3 require_once('include/config.php');
4 require_once('include/network.php');
5 require_once('include/plugin.php');
6 require_once('include/text.php');
7 require_once('include/datetime.php');
8 require_once('include/pgettext.php');
9 require_once('include/nav.php');
10 require_once('include/cache.php');
12 define ( 'FRIENDICA_PLATFORM', 'Friendica');
13 define ( 'FRIENDICA_VERSION', '3.0.1413' );
14 define ( 'DFRN_PROTOCOL_VERSION', '2.23' );
15 define ( 'DB_UPDATE_VERSION', 1153 );
17 define ( 'EOL', "<br />\r\n" );
18 define ( 'ATOM_TIME', 'Y-m-d\TH:i:s\Z' );
23 * Image storage quality. Lower numbers save space at cost of image detail.
24 * For ease of upgrade, please do not change here. Change jpeg quality with
25 * $a->config['system']['jpeg_quality'] = n;
26 * in .htconfig.php, where n is netween 1 and 100, and with very poor results
31 define ( 'JPEG_QUALITY', 100 );
33 * $a->config['system']['png_quality'] from 0 (uncompressed) to 9
35 define ( 'PNG_QUALITY', 8 );
39 * An alternate way of limiting picture upload sizes. Specify the maximum pixel
40 * length that pictures are allowed to be (for non-square pictures, it will apply
41 * to the longest side). Pictures longer than this length will be resized to be
42 * this length (on the longest side, the other side will be scaled appropriately).
43 * Modify this value using
45 * $a->config['system']['max_image_length'] = n;
49 * If you don't want to set a maximum length, set to -1. The default value is
50 * defined by 'MAX_IMAGE_LENGTH' below.
53 define ( 'MAX_IMAGE_LENGTH', -1 );
60 define ( 'DEFAULT_DB_ENGINE', 'MyISAM' );
63 * SSL redirection policies
66 define ( 'SSL_POLICY_NONE', 0 );
67 define ( 'SSL_POLICY_FULL', 1 );
68 define ( 'SSL_POLICY_SELFSIGN', 2 );
75 define ( 'LOGGER_NORMAL', 0 );
76 define ( 'LOGGER_TRACE', 1 );
77 define ( 'LOGGER_DEBUG', 2 );
78 define ( 'LOGGER_DATA', 3 );
79 define ( 'LOGGER_ALL', 4 );
82 * registration policies
85 define ( 'REGISTER_CLOSED', 0 );
86 define ( 'REGISTER_APPROVE', 1 );
87 define ( 'REGISTER_OPEN', 2 );
93 define ( 'CONTACT_IS_FOLLOWER', 1);
94 define ( 'CONTACT_IS_SHARING', 2);
95 define ( 'CONTACT_IS_FRIEND', 3);
99 * DB update return values
102 define ( 'UPDATE_SUCCESS', 0);
103 define ( 'UPDATE_FAILED', 1);
110 * PAGE_NORMAL is a typical personal profile account
111 * PAGE_SOAPBOX automatically approves all friend requests as CONTACT_IS_SHARING, (readonly)
112 * PAGE_COMMUNITY automatically approves all friend requests as CONTACT_IS_SHARING, but with
113 * write access to wall and comments (no email and not included in page owner's ACL lists)
114 * PAGE_FREELOVE automatically approves all friend requests as full friends (CONTACT_IS_FRIEND).
118 define ( 'PAGE_NORMAL', 0 );
119 define ( 'PAGE_SOAPBOX', 1 );
120 define ( 'PAGE_COMMUNITY', 2 );
121 define ( 'PAGE_FREELOVE', 3 );
122 define ( 'PAGE_BLOG', 4 );
123 define ( 'PAGE_PRVGROUP', 5 );
126 * Network and protocol family types
129 define ( 'NETWORK_DFRN', 'dfrn'); // Friendica, Mistpark, other DFRN implementations
130 define ( 'NETWORK_ZOT', 'zot!'); // Zot!
131 define ( 'NETWORK_OSTATUS', 'stat'); // status.net, identi.ca, GNU-social, other OStatus implementations
132 define ( 'NETWORK_FEED', 'feed'); // RSS/Atom feeds with no known "post/notify" protocol
133 define ( 'NETWORK_DIASPORA', 'dspr'); // Diaspora
134 define ( 'NETWORK_MAIL', 'mail'); // IMAP/POP
135 define ( 'NETWORK_MAIL2', 'mai2'); // extended IMAP/POP
136 define ( 'NETWORK_FACEBOOK', 'face'); // Facebook API
137 define ( 'NETWORK_LINKEDIN', 'lnkd'); // LinkedIn
138 define ( 'NETWORK_XMPP', 'xmpp'); // XMPP
139 define ( 'NETWORK_MYSPACE', 'mysp'); // MySpace
140 define ( 'NETWORK_GPLUS', 'goog'); // Google+
142 define ( 'NETWORK_PHANTOM', 'unkn'); // Place holder
145 * These numbers are used in stored permissions
146 * and existing allocations MUST NEVER BE CHANGED
147 * OR RE-ASSIGNED! You may only add to them.
150 $netgroup_ids = array(
151 NETWORK_DFRN => (-1),
153 NETWORK_OSTATUS => (-3),
154 NETWORK_FEED => (-4),
155 NETWORK_DIASPORA => (-5),
156 NETWORK_MAIL => (-6),
157 NETWORK_MAIL2 => (-7),
158 NETWORK_FACEBOOK => (-8),
159 NETWORK_LINKEDIN => (-9),
160 NETWORK_XMPP => (-10),
161 NETWORK_MYSPACE => (-11),
162 NETWORK_GPLUS => (-12),
164 NETWORK_PHANTOM => (-127),
169 * Maximum number of "people who like (or don't like) this" that we will list by name
172 define ( 'MAX_LIKERS', 75);
175 * Communication timeout
178 define ( 'ZCURL_TIMEOUT' , (-1));
182 * email notification options
185 define ( 'NOTIFY_INTRO', 0x0001 );
186 define ( 'NOTIFY_CONFIRM', 0x0002 );
187 define ( 'NOTIFY_WALL', 0x0004 );
188 define ( 'NOTIFY_COMMENT', 0x0008 );
189 define ( 'NOTIFY_MAIL', 0x0010 );
190 define ( 'NOTIFY_SUGGEST', 0x0020 );
191 define ( 'NOTIFY_PROFILE', 0x0040 );
192 define ( 'NOTIFY_TAGSELF', 0x0080 );
193 define ( 'NOTIFY_TAGSHARE', 0x0100 );
194 define ( 'NOTIFY_POKE', 0x0200 );
196 define ( 'NOTIFY_SYSTEM', 0x8000 );
203 define ( 'TERM_UNKNOWN', 0 );
204 define ( 'TERM_HASHTAG', 1 );
205 define ( 'TERM_MENTION', 2 );
206 define ( 'TERM_CATEGORY', 3 );
207 define ( 'TERM_PCATEGORY', 4 );
208 define ( 'TERM_FILE', 5 );
210 define ( 'TERM_OBJ_POST', 1 );
211 define ( 'TERM_OBJ_PHOTO', 2 );
216 * various namespaces we may need to parse
219 define ( 'NAMESPACE_ZOT', 'http://purl.org/zot' );
220 define ( 'NAMESPACE_DFRN' , 'http://purl.org/macgirvin/dfrn/1.0' );
221 define ( 'NAMESPACE_THREAD' , 'http://purl.org/syndication/thread/1.0' );
222 define ( 'NAMESPACE_TOMB' , 'http://purl.org/atompub/tombstones/1.0' );
223 define ( 'NAMESPACE_ACTIVITY', 'http://activitystrea.ms/spec/1.0/' );
224 define ( 'NAMESPACE_ACTIVITY_SCHEMA', 'http://activitystrea.ms/schema/1.0/' );
225 define ( 'NAMESPACE_MEDIA', 'http://purl.org/syndication/atommedia' );
226 define ( 'NAMESPACE_SALMON_ME', 'http://salmon-protocol.org/ns/magic-env' );
227 define ( 'NAMESPACE_OSTATUSSUB', 'http://ostatus.org/schema/1.0/subscribe' );
228 define ( 'NAMESPACE_GEORSS', 'http://www.georss.org/georss' );
229 define ( 'NAMESPACE_POCO', 'http://portablecontacts.net/spec/1.0' );
230 define ( 'NAMESPACE_FEED', 'http://schemas.google.com/g/2010#updates-from' );
231 define ( 'NAMESPACE_OSTATUS', 'http://ostatus.org/schema/1.0' );
232 define ( 'NAMESPACE_STATUSNET', 'http://status.net/schema/api/1/' );
233 define ( 'NAMESPACE_ATOM1', 'http://www.w3.org/2005/Atom' );
235 * activity stream defines
238 define ( 'ACTIVITY_LIKE', NAMESPACE_ACTIVITY_SCHEMA . 'like' );
239 define ( 'ACTIVITY_DISLIKE', NAMESPACE_DFRN . '/dislike' );
240 define ( 'ACTIVITY_OBJ_HEART', NAMESPACE_DFRN . '/heart' );
242 define ( 'ACTIVITY_FRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'make-friend' );
243 define ( 'ACTIVITY_REQ_FRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'request-friend' );
244 define ( 'ACTIVITY_UNFRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'remove-friend' );
245 define ( 'ACTIVITY_FOLLOW', NAMESPACE_ACTIVITY_SCHEMA . 'follow' );
246 define ( 'ACTIVITY_UNFOLLOW', NAMESPACE_ACTIVITY_SCHEMA . 'stop-following' );
247 define ( 'ACTIVITY_JOIN', NAMESPACE_ACTIVITY_SCHEMA . 'join' );
249 define ( 'ACTIVITY_POST', NAMESPACE_ACTIVITY_SCHEMA . 'post' );
250 define ( 'ACTIVITY_UPDATE', NAMESPACE_ACTIVITY_SCHEMA . 'update' );
251 define ( 'ACTIVITY_TAG', NAMESPACE_ACTIVITY_SCHEMA . 'tag' );
252 define ( 'ACTIVITY_FAVORITE', NAMESPACE_ACTIVITY_SCHEMA . 'favorite' );
254 define ( 'ACTIVITY_POKE', NAMESPACE_ZOT . '/activity/poke' );
256 define ( 'ACTIVITY_OBJ_COMMENT', NAMESPACE_ACTIVITY_SCHEMA . 'comment' );
257 define ( 'ACTIVITY_OBJ_NOTE', NAMESPACE_ACTIVITY_SCHEMA . 'note' );
258 define ( 'ACTIVITY_OBJ_PERSON', NAMESPACE_ACTIVITY_SCHEMA . 'person' );
259 define ( 'ACTIVITY_OBJ_PHOTO', NAMESPACE_ACTIVITY_SCHEMA . 'photo' );
260 define ( 'ACTIVITY_OBJ_P_PHOTO', NAMESPACE_ACTIVITY_SCHEMA . 'profile-photo' );
261 define ( 'ACTIVITY_OBJ_ALBUM', NAMESPACE_ACTIVITY_SCHEMA . 'photo-album' );
262 define ( 'ACTIVITY_OBJ_EVENT', NAMESPACE_ACTIVITY_SCHEMA . 'event' );
263 define ( 'ACTIVITY_OBJ_GROUP', NAMESPACE_ACTIVITY_SCHEMA . 'group' );
264 define ( 'ACTIVITY_OBJ_TAGTERM', NAMESPACE_DFRN . '/tagterm' );
265 define ( 'ACTIVITY_OBJ_PROFILE', NAMESPACE_DFRN . '/profile' );
268 * item weight for query ordering
271 define ( 'GRAVITY_PARENT', 0);
272 define ( 'GRAVITY_LIKE', 3);
273 define ( 'GRAVITY_COMMENT', 6);
277 * Reverse the effect of magic_quotes_gpc if it is enabled.
278 * Please disable magic_quotes_gpc so we don't have to do this.
279 * See http://php.net/manual/en/security.magicquotes.disabling.php
284 error_reporting(E_ERROR | E_WARNING | E_PARSE);
287 // This has to be quite large to deal with embedded private photos
288 ini_set('pcre.backtrack_limit', 500000);
291 if (get_magic_quotes_gpc()) {
292 $process = array(&$_GET, &$_POST, &$_COOKIE, &$_REQUEST);
293 while (list($key, $val) = each($process)) {
294 foreach ($val as $k => $v) {
295 unset($process[$key][$k]);
297 $process[$key][stripslashes($k)] = $v;
298 $process[] = &$process[$key][stripslashes($k)];
300 $process[$key][stripslashes($k)] = stripslashes($v);
313 * Our main application structure for the life of this page
314 * Primarily deals with the URL that got us here
315 * and tries to make some sense of it, and
316 * stores our page contents and config storage
317 * and anything else that might need to be passed around
318 * before we spit the page out.
322 if(! class_exists('App')) {
325 public $module_loaded = false;
326 public $query_string;
334 public $page_contact;
336 public $data = array();
337 public $error = false;
347 public $interactive = true;
349 public $apps = array();
362 private $curl_headers;
364 private $cached_profile_image;
365 private $cached_profile_picdate;
367 function __construct() {
369 global $default_timezone;
371 $this->timezone = ((x($default_timezone)) ? $default_timezone : 'UTC');
373 date_default_timezone_set($this->timezone);
375 $this->config = array();
376 $this->page = array();
377 $this->pager= array();
379 $this->query_string = '';
383 $this->scheme = 'http';
384 if(x($_SERVER,'HTTPS') && $_SERVER['HTTPS'])
385 $this->scheme = 'https';
386 elseif(x($_SERVER,'SERVER_PORT') && (intval($_SERVER['SERVER_PORT']) == 443))
387 $this->scheme = 'https';
390 if(x($_SERVER,'SERVER_NAME')) {
391 $this->hostname = $_SERVER['SERVER_NAME'];
393 // See bug 437 - this didn't work so disabling it
394 //if(stristr($this->hostname,'xn--')) {
395 // PHP or webserver may have converted idn to punycode, so
396 // convert punycode back to utf-8
397 // require_once('library/simplepie/idn/idna_convert.class.php');
398 // $x = new idna_convert();
399 // $this->hostname = $x->decode($_SERVER['SERVER_NAME']);
402 if(x($_SERVER,'SERVER_PORT') && $_SERVER['SERVER_PORT'] != 80 && $_SERVER['SERVER_PORT'] != 443)
403 $this->hostname .= ':' . $_SERVER['SERVER_PORT'];
405 * Figure out if we are running at the top of a domain
406 * or in a sub-directory and adjust accordingly
409 $path = trim(dirname($_SERVER['SCRIPT_NAME']),'/\\');
410 if(isset($path) && strlen($path) && ($path != $this->path))
415 "include/$this->hostname" . PATH_SEPARATOR
416 . 'include' . PATH_SEPARATOR
417 . 'library' . PATH_SEPARATOR
418 . 'library/phpsec' . PATH_SEPARATOR
419 . 'library/langdet' . PATH_SEPARATOR
422 if((x($_SERVER,'QUERY_STRING')) && substr($_SERVER['QUERY_STRING'],0,2) === "q=") {
423 $this->query_string = substr($_SERVER['QUERY_STRING'],2);
424 // removing trailing / - maybe a nginx problem
425 if (substr($this->query_string, 0, 1) == "/")
426 $this->query_string = substr($this->query_string, 1);
429 $this->cmd = trim($_GET['q'],'/\\');
431 // unix style "homedir"
433 if(substr($this->cmd,0,1) === '~')
434 $this->cmd = 'profile/' . substr($this->cmd,1);
436 // Diaspora style profile url
438 if(substr($this->cmd,0,2) === 'u/')
439 $this->cmd = 'profile/' . substr($this->cmd,2);
443 * Break the URL path into C style argc/argv style arguments for our
444 * modules. Given "http://example.com/module/arg1/arg2", $this->argc
445 * will be 3 (integer) and $this->argv will contain:
451 * There will always be one argument. If provided a naked domain
452 * URL, $this->argv[0] is set to "home".
456 $this->argv = explode('/',$this->cmd);
457 $this->argc = count($this->argv);
458 if((array_key_exists('0',$this->argv)) && strlen($this->argv[0])) {
459 $this->module = str_replace(".", "_", $this->argv[0]);
463 $this->argv = array('home');
464 $this->module = 'home';
468 * Special handling for the webfinger/lrdd host XRD file
471 if($this->cmd === '.well-known/host-meta') {
473 $this->argv = array('hostxrd');
474 $this->module = 'hostxrd';
478 * See if there is any page number information, and initialise
482 $this->pager['page'] = ((x($_GET,'page') && intval($_GET['page']) > 0) ? intval($_GET['page']) : 1);
483 $this->pager['itemspage'] = 50;
484 $this->pager['start'] = ($this->pager['page'] * $this->pager['itemspage']) - $this->pager['itemspage'];
485 if($this->pager['start'] < 0)
486 $this->pager['start'] = 0;
487 $this->pager['total'] = 0;
490 function get_baseurl($ssl = false) {
492 $scheme = $this->scheme;
494 if((x($this->config,'system')) && (x($this->config['system'],'ssl_policy'))) {
495 if(intval($this->config['system']['ssl_policy']) === intval(SSL_POLICY_FULL))
498 // Basically, we have $ssl = true on any links which can only be seen by a logged in user
499 // (and also the login link). Anything seen by an outsider will have it turned off.
501 if($this->config['system']['ssl_policy'] == SSL_POLICY_SELFSIGN) {
509 $this->baseurl = $scheme . "://" . $this->hostname . ((isset($this->path) && strlen($this->path)) ? '/' . $this->path : '' );
510 return $this->baseurl;
513 function set_baseurl($url) {
514 $parsed = @parse_url($url);
516 $this->baseurl = $url;
519 $this->scheme = $parsed['scheme'];
521 $this->hostname = $parsed['host'];
522 if(x($parsed,'port'))
523 $this->hostname .= ':' . $parsed['port'];
524 if(x($parsed,'path'))
525 $this->path = trim($parsed['path'],'\\/');
530 function get_hostname() {
531 return $this->hostname;
534 function set_hostname($h) {
535 $this->hostname = $h;
538 function set_path($p) {
539 $this->path = trim(trim($p),'/');
542 function get_path() {
546 function set_pager_total($n) {
547 $this->pager['total'] = intval($n);
550 function set_pager_itemspage($n) {
551 $this->pager['itemspage'] = ((intval($n) > 0) ? intval($n) : 0);
552 $this->pager['start'] = ($this->pager['page'] * $this->pager['itemspage']) - $this->pager['itemspage'];
556 function init_pagehead() {
557 $interval = ((local_user()) ? get_pconfig(local_user(),'system','update_interval') : 40000);
558 if($interval < 10000)
561 $this->page['title'] = $this->config['sitename'];
562 $tpl = file_get_contents('view/head.tpl');
563 $this->page['htmlhead'] = replace_macros($tpl,array(
564 '$baseurl' => $this->get_baseurl(), // FIXME for z_path!!!!
565 '$local_user' => local_user(),
566 '$generator' => 'Friendica' . ' ' . FRIENDICA_VERSION,
567 '$delitem' => t('Delete this item?'),
568 '$comment' => t('Comment'),
569 '$showmore' => t('show more'),
570 '$showfewer' => t('show fewer'),
571 '$update_interval' => $interval
575 function set_curl_code($code) {
576 $this->curl_code = $code;
579 function get_curl_code() {
580 return $this->curl_code;
583 function set_curl_headers($headers) {
584 $this->curl_headers = $headers;
587 function get_curl_headers() {
588 return $this->curl_headers;
591 function get_cached_avatar_image($avatar_image){
592 if($this->cached_profile_image[$avatar_image])
593 return $this->cached_profile_image[$avatar_image];
595 $path_parts = explode("/",$avatar_image);
596 $common_filename = $path_parts[count($path_parts)-1];
598 if($this->cached_profile_picdate[$common_filename]){
599 $this->cached_profile_image[$avatar_image] = $avatar_image . $this->cached_profile_picdate[$common_filename];
601 $r = q("SELECT `contact`.`avatar-date` AS picdate FROM `contact` WHERE `contact`.`thumb` like \"%%/%s\"",
604 $this->cached_profile_image[$avatar_image] = $avatar_image;
606 $this->cached_profile_picdate[$common_filename] = "?rev=" . urlencode($r[0]['picdate']);
607 $this->cached_profile_image[$avatar_image] = $avatar_image . $this->cached_profile_picdate[$common_filename];
610 return $this->cached_profile_image[$avatar_image];
617 // retrieve the App structure
618 // useful in functions which require it but don't get it passed to them
620 if(! function_exists('get_app')) {
628 // Multi-purpose function to check variable state.
629 // Usage: x($var) or $x($array,'key')
630 // returns false if variable/key is not set
631 // if variable is set, returns 1 if has 'non-zero' value, otherwise returns 0.
632 // e.g. x('') or x(0) returns 0;
634 if(! function_exists('x')) {
635 function x($s,$k = NULL) {
637 if((is_array($s)) && (array_key_exists($k,$s))) {
656 // called from db initialisation if db is dead.
658 if(! function_exists('system_unavailable')) {
659 function system_unavailable() {
660 include('system_unavailable.php');
668 function clean_urls() {
670 // if($a->config['system']['clean_urls'])
677 $base = $a->get_baseurl();
685 return $a->get_baseurl();
688 function absurl($path) {
689 if(strpos($path,'/') === 0)
690 return z_path() . $path;
695 return (!empty($_SERVER['HTTP_X_REQUESTED_WITH']) && strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) == 'xmlhttprequest');
699 // Primarily involved with database upgrade, but also sets the
700 // base url for use in cmdline programs which don't have
701 // $_SERVER variables, and synchronising the state of installed plugins.
704 if(! function_exists('check_config')) {
705 function check_config(&$a) {
707 $build = get_config('system','build');
709 $build = set_config('system','build',DB_UPDATE_VERSION);
711 $url = get_config('system','url');
713 // if the url isn't set or the stored url is radically different
714 // than the currently visited url, store the current value accordingly.
715 // "Radically different" ignores common variations such as http vs https
716 // and www.example.com vs example.com.
718 if((! x($url)) || (! link_compare($url,$a->get_baseurl())))
719 $url = set_config('system','url',$a->get_baseurl());
721 if($build != DB_UPDATE_VERSION) {
722 $stored = intval($build);
723 $current = intval(DB_UPDATE_VERSION);
724 if(($stored < $current) && file_exists('update.php')) {
726 load_config('database');
728 // We're reporting a different version than what is currently installed.
729 // Run any existing update scripts to bring the database up to current.
731 require_once('update.php');
733 // make sure that boot.php and update.php are the same release, we might be
734 // updating right this very second and the correct version of the update.php
735 // file may not be here yet. This can happen on a very busy site.
737 if(DB_UPDATE_VERSION == UPDATE_VERSION) {
739 for($x = $stored; $x < $current; $x ++) {
740 if(function_exists('update_' . $x)) {
742 // There could be a lot of processes running or about to run.
743 // We want exactly one process to run the update command.
744 // So store the fact that we're taking responsibility
745 // after first checking to see if somebody else already has.
747 // If the update fails or times-out completely you may need to
748 // delete the config entry to try again.
750 $t = get_config('database','update_' . $x);
753 set_config('database','update_' . $x, time());
755 // call the specific update
757 $func = 'update_' . $x;
760 //send the administrator an e-mail
761 $email_tpl = get_intltext_template("update_fail_eml.tpl");
762 $email_msg = replace_macros($email_tpl, array(
763 '$sitename' => $a->config['sitename'],
764 '$siteurl' => $a->get_baseurl(),
766 '$error' => sprintf( t('Update %s failed. See error logs.'), $x)
768 $subject=sprintf(t('Update Error at %s'), $a->get_baseurl());
770 mail($a->config['admin_email'], $subject, $email_msg,
771 'From: ' . t('Administrator') . '@' . $_SERVER['SERVER_NAME'] . "\n"
772 . 'Content-type: text/plain; charset=UTF-8' . "\n"
773 . 'Content-transfer-encoding: 8bit' );
775 logger('CRITICAL: Update Failed: '. $x);
779 set_config('database','update_' . $x, 'success');
780 set_config('system','build', $x + 1);
790 * Synchronise plugins:
792 * $a->config['system']['addon'] contains a comma-separated list of names
793 * of plugins/addons which are used on this system.
794 * Go through the database list of already installed addons, and if we have
795 * an entry, but it isn't in the config list, call the uninstall procedure
796 * and mark it uninstalled in the database (for now we'll remove it).
797 * Then go through the config list and if we have a plugin that isn't installed,
798 * call the install procedure and add it to the database.
802 $r = q("SELECT * FROM `addon` WHERE `installed` = 1");
806 $installed = array();
808 $plugins = get_config('system','addon');
809 $plugins_arr = array();
812 $plugins_arr = explode(',',str_replace(' ', '',$plugins));
814 $a->plugins = $plugins_arr;
816 $installed_arr = array();
818 if(count($installed)) {
819 foreach($installed as $i) {
820 if(! in_array($i['name'],$plugins_arr)) {
821 uninstall_plugin($i['name']);
824 $installed_arr[] = $i['name'];
829 if(count($plugins_arr)) {
830 foreach($plugins_arr as $p) {
831 if(! in_array($p,$installed_arr)) {
845 function get_guid($size=16) {
846 $exists = true; // assume by default that we don't have a unique guid
848 $s = random_string($size);
849 $r = q("select id from guid where guid = '%s' limit 1", dbesc($s));
853 q("insert into guid ( guid ) values ( '%s' ) ", dbesc($s));
858 // wrapper for adding a login box. If $register == true provide a registration
859 // link. This will most always depend on the value of $a->config['register_policy'].
860 // returns the complete html for inserting into the page
862 if(! function_exists('login')) {
863 function login($register = false, $hiddens=false) {
869 'title' => t('Create a New Account'),
870 'desc' => t('Register')
874 $noid = get_config('system','no_openid');
876 $dest_url = $a->get_baseurl(true) . '/' . $a->query_string;
879 $tpl = get_markup_template("logout.tpl");
882 $tpl = get_markup_template("login.tpl");
883 $_SESSION['return_url'] = $a->query_string;
887 $o .= replace_macros($tpl,array(
889 '$dest_url' => $dest_url,
890 '$logout' => t('Logout'),
891 '$login' => t('Login'),
893 '$lname' => array('username', t('Nickname or Email address: ') , '', ''),
894 '$lpassword' => array('password', t('Password: '), '', ''),
897 '$lopenid' => array('openid_url', t('Or login using OpenID: '),'',''),
899 '$hiddens' => $hiddens,
903 '$lostpass' => t('Forgot your password?'),
904 '$lostlink' => t('Password Reset'),
907 call_hooks('login_hook',$o);
913 // Used to end the current process, after saving session state.
915 if(! function_exists('killme')) {
917 session_write_close();
922 // redirect to another URL and terminate this process.
924 if(! function_exists('goaway')) {
925 function goaway($s) {
926 header("Location: $s");
932 // Returns the uid of locally logged in user or false.
934 if(! function_exists('local_user')) {
935 function local_user() {
936 if((x($_SESSION,'authenticated')) && (x($_SESSION,'uid')))
937 return intval($_SESSION['uid']);
942 // Returns contact id of authenticated site visitor or false
944 if(! function_exists('remote_user')) {
945 function remote_user() {
946 if((x($_SESSION,'authenticated')) && (x($_SESSION,'visitor_id')))
947 return intval($_SESSION['visitor_id']);
952 // contents of $s are displayed prominently on the page the next time
953 // a page is loaded. Usually used for errors or alerts.
955 if(! function_exists('notice')) {
956 function notice($s) {
958 if(! x($_SESSION,'sysmsg')) $_SESSION['sysmsg'] = array();
960 $_SESSION['sysmsg'][] = $s;
963 if(! function_exists('info')) {
966 if(! x($_SESSION,'sysmsg_info')) $_SESSION['sysmsg_info'] = array();
968 $_SESSION['sysmsg_info'][] = $s;
973 // wrapper around config to limit the text length of an incoming message
975 if(! function_exists('get_max_import_size')) {
976 function get_max_import_size() {
978 return ((x($a->config,'max_import_size')) ? $a->config['max_import_size'] : 0 );
986 * Function : profile_load
988 * @parameter string $nickname
989 * @parameter int $profile
991 * Summary: Loads a profile into the page sidebar.
992 * The function requires a writeable copy of the main App structure, and the nickname
993 * of a registered local account.
995 * If the viewer is an authenticated remote viewer, the profile displayed is the
996 * one that has been configured for his/her viewing in the Contact manager.
997 * Passing a non-zero profile ID can also allow a preview of a selected profile
1000 * Profile information is placed in the App structure for later retrieval.
1001 * Honours the owner's chosen theme for display.
1005 if(! function_exists('profile_load')) {
1006 function profile_load(&$a, $nickname, $profile = 0) {
1008 $r = q("SELECT `profile-id` FROM `contact` WHERE `id` = %d LIMIT 1",
1009 intval($_SESSION['visitor_id']));
1011 $profile = $r[0]['profile-id'];
1017 $profile_int = intval($profile);
1018 $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
1019 left join `contact` on `contact`.`uid` = `profile`.`uid` LEFT JOIN `user` ON `profile`.`uid` = `user`.`uid`
1020 WHERE `user`.`nickname` = '%s' AND `profile`.`id` = %d and `contact`.`self` = 1 LIMIT 1",
1022 intval($profile_int)
1025 if((! $r) && (! count($r))) {
1026 $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
1027 left join `contact` on `contact`.`uid` = `profile`.`uid` LEFT JOIN `user` ON `profile`.`uid` = `user`.`uid`
1028 WHERE `user`.`nickname` = '%s' AND `profile`.`is-default` = 1 and `contact`.`self` = 1 LIMIT 1",
1033 if(($r === false) || (! count($r))) {
1034 logger('profile error: ' . $a->query_string, LOGGER_DEBUG);
1035 notice( t('Requested profile is not available.') . EOL );
1040 // fetch user tags if this isn't the default profile
1042 if(! $r[0]['is-default']) {
1043 $x = q("select `pub_keywords` from `profile` where uid = %d and `is-default` = 1 limit 1",
1044 intval($profile_uid)
1047 $r[0]['pub_keywords'] = $x[0]['pub_keywords'];
1050 $a->profile = $r[0];
1053 $a->page['title'] = $a->profile['name'] . " @ " . $a->config['sitename'];
1054 $_SESSION['theme'] = $a->profile['theme'];
1057 * load/reload current theme info
1060 $theme_info_file = "view/theme/".current_theme()."/theme.php";
1061 if (file_exists($theme_info_file)){
1062 require_once($theme_info_file);
1065 if(! (x($a->page,'aside')))
1066 $a->page['aside'] = '';
1068 if(local_user() && local_user() == $a->profile['uid']) {
1069 $a->page['aside'] .= replace_macros(get_markup_template('profile_edlink.tpl'),array(
1070 '$editprofile' => t('Edit profile'),
1071 '$profid' => $a->profile['id']
1075 $block = (((get_config('system','block_public')) && (! local_user()) && (! remote_user())) ? true : false);
1077 $a->page['aside'] .= profile_sidebar($a->profile, $block);
1080 $a->page['aside'] .= contact_block();*/
1089 * Function: profile_sidebar
1091 * Formats a profile for display in the sidebar.
1092 * It is very difficult to templatise the HTML completely
1093 * because of all the conditional logic.
1095 * @parameter: array $profile
1097 * Returns HTML string stuitable for sidebar inclusion
1098 * Exceptions: Returns empty string if passed $profile is wrong type or not populated
1103 if(! function_exists('profile_sidebar')) {
1104 function profile_sidebar($profile, $block = 0) {
1113 if((! is_array($profile)) && (! count($profile)))
1116 $profile['picdate'] = urlencode($profile['picdate']);
1118 call_hooks('profile_sidebar_enter', $profile);
1121 // don't show connect link to yourself
1122 $connect = (($profile['uid'] != local_user()) ? t('Connect') : False);
1124 // don't show connect link to authenticated visitors either
1126 if((remote_user()) && ($_SESSION['visitor_visiting'] == $profile['uid']))
1129 if(get_my_url() && $profile['unkmail'])
1130 $wallmessage = t('Message');
1132 $wallmessage = false;
1136 // show edit profile to yourself
1137 if ($profile['uid'] == local_user()) {
1138 $profile['edit'] = array($a->get_baseurl(). '/profiles', t('Profiles'),"", t('Manage/edit profiles'));
1140 $r = q("SELECT * FROM `profile` WHERE `uid` = %d",
1143 $profile['menu'] = array(
1144 'chg_photo' => t('Change profile photo'),
1145 'cr_new' => t('Create New Profile'),
1146 'entries' => array(),
1151 foreach($r as $rr) {
1152 $profile['menu']['entries'][] = array(
1153 'photo' => $rr['thumb'],
1155 'alt' => t('Profile Image'),
1156 'profile_name' => $rr['profile-name'],
1157 'isdefault' => $rr['is-default'],
1158 'visibile_to_everybody' => t('visible to everybody'),
1159 'edit_visibility' => t('Edit visibility'),
1173 if((x($profile,'address') == 1)
1174 || (x($profile,'locality') == 1)
1175 || (x($profile,'region') == 1)
1176 || (x($profile,'postal-code') == 1)
1177 || (x($profile,'country-name') == 1))
1178 $location = t('Location:');
1180 $gender = ((x($profile,'gender') == 1) ? t('Gender:') : False);
1183 $marital = ((x($profile,'marital') == 1) ? t('Status:') : False);
1185 $homepage = ((x($profile,'homepage') == 1) ? t('Homepage:') : False);
1187 if(($profile['hidewall'] || $block) && (! local_user()) && (! remote_user())) {
1188 $location = $pdesc = $gender = $marital = $homepage = False;
1191 $firstname = ((strpos($profile['name'],' '))
1192 ? trim(substr($profile['name'],0,strpos($profile['name'],' '))) : $profile['name']);
1193 $lastname = (($firstname === $profile['name']) ? '' : trim(substr($profile['name'],strlen($firstname))));
1196 'podloc' => $a->get_baseurl(),
1197 'searchable' => (($profile['publish'] && $profile['net-publish']) ? 'true' : 'false' ),
1198 'nickname' => $profile['nickname'],
1199 'fullname' => $profile['name'],
1200 'firstname' => $firstname,
1201 'lastname' => $lastname,
1202 'photo300' => $a->get_cached_avatar_image($a->get_baseurl() . '/photo/custom/300/' . $profile['uid'] . '.jpg'),
1203 'photo100' => $a->get_cached_avatar_image($a->get_baseurl() . '/photo/custom/100/' . $profile['uid'] . '.jpg'),
1204 'photo50' => $a->get_cached_avatar_image($a->get_baseurl() . '/photo/custom/50/' . $profile['uid'] . '.jpg'),
1208 $contact_block = contact_block();
1212 $tpl = get_markup_template('profile_vcard.tpl');
1214 $o .= replace_macros($tpl, array(
1215 '$profile' => $profile,
1216 '$connect' => $connect,
1217 '$wallmessage' => $wallmessage,
1218 '$location' => template_escape($location),
1219 '$gender' => $gender,
1221 '$marital' => $marital,
1222 '$homepage' => $homepage,
1223 '$diaspora' => $diaspora,
1224 '$contact_block' => $contact_block,
1228 $arr = array('profile' => &$profile, 'entry' => &$o);
1230 call_hooks('profile_sidebar', $arr);
1237 if(! function_exists('get_birthdays')) {
1238 function get_birthdays() {
1246 $bd_format = t('g A l F d') ; // 8 AM Friday January 18
1247 $bd_short = t('F d');
1249 $r = q("SELECT `event`.*, `event`.`id` AS `eid`, `contact`.* FROM `event`
1250 LEFT JOIN `contact` ON `contact`.`id` = `event`.`cid`
1251 WHERE `event`.`uid` = %d AND `type` = 'birthday' AND `start` < '%s' AND `finish` > '%s'
1252 ORDER BY `start` ASC ",
1253 intval(local_user()),
1254 dbesc(datetime_convert('UTC','UTC','now + 6 days')),
1255 dbesc(datetime_convert('UTC','UTC','now'))
1258 if($r && count($r)) {
1260 $now = strtotime('now');
1264 foreach($r as $rr) {
1265 if(strlen($rr['name']))
1267 if((strtotime($rr['start'] . ' +00:00') < $now) && (strtotime($rr['finish'] . ' +00:00') > $now))
1270 $classtoday = $istoday ? ' birthday-today ' : '';
1272 foreach($r as &$rr) {
1273 if(! strlen($rr['name']))
1278 if(in_array($rr['cid'],$cids))
1280 $cids[] = $rr['cid'];
1282 $today = (((strtotime($rr['start'] . ' +00:00') < $now) && (strtotime($rr['finish'] . ' +00:00') > $now)) ? true : false);
1285 if($rr['network'] === NETWORK_DFRN) {
1286 $sparkle = " sparkle";
1287 $url = $a->get_baseurl() . '/redir/' . $rr['cid'];
1291 $rr['title'] = $rr['name'];
1292 $rr['date'] = day_translate(datetime_convert('UTC', $a->timezone, $rr['start'], $rr['adjust'] ? $bd_format : $bd_short)) . (($today) ? ' ' . t('[today]') : '');
1293 $rr['startime'] = Null;
1294 $rr['today'] = $today;
1299 $tpl = get_markup_template("birthdays_reminder.tpl");
1300 return replace_macros($tpl, array(
1301 '$baseurl' => $a->get_baseurl(),
1302 '$classtoday' => $classtoday,
1304 '$event_reminders' => t('Birthday Reminders'),
1305 '$event_title' => t('Birthdays this week:'),
1307 '$lbr' => '{', // raw brackets mess up if/endif macro processing
1315 if(! function_exists('get_events')) {
1316 function get_events() {
1318 require_once('include/bbcode.php');
1325 $bd_format = t('g A l F d') ; // 8 AM Friday January 18
1326 $bd_short = t('F d');
1328 $r = q("SELECT `event`.* FROM `event`
1329 WHERE `event`.`uid` = %d AND `type` != 'birthday' AND `start` < '%s' AND `start` > '%s'
1330 ORDER BY `start` ASC ",
1331 intval(local_user()),
1332 dbesc(datetime_convert('UTC','UTC','now + 6 days')),
1333 dbesc(datetime_convert('UTC','UTC','now - 1 days'))
1336 if($r && count($r)) {
1337 $now = strtotime('now');
1339 foreach($r as $rr) {
1340 if(strlen($rr['name']))
1343 $strt = datetime_convert('UTC',$rr['convert'] ? $a->timezone : 'UTC',$rr['start'],'Y-m-d');
1344 if($strt === datetime_convert('UTC',$a->timezone,'now','Y-m-d'))
1347 $classtoday = (($istoday) ? 'event-today' : '');
1350 foreach($r as &$rr) {
1352 $md = datetime_convert('UTC',$a->timezone,$rr['start'],'Y/m');
1354 $md = datetime_convert('UTC','UTC',$rr['start'],'Y/m');
1355 $md .= "/#link-".$rr['id'];
1357 $title = substr(strip_tags(bbcode($rr['desc'])),0,32) . '... ';
1359 $title = t('[No description]');
1361 $strt = datetime_convert('UTC',$rr['convert'] ? $a->timezone : 'UTC',$rr['start']);
1362 $today = ((substr($strt,0,10) === datetime_convert('UTC',$a->timezone,'now','Y-m-d')) ? true : false);
1365 $rr['title'] = $title;
1366 $rr['date'] = day_translate(datetime_convert('UTC', $rr['adjust'] ? $a->timezone : 'UTC', $rr['start'], $bd_format)) . (($today) ? ' ' . t('[today]') : '');
1367 $rr['startime'] = $strt;
1368 $rr['today'] = $today;
1372 $tpl = get_markup_template("events_reminder.tpl");
1373 return replace_macros($tpl, array(
1374 '$baseurl' => $a->get_baseurl(),
1375 '$classtoday' => $classtoday,
1376 '$count' => count($r),
1377 '$event_reminders' => t('Event Reminders'),
1378 '$event_title' => t('Events this week:'),
1387 * Wrap calls to proc_close(proc_open()) and call hook
1388 * so plugins can take part in process :)
1391 * $cmd program to run
1392 * next args are passed as $cmd command line
1394 * e.g.: proc_run("ls","-la","/tmp");
1396 * $cmd and string args are surrounded with ""
1399 if(! function_exists('proc_run')) {
1400 function proc_run($cmd){
1404 $args = func_get_args();
1410 // expand any arrays
1412 foreach($args as $arg) {
1413 if(is_array($arg)) {
1414 foreach($arg as $n) {
1424 $arr = array('args' => $args, 'run_cmd' => true);
1426 call_hooks("proc_run", $arr);
1427 if(! $arr['run_cmd'])
1430 if(count($args) && $args[0] === 'php')
1431 $args[0] = ((x($a->config,'php_path')) && (strlen($a->config['php_path'])) ? $a->config['php_path'] : 'php');
1432 for($x = 0; $x < count($args); $x ++)
1433 $args[$x] = escapeshellarg($args[$x]);
1435 $cmdline = implode($args," ");
1436 proc_close(proc_open($cmdline." &",array(),$foo));
1440 if(! function_exists('current_theme')) {
1441 function current_theme(){
1442 $app_base_themes = array('duepuntozero', 'dispy', 'quattro');
1446 $system_theme = ((isset($a->config['system']['theme'])) ? $a->config['system']['theme'] : '');
1447 $theme_name = ((isset($_SESSION) && x($_SESSION,'theme')) ? $_SESSION['theme'] : $system_theme);
1450 (file_exists('view/theme/' . $theme_name . '/style.css') ||
1451 file_exists('view/theme/' . $theme_name . '/style.php')))
1452 return($theme_name);
1454 foreach($app_base_themes as $t) {
1455 if(file_exists('view/theme/' . $t . '/style.css')||
1456 file_exists('view/theme/' . $t . '/style.php'))
1460 $fallback = array_merge(glob('view/theme/*/style.css'),glob('view/theme/*/style.php'));
1461 if(count($fallback))
1462 return (str_replace('view/theme/','', substr($fallback[0],0,-10)));
1468 * Return full URL to theme which is currently in effect.
1469 * Provide a sane default if nothing is chosen or the specified theme does not exist.
1471 if(! function_exists('current_theme_url')) {
1472 function current_theme_url() {
1474 $t = current_theme();
1475 if (file_exists('view/theme/' . $t . '/style.php'))
1476 return($a->get_baseurl() . '/view/theme/' . $t . '/style.pcss');
1477 return($a->get_baseurl() . '/view/theme/' . $t . '/style.css');
1481 if(! function_exists('feed_birthday')) {
1482 function feed_birthday($uid,$tz) {
1486 * Determine the next birthday, but only if the birthday is published
1487 * in the default profile. We _could_ also look for a private profile that the
1488 * recipient can see, but somebody could get mad at us if they start getting
1489 * public birthday greetings when they haven't made this info public.
1491 * Assuming we are able to publish this info, we are then going to convert
1492 * the start time from the owner's timezone to UTC.
1494 * This will potentially solve the problem found with some social networks
1495 * where birthdays are converted to the viewer's timezone and salutations from
1496 * elsewhere in the world show up on the wrong day. We will convert it to the
1497 * viewer's timezone also, but first we are going to convert it from the birthday
1498 * person's timezone to GMT - so the viewer may find the birthday starting at
1499 * 6:00PM the day before, but that will correspond to midnight to the birthday person.
1509 $p = q("SELECT `dob` FROM `profile` WHERE `is-default` = 1 AND `uid` = %d LIMIT 1",
1513 if($p && count($p)) {
1514 $tmp_dob = substr($p[0]['dob'],5);
1515 if(intval($tmp_dob)) {
1516 $y = datetime_convert($tz,$tz,'now','Y');
1517 $bd = $y . '-' . $tmp_dob . ' 00:00';
1518 $t_dob = strtotime($bd);
1519 $now = strtotime(datetime_convert($tz,$tz,'now'));
1521 $bd = $y + 1 . '-' . $tmp_dob . ' 00:00';
1522 $birthday = datetime_convert($tz,'UTC',$bd,ATOM_TIME);
1530 if(! function_exists('is_site_admin')) {
1531 function is_site_admin() {
1533 if(local_user() && x($a->user,'email') && x($a->config,'admin_email') && ($a->user['email'] === $a->config['admin_email']))
1540 if(! function_exists('load_contact_links')) {
1541 function load_contact_links($uid) {
1547 if(! $uid || x($a->contacts,'empty'))
1550 $r = q("SELECT `id`,`network`,`url`,`thumb` FROM `contact` WHERE `uid` = %d AND `self` = 0 AND `blocked` = 0 ",
1555 $url = normalise_link($rr['url']);
1560 $ret['empty'] = true;
1561 $a->contacts = $ret;
1566 if(! function_exists('profile_tabs')){
1567 function profile_tabs($a, $is_owner=False, $nickname=Null){
1568 //echo "<pre>"; var_dump($a->user); killme();
1570 if (is_null($nickname))
1571 $nickname = $a->user['nickname'];
1574 $tab = notags(trim($_GET['tab']));
1576 $url = $a->get_baseurl() . '/profile/' . $nickname;
1580 'label'=>t('Status'),
1582 'sel' => ((!isset($tab)&&$a->argv[0]=='profile')?'active':''),
1583 'title' => t('Status Messages and Posts'),
1586 'label' => t('Profile'),
1587 'url' => $url.'/?tab=profile',
1588 'sel' => ((isset($tab) && $tab=='profile')?'active':''),
1589 'title' => t('Profile Details'),
1592 'label' => t('Photos'),
1593 'url' => $a->get_baseurl() . '/photos/' . $nickname,
1594 'sel' => ((!isset($tab)&&$a->argv[0]=='photos')?'active':''),
1595 'title' => t('Photo Albums'),
1601 'label' => t('Events'),
1602 'url' => $a->get_baseurl() . '/events',
1603 'sel' =>((!isset($tab)&&$a->argv[0]=='events')?'active':''),
1604 'title' => t('Events and Calendar'),
1607 'label' => t('Personal Notes'),
1608 'url' => $a->get_baseurl() . '/notes',
1609 'sel' =>((!isset($tab)&&$a->argv[0]=='notes')?'active':''),
1610 'title' => t('Only You Can See This'),
1615 $arr = array('is_owner' => $is_owner, 'nickname' => $nickname, 'tab' => (($tab) ? $tab : false), 'tabs' => $tabs);
1616 call_hooks('profile_tabs', $arr);
1618 $tpl = get_markup_template('common_tabs.tpl');
1620 return replace_macros($tpl,array('$tabs' => $arr['tabs']));
1624 function get_my_url() {
1625 if(x($_SESSION,'my_url'))
1626 return $_SESSION['my_url'];
1630 function zrl_init(&$a) {
1631 $tmp_str = get_my_url();
1632 if(validate_url($tmp_str)) {
1633 proc_run('php','include/gprobe.php',bin2hex($tmp_str));
1634 $arr = array('zrl' => $tmp_str, 'url' => $a->cmd);
1635 call_hooks('zrl_init',$arr);
1639 function zrl($s,$force = false) {
1642 if((! strpos($s,'/profile/')) && (! $force))
1644 if($force && substr($s,-1,1) !== '/')
1646 $achar = strpos($s,'?') ? '&' : '?';
1647 $mine = get_my_url();
1648 if($mine and ! link_compare($mine,$s))
1649 return $s . $achar . 'zrl=' . urlencode($mine);
1654 * returns querystring as string from a mapped array
1656 * @param params Array
1659 function build_querystring($params, $name=null) {
1661 foreach($params as $key=>$val) {
1662 if(is_array($val)) {
1664 $ret .= build_querystring($val, $key);
1666 $ret .= build_querystring($val, $name."[$key]");
1669 $val = urlencode($val);
1671 $ret.=$name."[$key]"."=$val&";
1673 $ret.= "$key=$val&";