wmexamples / src / static_resource.erl

Diff from to


     {[{Mime, content}], RD, Context}.
 resource_exists(RD, Context=#context{root=Root}) ->
-    FP = filename:join([Root, wrq:disp_path(RD)]),
+    FP = filename:join([Root|clean_path(wrq:disp_path(RD))]),
     case filelib:is_regular(FP) of
 	true ->
 	    {true, RD, Context#context{filepath=FP}};
 content(RD, Context=#context{filepath=FP}) ->
     {ok, Data} = file:read_file(FP),
     {Data, RD, Context}.
+clean_path(Path) ->
+    Fun = fun("..", [])       -> [];     % no shallower
+             ("..", [_|Rest]) -> Rest;   % one shallower
+             (P,    Acc)      -> [P|Acc] % one deeper
+          end,
+    lists:reverse(lists:foldl(Fun, [], string:tokens(Path, "/"))).
Tip: Filter by directory path e.g. /media app.js to search for public/media/app.js.
Tip: Use camelCasing e.g. ProjME to search for
Tip: Filter by extension type e.g. /repo .js to search for all .js files in the /repo directory.
Tip: Separate your search with spaces e.g. /ssh pom.xml to search for src/ssh/pom.xml.
Tip: Use ↑ and ↓ arrow keys to navigate and return to view the file.
Tip: You can also navigate files with Ctrl+j (next) and Ctrl+k (previous) and view the file with Ctrl+o.
Tip: You can also navigate files with Alt+j (next) and Alt+k (previous) and view the file with Alt+o.