getAuthUser(); if (!$au || $au->company()->comptype != 'OWNER') { $this->jerrAuth(); } return true; } function get($id) { $ev = DB_DataObject::Factory('Events'); if (!$ev->get((int)$id)) { $this->jerr("invalid id"); } // verify if not admin, then they should $g = DB_DataObject::Factory('group_members'); if (is_a($g, 'DB_DataObject')) { $grps = $g->listGroupMembership($this->authUser); //var_dump($grps); $isAdmin = $g->inAdmin; if (!$isAdmin && $ev->person_id != $this->authUser->id) { $this->jerrAuth(); } } // we have 2 bits of data available at present: // core_event_audit // the event file.. $d= DB_DataObject::factory('core_event_audit'); if (is_a($d,'DB_DataObject')) { echo "
' . htmlspecialchars(file_get_contents($file)) . ''; echo '
'. htmlspecialchars($ev->remarks) . ''; $filesJ = json_decode(file_get_contents($file)); echo '
Images Preview'; // should be change to event dir $path = $ff->baseURL. "/Images/Thumb/150/{$ev->on_id}"; foreach($filesJ->FILES as $f){ $ip = $ff->Pman['event_log_dir']. "/{$user}" . date('/Y/m/d/',strtotime($ev->event_when)). $f->tmp_name; $img = getimagesize($ip); // header("Content-type: image/jpeg"); //readfile($ip); // addslashes($ip); echo ""; //$path = $ff->baseURL. "Images/Thumb/150/$ff->Pman['event_log_dir']. "/{$user}" . date('/Y/m/d/',strtotime($ev->event_when)). $f->tmp_name; //echo ''; print_r($img); } exit; } }