YetiShare File Hosting Script Free

This project is version 2.1 of the popular file hosting script -
YetiShare.

Author: MFScripts

.htaccess

@@ -0,0 +1,24 @@
+# override max php upload settings. Might not work on all servers
+#php_value upload_max_filesize 4000M
+#php_value post_max_size 4000M
+
+# redirect www to non-www
+#RewriteCond %{HTTP_HOST} ^www\.(.*)$ [NC]
+#RewriteRule ^(.*)$ http://%1/$1 [R=301,L]
+
+RewriteEngine On
+RewriteCond %{REQUEST_URI} ^(.+)\~s$
+RewriteRule ^(.*) stats.php?u=$1 [L]
+RewriteCond %{REQUEST_URI} ^(.+)\~d$
+RewriteRule ^(.*) delete_file.php?u=$1 [QSA,L]
+RewriteCond %{REQUEST_URI} ^(.+)\~i$
+RewriteRule ^(.*) share_file.php?u=$1 [QSA,L]
+RewriteCond %{REQUEST_URI} ^(.+)\~f$
+RewriteRule ^(.*) view_folder.php?f=$1 [QSA,L]
+
+RewriteCond %{REQUEST_FILENAME} !-f
+RewriteCond %{REQUEST_FILENAME} !-d
+RewriteCond $1 !\.html$
+RewriteRule ^(.*) file_download.php?u=$1 [QSA,L]
+
+RewriteRule ^(.*).html$ $1.php [L]

___INSTALLATION.txt

@@ -0,0 +1,28 @@
+INSTALLATION:
+
+- Unpack the script package.
+- Update "/_config.inc.php" with your site url and the full path to the root of the script. In most instances, this will be your domain name (for _CONFIG_SITE_HOST_URL & _CONFIG_SITE_FULL_URL) in the format www.mydomain.com. Don't include the http:// or the trailing forward slash.
+- Setup a new Mysql database on your hosting and note the connection details.
+- Import the database structure into your DB - located in "/offline/file_hosting.sql"
+- Update "/_config.inc.php" with the new database connection details. (host, user, password & db name)
+- Upload all files (apart from the /offline folder) via FTP onto your hosting account.
+- Set permissions of 777 on the following folder(s):
+        - /files
+- The admin area can be accessed by adding "/admin/" onto the domain - i.e. yourdomain.com/admin/
+- Admin area access details:
+	- user: admin
+	- pass: password
+- Config values can be setup within the "Site Settings" section within the admin area.
+- You're done!
+
+
+SUPPORT:
+
+- MFScripts does not provide support for this product.
+
+
+SCRIPT REQUIREMENTS:
+
+- PHP5.2+
+- MySQL
+- Mod-Rewrite enabled

___LICENCE.txt

@@ -0,0 +1,25 @@
+Product licence details.
+
+Full terms and conditions of MFScripts can be seen at https://mfscripts.com/terms-purchase.html.
+
+The MIT License (MIT)
+
+Copyright (c) 2015 MFScripts http://mfscripts.com/
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
+the Software, and to permit persons to whom the Software is furnished to do so,
+subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
+FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
+COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
+IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
+CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+

___RELEASE_HISTORY.txt

@@ -0,0 +1,87 @@
+v2.1
+
+- Added folder management.
+- After file upload, option set folder.
+- Set folder public or private.
+- Set password on folder.
+- Show files in folder listing page. (for public folders)
+- Added edit file details page.
+- Reset forgotten password pages.
+- Edit account email, name & password page.
+- Optional captcha after download counter for free users.
+- Improved download streaming when using remote ftp file servers.
+- Removed inaccurate upload progress text when using IE.
+- Moved homepage 'benefits' text into translations.
+- On homepage upload, prevented the results box from being closed when clicking any of the rows.
+- Added docx icon into file upload types.
+- Added secure phpinfo page within admin area to aid with debugging.
+- Removed admin area navigation if not logged in.
+- Improved admin login form style.
+- Fixed issue with editing ftp port on file server management.
+- Minor bug fix. In some instances, uploaded files might not be completely removed when deleted by admin.
+- Added check for php ftp functions within admin 'test ftp' page.
+- Fix on "Admin Users" & "File Servers" for the sorting of "total space used" and "total files".
+
+v2.01
+
+- Removed database password from displaying if there's an error with database connectivity.
+- Fixed filtering within admin area.
+- Fixed csv export within admin area.
+- Minor bug fix with account expiry date not updating via admin edit user.
+
+v2.0
+
+- View/amend account paid expiry date within admin area.
+- Added filesize when browsing files admin area.
+- Added filesize in user file manager.
+- More detail on file uploader. Percentage progress, filesize progress, upload speed and time remaining. (Chrome & Firefox only)
+- Option in admin area to show original filename on end of file url.
+- Option to set different download site address to main site. Set downloads from a different domain.
+- Support for https.
+- Improved countdown timer page. More information about the benefits of registering for a paid account inc estimated download time.
+- Support for multiple file servers via FTP.
+- New admin page to configure file servers.
+- Test file server page.
+- Admin area option to use a specific file server or automatically select the one with least space used.
+- Added 'filter by server' option on 'manage files' in admin area.
+- Added 'filter by user' option on 'manage files' in admin area.
+- Added link to 'manage users' to view user uploaded files.
+- Added total space used and total active files to 'manage users' in admin area.
+- Added link to admin area on main site if logged in as admin user.
+
+v1.06
+
+- Removed the ability to bypass the countdown by refreshing on the countdown timer page.
+- Fixed minor character issues within the admin settings page.
+
+v1.05
+
+- Fixed issue which could mean paid users see the countdown timer when downloading a file.
+- Fixed issue which meant the countdown wasn't displayed for free users when clicking on links in the 'your files' section.
+
+v1.04
+
+- Added the ability to specify smtp settings for sending site emails.
+- Fixed filesize bug using IE to upload.
+- Fixed issue where entries are sometimes created in the database on upload failure.
+- Better compatibility with Safari browser.
+
+v1.03
+
+- On some servers larger downloads could produce 500 errors. Resolved in this release.
+
+v1.02
+
+- Minor bug fix to limit maximum days value for redundant file deletion.
+- Missing 'unknown' translation on stats pages.
+- Minor bug fix to block file upload attempts without names and with zero size.
+- Added check for referrer on file upload script.
+
+v1.01
+
+- Minor XXS bug fixes to login/registration pages.
+- Minor spelling fixes.
+
+v1.0
+
+- Initial release.

_bannerRightContent.inc.php

@@ -0,0 +1,56 @@
+<?php
+// checked whether user is logged in
+if($Auth->loggedIn())
+{
+    // load recent from account
+    $files = file::loadAllRecentByAccount($Auth->id, true);
+}
+else
+{
+    // load recent from IP
+    $files = file::loadAllRecentByIp(getUsersIPAddress(), true);
+}
+?>
+
+<div class="rightContentWrapper ui-corner-all">
+    <div class="rightContent">
+        <div id="pageHeader">
+            <h2><?php echo t("your_recent_files", "Your Files"); ?> <?php echo COUNT($files)?'('.COUNT($files).')':''; ?></h2>
+        </div>
+        <p>
+            <?php
+            // load all urls for current user  
+            if(COUNT($files))
+            {
+                $tracker = 0;
+                foreach($files AS $url)
+                {
+                    $class = 'divOdd';
+                    if($tracker%2==1)
+                    {
+                        $class = 'divEven';
+                    }
+                    echo "<div class='".$class."'>";
+                    echo "<div style='padding: 3px;'>";
+                    echo "  <div style='float: right; text-decoration: underline;'>";
+                    echo "      <a href='".WEB_ROOT."/".$url['shortUrl']."~i?".$url['deleteHash']."'>".t("info", "info")."</a>";
+                    echo "  </div>";
+                    echo "  <div style='float: left; overflow: hidden; width: 170px;'>";
+                    echo "      <a href='".WEB_ROOT."/".$url['shortUrl']."'>".$url['originalFilename']."</a>";
+                    echo "  </div>";
+                    echo "  <div class='clear'></div>";
+                    echo "</div>";
+                    echo "<div class='clear'></div>";
+                    echo "</div>";
+                    echo "<div class='clear'></div>";
+                    $tracker++;
+                }
+            }
+            else
+            {
+                echo '- You have not uploaded any files recently. <a href="'.WEB_ROOT.'/index.'.SITE_CONFIG_PAGE_EXTENSION.'">Click here</a> to upload some now.';
+            }
+            ?>
+        </p>
+    </div>
+</div>

_config.inc.php

@@ -0,0 +1,28 @@
+<?php
+
+/* main configuration file for script */
+define("_CONFIG_SITE_HOST_URL",         "yoursite");  /* site url host without the http:// and no trailing forward slash - i.e. www.mydomain.com or links.mydomain.com */
+define("_CONFIG_SITE_FULL_URL",         "yoursite");  /* full site url without the http:// and no trailing forward slash - i.e. www.mydomain.com/links or the same as the _CONFIG_SITE_HOST_URL */
+
+/* database connection details */
+define("_CONFIG_DB_HOST",               "localhost");  /* database host name */
+define("_CONFIG_DB_NAME",               "file_hosting");    /* database name */
+define("_CONFIG_DB_USER",               "username");    /* database username */
+define("_CONFIG_DB_PASS",               "password");    /* database password */
+
+/* show database degug information on fail */
+define("_CONFIG_DB_DEBUG",              true);    /* this will display debug information when something fails in the DB - leave this as true if you're not sure */
+
+/* toggle demo mode */
+define("_CONFIG_DEMO_MODE",             false);    /* always leave this as false */
+define("_CONFIG_SCRIPT_VERSION",        "2.1");    /* script version */
+
+/* server paths */
+define("_CONFIG_SCRIPT_ROOT",           dirname(__FILE__));
+define("_CONFIG_FILE_STORAGE_PATH",     _CONFIG_SCRIPT_ROOT . '/files/');     /* location on your server to store file uploads */
+
+/* the url of the domain to download files from, only change if you plan on using a different domain to link to your files */
+define("_CONFIG_SITE_FILE_DOMAIN",      _CONFIG_SITE_FULL_URL);  /* url without the http:// and no trailing forward slash */
+
+/* run the site as http or https, requires ssl certificate - functionality in beta */
+define("_CONFIG_SITE_PROTOCOL",      	'http');  /* http or https */

_footer.php

@@ -0,0 +1,61 @@
+            </div>
+	</div>
+
+	<!-- footer section -->
+	<div class="footerBar">
+            <!-- footer ads -->
+            <div class="footerAds">
+                <?php echo SITE_CONFIG_ADVERT_SITE_FOOTER; ?>
+            </div>
+            <div class="footerLinks">
+                <div class="section1">
+                    <?php if(!$Auth->loggedIn()): ?>
+                        <strong><?php echo t('main_navigation', 'Main Navigation'); ?></strong>
+                        <ul>
+                            <li><a href="<?php echo WEB_ROOT; ?>/"><?php echo t('upload_file', 'upload file'); ?></a></li>
+                            <li><a href="<?php echo WEB_ROOT; ?>/register.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo t('register', 'register'); ?></a></li>
+                            <li><a href="<?php echo WEB_ROOT; ?>/faq.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo t('faq', 'faq'); ?></a></li>
+                            <li><a href="<?php echo WEB_ROOT; ?>/login.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo t('login', 'login'); ?></a></li>
+                        </ul>
+                    <?php else: ?>
+                        <strong><?php echo t('your_account', 'Your Account'); ?></strong>
+                        <ul>
+                            <li><a href="<?php echo WEB_ROOT; ?>/"><?php echo t('upload_file', 'upload file'); ?></a></li>
+                            <li><a href="<?php echo WEB_ROOT; ?>/account_home.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo t('your_files', 'your files'); ?></a></li>
+                            <li><a href="<?php echo WEB_ROOT; ?>/account_folders.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo t('folders', 'folders'); ?></a></li>
+                            <?php if($Auth->level != 'admin'): ?>
+                            <li><a href="<?php echo WEB_ROOT; ?>/upgrade.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo($Auth->level == 'free user')?t('uprade_account', 'upgrade account'):t('extend_account', 'extend account'); ?></a></li>
+                            <?php endif; ?>
+                            <li><a href="<?php echo WEB_ROOT; ?>/account_edit.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo t('settings', 'settings'); ?></a></li>
+                            <li><a href="<?php echo WEB_ROOT; ?>/faq.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo t('faq', 'faq'); ?></a></li>
+                            <li><a href="<?php echo WEB_ROOT; ?>/logout.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo t('logout', 'logout'); ?> (<?php echo $Auth->username; ?>)</a></li>
+                        </ul>
+                    <?php endif; ?>
+                </div>
+                <div class="section2">
+                    <strong><?php echo t('legal_bits', 'Legal Bits'); ?></strong>
+                    <ul>
+                        <li><a href="<?php echo WEB_ROOT; ?>/terms.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo t('term_and_conditions', 'terms and conditions'); ?></a></li>
+                        <li><a href="<?php echo WEB_ROOT; ?>/report_file.<?php echo SITE_CONFIG_PAGE_EXTENSION; ?>"><?php echo t('report_file', 'report file'); ?></a></li>
+                    </ul>
+                </div>
+                <div class="clear"><!-- --></div>
+                
+            </div>
+            <div class="clear"><!-- --></div>
+            
+            <div class="footerCopyrightText">
+                <?php
+                if(($Auth->loggedIn() == true) && ($Auth->level == 'admin'))
+                {
+                    echo '<strong>[ <a href="'.WEB_ROOT.'/admin/" target="_blank">'.t('admin_area', 'admin area').'</a> ]</strong><br/><br/>';
+                }
+                ?>
+                <?php echo t("copyright", "copyright"); ?> &copy; <?php echo date("Y"); ?> - <?php echo SITE_CONFIG_SITE_NAME; ?> - <a href="http://www.mfscripts.com/file_hosting_script.html" target="_blank">File Hosting Script</a> <?php echo t("created_by", "created by "); ?> <a href="http://www.mfscripts.com" target="_blank">MFScripts.com</a>
+            </div>
+            <div class="clear"><!-- --></div>
+            
+	</div>
+    </div>
+</body>
+</html>