<?php
	/**
	 * Copyright 2000, 2001, 2002 Philipp von Klitzing
	 * Copyright 2003, 2004, 2005, 2006, 2007, 2008, 2009 Wim van Ravesteijn
	 *
	 * This file is part of AEGEE-Europe Statutory Event Applications.
	 *
	 * AEGEE-Europe Statutory Event Applications is free software: you can
	 * redistribute it and/or modify it under the terms of the GNU General
	 * Public License as published by the Free Software Foundation, either
	 * version 3 of the License, or (at your option) any later version.
	 *
	 * AEGEE-Europe Statutory Event Applications is distributed in the hope
	 * that it will be useful, but WITHOUT ANY WARRANTY; without even the
	 * implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR
	 * PURPOSE.  See the GNU General Public License for more details.
	 *
	 * You should have received a copy of the GNU General Public License
	 * along with AEGEE-Europe Statutory Event Applications.  If not, see
	 * <http://www.gnu.org/licenses/>.
	 */
	// call: photo.php?id=$id

	include("./../config.php");
	include("./../include/mysql.php");
	include("./../include/globals.php");
	include("./../include/functions.php");

	if( isset($_GET['candidate']) ) {
		$query = "SELECT `FirstName`, `LastName`, `photo` FROM `candidates` WHERE `id` = " . addslashes(get_int('id'));
		if( !isset($_SESSION['sess_uid']) || $_SESSION['sess_uid'] <= 0 ) {
			$query .= " AND `Approved`='yes'";
		}
	}elseif( isset($_SESSION['sess_uid']) && $_SESSION['sess_uid'] > 0 ) {
		$query = "SELECT `FirstName`, `LastName`, `photo` FROM `applications` WHERE `id`=" . addslashes(get_int('id'));
	}
	if( isset($query) && @mysql_num_rows( $res=doquery($query) )==1 ) {
		$row=mysql_fetch_array($res);
		if( strlen($row['photo'])>0 ) {
			header("Content-type: image/jpeg");
			header("Content-disposition: inline; filename=\"Photo ".$row['FirstName']." ".$row['LastName'].".jpg\"");
			echo $row['photo'];
		}else {
			header("Content-type: image/png");
			$im = ImageCreate(120, 50);
			$background_color = ImageColorAllocate($im, 104, 103, 222);
			$text_color = ImageColorAllocate($im, 242, 186, 47);
			ImageString($im, 2, 5, 5, "No photo available", $text_color);
			ImageString($im, 2, 5, 20, "for this person", $text_color);
			ImagePNG($im);
			ImageDestroy($im);
		}
		mysql_free_result($res);
	}else {
		// No photo found, show error picture
		header("Content-type: image/png");
		$im = ImageCreate(120, 50);
		$background_color = ImageColorAllocate($im, 104, 103, 222);
		$text_color = ImageColorAllocate($im, 242, 186, 47);
		ImageString($im, 2, 5, 5, "Access denied", $text_color);
		ImagePNG($im);
		ImageDestroy($im);
	}
?>