Home Explore Help
Sign In
aj
/
chamilo-lms2
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: ofajdev2017
Branches Tags
chamilo-lms2
/
main
/
document
/
webcam_receiver.php

webcam_receiver.php 3.0 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103 
  1. <?php
    2. 

  2. 

  3. /* JPEGCam Script *****UPDATED to lib webcamJS 2015-09-04***** */
    4. 

  4. /* Receives JPEG webcam submission and saves to local file. */
    5. 

  5. /* Make sure your directory has permission to write files as your web server user! */
    6. 

  6. 

  7. //Changes on directory because move the proper script to the new lib upgrade directory
    8. 

  8. require_once __DIR__.'/../inc/global.inc.php';
    9. 

  9. ////Add security from Chamilo
    10. 

  10. api_protect_course_script();
    11. 

  11. api_block_anonymous_users();
    12. 

  12. ///
    13. 

  13. # Save the audio to a URL-accessible directory for playback.
    14. 

  14. parse_str($_SERVER['QUERY_STRING'], $params);
    15. 

  15. 

  16. if (isset($params['webcamname']) && isset($params['webcamdir']) && isset($params['webcamuserid'])) {
    17. 

  17.     $webcamname = $params['webcamname'];
    18. 

  18.     $webcamdir = $params['webcamdir'];
    19. 

  19.     $webcamuserid = $params['webcamuserid'];
    20. 

  20. }
    21. 

  21. else {
    22. 

  22.     api_not_allowed();
    23. 

  23.     die();
    24. 

  24. }
    25. 

  25. 

  26. if ($webcamuserid != api_get_user_id() || api_get_user_id() == 0 || $webcamuserid == 0) {
    27. 

  27.     api_not_allowed();
    28. 

  28.     die();
    29. 

  29. }
    30. 

  30. 

  31. 

  32. //clean
    33. 

  33. $webcamname = Security::remove_XSS($webcamname);
    34. 

  34. $webcamname = Database::escape_string($webcamname);
    35. 

  35. $webcamname = addslashes(trim($webcamname));
    36. 

  36. $webcamname = api_replace_dangerous_char($webcamname);
    37. 

  37. $webcamname = disable_dangerous_file($webcamname);
    38. 

  38. $webcamdir = Security::remove_XSS($webcamdir);
    39. 

  39. 

  40. //security extension
    41. 

  41. $ext = explode('.', $webcamname);
    42. 

  42. $ext = strtolower($ext[sizeof($ext) - 1]);
    43. 

  43. 

  44. if ($ext != 'jpg') {
    45. 

  45.     die();
    46. 

  46. }
    47. 

  47. 

  48. //Do not use here check Fileinfo method because return: text/plain                //CHECK THIS BEFORE COMMIT
    49. 

  49. 

  50. $dirBaseDocuments = api_get_path(SYS_COURSE_PATH).$_course['path'].'/document';
    51. 

  51. $saveDir = $dirBaseDocuments.$webcamdir;
    52. 

  52. $current_session_id = api_get_session_id();
    53. 

  53. $groupId = api_get_group_id();
    54. 

  54. $groupInfo = GroupManager::get_group_properties($groupId);
    55. 

  55. 

  56. //Avoid duplicates
    57. 

  57. $webcamname_to_save = $webcamname;
    58. 

  58. $title_to_save = str_replace('_', ' ', $webcamname);
    59. 

  59. $webcamname_noex = basename($webcamname, ".jpg");
    60. 

  60. if (file_exists($saveDir.'/'.$webcamname_noex.'.'.$ext)) {
    61. 

  61.     $i = 1;
    62. 

  62.     while (file_exists($saveDir.'/'.$webcamname_noex.'_'.$i.'.'.$ext)) {
    63. 

  63.         $i++;
    64. 

  64.     }
    65. 

  65.     $webcamname_to_save = $webcamname_noex.'_'.$i.'.'.$ext;
    66. 

  66.     $title_to_save = $webcamname_noex.'_'.$i.'.'.$ext;
    67. 

  67.     $title_to_save = str_replace('_', ' ', $title_to_save);
    68. 

  68. }
    69. 

  69. 

  70. $documentPath = $saveDir.'/'.$webcamname_to_save;
    71. 

  71. 

  72. //read content
    73. 

  73. //Change to move_uploaded_file() function instead file_get_contents() to adapt the new lib
    74. 

  74. $content = move_uploaded_file($_FILES['webcam']['tmp_name'], $documentPath);
    75. 

  75. if (!$content) {
    76. 

  76.     print "PHP ERROR: Failed to read data\n";
    77. 

  77.     exit();
    78. 

  78. }
    79. 

  79. 

  80. //add document to database
    81. 

  81. $doc_id = add_document(
    82. 

  82.     $_course,
    83. 

  83.     $webcamdir.'/'.$webcamname_to_save,
    84. 

  84.     'file',
    85. 

  85.     filesize($documentPath),
    86. 

  86.     $title_to_save
    87. 

  87. );
    88. 

  88. api_item_property_update(
    89. 

  89.     $_course,
    90. 

  90.     TOOL_DOCUMENT,
    91. 

  91.     $doc_id,
    92. 

  92.     'DocumentAdded',
    93. 

  93.     $_user['user_id'],
    94. 

  94.     $groupInfo,
    95. 

  95.     null,
    96. 

  96.     null,
    97. 

  97.     null,
    98. 

  98.     $current_session_id
    99. 

  99. );
    100. 

  100. ///
    101. 

  101. $url = 'http://'.$_SERVER['HTTP_HOST'].dirname($_SERVER['REQUEST_URI']).'/'.$documentPath;
    102. 

  102. print get_lang('ClipSent');
    103. 

  103.