<%@page contentType="text/html;charset=gb2312"%><%@page 
import="jcms.blf.webinfo.Jcms_WebinfomationBLF"%><%@
page import="com.hanweb.common.util.Convert"%><%@
page import="java.io.File"%><%@page import="jcms.util.SafeUtil"%><%@
page import="com.hanweb.common.log.LogWriter"%><%@
page import="jcms.blf.medium.Jcms_AttachBLF"%><%@
page import="jcms.entity.Jcms_AttachEntity"%>
<%@page import="java.net.URLEncoder"%><jsp:useBean 
id="xmlFile" class="jcms.allmodal.XMLFile" scope="page" /><%@include file="./config.jsp"%><%
	String strFileName = Convert.getParameter(request, "filename", "", true, true);
if(SafeUtil.isSqlAndXss(strFileName)) {
	out.println("参数包含非法字符，禁止访问");
	return;
}
	//模块类型
	String module = Convert.getParameter(request, "module", "", true, true);
	if (strFileName.length() == 0) {
		LogWriter.debug("未指定要下载文件的文件名!");
		return;
	}
	
	Jcms_AttachBLF attachBlf = new Jcms_AttachBLF(strAppID,strWebID);
	Jcms_AttachEntity attachEn = attachBlf.getEntityByFileName(strFileName);
	if (attachEn == null) {
		out.println(Convert.getAlterScript("alert('文件不存在!');"));
		return;
	}
	
	String fileType = "";
	if(strFileName.lastIndexOf(".") >= 0 && strFileName.lastIndexOf(".") < strFileName.length() - 1 ){
	    fileType = strFileName.substring(strFileName.lastIndexOf(".") + 1);
	}
	
	int classId = attachEn.getI_typeid();//类别ID
	String downloadname = attachEn.getVc_name();//下载显示名
	String strFilePath = application.getRealPath("") + "/jcms_files/jcms"
	+ strAppID + "/web" + strWebID + "/site/attach/"
	+ classId + "/" + strFileName;//物理路径

	
	File file = new File(strFilePath);
	if("document".equals(module)){//（增加原因：文档管理，附件管理的其他类别，可能会有xml格式的文件，点击文件名，下载时，会报下载失败。是因为被过滤了。ps:不知道能不能下面57行的webtype来区分）
		if (!file.isFile() || !file.exists()) {
			LogWriter.debug(" downfile:文件不存在!");
			out.println(Convert.getAlterScript("alert('下载失败，文件不存在！');"));
			return;
		}
	}else{
		if (!file.isFile() || !file.exists() || strFilePath.toLowerCase().endsWith(".xml") 
				|| strFilePath.toLowerCase().endsWith(".jsp")) {
			LogWriter.debug(" downfile:文件不存在!");
			out.println(Convert.getAlterScript("alert('下载失败，文件不存在！');"));
			return;
		}
	}
	

	String webPath = application.getRealPath("") + File.separator + "jcms_files" + File.separator + "jcms" + 
					strAppID + File.separator	+ "web" + strWebID + File.separator	+"site"+File.separator;
	String confPath = webPath + "module" + File.separator + "download" + File.separator + "config" + File.separator + "config.xml";
	String webtype = xmlFile.getContent( "webtype",confPath );		//1:内网 2:外网
	
	String filedownload = "/jcms_files/jcms" + strAppID + "/web" + strWebID + "/site/attach/" + classId + "/" + strFileName;//下载路径
	
	//pdf文件在文章页中直接预览
	String filenamedisplay = "";    
	String userAgent = request.getHeader("USER-AGENT");
	if(userAgent.lastIndexOf("Safari") > -1 && userAgent.lastIndexOf("Chrome") == -1) {
		filenamedisplay = new String(downloadname.getBytes("UTF-8"),"ISO8859-1") ;
	}else{
		filenamedisplay = URLEncoder.encode(downloadname,"UTF-8");
	}
	
	if(!"pdf".equals(fileType)){
		response.setContentType("application/octet-stream");//设置为下载application/octet-stream    
		response.addHeader("Content-Disposition","attachment;filename=\"" + filenamedisplay + "\"");
	}
	else{
		response.addHeader("Content-Disposition","filename=\"" + filenamedisplay + "\"");
	}
	
	try{   
		out.clear();    
		out=pageContext.pushBody(); 
	}catch(Throwable e){
		
	}
	try {    
		RequestDispatcher dis = application.getRequestDispatcher(filedownload);
		if(dis!= null){    
			dis.forward(request,response);
		}
	}
	catch(Exception e){
		
	}    
	finally{    
		response.flushBuffer();   
	}
%>