Changeset 6234
- Timestamp:
- 07/31/08 12:02:28 (1 month ago)
- Files:
-
- modules/branches/2.5/recordings/audio.php (modified) (2 diffs)
- modules/branches/2.5/recordings/crypt.php (modified) (1 diff)
- modules/branches/2.5/recordings/module.xml (modified) (1 diff)
- modules/branches/2.5/recordings/page.recordings.php (modified) (1 diff)
- modules/branches/2.5/recordings/popup.php (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
- Modified
- Copied
- Moved
modules/branches/2.5/recordings/audio.php
r6233 r6234 6 6 */ 7 7 8 if (isset($_ GET['recording'])) {8 if (isset($_REQUEST['recording'])) { 9 9 10 10 include_once("crypt.php"); … … 14 14 $crypt = new Crypt(); 15 15 16 $opath = $_ GET['recording'];16 $opath = $_REQUEST['recording']; 17 17 $path = $crypt->decrypt($opath,$REC_CRYPT_PASSWORD); 18 18 modules/branches/2.5/recordings/crypt.php
r4220 r6234 63 63 function decrypt($enc, $salt, $iv_len = 16) { 64 64 65 $enc = urldecode(base64_decode($enc));65 $enc = base64_decode(urldecode($enc)); 66 66 $n = strlen($enc); 67 67 $i = $iv_len; modules/branches/2.5/recordings/module.xml
r6232 r6234 9 9 <description>Creates and manages system recordings, used by many other modules (eg, IVR).</description> 10 10 <changelog> 11 *3.3.8.2* #2547 remove access violation so modules dir can be locked down, fix bug in sound file path, add back encryption11 *3.3.8.2* #2547, #2983 remove access violation so modules dir can be locked down, fix bug in sound file path, add back encryption 12 12 *3.3.8.1* fixed typo in recordings_list 13 13 *3.3.8* #2063, #2064, #2065, #2066, #2067, #2068, #2069 modules/branches/2.5/recordings/page.recordings.php
r6233 r6234 510 510 $audio=$astpath; 511 511 512 $recurl=$_SERVER['PHP_SELF']."?display=recordings&action=popup&recording=$audio"; 512 include_once("crypt.php"); 513 $crypt = new Crypt(); 514 $REC_CRYPT_PASSWORD = (isset($amp_conf['AMPPLAYKEY']) && trim($amp_conf['AMPPLAYKEY']) != "")?trim($amp_conf['AMPPLAYKEY']):'moufdsuu3nma0'; 515 $audio = $crypt->encrypt($audio,$REC_CRYPT_PASSWORD); 516 $recurl=$_SERVER['PHP_SELF']."?display=recordings&action=popup&recordingpath=$audio&recording="; 513 517 514 518 $html_txt .= "<a href='#' ".(($count)?$hidden_state:'')." type='submit' id='play$count' onClick=\"javascript:popUp('$recurl',document.prompt.sysrec$count); return false;\" input='foo'>"; modules/branches/2.5/recordings/popup.php
r6233 r6234 25 25 26 26 $REC_CRYPT_PASSWORD = (isset($amp_conf['AMPPLAYKEY']) && trim($amp_conf['AMPPLAYKEY']) != "")?trim($amp_conf['AMPPLAYKEY']):'moufdsuu3nma0'; 27 $file = $crypt->encrypt($_REQUEST['recording'],$REC_CRYPT_PASSWORD); 28 $ufile = basename($_REQUEST['recording']); 27 28 $path = $crypt->decrypt($_REQUEST['recordingpath'],$REC_CRYPT_PASSWORD); 29 $file = $crypt->encrypt($path.$_REQUEST['recording'],$REC_CRYPT_PASSWORD); 30 $ufile = $_REQUEST['recording']; 29 31 30 32 if (isset($file)) {
