]> git.mxchange.org Git - friendica.git/blob - include/dfrn.php
Merge remote-tracking branch 'refs/remotes/friendica/develop' into develop
[friendica.git] / include / dfrn.php
1 <?php
2 /**
3  * @file include/dfrn.php
4  * @brief The implementation of the dfrn protocol
5  *
6  * @see https://github.com/friendica/friendica/wiki/Protocol and
7  * https://github.com/friendica/friendica/blob/master/spec/dfrn2.pdf
8  */
9
10 require_once("include/Contact.php");
11 require_once("include/ostatus.php");
12 require_once("include/enotify.php");
13 require_once("include/threads.php");
14 require_once("include/socgraph.php");
15 require_once("include/items.php");
16 require_once("include/tags.php");
17 require_once("include/files.php");
18 require_once("include/event.php");
19 require_once("include/text.php");
20 require_once("include/oembed.php");
21 require_once("include/html2bbcode.php");
22 require_once("include/bbcode.php");
23 require_once("include/xml.php");
24
25 /**
26  * @brief This class contain functions to create and send DFRN XML files
27  *
28  */
29 class dfrn {
30
31         const DFRN_TOP_LEVEL = 0;       // Top level posting
32         const DFRN_REPLY = 1;           // Regular reply that is stored locally
33         const DFRN_REPLY_RC = 2;        // Reply that will be relayed
34
35         /**
36          * @brief Generates the atom entries for delivery.php
37          *
38          * This function is used whenever content is transmitted via DFRN.
39          *
40          * @param array $items Item elements
41          * @param array $owner Owner record
42          *
43          * @return string DFRN entries
44          */
45         public static function entries($items,$owner) {
46
47                 $doc = new DOMDocument('1.0', 'utf-8');
48                 $doc->formatOutput = true;
49
50                 $root = self::add_header($doc, $owner, "dfrn:owner", "", false);
51
52                 if(! count($items))
53                         return trim($doc->saveXML());
54
55                 foreach($items as $item) {
56                         $entry = self::entry($doc, "text", $item, $owner, $item["entry:comment-allow"], $item["entry:cid"]);
57                         $root->appendChild($entry);
58                 }
59
60                 return(trim($doc->saveXML()));
61         }
62
63         /**
64          * @brief Generate an atom feed for the given user
65          *
66          * This function is called when another server is pulling data from the user feed.
67          *
68          * @param string $dfrn_id DFRN ID from the requesting party
69          * @param string $owner_nick Owner nick name
70          * @param string $last_update Date of the last update
71          * @param int $direction Can be -1, 0 or 1.
72          * @param boolean $onlyheader Output only the header without content? (Default is "no")
73          *
74          * @return string DFRN feed entries
75          */
76         public static function feed($dfrn_id, $owner_nick, $last_update, $direction = 0, $onlyheader = false) {
77
78                 $a = get_app();
79
80                 $sitefeed    = ((strlen($owner_nick)) ? false : true); // not yet implemented, need to rewrite huge chunks of following logic
81                 $public_feed = (($dfrn_id) ? false : true);
82                 $starred     = false;   // not yet implemented, possible security issues
83                 $converse    = false;
84
85                 if($public_feed && $a->argc > 2) {
86                         for($x = 2; $x < $a->argc; $x++) {
87                                 if($a->argv[$x] == 'converse')
88                                         $converse = true;
89                                 if($a->argv[$x] == 'starred')
90                                         $starred = true;
91                                 if($a->argv[$x] == 'category' && $a->argc > ($x + 1) && strlen($a->argv[$x+1]))
92                                         $category = $a->argv[$x+1];
93                         }
94                 }
95
96
97
98                 // default permissions - anonymous user
99
100                 $sql_extra = " AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = '' AND `item`.`deny_cid`  = '' AND `item`.`deny_gid`  = '' ";
101
102                 $r = q("SELECT `contact`.*, `user`.`nickname`, `user`.`timezone`, `user`.`page-flags`, `user`.`account-type`
103                         FROM `contact` INNER JOIN `user` ON `user`.`uid` = `contact`.`uid`
104                         WHERE `contact`.`self` AND `user`.`nickname` = '%s' LIMIT 1",
105                         dbesc($owner_nick)
106                 );
107
108                 if (! dbm::is_result($r)) {
109                         killme();
110                 }
111
112                 $owner = $r[0];
113                 $owner_id = $owner['uid'];
114                 $owner_nick = $owner['nickname'];
115
116                 $sql_post_table = "";
117
118                 if(! $public_feed) {
119
120                         $sql_extra = '';
121                         switch($direction) {
122                                 case (-1):
123                                         $sql_extra = sprintf(" AND `issued-id` = '%s' ", dbesc($dfrn_id));
124                                         $my_id = $dfrn_id;
125                                         break;
126                                 case 0:
127                                         $sql_extra = sprintf(" AND `issued-id` = '%s' AND `duplex` = 1 ", dbesc($dfrn_id));
128                                         $my_id = '1:' . $dfrn_id;
129                                         break;
130                                 case 1:
131                                         $sql_extra = sprintf(" AND `dfrn-id` = '%s' AND `duplex` = 1 ", dbesc($dfrn_id));
132                                         $my_id = '0:' . $dfrn_id;
133                                         break;
134                                 default:
135                                         return false;
136                                         break; // NOTREACHED
137                         }
138
139                         $r = q("SELECT * FROM `contact` WHERE NOT `blocked` AND `contact`.`uid` = %d $sql_extra LIMIT 1",
140                                 intval($owner_id)
141                         );
142
143                         if (! dbm::is_result($r)) {
144                                 killme();
145                         }
146
147                         $contact = $r[0];
148                         require_once('include/security.php');
149                         $groups = init_groups_visitor($contact['id']);
150
151                         if(count($groups)) {
152                                 for($x = 0; $x < count($groups); $x ++)
153                                         $groups[$x] = '<' . intval($groups[$x]) . '>' ;
154                                 $gs = implode('|', $groups);
155                         } else
156                                 $gs = '<<>>' ; // Impossible to match
157
158                         $sql_extra = sprintf("
159                                 AND ( `allow_cid` = '' OR     `allow_cid` REGEXP '<%d>' )
160                                 AND ( `deny_cid`  = '' OR NOT `deny_cid`  REGEXP '<%d>' )
161                                 AND ( `allow_gid` = '' OR     `allow_gid` REGEXP '%s' )
162                                 AND ( `deny_gid`  = '' OR NOT `deny_gid`  REGEXP '%s')
163                         ",
164                                 intval($contact['id']),
165                                 intval($contact['id']),
166                                 dbesc($gs),
167                                 dbesc($gs)
168                         );
169                 }
170
171                 if($public_feed)
172                         $sort = 'DESC';
173                 else
174                         $sort = 'ASC';
175
176                 if(! strlen($last_update))
177                         $last_update = 'now -30 days';
178
179                 if(isset($category)) {
180                         $sql_post_table = sprintf("INNER JOIN (SELECT `oid` FROM `term` WHERE `term` = '%s' AND `otype` = %d AND `type` = %d AND `uid` = %d ORDER BY `tid` DESC) AS `term` ON `item`.`id` = `term`.`oid` ",
181                                         dbesc(protect_sprintf($category)), intval(TERM_OBJ_POST), intval(TERM_CATEGORY), intval($owner_id));
182                         //$sql_extra .= file_tag_file_query('item',$category,'category');
183                 }
184
185                 if($public_feed) {
186                         if(! $converse)
187                                 $sql_extra .= " AND `contact`.`self` = 1 ";
188                 }
189
190                 $check_date = datetime_convert('UTC','UTC',$last_update,'Y-m-d H:i:s');
191
192                 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`,
193                         `contact`.`name`, `contact`.`network`, `contact`.`photo`, `contact`.`url`,
194                         `contact`.`name-date`, `contact`.`uri-date`, `contact`.`avatar-date`,
195                         `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
196                         `sign`.`signed_text`, `sign`.`signature`, `sign`.`signer`
197                         FROM `item` USE INDEX (`uid_wall_changed`) $sql_post_table
198                         STRAIGHT_JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
199                         AND (NOT `contact`.`blocked` OR `contact`.`pending`)
200                         LEFT JOIN `sign` ON `sign`.`iid` = `item`.`id`
201                         WHERE `item`.`uid` = %d AND `item`.`visible` AND NOT `item`.`moderated` AND `item`.`parent` != 0
202                         AND `item`.`wall` AND `item`.`changed` > '%s'
203                         $sql_extra
204                         ORDER BY `item`.`parent` ".$sort.", `item`.`created` ASC LIMIT 0, 300",
205                         intval($owner_id),
206                         dbesc($check_date),
207                         dbesc($sort)
208                 );
209
210                 // Will check further below if this actually returned results.
211                 // We will provide an empty feed if that is the case.
212
213                 $items = $r;
214
215                 $doc = new DOMDocument('1.0', 'utf-8');
216                 $doc->formatOutput = true;
217
218                 $alternatelink = $owner['url'];
219
220                 if(isset($category))
221                         $alternatelink .= "/category/".$category;
222
223                 if ($public_feed)
224                         $author = "dfrn:owner";
225                 else
226                         $author = "author";
227
228                 $root = self::add_header($doc, $owner, $author, $alternatelink, true);
229
230                 // This hook can't work anymore
231                 //      call_hooks('atom_feed', $atom);
232
233                 if (!count($items) OR $onlyheader) {
234                         $atom = trim($doc->saveXML());
235
236                         call_hooks('atom_feed_end', $atom);
237
238                         return $atom;
239                 }
240
241                 foreach($items as $item) {
242
243                         // prevent private email from leaking.
244                         if($item['network'] == NETWORK_MAIL)
245                                 continue;
246
247                         // public feeds get html, our own nodes use bbcode
248
249                         if($public_feed) {
250                                 $type = 'html';
251                                 // catch any email that's in a public conversation and make sure it doesn't leak
252                                 if($item['private'])
253                                         continue;
254                         } else
255                                 $type = 'text';
256
257                         $entry = self::entry($doc, $type, $item, $owner, true);
258                         $root->appendChild($entry);
259
260                 }
261
262                 $atom = trim($doc->saveXML());
263
264                 call_hooks('atom_feed_end', $atom);
265
266                 return $atom;
267         }
268
269         /**
270          * @brief Create XML text for DFRN mails
271          *
272          * @param array $item message elements
273          * @param array $owner Owner record
274          *
275          * @return string DFRN mail
276          */
277         public static function mail($item, $owner) {
278                 $doc = new DOMDocument('1.0', 'utf-8');
279                 $doc->formatOutput = true;
280
281                 $root = self::add_header($doc, $owner, "dfrn:owner", "", false);
282
283                 $mail = $doc->createElement("dfrn:mail");
284                 $sender = $doc->createElement("dfrn:sender");
285
286                 xml::add_element($doc, $sender, "dfrn:name", $owner['name']);
287                 xml::add_element($doc, $sender, "dfrn:uri", $owner['url']);
288                 xml::add_element($doc, $sender, "dfrn:avatar", $owner['thumb']);
289
290                 $mail->appendChild($sender);
291
292                 xml::add_element($doc, $mail, "dfrn:id", $item['uri']);
293                 xml::add_element($doc, $mail, "dfrn:in-reply-to", $item['parent-uri']);
294                 xml::add_element($doc, $mail, "dfrn:sentdate", datetime_convert('UTC', 'UTC', $item['created'] . '+00:00' , ATOM_TIME));
295                 xml::add_element($doc, $mail, "dfrn:subject", $item['title']);
296                 xml::add_element($doc, $mail, "dfrn:content", $item['body']);
297
298                 $root->appendChild($mail);
299
300                 return(trim($doc->saveXML()));
301         }
302
303         /**
304          * @brief Create XML text for DFRN friend suggestions
305          *
306          * @param array $item suggestion elements
307          * @param array $owner Owner record
308          *
309          * @return string DFRN suggestions
310          */
311         public static function fsuggest($item, $owner) {
312                 $doc = new DOMDocument('1.0', 'utf-8');
313                 $doc->formatOutput = true;
314
315                 $root = self::add_header($doc, $owner, "dfrn:owner", "", false);
316
317                 $suggest = $doc->createElement("dfrn:suggest");
318
319                 xml::add_element($doc, $suggest, "dfrn:url", $item['url']);
320                 xml::add_element($doc, $suggest, "dfrn:name", $item['name']);
321                 xml::add_element($doc, $suggest, "dfrn:photo", $item['photo']);
322                 xml::add_element($doc, $suggest, "dfrn:request", $item['request']);
323                 xml::add_element($doc, $suggest, "dfrn:note", $item['note']);
324
325                 $root->appendChild($suggest);
326
327                 return(trim($doc->saveXML()));
328         }
329
330         /**
331          * @brief Create XML text for DFRN relocations
332          *
333          * @param array $owner Owner record
334          * @param int $uid User ID
335          *
336          * @return string DFRN relocations
337          */
338         public static function relocate($owner, $uid) {
339
340                 /* get site pubkey. this could be a new installation with no site keys*/
341                 $pubkey = get_config('system','site_pubkey');
342                 if(! $pubkey) {
343                         $res = new_keypair(1024);
344                         set_config('system','site_prvkey', $res['prvkey']);
345                         set_config('system','site_pubkey', $res['pubkey']);
346                 }
347
348                 $rp = q("SELECT `resource-id` , `scale`, type FROM `photo`
349                                 WHERE `profile` = 1 AND `uid` = %d ORDER BY scale;", $uid);
350                 $photos = array();
351                 $ext = Photo::supportedTypes();
352
353                 foreach($rp as $p)
354                         $photos[$p['scale']] = app::get_baseurl().'/photo/'.$p['resource-id'].'-'.$p['scale'].'.'.$ext[$p['type']];
355
356                 unset($rp, $ext);
357
358                 $doc = new DOMDocument('1.0', 'utf-8');
359                 $doc->formatOutput = true;
360
361                 $root = self::add_header($doc, $owner, "dfrn:owner", "", false);
362
363                 $relocate = $doc->createElement("dfrn:relocate");
364
365                 xml::add_element($doc, $relocate, "dfrn:url", $owner['url']);
366                 xml::add_element($doc, $relocate, "dfrn:name", $owner['name']);
367                 xml::add_element($doc, $relocate, "dfrn:addr", $owner['addr']);
368                 xml::add_element($doc, $relocate, "dfrn:avatar", $owner['avatar']);
369                 xml::add_element($doc, $relocate, "dfrn:photo", $photos[4]);
370                 xml::add_element($doc, $relocate, "dfrn:thumb", $photos[5]);
371                 xml::add_element($doc, $relocate, "dfrn:micro", $photos[6]);
372                 xml::add_element($doc, $relocate, "dfrn:request", $owner['request']);
373                 xml::add_element($doc, $relocate, "dfrn:confirm", $owner['confirm']);
374                 xml::add_element($doc, $relocate, "dfrn:notify", $owner['notify']);
375                 xml::add_element($doc, $relocate, "dfrn:poll", $owner['poll']);
376                 xml::add_element($doc, $relocate, "dfrn:sitepubkey", get_config('system','site_pubkey'));
377
378                 $root->appendChild($relocate);
379
380                 return(trim($doc->saveXML()));
381         }
382
383         /**
384          * @brief Adds the header elements for the DFRN protocol
385          *
386          * @param object $doc XML document
387          * @param array $owner Owner record
388          * @param string $authorelement Element name for the author
389          * @param string $alternatelink link to profile or category
390          * @param bool $public Is it a header for public posts?
391          *
392          * @return object XML root object
393          */
394         private static function add_header($doc, $owner, $authorelement, $alternatelink = "", $public = false) {
395
396                 if ($alternatelink == "")
397                         $alternatelink = $owner['url'];
398
399                 $root = $doc->createElementNS(NAMESPACE_ATOM1, 'feed');
400                 $doc->appendChild($root);
401
402                 $root->setAttribute("xmlns:thr", NAMESPACE_THREAD);
403                 $root->setAttribute("xmlns:at", NAMESPACE_TOMB);
404                 $root->setAttribute("xmlns:media", NAMESPACE_MEDIA);
405                 $root->setAttribute("xmlns:dfrn", NAMESPACE_DFRN);
406                 $root->setAttribute("xmlns:activity", NAMESPACE_ACTIVITY);
407                 $root->setAttribute("xmlns:georss", NAMESPACE_GEORSS);
408                 $root->setAttribute("xmlns:poco", NAMESPACE_POCO);
409                 $root->setAttribute("xmlns:ostatus", NAMESPACE_OSTATUS);
410                 $root->setAttribute("xmlns:statusnet", NAMESPACE_STATUSNET);
411
412                 xml::add_element($doc, $root, "id", app::get_baseurl()."/profile/".$owner["nick"]);
413                 xml::add_element($doc, $root, "title", $owner["name"]);
414
415                 $attributes = array("uri" => "https://friendi.ca", "version" => FRIENDICA_VERSION."-".DB_UPDATE_VERSION);
416                 xml::add_element($doc, $root, "generator", FRIENDICA_PLATFORM, $attributes);
417
418                 $attributes = array("rel" => "license", "href" => "http://creativecommons.org/licenses/by/3.0/");
419                 xml::add_element($doc, $root, "link", "", $attributes);
420
421                 $attributes = array("rel" => "alternate", "type" => "text/html", "href" => $alternatelink);
422                 xml::add_element($doc, $root, "link", "", $attributes);
423
424
425                 if ($public) {
426                         // DFRN itself doesn't uses this. But maybe someone else wants to subscribe to the public feed.
427                         ostatus::hublinks($doc, $root);
428
429                         $attributes = array("rel" => "salmon", "href" => app::get_baseurl()."/salmon/".$owner["nick"]);
430                         xml::add_element($doc, $root, "link", "", $attributes);
431
432                         $attributes = array("rel" => "http://salmon-protocol.org/ns/salmon-replies", "href" => app::get_baseurl()."/salmon/".$owner["nick"]);
433                         xml::add_element($doc, $root, "link", "", $attributes);
434
435                         $attributes = array("rel" => "http://salmon-protocol.org/ns/salmon-mention", "href" => app::get_baseurl()."/salmon/".$owner["nick"]);
436                         xml::add_element($doc, $root, "link", "", $attributes);
437                 }
438
439                 // For backward compatibility we keep this element
440                 if ($owner['page-flags'] == PAGE_COMMUNITY)
441                         xml::add_element($doc, $root, "dfrn:community", 1);
442
443                 // The former element is replaced by this one
444                 xml::add_element($doc, $root, "dfrn:account_type", $owner["account-type"]);
445
446                 /// @todo We need a way to transmit the different page flags like "PAGE_PRVGROUP"
447
448                 xml::add_element($doc, $root, "updated", datetime_convert("UTC", "UTC", "now", ATOM_TIME));
449
450                 $author = self::add_author($doc, $owner, $authorelement, $public);
451                 $root->appendChild($author);
452
453                 return $root;
454         }
455
456         /**
457          * @brief Adds the author element in the header for the DFRN protocol
458          *
459          * @param object $doc XML document
460          * @param array $owner Owner record
461          * @param string $authorelement Element name for the author
462          *
463          * @return object XML author object
464          */
465         private static function add_author($doc, $owner, $authorelement, $public) {
466
467                 // Is the profile hidden or shouldn't be published in the net? Then add the "hide" element
468                 $r = q("SELECT `id` FROM `profile` INNER JOIN `user` ON `user`.`uid` = `profile`.`uid`
469                                 WHERE (`hidewall` OR NOT `net-publish`) AND `user`.`uid` = %d",
470                         intval($owner['uid']));
471                 if ($r)
472                         $hidewall = true;
473                 else
474                         $hidewall = false;
475
476                 $author = $doc->createElement($authorelement);
477
478                 $namdate = datetime_convert('UTC', 'UTC', $owner['name-date'].'+00:00', ATOM_TIME);
479                 $uridate = datetime_convert('UTC', 'UTC', $owner['uri-date'].'+00:00', ATOM_TIME);
480                 $picdate = datetime_convert('UTC', 'UTC', $owner['avatar-date'].'+00:00', ATOM_TIME);
481
482                 if (!$public OR !$hidewall)
483                         $attributes = array("dfrn:updated" => $namdate);
484                 else
485                         $attributes = array();
486
487                 xml::add_element($doc, $author, "name", $owner["name"], $attributes);
488                 xml::add_element($doc, $author, "uri", app::get_baseurl().'/profile/'.$owner["nickname"], $attributes);
489                 xml::add_element($doc, $author, "dfrn:handle", $owner["addr"], $attributes);
490
491                 $attributes = array("rel" => "photo", "type" => "image/jpeg",
492                                         "media:width" => 175, "media:height" => 175, "href" => $owner['photo']);
493
494                 if (!$public OR !$hidewall)
495                         $attributes["dfrn:updated"] = $picdate;
496
497                 xml::add_element($doc, $author, "link", "", $attributes);
498
499                 $attributes["rel"] = "avatar";
500                 xml::add_element($doc, $author, "link", "", $attributes);
501
502                 if ($hidewall)
503                         xml::add_element($doc, $author, "dfrn:hide", "true");
504
505                 // The following fields will only be generated if the data isn't meant for a public feed
506                 if ($public)
507                         return $author;
508
509                 $birthday = feed_birthday($owner['uid'], $owner['timezone']);
510
511                 if ($birthday)
512                         xml::add_element($doc, $author, "dfrn:birthday", $birthday);
513
514                 // Only show contact details when we are allowed to
515                 $r = q("SELECT `profile`.`about`, `profile`.`name`, `profile`.`homepage`, `user`.`nickname`,
516                                 `user`.`timezone`, `profile`.`locality`, `profile`.`region`, `profile`.`country-name`,
517                                 `profile`.`pub_keywords`, `profile`.`xmpp`, `profile`.`dob`
518                         FROM `profile`
519                                 INNER JOIN `user` ON `user`.`uid` = `profile`.`uid`
520                                 WHERE `profile`.`is-default` AND NOT `user`.`hidewall` AND `user`.`uid` = %d",
521                         intval($owner['uid']));
522                 if ($r) {
523                         $profile = $r[0];
524
525                         xml::add_element($doc, $author, "poco:displayName", $profile["name"]);
526                         xml::add_element($doc, $author, "poco:updated", $namdate);
527
528                         if (trim($profile["dob"]) != "0000-00-00")
529                                 xml::add_element($doc, $author, "poco:birthday", "0000-".date("m-d", strtotime($profile["dob"])));
530
531                         xml::add_element($doc, $author, "poco:note", $profile["about"]);
532                         xml::add_element($doc, $author, "poco:preferredUsername", $profile["nickname"]);
533
534                         $savetz = date_default_timezone_get();
535                         date_default_timezone_set($profile["timezone"]);
536                         xml::add_element($doc, $author, "poco:utcOffset", date("P"));
537                         date_default_timezone_set($savetz);
538
539                         if (trim($profile["homepage"]) != "") {
540                                 $urls = $doc->createElement("poco:urls");
541                                 xml::add_element($doc, $urls, "poco:type", "homepage");
542                                 xml::add_element($doc, $urls, "poco:value", $profile["homepage"]);
543                                 xml::add_element($doc, $urls, "poco:primary", "true");
544                                 $author->appendChild($urls);
545                         }
546
547                         if (trim($profile["pub_keywords"]) != "") {
548                                 $keywords = explode(",", $profile["pub_keywords"]);
549
550                                 foreach ($keywords AS $keyword)
551                                         xml::add_element($doc, $author, "poco:tags", trim($keyword));
552
553                         }
554
555                         if (trim($profile["xmpp"]) != "") {
556                                 $ims = $doc->createElement("poco:ims");
557                                 xml::add_element($doc, $ims, "poco:type", "xmpp");
558                                 xml::add_element($doc, $ims, "poco:value", $profile["xmpp"]);
559                                 xml::add_element($doc, $ims, "poco:primary", "true");
560                                 $author->appendChild($ims);
561                         }
562
563                         if (trim($profile["locality"].$profile["region"].$profile["country-name"]) != "") {
564                                 $element = $doc->createElement("poco:address");
565
566                                 xml::add_element($doc, $element, "poco:formatted", formatted_location($profile));
567
568                                 if (trim($profile["locality"]) != "")
569                                         xml::add_element($doc, $element, "poco:locality", $profile["locality"]);
570
571                                 if (trim($profile["region"]) != "")
572                                         xml::add_element($doc, $element, "poco:region", $profile["region"]);
573
574                                 if (trim($profile["country-name"]) != "")
575                                         xml::add_element($doc, $element, "poco:country", $profile["country-name"]);
576
577                                 $author->appendChild($element);
578                         }
579                 }
580
581                 return $author;
582         }
583
584         /**
585          * @brief Adds the author elements in the "entry" elements of the DFRN protocol
586          *
587          * @param object $doc XML document
588          * @param string $element Element name for the author
589          * @param string $contact_url Link of the contact
590          * @param array $items Item elements
591          *
592          * @return object XML author object
593          */
594         private static function add_entry_author($doc, $element, $contact_url, $item) {
595
596                 $contact = get_contact_details_by_url($contact_url, $item["uid"]);
597
598                 $author = $doc->createElement($element);
599                 xml::add_element($doc, $author, "name", $contact["name"]);
600                 xml::add_element($doc, $author, "uri", $contact["url"]);
601                 xml::add_element($doc, $author, "dfrn:handle", $contact["addr"]);
602
603                 /// @Todo
604                 /// - Check real image type and image size
605                 /// - Check which of these boths elements we should use
606                 $attributes = array(
607                                 "rel" => "photo",
608                                 "type" => "image/jpeg",
609                                 "media:width" => 80,
610                                 "media:height" => 80,
611                                 "href" => $contact["photo"]);
612                 xml::add_element($doc, $author, "link", "", $attributes);
613
614                 $attributes = array(
615                                 "rel" => "avatar",
616                                 "type" => "image/jpeg",
617                                 "media:width" => 80,
618                                 "media:height" => 80,
619                                 "href" => $contact["photo"]);
620                 xml::add_element($doc, $author, "link", "", $attributes);
621
622                 return $author;
623         }
624
625         /**
626          * @brief Adds the activity elements
627          *
628          * @param object $doc XML document
629          * @param string $element Element name for the activity
630          * @param string $activity activity value
631          *
632          * @return object XML activity object
633          */
634         private static function create_activity($doc, $element, $activity) {
635
636                 if($activity) {
637                         $entry = $doc->createElement($element);
638
639                         $r = parse_xml_string($activity, false);
640                         if(!$r)
641                                 return false;
642                         if($r->type)
643                                 xml::add_element($doc, $entry, "activity:object-type", $r->type);
644                         if($r->id)
645                                 xml::add_element($doc, $entry, "id", $r->id);
646                         if($r->title)
647                                 xml::add_element($doc, $entry, "title", $r->title);
648                         if($r->link) {
649                                 if(substr($r->link,0,1) == '<') {
650                                         if(strstr($r->link,'&') && (! strstr($r->link,'&amp;')))
651                                                 $r->link = str_replace('&','&amp;', $r->link);
652
653                                         $r->link = preg_replace('/\<link(.*?)\"\>/','<link$1"/>',$r->link);
654
655                                         // XML does need a single element as root element so we add a dummy element here
656                                         $data = parse_xml_string("<dummy>".$r->link."</dummy>", false);
657                                         if (is_object($data)) {
658                                                 foreach ($data->link AS $link) {
659                                                         $attributes = array();
660                                                         foreach ($link->attributes() AS $parameter => $value)
661                                                                 $attributes[$parameter] = $value;
662                                                         xml::add_element($doc, $entry, "link", "", $attributes);
663                                                 }
664                                         }
665                                 } else {
666                                         $attributes = array("rel" => "alternate", "type" => "text/html", "href" => $r->link);
667                                         xml::add_element($doc, $entry, "link", "", $attributes);
668                                 }
669                         }
670                         if($r->content)
671                                 xml::add_element($doc, $entry, "content", bbcode($r->content), array("type" => "html"));
672
673                         return $entry;
674                 }
675
676                 return false;
677         }
678
679         /**
680          * @brief Adds the elements for attachments
681          *
682          * @param object $doc XML document
683          * @param object $root XML root
684          * @param array $item Item element
685          *
686          * @return object XML attachment object
687          */
688         private static function get_attachment($doc, $root, $item) {
689                 $arr = explode('[/attach],',$item['attach']);
690                 if(count($arr)) {
691                         foreach($arr as $r) {
692                                 $matches = false;
693                                 $cnt = preg_match('|\[attach\]href=\"(.*?)\" length=\"(.*?)\" type=\"(.*?)\" title=\"(.*?)\"|',$r,$matches);
694                                 if($cnt) {
695                                         $attributes = array("rel" => "enclosure",
696                                                         "href" => $matches[1],
697                                                         "type" => $matches[3]);
698
699                                         if(intval($matches[2]))
700                                                 $attributes["length"] = intval($matches[2]);
701
702                                         if(trim($matches[4]) != "")
703                                                 $attributes["title"] = trim($matches[4]);
704
705                                         xml::add_element($doc, $root, "link", "", $attributes);
706                                 }
707                         }
708                 }
709         }
710
711         /**
712          * @brief Adds the "entry" elements for the DFRN protocol
713          *
714          * @param object $doc XML document
715          * @param string $type "text" or "html"
716          * @param array $item Item element
717          * @param array $owner Owner record
718          * @param bool $comment Trigger the sending of the "comment" element
719          * @param int $cid Contact ID of the recipient
720          *
721          * @return object XML entry object
722          */
723         private static function entry($doc, $type, $item, $owner, $comment = false, $cid = 0) {
724
725                 $mentioned = array();
726
727                 if(!$item['parent'])
728                         return;
729
730                 if($item['deleted']) {
731                         $attributes = array("ref" => $item['uri'], "when" => datetime_convert('UTC','UTC',$item['edited'] . '+00:00',ATOM_TIME));
732                         return xml::create_element($doc, "at:deleted-entry", "", $attributes);
733                 }
734
735                 $entry = $doc->createElement("entry");
736
737                 if($item['allow_cid'] || $item['allow_gid'] || $item['deny_cid'] || $item['deny_gid'])
738                         $body = fix_private_photos($item['body'],$owner['uid'],$item,$cid);
739                 else
740                         $body = $item['body'];
741
742                 // Remove the abstract element. It is only locally important.
743                 $body = remove_abstract($body);
744
745                 if ($type == 'html') {
746                         $htmlbody = $body;
747
748                         if ($item['title'] != "")
749                                 $htmlbody = "[b]".$item['title']."[/b]\n\n".$htmlbody;
750
751                         $htmlbody = bbcode($htmlbody, false, false, 7);
752                 }
753
754                 $author = self::add_entry_author($doc, "author", $item["author-link"], $item);
755                 $entry->appendChild($author);
756
757                 $dfrnowner = self::add_entry_author($doc, "dfrn:owner", $item["owner-link"], $item);
758                 $entry->appendChild($dfrnowner);
759
760                 if(($item['parent'] != $item['id']) || ($item['parent-uri'] !== $item['uri']) || (($item['thr-parent'] !== '') && ($item['thr-parent'] !== $item['uri']))) {
761                         $parent = q("SELECT `guid` FROM `item` WHERE `id` = %d", intval($item["parent"]));
762                         $parent_item = (($item['thr-parent']) ? $item['thr-parent'] : $item['parent-uri']);
763                         $attributes = array("ref" => $parent_item, "type" => "text/html",
764                                                 "href" => app::get_baseurl().'/display/'.$parent[0]['guid'],
765                                                 "dfrn:diaspora_guid" => $parent[0]['guid']);
766                         xml::add_element($doc, $entry, "thr:in-reply-to", "", $attributes);
767                 }
768
769                 xml::add_element($doc, $entry, "id", $item["uri"]);
770                 xml::add_element($doc, $entry, "title", $item["title"]);
771
772                 xml::add_element($doc, $entry, "published", datetime_convert("UTC","UTC",$item["created"]."+00:00",ATOM_TIME));
773                 xml::add_element($doc, $entry, "updated", datetime_convert("UTC","UTC",$item["edited"]."+00:00",ATOM_TIME));
774
775                 // "dfrn:env" is used to read the content
776                 xml::add_element($doc, $entry, "dfrn:env", base64url_encode($body, true));
777
778                 // The "content" field is not read by the receiver. We could remove it when the type is "text"
779                 // We keep it at the moment, maybe there is some old version that doesn't read "dfrn:env"
780                 xml::add_element($doc, $entry, "content", (($type == 'html') ? $htmlbody : $body), array("type" => $type));
781
782                 // We save this value in "plink". Maybe we should read it from there as well?
783                 xml::add_element($doc, $entry, "link", "", array("rel" => "alternate", "type" => "text/html",
784                                                                 "href" => app::get_baseurl()."/display/".$item["guid"]));
785
786                 // "comment-allow" is some old fashioned stuff for old Friendica versions.
787                 // It is included in the rewritten code for completeness
788                 if ($comment)
789                         xml::add_element($doc, $entry, "dfrn:comment-allow", intval($item['last-child']));
790
791                 if($item['location'])
792                         xml::add_element($doc, $entry, "dfrn:location", $item['location']);
793
794                 if($item['coord'])
795                         xml::add_element($doc, $entry, "georss:point", $item['coord']);
796
797                 if(($item['private']) || strlen($item['allow_cid']) || strlen($item['allow_gid']) || strlen($item['deny_cid']) || strlen($item['deny_gid']))
798                         xml::add_element($doc, $entry, "dfrn:private", (($item['private']) ? $item['private'] : 1));
799
800                 if($item['extid'])
801                         xml::add_element($doc, $entry, "dfrn:extid", $item['extid']);
802
803                 if($item['bookmark'])
804                         xml::add_element($doc, $entry, "dfrn:bookmark", "true");
805
806                 if($item['app'])
807                         xml::add_element($doc, $entry, "statusnet:notice_info", "", array("local_id" => $item['id'], "source" => $item['app']));
808
809                 xml::add_element($doc, $entry, "dfrn:diaspora_guid", $item["guid"]);
810
811                 // The signed text contains the content in Markdown, the sender handle and the signatur for the content
812                 // It is needed for relayed comments to Diaspora.
813                 if($item['signed_text']) {
814                         $sign = base64_encode(json_encode(array('signed_text' => $item['signed_text'],'signature' => $item['signature'],'signer' => $item['signer'])));
815                         xml::add_element($doc, $entry, "dfrn:diaspora_signature", $sign);
816                 }
817
818                 xml::add_element($doc, $entry, "activity:verb", construct_verb($item));
819
820                 if ($item['object-type'] != "")
821                         xml::add_element($doc, $entry, "activity:object-type", $item['object-type']);
822                 elseif ($item['id'] == $item['parent'])
823                         xml::add_element($doc, $entry, "activity:object-type", ACTIVITY_OBJ_NOTE);
824                 else
825                         xml::add_element($doc, $entry, "activity:object-type", ACTIVITY_OBJ_COMMENT);
826
827                 $actobj = self::create_activity($doc, "activity:object", $item['object']);
828                 if ($actobj)
829                         $entry->appendChild($actobj);
830
831                 $actarg = self::create_activity($doc, "activity:target", $item['target']);
832                 if ($actarg)
833                         $entry->appendChild($actarg);
834
835                 $tags = item_getfeedtags($item);
836
837                 if(count($tags)) {
838                         foreach($tags as $t)
839                                 if (($type != 'html') OR ($t[0] != "@"))
840                                         xml::add_element($doc, $entry, "category", "", array("scheme" => "X-DFRN:".$t[0].":".$t[1], "term" => $t[2]));
841                 }
842
843                 if(count($tags))
844                         foreach($tags as $t)
845                                 if ($t[0] == "@")
846                                         $mentioned[$t[1]] = $t[1];
847
848                 foreach ($mentioned AS $mention) {
849                         $r = q("SELECT `forum`, `prv` FROM `contact` WHERE `uid` = %d AND `nurl` = '%s'",
850                                 intval($owner["uid"]),
851                                 dbesc(normalise_link($mention)));
852                         if ($r[0]["forum"] OR $r[0]["prv"])
853                                 xml::add_element($doc, $entry, "link", "", array("rel" => "mentioned",
854                                                                                         "ostatus:object-type" => ACTIVITY_OBJ_GROUP,
855                                                                                         "href" => $mention));
856                         else
857                                 xml::add_element($doc, $entry, "link", "", array("rel" => "mentioned",
858                                                                                         "ostatus:object-type" => ACTIVITY_OBJ_PERSON,
859                                                                                         "href" => $mention));
860                 }
861
862                 self::get_attachment($doc, $entry, $item);
863
864                 return $entry;
865         }
866
867         /**
868          * @brief encrypts data via AES
869          *
870          * @param string $data The data that is to be encrypted
871          * @param string $key The AES key
872          *
873          * @return string encrypted data
874          */
875         private static function aes_encrypt($data, $key) {
876                 return openssl_encrypt($data, 'aes-128-ecb', $key, OPENSSL_RAW_DATA);
877         }
878
879         /**
880          * @brief decrypts data via AES
881          *
882          * @param string $encrypted The encrypted data
883          * @param string $key The AES key
884          *
885          * @return string decrypted data
886          */
887         public static function aes_decrypt($encrypted, $key) {
888                 return openssl_decrypt($encrypted, 'aes-128-ecb', $key, OPENSSL_RAW_DATA);
889         }
890
891         /**
892          * @brief Delivers the atom content to the contacts
893          *
894          * @param array $owner Owner record
895          * @param array $contactr Contact record of the receiver
896          * @param string $atom Content that will be transmitted
897          * @param bool $dissolve (to be documented)
898          *
899          * @return int Deliver status. -1 means an error.
900          */
901         public static function deliver($owner,$contact,$atom, $dissolve = false) {
902
903                 $a = get_app();
904
905                 $idtosend = $orig_id = (($contact['dfrn-id']) ? $contact['dfrn-id'] : $contact['issued-id']);
906
907                 if($contact['duplex'] && $contact['dfrn-id'])
908                         $idtosend = '0:' . $orig_id;
909                 if($contact['duplex'] && $contact['issued-id'])
910                         $idtosend = '1:' . $orig_id;
911
912
913                 $rino = get_config('system','rino_encrypt');
914                 $rino = intval($rino);
915
916                 logger("Local rino version: ". $rino, LOGGER_DEBUG);
917
918                 $ssl_val = intval(get_config('system','ssl_policy'));
919                 $ssl_policy = '';
920
921                 switch($ssl_val){
922                         case SSL_POLICY_FULL:
923                                 $ssl_policy = 'full';
924                                 break;
925                         case SSL_POLICY_SELFSIGN:
926                                 $ssl_policy = 'self';
927                                 break;
928                         case SSL_POLICY_NONE:
929                         default:
930                                 $ssl_policy = 'none';
931                                 break;
932                 }
933
934                 $url = $contact['notify'] . '&dfrn_id=' . $idtosend . '&dfrn_version=' . DFRN_PROTOCOL_VERSION . (($rino) ? '&rino='.$rino : '');
935
936                 logger('dfrn_deliver: ' . $url);
937
938                 $ret = z_fetch_url($url);
939
940                 if ($ret['errno'] == CURLE_OPERATION_TIMEDOUT) {
941                         return -2; // timed out
942                 }
943
944                 $xml = $ret['body'];
945
946                 $curl_stat = $a->get_curl_code();
947                 if (!$curl_stat) {
948                         return -3; // timed out
949                 }
950
951                 logger('dfrn_deliver: ' . $xml, LOGGER_DATA);
952
953                 if(! $xml)
954                         return 3;
955
956                 if(strpos($xml,'<?xml') === false) {
957                         logger('dfrn_deliver: no valid XML returned');
958                         logger('dfrn_deliver: returned XML: ' . $xml, LOGGER_DATA);
959                         return 3;
960                 }
961
962                 $res = parse_xml_string($xml);
963
964                 if((intval($res->status) != 0) || (! strlen($res->challenge)) || (! strlen($res->dfrn_id)))
965                         return (($res->status) ? $res->status : 3);
966
967                 $postvars     = array();
968                 $sent_dfrn_id = hex2bin((string) $res->dfrn_id);
969                 $challenge    = hex2bin((string) $res->challenge);
970                 $perm         = (($res->perm) ? $res->perm : null);
971                 $dfrn_version = (float) (($res->dfrn_version) ? $res->dfrn_version : 2.0);
972                 $rino_remote_version = intval($res->rino);
973                 $page         = (($owner['page-flags'] == PAGE_COMMUNITY) ? 1 : 0);
974
975                 logger("Remote rino version: ".$rino_remote_version." for ".$contact["url"], LOGGER_DEBUG);
976
977                 if($owner['page-flags'] == PAGE_PRVGROUP)
978                         $page = 2;
979
980                 $final_dfrn_id = '';
981
982                 if($perm) {
983                         if((($perm == 'rw') && (! intval($contact['writable'])))
984                                 || (($perm == 'r') && (intval($contact['writable'])))) {
985                                 q("update contact set writable = %d where id = %d",
986                                         intval(($perm == 'rw') ? 1 : 0),
987                                         intval($contact['id'])
988                                 );
989                                 $contact['writable'] = (string) 1 - intval($contact['writable']);
990                         }
991                 }
992
993                 if(($contact['duplex'] && strlen($contact['pubkey']))
994                         || ($owner['page-flags'] == PAGE_COMMUNITY && strlen($contact['pubkey']))
995                         || ($contact['rel'] == CONTACT_IS_SHARING && strlen($contact['pubkey']))) {
996                         openssl_public_decrypt($sent_dfrn_id,$final_dfrn_id,$contact['pubkey']);
997                         openssl_public_decrypt($challenge,$postvars['challenge'],$contact['pubkey']);
998                 } else {
999                         openssl_private_decrypt($sent_dfrn_id,$final_dfrn_id,$contact['prvkey']);
1000                         openssl_private_decrypt($challenge,$postvars['challenge'],$contact['prvkey']);
1001                 }
1002
1003                 $final_dfrn_id = substr($final_dfrn_id, 0, strpos($final_dfrn_id, '.'));
1004
1005                 if(strpos($final_dfrn_id,':') == 1)
1006                         $final_dfrn_id = substr($final_dfrn_id,2);
1007
1008                 if($final_dfrn_id != $orig_id) {
1009                         logger('dfrn_deliver: wrong dfrn_id.');
1010                         // did not decode properly - cannot trust this site
1011                         return 3;
1012                 }
1013
1014                 $postvars['dfrn_id']      = $idtosend;
1015                 $postvars['dfrn_version'] = DFRN_PROTOCOL_VERSION;
1016                 if($dissolve)
1017                         $postvars['dissolve'] = '1';
1018
1019
1020                 if((($contact['rel']) && ($contact['rel'] != CONTACT_IS_SHARING) && (! $contact['blocked'])) || ($owner['page-flags'] == PAGE_COMMUNITY)) {
1021                         $postvars['data'] = $atom;
1022                         $postvars['perm'] = 'rw';
1023                 } else {
1024                         $postvars['data'] = str_replace('<dfrn:comment-allow>1','<dfrn:comment-allow>0',$atom);
1025                         $postvars['perm'] = 'r';
1026                 }
1027
1028                 $postvars['ssl_policy'] = $ssl_policy;
1029
1030                 if($page)
1031                         $postvars['page'] = $page;
1032
1033
1034                 if($rino>0 && $rino_remote_version>0 && (! $dissolve)) {
1035                         logger('rino version: '. $rino_remote_version);
1036
1037                         switch($rino_remote_version) {
1038                                 case 1:
1039                                         // Deprecated rino version!
1040                                         $key = openssl_random_pseudo_bytes(16);
1041                                         $data = self::aes_encrypt($postvars['data'], $key);
1042                                         break;
1043                                 case 2:
1044                                         // RINO 2 based on php-encryption
1045                                         try {
1046                                                 $key = Crypto::createNewRandomKey();
1047                                         } catch (CryptoTestFailed $ex) {
1048                                                 logger('Cannot safely create a key');
1049                                                 return -4;
1050                                         } catch (CannotPerformOperation $ex) {
1051                                                 logger('Cannot safely create a key');
1052                                                 return -5;
1053                                         }
1054                                         try {
1055                                                 $data = Crypto::encrypt($postvars['data'], $key);
1056                                         } catch (CryptoTestFailed $ex) {
1057                                                 logger('Cannot safely perform encryption');
1058                                                 return -6;
1059                                         } catch (CannotPerformOperation $ex) {
1060                                                 logger('Cannot safely perform encryption');
1061                                                 return -7;
1062                                         }
1063                                         break;
1064                                 default:
1065                                         logger("rino: invalid requested verision '$rino_remote_version'");
1066                                         return -8;
1067                         }
1068
1069                         $postvars['rino'] = $rino_remote_version;
1070                         $postvars['data'] = bin2hex($data);
1071
1072                         #logger('rino: sent key = ' . $key, LOGGER_DEBUG);
1073
1074
1075                         if($dfrn_version >= 2.1) {
1076                                 if(($contact['duplex'] && strlen($contact['pubkey']))
1077                                         || ($owner['page-flags'] == PAGE_COMMUNITY && strlen($contact['pubkey']))
1078                                         || ($contact['rel'] == CONTACT_IS_SHARING && strlen($contact['pubkey'])))
1079
1080                                         openssl_public_encrypt($key,$postvars['key'],$contact['pubkey']);
1081                                 else
1082                                         openssl_private_encrypt($key,$postvars['key'],$contact['prvkey']);
1083
1084                         } else {
1085                                 if(($contact['duplex'] && strlen($contact['prvkey'])) || ($owner['page-flags'] == PAGE_COMMUNITY))
1086                                         openssl_private_encrypt($key,$postvars['key'],$contact['prvkey']);
1087                                 else
1088                                         openssl_public_encrypt($key,$postvars['key'],$contact['pubkey']);
1089
1090                         }
1091
1092                         logger('md5 rawkey ' . md5($postvars['key']));
1093
1094                         $postvars['key'] = bin2hex($postvars['key']);
1095                 }
1096
1097
1098                 logger('dfrn_deliver: ' . "SENDING: " . print_r($postvars,true), LOGGER_DATA);
1099
1100                 $xml = post_url($contact['notify'], $postvars);
1101
1102                 logger('dfrn_deliver: ' . "RECEIVED: " . $xml, LOGGER_DATA);
1103
1104                 $curl_stat = $a->get_curl_code();
1105                 if ((!$curl_stat) || (!strlen($xml))) {
1106                         return -9; // timed out
1107                 }
1108
1109                 if (($curl_stat == 503) && (stristr($a->get_curl_headers(),'retry-after'))) {
1110                         return -10;
1111                 }
1112
1113                 if(strpos($xml,'<?xml') === false) {
1114                         logger('dfrn_deliver: phase 2: no valid XML returned');
1115                         logger('dfrn_deliver: phase 2: returned XML: ' . $xml, LOGGER_DATA);
1116                         return 3;
1117                 }
1118
1119                 if ($contact['term-date'] > NULL_DATE) {
1120                         logger("dfrn_deliver: $url back from the dead - removing mark for death");
1121                         require_once('include/Contact.php');
1122                         unmark_for_death($contact);
1123                 }
1124
1125                 $res = parse_xml_string($xml);
1126
1127                 return $res->status;
1128         }
1129
1130         /**
1131          * @brief Add new birthday event for this person
1132          *
1133          * @param array $contact Contact record
1134          * @param string $birthday Birthday of the contact
1135          *
1136          */
1137         private static function birthday_event($contact, $birthday) {
1138
1139                 // Check for duplicates
1140                 $r = q("SELECT `id` FROM `event` WHERE `uid` = %d AND `cid` = %d AND `start` = '%s' AND `type` = '%s' LIMIT 1",
1141                         intval($contact["uid"]),
1142                         intval($contact["id"]),
1143                         dbesc(datetime_convert("UTC","UTC", $birthday)),
1144                         dbesc("birthday"));
1145
1146                 if (dbm::is_result($r)) {
1147                         return;
1148                 }
1149
1150                 logger("updating birthday: ".$birthday." for contact ".$contact["id"]);
1151
1152                 $bdtext = sprintf(t("%s\'s birthday"), $contact["name"]);
1153                 $bdtext2 = sprintf(t("Happy Birthday %s"), " [url=".$contact["url"]."]".$contact["name"]."[/url]") ;
1154
1155                 $r = q("INSERT INTO `event` (`uid`,`cid`,`created`,`edited`,`start`,`finish`,`summary`,`desc`,`type`)
1156                         VALUES ( %d, %d, '%s', '%s', '%s', '%s', '%s', '%s', '%s') ",
1157                         intval($contact["uid"]),
1158                         intval($contact["id"]),
1159                         dbesc(datetime_convert()),
1160                         dbesc(datetime_convert()),
1161                         dbesc(datetime_convert("UTC","UTC", $birthday)),
1162                         dbesc(datetime_convert("UTC","UTC", $birthday." + 1 day ")),
1163                         dbesc($bdtext),
1164                         dbesc($bdtext2),
1165                         dbesc("birthday")
1166                 );
1167         }
1168
1169         /**
1170          * @brief Fetch the author data from head or entry items
1171          *
1172          * @param object $xpath XPath object
1173          * @param object $context In which context should the data be searched
1174          * @param array $importer Record of the importer user mixed with contact of the content
1175          * @param string $element Element name from which the data is fetched
1176          * @param bool $onlyfetch Should the data only be fetched or should it update the contact record as well
1177          *
1178          * @return Returns an array with relevant data of the author
1179          */
1180         private static function fetchauthor($xpath, $context, $importer, $element, $onlyfetch, $xml = "") {
1181
1182                 $author = array();
1183                 $author["name"] = $xpath->evaluate($element."/atom:name/text()", $context)->item(0)->nodeValue;
1184                 $author["link"] = $xpath->evaluate($element."/atom:uri/text()", $context)->item(0)->nodeValue;
1185
1186                 $r = q("SELECT `id`, `uid`, `url`, `network`, `avatar-date`, `name-date`, `uri-date`, `addr`,
1187                                 `name`, `nick`, `about`, `location`, `keywords`, `xmpp`, `bdyear`, `bd`, `hidden`, `contact-type`
1188                                 FROM `contact` WHERE `uid` = %d AND `nurl` = '%s' AND `network` != '%s'",
1189                         intval($importer["uid"]), dbesc(normalise_link($author["link"])), dbesc(NETWORK_STATUSNET));
1190                 if ($r) {
1191                         $contact = $r[0];
1192                         $author["contact-id"] = $r[0]["id"];
1193                         $author["network"] = $r[0]["network"];
1194                 } else {
1195                         if (!$onlyfetch)
1196                                 logger("Contact ".$author["link"]." wasn't found for user ".$importer["uid"]." XML: ".$xml, LOGGER_DEBUG);
1197
1198                         $author["contact-id"] = $importer["id"];
1199                         $author["network"] = $importer["network"];
1200                         $onlyfetch = true;
1201                 }
1202
1203                 // Until now we aren't serving different sizes - but maybe later
1204                 $avatarlist = array();
1205                 /// @todo check if "avatar" or "photo" would be the best field in the specification
1206                 $avatars = $xpath->query($element."/atom:link[@rel='avatar']", $context);
1207                 foreach($avatars AS $avatar) {
1208                         $href = "";
1209                         $width = 0;
1210                         foreach($avatar->attributes AS $attributes) {
1211                                 if ($attributes->name == "href")
1212                                         $href = $attributes->textContent;
1213                                 if ($attributes->name == "width")
1214                                         $width = $attributes->textContent;
1215                                 if ($attributes->name == "updated")
1216                                         $contact["avatar-date"] = $attributes->textContent;
1217                         }
1218                         if (($width > 0) AND ($href != ""))
1219                                 $avatarlist[$width] = $href;
1220                 }
1221                 if (count($avatarlist) > 0) {
1222                         krsort($avatarlist);
1223                         $author["avatar"] = current($avatarlist);
1224                 }
1225
1226                 if ($r AND !$onlyfetch) {
1227                         logger("Check if contact details for contact ".$r[0]["id"]." (".$r[0]["nick"].") have to be updated.", LOGGER_DEBUG);
1228
1229                         $poco = array("url" => $contact["url"]);
1230
1231                         // When was the last change to name or uri?
1232                         $name_element = $xpath->query($element."/atom:name", $context)->item(0);
1233                         foreach($name_element->attributes AS $attributes)
1234                                 if ($attributes->name == "updated")
1235                                         $poco["name-date"] = $attributes->textContent;
1236
1237                         $link_element = $xpath->query($element."/atom:link", $context)->item(0);
1238                         foreach($link_element->attributes AS $attributes)
1239                                 if ($attributes->name == "updated")
1240                                         $poco["uri-date"] = $attributes->textContent;
1241
1242                         // Update contact data
1243                         $value = $xpath->evaluate($element."/dfrn:handle/text()", $context)->item(0)->nodeValue;
1244                         if ($value != "")
1245                                 $poco["addr"] = $value;
1246
1247                         $value = $xpath->evaluate($element."/poco:displayName/text()", $context)->item(0)->nodeValue;
1248                         if ($value != "")
1249                                 $poco["name"] = $value;
1250
1251                         $value = $xpath->evaluate($element."/poco:preferredUsername/text()", $context)->item(0)->nodeValue;
1252                         if ($value != "")
1253                                 $poco["nick"] = $value;
1254
1255                         $value = $xpath->evaluate($element."/poco:note/text()", $context)->item(0)->nodeValue;
1256                         if ($value != "")
1257                                 $poco["about"] = $value;
1258
1259                         $value = $xpath->evaluate($element."/poco:address/poco:formatted/text()", $context)->item(0)->nodeValue;
1260                         if ($value != "")
1261                                 $poco["location"] = $value;
1262
1263                         /// @todo Only search for elements with "poco:type" = "xmpp"
1264                         $value = $xpath->evaluate($element."/poco:ims/poco:value/text()", $context)->item(0)->nodeValue;
1265                         if ($value != "")
1266                                 $poco["xmpp"] = $value;
1267
1268                         /// @todo Add support for the following fields that we don't support by now in the contact table:
1269                         /// - poco:utcOffset
1270                         /// - poco:urls
1271                         /// - poco:locality
1272                         /// - poco:region
1273                         /// - poco:country
1274
1275                         // If the "hide" element is present then the profile isn't searchable.
1276                         $hide = intval($xpath->evaluate($element."/dfrn:hide/text()", $context)->item(0)->nodeValue == "true");
1277
1278                         logger("Hidden status for contact ".$contact["url"].": ".$hide, LOGGER_DEBUG);
1279
1280                         // If the contact isn't searchable then set the contact to "hidden".
1281                         // Problem: This can be manually overridden by the user.
1282                         if ($hide)
1283                                 $contact["hidden"] = true;
1284
1285                         // Save the keywords into the contact table
1286                         $tags = array();
1287                         $tagelements = $xpath->evaluate($element."/poco:tags/text()", $context);
1288                         foreach($tagelements AS $tag)
1289                                 $tags[$tag->nodeValue] = $tag->nodeValue;
1290
1291                         if (count($tags))
1292                                 $poco["keywords"] = implode(", ", $tags);
1293
1294                         // "dfrn:birthday" contains the birthday converted to UTC
1295                         $old_bdyear = $contact["bdyear"];
1296
1297                         $birthday = $xpath->evaluate($element."/dfrn:birthday/text()", $context)->item(0)->nodeValue;
1298
1299                         if (strtotime($birthday) > time()) {
1300                                 $bd_timestamp = strtotime($birthday);
1301
1302                                 $poco["bdyear"] = date("Y", $bd_timestamp);
1303                         }
1304
1305                         // "poco:birthday" is the birthday in the format "yyyy-mm-dd"
1306                         $value = $xpath->evaluate($element."/poco:birthday/text()", $context)->item(0)->nodeValue;
1307
1308                         if (!in_array($value, array("", "0000-00-00"))) {
1309                                 $bdyear = date("Y");
1310                                 $value = str_replace("0000", $bdyear, $value);
1311
1312                                 if (strtotime($value) < time()) {
1313                                         $value = str_replace($bdyear, $bdyear + 1, $value);
1314                                         $bdyear = $bdyear + 1;
1315                                 }
1316
1317                                 $poco["bd"] = $value;
1318                         }
1319
1320                         $contact = array_merge($contact, $poco);
1321
1322                         if ($old_bdyear != $contact["bdyear"])
1323                                 self::birthday_event($contact, $birthday);
1324
1325                         // Get all field names
1326                         $fields = array();
1327                         foreach ($r[0] AS $field => $data)
1328                                 $fields[$field] = $data;
1329
1330                         unset($fields["id"]);
1331                         unset($fields["uid"]);
1332                         unset($fields["url"]);
1333                         unset($fields["avatar-date"]);
1334                         unset($fields["name-date"]);
1335                         unset($fields["uri-date"]);
1336
1337                         // Update check for this field has to be done differently
1338                         $datefields = array("name-date", "uri-date");
1339                         foreach ($datefields AS $field)
1340                                 if (strtotime($contact[$field]) > strtotime($r[0][$field])) {
1341                                         logger("Difference for contact ".$contact["id"]." in field '".$field."'. New value: '".$contact[$field]."', old value '".$r[0][$field]."'", LOGGER_DEBUG);
1342                                         $update = true;
1343                                 }
1344
1345                         foreach ($fields AS $field => $data)
1346                                 if ($contact[$field] != $r[0][$field]) {
1347                                         logger("Difference for contact ".$contact["id"]." in field '".$field."'. New value: '".$contact[$field]."', old value '".$r[0][$field]."'", LOGGER_DEBUG);
1348                                         $update = true;
1349                                 }
1350
1351                         if ($update) {
1352                                 logger("Update contact data for contact ".$contact["id"]." (".$contact["nick"].")", LOGGER_DEBUG);
1353
1354                                 q("UPDATE `contact` SET `name` = '%s', `nick` = '%s', `about` = '%s', `location` = '%s',
1355                                         `addr` = '%s', `keywords` = '%s', `bdyear` = '%s', `bd` = '%s', `hidden` = %d,
1356                                         `xmpp` = '%s', `name-date`  = '%s', `uri-date` = '%s'
1357                                         WHERE `id` = %d AND `network` = '%s'",
1358                                         dbesc($contact["name"]), dbesc($contact["nick"]), dbesc($contact["about"]), dbesc($contact["location"]),
1359                                         dbesc($contact["addr"]), dbesc($contact["keywords"]), dbesc($contact["bdyear"]),
1360                                         dbesc($contact["bd"]), intval($contact["hidden"]), dbesc($contact["xmpp"]),
1361                                         dbesc($contact["name-date"]), dbesc($contact["uri-date"]),
1362                                         intval($contact["id"]), dbesc($contact["network"]));
1363                         }
1364
1365                         update_contact_avatar($author["avatar"], $importer["uid"], $contact["id"],
1366                                                 (strtotime($contact["avatar-date"]) > strtotime($r[0]["avatar-date"])));
1367
1368                         // The generation is a sign for the reliability of the provided data.
1369                         // It is used in the socgraph.php to prevent that old contact data
1370                         // that was relayed over several servers can overwrite contact
1371                         // data that we received directly.
1372
1373                         $poco["generation"] = 2;
1374                         $poco["photo"] = $author["avatar"];
1375                         $poco["hide"] = $hide;
1376                         $poco["contact-type"] = $contact["contact-type"];
1377                         $gcid = update_gcontact($poco);
1378
1379                         link_gcontact($gcid, $importer["uid"], $contact["id"]);
1380                 }
1381
1382                 return($author);
1383         }
1384
1385         /**
1386          * @brief Transforms activity objects into an XML string
1387          *
1388          * @param object $xpath XPath object
1389          * @param object $activity Activity object
1390          * @param text $element element name
1391          *
1392          * @return string XML string
1393          */
1394         private static function transform_activity($xpath, $activity, $element) {
1395                 if (!is_object($activity))
1396                         return "";
1397
1398                 $obj_doc = new DOMDocument("1.0", "utf-8");
1399                 $obj_doc->formatOutput = true;
1400
1401                 $obj_element = $obj_doc->createElementNS(NAMESPACE_ATOM1, $element);
1402
1403                 $activity_type = $xpath->query("activity:object-type/text()", $activity)->item(0)->nodeValue;
1404                 xml::add_element($obj_doc, $obj_element, "type", $activity_type);
1405
1406                 $id = $xpath->query("atom:id", $activity)->item(0);
1407                 if (is_object($id))
1408                         $obj_element->appendChild($obj_doc->importNode($id, true));
1409
1410                 $title = $xpath->query("atom:title", $activity)->item(0);
1411                 if (is_object($title))
1412                         $obj_element->appendChild($obj_doc->importNode($title, true));
1413
1414                 $links = $xpath->query("atom:link", $activity);
1415                 if (is_object($links))
1416                         foreach ($links AS $link)
1417                                 $obj_element->appendChild($obj_doc->importNode($link, true));
1418
1419                 $content = $xpath->query("atom:content", $activity)->item(0);
1420                 if (is_object($content))
1421                         $obj_element->appendChild($obj_doc->importNode($content, true));
1422
1423                 $obj_doc->appendChild($obj_element);
1424
1425                 $objxml = $obj_doc->saveXML($obj_element);
1426
1427                 /// @todo This isn't totally clean. We should find a way to transform the namespaces
1428                 $objxml = str_replace("<".$element.' xmlns="http://www.w3.org/2005/Atom">', "<".$element.">", $objxml);
1429                 return($objxml);
1430         }
1431
1432         /**
1433          * @brief Processes the mail elements
1434          *
1435          * @param object $xpath XPath object
1436          * @param object $mail mail elements
1437          * @param array $importer Record of the importer user mixed with contact of the content
1438          */
1439         private static function process_mail($xpath, $mail, $importer) {
1440
1441                 logger("Processing mails");
1442
1443                 $msg = array();
1444                 $msg["uid"] = $importer["importer_uid"];
1445                 $msg["from-name"] = $xpath->query("dfrn:sender/dfrn:name/text()", $mail)->item(0)->nodeValue;
1446                 $msg["from-url"] = $xpath->query("dfrn:sender/dfrn:uri/text()", $mail)->item(0)->nodeValue;
1447                 $msg["from-photo"] = $xpath->query("dfrn:sender/dfrn:avatar/text()", $mail)->item(0)->nodeValue;
1448                 $msg["contact-id"] = $importer["id"];
1449                 $msg["uri"] = $xpath->query("dfrn:id/text()", $mail)->item(0)->nodeValue;
1450                 $msg["parent-uri"] = $xpath->query("dfrn:in-reply-to/text()", $mail)->item(0)->nodeValue;
1451                 $msg["created"] = $xpath->query("dfrn:sentdate/text()", $mail)->item(0)->nodeValue;
1452                 $msg["title"] = $xpath->query("dfrn:subject/text()", $mail)->item(0)->nodeValue;
1453                 $msg["body"] = $xpath->query("dfrn:content/text()", $mail)->item(0)->nodeValue;
1454                 $msg["seen"] = 0;
1455                 $msg["replied"] = 0;
1456
1457                 dbm::esc_array($msg, true);
1458
1459                 $r = dbq("INSERT INTO `mail` (`".implode("`, `", array_keys($msg))."`) VALUES (".implode(", ", array_values($msg)).")");
1460
1461                 // send notifications.
1462
1463                 $notif_params = array(
1464                         "type" => NOTIFY_MAIL,
1465                         "notify_flags" => $importer["notify-flags"],
1466                         "language" => $importer["language"],
1467                         "to_name" => $importer["username"],
1468                         "to_email" => $importer["email"],
1469                         "uid" => $importer["importer_uid"],
1470                         "item" => $msg,
1471                         "source_name" => $msg["from-name"],
1472                         "source_link" => $importer["url"],
1473                         "source_photo" => $importer["thumb"],
1474                         "verb" => ACTIVITY_POST,
1475                         "otype" => "mail"
1476                 );
1477
1478                 notification($notif_params);
1479
1480                 logger("Mail is processed, notification was sent.");
1481         }
1482
1483         /**
1484          * @brief Processes the suggestion elements
1485          *
1486          * @param object $xpath XPath object
1487          * @param object $suggestion suggestion elements
1488          * @param array $importer Record of the importer user mixed with contact of the content
1489          */
1490         private static function process_suggestion($xpath, $suggestion, $importer) {
1491                 $a = get_app();
1492
1493                 logger("Processing suggestions");
1494
1495                 $suggest = array();
1496                 $suggest["uid"] = $importer["importer_uid"];
1497                 $suggest["cid"] = $importer["id"];
1498                 $suggest["url"] = $xpath->query("dfrn:url/text()", $suggestion)->item(0)->nodeValue;
1499                 $suggest["name"] = $xpath->query("dfrn:name/text()", $suggestion)->item(0)->nodeValue;
1500                 $suggest["photo"] = $xpath->query("dfrn:photo/text()", $suggestion)->item(0)->nodeValue;
1501                 $suggest["request"] = $xpath->query("dfrn:request/text()", $suggestion)->item(0)->nodeValue;
1502                 $suggest["body"] = $xpath->query("dfrn:note/text()", $suggestion)->item(0)->nodeValue;
1503
1504                 // Does our member already have a friend matching this description?
1505
1506                 $r = q("SELECT `id` FROM `contact` WHERE `name` = '%s' AND `nurl` = '%s' AND `uid` = %d LIMIT 1",
1507                         dbesc($suggest["name"]),
1508                         dbesc(normalise_link($suggest["url"])),
1509                         intval($suggest["uid"])
1510                 );
1511                 if (dbm::is_result($r))
1512                         return false;
1513
1514                 // Do we already have an fcontact record for this person?
1515
1516                 $fid = 0;
1517                 $r = q("SELECT `id` FROM `fcontact` WHERE `url` = '%s' AND `name` = '%s' AND `request` = '%s' LIMIT 1",
1518                         dbesc($suggest["url"]),
1519                         dbesc($suggest["name"]),
1520                         dbesc($suggest["request"])
1521                 );
1522                 if (dbm::is_result($r)) {
1523                         $fid = $r[0]["id"];
1524
1525                         // OK, we do. Do we already have an introduction for this person ?
1526                         $r = q("SELECT `id` FROM `intro` WHERE `uid` = %d AND `fid` = %d LIMIT 1",
1527                                 intval($suggest["uid"]),
1528                                 intval($fid)
1529                         );
1530                         if (dbm::is_result($r))
1531                                 return false;
1532                 }
1533                 if(!$fid)
1534                         $r = q("INSERT INTO `fcontact` (`name`,`url`,`photo`,`request`) VALUES ('%s', '%s', '%s', '%s')",
1535                         dbesc($suggest["name"]),
1536                         dbesc($suggest["url"]),
1537                         dbesc($suggest["photo"]),
1538                         dbesc($suggest["request"])
1539                 );
1540                 $r = q("SELECT `id` FROM `fcontact` WHERE `url` = '%s' AND `name` = '%s' AND `request` = '%s' LIMIT 1",
1541                         dbesc($suggest["url"]),
1542                         dbesc($suggest["name"]),
1543                         dbesc($suggest["request"])
1544                 );
1545                 if (dbm::is_result($r))
1546                         $fid = $r[0]["id"];
1547                 else
1548                         // database record did not get created. Quietly give up.
1549                         return false;
1550
1551
1552                 $hash = random_string();
1553
1554                 $r = q("INSERT INTO `intro` (`uid`, `fid`, `contact-id`, `note`, `hash`, `datetime`, `blocked`)
1555                         VALUES(%d, %d, %d, '%s', '%s', '%s', %d)",
1556                         intval($suggest["uid"]),
1557                         intval($fid),
1558                         intval($suggest["cid"]),
1559                         dbesc($suggest["body"]),
1560                         dbesc($hash),
1561                         dbesc(datetime_convert()),
1562                         intval(0)
1563                 );
1564
1565                 notification(array(
1566                         "type"         => NOTIFY_SUGGEST,
1567                         "notify_flags" => $importer["notify-flags"],
1568                         "language"     => $importer["language"],
1569                         "to_name"      => $importer["username"],
1570                         "to_email"     => $importer["email"],
1571                         "uid"          => $importer["importer_uid"],
1572                         "item"         => $suggest,
1573                         "link"         => App::get_baseurl()."/notifications/intros",
1574                         "source_name"  => $importer["name"],
1575                         "source_link"  => $importer["url"],
1576                         "source_photo" => $importer["photo"],
1577                         "verb"         => ACTIVITY_REQ_FRIEND,
1578                         "otype"        => "intro"
1579                 ));
1580
1581                 return true;
1582
1583         }
1584
1585         /**
1586          * @brief Processes the relocation elements
1587          *
1588          * @param object $xpath XPath object
1589          * @param object $relocation relocation elements
1590          * @param array $importer Record of the importer user mixed with contact of the content
1591          */
1592         private static function process_relocation($xpath, $relocation, $importer) {
1593
1594                 logger("Processing relocations");
1595
1596                 $relocate = array();
1597                 $relocate["uid"] = $importer["importer_uid"];
1598                 $relocate["cid"] = $importer["id"];
1599                 $relocate["url"] = $xpath->query("dfrn:url/text()", $relocation)->item(0)->nodeValue;
1600                 $relocate["addr"] = $xpath->query("dfrn:addr/text()", $relocation)->item(0)->nodeValue;
1601                 $relocate["name"] = $xpath->query("dfrn:name/text()", $relocation)->item(0)->nodeValue;
1602                 $relocate["avatar"] = $xpath->query("dfrn:avatar/text()", $relocation)->item(0)->nodeValue;
1603                 $relocate["photo"] = $xpath->query("dfrn:photo/text()", $relocation)->item(0)->nodeValue;
1604                 $relocate["thumb"] = $xpath->query("dfrn:thumb/text()", $relocation)->item(0)->nodeValue;
1605                 $relocate["micro"] = $xpath->query("dfrn:micro/text()", $relocation)->item(0)->nodeValue;
1606                 $relocate["request"] = $xpath->query("dfrn:request/text()", $relocation)->item(0)->nodeValue;
1607                 $relocate["confirm"] = $xpath->query("dfrn:confirm/text()", $relocation)->item(0)->nodeValue;
1608                 $relocate["notify"] = $xpath->query("dfrn:notify/text()", $relocation)->item(0)->nodeValue;
1609                 $relocate["poll"] = $xpath->query("dfrn:poll/text()", $relocation)->item(0)->nodeValue;
1610                 $relocate["sitepubkey"] = $xpath->query("dfrn:sitepubkey/text()", $relocation)->item(0)->nodeValue;
1611
1612                 if (($relocate["avatar"] == "") AND ($relocate["photo"] != ""))
1613                         $relocate["avatar"] = $relocate["photo"];
1614
1615                 if ($relocate["addr"] == "")
1616                         $relocate["addr"] = preg_replace("=(https?://)(.*)/profile/(.*)=ism", "$3@$2", $relocate["url"]);
1617
1618                 // update contact
1619                 $r = q("SELECT `photo`, `url` FROM `contact` WHERE `id` = %d AND `uid` = %d;",
1620                         intval($importer["id"]),
1621                         intval($importer["importer_uid"]));
1622                 if (!$r)
1623                         return false;
1624
1625                 $old = $r[0];
1626
1627                 // Update the gcontact entry
1628                 $relocate["server_url"] = preg_replace("=(https?://)(.*)/profile/(.*)=ism", "$1$2", $relocate["url"]);
1629
1630                 $x = q("UPDATE `gcontact` SET
1631                                         `name` = '%s',
1632                                         `photo` = '%s',
1633                                         `url` = '%s',
1634                                         `nurl` = '%s',
1635                                         `addr` = '%s',
1636                                         `connect` = '%s',
1637                                         `notify` = '%s',
1638                                         `server_url` = '%s'
1639                         WHERE `nurl` = '%s';",
1640                                         dbesc($relocate["name"]),
1641                                         dbesc($relocate["avatar"]),
1642                                         dbesc($relocate["url"]),
1643                                         dbesc(normalise_link($relocate["url"])),
1644                                         dbesc($relocate["addr"]),
1645                                         dbesc($relocate["addr"]),
1646                                         dbesc($relocate["notify"]),
1647                                         dbesc($relocate["server_url"]),
1648                                         dbesc(normalise_link($old["url"])));
1649
1650                 // Update the contact table. We try to find every entry.
1651                 $x = q("UPDATE `contact` SET
1652                                         `name` = '%s',
1653                                         `avatar` = '%s',
1654                                         `url` = '%s',
1655                                         `nurl` = '%s',
1656                                         `addr` = '%s',
1657                                         `request` = '%s',
1658                                         `confirm` = '%s',
1659                                         `notify` = '%s',
1660                                         `poll` = '%s',
1661                                         `site-pubkey` = '%s'
1662                         WHERE (`id` = %d AND `uid` = %d) OR (`nurl` = '%s');",
1663                                         dbesc($relocate["name"]),
1664                                         dbesc($relocate["avatar"]),
1665                                         dbesc($relocate["url"]),
1666                                         dbesc(normalise_link($relocate["url"])),
1667                                         dbesc($relocate["addr"]),
1668                                         dbesc($relocate["request"]),
1669                                         dbesc($relocate["confirm"]),
1670                                         dbesc($relocate["notify"]),
1671                                         dbesc($relocate["poll"]),
1672                                         dbesc($relocate["sitepubkey"]),
1673                                         intval($importer["id"]),
1674                                         intval($importer["importer_uid"]),
1675                                         dbesc(normalise_link($old["url"])));
1676
1677                 update_contact_avatar($relocate["avatar"], $importer["importer_uid"], $importer["id"], true);
1678
1679                 if ($x === false)
1680                         return false;
1681
1682                 // update items
1683                 /// @todo This is an extreme performance killer
1684                 $fields = array(
1685                         'owner-link' => array($old["url"], $relocate["url"]),
1686                         'author-link' => array($old["url"], $relocate["url"]),
1687                         //'owner-avatar' => array($old["photo"], $relocate["photo"]),
1688                         //'author-avatar' => array($old["photo"], $relocate["photo"]),
1689                         );
1690                 foreach ($fields as $n=>$f) {
1691                         $r = q("SELECT `id` FROM `item` WHERE `%s` = '%s' AND `uid` = %d LIMIT 1",
1692                                         $n, dbesc($f[0]),
1693                                         intval($importer["importer_uid"]));
1694
1695                         if ($r) {
1696                                 $x = q("UPDATE `item` SET `%s` = '%s' WHERE `%s` = '%s' AND `uid` = %d",
1697                                                 $n, dbesc($f[1]),
1698                                                 $n, dbesc($f[0]),
1699                                                 intval($importer["importer_uid"]));
1700                                         if ($x === false)
1701                                                 return false;
1702                         }
1703                 }
1704
1705                 /// @TODO
1706                 /// merge with current record, current contents have priority
1707                 /// update record, set url-updated
1708                 /// update profile photos
1709                 /// schedule a scan?
1710                 return true;
1711         }
1712
1713         /**
1714          * @brief Updates an item
1715          *
1716          * @param array $current the current item record
1717          * @param array $item the new item record
1718          * @param array $importer Record of the importer user mixed with contact of the content
1719          * @param int $entrytype Is it a toplevel entry, a comment or a relayed comment?
1720          */
1721         private static function update_content($current, $item, $importer, $entrytype) {
1722                 $changed = false;
1723
1724                 if (edited_timestamp_is_newer($current, $item)) {
1725
1726                         // do not accept (ignore) an earlier edit than one we currently have.
1727                         if(datetime_convert("UTC","UTC",$item["edited"]) < $current["edited"])
1728                                 return(false);
1729
1730                         $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
1731                                 dbesc($item["title"]),
1732                                 dbesc($item["body"]),
1733                                 dbesc($item["tag"]),
1734                                 dbesc(datetime_convert("UTC","UTC",$item["edited"])),
1735                                 dbesc(datetime_convert()),
1736                                 dbesc($item["uri"]),
1737                                 intval($importer["importer_uid"])
1738                         );
1739                         create_tags_from_itemuri($item["uri"], $importer["importer_uid"]);
1740                         update_thread_uri($item["uri"], $importer["importer_uid"]);
1741
1742                         $changed = true;
1743
1744                         if ($entrytype == DFRN_REPLY_RC)
1745                                 proc_run(PRIORITY_HIGH, "include/notifier.php","comment-import", $current["id"]);
1746                 }
1747
1748                 // update last-child if it changes
1749                 if($item["last-child"] AND ($item["last-child"] != $current["last-child"])) {
1750                         $r = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d",
1751                                 dbesc(datetime_convert()),
1752                                 dbesc($item["parent-uri"]),
1753                                 intval($importer["importer_uid"])
1754                         );
1755                         $r = q("UPDATE `item` SET `last-child` = %d , `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
1756                                 intval($item["last-child"]),
1757                                 dbesc(datetime_convert()),
1758                                 dbesc($item["uri"]),
1759                                 intval($importer["importer_uid"])
1760                         );
1761                 }
1762                 return $changed;
1763         }
1764
1765         /**
1766          * @brief Detects the entry type of the item
1767          *
1768          * @param array $importer Record of the importer user mixed with contact of the content
1769          * @param array $item the new item record
1770          *
1771          * @return int Is it a toplevel entry, a comment or a relayed comment?
1772          */
1773         private static function get_entry_type($importer, $item) {
1774                 if ($item["parent-uri"] != $item["uri"]) {
1775                         $community = false;
1776
1777                         if($importer["page-flags"] == PAGE_COMMUNITY || $importer["page-flags"] == PAGE_PRVGROUP) {
1778                                 $sql_extra = "";
1779                                 $community = true;
1780                                 logger("possible community action");
1781                         } else
1782                                 $sql_extra = " AND `contact`.`self` AND `item`.`wall` ";
1783
1784                         // was the top-level post for this action written by somebody on this site?
1785                         // Specifically, the recipient?
1786
1787                         $is_a_remote_action = false;
1788
1789                         $r = q("SELECT `item`.`parent-uri` FROM `item`
1790                                 WHERE `item`.`uri` = '%s'
1791                                 LIMIT 1",
1792                                 dbesc($item["parent-uri"])
1793                         );
1794                         if (dbm::is_result($r)) {
1795                                 $r = q("SELECT `item`.`forum_mode`, `item`.`wall` FROM `item`
1796                                         INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
1797                                         WHERE `item`.`uri` = '%s' AND (`item`.`parent-uri` = '%s' OR `item`.`thr-parent` = '%s')
1798                                         AND `item`.`uid` = %d
1799                                         $sql_extra
1800                                         LIMIT 1",
1801                                         dbesc($r[0]["parent-uri"]),
1802                                         dbesc($r[0]["parent-uri"]),
1803                                         dbesc($r[0]["parent-uri"]),
1804                                         intval($importer["importer_uid"])
1805                                 );
1806                                 if (dbm::is_result($r))
1807                                         $is_a_remote_action = true;
1808                         }
1809
1810                         // Does this have the characteristics of a community or private group action?
1811                         // If it's an action to a wall post on a community/prvgroup page it's a
1812                         // valid community action. Also forum_mode makes it valid for sure.
1813                         // If neither, it's not.
1814
1815                         if($is_a_remote_action && $community) {
1816                                 if((!$r[0]["forum_mode"]) && (!$r[0]["wall"])) {
1817                                         $is_a_remote_action = false;
1818                                         logger("not a community action");
1819                                 }
1820                         }
1821
1822                         if ($is_a_remote_action)
1823                                 return DFRN_REPLY_RC;
1824                         else
1825                                 return DFRN_REPLY;
1826
1827                 } else
1828                         return DFRN_TOP_LEVEL;
1829
1830         }
1831
1832         /**
1833          * @brief Send a "poke"
1834          *
1835          * @param array $item the new item record
1836          * @param array $importer Record of the importer user mixed with contact of the content
1837          * @param int $posted_id The record number of item record that was just posted
1838          */
1839         private static function do_poke($item, $importer, $posted_id) {
1840                 $verb = urldecode(substr($item["verb"],strpos($item["verb"], "#")+1));
1841                 if(!$verb)
1842                         return;
1843                 $xo = parse_xml_string($item["object"],false);
1844
1845                 if(($xo->type == ACTIVITY_OBJ_PERSON) && ($xo->id)) {
1846
1847                         // somebody was poked/prodded. Was it me?
1848                         foreach($xo->link as $l) {
1849                                 $atts = $l->attributes();
1850                                 switch($atts["rel"]) {
1851                                         case "alternate":
1852                                                 $Blink = $atts["href"];
1853                                                 break;
1854                                         default:
1855                                                 break;
1856                                 }
1857                         }
1858
1859                         if($Blink && link_compare($Blink,App::get_baseurl()."/profile/".$importer["nickname"])) {
1860
1861                                 // send a notification
1862                                 notification(array(
1863                                         "type"         => NOTIFY_POKE,
1864                                         "notify_flags" => $importer["notify-flags"],
1865                                         "language"     => $importer["language"],
1866                                         "to_name"      => $importer["username"],
1867                                         "to_email"     => $importer["email"],
1868                                         "uid"          => $importer["importer_uid"],
1869                                         "item"         => $item,
1870                                         "link"         => App::get_baseurl()."/display/".urlencode(get_item_guid($posted_id)),
1871                                         "source_name"  => stripslashes($item["author-name"]),
1872                                         "source_link"  => $item["author-link"],
1873                                         "source_photo" => ((link_compare($item["author-link"],$importer["url"]))
1874                                                 ? $importer["thumb"] : $item["author-avatar"]),
1875                                         "verb"         => $item["verb"],
1876                                         "otype"        => "person",
1877                                         "activity"     => $verb,
1878                                         "parent"       => $item["parent"]
1879                                 ));
1880                         }
1881                 }
1882         }
1883
1884         /**
1885          * @brief Processes several actions, depending on the verb
1886          *
1887          * @param int $entrytype Is it a toplevel entry, a comment or a relayed comment?
1888          * @param array $importer Record of the importer user mixed with contact of the content
1889          * @param array $item the new item record
1890          * @param bool $is_like Is the verb a "like"?
1891          *
1892          * @return bool Should the processing of the entries be continued?
1893          */
1894         private static function process_verbs($entrytype, $importer, &$item, &$is_like) {
1895
1896                 logger("Process verb ".$item["verb"]." and object-type ".$item["object-type"]." for entrytype ".$entrytype, LOGGER_DEBUG);
1897
1898                 if (($entrytype == DFRN_TOP_LEVEL)) {
1899                         // The filling of the the "contact" variable is done for legcy reasons
1900                         // The functions below are partly used by ostatus.php as well - where we have this variable
1901                         $r = q("SELECT * FROM `contact` WHERE `id` = %d", intval($importer["id"]));
1902                         $contact = $r[0];
1903                         $nickname = $contact["nick"];
1904
1905                         // Big question: Do we need these functions? They were part of the "consume_feed" function.
1906                         // This function once was responsible for DFRN and OStatus.
1907                         if(activity_match($item["verb"],ACTIVITY_FOLLOW)) {
1908                                 logger("New follower");
1909                                 new_follower($importer, $contact, $item, $nickname);
1910                                 return false;
1911                         }
1912                         if(activity_match($item["verb"],ACTIVITY_UNFOLLOW))  {
1913                                 logger("Lost follower");
1914                                 lose_follower($importer, $contact, $item);
1915                                 return false;
1916                         }
1917                         if(activity_match($item["verb"],ACTIVITY_REQ_FRIEND)) {
1918                                 logger("New friend request");
1919                                 new_follower($importer, $contact, $item, $nickname, true);
1920                                 return false;
1921                         }
1922                         if(activity_match($item["verb"],ACTIVITY_UNFRIEND))  {
1923                                 logger("Lost sharer");
1924                                 lose_sharer($importer, $contact, $item);
1925                                 return false;
1926                         }
1927                 } else {
1928                         if(($item["verb"] == ACTIVITY_LIKE)
1929                                 || ($item["verb"] == ACTIVITY_DISLIKE)
1930                                 || ($item["verb"] == ACTIVITY_ATTEND)
1931                                 || ($item["verb"] == ACTIVITY_ATTENDNO)
1932                                 || ($item["verb"] == ACTIVITY_ATTENDMAYBE)) {
1933                                 $is_like = true;
1934                                 $item["type"] = "activity";
1935                                 $item["gravity"] = GRAVITY_LIKE;
1936                                 // only one like or dislike per person
1937                                 // splitted into two queries for performance issues
1938                                 $r = q("SELECT `id` FROM `item` WHERE `uid` = %d AND `author-link` = '%s' AND `verb` = '%s' AND `parent-uri` = '%s' AND NOT `deleted` LIMIT 1",
1939                                         intval($item["uid"]),
1940                                         dbesc($item["author-link"]),
1941                                         dbesc($item["verb"]),
1942                                         dbesc($item["parent-uri"])
1943                                 );
1944                                 if (dbm::is_result($r))
1945                                         return false;
1946
1947                                 $r = q("SELECT `id` FROM `item` WHERE `uid` = %d AND `author-link` = '%s' AND `verb` = '%s' AND `thr-parent` = '%s' AND NOT `deleted` LIMIT 1",
1948                                         intval($item["uid"]),
1949                                         dbesc($item["author-link"]),
1950                                         dbesc($item["verb"]),
1951                                         dbesc($item["parent-uri"])
1952                                 );
1953                                 if (dbm::is_result($r))
1954                                         return false;
1955                         } else
1956                                 $is_like = false;
1957
1958                         if(($item["verb"] == ACTIVITY_TAG) && ($item["object-type"] == ACTIVITY_OBJ_TAGTERM)) {
1959
1960                                 $xo = parse_xml_string($item["object"],false);
1961                                 $xt = parse_xml_string($item["target"],false);
1962
1963                                 if($xt->type == ACTIVITY_OBJ_NOTE) {
1964                                         $r = q("SELECT `id`, `tag` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
1965                                                 dbesc($xt->id),
1966                                                 intval($importer["importer_uid"])
1967                                         );
1968
1969                                         if (!dbm::is_result($r))
1970                                                 return false;
1971
1972                                         // extract tag, if not duplicate, add to parent item
1973                                         if($xo->content) {
1974                                                 if(!(stristr($r[0]["tag"],trim($xo->content)))) {
1975                                                         q("UPDATE `item` SET `tag` = '%s' WHERE `id` = %d",
1976                                                                 dbesc($r[0]["tag"] . (strlen($r[0]["tag"]) ? ',' : '') . '#[url=' . $xo->id . ']'. $xo->content . '[/url]'),
1977                                                                 intval($r[0]["id"])
1978                                                         );
1979                                                         create_tags_from_item($r[0]["id"]);
1980                                                 }
1981                                         }
1982                                 }
1983                         }
1984                 }
1985                 return true;
1986         }
1987
1988         /**
1989          * @brief Processes the link elements
1990          *
1991          * @param object $links link elements
1992          * @param array $item the item record
1993          */
1994         private static function parse_links($links, &$item) {
1995                 $rel = "";
1996                 $href = "";
1997                 $type = "";
1998                 $length = "0";
1999                 $title = "";
2000                 foreach ($links AS $link) {
2001                         foreach($link->attributes AS $attributes) {
2002                                 if ($attributes->name == "href")
2003                                         $href = $attributes->textContent;
2004                                 if ($attributes->name == "rel")
2005                                         $rel = $attributes->textContent;
2006                                 if ($attributes->name == "type")
2007                                         $type = $attributes->textContent;
2008                                 if ($attributes->name == "length")
2009                                         $length = $attributes->textContent;
2010                                 if ($attributes->name == "title")
2011                                         $title = $attributes->textContent;
2012                         }
2013                         if (($rel != "") AND ($href != ""))
2014                                 switch($rel) {
2015                                         case "alternate":
2016                                                 $item["plink"] = $href;
2017                                                 break;
2018                                         case "enclosure":
2019                                                 $enclosure = $href;
2020                                                 if(strlen($item["attach"]))
2021                                                         $item["attach"] .= ",";
2022
2023                                                 $item["attach"] .= '[attach]href="'.$href.'" length="'.$length.'" type="'.$type.'" title="'.$title.'"[/attach]';
2024                                                 break;
2025                                 }
2026                 }
2027         }
2028
2029         /**
2030          * @brief Processes the entry elements which contain the items and comments
2031          *
2032          * @param array $header Array of the header elements that always stay the same
2033          * @param object $xpath XPath object
2034          * @param object $entry entry elements
2035          * @param array $importer Record of the importer user mixed with contact of the content
2036          */
2037         private static function process_entry($header, $xpath, $entry, $importer) {
2038
2039                 logger("Processing entries");
2040
2041                 $item = $header;
2042
2043                 // Get the uri
2044                 $item["uri"] = $xpath->query("atom:id/text()", $entry)->item(0)->nodeValue;
2045
2046                 $item["edited"] = $xpath->query("atom:updated/text()", $entry)->item(0)->nodeValue;
2047
2048                 $current = q("SELECT `id`, `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
2049                         dbesc($item["uri"]),
2050                         intval($importer["importer_uid"])
2051                 );
2052
2053                 // Is there an existing item?
2054                 if (dbm::is_result($current) AND edited_timestamp_is_newer($current[0], $item) AND
2055                         (datetime_convert("UTC","UTC",$item["edited"]) < $current[0]["edited"])) {
2056                         logger("Item ".$item["uri"]." already existed.", LOGGER_DEBUG);
2057                         return;
2058                 }
2059
2060                 // Fetch the owner
2061                 $owner = self::fetchauthor($xpath, $entry, $importer, "dfrn:owner", true);
2062
2063                 $item["owner-name"] = $owner["name"];
2064                 $item["owner-link"] = $owner["link"];
2065                 $item["owner-avatar"] = $owner["avatar"];
2066
2067                 // fetch the author
2068                 $author = self::fetchauthor($xpath, $entry, $importer, "atom:author", true);
2069
2070                 $item["author-name"] = $author["name"];
2071                 $item["author-link"] = $author["link"];
2072                 $item["author-avatar"] = $author["avatar"];
2073
2074                 $item["title"] = $xpath->query("atom:title/text()", $entry)->item(0)->nodeValue;
2075
2076                 $item["created"] = $xpath->query("atom:published/text()", $entry)->item(0)->nodeValue;
2077
2078                 $item["body"] = $xpath->query("dfrn:env/text()", $entry)->item(0)->nodeValue;
2079                 $item["body"] = str_replace(array(' ',"\t","\r","\n"), array('','','',''),$item["body"]);
2080                 // make sure nobody is trying to sneak some html tags by us
2081                 $item["body"] = notags(base64url_decode($item["body"]));
2082
2083                 $item["body"] = limit_body_size($item["body"]);
2084
2085                 /// @todo Do we really need this check for HTML elements? (It was copied from the old function)
2086                 if((strpos($item['body'],'<') !== false) && (strpos($item['body'],'>') !== false)) {
2087
2088                         $item['body'] = reltoabs($item['body'],$base_url);
2089
2090                         $item['body'] = html2bb_video($item['body']);
2091
2092                         $item['body'] = oembed_html2bbcode($item['body']);
2093
2094                         $config = HTMLPurifier_Config::createDefault();
2095                         $config->set('Cache.DefinitionImpl', null);
2096
2097                         // we shouldn't need a whitelist, because the bbcode converter
2098                         // will strip out any unsupported tags.
2099
2100                         $purifier = new HTMLPurifier($config);
2101                         $item['body'] = $purifier->purify($item['body']);
2102
2103                         $item['body'] = @html2bbcode($item['body']);
2104                 }
2105
2106                 /// @todo We should check for a repeated post and if we know the repeated author.
2107
2108                 // We don't need the content element since "dfrn:env" is always present
2109                 //$item["body"] = $xpath->query("atom:content/text()", $entry)->item(0)->nodeValue;
2110
2111                 $item["last-child"] = $xpath->query("dfrn:comment-allow/text()", $entry)->item(0)->nodeValue;
2112                 $item["location"] = $xpath->query("dfrn:location/text()", $entry)->item(0)->nodeValue;
2113
2114                 $georsspoint = $xpath->query("georss:point", $entry);
2115                 if ($georsspoint)
2116                         $item["coord"] = $georsspoint->item(0)->nodeValue;
2117
2118                 $item["private"] = $xpath->query("dfrn:private/text()", $entry)->item(0)->nodeValue;
2119
2120                 $item["extid"] = $xpath->query("dfrn:extid/text()", $entry)->item(0)->nodeValue;
2121
2122                 if ($xpath->query("dfrn:bookmark/text()", $entry)->item(0)->nodeValue == "true")
2123                         $item["bookmark"] = true;
2124
2125                 $notice_info = $xpath->query("statusnet:notice_info", $entry);
2126                 if ($notice_info AND ($notice_info->length > 0)) {
2127                         foreach($notice_info->item(0)->attributes AS $attributes) {
2128                                 if ($attributes->name == "source")
2129                                         $item["app"] = strip_tags($attributes->textContent);
2130                         }
2131                 }
2132
2133                 $item["guid"] = $xpath->query("dfrn:diaspora_guid/text()", $entry)->item(0)->nodeValue;
2134
2135                 // We store the data from "dfrn:diaspora_signature" in a different table, this is done in "item_store"
2136                 $dsprsig = unxmlify($xpath->query("dfrn:diaspora_signature/text()", $entry)->item(0)->nodeValue);
2137                 if ($dsprsig != "")
2138                         $item["dsprsig"] = $dsprsig;
2139
2140                 $item["verb"] = $xpath->query("activity:verb/text()", $entry)->item(0)->nodeValue;
2141
2142                 if ($xpath->query("activity:object-type/text()", $entry)->item(0)->nodeValue != "")
2143                         $item["object-type"] = $xpath->query("activity:object-type/text()", $entry)->item(0)->nodeValue;
2144
2145                 $object = $xpath->query("activity:object", $entry)->item(0);
2146                 $item["object"] = self::transform_activity($xpath, $object, "object");
2147
2148                 if (trim($item["object"]) != "") {
2149                         $r = parse_xml_string($item["object"], false);
2150                         if (isset($r->type))
2151                                 $item["object-type"] = $r->type;
2152                 }
2153
2154                 $target = $xpath->query("activity:target", $entry)->item(0);
2155                 $item["target"] = self::transform_activity($xpath, $target, "target");
2156
2157                 $categories = $xpath->query("atom:category", $entry);
2158                 if ($categories) {
2159                         foreach ($categories AS $category) {
2160                                 $term = "";
2161                                 $scheme = "";
2162                                 foreach($category->attributes AS $attributes) {
2163                                         if ($attributes->name == "term")
2164                                                 $term = $attributes->textContent;
2165
2166                                         if ($attributes->name == "scheme")
2167                                                 $scheme = $attributes->textContent;
2168                                 }
2169
2170                                 if (($term != "") AND ($scheme != "")) {
2171                                         $parts = explode(":", $scheme);
2172                                         if ((count($parts) >= 4) AND (array_shift($parts) == "X-DFRN")) {
2173                                                 $termhash = array_shift($parts);
2174                                                 $termurl = implode(":", $parts);
2175
2176                                                 if(strlen($item["tag"]))
2177                                                         $item["tag"] .= ",";
2178
2179                                                 $item["tag"] .= $termhash."[url=".$termurl."]".$term."[/url]";
2180                                         }
2181                                 }
2182                         }
2183                 }
2184
2185                 $enclosure = "";
2186
2187                 $links = $xpath->query("atom:link", $entry);
2188                 if ($links)
2189                         self::parse_links($links, $item);
2190
2191                 // Is it a reply or a top level posting?
2192                 $item["parent-uri"] = $item["uri"];
2193
2194                 $inreplyto = $xpath->query("thr:in-reply-to", $entry);
2195                 if (is_object($inreplyto->item(0)))
2196                         foreach($inreplyto->item(0)->attributes AS $attributes)
2197                                 if ($attributes->name == "ref")
2198                                         $item["parent-uri"] = $attributes->textContent;
2199
2200                 // Get the type of the item (Top level post, reply or remote reply)
2201                 $entrytype = self::get_entry_type($importer, $item);
2202
2203                 // Now assign the rest of the values that depend on the type of the message
2204                 if (in_array($entrytype, array(DFRN_REPLY, DFRN_REPLY_RC))) {
2205                         if (!isset($item["object-type"]))
2206                                 $item["object-type"] = ACTIVITY_OBJ_COMMENT;
2207
2208                         if ($item["contact-id"] != $owner["contact-id"])
2209                                 $item["contact-id"] = $owner["contact-id"];
2210
2211                         if (($item["network"] != $owner["network"]) AND ($owner["network"] != ""))
2212                                 $item["network"] = $owner["network"];
2213
2214                         if ($item["contact-id"] != $author["contact-id"])
2215                                 $item["contact-id"] = $author["contact-id"];
2216
2217                         if (($item["network"] != $author["network"]) AND ($author["network"] != ""))
2218                                 $item["network"] = $author["network"];
2219
2220                         // This code was taken from the old DFRN code
2221                         // When activated, forums don't work.
2222                         // And: Why should we disallow commenting by followers?
2223                         // the behaviour is now similar to the Diaspora part.
2224                         //if($importer["rel"] == CONTACT_IS_FOLLOWER) {
2225                         //      logger("Contact ".$importer["id"]." is only follower. Quitting", LOGGER_DEBUG);
2226                         //      return;
2227                         //}
2228                 }
2229
2230                 if ($entrytype == DFRN_REPLY_RC) {
2231                         $item["type"] = "remote-comment";
2232                         $item["wall"] = 1;
2233                 } elseif ($entrytype == DFRN_TOP_LEVEL) {
2234                         if (!isset($item["object-type"]))
2235                                 $item["object-type"] = ACTIVITY_OBJ_NOTE;
2236
2237                         // Is it an event?
2238                         if ($item["object-type"] == ACTIVITY_OBJ_EVENT) {
2239                                 logger("Item ".$item["uri"]." seems to contain an event.", LOGGER_DEBUG);
2240                                 $ev = bbtoevent($item["body"]);
2241                                 if((x($ev, "desc") || x($ev, "summary")) && x($ev, "start")) {
2242                                         logger("Event in item ".$item["uri"]." was found.", LOGGER_DEBUG);
2243                                         $ev["cid"] = $importer["id"];
2244                                         $ev["uid"] = $importer["uid"];
2245                                         $ev["uri"] = $item["uri"];
2246                                         $ev["edited"] = $item["edited"];
2247                                         $ev['private'] = $item['private'];
2248                                         $ev["guid"] = $item["guid"];
2249
2250                                         $r = q("SELECT `id` FROM `event` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
2251                                                 dbesc($item["uri"]),
2252                                                 intval($importer["uid"])
2253                                         );
2254                                         if (dbm::is_result($r))
2255                                                 $ev["id"] = $r[0]["id"];
2256
2257                                         $event_id = event_store($ev);
2258                                         logger("Event ".$event_id." was stored", LOGGER_DEBUG);
2259                                         return;
2260                                 }
2261                         }
2262                 }
2263
2264                 if (!self::process_verbs($entrytype, $importer, $item, $is_like)) {
2265                         logger("Exiting because 'process_verbs' told us so", LOGGER_DEBUG);
2266                         return;
2267                 }
2268
2269                 // Update content if 'updated' changes
2270                 if (dbm::is_result($current)) {
2271                         if (self::update_content($r[0], $item, $importer, $entrytype))
2272                                 logger("Item ".$item["uri"]." was updated.", LOGGER_DEBUG);
2273                         else
2274                                 logger("Item ".$item["uri"]." already existed.", LOGGER_DEBUG);
2275                         return;
2276                 }
2277
2278                 if (in_array($entrytype, array(DFRN_REPLY, DFRN_REPLY_RC))) {
2279                         $posted_id = item_store($item);
2280                         $parent = 0;
2281
2282                         if($posted_id) {
2283
2284                                 logger("Reply from contact ".$item["contact-id"]." was stored with id ".$posted_id, LOGGER_DEBUG);
2285
2286                                 $item["id"] = $posted_id;
2287
2288                                 $r = q("SELECT `parent`, `parent-uri` FROM `item` WHERE `id` = %d AND `uid` = %d LIMIT 1",
2289                                         intval($posted_id),
2290                                         intval($importer["importer_uid"])
2291                                 );
2292                                 if (dbm::is_result($r)) {
2293                                         $parent = $r[0]["parent"];
2294                                         $parent_uri = $r[0]["parent-uri"];
2295                                 }
2296
2297                                 if(!$is_like) {
2298                                         $r1 = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `uid` = %d AND `parent` = %d",
2299                                                 dbesc(datetime_convert()),
2300                                                 intval($importer["importer_uid"]),
2301                                                 intval($r[0]["parent"])
2302                                         );
2303
2304                                         $r2 = q("UPDATE `item` SET `last-child` = 1, `changed` = '%s' WHERE `uid` = %d AND `id` = %d",
2305                                                 dbesc(datetime_convert()),
2306                                                 intval($importer["importer_uid"]),
2307                                                 intval($posted_id)
2308                                         );
2309                                 }
2310
2311                                 if($posted_id AND $parent AND ($entrytype == DFRN_REPLY_RC)) {
2312                                         logger("Notifying followers about comment ".$posted_id, LOGGER_DEBUG);
2313                                         proc_run(PRIORITY_HIGH, "include/notifier.php", "comment-import", $posted_id);
2314                                 }
2315
2316                                 return true;
2317                         }
2318                 } else { // $entrytype == DFRN_TOP_LEVEL
2319                         if(!link_compare($item["owner-link"],$importer["url"])) {
2320                                 // The item owner info is not our contact. It's OK and is to be expected if this is a tgroup delivery,
2321                                 // but otherwise there's a possible data mixup on the sender's system.
2322                                 // the tgroup delivery code called from item_store will correct it if it's a forum,
2323                                 // but we're going to unconditionally correct it here so that the post will always be owned by our contact.
2324                                 logger('Correcting item owner.', LOGGER_DEBUG);
2325                                 $item["owner-name"]   = $importer["senderName"];
2326                                 $item["owner-link"]   = $importer["url"];
2327                                 $item["owner-avatar"] = $importer["thumb"];
2328                         }
2329
2330                         if(($importer["rel"] == CONTACT_IS_FOLLOWER) && (!tgroup_check($importer["importer_uid"], $item))) {
2331                                 logger("Contact ".$importer["id"]." is only follower and tgroup check was negative.", LOGGER_DEBUG);
2332                                 return;
2333                         }
2334
2335                         // This is my contact on another system, but it's really me.
2336                         // Turn this into a wall post.
2337                         $notify = item_is_remote_self($importer, $item);
2338
2339                         $posted_id = item_store($item, false, $notify);
2340
2341                         logger("Item was stored with id ".$posted_id, LOGGER_DEBUG);
2342
2343                         if(stristr($item["verb"],ACTIVITY_POKE))
2344                                 self::do_poke($item, $importer, $posted_id);
2345                 }
2346         }
2347
2348         /**
2349          * @brief Deletes items
2350          *
2351          * @param object $xpath XPath object
2352          * @param object $deletion deletion elements
2353          * @param array $importer Record of the importer user mixed with contact of the content
2354          */
2355         private static function process_deletion($xpath, $deletion, $importer) {
2356
2357                 logger("Processing deletions");
2358
2359                 foreach($deletion->attributes AS $attributes) {
2360                         if ($attributes->name == "ref")
2361                                 $uri = $attributes->textContent;
2362                         if ($attributes->name == "when")
2363                                 $when = $attributes->textContent;
2364                 }
2365                 if ($when)
2366                         $when = datetime_convert("UTC", "UTC", $when, "Y-m-d H:i:s");
2367                 else
2368                         $when = datetime_convert("UTC", "UTC", "now", "Y-m-d H:i:s");
2369
2370                 if (!$uri OR !$importer["id"])
2371                         return false;
2372
2373                 /// @todo Only select the used fields
2374                 $r = q("SELECT `item`.*, `contact`.`self` FROM `item` INNER JOIN `contact` on `item`.`contact-id` = `contact`.`id`
2375                                 WHERE `uri` = '%s' AND `item`.`uid` = %d AND `contact-id` = %d AND NOT `item`.`file` LIKE '%%[%%' LIMIT 1",
2376                                 dbesc($uri),
2377                                 intval($importer["uid"]),
2378                                 intval($importer["id"])
2379                         );
2380                 if (!dbm::is_result($r)) {
2381                         logger("Item with uri ".$uri." from contact ".$importer["id"]." for user ".$importer["uid"]." wasn't found.", LOGGER_DEBUG);
2382                         return;
2383                 } else {
2384
2385                         $item = $r[0];
2386
2387                         $entrytype = self::get_entry_type($importer, $item);
2388
2389                         if(!$item["deleted"])
2390                                 logger('deleting item '.$item["id"].' uri='.$uri, LOGGER_DEBUG);
2391                         else
2392                                 return;
2393
2394                         if($item["object-type"] == ACTIVITY_OBJ_EVENT) {
2395                                 logger("Deleting event ".$item["event-id"], LOGGER_DEBUG);
2396                                 event_delete($item["event-id"]);
2397                         }
2398
2399                         if(($item["verb"] == ACTIVITY_TAG) && ($item["object-type"] == ACTIVITY_OBJ_TAGTERM)) {
2400
2401                                 $xo = parse_xml_string($item["object"],false);
2402                                 $xt = parse_xml_string($item["target"],false);
2403
2404                                 if($xt->type == ACTIVITY_OBJ_NOTE) {
2405                                         $i = q("SELECT `id`, `contact-id`, `tag` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
2406                                                 dbesc($xt->id),
2407                                                 intval($importer["importer_uid"])
2408                                         );
2409                                         if (dbm::is_result($i)) {
2410
2411                                                 // For tags, the owner cannot remove the tag on the author's copy of the post.
2412
2413                                                 $owner_remove = (($item["contact-id"] == $i[0]["contact-id"]) ? true: false);
2414                                                 $author_remove = (($item["origin"] && $item["self"]) ? true : false);
2415                                                 $author_copy = (($item["origin"]) ? true : false);
2416
2417                                                 if($owner_remove && $author_copy)
2418                                                         return;
2419                                                 if($author_remove || $owner_remove) {
2420                                                         $tags = explode(',',$i[0]["tag"]);
2421                                                         $newtags = array();
2422                                                         if(count($tags)) {
2423                                                                 foreach($tags as $tag)
2424                                                                         if(trim($tag) !== trim($xo->body))
2425                                                                                 $newtags[] = trim($tag);
2426                                                         }
2427                                                         q("UPDATE `item` SET `tag` = '%s' WHERE `id` = %d",
2428                                                                 dbesc(implode(',',$newtags)),
2429                                                                 intval($i[0]["id"])
2430                                                         );
2431                                                         create_tags_from_item($i[0]["id"]);
2432                                                 }
2433                                         }
2434                                 }
2435                         }
2436
2437                         if($entrytype == DFRN_TOP_LEVEL) {
2438                                 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s',
2439                                                 `body` = '', `title` = ''
2440                                         WHERE `parent-uri` = '%s' AND `uid` = %d",
2441                                                 dbesc($when),
2442                                                 dbesc(datetime_convert()),
2443                                                 dbesc($uri),
2444                                                 intval($importer["uid"])
2445                                         );
2446                                 create_tags_from_itemuri($uri, $importer["uid"]);
2447                                 create_files_from_itemuri($uri, $importer["uid"]);
2448                                 update_thread_uri($uri, $importer["uid"]);
2449                         } else {
2450                                 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s',
2451                                                 `body` = '', `title` = ''
2452                                         WHERE `uri` = '%s' AND `uid` = %d",
2453                                                 dbesc($when),
2454                                                 dbesc(datetime_convert()),
2455                                                 dbesc($uri),
2456                                                 intval($importer["uid"])
2457                                         );
2458                                 create_tags_from_itemuri($uri, $importer["uid"]);
2459                                 create_files_from_itemuri($uri, $importer["uid"]);
2460                                 update_thread_uri($uri, $importer["importer_uid"]);
2461                                 if($item["last-child"]) {
2462                                         // ensure that last-child is set in case the comment that had it just got wiped.
2463                                         q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d ",
2464                                                 dbesc(datetime_convert()),
2465                                                 dbesc($item["parent-uri"]),
2466                                                 intval($item["uid"])
2467                                         );
2468                                         // who is the last child now?
2469                                         $r = q("SELECT `id` FROM `item` WHERE `parent-uri` = '%s' AND `type` != 'activity' AND `deleted` = 0 AND `moderated` = 0 AND `uid` = %d
2470                                                 ORDER BY `created` DESC LIMIT 1",
2471                                                         dbesc($item["parent-uri"]),
2472                                                         intval($importer["uid"])
2473                                         );
2474                                         if (dbm::is_result($r)) {
2475                                                 q("UPDATE `item` SET `last-child` = 1 WHERE `id` = %d",
2476                                                         intval($r[0]["id"])
2477                                                 );
2478                                         }
2479                                 }
2480                                 // if this is a relayed delete, propagate it to other recipients
2481
2482                                 if($entrytype == DFRN_REPLY_RC) {
2483                                         logger("Notifying followers about deletion of post ".$item["id"], LOGGER_DEBUG);
2484                                         proc_run(PRIORITY_HIGH, "include/notifier.php","drop", $item["id"]);
2485                                 }
2486                         }
2487                 }
2488         }
2489
2490         /**
2491          * @brief Imports a DFRN message
2492          *
2493          * @param text $xml The DFRN message
2494          * @param array $importer Record of the importer user mixed with contact of the content
2495          * @param bool $sort_by_date Is used when feeds are polled
2496          */
2497         public static function import($xml,$importer, $sort_by_date = false) {
2498
2499                 if ($xml == "")
2500                         return;
2501
2502                 if($importer["readonly"]) {
2503                         // We aren't receiving stuff from this person. But we will quietly ignore them
2504                         // rather than a blatant "go away" message.
2505                         logger('ignoring contact '.$importer["id"]);
2506                         return;
2507                 }
2508
2509                 $doc = new DOMDocument();
2510                 @$doc->loadXML($xml);
2511
2512                 $xpath = new DomXPath($doc);
2513                 $xpath->registerNamespace("atom", NAMESPACE_ATOM1);
2514                 $xpath->registerNamespace("thr", NAMESPACE_THREAD);
2515                 $xpath->registerNamespace("at", NAMESPACE_TOMB);
2516                 $xpath->registerNamespace("media", NAMESPACE_MEDIA);
2517                 $xpath->registerNamespace("dfrn", NAMESPACE_DFRN);
2518                 $xpath->registerNamespace("activity", NAMESPACE_ACTIVITY);
2519                 $xpath->registerNamespace("georss", NAMESPACE_GEORSS);
2520                 $xpath->registerNamespace("poco", NAMESPACE_POCO);
2521                 $xpath->registerNamespace("ostatus", NAMESPACE_OSTATUS);
2522                 $xpath->registerNamespace("statusnet", NAMESPACE_STATUSNET);
2523
2524                 $header = array();
2525                 $header["uid"] = $importer["uid"];
2526                 $header["network"] = NETWORK_DFRN;
2527                 $header["type"] = "remote";
2528                 $header["wall"] = 0;
2529                 $header["origin"] = 0;
2530                 $header["contact-id"] = $importer["id"];
2531
2532                 // Update the contact table if the data has changed
2533
2534                 // The "atom:author" is only present in feeds
2535                 if ($xpath->query("/atom:feed/atom:author")->length > 0)
2536                         self::fetchauthor($xpath, $doc->firstChild, $importer, "atom:author", false, $xml);
2537
2538                 // Only the "dfrn:owner" in the head section contains all data
2539                 if ($xpath->query("/atom:feed/dfrn:owner")->length > 0)
2540                         self::fetchauthor($xpath, $doc->firstChild, $importer, "dfrn:owner", false, $xml);
2541
2542                 logger("Import DFRN message for user ".$importer["uid"]." from contact ".$importer["id"], LOGGER_DEBUG);
2543
2544                 // The account type is new since 3.5.1
2545                 if ($xpath->query("/atom:feed/dfrn:account_type")->length > 0) {
2546                         $accounttype = intval($xpath->evaluate("/atom:feed/dfrn:account_type/text()", $context)->item(0)->nodeValue);
2547
2548                         if ($accounttype != $importer["contact-type"])
2549                                 q("UPDATE `contact` SET `contact-type` = %d WHERE `id` = %d",
2550                                         intval($accounttype),
2551                                         intval($importer["id"])
2552                                 );
2553                 }
2554
2555                 // is it a public forum? Private forums aren't supported with this method
2556                 // This is deprecated since 3.5.1
2557                 $forum = intval($xpath->evaluate("/atom:feed/dfrn:community/text()", $context)->item(0)->nodeValue);
2558
2559                 if ($forum != $importer["forum"])
2560                         q("UPDATE `contact` SET `forum` = %d WHERE `forum` != %d AND `id` = %d",
2561                                 intval($forum), intval($forum),
2562                                 intval($importer["id"])
2563                         );
2564
2565                 $mails = $xpath->query("/atom:feed/dfrn:mail");
2566                 foreach ($mails AS $mail)
2567                         self::process_mail($xpath, $mail, $importer);
2568
2569                 $suggestions = $xpath->query("/atom:feed/dfrn:suggest");
2570                 foreach ($suggestions AS $suggestion)
2571                         self::process_suggestion($xpath, $suggestion, $importer);
2572
2573                 $relocations = $xpath->query("/atom:feed/dfrn:relocate");
2574                 foreach ($relocations AS $relocation)
2575                         self::process_relocation($xpath, $relocation, $importer);
2576
2577                 $deletions = $xpath->query("/atom:feed/at:deleted-entry");
2578                 foreach ($deletions AS $deletion)
2579                         self::process_deletion($xpath, $deletion, $importer);
2580
2581                 if (!$sort_by_date) {
2582                         $entries = $xpath->query("/atom:feed/atom:entry");
2583                         foreach ($entries AS $entry)
2584                                 self::process_entry($header, $xpath, $entry, $importer);
2585                 } else {
2586                         $newentries = array();
2587                         $entries = $xpath->query("/atom:feed/atom:entry");
2588                         foreach ($entries AS $entry) {
2589                                 $created = $xpath->query("atom:published/text()", $entry)->item(0)->nodeValue;
2590                                 $newentries[strtotime($created)] = $entry;
2591                         }
2592
2593                         // Now sort after the publishing date
2594                         ksort($newentries);
2595
2596                         foreach ($newentries AS $entry)
2597                                 self::process_entry($header, $xpath, $entry, $importer);
2598                 }
2599                 logger("Import done for user ".$importer["uid"]." from contact ".$importer["id"], LOGGER_DEBUG);
2600         }
2601 }
2602 ?>