mirror/php-e107
1
0
Fork 0
mirror of https://github.com/e107inc/e107.git synced 2025-01-17 12:48:24 +01:00
Code Issues Releases Wiki Activity
php-e107/e107_handlers/secure_img_handler.php
CaMer0n 064c5c7d1e Some basic preparation for new e_url scheme and other changes. 
For anyone reading - please remember that 0.8 should not be utilized on a public site prior to official release.
2011-06-17 01:13:05 +00:00

95 lines
2.3 KiB
PHP
Raw Blame History

<?php
/*
* e107 website system
*
* Copyright (C) 2008-2009 e107 Inc (e107.org)
* Released under the terms and conditions of the
* GNU General Public License (http://www.gnu.org/licenses/gpl.txt)
*
*
*
* $Source: /cvs_backup/e107_0.8/e107_handlers/secure_img_handler.php,v $
* $Revision$
* $Date$
* $Author$
*/
if (!defined('e107_INIT')) { exit; }
class secure_image
{
var $random_number;
var $HANDLERS_DIRECTORY;
var $IMAGES_DIRECTORY;
var $THIS_DIR;
function secure_image()
{
list($usec, $sec) = explode(" ", microtime());
$this->random_number = str_replace(".", "", $sec.$usec);
$imgp = dirname(__FILE__);
if (substr($imgp,-1,1) != '/') $imgp .= '/';
if(!require($imgp.'../e107_config.php'))
{
if(defined('e_DEBUG'))
{
echo "FAILED TO LOAD e107_config.php in secure_img_handler.php";
}
}
$this->THIS_DIR = $imgp;
$this->HANDLERS_DIRECTORY = $HANDLERS_DIRECTORY;
$this->IMAGES_DIRECTORY = $IMAGES_DIRECTORY;
}
function create_code()
{
$pref = e107::getPref();
$sql = e107::getDb();
/*
require_once('e107_class.php');
$e107 = new e107(false, false);
$e107->set_paths();
$imgpy = str_replace($HANDLERS_DIRECTORY, "", $e107->file_path);
*/
$imgp = str_replace($this->HANDLERS_DIRECTORY, $this->IMAGES_DIRECTORY, $this->THIS_DIR);
mt_srand ((double)microtime() * 1000000);
$maxran = 1000000;
$rand_num = mt_rand(0, $maxran);
$datekey = date("r");
$rcode = hexdec(md5($_SERVER['HTTP_USER_AGENT'] . serialize($pref). $rand_num . $datekey));
$code = substr($rcode, 2, 6);
$recnum = $this->random_number;
$del_time = time()+1200;
$sql->db_Insert("tmp", "'{$recnum}',{$del_time},'{$code},{$imgp}'");
return $recnum;
}
function verify_code($rec_num, $checkstr)
{
$sql = e107::getDb();
$tp = e107::getParser();
if ($sql->db_Select("tmp", "tmp_info", "tmp_ip = '".$tp -> toDB($rec_num)."'")) {
$row = $sql->db_Fetch();
$sql->db_Delete("tmp", "tmp_ip = '".$tp -> toDB($rec_num)."'");
list($code, $path) = explode(",", $row['tmp_info']);
return ($checkstr == $code);
}
return FALSE;
}
function r_image()
{
$code = $this->create_code();
return "<img src='".e_HTTP.$this->HANDLERS_DIRECTORY."secure_img_render.php?{$code}' class='icon secure-image' alt='' />";
}
}
?>
Reference in New Issue View Git Blame Copy Permalink