1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
|
<?php
/**
* GForge FRS Facility
*
* Copyright 1999-2001 (c) VA Linux Systems
* The rest Copyright 2002-2004 (c) GForge Team
* http://gforge.org/
*
* @version $Id: download.php 4457 2005-07-01 12:31:41Z gsmet $
*
* This file is part of GForge.
*
* GForge is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* GForge is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with GForge; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
*/
$no_gz_buffer=true;
require_once('pre.php');
require_once('common/frs/FRSPackage.class');
require_once('common/frs/FRSRelease.class');
require_once('common/frs/FRSFile.class');
$arr=explode('/',$REQUEST_URI);
$file_id=$arr[3];
$res=db_query("SELECT frs_file.filename,frs_package.is_public,frs_package.package_id,
frs_file.file_id,groups.unix_group_name,groups.group_id,frs_release.release_id
FROM frs_package,frs_release,frs_file,groups
WHERE frs_release.release_id=frs_file.release_id
AND groups.group_id=frs_package.group_id
AND frs_release.package_id=frs_package.package_id
AND frs_file.file_id='$file_id'");
if (db_numrows($res) < 1) {
Header("Status: 404");
exit;
}
$group_id = db_result($res,0,'group_id');
$package_id = db_result($res,0,'package_id');
$release_id=db_result($res,0,'release_id');
$Group =& group_get_object($group_id);
if (!$Group || !is_object($Group) || $Group->isError()) {
exit_no_group();
}
$Package = new FRSPackage($Group,$package_id);
if (!$Package || !is_object($Package) || $Package->isError()) {
exit_error('Error','Error Getting Package');
}
$is_public = $Package->isPublic();
$Release = new FRSRelease($Package,$release_id);
if (!$Release || !is_object($Release) || $Release->isError()) {
exit_error('Error','Error Getting Release');
}
$File = new FRSFile($Release,$file_id);
if (!$File || !is_object($File) || $File->isError()) {
exit_error('Error','Error Getting File');
}
$filename = $File->getName();
// Members of projects can see all packages
// Non-members can only see public packages
if(!$is_public) {
if (!session_loggedin() || !user_ismember($group_id)) {
exit_permission_denied();
}
}
$filepath=$sys_upload_dir.'/'.$Group->getUnixName().'/'.$Package->getFileName().'/'.$Release->getFileName().'/'.$File->getName();
if (file_exists($filepath)) {
Header('Content-disposition: filename="'.str_replace('"', '', $filename).'"');
Header("Content-type: application/binary");
$length = filesize($filepath);
Header("Content-length: $length");
readfile_chunked($filepath);
if (session_loggedin()) {
$s =& session_get_user();
$us=$s->getID();
} else {
$us=100;
}
$res=db_query("INSERT INTO frs_dlstats_file (ip_address,file_id,month,day,user_id)
VALUES ('$REMOTE_ADDR','$file_id','".date('Ym')."','".date('d')."','$us')");
} else {
Header("Status: 404");
}
?>
|
