mirror of https://github.com/midoks/mdserver-web
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
598 lines
22 KiB
598 lines
22 KiB
# coding: utf-8
|
|
|
|
import psutil
|
|
import time
|
|
import os
|
|
import sys
|
|
import public
|
|
import re
|
|
import json
|
|
import pwd
|
|
import shutil
|
|
|
|
from flask import request
|
|
from flask import send_file, send_from_directory
|
|
from flask import make_response
|
|
|
|
|
|
class files_api:
|
|
|
|
rPath = None
|
|
|
|
def __init__(self):
|
|
self.rPath = public.getRootDir() + '/recycle_bin/'
|
|
|
|
##### ----- start ----- ###
|
|
def getBodyApi(self):
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
return self.getBody(path)
|
|
|
|
def getLastBodyApi(self):
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
line = request.form.get('line', '100')
|
|
|
|
if not os.path.exists(path):
|
|
return public.returnJson(False, '文件不存在', (path,))
|
|
|
|
try:
|
|
data = public.getNumLines(path, int(line))
|
|
return public.returnJson(True, 'OK', data)
|
|
except Exception as ex:
|
|
return public.returnJson(False, u'无法正确读取文件!' + str(ex))
|
|
|
|
def saveBodyApi(self):
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
data = request.form.get('data', '').encode('utf-8')
|
|
encoding = request.form.get('encoding', '').encode('utf-8')
|
|
return self.saveBody(path, data, encoding)
|
|
|
|
def downloadApi(self):
|
|
filename = request.args.get('filename', '').encode('utf-8')
|
|
if not os.path.exists(filename):
|
|
return ''
|
|
response = make_response(send_from_directory(
|
|
os.path.dirname(filename), os.path.basename(filename), as_attachment=True))
|
|
return response
|
|
|
|
def zipApi(self):
|
|
sfile = request.form.get('sfile', '').encode('utf-8')
|
|
dfile = request.form.get('dfile', '').encode('utf-8')
|
|
stype = request.form.get('type', '').encode('utf-8')
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
return self.zip(sfile, dfile, stype, path)
|
|
|
|
def deleteApi(self):
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
return self.delete(path)
|
|
|
|
def fileAccessApi(self):
|
|
filename = request.form.get('filename', '').encode('utf-8')
|
|
data = self.getAccess(filename)
|
|
return public.getJson(data)
|
|
|
|
def getDirSizeApi(self):
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
if public.getOs() == 'darwin':
|
|
tmp = public.execShell('du -sh ' + path)
|
|
else:
|
|
tmp = public.execShell('du -sbh ' + path)
|
|
return public.returnJson(True, tmp[0].split()[0])
|
|
|
|
def getDirApi(self):
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
if not os.path.exists(path):
|
|
path = public.getRootDir() + "/wwwroot"
|
|
search = request.args.get('search', '').strip().lower()
|
|
page = request.args.get('p', '1').strip().lower()
|
|
row = request.args.get('showRow', '10')
|
|
return self.getDir(path, int(page), int(row), search)
|
|
|
|
def createFileApi(self):
|
|
file = request.form.get('path', '').encode('utf-8')
|
|
try:
|
|
if not self.checkFileName(file):
|
|
return public.returnJson(False, '文件名中不能包含特殊字符!')
|
|
if os.path.exists(file):
|
|
return public.returnJson(False, '指定文件已存在!')
|
|
_path = os.path.dirname(file)
|
|
if not os.path.exists(_path):
|
|
os.makedirs(_path)
|
|
open(file, 'w+').close()
|
|
self.setFileAccept(file)
|
|
# public.WriteLog('TYPE_FILE', 'FILE_CREATE_SUCCESS', (get.path,))
|
|
return public.returnJson(True, '文件创建成功!')
|
|
except Exception as e:
|
|
# print str(e)
|
|
return public.returnJson(True, '文件创建失败!')
|
|
|
|
def createDirApi(self):
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
try:
|
|
if not self.checkFileName(path):
|
|
return public.returnJson(False, '目录名中不能包含特殊字符!')
|
|
if os.path.exists(path):
|
|
return public.returnJson(False, '指定目录已存在!')
|
|
os.makedirs(path)
|
|
self.setFileAccept(path)
|
|
# public.writeLog('TYPE_FILE', 'DIR_CREATE_SUCCESS', (get.path,))
|
|
return public.returnJson(True, '目录创建成功!')
|
|
except Exception as e:
|
|
return public.returnJson(False, '目录创建失败!')
|
|
|
|
def downloadFileApi(self):
|
|
import db
|
|
import time
|
|
url = request.form.get('url', '').encode('utf-8')
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
filename = request.form.get('filename', '').encode('utf-8')
|
|
|
|
isTask = public.getRootDir() + '/tmp/panelTask.pl'
|
|
execstr = url + '|mw|' + path + '/' + filename
|
|
public.M('tasks').add('name,type,status,addtime,execstr',
|
|
('下载文件[' + filename + ']', 'download', '0', time.strftime('%Y-%m-%d %H:%M:%S'), execstr))
|
|
public.writeFile(isTask, 'True')
|
|
# self.setFileAccept(path + '/' + filename)
|
|
return public.returnJson(True, '已将下载任务添加到队列!')
|
|
|
|
def removeTaskApi(self):
|
|
mid = request.form.get('id', '').encode('utf-8')
|
|
try:
|
|
name = public.M('tasks').where('id=?', (mid,)).getField('name')
|
|
status = public.M('tasks').where('id=?', (mid,)).getField('status')
|
|
public.M('tasks').delete(mid)
|
|
if status == '-1':
|
|
os.system(
|
|
"kill `ps -ef |grep 'python panelSafe.pyc'|grep -v grep|grep -v panelExec|awk '{print $2}'`")
|
|
os.system(
|
|
"kill `ps aux | grep 'python task.pyc$'|awk '{print $2}'`")
|
|
os.system('''
|
|
pids=`ps aux | grep 'sh'|grep -v grep|grep install|awk '{print $2}'`
|
|
arr=($pids)
|
|
|
|
for p in ${arr[@]}
|
|
do
|
|
kill -9 $p
|
|
done
|
|
''')
|
|
|
|
os.system(
|
|
'rm -f ' + name.replace('扫描目录[', '').replace(']', '') + '/scan.pl')
|
|
isTask = public.getRootDir() + '/tmp/panelTask.pl'
|
|
public.writeFile(isTask, 'True')
|
|
os.system('/etc/init.d/mw start')
|
|
except:
|
|
os.system('/etc/init.d/mw start')
|
|
return public.returnJson(True, '任务已删除!')
|
|
|
|
# 上传文件
|
|
def uploadFileApi(self):
|
|
from werkzeug.utils import secure_filename
|
|
from flask import request
|
|
|
|
path = request.args.get('path', '').encode('utf-8')
|
|
|
|
if not os.path.exists(path):
|
|
os.makedirs(path)
|
|
f = request.files['zunfile']
|
|
filename = os.path.join(path, f.filename)
|
|
if sys.version_info[0] == 2:
|
|
filename = filename.encode('utf-8')
|
|
s_path = path
|
|
if os.path.exists(filename):
|
|
s_path = filename
|
|
p_stat = os.stat(s_path)
|
|
f.save(filename)
|
|
os.chown(filename, p_stat.st_uid, p_stat.st_gid)
|
|
os.chmod(filename, p_stat.st_mode)
|
|
|
|
msg = public.getInfo('上传文件[{1}] 到 [{2}]成功!', (filename, path))
|
|
public.writeLog('文件管理', msg)
|
|
return public.returnMsg(True, '上传成功!')
|
|
|
|
def getRecycleBinApi(self):
|
|
rPath = self.rPath
|
|
if not os.path.exists(rPath):
|
|
os.system('mkdir -p ' + rPath)
|
|
data = {}
|
|
data['dirs'] = []
|
|
data['files'] = []
|
|
data['status'] = os.path.exists('data/recycle_bin.pl')
|
|
data['status_db'] = os.path.exists('data/recycle_bin_db.pl')
|
|
for file in os.listdir(rPath):
|
|
try:
|
|
tmp = {}
|
|
fname = rPath + file
|
|
tmp1 = file.split('_mw_')
|
|
tmp2 = tmp1[len(tmp1) - 1].split('_t_')
|
|
tmp['rname'] = file
|
|
tmp['dname'] = file.replace('_mw_', '/').split('_t_')[0]
|
|
tmp['name'] = tmp2[0]
|
|
tmp['time'] = int(float(tmp2[1]))
|
|
if os.path.islink(fname):
|
|
filePath = os.readlink(fname)
|
|
link = ' -> ' + filePath
|
|
if os.path.exists(filePath):
|
|
tmp['size'] = os.path.getsize(filePath)
|
|
else:
|
|
tmp['size'] = 0
|
|
else:
|
|
tmp['size'] = os.path.getsize(fname)
|
|
if os.path.isdir(fname):
|
|
data['dirs'].append(tmp)
|
|
else:
|
|
data['files'].append(tmp)
|
|
except:
|
|
continue
|
|
return public.returnJson(True, 'OK', data)
|
|
|
|
# 回收站开关
|
|
def recycleBinApi(self):
|
|
c = 'data/recycle_bin.pl'
|
|
db = request.form.get('db', '').encode('utf-8')
|
|
if db != '':
|
|
c = 'data/recycle_bin_db.pl'
|
|
if os.path.exists(c):
|
|
os.remove(c)
|
|
public.writeLog('文件管理', '已关闭回收站功能!')
|
|
return public.returnJson(True, '已关闭回收站功能!')
|
|
else:
|
|
public.writeFile(c, 'True')
|
|
public.writeLog('文件管理', '已开启回收站功能!')
|
|
return public.returnJson(True, '已开启回收站功能!')
|
|
|
|
def reRecycleBinApi(self):
|
|
rPath = self.rPath
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
dFile = path.replace('_mw_', '/').split('_t_')[0]
|
|
try:
|
|
import shutil
|
|
shutil.move(rPath + path, dFile)
|
|
msg = public.getInfo('移动文件[{1}]到回收站成功!', (dFile,))
|
|
public.writeLog('文件管理', msg)
|
|
return public.returnJson(True, '恢复成功!')
|
|
except Exception as e:
|
|
msg = public.getInfo('从回收站恢复[{1}]失败!', (dFile,))
|
|
public.writeLog('文件管理', msg)
|
|
return public.returnJson(False, '恢复失败!')
|
|
|
|
def delRecycleBinApi(self):
|
|
rPath = self.rPath
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
empty = request.form.get('empty', '').encode('utf-8')
|
|
dFile = path.split('_t_')[0]
|
|
|
|
if not self.checkDir(path):
|
|
return public.returnJson(False, '敏感目录,请不要花样作死!')
|
|
|
|
os.system('which chattr && chattr -R -i ' + rPath + path)
|
|
if os.path.isdir(rPath + path):
|
|
import shutil
|
|
shutil.rmtree(rPath + path)
|
|
else:
|
|
os.remove(rPath + path)
|
|
|
|
tfile = path.replace('_mw_', '/').split('_t_')[0]
|
|
msg = public.getInfo('已彻底从回收站删除{1}!', (tfile,))
|
|
public.writeLog('文件管理', msg)
|
|
return public.returnJson(True, msg)
|
|
|
|
# 获取进度
|
|
def getSpeedApi(self):
|
|
data = public.getSpeed()
|
|
return public.returnJson(True, '已清空回收站!', data)
|
|
|
|
def closeRecycleBinApi(self):
|
|
rPath = self.rPath
|
|
os.system('which chattr && chattr -R -i ' + rPath)
|
|
rlist = os.listdir(rPath)
|
|
i = 0
|
|
l = len(rlist)
|
|
for name in rlist:
|
|
i += 1
|
|
path = rPath + name
|
|
public.writeSpeed(name, i, l)
|
|
if os.path.isdir(path):
|
|
shutil.rmtree(path)
|
|
else:
|
|
os.remove(path)
|
|
public.writeSpeed(None, 0, 0)
|
|
public.writeLog('文件管理', '已清空回收站!')
|
|
return public.returnJson(True, '已清空回收站!')
|
|
|
|
def deleteDirApi(self):
|
|
path = request.form.get('path', '').encode('utf-8')
|
|
if not os.path.exists(path):
|
|
return public.returnJson(False, '指定文件不存在!')
|
|
|
|
# 检查是否为.user.ini
|
|
if path.find('.user.ini'):
|
|
os.system("chattr -i '" + path + "'")
|
|
try:
|
|
if os.path.exists('data/recycle_bin.pl'):
|
|
if self.mvRecycleBin(path):
|
|
return public.returnJson(True, '已将文件移动到回收站!')
|
|
os.remove(path)
|
|
public.writeLog('文件管理', '删除文件成功!', (path,))
|
|
return public.returnJson(True, '删除文件成功!')
|
|
except:
|
|
return public.returnJson(False, '删除文件失败!')
|
|
|
|
##### ----- end ----- ###
|
|
|
|
# 检查敏感目录
|
|
def checkDir(self, path):
|
|
path = path.replace('//', '/')
|
|
if path[-1:] == '/':
|
|
path = path[:-1]
|
|
|
|
nDirs = ('',
|
|
'/',
|
|
'/*',
|
|
'/www',
|
|
'/root',
|
|
'/boot',
|
|
'/bin',
|
|
'/etc',
|
|
'/home',
|
|
'/dev',
|
|
'/sbin',
|
|
'/var',
|
|
'/usr',
|
|
'/tmp',
|
|
'/sys',
|
|
'/proc',
|
|
'/media',
|
|
'/mnt',
|
|
'/opt',
|
|
'/lib',
|
|
'/srv',
|
|
'/selinux',
|
|
'/www/server',
|
|
'/www/server/data',
|
|
public.getRootDir())
|
|
|
|
return not path in nDirs
|
|
|
|
def checkFileName(self, filename):
|
|
# 检测文件名
|
|
nots = ['\\', '&', '*', '|', ';']
|
|
if filename.find('/') != -1:
|
|
filename = filename.split('/')[-1]
|
|
for n in nots:
|
|
if n in filename:
|
|
return False
|
|
return True
|
|
|
|
def setFileAccept(self, filename):
|
|
auth = 'www:www'
|
|
if public.getOs() == 'darwin':
|
|
user = public.execShell(
|
|
"who | sed -n '2, 1p' |awk '{print $1}'")[0].strip()
|
|
auth = user + ':staff'
|
|
os.system('chown -R ' + auth + ' ' + filename)
|
|
os.system('chmod -R 755 ' + filename)
|
|
|
|
# 移动到回收站
|
|
def mvRecycleBin(self, path):
|
|
rPath = self.rPath
|
|
if not os.path.exists(rPath):
|
|
os.system('mkdir -p ' + rPath)
|
|
|
|
rFile = rPath + path.replace('/', '_mw_') + '_t_' + str(time.time())
|
|
try:
|
|
import shutil
|
|
shutil.move(path, rFile)
|
|
public.writeLog('TYPE_FILE', public.getInfo(
|
|
'移动文件[{1}]到回收站成功!', (path)))
|
|
return True
|
|
except:
|
|
public.writeLog('TYPE_FILE', public.getInfo(
|
|
'移动文件[{1}]到回收站失败!', (path)))
|
|
return False
|
|
|
|
def getBody(self, path):
|
|
if not os.path.exists(path):
|
|
return public.returnJson(False, '文件不存在', (path,))
|
|
|
|
if os.path.getsize(path) > 2097152:
|
|
return public.returnJson(False, u'不能在线编辑大于2MB的文件!')
|
|
|
|
fp = open(path, 'rb')
|
|
data = {}
|
|
data['status'] = True
|
|
try:
|
|
if fp:
|
|
from chardet.universaldetector import UniversalDetector
|
|
detector = UniversalDetector()
|
|
srcBody = b""
|
|
for line in fp.readlines():
|
|
detector.feed(line)
|
|
srcBody += line
|
|
detector.close()
|
|
char = detector.result
|
|
data['encoding'] = char['encoding']
|
|
if char['encoding'] == 'GB2312' or not char['encoding'] or char[
|
|
'encoding'] == 'TIS-620' or char['encoding'] == 'ISO-8859-9':
|
|
data['encoding'] = 'GBK'
|
|
if char['encoding'] == 'ascii' or char[
|
|
'encoding'] == 'ISO-8859-1':
|
|
data['encoding'] = 'utf-8'
|
|
if char['encoding'] == 'Big5':
|
|
data['encoding'] = 'BIG5'
|
|
if not char['encoding'] in ['GBK', 'utf-8',
|
|
'BIG5']:
|
|
data['encoding'] = 'utf-8'
|
|
try:
|
|
if sys.version_info[0] == 2:
|
|
data['data'] = srcBody.decode(
|
|
data['encoding']).encode('utf-8', errors='ignore')
|
|
else:
|
|
data['data'] = srcBody.decode(data['encoding'])
|
|
except:
|
|
data['encoding'] = char['encoding']
|
|
if sys.version_info[0] == 2:
|
|
data['data'] = srcBody.decode(
|
|
data['encoding']).encode('utf-8', errors='ignore')
|
|
else:
|
|
data['data'] = srcBody.decode(data['encoding'])
|
|
else:
|
|
if sys.version_info[0] == 2:
|
|
data['data'] = srcBody.decode('utf-8').encode('utf-8')
|
|
else:
|
|
data['data'] = srcBody.decode('utf-8')
|
|
data['encoding'] = u'utf-8'
|
|
|
|
return public.returnJson(True, 'OK', data)
|
|
except Exception as ex:
|
|
return public.returnJson(False, u'文件编码不被兼容,无法正确读取文件!' + str(ex))
|
|
|
|
def saveBody(self, path, data, encoding='utf-8'):
|
|
if not os.path.exists(path):
|
|
return public.returnJson(False, '文件不存在')
|
|
try:
|
|
if encoding == 'ascii':
|
|
encoding = 'utf-8'
|
|
if sys.version_info[0] == 2:
|
|
data = data.encode(encoding, errors='ignore')
|
|
fp = open(path, 'w+')
|
|
else:
|
|
data = data.encode(
|
|
encoding, errors='ignore').decode(encoding)
|
|
fp = open(path, 'w+', encoding=encoding)
|
|
fp.write(data)
|
|
fp.close()
|
|
|
|
public.writeLog('TYPE_FILE', '文件保存成功', (path,))
|
|
return public.returnJson(True, '文件保存成功')
|
|
except Exception as ex:
|
|
return public.returnJson(False, 'FILE_SAVE_ERR:' + str(ex))
|
|
|
|
def zip(self, sfile, dfile, stype, path):
|
|
if sfile.find(',') == -1:
|
|
if not os.path.exists(path + '/' + sfile):
|
|
return public.returnMsg(False, '指定文件不存在!')
|
|
|
|
try:
|
|
tmps = public.getRunDir() + '/tmp/panelExec.log'
|
|
if stype == 'zip':
|
|
os.system("cd '" + path + "' && zip '" + dfile +
|
|
"' -r '" + sfile + "' > " + tmps + " 2>&1")
|
|
else:
|
|
sfiles = ''
|
|
for sfile in sfile.split(','):
|
|
if not sfile:
|
|
continue
|
|
sfiles += " '" + sfile + "'"
|
|
os.system("cd '" + path + "' && tar -zcvf '" +
|
|
dfile + "' " + sfiles + " > " + tmps + " 2>&1")
|
|
self.setFileAccept(dfile)
|
|
public.writeLog("TYPE_FILE", '文件压缩成功!', (sfile, dfile))
|
|
return public.returnJson(True, '文件压缩成功!')
|
|
except:
|
|
return public.returnJson(False, '文件压缩失败!')
|
|
|
|
def delete(self, path):
|
|
|
|
if not os.path.exists(path):
|
|
return public.returnJson(False, '指定文件不存在!')
|
|
|
|
# 检查是否为.user.ini
|
|
if path.find('.user.ini') >= 0:
|
|
os.system("chattr -i '" + path + "'")
|
|
|
|
try:
|
|
if os.path.exists('data/recycle_bin.pl'):
|
|
if self.mvRecycleBin(path):
|
|
return public.returnJson(True, '已将文件移动到回收站!')
|
|
os.remove(path)
|
|
public.writeLog('TYPE_FILE', public.getInfo(
|
|
'删除文件[{1}]成功!', (path)))
|
|
return public.returnJson(True, '删除文件成功!')
|
|
except:
|
|
return public.returnJson(False, '删除文件失败!')
|
|
|
|
def getAccess(self, filename):
|
|
data = {}
|
|
try:
|
|
stat = os.stat(filename)
|
|
data['chmod'] = str(oct(stat.st_mode)[-3:])
|
|
data['chown'] = pwd.getpwuid(stat.st_uid).pw_name
|
|
except:
|
|
data['chmod'] = 755
|
|
data['chown'] = 'www'
|
|
return data
|
|
|
|
# 计算文件数量
|
|
def getCount(self, path, search):
|
|
i = 0
|
|
for name in os.listdir(path):
|
|
if search:
|
|
if name.lower().find(search) == -1:
|
|
continue
|
|
# if name[0:1] == '.':
|
|
# continue
|
|
i += 1
|
|
return i
|
|
|
|
def getDir(self, path, page=1, page_size=10, search=None):
|
|
data = {}
|
|
dirnames = []
|
|
filenames = []
|
|
|
|
info = {}
|
|
info['count'] = self.getCount(path, search)
|
|
info['row'] = page_size
|
|
info['p'] = page
|
|
info['tojs'] = 'getFiles'
|
|
pageObj = public.getPageObject(info, '1,2,3,4,5,6,7,8')
|
|
data['PAGE'] = pageObj[0]
|
|
|
|
i = 0
|
|
n = 0
|
|
for filename in os.listdir(path):
|
|
if search:
|
|
if filename.lower().find(search) == -1:
|
|
continue
|
|
i += 1
|
|
if n >= pageObj[1].ROW:
|
|
break
|
|
if i < pageObj[1].SHIFT:
|
|
continue
|
|
|
|
try:
|
|
filePath = (path + '/' + filename).encode('utf8')
|
|
link = ''
|
|
if os.path.islink(filePath):
|
|
filePath = os.readlink(filePath)
|
|
link = ' -> ' + filePath
|
|
if not os.path.exists(filePath):
|
|
filePath = path + '/' + filePath
|
|
if not os.path.exists(filePath):
|
|
continue
|
|
|
|
stat = os.stat(filePath)
|
|
accept = str(oct(stat.st_mode)[-3:])
|
|
mtime = str(int(stat.st_mtime))
|
|
user = ''
|
|
try:
|
|
user = pwd.getpwuid(stat.st_uid).pw_name
|
|
except:
|
|
user = str(stat.st_uid)
|
|
size = str(stat.st_size)
|
|
if os.path.isdir(filePath):
|
|
dirnames.append(filename + ';' + size + ';' +
|
|
mtime + ';' + accept + ';' + user + ';' + link)
|
|
else:
|
|
filenames.append(filename + ';' + size + ';' +
|
|
mtime + ';' + accept + ';' + user + ';' + link)
|
|
n += 1
|
|
except:
|
|
continue
|
|
|
|
data['DIR'] = sorted(dirnames)
|
|
data['FILES'] = sorted(filenames)
|
|
if path[0:2] == '//':
|
|
data['PATH'] = path[1:]
|
|
else:
|
|
data['PATH'] = path
|
|
return public.getJson(data)
|
|
|