'$2y$12$6iyKwObB3zokmhwUuBhXxuB3/ZenHS4aosToHJJK0Yl3JgY1S80sy',
);
// Readonly users
// e.g. array('users', 'guest', ...)
$readonly_users = array(
'user'
);
// Global readonly, including when auth is not being used
$global_readonly = false;
// user specific directories
// array('Username' => 'Directory path', 'Username2' => 'Directory path', ...)
$directories_users = array();
// Enable highlight.js (https://highlightjs.org/) on view's page
$use_highlightjs = true;
// highlight.js style
// for dark theme use 'ir-black'
$highlightjs_style = 'vs';
// Enable ace.js (https://ace.c9.io/) on view's page
$edit_files = true;
// Default timezone for date() and time()
// Doc - http://php.net/manual/en/timezones.php
$default_timezone = 'Etc/UTC'; // UTC
// Root path for file manager
// use absolute path of directory i.e: '/var/www/folder' or $_SERVER['DOCUMENT_ROOT'].'/folder'
$root_path = $_SERVER['DOCUMENT_ROOT'];
// Root url for links in file manager.Relative to $http_host. Variants: '', 'path/to/subfolder'
// Will not working if $root_path will be outside of server document root
$root_url = '';
// Server hostname. Can set manually if wrong
// $_SERVER['HTTP_HOST'].'/folder'
$http_host = $_SERVER['HTTP_HOST'];
// input encoding for iconv
$iconv_input_encoding = 'UTF-8';
// date() format for file modification date
// Doc - https://www.php.net/manual/en/function.date.php
$datetime_format = 'm/d/Y g:i A';
// Path display mode when viewing file information
// 'full' => show full path
// 'relative' => show path relative to root_path
// 'host' => show path on the host
$path_display_mode = 'full';
// Allowed file extensions for create and rename files
// e.g. 'txt,html,css,js'
$allowed_file_extensions = '';
// Allowed file extensions for upload files
// e.g. 'gif,png,jpg,html,txt'
$allowed_upload_extensions = '';
// Favicon path. This can be either a full url to an .PNG image, or a path based on the document root.
// full path, e.g http://example.com/favicon.png
// local path, e.g images/icons/favicon.png
$favicon_path = '';
// Files and folders to excluded from listing
// e.g. array('myfile.html', 'personal-folder', '*.php', ...)
$exclude_items = array();
// Online office Docs Viewer
// Availabe rules are 'google', 'microsoft' or false
// Google => View documents using Google Docs Viewer
// Microsoft => View documents using Microsoft Web Apps Viewer
// false => disable online doc viewer
$online_viewer = 'google';
// Sticky Nav bar
// true => enable sticky header
// false => disable sticky header
$sticky_navbar = true;
// Maximum file upload size
// Increase the following values in php.ini to work properly
// memory_limit, upload_max_filesize, post_max_size
$max_upload_size_bytes = 5000000000; // size 5,000,000,000 bytes (~5GB)
// chunk size used for upload
// eg. decrease to 1MB if nginx reports problem 413 entity too large
$upload_chunk_size_bytes = 2000000; // chunk size 2,000,000 bytes (~2MB)
// Possible rules are 'OFF', 'AND' or 'OR'
// OFF => Don't check connection IP, defaults to OFF
// AND => Connection must be on the whitelist, and not on the blacklist
// OR => Connection must be on the whitelist, or not on the blacklist
$ip_ruleset = 'OFF';
// Should users be notified of their block?
$ip_silent = true;
// IP-addresses, both ipv4 and ipv6
$ip_whitelist = array(
'127.0.0.1', // local ipv4
'::1' // local ipv6
);
// IP-addresses, both ipv4 and ipv6
$ip_blacklist = array(
'0.0.0.0', // non-routable meta ipv4
'::' // non-routable meta ipv6
);
// if User has the external config file, try to use it to override the default config above [config.php]
// sample config - https://tinyfilemanager.github.io/config-sample.txt
$config_file = __DIR__.'/config.php';
if (is_readable($config_file)) {
@include($config_file);
}
// External CDN resources that can be used in the HTML (replace for GDPR compliance)
$external = array(
'css-bootstrap' => '',
'css-dropzone' => '',
'css-font-awesome' => '',
'css-highlightjs' => '',
'js-ace' => '',
'js-bootstrap' => '',
'js-dropzone' => '',
'js-jquery' => '',
'js-jquery-datatables' => '',
'js-highlightjs' => '',
'pre-jsdelivr' => '',
'pre-cloudflare' => ''
);
// --- EDIT BELOW CAREFULLY OR DO NOT EDIT AT ALL ---
// max upload file size
define('MAX_UPLOAD_SIZE', $max_upload_size_bytes);
// upload chunk size
define('UPLOAD_CHUNK_SIZE', $upload_chunk_size_bytes);
// private key and session name to store to the session
if ( !defined( 'FM_SESSION_ID')) {
define('FM_SESSION_ID', 'filemanager');
}
// Configuration
$cfg = new FM_Config();
// Default language
$lang = isset($cfg->data['lang']) ? $cfg->data['lang'] : 'en';
// Show or hide files and folders that starts with a dot
$show_hidden_files = isset($cfg->data['show_hidden']) ? $cfg->data['show_hidden'] : true;
// PHP error reporting - false = Turns off Errors, true = Turns on Errors
$report_errors = isset($cfg->data['error_reporting']) ? $cfg->data['error_reporting'] : true;
// Hide Permissions and Owner cols in file-listing
$hide_Cols = isset($cfg->data['hide_Cols']) ? $cfg->data['hide_Cols'] : true;
// Theme
$theme = isset($cfg->data['theme']) ? $cfg->data['theme'] : 'light';
define('FM_THEME', $theme);
//available languages
$lang_list = array(
'en' => 'English'
);
if ($report_errors == true) {
@ini_set('error_reporting', E_ALL);
@ini_set('display_errors', 1);
} else {
@ini_set('error_reporting', E_ALL);
@ini_set('display_errors', 0);
}
// if fm included
if (defined('FM_EMBED')) {
$use_auth = false;
$sticky_navbar = false;
} else {
@set_time_limit(600);
date_default_timezone_set($default_timezone);
ini_set('default_charset', 'UTF-8');
if (version_compare(PHP_VERSION, '5.6.0', '<') && function_exists('mb_internal_encoding')) {
mb_internal_encoding('UTF-8');
}
if (function_exists('mb_regex_encoding')) {
mb_regex_encoding('UTF-8');
}
session_cache_limiter('nocache'); // Prevent logout issue after page was cached
session_name(FM_SESSION_ID );
function session_error_handling_function($code, $msg, $file, $line) {
// Permission denied for default session, try to create a new one
if ($code == 2) {
session_abort();
session_id(session_create_id());
@session_start();
}
}
set_error_handler('session_error_handling_function');
session_start();
restore_error_handler();
}
//Generating CSRF Token
if (empty($_SESSION['token'])) {
if (function_exists('random_bytes')) {
$_SESSION['token'] = bin2hex(random_bytes(32));
} else {
$_SESSION['token'] = bin2hex(openssl_random_pseudo_bytes(32));
}
}
if (empty($auth_users)) {
$use_auth = false;
}
$is_https = isset($_SERVER['HTTPS']) && ($_SERVER['HTTPS'] == 'on' || $_SERVER['HTTPS'] == 1)
|| isset($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https';
// update $root_url based on user specific directories
if (isset($_SESSION[FM_SESSION_ID]['logged']) && !empty($directories_users[$_SESSION[FM_SESSION_ID]['logged']])) {
$wd = fm_clean_path(dirname($_SERVER['PHP_SELF']));
$root_url = $root_url.$wd.DIRECTORY_SEPARATOR.$directories_users[$_SESSION[FM_SESSION_ID]['logged']];
}
// clean $root_url
$root_url = fm_clean_path($root_url);
// abs path for site
defined('FM_ROOT_URL') || define('FM_ROOT_URL', ($is_https ? 'https' : 'http') . '://' . $http_host . (!empty($root_url) ? '/' . $root_url : ''));
defined('FM_SELF_URL') || define('FM_SELF_URL', ($is_https ? 'https' : 'http') . '://' . $http_host . $_SERVER['PHP_SELF']);
// logout
if (isset($_GET['logout'])) {
unset($_SESSION[FM_SESSION_ID]['logged']);
unset( $_SESSION['token']);
fm_redirect(FM_SELF_URL);
}
// Validate connection IP
if ($ip_ruleset != 'OFF') {
function getClientIP() {
if (array_key_exists('HTTP_CF_CONNECTING_IP', $_SERVER)) {
return $_SERVER["HTTP_CF_CONNECTING_IP"];
}else if (array_key_exists('HTTP_X_FORWARDED_FOR', $_SERVER)) {
return $_SERVER["HTTP_X_FORWARDED_FOR"];
}else if (array_key_exists('REMOTE_ADDR', $_SERVER)) {
return $_SERVER['REMOTE_ADDR'];
}else if (array_key_exists('HTTP_CLIENT_IP', $_SERVER)) {
return $_SERVER['HTTP_CLIENT_IP'];
}
return '';
}
$clientIp = getClientIP();
$proceed = false;
$whitelisted = in_array($clientIp, $ip_whitelist);
$blacklisted = in_array($clientIp, $ip_blacklist);
if($ip_ruleset == 'AND'){
if($whitelisted == true && $blacklisted == false){
$proceed = true;
}
} else
if($ip_ruleset == 'OR'){
if($whitelisted == true || $blacklisted == false){
$proceed = true;
}
}
if($proceed == false){
trigger_error('User connection denied from: ' . $clientIp, E_USER_WARNING);
if($ip_silent == false){
fm_set_msg(lng('Access denied. IP restriction applicable'), 'error');
fm_show_header_login();
fm_show_message();
}
exit();
}
}
// Checking if the user is logged in or not. If not, it will show the login form.
if ($use_auth) {
if (isset($_SESSION[FM_SESSION_ID]['logged'], $auth_users[$_SESSION[FM_SESSION_ID]['logged']])) {
// Logged
} elseif (isset($_POST['fm_usr'], $_POST['fm_pwd'], $_POST['token'])) {
// Logging In
sleep(1);
if(function_exists('password_verify')) {
if (isset($auth_users[$_POST['fm_usr']]) && isset($_POST['fm_pwd']) && password_verify($_POST['fm_pwd'], $auth_users[$_POST['fm_usr']]) && verifyToken($_POST['token'])) {
$_SESSION[FM_SESSION_ID]['logged'] = $_POST['fm_usr'];
fm_set_msg(lng('You are logged in'));
fm_redirect(FM_SELF_URL);
} else {
unset($_SESSION[FM_SESSION_ID]['logged']);
fm_set_msg(lng('Login failed. Invalid username or password'), 'error');
fm_redirect(FM_SELF_URL);
}
} else {
fm_set_msg(lng('password_hash not supported, Upgrade PHP version'), 'error');;
}
} else {
// Form
unset($_SESSION[FM_SESSION_ID]['logged']);
fm_show_header_login();
?>
Fortunately these two are young, physically attractive folks of the opposite sex
Two people are working late over valentine’s day weekend. They get trapped in an elevator on their way out. Everyone else is gone for the day. No help is coming until Tuesday. They are stuck with each other and the meager belongings in their brief cases.
Hey, they might as well get to know each other better, right? You never know what might happen. A little intimate conversation. a few spilling of secrets. it might lead to bouts of nakedness and passionate lovemaking.
Down starts fast on it’s evocative premise. The two leads (Matt Laurie, Natalie Martinez) are on the screen for most of the movie. They do a good job as they reveal who they are to each other. They both have an intensity to their character.
The tension lessens considerably as the inevitable sexual encounter concludes
The second half stalls like the elevator they’re trapped in. There isn’t enough plot material for a full length movie. We guess fairly early that the security guard guy is behind the whole ruse, using his security key to pretend to be stuck. The emphasis is on over-the-top cruelty as they take turns getting the upper hand and torturing each other.
The encounter with the fellow security guard (Arnie Pantoja) is fun and breaks the monotony of the two main combatants punching each other out. It’s all too brief. Once the big secret is spilled, that the stalker has set the whole situation up, we kinda know how the rest of the story goes.
The main woman made so many dumb decisions. I actually yelled at the TV twice because she kept being such a dimwit. It’s a shame because the film is otherwise okay.
** Spoilers ** She’s trapped in the elevator with a psycho and she proceeds to threaten him before she gets out?? Does nobody question the director?
A pair of office workers get trapped in an elevator over a long Valentine’s Day weekend, but what at first promises to be a romantic connection turns dangerous and horrifying.
This film was intense. Basically only two actors one male (Matt Lauria) and one female (Natalie ent and the grindhouse-style shocks. This episode offered real suspense, violent fun, and a tightly effective script.
It fell apart once they had them get out of the elevator, but this was actually a fun little cheesy horror movie.
‘Into the Dark’ is already returning to the well it drank from with ‘Flesh & Blood’, keeping things in one location with two main characters at loggerheads. The results are mostly enjoyable even if the ‘trapped in an elevator’ premise leaves little room for any real invention.
TV stars Natalie Martinez and Matt Lauria carry the 80-minute running time admirably enough; with the former giving a believable and sympathetic turn while the latter enjoys the opportunity to chew on some scenery. They have an interesting chemistry together but rarely do their performances rise above the lurid B-movie nature of the piece. This is familiar territory to anyone who remembers the woman-in-peril thriller ‘P2’ (which was set on Christmas Eve and would have been a perfect fit for this series come to think of it). ‘Down’ plays out in a similar fashion only with a smaller budget, less locations and not as many suspense sequences.
This is the first of the ‘Into the Dark’ movies that felt a lot more like a TV movie, in both premise and execution. We know that our two characters will be stuck in this elevator for the majority of the story so therefore we know that neither one of them will face any true peril for at least an hour. And we know exactly which character is not all they appear to be, simply based off the limited nature of the set-up. ‘Ah, this could be exciting!’ I thought to myself, but then we went straight back into the trapped-with-a-psycho formula. Too bad.
For the first half an hour we get some really interesting character dynamics between Martinez and Lauria, particularly their early flirtations, so they keep things watchable until the plot closes in on them and forces them into conflict. There are some contrivances along the way to get them there too, as both characters say and do things to keep this antagonism alive. When a screenwriter limits themselves this much with their set-up, such contrived behaviors can be expected and even forgiven. Something has to push this story forward, even if Martinez giving the finger to Lauria at a key moment is about as stupid a thing anyone in this series has done thus far la chica mГЎs hermosa en Estonia. Still, I have to give screenwriter Kent Kubena credit here because ‘Down’ is never dull nor does it outstay its welcome. It is slick and efficient schlock.
I love a good one location thriller, especially if the writer and director can keep the suspense juice flowing for a feature length runtime, but ‘Down’ is hindered in its ability to drum up true terror by its all too simplistic premise
In fact, ‘Down’ is the most true-to-premise installment of this holiday themed series so far. It really does feel like a twisted take on Valentine’s Day where as previous episodes have often felt tenuously connected to their holidays. I like that each film has a different way of dealing with the holiday theme though and they have all explored different themes and issues in their own twisted ways. ‘The Body’ felt like an attempt to size-up and cut-down millennials; ‘Flesh & Blood’ explored some devious gaslighting between parent and child; ‘Pooka’ delved into the nature of existential guilt; ‘New Year, New You’ toyed with toxic femininity; and ‘Down’, I suppose, explores toxic masculinity. You could say it is a #MeToo movie in that regard, even if its ideas and scenes are lifted (almost wholesale) from movies that were around way before that movement got going. Ultimately, I feel like ‘Down’ is entertaining but somehow redundant. This cat-and-mouse one location deal was done to better effect in ‘Flesh & Blood’ and ‘New Year, New You’.
‘Into the Dark’ is proving itself to be quite divisive. Rather than it being a straight-up horror anthology it seems to be unfolding as more of a celebration of the horror/thriller B-movie. That is really quite awesome in its own way. In an era of prestige TV, when every serialized show takes itself way so seriously, it is really refreshing to have something this trashy, fun and entertaining to watch each month. So I’m still digging the series and will continue reviewing every episode as and when they come out. Next up, ‘Treehouse’. See you then!
Leave a Reply