getAuthUser(); if (!$au || $au->company()->comptype != 'OWNER') { $this->jerrAuth(); } return true; } function get($id) { $ev = DB_DataObject::Factory('Events'); if (!$ev->get((int)$id)) { $this->jerr("invalid id"); } // verify if not admin, then they should $g = DB_DataObject::Factory('group_members'); if (is_a($g, 'DB_DataObject')) { $grps = $g->listGroupMembership($this->authUser); //var_dump($grps); $isAdmin = $g->inAdmin; if (!$isAdmin && $ev->person_id != $this->authUser->id) { $this->jerrAuth(); } } // we have 2 bits of data available at present: // core_event_audit // the event file.. $d= DB_DataObject::factory('core_event_audit'); if (is_a($d,'DB_DataObject')) { echo "
' . htmlspecialchars(file_get_contents($file)) . ''; echo '
'. htmlspecialchars($ev->remarks) . ''; $filesJ = json_decode(file_get_contents($file)); echo '
Images Preview'; // should be change to event dir $path = $ff->baseURL. "/Images/Thumb/150/{$ev->on_id}"; foreach($filesJ->FILES as $f){ $ip = $ff->Pman['event_log_dir']. "/{$user}" . date('/Y/m/d/',strtotime($ev->event_when)). $f->tmp_name; $img = getimagesize($ip); // header("Content-type: image/jpeg"); //readfile($ip); // addslashes($ip); echo ""; //$path = $ff->baseURL. "Images/Thumb/150/$ff->Pman['event_log_dir']. "/{$user}" . date('/Y/m/d/',strtotime($ev->event_when)). $f->tmp_name; //echo ''; print_r($ip); } exit; } function readImage(){ $url= str_replace('.jpg','',$url); $bits = explode('/', $url); $opts = PEAR::getStaticProperty('Hebe','options'); if ( $bits[0] != 'members') { $bits[1] = $bits[0] . '/'.$bits[1]; $bits[0] = 'members'; } if (!isset($opts[$bits[0].'_photo_dir'])) { echo "NO OPT SET?"; exit; } $file = $ff->Pman['event_log_dir']. "/{$user}" . date('/Y/m/d/',strtotime($ev->event_when)). $f->tmp_name; if (!file_exists($file)) { echo "NO FILE? $file"; exit; } header ('Content-Type: image/jpeg'); $fh = fopen($file,'r'); echo fread($fh,filesize($file)); } }