compare admin files
                            
$file DIR_APPLICATION substr($zip_name13);

                            if (
is_file($file) && substr($zip_name013) == 'upload/admin/') {
                                
$json['overwrite'][] = substr($zip_name7);
                            }

                            
// Compare catalog files
                            
$file DIR_CATALOG substr($zip_name15);

                            if (
is_file($file) && substr($zip_name015) == 'upload/catalog/') {
                                
$json['overwrite'][] = substr($zip_name7);
                            }

                            
// Compare image files
                            
$file DIR_IMAGE substr($zip_name13);

                            if (
is_file($file) && substr($zip_name013) == 'upload/image/') {
                                
$json['overwrite'][] = substr($zip_name7);
                            }

                            
// Compare system files
                            
$file DIR_SYSTEM substr($zip_name14);

                            if (
is_file($file) && substr($zip_name014) == 'upload/system/') {
                                
$json['overwrite'][] = substr($zip_name7);
                            }
                        }

                        
// Clear temporary files
                        
$json['step'][] = array(
                            
'text' => $this->language->get('text_remove'),
                            
'url'  => str_replace('&amp;''&'$this->url->link('extension/installer/remove''token=' $this->session->data['token'], 'SSL')),
                            
'path' => $path
                        
);

                        
zip_close($zip);
                    } else {
                        
$json['error'] = $this->language->get('error_unzip');
                    }
                } else {
                    
$json['error'] = $this->language->get('error_file');
                }
            }
        }

        
$this->response->addHeader('Content-Type: application/json');
        
$this->response->setOutput(json_encode($json));
    }

    public function 
unzip() {
        
$this->load->language('extension/installer');

        
$json = array();

        if (!
$this->user->hasPermission('modify''extension/installer')) {
            
$json['error'] = $this->language->get('error_permission');
        }

        
// Sanitize the filename
        
$file DIR_UPLOAD str_replace(array('../''..\', '..'), '', $this->request->post['path']) . '/upload.zip';

        if (!file_exists($file)) {
            $json['
error'] = $this->language->get('error_file');
        }

        if (!$json) {
            // Unzip the files
            $zip = new ZipArchive();

            if ($zip->open($file)) {
                $zip->extractTo(DIR_UPLOAD . str_replace(array('
../', '..\', '..'), '', $this->request->post['path']));
                $zip->close();
            } else {
                $json['
error'] = $this->language->get('error_unzip');
            }

            // Remove Zip
            unlink($file);
        }

        $this->response->addHeader('
Content-Typeapplication/json');
        $this->response->setOutput(json_encode($json));
    }

    public function ftp() {
        $this->load->language('
extension/installer');

        $json = array();

        if (!$this->user->hasPermission('
modify', 'extension/installer')) {
            $json['
error'] = $this->language->get('error_permission');
        }

        // Check FTP status
        if (!$this->config->get('
config_ftp_status')) {
            $json['
error'] = $this->language->get('error_ftp_status');
        }

        $directory = DIR_UPLOAD . str_replace(array('
../', '..\', '..'), '', $this->request->post['path']) . '/upload/';

        if (!is_dir($directory)) {
            $json['
error'] = $this->language->get('error_directory');
        }

        if (!$json) {
            // Get a list of files ready to upload
            $files = array();

            $path = array($directory . '
*');

            while (count($path) != 0) {
                $next = array_shift($path);

                foreach ((array)glob($next) as $file) {
                    if (is_dir($file)) {
                        $path[] = $file . '
/*';
                    }

                    $files[] = $file;
                }
            }

            // Connect to the site via FTP
            $connection = ftp_connect($this->config->get('config_ftp_hostname'), $this->config->get('config_ftp_port'));

            if ($connection) {
                $login = ftp_login($connection, $this->config->get('config_ftp_username'), $this->config->get('config_ftp_password'));

                if ($login) {
                    if ($this->config->get('config_ftp_root')) {
                        $root = ftp_chdir($connection, $this->config->get('config_ftp_root'));
                    } else {
                        $root = ftp_chdir($connection, '/');
                    }

                    if ($root) {
                        foreach ($files as $file) {
                            $destination = substr($file, strlen($directory));

                            // Upload everything in the upload directory
                            // Many people rename their admin folder for security purposes which I believe should be an option during installation just like setting the db prefix.
                            // the following code would allow you to change the name of the following directories and any extensions installed will still go to the right directory.
                            if (substr($destination, 0, 5) == 'admin') {
                                $destination = basename(DIR_APPLICATION) . substr($destination, 5);
                            }

                            if (substr($destination, 0, 7) == 'catalog') {
                                $destination = basename(DIR_CATALOG) . substr($destination, 7);
                            }

                            if (substr($destination, 0, 5) == 'image') {
                                $destination = basename(DIR_IMAGE) . substr($destination, 5);
                            }

                            if (substr($destination, 0, 6) == 'system') {
                                $destination = basename(DIR_SYSTEM) . substr($destination, 6);
                            }

                            if (is_dir($file)) {
                                $list = ftp_nlist($connection, substr($destination, 0, strrpos($destination, '/')));

                                // Basename all the directories because on some servers they don't return the fulll paths.
                                $list_data = array();

                                foreach ($list as $list) {
                                    $list_data[] = basename($list);
                                }

                                if (!in_array(basename($destination), $list_data)) {
                                    if (!ftp_mkdir($connection, $destination)) {
                                        $json['error'] = sprintf($this->language->get('error_ftp_directory'), $destination);
                                    }
                                }
                            }

                            if (is_file($file)) {
                                if (!ftp_put($connection, $destination, $file, FTP_BINARY)) {
                                    $json['error'] = sprintf($this->language->get('error_ftp_file'), $file);
                                }
                            }
                        }
                    } else {
                        $json['error'] = sprintf($this->language->get('error_ftp_root'), $root);
                    }
                } else {
                    $json['error'] = sprintf($this->language->get('error_ftp_login'), $this->config->get('config_ftp_username'));
                }

                ftp_close($connection);
            } else {
                $json['error'] = sprintf($this->language->get('error_ftp_connection'), $this->config->get('config_ftp_hostname'), $this->config->get('config_ftp_port'));
            }
        }

        $this->response->addHeader('Content-Type: application/json');
        $this->response->setOutput(json_encode($json));
    }

    public function sql() {
        $this->load->language('extension/installer');

        $json = array();

        if (!$this->user->hasPermission('modify', 'extension/installer')) {
            $json['error'] = $this->language->get('error_permission');
        }

        $file = DIR_UPLOAD . str_replace(array('../', '..\', '..'), '', $this->request->post['path']) . '/install.sql';

        if (!file_exists($file)) {
            $json['error'] = $this->language->get('error_file');
        }

        if (!$json) {
            $lines = file($file);

            if ($lines) {
                try {
                    $sql = '';

                    foreach ($lines as $line) {
                        if ($line && (substr($line, 0, 2) != '--') && (substr($line, 0, 1) != '#')) {
                            $sql .= $line;

                            if (preg_match('/;s*$/', $line)) {
                                $sql = str_replace(" `oc_", " `" . DB_PREFIX, $sql);

                                $this->db->query($sql);

                                $sql = '';
                            }
                        }
                    }
                } catch(Exception $exception) {
                    $json['error'] = sprintf($this->language->get('error_exception'), $exception->getCode(), $exception->getMessage(), $exception->getFile(), $exception->getLine());
                }
            }
        }

        $this->response->addHeader('Content-Type: application/json');
        $this->response->setOutput(json_encode($json));
    }

    public function xml() {
        $this->load->language('extension/installer');

        $json = array();

        if (!$this->user->hasPermission('modify', 'extension/installer')) {
            $json['error'] = $this->language->get('error_permission');
        }

        $file = DIR_UPLOAD . str_replace(array('../', '..\', '..'), '', $this->request->post['path']) . '/install.xml';

        if (!file_exists($file)) {
            $json['error'] = $this->language->get('error_file');
        }

        if (!$json) {
            $this->load->model('extension/modification');

            // If xml file just put it straight into the DB
            $xml = file_get_contents($file);

            if ($xml) {
                try {
                    $dom = new DOMDocument('1.0', 'UTF-8');
                    $dom->loadXml($xml);

                    $name = $dom->getElementsByTagName('name')->item(0);

                    if ($name) {
                        $name = $name->nodeValue;
                    } else {
                        $name = '';
                    }

                    $code = $dom->getElementsByTagName('code')->item(0);

                    if ($code) {
                        $code = $code->nodeValue;

                        // Check to see if the modification is already installed or not.
                        $modification_info = $this->model_extension_modification->getModificationByCode($code);

                        if ($modification_info) {
                            $json['error'] = sprintf($this->language->get('error_exists'), $modification_info['name']);
                        }
                    } else {
                        $json['error'] = $this->language->get('error_code');
                    }

                    $author = $dom->getElementsByTagName('author')->item(0);

                    if ($author) {
                        $author = $author->nodeValue;
                    } else {
                        $author = '';
                    }

                    $version = $dom->getElementsByTagName('version')->item(0);

                    if ($version) {
                        $version = $version->nodeValue;
                    } else {
                        $version = '';
                    }

                    $link = $dom->getElementsByTagName('link')->item(0);

                    if ($link) {
                        $link = $link->nodeValue;
                    } else {
                        $link = '';
                    }

                    $modification_data = array(
                        'name'    => $name,
                        'code'    => $code,
                        'author'  => $author,
                        'version' => $version,
                        'link'    => $link,
                        'xml'     => $xml,
                        'status'  => 1
                    );

                    if (!$json) {
                        $this->model_extension_modification->addModification($modification_data);
                    }
                } catch(Exception $exception) {
                    $json['error'] = sprintf($this->language->get('error_exception'), $exception->getCode(), $exception->getMessage(), $exception->getFile(), $exception->getLine());
                }
            }
        }

        $this->response->addHeader('Content-Type: application/json');
        $this->response->setOutput(json_encode($json));
    }

    public function php() {
        $this->load->language('extension/installer');

        $json = array();

        if (!$this->user->hasPermission('modify', 'extension/installer')) {
            $json['error'] = $this->language->get('error_permission');
        }

        $file = DIR_UPLOAD . str_replace(array('../', '..\', '..'), '', $this->request->post['path']) . '/install.php';

        if (!file_exists($file)) {
            $json['error'] = $this->language->get('error_file');
        }

        if (!$json) {
            try {
                include($file);
            } catch(Exception $exception) {
                $json['error'] = sprintf($this->language->get('error_exception'), $exception->getCode(), $exception->getMessage(), $exception->getFile(), $exception->getLine());
            }
        }

        $this->response->addHeader('Content-Type: application/json');
        $this->response->setOutput(json_encode($json));
    }

    public function remove() {
        $this->load->language('extension/installer');

        $json = array();

        if (!$this->user->hasPermission('modify', 'extension/installer')) {
            $json['error'] = $this->language->get('error_permission');
        }

        $directory = DIR_UPLOAD . str_replace(array('../', '..\', '..'), '', $this->request->post['path']);

        if (!is_dir($directory)) {
            $json['error'] = $this->language->get('error_directory');
        }

        if (!$json) {
            // Get a list of files ready to upload
            $files = array();

            $path = array($directory);

            while (count($path) != 0) {
                $next = array_shift($path);

                // We have to use scandir function because glob will not pick up dot files.
                foreach (array_diff(scandir($next), array('.', '..')) as $file) {
                    $file = $next . '/' . $file;

                    if (is_dir($file)) {
                        $path[] = $file;
                    }

                    $files[] = $file;
                }
            }

            rsort($files);

            foreach ($files as $file) {
                if (is_file($file)) {
                    unlink($file);
                } elseif (is_dir($file)) {
                    rmdir($file);
                }
            }

            if (file_exists($directory)) {
                rmdir($directory);
            }

            $json['success'] = $this->language->get('text_success');
        }

        $this->response->addHeader('Content-Type: application/json');
        $this->response->setOutput(json_encode($json));
    }

    public function clear() {
        $this->load->language('extension/installer');

        $json = array();

        if (!$this->user->hasPermission('modify', 'extension/installer')) {
            $json['error'] = $this->language->get('error_permission');
        }

        if (!$json) {
            $directories = glob(DIR_UPLOAD . 'temp-*', GLOB_ONLYDIR);

            foreach ($directories as $directory) {
                // Get a list of files ready to upload
                $files = array();

                $path = array($directory);

                while (count($path) != 0) {
                    $next = array_shift($path);

                    // We have to use scandir function because glob will not pick up dot files.
                    foreach (array_diff(scandir($next), array('.', '..')) as $file) {
                        $file = $next . '/' . $file;

                        if (is_dir($file)) {
                            $path[] = $file;
                        }

                        $files[] = $file;
                    }
                }

                rsort($files);

                foreach ($files as $file) {
                    if (is_file($file)) {
                        unlink($file);
                    } elseif (is_dir($file)) {
                        rmdir($file);
                    }
                }

                if (file_exists($directory)) {
                    rmdir($directory);
                }
            }

            $json['success'] = $this->language->get('text_clear');
        }

        $this->response->addHeader('Content-Type: application/json');
        $this->response->setOutput(json_encode($json));
    }
}
Онлайн: 2
Реклама