fix product img + doc upload

leedavi · leedavi · commit ebda19b862fc · 2021-04-21T18:22:43.000+02:00
diff --git a/Components/Product/ProductFunctions.cs b/Components/Product/ProductFunctions.cs
@@ -914,12 +914,14 @@ public string UpdateProductImages(HttpContext context)
                     {
                         if (ImgUtils.IsImageFile(Path.GetExtension(img)) && img != "")
                         {
+                            var extension = Path.GetExtension(img);
                             var fn = DnnUtils.Encrypt(img, StoreSettings.Current.Get("adminpin"));
                             foreach (char c in System.IO.Path.GetInvalidFileNameChars())
                             {
                                 fn = fn.Replace(c, '_');
                             }
-                            var extension = Path.GetExtension(img);
+                            fn = extension + "-" + fn; // add extension to front, so it cannot be servered but we can add to order data.
+
                             var fullName = StoreSettings.Current.FolderTempMapPath.TrimEnd(Convert.ToChar("\\")) + "\\" + fn;
                             if (File.Exists(fullName))
                             {
@@ -929,7 +931,7 @@ public string UpdateProductImages(HttpContext context)
                                 imageInfo = NBrightBuyUtils.ProcessImageProvider("product", imageInfo);
                                 var newfullName = imageInfo.GetXmlProperty("genxml/uploadedimagemappath");
                                 if (newfullName != "") fullName = newfullName;
-                                
+
                                 // deal with image
                                 File.Move(fullName, fullName + extension);
                                 fullName = fullName + extension;
@@ -1156,8 +1158,9 @@ public string UpdateProductDocs(HttpContext context)
                         {
                             fn = fn.Replace(c, '_');
                         }
+                        fn = extension + "-" + fn; // add extension to front, so it cannot be servered but we can add to order data.
 
-                        string fullName = StoreSettings.Current.FolderTempMapPath + "\\" + fn;
+                        var fullName = StoreSettings.Current.FolderTempMapPath.TrimEnd(Convert.ToChar("\\")) + "\\" + fn;
                         //if ((extension.ToLower() == ".pdf" || extension.ToLower() == ".zip"))
                         //{
                             if (File.Exists(fullName))

Original file line number	Diff line number	Diff line change
`@@ -914,12 +914,14 @@ public string UpdateProductImages(HttpContext context)`
`914`	`914`	`{`
`915`	`915`	`if (ImgUtils.IsImageFile(Path.GetExtension(img)) && img != "")`
`916`	`916`	`{`
	`917`	`+ var extension = Path.GetExtension(img);`
`917`	`918`	`var fn = DnnUtils.Encrypt(img, StoreSettings.Current.Get("adminpin"));`
`918`	`919`	`foreach (char c in System.IO.Path.GetInvalidFileNameChars())`
`919`	`920`	`{`
`920`	`921`	`fn = fn.Replace(c, '_');`
`921`	`922`	`}`
`922`		`- var extension = Path.GetExtension(img);`
	`923`	`+ fn = extension + "-" + fn; // add extension to front, so it cannot be servered but we can add to order data.`
	`924`	`+`
`923`	`925`	`var fullName = StoreSettings.Current.FolderTempMapPath.TrimEnd(Convert.ToChar("\\")) + "\\" + fn;`
`924`	`926`	`if (File.Exists(fullName))`
`925`	`927`	`{`
`@@ -929,7 +931,7 @@ public string UpdateProductImages(HttpContext context)`
`929`	`931`	`imageInfo = NBrightBuyUtils.ProcessImageProvider("product", imageInfo);`
`930`	`932`	`var newfullName = imageInfo.GetXmlProperty("genxml/uploadedimagemappath");`
`931`	`933`	`if (newfullName != "") fullName = newfullName;`
`932`		`-`
	`934`	`+`
`933`	`935`	`// deal with image`
`934`	`936`	`File.Move(fullName, fullName + extension);`
`935`	`937`	`fullName = fullName + extension;`
`@@ -1156,8 +1158,9 @@ public string UpdateProductDocs(HttpContext context)`
`1156`	`1158`	`{`
`1157`	`1159`	`fn = fn.Replace(c, '_');`
`1158`	`1160`	`}`
	`1161`	`+ fn = extension + "-" + fn; // add extension to front, so it cannot be servered but we can add to order data.`
`1159`	`1162`
`1160`		`- string fullName = StoreSettings.Current.FolderTempMapPath + "\\" + fn;`
	`1163`	`+ var fullName = StoreSettings.Current.FolderTempMapPath.TrimEnd(Convert.ToChar("\\")) + "\\" + fn;`
`1161`	`1164`	`//if ((extension.ToLower() == ".pdf" \|\| extension.ToLower() == ".zip"))`
`1162`	`1165`	`//{`
`1163`	`1166`	`if (File.Exists(fullName))`