Koha-community/Koha
13
7
Fork 0
Code Issues Releases Wiki Activity
Koha/catalogue/image.pl
Jonathan Druart 3b95f48807 Bug 24879: Add check_cookie_auth when missing 
This can certainly be improved to adjust the permissions, but at least
they are no longer opened to the world..

Signed-off-by: Martin Renvoize <martin.renvoize@ptfs-europe.com>
(cherry picked from commit 496c8c4e2d9199a38c796fdd6f63d89d8c6b215d)
Signed-off-by: Fridolin Somers <fridolin.somers@biblibre.com>
2024-03-27 07:54:16 +01:00

111 lines
3.1 KiB
Perl
Executable file
Raw Blame History

#!/usr/bin/perl
#
# Copyright (C) 2011 C & P Bibliography Services
# Jared Camins-Esakov <jcamins@cpbibliograpy.com>
#
# based on patronimage.pl
#
# This file is part of Koha.
#
# Koha is free software; you can redistribute it and/or modify it
# under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 3 of the License, or
# (at your option) any later version.
#
# Koha is distributed in the hope that it will be useful, but
# WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with Koha; if not, see <http://www.gnu.org/licenses>.
#
#
#
use Modern::Perl;
use CGI qw ( -utf8 );
use C4::Context;
use Koha::Biblios;
use Koha::CoverImages;
$| = 1;
my $input = CGI->new;
my ($auth_status) =
check_cookie_auth( $input->cookie('CGISESSID'), { catalogue => 1 } );
if ( $auth_status ne "ok" ) {
print $input->header( -type => 'text/plain', -status => '403 Forbidden' );
exit 0;
}
my $imagenumber;
=head1 NAME
image.pl - Script for retrieving and formatting local cover images for display
=head1 SYNOPSIS
<img src="image.pl?imagenumber=X" />
<img src="image.pl?biblionumber=X" />
<img src="image.pl?imagenumber=X&thumbnail=1" />
<img src="image.pl?biblionumber=X&thumbnail=1" />
=head1 DESCRIPTION
This script, when called from within HTML and passed a valid imagenumber or
biblionumber, will retrieve the image data associated with that biblionumber
if one exists, format it in proper HTML format and pass it back to be displayed.
If the parameter thumbnail has been provided, a thumbnail will be returned
rather than the full-size image. When a biblionumber is provided rather than an
imagenumber, a random image is selected.
=cut
my ( $image );
if ( C4::Context->preference("LocalCoverImages") ) {
my $imagenumber = $input->param('imagenumber');
my $biblionumber = $input->param('biblionumber');
if ( defined $imagenumber ) {
$imagenumber = $input->param('imagenumber');
$image = Koha::CoverImages->find($imagenumber);
unless ($image) {
print $input->redirect("/cgi-bin/koha/errors/404.pl");
exit;
}
}
elsif ( defined $biblionumber ) {
my $biblio = Koha::Biblios->find($biblionumber);
unless ($biblio) {
print $input->redirect("/cgi-bin/koha/errors/404.pl");
exit;
}
my $cover_images = $biblio->cover_images;
if ( $cover_images->count ) {
$image = $cover_images->next;
}
}
}
$image ||= Koha::CoverImages->no_image;
my $image_data =
$input->param('thumbnail')
? $image->thumbnail
: $image->imagefile;
print $input->header(
-type => $image->mimetype,
-expires => '+30m',
-Content_Length => length($image_data)
), $image_data;
=head1 AUTHOR
Chris Nighswonger cnighswonger <at> foundations <dot> edu
modified for local cover images by Koustubha Kale kmkale <at> anantcorp <dot> com
=cut
View git blame Copy permalink