File: view_jpeg_photo.php

package info (click to toggle)

phpldapadmin 0.9.5-3sarge3

links: PTS
area: main
in suites: sarge
size: 3,052 kB
ctags: 2,526
sloc: php: 21,258; sh: 262; makefile: 132; xml: 42

file content (29 lines) | stat: -rw-r--r-- 882 bytes

<?php
// $Header: /cvsroot/phpldapadmin/phpldapadmin/view_jpeg_photo.php,v 1.6 2004/08/15 17:39:20 uugdave Exp $


require './common.php';

$file = $_GET['file'];

// Security check (we don't want anyone tryting to get at /etc/passwd or something)
preg_match( "/^pla/", $file ) or 
	pla_error( $lang['unsafe_file_name'] . htmlspecialchars( $file ) );

$file = $jpeg_temp_dir . '/' . $file;
file_exists( $file ) or
	pla_error( $lang['no_such_file'] . htmlspecialchars( $file ) );

// little security measure here (prevents users from accessing
// files, like /etc/passwd for example)
$file = basename( $file );
$file = addcslashes( $file, '/\\' );
$f = fopen( "$jpeg_temp_dir/$file", 'r' );
$jpeg = fread( $f, filesize( "$jpeg_temp_dir/$file" ) );
fclose( $f );

Header( "Content-type: image/jpeg" );
Header( "Content-disposition: inline; filename=jpeg_photo.jpg" );
echo $jpeg;

?>