throw new Exception('exception_invalidrequest'); } $objAlbum = new clsAlbum($objPicture->get('album_id')); if (!$objAlbum->canView($objUser)) { throw new Exception('exception_invalidrequest'); } if (isset($_REQUEST['tn']) || isset($_REQUEST['action']) && $_REQUEST['action'] == 'tn') { $intWidth = isset($_REQUEST['w']) ? $_REQUEST['w'] : -1; $intHeight = isset($_REQUEST['h']) ? $_REQUEST['h'] : -1; if (!is_numeric($intWidth) || $intWidth < 0 || $intWidth > MAX_X) { throw new Exception('exception_invalidrequest'); } if (!is_numeric($intHeight) || $intHeight < 0 || $intHeight > MAX_Y) { throw new Exception('exception_invalidrequest'); } $objThumbnail = clsThumbnail::getThumbnail($objUser, $objPicture->get('id'), $intWidth, $intHeight, $objAlbum); if (is_string($objThumbnail)) { throw new Exception($objThumbnail); } if ($objPicture->hasViewed($objUser)) { header('Last-modified: ' . $objThumbnail->get('date')); header('Expires: ' . (date('Y-m-d H:i:s') + 60 * 60 * 24)); header('Cache-control: public'); header('Pragma: public'); } $objThumbnail->setMime(); echo $objThumbnail->getImageRaw($objUser); } else { $objPicture->load(); header('Last-modified: ' . $objPicture->get('date')); header('Expires: ' . (date('Y-m-d H:i:s') + 60 * 60 * 24));