]> git.mxchange.org Git - friendica.git/blob - include/api.php
Merge branch 'master', remote-tracking branch 'remotes/upstream/master'
[friendica.git] / include / api.php
1 <?php
2         require_once("bbcode.php");
3         require_once("datetime.php");
4         require_once("conversation.php");
5         require_once("oauth.php");
6         require_once("html2plain.php");
7         /* 
8          * Twitter-Like API
9          *  
10          */
11
12         $API = Array();
13         $called_api = Null; 
14
15         function api_date($str){
16                 //Wed May 23 06:01:13 +0000 2007
17                 return datetime_convert('UTC', 'UTC', $str, "D M d H:i:s +0000 Y" );
18         }
19          
20         
21         function api_register_func($path, $func, $auth=false){
22                 global $API;
23                 $API[$path] = array('func'=>$func,
24                                                         'auth'=>$auth);
25         }
26         
27         /**
28          * Simple HTTP Login
29          */
30
31         function api_login(&$a){
32                 // login with oauth
33                 try{
34                         $oauth = new FKOAuth1();
35                         list($consumer,$token) = $oauth->verify_request(OAuthRequest::from_request());
36                         if (!is_null($token)){
37                                 $oauth->loginUser($token->uid);
38                                 call_hooks('logged_in', $a->user);
39                                 return;
40                         }
41                         echo __file__.__line__.__function__."<pre>"; var_dump($consumer, $token); die();
42                 }catch(Exception $e){
43                         logger(__file__.__line__.__function__."\n".$e);
44                         //die(__file__.__line__.__function__."<pre>".$e); die();
45                 }
46
47                 
48                 
49                 // workaround for HTTP-auth in CGI mode
50                 if(x($_SERVER,'REDIRECT_REMOTE_USER')) {
51                         $userpass = base64_decode(substr($_SERVER["REDIRECT_REMOTE_USER"],6)) ;
52                         if(strlen($userpass)) {
53                                 list($name, $password) = explode(':', $userpass);
54                                 $_SERVER['PHP_AUTH_USER'] = $name;
55                                 $_SERVER['PHP_AUTH_PW'] = $password;
56                         }
57                 }
58
59                 if (!isset($_SERVER['PHP_AUTH_USER'])) {
60                    logger('API_login: ' . print_r($_SERVER,true), LOGGER_DEBUG);
61                     header('WWW-Authenticate: Basic realm="Friendica"');
62                     header('HTTP/1.0 401 Unauthorized');
63                     die('This api requires login');
64                 }
65                 
66                 $user = $_SERVER['PHP_AUTH_USER'];
67                 $encrypted = hash('whirlpool',trim($_SERVER['PHP_AUTH_PW']));
68                 
69                 
70                         /**
71                          *  next code from mod/auth.php. needs better solution
72                          */
73                         
74                 // process normal login request
75
76                 $r = q("SELECT * FROM `user` WHERE ( `email` = '%s' OR `nickname` = '%s' ) 
77                         AND `password` = '%s' AND `blocked` = 0 AND `account_expired` = 0 AND `verified` = 1 LIMIT 1",
78                         dbesc(trim($user)),
79                         dbesc(trim($user)),
80                         dbesc($encrypted)
81                 );
82                 if(count($r)){
83                         $record = $r[0];
84                 } else {
85                    logger('API_login failure: ' . print_r($_SERVER,true), LOGGER_DEBUG);
86                     header('WWW-Authenticate: Basic realm="Friendica"');
87                     header('HTTP/1.0 401 Unauthorized');
88                     die('This api requires login');
89                 }
90
91                 require_once('include/security.php');
92                 authenticate_success($record);
93
94                 call_hooks('logged_in', $a->user);
95
96         }
97         
98         /**************************
99          *  MAIN API ENTRY POINT  *
100          **************************/
101         function api_call(&$a){
102                 GLOBAL $API, $called_api;
103
104                 // preset
105                 $type="json";
106
107                 foreach ($API as $p=>$info){
108                         if (strpos($a->query_string, $p)===0){
109                                 $called_api= explode("/",$p);
110                                 //unset($_SERVER['PHP_AUTH_USER']);
111                                 if ($info['auth']===true && local_user()===false) {
112                                                 api_login($a);
113                                 }
114
115                                 load_contact_links(local_user());
116
117                                 logger('API call for ' . $a->user['username'] . ': ' . $a->query_string);
118                                 logger('API parameters: ' . print_r($_REQUEST,true));
119                                 $type="json";
120                                 if (strpos($a->query_string, ".xml")>0) $type="xml";
121                                 if (strpos($a->query_string, ".json")>0) $type="json";
122                                 if (strpos($a->query_string, ".rss")>0) $type="rss";
123                                 if (strpos($a->query_string, ".atom")>0) $type="atom";
124                                 if (strpos($a->query_string, ".as")>0) $type="as";
125
126                                 $r = call_user_func($info['func'], $a, $type);
127                                 if ($r===false) return;
128
129                                 switch($type){
130                                         case "xml":
131                                                 $r = mb_convert_encoding($r, "UTF-8",mb_detect_encoding($r));
132                                                 header ("Content-Type: text/xml");
133                                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
134                                                 break;
135                                         case "json":
136                                                 //header ("Content-Type: application/json");
137                                                 foreach($r as $rr)
138                                                     return json_encode($rr);
139                                                 break;
140                                         case "rss":
141                                                 header ("Content-Type: application/rss+xml");
142                                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
143                                                 break;
144                                         case "atom":
145                                                 header ("Content-Type: application/atom+xml");
146                                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
147                                                 break;
148                                         case "as":
149                                                 //header ("Content-Type: application/json");
150                                                 //foreach($r as $rr)
151                                                 //    return json_encode($rr);
152                                                 return json_encode($r);
153                                                 break;
154
155                                 }
156                                 //echo "<pre>"; var_dump($r); die();
157                         }
158                 }
159                 logger('API call not implemented: '.$a->query_string." - ".print_r($_REQUEST,true));
160                 $r = '<status><error>not implemented</error></status>';
161                 switch($type){
162                         case "xml":
163                                 header ("Content-Type: text/xml");
164                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
165                                 break;
166                         case "json":
167                                 header ("Content-Type: application/json");
168                             return json_encode(array('error' => 'not implemented'));
169                                 break;
170                         case "rss":
171                                 header ("Content-Type: application/rss+xml");
172                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
173                                 break;
174                         case "atom":
175                                 header ("Content-Type: application/atom+xml");
176                                 return '<?xml version="1.0" encoding="UTF-8"?>'."\n".$r;
177                                 break;
178                 }
179         }
180
181         /**
182          * RSS extra info
183          */
184         function api_rss_extra(&$a, $arr, $user_info){
185                 if (is_null($user_info)) $user_info = api_get_user($a);
186                 $arr['$user'] = $user_info;
187                 $arr['$rss'] = array(
188                         'alternate' => $user_info['url'],
189                         'self' => $a->get_baseurl(). "/". $a->query_string,
190                         'base' => $a->get_baseurl(),
191                         'updated' => api_date(null),
192                         'atom_updated' => datetime_convert('UTC','UTC','now',ATOM_TIME),
193                         'language' => $user_info['language'],
194                         'logo'  => $a->get_baseurl()."/images/friendica-32.png",
195                 );
196                 
197                 return $arr;
198         }
199          
200         /**
201          * Returns user info array.
202          */
203         function api_get_user(&$a, $contact_id = Null){
204                 global $called_api;
205                 $user = null;
206                 $extra_query = "";
207
208
209                 if(!is_null($contact_id)){
210                         $user=$contact_id;
211                         $extra_query = "AND `contact`.`id` = %d ";
212                 }
213                 
214                 if(is_null($user) && x($_GET, 'user_id')) {
215                         $user = intval($_GET['user_id']);       
216                         $extra_query = "AND `contact`.`id` = %d ";
217                 }
218                 if(is_null($user) && x($_GET, 'screen_name')) {
219                         $user = dbesc($_GET['screen_name']);    
220                         $extra_query = "AND `contact`.`nick` = '%s' ";
221                         if (local_user()!==false)  $extra_query .= "AND `contact`.`uid`=".intval(local_user());
222                         
223                 }
224                 
225                 if (is_null($user) && $a->argc > (count($called_api)-1)){
226                         $argid = count($called_api);
227                         list($user, $null) = explode(".",$a->argv[$argid]);
228                         if(is_numeric($user)){
229                                 $user = intval($user);
230                                 $extra_query = "AND `contact`.`id` = %d ";
231                         } else {
232                                 $user = dbesc($user);
233                                 $extra_query = "AND `contact`.`nick` = '%s' ";
234                                 if (local_user()!==false)  $extra_query .= "AND `contact`.`uid`=".intval(local_user());
235                         }
236                 }
237                 
238                 if (! $user) {
239                         if (local_user()===false) {
240                                 api_login($a); return False;
241                         } else {
242                                 $user = $_SESSION['uid'];
243                                 $extra_query = "AND `contact`.`uid` = %d AND `contact`.`self` = 1 ";
244                         }
245                         
246                 }
247                 
248                 logger('api_user: ' . $extra_query . ' ' , $user);
249                 // user info            
250                 $uinfo = q("SELECT *, `contact`.`id` as `cid` FROM `contact`
251                                 WHERE 1
252                                 $extra_query",
253                                 $user
254                 );
255                 if (count($uinfo)==0) {
256                         return False;
257                 }
258                 
259                 if($uinfo[0]['self']) {
260                         $usr = q("select * from user where uid = %d limit 1",
261                                 intval(local_user())
262                         );
263                         $profile = q("select * from profile where uid = %d and `is-default` = 1 limit 1",
264                                 intval(local_user())
265                         );
266
267                         // count public wall messages
268                         $r = q("SELECT COUNT(`id`) as `count` FROM `item`
269                                         WHERE  `uid` = %d
270                                         AND `type`='wall' 
271                                         AND `allow_cid`='' AND `allow_gid`='' AND `deny_cid`='' AND `deny_gid`=''",
272                                         intval($uinfo[0]['uid'])
273                         );
274                         $countitms = $r[0]['count'];
275                 }
276                 else {
277                         $r = q("SELECT COUNT(`id`) as `count` FROM `item`
278                                         WHERE  `contact-id` = %d
279                                         AND `allow_cid`='' AND `allow_gid`='' AND `deny_cid`='' AND `deny_gid`=''",
280                                         intval($uinfo[0]['id'])
281                         );
282                         $countitms = $r[0]['count'];
283                 }
284
285                 // count friends
286                 $r = q("SELECT COUNT(`id`) as `count` FROM `contact`
287                                 WHERE  `uid` = %d AND `rel` IN ( %d, %d )
288                                 AND `self`=0 AND `blocked`=0 AND `pending`=0 AND `hidden`=0", 
289                                 intval($uinfo[0]['uid']),
290                                 intval(CONTACT_IS_SHARING),
291                                 intval(CONTACT_IS_FRIEND)
292                 );
293                 $countfriends = $r[0]['count'];
294
295                 $r = q("SELECT COUNT(`id`) as `count` FROM `contact`
296                                 WHERE  `uid` = %d AND `rel` IN ( %d, %d )
297                                 AND `self`=0 AND `blocked`=0 AND `pending`=0 AND `hidden`=0", 
298                                 intval($uinfo[0]['uid']),
299                                 intval(CONTACT_IS_FOLLOWER),
300                                 intval(CONTACT_IS_FRIEND)
301                 );
302                 $countfollowers = $r[0]['count'];
303
304                 $r = q("SELECT count(`id`) as `count` FROM item where starred = 1 and uid = %d and deleted = 0",
305                         intval($uinfo[0]['uid'])
306                 );
307                 $starred = $r[0]['count'];
308         
309
310                 if(! $uinfo[0]['self']) {
311                         $countfriends = 0;
312                         $countfollowers = 0;
313                         $starred = 0;
314                 }
315
316                 $ret = Array(
317                         'id' => intval($uinfo[0]['cid']),
318                         'self' => intval($uinfo[0]['self']),
319                         'uid' => intval($uinfo[0]['uid']),
320                         'name' => (($uinfo[0]['name']) ? $uinfo[0]['name'] : $uinfo[0]['nick']),
321                         'screen_name' => (($uinfo[0]['nick']) ? $uinfo[0]['nick'] : $uinfo[0]['name']),
322                         'location' => ($usr) ? $usr[0]['default-location'] : '',
323                         'profile_image_url' => $uinfo[0]['micro'],
324                         'url' => $uinfo[0]['url'],
325                         'contact_url' => $a->get_baseurl()."/contacts/".$uinfo[0]['cid'],
326                         'protected' => false,   
327                         'friends_count' => intval($countfriends),
328                         'created_at' => api_date($uinfo[0]['name-date']),
329                         'utc_offset' => "+00:00",
330                         'time_zone' => 'UTC', //$uinfo[0]['timezone'],
331                         'geo_enabled' => false,
332                         'statuses_count' => intval($countitms), #XXX: fix me 
333                         'lang' => 'en', #XXX: fix me
334                         'description' => (($profile) ? $profile[0]['pdesc'] : ''),
335                         'followers_count' => intval($countfollowers),
336                         'favourites_count' => intval($starred),
337                         'contributors_enabled' => false,
338                         'follow_request_sent' => true,
339                         'profile_background_color' => 'cfe8f6',
340                         'profile_text_color' => '000000',
341                         'profile_link_color' => 'FF8500',
342                         'profile_sidebar_fill_color' =>'AD0066',
343                         'profile_sidebar_border_color' => 'AD0066',
344                         'profile_background_image_url' => '',
345                         'profile_background_tile' => false,
346                         'profile_use_background_image' => false,
347                         'notifications' => false,
348                         'following' => '', #XXX: fix me
349                         'verified' => true, #XXX: fix me
350                         'status' => array()
351                 );
352         
353                 return $ret;
354                 
355         }
356
357         function api_item_get_user(&$a, $item) {
358                 global $usercache;
359
360                 // The author is our direct contact, in a conversation with us.
361                 if(link_compare($item['url'],$item['author-link'])) {
362                         return api_get_user($a,$item['cid']);
363                 }
364                 else {
365                         // The author may be a contact of ours, but is replying to somebody else. 
366                         // Figure out if we know him/her.
367                         $normalised = normalise_link((strlen($item['author-link'])) ? $item['author-link'] : $item['url']);
368             if(($normalised != 'mailbox') && (x($a->contacts[$normalised])))
369                                 return api_get_user($a,$a->contacts[$normalised]['id']);
370                 }
371                 // We don't know this person directly.
372                 
373                 list($nick, $name) = array_map("trim",explode("(",$item['author-name']));
374                 $name=str_replace(")","",$name);
375
376                 if ($name == '')
377                         $name = $nick;
378
379                 if ($nick == '')
380                         $nick = $name;
381
382                 // Generating a random ID
383                 if (!array_key_exists($nick, $usercache))
384                         $usercache[$nick] = mt_rand(2000000, 2100000);
385
386                 $ret = array(
387                         'id' => $usercache[$nick],
388                         'name' => $name,
389                         'screen_name' => $nick,
390                         'location' => '', //$uinfo[0]['default-location'],
391                         'description' => '',
392                         'profile_image_url' => $item['author-avatar'],
393                         'url' => $item['author-link'],
394                         'protected' => false,   #
395                         'followers_count' => 0,
396                         'friends_count' => 0,
397                         'created_at' => '',
398                         'favourites_count' => 0,
399                         'utc_offset' => 0, #XXX: fix me
400                         'time_zone' => '', //$uinfo[0]['timezone'],
401                         'statuses_count' => 0,
402                         'following' => 1,
403                         'statusnet_blocking' => false,
404                         'notifications' => false,
405                         'uid' => 0,
406                         'contact_url' => 0,
407                         'geo_enabled' => false,
408                         'lang' => 'en', #XXX: fix me
409                         'contributors_enabled' => false,
410                         'follow_request_sent' => false,
411                         'profile_background_color' => 'cfe8f6',
412                         'profile_text_color' => '000000',
413                         'profile_link_color' => 'FF8500',
414                         'profile_sidebar_fill_color' =>'AD0066',
415                         'profile_sidebar_border_color' => 'AD0066',
416                         'profile_background_image_url' => '',
417                         'profile_background_tile' => false,
418                         'profile_use_background_image' => false,
419                         'verified' => true, #XXX: fix me
420                         'followers' => '', #XXX: fix me
421                         'status' => array()
422                 );
423
424                 return $ret; 
425         }
426
427
428         /**
429          *  load api $templatename for $type and replace $data array
430          */
431         function api_apply_template($templatename, $type, $data){
432
433                 $a = get_app();
434
435                 switch($type){
436                         case "atom":
437                         case "rss":
438                         case "xml":
439                                 $data = array_xmlify($data);
440                                 $tpl = get_markup_template("api_".$templatename."_".$type.".tpl");
441                                 $ret = replace_macros($tpl, $data);
442                                 break;
443                         case "json":
444                                 $ret = $data;
445                                 break;
446                 }
447                 return $ret;
448         }
449         
450         /**
451          ** TWITTER API
452          */
453         
454         /**
455          * Returns an HTTP 200 OK response code and a representation of the requesting user if authentication was successful; 
456          * returns a 401 status code and an error message if not. 
457          * http://developer.twitter.com/doc/get/account/verify_credentials
458          */
459         function api_account_verify_credentials(&$a, $type){
460                 if (local_user()===false) return false;
461                 $user_info = api_get_user($a);
462                 
463                 return api_apply_template("user", $type, array('$user' => $user_info));
464
465         }
466         api_register_func('api/account/verify_credentials','api_account_verify_credentials', true);
467                 
468
469         /**
470          * get data from $_POST or $_GET
471          */
472         function requestdata($k){
473                 if (isset($_POST[$k])){
474                         return $_POST[$k];
475                 }
476                 if (isset($_GET[$k])){
477                         return $_GET[$k];
478                 }
479                 return null;
480         }
481
482 /*Waitman Gobble Mod*/
483         function api_statuses_mediap(&$a, $type) {
484                 if (local_user()===false) {
485                         logger('api_statuses_update: no user');
486                         return false;
487                 }
488                 $user_info = api_get_user($a);
489
490                 $_REQUEST['type'] = 'wall';
491                 $_REQUEST['profile_uid'] = local_user();
492                 $_REQUEST['api_source'] = true;
493                 $txt = urldecode(requestdata('status'));
494
495                 require_once('library/HTMLPurifier.auto.php');
496                 require_once('include/html2bbcode.php');
497
498                 if((strpos($txt,'<') !== false) || (strpos($txt,'>') !== false)) {
499                         $txt = html2bb_video($txt);
500                         $config = HTMLPurifier_Config::createDefault();
501                         $config->set('Cache.DefinitionImpl', null);
502                         $purifier = new HTMLPurifier($config);
503                         $txt = $purifier->purify($txt);
504                 }
505                 $txt = html2bbcode($txt);
506                 
507                 $a->argv[1]=$user_info['screen_name']; //should be set to username?
508                 
509                 $_REQUEST['hush']='yeah'; //tell wall_upload function to return img info instead of echo
510                 require_once('mod/wall_upload.php');
511                 $bebop = wall_upload_post($a);
512                 
513                 //now that we have the img url in bbcode we can add it to the status and insert the wall item.
514                 $_REQUEST['body']=$txt."\n\n".$bebop;
515                 require_once('mod/item.php');
516                 item_post($a);
517
518                 // this should output the last post (the one we just posted).
519                 return api_status_show($a,$type);
520         }
521         api_register_func('api/statuses/mediap','api_statuses_mediap', true);
522 /*Waitman Gobble Mod*/
523
524
525         function api_statuses_update(&$a, $type) {
526                 if (local_user()===false) {
527                         logger('api_statuses_update: no user');
528                         return false;
529                 }
530                 $user_info = api_get_user($a);
531
532                 // convert $_POST array items to the form we use for web posts.
533
534                 // logger('api_post: ' . print_r($_POST,true));
535
536                 if(requestdata('htmlstatus')) {
537                         require_once('library/HTMLPurifier.auto.php');
538                         require_once('include/html2bbcode.php');
539
540                         $txt = requestdata('htmlstatus');
541                         if((strpos($txt,'<') !== false) || (strpos($txt,'>') !== false)) {
542
543                                 $txt = html2bb_video($txt);
544
545                                 $config = HTMLPurifier_Config::createDefault();
546                                 $config->set('Cache.DefinitionImpl', null);
547
548
549                                 $purifier = new HTMLPurifier($config);
550                                 $txt = $purifier->purify($txt);
551
552                                 $_REQUEST['body'] = html2bbcode($txt);
553                         }
554
555                 }
556                 else
557                         $_REQUEST['body'] = urldecode(requestdata('status'));
558
559                 $parent = requestdata('in_reply_to_status_id');
560                 if(ctype_digit($parent))
561                         $_REQUEST['parent'] = $parent;
562                 else
563                         $_REQUEST['parent_uri'] = $parent;
564
565                 if(requestdata('lat') && requestdata('long'))
566                         $_REQUEST['coord'] = sprintf("%s %s",requestdata('lat'),requestdata('long'));
567                 $_REQUEST['profile_uid'] = local_user();
568                 if(requestdata('parent'))
569                         $_REQUEST['type'] = 'net-comment';
570                 else {
571                         $_REQUEST['type'] = 'wall';
572                         if(x($_FILES,'media')) {
573                                 // upload the image if we have one
574                                 $_REQUEST['hush']='yeah'; //tell wall_upload function to return img info instead of echo
575                                 require_once('mod/wall_upload.php');
576                                 $media = wall_upload_post($a);
577                                 if(strlen($media)>0)
578                                         $_REQUEST['body'] .= "\n\n".$media;
579                                 }
580                 }
581
582                 // set this so that the item_post() function is quiet and doesn't redirect or emit json
583
584                 $_REQUEST['api_source'] = true;
585
586                 // call out normal post function
587
588                 require_once('mod/item.php');
589                 item_post($a);  
590
591                 // this should output the last post (the one we just posted).
592                 return api_status_show($a,$type);
593         }
594         api_register_func('api/statuses/update','api_statuses_update', true);
595
596
597         function api_status_show(&$a, $type){
598                 $user_info = api_get_user($a);
599                 // get last public wall message
600                 $lastwall = q("SELECT `item`.*, `i`.`contact-id` as `reply_uid`, `i`.`nick` as `reply_author`
601                                 FROM `item`, `contact`,
602                                         (SELECT `item`.`id`, `item`.`contact-id`, `contact`.`nick` FROM `item`,`contact` WHERE `contact`.`id`=`item`.`contact-id`) as `i` 
603                                 WHERE `item`.`contact-id` = %d
604                                         AND `i`.`id` = `item`.`parent`
605                                         AND `contact`.`id`=`item`.`contact-id` AND `contact`.`self`=1
606                                         AND `type`!='activity'
607                                         AND `item`.`allow_cid`='' AND `item`.`allow_gid`='' AND `item`.`deny_cid`='' AND `item`.`deny_gid`=''
608                                 ORDER BY `created` DESC 
609                                 LIMIT 1",
610                                 intval($user_info['id'])
611                 );
612
613                 if (count($lastwall)>0){
614                         $lastwall = $lastwall[0];
615                         
616                         $in_reply_to_status_id = '';
617                         $in_reply_to_user_id = '';
618                         $in_reply_to_screen_name = '';
619                         if ($lastwall['parent']!=$lastwall['id']) {
620                                 $in_reply_to_status_id=$lastwall['parent'];
621                                 $in_reply_to_user_id = $lastwall['reply_uid'];
622                                 $in_reply_to_screen_name = $lastwall['reply_author'];
623                         }  
624                         $status_info = array(
625                                 'text' => html2plain(bbcode($lastwall['body']), 0),
626                                 'truncated' => false,
627                                 'created_at' => api_date($lastwall['created']),
628                                 'in_reply_to_status_id' => $in_reply_to_status_id,
629                                 'source' => (($lastwall['app']) ? $lastwall['app'] : 'web'),
630                                 'id' => $lastwall['contact-id'],
631                                 'in_reply_to_user_id' => $in_reply_to_user_id,
632                                 'in_reply_to_screen_name' => $in_reply_to_screen_name,
633                                 'geo' => '',
634                                 'favorited' => false,
635                                 'coordinates' => $lastwall['coord'],
636                                 'place' => $lastwall['location'],
637                                 'contributors' => ''                                    
638                         );
639                         $status_info['user'] = $user_info;
640                 }
641                 return  api_apply_template("status", $type, array('$status' => $status_info));
642                 
643         }
644
645
646
647
648                 
649         /**
650          * Returns extended information of a given user, specified by ID or screen name as per the required id parameter.
651          * The author's most recent status will be returned inline.
652          * http://developer.twitter.com/doc/get/users/show
653          */
654         function api_users_show(&$a, $type){
655                 $user_info = api_get_user($a);
656                 // get last public wall message
657                 $lastwall = q("SELECT `item`.*, `i`.`contact-id` as `reply_uid`, `i`.`nick` as `reply_author`
658                                 FROM `item`, `contact`,
659                                         (SELECT `item`.`id`, `item`.`contact-id`, `contact`.`nick` FROM `item`,`contact` WHERE `contact`.`id`=`item`.`contact-id`) as `i` 
660                                 WHERE `item`.`contact-id` = %d
661                                         AND `i`.`id` = `item`.`parent`
662                                         AND `contact`.`id`=`item`.`contact-id` AND `contact`.`self`=1
663                                         AND `type`!='activity'
664                                         AND `item`.`allow_cid`='' AND `item`.`allow_gid`='' AND `item`.`deny_cid`='' AND `item`.`deny_gid`=''
665                                 ORDER BY `created` DESC 
666                                 LIMIT 1",
667                                 intval($user_info['id'])
668                 );
669
670                 if (count($lastwall)>0){
671                         $lastwall = $lastwall[0];
672                         
673                         $in_reply_to_status_id = '';
674                         $in_reply_to_user_id = '';
675                         $in_reply_to_screen_name = '';
676                         if ($lastwall['parent']!=$lastwall['id']) {
677                                 $in_reply_to_status_id=$lastwall['parent'];
678                                 $in_reply_to_user_id = $lastwall['reply_uid'];
679                                 $in_reply_to_screen_name = $lastwall['reply_author'];
680                         }  
681                         $user_info['status'] = array(
682                                 'created_at' => api_date($lastwall['created']),
683                                 'id' => $lastwall['contact-id'],
684                                 'text' => html2plain(bbcode($lastwall['body']), 0),
685                                 'source' => (($lastwall['app']) ? $lastwall['app'] : 'web'),
686                                 'truncated' => false,
687                                 'in_reply_to_status_id' => $in_reply_to_status_id,
688                                 'in_reply_to_user_id' => $in_reply_to_user_id,
689                                 'favorited' => false,
690                                 'in_reply_to_screen_name' => $in_reply_to_screen_name,
691                                 'geo' => '',
692                                 'coordinates' => $lastwall['coord'],
693                                 'place' => $lastwall['location'],
694                                 'contributors' => ''                                    
695                         );
696                 }
697                 return  api_apply_template("user", $type, array('$user' => $user_info));
698                 
699         }
700         api_register_func('api/users/show','api_users_show');
701         
702         /**
703          * 
704          * http://developer.twitter.com/doc/get/statuses/home_timeline
705          * 
706          * TODO: Optional parameters
707          * TODO: Add reply info
708          */
709         function api_statuses_home_timeline(&$a, $type){
710                 if (local_user()===false) return false;
711                                 
712                 $user_info = api_get_user($a);
713                 // get last newtork messages
714
715
716                 // params
717                 $count = (x($_REQUEST,'count')?$_REQUEST['count']:20);
718                 $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
719                 if ($page<0) $page=0;
720                 $since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
721                 $max_id = (x($_REQUEST,'max_id')?$_REQUEST['max_id']:0);
722                 //$since_id = 0;//$since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
723                 
724                 $start = $page*$count;
725
726                 //$include_entities = (x($_REQUEST,'include_entities')?$_REQUEST['include_entities']:false);
727
728                 if ($max_id > 0)
729                         $sql_extra = 'AND `item`.`id` <= '.intval($max_id);
730
731                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, 
732                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
733                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
734                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
735                         FROM `item`, `contact`
736                         WHERE `item`.`uid` = %d
737                         AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
738                         AND `contact`.`id` = `item`.`contact-id`
739                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
740                         $sql_extra
741                         AND `item`.`id`>%d
742                         ORDER BY `item`.`received` DESC LIMIT %d ,%d ",
743                         intval($user_info['uid']),
744                         intval($since_id),
745                         intval($start), intval($count)
746                 );
747
748                 $ret = api_format_items($r,$user_info);
749
750                 
751                 $data = array('$statuses' => $ret);
752                 switch($type){
753                         case "atom":
754                         case "rss":
755                                 $data = api_rss_extra($a, $data, $user_info);
756                                 break;
757                         case "as":
758                                 $as = api_format_as($a, $ret, $user_info);
759                                 $as['title'] = $a->config['sitename']." Home Timeline";
760                                 $as['link']['url'] = $a->get_baseurl()."/".$user_info["screen_name"]."/all";
761                                 return($as);
762                                 break;
763                 }
764                                 
765                 return  api_apply_template("timeline", $type, $data);
766         }
767         api_register_func('api/statuses/home_timeline','api_statuses_home_timeline', true);
768         api_register_func('api/statuses/friends_timeline','api_statuses_home_timeline', true);
769
770         function api_statuses_public_timeline(&$a, $type){
771                 if (local_user()===false) return false;
772                                 
773                 $user_info = api_get_user($a);
774                 // get last newtork messages
775
776
777                 // params
778                 $count = (x($_REQUEST,'count')?$_REQUEST['count']:20);
779                 $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
780                 if ($page<0) $page=0;
781                 $since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
782                 $max_id = (x($_REQUEST,'max_id')?$_REQUEST['max_id']:0);
783                 //$since_id = 0;//$since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
784                 
785                 $start = $page*$count;
786
787                 //$include_entities = (x($_REQUEST,'include_entities')?$_REQUEST['include_entities']:false);
788
789                 if ($max_id > 0)
790                         $sql_extra = 'AND `item`.`id` <= '.intval($max_id);
791
792                 /*$r = q("SELECT `item`.*, `item`.`id` AS `item_id`, 
793                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
794                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
795                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
796                         FROM `item`, `contact`
797                         WHERE `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
798                         AND `item`.`allow_cid` = ''  AND `item`.`allow_gid` = '' 
799                         AND `item`.`deny_cid`  = '' AND `item`.`deny_gid`  = '' 
800                         AND `item`.`private` = 0 AND `item`.`wall` = 1 AND `user`.`hidewall` = 0
801                         AND `contact`.`id` = `item`.`contact-id`
802                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
803                         $sql_extra
804                         AND `item`.`id`>%d
805                         ORDER BY `item`.`received` DESC LIMIT %d ,%d ",
806                         intval($since_id),
807                         intval($start), intval($count)
808                 );*/
809                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, 
810                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
811                         `contact`.`network`, `contact`.`thumb`, `contact`.`self`, `contact`.`writable`, 
812                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`,
813                         `user`.`nickname`, `user`.`hidewall`
814                         FROM `item` LEFT JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
815                         LEFT JOIN `user` ON `user`.`uid` = `item`.`uid`
816                         WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
817                         AND `item`.`allow_cid` = ''  AND `item`.`allow_gid` = '' 
818                         AND `item`.`deny_cid`  = '' AND `item`.`deny_gid`  = '' 
819                         AND `item`.`private` = 0 AND `item`.`wall` = 1 AND `user`.`hidewall` = 0 
820                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
821                         $sql_extra
822                         AND `item`.`id`>%d
823                         ORDER BY `received` DESC LIMIT %d, %d ",
824                         intval($since_id),
825                         intval($start),
826                         intval($count));
827
828                 $ret = api_format_items($r,$user_info);
829
830                 
831                 $data = array('$statuses' => $ret);
832                 switch($type){
833                         case "atom":
834                         case "rss":
835                                 $data = api_rss_extra($a, $data, $user_info);
836                                 break;
837                         case "as":
838                                 $as = api_format_as($a, $ret, $user_info);
839                                 $as['title'] = $a->config['sitename']." Public Timeline";
840                                 $as['link']['url'] = $a->get_baseurl()."/";
841                                 return($as);
842                                 break;
843                 }
844                                 
845                 return  api_apply_template("timeline", $type, $data);
846         }
847         api_register_func('api/statuses/public_timeline','api_statuses_public_timeline', true);
848
849         /**
850          * 
851          */
852         function api_statuses_show(&$a, $type){
853                 if (local_user()===false) return false;
854
855                 $user_info = api_get_user($a);
856
857                 // params
858                 $id = intval($a->argv[3]);
859
860                 logger('API: api_statuses_show: '.$id);         
861
862                 //$include_entities = (x($_REQUEST,'include_entities')?$_REQUEST['include_entities']:false);
863
864                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, 
865                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
866                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
867                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
868                         FROM `item`, `contact`
869                         WHERE `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
870                         AND `contact`.`id` = `item`.`contact-id`
871                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
872                         $sql_extra
873                         AND `item`.`id`=%d",
874                         intval($id)
875                 );
876
877                 $ret = api_format_items($r,$user_info);
878                 
879                 $data = array('$status' => $ret[0]);
880                 /*switch($type){
881                         case "atom":
882                         case "rss":
883                                 $data = api_rss_extra($a, $data, $user_info);
884                 }*/
885                 return  api_apply_template("status", $type, $data);
886         }
887         api_register_func('api/statuses/show','api_statuses_show', true);
888
889
890         /**
891          * 
892          */
893         function api_statuses_repeat(&$a, $type){
894                 if (local_user()===false) return false;
895
896                 $user_info = api_get_user($a);
897
898                 // params
899                 $id = intval($a->argv[3]);
900
901                 logger('API: api_statuses_repeat: '.$id);               
902
903                 //$include_entities = (x($_REQUEST,'include_entities')?$_REQUEST['include_entities']:false);
904
905                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, `contact`.`nick` as `reply_author`,
906                         `contact`.`name`, `contact`.`photo`, `contact`.`url` as `reply_url`, `contact`.`rel`,
907                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
908                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
909                         FROM `item`, `contact`
910                         WHERE `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
911                         AND `contact`.`id` = `item`.`contact-id`
912                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
913                         $sql_extra
914                         AND `item`.`id`=%d",
915                         intval($id)
916                 );
917
918                 $_REQUEST['body'] = html_entity_decode("&#x2672; ", ENT_QUOTES, 'UTF-8')."[url=".$r[0]['reply_url']."]".$r[0]['reply_author']."[/url] \n".$r[0]['body'];
919                 $_REQUEST['profile_uid'] = local_user();
920                 $_REQUEST['type'] = 'wall';
921                 $_REQUEST['api_source'] = true;
922
923                 require_once('mod/item.php');
924                 item_post($a);
925
926                 if ($type == 'xml')
927                         $ok = "true";
928                 else
929                         $ok = "ok";
930
931                 return api_apply_template('test', $type, array('$ok' => $ok));
932         }
933         api_register_func('api/statuses/retweet','api_statuses_repeat', true);
934
935         /**
936          * 
937          */
938         function api_statuses_destroy(&$a, $type){
939                 if (local_user()===false) return false;
940
941                 $user_info = api_get_user($a);
942
943                 // params
944                 $id = intval($a->argv[3]);
945
946                 logger('API: api_statuses_destroy: '.$id);      
947
948                 require_once('include/items.php');
949                 drop_item($id, false);
950
951                 if ($type == 'xml')
952                         $ok = "true";
953                 else
954                         $ok = "ok";
955
956                 return api_apply_template('test', $type, array('$ok' => $ok));
957         }
958         api_register_func('api/statuses/destroy','api_statuses_destroy', true);
959
960         /**
961          * 
962          * http://developer.twitter.com/doc/get/statuses/mentions
963          * 
964          */
965         function api_statuses_mentions(&$a, $type){
966                 if (local_user()===false) return false;
967                                 
968                 $user_info = api_get_user($a);
969                 // get last newtork messages
970
971
972                 // params
973                 $count = (x($_REQUEST,'count')?$_REQUEST['count']:20);
974                 $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
975                 if ($page<0) $page=0;
976                 $since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
977                 $max_id = (x($_REQUEST,'max_id')?$_REQUEST['max_id']:0);
978                 //$since_id = 0;//$since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
979                 
980                 $start = $page*$count;
981
982                 //$include_entities = (x($_REQUEST,'include_entities')?$_REQUEST['include_entities']:false);
983
984                 $myurl = $a->get_baseurl() . '/profile/'. $a->user['nickname'];
985                 $myurl = substr($myurl,strpos($myurl,'://')+3);
986                 $myurl = str_replace(array('www.','.'),array('','\\.'),$myurl);
987                 $diasp_url = str_replace('/profile/','/u/',$myurl);
988                 $sql_extra .= sprintf(" AND `item`.`parent` IN (SELECT distinct(`parent`) from item where ( `author-link` regexp '%s' or `tag` regexp '%s' or tag regexp '%s' )) ",
989                         dbesc($myurl . '$'),
990                         dbesc($myurl . '\\]'),
991                         dbesc($diasp_url . '\\]')
992                 );
993
994                 if ($max_id > 0)
995                         $sql_extra .= ' AND `item`.`id` <= '.intval($max_id);
996
997                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, 
998                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
999                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
1000                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
1001                         FROM `item`, `contact`
1002                         WHERE `item`.`uid` = %d
1003                         AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
1004                         AND `contact`.`id` = `item`.`contact-id`
1005                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
1006                         $sql_extra
1007                         AND `item`.`id`>%d
1008                         ORDER BY `item`.`received` DESC LIMIT %d ,%d ",
1009                         intval($user_info['uid']),
1010                         intval($since_id),
1011                         intval($start), intval($count)
1012                 );
1013
1014                 $ret = api_format_items($r,$user_info);
1015
1016                 
1017                 $data = array('$statuses' => $ret);
1018                 switch($type){
1019                         case "atom":
1020                         case "rss":
1021                                 $data = api_rss_extra($a, $data, $user_info);
1022                                 break;
1023                         case "as":
1024                                 $as = api_format_as($a, $ret, $user_info);
1025                                 $as["title"] = $a->config['sitename']." Mentions";
1026                                 $as['link']['url'] = $a->get_baseurl()."/";
1027                                 return($as);
1028                                 break;
1029                 }
1030                                 
1031                 return  api_apply_template("timeline", $type, $data);
1032         }
1033         api_register_func('api/statuses/mentions','api_statuses_mentions', true);
1034         api_register_func('api/statuses/replies','api_statuses_mentions', true);
1035
1036
1037         function api_statuses_user_timeline(&$a, $type){
1038                 if (local_user()===false) return false;
1039                 
1040                 $user_info = api_get_user($a);
1041                 // get last newtork messages
1042
1043
1044                 logger("api_statuses_user_timeline: local_user: ". local_user() .
1045                            "\nuser_info: ".print_r($user_info, true) .
1046                            "\n_REQUEST:  ".print_r($_REQUEST, true),
1047                            LOGGER_DEBUG);
1048
1049                 // params
1050                 $count = (x($_REQUEST,'count')?$_REQUEST['count']:20);
1051                 $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
1052                 if ($page<0) $page=0;
1053                 $since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
1054                 //$since_id = 0;//$since_id = (x($_REQUEST,'since_id')?$_REQUEST['since_id']:0);
1055                 
1056                 $start = $page*$count;
1057
1058                 if ($user_info['self']==1) $sql_extra = "AND `item`.`wall` = 1 ";
1059
1060                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, 
1061                         `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
1062                         `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
1063                         `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
1064                         FROM `item`, `contact`
1065                         WHERE `item`.`uid` = %d
1066                         AND `item`.`contact-id` = %d
1067                         AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
1068                         AND `contact`.`id` = `item`.`contact-id`
1069                         AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
1070                         $sql_extra
1071                         AND `item`.`id`>%d
1072                         ORDER BY `item`.`received` DESC LIMIT %d ,%d ",
1073                         intval(local_user()),
1074                         intval($user_info['id']),
1075                         intval($since_id),
1076                         intval($start), intval($count)
1077                 );
1078
1079                 $ret = api_format_items($r,$user_info);
1080
1081                 
1082                 $data = array('$statuses' => $ret);
1083                 switch($type){
1084                         case "atom":
1085                         case "rss":
1086                                 $data = api_rss_extra($a, $data, $user_info);
1087                 }
1088                                 
1089                 return  api_apply_template("timeline", $type, $data);
1090         }
1091
1092         api_register_func('api/statuses/user_timeline','api_statuses_user_timeline', true);
1093
1094
1095         function api_favorites(&$a, $type){
1096                 if (local_user()===false) return false;
1097                 
1098                 $user_info = api_get_user($a);
1099                 // in friendica starred item are private
1100                 // return favorites only for self
1101                 logger('api_favorites: self:' . $user_info['self']);
1102                 
1103                 if ($user_info['self']==0) {
1104                         $ret = array();
1105                 } else {
1106                         
1107                         
1108                         // params
1109                         $count = (x($_GET,'count')?$_GET['count']:20);
1110                         $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
1111                         if ($page<0) $page=0;
1112                         
1113                         $start = $page*$count;
1114
1115                         $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, 
1116                                 `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
1117                                 `contact`.`network`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
1118                                 `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
1119                                 FROM `item`, `contact`
1120                                 WHERE `item`.`uid` = %d
1121                                 AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`deleted` = 0
1122                                 AND `item`.`starred` = 1
1123                                 AND `contact`.`id` = `item`.`contact-id`
1124                                 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
1125                                 $sql_extra
1126                                 ORDER BY `item`.`received` DESC LIMIT %d ,%d ",
1127                                 intval($user_info['uid']),
1128                                 intval($start), intval($count)
1129                         );
1130
1131                         $ret = api_format_items($r,$user_info);
1132                 
1133                 }
1134                 
1135                 $data = array('$statuses' => $ret);
1136                 switch($type){
1137                         case "atom":
1138                         case "rss":
1139                                 $data = api_rss_extra($a, $data, $user_info);
1140                 }
1141                                 
1142                 return  api_apply_template("timeline", $type, $data);
1143         }
1144
1145         api_register_func('api/favorites','api_favorites', true);
1146
1147         function api_format_as($a, $ret, $user_info) {
1148
1149                 $as = array();
1150                 $as['title'] = $a->config['sitename']." Public Timeline";
1151                 $items = array();
1152                 foreach ($ret as $item) {
1153                         $singleitem["actor"]["displayName"] = $item["user"]["name"];
1154                         $singleitem["actor"]["id"] = $item["user"]["contact_url"];
1155                         $avatar[0]["url"] = $item["user"]["profile_image_url"];
1156                         $avatar[0]["rel"] = "avatar";
1157                         $avatar[0]["type"] = "";
1158                         $avatar[0]["width"] = 96;
1159                         $avatar[0]["height"] = 96;
1160                         $avatar[1]["url"] = $item["user"]["profile_image_url"];
1161                         $avatar[1]["rel"] = "avatar";
1162                         $avatar[1]["type"] = "";
1163                         $avatar[1]["width"] = 48;
1164                         $avatar[1]["height"] = 48;
1165                         $avatar[2]["url"] = $item["user"]["profile_image_url"];
1166                         $avatar[2]["rel"] = "avatar";
1167                         $avatar[2]["type"] = "";
1168                         $avatar[2]["width"] = 24;
1169                         $avatar[2]["height"] = 24;
1170                         $singleitem["actor"]["avatarLinks"] = $avatar;
1171
1172                         $singleitem["actor"]["image"]["url"] = $item["user"]["profile_image_url"];
1173                         $singleitem["actor"]["image"]["rel"] = "avatar";
1174                         $singleitem["actor"]["image"]["type"] = "";
1175                         $singleitem["actor"]["image"]["width"] = 96;
1176                         $singleitem["actor"]["image"]["height"] = 96;
1177                         $singleitem["actor"]["type"] = "person";
1178                         $singleitem["actor"]["url"] = $item["person"]["contact_url"];
1179                         $singleitem["actor"]["statusnet:profile_info"]["local_id"] = $item["user"]["id"];
1180                         $singleitem["actor"]["statusnet:profile_info"]["following"] = $item["user"]["following"] ? "true" : "false";
1181                         $singleitem["actor"]["statusnet:profile_info"]["blocking"] = "false";
1182                         $singleitem["actor"]["contact"]["preferredUsername"] = $item["user"]["screen_name"];
1183                         $singleitem["actor"]["contact"]["displayName"] = $item["user"]["name"];
1184                         $singleitem["actor"]["contact"]["addresses"] = "";
1185
1186                         $singleitem["body"] = $item["text"];
1187                         $singleitem["object"]["displayName"] = $item["text"];
1188                         $singleitem["object"]["id"] = $item["url"];
1189                         $singleitem["object"]["type"] = "note";
1190                         $singleitem["object"]["url"] = $item["url"];
1191                         //$singleitem["context"] =;
1192                         $singleitem["postedTime"] = date("c", strtotime($item["published"]));
1193                         $singleitem["provider"]["objectType"] = "service";
1194                         $singleitem["provider"]["displayName"] = "Test";
1195                         $singleitem["provider"]["url"] = "http://test.tld";
1196                         $singleitem["title"] = $item["text"];
1197                         $singleitem["verb"] = "post";
1198                         $singleitem["statusnet:notice_info"]["local_id"] = $item["id"];
1199                                 $singleitem["statusnet:notice_info"]["source"] = $item["source"];
1200                                 $singleitem["statusnet:notice_info"]["favorite"] = "false";
1201                                 $singleitem["statusnet:notice_info"]["repeated"] = "false";
1202                                 //$singleitem["original"] = $item;
1203                                 $items[] = $singleitem;
1204                 }
1205                 $as['items'] = $items;
1206                 $as['link']['url'] = $a->get_baseurl()."/".$user_info["screen_name"]."/all";
1207                 $as['link']['rel'] = "alternate";
1208                 $as['link']['type'] = "text/html";
1209                 return($as);
1210         }
1211         
1212         function api_format_items($r,$user_info) {
1213
1214                 //logger('api_format_items: ' . print_r($r,true));
1215
1216                 //logger('api_format_items: ' . print_r($user_info,true));
1217
1218                 $a = get_app();
1219                 $ret = Array();
1220
1221                 foreach($r as $item) {
1222                         localize_item($item);
1223                         $status_user = (($item['cid']==$user_info['id'])?$user_info: api_item_get_user($a,$item));
1224
1225                         if ($item['parent']!=$item['id']) {
1226                                 $r = q("select id from item where parent=%s and id<%s order by id desc limit 1", 
1227                                         intval($item['parent']), intval($item['id']));
1228                                 if ($r)
1229                                         $in_reply_to_status_id = $r[0]['id'];
1230                                 else
1231                                         $in_reply_to_status_id = $item['parent'];
1232
1233                                 $r = q("select `item`.`contact-id`, `contact`.nick, `item`.`author-name` from item, contact 
1234                                         where `contact`.`id` = `item`.`contact-id` and `item`.id=%d", intval($in_reply_to_status_id));
1235
1236                                 $in_reply_to_screen_name = $r[0]['author-name'];
1237                                 $in_reply_to_user_id = $r[0]['contact-id'];
1238
1239                         } else {
1240                                 $in_reply_to_screen_name = '';
1241                                 $in_reply_to_user_id = 0;
1242                                 $in_reply_to_status_id = 0;
1243                         }
1244
1245                         // Workaround for ostatus messages where the title is identically to the body
1246                         $statusbody = trim(html2plain(bbcode($item['body']), 0));
1247                         $statustitle = trim($item['title']);
1248
1249                         if (($statustitle != '') and (strpos($statusbody, $statustitle) !== false))
1250                                 $statustext = trim($statusbody);
1251                         else
1252                                 $statustext = trim($statustitle."\n\n".$statusbody);
1253
1254                         $status = array(
1255                                 'text'          => $statustext,
1256                                 'truncated' => False,
1257                                 'created_at'=> api_date($item['created']),
1258                                 'in_reply_to_status_id' => $in_reply_to_status_id,
1259                                 'source'    => (($item['app']) ? $item['app'] : 'web'),
1260                                 'id'            => intval($item['id']),
1261                                 'in_reply_to_user_id' => $in_reply_to_user_id,
1262                                 'in_reply_to_screen_name' => $in_reply_to_screen_name,
1263                                 'geo' => '',
1264                                 'favorited' => $item['starred'] ? true : false,
1265                                 'user' =>  $status_user ,
1266                                 'statusnet_html'                => trim(bbcode($item['body'])),
1267                                 'statusnet_conversation_id'     => $item['parent'],
1268                         );
1269
1270                         // Seesmic doesn't like the following content
1271                         if ($_SERVER['HTTP_USER_AGENT'] != 'Seesmic') {
1272                                 $status2 = array(
1273                                         'updated'   => api_date($item['edited']),
1274                                         'published' => api_date($item['created']),
1275                                         'message_id' => $item['uri'],
1276                                         'url'           => ($item['plink']!=''?$item['plink']:$item['author-link']),
1277                                         'coordinates' => $item['coord'],
1278                                         'place' => $item['location'],
1279                                         'contributors' => '',
1280                                         'annotations'  => '',
1281                                         'entities'  => '',
1282                                         'objecttype' => (($item['object-type']) ? $item['object-type'] : ACTIVITY_OBJ_NOTE),
1283                                         'verb' => (($item['verb']) ? $item['verb'] : ACTIVITY_POST),
1284                                         'self' => $a->get_baseurl()."/api/statuses/show/".$item['id'].".".$type,
1285                                         'edit' => $a->get_baseurl()."/api/statuses/show/".$item['id'].".".$type,
1286                                 );
1287
1288                                 $status = array_merge($status, $status2);
1289                         }
1290
1291                         $ret[]=$status;
1292                 };
1293                 return $ret;
1294         }
1295
1296
1297         function api_account_rate_limit_status(&$a,$type) {
1298
1299                 $hash = array(
1300                           'reset_time_in_seconds' => strtotime('now + 1 hour'),
1301                           'remaining_hits' => (string) 150,
1302                           'hourly_limit' => (string) 150,
1303                           'reset_time' => datetime_convert('UTC','UTC','now + 1 hour',ATOM_TIME),
1304                 );
1305                 if ($type == "xml")
1306                         $hash['resettime_in_seconds'] = $hash['reset_time_in_seconds'];
1307
1308                 return api_apply_template('ratelimit', $type, array('$hash' => $hash));
1309
1310         }
1311         api_register_func('api/account/rate_limit_status','api_account_rate_limit_status',true);
1312
1313         function api_help_test(&$a,$type) {
1314
1315                 if ($type == 'xml')
1316                         $ok = "true";
1317                 else
1318                         $ok = "ok";
1319
1320                 return api_apply_template('test', $type, array('$ok' => $ok));
1321
1322         }
1323         api_register_func('api/help/test','api_help_test',true);
1324
1325         /**
1326          *  https://dev.twitter.com/docs/api/1/get/statuses/friends 
1327          *  This function is deprecated by Twitter
1328          *  returns: json, xml 
1329          **/
1330         function api_statuses_f(&$a, $type, $qtype) {
1331                 if (local_user()===false) return false;
1332                 $user_info = api_get_user($a);
1333                 
1334                 
1335                 // friends and followers only for self
1336                 if ($user_info['self']==0){
1337                         return false;
1338                 }
1339                 
1340                 if (x($_GET,'cursor') && $_GET['cursor']=='undefined'){
1341                         /* this is to stop Hotot to load friends multiple times
1342                         *  I'm not sure if I'm missing return something or
1343                         *  is a bug in hotot. Workaround, meantime
1344                         */
1345                         
1346                         /*$ret=Array();
1347                         return array('$users' => $ret);*/
1348                         return false;
1349                 }
1350                 
1351                 if($qtype == 'friends')
1352                         $sql_extra = sprintf(" AND ( `rel` = %d OR `rel` = %d ) ", intval(CONTACT_IS_SHARING), intval(CONTACT_IS_FRIEND));
1353                 if($qtype == 'followers')
1354                         $sql_extra = sprintf(" AND ( `rel` = %d OR `rel` = %d ) ", intval(CONTACT_IS_FOLLOWER), intval(CONTACT_IS_FRIEND));
1355  
1356                 $r = q("SELECT id FROM `contact` WHERE `uid` = %d AND `self` = 0 AND `blocked` = 0 AND `pending` = 0 $sql_extra",
1357                         intval(local_user())
1358                 );
1359
1360                 $ret = array();
1361                 foreach($r as $cid){
1362                         $ret[] = api_get_user($a, $cid['id']);
1363                 }
1364
1365                 
1366                 return array('$users' => $ret);
1367
1368         }
1369         function api_statuses_friends(&$a, $type){
1370                 $data =  api_statuses_f($a,$type,"friends");
1371                 if ($data===false) return false;
1372                 return  api_apply_template("friends", $type, $data);
1373         }
1374         function api_statuses_followers(&$a, $type){
1375                 $data = api_statuses_f($a,$type,"followers");
1376                 if ($data===false) return false;
1377                 return  api_apply_template("friends", $type, $data);
1378         }
1379         api_register_func('api/statuses/friends','api_statuses_friends',true);
1380         api_register_func('api/statuses/followers','api_statuses_followers',true);
1381
1382
1383
1384
1385
1386
1387         function api_statusnet_config(&$a,$type) {
1388                 $name = $a->config['sitename'];
1389                 $server = $a->get_hostname();
1390                 $logo = $a->get_baseurl() . '/images/friendica-64.png';
1391                 $email = $a->config['admin_email'];
1392                 $closed = (($a->config['register_policy'] == REGISTER_CLOSED) ? 'true' : 'false');
1393                 $private = (($a->config['system']['block_public']) ? 'true' : 'false');
1394                 $textlimit = (string) (($a->config['max_import_size']) ? $a->config['max_import_size'] : 200000);
1395                 if($a->config['api_import_size'])
1396                         $texlimit = string($a->config['api_import_size']);
1397                 $ssl = (($a->config['system']['have_ssl']) ? 'true' : 'false');
1398                 $sslserver = (($ssl === 'true') ? str_replace('http:','https:',$a->get_baseurl()) : '');
1399
1400                 $config = array(
1401                         'site' => array('name' => $name,'server' => $server, 'theme' => 'default', 'path' => '',
1402                                 'logo' => $logo, 'fancy' => 'true', 'language' => 'en', 'email' => $email, 'broughtby' => '',
1403                                 'broughtbyurl' => '', 'timezone' => 'UTC', 'closed' => $closed, 'inviteonly' => 'false',
1404                                 'private' => $private, 'textlimit' => $textlimit, 'sslserver' => $sslserver, 'ssl' => $ssl,
1405                                 'shorturllength' => '30'
1406                         ),
1407                 );  
1408
1409                 return api_apply_template('config', $type, array('$config' => $config));
1410
1411         }
1412         api_register_func('api/statusnet/config','api_statusnet_config',false);
1413
1414         function api_statusnet_version(&$a,$type) {
1415
1416                 // liar
1417
1418                 if($type === 'xml') {
1419                         header("Content-type: application/xml");
1420                         echo '<?xml version="1.0" encoding="UTF-8"?>' . "\r\n" . '<version>0.9.7</version>' . "\r\n";
1421                         killme();
1422                 }
1423                 elseif($type === 'json') {
1424                         header("Content-type: application/json");
1425                         echo '"0.9.7"';
1426                         killme();
1427                 }
1428         }
1429         api_register_func('api/statusnet/version','api_statusnet_version',false);
1430
1431
1432         function api_ff_ids(&$a,$type,$qtype) {
1433                 if(! local_user())
1434                         return false;
1435
1436                 if($qtype == 'friends')
1437                         $sql_extra = sprintf(" AND ( `rel` = %d OR `rel` = %d ) ", intval(CONTACT_IS_SHARING), intval(CONTACT_IS_FRIEND));
1438                 if($qtype == 'followers')
1439                         $sql_extra = sprintf(" AND ( `rel` = %d OR `rel` = %d ) ", intval(CONTACT_IS_FOLLOWER), intval(CONTACT_IS_FRIEND));
1440  
1441
1442                 $r = q("SELECT id FROM `contact` WHERE `uid` = %d AND `self` = 0 AND `blocked` = 0 AND `pending` = 0 $sql_extra",
1443                         intval(local_user())
1444                 );
1445
1446                 if(is_array($r)) {
1447                         if($type === 'xml') {
1448                                 header("Content-type: application/xml");
1449                                 echo '<?xml version="1.0" encoding="UTF-8"?>' . "\r\n" . '<ids>' . "\r\n";
1450                                 foreach($r as $rr)
1451                                         echo '<id>' . $rr['id'] . '</id>' . "\r\n";
1452                                 echo '</ids>' . "\r\n";
1453                                 killme();
1454                         }
1455                         elseif($type === 'json') {
1456                                 $ret = array();
1457                                 header("Content-type: application/json");
1458                                 foreach($r as $rr) $ret[] = $rr['id'];
1459                                 echo json_encode($ret);
1460                                 killme();
1461                         }
1462                 }
1463         }
1464
1465         function api_friends_ids(&$a,$type) {
1466                 api_ff_ids($a,$type,'friends');
1467         }
1468         function api_followers_ids(&$a,$type) {
1469                 api_ff_ids($a,$type,'followers');
1470         }
1471         api_register_func('api/friends/ids','api_friends_ids',true);
1472         api_register_func('api/followers/ids','api_followers_ids',true);
1473
1474
1475         function api_direct_messages_new(&$a, $type) {
1476                 if (local_user()===false) return false;
1477                 
1478                 if (!x($_POST, "text") || !x($_POST,"screen_name")) return;
1479                 
1480                 $sender = api_get_user($a);
1481                 
1482                 $r = q("SELECT `id` FROM `contact` WHERE `uid`=%d AND `nick`='%s'",
1483                                 intval(local_user()),
1484                                 dbesc($_POST['screen_name']));
1485                 
1486                 $recipient = api_get_user($a, $r[0]['id']);                     
1487                 
1488
1489                 require_once("include/message.php");
1490                 $sub = ( (strlen($_POST['text'])>10)?substr($_POST['text'],0,10)."...":$_POST['text']);
1491                 $id = send_message($recipient['id'], $_POST['text'], $sub);
1492                 
1493                 
1494                 if ($id>-1) {
1495                         $r = q("SELECT * FROM `mail` WHERE id=%d", intval($id));
1496                         $item = $r[0];
1497                         $ret=Array(
1498                                         'id' => $item['id'],
1499                                         'created_at'=> api_date($item['created']),
1500                                         'sender_id'=> $sender['id'] ,
1501                                         'sender_screen_name'=> $sender['screen_name'],
1502                                         'sender'=> $sender,
1503                                         'recipient_id'=> $recipient['id'],
1504                                         'recipient_screen_name'=> $recipient['screen_name'],
1505                                         'recipient'=> $recipient,
1506                                         
1507                                         'text'=> $item['title']."\n".html2plain(bbcode($item['body']), 0) ,
1508                                         
1509                         );
1510                 
1511                 } else {
1512                         $ret = array("error"=>$id);     
1513                 }
1514                 
1515                 $data = Array('$messages'=>$ret);
1516                 
1517                 switch($type){
1518                         case "atom":
1519                         case "rss":
1520                                 $data = api_rss_extra($a, $data, $user_info);
1521                 }
1522                                 
1523                 return  api_apply_template("direct_messages", $type, $data);
1524                                 
1525         }
1526         api_register_func('api/direct_messages/new','api_direct_messages_new',true);
1527
1528     function api_direct_messages_box(&$a, $type, $box) {
1529                 if (local_user()===false) return false;
1530                 
1531                 $user_info = api_get_user($a);
1532                 
1533                 // params
1534                 $count = (x($_GET,'count')?$_GET['count']:20);
1535                 $page = (x($_REQUEST,'page')?$_REQUEST['page']-1:0);
1536                 if ($page<0) $page=0;
1537                 
1538                 $start = $page*$count;
1539                 
1540         
1541                 if ($box=="sentbox") {
1542                         $sql_extra = "`from-url`='%s'";
1543                 } else {
1544                         $sql_extra = "`from-url`!='%s'";
1545                 }
1546                 
1547                 $r = q("SELECT * FROM `mail` WHERE uid=%d AND $sql_extra ORDER BY created DESC LIMIT %d,%d",
1548                                 intval(local_user()),
1549                                 dbesc( $a->get_baseurl() . '/profile/' . $a->user['nickname'] ),
1550                                 intval($start), intval($count)
1551                            );
1552                 
1553                 $ret = Array();
1554                 foreach($r as $item){
1555                         switch ($box){
1556                                 case "inbox":
1557                                         $recipient = $user_info;
1558                                         $sender = api_get_user($a,$item['contact-id']);
1559                                         break;
1560                                 case "sentbox":
1561                                         $recipient = api_get_user($a,$item['contact-id']);
1562                                         $sender = $user_info;
1563                                         break;
1564                         }
1565                                 
1566                         $ret[]=Array(
1567                                 'id' => $item['id'],
1568                                 'created_at'=> api_date($item['created']),
1569                                 'sender_id'=> $sender['id'] ,
1570                                 'sender_screen_name'=> $sender['screen_name'],
1571                                 'sender'=> $sender,
1572                                 'recipient_id'=> $recipient['id'],
1573                                 'recipient_screen_name'=> $recipient['screen_name'],
1574                                 'recipient'=> $recipient,
1575                                 
1576                                 'text'=> $item['title']."\n".html2plain(bbcode($item['body']), 0) ,
1577                                 
1578                         );
1579                         
1580                 }
1581                 
1582
1583                 $data = array('$messages' => $ret);
1584                 switch($type){
1585                         case "atom":
1586                         case "rss":
1587                                 $data = api_rss_extra($a, $data, $user_info);
1588                 }
1589                                 
1590                 return  api_apply_template("direct_messages", $type, $data);
1591                 
1592         }
1593
1594         function api_direct_messages_sentbox(&$a, $type){
1595                 return api_direct_messages_box($a, $type, "sentbox");
1596         }
1597         function api_direct_messages_inbox(&$a, $type){
1598                 return api_direct_messages_box($a, $type, "inbox");
1599         }
1600         api_register_func('api/direct_messages/sent','api_direct_messages_sentbox',true);
1601         api_register_func('api/direct_messages','api_direct_messages_inbox',true);
1602
1603
1604
1605         function api_oauth_request_token(&$a, $type){
1606                 try{
1607                         $oauth = new FKOAuth1();
1608                         $r = $oauth->fetch_request_token(OAuthRequest::from_request());
1609                 }catch(Exception $e){
1610                         echo "error=". OAuthUtil::urlencode_rfc3986($e->getMessage()); killme();
1611                 }
1612                 echo $r;
1613                 killme();       
1614         }
1615         function api_oauth_access_token(&$a, $type){
1616                 try{
1617                         $oauth = new FKOAuth1();
1618                         $r = $oauth->fetch_access_token(OAuthRequest::from_request());
1619                 }catch(Exception $e){
1620                         echo "error=". OAuthUtil::urlencode_rfc3986($e->getMessage()); killme();
1621                 }
1622                 echo $r;
1623                 killme();                       
1624         }
1625
1626         api_register_func('api/oauth/request_token', 'api_oauth_request_token', false);
1627         api_register_func('api/oauth/access_token', 'api_oauth_access_token', false);
1628
1629 /*
1630 Not implemented by now:
1631 favorites
1632 favorites/create
1633 favorites/destroy
1634 statuses/retweets_of_me
1635 friendships/create
1636 friendships/destroy
1637 friendships/exists
1638 friendships/show
1639 account/update_location
1640 account/update_profile_background_image
1641 account/update_profile_image
1642 blocks/create
1643 blocks/destroy
1644 oauth/authorize
1645
1646 Not implemented in status.net:
1647 statuses/retweeted_to_me
1648 statuses/retweeted_by_me
1649 direct_messages/destroy
1650 account/end_session
1651 account/update_delivery_device
1652 notifications/follow
1653 notifications/leave
1654 blocks/exists
1655 blocks/blocking
1656 */