3 require_once('include/config.php');
4 require_once('include/network.php');
5 require_once('include/plugin.php');
6 require_once('include/text.php');
7 require_once('include/datetime.php');
8 require_once('include/pgettext.php');
9 require_once('include/nav.php');
10 require_once('include/cache.php');
12 define ( 'FRIENDICA_PLATFORM', 'Friendica');
13 define ( 'FRIENDICA_VERSION', '3.0.1379' );
14 define ( 'DFRN_PROTOCOL_VERSION', '2.23' );
15 define ( 'DB_UPDATE_VERSION', 1149 );
17 define ( 'EOL', "<br />\r\n" );
18 define ( 'ATOM_TIME', 'Y-m-d\TH:i:s\Z' );
23 * Image storage quality. Lower numbers save space at cost of image detail.
24 * For ease of upgrade, please do not change here. Change jpeg quality with
25 * $a->config['system']['jpeg_quality'] = n;
26 * in .htconfig.php, where n is netween 1 and 100, and with very poor results
31 define ( 'JPEG_QUALITY', 100 );
33 * $a->config['system']['png_quality'] from 0 (uncompressed) to 9
35 define ( 'PNG_QUALITY', 8 );
42 define ( 'DEFAULT_DB_ENGINE', 'MyISAM' );
45 * SSL redirection policies
48 define ( 'SSL_POLICY_NONE', 0 );
49 define ( 'SSL_POLICY_FULL', 1 );
50 define ( 'SSL_POLICY_SELFSIGN', 2 );
57 define ( 'LOGGER_NORMAL', 0 );
58 define ( 'LOGGER_TRACE', 1 );
59 define ( 'LOGGER_DEBUG', 2 );
60 define ( 'LOGGER_DATA', 3 );
61 define ( 'LOGGER_ALL', 4 );
64 * registration policies
67 define ( 'REGISTER_CLOSED', 0 );
68 define ( 'REGISTER_APPROVE', 1 );
69 define ( 'REGISTER_OPEN', 2 );
75 define ( 'CONTACT_IS_FOLLOWER', 1);
76 define ( 'CONTACT_IS_SHARING', 2);
77 define ( 'CONTACT_IS_FRIEND', 3);
84 define ( 'HOOK_HOOK', 0);
85 define ( 'HOOK_FILE', 1);
86 define ( 'HOOK_FUNCTION', 2);
89 * DB update return values
92 define ( 'UPDATE_SUCCESS', 0);
93 define ( 'UPDATE_FAILED', 1);
100 * PAGE_NORMAL is a typical personal profile account
101 * PAGE_SOAPBOX automatically approves all friend requests as CONTACT_IS_SHARING, (readonly)
102 * PAGE_COMMUNITY automatically approves all friend requests as CONTACT_IS_SHARING, but with
103 * write access to wall and comments (no email and not included in page owner's ACL lists)
104 * PAGE_FREELOVE automatically approves all friend requests as full friends (CONTACT_IS_FRIEND).
108 define ( 'PAGE_NORMAL', 0 );
109 define ( 'PAGE_SOAPBOX', 1 );
110 define ( 'PAGE_COMMUNITY', 2 );
111 define ( 'PAGE_FREELOVE', 3 );
112 define ( 'PAGE_BLOG', 4 );
113 define ( 'PAGE_PRVGROUP', 5 );
116 * Network and protocol family types
119 define ( 'NETWORK_DFRN', 'dfrn'); // Friendica, Mistpark, other DFRN implementations
120 define ( 'NETWORK_ZOT', 'zot!'); // Zot!
121 define ( 'NETWORK_OSTATUS', 'stat'); // status.net, identi.ca, GNU-social, other OStatus implementations
122 define ( 'NETWORK_FEED', 'feed'); // RSS/Atom feeds with no known "post/notify" protocol
123 define ( 'NETWORK_DIASPORA', 'dspr'); // Diaspora
124 define ( 'NETWORK_MAIL', 'mail'); // IMAP/POP
125 define ( 'NETWORK_MAIL2', 'mai2'); // extended IMAP/POP
126 define ( 'NETWORK_FACEBOOK', 'face'); // Facebook API
127 define ( 'NETWORK_LINKEDIN', 'lnkd'); // LinkedIn
128 define ( 'NETWORK_XMPP', 'xmpp'); // XMPP
129 define ( 'NETWORK_MYSPACE', 'mysp'); // MySpace
130 define ( 'NETWORK_GPLUS', 'goog'); // Google+
132 define ( 'NETWORK_PHANTOM', 'unkn'); // Place holder
135 * These numbers are used in stored permissions
136 * and existing allocations MUST NEVER BE CHANGED
137 * OR RE-ASSIGNED! You may only add to them.
140 $netgroup_ids = array(
141 NETWORK_DFRN => (-1),
143 NETWORK_OSTATUS => (-3),
144 NETWORK_FEED => (-4),
145 NETWORK_DIASPORA => (-5),
146 NETWORK_MAIL => (-6),
147 NETWORK_MAIL2 => (-7),
148 NETWORK_FACEBOOK => (-8),
149 NETWORK_LINKEDIN => (-9),
150 NETWORK_XMPP => (-10),
151 NETWORK_MYSPACE => (-11),
152 NETWORK_GPLUS => (-12),
154 NETWORK_PHANTOM => (-127),
159 * Maximum number of "people who like (or don't like) this" that we will list by name
162 define ( 'MAX_LIKERS', 75);
165 * Communication timeout
168 define ( 'ZCURL_TIMEOUT' , (-1));
172 * email notification options
175 define ( 'NOTIFY_INTRO', 0x0001 );
176 define ( 'NOTIFY_CONFIRM', 0x0002 );
177 define ( 'NOTIFY_WALL', 0x0004 );
178 define ( 'NOTIFY_COMMENT', 0x0008 );
179 define ( 'NOTIFY_MAIL', 0x0010 );
180 define ( 'NOTIFY_SUGGEST', 0x0020 );
181 define ( 'NOTIFY_PROFILE', 0x0040 );
182 define ( 'NOTIFY_TAGSELF', 0x0080 );
183 define ( 'NOTIFY_TAGSHARE', 0x0100 );
185 define ( 'NOTIFY_SYSTEM', 0x8000 );
189 * various namespaces we may need to parse
192 define ( 'NAMESPACE_ZOT', 'http://purl.org/macgirvin/zot' );
193 define ( 'NAMESPACE_DFRN' , 'http://purl.org/macgirvin/dfrn/1.0' );
194 define ( 'NAMESPACE_THREAD' , 'http://purl.org/syndication/thread/1.0' );
195 define ( 'NAMESPACE_TOMB' , 'http://purl.org/atompub/tombstones/1.0' );
196 define ( 'NAMESPACE_ACTIVITY', 'http://activitystrea.ms/spec/1.0/' );
197 define ( 'NAMESPACE_ACTIVITY_SCHEMA', 'http://activitystrea.ms/schema/1.0/' );
198 define ( 'NAMESPACE_MEDIA', 'http://purl.org/syndication/atommedia' );
199 define ( 'NAMESPACE_SALMON_ME', 'http://salmon-protocol.org/ns/magic-env' );
200 define ( 'NAMESPACE_OSTATUSSUB', 'http://ostatus.org/schema/1.0/subscribe' );
201 define ( 'NAMESPACE_GEORSS', 'http://www.georss.org/georss' );
202 define ( 'NAMESPACE_POCO', 'http://portablecontacts.net/spec/1.0' );
203 define ( 'NAMESPACE_FEED', 'http://schemas.google.com/g/2010#updates-from' );
204 define ( 'NAMESPACE_OSTATUS', 'http://ostatus.org/schema/1.0' );
205 define ( 'NAMESPACE_STATUSNET', 'http://status.net/schema/api/1/' );
206 define ( 'NAMESPACE_ATOM1', 'http://www.w3.org/2005/Atom' );
208 * activity stream defines
211 define ( 'ACTIVITY_LIKE', NAMESPACE_ACTIVITY_SCHEMA . 'like' );
212 define ( 'ACTIVITY_DISLIKE', NAMESPACE_DFRN . '/dislike' );
213 define ( 'ACTIVITY_OBJ_HEART', NAMESPACE_DFRN . '/heart' );
215 define ( 'ACTIVITY_FRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'make-friend' );
216 define ( 'ACTIVITY_REQ_FRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'request-friend' );
217 define ( 'ACTIVITY_UNFRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'remove-friend' );
218 define ( 'ACTIVITY_FOLLOW', NAMESPACE_ACTIVITY_SCHEMA . 'follow' );
219 define ( 'ACTIVITY_UNFOLLOW', NAMESPACE_ACTIVITY_SCHEMA . 'stop-following' );
220 define ( 'ACTIVITY_JOIN', NAMESPACE_ACTIVITY_SCHEMA . 'join' );
222 define ( 'ACTIVITY_POST', NAMESPACE_ACTIVITY_SCHEMA . 'post' );
223 define ( 'ACTIVITY_UPDATE', NAMESPACE_ACTIVITY_SCHEMA . 'update' );
224 define ( 'ACTIVITY_TAG', NAMESPACE_ACTIVITY_SCHEMA . 'tag' );
225 define ( 'ACTIVITY_FAVORITE', NAMESPACE_ACTIVITY_SCHEMA . 'favorite' );
227 define ( 'ACTIVITY_OBJ_COMMENT', NAMESPACE_ACTIVITY_SCHEMA . 'comment' );
228 define ( 'ACTIVITY_OBJ_NOTE', NAMESPACE_ACTIVITY_SCHEMA . 'note' );
229 define ( 'ACTIVITY_OBJ_PERSON', NAMESPACE_ACTIVITY_SCHEMA . 'person' );
230 define ( 'ACTIVITY_OBJ_PHOTO', NAMESPACE_ACTIVITY_SCHEMA . 'photo' );
231 define ( 'ACTIVITY_OBJ_P_PHOTO', NAMESPACE_ACTIVITY_SCHEMA . 'profile-photo' );
232 define ( 'ACTIVITY_OBJ_ALBUM', NAMESPACE_ACTIVITY_SCHEMA . 'photo-album' );
233 define ( 'ACTIVITY_OBJ_EVENT', NAMESPACE_ACTIVITY_SCHEMA . 'event' );
234 define ( 'ACTIVITY_OBJ_GROUP', NAMESPACE_ACTIVITY_SCHEMA . 'group' );
235 define ( 'ACTIVITY_OBJ_TAGTERM', NAMESPACE_DFRN . '/tagterm' );
236 define ( 'ACTIVITY_OBJ_PROFILE', NAMESPACE_DFRN . '/profile' );
239 * item weight for query ordering
242 define ( 'GRAVITY_PARENT', 0);
243 define ( 'GRAVITY_LIKE', 3);
244 define ( 'GRAVITY_COMMENT', 6);
248 * Reverse the effect of magic_quotes_gpc if it is enabled.
249 * Please disable magic_quotes_gpc so we don't have to do this.
250 * See http://php.net/manual/en/security.magicquotes.disabling.php
255 error_reporting(E_ERROR | E_WARNING | E_PARSE);
258 // This has to be quite large to deal with embedded private photos
259 ini_set('pcre.backtrack_limit', 500000);
262 if (get_magic_quotes_gpc()) {
263 $process = array(&$_GET, &$_POST, &$_COOKIE, &$_REQUEST);
264 while (list($key, $val) = each($process)) {
265 foreach ($val as $k => $v) {
266 unset($process[$key][$k]);
268 $process[$key][stripslashes($k)] = $v;
269 $process[] = &$process[$key][stripslashes($k)];
271 $process[$key][stripslashes($k)] = stripslashes($v);
284 * Our main application structure for the life of this page
285 * Primarily deals with the URL that got us here
286 * and tries to make some sense of it, and
287 * stores our page contents and config storage
288 * and anything else that might need to be passed around
289 * before we spit the page out.
293 if(! class_exists('App')) {
296 public $module_loaded = false;
297 public $query_string;
305 public $page_contact;
307 public $data = array();
308 public $error = false;
318 public $interactive = true;
320 public $apps = array();
333 private $curl_headers;
335 private $cached_profile_image;
336 private $cached_profile_picdate;
338 function __construct() {
340 global $default_timezone;
342 $this->timezone = ((x($default_timezone)) ? $default_timezone : 'UTC');
344 date_default_timezone_set($this->timezone);
346 $this->config = array();
347 $this->page = array();
348 $this->pager= array();
350 $this->query_string = '';
354 $this->scheme = 'http';
355 if(x($_SERVER,'HTTPS') && $_SERVER['HTTPS'])
356 $this->scheme = 'https';
357 elseif(x($_SERVER,'SERVER_PORT') && (intval($_SERVER['SERVER_PORT']) == 443))
358 $this->scheme = 'https';
361 if(x($_SERVER,'SERVER_NAME')) {
362 $this->hostname = $_SERVER['SERVER_NAME'];
363 if(x($_SERVER,'SERVER_PORT') && $_SERVER['SERVER_PORT'] != 80 && $_SERVER['SERVER_PORT'] != 443)
364 $this->hostname .= ':' . $_SERVER['SERVER_PORT'];
366 * Figure out if we are running at the top of a domain
367 * or in a sub-directory and adjust accordingly
370 $path = trim(dirname($_SERVER['SCRIPT_NAME']),'/\\');
371 if(isset($path) && strlen($path) && ($path != $this->path))
376 "include/$this->hostname" . PATH_SEPARATOR
377 . 'include' . PATH_SEPARATOR
378 . 'library' . PATH_SEPARATOR
379 . 'library/phpsec' . PATH_SEPARATOR
382 if((x($_SERVER,'QUERY_STRING')) && substr($_SERVER['QUERY_STRING'],0,2) === "q=") {
383 $this->query_string = substr($_SERVER['QUERY_STRING'],2);
384 // removing trailing / - maybe a nginx problem
385 if (substr($this->query_string, 0, 1) == "/")
386 $this->query_string = substr($this->query_string, 1);
389 $this->cmd = trim($_GET['q'],'/\\');
391 // unix style "homedir"
393 if(substr($this->cmd,0,1) === '~')
394 $this->cmd = 'profile/' . substr($this->cmd,1);
396 // Diaspora style profile url
398 if(substr($this->cmd,0,2) === 'u/')
399 $this->cmd = 'profile/' . substr($this->cmd,2);
403 * Break the URL path into C style argc/argv style arguments for our
404 * modules. Given "http://example.com/module/arg1/arg2", $this->argc
405 * will be 3 (integer) and $this->argv will contain:
411 * There will always be one argument. If provided a naked domain
412 * URL, $this->argv[0] is set to "home".
416 $this->argv = explode('/',$this->cmd);
417 $this->argc = count($this->argv);
418 if((array_key_exists('0',$this->argv)) && strlen($this->argv[0])) {
419 $this->module = str_replace(".", "_", $this->argv[0]);
423 $this->argv = array('home');
424 $this->module = 'home';
428 * Special handling for the webfinger/lrdd host XRD file
431 if($this->cmd === '.well-known/host-meta') {
433 $this->argv = array('hostxrd');
434 $this->module = 'hostxrd';
438 * See if there is any page number information, and initialise
442 $this->pager['page'] = ((x($_GET,'page') && intval($_GET['page']) > 0) ? intval($_GET['page']) : 1);
443 $this->pager['itemspage'] = 50;
444 $this->pager['start'] = ($this->pager['page'] * $this->pager['itemspage']) - $this->pager['itemspage'];
445 $this->pager['total'] = 0;
448 function get_baseurl($ssl = false) {
450 $scheme = $this->scheme;
452 if((x($this->config,'system')) && (x($this->config['system'],'ssl_policy'))) {
453 if(intval($this->config['system']['ssl_policy']) === intval(SSL_POLICY_FULL))
456 // Basically, we have $ssl = true on any links which can only be seen by a logged in user
457 // (and also the login link). Anything seen by an outsider will have it turned off.
459 if($this->config['system']['ssl_policy'] == SSL_POLICY_SELFSIGN) {
467 $this->baseurl = $scheme . "://" . $this->hostname . ((isset($this->path) && strlen($this->path)) ? '/' . $this->path : '' );
468 return $this->baseurl;
471 function set_baseurl($url) {
472 $parsed = @parse_url($url);
474 $this->baseurl = $url;
477 $this->scheme = $parsed['scheme'];
479 $this->hostname = $parsed['host'];
480 if(x($parsed,'port'))
481 $this->hostname .= ':' . $parsed['port'];
482 if(x($parsed,'path'))
483 $this->path = trim($parsed['path'],'\\/');
488 function get_hostname() {
489 return $this->hostname;
492 function set_hostname($h) {
493 $this->hostname = $h;
496 function set_path($p) {
497 $this->path = trim(trim($p),'/');
500 function get_path() {
504 function set_pager_total($n) {
505 $this->pager['total'] = intval($n);
508 function set_pager_itemspage($n) {
509 $this->pager['itemspage'] = ((intval($n) > 0) ? intval($n) : 0);
510 $this->pager['start'] = ($this->pager['page'] * $this->pager['itemspage']) - $this->pager['itemspage'];
514 function init_pagehead() {
515 $interval = ((local_user()) ? get_pconfig(local_user(),'system','update_interval') : 40000);
516 if($interval < 10000)
519 $this->page['title'] = $this->config['sitename'];
520 $tpl = file_get_contents('view/head.tpl');
521 $this->page['htmlhead'] = replace_macros($tpl,array(
522 '$baseurl' => $this->get_baseurl(), // FIXME for z_path!!!!
523 '$local_user' => local_user(),
524 '$generator' => 'Friendica' . ' ' . FRIENDICA_VERSION,
525 '$delitem' => t('Delete this item?'),
526 '$comment' => t('Comment'),
527 '$showmore' => t('show more'),
528 '$showfewer' => t('show fewer'),
529 '$update_interval' => $interval
533 function set_curl_code($code) {
534 $this->curl_code = $code;
537 function get_curl_code() {
538 return $this->curl_code;
541 function set_curl_headers($headers) {
542 $this->curl_headers = $headers;
545 function get_curl_headers() {
546 return $this->curl_headers;
549 function get_cached_avatar_image($avatar_image){
550 if($this->cached_profile_image[$avatar_image])
551 return $this->cached_profile_image[$avatar_image];
553 $path_parts = explode("/",$avatar_image);
554 $common_filename = $path_parts[count($path_parts)-1];
556 if($this->cached_profile_picdate[$common_filename]){
557 $this->cached_profile_image[$avatar_image] = $avatar_image . $this->cached_profile_picdate[$common_filename];
559 $r = q("SELECT `contact`.`avatar-date` AS picdate FROM `contact` WHERE `contact`.`thumb` like \"%%/%s\"",
562 $this->cached_profile_image[$avatar_image] = $avatar_image;
564 $this->cached_profile_picdate[$common_filename] = "?rev=" . urlencode($r[0]['picdate']);
565 $this->cached_profile_image[$avatar_image] = $avatar_image . $this->cached_profile_picdate[$common_filename];
568 return $this->cached_profile_image[$avatar_image];
575 // retrieve the App structure
576 // useful in functions which require it but don't get it passed to them
578 if(! function_exists('get_app')) {
586 // Multi-purpose function to check variable state.
587 // Usage: x($var) or $x($array,'key')
588 // returns false if variable/key is not set
589 // if variable is set, returns 1 if has 'non-zero' value, otherwise returns 0.
590 // e.g. x('') or x(0) returns 0;
592 if(! function_exists('x')) {
593 function x($s,$k = NULL) {
595 if((is_array($s)) && (array_key_exists($k,$s))) {
614 // called from db initialisation if db is dead.
616 if(! function_exists('system_unavailable')) {
617 function system_unavailable() {
618 include('system_unavailable.php');
626 function clean_urls() {
628 // if($a->config['system']['clean_urls'])
635 $base = $a->get_baseurl();
643 return $a->get_baseurl();
646 function absurl($path) {
647 if(strpos($path,'/') === 0)
648 return z_path() . $path;
653 return (!empty($_SERVER['HTTP_X_REQUESTED_WITH']) && strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) == 'xmlhttprequest');
657 // Primarily involved with database upgrade, but also sets the
658 // base url for use in cmdline programs which don't have
659 // $_SERVER variables, and synchronising the state of installed plugins.
662 if(! function_exists('check_config')) {
663 function check_config(&$a) {
665 $build = get_config('system','build');
667 $build = set_config('system','build',DB_UPDATE_VERSION);
669 $url = get_config('system','url');
671 // if the url isn't set or the stored url is radically different
672 // than the currently visited url, store the current value accordingly.
673 // "Radically different" ignores common variations such as http vs https
674 // and www.example.com vs example.com.
676 if((! x($url)) || (! link_compare($url,$a->get_baseurl())))
677 $url = set_config('system','url',$a->get_baseurl());
679 if($build != DB_UPDATE_VERSION) {
680 $stored = intval($build);
681 $current = intval(DB_UPDATE_VERSION);
682 if(($stored < $current) && file_exists('update.php')) {
684 load_config('database');
686 // We're reporting a different version than what is currently installed.
687 // Run any existing update scripts to bring the database up to current.
689 require_once('update.php');
691 // make sure that boot.php and update.php are the same release, we might be
692 // updating right this very second and the correct version of the update.php
693 // file may not be here yet. This can happen on a very busy site.
695 if(DB_UPDATE_VERSION == UPDATE_VERSION) {
697 for($x = $stored; $x < $current; $x ++) {
698 if(function_exists('update_' . $x)) {
700 // There could be a lot of processes running or about to run.
701 // We want exactly one process to run the update command.
702 // So store the fact that we're taking responsibility
703 // after first checking to see if somebody else already has.
705 // If the update fails or times-out completely you may need to
706 // delete the config entry to try again.
708 if(get_config('database','update_' . $x))
710 set_config('database','update_' . $x, '1');
712 // call the specific update
714 $func = 'update_' . $x;
717 //send the administrator an e-mail
718 $email_tpl = get_intltext_template("update_fail_eml.tpl");
719 $email_msg = replace_macros($email_tpl, array(
720 '$sitename' => $a->config['sitename'],
721 '$siteurl' => $a->get_baseurl(),
723 '$error' => sprintf( t('Update %s failed. See error logs.'), $x)
725 $subject=sprintf(t('Update Error at %s'), $a->get_baseurl());
727 mail($a->config['admin_email'], $subject, $email_msg,
728 'From: ' . t('Administrator') . '@' . $_SERVER['SERVER_NAME'] . "\n"
729 . 'Content-type: text/plain; charset=UTF-8' . "\n"
730 . 'Content-transfer-encoding: 8bit' );
732 logger('CRITICAL: Update Failed: '. $x);
735 set_config('database','update_' . $x, 'success');
739 set_config('system','build', DB_UPDATE_VERSION);
746 * Synchronise plugins:
748 * $a->config['system']['addon'] contains a comma-separated list of names
749 * of plugins/addons which are used on this system.
750 * Go through the database list of already installed addons, and if we have
751 * an entry, but it isn't in the config list, call the uninstall procedure
752 * and mark it uninstalled in the database (for now we'll remove it).
753 * Then go through the config list and if we have a plugin that isn't installed,
754 * call the install procedure and add it to the database.
758 $r = q("SELECT * FROM `addon` WHERE `installed` = 1");
762 $installed = array();
764 $plugins = get_config('system','addon');
765 $plugins_arr = array();
768 $plugins_arr = explode(',',str_replace(' ', '',$plugins));
770 $a->plugins = $plugins_arr;
772 $installed_arr = array();
774 if(count($installed)) {
775 foreach($installed as $i) {
776 if(! in_array($i['name'],$plugins_arr)) {
777 uninstall_plugin($i['name']);
780 $installed_arr[] = $i['name'];
785 if(count($plugins_arr)) {
786 foreach($plugins_arr as $p) {
787 if(! in_array($p,$installed_arr)) {
801 function get_guid($size=16) {
802 $exists = true; // assume by default that we don't have a unique guid
804 $s = random_string($size);
805 $r = q("select id from guid where guid = '%s' limit 1", dbesc($s));
809 q("insert into guid ( guid ) values ( '%s' ) ", dbesc($s));
814 // wrapper for adding a login box. If $register == true provide a registration
815 // link. This will most always depend on the value of $a->config['register_policy'].
816 // returns the complete html for inserting into the page
818 if(! function_exists('login')) {
819 function login($register = false, $hiddens=false) {
825 'title' => t('Create a New Account'),
826 'desc' => t('Register')
830 $noid = get_config('system','no_openid');
832 $dest_url = $a->get_baseurl(true) . '/' . $a->query_string;
835 $tpl = get_markup_template("logout.tpl");
838 $tpl = get_markup_template("login.tpl");
839 $_SESSION['return_url'] = $a->query_string;
843 $o .= replace_macros($tpl,array(
845 '$dest_url' => $dest_url,
846 '$logout' => t('Logout'),
847 '$login' => t('Login'),
849 '$lname' => array('username', t('Nickname or Email address: ') , '', ''),
850 '$lpassword' => array('password', t('Password: '), '', ''),
853 '$lopenid' => array('openid_url', t('Or login using OpenID: '),'',''),
855 '$hiddens' => $hiddens,
859 '$lostpass' => t('Forgot your password?'),
860 '$lostlink' => t('Password Reset'),
863 call_hooks('login_hook',$o);
869 // Used to end the current process, after saving session state.
871 if(! function_exists('killme')) {
873 session_write_close();
878 // redirect to another URL and terminate this process.
880 if(! function_exists('goaway')) {
881 function goaway($s) {
882 header("Location: $s");
888 // Returns the uid of locally logged in user or false.
890 if(! function_exists('local_user')) {
891 function local_user() {
892 if((x($_SESSION,'authenticated')) && (x($_SESSION,'uid')))
893 return intval($_SESSION['uid']);
898 // Returns contact id of authenticated site visitor or false
900 if(! function_exists('remote_user')) {
901 function remote_user() {
902 if((x($_SESSION,'authenticated')) && (x($_SESSION,'visitor_id')))
903 return intval($_SESSION['visitor_id']);
908 // contents of $s are displayed prominently on the page the next time
909 // a page is loaded. Usually used for errors or alerts.
911 if(! function_exists('notice')) {
912 function notice($s) {
914 if(! x($_SESSION,'sysmsg')) $_SESSION['sysmsg'] = array();
916 $_SESSION['sysmsg'][] = $s;
919 if(! function_exists('info')) {
922 if(! x($_SESSION,'sysmsg_info')) $_SESSION['sysmsg_info'] = array();
924 $_SESSION['sysmsg_info'][] = $s;
929 // wrapper around config to limit the text length of an incoming message
931 if(! function_exists('get_max_import_size')) {
932 function get_max_import_size() {
934 return ((x($a->config,'max_import_size')) ? $a->config['max_import_size'] : 0 );
942 * Function : profile_load
944 * @parameter string $nickname
945 * @parameter int $profile
947 * Summary: Loads a profile into the page sidebar.
948 * The function requires a writeable copy of the main App structure, and the nickname
949 * of a registered local account.
951 * If the viewer is an authenticated remote viewer, the profile displayed is the
952 * one that has been configured for his/her viewing in the Contact manager.
953 * Passing a non-zero profile ID can also allow a preview of a selected profile
956 * Profile information is placed in the App structure for later retrieval.
957 * Honours the owner's chosen theme for display.
961 if(! function_exists('profile_load')) {
962 function profile_load(&$a, $nickname, $profile = 0) {
964 $r = q("SELECT `profile-id` FROM `contact` WHERE `id` = %d LIMIT 1",
965 intval($_SESSION['visitor_id']));
967 $profile = $r[0]['profile-id'];
973 $profile_int = intval($profile);
974 $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
975 left join `contact` on `contact`.`uid` = `profile`.`uid` LEFT JOIN `user` ON `profile`.`uid` = `user`.`uid`
976 WHERE `user`.`nickname` = '%s' AND `profile`.`id` = %d and `contact`.`self` = 1 LIMIT 1",
981 if((! $r) && (! count($r))) {
982 $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
983 left join `contact` on `contact`.`uid` = `profile`.`uid` LEFT JOIN `user` ON `profile`.`uid` = `user`.`uid`
984 WHERE `user`.`nickname` = '%s' AND `profile`.`is-default` = 1 and `contact`.`self` = 1 LIMIT 1",
989 if(($r === false) || (! count($r))) {
990 logger('profile error: ' . $a->query_string, LOGGER_DEBUG);
991 notice( t('Requested profile is not available.') . EOL );
996 // fetch user tags if this isn't the default profile
998 if(! $r[0]['is-default']) {
999 $x = q("select `pub_keywords` from `profile` where uid = %d and `is-default` = 1 limit 1",
1000 intval($profile_uid)
1003 $r[0]['pub_keywords'] = $x[0]['pub_keywords'];
1006 $a->profile = $r[0];
1009 $a->page['title'] = $a->profile['name'] . " @ " . $a->config['sitename'];
1010 $_SESSION['theme'] = $a->profile['theme'];
1013 * load/reload current theme info
1016 $theme_info_file = "view/theme/".current_theme()."/theme.php";
1017 if (file_exists($theme_info_file)){
1018 require_once($theme_info_file);
1021 if(! (x($a->page,'aside')))
1022 $a->page['aside'] = '';
1024 if(local_user() && local_user() == $a->profile['uid']) {
1025 $a->page['aside'] .= replace_macros(get_markup_template('profile_edlink.tpl'),array(
1026 '$editprofile' => t('Edit profile'),
1027 '$profid' => $a->profile['id']
1031 $block = (((get_config('system','block_public')) && (! local_user()) && (! remote_user())) ? true : false);
1033 $a->page['aside'] .= profile_sidebar($a->profile, $block);
1036 $a->page['aside'] .= contact_block();*/
1045 * Function: profile_sidebar
1047 * Formats a profile for display in the sidebar.
1048 * It is very difficult to templatise the HTML completely
1049 * because of all the conditional logic.
1051 * @parameter: array $profile
1053 * Returns HTML string stuitable for sidebar inclusion
1054 * Exceptions: Returns empty string if passed $profile is wrong type or not populated
1059 if(! function_exists('profile_sidebar')) {
1060 function profile_sidebar($profile, $block = 0) {
1069 if((! is_array($profile)) && (! count($profile)))
1072 $profile['picdate'] = urlencode($profile['picdate']);
1074 call_hooks('profile_sidebar_enter', $profile);
1077 // don't show connect link to yourself
1078 $connect = (($profile['uid'] != local_user()) ? t('Connect') : False);
1080 // don't show connect link to authenticated visitors either
1082 if((remote_user()) && ($_SESSION['visitor_visiting'] == $profile['uid']))
1085 if(get_my_url() && $profile['unkmail'])
1086 $wallmessage = t('Message');
1088 $wallmessage = false;
1092 // show edit profile to yourself
1093 if ($profile['uid'] == local_user()) {
1094 $profile['edit'] = array($a->get_baseurl(). '/profiles', t('Profiles'),"", t('Manage/edit profiles'));
1096 $r = q("SELECT * FROM `profile` WHERE `uid` = %d",
1099 $profile['menu'] = array(
1100 'chg_photo' => t('Change profile photo'),
1101 'cr_new' => t('Create New Profile'),
1102 'entries' => array(),
1107 foreach($r as $rr) {
1108 $profile['menu']['entries'][] = array(
1109 'photo' => $rr['thumb'],
1111 'alt' => t('Profile Image'),
1112 'profile_name' => $rr['profile-name'],
1113 'isdefault' => $rr['is-default'],
1114 'visibile_to_everybody' => t('visible to everybody'),
1115 'edit_visibility' => t('Edit visibility'),
1129 if((x($profile,'address') == 1)
1130 || (x($profile,'locality') == 1)
1131 || (x($profile,'region') == 1)
1132 || (x($profile,'postal-code') == 1)
1133 || (x($profile,'country-name') == 1))
1134 $location = t('Location:');
1136 $gender = ((x($profile,'gender') == 1) ? t('Gender:') : False);
1139 $marital = ((x($profile,'marital') == 1) ? t('Status:') : False);
1141 $homepage = ((x($profile,'homepage') == 1) ? t('Homepage:') : False);
1143 if(($profile['hidewall'] || $block) && (! local_user()) && (! remote_user())) {
1144 $location = $pdesc = $gender = $marital = $homepage = False;
1147 $firstname = ((strpos($profile['name'],' '))
1148 ? trim(substr($profile['name'],0,strpos($profile['name'],' '))) : $profile['name']);
1149 $lastname = (($firstname === $profile['name']) ? '' : trim(substr($profile['name'],strlen($firstname))));
1152 'podloc' => $a->get_baseurl(),
1153 'searchable' => (($profile['publish'] && $profile['net-publish']) ? 'true' : 'false' ),
1154 'nickname' => $profile['nickname'],
1155 'fullname' => $profile['name'],
1156 'firstname' => $firstname,
1157 'lastname' => $lastname,
1158 'photo300' => $a->get_cached_avatar_image($a->get_baseurl() . '/photo/custom/300/' . $profile['uid'] . '.jpg'),
1159 'photo100' => $a->get_cached_avatar_image($a->get_baseurl() . '/photo/custom/100/' . $profile['uid'] . '.jpg'),
1160 'photo50' => $a->get_cached_avatar_image($a->get_baseurl() . '/photo/custom/50/' . $profile['uid'] . '.jpg'),
1164 $contact_block = contact_block();
1168 $tpl = get_markup_template('profile_vcard.tpl');
1170 $o .= replace_macros($tpl, array(
1171 '$profile' => $profile,
1172 '$connect' => $connect,
1173 '$wallmessage' => $wallmessage,
1174 '$location' => template_escape($location),
1175 '$gender' => $gender,
1177 '$marital' => $marital,
1178 '$homepage' => $homepage,
1179 '$diaspora' => $diaspora,
1180 '$contact_block' => $contact_block,
1184 $arr = array('profile' => &$profile, 'entry' => &$o);
1186 call_hooks('profile_sidebar', $arr);
1193 if(! function_exists('get_birthdays')) {
1194 function get_birthdays() {
1202 $bd_format = t('g A l F d') ; // 8 AM Friday January 18
1203 $bd_short = t('F d');
1205 $r = q("SELECT `event`.*, `event`.`id` AS `eid`, `contact`.* FROM `event`
1206 LEFT JOIN `contact` ON `contact`.`id` = `event`.`cid`
1207 WHERE `event`.`uid` = %d AND `type` = 'birthday' AND `start` < '%s' AND `finish` > '%s'
1208 ORDER BY `start` ASC ",
1209 intval(local_user()),
1210 dbesc(datetime_convert('UTC','UTC','now + 6 days')),
1211 dbesc(datetime_convert('UTC','UTC','now'))
1214 if($r && count($r)) {
1216 $now = strtotime('now');
1220 foreach($r as $rr) {
1221 if(strlen($rr['name']))
1223 if((strtotime($rr['start'] . ' +00:00') < $now) && (strtotime($rr['finish'] . ' +00:00') > $now))
1226 $classtoday = $istoday ? ' birthday-today ' : '';
1228 foreach($r as &$rr) {
1229 if(! strlen($rr['name']))
1234 if(in_array($rr['cid'],$cids))
1236 $cids[] = $rr['cid'];
1238 $today = (((strtotime($rr['start'] . ' +00:00') < $now) && (strtotime($rr['finish'] . ' +00:00') > $now)) ? true : false);
1241 if($rr['network'] === NETWORK_DFRN) {
1242 $sparkle = " sparkle";
1243 $url = $a->get_baseurl() . '/redir/' . $rr['cid'];
1247 $rr['title'] = $rr['name'];
1248 $rr['date'] = day_translate(datetime_convert('UTC', $a->timezone, $rr['start'], $rr['adjust'] ? $bd_format : $bd_short)) . (($today) ? ' ' . t('[today]') : '');
1249 $rr['startime'] = Null;
1250 $rr['today'] = $today;
1255 $tpl = get_markup_template("birthdays_reminder.tpl");
1256 return replace_macros($tpl, array(
1257 '$baseurl' => $a->get_baseurl(),
1258 '$classtoday' => $classtoday,
1260 '$event_reminders' => t('Birthday Reminders'),
1261 '$event_title' => t('Birthdays this week:'),
1268 if(! function_exists('get_events')) {
1269 function get_events() {
1271 require_once('include/bbcode.php');
1278 $bd_format = t('g A l F d') ; // 8 AM Friday January 18
1279 $bd_short = t('F d');
1281 $r = q("SELECT `event`.* FROM `event`
1282 WHERE `event`.`uid` = %d AND `type` != 'birthday' AND `start` < '%s' AND `start` > '%s'
1283 ORDER BY `start` ASC ",
1284 intval(local_user()),
1285 dbesc(datetime_convert('UTC','UTC','now + 6 days')),
1286 dbesc(datetime_convert('UTC','UTC','now - 1 days'))
1289 if($r && count($r)) {
1290 $now = strtotime('now');
1292 foreach($r as $rr) {
1293 if(strlen($rr['name']))
1296 $strt = datetime_convert('UTC',$rr['convert'] ? $a->timezone : 'UTC',$rr['start'],'Y-m-d');
1297 if($strt === datetime_convert('UTC',$a->timezone,'now','Y-m-d'))
1300 $classtoday = (($istoday) ? 'event-today' : '');
1303 foreach($r as &$rr) {
1305 $md = datetime_convert('UTC',$a->timezone,$rr['start'],'Y/m');
1307 $md = datetime_convert('UTC','UTC',$rr['start'],'Y/m');
1308 $md .= "/#link-".$rr['id'];
1310 $title = substr(strip_tags(bbcode($rr['desc'])),0,32) . '... ';
1312 $title = t('[No description]');
1314 $strt = datetime_convert('UTC',$rr['convert'] ? $a->timezone : 'UTC',$rr['start']);
1315 $today = ((substr($strt,0,10) === datetime_convert('UTC',$a->timezone,'now','Y-m-d')) ? true : false);
1318 $rr['title'] = $title;
1319 $rr['date'] = day_translate(datetime_convert('UTC', $rr['adjust'] ? $a->timezone : 'UTC', $rr['start'], $bd_format)) . (($today) ? ' ' . t('[today]') : '');
1320 $rr['startime'] = $strt;
1321 $rr['today'] = $today;
1325 $tpl = get_markup_template("events_reminder.tpl");
1326 return replace_macros($tpl, array(
1327 '$baseurl' => $a->get_baseurl(),
1328 '$classtoday' => $classtoday,
1329 '$count' => count($r),
1330 '$event_reminders' => t('Event Reminders'),
1331 '$event_title' => t('Events this week:'),
1340 * Wrap calls to proc_close(proc_open()) and call hook
1341 * so plugins can take part in process :)
1344 * $cmd program to run
1345 * next args are passed as $cmd command line
1347 * e.g.: proc_run("ls","-la","/tmp");
1349 * $cmd and string args are surrounded with ""
1352 if(! function_exists('proc_run')) {
1353 function proc_run($cmd){
1357 $args = func_get_args();
1363 // expand any arrays
1365 foreach($args as $arg) {
1366 if(is_array($arg)) {
1367 foreach($arg as $n) {
1377 $arr = array('args' => $args, 'run_cmd' => true);
1379 call_hooks("proc_run", $arr);
1380 if(! $arr['run_cmd'])
1383 if(count($args) && $args[0] === 'php')
1384 $args[0] = ((x($a->config,'php_path')) && (strlen($a->config['php_path'])) ? $a->config['php_path'] : 'php');
1385 foreach ($args as $arg){
1386 $arg = escapeshellarg($arg);
1388 $cmdline = implode($args," ");
1389 proc_close(proc_open($cmdline." &",array(),$foo));
1393 if(! function_exists('current_theme')) {
1394 function current_theme(){
1395 $app_base_themes = array('duepuntozero', 'loozah');
1399 $system_theme = ((isset($a->config['system']['theme'])) ? $a->config['system']['theme'] : '');
1400 $theme_name = ((isset($_SESSION) && x($_SESSION,'theme')) ? $_SESSION['theme'] : $system_theme);
1403 (file_exists('view/theme/' . $theme_name . '/style.css') ||
1404 file_exists('view/theme/' . $theme_name . '/style.php')))
1405 return($theme_name);
1407 foreach($app_base_themes as $t) {
1408 if(file_exists('view/theme/' . $t . '/style.css')||
1409 file_exists('view/theme/' . $t . '/style.php'))
1413 $fallback = glob('view/theme/*/style.[css|php]');
1414 if(count($fallback))
1415 return (str_replace('view/theme/','', substr($fallback[0],0,-10)));
1421 * Return full URL to theme which is currently in effect.
1422 * Provide a sane default if nothing is chosen or the specified theme does not exist.
1424 if(! function_exists('current_theme_url')) {
1425 function current_theme_url() {
1427 $t = current_theme();
1428 if (file_exists('view/theme/' . $t . '/style.php'))
1429 return($a->get_baseurl() . '/view/theme/' . $t . '/style.pcss');
1430 return($a->get_baseurl() . '/view/theme/' . $t . '/style.css');
1434 if(! function_exists('feed_birthday')) {
1435 function feed_birthday($uid,$tz) {
1439 * Determine the next birthday, but only if the birthday is published
1440 * in the default profile. We _could_ also look for a private profile that the
1441 * recipient can see, but somebody could get mad at us if they start getting
1442 * public birthday greetings when they haven't made this info public.
1444 * Assuming we are able to publish this info, we are then going to convert
1445 * the start time from the owner's timezone to UTC.
1447 * This will potentially solve the problem found with some social networks
1448 * where birthdays are converted to the viewer's timezone and salutations from
1449 * elsewhere in the world show up on the wrong day. We will convert it to the
1450 * viewer's timezone also, but first we are going to convert it from the birthday
1451 * person's timezone to GMT - so the viewer may find the birthday starting at
1452 * 6:00PM the day before, but that will correspond to midnight to the birthday person.
1462 $p = q("SELECT `dob` FROM `profile` WHERE `is-default` = 1 AND `uid` = %d LIMIT 1",
1466 if($p && count($p)) {
1467 $tmp_dob = substr($p[0]['dob'],5);
1468 if(intval($tmp_dob)) {
1469 $y = datetime_convert($tz,$tz,'now','Y');
1470 $bd = $y . '-' . $tmp_dob . ' 00:00';
1471 $t_dob = strtotime($bd);
1472 $now = strtotime(datetime_convert($tz,$tz,'now'));
1474 $bd = $y + 1 . '-' . $tmp_dob . ' 00:00';
1475 $birthday = datetime_convert($tz,'UTC',$bd,ATOM_TIME);
1483 if(! function_exists('is_site_admin')) {
1484 function is_site_admin() {
1486 if(local_user() && x($a->user,'email') && x($a->config,'admin_email') && ($a->user['email'] === $a->config['admin_email']))
1493 if(! function_exists('load_contact_links')) {
1494 function load_contact_links($uid) {
1500 if(! $uid || x($a->contacts,'empty'))
1503 $r = q("SELECT `id`,`network`,`url`,`thumb` FROM `contact` WHERE `uid` = %d AND `self` = 0 AND `blocked` = 0 ",
1508 $url = normalise_link($rr['url']);
1513 $ret['empty'] = true;
1514 $a->contacts = $ret;
1519 if(! function_exists('profile_tabs')){
1520 function profile_tabs($a, $is_owner=False, $nickname=Null){
1521 //echo "<pre>"; var_dump($a->user); killme();
1523 if (is_null($nickname))
1524 $nickname = $a->user['nickname'];
1527 $tab = notags(trim($_GET['tab']));
1529 $url = $a->get_baseurl() . '/profile/' . $nickname;
1533 'label'=>t('Status'),
1535 'sel' => ((!isset($tab)&&$a->argv[0]=='profile')?'active':''),
1536 'title' => t('Status Messages and Posts'),
1539 'label' => t('Profile'),
1540 'url' => $url.'/?tab=profile',
1541 'sel' => ((isset($tab) && $tab=='profile')?'active':''),
1542 'title' => t('Profile Details'),
1545 'label' => t('Photos'),
1546 'url' => $a->get_baseurl() . '/photos/' . $nickname,
1547 'sel' => ((!isset($tab)&&$a->argv[0]=='photos')?'active':''),
1548 'title' => t('Photo Albums'),
1554 'label' => t('Events'),
1555 'url' => $a->get_baseurl() . '/events',
1556 'sel' =>((!isset($tab)&&$a->argv[0]=='events')?'active':''),
1557 'title' => t('Events and Calendar'),
1560 'label' => t('Personal Notes'),
1561 'url' => $a->get_baseurl() . '/notes',
1562 'sel' =>((!isset($tab)&&$a->argv[0]=='notes')?'active':''),
1563 'title' => t('Only You Can See This'),
1568 $arr = array('is_owner' => $is_owner, 'nickname' => $nickname, 'tab' => (($tab) ? $tab : false), 'tabs' => $tabs);
1569 call_hooks('profile_tabs', $arr);
1571 $tpl = get_markup_template('common_tabs.tpl');
1573 return replace_macros($tpl,array('$tabs' => $arr['tabs']));
1577 function get_my_url() {
1578 if(x($_SESSION,'my_url'))
1579 return $_SESSION['my_url'];
1583 function zrl_init(&$a) {
1584 $tmp_str = get_my_url();
1585 if(validate_url($tmp_str)) {
1586 proc_run('php','include/gprobe.php',bin2hex($tmp_str));
1587 $arr = array('zrl' => $tmp_str, 'url' => $a->cmd);
1588 call_hooks('zrl_init',$arr);
1592 function zrl($s,$force = false) {
1595 if((! strpos($s,'/profile/')) && (! $force))
1597 if($force && substr($s,-1,1) !== '/')
1599 $achar = strpos($s,'?') ? '&' : '?';
1600 $mine = get_my_url();
1601 if($mine and ! link_compare($mine,$s))
1602 return $s . $achar . 'zrl=' . urlencode($mine);
1607 * returns querystring as string from a mapped array
1609 * @param params Array
1612 function build_querystring($params, $name=null) {
1614 foreach($params as $key=>$val) {
1615 if(is_array($val)) {
1617 $ret .= build_querystring($val, $key);
1619 $ret .= build_querystring($val, $name."[$key]");
1622 $val = urlencode($val);
1624 $ret.=$name."[$key]"."=$val&";
1626 $ret.= "$key=$val&";