summaryrefslogtreecommitdiff
path: root/core/controllers/simple_uploader.php
blob: e3ed84ec1cc90d03cd40caa2fc58ea05b73c66f8 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55

<?php defined("SYSPATH") or die("No direct script access.");
/**
 * Gallery - a web based photo album viewer and editor
 * Copyright (C) 2000-2008 Bharat Mediratta
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or (at
 * your option) any later version.
 *
 * This program is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street - Fifth Floor, Boston, MA  02110-1301, USA.
 */
class Simple_Uploader_Controller extends Controller {
  public function app($id) {
    $item = ORM::factory("item", $id);
    access::required("edit", $item);

    $v = new View("simple_uploader.html");
    $v->item = $item;
    $v->flash_vars =
      "uploadUrl=" . urlencode(
        url::site("simple_uploader/add_photo/$item->id" .
                  "?csrf=" . access::csrf_token() .
                  "&g3sid=" . Session::instance()->id() .
                  "&user_agent=" . Input::instance()->server("HTTP_USER_AGENT"))) .
      "&title=" . urlencode(t("Add photos")) .
      "&addLabel=" . urlencode(t("Choose photos to add..."));
    print $v;
  }

  public function add_photo($id) {
    $album = ORM::factory("item", $id);
    access::required("edit", $album);
    access::verify_csrf();

    $file_validation = new Validation($_FILES);
    $file_validation->add_rules("file", "upload::valid", "upload::type[gif,jpg,png]");
    if ($file_validation->validate()) {
      $temp_filename  = upload::save("file");
      $photo = photo::create(
        $album,
        $temp_filename,
        basename($temp_filename),
        basename($temp_filename));
      log::success("content", "Added a photo", html::anchor("photos/$photo->id", "view photo"));
    }
  }
}
generated by cgit v1.2.3 (git 2.46.0) at 2025-10-14 19:56:28 +0000