mirror/php-typemill
1
0
Fork 0
mirror of https://github.com/typemill/typemill.git synced 2025-08-07 22:56:32 +02:00
Code Issues Releases Wiki Activity

Version 1.5.1: File Restrictions, Download Controller and Shared File-Component

Browse Source
This commit is contained in:
trendschau
2021-11-07 17:40:24 +01:00
parent 43d31a61cd
commit 1a09c7767b
7 changed files with 279 additions and 82 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
system/Controllers/ControllerAuthorMediaApi.php
View File

@@ -267,8 +267,15 @@ class ControllerAuthorMediaApi extends ControllerAuthor
}
$fileinfo = $fileProcessor->storeFile($this->params['file'], $this->params['name']);
if($fileinfo)
{
# publish file directly, used for example by file field for meta-tabs
if(isset($this->params['publish']) && $this->params['publish'])
{
$fileProcessor->publishFile();
}
return $response->withJson(['errors' => false, 'info' => $fileinfo]);
}

11
system/Controllers/ControllerDownload.php
View File

@@ -35,7 +35,8 @@ class ControllerDownload extends ControllerShared
if(!isset($_SESSION['role']))
{
die("You have to be an authenticated $allowedrole to download this file.");
$this->c->flash->addMessage('error', "You have to be an authenticated $allowedrole to download this file.");
return $response->withRedirect($this->c->router->pathFor('auth.show'));
}
elseif(
$_SESSION['role'] != 'administrator'
@@ -43,7 +44,8 @@ class ControllerDownload extends ControllerShared
AND !$this->c->acl->inheritsRole($_SESSION['role'], $allowedrole)
)
{
die("You have to be a $allowedrole to download this file.");
$this->c->flash->addMessage('error', "You have to be a $allowedrole to download this file.");
return $response->withRedirect($this->c->router->pathFor('auth.show'));
}
}
@@ -129,10 +131,11 @@ class ControllerDownload extends ControllerShared
header('Pragma: public');
header('Content-Encoding: none');
header('Expires: 0');
header('Accept-Ranges: bytes'); # Allow support for download resume
header('Expires: 0');
header('Last-Modified: ' . gmdate('D, d M Y H:i:s', filemtime($file)) . ' GMT');
header('Cache-Control: must-revalidate, post-check=0, pre-check=0');
header_remove("Last-Modified");
header('Cache-Control: max-age=0, no-cache, no-store, must-revalidate');
header('Cache-Control: private', false); # required for some browsers
header('Content-Type: application/zip');
header('Content-Disposition: attachment; filename="'.basename($file).'";'); # Make the browser display the Save As dialog