David A. Windham
david
/
lychee
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c076f0894b
Branches Tags
lychee
/
php
/
index.php

index.php 2.4 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * @author    Tobias Reich
    5. 

  5.  * @copyright 2016 by Tobias Reich
    6. 

  6.  */
    7. 

  7. 

  8. namespace Lychee;
    9. 

  9. 

  10. use Lychee\Modules\Config;
    11. 

  11. use Lychee\Modules\Response;
    12. 

  12. use Lychee\Modules\Settings;
    13. 

  13. use Lychee\Modules\Validator;
    14. 

  14. 

  15. use Lychee\Access\Installation;
    16. 

  16. use Lychee\Access\Admin;
    17. 

  17. use Lychee\Access\Guest;
    18. 

  18. 

  19. require(__DIR__ . '/define.php');
    20. 

  20. require(__DIR__ . '/autoload.php');
    21. 

  21. 

  22. require(__DIR__ . '/helpers/fastImageCopyResampled.php');
    23. 

  23. require(__DIR__ . '/helpers/generateID.php');
    24. 

  24. require(__DIR__ . '/helpers/getExtension.php');
    25. 

  25. require(__DIR__ . '/helpers/getGPSCoordinate.php');
    26. 

  26. require(__DIR__ . '/helpers/getGraphHeader.php');
    27. 

  27. require(__DIR__ . '/helpers/getHashedString.php');
    28. 

  28. require(__DIR__ . '/helpers/hasPermissions.php');
    29. 

  29. require(__DIR__ . '/helpers/search.php');
    30. 

  30. 

  31. // Define the called function
    32. 

  32. if (isset($_POST['function']))     $fn = $_POST['function'];
    33. 

  33. else if (isset($_GET['function'])) $fn = $_GET['function'];
    34. 

  34. else                               $fn = null;
    35. 

  35. 

  36. // Check if a function has been specified
    37. 

  37. if (!empty($fn)) {
    38. 

  38. 

  39. 	// Start the session and set the default timezone
    40. 

  40. 	session_start();
    41. 

  41. 	date_default_timezone_set('UTC');
    42. 

  42. 

  43. 	// Validate parameters
    44. 

  44. 	if (isset($_POST['albumIDs'])&&Validator::isAlbumIDs($_POST['albumIDs'])===false) Response::error('Wrong parameter type for albumIDs!');
    45. 

  45. 	if (isset($_POST['photoIDs'])&&Validator::isPhotoIDs($_POST['photoIDs'])===false) Response::error('Wrong parameter type for photoIDs!');
    46. 

  46. 	if (isset($_POST['albumID'])&&Validator::isAlbumID($_POST['albumID'])==false)     Response::error('Wrong parameter type for albumID!');
    47. 

  47. 	if (isset($_POST['photoID'])&&Validator::isPhotoID($_POST['photoID'])==false)     Response::error('Wrong parameter type for photoID!');
    48. 

  48. 

  49. 	// Check if a configuration exists
    50. 

  50. 	if (Config::exists()===false) {
    51. 

  51. 

  52. 		/**
    53. 

  53. 		 * Installation Access
    54. 

  54. 		 * Limited access to configure Lychee. Only available when the config.php file is missing.
    55. 

  55. 		 */
    56. 

  56. 

  57. 		Installation::init($fn);
    58. 

  58. 		exit();
    59. 

  59. 

  60. 	}
    61. 

  61. 

  62. 	// Check if user is logged
    63. 

  63. 	if ((isset($_SESSION['login'])&&$_SESSION['login']===true)&&
    64. 

  64. 		(isset($_SESSION['identifier'])&&$_SESSION['identifier']===Settings::get()['identifier'])) {
    65. 

  65. 

  66. 		/**
    67. 

  67. 		 * Admin Access
    68. 

  68. 		 * Full access to Lychee. Only with correct password/session.
    69. 

  69. 		 */
    70. 

  70. 

  71. 		Admin::init($fn);
    72. 

  72. 		exit();
    73. 

  73. 

  74. 	} else {
    75. 

  75. 

  76. 		/**
    77. 

  77. 		 * Guest Access
    78. 

  78. 		 * Access to view all public folders and photos in Lychee.
    79. 

  79. 		 */
    80. 

  80. 

  81. 		Guest::init($fn);
    82. 

  82. 		exit();
    83. 

  83. 

  84. 	}
    85. 

  85. 

  86. } else {
    87. 

  87. 

  88. 	Response::error('No API function specified!');
    89. 

  89. 

  90. }
    91. 

  91. 

  92. ?>
    93.