Changeset 1616

Timestamp:

Nov 22, 2006, 3:57:41 AM (17 years ago)

Author:

rvelices

Message:

• action.php makes use of Last-Modified and If-Modified-Since HTTP headers
• renamed $confdisble_plugins to $confenable_plugins

Location:

trunk

Files:

• action.php (modified) (5 diffs)
• include/config_default.inc.php (modified) (1 diff)
• include/functions_plugins.inc.php (modified) (1 diff)

trunk/action.php

@@ -83 +83 @@
 }
 
-// TODO - check permissions
+$query='
+SELECT id FROM '.CATEGORIES_TABLE.'
+  INNER JOIN '.IMAGE_CATEGORY_TABLE.'
+  ON category_id=id
+  WHERE image_id='.$id.'
+  AND category_id NOT IN ('.$user['forbidden_categories'].')
+  LIMIT 1
+;';
+if ( mysql_num_rows(pwg_query($query))<1 )
+{
+  do_error(401, 'Access denied');
+}
 
 include_once(PHPWG_ROOT_PATH.'include/functions_picture.inc.php');
@@ -99 +110 @@
     break;
   case 'h':
+    if ( $user['enabled_high']!='true' )
+    {
+      do_error(401, 'Access denied h');
+    }
     $file = get_high_path($element_info);
     break;
@@ -122 +137 @@
     $ctype = mime_content_type($file);
   }
+
+  $gmt_mtime = gmdate('D, d M Y H:i:s', filemtime($file)).' GMT';
+  $http_headers[] = 'Last-Modified: '.$gmt_mtime;
+
+  // following lines would indicate how the client should handle the cache
+  /* $max_age=300;
+  $http_headers[] = 'Expires: '.gmdate('D, d M Y H:i:s', time()+$max_age).' GMT';
+  // HTTP/1.1 only
+  $http_headers[] = 'Cache-Control: private, must-revalidate, max-age='.$max_age;*/
+
+  if ( isset( $_SERVER['HTTP_IF_MODIFIED_SINCE'] ) )
+  {
+    header("HTTP/1.1 304 Not modified ");
+    header("Status: 304 Not modified");
+    foreach ($http_headers as $header)
+    {
+      header( $header );
+    }
+    exit();
+  }
 }
+
 if (!isset($ctype))
 { // give it a guess
@@ -136 +172 @@
   $http_headers[] = 'Content-Transfer-Encoding: binary';
 }
-$http_headers[] = 'Pragma: public';
-$http_headers[] = 'Expires: 0';
-$http_headers[] = 'Cache-Control: must-revalidate, post-check=0, pre-check=0';
-
+else
+{
+  $http_headers[] = 'Content-Disposition: inline; filename="'
+            .basename($file).'";';
+}
 
 foreach ($http_headers as $header)
@@ -145 +182 @@
   header( $header );
 }
-header("Cache-Control: private",false); //???
 
 // Looking at the safe_mode configuration for execution time

trunk/include/config_default.inc.php

@@ -533 +533 @@
 //$conf['default_admin_layout']='yoga/dark';
 
-
-$conf['disable_plugins']=false;
+// should we load the active plugins ? true=Yes, false=No
+$conf['enable_plugins']=true;
 ?>

trunk/include/functions_plugins.inc.php

@@ -244 +244 @@
 {
   global $conf;
-  if ($conf['disable_plugins'])
-  {
-    return;
-  }
-
-  $plugins = get_db_plugins('active');
-  foreach( $plugins as $plugin)
-  {// include main from a function to avoid using same function context
-    load_plugin($plugin);
-  }
-  trigger_action('plugins_loaded');
+  if ($conf['enable_plugins'])
+  {
+    $plugins = get_db_plugins('active');
+    foreach( $plugins as $plugin)
+    {// include main from a function to avoid using same function context
+      load_plugin($plugin);
+    }
+    trigger_action('plugins_loaded');
+  }
 }
 ?>