3 * Name: Facebook Connector
5 * Author: Mike Macgirvin <http://macgirvin.com/profile/mike>
9 * Installing the Friendica/Facebook connector
11 * 1. register an API key for your site from developer.facebook.com
12 * a. We'd be very happy if you include "Friendica" in the application name
13 * to increase name recognition. The Friendica icons are also present
14 * in the images directory and may be uploaded as a Facebook app icon.
15 * Use images/friendica-16.jpg for the Icon and images/friendica-128.jpg for the Logo.
16 * b. The url should be your site URL with a trailing slash.
17 * Friendica is a software application and does not require a Privacy Policy
18 * or Terms of Service, though your installation of it might. Facebook may require
19 * that you provide a Privacy Policy, which we find ironic.
20 * c. Set the following values in your .htconfig.php file
21 * $a->config['facebook']['appid'] = 'xxxxxxxxxxx';
22 * $a->config['facebook']['appsecret'] = 'xxxxxxxxxxxxxxx';
23 * Replace with the settings Facebook gives you.
24 * d. Navigate to Set Web->Site URL & Domain -> Website Settings. Set
25 * Site URL to yoursubdomain.yourdomain.com. Set Site Domain to your
27 * 2. (This step is now obsolete. Enable the plugin via the Admin panel.)
28 * Enable the facebook plugin by including it in .htconfig.php - e.g.
29 * $a->config['system']['addon'] = 'plugin1,plugin2,facebook';
30 * 3. Visit the Facebook Settings section of the "Settings->Plugin Settings" page.
31 * and click 'Install Facebook Connector'.
32 * 4. This will ask you to login to Facebook and grant permission to the
33 * plugin to do its stuff. Allow it to do so.
34 * 5. You're done. To turn it off visit the Plugin Settings page again and
35 * 'Remove Facebook posting'.
37 * Vidoes and embeds will not be posted if there is no other content. Links
38 * and images will be converted to a format suitable for the Facebook API and
39 * long posts truncated - with a link to view the full post.
41 * Facebook contacts will not be able to view private photos, as they are not able to
42 * authenticate to your site to establish identity. We will address this
43 * in a future release.
46 define('FACEBOOK_MAXPOSTLEN', 420);
49 function facebook_install() {
50 register_hook('post_local', 'addon/facebook/facebook.php', 'facebook_post_local');
51 register_hook('notifier_normal', 'addon/facebook/facebook.php', 'facebook_post_hook');
52 register_hook('jot_networks', 'addon/facebook/facebook.php', 'facebook_jot_nets');
53 register_hook('connector_settings', 'addon/facebook/facebook.php', 'facebook_plugin_settings');
54 register_hook('cron', 'addon/facebook/facebook.php', 'facebook_cron');
55 register_hook('queue_predeliver', 'addon/facebook/facebook.php', 'fb_queue_hook');
59 function facebook_uninstall() {
60 unregister_hook('post_local', 'addon/facebook/facebook.php', 'facebook_post_local');
61 unregister_hook('notifier_normal', 'addon/facebook/facebook.php', 'facebook_post_hook');
62 unregister_hook('jot_networks', 'addon/facebook/facebook.php', 'facebook_jot_nets');
63 unregister_hook('connector_settings', 'addon/facebook/facebook.php', 'facebook_plugin_settings');
64 unregister_hook('cron', 'addon/facebook/facebook.php', 'facebook_cron');
65 unregister_hook('queue_predeliver', 'addon/facebook/facebook.php', 'fb_queue_hook');
68 unregister_hook('post_local_end', 'addon/facebook/facebook.php', 'facebook_post_hook');
69 unregister_hook('plugin_settings', 'addon/facebook/facebook.php', 'facebook_plugin_settings');
73 /* declare the facebook_module function so that /facebook url requests will land here */
75 function facebook_module() {}
79 // If a->argv[1] is a nickname, this is a callback from Facebook oauth requests.
80 // If $_REQUEST["realtime_cb"] is set, this is a callback from the Real-Time Updates API
82 function facebook_init(&$a) {
84 if (x($_REQUEST, "realtime_cb") && x($_REQUEST, "realtime_cb")) {
85 logger("facebook_init: Facebook Real-Time callback called", LOGGER_DEBUG);
87 if (x($_REQUEST, "hub_verify_token")) {
88 // this is the verification callback while registering for real time updates
90 $verify_token = get_config('facebook', 'cb_verify_token');
91 if ($verify_token != $_REQUEST["hub_verify_token"]) {
92 logger('facebook_init: Wrong Facebook Callback Verifier - expected ' . $verify_token . ', got ' . $_REQUEST["hub_verify_token"]);
96 if (x($_REQUEST, "hub_challenge")) {
97 logger('facebook_init: Answering Challenge: ' . $_REQUEST["hub_challenge"], LOGGER_DATA);
98 echo $_REQUEST["hub_challenge"];
103 require_once('include/items.php');
105 // this is a status update
106 $content = file_get_contents("php://input");
107 if (is_numeric($content)) $content = file_get_contents("php://input");
108 $js = json_decode($content);
109 logger(print_r($js, true), LOGGER_DATA);
111 if (!isset($js->object) || $js->object != "user" || !isset($js->entry)) {
112 logger('facebook_init: Could not parse Real-Time Update data', LOGGER_DEBUG);
116 $affected_users = array("feed" => array(), "friends" => array(), "activities" => array());
118 foreach ($js->entry as $entry) {
119 $fbuser = $entry->uid;
120 foreach ($entry->changed_fields as $field) {
121 if (!isset($affected_users[$field])) {
122 logger('facebook_init: Unknown field "' . $field . '"');
125 if (in_array($fbuser, $affected_users[$field])) continue;
128 logger('facebook_init: FB-User ' . $fbuser . ' / feed', LOGGER_DEBUG);
130 $r = q("SELECT `uid` FROM `pconfig` WHERE `cat` = 'facebook' AND `k` = 'self_id' AND `v` = '%s' LIMIT 1", dbesc($fbuser));
135 $access_token = get_pconfig($uid,'facebook','access_token');
139 if(! get_pconfig($uid,'facebook','no_wall')) {
140 $private_wall = intval(get_pconfig($uid,'facebook','private_wall'));
141 $s = fetch_url('https://graph.facebook.com/me/feed?access_token=' . $access_token);
143 $j = json_decode($s);
144 logger('facebook_init: wall: ' . print_r($j,true), LOGGER_DATA);
145 fb_consume_stream($uid,$j,($private_wall) ? false : true);
157 $affected_users[$field][] = $fbuser;
167 $r = q("SELECT `uid` FROM `user` WHERE `nickname` = '%s' LIMIT 1",
174 $auth_code = (($_GET['code']) ? $_GET['code'] : '');
175 $error = (($_GET['error_description']) ? $_GET['error_description'] : '');
179 logger('facebook_init: Error: ' . $error);
181 if($auth_code && $uid) {
183 $appid = get_config('facebook','appid');
184 $appsecret = get_config('facebook', 'appsecret');
186 $x = fetch_url('https://graph.facebook.com/oauth/access_token?client_id='
187 . $appid . '&client_secret=' . $appsecret . '&redirect_uri='
188 . urlencode($a->get_baseurl() . '/facebook/' . $nick)
189 . '&code=' . $auth_code);
191 logger('facebook_init: returned access token: ' . $x, LOGGER_DATA);
193 if(strpos($x,'access_token=') !== false) {
194 $token = str_replace('access_token=', '', $x);
195 if(strpos($token,'&') !== false)
196 $token = substr($token,0,strpos($token,'&'));
197 set_pconfig($uid,'facebook','access_token',$token);
198 set_pconfig($uid,'facebook','post','1');
199 if(get_pconfig($uid,'facebook','no_linking') === false)
200 set_pconfig($uid,'facebook','no_linking',1);
202 fb_get_friends($uid);
203 fb_consume_all($uid);
212 function fb_get_self($uid) {
213 $access_token = get_pconfig($uid,'facebook','access_token');
216 $s = fetch_url('https://graph.facebook.com/me/?access_token=' . $access_token);
218 $j = json_decode($s);
219 set_pconfig($uid,'facebook','self_id',(string) $j->id);
225 function fb_get_friends($uid) {
227 $r = q("SELECT `uid` FROM `user` WHERE `uid` = %d AND `account_expired` = 0 LIMIT 1",
233 $access_token = get_pconfig($uid,'facebook','access_token');
235 $no_linking = get_pconfig($uid,'facebook','no_linking');
241 $s = fetch_url('https://graph.facebook.com/me/friends?access_token=' . $access_token);
243 logger('facebook: fb_get_friends: ' . $s, LOGGER_DATA);
244 $j = json_decode($s);
245 logger('facebook: fb_get_friends: json: ' . print_r($j,true), LOGGER_DATA);
248 foreach($j->data as $person) {
249 $s = fetch_url('https://graph.facebook.com/' . $person->id . '?access_token=' . $access_token);
251 $jp = json_decode($s);
252 logger('fb_get_friends: info: ' . print_r($jp,true), LOGGER_DATA);
254 // always use numeric link for consistency
256 $jp->link = 'http://facebook.com/profile.php?id=' . $person->id;
258 // check if we already have a contact
260 $r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `url` = '%s' LIMIT 1",
267 // check that we have all the photos, this has been known to fail on occasion
269 if((! $r[0]['photo']) || (! $r[0]['thumb']) || (! $r[0]['micro'])) {
270 require_once("Photo.php");
272 $photos = import_profile_photo('https://graph.facebook.com/' . $jp->id . '/picture', $uid, $r[0]['id']);
274 $r = q("UPDATE `contact` SET `photo` = '%s',
280 WHERE `id` = %d LIMIT 1
285 dbesc(datetime_convert()),
286 dbesc(datetime_convert()),
287 dbesc(datetime_convert()),
295 // create contact record
296 $r = q("INSERT INTO `contact` ( `uid`, `created`, `url`, `nurl`, `addr`, `alias`, `notify`, `poll`,
297 `name`, `nick`, `photo`, `network`, `rel`, `priority`,
298 `writable`, `blocked`, `readonly`, `pending` )
299 VALUES ( %d, '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', %d, %d, %d, 0, 0, 0 ) ",
301 dbesc(datetime_convert()),
303 dbesc(normalise_link($jp->link)),
307 dbesc('facebook ' . $jp->id),
309 dbesc(($jp->nickname) ? $jp->nickname : strtolower($jp->first_name)),
310 dbesc('https://graph.facebook.com/' . $jp->id . '/picture'),
311 dbesc(NETWORK_FACEBOOK),
312 intval(CONTACT_IS_FRIEND),
318 $r = q("SELECT * FROM `contact` WHERE `url` = '%s' AND `uid` = %d LIMIT 1",
328 $contact_id = $r[0]['id'];
330 require_once("Photo.php");
332 $photos = import_profile_photo($r[0]['photo'],$uid,$contact_id);
334 $r = q("UPDATE `contact` SET `photo` = '%s',
340 WHERE `id` = %d LIMIT 1
345 dbesc(datetime_convert()),
346 dbesc(datetime_convert()),
347 dbesc(datetime_convert()),
356 // This is the POST method to the facebook settings page
357 // Content is posted to Facebook in the function facebook_post_hook()
359 function facebook_post(&$a) {
364 $value = ((x($_POST,'post_by_default')) ? intval($_POST['post_by_default']) : 0);
365 set_pconfig($uid,'facebook','post_by_default', $value);
367 $no_linking = get_pconfig($uid,'facebook','no_linking');
369 $no_wall = ((x($_POST,'facebook_no_wall')) ? intval($_POST['facebook_no_wall']) : 0);
370 set_pconfig($uid,'facebook','no_wall',$no_wall);
372 $private_wall = ((x($_POST,'facebook_private_wall')) ? intval($_POST['facebook_private_wall']) : 0);
373 set_pconfig($uid,'facebook','private_wall',$private_wall);
376 set_pconfig($uid,'facebook','blocked_apps',escape_tags(trim($_POST['blocked_apps'])));
378 $linkvalue = ((x($_POST,'facebook_linking')) ? intval($_POST['facebook_linking']) : 0);
379 set_pconfig($uid,'facebook','no_linking', (($linkvalue) ? 0 : 1));
381 // FB linkage was allowed but has just been turned off - remove all FB contacts and posts
383 if((! intval($no_linking)) && (! intval($linkvalue))) {
384 $r = q("SELECT `id` FROM `contact` WHERE `uid` = %d AND `network` = '%s' ",
386 dbesc(NETWORK_FACEBOOK)
389 require_once('include/Contact.php');
391 contact_remove($rr['id']);
394 elseif(intval($no_linking) && intval($linkvalue)) {
395 // FB linkage is now allowed - import stuff.
397 fb_get_friends($uid);
398 fb_consume_all($uid);
401 info( t('Settings updated.') . EOL);
407 // Facebook settings form
409 function facebook_content(&$a) {
412 notice( t('Permission denied.') . EOL);
416 if($a->argc > 1 && $a->argv[1] === 'remove') {
417 del_pconfig(local_user(),'facebook','post');
418 info( t('Facebook disabled') . EOL);
421 if($a->argc > 1 && $a->argv[1] === 'friends') {
422 fb_get_friends(local_user());
423 info( t('Updating contacts') . EOL);
427 $fb_installed = get_pconfig(local_user(),'facebook','post');
429 $appid = get_config('facebook','appid');
432 notice( t('Facebook API key is missing.') . EOL);
436 $a->page['htmlhead'] .= '<link rel="stylesheet" type="text/css" href="'
437 . $a->get_baseurl() . '/addon/facebook/facebook.css' . '" media="all" />' . "\r\n";
439 $o .= '<h3>' . t('Facebook Connect') . '</h3>';
441 if(! $fb_installed) {
442 $o .= '<div id="facebook-enable-wrapper">';
444 $o .= '<a href="https://www.facebook.com/dialog/oauth?client_id=' . $appid . '&redirect_uri='
445 . $a->get_baseurl() . '/facebook/' . $a->user['nickname'] . '&scope=publish_stream,read_stream,offline_access">' . t('Install Facebook connector for this account.') . '</a>';
450 $o .= '<div id="facebook-disable-wrapper">';
452 $o .= '<a href="' . $a->get_baseurl() . '/facebook/remove' . '">' . t('Remove Facebook connector') . '</a></div>';
454 $o .= '<div id="facebook-enable-wrapper">';
456 $o .= '<a href="https://www.facebook.com/dialog/oauth?client_id=' . $appid . '&redirect_uri='
457 . $a->get_baseurl() . '/facebook/' . $a->user['nickname'] . '&scope=publish_stream,read_stream,offline_access">' . t('Re-authenticate [This is necessary whenever your Facebook password is changed.]') . '</a>';
460 $o .= '<div id="facebook-post-default-form">';
461 $o .= '<form action="facebook" method="post" >';
462 $post_by_default = get_pconfig(local_user(),'facebook','post_by_default');
463 $checked = (($post_by_default) ? ' checked="checked" ' : '');
464 $o .= '<input type="checkbox" name="post_by_default" value="1"' . $checked . '/>' . ' ' . t('Post to Facebook by default') . EOL;
466 $no_linking = get_pconfig(local_user(),'facebook','no_linking');
467 $checked = (($no_linking) ? '' : ' checked="checked" ');
468 $o .= '<input type="checkbox" name="facebook_linking" value="1"' . $checked . '/>' . ' ' . t('Link all your Facebook friends and conversations on this website') . EOL ;
470 $o .= '<p>' . t('Facebook conversations consist of your <em>profile wall</em> and your friend <em>stream</em>.');
471 $o .= ' ' . t('On this website, your Facebook friend stream is only visible to you.');
472 $o .= ' ' . t('The following settings determine the privacy of your Facebook profile wall on this website.') . '</p>';
474 $private_wall = get_pconfig(local_user(),'facebook','private_wall');
475 $checked = (($private_wall) ? ' checked="checked" ' : '');
476 $o .= '<input type="checkbox" name="facebook_private_wall" value="1"' . $checked . '/>' . ' ' . t('On this website your Facebook profile wall conversations will only be visible to you') . EOL ;
479 $no_wall = get_pconfig(local_user(),'facebook','no_wall');
480 $checked = (($no_wall) ? ' checked="checked" ' : '');
481 $o .= '<input type="checkbox" name="facebook_no_wall" value="1"' . $checked . '/>' . ' ' . t('Do not import your Facebook profile wall conversations') . EOL ;
483 $o .= '<p>' . t('If you choose to link conversations and leave both of these boxes unchecked, your Facebook profile wall will be merged with your profile wall on this website and your privacy settings on this website will be used to determine who may see the conversations.') . '</p>';
486 $blocked_apps = get_pconfig(local_user(),'facebook','blocked_apps');
488 $o .= '<div><label id="blocked-apps-label" for="blocked-apps">' . t('Comma separated applications to ignore') . ' </label></div>';
489 $o .= '<div><textarea id="blocked-apps" name="blocked_apps" >' . htmlspecialchars($blocked_apps) . '</textarea></div>';
491 $o .= '<input type="submit" name="submit" value="' . t('Submit') . '" /></form></div>';
499 function facebook_cron($a,$b) {
501 $last = get_config('facebook','last_poll');
503 $poll_interval = intval(get_config('facebook','poll_interval'));
505 $poll_interval = 3600;
508 $next = $last + $poll_interval;
513 logger('facebook_cron');
516 // Find the FB users on this site and randomize in case one of them
517 // uses an obscene amount of memory. It may kill this queue run
518 // but hopefully we'll get a few others through on each run.
520 $r = q("SELECT * FROM `pconfig` WHERE `cat` = 'facebook' AND `k` = 'post' AND `v` = '1' ORDER BY RAND() ");
523 if(get_pconfig($rr['uid'],'facebook','no_linking'))
525 $ab = intval(get_config('system','account_abandon_days'));
527 $z = q("SELECT `uid` FROM `user` WHERE `uid` = %d AND `login_date` > UTC_TIMESTAMP() - INTERVAL %d DAY LIMIT 1",
535 // check for new friends once a day
536 $last_friend_check = get_pconfig($rr['uid'],'facebook','friend_check');
537 if($last_friend_check)
538 $next_friend_check = $last_friend_check + 86400;
539 if($next_friend_check <= time()) {
540 fb_get_friends($rr['uid']);
541 set_pconfig($rr['uid'],'facebook','friend_check',time());
543 fb_consume_all($rr['uid']);
547 set_config('facebook','last_poll', time());
553 function facebook_plugin_settings(&$a,&$b) {
555 $b .= '<div class="settings-block">';
556 $b .= '<h3>' . t('Facebook') . '</h3>';
557 $b .= '<a href="facebook">' . t('Facebook Connector Settings') . '</a><br />';
563 function facebook_plugin_admin(&$a, &$o){
566 $access_token = fb_get_app_access_token();
568 $ret = facebook_subscriptions_get();
569 if (is_array($ret)) foreach ($ret as $re) if (is_object($re) && $re->object == "user") $activated = true;
572 $o = t('Real-Time Updates are activated.') . '<br><br>';
573 $o .= '<input type="submit" name="real_time_deactivate" value="' . t('Deactivate Real-Time Updates') . '">';
575 $o = t('Real-Time Updates not activated.') . '<br><input type="submit" name="real_time_activate" value="' . t('Activate Real-Time Updates') . '">';
579 function facebook_plugin_admin_post(&$a, &$o){
580 if (x($_REQUEST,'real_time_activate')) {
581 facebook_subscription_add_users();
583 if (x($_REQUEST,'real_time_deactivate')) {
584 facebook_subscription_del_users();
588 function facebook_jot_nets(&$a,&$b) {
592 $fb_post = get_pconfig(local_user(),'facebook','post');
593 if(intval($fb_post) == 1) {
594 $fb_defpost = get_pconfig(local_user(),'facebook','post_by_default');
595 $selected = ((intval($fb_defpost) == 1) ? ' checked="checked" ' : '');
596 $b .= '<div class="profile-jot-net"><input type="checkbox" name="facebook_enable"' . $selected . ' value="1" /> '
597 . t('Post to Facebook') . '</div>';
602 function facebook_post_hook(&$a,&$b) {
605 if($b['deleted'] || ($b['created'] !== $b['edited']))
609 * Post to Facebook stream
612 require_once('include/group.php');
614 logger('Facebook post');
619 $toplevel = (($b['id'] == $b['parent']) ? true : false);
622 $linking = ((get_pconfig($b['uid'],'facebook','no_linking')) ? 0 : 1);
624 if((! $toplevel) && ($linking)) {
625 $r = q("SELECT * FROM `item` WHERE `id` = %d AND `uid` = %d LIMIT 1",
626 intval($b['parent']),
629 if(count($r) && substr($r[0]['uri'],0,4) === 'fb::')
630 $reply = substr($r[0]['uri'],4);
631 elseif(count($r) && substr($r[0]['extid'],0,4) === 'fb::')
632 $reply = substr($r[0]['extid'],4);
636 $u = q("SELECT * FROM user where uid = %d limit 1",
642 // only accept comments from the item owner. Other contacts are unknown to FB.
644 if(! link_compare($b['author-link'], $a->get_baseurl() . '/profile/' . $u[0]['nickname']))
648 logger('facebook reply id=' . $reply);
651 if(strstr($b['postopts'],'facebook') || ($b['private']) || ($reply)) {
653 if($b['private'] && $reply === false) {
654 $allow_people = expand_acl($b['allow_cid']);
655 $allow_groups = expand_groups(expand_acl($b['allow_gid']));
656 $deny_people = expand_acl($b['deny_cid']);
657 $deny_groups = expand_groups(expand_acl($b['deny_gid']));
659 $recipients = array_unique(array_merge($allow_people,$allow_groups));
660 $deny = array_unique(array_merge($deny_people,$deny_groups));
662 $allow_str = dbesc(implode(', ',$recipients));
664 $r = q("SELECT `notify` FROM `contact` WHERE `id` IN ( $allow_str ) AND `network` = 'face'");
665 $allow_arr = array();
668 $allow_arr[] = $rr['notify'];
671 $deny_str = dbesc(implode(', ',$deny));
673 $r = q("SELECT `notify` FROM `contact` WHERE `id` IN ( $deny_str ) AND `network` = 'face'");
677 $deny_arr[] = $rr['notify'];
680 if(count($deny_arr) && (! count($allow_arr))) {
682 // One or more FB folks were denied access but nobody on FB was specifically allowed access.
683 // This might cause the post to be open to public on Facebook, but only to selected members
684 // on another network. Since this could potentially leak a post to somebody who was denied,
685 // we will skip posting it to Facebook with a slightly vague but relevant message that will
686 // hopefully lead somebody to this code comment for a better explanation of what went wrong.
688 notice( t('Post to Facebook cancelled because of multi-network access permission conflict.') . EOL);
693 // if it's a private message but no Facebook members are allowed or denied, skip Facebook post
695 if((! count($allow_arr)) && (! count($deny_arr)))
699 if($b['verb'] == ACTIVITY_LIKE)
703 $appid = get_config('facebook', 'appid' );
704 $secret = get_config('facebook', 'appsecret' );
706 if($appid && $secret) {
708 logger('facebook: have appid+secret');
710 $fb_token = get_pconfig($b['uid'],'facebook','access_token');
713 // post to facebook if it's a public post and we've ticked the 'post to Facebook' box,
714 // or it's a private message with facebook participants
715 // or it's a reply or likes action to an existing facebook post
717 if($fb_token && ($toplevel || $b['private'] || $reply)) {
718 logger('facebook: able to post');
719 require_once('library/facebook.php');
720 require_once('include/bbcode.php');
724 logger('Facebook post: original msg=' . $msg, LOGGER_DATA);
726 // make links readable before we strip the code
728 // unless it's a dislike - just send the text as a comment
730 if($b['verb'] == ACTIVITY_DISLIKE)
731 $msg = trim(strip_tags(bbcode($msg)));
733 $search_str = $a->get_baseurl() . '/search';
735 if(preg_match("/\[url=(.*?)\](.*?)\[\/url\]/is",$msg,$matches)) {
737 // don't use hashtags for message link
739 if(strpos($matches[2],$search_str) === false) {
741 if(substr($matches[2],0,5) != '[img]')
742 $linkname = $matches[2];
746 // strip tag links to avoid link clutter, this really should be
747 // configurable because we're losing information
749 $msg = preg_replace("/\#\[url=(.*?)\](.*?)\[\/url\]/is",'#$2',$msg);
751 // provide the link separately for normal links
752 $msg = preg_replace("/\[url=(.*?)\](.*?)\[\/url\]/is",'$2 $1',$msg);
754 if(preg_match("/\[img\](.*?)\[\/img\]/is",$msg,$matches))
755 $image = $matches[1];
757 $msg = preg_replace("/\[img\](.*?)\[\/img\]/is", t('Image: ') . '$1', $msg);
759 if((strpos($link,z_root()) !== false) && (! $image))
760 $image = $a->get_baseurl() . '/images/friendica-64.jpg';
762 $msg = trim(strip_tags(bbcode($msg)));
763 $msg = html_entity_decode($msg,ENT_QUOTES,'UTF-8');
765 // add any attachments as text urls
767 $arr = explode(',',$b['attach']);
771 foreach($arr as $r) {
773 $cnt = preg_match('|\[attach\]href=\"(.*?)\" size=\"(.*?)\" type=\"(.*?)\" title=\"(.*?)\"\[\/attach\]|',$r,$matches);
780 if (strlen($msg) > FACEBOOK_MAXPOSTLEN) {
782 require_once('library/slinky.php');
784 $display_url = $b['plink'];
786 $slinky = new Slinky( $display_url );
787 // setup a cascade of shortening services
788 // try to get a short link from these services
789 // in the order ur1.ca, trim, id.gd, tinyurl
790 $slinky->set_cascade( array( new Slinky_UR1ca(), new Slinky_Trim(), new Slinky_IsGd(), new Slinky_TinyURL() ) );
791 $shortlink = $slinky->short();
792 // the new message will be shortened such that "... $shortlink"
793 // will fit into the character limit
794 $msg = substr($msg, 0, FACEBOOK_MAXPOSTLEN - strlen($shortlink) - 4);
795 $msg .= '... ' . $shortlink;
800 logger('Facebook post: msg=' . $msg, LOGGER_DATA);
803 $postvars = array('access_token' => $fb_token);
807 'access_token' => $fb_token,
811 $postvars['picture'] = $image;
813 $postvars['link'] = $link;
815 $postvars['name'] = $linkname;
818 if(($b['private']) && ($toplevel)) {
819 $postvars['privacy'] = '{"value": "CUSTOM", "friends": "SOME_FRIENDS"';
820 if(count($allow_arr))
821 $postvars['privacy'] .= ',"allow": "' . implode(',',$allow_arr) . '"';
823 $postvars['privacy'] .= ',"deny": "' . implode(',',$deny_arr) . '"';
824 $postvars['privacy'] .= '}';
829 $url = 'https://graph.facebook.com/' . $reply . '/' . (($likes) ? 'likes' : 'comments');
832 $url = 'https://graph.facebook.com/me/feed';
834 $postvars['actions'] = '{"name": "' . t('View on Friendica') . '", "link": "' . $b['plink'] . '"}';
837 logger('facebook: post to ' . $url);
838 logger('facebook: postvars: ' . print_r($postvars,true));
840 // "test_mode" prevents anything from actually being posted.
841 // Otherwise, let's do it.
843 if(! get_config('facebook','test_mode')) {
844 $x = post_url($url, $postvars);
846 $retj = json_decode($x);
848 q("UPDATE `item` SET `extid` = '%s' WHERE `id` = %d LIMIT 1",
849 dbesc('fb::' . $retj->id),
855 $s = serialize(array('url' => $url, 'item' => $b['id'], 'post' => $postvars));
856 require_once('include/queue_fn.php');
857 add_to_queue($a->contact,NETWORK_FACEBOOK,$s);
858 notice( t('Facebook post failed. Queued for retry.') . EOL);
862 logger('Facebook post returns: ' . $x, LOGGER_DEBUG);
870 function facebook_post_local(&$a,&$b) {
872 // Figure out if Facebook posting is enabled for this post and file it in 'postopts'
873 // where we will discover it during background delivery.
875 // This can only be triggered by a local user posting to their own wall.
877 if((local_user()) && (local_user() == $b['uid'])) {
879 $fb_post = intval(get_pconfig(local_user(),'facebook','post'));
880 $fb_enable = (($fb_post && x($_REQUEST,'facebook_enable')) ? intval($_REQUEST['facebook_enable']) : 0);
882 // if API is used, default to the chosen settings
883 if($_REQUEST['api_source'] && intval(get_pconfig(local_user(),'facebook','post_by_default')))
889 if(strlen($b['postopts']))
890 $b['postopts'] .= ',';
891 $b['postopts'] .= 'facebook';
896 function fb_queue_hook(&$a,&$b) {
898 $qi = q("SELECT * FROM `queue` WHERE `network` = '%s'",
899 dbesc(NETWORK_FACEBOOK)
904 require_once('include/queue_fn.php');
907 if($x['network'] !== NETWORK_FACEBOOK)
910 logger('facebook_queue: run');
912 $r = q("SELECT `user`.* FROM `user` LEFT JOIN `contact` on `contact`.`uid` = `user`.`uid`
913 WHERE `contact`.`self` = 1 AND `contact`.`id` = %d LIMIT 1",
921 $appid = get_config('facebook', 'appid' );
922 $secret = get_config('facebook', 'appsecret' );
924 if($appid && $secret) {
925 $fb_post = intval(get_pconfig($user['uid'],'facebook','post'));
926 $fb_token = get_pconfig($user['uid'],'facebook','access_token');
928 if($fb_post && $fb_token) {
929 logger('facebook_queue: able to post');
930 require_once('library/facebook.php');
932 $z = unserialize($x['content']);
934 $j = post_url($z['url'],$z['post']);
936 $retj = json_decode($j);
938 q("UPDATE `item` SET `extid` = '%s' WHERE `id` = %d LIMIT 1",
939 dbesc('fb::' . $retj->id),
942 logger('facebook_queue: success: ' . $j);
943 remove_queue_item($x['id']);
946 logger('facebook_queue: failed: ' . $j);
947 update_queue_time($x['id']);
954 function fb_consume_all($uid) {
956 require_once('include/items.php');
958 $access_token = get_pconfig($uid,'facebook','access_token');
962 if(! get_pconfig($uid,'facebook','no_wall')) {
963 $private_wall = intval(get_pconfig($uid,'facebook','private_wall'));
964 $s = fetch_url('https://graph.facebook.com/me/feed?access_token=' . $access_token);
966 $j = json_decode($s);
967 logger('fb_consume_stream: wall: ' . print_r($j,true), LOGGER_DATA);
968 fb_consume_stream($uid,$j,($private_wall) ? false : true);
971 $s = fetch_url('https://graph.facebook.com/me/home?access_token=' . $access_token);
973 $j = json_decode($s);
974 logger('fb_consume_stream: feed: ' . print_r($j,true), LOGGER_DATA);
975 fb_consume_stream($uid,$j,false);
980 function fb_get_photo($uid,$link) {
981 $access_token = get_pconfig($uid,'facebook','access_token');
982 if(! $access_token || (! stristr($link,'facebook.com/photo.php')))
983 return "\n" . '[url=' . $link . ']' . t('link') . '[/url]';
984 $ret = preg_match('/fbid=([0-9]*)/',$link,$match);
986 $photo_id = $match[1];
987 $x = fetch_url('https://graph.facebook.com/' . $photo_id . '?access_token=' . $access_token);
988 $j = json_decode($x);
990 return "\n\n" . '[url=' . $link . '][img]' . $j->picture . '[/img][/url]';
992 return "\n" . '[url=' . $link . ']' . t('link') . '[/url]';
995 function fb_consume_stream($uid,$j,$wall = false) {
1000 $user = q("SELECT `nickname`, `blockwall` FROM `user` WHERE `uid` = %d AND `account_expired` = 0 LIMIT 1",
1006 $my_local_url = $a->get_baseurl() . '/profile/' . $user[0]['nickname'];
1008 $no_linking = get_pconfig($uid,'facebook','no_linking');
1012 $self = q("SELECT * FROM `contact` WHERE `self` = 1 AND `uid` = %d LIMIT 1",
1016 $blocked_apps = get_pconfig($uid,'facebook','blocked_apps');
1017 $blocked_apps_arr = explode(',',$blocked_apps);
1019 $self_id = get_pconfig($uid,'facebook','self_id');
1020 if(! count($j->data) || (! strlen($self_id)))
1023 foreach($j->data as $entry) {
1024 logger('fb_consume: entry: ' . print_r($entry,true), LOGGER_DATA);
1025 $datarray = array();
1027 $r = q("SELECT * FROM `item` WHERE ( `uri` = '%s' OR `extid` = '%s') AND `uid` = %d LIMIT 1",
1028 dbesc('fb::' . $entry->id),
1029 dbesc('fb::' . $entry->id),
1033 $post_exists = true;
1035 $top_item = $r[0]['id'];
1038 $post_exists = false;
1043 $datarray['gravity'] = 0;
1044 $datarray['uid'] = $uid;
1045 $datarray['wall'] = (($wall) ? 1 : 0);
1046 $datarray['uri'] = $datarray['parent-uri'] = 'fb::' . $entry->id;
1047 $from = $entry->from;
1048 if($from->id == $self_id)
1049 $datarray['contact-id'] = $self[0]['id'];
1051 $r = q("SELECT * FROM `contact` WHERE `notify` = '%s' AND `uid` = %d AND `blocked` = 0 AND `readonly` = 0 LIMIT 1",
1056 $datarray['contact-id'] = $r[0]['id'];
1059 // don't store post if we don't have a contact
1061 if(! x($datarray,'contact-id')) {
1062 logger('no contact: post ignored');
1066 $datarray['verb'] = ACTIVITY_POST;
1068 $datarray['owner-name'] = $self[0]['name'];
1069 $datarray['owner-link'] = $self[0]['url'];
1070 $datarray['owner-avatar'] = $self[0]['thumb'];
1072 if(isset($entry->application) && isset($entry->application->name) && strlen($entry->application->name))
1073 $datarray['app'] = strip_tags($entry->application->name);
1075 $datarray['app'] = 'facebook';
1077 $found_blocked = false;
1079 if(count($blocked_apps_arr)) {
1080 foreach($blocked_apps_arr as $bad_appl) {
1081 if(strlen(trim($bad_appl)) && (stristr($datarray['app'],trim($bad_appl)))) {
1082 $found_blocked = true;
1087 if($found_blocked) {
1088 logger('facebook: blocking application: ' . $datarray['app']);
1092 $datarray['author-name'] = $from->name;
1093 $datarray['author-link'] = 'http://facebook.com/profile.php?id=' . $from->id;
1094 $datarray['author-avatar'] = 'https://graph.facebook.com/' . $from->id . '/picture';
1095 $datarray['plink'] = $datarray['author-link'] . '&v=wall&story_fbid=' . substr($entry->id,strpos($entry->id,'_') + 1);
1097 $datarray['body'] = escape_tags($entry->message);
1099 if($entry->picture && $entry->link) {
1100 $datarray['body'] .= "\n\n" . '[url=' . $entry->link . '][img]' . $entry->picture . '[/img][/url]';
1104 $datarray['body'] .= "\n\n" . '[img]' . $entry->picture . '[/img]';
1105 // if just a link, it may be a wall photo - check
1107 $datarray['body'] .= fb_get_photo($uid,$entry->link);
1110 $datarray['body'] .= "\n" . $entry->name;
1112 $datarray['body'] .= "\n" . $entry->caption;
1113 if($entry->description)
1114 $datarray['body'] .= "\n" . $entry->description;
1115 $datarray['created'] = datetime_convert('UTC','UTC',$entry->created_time);
1116 $datarray['edited'] = datetime_convert('UTC','UTC',$entry->updated_time);
1118 // If the entry has a privacy policy, we cannot assume who can or cannot see it,
1119 // as the identities are from a foreign system. Mark it as private to the owner.
1121 if($entry->privacy && $entry->privacy->value !== 'EVERYONE') {
1122 $datarray['private'] = 1;
1123 $datarray['allow_cid'] = '<' . $uid . '>';
1126 $top_item = item_store($datarray);
1127 $r = q("SELECT * FROM `item` WHERE `id` = %d AND `uid` = %d LIMIT 1",
1133 logger('fb: new top level item posted');
1137 if(isset($entry->likes) && isset($entry->likes->data))
1138 $likers = $entry->likes->data;
1142 if(isset($entry->comments) && isset($entry->comments->data))
1143 $comments = $entry->comments->data;
1147 if(is_array($likers)) {
1148 foreach($likers as $likes) {
1153 // If we posted the like locally, it will be found with our url, not the FB url.
1155 $second_url = (($likes->id == $self_id) ? $self[0]['url'] : 'http://facebook.com/profile.php?id=' . $likes->id);
1157 $r = q("SELECT * FROM `item` WHERE `parent-uri` = '%s' AND `uid` = %d AND `verb` = '%s'
1158 AND ( `author-link` = '%s' OR `author-link` = '%s' ) LIMIT 1",
1159 dbesc($orig_post['uri']),
1161 dbesc(ACTIVITY_LIKE),
1162 dbesc('http://facebook.com/profile.php?id=' . $likes->id),
1169 $likedata = array();
1170 $likedata['parent'] = $top_item;
1171 $likedata['verb'] = ACTIVITY_LIKE;
1172 $likedata['gravity'] = 3;
1173 $likedata['uid'] = $uid;
1174 $likedata['wall'] = (($wall) ? 1 : 0);
1175 $likedata['uri'] = item_new_uri($a->get_baseurl(), $uid);
1176 $likedata['parent-uri'] = $orig_post['uri'];
1177 if($likes->id == $self_id)
1178 $likedata['contact-id'] = $self[0]['id'];
1180 $r = q("SELECT * FROM `contact` WHERE `notify` = '%s' AND `uid` = %d AND `blocked` = 0 AND `readonly` = 0 LIMIT 1",
1185 $likedata['contact-id'] = $r[0]['id'];
1187 if(! x($likedata,'contact-id'))
1188 $likedata['contact-id'] = $orig_post['contact-id'];
1190 $likedata['app'] = 'facebook';
1191 $likedata['verb'] = ACTIVITY_LIKE;
1192 $likedata['author-name'] = $likes->name;
1193 $likedata['author-link'] = 'http://facebook.com/profile.php?id=' . $likes->id;
1194 $likedata['author-avatar'] = 'https://graph.facebook.com/' . $likes->id . '/picture';
1196 $author = '[url=' . $likedata['author-link'] . ']' . $likedata['author-name'] . '[/url]';
1197 $objauthor = '[url=' . $orig_post['author-link'] . ']' . $orig_post['author-name'] . '[/url]';
1198 $post_type = t('status');
1199 $plink = '[url=' . $orig_post['plink'] . ']' . $post_type . '[/url]';
1200 $likedata['object-type'] = ACTIVITY_OBJ_NOTE;
1202 $likedata['body'] = sprintf( t('%1$s likes %2$s\'s %3$s'), $author, $objauthor, $plink);
1203 $likedata['object'] = '<object><type>' . ACTIVITY_OBJ_NOTE . '</type><local>1</local>' .
1204 '<id>' . $orig_post['uri'] . '</id><link>' . xmlify('<link rel="alternate" type="text/html" href="' . xmlify($orig_post['plink']) . '" />') . '</link><title>' . $orig_post['title'] . '</title><content>' . $orig_post['body'] . '</content></object>';
1206 $item = item_store($likedata);
1209 if(is_array($comments)) {
1210 foreach($comments as $cmnt) {
1215 $r = q("SELECT * FROM `item` WHERE `uid` = %d AND ( `uri` = '%s' OR `extid` = '%s' ) LIMIT 1",
1217 dbesc('fb::' . $cmnt->id),
1218 dbesc('fb::' . $cmnt->id)
1223 $cmntdata = array();
1224 $cmntdata['parent'] = $top_item;
1225 $cmntdata['verb'] = ACTIVITY_POST;
1226 $cmntdata['gravity'] = 6;
1227 $cmntdata['uid'] = $uid;
1228 $cmntdata['wall'] = (($wall) ? 1 : 0);
1229 $cmntdata['uri'] = 'fb::' . $cmnt->id;
1230 $cmntdata['parent-uri'] = $orig_post['uri'];
1231 if($cmnt->from->id == $self_id) {
1232 $cmntdata['contact-id'] = $self[0]['id'];
1235 $r = q("SELECT * FROM `contact` WHERE `notify` = '%s' AND `uid` = %d LIMIT 1",
1236 dbesc($cmnt->from->id),
1240 $cmntdata['contact-id'] = $r[0]['id'];
1241 if($r[0]['blocked'] || $r[0]['readonly'])
1245 if(! x($cmntdata,'contact-id'))
1246 $cmntdata['contact-id'] = $orig_post['contact-id'];
1248 $cmntdata['app'] = 'facebook';
1249 $cmntdata['created'] = datetime_convert('UTC','UTC',$cmnt->created_time);
1250 $cmntdata['edited'] = datetime_convert('UTC','UTC',$cmnt->created_time);
1251 $cmntdata['verb'] = ACTIVITY_POST;
1252 $cmntdata['author-name'] = $cmnt->from->name;
1253 $cmntdata['author-link'] = 'http://facebook.com/profile.php?id=' . $cmnt->from->id;
1254 $cmntdata['author-avatar'] = 'https://graph.facebook.com/' . $cmnt->from->id . '/picture';
1255 $cmntdata['body'] = $cmnt->message;
1256 $item = item_store($cmntdata);
1263 function fb_get_app_access_token() {
1265 $acc_token = get_config('facebook','app_access_token');
1267 if ($acc_token !== false) return $acc_token;
1269 $appid = get_config('facebook','appid');
1270 $appsecret = get_config('facebook', 'appsecret');
1272 if ($appid === false || $appsecret === false) {
1273 logger('fb_get_app_access_token: appid and/or appsecret not set', LOGGER_DEBUG);
1277 $x = fetch_url('https://graph.facebook.com/oauth/access_token?client_id=' . $appid . '&client_secret=' . $appsecret . "&grant_type=client_credentials");
1279 if(strpos($x,'access_token=') !== false) {
1280 logger('fb_get_app_access_token: returned access token: ' . $x, LOGGER_DATA);
1282 $token = str_replace('access_token=', '', $x);
1283 if(strpos($token,'&') !== false)
1284 $token = substr($token,0,strpos($token,'&'));
1287 logger('fb_get_app_access_token: empty token: ' . $x, LOGGER_DEBUG);
1290 set_config('facebook','app_access_token',$token);
1293 logger('fb_get_app_access_token: response did not contain an access_token: ' . $x, LOGGER_DATA);
1298 function facebook_subscription_del_users() {
1300 $access_token = fb_get_app_access_token();
1302 $url = "https://graph.facebook.com/" . get_config('facebook', 'appid' ) . "/subscriptions?access_token=" . $access_token;
1306 function facebook_subscription_add_users() {
1309 $access_token = fb_get_app_access_token();
1311 $url = "https://graph.facebook.com/" . get_config('facebook', 'appid' ) . "/subscriptions?access_token=" . $access_token;
1313 list($usec, $sec) = explode(" ", microtime());
1314 $verify_token = sha1($usec . $sec . rand(0, 999999999));
1315 set_config('facebook', 'cb_verify_token', $verify_token);
1317 $cb = $a->get_baseurl() . '/facebook/?realtime_cb=1';
1319 $j = post_url($url,array(
1321 "fields" => "feed,friends,activities",
1322 "callback_url" => $cb,
1323 "verify_token" => $verify_token,
1325 del_config('facebook', 'cb_verify_token');
1328 logger("Facebook reponse: " . $j, LOGGER_DATA);
1332 function facebook_subscriptions_get() {
1334 $access_token = fb_get_app_access_token();
1336 $url = "https://graph.facebook.com/" . get_config('facebook', 'appid' ) . "/subscriptions?access_token=" . $access_token;
1337 $j = fetch_url($url);
1340 $x = json_decode($j);
1341 if (isset($x->data)) $ret = $x->data;
1352 // DELETE-request to $url
1354 if(! function_exists('delete_url')) {
1355 function delete_url($url,$headers = null, &$redirects = 0, $timeout = 0) {
1357 $ch = curl_init($url);
1358 if(($redirects > 8) || (! $ch))
1361 curl_setopt($ch, CURLOPT_HEADER, true);
1362 curl_setopt($ch, CURLOPT_RETURNTRANSFER,true);
1363 curl_setopt($ch, CURLOPT_CUSTOMREQUEST, "DELETE");
1364 curl_setopt($ch, CURLOPT_USERAGENT, "Friendica");
1366 if(intval($timeout)) {
1367 curl_setopt($ch, CURLOPT_TIMEOUT, $timeout);
1370 $curl_time = intval(get_config('system','curl_timeout'));
1371 curl_setopt($ch, CURLOPT_TIMEOUT, (($curl_time !== false) ? $curl_time : 60));
1374 if(defined('LIGHTTPD')) {
1375 if(!is_array($headers)) {
1376 $headers = array('Expect:');
1378 if(!in_array('Expect:', $headers)) {
1379 array_push($headers, 'Expect:');
1384 curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
1386 $check_cert = get_config('system','verifyssl');
1387 curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, (($check_cert) ? true : false));
1388 $prx = get_config('system','proxy');
1390 curl_setopt($ch, CURLOPT_HTTPPROXYTUNNEL, 1);
1391 curl_setopt($ch, CURLOPT_PROXY, $prx);
1392 $prxusr = get_config('system','proxyuser');
1394 curl_setopt($ch, CURLOPT_PROXYUSERPWD, $prxusr);
1397 $a->set_curl_code(0);
1399 // don't let curl abort the entire application
1400 // if it throws any errors.
1402 $s = @curl_exec($ch);
1405 $curl_info = curl_getinfo($ch);
1406 $http_code = $curl_info['http_code'];
1410 // Pull out multiple headers, e.g. proxy and continuation headers
1411 // allow for HTTP/2.x without fixing code
1413 while(preg_match('/^HTTP\/[1-2].+? [1-5][0-9][0-9]/',$base)) {
1414 $chunk = substr($base,0,strpos($base,"\r\n\r\n")+4);
1416 $base = substr($base,strlen($chunk));
1419 if($http_code == 301 || $http_code == 302 || $http_code == 303) {
1421 preg_match('/(Location:|URI:)(.*?)\n/', $header, $matches);
1422 $url = trim(array_pop($matches));
1423 $url_parsed = @parse_url($url);
1424 if (isset($url_parsed)) {
1426 return delete_url($url,$headers,$redirects,$timeout);
1429 $a->set_curl_code($http_code);
1430 $body = substr($s,strlen($header));
1432 $a->set_curl_headers($header);
projects / friendica-addons.git / blob