public function access_protected_resource()
{
global $CONFIG, $THEME_DIR, $USER, $CAT_LIST;
global $cpg_udb;
// Needed for "lastcomby" meta album in picture list
try {
$result = $this->verify('access');
if ($result != null) {
define('API_CALL', true);
$superCage = Inspekt::makeSuperCage();
$matches = $superCage->post->getMatched('function', '/^[a-z]+$/');
switch ($matches[0]) {
case 'upload':
require 'db_input.php';
break;
case 'alblist':
define('IN_COPPERMINE', true);
require 'include/init.inc.php';
pub_user_albums();
upload_form_alb_list('', '');
break;
case 'piclist':
define('IN_COPPERMINE', true);
require 'include/init.inc.php';
if ($superCage->post->getInt('album')) {
pub_user_albums();
upload_form_alb_list('', '');
} else {
if ($album = $superCage->post->getAlpha('album')) {
$allowed = array('lastcom', 'lastcomby', 'lastup', 'lastupby', 'topn', 'toprated', 'lasthits');
if (!in_array($album, $allowed)) {
new OAuthException("Valid meta album names for this function are: 'lastcom', 'lastcomby', 'lastup', 'lastupby', 'topn', 'toprated', and 'lasthits'");
}
$USER['uid'] = USER_ID;
require 'thumbnails.php';
} else {
// No album provided
new OAuthException('No album provided via HTTP POST');
}
}
break;
case 'search':
define('IN_COPPERMINE', true);
require 'include/init.inc.php';
require 'thumbnails.php';
break;
case 'catlist':
define('IN_COPPERMINE', true);
require 'include/init.inc.php';
api_cat_list();
break;
default:
throw new OAuthException('No function specified via HTTP POST');
}
}
} catch (OAuthException $e) {
header('HTTP/1.1 401 Access Denied');
header('Content-Type: text/xml');
throw new OAuthException($e->getMessage());
}
OAuthRequestLogger::flush();
exit;
}
}
}
} else {
//Use the default settings for the number of boxes.
$num_URI_boxes = NUM_URI_BOXES;
$num_file_boxes = NUM_FILE_BOXES;
}
if (empty($num_URI_boxes) && empty($num_file_boxes)) {
$num_URI_boxes = 0;
$num_file_boxes = 1;
}
//send the number of amx files and url to jUpload.js
set_js_var('maxFiles', $num_file_boxes);
set_js_var('maxUrls', $num_URI_boxes);
// Get public and private albums, and set maximum individual file size.
pub_user_albums();
global $public_albums_list, $user_albums_list;
if (!count($public_albums_list) && !count($user_albums_list)) {
// there's no album where the user is allowed to upload to
if (USER_CAN_CREATE_ALBUMS) {
// cpg_die (ERROR, $lang_upload_php['err_no_alb_uploadables'].'<br /> <br /><a href="albmgr.php" title="'.$lang_user_admin_menu['albmgr_title'].'" class="admin_menu">'.$lang_user_admin_menu['albmgr_lnk'].'</a>', __FILE__, __LINE__);
} else {
cpg_die(ERROR, $lang_upload_php['err_no_alb_uploadables'], __FILE__, __LINE__);
}
}
// Assign maximum file size for browser crontrols.
$max_file_size = $CONFIG['max_upl_size'] << 10;
// Create the upload forms using the upload congfiguration.
if (!$superCage->post->keyExists('control')) {
// Do some cleanup in the edit directory.
spring_cleaning('./' . $CONFIG['fullpath'] . 'edit', CPG_HOUR);
