ready for merge #43

2025-08-20 23:01:24 +02:00 · 2015-01-14 19:28:52 +01:00
parent f9704a4fbc
commit be98ae8979
4 changed files with 104 additions and 35 deletions
--- a/webroot/img.php
+++ b/webroot/img.php
@@ -70,6 +70,24 @@ function getDefined($key, $defined, $undefined)



+/**
+ * Get value from config array or default if key is not set in config array.
+ *
+ * @param string $key    the key in the config array.
+ * @param mixed $default value to be default if $key is not set in config.
+ *
+ * @return mixed value as $config[$key] or $default.
+ */
+function getConfig($key, $default)
+{
+    global $config;
+    return isset($config[$key])
+        ? $config[$key]
+        : $default;
+}
+
+
+
 /**
 * Log when verbose mode, when used without argument it returns the result.
 *
@@ -123,11 +141,23 @@ $verbose = getDefined(array('verbose', 'v'), true, false);



+/**
+ * Get the source files.
+ */
+$autoloader  = getConfig('autoloader', false);
+$cimageClass = getConfig('cimage_class', false);
+
+if ($autoloader) {
+    require $autoloader;
+} else if ($cimageClass) {
+    require $cimageClass;
+}
+
+
+
 /**
 * Create the class for the image.
 */
-require $config['cimage_class'];
-
 $img = new CImage();
 $img->setVerbose($verbose);

@@ -137,12 +167,23 @@ $img->setVerbose($verbose);
 * Allow or disallow remote download of images from other servers.
 *
 */
-$allowRemote = $config['remote_allow'];
+$allowRemote = getConfig('remote_allow', false);
+$remotePwd   = getConfig('remote_password', false);
+$pwd         = get(array('password', 'pwd'), null);

-if ($allowRemote) {
-    $pattern = isset($config['remote_pattern'])
-        ? $config['remote_pattern']
-        : null;
+// Check if passwords match, if configured to use passwords
+$passwordMatch = null;
+if ($remotePwd != false) {
+    if ($remotePwd == $pwd) {
+        $passwordMatch = true;
+    } else {
+        $passwordMatch = false;
+        errorPage('Trying to download remote image but missing password.');
+    }
+}
+
+if ($allowRemote && $passwordMatch !== false) {
+    $pattern = getConfig('remote_pattern', null);
    $img->setRemoteDownload($allowRemote, $pattern);
 }

--- a/webroot/img_config.php
+++ b/webroot/img_config.php
@@ -5,16 +5,19 @@
 * config-file imgtest_config.php.
 *
 */
-include __DIR__ . "/../CHttpGet.php";
-include __DIR__ . "/../CRemoteImage.php";
-
 return array(

    /**
-     * Paths, where are all the stuff I should use?
-     * Append ending slash on directories.
+     * Where are the sources for the classfiles.
+     */
+    'autoloader'   =>  __DIR__ . '/../autoload.php',
+    //'cimage_class' =>  __DIR__ . '/../CImage.php',
+
+
+
+    /**
+     * Paths, where are the images stored and where is the cache.
     */
-    'cimage_class' =>  __DIR__ . '/../CImage.php',
    'image_path'   =>  __DIR__ . '/img/',
    'cache_path'   =>  __DIR__ . '/../cache/',

@@ -39,9 +42,17 @@ return array(
    /**
     * Allow or disallow downloading of remote files, images available on
     * some remote server. Default is to disallow.
+     * Use password to protect from missusage, send &pwd=... or &password=..
+     * with the request to match the password or set to false to disable.
+     *
+     * Default values.
+     *  remote_allow:    false
+     *  remote_password: false // as in do not use password
+     *  remote_pattern:  null  // use default values from CImage
     */
-    'remote_allow'   => true,
-    'remote_pattern' => '#^http#',
+    'remote_allow'    => true,
+    //'remote_password' => false, // "secret-password",
+    //'remote_pattern'  => '#^https?://#',