photo.php
4.7 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
<?php
/**
+-----------------------------------------------------------------------+
| This file is part of the Roundcube Webmail client |
| |
| Copyright (C) The Roundcube Dev Team |
| |
| Licensed under the GNU General Public License version 3 or |
| any later version with exceptions for skins & plugins. |
| See the README file for a full license statement. |
| |
| PURPOSE: |
| Show contact photo |
+-----------------------------------------------------------------------+
| Author: Thomas Bruederli <roundcube@gmail.com> |
| Author: Aleksander Machniak <alec@alec.pl> |
+-----------------------------------------------------------------------+
*/
class rcmail_action_contacts_photo extends rcmail_action_contacts_index
{
protected static $mode = self::MODE_HTTP;
/**
* Request handler.
*
* @param array $args Arguments from the previous step(s)
*/
public function run($args = [])
{
$rcmail = rcmail::get_instance();
// Get contact ID and source ID from request
$cids = self::get_cids();
$source = key($cids);
$cid = $cids ? array_first($cids[$source]) : null;
$file_id = rcube_utils::get_input_value('_photo', rcube_utils::INPUT_GPC);
// read the referenced file
if ($file_id && !empty($_SESSION['contacts']['files'][$file_id])) {
$tempfile = $_SESSION['contacts']['files'][$file_id];
$tempfile = $rcmail->plugins->exec_hook('attachment_display', $tempfile);
if (!empty($tempfile['status'])) {
if (!empty($tempfile['data'])) {
$data = $tempfile['data'];
}
else if ($tempfile['path']) {
$data = file_get_contents($tempfile['path']);
}
}
}
else {
// by email, search for contact first
if ($email = rcube_utils::get_input_value('_email', rcube_utils::INPUT_GPC)) {
foreach ($rcmail->get_address_sources() as $s) {
$abook = $rcmail->get_address_book($s['id']);
$result = $abook->search(['email'], $email, 1, true, true, 'photo');
while ($result && ($record = $result->iterate())) {
if (!empty($record['photo'])) {
break 2;
}
}
}
}
// by contact id
if (empty($record) && $cid) {
// Initialize addressbook source
$CONTACTS = self::contact_source($source, true);
$SOURCE_ID = $source;
// read contact record
$record = $CONTACTS->get_record($cid, true);
}
if (!empty($record['photo'])) {
$data = is_array($record['photo']) ? $record['photo'][0] : $record['photo'];
if (!preg_match('![^a-z0-9/=+-]!i', $data)) {
$data = base64_decode($data, true);
}
}
}
// let plugins do fancy things with contact photos
$plugin = $rcmail->plugins->exec_hook('contact_photo', [
'record' => isset($record) ? $record : null,
'email' => isset($email) ? $email : null,
'data' => isset($data) ? $data : null,
]);
// redirect to url provided by a plugin
if (!empty($plugin['url'])) {
$rcmail->output->redirect($plugin['url']);
}
$data = $plugin['data'];
// detect if photo data is a URL
if (strlen($data) < 1024 && filter_var($data, FILTER_VALIDATE_URL)) {
$rcmail->output->redirect($data);
}
// cache for one day if requested by email
if (!$cid && !empty($email)) {
$rcmail->output->future_expire_header(86400);
}
if ($data) {
$rcmail->output->sendExit($data, ['Content-Type: ' . rcube_mime::image_content_type($data)]);
}
if (!empty($_GET['_error'])) {
$rcmail->output->sendExit('', ['HTTP/1.0 204 Photo not found']);
}
$rcmail->output->sendExit(base64_decode(rcmail_output::BLANK_GIF), ['Content-Type: image/gif']);
}
}