DataObjects/Core_person_signup.php

[Pman.Core] / Images.php
diff --git a/Images.php b/Images.php

index 4fe4c3b..62f917c 100644 (file)
--- a/Images.php
+++ b/Images.php
@@ -55,11 +55,16 @@ class Pman_Core_Images extends Pman
      
      function get($s) // determin what to serve!!!!
      {
+        // for testing only.
+        //if (!empty($_GET['_post'])) {
+        //   return $this->post();
+        //}
+        
          $this->as_mimetype = empty($_REQUEST['as']) ? '' : $_REQUEST['as'];
          
          $bits= explode('/', $s);
          $id = 0;
-        
+//        var_dump($bits);die('in');
          // without id as first part...
          if (!empty($bits[0]) && $bits[0] == 'Thumb') {
              $this->thumb = true;
@@ -79,42 +84,10 @@ class Pman_Core_Images extends Pman
              
          } else if (!empty($bits[0]) && $bits[0] == 'events') {
              
-            $popts = PEAR::getStaticProperty('Pman','options');
-            $ev = DB_DAtaObject::Factory('events');
-            if (!$ev->get($bits[1])) {
-                die("could not find event id");
-            }
-            // technically same user only.. -- normally www-data..
-            if (function_exists('posix_getpwuid')) {
-                $uinfo = posix_getpwuid( posix_getuid () ); 
-                $user = $uinfo['name'];
-            } else {
-                $user = getenv('USERNAME'); // windows.
-            }
-            $ff = HTML_FlexyFramework::get();
-            $file = $ff->Pman['event_log_dir']. '/'. $user. date('/Y/m/d/',strtotime($ev->event_when)). $ev->id . ".json";
-            $filesJ = json_decode(file_get_contents($file));
-         
-            //print_r($filesJ);
-         
-            foreach($filesJ->FILES as $k=>$f){
-                if ($f->tmp_name != $bits[2]) {
-                    continue;
-                }
-                
-                $src = $ff->Pman['event_log_dir']. '/'. $user. date('/Y/m/d/', strtotime($ev->event_when)).  $f->tmp_name ;
-                if (!file_exists($src)) {
-                    die("file was not saved");
-                }
-                header ('Content-Type: ' . $f->type);
+            $this->downloadEvent($bits);
              
-                header("Content-Disposition: attachment; filename=\"".basename($f->name)."\";" );
-                @ob_clean();
-                flush();
-                readfile($src);
-                exit;
-            }
              die ("unknown file?"); 
+            
          } else {
          
              $id = empty($bits[0]) ? 0 :  $bits[0];
@@ -172,10 +145,12 @@ class Pman_Core_Images extends Pman
          
         
          $img = DB_DataObjecT::factory('Images');
+         
          if (!$id || !$img->get($id)) {
               
              header('Location: ' . $this->rootURL . '/Pman/templates/images/file-broken.png?reason=' .
                  urlencode("image has been removed or deleted."));
+            
          }
          $this->serve($img);
          exit;
@@ -201,32 +176,24 @@ class Pman_Core_Images extends Pman
          }
          
          
-        
          $this->as_mimetype = $_REQUEST['as'];
          $this->mimetype = $_REQUEST['mimetype'];
          require_once 'File/MimeType.php';
          $y = new File_MimeType();
          $src_ext = $y->toExt( $this->mimetype );
-        $test_temp = '/var/lib/php5/ClippingTMPh3cFeo.svg';
-        
-        $xml = simplexml_load_string($_REQUEST['data']);
          
-        print_r($xml->saveXML());exit;
          
          $tmp = $this->tempName($src_ext);
          file_put_contents($tmp, $_REQUEST['data']);
          
-        
-        
          require_once 'File/Convert.php';
-        $cv = new File_Convert($test_temp, $this->mimetype);
+        $cv = new File_Convert($tmp, $this->mimetype);
          
          $fn = $cv->convert(
                  $this->as_mimetype ,
                  empty($_REQUEST['width']) ? 0 : $_REQUEST['width'],
                  empty($_REQUEST['height']) ? 0 : $_REQUEST['height']
          );
-//        print_r($tmp);exit;
          if (!empty($_REQUEST['as_data'])) {
              $this->jok(base64_encode(file_get_contents($fn)));
          }
@@ -246,12 +213,12 @@ class Pman_Core_Images extends Pman
          
          require_once 'File/Convert.php';
          if (!file_exists($img->getStoreName())) {
-            //print_r($img);exit;
+//            print_r($img);exit;
              header('Location: ' . $this->rootURL . '/Pman/templates/images/file-broken.png?reason=' .
                  urlencode("Original file was missing : " . $img->getStoreName()));
      
          }
-        
+//        print_r($img);exit;
          $x = $img->toFileConvert();
          if (empty($this->as_mimetype)) {
              $this->as_mimetype  = $img->mimetype;
@@ -293,8 +260,7 @@ class Pman_Core_Images extends Pman
      }
      function validateSize()
      {
-        
-        if ($this->authUser && $this->authUser->company_id && $this->authUser->company()->comptype=='OWNER') {
+        if (($this->authUser && $this->authUser->company_id && $this->authUser->company()->comptype=='OWNER') || $_SERVER['SERVER_ADDR'] == $_SERVER['REMOTE_ADDR']) {
              return true;
          }
          
@@ -462,4 +428,43 @@ class Pman_Core_Images extends Pman
           
      }
      
+    function downloadEvent($bits)
+    {
+        $popts = PEAR::getStaticProperty('Pman','options');
+        $ev = DB_DAtaObject::Factory('events');
+        if (!$ev->get($bits[1])) {
+            die("could not find event id");
+        }
+        // technically same user only.. -- normally www-data..
+        if (function_exists('posix_getpwuid')) {
+            $uinfo = posix_getpwuid( posix_getuid () ); 
+            $user = $uinfo['name'];
+        } else {
+            $user = getenv('USERNAME'); // windows.
+        }
+        $ff = HTML_FlexyFramework::get();
+        $file = $ff->Pman['event_log_dir']. '/'. $user. date('/Y/m/d/',strtotime($ev->event_when)). $ev->id . ".json";
+        $filesJ = json_decode(file_get_contents($file));
+
+        //print_r($filesJ);
+
+        foreach($filesJ->FILES as $k=>$f){
+            if ($f->tmp_name != $bits[2]) {
+                continue;
+            }
+
+            $src = $ff->Pman['event_log_dir']. '/'. $user. date('/Y/m/d/', strtotime($ev->event_when)).  $f->tmp_name ;
+            if (!file_exists($src)) {
+                die("file was not saved");
+            }
+            header ('Content-Type: ' . $f->type);
+
+            header("Content-Disposition: attachment; filename=\"".basename($f->name)."\";" );
+            @ob_clean();
+            flush();
+            readfile($src);
+            exit;
+        }
+    }
+    
  }