]> git.mxchange.org Git - friendica.git/blob - include/api.php
11494ba278078cc38db6cab184f775f6b739d39d
[friendica.git] / include / api.php
1 <?php
2         require_once("bbcode.php");
3         require_once("datetime.php");
4         require_once("conversation.php");
5         require_once("oauth.php");
6         require_once("html2plain.php");
7         /*
8          * Twitter-Like API
9          *
10          */
11
12         $API = Array();
13         $called_api = Null;
14
15         function api_date($str){
16                 //Wed May 23 06:01:13 +0000 2007
17                 return datetime_convert('UTC', 'UTC', $str, "D M d H:i:s +0000 Y" );
18         }
19
20
21         function api_register_func($path, $func, $auth=false){
22                 global $API;
23                 $API[$path] = array('func'=>$func,
24                                                         'auth'=>$auth);
25         }
26
27         /**
28          * Simple HTTP Login
29          */
30
31         function api_login(&$a){
32                 // login with oauth
33                 try{
34                         $oauth = new FKOAuth1();
35                         list($consumer,$token) = $oauth->verify_request(OAuthRequest::from_request());
36                         if (!is_null($token)){
37                                 $oauth->loginUser($token->uid);
38                                 call_hooks('logged_in', $a->user);
39                                 return;
40                         }
41                         echo __file__.__line__.__function__."<pre>"; var_dump($consumer, $token); die();
42                 }catch(Exception $e){
43                         logger(__file__.__line__.__function__."\n".$e);
44                         //die(__file__.__line__.__function__."<pre>".$e); die();
45                 }
46
47                 
48                 
49                 // workaround for HTTP-auth in CGI mode
50                 if(x($_SERVER,'REDIRECT_REMOTE_USER')) {
51                         $userpass = base64_decode(substr($_SERVER["REDIRECT_REMOTE_USER"],6)) ;
52                         if(strlen($userpass)) {
53                                 list($name, $password) = explode(':', $userpass);
54                                 $_SERVER['PHP_AUTH_USER'] = $name;
55                                 $_SERVER['PHP_AUTH_PW'] = $password;
56                         }
57                 }
58
59                 if (!isset($_SERVER['PHP_AUTH_USER'])) {
60                    logger('API_login: ' . print_r($_SERVER,true), LOGGER_DEBUG);
61                     header('WWW-Authenticate: Basic realm="Friendica"');
62                     header('HTTP/1.0 401 Unauthorized');
63                     die('This api requires login');
64                 }
65                 
66                 $user = $_SERVER['PHP_AUTH_USER'];
67                 $encrypted = hash('whirlpool',trim($_SERVER['PHP_AUTH_PW']));
68                 
69                 
70                         /**
71                          *  next code from mod/auth.php. needs better solution
72                          */
73                         
74                 // process normal login request
75
76                 $r = q("SELECT * FROM `user` WHERE ( `email` = '%s' OR `nickname` = '%s' ) 
77                         AND `password` = '%s' AND `blocked` = 0 AND `account_expired` = 0 AND `verified` = 1 LIMIT 1",
78                         dbesc(trim($user)),
79                         dbesc(trim($user)),
80                         dbesc($encrypted)
81                 );
82                 if(count($r)){
83                         $record = $r[0];
84                 } else {
85                    logger('API_login failure: ' . print_r($_SERVER,true), LOGGER_DEBUG);
86                     header('WWW-Authenticate: Basic realm="Friendica"');
87                     header('HTTP/1.0 401 Unauthorized');
88                     die('This api requires login');
89                 }
90
91                 require_once('include/security.php');
92                 authenticate_success($record);
93
94                 call_hooks('logged_in', $a->user);
95
96         }
97         
98         /**************************
99          *  MAIN API ENTRY POINT  *
100          **************************/
101         function api_call(&$a){
102                 GLOBAL $API, $called_api;
103
104                 // preset
105                 $type="json";
106
107                 foreach ($API as $p=>$info){
108                         if (strpos($a->query_string, $p)===0){
109                                 $called_api= explode("/",$p);
110                                 //unset($_SERVER['PHP_AUTH_USER']);
111                                 if ($info['auth']===true && local_user()===false) {
112                                                 api_login($a);
113                                 }
114
115                                 load_contact_links(local_user());
116
117                                 logger('API call for ' . $a->user['username'] . ': ' . $a->query_string);
118                                 logger('API parameters: ' . print_r($_REQUEST,true));
119                                 $type="json";
120                                 if (strpos($a->query_string, ".xml")>0) $type="xml";
121                                 if (strpos($a->query_string, ".json")>0) $type="json";
122                                 if (strpos($a->query_string, ".rss")>0) $type="rss";
123                                 if (strpos($a->query_string, ".atom")>0) $type="atom";
124                                 if (strpos($a->query_string, ".as")>0) $type="as";
125
126                                 $r = call_user_func($info['func'], $a, $type);
127                                 if ($r===false) return;
128
129                                 switch($type){
130                                         case "xml":
131                                                 $r = mb_convert_encoding($r, "UTF-8",mb_detect_encoding($r));
132                                                 header ("Content-Type: text/xml");
133                                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
134                                                 break;
135                                         case "json":
136                                                 //header ("Content-Type: application/json");
137                                                 foreach($r as $rr)
138                                                     return json_encode($rr);
139                                                 break;
140                                         case "rss":
141                                                 header ("Content-Type: application/rss+xml");
142                                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
143                                                 break;
144                                         case "atom":
145                                                 header ("Content-Type: application/atom+xml");
146                                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
147                                                 break;
148                                         case "as":
149                                                 //header ("Content-Type: application/json");
150                                                 //foreach($r as $rr)
151                                                 //    return json_encode($rr);
152                                                 return json_encode($r);
153                                                 break;
154
155                                 }
156                                 //echo "<pre>"; var_dump($r); die();
157                         }
158                 }
159                 logger('API call not implemented: '.$a->query_string." - ".print_r($_REQUEST,true));
160                 $r = '<status><error>not implemented</error></status>';
161                 switch($type){
162                         case "xml":
163                                 header ("Content-Type: text/xml");
164                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
165                                 break;
166                         case "json":
167                                 header ("Content-Type: application/json");
168                             return json_encode(array('error' => 'not implemented'));
169                                 break;
170                         case "rss":
171                                 header ("Content-Type: application/rss+xml");
172                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
173                                 break;
174                         case "atom":
175                                 header ("Content-Type: application/atom+xml");
176                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
177                                 break;
178                 }
179         }
180
181         /**
182          * RSS extra info
183          */
184         function api_rss_extra(&$a, $arr, $user_info){
185                 if (is_null($user_info)) $user_info = api_get_user($a);
186                 $arr['$user'] = $user_info;
187                 $arr['$rss'] = array(
188                         'alternate' => $user_info['url'],
189                         'self' => $a->get_baseurl(). "/". $a->query_string,
190                         'base' => $a->get_baseurl(),
191                         'updated' => api_date(null),
192                         'atom_updated' => datetime_convert('UTC','UTC','now',ATOM_TIME),
193                         'language' => $user_info['language'],
194                         'logo'  => $a->get_baseurl()."/images/friendica-32.png",
195                 );
196                 
197                 return $arr;
198         }
199          
200         /**
201          * Returns user info array.
202          */
203         function api_get_user(&$a, $contact_id = Null){
204                 global $called_api;
205                 $user = null;
206                 $extra_query = "";
207
208
209                 if(!is_null($contact_id)){
210                         $user=$contact_id;
211                         $extra_query = "AND `contact`.`id` = %d ";
212                 }
213                 
214                 if(is_null($user) && x($_GET, 'user_id')) {
215                         $user = intval($_GET['user_id']);       
216                         $extra_query = "AND `contact`.`id` = %d ";
217                 }
218                 if(is_null($user) && x($_GET, 'screen_name')) {
219                         $user = dbesc($_GET['screen_name']);    
220                         $extra_query = "AND `contact`.`nick` = '%s' ";
221                         if (local_user()!==false)  $extra_query .= "AND `contact`.`uid`=".intval(local_user());
222                         
223                 }
224                 
225                 if (is_null($user) && $a->argc > (count($called_api)-1)){
226                         $argid = count($called_api);
227                         list($user, $null) = explode(".",$a->argv[$argid]);
228                         if(is_numeric($user)){
229                                 $user = intval($user);
230                                 $extra_query = "AND `contact`.`id` = %d ";
231                         } else {
232                                 $user = dbesc($user);
233                                 $extra_query = "AND `contact`.`nick` = '%s' ";
234                                 if (local_user()!==false)  $extra_query .= "AND `contact`.`uid`=".intval(local_user());
235                         }
236                 }
237                 
238                 if (! $user) {
239                         if (local_user()===false) {
240                                 api_login($a); return False;
241                         } else {
242                                 $user = $_SESSION['uid'];
243                                 $extra_query = "AND `contact`.`uid` = %d AND `contact`.`self` = 1 ";
244                         }
245                         
246                 }
247                 
248                 logger('api_user: ' . $extra_query . ' ' , $user);
249                 // user info            
250                 $uinfo = q("SELECT *, `contact`.`id` as `cid` FROM `contact`
251                                 WHERE 1
252                                 $extra_query",
253                                 $user
254                 );
255                 if (count($uinfo)==0) {
256                         return False;
257                 }
258                 
259                 if($uinfo[0]['self']) {
260                         $usr = q("select * from user where uid = %d limit 1",
261                                 intval(local_user())
262                         );
263                         $profile = q("select * from profile where uid = %d and `is-default` = 1 limit 1",
264                                 intval(local_user())
265                         );
266
267                         // count public wall messages
268                         $r = q("SELECT COUNT(`id`) as `count` FROM `item`
269                                         WHERE  `uid` = %d
270                                         AND `type`='wall' 
271                                         AND `allow_cid`='' AND `allow_gid`='' AND `deny_cid`='' AND `deny_gid`=''",
272                                         intval($uinfo[0]['uid'])
273                         );
274                         $countitms = $r[0]['count'];
275                 }
276                 else {
277                         $r = q("SELECT COUNT(`id`) as `count` FROM `item`
278                                         WHERE  `contact-id` = %d
279                                         AND `allow_cid`='' AND `allow_gid`='' AND `deny_cid`='' AND `deny_gid`=''",
280                                         intval($uinfo[0]['id'])
281                         );
282                         $countitms = $r[0]['count'];
283                 }
284
285                 // count friends
286                 $r = q("SELECT COUNT(`id`) as `count` FROM `contact`
287                                 WHERE  `uid` = %d AND `rel` IN ( %d, %d )
288                                 AND `self`=0 AND `blocked`=0 AND `pending`=0 AND `hidden`=0", 
289                                 intval($uinfo[0]['uid']),
290                                 intval(CONTACT_IS_SHARING),
291                                 intval(CONTACT_IS_FRIEND)
292                 );
293                 $countfriends = $r[0]['count'];
294
295                 $r = q("SELECT COUNT(`id`) as `count` FROM `contact`
296                                 WHERE  `uid` = %d AND `rel` IN ( %d, %d )
297                                 AND `self`=0 AND `blocked`=0 AND `pending`=0 AND `hidden`=0", 
298                                 intval($uinfo[0]['uid']),
299                                 intval(CONTACT_IS_FOLLOWER),
300                                 intval(CONTACT_IS_FRIEND)
301                 );
302                 $countfollowers = $r[0]['count'];
303
304                 $r = q("SELECT count(`id`) as `count` FROM item where starred = 1 and uid = %d and deleted = 0",
305                         intval($uinfo[0]['uid'])
306                 );
307                 $starred = $r[0]['count'];
308         
309
310                 if(! $uinfo[0]['self']) {
311                         $countfriends = 0;
312                         $countfollowers = 0;
313                         $starred = 0;
314                 }
315
316                 $ret = Array(
317                         'id' => intval($uinfo[0]['cid']),
318                         'self' => intval($uinfo[0]['self']),
319                         'uid' => intval($uinfo[0]['uid']),
320                         'name' => (($uinfo[0]['name']) ? $uinfo[0]['name'] : $uinfo[0]['nick']),
321                         'screen_name' => (($uinfo[0]['nick']) ? $uinfo[0]['nick'] : $uinfo[0]['name']),
322                         'location' => ($usr) ? $usr[0]['default-location'] : '',
323                         'profile_image_url' => $uinfo[0]['micro'],
324                         'url' => $uinfo[0]['url'],
325                         'contact_url' => $a->get_baseurl()."/contacts/".$uinfo[0]['cid'],
326                         'protected' => false,   
327                         'friends_count' => intval($countfriends),
328                         'created_at' => api_date($uinfo[0]['name-date']),
329                         'utc_offset' => "+00:00",
330                         'time_zone' => 'UTC', //$uinfo[0]['timezone'],
331                         'geo_enabled' => false,
332                         'statuses_count' => intval($countitms), #XXX: fix me 
333                         'lang' => 'en', #XXX: fix me
334                         'description' => (($profile) ? $profile[0]['pdesc'] : ''),
335                         'followers_count' => intval($countfollowers),
336                         'favourites_count' => intval($starred),
337                         'contributors_enabled' => false,
338                         'follow_request_sent' => true,
339                         'profile_background_color' => 'cfe8f6',
340                         'profile_text_color' => '000000',
341                         'profile_link_color' => 'FF8500',
342                         'profile_sidebar_fill_color' =>'AD0066',
343                         'profile_sidebar_border_color' => 'AD0066',
344                         'profile_background_image_url' => '',
345                         'profile_background_tile' => false,
346                         'profile_use_background_image' => false,
347                         'notifications' => false,
348                         'following' => '', #XXX: fix me
349                         'verified' => true, #XXX: fix me
350                         'status' => array()
351                 );
352         
353                 return $ret;
354                 
355         }
356
357         function api_item_get_user(&$a, $item) {
358                 global $usercache;
359
360                 // The author is our direct contact, in a conversation with us.
361                 if(link_compare($item['url'],$item['author-link'])) {
362                         return api_get_user($a,$item['cid']);
363                 }
364                 else {
365                         // The author may be a contact of ours, but is replying to somebody else. 
366                         // Figure out if we know him/her.
367                         $normalised = normalise_link((strlen($item['author-link'])) ? $item['author-link'] : $item['url']);
368             if(($normalised != 'mailbox') && (x($a->contacts[$normalised])))
369                                 return api_get_user($a,$a->contacts[$normalised]['id']);
370                 }
371                 // We don't know this person directly.
372                 
373                 list($nick, $name) = array_map("trim",explode("(",$item['author-name']));
374                 $name=str_replace(")","",$name);
375
376                 if ($name == '')
377                         $name = $nick;
378
379                 if ($nick == '')
380                         $nick = $name;
381
382                 // Generating a random ID
383                 if (!array_key_exists($nick, $usercache))
384                         $usercache[$nick] = mt_rand(2000000, 2100000);
385
386                 $ret = array(
387                         'id' => $usercache[$nick],
388                         'name' => $name,
389                         'screen_name' => $nick,
390                         'location' => '', //$uinfo[0]['default-location'],
391                         'description' => '',
392                         'profile_image_url' => $item['author-avatar'],
393                         'url' => $item['author-link'],
394                         'protected' => false,   #
395                         'followers_count' => 0,
396                         'friends_count' => 0,
397                         'created_at' => '',
398                         'favourites_count' => 0,
399                         'utc_offset' => 0, #XXX: fix me
400                         'time_zone' => '', //$uinfo[0]['timezone'],
401                         'statuses_count' => 0,
402                         'following' => 1,
403                         'statusnet_blocking' => false,
404                         'notifications' => false,
405                         'uid' => 0,
406                         'contact_url' => 0,
407                         'geo_enabled' => false,
408                         'lang' => 'en', #XXX: fix me
409                         'contributors_enabled' => false,
410                         'follow_request_sent' => false,
411                         'profile_background_color' => 'cfe8f6',
412                         'profile_text_color' => '000000',
413                         'profile_link_color' => 'FF8500',
414                         'profile_sidebar_fill_color' =>'AD0066',
415                         'profile_sidebar_border_color' => 'AD0066',
416                         'profile_background_image_url' => '',
417                         'profile_background_tile' => false,
418                         'profile_use_background_image' => false,
419                         'verified' => true, #XXX: fix me
420                         'followers' => '', #XXX: fix me
421                         'status' => array()
422                 );
423
424                 return $ret; 
425         }
426
427
428         /**
429          *  load api $templatename for $type and replace $data array
430          */
431         function api_apply_template($templatename, $type, $data){
432
433                 $a = get_app();
434
435                 switch($type){
436                         case "atom":
437                         case "rss":
438                         case "xml":
439                                 $data = array_xmlify($data);
440                                 $tpl = get_markup_template("api_".$templatename."_".$type.".tpl");
441                                 $ret = replace_macros($tpl, $data);
442                                 break;
443                         case "json":
444                                 $ret = $data;
445                                 break;
446                 }
447                 return $ret;
448         }
449         
450         /**
451          ** TWITTER API
452          */
453         
454         /**
455          * Returns an HTTP 200 OK response code and a representation of the requesting user if authentication was successful; 
456          * returns a 401 status code and an error message if not. 
457          * http://developer.twitter.com/doc/get/account/verify_credentials
458          */
459         function api_account_verify_credentials(&$a, $type){
460                 if (local_user()===false) return false;
461                 $user_info = api_get_user($a);
462                 
463                 return api_apply_template("user", $type, array('$user' => $user_info));
464
465         }
466         api_register_func('api/account/verify_credentials','api_account_verify_credentials', true);
467                 
468
469         /**
470          * get data from $_POST or $_GET
471          */
472         function requestdata($k){
473                 if (isset($_POST[$k])){
474                         return $_POST[$k];
475                 }
476                 if (isset($_GET[$k])){
477                         return $_GET[$k];
478                 }
479                 return null;
480         }
481
482 /*Waitman Gobble Mod*/
483         function api_statuses_mediap(&$a, $type) {
484                 if (local_user()===false) {
485                         logger('api_statuses_update: no user');
486                         return false;
487                 }
488                 $user_info = api_get_user($a);
489
490                 $_REQUEST['type'] = 'wall';
491                 $_REQUEST['profile_uid'] = local_user();
492                 $_REQUEST['api_source'] = true;
493                 $txt = urldecode(requestdata('status'));
494
495                 require_once('library/HTMLPurifier.auto.php');
496                 require_once('include/html2bbcode.php');
497
498                 if((strpos($txt,'<') !== false) || (strpos($txt,'>') !== false)) {
499                         $txt = html2bb_video($txt);
500                         $config = HTMLPurifier_Config::createDefault();
501                         $config->set('Cache.DefinitionImpl', null);
502                         $purifier = new HTMLPurifier($config);
503                         $txt = $purifier->purify($txt);
504                 }
505                 $txt = html2bbcode($txt);
506                 
507                 $a->argv[1]=$user_info['screen_name']; //should be set to username?
508                 
509                 $_REQUEST['hush']='yeah'; //tell wall_upload function to return img info instead of echo
510                 require_once('mod/wall_upload.php');
511                 $bebop = wall_upload_post($a);
512                 
513                 //now that we have the img url in bbcode we can add it to the status and insert the wall item.
514                 $_REQUEST['body']=$txt."\n\n".$bebop;
515                 require_once('mod/item.php');
516                 item_post($a);
517
518                 // this should output the last post (the one we just posted).
519                 return api_status_show($a,$type);
520         }
521         api_register_func('api/statuses/mediap','api_statuses_mediap', true);
522 /*Waitman Gobble Mod*/
523
524
525         function api_statuses_update(&$a, $type) {
526                 if (local_user()===false) {
527                         logger('api_statuses_update: no user');
528                         return false;
529                 }
530                 $user_info = api_get_user($a);
531
532                 // convert $_POST array items to the form we use for web posts.
533
534                 // logger('api_post: ' . print_r($_POST,true));
535
536                 if(requestdata('htmlstatus')) {
537                         require_once('library/HTMLPurifier.auto.php');
538                         require_once('include/html2bbcode.php');
539
540                         $txt = requestdata('htmlstatus');
541                         if((strpos($txt,'<') !== false) || (strpos($txt,'>') !== false)) {
542
543                                 $txt = html2bb_video($txt);
544
545                                 $config = HTMLPurifier_Config::createDefault();
546                                 $config->set('Cache.DefinitionImpl', null);
547
548
549                                 $purifier = new HTMLPurifier($config);
550                                 $txt = $purifier->purify($txt);
551
552                                 $_REQUEST['body'] = html2bbcode($txt);
553                         }
554
555                 }
556                 else
557                         $_REQUEST['body'] = urldecode(requestdata('status'));
558
559                 $parent = requestdata('in_reply_to_status_id');
560                 if(ctype_digit($parent))
561                         $_REQUEST['parent'] = $parent;
562                 else
563                         $_REQUEST['parent_uri'] = $parent;
564
565                 if(requestdata('lat') && requestdata('long'))
566                         $_REQUEST['coord'] = sprintf("%s %s",requestdata('lat'),requestdata('long'));
567                 $_REQUEST['profile_uid'] = local_user();
568                 if(requestdata('parent'))
569                         $_REQUEST['type'] = 'net-comment';
570                 else
571                         $_REQUEST['type'] = 'wall';
572
573                 // set this so that the item_post() function is quiet and doesn't redirect or emit json
574
575                 $_REQUEST['api_source'] = true;
576
577                 // call out normal post function
578
579                 require_once('mod/item.php');
580                 item_post($a);  
581
582                 // this should output the last post (the one we just posted).
583                 return api_status_show($a,$type);
584         }
585         api_register_func('api/statuses/update','api_statuses_update', true);
586
587
588         function api_status_show(&$a, $type){
589                 $user_info = api_get_user($a);
590                 // get last public wall message
591                 $lastwall = q("SELECT `item`.*, `i`.`contact-id` as `reply_uid`, `i`.`nick` as `reply_author`
592                                 FROM `item`, `contact`,
593                                         (SELECT `item`.`id`, `item`.`contact-id`, `contact`.`nick` FROM `item`,`contact` WHERE `contact`.`id`=`item`.`contact-id`) as `i` 
594                                 WHERE `item`.`contact-id` = %d
595                                         AND `i`.`id` = `item`.`parent`
596                                         AND `contact`.`id`=`item`.`contact-id` AND `contact`.`self`=1
597                                         AND `type`!='activity'
598                                         AND `item`.`allow_cid`='' AND `item`.`allow_gid`='' AND `item`.`deny_cid`='' AND `item`.`deny_gid`=''
599                                 ORDER BY `created` DESC 
600                                 LIMIT 1",
601                                 intval($user_info['id'])
602                 );
603
604                 if (count($lastwall)>0){
605                         $lastwall = $lastwall[0];
606                         
607                         $in_reply_to_status_id = '';
608                         $in_reply_to_user_id = '';
609                         $in_reply_to_screen_name = '';
610                         if ($lastwall['parent']!=$lastwall['id']) {
611                                 $in_reply_to_status_id=$lastwall['parent'];
612                                 $in_reply_to_user_id = $lastwall['reply_uid'];
613                                 $in_reply_to_screen_name = $lastwall['reply_author'];
614                         }  
615                         $status_info = array(
616                                 'text' => html2plain(bbcode($lastwall['body']), 0),
617                                 'truncated' => false,
618                                 'created_at' => api_date($lastwall['created']),
619                                 'in_reply_to_status_id' => $in_reply_to_status_id,
620                                 'source' => (($lastwall['app']) ? $lastwall['app'] : 'web'),
621                                 'id' => $lastwall['contact-id'],
622                                 'in_reply_to_user_id' => $in_reply_to_user_id,
623                                 'in_reply_to_screen_name' => $in_reply_to_screen_name,
624                                 'geo' => '',
625                                 'favorited' => false,
626                                 'coordinates' => $lastwall['coord'],
627                                 'place' => $lastwall['location'],
628                                 'contributors' => ''                                    
629                         );
630                         $status_info['user'] = $user_info;
631                 }
632                 return  api_apply_template("status", $type, array('$status' => $status_info));
633                 
634         }
635
636
637
638
639                 
640         /**
641          * Returns extended information of a given user, specified by ID or screen name as per the required id parameter.
642          * The author's most recent status will be returned inline.
643          * http://developer.twitter.com/doc/get/users/show
644          */
645         function api_users_show(&$a, $type){
646                 $user_info = api_get_user($a);
647                 // get last public wall message
648                 $lastwall = q("SELECT `item`.*, `i`.`contact-id` as `reply_uid`, `i`.`nick` as `reply_author`
649                                 FROM `item`, `contact`,
650                                         (SELECT `item`.`id`, `item`.`contact-id`, `contact`.`nick` FROM `item`,`contact` WHERE `contact`.`id`=`item`.`contact-id`) as `i` 
651                                 WHERE `item`.`contact-id` = %d
652                                         AND `i`.`id` = `item`.`parent`
653                                         AND `contact`.`id`=`item`.`contact-id` AND `contact`.`self`=1
654                                         AND `type`!='activity'
655                                         AND `item`.`allow_cid`='' AND `item`.`allow_gid`='' AND `item`.`deny_cid`='' AND `item`.`deny_gid`=''
656                                 ORDER BY `created` DESC 
657                                 LIMIT 1",
658                                 intval($user_info['id'])
659                 );
660
661                 if (count($lastwall)>0){
662                         $lastwall = $lastwall[0];
663                         
664                         $in_reply_to_status_id = '';
665                         $in_reply_to_user_id = '';
666                         $in_reply_to_screen_name = '';
667                         if ($lastwall['parent']!=$lastwall['id']) {
668                                 $in_reply_to_status_id=$lastwall['parent'];
669                                 $in_reply_to_user_id = $lastwall['reply_uid'];
670                                 $in_reply_to_screen_name = $lastwall['reply_author'];
671                         }  
672                         $user_info['status'] = array(
673                                 'created_at' => api_date($lastwall['created']),
674                                 'id' => $lastwall['contact-id'],
675                                 'text' => html2plain(bbcode($lastwall['body']), 0),
676                                 'source' => (($lastwall['app']) ? $lastwall['app'] : 'web'),
677                                 'truncated' => false,
678                                 'in_reply_to_status_id' => $in_reply_to_status_id,
679                                 'in_reply_to_user_id' => $in_reply_to_user_id,
680                                 'favorited' => false,
681                                 'in_reply_to_screen_name' => $in_reply_to_screen_name,
682                                 'geo' => '',
683                                 'coordinates' => $lastwall['coord'],
684                                 'place' => $lastwall['location'],
685                                 'contributors' => ''
686                         );
687                 }
688                 return  api_apply_template("user", $type, array('$user' => $user_info));
689
690         }
691         api_register_func('api/users/show','api_users_show');
692
693         /**
694          *
695          * http://developer.twitter.com/doc/get/statuses/home_timeline
696          *
697          * TODO: Optional parameters
698          * TODO: Add reply info
699          */
700         function api_statuses_home_timeline(&$a, $type){
701                 if (local_user()===false) return false;
702
703                 $user_info = api_get_user($a);
704                 // get last newtork messages
705
706
707                 // params
708                 $count = (x($_REQUEST,'count')?$_REQUEST['count']:20);
709                 $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
710                 if ($page<0) $page=0;
711                 $since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
712                 $max_id = (x($_REQUEST,'max_id')?$_REQUEST['max_id']:0);
713                 //$since_id = 0;//$since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
714
715                 $start = $page*$count;
716
717                 //$include_entities = (x($_REQUEST,'include_entities')?$_REQUEST['include_entities']:false);
718
719                 if ($max_id > 0)
720                         $sql_extra = 'AND `item`.`id` <= '.intval($max_id);
721
722                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`,
723                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
724                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
725                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
726                         FROM `item`, `contact`
727                         WHERE `item`.`uid` = %d
728                         AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
729                         AND `contact`.`id` = `item`.`contact-id`
730                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
731                         $sql_extra
732                         AND `item`.`id`>%d
733                         ORDER BY `item`.`received` DESC LIMIT %d ,%d ",
734                         intval($user_info['uid']),
735                         intval($since_id),
736                         intval($start), intval($count)
737                 );
738
739                 $ret = api_format_items($r,$user_info);
740
741
742                 $data = array('$statuses' => $ret);
743                 switch($type){
744                         case "atom":
745                         case "rss":
746                                 $data = api_rss_extra($a, $data, $user_info);
747                                 break;
748                         case "as":
749                                 $as = api_format_as($a, $ret, $user_info);
750                                 $as['title'] = $a->config['sitename']." Home Timeline";
751                                 $as['link']['url'] = $a->get_baseurl()."/".$user_info["screen_name"]."/all";
752                                 return($as);
753                                 break;
754                 }
755
756                 return  api_apply_template("timeline", $type, $data);
757         }
758         api_register_func('api/statuses/home_timeline','api_statuses_home_timeline', true);
759         api_register_func('api/statuses/friends_timeline','api_statuses_home_timeline', true);
760
761         function api_statuses_public_timeline(&$a, $type){
762                 if (local_user()===false) return false;
763
764                 $user_info = api_get_user($a);
765                 // get last newtork messages
766
767
768                 // params
769                 $count = (x($_REQUEST,'count')?$_REQUEST['count']:20);
770                 $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
771                 if ($page<0) $page=0;
772                 $since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
773                 $max_id = (x($_REQUEST,'max_id')?$_REQUEST['max_id']:0);
774                 //$since_id = 0;//$since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
775
776                 $start = $page*$count;
777
778                 //$include_entities = (x($_REQUEST,'include_entities')?$_REQUEST['include_entities']:false);
779
780                 if ($max_id > 0)
781                         $sql_extra = 'AND `item`.`id` <= '.intval($max_id);
782
783                 /*$r = q("SELECT `item`.*, `item`.`id` AS `item_id`,
784                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
785                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
786                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
787                         FROM `item`, `contact`
788                         WHERE `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
789                         AND `item`.`allow_cid` = ''  AND `item`.`allow_gid` = '' 
790                         AND `item`.`deny_cid`  = '' AND `item`.`deny_gid`  = '' 
791                         AND `item`.`private` = 0 AND `item`.`wall` = 1 AND `user`.`hidewall` = 0
792                         AND `contact`.`id` = `item`.`contact-id`
793                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
794                         $sql_extra
795                         AND `item`.`id`>%d
796                         ORDER BY `item`.`received` DESC LIMIT %d ,%d ",
797                         intval($since_id),
798                         intval($start), intval($count)
799                 );*/
800                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`,
801                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
802                         `contact`.`network`, `contact`.`thumb`, `contact`.`self`, `contact`.`writable`,
803                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`,
804                         `user`.`nickname`, `user`.`hidewall`
805                         FROM `item` LEFT JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
806                         LEFT JOIN `user` ON `user`.`uid` = `item`.`uid`
807                         WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
808                         AND `item`.`allow_cid` = ''  AND `item`.`allow_gid` = ''
809                         AND `item`.`deny_cid`  = '' AND `item`.`deny_gid`  = ''
810                         AND `item`.`private` = 0 AND `item`.`wall` = 1 AND `user`.`hidewall` = 0
811                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
812                         $sql_extra
813                         AND `item`.`id`>%d
814                         ORDER BY `received` DESC LIMIT %d, %d ",
815                         intval($since_id),
816                         intval($start),
817                         intval($count));
818
819                 $ret = api_format_items($r,$user_info);
820
821
822                 $data = array('$statuses' => $ret);
823                 switch($type){
824                         case "atom":
825                         case "rss":
826                                 $data = api_rss_extra($a, $data, $user_info);
827                                 break;
828                         case "as":
829                                 $as = api_format_as($a, $ret, $user_info);
830                                 $as['title'] = $a->config['sitename']." Public Timeline";
831                                 $as['link']['url'] = $a->get_baseurl()."/";
832                                 return($as);
833                                 break;
834                 }
835
836                 return  api_apply_template("timeline", $type, $data);
837         }
838         api_register_func('api/statuses/public_timeline','api_statuses_public_timeline', true);
839
840         /**
841          * 
842          */
843         function api_statuses_show(&$a, $type){
844                 if (local_user()===false) return false;
845
846                 $user_info = api_get_user($a);
847
848                 // params
849                 $id = intval($a->argv[3]);
850
851                 logger('API: api_statuses_show: '.$id);
852
853                 //$include_entities = (x($_REQUEST,'include_entities')?$_REQUEST['include_entities']:false);
854
855                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`,
856                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
857                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
858                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
859                         FROM `item`, `contact`
860                         WHERE `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
861                         AND `contact`.`id` = `item`.`contact-id`
862                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
863                         $sql_extra
864                         AND `item`.`id`=%d",
865                         intval($id)
866                 );
867
868                 $ret = api_format_items($r,$user_info);
869
870                 $data = array('$status' => $ret[0]);
871                 /*switch($type){
872                         case "atom":
873                         case "rss":
874                                 $data = api_rss_extra($a, $data, $user_info);
875                 }*/
876                 return  api_apply_template("status", $type, $data);
877         }
878         api_register_func('api/statuses/show','api_statuses_show', true);
879
880
881         /**
882          * 
883          */
884         function api_statuses_repeat(&$a, $type){
885                 if (local_user()===false) return false;
886
887                 $user_info = api_get_user($a);
888
889                 // params
890                 $id = intval($a->argv[3]);
891
892                 logger('API: api_statuses_repeat: '.$id);               
893
894                 //$include_entities = (x($_REQUEST,'include_entities')?$_REQUEST['include_entities']:false);
895
896                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, `contact`.`nick` as `reply_author`,
897                         `contact`.`name`, `contact`.`photo`, `contact`.`url` as `reply_url`, `contact`.`rel`,
898                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
899                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
900                         FROM `item`, `contact`
901                         WHERE `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
902                         AND `contact`.`id` = `item`.`contact-id`
903                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
904                         $sql_extra
905                         AND `item`.`id`=%d",
906                         intval($id)
907                 );
908
909                 $_REQUEST['body'] = html_entity_decode("&#x2672; ", ENT_QUOTES, 'UTF-8')."[url=".$r[0]['reply_url']."]".$r[0]['reply_author']."[/url] \n".$r[0]['body'];
910                 $_REQUEST['profile_uid'] = local_user();
911                 $_REQUEST['type'] = 'wall';
912                 $_REQUEST['api_source'] = true;
913
914                 require_once('mod/item.php');
915                 item_post($a);
916
917                 if ($type == 'xml')
918                         $ok = "true";
919                 else
920                         $ok = "ok";
921
922                 return api_apply_template('test', $type, array('$ok' => $ok));
923         }
924         api_register_func('api/statuses/retweet','api_statuses_repeat', true);
925
926         /**
927          * 
928          */
929         function api_statuses_destroy(&$a, $type){
930                 if (local_user()===false) return false;
931
932                 $user_info = api_get_user($a);
933
934                 // params
935                 $id = intval($a->argv[3]);
936
937                 logger('API: api_statuses_destroy: '.$id);      
938
939                 require_once('include/items.php');
940                 drop_item($id, false);
941
942                 if ($type == 'xml')
943                         $ok = "true";
944                 else
945                         $ok = "ok";
946
947                 return api_apply_template('test', $type, array('$ok' => $ok));
948         }
949         api_register_func('api/statuses/destroy','api_statuses_destroy', true);
950
951         /**
952          * 
953          * http://developer.twitter.com/doc/get/statuses/mentions
954          * 
955          */
956         function api_statuses_mentions(&$a, $type){
957                 if (local_user()===false) return false;
958                                 
959                 $user_info = api_get_user($a);
960                 // get last newtork messages
961
962
963                 // params
964                 $count = (x($_REQUEST,'count')?$_REQUEST['count']:20);
965                 $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
966                 if ($page<0) $page=0;
967                 $since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
968                 $max_id = (x($_REQUEST,'max_id')?$_REQUEST['max_id']:0);
969                 //$since_id = 0;//$since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
970                 
971                 $start = $page*$count;
972
973                 //$include_entities = (x($_REQUEST,'include_entities')?$_REQUEST['include_entities']:false);
974
975                 $myurl = $a->get_baseurl() . '/profile/'. $a->user['nickname'];
976                 $myurl = substr($myurl,strpos($myurl,'://')+3);
977                 $myurl = str_replace(array('www.','.'),array('','\\.'),$myurl);
978                 $diasp_url = str_replace('/profile/','/u/',$myurl);
979                 $sql_extra .= sprintf(" AND `item`.`parent` IN (SELECT distinct(`parent`) from item where ( `author-link` regexp '%s' or `tag` regexp '%s' or tag regexp '%s' )) ",
980                         dbesc($myurl . '$'),
981                         dbesc($myurl . '\\]'),
982                         dbesc($diasp_url . '\\]')
983                 );
984
985                 if ($max_id > 0)
986                         $sql_extra .= ' AND `item`.`id` <= '.intval($max_id);
987
988                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, 
989                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
990                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
991                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
992                         FROM `item`, `contact`
993                         WHERE `item`.`uid` = %d
994                         AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
995                         AND `contact`.`id` = `item`.`contact-id`
996                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
997                         $sql_extra
998                         AND `item`.`id`>%d
999                         ORDER BY `item`.`received` DESC LIMIT %d ,%d ",
1000                         intval($user_info['uid']),
1001                         intval($since_id),
1002                         intval($start), intval($count)
1003                 );
1004
1005                 $ret = api_format_items($r,$user_info);
1006
1007
1008                 $data = array('$statuses' => $ret);
1009                 switch($type){
1010                         case "atom":
1011                         case "rss":
1012                                 $data = api_rss_extra($a, $data, $user_info);
1013                                 break;
1014                         case "as":
1015                                 $as = api_format_as($a, $ret, $user_info);
1016                                 $as["title"] = $a->config['sitename']." Mentions";
1017                                 $as['link']['url'] = $a->get_baseurl()."/";
1018                                 return($as);
1019                                 break;
1020                 }
1021
1022                 return  api_apply_template("timeline", $type, $data);
1023         }
1024         api_register_func('api/statuses/mentions','api_statuses_mentions', true);
1025         api_register_func('api/statuses/replies','api_statuses_mentions', true);
1026
1027
1028         function api_statuses_user_timeline(&$a, $type){
1029                 if (local_user()===false) return false;
1030                 
1031                 $user_info = api_get_user($a);
1032                 // get last newtork messages
1033
1034
1035                 logger("api_statuses_user_timeline: local_user: ". local_user() .
1036                            "\nuser_info: ".print_r($user_info, true) .
1037                            "\n_REQUEST:  ".print_r($_REQUEST, true),
1038                            LOGGER_DEBUG);
1039
1040                 // params
1041                 $count = (x($_REQUEST,'count')?$_REQUEST['count']:20);
1042                 $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
1043                 if ($page<0) $page=0;
1044                 $since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
1045                 //$since_id = 0;//$since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
1046                 
1047                 $start = $page*$count;
1048
1049                 if ($user_info['self']==1) $sql_extra = "AND `item`.`wall` = 1 ";
1050
1051                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, 
1052                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
1053                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
1054                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
1055                         FROM `item`, `contact`
1056                         WHERE `item`.`uid` = %d
1057                         AND `item`.`contact-id` = %d
1058                         AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
1059                         AND `contact`.`id` = `item`.`contact-id`
1060                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
1061                         $sql_extra
1062                         AND `item`.`id`>%d
1063                         ORDER BY `item`.`received` DESC LIMIT %d ,%d ",
1064                         intval(local_user()),
1065                         intval($user_info['id']),
1066                         intval($since_id),
1067                         intval($start), intval($count)
1068                 );
1069
1070                 $ret = api_format_items($r,$user_info);
1071
1072
1073                 $data = array('$statuses' => $ret);
1074                 switch($type){
1075                         case "atom":
1076                         case "rss":
1077                                 $data = api_rss_extra($a, $data, $user_info);
1078                 }
1079
1080                 return  api_apply_template("timeline", $type, $data);
1081         }
1082
1083         api_register_func('api/statuses/user_timeline','api_statuses_user_timeline', true);
1084
1085
1086         function api_favorites(&$a, $type){
1087                 if (local_user()===false) return false;
1088
1089                 $user_info = api_get_user($a);
1090                 // in friendica starred item are private
1091                 // return favorites only for self
1092                 logger('api_favorites: self:' . $user_info['self']);
1093
1094                 if ($user_info['self']==0) {
1095                         $ret = array();
1096                 } else {
1097
1098
1099                         // params
1100                         $count = (x($_GET,'count')?$_GET['count']:20);
1101                         $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
1102                         if ($page<0) $page=0;
1103
1104                         $start = $page*$count;
1105
1106                         $r = q("SELECT `item`.*, `item`.`id` AS `item_id`,
1107                                 `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
1108                                 `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
1109                                 `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
1110                                 FROM `item`, `contact`
1111                                 WHERE `item`.`uid` = %d
1112                                 AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
1113                                 AND `item`.`starred` = 1
1114                                 AND `contact`.`id` = `item`.`contact-id`
1115                                 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
1116                                 $sql_extra
1117                                 ORDER BY `item`.`received` DESC LIMIT %d ,%d ",
1118                                 intval($user_info['uid']),
1119                                 intval($start), intval($count)
1120                         );
1121
1122                         $ret = api_format_items($r,$user_info);
1123
1124                 }
1125
1126                 $data = array('$statuses' => $ret);
1127                 switch($type){
1128                         case "atom":
1129                         case "rss":
1130                                 $data = api_rss_extra($a, $data, $user_info);
1131                 }
1132
1133                 return  api_apply_template("timeline", $type, $data);
1134         }
1135
1136         api_register_func('api/favorites','api_favorites', true);
1137
1138         function api_format_as($a, $ret, $user_info) {
1139
1140                 $as = array();
1141                 $as['title'] = $a->config['sitename']." Public Timeline";
1142                 $items = array();
1143                 foreach ($ret as $item) {
1144                         $singleitem["actor"]["displayName"] = $item["user"]["name"];
1145                         $singleitem["actor"]["id"] = $item["user"]["contact_url"];
1146                         $avatar[0]["url"] = $item["user"]["profile_image_url"];
1147                         $avatar[0]["rel"] = "avatar";
1148                         $avatar[0]["type"] = "";
1149                         $avatar[0]["width"] = 96;
1150                         $avatar[0]["height"] = 96;
1151                         $avatar[1]["url"] = $item["user"]["profile_image_url"];
1152                         $avatar[1]["rel"] = "avatar";
1153                         $avatar[1]["type"] = "";
1154                         $avatar[1]["width"] = 48;
1155                         $avatar[1]["height"] = 48;
1156                         $avatar[2]["url"] = $item["user"]["profile_image_url"];
1157                         $avatar[2]["rel"] = "avatar";
1158                         $avatar[2]["type"] = "";
1159                         $avatar[2]["width"] = 24;
1160                         $avatar[2]["height"] = 24;
1161                         $singleitem["actor"]["avatarLinks"] = $avatar;
1162
1163                         $singleitem["actor"]["image"]["url"] = $item["user"]["profile_image_url"];
1164                         $singleitem["actor"]["image"]["rel"] = "avatar";
1165                         $singleitem["actor"]["image"]["type"] = "";
1166                         $singleitem["actor"]["image"]["width"] = 96;
1167                         $singleitem["actor"]["image"]["height"] = 96;
1168                         $singleitem["actor"]["type"] = "person";
1169                         $singleitem["actor"]["url"] = $item["person"]["contact_url"];
1170                         $singleitem["actor"]["statusnet:profile_info"]["local_id"] = $item["user"]["id"];
1171                         $singleitem["actor"]["statusnet:profile_info"]["following"] = $item["user"]["following"] ? "true" : "false";
1172                         $singleitem["actor"]["statusnet:profile_info"]["blocking"] = "false";
1173                         $singleitem["actor"]["contact"]["preferredUsername"] = $item["user"]["screen_name"];
1174                         $singleitem["actor"]["contact"]["displayName"] = $item["user"]["name"];
1175                         $singleitem["actor"]["contact"]["addresses"] = "";
1176
1177                         $singleitem["body"] = $item["text"];
1178                         $singleitem["object"]["displayName"] = $item["text"];
1179                         $singleitem["object"]["id"] = $item["url"];
1180                         $singleitem["object"]["type"] = "note";
1181                         $singleitem["object"]["url"] = $item["url"];
1182                         //$singleitem["context"] =;
1183                         $singleitem["postedTime"] = date("c", strtotime($item["published"]));
1184                         $singleitem["provider"]["objectType"] = "service";
1185                         $singleitem["provider"]["displayName"] = "Test";
1186                         $singleitem["provider"]["url"] = "http://test.tld";
1187                         $singleitem["title"] = $item["text"];
1188                         $singleitem["verb"] = "post";
1189                         $singleitem["statusnet:notice_info"]["local_id"] = $item["id"];
1190                                 $singleitem["statusnet:notice_info"]["source"] = $item["source"];
1191                                 $singleitem["statusnet:notice_info"]["favorite"] = "false";
1192                                 $singleitem["statusnet:notice_info"]["repeated"] = "false";
1193                                 //$singleitem["original"] = $item;
1194                                 $items[] = $singleitem;
1195                 }
1196                 $as['items'] = $items;
1197                 $as['link']['url'] = $a->get_baseurl()."/".$user_info["screen_name"]."/all";
1198                 $as['link']['rel'] = "alternate";
1199                 $as['link']['type'] = "text/html";
1200                 return($as);
1201         }
1202
1203         function api_format_items($r,$user_info) {
1204
1205                 //logger('api_format_items: ' . print_r($r,true));
1206
1207                 //logger('api_format_items: ' . print_r($user_info,true));
1208
1209                 $a = get_app();
1210                 $ret = Array();
1211
1212                 foreach($r as $item) {
1213                         localize_item($item);
1214                         $status_user = (($item['cid']==$user_info['id'])?$user_info: api_item_get_user($a,$item));
1215
1216                         if ($item['parent']!=$item['id']) {
1217                                 $r = q("select id from item where parent=%s and id<%s order by id desc limit 1",
1218                                         intval($item['parent']), intval($item['id']));
1219                                 if ($r)
1220                                         $in_reply_to_status_id = $r[0]['id'];
1221                                 else
1222                                         $in_reply_to_status_id = $item['parent'];
1223
1224                                 $r = q("select `item`.`contact-id`, `contact`.nick, `item`.`author-name` from item, contact
1225                                         where `contact`.`id` = `item`.`contact-id` and `item`.id=%d", intval($in_reply_to_status_id));
1226
1227                                 $in_reply_to_screen_name = $r[0]['author-name'];
1228                                 $in_reply_to_user_id = $r[0]['contact-id'];
1229
1230                         } else {
1231                                 $in_reply_to_screen_name = '';
1232                                 $in_reply_to_user_id = 0;
1233                                 $in_reply_to_status_id = 0;
1234                         }
1235
1236                         // Workaround for ostatus messages where the title is identically to the body
1237                         $statusbody = trim(html2plain(bbcode($item['body']), 0));
1238                         $statustitle = trim($item['title']);
1239
1240                         if (($statustitle != '') and (strpos($statusbody, $statustitle) !== false))
1241                                 $statustext = trim($statusbody);
1242                         else
1243                                 $statustext = trim($statustitle."\n\n".$statusbody);
1244
1245                         if (($item["network"] == NETWORK_FEED) and (strlen($statustext)> 1000))
1246                                 $statustext = substr($statustext, 0, 1000)."... \n".$item["plink"];
1247
1248                         $status = array(
1249                                 'text'          => $statustext,
1250                                 'truncated' => False,
1251                                 'created_at'=> api_date($item['created']),
1252                                 'in_reply_to_status_id' => $in_reply_to_status_id,
1253                                 'source'    => (($item['app']) ? $item['app'] : 'web'),
1254                                 'id'            => intval($item['id']),
1255                                 'in_reply_to_user_id' => $in_reply_to_user_id,
1256                                 'in_reply_to_screen_name' => $in_reply_to_screen_name,
1257                                 'geo' => '',
1258                                 'favorited' => $item['starred'] ? true : false,
1259                                 'user' =>  $status_user ,
1260                                 'statusnet_html'                => trim(bbcode($item['body'])),
1261                                 'statusnet_conversation_id'     => $item['parent'],
1262                         );
1263
1264                         // Seesmic doesn't like the following content
1265                         if ($_SERVER['HTTP_USER_AGENT'] != 'Seesmic') {
1266                                 $status2 = array(
1267                                         'updated'   => api_date($item['edited']),
1268                                         'published' => api_date($item['created']),
1269                                         'message_id' => $item['uri'],
1270                                         'url'           => ($item['plink']!=''?$item['plink']:$item['author-link']),
1271                                         'coordinates' => $item['coord'],
1272                                         'place' => $item['location'],
1273                                         'contributors' => '',
1274                                         'annotations'  => '',
1275                                         'entities'  => '',
1276                                         'objecttype' => (($item['object-type']) ? $item['object-type'] : ACTIVITY_OBJ_NOTE),
1277                                         'verb' => (($item['verb']) ? $item['verb'] : ACTIVITY_POST),
1278                                         'self' => $a->get_baseurl()."/api/statuses/show/".$item['id'].".".$type,
1279                                         'edit' => $a->get_baseurl()."/api/statuses/show/".$item['id'].".".$type,
1280                                 );
1281
1282                                 $status = array_merge($status, $status2);
1283                         }
1284
1285                         $ret[]=$status;
1286                 };
1287                 return $ret;
1288         }
1289
1290
1291         function api_account_rate_limit_status(&$a,$type) {
1292
1293                 $hash = array(
1294                           'reset_time_in_seconds' => strtotime('now + 1 hour'),
1295                           'remaining_hits' => (string) 150,
1296                           'hourly_limit' => (string) 150,
1297                           'reset_time' => datetime_convert('UTC','UTC','now + 1 hour',ATOM_TIME),
1298                 );
1299                 if ($type == "xml")
1300                         $hash['resettime_in_seconds'] = $hash['reset_time_in_seconds'];
1301
1302                 return api_apply_template('ratelimit', $type, array('$hash' => $hash));
1303
1304         }
1305         api_register_func('api/account/rate_limit_status','api_account_rate_limit_status',true);
1306
1307         function api_help_test(&$a,$type) {
1308
1309                 if ($type == 'xml')
1310                         $ok = "true";
1311                 else
1312                         $ok = "ok";
1313
1314                 return api_apply_template('test', $type, array('$ok' => $ok));
1315
1316         }
1317         api_register_func('api/help/test','api_help_test',true);
1318
1319         /**
1320          *  https://dev.twitter.com/docs/api/1/get/statuses/friends 
1321          *  This function is deprecated by Twitter
1322          *  returns: json, xml 
1323          **/
1324         function api_statuses_f(&$a, $type, $qtype) {
1325                 if (local_user()===false) return false;
1326                 $user_info = api_get_user($a);
1327                 
1328                 
1329                 // friends and followers only for self
1330                 if ($user_info['self']==0){
1331                         return false;
1332                 }
1333                 
1334                 if (x($_GET,'cursor') && $_GET['cursor']=='undefined'){
1335                         /* this is to stop Hotot to load friends multiple times
1336                         *  I'm not sure if I'm missing return something or
1337                         *  is a bug in hotot. Workaround, meantime
1338                         */
1339                         
1340                         /*$ret=Array();
1341                         return array('$users' => $ret);*/
1342                         return false;
1343                 }
1344                 
1345                 if($qtype == 'friends')
1346                         $sql_extra = sprintf(" AND ( `rel` = %d OR `rel` = %d ) ", intval(CONTACT_IS_SHARING), intval(CONTACT_IS_FRIEND));
1347                 if($qtype == 'followers')
1348                         $sql_extra = sprintf(" AND ( `rel` = %d OR `rel` = %d ) ", intval(CONTACT_IS_FOLLOWER), intval(CONTACT_IS_FRIEND));
1349  
1350                 $r = q("SELECT id FROM `contact` WHERE `uid` = %d AND `self` = 0 AND `blocked` = 0 AND `pending` = 0 $sql_extra",
1351                         intval(local_user())
1352                 );
1353
1354                 $ret = array();
1355                 foreach($r as $cid){
1356                         $ret[] = api_get_user($a, $cid['id']);
1357                 }
1358
1359                 
1360                 return array('$users' => $ret);
1361
1362         }
1363         function api_statuses_friends(&$a, $type){
1364                 $data =  api_statuses_f($a,$type,"friends");
1365                 if ($data===false) return false;
1366                 return  api_apply_template("friends", $type, $data);
1367         }
1368         function api_statuses_followers(&$a, $type){
1369                 $data = api_statuses_f($a,$type,"followers");
1370                 if ($data===false) return false;
1371                 return  api_apply_template("friends", $type, $data);
1372         }
1373         api_register_func('api/statuses/friends','api_statuses_friends',true);
1374         api_register_func('api/statuses/followers','api_statuses_followers',true);
1375
1376
1377
1378
1379
1380
1381         function api_statusnet_config(&$a,$type) {
1382                 $name = $a->config['sitename'];
1383                 $server = $a->get_hostname();
1384                 $logo = $a->get_baseurl() . '/images/friendica-64.png';
1385                 $email = $a->config['admin_email'];
1386                 $closed = (($a->config['register_policy'] == REGISTER_CLOSED) ? 'true' : 'false');
1387                 $private = (($a->config['system']['block_public']) ? 'true' : 'false');
1388                 $textlimit = (string) (($a->config['max_import_size']) ? $a->config['max_import_size'] : 200000);
1389                 if($a->config['api_import_size'])
1390                         $texlimit = string($a->config['api_import_size']);
1391                 $ssl = (($a->config['system']['have_ssl']) ? 'true' : 'false');
1392                 $sslserver = (($ssl === 'true') ? str_replace('http:','https:',$a->get_baseurl()) : '');
1393
1394                 $config = array(
1395                         'site' => array('name' => $name,'server' => $server, 'theme' => 'default', 'path' => '',
1396                                 'logo' => $logo, 'fancy' => 'true', 'language' => 'en', 'email' => $email, 'broughtby' => '',
1397                                 'broughtbyurl' => '', 'timezone' => 'UTC', 'closed' => $closed, 'inviteonly' => 'false',
1398                                 'private' => $private, 'textlimit' => $textlimit, 'sslserver' => $sslserver, 'ssl' => $ssl,
1399                                 'shorturllength' => '30'
1400                         ),
1401                 );  
1402
1403                 return api_apply_template('config', $type, array('$config' => $config));
1404
1405         }
1406         api_register_func('api/statusnet/config','api_statusnet_config',false);
1407
1408         function api_statusnet_version(&$a,$type) {
1409
1410                 // liar
1411
1412                 if($type === 'xml') {
1413                         header("Content-type: application/xml");
1414                         echo '<?xml version="1.0" encoding="UTF-8"?>' . "\r\n" . '<version>0.9.7</version>' . "\r\n";
1415                         killme();
1416                 }
1417                 elseif($type === 'json') {
1418                         header("Content-type: application/json");
1419                         echo '"0.9.7"';
1420                         killme();
1421                 }
1422         }
1423         api_register_func('api/statusnet/version','api_statusnet_version',false);
1424
1425
1426         function api_ff_ids(&$a,$type,$qtype) {
1427                 if(! local_user())
1428                         return false;
1429
1430                 if($qtype == 'friends')
1431                         $sql_extra = sprintf(" AND ( `rel` = %d OR `rel` = %d ) ", intval(CONTACT_IS_SHARING), intval(CONTACT_IS_FRIEND));
1432                 if($qtype == 'followers')
1433                         $sql_extra = sprintf(" AND ( `rel` = %d OR `rel` = %d ) ", intval(CONTACT_IS_FOLLOWER), intval(CONTACT_IS_FRIEND));
1434  
1435
1436                 $r = q("SELECT id FROM `contact` WHERE `uid` = %d AND `self` = 0 AND `blocked` = 0 AND `pending` = 0 $sql_extra",
1437                         intval(local_user())
1438                 );
1439
1440                 if(is_array($r)) {
1441                         if($type === 'xml') {
1442                                 header("Content-type: application/xml");
1443                                 echo '<?xml version="1.0" encoding="UTF-8"?>' . "\r\n" . '<ids>' . "\r\n";
1444                                 foreach($r as $rr)
1445                                         echo '<id>' . $rr['id'] . '</id>' . "\r\n";
1446                                 echo '</ids>' . "\r\n";
1447                                 killme();
1448                         }
1449                         elseif($type === 'json') {
1450                                 $ret = array();
1451                                 header("Content-type: application/json");
1452                                 foreach($r as $rr) $ret[] = $rr['id'];
1453                                 echo json_encode($ret);
1454                                 killme();
1455                         }
1456                 }
1457         }
1458
1459         function api_friends_ids(&$a,$type) {
1460                 api_ff_ids($a,$type,'friends');
1461         }
1462         function api_followers_ids(&$a,$type) {
1463                 api_ff_ids($a,$type,'followers');
1464         }
1465         api_register_func('api/friends/ids','api_friends_ids',true);
1466         api_register_func('api/followers/ids','api_followers_ids',true);
1467
1468
1469         function api_direct_messages_new(&$a, $type) {
1470                 if (local_user()===false) return false;
1471                 
1472                 if (!x($_POST, "text") || !x($_POST,"screen_name")) return;
1473                 
1474                 $sender = api_get_user($a);
1475                 
1476                 $r = q("SELECT `id` FROM `contact` WHERE `uid`=%d AND `nick`='%s'",
1477                                 intval(local_user()),
1478                                 dbesc($_POST['screen_name']));
1479                 
1480                 $recipient = api_get_user($a, $r[0]['id']);                     
1481                 
1482
1483                 require_once("include/message.php");
1484                 $sub = ( (strlen($_POST['text'])>10)?substr($_POST['text'],0,10)."...":$_POST['text']);
1485                 $id = send_message($recipient['id'], $_POST['text'], $sub);
1486                 
1487                 
1488                 if ($id>-1) {
1489                         $r = q("SELECT * FROM `mail` WHERE id=%d", intval($id));
1490                         $item = $r[0];
1491                         $ret=Array(
1492                                         'id' => $item['id'],
1493                                         'created_at'=> api_date($item['created']),
1494                                         'sender_id'=> $sender['id'] ,
1495                                         'sender_screen_name'=> $sender['screen_name'],
1496                                         'sender'=> $sender,
1497                                         'recipient_id'=> $recipient['id'],
1498                                         'recipient_screen_name'=> $recipient['screen_name'],
1499                                         'recipient'=> $recipient,
1500                                         
1501                                         'text'=> $item['title']."\n".html2plain(bbcode($item['body']), 0) ,
1502                                         
1503                         );
1504                 
1505                 } else {
1506                         $ret = array("error"=>$id);     
1507                 }
1508                 
1509                 $data = Array('$messages'=>$ret);
1510                 
1511                 switch($type){
1512                         case "atom":
1513                         case "rss":
1514                                 $data = api_rss_extra($a, $data, $user_info);
1515                 }
1516                                 
1517                 return  api_apply_template("direct_messages", $type, $data);
1518                                 
1519         }
1520         api_register_func('api/direct_messages/new','api_direct_messages_new',true);
1521
1522     function api_direct_messages_box(&$a, $type, $box) {
1523                 if (local_user()===false) return false;
1524                 
1525                 $user_info = api_get_user($a);
1526                 
1527                 // params
1528                 $count = (x($_GET,'count')?$_GET['count']:20);
1529                 $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
1530                 if ($page<0) $page=0;
1531                 
1532                 $start = $page*$count;
1533                 
1534         
1535                 if ($box=="sentbox") {
1536                         $sql_extra = "`from-url`='%s'";
1537                 } else {
1538                         $sql_extra = "`from-url`!='%s'";
1539                 }
1540                 
1541                 $r = q("SELECT * FROM `mail` WHERE uid=%d AND $sql_extra ORDER BY created DESC LIMIT %d,%d",
1542                                 intval(local_user()),
1543                                 dbesc( $a->get_baseurl() . '/profile/' . $a->user['nickname'] ),
1544                                 intval($start), intval($count)
1545                            );
1546                 
1547                 $ret = Array();
1548                 foreach($r as $item){
1549                         switch ($box){
1550                                 case "inbox":
1551                                         $recipient = $user_info;
1552                                         $sender = api_get_user($a,$item['contact-id']);
1553                                         break;
1554                                 case "sentbox":
1555                                         $recipient = api_get_user($a,$item['contact-id']);
1556                                         $sender = $user_info;
1557                                         break;
1558                         }
1559                                 
1560                         $ret[]=Array(
1561                                 'id' => $item['id'],
1562                                 'created_at'=> api_date($item['created']),
1563                                 'sender_id'=> $sender['id'] ,
1564                                 'sender_screen_name'=> $sender['screen_name'],
1565                                 'sender'=> $sender,
1566                                 'recipient_id'=> $recipient['id'],
1567                                 'recipient_screen_name'=> $recipient['screen_name'],
1568                                 'recipient'=> $recipient,
1569                                 
1570                                 'text'=> $item['title']."\n".html2plain(bbcode($item['body']), 0) ,
1571                                 
1572                         );
1573                         
1574                 }
1575                 
1576
1577                 $data = array('$messages' => $ret);
1578                 switch($type){
1579                         case "atom":
1580                         case "rss":
1581                                 $data = api_rss_extra($a, $data, $user_info);
1582                 }
1583                                 
1584                 return  api_apply_template("direct_messages", $type, $data);
1585                 
1586         }
1587
1588         function api_direct_messages_sentbox(&$a, $type){
1589                 return api_direct_messages_box($a, $type, "sentbox");
1590         }
1591         function api_direct_messages_inbox(&$a, $type){
1592                 return api_direct_messages_box($a, $type, "inbox");
1593         }
1594         api_register_func('api/direct_messages/sent','api_direct_messages_sentbox',true);
1595         api_register_func('api/direct_messages','api_direct_messages_inbox',true);
1596
1597
1598
1599         function api_oauth_request_token(&$a, $type){
1600                 try{
1601                         $oauth = new FKOAuth1();
1602                         $r = $oauth->fetch_request_token(OAuthRequest::from_request());
1603                 }catch(Exception $e){
1604                         echo "error=". OAuthUtil::urlencode_rfc3986($e->getMessage()); killme();
1605                 }
1606                 echo $r;
1607                 killme();       
1608         }
1609         function api_oauth_access_token(&$a, $type){
1610                 try{
1611                         $oauth = new FKOAuth1();
1612                         $r = $oauth->fetch_access_token(OAuthRequest::from_request());
1613                 }catch(Exception $e){
1614                         echo "error=". OAuthUtil::urlencode_rfc3986($e->getMessage()); killme();
1615                 }
1616                 echo $r;
1617                 killme();                       
1618         }
1619
1620         api_register_func('api/oauth/request_token', 'api_oauth_request_token', false);
1621         api_register_func('api/oauth/access_token', 'api_oauth_access_token', false);
1622
1623 /*
1624 Not implemented by now:
1625 favorites
1626 favorites/create
1627 favorites/destroy
1628 statuses/retweets_of_me
1629 friendships/create
1630 friendships/destroy
1631 friendships/exists
1632 friendships/show
1633 account/update_location
1634 account/update_profile_background_image
1635 account/update_profile_image
1636 blocks/create
1637 blocks/destroy
1638 oauth/authorize
1639
1640 Not implemented in status.net:
1641 statuses/retweeted_to_me
1642 statuses/retweeted_by_me
1643 direct_messages/destroy
1644 account/end_session
1645 account/update_delivery_device
1646 notifications/follow
1647 notifications/leave
1648 blocks/exists
1649 blocks/blocking
1650 */