Thijs/wiki.techinc.nl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

allow img_auth.php to use path= in place of PATH_INFO, so it can be used in CGI mode. Use with RewriteRule ^/w/images/(.*)$ /w/img_auth.php?path=bell-style

Browse source
This commit is contained in:
Daniel Kinzler 2010-04-29 10:32:18 +00:00
parent 39a2876f54
commit f493b02c61
1 changed files with 7 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
img_auth.php
View file

@ -38,11 +38,14 @@ if ( $wgImgAuthPublicTest
}
// Extract path and image information
if( !isset( $_SERVER['PATH_INFO'] ) )
wfForbidden('img-auth-accessdenied','img-auth-nopathinfo');
if( !isset( $_SERVER['PATH_INFO'] ) ) {
if( isset( $_GET['path'] ) ) $path = $_GET['path'];
else wfForbidden('img-auth-accessdenied','img-auth-nopathinfo');
} else {
$path = $_SERVER['PATH_INFO'];
}
$path = $_SERVER['PATH_INFO'];
$filename = realpath( $wgUploadDirectory . $_SERVER['PATH_INFO'] );
$filename = realpath( $wgUploadDirectory . '/' . $path );
$realUpload = realpath( $wgUploadDirectory );
// Basic directory traversal check