= 5.1.0 required by date functions error_reporting(1); ini_set('error_reporting', 1); ini_set('display_startup_errors','1'); //display_startup_errors(0); #TEST $_SESSION['DEBUG'] = 3;// TODO: TEST if (!isset($_SESSION['DEBUG'])) $_SESSION['DEBUG'] = 0;// set default value if (file_exists(APP_PATH_ROOT . "/config/.config_{$_SERVER['SERVER_NAME']}.php")) { require APP_PATH_ROOT . "/config/.config_{$_SERVER['SERVER_NAME']}.php"; } if (file_exists(APP_PATH_ROOT . "/.config.php")) include APP_PATH_ROOT . "/.config.php"; require_once APP_PATH_ROOT . "/superedit-SEF.php"; SEF('DEBUG_S'); require_once APP_PATH_LIB . '/' . 'Lib.php'; Lib::loadClass('V'); Lib::loadClass('DB'); Lib::loadClass('User'); Lib::loadClass('S'); User::auth();// die if not logged in /* example: [zasobID] => 636 [id] => 2773 [file] => 2014-07-11_wizytowki_michal_zaleski_wzor_bn2.bcard/Screen Shot 2014-07-11 at 15.58.15.png */ $zasobID = V::get('zasobID', 0, $_GET, 'int'); $recordID = V::get('id', 0, $_GET, 'int'); $fileName = V::get('file', '', $_GET); if (!$zasobID || !$recordID || empty($fileName)) { header('HTTP/1.0 406 Not Acceptable'); exit; } if (false !== strpos($fileName, '../')) { header('HTTP/1.0 403 Forbidden'); echo '..'; exit; } $userAcl = User::getAcl(); $tblAcl = $userAcl->getTableAcl($zasobID); if (!$tblAcl->isInitialized()) { echo'

'."Brak konfiguracji dla ".$tblAcl->getName()."!".'

'; return; } Lib::loadClass('TableAjax'); if (!class_exists('TableAjax')) { die('Error: cls not exists TableAjax'); } $tblObj = new TableAjax($tblAcl); try { $tblObj->sendFileContent($recordID, $fileName); } catch (Exception $e) { switch ($e->getCode()) { case 404: header('HTTP/1.0 404 Not Found'); break; case 403: header('HTTP/1.0 403 Forbidden'); break; case 4033: header('HTTP/1.0 403.3 - Write access forbidden'); break; default: } header('Content-Type: text/html; charset=utf-8'); echo $e->getMessage(); }