public function run($id) { if (!($fileModel = D3filesModel::findOne(['id' => $id, 'deleted' => 0]))) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } if (!($file = D3files::findOne($fileModel->d3files_id))) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } if (!($fileModelName = D3filesModelName::findOne($fileModel->model_name_id))) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } /** * validate modelname */ if (Yii::$app->getModule('d3files')->disableController) { if ($fileModelName->name != $this->modelName) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } } // Check access rights to the record the file is attached to D3files::performReadValidation($fileModelName->name, $fileModel->model_id); $modelName = $fileModelName->name; if (!$fileModel->is_file) { if (!($realFileModel = D3filesModel::findOne(['d3files_id' => $fileModel->d3files_id, 'is_file' => 1]))) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } if (!($realfileModelName = D3filesModelName::findOne($realFileModel->model_name_id))) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } $modelName = $realfileModelName->name; //$modelName } $fileHandler = new FileHandler(['model_name' => $modelName, 'model_id' => $file->id, 'file_name' => $file->file_name]); $fileHandler->download(); }
public function run($id, $hash) { // Pause every request sleep(1); /** * Validate both parameters: * id - only digits > 0 * hash - only hex, exactly 32 chars long */ if (!preg_match('#^[1-9][0-9]*$#', $id)) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } $hash = strtoupper($hash); if (!preg_match('#^[0-9A-F]{32}$#', $hash)) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } if (!($fileModelShared = D3filesModelShared::find()->where(['and', "id={$id}", "hash='{$hash}'", "left_loadings>0", "expire_date>=CURDATE()"])->one())) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } if (!($fileModel = D3filesModel::findOne(['id' => $fileModelShared->d3files_model_id, 'deleted' => 0, 'is_file' => 1]))) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } if (!($file = D3files::findOne($fileModel->d3files_id))) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } if (!($fileModelName = D3filesModelName::findOne($fileModel->model_name_id))) { throw new NotFoundHttpException(Yii::t('d3files', 'The requested file does not exist.')); } $fileModelShared->left_loadings--; $fileModelShared->save(); $fileHandler = new FileHandler(['model_name' => $fileModelName->name, 'model_id' => $file->id, 'file_name' => $file->file_name]); $fileHandler->download(); }