#!/usr/bin/perl #################################################################### # My Photo Gallery Script # Version shown in the variable set below # # This script is part of the FuzzyMonkey.org Script Archive at # www.fuzzymonkey.org and is released under the GPL license. Please # see the included LICENSE.txt file for details. # #################################################################### #if you had to install Image Magick as NON-root, please add the # use lib line #use lib "/home/username/local/lib/site_perl/5.6.0/i686-linux/"; #use lib "/home/username/local/lib/site_perl/5.6.0/"; use CGI(-debug); use CGI::Carp qw(fatalsToBrowser); use Image::Magick; require "./sitevariables.pl"; require "./common.pl"; require "./imagemagick.pl"; if($exif=~ /yes/i){ use Image::Info qw(image_info); } srand(); ############ BEGIN MAIN PROGRAM ################################ $version = "4.03"; $cur = CGI->new(); $content = ""; $page = 1; $mode = "default"; unless($resize_quality){$resize_quality="90";} unless($thumbnails_per_page){$thumbnails_per_page ="100";} if(!$directory_selection){$directory_selection = 'directory.gif';} #get cookies @cookies=split(/;/,$ENV{'HTTP_COOKIE'}); foreach $cookie (@cookies) { ($name,$value) = split (/=/,$cookie); $crumbs{$name}=$value; } if($cur->param("maxWidth")) { $maxWidth= $cur->param("maxWidth"); print "Set-Cookie: maxWidth=$maxWidth\n"; #set a cookie for the maxWidth preference } else { $maxWidth = 640; #check for cookie if($cur->cookie('maxWidth')){$maxWidth=$cur->cookie('maxWidth');} } if($cur->param("mode")) { $mode = $cur->param("mode"); } if($cur->param("album")) { $selectedalbum = $cur->param("album"); $htmlalbum = $selectedalbum; $htmlalbum =~ s/ /%20/g; if(-e "$photoroot/$selectedalbum/lock"){ if($cur->cookie('username') || $cur->param("username")){ $found = "no"; $username_cookie = $cur->cookie('username'); $password_cookie = $cur->cookie('password'); $username_form = $cur->param("username"); $password_form = $cur->param("password"); open(LOCKFILE,"<$photoroot/$selectedalbum/lock"); while(){ chomp; next unless $_; ($username_file,$password_file) = split(/=/,$_); if(($username_cookie eq $username_file)&&($password_cookie eq $password_file)){ $found = "yes"; } if(($username_form eq $username_file)&&($password_form eq $password_file)){ $found = "yes"; } } close(LOCKFILE); unless($found eq "yes"){ $mode = "askpassword"; } }else{ $mode = "askpassword"; } } } if($cur->param("page")) { $page = $cur->param("page"); } if($cur->param("picture")) { $selectedpicture= $cur->param("picture"); $htmlpicture = $selectedpicture; $htmlpicture =~ s/ /%20/g; $htmlpicture =~ s/#/%23/g; } if($cur->param("movie")) { $selectedmovie = $cur->param("movie"); $htmlmovie = $selectedmovie; $htmlmovie =~ s/ /%20/g; } if($cur->param("username")){ $username = $cur->param("username"); $password = $cur->param("password"); print "Set-Cookie:username=$username\n"; print "Set-Cookie:password=$password\n"; } checkforbadthings(); if($mode eq "default"){ $selectedalbum = ''; $mode = "view"; } if($mode eq "view"){ $content .= check_data_directories($selectedalbum); $content .= checkdirectories($selectedalbum); #check for thumbnail and descriptions directories $content .= generatealbum("$selectedalbum"); } if($mode eq "viewpicture"){ if($cur->param("comment")){ #getcomment(); } $content .= generatepicture($selectedalbum,$selectedpicture); } if($mode eq "askpassword"){ $content .= passwordform(); } printpage($content,"template.html"); ############ BEGIN SUBROUTINES ################################# ################################################################ # takes the selected album and makes sure that we have all of # the directories that we need up to that point ############################################################### sub check_data_directories($){ my $directory = $_[0]; my $return; my @steps; my $step; my $sofar; @steps = split (/\//,"$directory"); #$return .= "checking data directories for $directory
"; foreach $step (@steps){ $step =~ s/\///gi; if($sofar){ $sofar = "$sofar/$step" }else{ $sofar = "$dataroot/$step"; } unless(-e "$sofar"){ #$return .= "creating $sofar with 755 permissions
"; mkdir("$sofar",0755)||dienice("Could not create data directory! $!"); } } return $return; } sub generatealbum ($) { my $return; my $selectedalbum = $_[0]; #sanity check #if(!$selectedalbum){ #dienice("No album was selected"); #$content .= "warning: no album was selected
"; #} $return .= print_location($selectedalbum, pageParams()); $_[0] =~ s/ /\\ /g; #fix spaces for globbing and file opening ########################################### #get the hits and stuff for this album ########################################### my $hits = logpicture("$selectedalbum/"); my $hitstring = "album viewed $hits times"; ########################################### #check for description of this album ########################################### my $description; if(open (INFILE, "$dataroot/$selectedalbum/descriptions/album.txt")){ $description .= ''; flock (INFILE, 2); #locks the file for exclusive access. while(){ $description .= "$_"; } flock (INFILE, 8); #unlocks the file close(INFILE); } unless($description){ $description =""; } if($smiley =~ /yes/i){ $description = make_faces($description); } $description =~ s/\n/
/g; #$return .= ""; my @files= glob "$photoroot/$_[0]/*"; #find a better way to do this my $count =0; # Hack to sort Directories first. -KWP 11/05/2003 @files = sort {(-d $b) <=> (-d $a) || $a cmp $b} @files; # take only those files in the current page. If the 1024, site-images, etc. # are in this directory, then they're included in the count even though they # are not displayed. my ($start, $end, $total_pages) = pageBounds(scalar(@files)); @files = @files[$start..$end]; $return .= "

\n"; $return .= generatepagewidget( "index.cgi?mode=view\&album=$selectedalbum", $total_pages, $page ); $return .="

\n"; $return .= ""; foreach $file (@files){ if(-d $file){ # it is a directory unless (($file =~ /1024/) ||($file =~ /800/) ||($file =~ /640/) ||($file =~ /320/) ||($file =~ /site-images/) ||($file =~ /comments/) ||($file =~ /descriptions/) ||($file =~ /thumbnails/)){ $file =~ s/.*\/(.*)/$1/g; my $cgihtmlalbum = $selectedalbum; $cgihtmlalbum =~ s/ /+/g; my $cgihtmlsubdirectory = $file; $cgihtmlsubdirectory =~ s/ /+/g; my $prettysubdirectory = $file; $prettysubdirectory = makepretty($prettysubdirectory); $count++; if(-e "$dataroot/$selectedalbum/$file/descriptions/directory.gif"){ $folder_picture = "$dataurl/$selectedalbum/$file/descriptions/directory.gif"; }else{ if(-e "$photoroot/$selectedalbum/$file/lock"){ $folder_picture = "$dataurl/site-images/$directory_selection"; $folder_picture =~ s/(.*)\.(.*)/$1-locked.$2/; }else{ $folder_picture = "$dataurl/site-images/$directory_selection"; } } $return .= ""; } }elsif($file =~ /\.(jpg|png|gif)\b/i){ #this is a supported image format (jpeg,png, or gif) fileinfo($file); $file =~ s/.*\/(.*)/$1/g; ################################################ # lets check for a thumbnail ################### ################################################ my $thumbnail = $file; #$thumbnail =~ s/(.*)\.(jpg|png|gif)\b/$1.jpg/i; unless(-e "$dataroot/$selectedalbum/thumbnails/$thumbnail"){ resize("$photoroot/$selectedalbum/$file","$dataroot/$selectedalbum/thumbnails/$thumbnail",$previewWidth,$resize_quality); if($mag_on_thumbnails =~ /yes/i){ overlay("$dataroot/$selectedalbum/thumbnails/$thumbnail","$dataroot/$selectedalbum/thumbnails/$thumbnail","$dataroot/site-images/mag.png"); } } my $cgihtmlalbum = $selectedalbum; $cgihtmlalbum =~ s/ /+/g; my $cgihtmlpicture = $file; $cgihtmlpicture =~ s/ /+/g; $cgihtmlpicture =~ s/&/%26/g; my $prettypicture = makepretty($file); #fix spaces for old netscape and such $thumbnail =~ s/ /%20/g; $thumbnail =~ s/#/%23/g; my $comments_text = ""; if((-e "$dataroot/$selectedalbum/comments/$file.txt") && ($indicate_comments =~ /yes/i)){ $comments_text = " $\"Comments$ "; } #NOTE to self: each line below has a tag because the new #netscape was putting a funky line because of the line break $return .= "\n"; $count++; #not to me....this line broken ... get extention and look it up to display icon }elsif( ($file =~ /.*(\..*)\b/i) && (defined $filetypes{"$1"})){ fileinfo($file); my $ext = $1; $file =~ s/.*\/(.*)/$1/g; my $htmlfile = $file; $htmlfile =~ s/ /%20/g; $htmlfile =~ s/#/%23/g; $return .= ""; $count++; }else{ #we don't know what kind of file this is fileinfo($file); $file =~ s/.*\/(.*)/$1/g; unless($file eq "lock" || $file eq "Thumbs.db"){ my $htmlfile = $file; $htmlfile =~ s/ /%20/g; $htmlfile =~ s/#/%23/g; $return .= ""; $count++; } } if($count >= $thumbnails_per_row){ $count =0; $return .= "\n "; } } $return .= "

$prettysubdirectory

$\"$file\"$
$prettypicture$comments_text
$time

$file
$time ($kfilesize)

"; $return .= "

\n"; $return .= generatepagewidget( "index.cgi?mode=view\&album=$selectedalbum", $total_pages, $page ); $return .="

Page:

"; $return .= " $\"<-\"$ \n"; $return .= "

"; foreach $i (1..$total_pages) { if ($i == $current_page) { $return .= "$i"; } else { $return .= "$i"; } $return .=" "; } $return .= "

"; $return .= " $\"-$ \"> "; $return .= "

"; return $return; } sub checkforbadthings { $selectedalbum =~ s/\\//g; $selectedpicture =~ s/\\//g; $selectedalbum =~ s/\*//g; $selectedpicture =~ s/\*//g; $selectedpicture =~ s/\(//g; $selectedpicture =~ s/\}//g; $selectedalbum =~ s/\(//g; $selectedalbum =~ s/\}//g; if($selectedalbum =~ /\.\./){ hacking_attempt("

Attempted hack detected!

Your malicious behavior has been caught and logged. Depending on where you live, there could be severe criminal penalties associated with computer crimes. The webmaster may use this information to prosecute you to the full extent of the law. In short, don't do this anymore. Even just poking around could land you in serious trouble!

"); } if($selectedpicture=~ /\.\./){ hacking_attempt("

Attempted hack detected!

Embedded EXIF data

$exifdata

"; } return $exifdata; } # format an EXIF table entry sub exifentry($$) { return "\n\t\t$_[0]:$_[1]"; } sub generatepicture { my $return; getPrevNextButtons($selectedalbum, $selectedpicture); #get width and height my($imageToPing) = Image::Magick->new; my($itemToDisplay) = "$photoroot/$selectedalbum/$selectedpicture"; $x = $imageToPing->Read($itemToDisplay); warn $x if $x; ($width,$height) = $imageToPing->Get('width','height'); undef $imageToPing; #fixing spaces for cgi link my $cgihtmlalbum = $selectedalbum; $cgihtmlalbum =~ s/ /+/g; my $shutterflytext; if($allowshutterfly =~ /YES/i){ my $thumbnail = $htmlpicture; $thumbnail =~ s/(.*)\.(jpg|png|gif)\b/$1.jpg/i; $shutterflytext = " from shutterfly.com"; $shutterflytext =~ s/\n//g; } my $clubphototext; if($allowclubphoto =~ /YES/i){ my $thumbnail = $htmlpicture; $thumbnail =~ s/(.*)\.(jpg|png|gif)\b/$1.jpg/i; $clubphototext = < from ClubPhoto.com HTML $clubphototext =~ s/\n//g; } $saveWidth = $width; $saveHeight= $height; $sizewarning = ""; if(($width >= $maxWidth) || ($height >= $maxWidth)){ $content .= createNewWidthPicture(); #fix a few things when printing the picture out $htmlpicture = "$maxWidth/$htmlpicture"; if($width > $height){ $height =int ($height/($width/$maxWidth)); $width = int ($maxWidth); }else{ $width = int ($width/($height/$maxWidth)); $height = int ($maxWidth); } $sizewarning = "(viewing at $width x $height)"; } my $resizebutton =" "; my ($prettypicture) = $selectedpicture; $prettypicture = makepretty($prettypicture); $return .= print_location($selectedalbum, pageParams()); my $table_width = $width; if($table_width < 320){ $table_width = 320; } $return .= "

"; my $picture = "$photoroot/$selectedalbum/$selectedpicture"; fileinfo($picture); my $hits = logpicture("$selectedalbum/$selectedpicture"); my $hitstring = ""; my $description = getdescription($selectedalbum,$selectedpicture); if($smiley =~ /yes/i){ $description = make_faces($description); } my $commentmsg =''; if($allowcomments =~ /YES/i){ $commentmsg = "Users may add comments below"; } $shadowwidth=$width -16; #lower left shadow is 16 pixels wide. Current table layout requires the bottom shadow to that much less. if($exif=~ /yes/i){ $exifdata = get_exifdata("$picture"); }else{ $exifdata = ""; } # $return .= "

$prettypicture

viewed:

"; if($shadow =~ /yes/i){ $return .= "

"; $return .="

"; }else{ $return .= "

"; } if(($width < $maxWidth) && ($height < $maxWidth)){ $return .= ""; }else{ $return .= ""; } if($shadow =~ /yes/i){ $return .= "

"; } $return .="

$description

$hitstring "; $return .="

uploaded:	$time
file size:	$kfilesize
image size:	$saveWidth x $saveHeight $sizewarning

$resizebutton

$shutterflytext $clubphototext

$exifdata

$prev

$prevThumb

$pictureNumber out of $numberofpictures

$nextThumb

$next

"; if($allowcomments =~ /YES/i) { $return .= "

"; $return .= getcomments(); $return .= "

"; } my $shutterflytext; if($allowshutterfly =~ /YES/i){ $shutterflytext="

This gallery has support for Shutterfly. Click the \"order this photo\" button to quickly and easily order high-quality photographic prints of your favorite pictures through Shutterfly.com"; } $return .= "$shutterflytext"; $return .= "

"; return $return; } sub logpicture { #needs to have the name of the picture passed as an argument. Opens log file. Increments for #that picture, and write the data file back out. #open datafile and get info if(-e "$dataroot/$selectedalbum/log.txt"){ # only if it exists open (INFILE, "$dataroot/$selectedalbum/log.txt")|| dienice("I could not open the log file! If this is your first time running it, please manually create a blank data file. You need a blank text file called log.txt in the same directory as the index.cgi. This file should be rw by whatever user your web server runs as."); flock (INFILE, 2); #locks the file for exclusive access. while(){ chomp(); my ($picture,$hits) = split(/=/,$_); #read in each timeslot one per line $picturelog{"$picture"} = $hits; } flock (INFILE, 8); #unlocks the file close(INFILE); } #incriment hit counter for the current picture $picturelog{$_[0]}++; #re-write data file with new info open(OUTFILE,">$dataroot/$selectedalbum/log.txt") || dienice("Cound not open data file for writing!"); flock (OUTFILE, 2); foreach $key (sort keys %picturelog) { print OUTFILE "$key=$picturelog{\"$key\"}\n"; } flock (OUTFILE, 8); close(OUTFILE); return $picturelog{$_[0]}; } sub getdescription($$) { my $return = ""; #open datafile if(open (INFILE, "$dataroot/$_[0]/descriptions/$_[1].txt")){ flock (INFILE, 2); #locks the file for exclusive access. while(){ $_ =~ s/[\r\f]/
/gi; $_ =~ s/\n//gi; $return .= "$_"; } flock (INFILE, 8); #unlocks the file close(INFILE); } $return = "

$return

"; return $return; } sub makepretty { my $pretty = $_[0]; if($prettypicturenames =~ /YES/i) { if($remove_leading_numbers =~ /yes/i){ $pretty =~ s/^[0-9]*//g; } $pretty =~ s/_/ /g; $pretty =~ s/-/ /g; $pretty =~ s/ / /g; $pretty =~ s/(.*)\..*/\1/g; } return $pretty; } ######################################################################### ## open comments file and return a pretty table of the comments########## ######################################################################### sub getcomments { my $return; my $count=0; my @comments; my $selecteditem; #make comments directory if it doesn't exist unless(-e "$dataroot/$selectedalbum/comments"){ #print "Making directory $photoroot/$selectedalbum/comments...

"; mkdir("$dataroot/$selectedalbum/comments",0755) || dienice("Error, could not make comments directory please check the permissions!

"); } #little trick to get comments on movies to work :-) if(!($selectedpicture)){ $selectedpicture = $selectedmovie; } #open datafile if(open (INFILE, "$dataroot/$selectedalbum/comments/$selectedpicture.txt")){ flock (INFILE, 2); #locks the file for exclusive access. while(){ chomp(); push (@comments,$_); } flock (INFILE, 8); #unlocks the file close(INFILE); } my $cgihtmlalbum = $selectedalbum; $cgihtmlalbum =~ s/ /+/g; my $cgihtmlpicture = $selectedpicture; $cgihtmlpicture =~ s/ /+/g; $return .= "

"; $return .= ""; my $commentcolor ="$commentcolor1"; foreach $comment (@comments) { $count++; my ($time,$name,$email,$comment) = split(/=/,$comment,4); #alternate row colors if($commentcolor eq "$commentcolor1"){ $commentcolor = $commentcolor2; }else { $commentcolor = $commentcolor1; } my $email_comment; if ($email){ $email_comment = "

";} if($smiley =~ /yes/i){ $comment = make_faces($comment); } $return .=" "; } unless($count){ $return .= ""; } $mode = $cur->param("mode"); if($mode =~ /picture/i){ $return .= " "; } else { $return .= " "; } $return .="

Comments
$name $says[int(rand(@says))] :	$email_comment
$comment
$time
There are currently no comments for this item.
Add Comment
Name:
Email (optional):
Comments:

Add Comment
Name:
Email:
Comments: