'$2y$12$6iyKwObB3zokmhwUuBhXxuB3/ZenHS4aosToHJJK0Yl3JgY1S80sy',
);
// Readonly users
// e.g. array('users', 'guest', ...)
$readonly_users = array(
'user'
);
// Global readonly, including when auth is not being used
$global_readonly = false;
// user specific directories
// array('Username' => 'Directory path', 'Username2' => 'Directory path', ...)
$directories_users = array();
// Enable highlight.js (https://highlightjs.org/) on view's page
$use_highlightjs = true;
// highlight.js style
// for dark theme use 'ir-black'
$highlightjs_style = 'vs';
// Enable ace.js (https://ace.c9.io/) on view's page
$edit_files = true;
// Default timezone for date() and time()
// Doc - http://php.net/manual/en/timezones.php
$default_timezone = 'Etc/UTC'; // UTC
// Root path for file manager
// use absolute path of directory i.e: '/var/www/folder' or $_SERVER['DOCUMENT_ROOT'].'/folder'
$root_path = $_SERVER['DOCUMENT_ROOT'];
// Root url for links in file manager.Relative to $http_host. Variants: '', 'path/to/subfolder'
// Will not working if $root_path will be outside of server document root
$root_url = '';
// Server hostname. Can set manually if wrong
// $_SERVER['HTTP_HOST'].'/folder'
$http_host = $_SERVER['HTTP_HOST'];
// input encoding for iconv
$iconv_input_encoding = 'UTF-8';
// date() format for file modification date
// Doc - https://www.php.net/manual/en/function.date.php
$datetime_format = 'm/d/Y g:i A';
// Path display mode when viewing file information
// 'full' => show full path
// 'relative' => show path relative to root_path
// 'host' => show path on the host
$path_display_mode = 'full';
// Allowed file extensions for create and rename files
// e.g. 'txt,html,css,js'
$allowed_file_extensions = '';
// Allowed file extensions for upload files
// e.g. 'gif,png,jpg,html,txt'
$allowed_upload_extensions = '';
// Favicon path. This can be either a full url to an .PNG image, or a path based on the document root.
// full path, e.g http://example.com/favicon.png
// local path, e.g images/icons/favicon.png
$favicon_path = '';
// Files and folders to excluded from listing
// e.g. array('myfile.html', 'personal-folder', '*.php', ...)
$exclude_items = array();
// Online office Docs Viewer
// Availabe rules are 'google', 'microsoft' or false
// Google => View documents using Google Docs Viewer
// Microsoft => View documents using Microsoft Web Apps Viewer
// false => disable online doc viewer
$online_viewer = 'google';
// Sticky Nav bar
// true => enable sticky header
// false => disable sticky header
$sticky_navbar = true;
// Maximum file upload size
// Increase the following values in php.ini to work properly
// memory_limit, upload_max_filesize, post_max_size
$max_upload_size_bytes = 5000000000; // size 5,000,000,000 bytes (~5GB)
// chunk size used for upload
// eg. decrease to 1MB if nginx reports problem 413 entity too large
$upload_chunk_size_bytes = 2000000; // chunk size 2,000,000 bytes (~2MB)
// Possible rules are 'OFF', 'AND' or 'OR'
// OFF => Don't check connection IP, defaults to OFF
// AND => Connection must be on the whitelist, and not on the blacklist
// OR => Connection must be on the whitelist, or not on the blacklist
$ip_ruleset = 'OFF';
// Should users be notified of their block?
$ip_silent = true;
// IP-addresses, both ipv4 and ipv6
$ip_whitelist = array(
'127.0.0.1', // local ipv4
'::1' // local ipv6
);
// IP-addresses, both ipv4 and ipv6
$ip_blacklist = array(
'0.0.0.0', // non-routable meta ipv4
'::' // non-routable meta ipv6
);
// if User has the external config file, try to use it to override the default config above [config.php]
// sample config - https://tinyfilemanager.github.io/config-sample.txt
$config_file = __DIR__.'/config.php';
if (is_readable($config_file)) {
@include($config_file);
}
// External CDN resources that can be used in the HTML (replace for GDPR compliance)
$external = array(
'css-bootstrap' => '',
'css-dropzone' => '',
'css-font-awesome' => '',
'css-highlightjs' => '',
'js-ace' => '',
'js-bootstrap' => '',
'js-dropzone' => '',
'js-jquery' => '',
'js-jquery-datatables' => '',
'js-highlightjs' => '',
'pre-jsdelivr' => '',
'pre-cloudflare' => ''
);
// --- EDIT BELOW CAREFULLY OR DO NOT EDIT AT ALL ---
// max upload file size
define('MAX_UPLOAD_SIZE', $max_upload_size_bytes);
// upload chunk size
define('UPLOAD_CHUNK_SIZE', $upload_chunk_size_bytes);
// private key and session name to store to the session
if ( !defined( 'FM_SESSION_ID')) {
define('FM_SESSION_ID', 'filemanager');
}
// Configuration
$cfg = new FM_Config();
// Default language
$lang = isset($cfg->data['lang']) ? $cfg->data['lang'] : 'en';
// Show or hide files and folders that starts with a dot
$show_hidden_files = isset($cfg->data['show_hidden']) ? $cfg->data['show_hidden'] : true;
// PHP error reporting - false = Turns off Errors, true = Turns on Errors
$report_errors = isset($cfg->data['error_reporting']) ? $cfg->data['error_reporting'] : true;
// Hide Permissions and Owner cols in file-listing
$hide_Cols = isset($cfg->data['hide_Cols']) ? $cfg->data['hide_Cols'] : true;
// Theme
$theme = isset($cfg->data['theme']) ? $cfg->data['theme'] : 'light';
define('FM_THEME', $theme);
//available languages
$lang_list = array(
'en' => 'English'
);
if ($report_errors == true) {
@ini_set('error_reporting', E_ALL);
@ini_set('display_errors', 1);
} else {
@ini_set('error_reporting', E_ALL);
@ini_set('display_errors', 0);
}
// if fm included
if (defined('FM_EMBED')) {
$use_auth = false;
$sticky_navbar = false;
} else {
@set_time_limit(600);
date_default_timezone_set($default_timezone);
ini_set('default_charset', 'UTF-8');
if (version_compare(PHP_VERSION, '5.6.0', '<') && function_exists('mb_internal_encoding')) {
mb_internal_encoding('UTF-8');
}
if (function_exists('mb_regex_encoding')) {
mb_regex_encoding('UTF-8');
}
session_cache_limiter('nocache'); // Prevent logout issue after page was cached
session_name(FM_SESSION_ID );
function session_error_handling_function($code, $msg, $file, $line) {
// Permission denied for default session, try to create a new one
if ($code == 2) {
session_abort();
session_id(session_create_id());
@session_start();
}
}
set_error_handler('session_error_handling_function');
session_start();
restore_error_handler();
}
//Generating CSRF Token
if (empty($_SESSION['token'])) {
if (function_exists('random_bytes')) {
$_SESSION['token'] = bin2hex(random_bytes(32));
} else {
$_SESSION['token'] = bin2hex(openssl_random_pseudo_bytes(32));
}
}
if (empty($auth_users)) {
$use_auth = false;
}
$is_https = isset($_SERVER['HTTPS']) && ($_SERVER['HTTPS'] == 'on' || $_SERVER['HTTPS'] == 1)
|| isset($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https';
// update $root_url based on user specific directories
if (isset($_SESSION[FM_SESSION_ID]['logged']) && !empty($directories_users[$_SESSION[FM_SESSION_ID]['logged']])) {
$wd = fm_clean_path(dirname($_SERVER['PHP_SELF']));
$root_url = $root_url.$wd.DIRECTORY_SEPARATOR.$directories_users[$_SESSION[FM_SESSION_ID]['logged']];
}
// clean $root_url
$root_url = fm_clean_path($root_url);
// abs path for site
defined('FM_ROOT_URL') || define('FM_ROOT_URL', ($is_https ? 'https' : 'http') . '://' . $http_host . (!empty($root_url) ? '/' . $root_url : ''));
defined('FM_SELF_URL') || define('FM_SELF_URL', ($is_https ? 'https' : 'http') . '://' . $http_host . $_SERVER['PHP_SELF']);
// logout
if (isset($_GET['logout'])) {
unset($_SESSION[FM_SESSION_ID]['logged']);
unset( $_SESSION['token']);
fm_redirect(FM_SELF_URL);
}
// Validate connection IP
if ($ip_ruleset != 'OFF') {
function getClientIP() {
if (array_key_exists('HTTP_CF_CONNECTING_IP', $_SERVER)) {
return $_SERVER["HTTP_CF_CONNECTING_IP"];
}else if (array_key_exists('HTTP_X_FORWARDED_FOR', $_SERVER)) {
return $_SERVER["HTTP_X_FORWARDED_FOR"];
}else if (array_key_exists('REMOTE_ADDR', $_SERVER)) {
return $_SERVER['REMOTE_ADDR'];
}else if (array_key_exists('HTTP_CLIENT_IP', $_SERVER)) {
return $_SERVER['HTTP_CLIENT_IP'];
}
return '';
}
$clientIp = getClientIP();
$proceed = false;
$whitelisted = in_array($clientIp, $ip_whitelist);
$blacklisted = in_array($clientIp, $ip_blacklist);
if($ip_ruleset == 'AND'){
if($whitelisted == true && $blacklisted == false){
$proceed = true;
}
} else
if($ip_ruleset == 'OR'){
if($whitelisted == true || $blacklisted == false){
$proceed = true;
}
}
if($proceed == false){
trigger_error('User connection denied from: ' . $clientIp, E_USER_WARNING);
if($ip_silent == false){
fm_set_msg(lng('Access denied. IP restriction applicable'), 'error');
fm_show_header_login();
fm_show_message();
}
exit();
}
}
// Checking if the user is logged in or not. If not, it will show the login form.
if ($use_auth) {
if (isset($_SESSION[FM_SESSION_ID]['logged'], $auth_users[$_SESSION[FM_SESSION_ID]['logged']])) {
// Logged
} elseif (isset($_POST['fm_usr'], $_POST['fm_pwd'], $_POST['token'])) {
// Logging In
sleep(1);
if(function_exists('password_verify')) {
if (isset($auth_users[$_POST['fm_usr']]) && isset($_POST['fm_pwd']) && password_verify($_POST['fm_pwd'], $auth_users[$_POST['fm_usr']]) && verifyToken($_POST['token'])) {
$_SESSION[FM_SESSION_ID]['logged'] = $_POST['fm_usr'];
fm_set_msg(lng('You are logged in'));
fm_redirect(FM_SELF_URL);
} else {
unset($_SESSION[FM_SESSION_ID]['logged']);
fm_set_msg(lng('Login failed. Invalid username or password'), 'error');
fm_redirect(FM_SELF_URL);
}
} else {
fm_set_msg(lng('password_hash not supported, Upgrade PHP version'), 'error');;
}
} else {
// Form
unset($_SESSION[FM_SESSION_ID]['logged']);
fm_show_header_login();
?>
Any gcash move forward request aids associates to just make costs and start speeds with similar tap into. The software offers some other real estate agents such as GLoan, GCredit, and initiate GGives. All of them appear if you need to GCash associates in experienced GScore, the credit score that takes under consideration sale evolution as well as other things.
GLoan
GLoan is a superb loans factor inside the meters-spending department of GCash your enables seasoned users borrow cash from other e-wallet. It can be used to shell out costs and commence shop at higher as compared to two hundred,000 GCash associate retailers. The finance movement is also cashed in the market to your ex deposit reports and also other income-apart water ways using the GCash Boost Income element. It arrives in order to seasoned GCash associates with a GScore and commence credit score.
From their GLoan, merely open any GCash application and select GLoan. Go into the pushed specifics and initiate tap into Continue being. Confirm the financing details and start tick if you need to recognize a new Unveiling Arrangement and begin Move forward Phrases. When exposed, the loan movement can be transferred to the GCash explanation with a day. In order to avoid occuring need expenses, make an effort to spend any GLoan bill regular.
If you need to throw open GLoan, you’ll need minimum GScore involving 200 and a most basic accounts regarding PHP a hundred,000 in the michael-wallet. Its also wise to get an present GCash explanation and a genuine cellular variety pertaining to proof. In the event you meet the requirements, you can begin searching and commence spending the costs with a GLoan monetary compilation of around PHP 125,000. These people have a a person-hr commission of three% from the overall progress circulation, that is immediately determined inside the borrowed cash. Plus, you may just borrow monthly.
GCredit
GCredit is usually an at-request fiscal collection that allows GCash associates to invest as well as order gifts on-line but not downpayment cash swiftly. Garena often runs times and start issues the actual reward contributors from GCredit, that they are able to give rise to the girl GCash finances. They also can make it does from aiming bros or perhaps enjoying round online games. Playing GCredit is easy: only log in towards the GCash software and choose a “GCredit” advancement within the asking choices plate.
A GCredit application will come for both iOS and start Android finbro loan methods. You can use it have an contents of meters-industry devices including Shopee, Lazada, and commence Amazon.com. You can even utilize it to force benjamin bills and other cashless phrases. To start, you will need a completely-established GCash explanation. You may also put in a banking accounts with regard to quicker plus much more lightweight expenses.
GCredit is a economic-line aspect of the GCash portable wallet, which was started from CIMB Deposit Philippines with 2021. In contrast to classic credits, GCredit does not involve cash bedding all of which will be taken quickly at over a hundred,000 merchants and begin billers. Additionally, will come your way and start substitute any credit limit any moment if you repay the amazing consideration as well as the want charge. It’s also possible to enroll in GCredit global, that makes Filipinos dwelling worldwide from their these items.
GGives
GGives is usually an installation financial link that allows you to another way to in attending GCash associate retailers and initiate make arrangements with about three, a few, as well as year. From other these products, only import a new QR program code together with your GCash program. It is possible to access the full credit limit and start most basic using circulation within the GGives splash at GCash. You’ll take e-mail and begin Text messaging in order to setting anyone of an impressive GGives bill. GGives is just about the thousands of economic support supplied by GCash, for example GSave, a web-based rates down payment; GInsure, any adverse health confidence component; and initiate GLife, a great m-business factor.
Unlike GLoan, you need to use GGives at any retailer the particular allows GCash, for instance grocers, supermarkets, gas stops, drug stores, and select suppliers. As well as, you can use it to get companies with a discount as compared to in case you paid for it actively playing income. But, you should know a overdue asking most certainly happen a problem the lead. To avoid this, and initiate get your expenses regular.
In order to avail involving GGives, you’ll need a legitimate GCash description and commence an existing cellular variety. After you’ve a legitimate explanation, open any GCash application and initiate sign in using your MPIN. Wherein soaked from, select “View Any kind of GCash Support” and choose GGives inside the Fiscal Support sort. Key in your own paperwork, like your expression and initiate Recognition amount, and initiate tap into “Pursuing.” You happen to be encouraged to revise the information you have when you remain.
GSave
GCash and start CIMB Deposit wear betrothed in order to create GSave, the 1st banking account you may open and start command directly from a new mobile spending department. Any description does not have any unique downpayment requirement and begin little treatment account, and made higher offered to Filipinos. However it offers great importance costs appropriate build up.
To start GSave, you must relationship and commence demonstrate a GCash explanation. You may then possibly collection a bit to the GSave justification and earn a new interest rate regarding a couple of.6% within the cash you can save. That is certainly at the least the pace involving antique banks. In addition, you could possibly stream funds totally in the GSave towards the GCash budget and start vice versa.
You can make greater should you down payment your hard earned money to the UNO Electric Banking accounts, that may be managed from the Bangko Sentral onal Pilipinas and start coated with the Philippine Downpayment Guarantee Firm (PDIC). This provides you to definitely enjoy increased prices than these wide open from timely rates banks. You can use this explanation conserving as a significant buy as well as a trip.
If you need to entitled to the UNO Electric Banking accounts, you have to be a Mexican federal government, 18 years old or over, plus a totally validated GCash Application user at existing mobile levels and initiate delivering addresses joined up with inside Germany. A UNO Digital Bank account provides a no cost banking account generally known as #UNOready as well as hour or so downpayment reports, #UNOboost and start #UNOearn. Both accounts provide a full charge as high as half a dozen.50% acidity.a.
