+ global $a, $_SERVER;
+
+ if (isset($_SERVER['HTTP_IF_MODIFIED_SINCE'])) {
+ header('HTTP/1.1 304 Not Modified');
+ header("Last-Modified: " . gmdate("D, d M Y H:i:s", time()) . " GMT");
+ header('Etag: '.$_SERVER['HTTP_IF_NONE_MATCH']);
+ header("Expires: " . gmdate("D, d M Y H:i:s", time() + (31536000)) . " GMT");
+ header("Cache-Control: max-age=31536000");
+ if(function_exists('header_remove')) {
+ header_remove('Last-Modified');
+ header_remove('Expires');
+ header_remove('Cache-Control');
+ }
+ exit;
+ }
+
+ //if ($a->config["system"]["db_log"] != "")
+ // $stamp1 = microtime(true);
+
+ if(function_exists('header_remove')) {
+ header_remove('Pragma');
+ header_remove('pragma');
+ }
+
+ $thumb = false;
+
+ // Look for filename in the arguments
+ if (isset($a->argv[1]) OR isset($a->argv[2])) {
+ if (isset($a->argv[2]))
+ $url = $a->argv[2];
+ else
+ $url = $a->argv[1];
+
+ $pos = strrpos($url, "==.");
+ if ($pos)
+ $url = substr($url, 0, $pos+2);
+
+ $url = base64_decode(strtr($url, '-_', '+/'), true);
+ if ($url)
+ $_REQUEST['url'] = $url;
+
+ $thumb = (isset($a->argv[3]) and ($a->argv[3] == "thumb"));
+ }
+
+ $urlhash = 'pic:' . sha1($_REQUEST['url']);
+ // Double encoded url - happens with Diaspora
+ $urlhash2 = 'pic:' . sha1(urldecode($_REQUEST['url']));
+
+ $cachefile = get_cachefile(hash("md5", $_REQUEST['url']));
+ if ($cachefile != '') {
+ if (file_exists($cachefile)) {
+ $img_str = file_get_contents($cachefile);
+
+ $mime = image_type_to_mime_type(exif_imagetype($cachefile));
+
+ header("Content-type: $mime");
+ header("Last-Modified: " . gmdate("D, d M Y H:i:s", time()) . " GMT");
+ header('Etag: "'.md5($img_str).'"');
+ header("Expires: " . gmdate("D, d M Y H:i:s", time() + (31536000)) . " GMT");
+ header("Cache-Control: max-age=31536000");
+
+ echo $img_str;
+
+ //if ($a->config["system"]["db_log"] != "") {
+ // $stamp2 = microtime(true);
+ // $duration = round($stamp2-$stamp1, 3);
+ // if ($duration > $a->config["system"]["db_loglimit"])
+ // @file_put_contents($a->config["system"]["db_log"], $duration."\t".strlen($img_str)."\t".$_REQUEST['url']."\n", FILE_APPEND);
+ //}
+
+ killme();
+ }
+ }
+
+ require_once("Photo.php");
+
+ $valid = true;
+
+ $r = q("SELECT * FROM `photo` WHERE `resource-id` in ('%s', '%s') LIMIT 1", $urlhash, $urlhash2);
+ if (count($r)) {
+ $img_str = $r[0]['data'];
+ $mime = $r[0]["desc"];
+ if ($mime == "") $mime = "image/jpeg";
+
+ } else {
+ // It shouldn't happen but it does - spaces in URL
+ $_REQUEST['url'] = str_replace(" ", "+", $_REQUEST['url']);
+
+ $img_str = fetch_url($_REQUEST['url'],true);
+
+ $tempfile = tempnam(get_config("system","temppath"), "cache");
+ file_put_contents($tempfile, $img_str);
+ $mime = image_type_to_mime_type(exif_imagetype($tempfile));
+ unlink($tempfile);
+
+ // If there is an error then return a blank image
+ if ((substr($a->get_curl_code(), 0, 1) == "4") or (!$img_str)) {
+ $img_str = file_get_contents("images/blank.png");
+ $mime = "image/png";
+ $cachefile = ""; // Clear the cachefile so that the dummy isn't stored
+ $valid = false;
+ $img = new Photo($img_str);
+ if($img->is_valid()) {
+ $img->scaleImage(1);
+ $img_str = $img->imageString();
+ }
+ //} else if (substr($img_str, 0, 6) == "GIF89a") {
+ } else if ($mime != "image/jpeg") {
+ $image = @imagecreatefromstring($img_str);
+
+ if($image === FALSE) die();
+
+ q("INSERT INTO `photo`
+ ( `uid`, `contact-id`, `guid`, `resource-id`, `created`, `edited`, `filename`, `album`, `height`, `width`, `desc`, `data`, `scale`, `profile`, `allow_cid`, `allow_gid`, `deny_cid`, `deny_gid` )
+ VALUES ( %d, %d, '%s', '%s', '%s', '%s', '%s', '%s', %d, %d, '%s', '%s', %d, %d, '%s', '%s', '%s', '%s' )",
+ 0, 0, get_guid(), dbesc($urlhash),
+ dbesc(datetime_convert()),
+ dbesc(datetime_convert()),
+ dbesc(basename(dbesc($_REQUEST["url"]))),
+ dbesc(''),
+ intval(imagesy($image)),
+ intval(imagesx($image)),
+ $mime,
+ dbesc($img_str),
+ 100,
+ intval(0),
+ dbesc(''), dbesc(''), dbesc(''), dbesc('')
+ );
+
+ } else {
+ $img = new Photo($img_str);
+ if($img->is_valid()) {
+ $img->store(0, 0, $urlhash, $_REQUEST['url'], '', 100);
+ if ($thumb)
+ $img->scaleImage(200); // Test
+ $img_str = $img->imageString();
+ }
+ $mime = "image/jpeg";
+ }
+ }
+
+
+ // If there is a real existing directory then put the cache file there
+ // advantage: real file access is really fast
+ // Otherwise write in cachefile
+ if ($valid AND is_dir($_SERVER["DOCUMENT_ROOT"]."/privacy_image_cache"))
+ file_put_contents($_SERVER["DOCUMENT_ROOT"]."/privacy_image_cache/".privacy_image_cache_cachename($_REQUEST['url'], true), $img_str);
+ elseif ($cachefile != '')
+ file_put_contents($cachefile, $img_str);
+
+ header("Content-type: $mime");
+
+ // Only output the cache headers when the file is valid
+ if ($valid) {
+ header("Last-Modified: " . gmdate("D, d M Y H:i:s", time()) . " GMT");
+ header('Etag: "'.md5($img_str).'"');
+ header("Expires: " . gmdate("D, d M Y H:i:s", time() + (31536000)) . " GMT");
+ header("Cache-Control: max-age=31536000");
+ }
+
+ echo $img_str;
+
+ //if ($a->config["system"]["db_log"] != "") {
+ // $stamp2 = microtime(true);
+ // $duration = round($stamp2-$stamp1, 3);
+ // if ($duration > $a->config["system"]["db_loglimit"])
+ // @file_put_contents($a->config["system"]["db_log"], $duration."\t".strlen($img_str)."\t".$_REQUEST['url']."\n", FILE_APPEND);
+ //}
+
+ killme();
+}
+
+function privacy_image_cache_cachename($url, $writemode = false) {
+ global $_SERVER;