diff options
| author | Malf Furious <m@lfurio.us> | 2016-10-22 00:29:30 -0400 |
|---|---|---|
| committer | Malf Furious <m@lfurio.us> | 2016-10-22 00:29:30 -0400 |
| commit | ed99654d2e139a847a63e9295bf976d17462ee34 (patch) | |
| tree | 23ab0c9d3b813da85e08d4008dbf98b7f0c9fd01 /examples/app/file.php | |
| parent | 9d0ff6546fb03489bbd127aeec6ee161e204a139 (diff) | |
| download | scrott-ed99654d2e139a847a63e9295bf976d17462ee34.tar.gz scrott-ed99654d2e139a847a63e9295bf976d17462ee34.zip | |
Deprecate application code
Setup to perform an iteration of development focused on a simpler
implementation and eliminating redundancy in design.
Diffstat (limited to 'examples/app/file.php')
| -rw-r--r-- | examples/app/file.php | 71 |
1 files changed, 71 insertions, 0 deletions
diff --git a/examples/app/file.php b/examples/app/file.php new file mode 100644 index 0000000..ceee9f7 --- /dev/null +++ b/examples/app/file.php @@ -0,0 +1,71 @@ +<?php + +/* + * SCROTT Copyright (C) 2016 Malf Furious + * + * Scrott is free software: you can redistribute it and/or modify + * it under the terms of the GNU General Public License as published + * by the Free Software Foundation, either version 3 of the License, + * or (at your option) any later version. + * + * Scrott is distributed in the hope that it will be useful, but + * WITHOUT ANY WARRANTY; even the implied warranty of MERCHANTABILITY + * or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public + * License for more details. + */ + +require_once "class/framework.class.php"; + +/* + * Proxy script for fetching resources from the /assets directory + * This script enforces access-control on HTTP objects such as images and flat files + * which are supplied by users. + * + * Example request: + * yourdomain.com/scrott/file.php?d=/img/heads&f=a4bf903a + */ +class Resource extends Framework +{ + /* + * Get request and figure out what type it is + */ + function handle($dir, $file) + { + if (basename($file) != $file || $file == "") + return; + + switch ($dir) + { + case "img/heads": $this->heads($file); break; + } + } + + /* + * Request a user head (user image) + * Requester must be currently logged in + */ + function heads($file) + { + if (!$this->getCurrentUser()) + return; + + if (!file_exists("assets/img/heads/" . $file)) + $file = "null.jpg"; + + $file = "assets/img/heads/" . $file; + $f = fopen($file, "rb"); + + if (!$f) + return; + + header("Content-type: " . mime_content_type($file)); + header("Content-length: " . filesize($file)); + fpassthru($f); + fclose($f); + } +} + +$res = new Resource(); +$res->handle($_REQUEST['d'], $_REQUEST['f']); + +?> |