Changeset 1880 for sandbox/filemanager/inc/class.uifilemanager.inc.php

Timestamp:

12/22/09 09:24:26 (14 years ago)

Author:

amuller

Message:

Ticket #597 - Melhoria do FM. melhorias na interface, criação de pastas

File:

• sandbox/filemanager/inc/class.uifilemanager.inc.php (modified) (2 diffs)

sandbox/filemanager/inc/class.uifilemanager.inc.php

@@ -616 +616 @@
                                 $vars[css].='<link rel="stylesheet" type="text/css" href="phpgwapi/js/dftree/dftree.css">';
                                 $vars[preferences]='<input type="hidden" id="userPreferences" value=\''.serialize($_SESSION['phpgw_info']['user']['preferences']['filemanager']).'\'>';
+                                // Used for important operations that needs security
+                                for ($key = ""; strlen($key) < 150; $key .= chr(rand(48,95)));
+                                $_SESSION['phpgw_info']['filemanager']['user']['sec_key'] = $key;
+                                $vars[sec_key]='<input type="hidden" id="userKey" value=\''.$key.'\'>';
                                 $vars[script]='<script>initDrawApi();</script>';
                                 
@@ -827 +831 @@
                 function removedir()
                 {
-                        $now = intval(time() / 5);
-                        for ($i=0;$i<20;$i++)
-                                $now.=$now;
-                        $toRemove = $this->path ^ $now;
+                        $toRemove = $this->path ^ $_SESSION['phpgw_info']['filemanager']['user']['sec_key'];
                         if ( $this->bo->vfs->rm(array( 'string' => $toRemove,
                                 'relatives' => array (RELATIVE_NONE)