git.shiar.nl
/
minimedit.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
page: wrap menu in header container
[minimedit.git]
/
edit.php
diff --git
a/edit.php
b/edit.php
index 9532e423e202291aa469397567f4a3246b90cc05..fe80528a7d1c83faca00ef8e751cf5e271baae72 100755
(executable)
--- a/
edit.php
+++ b/
edit.php
@@
-6,7
+6,7
@@
function abort($status, $body) {
}
require 'auth.inc.php';
}
require 'auth.inc.php';
-if (!$
editable
)
+if (!$
Admin
)
abort('401 unauthorised', "geen beheersrechten");
if (!$_POST)
abort('401 unauthorised', "geen beheersrechten");
if (!$_POST)
@@
-14,7
+14,7
@@
if (!$_POST)
if (!isset($_SERVER['PATH_INFO']) or strlen($_SERVER['PATH_INFO']) <= 1)
abort('409 input error', "geen bestand aangeleverd");
if (!isset($_SERVER['PATH_INFO']) or strlen($_SERVER['PATH_INFO']) <= 1)
abort('409 input error', "geen bestand aangeleverd");
-$filename =
preg_replace('/(?:\.php)?$/', '.php', ltrim($_SERVER['PATH_INFO'], '/'), 1)
;
+$filename =
ltrim($Args, '/').'.html'
;
if (file_exists($filename) and !is_writable($filename))
abort('403 input error', "ongeldige bestandsnaam: $filename");
if (is_executable($filename))
if (file_exists($filename) and !is_writable($filename))
abort('403 input error', "ongeldige bestandsnaam: $filename");
if (is_executable($filename))
@@
-33,11
+33,7
@@
if (!strlen($upload)) {
exit;
}
exit;
}
-$rootpath = str_repeat('../', substr_count($filename, '/'));
-$prepend = "<?php include '${rootpath}head.inc.php'; ?>\n\n";
-$append = "\n";
-
-if (!file_put_contents($filename, $prepend . $upload . $append))
+if (!file_put_contents($filename, $upload))
abort('500 save error', "fout bij schrijven van $filename");
print "Bestand opgeslagen";
abort('500 save error', "fout bij schrijven van $filename");
print "Bestand opgeslagen";