kundenkarte/ajax/anlage_images.php

<?php
/* Copyright (C) 2026 Alles Watt lauft
 *
 * AJAX endpoint to get images for an installation element
 */

if (!defined('NOTOKENRENEWAL')) define('NOTOKENRENEWAL', '1');
if (!defined('NOREQUIREHTML')) define('NOREQUIREHTML', '1');
if (!defined('NOREQUIREAJAX')) define('NOREQUIREAJAX', '1');
if (!defined('NOREQUIRESOC')) define('NOREQUIRESOC', '1');

$res = 0;
if (!$res && file_exists("../../../main.inc.php")) $res = @include "../../../main.inc.php";
if (!$res && file_exists("../../../../main.inc.php")) $res = @include "../../../../main.inc.php";
if (!$res) die("Include of main fails");

dol_include_once('/kundenkarte/class/anlagefile.class.php');
dol_include_once('/kundenkarte/class/anlage.class.php');

header('Content-Type: application/json');

// Berechtigungsprüfung
if (!$user->hasRight('kundenkarte', 'read')) {
	http_response_code(403);
	echo json_encode(['error' => 'Permission denied']);
	exit;
}

$anlageId = GETPOSTINT('anlage_id');

if ($anlageId <= 0) {
	echo json_encode(array('error' => 'Invalid ID', 'images' => array()));
	exit;
}

// Get the anlage to know the socid
$anlage = new Anlage($db);
if ($anlage->fetch($anlageId) <= 0) {
	echo json_encode(array('error' => 'Element not found', 'images' => array()));
	exit;
}

// Get images for this element
$anlagefile = new AnlageFile($db);
$files = $anlagefile->fetchAllByAnlage($anlageId, 'image');

$images = array();
foreach ($files as $file) {
	$images[] = array(
		'id' => $file->id,
		'name' => $file->filename,
		'url' => $file->getUrl(),
		'thumb' => $file->getThumbUrl() ?: $file->getUrl(),
	);
}

echo json_encode(array('images' => $images));