drupal-civicrm/sites/all/modules/civicrm/packages/kcfinder/integration/civicrm.php

<?php
/*
 +--------------------------------------------------------------------+
 | CiviCRM version 4.7                                                |
 +--------------------------------------------------------------------+
 | Copyright CiviCRM LLC (c) 2004-2016                                |
 +--------------------------------------------------------------------+
 | This file is a part of CiviCRM.                                    |
 |                                                                    |
 | CiviCRM is free software; you can copy, modify, and distribute it  |
 | under the terms of the GNU Affero General Public License           |
 | Version 3, 19 November 2007 and the CiviCRM Licensing Exception.   |
 |                                                                    |
 | CiviCRM is distributed in the hope that it will be useful, but     |
 | WITHOUT ANY WARRANTY; without even the implied warranty of         |
 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.               |
 | See the GNU Affero General Public License for more details.        |
 |                                                                    |
 | You should have received a copy of the GNU Affero General Public   |
 | License and the CiviCRM Licensing Exception along                  |
 | with this program; if not, contact CiviCRM LLC                     |
 | at info[AT]civicrm[DOT]org. If you have questions about the        |
 | GNU Affero General Public License or the licensing of CiviCRM,     |
 | see the CiviCRM license FAQ at http://civicrm.org/licensing        |
 +--------------------------------------------------------------------+
*/

/**
 * This file handles integration of KCFinder with wysiwyg editors
 * supported by CiviCRM
 * Ckeditor and tinyMCE
 *
 * @package CRM
 * @copyright CiviCRM LLC (c) 2004-2016
 * $Id$
 *
 */

function checkAuthentication() {
  static $authenticated;
  if ( !isset( $authenticated ) ) {
    $current_cwd   = getcwd();
    $civicrm_root  = dirname(dirname(getcwd()));
    $authenticated = false;
    require_once "{$civicrm_root}/civicrm.config.php";
    require_once 'CRM/Core/Config.php';

    $config = CRM_Core_Config::singleton();

    if ( !isset($_SESSION['KCFINDER'] ) ) {
      $_SESSION['KCFINDER'] = array();
    }

    $auth_function = null;
    switch ($config->userFramework) {
    case 'Drupal':
    case 'Drupal6':
      $auth_function = 'authenticate_drupal';
      break;
    case 'Joomla':
      $auth_function = 'authenticate_joomla';
      break;
    case 'WordPress':
      $auth_function = 'authenticate_wordpress';
      break;
    }
    if(!$auth_function($config)) {
      CRM_Core_Error::fatal(ts("You must be logged in with proper permissions to edit, add, or delete uploaded images."));
    }

    $_SESSION['KCFINDER']['disabled'] = false;
    $_SESSION['KCFINDER']['uploadURL'] = $config->imageUploadURL;
    $_SESSION['KCFINDER']['uploadDir'] = $config->imageUploadDir;

    $authenticated = true;
    chdir( $current_cwd );
  }
}

/**
 * If the user is already logged into Drupal, bootstrap
 * drupal with this user's permissions. Thanks to integrate/drupal.php
 * script for hints on how to do this.
 **/
function authenticate_drupal($config) {
  global $base_url;
  $base_root = (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == 'on') ? 'https' : 'http';
  $base_url = $base_root .= '://'. preg_replace('/[^a-z0-9-:._]/i', '', $_SERVER['HTTP_HOST']);

  if ($dir = trim(dirname($_SERVER['SCRIPT_NAME']), '\,/')) {
    $base_path = "/$dir";
    $base_url .= $base_path;
  }

  // correct base_url so it points to Drupal root
  $pos = strpos($base_url, '/sites/');
  if ($pos === FALSE) {
    $pos = strpos($base_url, '/profiles/');
  }
  $base_url = substr($base_url, 0, $pos); // drupal root absolute url

  CRM_Utils_System::loadBootStrap(CRM_Core_DAO::$_nullArray,true,false);

  // check if user has access permission...
  if (CRM_Core_Permission::check('access CiviCRM')) {
    return true;
  }
  return false;
}

function authenticate_wordpress($config) {
  // make sure user has access to civicrm
  CRM_Utils_System::loadBootStrap();
  require_once "CRM/Core/Permission.php";
  if (CRM_Core_Permission::check('access CiviCRM')) {
    return true;
  }
  return false;
}

function authenticate_joomla($config) {
  // make sure only logged in user can see upload / view images
  $joomlaBase = dirname(dirname(dirname(dirname(dirname(dirname(dirname(dirname(__FILE__))))))));

  define( '_JEXEC', 1 );
  define('JPATH_BASE', $joomlaBase);
  define( 'DS', DIRECTORY_SEPARATOR );
  require_once ( JPATH_BASE .DS.'includes'.DS.'defines.php' );
  require_once ( JPATH_BASE .DS.'includes'.DS.'framework.php' );

  $mainframe = JFactory::getApplication('administrator');
  $mainframe->initialise();

  if (JFactory::getUser()->id == 0) {
    return false;
  }
  return true;
}

checkAuthentication( );

//spl_autoload_register('__autoload');

?>
First commit 2018-01-14 15:10:16 +02:00			`<?php`
			`/*`
			`+--------------------------------------------------------------------+`
			`\| CiviCRM version 4.7 \|`
			`+--------------------------------------------------------------------+`
			`\| Copyright CiviCRM LLC (c) 2004-2016 \|`
			`+--------------------------------------------------------------------+`
			`\| This file is a part of CiviCRM. \|`
			`\| \|`
			`\| CiviCRM is free software; you can copy, modify, and distribute it \|`
			`\| under the terms of the GNU Affero General Public License \|`
			`\| Version 3, 19 November 2007 and the CiviCRM Licensing Exception. \|`
			`\| \|`
			`\| CiviCRM is distributed in the hope that it will be useful, but \|`
			`\| WITHOUT ANY WARRANTY; without even the implied warranty of \|`
			`\| MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. \|`
			`\| See the GNU Affero General Public License for more details. \|`
			`\| \|`
			`\| You should have received a copy of the GNU Affero General Public \|`
			`\| License and the CiviCRM Licensing Exception along \|`
			`\| with this program; if not, contact CiviCRM LLC \|`
			`\| at info[AT]civicrm[DOT]org. If you have questions about the \|`
			`\| GNU Affero General Public License or the licensing of CiviCRM, \|`
			`\| see the CiviCRM license FAQ at http://civicrm.org/licensing \|`
			`+--------------------------------------------------------------------+`
			`*/`

			`/**`
			`* This file handles integration of KCFinder with wysiwyg editors`
			`* supported by CiviCRM`
			`* Ckeditor and tinyMCE`
			`*`
			`* @package CRM`
			`* @copyright CiviCRM LLC (c) 2004-2016`
			`* $Id$`
			`*`
			`*/`

			`function checkAuthentication() {`
			`static $authenticated;`
			`if ( !isset( $authenticated ) ) {`
			`$current_cwd = getcwd();`
			`$civicrm_root = dirname(dirname(getcwd()));`
			`$authenticated = false;`
			`require_once "{$civicrm_root}/civicrm.config.php";`
			`require_once 'CRM/Core/Config.php';`

			`$config = CRM_Core_Config::singleton();`

			`if ( !isset($_SESSION['KCFINDER'] ) ) {`
			`$_SESSION['KCFINDER'] = array();`
			`}`

			`$auth_function = null;`
			`switch ($config->userFramework) {`
			`case 'Drupal':`
			`case 'Drupal6':`
			`$auth_function = 'authenticate_drupal';`
			`break;`
			`case 'Joomla':`
			`$auth_function = 'authenticate_joomla';`
			`break;`
			`case 'WordPress':`
			`$auth_function = 'authenticate_wordpress';`
			`break;`
			`}`
			`if(!$auth_function($config)) {`
			`CRM_Core_Error::fatal(ts("You must be logged in with proper permissions to edit, add, or delete uploaded images."));`
			`}`

			`$_SESSION['KCFINDER']['disabled'] = false;`
			`$_SESSION['KCFINDER']['uploadURL'] = $config->imageUploadURL;`
			`$_SESSION['KCFINDER']['uploadDir'] = $config->imageUploadDir;`

			`$authenticated = true;`
			`chdir( $current_cwd );`
			`}`
			`}`

			`/**`
			`* If the user is already logged into Drupal, bootstrap`
			`* drupal with this user's permissions. Thanks to integrate/drupal.php`
			`* script for hints on how to do this.`
			`**/`
			`function authenticate_drupal($config) {`
			`global $base_url;`
			`$base_root = (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == 'on') ? 'https' : 'http';`
			`$base_url = $base_root .= '://'. preg_replace('/[^a-z0-9-:._]/i', '', $_SERVER['HTTP_HOST']);`

			`if ($dir = trim(dirname($_SERVER['SCRIPT_NAME']), '\,/')) {`
			`$base_path = "/$dir";`
			`$base_url .= $base_path;`
			`}`

			`// correct base_url so it points to Drupal root`
			`$pos = strpos($base_url, '/sites/');`
			`if ($pos === FALSE) {`
			`$pos = strpos($base_url, '/profiles/');`
			`}`
			`$base_url = substr($base_url, 0, $pos); // drupal root absolute url`

			`CRM_Utils_System::loadBootStrap(CRM_Core_DAO::$_nullArray,true,false);`

			`// check if user has access permission...`
			`if (CRM_Core_Permission::check('access CiviCRM')) {`
			`return true;`
			`}`
			`return false;`
			`}`

			`function authenticate_wordpress($config) {`
			`// make sure user has access to civicrm`
			`CRM_Utils_System::loadBootStrap();`
			`require_once "CRM/Core/Permission.php";`
			`if (CRM_Core_Permission::check('access CiviCRM')) {`
			`return true;`
			`}`
			`return false;`
			`}`

			`function authenticate_joomla($config) {`
			`// make sure only logged in user can see upload / view images`
			`$joomlaBase = dirname(dirname(dirname(dirname(dirname(dirname(dirname(dirname(__FILE__))))))));`

			`define( '_JEXEC', 1 );`
			`define('JPATH_BASE', $joomlaBase);`
			`define( 'DS', DIRECTORY_SEPARATOR );`
			`require_once ( JPATH_BASE .DS.'includes'.DS.'defines.php' );`
			`require_once ( JPATH_BASE .DS.'includes'.DS.'framework.php' );`

			`$mainframe = JFactory::getApplication('administrator');`
			`$mainframe->initialise();`

			`if (JFactory::getUser()->id == 0) {`
			`return false;`
			`}`
			`return true;`
			`}`

			`checkAuthentication( );`

			`//spl_autoload_register('__autoload');`

			`?>`