TYPO3_6-2/_show_image_controller_8php_source.html

 <?php
 namespace TYPO3\CMS\Frontend\Controller;

 use \TYPO3\CMS\Core\Utility\HttpUtility;
 use \TYPO3\CMS\Core\Utility\GeneralUtility;
 use \TYPO3\CMS\Core\Utility\MathUtility;

 class ShowImageController {

     // Parameters loaded into these internal variables:
     protected $file;

     protected $width;

     protected $height;

     protected $sample;

     protected $effects;

     protected $frame;

     protected $hmac;

     protected $bodyTag = '<body>';

     protected $wrap = '|';

     protected $title = 'Image';

     protected $content = <<<EOF
 <!DOCTYPE html>
 <html>
 <head>
     <title>###TITLE###</title>
     <meta name="robots" content="noindex,follow" />
 </head>
 ###BODY###
     ###IMAGE###
 </body>
 </html>
 EOF;

     protected $imageTag = '<img src="###publicUrl###" alt="###alt###" title="###title###" />';

     public function init() {
         // Loading internal vars with the GET/POST parameters from outside:
         $fileUid = GeneralUtility::_GP('file');
         $this->frame = GeneralUtility::_GP('frame');
         /* For backwards compatibility the HMAC is transported within the md5 param */
         $this->hmac = GeneralUtility::_GP('md5');

         $parametersArray = GeneralUtility::_GP('parameters');

         // If no file-param or parameters are given, we must exit
         if (!$fileUid || !isset($parametersArray) || !is_array($parametersArray)) {
             HttpUtility::setResponseCodeAndExit(HttpUtility::HTTP_STATUS_410);
         }

         // rebuild the parameter array and check if the HMAC is correct
         $parametersEncoded = implode('', $parametersArray);
         $hmac = GeneralUtility::hmac(implode('|', array($fileUid, $parametersEncoded)));
         if ($hmac !== $this->hmac) {
             HttpUtility::setResponseCodeAndExit(HttpUtility::HTTP_STATUS_410);

         }

         // decode the parameters Array
         $parameters = unserialize(base64_decode($parametersEncoded));
         foreach ($parameters as $parameterName => $parameterValue) {
             $this->{$parameterName} = $parameterValue;
         }

         try {
             if (\TYPO3\CMS\Core\Utility\MathUtility::canBeInterpretedAsInteger($fileUid)) {
                 $this->file = \TYPO3\CMS\Core\Resource\ResourceFactory::getInstance()->getFileObject((int)$fileUid);
             } else {
                 $this->file = \TYPO3\CMS\Core\Resource\ResourceFactory::getInstance()->retrieveFileOrFolderObject($fileUid);
             }
         } catch (\TYPO3\CMS\Core\Exception $e) {
             HttpUtility::setResponseCodeAndExit(HttpUtility::HTTP_STATUS_404);
         }
     }

     public function main() {
         $processedImage = $this->processImage();
         $imageTagMarkers = array(
             '###publicUrl###' => htmlspecialchars($processedImage->getPublicUrl()),
             '###alt###' => htmlspecialchars($this->file->getProperty('alternative') ?: $this->title),
             '###title###' => htmlspecialchars($this->file->getProperty('title') ?: $this->title)
         );
         $this->imageTag = str_replace(array_keys($imageTagMarkers), array_values($imageTagMarkers), $this->imageTag);
         if ($this->wrap !== '|') {
             $wrapParts = explode('|', $this->wrap, 2);
             $this->imageTag = $wrapParts[0] . $this->imageTag . $wrapParts[1];
         }
         $markerArray = array(
             '###TITLE###' => ($this->file->getProperty('title') ?: $this->title),
             '###IMAGE###' => $this->imageTag,
             '###BODY###' => $this->bodyTag
         );

         $this->content = str_replace(array_keys($markerArray), array_values($markerArray), $this->content);

     }

     protected function processImage() {
         if (strstr($this->width . $this->height, 'm')) {
             $max = 'm';
         } else {
             $max = '';
         }
         $this->height = MathUtility::forceIntegerInRange($this->height, 0);
         $this->width = MathUtility::forceIntegerInRange($this->width, 0) . $max;

         $processingConfiguration = array(
             'width' => $this->width,
             'height' => $this->height,
             'frame' => $this->frame,

         );
         return $this->file->process('Image.CropScaleMask', $processingConfiguration);
     }
     public function printContent() {
         echo $this->content;
         HttpUtility::setResponseCodeAndExit(HttpUtility::HTTP_STATUS_200);
     }

     public function execute() {
         $this->init();
         $this->main();
         $this->printContent();
     }
 }
TYPO3\CMS\Frontend\Controller\ShowImageController\$content
$content
Definition: ShowImageController.php:83

TYPO3\CMS\Frontend\Controller\ShowImageController\$title
$title
Definition: ShowImageController.php:78

TYPO3

TYPO3\CMS\Frontend\Controller\ShowImageController\$effects
$effects
Definition: ShowImageController.php:53

TYPO3\CMS\Frontend\Controller\ShowImageController\$frame
$frame
Definition: ShowImageController.php:58

TYPO3\CMS\Frontend\Controller\ShowImageController\$hmac
$hmac
Definition: ShowImageController.php:63

TYPO3\CMS\Frontend\Controller\ShowImageController\init
init()
Definition: ShowImageController.php:103

$parameters
$parameters
Definition: FileDumpEID.php:15

TYPO3\CMS\Frontend\Controller\ShowImageController\$width
$width
Definition: ShowImageController.php:38

TYPO3\CMS\Frontend\Controller\ShowImageController\$sample
$sample
Definition: ShowImageController.php:48

TYPO3\CMS\Frontend\Exception
Definition: Exception.php:20

TYPO3\CMS\Core\Utility\HttpUtility\HTTP_STATUS_404
const HTTP_STATUS_404
Definition: HttpUtility.php:44

TYPO3\CMS\Core\Utility\HttpUtility\HTTP_STATUS_200
const HTTP_STATUS_200
Definition: HttpUtility.php:26

TYPO3\CMS\Core\Utility\MathUtility\forceIntegerInRange
static forceIntegerInRange($theInt, $min, $max=2000000000, $defaultValue=0)
Definition: MathUtility.php:32

TYPO3\CMS\Core\Utility\HttpUtility\HTTP_STATUS_410
const HTTP_STATUS_410
Definition: HttpUtility.php:50

TYPO3\CMS\Core\Utility\MathUtility\canBeInterpretedAsInteger
static canBeInterpretedAsInteger($var)
Definition: MathUtility.php:72

TYPO3\CMS\Frontend\Controller\ShowImageController\processImage
processImage()
Definition: ShowImageController.php:174

TYPO3\CMS\Frontend\Controller
Definition: DataSubmissionController.php:2

TYPO3\CMS\Core\Utility\GeneralUtility\hmac
static hmac($input, $additionalSecret='')
Definition: GeneralUtility.php:828

TYPO3\CMS\Frontend\Controller\ShowImageController\printContent
printContent()
Definition: ShowImageController.php:196

TYPO3\CMS\Frontend\Controller\ShowImageController\$imageTag
$imageTag
Definition: ShowImageController.php:96

TYPO3\CMS\Frontend\Controller\ShowImageController\execute
execute()
Definition: ShowImageController.php:205

TYPO3\CMS\Frontend\Controller\ShowImageController\$height
$height
Definition: ShowImageController.php:43

TYPO3\CMS\Frontend\Controller\ShowImageController
Definition: ShowImageController.php:27

TYPO3\CMS\Frontend\Controller\ShowImageController\$file
$file
Definition: ShowImageController.php:33

TYPO3\CMS\Core\Utility\GeneralUtility\_GP
static _GP($var)
Definition: GeneralUtility.php:128

TYPO3\CMS\Core\Utility\HttpUtility\setResponseCodeAndExit
static setResponseCodeAndExit($httpStatus=self::HTTP_STATUS_303)
Definition: HttpUtility.php:98

TYPO3\CMS\Frontend\Controller\ShowImageController\main
main()
Definition: ShowImageController.php:148

TYPO3\CMS\Frontend\Controller\ShowImageController\$bodyTag
$bodyTag
Definition: ShowImageController.php:68

TYPO3\CMS\Frontend\Controller\ShowImageController\$wrap
$wrap
Definition: ShowImageController.php:73

TYPO3\CMS\Core\Resource\ResourceFactory\getInstance
static getInstance()
Definition: ResourceFactory.php:35