/wp-includes/ms-files.php

https://gitlab.com/endomorphosis/reservationtelco · PHP · 83 lines · 53 code · 17 blank · 13 comment · 20 complexity · fe012abe0898454d4f2bc2c85682215d MD5 · raw file 

    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * Multisite upload handler.
    4. 

  4.  *
    5. 

  5.  * @since 3.0.0
    6. 

  6.  *
    7. 

  7.  * @package WordPress
    8. 

  8.  * @subpackage Multisite
    9. 

  9.  */
    10. 

  10. 

  11. define( 'SHORTINIT', true );
    12. 

  12. require_once( dirname( dirname( __FILE__ ) ) . '/wp-load.php' );
    13. 

  13. 

  14. if( !is_multisite() )
    15. 

  15. 	die( 'Multisite support not enabled' );
    16. 

  16. 

  17. ms_file_constants();
    18. 

  18. 

  19. error_reporting( 0 );
    20. 

  20. 

  21. if ( $current_blog->archived == '1' || $current_blog->spam == '1' || $current_blog->deleted == '1' ) {
    22. 

  22. 	status_header( 404 );
    23. 

  23. 	die( '404 &#8212; File not found.' );
    24. 

  24. }
    25. 

  25. 

  26. $file = BLOGUPLOADDIR . str_replace( '..', '', $_GET[ 'file' ] );
    27. 

  27. if ( !is_file( $file ) ) {
    28. 

  28. 	status_header( 404 );
    29. 

  29. 	die( '404 &#8212; File not found.' );
    30. 

  30. }
    31. 

  31. 

  32. $mime = wp_check_filetype( $_SERVER[ 'REQUEST_URI' ] );
    33. 

  33. if( false === $mime[ 'type' ] && function_exists( 'mime_content_type' ) )
    34. 

  34. 	$mime[ 'type' ] = mime_content_type( $file );
    35. 

  35. 

  36. if( $mime[ 'type' ] )
    37. 

  37. 	$mimetype = $mime[ 'type' ];
    38. 

  38. else
    39. 

  39. 	$mimetype = 'image/' . substr( $_SERVER[ 'REQUEST_URI' ], strrpos( $_SERVER[ 'REQUEST_URI' ], '.' ) + 1 );
    40. 

  40. 

  41. header( 'Content-type: ' . $mimetype ); // always send this
    42. 

  42. if ( false === strpos( $_SERVER['SERVER_SOFTWARE'], 'Microsoft-IIS' ) )
    43. 

  43. 	header( 'Content-Length: ' . filesize( $file ) );
    44. 

  44. 

  45. // Optional support for X-Sendfile and X-Accel-Redirect
    46. 

  46. if ( WPMU_ACCEL_REDIRECT ) {
    47. 

  47. 	header( 'X-Accel-Redirect: ' . str_replace( WP_CONTENT_DIR, '', $file ) );
    48. 

  48. 	exit;
    49. 

  49. } elseif ( WPMU_SENDFILE ) {
    50. 

  50. 	header( 'X-Sendfile: ' . $file );
    51. 

  51. 	exit;
    52. 

  52. }
    53. 

  53. 

  54. $last_modified = gmdate( 'D, d M Y H:i:s', filemtime( $file ) );
    55. 

  55. $etag = '"' . md5( $last_modified ) . '"';
    56. 

  56. header( "Last-Modified: $last_modified GMT" );
    57. 

  57. header( 'ETag: ' . $etag );
    58. 

  58. header( 'Expires: ' . gmdate( 'D, d M Y H:i:s', time() + 100000000 ) . ' GMT' );
    59. 

  59. 

  60. // Support for Conditional GET
    61. 

  61. $client_etag = isset( $_SERVER['HTTP_IF_NONE_MATCH'] ) ? stripslashes( $_SERVER['HTTP_IF_NONE_MATCH'] ) : false;
    62. 

  62. 

  63. if( ! isset( $_SERVER['HTTP_IF_MODIFIED_SINCE'] ) )
    64. 

  64. 	$_SERVER['HTTP_IF_MODIFIED_SINCE'] = false;
    65. 

  65. 

  66. $client_last_modified = trim( $_SERVER['HTTP_IF_MODIFIED_SINCE'] );
    67. 

  67. // If string is empty, return 0. If not, attempt to parse into a timestamp
    68. 

  68. $client_modified_timestamp = $client_last_modified ? strtotime( $client_last_modified ) : 0;
    69. 

  69. 

  70. // Make a timestamp for our most recent modification...
    71. 

  71. $modified_timestamp = strtotime($last_modified);
    72. 

  72. 

  73. if ( ( $client_last_modified && $client_etag )
    74. 

  74. 	? ( ( $client_modified_timestamp >= $modified_timestamp) && ( $client_etag == $etag ) )
    75. 

  75. 	: ( ( $client_modified_timestamp >= $modified_timestamp) || ( $client_etag == $etag ) )
    76. 

  76. 	) {
    77. 

  77. 	status_header( 304 );
    78. 

  78. 	exit;
    79. 

  79. }
    80. 

  80. 

  81. // If we made it this far, just serve the file
    82. 

  82. readfile( $file );
    83. 

  83. ?>
    84.