3 require_once('include/config.php');
4 require_once('include/network.php');
5 require_once('include/plugin.php');
6 require_once('include/text.php');
7 require_once('include/datetime.php');
8 require_once('include/pgettext.php');
9 require_once('include/nav.php');
10 require_once('include/cache.php');
12 define ( 'FRIENDICA_PLATFORM', 'Friendica');
13 define ( 'FRIENDICA_VERSION', '3.0.1381' );
14 define ( 'DFRN_PROTOCOL_VERSION', '2.23' );
15 define ( 'DB_UPDATE_VERSION', 1149 );
17 define ( 'EOL', "<br />\r\n" );
18 define ( 'ATOM_TIME', 'Y-m-d\TH:i:s\Z' );
23 * Image storage quality. Lower numbers save space at cost of image detail.
24 * For ease of upgrade, please do not change here. Change jpeg quality with
25 * $a->config['system']['jpeg_quality'] = n;
26 * in .htconfig.php, where n is netween 1 and 100, and with very poor results
31 define ( 'JPEG_QUALITY', 100 );
33 * $a->config['system']['png_quality'] from 0 (uncompressed) to 9
35 define ( 'PNG_QUALITY', 8 );
42 define ( 'DEFAULT_DB_ENGINE', 'MyISAM' );
45 * SSL redirection policies
48 define ( 'SSL_POLICY_NONE', 0 );
49 define ( 'SSL_POLICY_FULL', 1 );
50 define ( 'SSL_POLICY_SELFSIGN', 2 );
57 define ( 'LOGGER_NORMAL', 0 );
58 define ( 'LOGGER_TRACE', 1 );
59 define ( 'LOGGER_DEBUG', 2 );
60 define ( 'LOGGER_DATA', 3 );
61 define ( 'LOGGER_ALL', 4 );
64 * registration policies
67 define ( 'REGISTER_CLOSED', 0 );
68 define ( 'REGISTER_APPROVE', 1 );
69 define ( 'REGISTER_OPEN', 2 );
75 define ( 'CONTACT_IS_FOLLOWER', 1);
76 define ( 'CONTACT_IS_SHARING', 2);
77 define ( 'CONTACT_IS_FRIEND', 3);
81 * DB update return values
84 define ( 'UPDATE_SUCCESS', 0);
85 define ( 'UPDATE_FAILED', 1);
92 * PAGE_NORMAL is a typical personal profile account
93 * PAGE_SOAPBOX automatically approves all friend requests as CONTACT_IS_SHARING, (readonly)
94 * PAGE_COMMUNITY automatically approves all friend requests as CONTACT_IS_SHARING, but with
95 * write access to wall and comments (no email and not included in page owner's ACL lists)
96 * PAGE_FREELOVE automatically approves all friend requests as full friends (CONTACT_IS_FRIEND).
100 define ( 'PAGE_NORMAL', 0 );
101 define ( 'PAGE_SOAPBOX', 1 );
102 define ( 'PAGE_COMMUNITY', 2 );
103 define ( 'PAGE_FREELOVE', 3 );
104 define ( 'PAGE_BLOG', 4 );
105 define ( 'PAGE_PRVGROUP', 5 );
108 * Network and protocol family types
111 define ( 'NETWORK_DFRN', 'dfrn'); // Friendica, Mistpark, other DFRN implementations
112 define ( 'NETWORK_ZOT', 'zot!'); // Zot!
113 define ( 'NETWORK_OSTATUS', 'stat'); // status.net, identi.ca, GNU-social, other OStatus implementations
114 define ( 'NETWORK_FEED', 'feed'); // RSS/Atom feeds with no known "post/notify" protocol
115 define ( 'NETWORK_DIASPORA', 'dspr'); // Diaspora
116 define ( 'NETWORK_MAIL', 'mail'); // IMAP/POP
117 define ( 'NETWORK_MAIL2', 'mai2'); // extended IMAP/POP
118 define ( 'NETWORK_FACEBOOK', 'face'); // Facebook API
119 define ( 'NETWORK_LINKEDIN', 'lnkd'); // LinkedIn
120 define ( 'NETWORK_XMPP', 'xmpp'); // XMPP
121 define ( 'NETWORK_MYSPACE', 'mysp'); // MySpace
122 define ( 'NETWORK_GPLUS', 'goog'); // Google+
124 define ( 'NETWORK_PHANTOM', 'unkn'); // Place holder
127 * These numbers are used in stored permissions
128 * and existing allocations MUST NEVER BE CHANGED
129 * OR RE-ASSIGNED! You may only add to them.
132 $netgroup_ids = array(
133 NETWORK_DFRN => (-1),
135 NETWORK_OSTATUS => (-3),
136 NETWORK_FEED => (-4),
137 NETWORK_DIASPORA => (-5),
138 NETWORK_MAIL => (-6),
139 NETWORK_MAIL2 => (-7),
140 NETWORK_FACEBOOK => (-8),
141 NETWORK_LINKEDIN => (-9),
142 NETWORK_XMPP => (-10),
143 NETWORK_MYSPACE => (-11),
144 NETWORK_GPLUS => (-12),
146 NETWORK_PHANTOM => (-127),
151 * Maximum number of "people who like (or don't like) this" that we will list by name
154 define ( 'MAX_LIKERS', 75);
157 * Communication timeout
160 define ( 'ZCURL_TIMEOUT' , (-1));
164 * email notification options
167 define ( 'NOTIFY_INTRO', 0x0001 );
168 define ( 'NOTIFY_CONFIRM', 0x0002 );
169 define ( 'NOTIFY_WALL', 0x0004 );
170 define ( 'NOTIFY_COMMENT', 0x0008 );
171 define ( 'NOTIFY_MAIL', 0x0010 );
172 define ( 'NOTIFY_SUGGEST', 0x0020 );
173 define ( 'NOTIFY_PROFILE', 0x0040 );
174 define ( 'NOTIFY_TAGSELF', 0x0080 );
175 define ( 'NOTIFY_TAGSHARE', 0x0100 );
177 define ( 'NOTIFY_SYSTEM', 0x8000 );
181 * various namespaces we may need to parse
184 define ( 'NAMESPACE_ZOT', 'http://purl.org/macgirvin/zot' );
185 define ( 'NAMESPACE_DFRN' , 'http://purl.org/macgirvin/dfrn/1.0' );
186 define ( 'NAMESPACE_THREAD' , 'http://purl.org/syndication/thread/1.0' );
187 define ( 'NAMESPACE_TOMB' , 'http://purl.org/atompub/tombstones/1.0' );
188 define ( 'NAMESPACE_ACTIVITY', 'http://activitystrea.ms/spec/1.0/' );
189 define ( 'NAMESPACE_ACTIVITY_SCHEMA', 'http://activitystrea.ms/schema/1.0/' );
190 define ( 'NAMESPACE_MEDIA', 'http://purl.org/syndication/atommedia' );
191 define ( 'NAMESPACE_SALMON_ME', 'http://salmon-protocol.org/ns/magic-env' );
192 define ( 'NAMESPACE_OSTATUSSUB', 'http://ostatus.org/schema/1.0/subscribe' );
193 define ( 'NAMESPACE_GEORSS', 'http://www.georss.org/georss' );
194 define ( 'NAMESPACE_POCO', 'http://portablecontacts.net/spec/1.0' );
195 define ( 'NAMESPACE_FEED', 'http://schemas.google.com/g/2010#updates-from' );
196 define ( 'NAMESPACE_OSTATUS', 'http://ostatus.org/schema/1.0' );
197 define ( 'NAMESPACE_STATUSNET', 'http://status.net/schema/api/1/' );
198 define ( 'NAMESPACE_ATOM1', 'http://www.w3.org/2005/Atom' );
200 * activity stream defines
203 define ( 'ACTIVITY_LIKE', NAMESPACE_ACTIVITY_SCHEMA . 'like' );
204 define ( 'ACTIVITY_DISLIKE', NAMESPACE_DFRN . '/dislike' );
205 define ( 'ACTIVITY_OBJ_HEART', NAMESPACE_DFRN . '/heart' );
207 define ( 'ACTIVITY_FRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'make-friend' );
208 define ( 'ACTIVITY_REQ_FRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'request-friend' );
209 define ( 'ACTIVITY_UNFRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'remove-friend' );
210 define ( 'ACTIVITY_FOLLOW', NAMESPACE_ACTIVITY_SCHEMA . 'follow' );
211 define ( 'ACTIVITY_UNFOLLOW', NAMESPACE_ACTIVITY_SCHEMA . 'stop-following' );
212 define ( 'ACTIVITY_JOIN', NAMESPACE_ACTIVITY_SCHEMA . 'join' );
214 define ( 'ACTIVITY_POST', NAMESPACE_ACTIVITY_SCHEMA . 'post' );
215 define ( 'ACTIVITY_UPDATE', NAMESPACE_ACTIVITY_SCHEMA . 'update' );
216 define ( 'ACTIVITY_TAG', NAMESPACE_ACTIVITY_SCHEMA . 'tag' );
217 define ( 'ACTIVITY_FAVORITE', NAMESPACE_ACTIVITY_SCHEMA . 'favorite' );
219 define ( 'ACTIVITY_OBJ_COMMENT', NAMESPACE_ACTIVITY_SCHEMA . 'comment' );
220 define ( 'ACTIVITY_OBJ_NOTE', NAMESPACE_ACTIVITY_SCHEMA . 'note' );
221 define ( 'ACTIVITY_OBJ_PERSON', NAMESPACE_ACTIVITY_SCHEMA . 'person' );
222 define ( 'ACTIVITY_OBJ_PHOTO', NAMESPACE_ACTIVITY_SCHEMA . 'photo' );
223 define ( 'ACTIVITY_OBJ_P_PHOTO', NAMESPACE_ACTIVITY_SCHEMA . 'profile-photo' );
224 define ( 'ACTIVITY_OBJ_ALBUM', NAMESPACE_ACTIVITY_SCHEMA . 'photo-album' );
225 define ( 'ACTIVITY_OBJ_EVENT', NAMESPACE_ACTIVITY_SCHEMA . 'event' );
226 define ( 'ACTIVITY_OBJ_GROUP', NAMESPACE_ACTIVITY_SCHEMA . 'group' );
227 define ( 'ACTIVITY_OBJ_TAGTERM', NAMESPACE_DFRN . '/tagterm' );
228 define ( 'ACTIVITY_OBJ_PROFILE', NAMESPACE_DFRN . '/profile' );
231 * item weight for query ordering
234 define ( 'GRAVITY_PARENT', 0);
235 define ( 'GRAVITY_LIKE', 3);
236 define ( 'GRAVITY_COMMENT', 6);
240 * Reverse the effect of magic_quotes_gpc if it is enabled.
241 * Please disable magic_quotes_gpc so we don't have to do this.
242 * See http://php.net/manual/en/security.magicquotes.disabling.php
247 error_reporting(E_ERROR | E_WARNING | E_PARSE);
250 // This has to be quite large to deal with embedded private photos
251 ini_set('pcre.backtrack_limit', 500000);
254 if (get_magic_quotes_gpc()) {
255 $process = array(&$_GET, &$_POST, &$_COOKIE, &$_REQUEST);
256 while (list($key, $val) = each($process)) {
257 foreach ($val as $k => $v) {
258 unset($process[$key][$k]);
260 $process[$key][stripslashes($k)] = $v;
261 $process[] = &$process[$key][stripslashes($k)];
263 $process[$key][stripslashes($k)] = stripslashes($v);
276 * Our main application structure for the life of this page
277 * Primarily deals with the URL that got us here
278 * and tries to make some sense of it, and
279 * stores our page contents and config storage
280 * and anything else that might need to be passed around
281 * before we spit the page out.
285 if(! class_exists('App')) {
288 public $module_loaded = false;
289 public $query_string;
297 public $page_contact;
299 public $data = array();
300 public $error = false;
310 public $interactive = true;
312 public $apps = array();
325 private $curl_headers;
327 private $cached_profile_image;
328 private $cached_profile_picdate;
330 function __construct() {
332 global $default_timezone;
334 $this->timezone = ((x($default_timezone)) ? $default_timezone : 'UTC');
336 date_default_timezone_set($this->timezone);
338 $this->config = array();
339 $this->page = array();
340 $this->pager= array();
342 $this->query_string = '';
346 $this->scheme = 'http';
347 if(x($_SERVER,'HTTPS') && $_SERVER['HTTPS'])
348 $this->scheme = 'https';
349 elseif(x($_SERVER,'SERVER_PORT') && (intval($_SERVER['SERVER_PORT']) == 443))
350 $this->scheme = 'https';
353 if(x($_SERVER,'SERVER_NAME')) {
354 $this->hostname = $_SERVER['SERVER_NAME'];
355 if(x($_SERVER,'SERVER_PORT') && $_SERVER['SERVER_PORT'] != 80 && $_SERVER['SERVER_PORT'] != 443)
356 $this->hostname .= ':' . $_SERVER['SERVER_PORT'];
358 * Figure out if we are running at the top of a domain
359 * or in a sub-directory and adjust accordingly
362 $path = trim(dirname($_SERVER['SCRIPT_NAME']),'/\\');
363 if(isset($path) && strlen($path) && ($path != $this->path))
368 "include/$this->hostname" . PATH_SEPARATOR
369 . 'include' . PATH_SEPARATOR
370 . 'library' . PATH_SEPARATOR
371 . 'library/phpsec' . PATH_SEPARATOR
374 if((x($_SERVER,'QUERY_STRING')) && substr($_SERVER['QUERY_STRING'],0,2) === "q=") {
375 $this->query_string = substr($_SERVER['QUERY_STRING'],2);
376 // removing trailing / - maybe a nginx problem
377 if (substr($this->query_string, 0, 1) == "/")
378 $this->query_string = substr($this->query_string, 1);
381 $this->cmd = trim($_GET['q'],'/\\');
383 // unix style "homedir"
385 if(substr($this->cmd,0,1) === '~')
386 $this->cmd = 'profile/' . substr($this->cmd,1);
388 // Diaspora style profile url
390 if(substr($this->cmd,0,2) === 'u/')
391 $this->cmd = 'profile/' . substr($this->cmd,2);
395 * Break the URL path into C style argc/argv style arguments for our
396 * modules. Given "http://example.com/module/arg1/arg2", $this->argc
397 * will be 3 (integer) and $this->argv will contain:
403 * There will always be one argument. If provided a naked domain
404 * URL, $this->argv[0] is set to "home".
408 $this->argv = explode('/',$this->cmd);
409 $this->argc = count($this->argv);
410 if((array_key_exists('0',$this->argv)) && strlen($this->argv[0])) {
411 $this->module = str_replace(".", "_", $this->argv[0]);
415 $this->argv = array('home');
416 $this->module = 'home';
420 * Special handling for the webfinger/lrdd host XRD file
423 if($this->cmd === '.well-known/host-meta') {
425 $this->argv = array('hostxrd');
426 $this->module = 'hostxrd';
430 * See if there is any page number information, and initialise
434 $this->pager['page'] = ((x($_GET,'page') && intval($_GET['page']) > 0) ? intval($_GET['page']) : 1);
435 $this->pager['itemspage'] = 50;
436 $this->pager['start'] = ($this->pager['page'] * $this->pager['itemspage']) - $this->pager['itemspage'];
437 $this->pager['total'] = 0;
440 function get_baseurl($ssl = false) {
442 $scheme = $this->scheme;
444 if((x($this->config,'system')) && (x($this->config['system'],'ssl_policy'))) {
445 if(intval($this->config['system']['ssl_policy']) === intval(SSL_POLICY_FULL))
448 // Basically, we have $ssl = true on any links which can only be seen by a logged in user
449 // (and also the login link). Anything seen by an outsider will have it turned off.
451 if($this->config['system']['ssl_policy'] == SSL_POLICY_SELFSIGN) {
459 $this->baseurl = $scheme . "://" . $this->hostname . ((isset($this->path) && strlen($this->path)) ? '/' . $this->path : '' );
460 return $this->baseurl;
463 function set_baseurl($url) {
464 $parsed = @parse_url($url);
466 $this->baseurl = $url;
469 $this->scheme = $parsed['scheme'];
471 $this->hostname = $parsed['host'];
472 if(x($parsed,'port'))
473 $this->hostname .= ':' . $parsed['port'];
474 if(x($parsed,'path'))
475 $this->path = trim($parsed['path'],'\\/');
480 function get_hostname() {
481 return $this->hostname;
484 function set_hostname($h) {
485 $this->hostname = $h;
488 function set_path($p) {
489 $this->path = trim(trim($p),'/');
492 function get_path() {
496 function set_pager_total($n) {
497 $this->pager['total'] = intval($n);
500 function set_pager_itemspage($n) {
501 $this->pager['itemspage'] = ((intval($n) > 0) ? intval($n) : 0);
502 $this->pager['start'] = ($this->pager['page'] * $this->pager['itemspage']) - $this->pager['itemspage'];
506 function init_pagehead() {
507 $interval = ((local_user()) ? get_pconfig(local_user(),'system','update_interval') : 40000);
508 if($interval < 10000)
511 $this->page['title'] = $this->config['sitename'];
512 $tpl = file_get_contents('view/head.tpl');
513 $this->page['htmlhead'] = replace_macros($tpl,array(
514 '$baseurl' => $this->get_baseurl(), // FIXME for z_path!!!!
515 '$local_user' => local_user(),
516 '$generator' => 'Friendica' . ' ' . FRIENDICA_VERSION,
517 '$delitem' => t('Delete this item?'),
518 '$comment' => t('Comment'),
519 '$showmore' => t('show more'),
520 '$showfewer' => t('show fewer'),
521 '$update_interval' => $interval
525 function set_curl_code($code) {
526 $this->curl_code = $code;
529 function get_curl_code() {
530 return $this->curl_code;
533 function set_curl_headers($headers) {
534 $this->curl_headers = $headers;
537 function get_curl_headers() {
538 return $this->curl_headers;
541 function get_cached_avatar_image($avatar_image){
542 if($this->cached_profile_image[$avatar_image])
543 return $this->cached_profile_image[$avatar_image];
545 $path_parts = explode("/",$avatar_image);
546 $common_filename = $path_parts[count($path_parts)-1];
548 if($this->cached_profile_picdate[$common_filename]){
549 $this->cached_profile_image[$avatar_image] = $avatar_image . $this->cached_profile_picdate[$common_filename];
551 $r = q("SELECT `contact`.`avatar-date` AS picdate FROM `contact` WHERE `contact`.`thumb` like \"%%/%s\"",
554 $this->cached_profile_image[$avatar_image] = $avatar_image;
556 $this->cached_profile_picdate[$common_filename] = "?rev=" . urlencode($r[0]['picdate']);
557 $this->cached_profile_image[$avatar_image] = $avatar_image . $this->cached_profile_picdate[$common_filename];
560 return $this->cached_profile_image[$avatar_image];
567 // retrieve the App structure
568 // useful in functions which require it but don't get it passed to them
570 if(! function_exists('get_app')) {
578 // Multi-purpose function to check variable state.
579 // Usage: x($var) or $x($array,'key')
580 // returns false if variable/key is not set
581 // if variable is set, returns 1 if has 'non-zero' value, otherwise returns 0.
582 // e.g. x('') or x(0) returns 0;
584 if(! function_exists('x')) {
585 function x($s,$k = NULL) {
587 if((is_array($s)) && (array_key_exists($k,$s))) {
606 // called from db initialisation if db is dead.
608 if(! function_exists('system_unavailable')) {
609 function system_unavailable() {
610 include('system_unavailable.php');
618 function clean_urls() {
620 // if($a->config['system']['clean_urls'])
627 $base = $a->get_baseurl();
635 return $a->get_baseurl();
638 function absurl($path) {
639 if(strpos($path,'/') === 0)
640 return z_path() . $path;
645 return (!empty($_SERVER['HTTP_X_REQUESTED_WITH']) && strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) == 'xmlhttprequest');
649 // Primarily involved with database upgrade, but also sets the
650 // base url for use in cmdline programs which don't have
651 // $_SERVER variables, and synchronising the state of installed plugins.
654 if(! function_exists('check_config')) {
655 function check_config(&$a) {
657 $build = get_config('system','build');
659 $build = set_config('system','build',DB_UPDATE_VERSION);
661 $url = get_config('system','url');
663 // if the url isn't set or the stored url is radically different
664 // than the currently visited url, store the current value accordingly.
665 // "Radically different" ignores common variations such as http vs https
666 // and www.example.com vs example.com.
668 if((! x($url)) || (! link_compare($url,$a->get_baseurl())))
669 $url = set_config('system','url',$a->get_baseurl());
671 if($build != DB_UPDATE_VERSION) {
672 $stored = intval($build);
673 $current = intval(DB_UPDATE_VERSION);
674 if(($stored < $current) && file_exists('update.php')) {
676 load_config('database');
678 // We're reporting a different version than what is currently installed.
679 // Run any existing update scripts to bring the database up to current.
681 require_once('update.php');
683 // make sure that boot.php and update.php are the same release, we might be
684 // updating right this very second and the correct version of the update.php
685 // file may not be here yet. This can happen on a very busy site.
687 if(DB_UPDATE_VERSION == UPDATE_VERSION) {
689 for($x = $stored; $x < $current; $x ++) {
690 if(function_exists('update_' . $x)) {
692 // There could be a lot of processes running or about to run.
693 // We want exactly one process to run the update command.
694 // So store the fact that we're taking responsibility
695 // after first checking to see if somebody else already has.
697 // If the update fails or times-out completely you may need to
698 // delete the config entry to try again.
700 if(get_config('database','update_' . $x))
702 set_config('database','update_' . $x, '1');
704 // call the specific update
706 $func = 'update_' . $x;
709 //send the administrator an e-mail
710 $email_tpl = get_intltext_template("update_fail_eml.tpl");
711 $email_msg = replace_macros($email_tpl, array(
712 '$sitename' => $a->config['sitename'],
713 '$siteurl' => $a->get_baseurl(),
715 '$error' => sprintf( t('Update %s failed. See error logs.'), $x)
717 $subject=sprintf(t('Update Error at %s'), $a->get_baseurl());
719 mail($a->config['admin_email'], $subject, $email_msg,
720 'From: ' . t('Administrator') . '@' . $_SERVER['SERVER_NAME'] . "\n"
721 . 'Content-type: text/plain; charset=UTF-8' . "\n"
722 . 'Content-transfer-encoding: 8bit' );
724 logger('CRITICAL: Update Failed: '. $x);
727 set_config('database','update_' . $x, 'success');
731 set_config('system','build', DB_UPDATE_VERSION);
738 * Synchronise plugins:
740 * $a->config['system']['addon'] contains a comma-separated list of names
741 * of plugins/addons which are used on this system.
742 * Go through the database list of already installed addons, and if we have
743 * an entry, but it isn't in the config list, call the uninstall procedure
744 * and mark it uninstalled in the database (for now we'll remove it).
745 * Then go through the config list and if we have a plugin that isn't installed,
746 * call the install procedure and add it to the database.
750 $r = q("SELECT * FROM `addon` WHERE `installed` = 1");
754 $installed = array();
756 $plugins = get_config('system','addon');
757 $plugins_arr = array();
760 $plugins_arr = explode(',',str_replace(' ', '',$plugins));
762 $a->plugins = $plugins_arr;
764 $installed_arr = array();
766 if(count($installed)) {
767 foreach($installed as $i) {
768 if(! in_array($i['name'],$plugins_arr)) {
769 uninstall_plugin($i['name']);
772 $installed_arr[] = $i['name'];
777 if(count($plugins_arr)) {
778 foreach($plugins_arr as $p) {
779 if(! in_array($p,$installed_arr)) {
793 function get_guid($size=16) {
794 $exists = true; // assume by default that we don't have a unique guid
796 $s = random_string($size);
797 $r = q("select id from guid where guid = '%s' limit 1", dbesc($s));
801 q("insert into guid ( guid ) values ( '%s' ) ", dbesc($s));
806 // wrapper for adding a login box. If $register == true provide a registration
807 // link. This will most always depend on the value of $a->config['register_policy'].
808 // returns the complete html for inserting into the page
810 if(! function_exists('login')) {
811 function login($register = false, $hiddens=false) {
817 'title' => t('Create a New Account'),
818 'desc' => t('Register')
822 $noid = get_config('system','no_openid');
824 $dest_url = $a->get_baseurl(true) . '/' . $a->query_string;
827 $tpl = get_markup_template("logout.tpl");
830 $tpl = get_markup_template("login.tpl");
831 $_SESSION['return_url'] = $a->query_string;
835 $o .= replace_macros($tpl,array(
837 '$dest_url' => $dest_url,
838 '$logout' => t('Logout'),
839 '$login' => t('Login'),
841 '$lname' => array('username', t('Nickname or Email address: ') , '', ''),
842 '$lpassword' => array('password', t('Password: '), '', ''),
845 '$lopenid' => array('openid_url', t('Or login using OpenID: '),'',''),
847 '$hiddens' => $hiddens,
851 '$lostpass' => t('Forgot your password?'),
852 '$lostlink' => t('Password Reset'),
855 call_hooks('login_hook',$o);
861 // Used to end the current process, after saving session state.
863 if(! function_exists('killme')) {
865 session_write_close();
870 // redirect to another URL and terminate this process.
872 if(! function_exists('goaway')) {
873 function goaway($s) {
874 header("Location: $s");
880 // Returns the uid of locally logged in user or false.
882 if(! function_exists('local_user')) {
883 function local_user() {
884 if((x($_SESSION,'authenticated')) && (x($_SESSION,'uid')))
885 return intval($_SESSION['uid']);
890 // Returns contact id of authenticated site visitor or false
892 if(! function_exists('remote_user')) {
893 function remote_user() {
894 if((x($_SESSION,'authenticated')) && (x($_SESSION,'visitor_id')))
895 return intval($_SESSION['visitor_id']);
900 // contents of $s are displayed prominently on the page the next time
901 // a page is loaded. Usually used for errors or alerts.
903 if(! function_exists('notice')) {
904 function notice($s) {
906 if(! x($_SESSION,'sysmsg')) $_SESSION['sysmsg'] = array();
908 $_SESSION['sysmsg'][] = $s;
911 if(! function_exists('info')) {
914 if(! x($_SESSION,'sysmsg_info')) $_SESSION['sysmsg_info'] = array();
916 $_SESSION['sysmsg_info'][] = $s;
921 // wrapper around config to limit the text length of an incoming message
923 if(! function_exists('get_max_import_size')) {
924 function get_max_import_size() {
926 return ((x($a->config,'max_import_size')) ? $a->config['max_import_size'] : 0 );
934 * Function : profile_load
936 * @parameter string $nickname
937 * @parameter int $profile
939 * Summary: Loads a profile into the page sidebar.
940 * The function requires a writeable copy of the main App structure, and the nickname
941 * of a registered local account.
943 * If the viewer is an authenticated remote viewer, the profile displayed is the
944 * one that has been configured for his/her viewing in the Contact manager.
945 * Passing a non-zero profile ID can also allow a preview of a selected profile
948 * Profile information is placed in the App structure for later retrieval.
949 * Honours the owner's chosen theme for display.
953 if(! function_exists('profile_load')) {
954 function profile_load(&$a, $nickname, $profile = 0) {
956 $r = q("SELECT `profile-id` FROM `contact` WHERE `id` = %d LIMIT 1",
957 intval($_SESSION['visitor_id']));
959 $profile = $r[0]['profile-id'];
965 $profile_int = intval($profile);
966 $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
967 left join `contact` on `contact`.`uid` = `profile`.`uid` LEFT JOIN `user` ON `profile`.`uid` = `user`.`uid`
968 WHERE `user`.`nickname` = '%s' AND `profile`.`id` = %d and `contact`.`self` = 1 LIMIT 1",
973 if((! $r) && (! count($r))) {
974 $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
975 left join `contact` on `contact`.`uid` = `profile`.`uid` LEFT JOIN `user` ON `profile`.`uid` = `user`.`uid`
976 WHERE `user`.`nickname` = '%s' AND `profile`.`is-default` = 1 and `contact`.`self` = 1 LIMIT 1",
981 if(($r === false) || (! count($r))) {
982 logger('profile error: ' . $a->query_string, LOGGER_DEBUG);
983 notice( t('Requested profile is not available.') . EOL );
988 // fetch user tags if this isn't the default profile
990 if(! $r[0]['is-default']) {
991 $x = q("select `pub_keywords` from `profile` where uid = %d and `is-default` = 1 limit 1",
995 $r[0]['pub_keywords'] = $x[0]['pub_keywords'];
1001 $a->page['title'] = $a->profile['name'] . " @ " . $a->config['sitename'];
1002 $_SESSION['theme'] = $a->profile['theme'];
1005 * load/reload current theme info
1008 $theme_info_file = "view/theme/".current_theme()."/theme.php";
1009 if (file_exists($theme_info_file)){
1010 require_once($theme_info_file);
1013 if(! (x($a->page,'aside')))
1014 $a->page['aside'] = '';
1016 if(local_user() && local_user() == $a->profile['uid']) {
1017 $a->page['aside'] .= replace_macros(get_markup_template('profile_edlink.tpl'),array(
1018 '$editprofile' => t('Edit profile'),
1019 '$profid' => $a->profile['id']
1023 $block = (((get_config('system','block_public')) && (! local_user()) && (! remote_user())) ? true : false);
1025 $a->page['aside'] .= profile_sidebar($a->profile, $block);
1028 $a->page['aside'] .= contact_block();*/
1037 * Function: profile_sidebar
1039 * Formats a profile for display in the sidebar.
1040 * It is very difficult to templatise the HTML completely
1041 * because of all the conditional logic.
1043 * @parameter: array $profile
1045 * Returns HTML string stuitable for sidebar inclusion
1046 * Exceptions: Returns empty string if passed $profile is wrong type or not populated
1051 if(! function_exists('profile_sidebar')) {
1052 function profile_sidebar($profile, $block = 0) {
1061 if((! is_array($profile)) && (! count($profile)))
1064 $profile['picdate'] = urlencode($profile['picdate']);
1066 call_hooks('profile_sidebar_enter', $profile);
1069 // don't show connect link to yourself
1070 $connect = (($profile['uid'] != local_user()) ? t('Connect') : False);
1072 // don't show connect link to authenticated visitors either
1074 if((remote_user()) && ($_SESSION['visitor_visiting'] == $profile['uid']))
1077 if(get_my_url() && $profile['unkmail'])
1078 $wallmessage = t('Message');
1080 $wallmessage = false;
1084 // show edit profile to yourself
1085 if ($profile['uid'] == local_user()) {
1086 $profile['edit'] = array($a->get_baseurl(). '/profiles', t('Profiles'),"", t('Manage/edit profiles'));
1088 $r = q("SELECT * FROM `profile` WHERE `uid` = %d",
1091 $profile['menu'] = array(
1092 'chg_photo' => t('Change profile photo'),
1093 'cr_new' => t('Create New Profile'),
1094 'entries' => array(),
1099 foreach($r as $rr) {
1100 $profile['menu']['entries'][] = array(
1101 'photo' => $rr['thumb'],
1103 'alt' => t('Profile Image'),
1104 'profile_name' => $rr['profile-name'],
1105 'isdefault' => $rr['is-default'],
1106 'visibile_to_everybody' => t('visible to everybody'),
1107 'edit_visibility' => t('Edit visibility'),
1121 if((x($profile,'address') == 1)
1122 || (x($profile,'locality') == 1)
1123 || (x($profile,'region') == 1)
1124 || (x($profile,'postal-code') == 1)
1125 || (x($profile,'country-name') == 1))
1126 $location = t('Location:');
1128 $gender = ((x($profile,'gender') == 1) ? t('Gender:') : False);
1131 $marital = ((x($profile,'marital') == 1) ? t('Status:') : False);
1133 $homepage = ((x($profile,'homepage') == 1) ? t('Homepage:') : False);
1135 if(($profile['hidewall'] || $block) && (! local_user()) && (! remote_user())) {
1136 $location = $pdesc = $gender = $marital = $homepage = False;
1139 $firstname = ((strpos($profile['name'],' '))
1140 ? trim(substr($profile['name'],0,strpos($profile['name'],' '))) : $profile['name']);
1141 $lastname = (($firstname === $profile['name']) ? '' : trim(substr($profile['name'],strlen($firstname))));
1144 'podloc' => $a->get_baseurl(),
1145 'searchable' => (($profile['publish'] && $profile['net-publish']) ? 'true' : 'false' ),
1146 'nickname' => $profile['nickname'],
1147 'fullname' => $profile['name'],
1148 'firstname' => $firstname,
1149 'lastname' => $lastname,
1150 'photo300' => $a->get_cached_avatar_image($a->get_baseurl() . '/photo/custom/300/' . $profile['uid'] . '.jpg'),
1151 'photo100' => $a->get_cached_avatar_image($a->get_baseurl() . '/photo/custom/100/' . $profile['uid'] . '.jpg'),
1152 'photo50' => $a->get_cached_avatar_image($a->get_baseurl() . '/photo/custom/50/' . $profile['uid'] . '.jpg'),
1156 $contact_block = contact_block();
1160 $tpl = get_markup_template('profile_vcard.tpl');
1162 $o .= replace_macros($tpl, array(
1163 '$profile' => $profile,
1164 '$connect' => $connect,
1165 '$wallmessage' => $wallmessage,
1166 '$location' => template_escape($location),
1167 '$gender' => $gender,
1169 '$marital' => $marital,
1170 '$homepage' => $homepage,
1171 '$diaspora' => $diaspora,
1172 '$contact_block' => $contact_block,
1176 $arr = array('profile' => &$profile, 'entry' => &$o);
1178 call_hooks('profile_sidebar', $arr);
1185 if(! function_exists('get_birthdays')) {
1186 function get_birthdays() {
1194 $bd_format = t('g A l F d') ; // 8 AM Friday January 18
1195 $bd_short = t('F d');
1197 $r = q("SELECT `event`.*, `event`.`id` AS `eid`, `contact`.* FROM `event`
1198 LEFT JOIN `contact` ON `contact`.`id` = `event`.`cid`
1199 WHERE `event`.`uid` = %d AND `type` = 'birthday' AND `start` < '%s' AND `finish` > '%s'
1200 ORDER BY `start` ASC ",
1201 intval(local_user()),
1202 dbesc(datetime_convert('UTC','UTC','now + 6 days')),
1203 dbesc(datetime_convert('UTC','UTC','now'))
1206 if($r && count($r)) {
1208 $now = strtotime('now');
1212 foreach($r as $rr) {
1213 if(strlen($rr['name']))
1215 if((strtotime($rr['start'] . ' +00:00') < $now) && (strtotime($rr['finish'] . ' +00:00') > $now))
1218 $classtoday = $istoday ? ' birthday-today ' : '';
1220 foreach($r as &$rr) {
1221 if(! strlen($rr['name']))
1226 if(in_array($rr['cid'],$cids))
1228 $cids[] = $rr['cid'];
1230 $today = (((strtotime($rr['start'] . ' +00:00') < $now) && (strtotime($rr['finish'] . ' +00:00') > $now)) ? true : false);
1233 if($rr['network'] === NETWORK_DFRN) {
1234 $sparkle = " sparkle";
1235 $url = $a->get_baseurl() . '/redir/' . $rr['cid'];
1239 $rr['title'] = $rr['name'];
1240 $rr['date'] = day_translate(datetime_convert('UTC', $a->timezone, $rr['start'], $rr['adjust'] ? $bd_format : $bd_short)) . (($today) ? ' ' . t('[today]') : '');
1241 $rr['startime'] = Null;
1242 $rr['today'] = $today;
1247 $tpl = get_markup_template("birthdays_reminder.tpl");
1248 return replace_macros($tpl, array(
1249 '$baseurl' => $a->get_baseurl(),
1250 '$classtoday' => $classtoday,
1252 '$event_reminders' => t('Birthday Reminders'),
1253 '$event_title' => t('Birthdays this week:'),
1260 if(! function_exists('get_events')) {
1261 function get_events() {
1263 require_once('include/bbcode.php');
1270 $bd_format = t('g A l F d') ; // 8 AM Friday January 18
1271 $bd_short = t('F d');
1273 $r = q("SELECT `event`.* FROM `event`
1274 WHERE `event`.`uid` = %d AND `type` != 'birthday' AND `start` < '%s' AND `start` > '%s'
1275 ORDER BY `start` ASC ",
1276 intval(local_user()),
1277 dbesc(datetime_convert('UTC','UTC','now + 6 days')),
1278 dbesc(datetime_convert('UTC','UTC','now - 1 days'))
1281 if($r && count($r)) {
1282 $now = strtotime('now');
1284 foreach($r as $rr) {
1285 if(strlen($rr['name']))
1288 $strt = datetime_convert('UTC',$rr['convert'] ? $a->timezone : 'UTC',$rr['start'],'Y-m-d');
1289 if($strt === datetime_convert('UTC',$a->timezone,'now','Y-m-d'))
1292 $classtoday = (($istoday) ? 'event-today' : '');
1295 foreach($r as &$rr) {
1297 $md = datetime_convert('UTC',$a->timezone,$rr['start'],'Y/m');
1299 $md = datetime_convert('UTC','UTC',$rr['start'],'Y/m');
1300 $md .= "/#link-".$rr['id'];
1302 $title = substr(strip_tags(bbcode($rr['desc'])),0,32) . '... ';
1304 $title = t('[No description]');
1306 $strt = datetime_convert('UTC',$rr['convert'] ? $a->timezone : 'UTC',$rr['start']);
1307 $today = ((substr($strt,0,10) === datetime_convert('UTC',$a->timezone,'now','Y-m-d')) ? true : false);
1310 $rr['title'] = $title;
1311 $rr['date'] = day_translate(datetime_convert('UTC', $rr['adjust'] ? $a->timezone : 'UTC', $rr['start'], $bd_format)) . (($today) ? ' ' . t('[today]') : '');
1312 $rr['startime'] = $strt;
1313 $rr['today'] = $today;
1317 $tpl = get_markup_template("events_reminder.tpl");
1318 return replace_macros($tpl, array(
1319 '$baseurl' => $a->get_baseurl(),
1320 '$classtoday' => $classtoday,
1321 '$count' => count($r),
1322 '$event_reminders' => t('Event Reminders'),
1323 '$event_title' => t('Events this week:'),
1332 * Wrap calls to proc_close(proc_open()) and call hook
1333 * so plugins can take part in process :)
1336 * $cmd program to run
1337 * next args are passed as $cmd command line
1339 * e.g.: proc_run("ls","-la","/tmp");
1341 * $cmd and string args are surrounded with ""
1344 if(! function_exists('proc_run')) {
1345 function proc_run($cmd){
1349 $args = func_get_args();
1355 // expand any arrays
1357 foreach($args as $arg) {
1358 if(is_array($arg)) {
1359 foreach($arg as $n) {
1369 $arr = array('args' => $args, 'run_cmd' => true);
1371 call_hooks("proc_run", $arr);
1372 if(! $arr['run_cmd'])
1375 if(count($args) && $args[0] === 'php')
1376 $args[0] = ((x($a->config,'php_path')) && (strlen($a->config['php_path'])) ? $a->config['php_path'] : 'php');
1377 foreach ($args as $arg){
1378 $arg = escapeshellarg($arg);
1380 $cmdline = implode($args," ");
1381 proc_close(proc_open($cmdline." &",array(),$foo));
1385 if(! function_exists('current_theme')) {
1386 function current_theme(){
1387 $app_base_themes = array('duepuntozero', 'dispy', 'quattro');
1391 $system_theme = ((isset($a->config['system']['theme'])) ? $a->config['system']['theme'] : '');
1392 $theme_name = ((isset($_SESSION) && x($_SESSION,'theme')) ? $_SESSION['theme'] : $system_theme);
1395 (file_exists('view/theme/' . $theme_name . '/style.css') ||
1396 file_exists('view/theme/' . $theme_name . '/style.php')))
1397 return($theme_name);
1399 foreach($app_base_themes as $t) {
1400 if(file_exists('view/theme/' . $t . '/style.css')||
1401 file_exists('view/theme/' . $t . '/style.php'))
1405 $fallback = array_merge(glob('view/theme/*/style.css'),glob('view/theme/*/style.php'));
1406 if(count($fallback))
1407 return (str_replace('view/theme/','', substr($fallback[0],0,-10)));
1413 * Return full URL to theme which is currently in effect.
1414 * Provide a sane default if nothing is chosen or the specified theme does not exist.
1416 if(! function_exists('current_theme_url')) {
1417 function current_theme_url() {
1419 $t = current_theme();
1420 if (file_exists('view/theme/' . $t . '/style.php'))
1421 return($a->get_baseurl() . '/view/theme/' . $t . '/style.pcss');
1422 return($a->get_baseurl() . '/view/theme/' . $t . '/style.css');
1426 if(! function_exists('feed_birthday')) {
1427 function feed_birthday($uid,$tz) {
1431 * Determine the next birthday, but only if the birthday is published
1432 * in the default profile. We _could_ also look for a private profile that the
1433 * recipient can see, but somebody could get mad at us if they start getting
1434 * public birthday greetings when they haven't made this info public.
1436 * Assuming we are able to publish this info, we are then going to convert
1437 * the start time from the owner's timezone to UTC.
1439 * This will potentially solve the problem found with some social networks
1440 * where birthdays are converted to the viewer's timezone and salutations from
1441 * elsewhere in the world show up on the wrong day. We will convert it to the
1442 * viewer's timezone also, but first we are going to convert it from the birthday
1443 * person's timezone to GMT - so the viewer may find the birthday starting at
1444 * 6:00PM the day before, but that will correspond to midnight to the birthday person.
1454 $p = q("SELECT `dob` FROM `profile` WHERE `is-default` = 1 AND `uid` = %d LIMIT 1",
1458 if($p && count($p)) {
1459 $tmp_dob = substr($p[0]['dob'],5);
1460 if(intval($tmp_dob)) {
1461 $y = datetime_convert($tz,$tz,'now','Y');
1462 $bd = $y . '-' . $tmp_dob . ' 00:00';
1463 $t_dob = strtotime($bd);
1464 $now = strtotime(datetime_convert($tz,$tz,'now'));
1466 $bd = $y + 1 . '-' . $tmp_dob . ' 00:00';
1467 $birthday = datetime_convert($tz,'UTC',$bd,ATOM_TIME);
1475 if(! function_exists('is_site_admin')) {
1476 function is_site_admin() {
1478 if(local_user() && x($a->user,'email') && x($a->config,'admin_email') && ($a->user['email'] === $a->config['admin_email']))
1485 if(! function_exists('load_contact_links')) {
1486 function load_contact_links($uid) {
1492 if(! $uid || x($a->contacts,'empty'))
1495 $r = q("SELECT `id`,`network`,`url`,`thumb` FROM `contact` WHERE `uid` = %d AND `self` = 0 AND `blocked` = 0 ",
1500 $url = normalise_link($rr['url']);
1505 $ret['empty'] = true;
1506 $a->contacts = $ret;
1511 if(! function_exists('profile_tabs')){
1512 function profile_tabs($a, $is_owner=False, $nickname=Null){
1513 //echo "<pre>"; var_dump($a->user); killme();
1515 if (is_null($nickname))
1516 $nickname = $a->user['nickname'];
1519 $tab = notags(trim($_GET['tab']));
1521 $url = $a->get_baseurl() . '/profile/' . $nickname;
1525 'label'=>t('Status'),
1527 'sel' => ((!isset($tab)&&$a->argv[0]=='profile')?'active':''),
1528 'title' => t('Status Messages and Posts'),
1531 'label' => t('Profile'),
1532 'url' => $url.'/?tab=profile',
1533 'sel' => ((isset($tab) && $tab=='profile')?'active':''),
1534 'title' => t('Profile Details'),
1537 'label' => t('Photos'),
1538 'url' => $a->get_baseurl() . '/photos/' . $nickname,
1539 'sel' => ((!isset($tab)&&$a->argv[0]=='photos')?'active':''),
1540 'title' => t('Photo Albums'),
1546 'label' => t('Events'),
1547 'url' => $a->get_baseurl() . '/events',
1548 'sel' =>((!isset($tab)&&$a->argv[0]=='events')?'active':''),
1549 'title' => t('Events and Calendar'),
1552 'label' => t('Personal Notes'),
1553 'url' => $a->get_baseurl() . '/notes',
1554 'sel' =>((!isset($tab)&&$a->argv[0]=='notes')?'active':''),
1555 'title' => t('Only You Can See This'),
1560 $arr = array('is_owner' => $is_owner, 'nickname' => $nickname, 'tab' => (($tab) ? $tab : false), 'tabs' => $tabs);
1561 call_hooks('profile_tabs', $arr);
1563 $tpl = get_markup_template('common_tabs.tpl');
1565 return replace_macros($tpl,array('$tabs' => $arr['tabs']));
1569 function get_my_url() {
1570 if(x($_SESSION,'my_url'))
1571 return $_SESSION['my_url'];
1575 function zrl_init(&$a) {
1576 $tmp_str = get_my_url();
1577 if(validate_url($tmp_str)) {
1578 proc_run('php','include/gprobe.php',bin2hex($tmp_str));
1579 $arr = array('zrl' => $tmp_str, 'url' => $a->cmd);
1580 call_hooks('zrl_init',$arr);
1584 function zrl($s,$force = false) {
1587 if((! strpos($s,'/profile/')) && (! $force))
1589 if($force && substr($s,-1,1) !== '/')
1591 $achar = strpos($s,'?') ? '&' : '?';
1592 $mine = get_my_url();
1593 if($mine and ! link_compare($mine,$s))
1594 return $s . $achar . 'zrl=' . urlencode($mine);
1599 * returns querystring as string from a mapped array
1601 * @param params Array
1604 function build_querystring($params, $name=null) {
1606 foreach($params as $key=>$val) {
1607 if(is_array($val)) {
1609 $ret .= build_querystring($val, $key);
1611 $ret .= build_querystring($val, $name."[$key]");
1614 $val = urlencode($val);
1616 $ret.=$name."[$key]"."=$val&";
1618 $ret.= "$key=$val&";