tags:

views:

1398

answers:

4
Q: 

PHP list directories and files

What would be the easiest way to have a page where it will display a list of directories that the user can click on to open, where there will be more directories or eventually files to download and have it all happen on the same page?

+6  A: 

To remove index.php from the folder and allow directory browsing for that folder and subfolders in htacceess.

Dev er dev  2009-01-21 14:40:50
probably the easiest.
Allain Lalonde  2009-01-21 14:42:12
+1  A: 

Put this in the .htaccess file:

Options +Indexes
 2009-01-21 14:44:17
A: 

This is how to do it natively in PHP.

The following will create a series of links which will allow you to effectively browse a directory, its parent directories, and its sub-directories.

/**
* Function echos all files in a $directory.
**/
function dirList ($directory) {

    $dir = opendir($directory);
    while ($file = readdir($dir )) {
        echo "<div><a href='?targ=" . $directory . DIRECTORY_SEPARATOR . "$file'>$file</a></div>";
    }
    closedir($dir);
    return $results;
}

// If the targ variable in the query string is a directory, list its contents.
if( is_dir( $_REQUEST[ "targ" ] ) )dirList($_REQUEST[ "targ" ]);

// If the targ variable in the query string is a file, show its values.
elseif ( is_file( $_REQUEST[ "targ" ] ) ) echo file_get_contents( $_REQUEST[ "targ" ] );

// Othewise, use the current file's directory as a seed.
else dirList( dirname( __FILE__ ) );
Christopher W. Allen-Poole  2009-01-21 15:09:12
Careful on this -- screams security hole. ;-)
Till  2009-01-21 18:49:00
+2  A: 

For something basic you are probably better off just adding 'Options +Indexes' to an .htaccess for that folder. However if you want something more complicated and are running on PHP5 you can use the Directory Iterator to accomplish this. The most important thing to consider is security.

You do not want to just dump the directory path into $_REQUEST and then blindly let the user load that directory. You need to ensure you have some security in place to prevent, for example, some one from just changing the request and asking to see the entire /var directory. The best way to do this is to only pass the current file/folder relative to the docroot and make sure to strip out any .. so some one can't just say ../../var or something similar.

Steven Surowiec  2009-01-22 02:06:02

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases