David A. Windham
david
/
lychee
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: df4c2bf774
Branches Tags
lychee
/
php
/
access
/
guest.php

guest.php 3.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * @name		Guest Access (Public Mode)
    5. 

  5.  * @author		Tobias Reich
    6. 

  6.  * @copyright	2014 by Tobias Reich
    7. 

  7.  */
    8. 

  8. 

  9. if (!defined('LYCHEE')) exit('Error: Direct access is not allowed!');
    10. 

  10. if (!defined('LYCHEE_ACCESS_GUEST')) exit('Error: You are not allowed to access this area!');
    11. 

  11. 

  12. switch ($_POST['function']) {
    13. 

  13. 

  14. 	// Album Functions
    15. 

  15. 

  16. 	case 'getAlbums':		echo json_encode(getAlbums(true));
    17. 

  17. 							break;
    18. 

  18. 

  19. 	case 'getAlbum':		if (isset($_POST['albumID'])&&isset($_POST['password'])) {
    20. 

  20. 								if (isAlbumPublic($_POST['albumID'])) {
    21. 

  21. 									// Album Public
    22. 

  22. 									if (checkAlbumPassword($_POST['albumID'], $_POST['password']))
    23. 

  23. 										echo json_encode(getAlbum($_POST['albumID']));
    24. 

  24. 									else
    25. 

  25. 										echo 'Warning: Wrong password!';
    26. 

  26. 								} else {
    27. 

  27. 									// Album Private
    28. 

  28. 									echo 'Warning: Album private!';
    29. 

  29. 								}
    30. 

  30. 							}
    31. 

  31. 							break;
    32. 

  32. 

  33. 	case 'checkAlbumAccess':if (isset($_POST['albumID'])&&isset($_POST['password'])) {
    34. 

  34. 								if (isAlbumPublic($_POST['albumID'])) {
    35. 

  35. 									// Album Public
    36. 

  36. 									if (checkAlbumPassword($_POST['albumID'], $_POST['password']))
    37. 

  37. 										echo true;
    38. 

  38. 									else
    39. 

  39. 										echo false;
    40. 

  40. 								} else {
    41. 

  41. 									// Album Private
    42. 

  42. 									echo false;
    43. 

  43. 								}
    44. 

  44. 							}
    45. 

  45. 							break;
    46. 

  46. 

  47. 	// Photo Functions
    48. 

  48. 

  49. 	case 'getPhoto':		if (isset($_POST['photoID'])&&isset($_POST['albumID'])&&isset($_POST['password'])) {
    50. 

  50. 								if (isPhotoPublic($_POST['photoID'], $_POST['password']))
    51. 

  51. 									echo json_encode(getPhoto($_POST['photoID'], $_POST['albumID']));
    52. 

  52. 								else
    53. 

  53. 									echo 'Warning: Wrong password!';
    54. 

  54. 							}
    55. 

  55. 							break;
    56. 

  56. 

  57. 	// Session Functions
    58. 

  58. 

  59. 	case 'init':			echo json_encode(init('public', $_POST['version']));
    60. 

  60. 							break;
    61. 

  61. 

  62. 	case 'login':			if (isset($_POST['user'])&&isset($_POST['password']))
    63. 

  63. 								echo login($_POST['user'], $_POST['password']);
    64. 

  64. 							break;
    65. 

  65. 

  66. 	// Miscellaneous
    67. 

  67. 

  68. 	default:				switch ($_GET['function']) {
    69. 

  69. 

  70. 								case 'getFeed':				if (isset($_GET['albumID'])&&isset($_GET['password'])) {
    71. 

  71. 

  72. 																// Album Feed
    73. 

  73. 																if (isAlbumPublic($_GET['albumID'])) {
    74. 

  74. 																	// Album Public
    75. 

  75. 																	if (checkAlbumPassword($_GET['albumID'], $_GET['password']))
    76. 

  76. 																		echo getFeed($_GET['albumID']);
    77. 

  77. 																	else
    78. 

  78. 																		exit('Warning: Wrong password!');
    79. 

  79. 																} else {
    80. 

  80. 																	// Album Private
    81. 

  81. 																	exit('Warning: Album private!');
    82. 

  82. 																}
    83. 

  83. 

  84. 															}
    85. 

  85. 															break;
    86. 

  86. 

  87. 								case 'getAlbumArchive':		if (isset($_GET['albumID'])&&isset($_GET['password'])) {
    88. 

  88. 

  89. 																// Album Download
    90. 

  90. 																if (isAlbumPublic($_GET['albumID'])) {
    91. 

  91. 																	// Album Public
    92. 

  92. 																	if (checkAlbumPassword($_GET['albumID'], $_GET['password']))
    93. 

  93. 																		getAlbumArchive($_GET['albumID']);
    94. 

  94. 																	else
    95. 

  95. 																		exit('Warning: Wrong password!');
    96. 

  96. 																} else {
    97. 

  97. 																	// Album Private
    98. 

  98. 																	exit('Warning: Album private or not downloadable!');
    99. 

  99. 																}
    100. 

  100. 

  101. 															}
    102. 

  102. 															break;
    103. 

  103. 

  104. 								case 'getPhotoArchive':		if (isset($_GET['photoID'])&&isset($_GET['password'])) {
    105. 

  105. 

  106. 																// Photo Download
    107. 

  107. 																if (isPhotoPublic($_GET['photoID'], $_GET['password']))
    108. 

  108. 																	// Photo Public
    109. 

  109. 																	getPhotoArchive($_GET['photoID']);
    110. 

  110. 																else
    111. 

  111. 																	// Photo Private
    112. 

  112. 																	exit('Warning: Photo private or not downloadable!');
    113. 

  113. 

  114. 															}
    115. 

  115. 															break;
    116. 

  116. 

  117. 								default:					exit('Error: Function not found! Please check the spelling of the called function.');
    118. 

  118. 															break;
    119. 

  119. 

  120. 							}
    121. 

  121. 

  122. 							break;
    123. 

  123. 

  124. }
    125. 

  125. 

  126. ?>
    127.