4 * This module still needs a lot of work, but is functional today.
5 * Please review this section if you upgrade because things will change.
6 * If you have issues upgrading, remove facebook from the addon list,
7 * view a page on your site, then add it back to the list. This will reset
8 * all of the plugin 'hooks'.
10 * 1. register an API key for your site from developer.facebook.com
11 * a. We'd be very happy if you include "Friendika" in the application name
12 * to increase name recognition. The Friendika icons are also present
13 * in the images directory and may be uploaded as a Facebook app icon.
14 * Use images/ff-16.jpg for the Icon and images/ff-128.jpg for the Logo.
15 * b. The url should be your site URL with a trailing slash.
16 * You may use http://portal.friendika.com/privacy as the privacy policy
17 * URL unless your site has different requirements, and
18 * http://portal.friendika.com as the Terms of Service URL unless
19 * you have different requirements. (Friendika is a software application
20 * and does not require Terms of Service, though your installation of it might).
21 * c. Set the following values in your .htconfig.php file
22 * $a->config['facebook']['appid'] = 'xxxxxxxxxxx';
23 * $a->config['facebook']['appsecret'] = 'xxxxxxxxxxxxxxx';
24 * Replace with the settings Facebook gives you.
25 * 2. Enable the facebook plugin by including it in .htconfig.php - e.g.
26 * $a->config['system']['addon'] = 'plugin1,plugin2,facebook';
27 * 3. Visit your site url + '/facebook' (e.g. http://example.com/facebook)
28 * and click 'Install Facebook posting'.
29 * 4. This will ask you to login to Facebook and grant permission to the
30 * plugin to do its stuff. Allow it to do so.
31 * 5. You're done. To turn it off visit your site's /facebook page again and
32 * 'Remove Facebook posting'.
34 * Turn logging on (see the github Friendika wiki page 'Settings') and
35 * repeat these steps if you have trouble.
36 * Vidoes and embeds will not be posted if there is no other content. Links
37 * and images will be converted to text and long posts truncated - with a link
38 * to view the full post. Posts with permission settings and comments will
39 * not be posted to Facebook.
43 define('FACEBOOK_MAXPOSTLEN', 420);
45 /* declare the facebook_module function so that /facebook url requests will land here */
47 function facebook_module() {}
51 /* If a->argv[1] is a nickname, this is a callback from Facebook oauth requests. */
53 function facebook_init(&$a) {
59 $r = q("SELECT `uid` FROM `user` WHERE `nickname` = '%s' LIMIT 1",
66 $auth_code = (($_GET['code']) ? $_GET['code'] : '');
67 $error = (($_GET['error_description']) ? $_GET['error_description'] : '');
71 logger('facebook_init: Error: ' . $error);
73 if($auth_code && $uid) {
75 $appid = get_config('facebook','appid');
76 $appsecret = get_config('facebook', 'appsecret');
78 $x = fetch_url('https://graph.facebook.com/oauth/access_token?client_id='
79 . $appid . '&client_secret=' . $appsecret . '&redirect_uri='
80 . urlencode($a->get_baseurl() . '/facebook/' . $nick)
81 . '&code=' . $auth_code);
83 logger('facebook_init: returned access token: ' . $x, LOGGER_DATA);
85 if(strpos($x,'access_token=') !== false) {
86 $token = str_replace('access_token=', '', $x);
87 if(strpos($token,'&') !== false)
88 $token = substr($token,0,strpos($token,'&'));
89 set_pconfig($uid,'facebook','access_token',$token);
90 set_pconfig($uid,'facebook','post','1');
97 // todo: is this a browser session or a server session? where do we go?
103 function fb_get_self($uid) {
104 $access_token = get_pconfig($uid,'facebook','access_token');
107 $s = fetch_url('https://graph.facebook.com/me/?access_token=' . $access_token);
109 $j = json_decode($s);
110 set_pconfig($uid,'facebook','self_id',(string) $j->id);
116 function fb_get_friends($uid) {
118 $access_token = get_pconfig($uid,'facebook','access_token');
121 $s = fetch_url('https://graph.facebook.com/me/friends?access_token=' . $access_token);
123 logger('facebook: fb_get_friends: ' . $s);
124 $j = json_decode($s);
125 logger('facebook: fb_get_friends: json: ' . print_r($j,true), LOGGER_DATA);
126 foreach($j->data as $person) {
127 $s = fetch_url('https://graph.facebook.com/' . $person->id . '?access_token=' . $access_token);
129 $jp = json_decode($s);
130 logger('fb_get_friends: info: ' . print_r($jp,true), LOGGER_DATA);
132 // always use numeric link for consistency
134 $jp->link = 'http://facebook.com/profile.php?id=' . $person->id;
136 // check if we already have a contact
138 $r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `url` = '%s' LIMIT 1",
148 // create contact record
149 $r = q("INSERT INTO `contact` ( `uid`, `created`, `url`, `addr`, `alias`, `notify`, `poll`,
150 `name`, `nick`, `photo`, `network`, `rel`, `priority`,
151 `writable`, `blocked`, `readonly`, `pending` )
152 VALUES ( %d, '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', %d, %d, %d, 0, 0, 0 ) ",
154 dbesc(datetime_convert()),
159 dbesc('facebook ' . $jp->id),
161 dbesc(($jp->nickname) ? $jp->nickname : strtolower($jp->first_name)),
162 dbesc('https://graph.facebook.com/' . $jp->id . '/picture'),
163 dbesc(NETWORK_FACEBOOK),
170 $r = q("SELECT * FROM `contact` WHERE `url` = '%s' AND `uid` = %d LIMIT 1",
180 $contact_id = $r[0]['id'];
182 require_once("Photo.php");
184 $photos = import_profile_photo($r[0]['photo'],$uid,$contact_id);
186 $r = q("UPDATE `contact` SET `photo` = '%s',
192 WHERE `id` = %d LIMIT 1
197 dbesc(datetime_convert()),
198 dbesc(datetime_convert()),
199 dbesc(datetime_convert()),
209 function facebook_post(&$a) {
212 $value = ((x($_POST,'post_by_default')) ? intval($_POST['post_by_default']) : 0);
213 set_pconfig(local_user(),'facebook','post_by_default', $value);
218 function facebook_content(&$a) {
221 notice( t('Permission denied.') . EOL);
225 if($a->argc > 1 && $a->argv[1] === 'remove') {
226 del_pconfig(local_user(),'facebook','post');
227 notice( t('Facebook disabled') . EOL);
230 $fb_installed = get_pconfig(local_user(),'facebook','post');
232 $appid = get_config('facebook','appid');
235 notice( t('Facebook API key is missing.') . EOL);
239 $a->page['htmlhead'] .= '<link rel="stylesheet" type="text/css" href="'
240 . $a->get_baseurl() . '/addon/facebook/facebook.css' . '" media="all" />' . "\r\n";
242 $o .= '<h3>' . t('Facebook Connect') . '</h3>';
244 if(! $fb_installed) {
245 $o .= '<div id="facebook-enable-wrapper">';
247 $o .= '<a href="https://www.facebook.com/dialog/oauth?client_id=' . $appid . '&redirect_uri='
248 . $a->get_baseurl() . '/facebook/' . $a->user['nickname'] . '&scope=publish_stream,read_stream,offline_access">' . t('Install Facebook post connector') . '</a>';
253 $o .= '<div id="facebook-disable-wrapper">';
255 $o .= '<a href="' . $a->get_baseurl() . '/facebook/remove' . '">' . t('Remove Facebook post connector') . '</a></div>';
257 $o .= '<div id="facebook-post-default-form">';
258 $o .= '<form action="facebook" method="post" >';
259 $post_by_default = get_pconfig(local_user(),'facebook','post_by_default');
260 $checked = (($post_by_default) ? ' checked="checked" ' : '');
261 $o .= '<input type="checkbox" name="post_by_default" value="1"' . $checked . '/>' . ' ' . t('Post to Facebook by default') . '<br />';
262 $o .= '<input type="submit" name="submit" value="' . t('Submit') . '" /></form></div>';
268 function facebook_install() {
269 register_hook('post_local_end', 'addon/facebook/facebook.php', 'facebook_post_hook');
270 register_hook('jot_networks', 'addon/facebook/facebook.php', 'facebook_jot_nets');
271 register_hook('plugin_settings', 'addon/facebook/facebook.php', 'facebook_plugin_settings');
272 register_hook('cron', 'addon/facebook/facebook.php', 'facebook_cron');
276 function facebook_uninstall() {
277 unregister_hook('post_local_end', 'addon/facebook/facebook.php', 'facebook_post_hook');
278 unregister_hook('jot_networks', 'addon/facebook/facebook.php', 'facebook_jot_nets');
279 unregister_hook('plugin_settings', 'addon/facebook/facebook.php', 'facebook_plugin_settings');
280 unregister_hook('cron', 'addon/facebook/facebook.php', 'facebook_cron');
284 function facebook_cron($a,$b) {
286 $last = get_config('facebook','last_poll');
289 $next = $last + 3600;
294 logger('facebook_cron');
296 set_config('facebook','last_poll', time());
298 $r = q("SELECT * FROM `pconfig` WHERE `cat` = 'facebook' AND `k` = 'post' AND `v` = '1' ");
301 // check for new friends once a day
302 $last_friend_check = get_pconfig($uid,'facebook','friend_check');
303 if($last_friend_check)
304 $next_friend_check = $last_friend_check + 86400;
305 if($next_friend_check <= time()) {
306 fb_get_friends($uid);
307 set_pconfig($uid,'facebook','friend_check',time());
309 fb_consume_all($rr['uid']);
316 function facebook_plugin_settings(&$a,&$b) {
318 $b .= '<div class="settings-block">';
319 $b .= '<h3>' . t('Facebook') . '</h3>';
320 $b .= '<a href="facebook">' . t('Facebook Connector Settings') . '</a><br />';
325 function facebook_jot_nets(&$a,&$b) {
329 $fb_post = get_pconfig(local_user(),'facebook','post');
330 if(intval($fb_post) == 1) {
331 $fb_defpost = get_pconfig(local_user(),'facebook','post_by_default');
332 $selected = ((intval($fb_defpost) == 1) ? ' checked="checked" ' : '');
333 $b .= '<div class="profile-jot-net"><input type="checkbox" name="facebook_enable"' . $selected . 'value="1" /> '
334 . t('Post to Facebook') . '</div>';
339 function facebook_post_hook(&$a,&$b) {
342 * Post to Facebook stream
345 require_once('include/group.php');
347 logger('Facebook post');
352 if((local_user()) && (local_user() == $b['uid'])) {
355 $r = q("SELECT * FROM `item` WHERE `id` = %d AND `uid` = %d LIMIT 1",
356 intval($b['parent']),
359 if(count($r) && substr($r[0]['uri'],0,4) === 'fb::')
360 $reply = substr($r[0]['uri'],4);
363 logger('facebook reply id=' . $reply);
366 if($b['private'] && $reply == false) {
367 $allow_people = expand_acl($b['allow_cid']);
368 $allow_groups = expand_groups(expand_acl($b['allow_gid']));
369 $deny_people = expand_acl($b['deny_cid']);
370 $deny_groups = expand_groups(expand_acl($b['deny_gid']));
372 $recipients = array_unique(array_merge($allow_people,$allow_groups));
373 $deny = array_unique(array_merge($deny_people,$deny_groups));
375 $allow_str = dbesc(implode(', ',$recipients));
376 $r = q("SELECT `notify` FROM `contact` WHERE `id` IN ( $allow_str ) AND `network` = 'face'");
377 $allow_arr = array();
380 $allow_arr[] = $rr['notify'];
382 $deny_str = dbesc(implode(', ',$deny));
383 $r = q("SELECT `notify` FROM `contact` WHERE `id` IN ( $deny_str ) AND `network` = 'face'");
387 $deny_arr[] = $rr['notify'];
388 if(count($deny_arr) && (! count($allow_arr))) {
390 // One or more FB folks were denied access but nobody on FB was specifically allowed access.
391 // This might cause the post to be open to public on Facebook, but only to selected members
392 // on another network. Since this could potentially leak a post to somebody who was denied,
393 // we will skip posting it to Facebook with a slightly vague but relevant message that will
394 // hopefully lead somebody to this code comment for a better explanation of what went wrong.
396 notice( t('Post to Facebook cancelled because of multi-network access permission conflict.') . EOL);
401 // if it's a private message but no Facebook members are allowed or denied, skip Facebook post
403 if((! count($allow_arr)) && (! count($deny_arr)))
407 if($b['verb'] == ACTIVITY_LIKE)
411 $appid = get_config('facebook', 'appid' );
412 $secret = get_config('facebook', 'appsecret' );
414 if($appid && $secret) {
416 logger('facebook: have appid+secret');
418 $fb_post = intval(get_pconfig(local_user(),'facebook','post'));
419 $fb_enable = (($fb_post && x($_POST,'facebook_enable')) ? intval($_POST['facebook_enable']) : 0);
420 $fb_token = get_pconfig(local_user(),'facebook','access_token');
422 logger('facebook: $fb_post: ' . $fb_post . ' $fb_enable: ' . $fb_enable . ' $fb_token: ' . $fb_token,LOGGER_DEBUG);
424 // post to facebook if it's a public post and we've ticked the 'post to Facebook' box,
425 // or it's a private message with facebook participants
426 // or it's a reply or likes action to an existing facebook post
428 if($fb_post && $fb_token && ($fb_enable || $b['private'] || $reply)) {
429 logger('facebook: able to post');
430 require_once('library/facebook.php');
431 require_once('include/bbcode.php');
435 logger('Facebook post: original msg=' . $msg, LOGGER_DATA);
437 // make links readable before we strip the code
439 $msg = preg_replace("/\[url=(.+?)\](.+?)\[\/url\]/is",'$2 $1',$msg);
441 $msg = preg_replace("/\[img\](.+?)\[\/img\]/is", t('Image: ') . '$1',$msg);
443 $msg = trim(strip_tags(bbcode($msg)));
444 $msg = html_entity_decode($msg,ENT_QUOTES,'UTF-8');
446 if (strlen($msg) > FACEBOOK_MAXPOSTLEN) {
448 require_once('library/slinky.php');
450 $display_url = $a->get_baseurl() . '/display/' . $a->user['nickname'] . '/' . $b['id'];
451 $slinky = new Slinky( $display_url );
452 // setup a cascade of shortening services
453 // try to get a short link from these services
454 // in the order ur1.ca, trim, id.gd, tinyurl
455 $slinky->set_cascade( array( new Slinky_UR1ca(), new Slinky_Trim(), new Slinky_IsGd(), new Slinky_TinyURL() ) );
456 $shortlink = $slinky->short();
457 // the new message will be shortened such that "... $shortlink"
458 // will fit into the character limit
459 $msg = substr($msg, 0, FACEBOOK_MAXPOSTLEN - strlen($shortlink) - 4);
460 $msg .= '... ' . $shortlink;
465 logger('Facebook post: msg=' . $msg, LOGGER_DATA);
468 $postvars = array('access_token' => $fb_token);
472 'access_token' => $fb_token,
477 if(($b['private']) && (! $b['parent'])) {
478 $postvars['privacy'] = '{"value": "CUSTOM", "friends": "SOME_FRIENDS"';
479 if(count($allow_arr))
480 $postvars['privacy'] .= ',"allow": "' . implode(',',$allow_arr) . '"';
482 $postvars['privacy'] .= ',"deny": "' . implode(',',$deny_arr) . '"';
483 $postvars['privacy'] .= '}';
489 $postvars['actions'] = '{"name": "' . t('View on Friendika') . '", "link": "' . $b['plink'] . '"}';
493 $url = 'https://graph.facebook.com/' . $reply . '/' . (($likes) ? 'likes' : 'comments');
496 $url = 'https://graph.facebook.com/me/feed';
498 logger('facebook: post to ' . $url);
499 logger('facebook: postvars: ' . print_r($postvars,true));
501 $x = post_url($url, $postvars);
503 logger('Facebook post returns: ' . $x, LOGGER_DEBUG);
511 function fb_consume_all($uid) {
513 require_once('include/items.php');
515 $access_token = get_pconfig($uid,'facebook','access_token');
518 $s = fetch_url('https://graph.facebook.com/me/feed?access_token=' . $access_token);
520 $j = json_decode($s);
521 logger('fb_consume_stream: wall: ' . print_r($j,true), LOGGER_DATA);
522 fb_consume_stream($uid,$j,true);
524 $s = fetch_url('https://graph.facebook.com/me/home?access_token=' . $access_token);
526 $j = json_decode($s);
527 logger('fb_consume_stream: feed: ' . print_r($j,true), LOGGER_DATA);
528 fb_consume_stream($uid,$j,false);
533 function fb_consume_stream($uid,$j,$wall = false) {
536 $self = q("SELECT * FROM `contact` WHERE `self` = 1 AND `uid` = %d LIMIT 1",
540 $user = q("SELECT `nickname` FROM `user` WHERE `uid` = %d LIMIT 1",
544 $my_local_url = $a->get_baseurl() . '/profile/' . $user[0]['nickname'];
547 $self_id = get_pconfig($uid,'facebook','self_id');
548 if(! count($j->data) || (! strlen($self_id)))
551 foreach($j->data as $entry) {
552 logger('fb_consume: entry: ' . print_r($entry,true), LOGGER_DATA);
555 $app = $entry->application;
556 if($app->id == get_config('facebook','appid') && $wall)
560 $r = q("SELECT * FROM `item` WHERE `wall` = 1 AND `uid` = %d AND `created` > '%s' AND `created` < '%s' AND `deleted` = 0 LIMIT 1",
562 dbesc(datetime_convert('UTC','UTC',$entry->created_time . ' - 1 minute')),
563 dbesc(datetime_convert('UTC','UTC',$entry->created_time . ' + 1 minute'))
567 $r = q("SELECT * FROM `item` WHERE `uri` = '%s' AND `uid` = %d AND `deleted` = 0 LIMIT 1",
568 dbesc('fb::' . $entry->id),
575 $top_item = $r[0]['id'];
578 $post_exists = false;
583 $datarray['gravity'] = 0;
584 $datarray['uid'] = $uid;
585 $datarray['wall'] = (($wall) ? 1 : 0);
586 $datarray['uri'] = $datarray['parent-uri'] = 'fb::' . $entry->id;
587 $from = $entry->from;
588 if($from->id == $self_id)
589 $datarray['contact-id'] = $self[0]['id'];
591 $r = q("SELECT * FROM `contact` WHERE `notify` = '%s' AND `uid` = %d LIMIT 1",
596 $datarray['contact-id'] = $r[0]['id'];
598 $datarray['verb'] = ACTIVITY_POST;
600 $datarray['owner-name'] = $self[0]['name'];
601 $datarray['owner-link'] = $self[0]['url'];
602 $datarray['owner-avatar'] = $self[0]['thumb'];
604 $datarray['author-name'] = $from->name;
605 $datarray['author-link'] = 'http://facebook.com/profile.php?id=' . $from->id;
606 $datarray['author-avatar'] = 'https://graph.facebook.com/' . $from->id . '/picture';
607 $datarray['plink'] = $datarray['author-link'] . '&v=wall&story_fbid=' . substr($entry->id,strpos($entry->id,'_') + 1);
609 $datarray['body'] = $entry->message;
611 $datarray['body'] .= "\n\n" . '[img]' . $entry->picture . '[/img]';
613 $datarray['body'] .= "\n" . linkify($entry->link);
615 $datarray['body'] .= "\n" . $entry->name;
617 $datarray['body'] .= "\n" . $entry->caption;
618 if($entry->description)
619 $datarray['body'] .= "\n" . $entry->description;
620 $datarray['created'] = datetime_convert('UTC','UTC',$entry->created_time);
621 $datarray['edited'] = datetime_convert('UTC','UTC',$entry->updated_time);
622 if($entry->privacy && $entry->privacy->value !== 'EVERYONE')
623 $datarray['private'] = 1;
624 $top_item = item_store($datarray);
625 $r = q("SELECT * FROM `item` WHERE `id` = %d AND `uid` = %d LIMIT 1",
633 $likers = $entry->likes->data;
634 $comments = $entry->comments->data;
636 if(is_array($likers)) {
637 foreach($likers as $likes) {
639 $r = q("SELECT * FROM `item` WHERE `parent-uri` = '%s' AND `uid` = %d AND `verb` = '%s' AND `author-link` = '%s'
641 dbesc('fb::' . $entry->id),
643 dbesc(ACTIVITY_LIKE),
644 dbesc('http://facebook.com/profile.php?id=' . $likes->id)
650 $likedata['parent'] = $top_item;
651 $likedata['verb'] = ACTIVITY_LIKE;
654 $likedata['gravity'] = 3;
655 $likedata['uid'] = $uid;
656 $likedata['wall'] = (($wall) ? 1 : 0);
657 $likedata['uri'] = item_new_uri($a->get_baseurl(), $uid);
658 $likedata['parent-uri'] = 'fb::' . $entry->id;
659 if($likes->id == $self_id)
660 $likedata['contact-id'] = $self[0]['id'];
662 $r = q("SELECT * FROM `contact` WHERE `notify` = '%s' AND `uid` = %d LIMIT 1",
667 $likedata['contact-id'] = $r[0]['id'];
669 if(! x($likedata,'contact-id'))
670 $likedata['contact-id'] = $orig_post['contact-id'];
672 $likedata['verb'] = ACTIVITY_LIKE;
673 $likedata['author-name'] = $likes->name;
674 $likedata['author-link'] = 'http://facebook.com/profile.php?id=' . $likes->id;
675 $likedata['author-avatar'] = 'https://graph.facebook.com/' . $likes->id . '/picture';
677 $author = '[url=' . $likedata['author-link'] . ']' . $likedata['author-name'] . '[/url]';
678 $objauthor = '[url=' . $orig_post['author-link'] . ']' . $orig_post['author-name'] . '[/url]';
679 $post_type = t('status');
680 $plink = '[url=' . $orig_post['plink'] . ']' . $post_type . '[/url]';
681 $likedata['object-type'] = ACTIVITY_OBJ_NOTE;
683 $likedata['body'] = sprintf( t('%1$s likes %2$s\'s %3$s'), $author, $objauthor, $plink);
684 $likedata['object'] = '<object><type>' . ACTIVITY_OBJ_NOTE . '</type><local>1</local>' .
685 '<id>' . $orig_post['uri'] . '</id><link>' . xmlify('<link rel="alternate" type="text/html" href="' . $orig_post['plink'] . '">') . '</link><title>' . $orig_post['title'] . '</title><content>' . $orig_post['body'] . '</content></object>';
687 $item = item_store($likedata);
690 if(is_array($comments)) {
691 foreach($comments as $cmnt) {
693 $r = q("SELECT * FROM `item` WHERE `uid` = %d AND `uri` = '%s' LIMIT 1",
695 dbesc('fb::' . $cmnt->id)
701 $cmntdata['parent'] = $top_item;
702 $cmntdata['verb'] = ACTIVITY_POST;
703 $cmntdata['gravity'] = 6;
704 $cmntdata['uid'] = $uid;
705 $cmntdata['wall'] = (($wall) ? 1 : 0);
706 $cmntdata['uri'] = 'fb::' . $cmnt->id;
707 $cmntdata['parent-uri'] = 'fb::' . $entry->id;
708 if($cmnt->from->id == $self_id) {
709 $cmntdata['contact-id'] = $self[0]['id'];
710 // see if I already posted it here locally and we're now getting it back from FB
711 $r = q("SELECT * FROM `item` WHERE `uid` = %d AND `created` > '%s' AND `created` < '%s'
712 AND `parent-uri` = '%s' AND `author-link` = '%s' LIMIT 1",
714 dbesc(datetime_convert('UTC','UTC',$cmnt->created_time . ' - 1 minute')),
715 dbesc(datetime_convert('UTC','UTC',$cmnt->created_time . ' + 1 minute')),
716 dbesc('fb::' . $entry->id),
722 elseif(is_array($orig_post) && (x($orig_post,'contact-id')))
723 $cmntdata['contact-id'] = $orig_post['contact-id'];
725 $r = q("SELECT * FROM `contact` WHERE `notify` = '%s' AND `uid` = %d LIMIT 1",
726 dbesc($cmnt->from->id),
730 $cmntdata['contact-id'] = $r[0]['id'];
732 $cmntdata['created'] = datetime_convert('UTC','UTC',$cmnt->created_time);
733 $cmntdata['edited'] = datetime_convert('UTC','UTC',$cmnt->created_time);
734 $cmntdata['verb'] = ACTIVITY_POST;
735 $cmntdata['author-name'] = $cmnt->from->name;
736 $cmntdata['author-link'] = 'http://facebook.com/profile.php?id=' . $cmnt->from->id;
737 $cmntdata['author-avatar'] = 'https://graph.facebook.com/' . $cmnt->from->id . '/picture';
738 $cmntdata['body'] = $cmnt->message;
739 $item = item_store($cmntdata);