62 lines
1.4 KiB
PHP
62 lines
1.4 KiB
PHP
<?php
|
|
namespace Zotlabs\Module;
|
|
|
|
require_once('include/security.php');
|
|
require_once('include/attach.php');
|
|
|
|
|
|
class Attach extends \Zotlabs\Web\Controller {
|
|
|
|
function init() {
|
|
|
|
if(argc() < 2) {
|
|
notice( t('Item not available.') . EOL);
|
|
return;
|
|
}
|
|
|
|
$r = attach_by_hash(argv(1),get_observer_hash(),((argc() > 2) ? intval(argv(2)) : 0));
|
|
|
|
if(! $r['success']) {
|
|
notice( $r['message'] . EOL);
|
|
return;
|
|
}
|
|
|
|
$c = q("select channel_address from channel where channel_id = %d limit 1",
|
|
intval($r['data']['uid'])
|
|
);
|
|
|
|
if(! $c)
|
|
return;
|
|
|
|
|
|
$unsafe_types = array('text/html','text/css','application/javascript');
|
|
|
|
if(in_array($r['data']['filetype'],$unsafe_types) && (! channel_codeallowed($r['data']['uid']))) {
|
|
header('Content-type: text/plain');
|
|
}
|
|
else {
|
|
header('Content-type: ' . $r['data']['filetype']);
|
|
}
|
|
|
|
header('Content-disposition: attachment; filename="' . $r['data']['filename'] . '"');
|
|
if(intval($r['data']['os_storage'])) {
|
|
$fname = dbunescbin($r['data']['content']);
|
|
if(strpos($fname,'store') !== false)
|
|
$istream = fopen($fname,'rb');
|
|
else
|
|
$istream = fopen('store/' . $c[0]['channel_address'] . '/' . $fname,'rb');
|
|
$ostream = fopen('php://output','wb');
|
|
if($istream && $ostream) {
|
|
pipe_streams($istream,$ostream);
|
|
fclose($istream);
|
|
fclose($ostream);
|
|
}
|
|
}
|
|
else
|
|
echo dbunescbin($r['data']['content']);
|
|
killme();
|
|
|
|
}
|
|
|
|
}
|