enmi-conf.org: wp/wp-includes/ms-files.php@cf61fcea0001 (annotated)

0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	1	<?php
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	2	/**
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	3	* Multisite upload handler.
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	4	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	5	* @since 3.0.0
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	6	*
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	7	* @package WordPress
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	8	* @subpackage Multisite
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	9	*/
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	10
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	11	define( 'SHORTINIT', true );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	12	require_once( dirname( dirname( __FILE__ ) ) . '/wp-load.php' );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	13
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 0 diff changeset	14	if ( !is_multisite() )
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	15	die( 'Multisite support not enabled' );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	16
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	17	ms_file_constants();
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	18
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	19	error_reporting( 0 );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	20
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	21	if ( $current_blog->archived == '1' \|\| $current_blog->spam == '1' \|\| $current_blog->deleted == '1' ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	22	status_header( 404 );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	23	die( '404 — File not found.' );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	24	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	25
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	26	$file = rtrim( BLOGUPLOADDIR, '/' ) . '/' . str_replace( '..', '', $_GET[ 'file' ] );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	27	if ( !is_file( $file ) ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	28	status_header( 404 );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	29	die( '404 — File not found.' );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	30	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	31
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	32	$mime = wp_check_filetype( $file );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 0 diff changeset	33	if ( false === $mime[ 'type' ] && function_exists( 'mime_content_type' ) )
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	34	$mime[ 'type' ] = mime_content_type( $file );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	35
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 0 diff changeset	36	if ( $mime[ 'type' ] )
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	37	$mimetype = $mime[ 'type' ];
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	38	else
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	39	$mimetype = 'image/' . substr( $file, strrpos( $file, '.' ) + 1 );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	40
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	41	header( 'Content-Type: ' . $mimetype ); // always send this
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	42	if ( false === strpos( $_SERVER['SERVER_SOFTWARE'], 'Microsoft-IIS' ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	43	header( 'Content-Length: ' . filesize( $file ) );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	44
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	45	// Optional support for X-Sendfile and X-Accel-Redirect
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	46	if ( WPMU_ACCEL_REDIRECT ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	47	header( 'X-Accel-Redirect: ' . str_replace( WP_CONTENT_DIR, '', $file ) );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	48	exit;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	49	} elseif ( WPMU_SENDFILE ) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	50	header( 'X-Sendfile: ' . $file );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	51	exit;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	52	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	53
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	54	$last_modified = gmdate( 'D, d M Y H:i:s', filemtime( $file ) );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	55	$etag = '"' . md5( $last_modified ) . '"';
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	56	header( "Last-Modified: $last_modified GMT" );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	57	header( 'ETag: ' . $etag );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	58	header( 'Expires: ' . gmdate( 'D, d M Y H:i:s', time() + 100000000 ) . ' GMT' );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	59
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	60	// Support for Conditional GET - use stripslashes to avoid formatting.php dependency
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	61	$client_etag = isset( $_SERVER['HTTP_IF_NONE_MATCH'] ) ? stripslashes( $_SERVER['HTTP_IF_NONE_MATCH'] ) : false;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	62
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 0 diff changeset	63	if ( ! isset( $_SERVER['HTTP_IF_MODIFIED_SINCE'] ) )
0 d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	64	$_SERVER['HTTP_IF_MODIFIED_SINCE'] = false;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	65
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	66	$client_last_modified = trim( $_SERVER['HTTP_IF_MODIFIED_SINCE'] );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	67	// If string is empty, return 0. If not, attempt to parse into a timestamp
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	68	$client_modified_timestamp = $client_last_modified ? strtotime( $client_last_modified ) : 0;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	69
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	70	// Make a timestamp for our most recent modification...
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	71	$modified_timestamp = strtotime($last_modified);
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	72
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	73	if ( ( $client_last_modified && $client_etag )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	74	? ( ( $client_modified_timestamp >= $modified_timestamp) && ( $client_etag == $etag ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	75	: ( ( $client_modified_timestamp >= $modified_timestamp) \|\| ( $client_etag == $etag ) )
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	76	) {
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	77	status_header( 304 );
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	78	exit;
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	79	}
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	80
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	81	// If we made it this far, just serve the file
d970ebf37754 first import ymh <ymh.work@gmail.com> parents: diff changeset	82	readfile( $file );
7 cf61fcea0001 resynchronize code repo with production ymh <ymh.work@gmail.com> parents: 0 diff changeset	83	flush();

author	ymh <ymh.work@gmail.com>
	Mon, 14 Oct 2019 17:39:30 +0200
changeset 7	cf61fcea0001
parent 0	d970ebf37754
child 9	177826044cd9
permissions	-rw-r--r--