2018-11-20 22:33:35 +01:00
|
|
|
<?php
|
|
|
|
/**
|
|
|
|
* @file src/Module/Photo.php
|
|
|
|
*/
|
|
|
|
|
|
|
|
namespace Friendica\Module;
|
|
|
|
|
|
|
|
use Friendica\BaseModule;
|
|
|
|
use Friendica\Core\Logger;
|
2018-11-21 15:10:47 +01:00
|
|
|
use Friendica\Core\System;
|
2018-11-20 22:33:35 +01:00
|
|
|
use Friendica\Model\Photo as MPhoto;
|
|
|
|
use Friendica\Object\Image;
|
|
|
|
use Friendica\Util\Security;
|
|
|
|
use Friendica\Network\HTTPException\NotFoundException;
|
|
|
|
use Friendica\Network\HTTPException\BadRequestException;
|
|
|
|
use Friendica\Network\HTTPException\InternalServerErrorException;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief Photo Module
|
|
|
|
*/
|
|
|
|
class Photo extends BaseModule
|
|
|
|
{
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @brief Module initializer
|
|
|
|
*
|
|
|
|
* Fetch a photo or an avatar, in optional size, check for permissions and
|
|
|
|
* return the image
|
|
|
|
*/
|
|
|
|
public static function init()
|
|
|
|
{
|
|
|
|
$a = self::getApp();
|
|
|
|
if ($a->argc <= 1 || $a->argc > 4) {
|
2018-11-21 15:10:47 +01:00
|
|
|
System::httpExit(400, "Bad Request");
|
2018-11-20 22:33:35 +01:00
|
|
|
}
|
|
|
|
|
2018-11-21 15:10:47 +01:00
|
|
|
if (isset($_SERVER["HTTP_IF_MODIFIED_SINCE"])) {
|
|
|
|
header("HTTP/1.1 304 Not Modified");
|
2018-11-20 22:33:35 +01:00
|
|
|
header("Last-Modified: " . gmdate("D, d M Y H:i:s", time()) . " GMT");
|
2018-11-21 15:10:47 +01:00
|
|
|
if (!empty($_SERVER["HTTP_IF_NONE_MATCH"])) {
|
|
|
|
header("Etag: " . $_SERVER["HTTP_IF_NONE_MATCH"]);
|
2018-11-20 22:33:35 +01:00
|
|
|
}
|
|
|
|
header("Expires: " . gmdate("D, d M Y H:i:s", time() + (31536000)) . " GMT");
|
|
|
|
header("Cache-Control: max-age=31536000");
|
2018-11-21 15:10:47 +01:00
|
|
|
if (function_exists("header_remove")) {
|
|
|
|
header_remove("Last-Modified");
|
|
|
|
header_remove("Expires");
|
|
|
|
header_remove("Cache-Control");
|
2018-11-20 22:33:35 +01:00
|
|
|
}
|
|
|
|
exit;
|
|
|
|
}
|
|
|
|
|
|
|
|
$customsize = 0;
|
|
|
|
switch($a->argc) {
|
|
|
|
case 4:
|
|
|
|
$customsize = intval($a->argv[2]);
|
|
|
|
$uid = self::stripExtension($a->argv[3]);
|
|
|
|
$photo = self::getAvatar($uid, $a->argv[1]);
|
|
|
|
break;
|
|
|
|
case 3:
|
|
|
|
$uid = self::stripExtension($a->argv[2]);
|
|
|
|
$photo = self::getAvatar($uid, $a->argv[1]);
|
|
|
|
break;
|
|
|
|
case 2:
|
|
|
|
$photoid = self::stripExtension($a->argv[1]);
|
|
|
|
$scale = 0;
|
2018-11-21 15:10:47 +01:00
|
|
|
if (substr($photoid, -2, 1) == "-") {
|
2018-11-20 22:33:35 +01:00
|
|
|
$scale = intval(substr($photoid, -1, 1));
|
|
|
|
$photoid = substr($photoid, 0, -2);
|
|
|
|
}
|
|
|
|
$photo = MPhoto::getPhoto($photoid, $scale);
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($photo===false) {
|
2018-11-21 15:10:47 +01:00
|
|
|
// not using System::httpExit() because we don't want html here.
|
2018-11-20 22:33:35 +01:00
|
|
|
header($_SERVER["SERVER_PROTOCOL"] . " 404 Not Found" , true, 404);
|
|
|
|
killme();
|
|
|
|
}
|
|
|
|
|
2018-11-21 15:12:11 +01:00
|
|
|
$cacheable = ($photo["allow_cid"] . $photo["allow_gid"] . $photo["deny_cid"] . $photo["deny_gid"] === "") && (isset($photo["cacheable"]) ? $photo["cacheable"] : true);
|
2018-11-20 22:33:35 +01:00
|
|
|
|
2018-11-20 23:15:03 +01:00
|
|
|
$img = MPhoto::getImageForPhoto($photo);
|
2018-11-20 22:33:35 +01:00
|
|
|
|
|
|
|
if (is_null($img) || !$img->isValid()) {
|
2018-11-21 15:10:47 +01:00
|
|
|
Logger::log("Invalid photo with id {$photo["id"]}.");
|
|
|
|
System::httpExit(500, "Internal Server Error");
|
2018-11-20 22:33:35 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
// if customsize is set and image is not a gif, resize it
|
|
|
|
if ($img->getType() !== "image/gif" && $customsize > 0 && $customsize < 501) {
|
|
|
|
$img->scaleToSquare($customsize);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2018-11-21 15:10:47 +01:00
|
|
|
if (function_exists("header_remove")) {
|
|
|
|
header_remove("Pragma");
|
|
|
|
header_remove("pragma");
|
2018-11-20 22:33:35 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
header("Content-type: " . $img->getType());
|
|
|
|
|
|
|
|
if (!$cacheable) {
|
|
|
|
// it is a private photo that they have no permission to view.
|
|
|
|
// tell the browser not to cache it, in case they authenticate
|
|
|
|
// and subsequently have permission to see it
|
|
|
|
header("Cache-Control: no-store, no-cache, must-revalidate");
|
|
|
|
} else {
|
2018-11-21 15:10:47 +01:00
|
|
|
$md5 = md5($img->asString());
|
2018-11-20 22:33:35 +01:00
|
|
|
header("Last-Modified: " . gmdate("D, d M Y H:i:s", time()) . " GMT");
|
2018-11-21 15:10:47 +01:00
|
|
|
header("Etag: \"{$md5}\"");
|
2018-11-20 22:33:35 +01:00
|
|
|
header("Expires: " . gmdate("D, d M Y H:i:s", time() + (31536000)) . " GMT");
|
|
|
|
header("Cache-Control: max-age=31536000");
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
echo $img->asString();
|
|
|
|
|
|
|
|
|
|
|
|
killme();
|
|
|
|
}
|
|
|
|
|
|
|
|
private static function stripExtension($name)
|
|
|
|
{
|
|
|
|
$name = str_replace([".jpg", ".png", ".gif"], ["", "", ""], $name);
|
2018-11-21 16:29:23 +01:00
|
|
|
foreach (Image::supportedTypes() as $m => $e) {
|
2018-11-21 15:10:47 +01:00
|
|
|
$name = str_replace("." . $e, "", $name);
|
2018-11-20 22:33:35 +01:00
|
|
|
}
|
|
|
|
return $name;
|
|
|
|
}
|
|
|
|
|
|
|
|
private static function getAvatar($uid, $type="avatar")
|
|
|
|
{
|
|
|
|
|
|
|
|
switch($type) {
|
|
|
|
case "profile":
|
|
|
|
case "custom":
|
|
|
|
$scale = 4;
|
|
|
|
$default = "images/person-300.jpg";
|
|
|
|
break;
|
|
|
|
case "micro":
|
|
|
|
$scale = 6;
|
|
|
|
$default = "images/person-48.jpg";
|
|
|
|
break;
|
|
|
|
case "avatar":
|
|
|
|
default:
|
|
|
|
$scale = 5;
|
|
|
|
$default = "images/person-80.jpg";
|
|
|
|
}
|
|
|
|
|
|
|
|
$photo = MPhoto::selectFirst([], ["scale" => $scale, "uid" => $uid, "profile" => 1]);
|
2018-11-21 16:36:29 +01:00
|
|
|
if ($photo === false) {
|
2018-11-21 09:37:13 +01:00
|
|
|
$photo = MPhoto::createPhotoForSystemResource($default);
|
2018-11-20 22:33:35 +01:00
|
|
|
}
|
|
|
|
return $photo;
|
|
|
|
}
|
|
|
|
|
2018-11-21 15:10:47 +01:00
|
|
|
}
|