claunia/qemudb
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2025-05-24. You can view files and clone it, but cannot push or open issues or pull requests.
Files
2a2c423d9c5a93c1ba3fc26e12bcd5e4865feff0
qemudb/appimage.php
Jonathan Ernst 3096e63828 Rename util_show_error_page() to util_show_error_page_and_exit() and redirect() to util_redirect_and_exit() 
so it is explicit that we exit in those functions that so we know it isn't necessary to put an exit after
we call them
2006-07-06 18:44:56 +00:00

110 lines
3.4 KiB
PHP
Raw Blame History

<?php
/**
* Shows a thumbnail or a full size screenshot.
*
* Mandatory parameters:
* - iId, image identifier
*
* Optional parameters:
* - bThumbnail, "true" if we want to see a thumbnail, "false" otherwise
* - sREQUEST_METHOD
*
* TODO:
* - rename and document sREQUEST_METHOD
* - replace iId with iScreenshotId
* - replace require_once with require after checking that it doesn't break anything
*/
// application environment
include("path.php");
require(BASE."include/incl.php");
require_once(BASE."include/screenshot.php");
$aClean = array(); //array of filtered user input
$aClean['iId'] = makeSafe($_REQUEST['iId']);
$aClean['sREQUEST_METHOD'] = makeSafe($_REQUEST['sREQUEST_METHOD']);
$aClean['bThumbnail'] = makeSafe($_REQUEST['bThumbnail']);
// an image doesn't have a link, so a cookie makes no sense
header("Set-Cookie: ");
header("Pragma: ");
// is the user supposed to be viewing this image ?
if(!$_SESSION['current']->canViewImage($aClean['iId']))
util_show_error_page_and_exit("Insufficient privileges.");
if ($aClean['sREQUEST_METHOD']='HEAD')
{
/* WARNING! optimization of logic in include/screenshots.php */
if (sscanf($aClean['iId'],"%d", &$iId) < 1)
util_show_error_page_and_exit("Bad parameter");
$hResult = query_parameters("SELECT id, url FROM appData
WHERE id = '?'
AND type = 'image' LIMIT 1", $iId);
$fImage = 0;
if($hResult)
{
$oRow = mysql_fetch_object($hResult);
/* we need to use the url field from appData, this is the name of the file */
/* in the filesystem */
$fImage = fopen(appdb_fullpath("data/screenshots/".$oRow->url), "rb");
}
/* if the query failed or if we didn't find the image, we should */
/* report a 404 to the browser */
if(!$hResult || !$fImage)
{
header("404 No such image");
exit;
}
$fstat_val = fstat($fImage);
$iModTime = $fstat_val['mtime'];
$sMagic = fread($fImage,8);
fclose($fImage); /* don't leave the fopened image open */
/* identify what kind of image this is, if we can't identify it */
/* we should report that its a bad image */
if (strcmp("\x89PNG\r\n\x1A\n",$sMagic)==0)
{
header("Content-Type: image/png");
} else if (preg_match("^\xD8\xFF^",$sMagic)) {
header("Content-Type: image/jpeg");
} else {
header("500 Bad image format");
exit;
}
header("Cache-Control: public");
header("Expires: ");
header("Last-Modified: ".fHttpDate($iModTime));
}
$oScreenshot = new Screenshot($aClean['iId']);
/* at this point, we know that .../screenshots/$id and
* .../screenshots/thumbnails/$id both exist as normally
* they would both be created at the same time. */
$fstat_val = stat(appdb_fullpath("data/screenshots/".$aClean['iId']));
$iModTime = $fstat_val['mtime'];
header("Cache-Control: public");
header("Expires: ");
/* if the browser is asking if the file was modified since a particular date */
/* and the date is the same that the file was modified, then we can report */
/* that the file wasn't modified, the browser can used the cached image */
if (isset($_SERVER['HTTP_IF_MODIFIED_SINCE']) &&
$iModTime == pHttpDate($_SERVER['HTTP_IF_MODIFIED_SINCE']))
{
header("HTTP/1.0 304 Not Modified");
exit;
}
header("Last-Modified: ".fHttpDate($iModTime));
if(!$aClean['bThumbnail'])
$oScreenshot->oScreenshotImage->output_to_browser(1);
else
$oScreenshot->oThumbnailImage->output_to_browser(1);
?>
Reference in New Issue View Git Blame Copy Permalink