//get the id provided as a get parameter
if (!isset($_GET['id'])) {
$message = urlencode("You are missing the file id.");
header("Location: error.php?error={$message}");
exit;
}
//if the id provided is not an actual id of a note in the database, error out
$note = Database::getNotesByID($_GET['id']);
if (!isset($note['id'])) {
$message = urlencode("The file with the id provided does not exist.");
header("Location: error.php?error={$message}");
exit;
}
//if the note with the id provided is not an actual file, error out
$path = Database::getUploadPath($note['id'], $note['filetype']);
if (!file_exists($path)) {
//Log the error so that the server knows a file is missing for a valid note
Database::logError("File '{$path}' could not be found\n", false);
$message = urlencode("The file could not be found.");
header("Location: error.php?error={$message}");
exit;
}
//tell browser to expect the mime type of whatever type the file is
$content = Database::getMimeFromType($note['filetype']);
header("Content-type:{$content}");
$fileName = $note['filename'];
//"Course_${note['courseID']}_${mysqldate}";
//tell the browser that the downloaded file's name should be the one in the database
header("Content-Disposition:attachment;filename=\"{$fileName}.{$note['filetype']}\"");
//output the files contents to the browser, allowing user to download file
readfile($path);
