mirror of
https://github.com/moodle/moodle.git
synced 2025-02-23 11:27:51 +01:00
f8d8b7be3f
enhancing security of command injections. allowing space in pathes for files. allowing binding with tools out of moodleroot
53 lines
1.7 KiB
PHP
53 lines
1.7 KiB
PHP
<?php
|
|
/**
|
|
* Global Search Engine for Moodle
|
|
*
|
|
* @package search
|
|
* @category core
|
|
* @subpackage document_wrappers
|
|
* @author Valery Fremaux [valery.fremaux@club-internet.fr] > 1.8
|
|
* @date 2008/03/31
|
|
* @license http://www.gnu.org/copyleft/gpl.html GNU Public License
|
|
*
|
|
* this is a format handler for getting text out of a proprietary binary format
|
|
* so it can be indexed by Lucene search engine
|
|
*/
|
|
|
|
/**
|
|
* @param object $resource
|
|
* @uses CFG, USER
|
|
*/
|
|
function get_text_for_indexing_pdf(&$resource){
|
|
global $CFG, $USER;
|
|
|
|
// SECURITY : do not allow non admin execute anything on system !!
|
|
if (!isadmin($USER->id)) return;
|
|
|
|
$moodleroot = (@$CFG->block_search_usemoodleroot) ? "{$CFG->dirroot}/" : '' ;
|
|
|
|
// just call pdftotext over stdout and capture the output
|
|
if (!empty($CFG->block_search_pdf_to_text_cmd)){
|
|
preg_match("/^\S+/", $CFG->block_search_pdf_to_text_cmd, $matches);
|
|
if (!file_exists("{$moodleroot}/{$matches[0]}")){
|
|
mtrace('Error with pdf to text converter command : exectuable not found.');
|
|
}
|
|
else{
|
|
$file = escapeshellarg($CFG->dataroot.'/'.$resource->course.'/'.$resource->reference);
|
|
$command = trim($CFG->block_search_pdf_to_text_cmd);
|
|
$text_converter_cmd = "{$moodleroot}/{$command} \"$file\" -";
|
|
$result = shell_exec($text_converter_cmd);
|
|
if ($result){
|
|
return $result;
|
|
}
|
|
else{
|
|
mtrace('Error with pdf to text converter command : execution failed.');
|
|
return '';
|
|
}
|
|
}
|
|
}
|
|
else {
|
|
mtrace('Error with pdf to text converter command : command not set up. Execute once search block configuration.');
|
|
return '';
|
|
}
|
|
}
|
|
?>
|