its all about you, its all about me, its what they said we could be

diff --git a/show.php b/show.php
index 2489d45..5d70a62 100644 (file)
--- a/show.php
+++ b/show.php
@@ -31,6 +31,21 @@ if(isset($_REQUEST["showpic"])) {
        } else {
                header("Status: 404 Not Found");
        }
+} else if(isset($_REQUEST["fullpic"])) {
+       $file = $_REQUEST["fullpic"];
+       if(preg_match("/.*\/+.*/", $_REQUEST["fullpic"])) {
+               error_log("throwing 403");
+               header("Status: 403 i dont think so");
+               return;
+       }
+       $afile = "$show_dir/".$_REQUEST["fullpic"];
+       if(file_exists($afile)) {
+               echo "<html><body><h1>Fullsize picture $file</h1><a href=\"$this_url\"><img width=\"100%\" src=\"$this_url?showpic=$file\"></body></html>";
+       } else {
+               header("Status: 403 i dont think so");
+               return;
+       }
+       return;
 } else if(isset($_REQUEST["medpic"])) {
        $file = $_REQUEST["medpic"];
        if(preg_match("/.*\/+.*/", $_REQUEST["medpic"])) {
@@ -40,11 +55,12 @@ if(isset($_REQUEST["showpic"])) {
        }
        $afile = "$show_dir/".$_REQUEST["medpic"];
        if(file_exists($afile)) {
-               echo "<html><body><h1>Picture $file</h1><a href=\"$this_url?showpic=$file\"><img src=\"$this_url?showmedpic=$file\"></body></html>";
+               echo "<html><body><h1>Picture $file</h1><a href=\"$this_url?fullpic=$file\"><img src=\"$this_url?showmedpic=$file\"></body></html>";
        } else {
                header("Status: 403 i dont think so");
                return;
        }
+       return;
 } else if(isset($_REQUEST["showmedpic"])) {
        if(preg_match("/.*\/+.*/", $_REQUEST["showmedpic"])) {
                error_log("throwing 403");