nextcloud/core/avatar/controller.php

<?php
/**
 * Copyright (c) 2013 Christopher Schäpers <christopher@schaepers.it>
 * This file is licensed under the Affero General Public License version 3 or
 * later.
 * See the COPYING-README file.
 */

class OC_Core_Avatar_Controller {
	public static function getAvatar($args) {
		if (!\OC_User::isLoggedIn()) {
			$l = new \OC_L10n('core');
			header("HTTP/1.0 403 Forbidden");
			\OC_Template::printErrorPage($l->t("Permission denied"));
			return;
		}

		$user = stripslashes($args['user']);
		$size = (int)$args['size'];
		if ($size > 2048) {
			$size = 2048;
		}
		// Undefined size
		elseif ($size === 0) {
			$size = 64;
		}

		$avatar = new \OC_Avatar();
		$image = $avatar->get($user, $size);

		\OC_Response::disableCaching();
		\OC_Response::setLastModifiedHeader(time());
		if ($image instanceof \OC_Image) {
			\OC_Response::setETagHeader(crc32($image->data()));
			$image->show();
		} elseif ($image === false) {
			\OC_JSON::success(array('user' => $user, 'size' => $size));
		}
	}

	public static function postAvatar($args) {
		$user = \OC_User::getUser();

		if (isset($_POST['path'])) {
			$path = stripslashes($_POST['path']);
			$view = new \OC\Files\View('/'.$user.'/files');
			$newAvatar = $view->file_get_contents($path);
		}

		if (!empty($_FILES)) {
			$files = $_FILES['files'];
			if (
				$files['error'][0] === 0 &&
				is_uploaded_file($files['tmp_name'][0]) &&
				!\OC\Files\Filesystem::isFileBlacklisted($files['tmp_name'][0])
			) {
				$newAvatar = file_get_contents($files['tmp_name'][0]);
				unlink($files['tmp_name'][0]);
			}
		}

		try {
			$avatar = new \OC_Avatar();
			$avatar->set($user, $newAvatar);
			\OC_JSON::success();
		} catch (\OC\NotSquareException $e) {
			$image = new \OC_Image($newAvatar);

			if ($image->valid()) {
				\OC_Cache::set('tmpavatar', $image->data(), 7200);
				\OC_JSON::error(array("data" => array("message" => "notsquare") ));
			} else {
				$l = new \OC_L10n('core');
				$type = substr($image->mimeType(), -3);
				if ($type === 'peg') { $type = 'jpg'; }
				if ($type !== 'jpg' && $type !== 'png') {
					\OC_JSON::error(array("data" => array("message" => $l->t("Unknown filetype")) ));
				}

				if (!$img->valid()) {
					\OC_JSON::error(array("data" => array("message" => $l->t("Invalid image")) ));
				}
			}
		} catch (\Exception $e) {
			\OC_JSON::error(array("data" => array("message" => $e->getMessage()) ));
		}
	}

	public static function deleteAvatar($args) {
		$user = OC_User::getUser();

		try {
			$avatar = new \OC_Avatar();
			$avatar->remove($user);
			\OC_JSON::success();
		} catch (\Exception $e) {
			\OC_JSON::error(array("data" => array("message" => $e->getMessage()) ));
		}
	}

	public static function getTmpAvatar($args) {
		$user = OC_User::getUser();

		$tmpavatar = \OC_Cache::get('tmpavatar');
		if (is_null($tmpavatar)) {
			$l = new \OC_L10n('core');
			\OC_JSON::error(array("data" => array("message" => $l->t("No temporary profile picture available, try again")) ));
			return;
		}

		$image = new \OC_Image($tmpavatar);
		\OC_Response::disableCaching();
		\OC_Response::setLastModifiedHeader(time());
		\OC_Response::setETagHeader(crc32($image->data()));
		$image->show();
	}

	public static function postCroppedAvatar($args) {
		$user = OC_User::getUser();
		if (isset($_POST['crop'])) {
			$crop = $_POST['crop'];
		} else {
			$l = new \OC_L10n('core');
			\OC_JSON::error(array("data" => array("message" => $l->t("No crop data provided")) ));
			return;
		}

		$tmpavatar = \OC_Cache::get('tmpavatar');
		if (is_null($tmpavatar)) {
			$l = new \OC_L10n('core');
			\OC_JSON::error(array("data" => array("message" => $l->t("No temporary profile picture available, try again")) ));
			return;
		}

		$image = new \OC_Image($tmpavatar);
		$image->crop($crop['x'], $crop['y'], $crop['w'], $crop['h']);
		try {
			$avatar = new \OC_Avatar();
			$avatar->set($user, $image->data());
			// Clean up
			\OC_Cache::remove('tmpavatar');
			\OC_JSON::success();
		} catch (\Exception $e) {
			\OC_JSON::error(array("data" => array("message" => $e->getMessage()) ));
		}
	}
}
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`<?php`
			`/**`
			`* Copyright (c) 2013 Christopher Schäpers <christopher@schaepers.it>`
			`* This file is licensed under the Affero General Public License version 3 or`
			`* later.`
			`* See the COPYING-README file.`
			`*/`

Translate "Permission denied" & use class-autoloader 2013-08-27 14:50:21 +04:00			`class OC_Core_Avatar_Controller {`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`public static function getAvatar($args) {`
			`if (!\OC_User::isLoggedIn()) {`
Translate "Permission denied" & use class-autoloader 2013-08-27 14:50:21 +04:00			`$l = new \OC_L10n('core');`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`header("HTTP/1.0 403 Forbidden");`
Translate "Permission denied" & use class-autoloader 2013-08-27 14:50:21 +04:00			`\OC_Template::printErrorPage($l->t("Permission denied"));`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`return;`
			`}`

			`$user = stripslashes($args['user']);`
			`$size = (int)$args['size'];`
			`if ($size > 2048) {`
			`$size = 2048;`
			`}`
			`// Undefined size`
			`elseif ($size === 0) {`
			`$size = 64;`
			`}`

Sanitize displayname, respect data @ $element, fix routename, clean after cropping, updateAvatar with displayname 2013-08-31 20:27:28 +04:00			`$avatar = new \OC_Avatar();`
			`$image = $avatar->get($user, $size);`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00
Use \OC_Response for cache invalidation 2013-09-01 23:57:28 +04:00			`\OC_Response::disableCaching();`
Pass setLastModifiedHeader() time() 2013-09-02 01:25:50 +04:00			`\OC_Response::setLastModifiedHeader(time());`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`if ($image instanceof \OC_Image) {`
$image doesn't have data() when a defaultavatar should be used 2013-09-02 01:15:45 +04:00			`\OC_Response::setETagHeader(crc32($image->data()));`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`$image->show();`
			`} elseif ($image === false) {`
Fix some of @jancborchardt's complaints in oc_avatars 2013-09-02 19:07:38 +04:00			`\OC_JSON::success(array('user' => $user, 'size' => $size));`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`}`
			`}`

			`public static function postAvatar($args) {`
			`$user = \OC_User::getUser();`

			`if (isset($_POST['path'])) {`
			`$path = stripslashes($_POST['path']);`
Continue work on cropper 2013-08-28 18:39:00 +04:00			`$view = new \OC\Files\View('/'.$user.'/files');`
Better naming than "ava" & "data", cache timeout, use OC.Router.registerLoadedCallback() 2013-09-01 18:04:39 +04:00			`$newAvatar = $view->file_get_contents($path);`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`}`

			`if (!empty($_FILES)) {`
			`$files = $_FILES['files'];`
Fix @tanghus's complains in avatars and clean up cropper after closing with "x" 2013-09-01 21:12:54 +04:00			`if (`
			`$files['error'][0] === 0 &&`
			`is_uploaded_file($files['tmp_name'][0]) &&`
			`!\OC\Files\Filesystem::isFileBlacklisted($files['tmp_name'][0])`
			`) {`
Better naming than "ava" & "data", cache timeout, use OC.Router.registerLoadedCallback() 2013-09-01 18:04:39 +04:00			`$newAvatar = file_get_contents($files['tmp_name'][0]);`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`unlink($files['tmp_name'][0]);`
			`}`
			`}`

			`try {`
Better naming than "ava" & "data", cache timeout, use OC.Router.registerLoadedCallback() 2013-09-01 18:04:39 +04:00			`$avatar = new \OC_Avatar();`
			`$avatar->set($user, $newAvatar);`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`\OC_JSON::success();`
			`} catch (\OC\NotSquareException $e) {`
Better naming than "ava" & "data", cache timeout, use OC.Router.registerLoadedCallback() 2013-09-01 18:04:39 +04:00			`$image = new \OC_Image($newAvatar);`
Continue work on cropper 2013-08-28 18:39:00 +04:00
Fix @tanghus's complains in avatars and clean up cropper after closing with "x" 2013-09-01 21:12:54 +04:00			`if ($image->valid()) {`
			`\OC_Cache::set('tmpavatar', $image->data(), 7200);`
			`\OC_JSON::error(array("data" => array("message" => "notsquare") ));`
			`} else {`
			`$l = new \OC_L10n('core');`
			`$type = substr($image->mimeType(), -3);`
			`if ($type === 'peg') { $type = 'jpg'; }`
			`if ($type !== 'jpg' && $type !== 'png') {`
			`\OC_JSON::error(array("data" => array("message" => $l->t("Unknown filetype")) ));`
			`}`

			`if (!$img->valid()) {`
			`\OC_JSON::error(array("data" => array("message" => $l->t("Invalid image")) ));`
			`}`
			`}`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`} catch (\Exception $e) {`
			`\OC_JSON::error(array("data" => array("message" => $e->getMessage()) ));`
			`}`
			`}`

			`public static function deleteAvatar($args) {`
			`$user = OC_User::getUser();`

			`try {`
Continue work on cropper 2013-08-28 18:39:00 +04:00			`$avatar = new \OC_Avatar();`
			`$avatar->remove($user);`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`\OC_JSON::success();`
			`} catch (\Exception $e) {`
Fix @tanghus's complains in avatars and clean up cropper after closing with "x" 2013-09-01 21:12:54 +04:00			`\OC_JSON::error(array("data" => array("message" => $e->getMessage()) ));`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`}`
			`}`

			`public static function getTmpAvatar($args) {`
			`$user = OC_User::getUser();`
Continue work on cropper 2013-08-28 18:39:00 +04:00
Use OC_Cache and finish cropper functionality 2013-08-29 18:56:32 +04:00			`$tmpavatar = \OC_Cache::get('tmpavatar');`
Properly check for tmpavatar, invalidate cache, fix debug msgs 2013-09-01 23:17:48 +04:00			`if (is_null($tmpavatar)) {`
			`$l = new \OC_L10n('core');`
Fix some of @jancborchardt's complaints in oc_avatars 2013-09-02 19:07:38 +04:00			`\OC_JSON::error(array("data" => array("message" => $l->t("No temporary profile picture available, try again")) ));`
Continue work on cropper 2013-08-28 18:39:00 +04:00			`return;`
			`}`

Use OC_Cache and finish cropper functionality 2013-08-29 18:56:32 +04:00			`$image = new \OC_Image($tmpavatar);`
Use \OC_Response for cache invalidation 2013-09-01 23:57:28 +04:00			`\OC_Response::disableCaching();`
Pass setLastModifiedHeader() time() 2013-09-02 01:25:50 +04:00			`\OC_Response::setLastModifiedHeader(time());`
Also set an E-Tag header 2013-09-02 01:07:38 +04:00			`\OC_Response::setETagHeader(crc32($image->data()));`
Continue work on cropper 2013-08-28 18:39:00 +04:00			`$image->show();`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`}`

			`public static function postCroppedAvatar($args) {`
			`$user = OC_User::getUser();`
Fix @tanghus's complains in avatars and clean up cropper after closing with "x" 2013-09-01 21:12:54 +04:00			`if (isset($_POST['crop'])) {`
			`$crop = $_POST['crop'];`
			`} else {`
			`$l = new \OC_L10n('core');`
			`\OC_JSON::error(array("data" => array("message" => $l->t("No crop data provided")) ));`
			`return;`
			`}`
Continue work on cropper 2013-08-28 18:39:00 +04:00
Use OC_Cache and finish cropper functionality 2013-08-29 18:56:32 +04:00			`$tmpavatar = \OC_Cache::get('tmpavatar');`
Properly check for tmpavatar, invalidate cache, fix debug msgs 2013-09-01 23:17:48 +04:00			`if (is_null($tmpavatar)) {`
Fix @tanghus's complains in avatars and clean up cropper after closing with "x" 2013-09-01 21:12:54 +04:00			`$l = new \OC_L10n('core');`
Fix some of @jancborchardt's complaints in oc_avatars 2013-09-02 19:07:38 +04:00			`\OC_JSON::error(array("data" => array("message" => $l->t("No temporary profile picture available, try again")) ));`
Continue work on cropper 2013-08-28 18:39:00 +04:00			`return;`
			`}`

Use OC_Cache and finish cropper functionality 2013-08-29 18:56:32 +04:00			`$image = new \OC_Image($tmpavatar);`
Continue work on cropper 2013-08-28 18:39:00 +04:00			`$image->crop($crop['x'], $crop['y'], $crop['w'], $crop['h']);`
			`try {`
			`$avatar = new \OC_Avatar();`
			`$avatar->set($user, $image->data());`
			`// Clean up`
Use OC_Cache and finish cropper functionality 2013-08-29 18:56:32 +04:00			`\OC_Cache::remove('tmpavatar');`
Continue work on cropper 2013-08-28 18:39:00 +04:00			`\OC_JSON::success();`
Clean up 2013-08-30 15:16:13 +04:00			`} catch (\Exception $e) {`
			`\OC_JSON::error(array("data" => array("message" => $e->getMessage()) ));`
			`}`
Have a controller instead ofo avatar.php and fix some cropper-design 2013-08-26 18:46:55 +04:00			`}`
			`}`