#
#
-use strict;
-use warnings;
+use Modern::Perl;
-use CGI qw ( -utf8 ); #qw(:standard escapeHTML);
+use CGI qw ( -utf8 );
+use C4::Auth qw( check_api_auth );
use C4::Context;
use C4::Members;
+use Koha::Patron::Images;
$|=1;
my $DEBUG = 0;
-my $data = new CGI;
+my $query = new CGI;
my $borrowernumber;
=head1 NAME
=cut
-if ($data->param('borrowernumber')) {
- $borrowernumber = $data->param('borrowernumber');
+my ($status, $cookie, $sessionID) = check_api_auth($query, { catalogue => 1 } );
+
+unless ( $status eq 'ok' ) {
+ print $query->header(-type => 'text/plain', -status => '403 Forbidden');
+ exit 0;
+}
+
+
+
+if ($query->param('borrowernumber')) {
+ $borrowernumber = $query->param('borrowernumber');
} else {
$borrowernumber = shift;
}
warn "Borrowernumber passed in: $borrowernumber" if $DEBUG;
-my ($imagedata, $dberror) = GetPatronImage($borrowernumber);
-
-if ($dberror) {
- warn "Database Error!";
- exit;
-}
+my $patron_image = Koha::Patron::Images->find($borrowernumber);
# NOTE: Never dump the contents of $imagedata->{'patronimage'} via a warn to a log or nasty
# things will result... you have been warned!
-if ($imagedata) {
- print $data->header (-type => $imagedata->{'mimetype'}, -'Cache-Control' => 'no-store', -Content_Length => length ($imagedata->{'imagefile'})), $imagedata->{'imagefile'};
+if ($patron_image) {
+ print $query->header (-type => $patron_image->mimetype, -'Cache-Control' => 'no-store', -Content_Length => length ($patron_image->imagefile)), $patron_image->imagefile;
exit;
} else {
warn "No image exists for $borrowernumber";