Don't store files in hidden fields
git-svn-id: https://adminer.svn.sourceforge.net/svnroot/adminer/trunk@1250 7c3ca157-0c34-0410-bff1-cbf682f78f5c
This commit is contained in:
parent
2d52e0760f
commit
3e9b1ba19f
|
@ -41,9 +41,6 @@ function auth_error($exception = null) {
|
||||||
$adminer->loginForm($username);
|
$adminer->loginForm($username);
|
||||||
echo "<p>\n";
|
echo "<p>\n";
|
||||||
hidden_fields($_POST, array("server", "username", "password")); // expired session
|
hidden_fields($_POST, array("server", "username", "password")); // expired session
|
||||||
foreach ($_FILES as $key => $val) {
|
|
||||||
echo '<input type="hidden" name="files[' . h($key) . ']" value="' . ($val["error"] ? $val["error"] : base64_encode(file_get_contents($val["tmp_name"]))) . '">';
|
|
||||||
}
|
|
||||||
echo "<input type='submit' value='" . lang('Login') . "'>\n</form>\n";
|
echo "<input type='submit' value='" . lang('Login') . "'>\n</form>\n";
|
||||||
page_footer("auth");
|
page_footer("auth");
|
||||||
}
|
}
|
||||||
|
|
|
@ -296,22 +296,12 @@ function pagination($page) {
|
||||||
return " " . ($page == $_GET["page"] ? $page + 1 : '<a href="' . h(remove_from_uri("page") . ($page ? "&page=$page" : "")) . '">' . ($page + 1) . "</a>");
|
return " " . ($page == $_GET["page"] ? $page + 1 : '<a href="' . h(remove_from_uri("page") . ($page ? "&page=$page" : "")) . '">' . ($page + 1) . "</a>");
|
||||||
}
|
}
|
||||||
|
|
||||||
/** Get file contents from $_FILES or $_POST["files"]
|
/** Get file contents from $_FILES
|
||||||
* @param string
|
* @param string
|
||||||
* @param bool
|
* @param bool
|
||||||
* @return string
|
* @return mixed int for error, string otherwise
|
||||||
*/
|
*/
|
||||||
function get_file($key, $decompress = false) {
|
function get_file($key, $decompress = false) {
|
||||||
// returns int for error, string otherwise
|
|
||||||
$file = $_POST["files"][$key];
|
|
||||||
if (isset($file)) {
|
|
||||||
// get the file from hidden field if the user was logged out
|
|
||||||
$length = strlen($file);
|
|
||||||
if ($length && $length < 4) {
|
|
||||||
return intval($file);
|
|
||||||
}
|
|
||||||
return base64_decode($file);
|
|
||||||
}
|
|
||||||
$file = $_FILES[$key];
|
$file = $_FILES[$key];
|
||||||
if (!$file || $file["error"]) {
|
if (!$file || $file["error"]) {
|
||||||
return $file["error"];
|
return $file["error"];
|
||||||
|
|
Loading…
Reference in a new issue