3 * @file include/dfrn.php
4 * @brief The implementation of the dfrn protocol
6 * https://github.com/friendica/friendica/wiki/Protocol
9 require_once('include/items.php');
10 require_once('include/Contact.php');
11 require_once('include/ostatus.php');
14 * @brief This class contain functions to create and send DFRN XML files
20 * @brief Generates the atom entries for delivery.php
22 * This function is used whenever content is transmitted via DFRN.
24 * @param array $items Item elements
25 * @param array $owner Owner record
27 * @return string DFRN entries
29 function entries($items,$owner) {
31 $doc = new DOMDocument('1.0', 'utf-8');
32 $doc->formatOutput = true;
34 $root = self::add_header($doc, $owner, "dfrn:owner", "", false);
37 return trim($doc->saveXML());
39 foreach($items as $item) {
40 $entry = self::entry($doc, "text", $item, $owner, $item["entry:comment-allow"], $item["entry:cid"]);
41 $root->appendChild($entry);
44 return(trim($doc->saveXML()));
48 * @brief Generate an atom feed for the given user
50 * This function is called when another server is pulling data from the user feed.
52 * @param string $dfrn_id DFRN ID from the requesting party
53 * @param string $owner_nick Owner nick name
54 * @param string $last_update Date of the last update
55 * @param int $direction Can be -1, 0 or 1.
57 * @return string DFRN feed entries
59 function feed($dfrn_id, $owner_nick, $last_update, $direction = 0) {
63 $sitefeed = ((strlen($owner_nick)) ? false : true); // not yet implemented, need to rewrite huge chunks of following logic
64 $public_feed = (($dfrn_id) ? false : true);
65 $starred = false; // not yet implemented, possible security issues
68 if($public_feed && $a->argc > 2) {
69 for($x = 2; $x < $a->argc; $x++) {
70 if($a->argv[$x] == 'converse')
72 if($a->argv[$x] == 'starred')
74 if($a->argv[$x] === 'category' && $a->argc > ($x + 1) && strlen($a->argv[$x+1]))
75 $category = $a->argv[$x+1];
81 // default permissions - anonymous user
83 $sql_extra = " AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = '' AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = '' ";
85 $r = q("SELECT `contact`.*, `user`.`uid` AS `user_uid`, `user`.`nickname`, `user`.`timezone`, `user`.`page-flags`
86 FROM `contact` INNER JOIN `user` ON `user`.`uid` = `contact`.`uid`
87 WHERE `contact`.`self` = 1 AND `user`.`nickname` = '%s' LIMIT 1",
95 $owner_id = $owner['user_uid'];
96 $owner_nick = $owner['nickname'];
106 $sql_extra = sprintf(" AND `issued-id` = '%s' ", dbesc($dfrn_id));
110 $sql_extra = sprintf(" AND `issued-id` = '%s' AND `duplex` = 1 ", dbesc($dfrn_id));
111 $my_id = '1:' . $dfrn_id;
114 $sql_extra = sprintf(" AND `dfrn-id` = '%s' AND `duplex` = 1 ", dbesc($dfrn_id));
115 $my_id = '0:' . $dfrn_id;
122 $r = q("SELECT * FROM `contact` WHERE `blocked` = 0 AND `pending` = 0 AND `contact`.`uid` = %d $sql_extra LIMIT 1",
130 require_once('include/security.php');
131 $groups = init_groups_visitor($contact['id']);
134 for($x = 0; $x < count($groups); $x ++)
135 $groups[$x] = '<' . intval($groups[$x]) . '>' ;
136 $gs = implode('|', $groups);
138 $gs = '<<>>' ; // Impossible to match
140 $sql_extra = sprintf("
141 AND ( `allow_cid` = '' OR `allow_cid` REGEXP '<%d>' )
142 AND ( `deny_cid` = '' OR NOT `deny_cid` REGEXP '<%d>' )
143 AND ( `allow_gid` = '' OR `allow_gid` REGEXP '%s' )
144 AND ( `deny_gid` = '' OR NOT `deny_gid` REGEXP '%s')
146 intval($contact['id']),
147 intval($contact['id']),
158 $date_field = "`changed`";
159 $sql_order = "`item`.`parent` ".$sort.", `item`.`created` ASC";
161 if(! strlen($last_update))
162 $last_update = 'now -30 days';
164 if(isset($category)) {
165 $sql_post_table = sprintf("INNER JOIN (SELECT `oid` FROM `term` WHERE `term` = '%s' AND `otype` = %d AND `type` = %d AND `uid` = %d ORDER BY `tid` DESC) AS `term` ON `item`.`id` = `term`.`oid` ",
166 dbesc(protect_sprintf($category)), intval(TERM_OBJ_POST), intval(TERM_CATEGORY), intval($owner_id));
167 //$sql_extra .= file_tag_file_query('item',$category,'category');
172 $sql_extra .= " AND `contact`.`self` = 1 ";
175 $check_date = datetime_convert('UTC','UTC',$last_update,'Y-m-d H:i:s');
177 // AND ( `item`.`edited` > '%s' OR `item`.`changed` > '%s' )
178 // dbesc($check_date),
180 $r = q("SELECT STRAIGHT_JOIN `item`.*, `item`.`id` AS `item_id`,
181 `contact`.`name`, `contact`.`network`, `contact`.`photo`, `contact`.`url`,
182 `contact`.`name-date`, `contact`.`uri-date`, `contact`.`avatar-date`,
183 `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
184 `contact`.`id` AS `contact-id`, `contact`.`uid` AS `contact-uid`,
185 `sign`.`signed_text`, `sign`.`signature`, `sign`.`signer`
186 FROM `item` $sql_post_table
187 INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
188 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
189 LEFT JOIN `sign` ON `sign`.`iid` = `item`.`id`
190 WHERE `item`.`uid` = %d AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`parent` != 0
191 AND ((`item`.`wall` = 1) $visibility) AND `item`.$date_field > '%s'
193 ORDER BY $sql_order LIMIT 0, 300",
199 // Will check further below if this actually returned results.
200 // We will provide an empty feed if that is the case.
204 $doc = new DOMDocument('1.0', 'utf-8');
205 $doc->formatOutput = true;
207 $alternatelink = $owner['url'];
210 $alternatelink .= "/category/".$category;
213 $author = "dfrn:owner";
217 $root = self::add_header($doc, $owner, $author, $alternatelink, true);
219 // This hook can't work anymore
220 // call_hooks('atom_feed', $atom);
222 if(! count($items)) {
223 $atom = trim($doc->saveXML());
225 call_hooks('atom_feed_end', $atom);
230 foreach($items as $item) {
232 // prevent private email from leaking.
233 if($item['network'] === NETWORK_MAIL)
236 // public feeds get html, our own nodes use bbcode
240 // catch any email that's in a public conversation and make sure it doesn't leak
246 $entry = self::entry($doc, $type, $item, $owner, true);
247 $root->appendChild($entry);
251 $atom = trim($doc->saveXML());
253 call_hooks('atom_feed_end', $atom);
259 * @brief Create XML text for DFRN mails
261 * @param array $item message elements
262 * @param array $owner Owner record
264 * @return string DFRN mail
266 function mail($item, $owner) {
267 $doc = new DOMDocument('1.0', 'utf-8');
268 $doc->formatOutput = true;
270 $root = self::add_header($doc, $owner, "dfrn:owner", "", false);
272 $mail = $doc->createElement("dfrn:mail");
273 $sender = $doc->createElement("dfrn:sender");
275 xml_add_element($doc, $sender, "dfrn:name", $owner['name']);
276 xml_add_element($doc, $sender, "dfrn:uri", $owner['url']);
277 xml_add_element($doc, $sender, "dfrn:avatar", $owner['thumb']);
279 $mail->appendChild($sender);
281 xml_add_element($doc, $mail, "dfrn:id", $item['uri']);
282 xml_add_element($doc, $mail, "dfrn:in-reply-to", $item['parent-uri']);
283 xml_add_element($doc, $mail, "dfrn:sentdate", datetime_convert('UTC', 'UTC', $item['created'] . '+00:00' , ATOM_TIME));
284 xml_add_element($doc, $mail, "dfrn:subject", $item['title']);
285 xml_add_element($doc, $mail, "dfrn:content", $item['body']);
287 $root->appendChild($mail);
289 return(trim($doc->saveXML()));
293 * @brief Create XML text for DFRN friend suggestions
295 * @param array $item suggestion elements
296 * @param array $owner Owner record
298 * @return string DFRN suggestions
300 function fsuggest($item, $owner) {
301 $doc = new DOMDocument('1.0', 'utf-8');
302 $doc->formatOutput = true;
304 $root = self::add_header($doc, $owner, "dfrn:owner", "", false);
306 $suggest = $doc->createElement("dfrn:suggest");
308 xml_add_element($doc, $suggest, "dfrn:url", $item['url']);
309 xml_add_element($doc, $suggest, "dfrn:name", $item['name']);
310 xml_add_element($doc, $suggest, "dfrn:photo", $item['photo']);
311 xml_add_element($doc, $suggest, "dfrn:request", $item['request']);
312 xml_add_element($doc, $suggest, "dfrn:note", $item['note']);
314 $root->appendChild($suggest);
316 return(trim($doc->saveXML()));
320 * @brief Create XML text for DFRN relocations
322 * @param array $owner Owner record
323 * @param int $uid User ID
325 * @return string DFRN relocations
327 function relocate($owner, $uid) {
329 /* get site pubkey. this could be a new installation with no site keys*/
330 $pubkey = get_config('system','site_pubkey');
332 $res = new_keypair(1024);
333 set_config('system','site_prvkey', $res['prvkey']);
334 set_config('system','site_pubkey', $res['pubkey']);
337 $rp = q("SELECT `resource-id` , `scale`, type FROM `photo`
338 WHERE `profile` = 1 AND `uid` = %d ORDER BY scale;", $uid);
340 $ext = Photo::supportedTypes();
343 $photos[$p['scale']] = app::get_baseurl().'/photo/'.$p['resource-id'].'-'.$p['scale'].'.'.$ext[$p['type']];
347 $doc = new DOMDocument('1.0', 'utf-8');
348 $doc->formatOutput = true;
350 $root = self::add_header($doc, $owner, "dfrn:owner", "", false);
352 $relocate = $doc->createElement("dfrn:relocate");
354 xml_add_element($doc, $relocate, "dfrn:url", $owner['url']);
355 xml_add_element($doc, $relocate, "dfrn:name", $owner['name']);
356 xml_add_element($doc, $relocate, "dfrn:photo", $photos[4]);
357 xml_add_element($doc, $relocate, "dfrn:thumb", $photos[5]);
358 xml_add_element($doc, $relocate, "dfrn:micro", $photos[6]);
359 xml_add_element($doc, $relocate, "dfrn:request", $owner['request']);
360 xml_add_element($doc, $relocate, "dfrn:confirm", $owner['confirm']);
361 xml_add_element($doc, $relocate, "dfrn:notify", $owner['notify']);
362 xml_add_element($doc, $relocate, "dfrn:poll", $owner['poll']);
363 xml_add_element($doc, $relocate, "dfrn:sitepubkey", get_config('system','site_pubkey'));
365 $root->appendChild($relocate);
367 return(trim($doc->saveXML()));
371 * @brief Adds the header elements for the DFRN protocol
373 * @param object $doc XML document
374 * @param array $owner Owner record
375 * @param string $authorelement Element name for the author
376 * @param string $alternatelink link to profile or category
377 * @param bool $public Is it a header for public posts?
379 * @return object XML root object
381 private function add_header($doc, $owner, $authorelement, $alternatelink = "", $public = false) {
383 if ($alternatelink == "")
384 $alternatelink = $owner['url'];
386 $root = $doc->createElementNS(NS_ATOM, 'feed');
387 $doc->appendChild($root);
389 $root->setAttribute("xmlns:thr", NS_THR);
390 $root->setAttribute("xmlns:at", "http://purl.org/atompub/tombstones/1.0");
391 $root->setAttribute("xmlns:media", NS_MEDIA);
392 $root->setAttribute("xmlns:dfrn", "http://purl.org/macgirvin/dfrn/1.0");
393 $root->setAttribute("xmlns:activity", NS_ACTIVITY);
394 $root->setAttribute("xmlns:georss", NS_GEORSS);
395 $root->setAttribute("xmlns:poco", NS_POCO);
396 $root->setAttribute("xmlns:ostatus", NS_OSTATUS);
397 $root->setAttribute("xmlns:statusnet", NS_STATUSNET);
399 //xml_add_element($doc, $root, "id", app::get_baseurl()."/profile/".$owner["nick"]);
400 xml_add_element($doc, $root, "id", app::get_baseurl()."/profile/".$owner["nick"]);
401 xml_add_element($doc, $root, "title", $owner["name"]);
403 $attributes = array("uri" => "https://friendi.ca", "version" => FRIENDICA_VERSION."-".DB_UPDATE_VERSION);
404 xml_add_element($doc, $root, "generator", FRIENDICA_PLATFORM, $attributes);
406 $attributes = array("rel" => "license", "href" => "http://creativecommons.org/licenses/by/3.0/");
407 xml_add_element($doc, $root, "link", "", $attributes);
409 $attributes = array("rel" => "alternate", "type" => "text/html", "href" => $alternatelink);
410 xml_add_element($doc, $root, "link", "", $attributes);
412 ostatus_hublinks($doc, $root);
415 $attributes = array("rel" => "salmon", "href" => app::get_baseurl()."/salmon/".$owner["nick"]);
416 xml_add_element($doc, $root, "link", "", $attributes);
418 $attributes = array("rel" => "http://salmon-protocol.org/ns/salmon-replies", "href" => app::get_baseurl()."/salmon/".$owner["nick"]);
419 xml_add_element($doc, $root, "link", "", $attributes);
421 $attributes = array("rel" => "http://salmon-protocol.org/ns/salmon-mention", "href" => app::get_baseurl()."/salmon/".$owner["nick"]);
422 xml_add_element($doc, $root, "link", "", $attributes);
425 if ($owner['page-flags'] == PAGE_COMMUNITY)
426 xml_add_element($doc, $root, "dfrn:community", 1);
428 xml_add_element($doc, $root, "updated", datetime_convert("UTC", "UTC", "now", ATOM_TIME));
430 $author = self::add_author($doc, $owner, $authorelement, $public);
431 $root->appendChild($author);
437 * @brief Adds the author element in the header for the DFRN protocol
439 * @param object $doc XML document
440 * @param array $owner Owner record
441 * @param string $authorelement Element name for the author
443 * @return object XML author object
445 private function add_author($doc, $owner, $authorelement, $public) {
447 $author = $doc->createElement($authorelement);
449 $namdate = datetime_convert('UTC', 'UTC', $owner['name-date'].'+00:00' , ATOM_TIME);
450 $uridate = datetime_convert('UTC', 'UTC', $owner['uri-date'].'+00:00', ATOM_TIME);
451 $picdate = datetime_convert('UTC', 'UTC', $owner['avatar-date'].'+00:00', ATOM_TIME);
453 $attributes = array("dfrn:updated" => $namdate);
454 xml_add_element($doc, $author, "name", $owner["name"], $attributes);
456 $attributes = array("dfrn:updated" => $namdate);
457 xml_add_element($doc, $author, "uri", app::get_baseurl().'/profile/'.$owner["nickname"], $attributes);
459 $attributes = array("rel" => "photo", "type" => "image/jpeg", "dfrn:updated" => $picdate,
460 "media:width" => 175, "media:height" => 175, "href" => $owner['photo']);
461 xml_add_element($doc, $author, "link", "", $attributes);
463 $attributes = array("rel" => "avatar", "type" => "image/jpeg", "dfrn:updated" => $picdate,
464 "media:width" => 175, "media:height" => 175, "href" => $owner['photo']);
465 xml_add_element($doc, $author, "link", "", $attributes);
467 $birthday = feed_birthday($owner['user_uid'], $owner['timezone']);
470 xml_add_element($doc, $author, "dfrn:birthday", $birthday);
472 // The following fields will only be generated if this isn't for a public feed
476 // Only show contact details when we are allowed to
477 $r = q("SELECT `profile`.`about`, `profile`.`name`, `profile`.`homepage`, `user`.`nickname`, `user`.`timezone`,
478 `profile`.`locality`, `profile`.`region`, `profile`.`country-name`, `profile`.`pub_keywords`, `profile`.`dob`
480 INNER JOIN `user` ON `user`.`uid` = `profile`.`uid`
481 WHERE `profile`.`is-default` AND NOT `user`.`hidewall` AND `user`.`uid` = %d",
482 intval($owner['user_uid']));
485 xml_add_element($doc, $author, "poco:displayName", $profile["name"]);
486 xml_add_element($doc, $author, "poco:updated", $namdate);
488 if (trim($profile["dob"]) != "0000-00-00")
489 xml_add_element($doc, $author, "poco:birthday", "0000-".date("m-d", strtotime($profile["dob"])));
491 xml_add_element($doc, $author, "poco:note", $profile["about"]);
492 xml_add_element($doc, $author, "poco:preferredUsername", $profile["nickname"]);
494 $savetz = date_default_timezone_get();
495 date_default_timezone_set($profile["timezone"]);
496 xml_add_element($doc, $author, "poco:utcOffset", date("P"));
497 date_default_timezone_set($savetz);
499 if (trim($profile["homepage"]) != "") {
500 $urls = $doc->createElement("poco:urls");
501 xml_add_element($doc, $urls, "poco:type", "homepage");
502 xml_add_element($doc, $urls, "poco:value", $profile["homepage"]);
503 xml_add_element($doc, $urls, "poco:primary", "true");
504 $author->appendChild($urls);
507 if (trim($profile["pub_keywords"]) != "") {
508 $keywords = explode(",", $profile["pub_keywords"]);
510 foreach ($keywords AS $keyword)
511 xml_add_element($doc, $author, "poco:tags", trim($keyword));
515 /// @todo When we are having the XMPP address in the profile we should propagate it here
517 if (trim($xmpp) != "") {
518 $ims = $doc->createElement("poco:ims");
519 xml_add_element($doc, $ims, "poco:type", "xmpp");
520 xml_add_element($doc, $ims, "poco:value", $xmpp);
521 xml_add_element($doc, $ims, "poco:primary", "true");
522 $author->appendChild($ims);
525 if (trim($profile["locality"].$profile["region"].$profile["country-name"]) != "") {
526 $element = $doc->createElement("poco:address");
528 xml_add_element($doc, $element, "poco:formatted", formatted_location($profile));
530 if (trim($profile["locality"]) != "")
531 xml_add_element($doc, $element, "poco:locality", $profile["locality"]);
533 if (trim($profile["region"]) != "")
534 xml_add_element($doc, $element, "poco:region", $profile["region"]);
536 if (trim($profile["country-name"]) != "")
537 xml_add_element($doc, $element, "poco:country", $profile["country-name"]);
539 $author->appendChild($element);
547 * @brief Adds the author elements in the "entry" elements of the DFRN protocol
549 * @param object $doc XML document
550 * @param string $element Element name for the author
551 * @param string $contact_url Link of the contact
552 * @param array $items Item elements
554 * @return object XML author object
556 private function add_entry_author($doc, $element, $contact_url, $item) {
558 $contact = get_contact_details_by_url($contact_url, $item["uid"]);
560 $author = $doc->createElement($element);
561 xml_add_element($doc, $author, "name", $contact["name"]);
562 xml_add_element($doc, $author, "uri", $contact["url"]);
565 /// - Check real image type and image size
566 /// - Check which of these boths elements we should use
569 "type" => "image/jpeg",
571 "media:height" => 80,
572 "href" => $contact["photo"]);
573 xml_add_element($doc, $author, "link", "", $attributes);
577 "type" => "image/jpeg",
579 "media:height" => 80,
580 "href" => $contact["photo"]);
581 xml_add_element($doc, $author, "link", "", $attributes);
587 * @brief Adds the activity elements
589 * @param object $doc XML document
590 * @param string $element Element name for the activity
591 * @param string $activity activity value
593 * @return object XML activity object
595 private function create_activity($doc, $element, $activity) {
598 $entry = $doc->createElement($element);
600 $r = parse_xml_string($activity, false);
604 xml_add_element($doc, $entry, "activity:object-type", $r->type);
606 xml_add_element($doc, $entry, "id", $r->id);
608 xml_add_element($doc, $entry, "title", $r->title);
610 if(substr($r->link,0,1) === '<') {
611 if(strstr($r->link,'&') && (! strstr($r->link,'&')))
612 $r->link = str_replace('&','&', $r->link);
614 $r->link = preg_replace('/\<link(.*?)\"\>/','<link$1"/>',$r->link);
616 $data = parse_xml_string($r->link, false);
617 foreach ($data->attributes() AS $parameter => $value)
618 $attributes[$parameter] = $value;
620 $attributes = array("rel" => "alternate", "type" => "text/html", "href" => $r->link);
622 xml_add_element($doc, $entry, "link", "", $attributes);
625 xml_add_element($doc, $entry, "content", bbcode($r->content), array("type" => "html"));
634 * @brief Adds the elements for attachments
636 * @param object $doc XML document
637 * @param object $root XML root
638 * @param array $item Item element
640 * @return object XML attachment object
642 private function get_attachment($doc, $root, $item) {
643 $arr = explode('[/attach],',$item['attach']);
645 foreach($arr as $r) {
647 $cnt = preg_match('|\[attach\]href=\"(.*?)\" length=\"(.*?)\" type=\"(.*?)\" title=\"(.*?)\"|',$r,$matches);
649 $attributes = array("rel" => "enclosure",
650 "href" => $matches[1],
651 "type" => $matches[3]);
653 if(intval($matches[2]))
654 $attributes["length"] = intval($matches[2]);
656 if(trim($matches[4]) != "")
657 $attributes["title"] = trim($matches[4]);
659 xml_add_element($doc, $root, "link", "", $attributes);
666 * @brief Adds the "entry" elements for the DFRN protocol
668 * @param object $doc XML document
669 * @param string $type "text" or "html"
670 * @param array $item Item element
671 * @param array $owner Owner record
672 * @param bool $comment Trigger the sending of the "comment" element
673 * @param int $cid Contact ID of the recipient
675 * @return object XML entry object
677 private function entry($doc, $type, $item, $owner, $comment = false, $cid = 0) {
679 $mentioned = array();
684 if($item['deleted']) {
685 $attributes = array("ref" => $item['uri'], "when" => datetime_convert('UTC','UTC',$item['edited'] . '+00:00',ATOM_TIME));
686 return xml_create_element($doc, "at:deleted-entry", "", $attributes);
689 $entry = $doc->createElement("entry");
691 if($item['allow_cid'] || $item['allow_gid'] || $item['deny_cid'] || $item['deny_gid'])
692 $body = fix_private_photos($item['body'],$owner['uid'],$item,$cid);
694 $body = $item['body'];
696 if ($type == 'html') {
699 if ($item['title'] != "")
700 $htmlbody = "[b]".$item['title']."[/b]\n\n".$htmlbody;
702 $htmlbody = bbcode($htmlbody, false, false, 7);
705 $author = self::add_entry_author($doc, "author", $item["author-link"], $item);
706 $entry->appendChild($author);
708 $dfrnowner = self::add_entry_author($doc, "dfrn:owner", $item["owner-link"], $item);
709 $entry->appendChild($dfrnowner);
711 if(($item['parent'] != $item['id']) || ($item['parent-uri'] !== $item['uri']) || (($item['thr-parent'] !== '') && ($item['thr-parent'] !== $item['uri']))) {
712 $parent = q("SELECT `guid` FROM `item` WHERE `id` = %d", intval($item["parent"]));
713 $parent_item = (($item['thr-parent']) ? $item['thr-parent'] : $item['parent-uri']);
714 $attributes = array("ref" => $parent_item, "type" => "text/html", "href" => app::get_baseurl().'/display/'.$parent[0]['guid']);
715 xml_add_element($doc, $entry, "thr:in-reply-to", "", $attributes);
718 xml_add_element($doc, $entry, "id", $item["uri"]);
719 xml_add_element($doc, $entry, "title", $item["title"]);
721 xml_add_element($doc, $entry, "published", datetime_convert("UTC","UTC",$item["created"]."+00:00",ATOM_TIME));
722 xml_add_element($doc, $entry, "updated", datetime_convert("UTC","UTC",$item["edited"]."+00:00",ATOM_TIME));
724 xml_add_element($doc, $entry, "dfrn:env", base64url_encode($body, true));
725 xml_add_element($doc, $entry, "content", (($type === 'html') ? $htmlbody : $body), array("type" => $type));
727 xml_add_element($doc, $entry, "link", "", array("rel" => "alternate", "type" => "text/html",
728 "href" => app::get_baseurl()."/display/".$item["guid"]));
730 // "comment-allow" is some old fashioned stuff for old Friendica versions.
731 // It is included in the rewritten code for completeness
733 xml_add_element($doc, $entry, "dfrn:comment-allow", intval($item['last-child']));
735 if($item['location'])
736 xml_add_element($doc, $entry, "dfrn:location", $item['location']);
739 xml_add_element($doc, $entry, "georss:point", $item['coord']);
741 if(($item['private']) || strlen($item['allow_cid']) || strlen($item['allow_gid']) || strlen($item['deny_cid']) || strlen($item['deny_gid']))
742 xml_add_element($doc, $entry, "dfrn:private", (($item['private']) ? $item['private'] : 1));
745 xml_add_element($doc, $entry, "dfrn:extid", $item['extid']);
747 if($item['bookmark'])
748 xml_add_element($doc, $entry, "dfrn:bookmark", "true");
751 xml_add_element($doc, $entry, "statusnet:notice_info", "", array("local_id" => $item['id'], "source" => $item['app']));
753 xml_add_element($doc, $entry, "dfrn:diaspora_guid", $item["guid"]);
755 // The signed text contains the content in Markdown, the sender handle and the signatur for the content
756 // It is needed for relayed comments to Diaspora.
757 if($item['signed_text']) {
758 $sign = base64_encode(json_encode(array('signed_text' => $item['signed_text'],'signature' => $item['signature'],'signer' => $item['signer'])));
759 xml_add_element($doc, $entry, "dfrn:diaspora_signature", $sign);
762 xml_add_element($doc, $entry, "activity:verb", construct_verb($item));
764 $actobj = self::create_activity($doc, "activity:object", $item['object']);
766 $entry->appendChild($actobj);
768 $actarg = self::create_activity($doc, "activity:target", $item['target']);
770 $entry->appendChild($actarg);
772 $tags = item_getfeedtags($item);
776 if (($type != 'html') OR ($t[0] != "@"))
777 xml_add_element($doc, $entry, "category", "", array("scheme" => "X-DFRN:".$t[0].":".$t[1], "term" => $t[2]));
783 $mentioned[$t[1]] = $t[1];
785 foreach ($mentioned AS $mention) {
786 $r = q("SELECT `forum`, `prv` FROM `contact` WHERE `uid` = %d AND `nurl` = '%s'",
787 intval($owner["uid"]),
788 dbesc(normalise_link($mention)));
789 if ($r[0]["forum"] OR $r[0]["prv"])
790 xml_add_element($doc, $entry, "link", "", array("rel" => "mentioned",
791 "ostatus:object-type" => ACTIVITY_OBJ_GROUP,
792 "href" => $mention));
794 xml_add_element($doc, $entry, "link", "", array("rel" => "mentioned",
795 "ostatus:object-type" => ACTIVITY_OBJ_PERSON,
796 "href" => $mention));
799 self::get_attachment($doc, $entry, $item);
805 * @brief Delivers the atom content to the contacts
807 * @param array $owner Owner record
808 * @param array $contactr Contact record of the receiver
809 * @param string $atom Content that will be transmitted
810 * @param bool $dissolve (to be documented)
812 * @return int Deliver status. -1 means an error.
814 function deliver($owner,$contact,$atom, $dissolve = false) {
818 $idtosend = $orig_id = (($contact['dfrn-id']) ? $contact['dfrn-id'] : $contact['issued-id']);
820 if($contact['duplex'] && $contact['dfrn-id'])
821 $idtosend = '0:' . $orig_id;
822 if($contact['duplex'] && $contact['issued-id'])
823 $idtosend = '1:' . $orig_id;
826 $rino = get_config('system','rino_encrypt');
827 $rino = intval($rino);
828 // use RINO1 if mcrypt isn't installed and RINO2 was selected
829 if ($rino==2 and !function_exists('mcrypt_create_iv')) $rino=1;
831 logger("Local rino version: ". $rino, LOGGER_DEBUG);
833 $ssl_val = intval(get_config('system','ssl_policy'));
837 case SSL_POLICY_FULL:
838 $ssl_policy = 'full';
840 case SSL_POLICY_SELFSIGN:
841 $ssl_policy = 'self';
843 case SSL_POLICY_NONE:
845 $ssl_policy = 'none';
849 $url = $contact['notify'] . '&dfrn_id=' . $idtosend . '&dfrn_version=' . DFRN_PROTOCOL_VERSION . (($rino) ? '&rino='.$rino : '');
851 logger('dfrn_deliver: ' . $url);
853 $xml = fetch_url($url);
855 $curl_stat = $a->get_curl_code();
857 return(-1); // timed out
859 logger('dfrn_deliver: ' . $xml, LOGGER_DATA);
864 if(strpos($xml,'<?xml') === false) {
865 logger('dfrn_deliver: no valid XML returned');
866 logger('dfrn_deliver: returned XML: ' . $xml, LOGGER_DATA);
870 $res = parse_xml_string($xml);
872 if((intval($res->status) != 0) || (! strlen($res->challenge)) || (! strlen($res->dfrn_id)))
873 return (($res->status) ? $res->status : 3);
876 $sent_dfrn_id = hex2bin((string) $res->dfrn_id);
877 $challenge = hex2bin((string) $res->challenge);
878 $perm = (($res->perm) ? $res->perm : null);
879 $dfrn_version = (float) (($res->dfrn_version) ? $res->dfrn_version : 2.0);
880 $rino_remote_version = intval($res->rino);
881 $page = (($owner['page-flags'] == PAGE_COMMUNITY) ? 1 : 0);
883 logger("Remote rino version: ".$rino_remote_version." for ".$contact["url"], LOGGER_DEBUG);
885 if($owner['page-flags'] == PAGE_PRVGROUP)
891 if((($perm == 'rw') && (! intval($contact['writable'])))
892 || (($perm == 'r') && (intval($contact['writable'])))) {
893 q("update contact set writable = %d where id = %d",
894 intval(($perm == 'rw') ? 1 : 0),
895 intval($contact['id'])
897 $contact['writable'] = (string) 1 - intval($contact['writable']);
901 if(($contact['duplex'] && strlen($contact['pubkey']))
902 || ($owner['page-flags'] == PAGE_COMMUNITY && strlen($contact['pubkey']))
903 || ($contact['rel'] == CONTACT_IS_SHARING && strlen($contact['pubkey']))) {
904 openssl_public_decrypt($sent_dfrn_id,$final_dfrn_id,$contact['pubkey']);
905 openssl_public_decrypt($challenge,$postvars['challenge'],$contact['pubkey']);
907 openssl_private_decrypt($sent_dfrn_id,$final_dfrn_id,$contact['prvkey']);
908 openssl_private_decrypt($challenge,$postvars['challenge'],$contact['prvkey']);
911 $final_dfrn_id = substr($final_dfrn_id, 0, strpos($final_dfrn_id, '.'));
913 if(strpos($final_dfrn_id,':') == 1)
914 $final_dfrn_id = substr($final_dfrn_id,2);
916 if($final_dfrn_id != $orig_id) {
917 logger('dfrn_deliver: wrong dfrn_id.');
918 // did not decode properly - cannot trust this site
922 $postvars['dfrn_id'] = $idtosend;
923 $postvars['dfrn_version'] = DFRN_PROTOCOL_VERSION;
925 $postvars['dissolve'] = '1';
928 if((($contact['rel']) && ($contact['rel'] != CONTACT_IS_SHARING) && (! $contact['blocked'])) || ($owner['page-flags'] == PAGE_COMMUNITY)) {
929 $postvars['data'] = $atom;
930 $postvars['perm'] = 'rw';
932 $postvars['data'] = str_replace('<dfrn:comment-allow>1','<dfrn:comment-allow>0',$atom);
933 $postvars['perm'] = 'r';
936 $postvars['ssl_policy'] = $ssl_policy;
939 $postvars['page'] = $page;
942 if($rino>0 && $rino_remote_version>0 && (! $dissolve)) {
943 logger('rino version: '. $rino_remote_version);
945 switch($rino_remote_version) {
947 // Deprecated rino version!
948 $key = substr(random_string(),0,16);
949 $data = aes_encrypt($postvars['data'],$key);
952 // RINO 2 based on php-encryption
954 $key = Crypto::createNewRandomKey();
955 } catch (CryptoTestFailed $ex) {
956 logger('Cannot safely create a key');
958 } catch (CannotPerformOperation $ex) {
959 logger('Cannot safely create a key');
963 $data = Crypto::encrypt($postvars['data'], $key);
964 } catch (CryptoTestFailed $ex) {
965 logger('Cannot safely perform encryption');
967 } catch (CannotPerformOperation $ex) {
968 logger('Cannot safely perform encryption');
973 logger("rino: invalid requested verision '$rino_remote_version'");
977 $postvars['rino'] = $rino_remote_version;
978 $postvars['data'] = bin2hex($data);
980 #logger('rino: sent key = ' . $key, LOGGER_DEBUG);
983 if($dfrn_version >= 2.1) {
984 if(($contact['duplex'] && strlen($contact['pubkey']))
985 || ($owner['page-flags'] == PAGE_COMMUNITY && strlen($contact['pubkey']))
986 || ($contact['rel'] == CONTACT_IS_SHARING && strlen($contact['pubkey'])))
988 openssl_public_encrypt($key,$postvars['key'],$contact['pubkey']);
990 openssl_private_encrypt($key,$postvars['key'],$contact['prvkey']);
993 if(($contact['duplex'] && strlen($contact['prvkey'])) || ($owner['page-flags'] == PAGE_COMMUNITY))
994 openssl_private_encrypt($key,$postvars['key'],$contact['prvkey']);
996 openssl_public_encrypt($key,$postvars['key'],$contact['pubkey']);
1000 logger('md5 rawkey ' . md5($postvars['key']));
1002 $postvars['key'] = bin2hex($postvars['key']);
1006 logger('dfrn_deliver: ' . "SENDING: " . print_r($postvars,true), LOGGER_DATA);
1008 $xml = post_url($contact['notify'],$postvars);
1010 logger('dfrn_deliver: ' . "RECEIVED: " . $xml, LOGGER_DATA);
1012 $curl_stat = $a->get_curl_code();
1013 if((! $curl_stat) || (! strlen($xml)))
1014 return(-1); // timed out
1016 if(($curl_stat == 503) && (stristr($a->get_curl_headers(),'retry-after')))
1019 if(strpos($xml,'<?xml') === false) {
1020 logger('dfrn_deliver: phase 2: no valid XML returned');
1021 logger('dfrn_deliver: phase 2: returned XML: ' . $xml, LOGGER_DATA);
1025 if($contact['term-date'] != '0000-00-00 00:00:00') {
1026 logger("dfrn_deliver: $url back from the dead - removing mark for death");
1027 require_once('include/Contact.php');
1028 unmark_for_death($contact);
1031 $res = parse_xml_string($xml);
1033 return $res->status;