summaryrefslogblamecommitdiffstats
path: root/examples/app/file.php
blob: ceee9f7524d791d67d2aa1f5e4710e2922acfbec (plain) (tree) 
0cb67e7


13c67f7














0cb67e7












b701b45













8ffc128
























0cb67e7






1
2

3
4
5
6
7
8
9
10
11
12
13
14
15
16

17
18
19
20
21
22
23
24
25
26
27
28

29
30
31
32
33
34
35
36
37
38
39
40
41

42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65

66
67
68
69
70
71


     













                                                                     











                                                                                    












                                                         























                                                            





                                             
<?php

/*
 * SCROTT Copyright (C) 2016 Malf Furious
 *
 * Scrott is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published
 * by the Free Software Foundation, either version 3 of the License,
 * or (at your option) any later version.
 *
 * Scrott is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; even the implied warranty of MERCHANTABILITY
 * or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public
 * License for more details.
 */

require_once "class/framework.class.php";

/*
 * Proxy script for fetching resources from the /assets directory
 * This script enforces access-control on HTTP objects such as images and flat files
 * which are supplied by users.
 *
 * Example request:
 * yourdomain.com/scrott/file.php?d=/img/heads&f=a4bf903a
 */
class Resource extends Framework
{
    /*
     * Get request and figure out what type it is
     */
    function handle($dir, $file)
    {
        if (basename($file) != $file || $file == "")
            return;

        switch ($dir)
        {
            case "img/heads": $this->heads($file); break;
        }
    }

    /*
     * Request a user head (user image)
     * Requester must be currently logged in
     */
    function heads($file)
    {
        if (!$this->getCurrentUser())
            return;

        if (!file_exists("assets/img/heads/" . $file))
            $file = "null.jpg";

        $file = "assets/img/heads/" . $file;
        $f = fopen($file, "rb");

        if (!$f)
            return;

        header("Content-type: " . mime_content_type($file));
        header("Content-length: " . filesize($file));
        fpassthru($f);
        fclose($f);
    }
}

$res = new Resource();
$res->handle($_REQUEST['d'], $_REQUEST['f']);

?>
cgit-1.2.3-r5 | srcnode v0.4.0