1 | <?php |
||
2 | |||
3 | /** |
||
4 | * webtrees: online genealogy |
||
5 | * Copyright (C) 2023 webtrees development team |
||
6 | * This program is free software: you can redistribute it and/or modify |
||
7 | * it under the terms of the GNU General Public License as published by |
||
8 | * the Free Software Foundation, either version 3 of the License, or |
||
9 | * (at your option) any later version. |
||
10 | * This program is distributed in the hope that it will be useful, |
||
11 | * but WITHOUT ANY WARRANTY; without even the implied warranty of |
||
12 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
||
13 | * GNU General Public License for more details. |
||
14 | * You should have received a copy of the GNU General Public License |
||
15 | * along with this program. If not, see <https://www.gnu.org/licenses/>. |
||
16 | */ |
||
17 | |||
18 | declare(strict_types=1); |
||
19 | |||
20 | namespace Fisharebest\Webtrees\Http\Middleware; |
||
21 | |||
22 | use Fig\Http\Message\StatusCodeInterface; |
||
23 | use Fisharebest\Webtrees\Mime; |
||
24 | use Fisharebest\Webtrees\Webtrees; |
||
25 | use Psr\Http\Message\ResponseInterface; |
||
26 | use Psr\Http\Message\ServerRequestInterface; |
||
27 | use Psr\Http\Server\MiddlewareInterface; |
||
28 | use Psr\Http\Server\RequestHandlerInterface; |
||
29 | |||
30 | use function file_exists; |
||
31 | use function file_get_contents; |
||
32 | use function pathinfo; |
||
33 | use function response; |
||
34 | use function str_starts_with; |
||
35 | use function strtoupper; |
||
36 | |||
37 | use const PATHINFO_EXTENSION; |
||
38 | |||
39 | /** |
||
40 | * Provide access to files in the folder /public, for cli-server requests and in case the web-server doesn't do this. |
||
41 | */ |
||
42 | class PublicFiles implements MiddlewareInterface |
||
43 | { |
||
44 | public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface |
||
45 | { |
||
46 | $path = $request->getUri()->getPath(); |
||
47 | if (str_starts_with($path, '/public/') && !str_contains($path, '..')) { |
||
48 | $file = Webtrees::ROOT_DIR . $path; |
||
49 | |||
50 | if (file_exists($file)) { |
||
51 | $content = file_get_contents($file); |
||
52 | $extension = strtoupper(pathinfo($file, PATHINFO_EXTENSION)); |
||
0 ignored issues
–
show
Bug
introduced
by
Loading history...
|
|||
53 | $mime_type = Mime::TYPES[$extension] ?? Mime::DEFAULT_TYPE; |
||
54 | |||
55 | return response($content, StatusCodeInterface::STATUS_OK, [ |
||
56 | 'cache-control' => 'public,max-age=31536000', |
||
57 | 'content-type' => $mime_type, |
||
58 | ]); |
||
59 | } |
||
60 | } |
||
61 | |||
62 | return $handler->handle($request); |
||
63 | } |
||
64 | } |
||
65 |