File browser and upload issue

Hi all,

Currently I'm having some issues with CKFinder.
When I try to start the file browser through CKEditor, I get a message saying that I can't upload files, instead I should check the config file.

I did, and everything seems to be fine in there.
However, I looked at the page source, and noticed some weird url's in the javascript code of CKEditor (I use the php api to initiate CKEditor):

<script type="text/javascript">//<![CDATA[
CKEDITOR.replace('editor1', { "filebrowserBrowseUrl": "\/site\/admin\/..\/includes\/ckfinder\/ckfinder.html", "filebrowserImageBrowseUrl": "\/site\/admin\/..\/includes\/ckfinder\/ckfinder.html?type=Images", "filebrowserFlashBrowseUrl": "\/site\/admin\/..\/includes\/ckfinder\/ckfinder.html?type=Flash", "filebrowserUploadUrl": "\/site\/admin\/..\/includes\/ckfinder\/core\/connector\/php\/connector.php?command=QuickUpload&type=Files", "filebrowserImageUploadUrl": "\/site\/admin\/..\/includes\/ckfinder\/core\/connector\/php\/connector.php?command=QuickUpload&type=Images", "filebrowserFlashUploadUrl": "\/site\/admin\/..\/includes\/ckfinder\/core\/connector\/php\/connector.php?command=QuickUpload&type=Flash" });
//]]></script>

Could this be the cause of my problem?
And if so, how can I solve this?

Kind regards,
Thomas

Mon, 07/26/2010 - 17:44

thomas.

Joined: 19/07/2010

Posts: 7

Re: File browser and upload issue

Bump

Anybody?

Wed, 07/28/2010 - 17:39

thomas.

Joined: 19/07/2010

Posts: 7

Re: File browser and upload issue

Ok, now I get a new message.

CKFinder tells me that the file browser and uploader is disabled for security reasons.
I just don't have any idea why though...

Anybody an idea on this?

Thomas

Thu, 07/29/2010 - 01:05

thomas.

Joined: 19/07/2010

Posts: 7

Re: File browser and upload issue

Problem solved.

Thomas

Tue, 08/03/2010 - 04:05

gordon.waters

Joined: 03/08/2010

Posts: 1

Re: File browser and upload issue

Hi There, What was the fix , Seem to be having the same issue.

Thanks

Tue, 08/03/2010 - 04:48

thomas.

Joined: 19/07/2010

Posts: 7

Re: File browser and upload issue

Hey,

I fixed the security warning issue by editing the CheckAuthentication() function in config.php
By default it will always return false, so you won't be able to upload or browse your files.

So generally, you will be able to use the file browser when the function CheckAuthentication() returns true.

I did it as follows (you can use your own method too of course):

session_start();

function CheckAuthentication()
{
    // WARNING : DO NOT simply return "true". By doing so, you are allowing
    // "anyone" to upload and list the files in your server. You must implement
    // some kind of session validation here. Even something very simple as...

    return isset($_SESSION['IsAuthorized']) && $_SESSION['IsAuthorized'];

    // ... where $_SESSION['IsAuthorized'] is set to "true" as soon as the
    // user logs in your system. To be able to use session variables don't
    // forget to add session_start() at the top of this file.
}

Whenever you call the CKFinder / CKEditor scripts, set $_SESSION['IsAuthorized'] to true.
(In my website system this session variable is set according to user permissions).

If you have any further questions, just let me know.

Thomas