From 9e6916b591bff6802e37dac813d9381393d3d791 Mon Sep 17 00:00:00 2001
From: Tommy <tommy@iamnotagoodartist.com>
Date: Sun, 18 Mar 2012 21:07:51 -0500
Subject: [PATCH] markup cleanup, css font and line-height changes

---
 style.css => onefilecms.css |  11 +-
 onefilecms.php              | 989 ++++++++++++++++++------------------
 2 files changed, 514 insertions(+), 486 deletions(-)
 rename style.css => onefilecms.css (96%)

diff --git a/style.css b/onefilecms.css
similarity index 96%
rename from style.css
rename to onefilecms.css
index adf6b47..bff5def 100644
--- a/style.css
+++ b/onefilecms.css
@@ -14,9 +14,9 @@ h1,h2,h3,h4,h5,h6{font-weight: bold;}
 
 body {
 	font-size: 12px;
-	line-height: 1;
+	line-height: 20px;
 	background: #d5d0cc url("/images/background.jpg") top center no-repeat;
-	font-family: Century Gothic, Apple Gothic, sans-serif;
+	font-family: sans-serif;
 	color: #0F0901;
 }
 
@@ -45,7 +45,7 @@ body {
 
 /* --- general formatting --- */
 
-h2, h3, p, ul { margin-bottom: 10px; }
+h2,h3,p,ul,table { margin-bottom: 10px; }
 p, li {line-height: 1.4em; }
 form p { margin-bottom: 5px; }
 a { color: #774200; text-decoration: none; }
@@ -221,6 +221,7 @@ form .meta { z-index: -1; }
 	border: 1px solid #807568;
 	padding: 2px;
 	width: 350px;
+	font: 12px/18px "Courier New", Courier, monospace;
 }
 
 textarea.textinput {
@@ -237,11 +238,11 @@ textarea.disabled { height: 50px; }
 
 .button {
 	border: 1px solid #807568;
-	padding: 2px 10px;
+	padding: 4px 10px;
 	background-color: #d4d4d4;
 	cursor: pointer;
 	font-size: 14px;
-	font-family: Century Gothic, Apple Gothic, sans-serif;
+	font-family: sans-serif;
 }
 
 .button:hover { background-color: #eaeaea; }
diff --git a/onefilecms.php b/onefilecms.php
index c54278c..d279242 100644
--- a/onefilecms.php
+++ b/onefilecms.php
@@ -1,529 +1,556 @@
-<?php
+<?php
 
 // OneFileCMS - http://onefilecms.com/
 
-// CONFIGURATION INFO
-$config_username = "username";
-$config_password = "password";
-$config_hint = "";
-$config_title = "OneFileCMS";
-$config_footer = date("Y")." <a href='http://onefilecms.com/'>OneFileCMS</a>.";
-$config_disabled = "bmp,ico,gif,jpg,png,psd,zip";
-$config_excluded = "onefilecms.php,favicon,.htaccess";
-
-$version = "1.1.5"; // ONEFILECMS_BEGIN
-
-if( phpversion() < '5.0.0' ) { exit("OneFileCMS requires PHP5 to operate. Please contact your host to upgrade your PHP installation."); };
-
-function getmicrotime() { list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec); }
-$starttime = getmicrotime();
-
-session_start();
-if (isset($_POST["onefilecms_username"])) { $_SESSION['onefilecms_username'] = $_POST["onefilecms_username"]; }
-if (isset($_POST["onefilecms_password"])) { $_SESSION['onefilecms_password'] = $_POST["onefilecms_password"]; }
-if (($_SESSION['onefilecms_username'] == $config_username) and ($_SESSION['onefilecms_password'] == $config_password || md5($_SESSION['onefilecms_password']) == $config_password)) {
-	$_SESSION['onefilecms_valid'] = "1";
-} else {
-	$_SESSION['onefilecms_valid'] = "0";
+// CONFIGURATION INFO
+$config_username = "username";
+$config_password = "password";
+$config_hint = "";
+$config_title = "OneFileCMS";
+$config_footer = date("Y")." <a href='http://onefilecms.com/'>OneFileCMS</a>.";
+$config_disabled = "bmp,ico,gif,jpg,png,psd,zip";
+$config_excluded = "onefilecms.php,favicon,.htaccess";
+
+$version = "1.1.6"; // ONEFILECMS_BEGIN
+
+if( phpversion() < '5.0.0' ) { exit("OneFileCMS requires PHP5 to operate. Please contact your host to upgrade your PHP installation."); };
+
+function getmicrotime() { list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec); }
+$starttime = getmicrotime();
+
+session_start();
+if (isset($_POST["onefilecms_username"])) { $_SESSION['onefilecms_username'] = $_POST["onefilecms_username"]; }
+if (isset($_POST["onefilecms_password"])) { $_SESSION['onefilecms_password'] = $_POST["onefilecms_password"]; }
+if (($_SESSION['onefilecms_username'] == $config_username) and ($_SESSION['onefilecms_password'] == $config_password || md5($_SESSION['onefilecms_password']) == $config_password)) {
+	$_SESSION['onefilecms_valid'] = "1";
+} else {
+	$_SESSION['onefilecms_valid'] = "0";
 	if ($_GET["p"] !== "login") {
 		header("Location: ".$_SERVER["php_self"]."?p=login");
 		exit("Invalid session. <a href='".$_SERVER["php_self"]."?p=login'>Please log in</a>.");
-	}
-}
-
-global $pagetitle; $pagetitle = "/";
-if ((isset($_GET["i"])) && ($_GET["i"] !== "")) { $pagetitle = "/".$_GET["i"]."/"; }
-global $page; $page = "index";
-if (isset($_GET["p"])) {
-	// redirect on invalid page attempts
-	if (!in_array(strtolower($_GET["p"]), array(
-		"copy","delete","error","deletefolder","edit","folder","index","login","logout","new","other","rename","renamefolder","upload"
+	}
+}
+
+global $pagetitle; $pagetitle = "/";
+if ((isset($_GET["i"])) && ($_GET["i"] !== "")) { $pagetitle = "/".$_GET["i"]."/"; }
+global $page; $page = "index";
+if (isset($_GET["p"])) {
+	// redirect on invalid page attempts
+	if (!in_array(strtolower($_GET["p"]), array(
+		"copy","delete","error","deletefolder","edit","folder","index","login","logout","new","other","rename","renamefolder","upload"
 	))) {
 		header("Location: /");
 		exit("Invalid parameter. <a href='".$_SERVER["SCRIPT_NAME"]."'>Continue</a>.");
-	}
-	$page = $_GET["p"];
-}
-if ($_GET["p"] == "other") {$pagetitle = "Other"; }
-if ($_GET["p"] == "login") {$pagetitle = "Log In"; }
-if ($_GET["p"] == "logout") {$pagetitle = "Log Out"; $_SESSION['onefilecms_valid'] = "0"; session_destroy(); }
-if ($_GET["i"] == "") { unset($_GET["i"]); }
-
-// entitize get params
-foreach ($_GET as $name => $value) {
-	$_GET[$name] = htmlentities($value);
-}
-
-// COPY FILE
-if (isset($_GET["c"])) {
-	$filename = $_GET["c"]; $pagetitle = "Copy &ldquo;".$filename."&rdquo;";  $page = "copy";
-}
-
-if (isset($_POST["copy_filename"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
-	$old_filename = $_POST["old_filename"];
-	$filename = $_POST["copy_filename"];
-	copy($old_filename, $filename);
-	$message = $old_filename." copied successfully to ".$filename.".";
-}
-
-// DELETE FILE
-if (isset($_GET["d"])) {
-	$filename = $_GET["d"];
-	$pagetitle = "Delete &ldquo;".$filename."&rdquo;";
-	$page = "delete";
-}
-if (isset($_POST["delete_filename"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
-	$filename = $_POST["delete_filename"];
-	unlink($filename);
-	$message = $filename." successfully deleted.";
-}
-
-// DELETE FOLDER
-if ($_GET["p"] == "deletefolder") {
-	$pagetitle = "Delete Folder &ldquo;".$_GET["i"]."&rdquo;";
-}
-if (isset($_POST["delete_foldername"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
-	$foldername = $_POST["delete_foldername"];
-	if (@rmdir($foldername)) {
-		$message = $foldername." successfully deleted.";
-	} else {
-		$message = "That folder is not empty.";
-	}
-}
-
-// EDIT
-if (isset($_POST["filename"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
-	$filename = $_POST["filename"];
-	$content = stripslashes($_POST["content"]);
-	$fp = @fopen($filename, "w");
-	if ($fp) {
-		fwrite($fp, $content);
-		fclose($fp);
-	}
-	$message = $filename." saved successfully.";
-}
-if (isset($_GET["f"])) {
-	$filename = stripslashes($_GET["f"]);
-	if (file_exists($filename)) {
-		$page = "edit";
-		$pagetitle = "Edit &ldquo;".$filename."&rdquo;";
-		$fp = @fopen($filename, "r");
-		if (filesize($filename) !== 0) {
-			$loadcontent = fread($fp, filesize($filename));
-			$loadcontent = htmlspecialchars($loadcontent);
-		}
-		fclose($fp);
-	} else {
-		$page = "error";
-		unset ($filename);
-		$message = "File does not exist.";
-	}
-}
-// NEW FILE
-if ($_GET["p"] == "new") {$pagetitle = "New File"; }
-if (isset($_POST["new_filename"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
-	$filename = $_POST["new_filename"];
-	if (file_exists($filename)) {
-		$message = $filename." not created. A file with that name already exists.";
-	} else {
-		$handle = fopen($filename, 'w') or die("can't open file");
-		fclose($handle);
-		$message = $filename." created successfully.";
-	}
-}
-// NEW FOLDER
-if ($_GET["p"] == "folder") {$pagetitle = "New Folder"; }
-if (isset($_POST["new_folder"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
-	$foldername = $_POST["new_folder"];
-	if (!is_dir($foldername)) {
-		mkdir($foldername);
-		$message = $foldername." created successfully.";
-	} else {
-		$message = "A folder by that name already exists.";
-	}
-}
-// RENAME FILE
-if (isset($_GET["r"])) {
-	$filename = $_GET["r"];
-	$pagetitle = "Rename &ldquo;".$filename."&rdquo;";
-	$page = "rename";
-}
-if (isset($_POST["rename_filename"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
-	$old_filename = $_POST["old_filename"];
-	$filename = $_POST["rename_filename"];
-	rename($old_filename, $filename);
-	$message = $old_filename." successfully renamed to ".$filename.".";
-}
-// RENAME FOLDER
-if ($_GET["p"] == "renamefolder") {$pagetitle = "Rename Folder &ldquo;".$_GET["i"]."&rdquo;"; }
-if (isset($_POST["rename_foldername"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
-	$old_foldername = $_POST["old_foldername"];
-	$foldername = $_POST["rename_foldername"];
-	if (rename($old_foldername, $foldername)) {
-		$message = $old_foldername." unsuccessfully renamed to ".$foldername.".";
-	} else {
-		$message = "There was an error. Try again and/or contact your admin.";
-	}
-}
-// UPLOAD FILE
-if ($_GET["p"] == "upload") {$pagetitle = "Upload File"; }
-if (isset($_FILES['upload_filename']['name']) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
-	$filename = $_FILES['upload_filename']['name'];
-	$destination = $_POST["upload_destination"];
-	if(move_uploaded_file($_FILES['upload_filename']['tmp_name'],
-	$destination.basename($filename))) {
-		$message = basename($filename)." uploaded successfully to ".$destination.".";
-	} else{
-		$message = "There was an error. Try again and/or contact your admin.";
-	}
-}
-
-?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
-<html xmlns="http://www.w3.org/1999/xhtml">
-<head>
-<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
-<meta name="robots" content="noindex">
-<title><?php echo $config_title; ?> - <?php echo $pagetitle; ?></title>
-<link href="http://onefilecms.com/style.css" type="text/css" rel="stylesheet" media="screen" />
-</head>
-
-<body class="page_<?php echo $page; ?>">
-
-<div class="container">
-
-<div class="header">
-	<h1><a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>" class="<?php echo 
-	strtolower(ereg_replace("[^A-Za-z0-9]", "", $config_title)); ?>"><?php echo $config_title; 
-	?></a></h1>
-	<?php if ((isset($_SESSION['onefilecms_valid'])) && ($_SESSION['onefilecms_valid'] == 
-	"1")) { ?>
-		<div class="nav">
-			<a href="/">Visit Site</a> | 
-			<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>">Index</a> | 
-			<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=logout">Log Out</a>
-		</div>
-	<?php } ?>
-</div>
-
-<?php if (isset($message)) {?><div id="message"><p><?php echo $message; ?></p></div><?php };
-
-// COPY FILE
-if ($page == "copy") { 
-	$extension = strrchr($filename, ".");
-	$slug = substr($filename, 0, strlen($filename) - strlen($extension));
-	$varvar = "?i=".substr($_GET["c"],0,strrpos($_GET["c"],"/")); ?>
-	<h2>Copy &ldquo;<a href="<?php echo $filename; ?>"><?php echo $filename; ?></a>&rdquo;</h2>
-	<p>Existing files with the same filename are automatically overwritten... Be careful!</p>
-	<form method="post" id="new" action="<?php echo $_SERVER["SCRIPT_NAME"].$varvar; ?>">
-		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
+	}
+	$page = $_GET["p"];
+}
+if ($_GET["p"] == "other") {$pagetitle = "Other"; }
+if ($_GET["p"] == "login") {$pagetitle = "Log In"; }
+if ($_GET["p"] == "logout") {$pagetitle = "Log Out"; $_SESSION['onefilecms_valid'] = "0"; session_destroy(); }
+if ($_GET["i"] == "") { unset($_GET["i"]); }
+
+// entitize get params
+foreach ($_GET as $name => $value) {
+	$_GET[$name] = htmlentities($value);
+}
+
+// COPY FILE
+if (isset($_GET["c"])) {
+	$filename = $_GET["c"]; $pagetitle = "Copy &ldquo;".$filename."&rdquo;";  $page = "copy";
+}
+
+if (isset($_POST["copy_filename"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
+	$old_filename = $_POST["old_filename"];
+	$filename = $_POST["copy_filename"];
+	copy($old_filename, $filename);
+	$message = $old_filename." copied successfully to ".$filename.".";
+}
+
+// DELETE FILE
+if (isset($_GET["d"])) {
+	$filename = $_GET["d"];
+	$pagetitle = "Delete &ldquo;".$filename."&rdquo;";
+	$page = "delete";
+}
+if (isset($_POST["delete_filename"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
+	$filename = $_POST["delete_filename"];
+	unlink($filename);
+	$message = $filename." successfully deleted.";
+}
+
+// DELETE FOLDER
+if ($_GET["p"] == "deletefolder") {
+	$pagetitle = "Delete Folder &ldquo;".$_GET["i"]."&rdquo;";
+}
+if (isset($_POST["delete_foldername"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
+	$foldername = $_POST["delete_foldername"];
+	if (@rmdir($foldername)) {
+		$message = $foldername." successfully deleted.";
+	} else {
+		$message = "That folder is not empty.";
+	}
+}
+
+// EDIT
+if (isset($_POST["filename"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
+	$filename = $_POST["filename"];
+	$content = stripslashes($_POST["content"]);
+	$fp = @fopen($filename, "w");
+	if ($fp) {
+		fwrite($fp, $content);
+		fclose($fp);
+	}
+	$message = $filename." saved successfully.";
+}
+if (isset($_GET["f"])) {
+	$filename = stripslashes($_GET["f"]);
+	if (file_exists($filename)) {
+		$page = "edit";
+		$pagetitle = "Edit &ldquo;".$filename."&rdquo;";
+		$fp = @fopen($filename, "r");
+		if (filesize($filename) !== 0) {
+			$loadcontent = fread($fp, filesize($filename));
+			$loadcontent = htmlspecialchars($loadcontent);
+		}
+		fclose($fp);
+	} else {
+		$page = "error";
+		unset ($filename);
+		$message = "File does not exist.";
+	}
+}
+// NEW FILE
+if ($_GET["p"] == "new") {$pagetitle = "New File"; }
+if (isset($_POST["new_filename"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
+	$filename = $_POST["new_filename"];
+	if (file_exists($filename)) {
+		$message = $filename." not created. A file with that name already exists.";
+	} else {
+		$handle = fopen($filename, 'w') or die("can't open file");
+		fclose($handle);
+		$message = $filename." created successfully.";
+	}
+}
+// NEW FOLDER
+if ($_GET["p"] == "folder") {$pagetitle = "New Folder"; }
+if (isset($_POST["new_folder"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
+	$foldername = $_POST["new_folder"];
+	if (!is_dir($foldername)) {
+		mkdir($foldername);
+		$message = $foldername." created successfully.";
+	} else {
+		$message = "A folder by that name already exists.";
+	}
+}
+// RENAME FILE
+if (isset($_GET["r"])) {
+	$filename = $_GET["r"];
+	$pagetitle = "Rename &ldquo;".$filename."&rdquo;";
+	$page = "rename";
+}
+if (isset($_POST["rename_filename"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
+	$old_filename = $_POST["old_filename"];
+	$filename = $_POST["rename_filename"];
+	rename($old_filename, $filename);
+	$message = $old_filename." successfully renamed to ".$filename.".";
+}
+// RENAME FOLDER
+if ($_GET["p"] == "renamefolder") {$pagetitle = "Rename Folder &ldquo;".$_GET["i"]."&rdquo;"; }
+if (isset($_POST["rename_foldername"]) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
+	$old_foldername = $_POST["old_foldername"];
+	$foldername = $_POST["rename_foldername"];
+	if (rename($old_foldername, $foldername)) {
+		$message = $old_foldername." unsuccessfully renamed to ".$foldername.".";
+	} else {
+		$message = "There was an error. Try again and/or contact your admin.";
+	}
+}
+// UPLOAD FILE
+if ($_GET["p"] == "upload") {$pagetitle = "Upload File"; }
+if (isset($_FILES['upload_filename']['name']) && $_SESSION['onefilecms_valid'] = "1" && $_POST["sessionid"] == session_id()) {
+	$filename = $_FILES['upload_filename']['name'];
+	$destination = $_POST["upload_destination"];
+	if(move_uploaded_file($_FILES['upload_filename']['tmp_name'],
+	$destination.basename($filename))) {
+		$message = basename($filename)." uploaded successfully to ".$destination.".";
+	} else{
+		$message = "There was an error. Try again and/or contact your admin.";
+	}
+}
+
+?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
+<meta name="robots" content="noindex">
+<title><?php echo $config_title; ?> - <?php echo $pagetitle; ?></title>
+<link href="<?php 
+	if (file_exists("onefilecms.css")) {
+		echo "onefilecms.css";
+	} else {
+		echo "http://onefilecms.com/style.css";
+	}
+?>" type="text/css" rel="stylesheet" media="screen" />
+</head>
+
+<body class="page_<?php echo $page; ?>">
+
+<div class="container">
+
+<div class="header">
+	<h1><a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>" class="<?php echo 
+	strtolower(ereg_replace("[^A-Za-z0-9]", "", $config_title)); ?>"><?php echo $config_title; 
+	?></a></h1>
+	<?php if ((isset($_SESSION['onefilecms_valid'])) && ($_SESSION['onefilecms_valid'] == 
+	"1")) { ?>
+		<div class="nav">
+			<a href="/">Visit Site</a> | 
+			<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>">Index</a> | 
+			<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=logout">Log Out</a>
+		</div>
+	<?php } ?>
+</div>
+
+<?php if (isset($message)) {?><div id="message"><p><?php echo $message; ?></p></div><?php };
+
+// COPY FILE
+if ($page == "copy") { 
+	$extension = strrchr($filename, ".");
+	$slug = substr($filename, 0, strlen($filename) - strlen($extension));
+	$varvar = "?i=".substr($_GET["c"],0,strrpos($_GET["c"],"/")); ?>
+	<h2>Copy &ldquo;<a href="<?php echo $filename; ?>"><?php echo $filename; ?></a>&rdquo;</h2>
+	<p>Existing files with the same filename are automatically overwritten... Be careful!</p>
+	<form method="post" id="new" action="<?php echo $_SERVER["SCRIPT_NAME"].$varvar; ?>">
+		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
 		<p>
 			<label>Old filename:</label>
 			<input type="hidden" name="old_filename" value="<?php echo $filename; ?>" />
 			<input type="text" name="dummy" value="<?php echo $filename; ?>" class="textinput" disabled="disabled" />
-		</p>
+		</p>
 		<p>
 			<label for="copy_filename">New filename:</label>
 			<input type="text" name="copy_filename" id="copy_filename" class="textinput" value="<?php echo $slug."_".date("mdyHi").$extension; ?>" />
-		</p>
-		<p><input type="submit" class="button" value="Copy" /></p>
-	</form>
-<?php };
-
-// DELETE FILE
-if ($page == "delete") {
-	$varvar = "?i=".substr($_GET["d"],0,strrpos($_GET["d"],"/")); ?>
-	<h2>Delete &ldquo;<a href="<?php echo $filename; ?>"><?php echo $filename; ?></a>&rdquo;</h2>
-	<p>Are you sure?</p>
-	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"].$varvar; ?>">
-		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
+		</p>
+		<p><input type="submit" class="button" value="Copy" /></p>
+	</form>
+<?php };
+
+// DELETE FILE
+if ($page == "delete") {
+	$varvar = "?i=".substr($_GET["d"],0,strrpos($_GET["d"],"/")); ?>
+	<h2>Delete &ldquo;<a href="<?php echo $filename; ?>"><?php echo $filename; ?></a>&rdquo;</h2>
+	<p>Are you sure?</p>
+	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"].$varvar; ?>">
+		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
 		<p>
 			<input type="hidden" name="delete_filename" value="<?php echo $filename; ?>" />
 			<input type="submit" class="button" name="delete_file" value="Yes" />
 			<input type="button" class="button" name="cancel" value="No" onclick="parent.location='<?php echo $_SERVER["SCRIPT_NAME"]; ?>'" />
-		</p>
-	</form>
-<?php };
-
-// DELETE FOLDER
-if ($page == "deletefolder") {
-	$varvar = "?i=".substr($_GET["i"],0,strrpos(substr_replace($_GET["i"],"",-1),"/")); ?>
-	<h2>Delete Folder &ldquo;<?php echo $_GET["i"]; ?>&rdquo;</h2>
-	<p>Folders have to be empty before they can be deleted.</p>
-	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"].$varvar; ?>">
-		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
+		</p>
+	</form>
+<?php };
+
+// DELETE FOLDER
+if ($page == "deletefolder") {
+	$varvar = "?i=".substr($_GET["i"],0,strrpos(substr_replace($_GET["i"],"",-1),"/")); ?>
+	<h2>Delete Folder &ldquo;<?php echo $_GET["i"]; ?>&rdquo;</h2>
+	<p>Folders have to be empty before they can be deleted.</p>
+	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"].$varvar; ?>">
+		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
 		<p>
 			<input type="hidden" name="delete_foldername" value="<?php echo $_GET["i"]; ?>" />
 			<input type="submit" class="button" name="delete_folder" value="Yes" />
 			<input type="button" class="button" name="cancel" value="No" onclick="parent.location='<?php echo $_SERVER["SCRIPT_NAME"]."?i=".substr_replace($_GET["i"],"",-1); ?>'" />
-		</p>
-	</form>
-<?php };
-
-// EDIT
-if ($page == "edit") { ?>
-	<h2>Edit &ldquo;<a href="<?php echo $filename; ?>"><?php echo $filename; ?></a>&rdquo;</h2>
-	<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?i=<?php echo substr($_GET["f"],0,strrpos($_GET["f"],"/")); ?>" class="back">Back</a>
-	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?f=<?php echo $filename; ?>">
-		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
+		</p>
+	</form>
+<?php };
+
+// EDIT
+if ($page == "edit") { ?>
+	<h2>Edit &ldquo;<a href="<?php echo $filename; ?>"><?php echo $filename; ?></a>&rdquo;</h2>
+	<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?i=<?php echo substr($_GET["f"],0,strrpos($_GET["f"],"/")); ?>" class="back">Back</a>
+	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?f=<?php echo $filename; ?>">
+		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
 		<?php $lfile = strtolower($filename);
-		if (strpos($config_disabled,end(explode(".", $lfile)))) { ?>
+		if (strpos($config_disabled,end(explode(".", $lfile)))) { ?>
 			<p>
 				<textarea name="content" class="textinput disabled" cols="70" rows="25" disabled="disabled">Disabled.</textarea>
-			</p>
-			<p class="buttons_right">
-				<input type="submit" class="button" name="save_file" value="Save" 
-				disabled="disabled" />
-		<?php } else { ?>
+			</p>
+			<p class="buttons_right">
+				<input type="submit" class="button" name="save_file" value="Save" 
+				disabled="disabled" />
+		<?php } else { ?>
 			<p>
 				<input type="hidden" name="filename" id="filename" class="textinput" value="<?php echo $filename; ?>" />
 				<textarea name="content" class="textinput" cols="70" rows="25"><?php echo $loadcontent; ?></textarea>
-			</p>
-			<p class="buttons_right">
-				<input type="submit" class="button" name="save_file" id="save_file" value="Save" />
-		<?php } ?>
-			<input type="button" class="button" name="rename_file" value="Rename/Move" onclick="parent.location='<?php echo $_SERVER["SCRIPT_NAME"]; ?>?r=<?php echo $filename; ?>'" />
-			<input type="button" class="button" name="delete_file" value="Delete" onclick="parent.location='<?php echo $_SERVER["SCRIPT_NAME"]; ?>?d=<?php echo $filename; ?>'" />
+			</p>
+			<p class="buttons_right">
+				<input type="submit" class="button" name="save_file" id="save_file" value="Save" />
+		<?php } ?>
+			<input type="button" class="button" name="rename_file" value="Rename/Move" onclick="parent.location='<?php echo $_SERVER["SCRIPT_NAME"]; ?>?r=<?php echo $filename; ?>'" />
+			<input type="button" class="button" name="delete_file" value="Delete" onclick="parent.location='<?php echo $_SERVER["SCRIPT_NAME"]; ?>?d=<?php echo $filename; ?>'" />
 			<input type="button" class="button" name="copy_file" value="Copy" onclick="parent.location='<?php echo $_SERVER["SCRIPT_NAME"]; ?>?c=<?php echo $filename; ?>'" />
-		</p>
-		<div class="meta">
-			<p><i>File Size:</i> <?php echo round(filesize($filename)/1000,2); ?> kb - 
-			<i>Last Updated:</i> <?php echo date("n/j/y g:ia", filemtime($filename)); ?></p>
-		</div>
-	</form>
-	<div style="clear:both;"></div>
-<?php };
-
-// INDEX
-if ($page == "index") { $varvar = "";
-	if (isset($_GET["i"])) { $varvar = $_GET["i"]."/"; } ?> 
-	<h2><?php echo basename(getcwd())."/".$varvar;?></h2>
-	<p class="index_folders">
-		<?php if ((isset($_GET["i"])) and ($_GET["i"] !== "")) { ?>
-			<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?i=<?php echo substr($_GET["i"],0,strpos($_GET["i"],"/")); ?>" class="folder">.. /</a>
-		<?php }
+		</p>
+		<div class="meta">
+			<p><i>File Size:</i> <?php echo round(filesize($filename)/1000,2); ?> kb - 
+			<i>Last Updated:</i> <?php echo date("n/j/y g:ia", filemtime($filename)); ?></p>
+		</div>
+	</form>
+	<div style="clear:both;"></div>
+<?php };
+
+// INDEX
+if ($page == "index") { $varvar = "";
+	if (isset($_GET["i"])) { $varvar = $_GET["i"]."/"; } ?> 
+	<h2><?php $full_path = basename(getcwd()).'/'.$_GET["i"];
+		$path_levels = explode("/",$full_path);
+		$levels = count($path_levels);
+		if ($varvar == "") { 
+			echo $path_levels[0]; // if at root, no need for link.
+		} else {
+			echo '<a href="'.$_SERVER["SCRIPT_NAME"].'" class="path">'.$path_levels[0].'</a> / ';
+		}
+		$current_path = "";
+		for ($x=1; $x < $levels-1; $x++) {
+			if ($x !== 1){ $current_path .= ' / '; }
+			$current_path = $current_path.$path_levels[$x];
+			echo '<a href="',  $_SERVER["SCRIPT_NAME"],  '?i=',  $current_path,  '" class="path">';
+			echo $path_levels[$x],  '</a> / ';
+		}
+		echo $path_levels[$x].' /'; // last item is current dir. No link needed.
+	?></h2>
+
+	<p class="index_folders">
+		<?php
 		$files = glob($varvar."*",GLOB_ONLYDIR);
 		sort($files);
-		foreach ($files as $file) { ?>
-			<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?i=<?php echo $file; ?>" class="folder"><?php echo basename($file); ?></a>
-		<?php } ?>
-	</p>
-	<div style="clear:both;"></div>
-	<ul class="index <?php echo $_COOKIE['index_display']; ?>">
-		<?php $files = glob($varvar."{,.}*", GLOB_BRACE); sort($files);
-		foreach ($files as $file) {
-			$excludeme = 0;
-			$config_excludeds = explode(",", $config_excluded);
-			foreach ($config_excludeds as $config_exclusion) {
-				if (strrpos(basename($file),$config_exclusion) !== False && 
-				strrpos(basename($file),$config_exclusion) !== "") { 
-					$excludeme = 1;
-				}
-			}
-			if (!is_dir($file) && $excludeme == 0) {
-				$file_class = "";
-				$lfile = strtolower($file);
+		foreach ($files as $file) { ?>
+			<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?i=<?php echo $file; ?>" class="folder"><?php echo basename($file); ?></a>
+		<?php } ?>
+	</p>
+	<div style="clear:both;"></div>
+	<ul class="index <?php echo $_COOKIE['index_display']; ?>">
+		<?php $files = glob($varvar."{,.}*", GLOB_BRACE); sort($files);
+		foreach ($files as $file) {
+			$excludeme = 0;
+			$config_excludeds = explode(",", $config_excluded);
+			foreach ($config_excludeds as $config_exclusion) {
+				if (strrpos(basename($file),$config_exclusion) !== False && 
+				strrpos(basename($file),$config_exclusion) !== "") { 
+					$excludeme = 1;
+				}
+			}
+			if (!is_dir($file) && $excludeme == 0) {
+				$file_class = "";
+				$lfile = strtolower($file);
 				if (
 					(strrpos(strtolower($lfile),".jpg")) || 
 					(strrpos($lfile,".gif")) || 
-					(strrpos($lfile,".png")) || 
+					(strrpos($lfile,".png")) || 
 					(strrpos($lfile,".ico"))
 				) {
 					$file_class = "img";
-				};
-				if (strrpos($lfile,".css")) { $file_class = "css"; };
-				if (strrpos($lfile,".php")) { $file_class = "php"; }; ?>
-					<li>
-						<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?f=<?php 
-						echo $file; ?>" class="<?php echo $file_class ?>"><?php 
-						echo basename($file); ?></a>
-						<div class="meta">
-							<span><i>File Size:</i> <?php echo 
-							round(filesize($file)/1000,2);?> kb<br /></span>
-							<span><i>Last Updated:</i> <?php echo 
-							date("n/j/y g:ia", filemtime($file)); ?></span>
-						</div>
-					</li>
-			<?php }
-		} ?>
-	</ul>
-	<p class="front_links">
-		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=new&amp;i=<?php echo $varvar; 
-		?>" class="new">New File</a>
-		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=folder&amp;i=<?php echo $varvar; 
-		?>" class="newfolder">New Folder</a><?php if ($varvar !== "") { ?>
-		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=deletefolder&amp;i=<?php echo 
-		$varvar; ?>" class="deletefolder">Delete Folder</a>
-		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=renamefolder&amp;i=<?php echo 
-		$varvar; ?>" class="renamefolder">Rename Folder</a><?php } ?>
-		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=upload&amp;i=<?php echo $varvar; 
-		?>" class="upload">Upload File</a>
-		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=other" class="other">Other</a>
-	</p>
-<?php };
-
-// LOG IN
-if ($page == "login") { ?>
-	<h2>Log In</h2>
-	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"]; ?>">
-		<p><label for="onefilecms_username">Username:</label>
-		<input type="text" name="onefilecms_username" id="onefilecms_username" 
-		class="textinput" /></p>
-		<p><label for="onefilecms_password">Password:</label><input 
-		type="password" name="onefilecms_password" id="onefilecms_password" 
-		class="textinput" /></p>
-		<?php if ($config_hint !== "") { ?><p><i>Hint:</i> <?php echo 
-		$config_hint; ?></p><?php } ?>
-		<p><input type="submit" class="button" value="Enter" /></p>
-	</form>
-<?php };
-
-// LOG OUT
-if ($page == "logout") { ?>
-	<h2>Log Out</h2>
-	<p>You have successfully been logged out and may close this window.</p>
-<?php };
-
-// NEW FILE
-if ($page == "new") {
-	$varvar = "";
-	if (isset($_GET["i"])) { $varvar = "?i=".$_GET["i"]; }?>
-		<h2>New File</h2>
-		<p>Existing files with the same name will not be overwritten.</p>
-		<form method="post" id="new" action="<?php echo
-		$_SERVER["SCRIPT_NAME"].substr_replace($varvar,"",-1); ?>">
-			<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
-			<p><label for="new_filename">New filename: </label>
-			<input type="text" name="new_filename" id="new_filename" 
-			class="textinput" value="<?php echo $_GET["i"]; ?>" /></p>
-			<p><input type="submit" class="button" value="Create" /></p>
-		</form>
-<?php };
-
-// NEW FOLDER
-if ($page == "folder") {
-	$varvar = "";
-	if (isset($_GET["i"])) { $varvar = "?i=".$_GET["i"]; }?>
-	<h2>New Folder</h2>
-	<p>Existing folders with the same name will not be overwritten.</p>
-	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"].substr_replace($varvar,"",-1); ?>">
-		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
-		<p><label for="new_folder">Folder name: </label>
-		<input type="text" name="new_folder" id="new_folder" 
-		class="textinput" value="<?php echo $_GET["i"]; ?>" /></p>
-		<p><input type="submit" class="button" value="Create" /></p>
-	</form>
-<?php };
-
-// OTHER
-if ($page == "other") { ?>
-	<h2>Other</h2>
-	<h3>Check for Updates</h3>
-	<p>Future versions of OneFileCMS will have a one-click upgrade process. For now, though, you have to <a href="http://onefilecms.com/download.php?v=<?php echo $version; ?>">click this link</a>. You are using version <?php echo $version; ?>.</p>
-	<h3>Want some good Karma?</h3>
-	<p>Let people know you use OneFileCMS by putting this in your footer:</p>
-	<pre><code>This site powered by &#60;a href="http://onefilecms.com/"&#62;OneFileCMS&#60;/a&#62;.</code></pre>
-	<h3>Admin Link</h3>
-	<p>Add this to your footer (or something) for lazy/forgetful admins. They'll still have to know the username and password, of course.</p>
-	<pre><code>[&#60;a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>"&#62;Admin&#60;/a&#62;]</code></pre>
-	<?php if (strlen($config_password) != 32) { ?>
-		<h3>Password Hash</h3>
-		<p>By the way, MD5 hash of your currently configured password is: <em><?php echo md5($config_password) ?></em>
-	<?php } ?>
-<?php };
-
-// RENAME FILE
-if ($page == "rename") {
-	$varvar = "?i=".substr($_GET["r"],0,strrpos($_GET["r"],"/")); ?>
-	<h2>Rename &ldquo;<a href="<?php echo $filename; ?>"><?php echo $filename; 
-	?></a>&rdquo;</h2>
-	<p>Existing files with the same filename are automatically overwritten... Be 
-	careful!</p>
-	<p>To move a file, preface its name with the folder's name, as in 
-	"<i>foldername/filename.txt</i>." The folder must already exist.</p>
-	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"].$varvar;	?>">
-		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
-		<p><label>Old filename:</label><input type="hidden" name="old_filename" 
-		value="<?php echo $filename; ?>" /><input type="text" name="dummy" 
-		value="<?php echo $filename; ?>" class="textinput" disabled="disabled" /></p>
-		<p><label for="rename_filename">New filename:</label><input type="text" 
-		name="rename_filename" id="rename_filename" class="textinput" 
-		value="<?php echo $filename; ?>" /></p>
-		<p><input type="submit" class="button" value="Rename" /></p>
-	</form>
-<?php };
-
-// RENAME FOLDER
-if ($page == "renamefolder") {
-	$varvar = "?i=".substr($_GET["i"],0,strrpos(substr_replace($_GET["i"],"",-1),"/")); ?>
-	<h2>Rename Folder &ldquo;<?php echo $_GET["i"]; ?>&rdquo;</h2>
-	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"].$varvar; ?>">
-		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
-		<p><label>Old name:</label><input type="hidden" name="old_foldername" 
-		value="<?php echo $_GET["i"]; ?>" /><input type="text" name="dummy" 
-		value="<?php echo $_GET["i"]; ?>" class="textinput" disabled="disabled" /></p>
-		<p><label for="rename_foldername">New name:</label><input type="text" 
-		name="rename_foldername" id="rename_foldername" class="textinput" 
-		value="<?php echo $_GET["i"]; ?>" /></p>
-		<p><input type="submit" class="button" value="Rename"></p>
-	</form>
-<?php };
-
-// UPLOAD FILE
-if ($page == "upload") {
-	$varvar = ""; if (isset($_GET["i"])) { $varvar = "?i=".$_GET["i"]; } ?>
-	<h2>Upload</h2>
-	<form enctype="multipart/form-data" action="<?php echo
-	$_SERVER["SCRIPT_NAME"].substr_replace($varvar,"",-1); ?>" method="post">
-		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
-		<input type="hidden" name="MAX_FILE_SIZE" value="100000" />
-		<p><label for="upload_destination">Destination:</label><input type="text" 
-		name="upload_destination" value="<?php echo $_GET["i"]; ?>" 
-		class="textinput" /></p>
-		<p><label for="upload_filename">File:</label>
-		<input name="upload_filename" type="file" /></p>
-		<p><input type="submit" class="button" value="Upload" /></p>
-	</form>
-<?php } ?>
-
-<div class="footer">
-	<p><?php echo $config_footer; if ($_SESSION['onefilecms_valid'] == "1") { ?> Rendered in <?php 
-	$endtime = getmicrotime(); echo round(($endtime-$starttime)*1000000); ?> milliseconds.<?php } ?></p>
-</div>
-
-</div>
-
+				};
+				if (strrpos($lfile,".css")) { $file_class = "css"; };
+				if (strrpos($lfile,".php")) { $file_class = "php"; }; ?>
+					<li>
+						<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?f=<?php 
+						echo $file; ?>" class="<?php echo $file_class ?>"><?php 
+						echo basename($file); ?></a>
+						<div class="meta">
+							<span><i>File Size:</i> <?php echo 
+							round(filesize($file)/1000,2);?> kb<br /></span>
+							<span><i>Last Updated:</i> <?php echo 
+							date("n/j/y g:ia", filemtime($file)); ?></span>
+						</div>
+					</li>
+			<?php }
+		} ?>
+	</ul>
+	<p class="front_links">
+		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=new&amp;i=<?php echo $varvar; ?>" class="new">New File</a>
+		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=folder&amp;i=<?php echo $varvar; ?>" class="newfolder">New Folder</a><?php if ($varvar !== "") { ?>
+		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=deletefolder&amp;i=<?php echo $varvar; ?>" class="deletefolder">Delete Folder</a>
+		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=renamefolder&amp;i=<?php echo $varvar; ?>" class="renamefolder">Rename Folder</a><?php } ?>
+		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=upload&amp;i=<?php echo $varvar; ?>" class="upload">Upload File</a>
+		<a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>?p=other" class="other">Other</a>
+	</p>
+<?php };
+
+// LOG IN
+if ($page == "login") { ?>
+	<h2>Log In</h2>
+	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"]; ?>">
+		<p>
+			<label for="onefilecms_username">Username:</label>
+			<input type="text" name="onefilecms_username" id="onefilecms_username" class="textinput" />
+		</p>
+		<p>
+			<label for="onefilecms_password">Password:</label>
+			<input type="password" name="onefilecms_password" id="onefilecms_password" class="textinput" />
+		</p>
+		<?php if ($config_hint !== "") { ?><p><i>Hint:</i> <?php echo $config_hint; ?></p><?php } ?>
+		<p><input type="submit" class="button" value="Enter" /></p>
+	</form>
+<?php };
+
+// LOG OUT
+if ($page == "logout") { ?>
+	<h2>Log Out</h2>
+	<p>You have successfully been logged out and may close this window.</p>
+<?php };
+
+// NEW FILE
+if ($page == "new") {
+	$varvar = "";
+	if (isset($_GET["i"])) { $varvar = "?i=".$_GET["i"]; }?>
+		<h2>New File</h2>
+		<p>Existing files with the same name will not be overwritten.</p>
+		<form method="post" id="new" action="<?php echo
+		$_SERVER["SCRIPT_NAME"].substr_replace($varvar,"",-1); ?>">
+			<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
+			<p>
+				<label for="new_filename">New filename: </label>
+				<input type="text" name="new_filename" id="new_filename" class="textinput" value="<?php echo $_GET["i"]; ?>" />
+			</p>
+			<p><input type="submit" class="button" value="Create" /></p>
+		</form>
+<?php };
+
+// NEW FOLDER
+if ($page == "folder") {
+	$varvar = "";
+	if (isset($_GET["i"])) { $varvar = "?i=".$_GET["i"]; }?>
+	<h2>New Folder</h2>
+	<p>Existing folders with the same name will not be overwritten.</p>
+	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"].substr_replace($varvar,"",-1); ?>">
+		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
+		<p>
+			<label for="new_folder">Folder name: </label>
+			<input type="text" name="new_folder" id="new_folder" class="textinput" value="<?php echo $_GET["i"]; ?>" />
+		</p>
+		<p><input type="submit" class="button" value="Create" /></p>
+	</form>
+<?php };
+
+// OTHER
+if ($page == "other") { ?>
+	<h2>Other</h2>
+	<h3>Check for Updates</h3>
+	<p>Future versions of OneFileCMS will have a one-click upgrade process. For now, though, you have to <a href="http://onefilecms.com/download.php?v=<?php echo $version; ?>">click this link</a>. You are using version <?php echo $version; ?>.</p>
+	<h3>Want some good Karma?</h3>
+	<p>Let people know you use OneFileCMS by putting this in your footer:</p>
+	<pre><code>This site powered by &#60;a href="http://onefilecms.com/"&#62;OneFileCMS&#60;/a&#62;.</code></pre>
+	<h3>Admin Link</h3>
+	<p>Add this to your footer (or something) for lazy/forgetful admins. They'll still have to know the username and password, of course.</p>
+	<pre><code>[&#60;a href="<?php echo $_SERVER["SCRIPT_NAME"]; ?>"&#62;Admin&#60;/a&#62;]</code></pre>
+	<?php if (strlen($config_password) != 32) { ?>
+		<h3>Password Hash</h3>
+		<p>By the way, MD5 hash of your currently configured password is: <em><?php echo md5($config_password) ?></em>
+	<?php } ?>
+<?php };
+
+// RENAME FILE
+if ($page == "rename") {
+	$varvar = "?i=".substr($_GET["r"],0,strrpos($_GET["r"],"/")); ?>
+	<h2>Rename &ldquo;<a href="<?php echo $filename; ?>"><?php echo $filename; 
+	?></a>&rdquo;</h2>
+	<p>Existing files with the same filename are automatically overwritten... Be 
+	careful!</p>
+	<p>To move a file, preface its name with the folder's name, as in 
+	"<i>foldername/filename.txt</i>." The folder must already exist.</p>
+	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"].$varvar;	?>">
+		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
+		<p>
+			<label>Old filename:</label>
+			<input type="hidden" name="old_filename" value="<?php echo $filename; ?>" />
+			<input type="text" name="dummy" value="<?php echo $filename; ?>" class="textinput" disabled="disabled" />
+		</p>
+		<p>
+			<label for="rename_filename">New filename:</label>
+			<input type="text" name="rename_filename" id="rename_filename" class="textinput" value="<?php echo $filename; ?>" />
+		</p>
+		<p><input type="submit" class="button" value="Rename" /></p>
+	</form>
+<?php };
+
+// RENAME FOLDER
+if ($page == "renamefolder") {
+	$varvar = "?i=".substr($_GET["i"],0,strrpos(substr_replace($_GET["i"],"",-1),"/")); ?>
+	<h2>Rename Folder &ldquo;<?php echo $_GET["i"]; ?>&rdquo;</h2>
+	<form method="post" action="<?php echo $_SERVER["SCRIPT_NAME"].$varvar; ?>">
+		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
+		<p>
+			<label>Old name:</label><input type="hidden" name="old_foldername" value="<?php echo $_GET["i"]; ?>" />
+			<input type="text" name="dummy" value="<?php echo $_GET["i"]; ?>" class="textinput" disabled="disabled" />
+		</p>
+		<p>
+			<label for="rename_foldername">New name:</label>
+			<input type="text" name="rename_foldername" id="rename_foldername" class="textinput" value="<?php echo $_GET["i"]; ?>" />
+		</p>
+		<p><input type="submit" class="button" value="Rename"></p>
+	</form>
+<?php };
+
+// UPLOAD FILE
+if ($page == "upload") {
+	$varvar = ""; if (isset($_GET["i"])) { $varvar = "?i=".$_GET["i"]; } ?>
+	<h2>Upload</h2>
+	<form enctype="multipart/form-data" action="<?php echo
+	$_SERVER["SCRIPT_NAME"].substr_replace($varvar,"",-1); ?>" method="post">
+		<input type="hidden" name="sessionid" value="<?php echo session_id(); ?>" />
+		<input type="hidden" name="MAX_FILE_SIZE" value="100000" />
+		<p>
+			<label for="upload_destination">Destination:</label>
+			<input type="text" name="upload_destination" value="<?php echo $_GET["i"]; ?>" class="textinput" />
+		</p>
+		<p>
+			<label for="upload_filename">File:</label>
+			<input name="upload_filename" type="file" />
+		</p>
+		<p><input type="submit" class="button" value="Upload" /></p>
+	</form>
+<?php } ?>
+
+<div class="footer">
+	<p><?php echo $config_footer; if ($_SESSION['onefilecms_valid'] == "1") { ?> Rendered in <?php 
+	$endtime = getmicrotime(); echo round(($endtime-$starttime)*1000000); ?> milliseconds.<?php } ?></p>
+</div>
+
+</div>
+
 <script src="//ajax.googleapis.com/ajax/libs/jquery/1.7/jquery.min.js"></script>
-<script type="text/javascript">
+<script type="text/javascript">
 
-	$.fn.ready(function(){
+	$.fn.ready(function(){
 	
 		var $message = $("#message"),
 		    $save_file = $("#save_file");
-		if ( $message.length > 0 ) { $message.animate({opacity: 1.0}, 3000).fadeOut(); };
+		if ( $message.length > 0 ) { $message.animate({opacity: 1.0}, 3000).fadeOut(); };
 		
-		$(".button:visible:enabled:first").focus();
-		$(".textinput:visible:enabled:first").focus();
+		$(".button:visible:enabled:first").focus();
+		$(".textinput:visible:enabled:first").focus();
 		
-		$(".page_edit .textinput").bind("change keyup", function (e) {
-			key = e.which+" ";
-			badkeys = "224 16 17 18 37 38 39 40 ";
-			if ((badkeys.indexOf(key) == "-1") && ($save_file.val() !== "Save!")) {
-				$save_file.val("Save!");
-				document.title = document.title + " *";
-				$(".page_edit h2").append(" *");
-			}
-		});
+		$(".page_edit .textinput").bind("change keyup", function (e) {
+			key = e.which+" ";
+			badkeys = "224 16 17 18 37 38 39 40 ";
+			if ((badkeys.indexOf(key) == "-1") && ($save_file.val() !== "Save!")) {
+				$save_file.val("Save!");
+				document.title = document.title + " *";
+				$(".page_edit h2").append(" *");
+			}
+		});
 		
-		$(".page_edit form").submit(function() { $save_file.val("Save"); });
-		window.onbeforeunload = function () {
-			if ($save_file.val() == "Save!") {
-				return "Any changes you've made will be lost!";
-			}
-		};
-	
-	});
-
-</script>
-
-</body>
+		$(".page_edit form").submit(function() { $save_file.val("Save"); });
+		window.onbeforeunload = function () {
+			if ($save_file.val() == "Save!") {
+				return "Any changes you've made will be lost!";
+			}
+		};
+	
+	});
+
+</script>
+
+</body>
 </html>
\ No newline at end of file