core/src/plugins/editor.pixlr/class.PixlrEditor.php

<?php
/*
 * Copyright 2007-2013 Charles du Jeu - Abstrium SAS <team (at) pyd.io>
 * This file is part of Pydio.
 *
 * Pydio is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * Pydio is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with Pydio.  If not, see <http://www.gnu.org/licenses/>.
 *
 * The latest code can be found at <http://pyd.io/>.
 */

defined('AJXP_EXEC') or die( 'Access not allowed');

/**
 * Uses Pixlr.com service to edit images online.
 * @package AjaXplorer_Plugins
 * @subpackage Editor
 */
class PixlrEditor extends AJXP_Plugin
{
  public function switchAction($action, $httpVars, $filesVars)
  {
    if(!isSet($this->actions[$action])) return false;

    $repository = ConfService::getRepository();
    if (!$repository->detectStreamWrapper(true)) {
      return false;
    }

    $streamData = $repository->streamData;
      $destStreamURL = $streamData["protocol"]."://".$repository->getId();

      $selection = new UserSelection($repository, $httpVars);

    if ($action == "post_to_server") {

        // Backward compat
        if(strpos($httpVars["file"], "base64encoded:") !== 0){
            $file = AJXP_Utils::decodeSecureMagic(base64_decode($httpVars["file"]));
        }else{
            $file = $selection->getUniqueFile();
        }
      $target = base64_decode($httpVars["parent_url"])."/plugins/editor.pixlr";
      $tmp = call_user_func(array($streamData["classname"], "getRealFSReference"), $destStreamURL.$file);
      $tmp = SystemTextEncoding::fromUTF8($tmp);
      $fData = array("tmp_name" => $tmp, "name" => urlencode(basename($file)), "type" => "image/jpg");
      //var_dump($fData);
        $node = new AJXP_Node($destStreamURL.$file);
        $this->logInfo('Preview', 'Sending content of '.$file.' to Pixlr server.');
        AJXP_Controller::applyHook("node.read", array($node));


        $httpClient = new HttpClient("apps.pixlr.com");
      //$httpClient->setDebug(true);
      $postData = array();
      $httpClient->setHandleRedirects(false);
      $saveTarget = $target."/fake_save_pixlr.php";
      if ($this->getFilteredOption("CHECK_SECURITY_TOKEN", $repository->getId())) {
          $saveTarget = $target."/fake_save_pixlr_".md5($httpVars["secure_token"]).".php";
      }
      $params = array(
        "referrer"  => "Pydio",
        "method"  => "get",
        "loc"    => ConfService::getLanguage(),
        "target"  => $saveTarget,
        "exit"    => $target."/fake_close_pixlr.php",
        "title"    => urlencode(basename($file)),
        "locktarget"=> "false",
        "locktitle" => "true",
        "locktype"  => "source"
      );
      $httpClient->postFile("/editor/", $params, "image", $fData);
      $loc = $httpClient->getHeader("location");
      header("Location:$loc");

    } else if ($action == "retrieve_pixlr_image") {
      $file = AJXP_Utils::decodeSecureMagic($httpVars["original_file"]);
        $node = new AJXP_Node($destStreamURL.$file);
        $node->loadNodeInfo();
        $this->logInfo('Edit', 'Retrieving content of '.$file.' from Pixlr server.');
        AJXP_Controller::applyHook("node.before_change", array(&$node));
      $url = $httpVars["new_url"];
      $urlParts = parse_url($url);
      $query = $urlParts["query"];
        if ($this->getFilteredOption("CHECK_SECURITY_TOKEN", $repository->getId())) {
            $scriptName = basename($urlParts["path"]);
            $token = str_replace(array("fake_save_pixlr_", ".php"), "", $scriptName);
            if ($token != md5($httpVars["secure_token"])) {
                throw new AJXP_Exception("Invalid Token, this could mean some security problem!");
            }
        }
      $params = array();
      parse_str($query, $params);

      $image = $params['image'];
      $headers = get_headers($image, 1);
      $content_type = explode("/", $headers['Content-Type']);
      if ($content_type[0] != "image") {
        throw new AJXP_Exception("Invalid File Type");
      }
        $content_length = intval($headers["Content-Length"]);
        if($content_length != 0) AJXP_Controller::applyHook("node.before_change", array(&$node, $content_length));

      $orig = fopen($image, "r");
      $target = fopen($destStreamURL.$file, "w");
      while (!feof($orig)) {
        fwrite($target, fread($orig, 4096));
      }
      fclose($orig);
      fclose($target);
        clearstatcache(true, $node->getUrl());
        $node->loadNodeInfo(true);
        AJXP_Controller::applyHook("node.change", array(&$node, &$node));
      //header("Content-Type:text/plain");
      //print($mess[115]);

    }


    return ;

  }

}