PageRenderTime 102ms CodeModel.GetById 37ms RepoModel.GetById 1ms app.codeStats 0ms

/htdocs/thumb.php

https://gitlab.com/mahara2/ranginuis-mahara
PHP | 216 lines | 168 code | 21 blank | 27 comment | 42 complexity | c92818e7627809d0998b48ffeabcffe9 MD5 | raw file
Possible License(s): LGPL-2.1, BSD-2-Clause, MIT, GPL-3.0 
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  *
    4. 

  4.  * @package    mahara
    5. 

  5.  * @subpackage core
    6. 

  6.  * @author     Catalyst IT Ltd
    7. 

  7.  * @license    http://www.gnu.org/copyleft/gpl.html GNU GPL version 3 or later
    8. 

  8.  * @copyright  For copyright information on Mahara, please see the README file distributed with this software.
    9. 

  9.  *
    10. 

  10.  */
    11. 

  11. 

  12. define('INTERNAL', 1);
    13. 

  13. define('PUBLIC', 1);
    14. 

  14. define('NOCHECKREQUIREDFIELDS', 1);
    15. 

  15. require('init.php');
    16. 

  16. require_once('file.php');
    17. 

  17. require_once('user.php');
    18. 

  18. require_once('layoutpreviewimage.php');
    19. 

  19. 

  20. $type = param_alpha('type');
    21. 

  21. 

  22. switch ($type) {
    23. 

  23.     case 'profileiconbyid':
    24. 

  24.     case 'profileicon':
    25. 

  25.         $id = param_integer('id', 0);
    26. 

  26.         $size = get_imagesize_parameters();
    27. 

  27.         $earlyexpiry = param_boolean('earlyexpiry');
    28. 

  28.         $useremail = null;
    29. 

  29. 

  30.         if ($id) {
    31. 

  31.             if ($type == 'profileicon') {
    32. 

  32.                 // Convert ID of user to the ID of a profileicon
    33. 

  33.                 $data = get_record_sql('
    34. 

  34.                     SELECT u.profileicon, u.email, f.filetype
    35. 

  35.                     FROM {usr} u LEFT JOIN {artefact_file_files} f ON u.profileicon = f.artefact
    36. 

  36.                     WHERE u.id = ?', array($id));
    37. 

  37.                 if (!empty($data->profileicon)) {
    38. 

  38.                     $id = $data->profileicon;
    39. 

  39.                     $mimetype = $data->filetype;
    40. 

  40.                 }
    41. 

  41.                 else {
    42. 

  42.                     if ($useremail = $data->email) {
    43. 

  43.                         // We can use the email address for gravatar icon
    44. 

  44.                         $notfound = get_config('wwwroot').'thumb.php?type=profileiconbyid';
    45. 

  45.                         foreach ($_GET as $k => $v) {
    46. 

  46.                             if ($k != 'id' && $k != 'type') {
    47. 

  47.                                 $notfound .= '&' . $k . '=' . $v;
    48. 

  48.                             }
    49. 

  49.                         }
    50. 

  50.                     }
    51. 

  51.                     $id = null;
    52. 

  52.                 }
    53. 

  53.             }
    54. 

  54.             else {
    55. 

  55.                 $mimetype = get_field('artefact_file_files', 'filetype', 'artefact', $id);
    56. 

  56.             }
    57. 

  57.         }
    58. 

  58. 

  59.         if ($id && $fileid = get_field('artefact_file_files', 'fileid', 'artefact', $id)) {
    60. 

  60.             if ($path = get_dataroot_image_path('artefact/file/profileicons', $fileid, $size)) {
    61. 

  61.                 if ($mimetype) {
    62. 

  62.                     header('Content-type: ' . $mimetype);
    63. 

  63. 

  64.                     if (!get_config('nocache')) {
    65. 

  65.                         // We can't cache 'profileicon' for as long, because the
    66. 

  66.                         // user can change it at any time. But we can cache
    67. 

  67.                         // 'profileiconbyid' for quite a while, because it will
    68. 

  68.                         // never change
    69. 

  69.                         if ($type == 'profileiconbyid' and !$earlyexpiry) {
    70. 

  70.                             $maxage = 604800; // 1 week
    71. 

  71.                         }
    72. 

  72.                         else {
    73. 

  73.                             $maxage = 600; // 10 minutes
    74. 

  74.                         }
    75. 

  75.                         header('Expires: '. gmdate('D, d M Y H:i:s', time() + $maxage) .' GMT');
    76. 

  76.                         header('Cache-Control: max-age=' . $maxage);
    77. 

  77.                         header('Pragma: public');
    78. 

  78.                     }
    79. 

  79. 

  80.                     readfile_exit($path);
    81. 

  81.                 }
    82. 

  82.             }
    83. 

  83.         }
    84. 

  84. 

  85.         // Look for an appropriate image on gravatar.com
    86. 

  86.         if ($useremail and $gravatarurl = remote_avatar($useremail, $size, $notfound)) {
    87. 

  87.             redirect($gravatarurl);
    88. 

  88.         }
    89. 

  89. 

  90.         // We couldn't find an image for this user. Attempt to use the 'no user 
    91. 

  91.         // photo' image for the current theme
    92. 

  92. 

  93.         if (!get_config('nocache')) {
    94. 

  94.             // We can cache such images
    95. 

  95.             $maxage = 604800; // 1 week
    96. 

  96.             if ($earlyexpiry) {
    97. 

  97.                 $maxage = 600; // 10 minutes
    98. 

  98.             }
    99. 

  99.             header('Expires: '. gmdate('D, d M Y H:i:s', time() + $maxage) .' GMT');
    100. 

  100.             header('Cache-Control: max-age=' . $maxage);
    101. 

  101.             header('Pragma: public');
    102. 

  102.         }
    103. 

  103. 

  104.         if ($path = get_dataroot_image_path('artefact/file/profileicons/no_userphoto/' . $THEME->basename, 0, $size)) {
    105. 

  105.             header('Content-type: ' . 'image/png');
    106. 

  106.             readfile_exit($path);
    107. 

  107.         }
    108. 

  108. 

  109.         // If we couldn't find the no user photo picture, we put it into 
    110. 

  110.         // dataroot if we can
    111. 

  111.         $nouserphotopic = $THEME->get_path('images/no_userphoto.png');
    112. 

  112.         if ($nouserphotopic) {
    113. 

  113.             // Move the file into the correct place.
    114. 

  114.             $directory = get_config('dataroot') . 'artefact/file/profileicons/no_userphoto/' . $THEME->basename . '/originals/0/';
    115. 

  115.             check_dir_exists($directory);
    116. 

  116.             copy($nouserphotopic, $directory . '0');
    117. 

  117.             // Now we can try and get the image in the correct size
    118. 

  118.             if ($path = get_dataroot_image_path('artefact/file/profileicons/no_userphoto/' . $THEME->basename, 0, $size)) {
    119. 

  119.                 header('Content-type: ' . 'image/png');
    120. 

  120.                 readfile_exit($path);
    121. 

  121.             }
    122. 

  122.         }
    123. 

  123. 

  124. 

  125.         // Emergency fallback
    126. 

  126.         header('Content-type: ' . 'image/png');
    127. 

  127.         readfile_exit($THEME->get_path('images/no_userphoto.png'));
    128. 

  128. 

  129.     case 'logobyid':
    130. 

  130.         $filedata = get_record('artefact_file_files', 'artefact', param_integer('id'));
    131. 

  131.         if ($path = get_dataroot_image_path('artefact/file/profileicons', $filedata->fileid, get_imagesize_parameters())) {
    132. 

  132.             if ($filedata->filetype) {
    133. 

  133.                 header('Content-type: ' . $filedata->filetype);
    134. 

  134.                 if (!get_config('nocache')) {
    135. 

  135.                     $maxage = 604800;
    136. 

  136.                     header('Expires: '. gmdate('D, d M Y H:i:s', time() + $maxage) .' GMT');
    137. 

  137.                     header('Cache-Control: max-age=' . $maxage);
    138. 

  138.                     header('Pragma: public');
    139. 

  139.                 }
    140. 

  140. 

  141.                 readfile_exit($path);
    142. 

  142.             }
    143. 

  143.         }
    144. 

  144. 

  145.         // Nothing found, use the site logo.
    146. 

  146.         header('Content-type: ' . 'image/png');
    147. 

  147.         readfile_exit($THEME->get_path('images/site-logo.png'));
    148. 

  148. 

  149.     case 'blocktype':
    150. 

  150.         $bt = param_alpha('bt'); // blocktype
    151. 

  151.         $ap = param_alpha('ap', null); // artefact plugin (optional)
    152. 

  152.         
    153. 

  153.         $basepath = 'blocktype/' . $bt;
    154. 

  154.         if (!empty($ap)) {
    155. 

  155.             $basepath = 'artefact/' . $ap . '/' . $basepath;
    156. 

  156.         }
    157. 

  157.         header('Content-type: image/png');
    158. 

  158.         if (!get_config('nocache')) {
    159. 

  159.             $maxage = 604800;
    160. 

  160.             header('Expires: '. gmdate('D, d M Y H:i:s', time() + $maxage) .' GMT');
    161. 

  161.             header('Cache-Control: max-age=' . $maxage);
    162. 

  162.             header('Pragma: public');
    163. 

  163.         }
    164. 

  164.         $path = $THEME->get_path('images/thumb.png', false, $basepath);
    165. 

  165.         if (is_readable($path)) {
    166. 

  166.             readfile_exit($path);
    167. 

  167.         }
    168. 

  168.         $path = get_config('docroot') . $basepath . '/thumb.png';
    169. 

  169.         if (is_readable($path)) {
    170. 

  170.             readfile_exit($path);
    171. 

  171.         }
    172. 

  172.         readfile_exit($THEME->get_path('images/no_thumbnail.png'));
    173. 

  173.     case 'viewlayout':
    174. 

  174.         header('Content-type: image/png');
    175. 

  175.         $vl = param_integer('vl');
    176. 

  176.         $rows = get_records_sql_assoc('
    177. 

  177.                 SELECT vlrc.row, vlc.widths
    178. 

  178.                 FROM {view_layout_rows_columns} vlrc
    179. 

  179.                 INNER JOIN {view_layout_columns} vlc ON (vlrc.columns = vlc.id)
    180. 

  180.                 WHERE vlrc.viewlayout = ?
    181. 

  181.                 ORDER BY vlrc.row ASC',
    182. 

  182.                 array($vl));
    183. 

  183. 

  184.         if ($rows) {
    185. 

  185.                 $filename = 'vl-';
    186. 

  186.                 foreach ($rows as $key => $row) {
    187. 

  187.                     $filename .= str_replace(',', '-', $row->widths);
    188. 

  188.                     $filename .= ($key == count($rows))? '.png' : '_';
    189. 

  189.                 }
    190. 

  190.                 if (($path = get_config('dataroot') . LayoutPreviewImage::$destinationfolder . '/' . $filename)
    191. 

  191.                     && (is_readable($path))) {
    192. 

  192.                         readfile_exit($path);
    193. 

  193.                 }
    194. 

  194.                 // look in theme folder for default layout thumbs, or dataroot folder for custom layout thumbs
    195. 

  195.                 else if (($path = $THEME->get_path('images/' . $filename))
    196. 

  196.                         && (is_readable($path))) {
    197. 

  197.                         readfile_exit($path);
    198. 

  198.                 }
    199. 

  199.         }
    200. 

  200.         readfile_exit($THEME->get_path('images/no_thumbnail.png'));
    201. 

  201.     case 'customviewlayout':
    202. 

  202.            header('Content-type: image/png');
    203. 

  203.            $cvl = param_variable('cvl');
    204. 

  204.            // dataroot folder for custom layout thumbs
    205. 

  205.            if (($path = get_config('dataroot') . LayoutPreviewImage::$destinationfolder . '/' . $cvl . '.png')
    206. 

  206.                && (is_readable($path))) {
    207. 

  207.                    readfile_exit($path);
    208. 

  208.            }
    209. 

  209.         readfile_exit($THEME->get_path('images/no_thumbnail.png'));
    210. 

  210. }
    211. 

  211. 

  212. function readfile_exit($path) {
    213. 

  213.     readfile($path);
    214. 

  214.     perf_to_log();
    215. 

  215.     exit;
    216. 

  216. }
    217. 

  217.