[RELEASE] Image Gallery Hack v0.9

How do all..

I am going to release my image gallery hack (in action http://www.overgrow.com/edge/index.php) without the admin piece.. I am still trying to finish it up without having to re-write all the vB delete routines.. Plus some of you may want to write your own way of administering the images that get uploaded and keeping things clean..

When my admin piece is finished I will post it here as well..

Features: Not too many.. very basic..

-- Only allows gif or jpg files to be uploaded.. I'm sure you can easily modify this for other file types.. PHP really makes things easy..

-- To start a thread in the gallery you must upload an image.. (doesn't apply when replying)

-- You can set a file size limit for upload..

-- Stores information in a new vB table for use later.. (ie; admin stuff. Currently the admin piece is in progress..)

You can download the instructions here - http://www.overgrow.com/tmp/imggalhack.zip

It is a fairly simple hack with a few mods to global.php, newthread.php and newreply.php and a few new templates.. It is not automated, the download is just a text file with the modification intructions..

Please let me know if I made the instructions to confusing and what ya think..

Have Fun..
Herb

I checked the file date under FTP and it's last modified is 10-01-00 so you have the latest version. Glad you like it! Our users couldn't live without it.

I know the feeling! Looking at your site also!

Sorry, don't mean to full your thread full of non-bugs!

*thinking*

hey there.

Would it be possible to make a forum where it had thumbnails also?

I'm thinking of making a place like this and wonder if you would mind if I could modify your code to display the pictures as a thumbnailed list.... It would of course do a check for mogrify, etc.

SC - You may do what you wish with the code..

Current zip includes the security fix..

Herb

Excellent hack! I'm busy integrating it into the pages of Breaking Art - what better use than an art gallery?!

Noticed that the current zip does not correctly limit file size. However replace $secured_size with $fileupload_size in the instructions and it works fine..

Have some plans for how I can enhance the hack. If they get anywhere then I'll let you all know!

Alan

--
http://www.breakingart.com/
breaking art from a different perspective

This is a great hack but i have 2 issues...

1) Can you make it work in preview mode? Right now it wont let you preview a uploaded picture, so you have to post it then edit it after if it didnt come out right.

2) Can this please work with normal forums, I want this hack to be an addition to a regular forum.
Right now if i don't upload a picture it fails to post just text.

Thanks

Quote:

Originally posted by Herb
conan - I uploaded the new zip with the correct create table fields.. sorry about that..

Quote:

Ok in newthread.php find this code that you added for the hack..

Code:

if (isset($fileupload)){

and change it to

Code:

if (isset($fileupload) and $fileupload != "none") {

Then below the above should be

Code:

if ($fileupload == "none") {
       eval("echo standarderror(\$bbtitle,\"".gettemplate("error_filenone")."\");");
       exit();
       }

Remove that check..

Then find

Code:

    // ##### Image Upload Hack (update image table) #####

      if (isset($fileupload)) {

      $DB_site->query("INSERT INTO imagegal (imagegalid,postid,upimage,username,userid) VALUES ('NULL','$mypostid','$TheFileNameIs','".addslashes($username)."','$userid')");

      }

    // ##### Image Upload Hack (update image table) #####

and change it to:

Code:

    // ##### Image Upload Hack (update image table) #####

      if (isset($fileupload) and $fileupload != "none") { {

      $DB_site->query("INSERT INTO imagegal (imagegalid,postid,upimage,username,userid) VALUES ('NULL','$mypostid','$TheFileNameIs','".addslashes($username)."','$userid')");

      }

    // ##### Image Upload Hack (update image table) #####

I think that should do it for ya..

Herb



[Edited by Herb on 09-29-2000 at 10:25 AM]

There were 2 { in your code above in case anyone tries this...

I made a modification to this. If anyone knows if this is secure, would appreciate the feedback.

I like to be able to separate the uploads into a user directory. Personally I think it's tricky to give the username a directory due to funny characters, but with vb, we can use userid which is always a number and always safe.

So in newthread.php, instead of the instruction, simply add

Code:

       mkdir ("$uppath/$userid", 0777);
       copy("$secured","$uppath/$userid/$secured_name");

probably you can be more restrictive than 0777. Also, this code goes right above

Code:

       $TheFileNameIs = $secured_name;
       $TheFileLinkIs = "\n\n\[img\]$bburl/$upfolder/$userid/$TheFileNameIs\[/img\]";
       $message = "$message".stripslashes($TheFileLinkIs)."";

and instead of saving your files to an upload directory, it will save it to upload/$userid/*.gif if you know what I mean.

ok, tightened the permissions to more restrictive and checked if the file exists first:

Code:

       if (!is_dir("$uppath/$userid")){
       	mkdir ("$uppath/$userid", 0766);
       }

I keep getting this error when trying to post an image:

Quote:

Warning: Unable to open '/tmp/phpjv2608' for reading: No such file or directory in /web/dojo/paintball/forums/newthread.php on line 208

It seems as though it does not create the temporary directory. I've even tried changing the code in global.php to have to write to another temporary directory called "galtmp" and set the correct permissions and ownerships and it still did not work.

I think the code in global.php is not creating the temporary name directory in the "/tmp" directory.

Can someone please help me. I'd love to have this feature setup.

Thanks.