3 require_once('include/bbcode.php');
4 require_once('include/oembed.php');
5 require_once('include/salmon.php');
6 require_once('include/crypto.php');
7 require_once('include/Photo.php');
8 require_once('include/tags.php');
9 require_once('include/files.php');
10 require_once('include/text.php');
11 require_once('include/email.php');
12 require_once('include/threads.php');
13 require_once('include/socgraph.php');
14 require_once('include/plaintext.php');
15 require_once('include/ostatus.php');
16 require_once('include/feed.php');
17 require_once('mod/share.php');
19 require_once('library/defuse/php-encryption-1.2.1/Crypto.php');
22 function get_feed_for(&$a, $dfrn_id, $owner_nick, $last_update, $direction = 0, $forpubsub = false) {
25 $sitefeed = ((strlen($owner_nick)) ? false : true); // not yet implemented, need to rewrite huge chunks of following logic
26 $public_feed = (($dfrn_id) ? false : true);
27 $starred = false; // not yet implemented, possible security issues
30 if($public_feed && $a->argc > 2) {
31 for($x = 2; $x < $a->argc; $x++) {
32 if($a->argv[$x] == 'converse')
34 if($a->argv[$x] == 'starred')
36 if($a->argv[$x] === 'category' && $a->argc > ($x + 1) && strlen($a->argv[$x+1]))
37 $category = $a->argv[$x+1];
43 // default permissions - anonymous user
45 $sql_extra = " AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = '' AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = '' ";
47 $r = q("SELECT `contact`.*, `user`.`uid` AS `user_uid`, `user`.`nickname`, `user`.`timezone`, `user`.`page-flags`
48 FROM `contact` INNER JOIN `user` ON `user`.`uid` = `contact`.`uid`
49 WHERE `contact`.`self` = 1 AND `user`.`nickname` = '%s' LIMIT 1",
57 $owner_id = $owner['user_uid'];
58 $owner_nick = $owner['nickname'];
60 $birthday = feed_birthday($owner_id,$owner['timezone']);
70 $sql_extra = sprintf(" AND `issued-id` = '%s' ", dbesc($dfrn_id));
74 $sql_extra = sprintf(" AND `issued-id` = '%s' AND `duplex` = 1 ", dbesc($dfrn_id));
75 $my_id = '1:' . $dfrn_id;
78 $sql_extra = sprintf(" AND `dfrn-id` = '%s' AND `duplex` = 1 ", dbesc($dfrn_id));
79 $my_id = '0:' . $dfrn_id;
86 $r = q("SELECT * FROM `contact` WHERE `blocked` = 0 AND `pending` = 0 AND `contact`.`uid` = %d $sql_extra LIMIT 1",
94 require_once('include/security.php');
95 $groups = init_groups_visitor($contact['id']);
98 for($x = 0; $x < count($groups); $x ++)
99 $groups[$x] = '<' . intval($groups[$x]) . '>' ;
100 $gs = implode('|', $groups);
103 $gs = '<<>>' ; // Impossible to match
105 $sql_extra = sprintf("
106 AND ( `allow_cid` = '' OR `allow_cid` REGEXP '<%d>' )
107 AND ( `deny_cid` = '' OR NOT `deny_cid` REGEXP '<%d>' )
108 AND ( `allow_gid` = '' OR `allow_gid` REGEXP '%s' )
109 AND ( `deny_gid` = '' OR NOT `deny_gid` REGEXP '%s')
111 intval($contact['id']),
112 intval($contact['id']),
123 // Include answers to status.net posts in pubsub feeds
125 $sql_post_table = "INNER JOIN `thread` ON `thread`.`iid` = `item`.`parent`
126 LEFT JOIN `item` AS `thritem` ON `thritem`.`uri`=`item`.`thr-parent` AND `thritem`.`uid`=`item`.`uid`";
127 $visibility = sprintf("AND (`item`.`parent` = `item`.`id`) OR (`item`.`network` = '%s' AND ((`thread`.`network`='%s') OR (`thritem`.`network` = '%s')))",
128 dbesc(NETWORK_DFRN), dbesc(NETWORK_OSTATUS), dbesc(NETWORK_OSTATUS));
129 $date_field = "`received`";
130 $sql_order = "`item`.`received` DESC";
132 $date_field = "`changed`";
133 $sql_order = "`item`.`parent` ".$sort.", `item`.`created` ASC";
136 if(! strlen($last_update))
137 $last_update = 'now -30 days';
139 if(isset($category)) {
140 $sql_post_table = sprintf("INNER JOIN (SELECT `oid` FROM `term` WHERE `term` = '%s' AND `otype` = %d AND `type` = %d AND `uid` = %d ORDER BY `tid` DESC) AS `term` ON `item`.`id` = `term`.`oid` ",
141 dbesc(protect_sprintf($category)), intval(TERM_OBJ_POST), intval(TERM_CATEGORY), intval($owner_id));
142 //$sql_extra .= file_tag_file_query('item',$category,'category');
147 $sql_extra .= " AND `contact`.`self` = 1 ";
150 $check_date = datetime_convert('UTC','UTC',$last_update,'Y-m-d H:i:s');
152 // AND ( `item`.`edited` > '%s' OR `item`.`changed` > '%s' )
153 // dbesc($check_date),
155 $r = q("SELECT STRAIGHT_JOIN `item`.*, `item`.`id` AS `item_id`,
156 `contact`.`name`, `contact`.`network`, `contact`.`photo`, `contact`.`url`,
157 `contact`.`name-date`, `contact`.`uri-date`, `contact`.`avatar-date`,
158 `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
159 `contact`.`id` AS `contact-id`, `contact`.`uid` AS `contact-uid`,
160 `sign`.`signed_text`, `sign`.`signature`, `sign`.`signer`
161 FROM `item` $sql_post_table
162 INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
163 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
164 LEFT JOIN `sign` ON `sign`.`iid` = `item`.`id`
165 WHERE `item`.`uid` = %d AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`parent` != 0
166 AND ((`item`.`wall` = 1) $visibility) AND `item`.$date_field > '%s'
168 ORDER BY $sql_order LIMIT 0, 300",
174 // Will check further below if this actually returned results.
175 // We will provide an empty feed if that is the case.
179 $feed_template = get_markup_template(($dfrn_id) ? 'atom_feed_dfrn.tpl' : 'atom_feed.tpl');
183 $hubxml = feed_hublinks();
185 $salmon = feed_salmonlinks($owner_nick);
187 $alternatelink = $owner['url'];
190 $alternatelink .= "/category/".$category;
192 $atom .= replace_macros($feed_template, array(
193 '$version' => xmlify(FRIENDICA_VERSION),
194 '$feed_id' => xmlify($a->get_baseurl() . '/profile/' . $owner_nick),
195 '$feed_title' => xmlify($owner['name']),
196 '$feed_updated' => xmlify(datetime_convert('UTC', 'UTC', 'now' , ATOM_TIME)) ,
198 '$salmon' => $salmon,
199 '$alternatelink' => xmlify($alternatelink),
200 '$name' => xmlify($owner['name']),
201 '$profile_page' => xmlify($owner['url']),
202 '$photo' => xmlify($owner['photo']),
203 '$thumb' => xmlify($owner['thumb']),
204 '$picdate' => xmlify(datetime_convert('UTC','UTC',$owner['avatar-date'] . '+00:00' , ATOM_TIME)) ,
205 '$uridate' => xmlify(datetime_convert('UTC','UTC',$owner['uri-date'] . '+00:00' , ATOM_TIME)) ,
206 '$namdate' => xmlify(datetime_convert('UTC','UTC',$owner['name-date'] . '+00:00' , ATOM_TIME)) ,
207 '$birthday' => ((strlen($birthday)) ? '<dfrn:birthday>' . xmlify($birthday) . '</dfrn:birthday>' : ''),
208 '$community' => (($owner['page-flags'] == PAGE_COMMUNITY) ? '<dfrn:community>1</dfrn:community>' : '')
211 call_hooks('atom_feed', $atom);
213 if(! count($items)) {
215 call_hooks('atom_feed_end', $atom);
217 $atom .= '</feed>' . "\r\n";
221 foreach($items as $item) {
223 // prevent private email from leaking.
224 if($item['network'] === NETWORK_MAIL)
227 // public feeds get html, our own nodes use bbcode
231 // catch any email that's in a public conversation and make sure it doesn't leak
239 $atom .= atom_entry($item,$type,null,$owner,true);
242 call_hooks('atom_feed_end', $atom);
244 $atom .= '</feed>' . "\r\n";
250 function construct_verb($item) {
252 return $item['verb'];
253 return ACTIVITY_POST;
256 function construct_activity_object($item) {
258 if($item['object']) {
259 $o = '<as:object>' . "\r\n";
260 $r = parse_xml_string($item['object'],false);
266 $o .= '<as:object-type>' . xmlify($r->type) . '</as:object-type>' . "\r\n";
268 $o .= '<id>' . xmlify($r->id) . '</id>' . "\r\n";
270 $o .= '<title>' . xmlify($r->title) . '</title>' . "\r\n";
272 if(substr($r->link,0,1) === '<') {
273 // patch up some facebook "like" activity objects that got stored incorrectly
274 // for a couple of months prior to 9-Jun-2011 and generated bad XML.
275 // we can probably remove this hack here and in the following function in a few months time.
276 if(strstr($r->link,'&') && (! strstr($r->link,'&')))
277 $r->link = str_replace('&','&', $r->link);
278 $r->link = preg_replace('/\<link(.*?)\"\>/','<link$1"/>',$r->link);
282 $o .= '<link rel="alternate" type="text/html" href="' . xmlify($r->link) . '" />' . "\r\n";
285 $o .= '<content type="html" >' . xmlify(bbcode($r->content)) . '</content>' . "\r\n";
286 $o .= '</as:object>' . "\r\n";
293 function construct_activity_target($item) {
295 if($item['target']) {
296 $o = '<as:target>' . "\r\n";
297 $r = parse_xml_string($item['target'],false);
301 $o .= '<as:object-type>' . xmlify($r->type) . '</as:object-type>' . "\r\n";
303 $o .= '<id>' . xmlify($r->id) . '</id>' . "\r\n";
305 $o .= '<title>' . xmlify($r->title) . '</title>' . "\r\n";
307 if(substr($r->link,0,1) === '<') {
308 if(strstr($r->link,'&') && (! strstr($r->link,'&')))
309 $r->link = str_replace('&','&', $r->link);
310 $r->link = preg_replace('/\<link(.*?)\"\>/','<link$1"/>',$r->link);
314 $o .= '<link rel="alternate" type="text/html" href="' . xmlify($r->link) . '" />' . "\r\n";
317 $o .= '<content type="html" >' . xmlify(bbcode($r->content)) . '</content>' . "\r\n";
318 $o .= '</as:target>' . "\r\n";
327 * The purpose of this function is to apply system message length limits to
328 * imported messages without including any embedded photos in the length
330 if(! function_exists('limit_body_size')) {
331 function limit_body_size($body) {
333 // logger('limit_body_size: start', LOGGER_DEBUG);
335 $maxlen = get_max_import_size();
337 // If the length of the body, including the embedded images, is smaller
338 // than the maximum, then don't waste time looking for the images
339 if($maxlen && (strlen($body) > $maxlen)) {
341 logger('limit_body_size: the total body length exceeds the limit', LOGGER_DEBUG);
348 $img_start = strpos($orig_body, '[img');
349 $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false);
350 $img_end = ($img_start !== false ? strpos(substr($orig_body, $img_start), '[/img]') : false);
351 while(($img_st_close !== false) && ($img_end !== false)) {
353 $img_st_close++; // make it point to AFTER the closing bracket
354 $img_end += $img_start;
355 $img_end += strlen('[/img]');
357 if(! strcmp(substr($orig_body, $img_start + $img_st_close, 5), 'data:')) {
358 // This is an embedded image
360 if( ($textlen + $img_start) > $maxlen ) {
361 if($textlen < $maxlen) {
362 logger('limit_body_size: the limit happens before an embedded image', LOGGER_DEBUG);
363 $new_body = $new_body . substr($orig_body, 0, $maxlen - $textlen);
368 $new_body = $new_body . substr($orig_body, 0, $img_start);
369 $textlen += $img_start;
372 $new_body = $new_body . substr($orig_body, $img_start, $img_end - $img_start);
376 if( ($textlen + $img_end) > $maxlen ) {
377 if($textlen < $maxlen) {
378 logger('limit_body_size: the limit happens before the end of a non-embedded image', LOGGER_DEBUG);
379 $new_body = $new_body . substr($orig_body, 0, $maxlen - $textlen);
384 $new_body = $new_body . substr($orig_body, 0, $img_end);
385 $textlen += $img_end;
388 $orig_body = substr($orig_body, $img_end);
390 if($orig_body === false) // in case the body ends on a closing image tag
393 $img_start = strpos($orig_body, '[img');
394 $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false);
395 $img_end = ($img_start !== false ? strpos(substr($orig_body, $img_start), '[/img]') : false);
398 if( ($textlen + strlen($orig_body)) > $maxlen) {
399 if($textlen < $maxlen) {
400 logger('limit_body_size: the limit happens after the end of the last image', LOGGER_DEBUG);
401 $new_body = $new_body . substr($orig_body, 0, $maxlen - $textlen);
406 logger('limit_body_size: the text size with embedded images extracted did not violate the limit', LOGGER_DEBUG);
407 $new_body = $new_body . $orig_body;
408 $textlen += strlen($orig_body);
417 function title_is_body($title, $body) {
419 $title = strip_tags($title);
420 $title = trim($title);
421 $title = html_entity_decode($title, ENT_QUOTES, 'UTF-8');
422 $title = str_replace(array("\n", "\r", "\t", " "), array("","","",""), $title);
424 $body = strip_tags($body);
426 $body = html_entity_decode($body, ENT_QUOTES, 'UTF-8');
427 $body = str_replace(array("\n", "\r", "\t", " "), array("","","",""), $body);
429 if (strlen($title) < strlen($body))
430 $body = substr($body, 0, strlen($title));
432 if (($title != $body) and (substr($title, -3) == "...")) {
433 $pos = strrpos($title, "...");
435 $title = substr($title, 0, $pos);
436 $body = substr($body, 0, $pos);
440 return($title == $body);
445 function get_atom_elements($feed, $item, $contact = array()) {
447 require_once('library/HTMLPurifier.auto.php');
448 require_once('include/html2bbcode.php');
450 $best_photo = array();
454 $author = $item->get_author();
456 $res['author-name'] = unxmlify($author->get_name());
457 $res['author-link'] = unxmlify($author->get_link());
460 $res['author-name'] = unxmlify($feed->get_title());
461 $res['author-link'] = unxmlify($feed->get_permalink());
463 $res['uri'] = unxmlify($item->get_id());
464 $res['title'] = unxmlify($item->get_title());
465 $res['body'] = unxmlify($item->get_content());
466 $res['plink'] = unxmlify($item->get_link(0));
468 if (isset($contact["network"]) AND ($contact["network"] == NETWORK_FEED) AND strstr($res['plink'], ".app.net/")) {
469 logger("get_atom_elements: detected app.net posting: ".print_r($res, true), LOGGER_DEBUG);
471 $res['body'] = nl2br($res['body']);
474 // removing the content of the title if its identically to the body
475 // This helps with auto generated titles e.g. from tumblr
476 if (title_is_body($res["title"], $res["body"]))
480 $base_url = implode('/', array_slice(explode('/',$res['plink']),0,3));
484 // look for a photo. We should check media size and find the best one,
485 // but for now let's just find any author photo
486 // Additionally we look for an alternate author link. On OStatus this one is the one we want.
488 $authorlinks = $item->feed->data["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["feed"][0]["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["author"][0]["child"]["http://www.w3.org/2005/Atom"]["link"];
489 if (is_array($authorlinks)) {
490 foreach ($authorlinks as $link) {
491 $linkdata = array_shift($link["attribs"]);
493 if ($linkdata["rel"] == "alternate")
494 $res["author-link"] = $linkdata["href"];
498 $rawauthor = $item->get_item_tags(SIMPLEPIE_NAMESPACE_ATOM_10,'author');
500 if($rawauthor && $rawauthor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link']) {
501 $base = $rawauthor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link'];
502 foreach($base as $link) {
503 if($link['attribs']['']['rel'] === 'alternate')
504 $res['author-link'] = unxmlify($link['attribs']['']['href']);
506 if(!x($res, 'author-avatar') || !$res['author-avatar']) {
507 if($link['attribs']['']['rel'] === 'photo' || $link['attribs']['']['rel'] === 'avatar')
508 $res['author-avatar'] = unxmlify($link['attribs']['']['href']);
513 $rawactor = $item->get_item_tags(NAMESPACE_ACTIVITY, 'actor');
515 if($rawactor && activity_match($rawactor[0]['child'][NAMESPACE_ACTIVITY]['object-type'][0]['data'],ACTIVITY_OBJ_PERSON)) {
516 $base = $rawactor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link'];
517 if($base && count($base)) {
518 foreach($base as $link) {
519 if($link['attribs']['']['rel'] === 'alternate' && (! $res['author-link']))
520 $res['author-link'] = unxmlify($link['attribs']['']['href']);
521 if(!x($res, 'author-avatar') || !$res['author-avatar']) {
522 if($link['attribs']['']['rel'] === 'avatar' || $link['attribs']['']['rel'] === 'photo')
523 $res['author-avatar'] = unxmlify($link['attribs']['']['href']);
529 // No photo/profile-link on the item - look at the feed level
531 if((! (x($res,'author-link'))) || (! (x($res,'author-avatar')))) {
532 $rawauthor = $feed->get_feed_tags(SIMPLEPIE_NAMESPACE_ATOM_10,'author');
533 if($rawauthor && $rawauthor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link']) {
534 $base = $rawauthor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link'];
535 foreach($base as $link) {
536 if($link['attribs']['']['rel'] === 'alternate' && (! $res['author-link']))
537 $res['author-link'] = unxmlify($link['attribs']['']['href']);
538 if(! $res['author-avatar']) {
539 if($link['attribs']['']['rel'] === 'photo' || $link['attribs']['']['rel'] === 'avatar')
540 $res['author-avatar'] = unxmlify($link['attribs']['']['href']);
545 $rawactor = $feed->get_feed_tags(NAMESPACE_ACTIVITY, 'subject');
547 if($rawactor && activity_match($rawactor[0]['child'][NAMESPACE_ACTIVITY]['object-type'][0]['data'],ACTIVITY_OBJ_PERSON)) {
548 $base = $rawactor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link'];
550 if($base && count($base)) {
551 foreach($base as $link) {
552 if($link['attribs']['']['rel'] === 'alternate' && (! $res['author-link']))
553 $res['author-link'] = unxmlify($link['attribs']['']['href']);
554 if(! (x($res,'author-avatar'))) {
555 if($link['attribs']['']['rel'] === 'avatar' || $link['attribs']['']['rel'] === 'photo')
556 $res['author-avatar'] = unxmlify($link['attribs']['']['href']);
563 $apps = $item->get_item_tags(NAMESPACE_STATUSNET,'notice_info');
564 if($apps && $apps[0]['attribs']['']['source']) {
565 $res['app'] = strip_tags(unxmlify($apps[0]['attribs']['']['source']));
566 if($res['app'] === 'web')
567 $res['app'] = 'OStatus';
570 // base64 encoded json structure representing Diaspora signature
572 $dsig = $item->get_item_tags(NAMESPACE_DFRN,'diaspora_signature');
574 $res['dsprsig'] = unxmlify($dsig[0]['data']);
577 $dguid = $item->get_item_tags(NAMESPACE_DFRN,'diaspora_guid');
579 $res['guid'] = unxmlify($dguid[0]['data']);
581 $bm = $item->get_item_tags(NAMESPACE_DFRN,'bookmark');
583 $res['bookmark'] = ((unxmlify($bm[0]['data']) === 'true') ? 1 : 0);
587 * If there's a copy of the body content which is guaranteed to have survived mangling in transit, use it.
590 $have_real_body = false;
592 $rawenv = $item->get_item_tags(NAMESPACE_DFRN, 'env');
594 $have_real_body = true;
595 $res['body'] = $rawenv[0]['data'];
596 $res['body'] = str_replace(array(' ',"\t","\r","\n"), array('','','',''),$res['body']);
597 // make sure nobody is trying to sneak some html tags by us
598 $res['body'] = notags(base64url_decode($res['body']));
602 $res['body'] = limit_body_size($res['body']);
604 // It isn't certain at this point whether our content is plaintext or html and we'd be foolish to trust
605 // the content type. Our own network only emits text normally, though it might have been converted to
606 // html if we used a pubsubhubbub transport. But if we see even one html tag in our text, we will
607 // have to assume it is all html and needs to be purified.
609 // It doesn't matter all that much security wise - because before this content is used anywhere, we are
610 // going to escape any tags we find regardless, but this lets us import a limited subset of html from
611 // the wild, by sanitising it and converting supported tags to bbcode before we rip out any remaining
614 if((strpos($res['body'],'<') !== false) && (strpos($res['body'],'>') !== false)) {
616 $res['body'] = reltoabs($res['body'],$base_url);
618 $res['body'] = html2bb_video($res['body']);
620 $res['body'] = oembed_html2bbcode($res['body']);
622 $config = HTMLPurifier_Config::createDefault();
623 $config->set('Cache.DefinitionImpl', null);
625 // we shouldn't need a whitelist, because the bbcode converter
626 // will strip out any unsupported tags.
628 $purifier = new HTMLPurifier($config);
629 $res['body'] = $purifier->purify($res['body']);
631 $res['body'] = @html2bbcode($res['body']);
635 elseif(! $have_real_body) {
637 // it's not one of our messages and it has no tags
638 // so it's probably just text. We'll escape it just to be safe.
640 $res['body'] = escape_tags($res['body']);
644 // this tag is obsolete but we keep it for really old sites
646 $allow = $item->get_item_tags(NAMESPACE_DFRN,'comment-allow');
647 if($allow && $allow[0]['data'] == 1)
648 $res['last-child'] = 1;
650 $res['last-child'] = 0;
652 $private = $item->get_item_tags(NAMESPACE_DFRN,'private');
653 if($private && intval($private[0]['data']) > 0)
654 $res['private'] = intval($private[0]['data']);
658 $extid = $item->get_item_tags(NAMESPACE_DFRN,'extid');
659 if($extid && $extid[0]['data'])
660 $res['extid'] = $extid[0]['data'];
662 $rawlocation = $item->get_item_tags(NAMESPACE_DFRN, 'location');
664 $res['location'] = unxmlify($rawlocation[0]['data']);
667 $rawcreated = $item->get_item_tags(SIMPLEPIE_NAMESPACE_ATOM_10,'published');
669 $res['created'] = unxmlify($rawcreated[0]['data']);
672 $rawedited = $item->get_item_tags(SIMPLEPIE_NAMESPACE_ATOM_10,'updated');
674 $res['edited'] = unxmlify($rawedited[0]['data']);
676 if((x($res,'edited')) && (! (x($res,'created'))))
677 $res['created'] = $res['edited'];
679 if(! $res['created'])
680 $res['created'] = $item->get_date('c');
683 $res['edited'] = $item->get_date('c');
686 // Disallow time travelling posts
688 $d1 = strtotime($res['created']);
689 $d2 = strtotime($res['edited']);
690 $d3 = strtotime('now');
693 $res['created'] = datetime_convert();
695 $res['edited'] = datetime_convert();
697 $rawowner = $item->get_item_tags(NAMESPACE_DFRN, 'owner');
698 if($rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['name'][0]['data'])
699 $res['owner-name'] = unxmlify($rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['name'][0]['data']);
700 elseif($rawowner[0]['child'][NAMESPACE_DFRN]['name'][0]['data'])
701 $res['owner-name'] = unxmlify($rawowner[0]['child'][NAMESPACE_DFRN]['name'][0]['data']);
702 if($rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['uri'][0]['data'])
703 $res['owner-link'] = unxmlify($rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['uri'][0]['data']);
704 elseif($rawowner[0]['child'][NAMESPACE_DFRN]['uri'][0]['data'])
705 $res['owner-link'] = unxmlify($rawowner[0]['child'][NAMESPACE_DFRN]['uri'][0]['data']);
707 if($rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link']) {
708 $base = $rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link'];
710 foreach($base as $link) {
711 if(!x($res, 'owner-avatar') || !$res['owner-avatar']) {
712 if($link['attribs']['']['rel'] === 'photo' || $link['attribs']['']['rel'] === 'avatar')
713 $res['owner-avatar'] = unxmlify($link['attribs']['']['href']);
718 $rawgeo = $item->get_item_tags(NAMESPACE_GEORSS,'point');
720 $res['coord'] = unxmlify($rawgeo[0]['data']);
722 if ($contact["network"] == NETWORK_FEED) {
723 $res['verb'] = ACTIVITY_POST;
724 $res['object-type'] = ACTIVITY_OBJ_NOTE;
727 $rawverb = $item->get_item_tags(NAMESPACE_ACTIVITY, 'verb');
729 // select between supported verbs
732 $res['verb'] = unxmlify($rawverb[0]['data']);
735 // translate OStatus unfollow to activity streams if it happened to get selected
737 if((x($res,'verb')) && ($res['verb'] === 'http://ostatus.org/schema/1.0/unfollow'))
738 $res['verb'] = ACTIVITY_UNFOLLOW;
740 $cats = $item->get_categories();
743 foreach($cats as $cat) {
744 $term = $cat->get_term();
746 $term = $cat->get_label();
747 $scheme = $cat->get_scheme();
748 if($scheme && $term && stristr($scheme,'X-DFRN:'))
749 $tag_arr[] = substr($scheme,7,1) . '[url=' . unxmlify(substr($scheme,9)) . ']' . unxmlify($term) . '[/url]';
751 $tag_arr[] = notags(trim($term));
753 $res['tag'] = implode(',', $tag_arr);
756 $attach = $item->get_enclosures();
759 foreach($attach as $att) {
760 $len = intval($att->get_length());
761 $link = str_replace(array(',','"'),array('%2D','%22'),notags(trim(unxmlify($att->get_link()))));
762 $title = str_replace(array(',','"'),array('%2D','%22'),notags(trim(unxmlify($att->get_title()))));
763 $type = str_replace(array(',','"'),array('%2D','%22'),notags(trim(unxmlify($att->get_type()))));
764 if(strpos($type,';'))
765 $type = substr($type,0,strpos($type,';'));
766 if((! $link) || (strpos($link,'http') !== 0))
772 $type = 'application/octet-stream';
774 $att_arr[] = '[attach]href="' . $link . '" length="' . $len . '" type="' . $type . '" title="' . $title . '"[/attach]';
776 $res['attach'] = implode(',', $att_arr);
779 $rawobj = $item->get_item_tags(NAMESPACE_ACTIVITY, 'object');
782 $res['object'] = '<object>' . "\n";
783 $child = $rawobj[0]['child'];
784 if($child[NAMESPACE_ACTIVITY]['object-type'][0]['data']) {
785 $res['object-type'] = $child[NAMESPACE_ACTIVITY]['object-type'][0]['data'];
786 $res['object'] .= '<type>' . $child[NAMESPACE_ACTIVITY]['object-type'][0]['data'] . '</type>' . "\n";
788 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'id') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['id'][0]['data'])
789 $res['object'] .= '<id>' . $child[SIMPLEPIE_NAMESPACE_ATOM_10]['id'][0]['data'] . '</id>' . "\n";
790 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'link') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['link'])
791 $res['object'] .= '<link>' . encode_rel_links($child[SIMPLEPIE_NAMESPACE_ATOM_10]['link']) . '</link>' . "\n";
792 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'title') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['title'][0]['data'])
793 $res['object'] .= '<title>' . $child[SIMPLEPIE_NAMESPACE_ATOM_10]['title'][0]['data'] . '</title>' . "\n";
794 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'content') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['content'][0]['data']) {
795 $body = $child[SIMPLEPIE_NAMESPACE_ATOM_10]['content'][0]['data'];
797 $body = $child[SIMPLEPIE_NAMESPACE_ATOM_10]['summary'][0]['data'];
798 // preserve a copy of the original body content in case we later need to parse out any microformat information, e.g. events
799 $res['object'] .= '<orig>' . xmlify($body) . '</orig>' . "\n";
800 if((strpos($body,'<') !== false) || (strpos($body,'>') !== false)) {
802 $body = html2bb_video($body);
804 $config = HTMLPurifier_Config::createDefault();
805 $config->set('Cache.DefinitionImpl', null);
807 $purifier = new HTMLPurifier($config);
808 $body = $purifier->purify($body);
809 $body = html2bbcode($body);
812 $res['object'] .= '<content>' . $body . '</content>' . "\n";
815 $res['object'] .= '</object>' . "\n";
818 $rawobj = $item->get_item_tags(NAMESPACE_ACTIVITY, 'target');
821 $res['target'] = '<target>' . "\n";
822 $child = $rawobj[0]['child'];
823 if($child[NAMESPACE_ACTIVITY]['object-type'][0]['data']) {
824 $res['target'] .= '<type>' . $child[NAMESPACE_ACTIVITY]['object-type'][0]['data'] . '</type>' . "\n";
826 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'id') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['id'][0]['data'])
827 $res['target'] .= '<id>' . $child[SIMPLEPIE_NAMESPACE_ATOM_10]['id'][0]['data'] . '</id>' . "\n";
828 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'link') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['link'])
829 $res['target'] .= '<link>' . encode_rel_links($child[SIMPLEPIE_NAMESPACE_ATOM_10]['link']) . '</link>' . "\n";
830 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'data') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['title'][0]['data'])
831 $res['target'] .= '<title>' . $child[SIMPLEPIE_NAMESPACE_ATOM_10]['title'][0]['data'] . '</title>' . "\n";
832 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'data') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['content'][0]['data']) {
833 $body = $child[SIMPLEPIE_NAMESPACE_ATOM_10]['content'][0]['data'];
835 $body = $child[SIMPLEPIE_NAMESPACE_ATOM_10]['summary'][0]['data'];
836 // preserve a copy of the original body content in case we later need to parse out any microformat information, e.g. events
837 $res['target'] .= '<orig>' . xmlify($body) . '</orig>' . "\n";
838 if((strpos($body,'<') !== false) || (strpos($body,'>') !== false)) {
840 $body = html2bb_video($body);
842 $config = HTMLPurifier_Config::createDefault();
843 $config->set('Cache.DefinitionImpl', null);
845 $purifier = new HTMLPurifier($config);
846 $body = $purifier->purify($body);
847 $body = html2bbcode($body);
850 $res['target'] .= '<content>' . $body . '</content>' . "\n";
853 $res['target'] .= '</target>' . "\n";
856 // This is some experimental stuff. By now retweets are shown with "RT:"
857 // But: There is data so that the message could be shown similar to native retweets
858 // There is some better way to parse this array - but it didn't worked for me.
859 $child = $item->feed->data["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["feed"][0]["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["entry"][0]["child"]["http://activitystrea.ms/spec/1.0/"][object][0]["child"];
860 if (is_array($child)) {
861 logger('get_atom_elements: Looking for status.net repeated message');
863 $message = $child["http://activitystrea.ms/spec/1.0/"]["object"][0]["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["content"][0]["data"];
864 $orig_id = ostatus_convert_href($child["http://activitystrea.ms/spec/1.0/"]["object"][0]["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["id"][0]["data"]);
865 $author = $child[SIMPLEPIE_NAMESPACE_ATOM_10]["author"][0]["child"][SIMPLEPIE_NAMESPACE_ATOM_10];
866 $uri = $author["uri"][0]["data"];
867 $name = $author["name"][0]["data"];
868 $avatar = @array_shift($author["link"][2]["attribs"]);
869 $avatar = $avatar["href"];
871 if (($name != "") and ($uri != "") and ($avatar != "") and ($message != "")) {
872 logger('get_atom_elements: fixing sender of repeated message. '.$orig_id, LOGGER_DEBUG);
874 if (!intval(get_config('system','wall-to-wall_share'))) {
875 $prefix = share_header($name, $uri, $avatar, "", "", $orig_link);
877 $res["body"] = $prefix.html2bbcode($message)."[/share]";
879 $res["owner-name"] = $res["author-name"];
880 $res["owner-link"] = $res["author-link"];
881 $res["owner-avatar"] = $res["author-avatar"];
883 $res["author-name"] = $name;
884 $res["author-link"] = $uri;
885 $res["author-avatar"] = $avatar;
887 $res["body"] = html2bbcode($message);
892 if (isset($contact["network"]) AND ($contact["network"] == NETWORK_FEED) AND $contact['fetch_further_information']) {
895 // Handle enclosures and treat them as preview picture
897 foreach ($attach AS $attachment)
898 if ($attachment->type == "image/jpeg")
899 $preview = $attachment->link;
901 $res["body"] = $res["title"].add_page_info($res['plink'], false, $preview, ($contact['fetch_further_information'] == 2), $contact['ffi_keyword_blacklist']);
902 $res["tag"] = add_page_keywords($res['plink'], false, $preview, ($contact['fetch_further_information'] == 2), $contact['ffi_keyword_blacklist']);
904 $res["object-type"] = ACTIVITY_OBJ_BOOKMARK;
905 unset($res["attach"]);
906 } elseif (isset($contact["network"]) AND ($contact["network"] == NETWORK_OSTATUS))
907 $res["body"] = add_page_info_to_body($res["body"]);
908 elseif (isset($contact["network"]) AND ($contact["network"] == NETWORK_FEED) AND strstr($res['plink'], ".app.net/")) {
909 $res["body"] = add_page_info_to_body($res["body"]);
912 $arr = array('feed' => $feed, 'item' => $item, 'result' => $res);
914 call_hooks('parse_atom', $arr);
919 function add_page_info_data($data) {
920 call_hooks('page_info_data', $data);
922 // It maybe is a rich content, but if it does have everything that a link has,
923 // then treat it that way
924 if (($data["type"] == "rich") AND is_string($data["title"]) AND
925 is_string($data["text"]) AND (sizeof($data["images"]) > 0))
926 $data["type"] = "link";
928 if ((($data["type"] != "link") AND ($data["type"] != "video") AND ($data["type"] != "photo")) OR ($data["title"] == $url))
931 if ($no_photos AND ($data["type"] == "photo"))
934 // If the link contains BBCode stuff, make a short link out of this to avoid parsing problems
935 if (strpos($data["url"], '[') OR strpos($data["url"], ']')) {
936 require_once("include/network.php");
937 $data["url"] = short_link($data["url"]);
940 if (($data["type"] != "photo") AND is_string($data["title"]))
941 $text .= "[bookmark=".$data["url"]."]".trim($data["title"])."[/bookmark]";
943 if (($data["type"] != "video") AND ($photo != ""))
944 $text .= '[img]'.$photo.'[/img]';
945 elseif (($data["type"] != "video") AND (sizeof($data["images"]) > 0)) {
946 $imagedata = $data["images"][0];
947 $text .= '[img]'.$imagedata["src"].'[/img]';
950 if (($data["type"] != "photo") AND is_string($data["text"]))
951 $text .= "[quote]".$data["text"]."[/quote]";
954 if (isset($data["keywords"]) AND count($data["keywords"])) {
957 foreach ($data["keywords"] AS $keyword) {
958 /// @todo make a positive list of allowed characters
959 $hashtag = str_replace(array(" ", "+", "/", ".", "#", "'", "’", "`", "(", ")", "„", "“"),
960 array("","", "", "", "", "", "", "", "", "", "", ""), $keyword);
961 $hashtags .= "#[url=".$a->get_baseurl()."/search?tag=".rawurlencode($hashtag)."]".$hashtag."[/url] ";
965 return("\n[class=type-".$data["type"]."]".$text."[/class]".$hashtags);
968 function query_page_info($url, $no_photos = false, $photo = "", $keywords = false, $keyword_blacklist = "") {
969 require_once("mod/parse_url.php");
971 $data = parseurl_getsiteinfo_cached($url, true);
974 $data["images"][0]["src"] = $photo;
976 logger('fetch page info for '.$url.' '.print_r($data, true), LOGGER_DEBUG);
978 if (!$keywords AND isset($data["keywords"]))
979 unset($data["keywords"]);
981 if (($keyword_blacklist != "") AND isset($data["keywords"])) {
982 $list = explode(",", $keyword_blacklist);
983 foreach ($list AS $keyword) {
984 $keyword = trim($keyword);
985 $index = array_search($keyword, $data["keywords"]);
986 if ($index !== false)
987 unset($data["keywords"][$index]);
994 function add_page_keywords($url, $no_photos = false, $photo = "", $keywords = false, $keyword_blacklist = "") {
995 $data = query_page_info($url, $no_photos, $photo, $keywords, $keyword_blacklist);
998 if (isset($data["keywords"]) AND count($data["keywords"])) {
1000 foreach ($data["keywords"] AS $keyword) {
1001 $hashtag = str_replace(array(" ", "+", "/", ".", "#", "'"),
1002 array("","", "", "", "", ""), $keyword);
1007 $tags .= "#[url=".$a->get_baseurl()."/search?tag=".rawurlencode($hashtag)."]".$hashtag."[/url]";
1014 function add_page_info($url, $no_photos = false, $photo = "", $keywords = false, $keyword_blacklist = "") {
1015 $data = query_page_info($url, $no_photos, $photo, $keywords, $keyword_blacklist);
1017 $text = add_page_info_data($data);
1022 function add_page_info_to_body($body, $texturl = false, $no_photos = false) {
1024 logger('add_page_info_to_body: fetch page info for body '.$body, LOGGER_DEBUG);
1026 $URLSearchString = "^\[\]";
1028 // Adding these spaces is a quick hack due to my problems with regular expressions :)
1029 preg_match("/[^!#@]\[url\]([$URLSearchString]*)\[\/url\]/ism", " ".$body, $matches);
1032 preg_match("/[^!#@]\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism", " ".$body, $matches);
1034 // Convert urls without bbcode elements
1035 if (!$matches AND $texturl) {
1036 preg_match("/([^\]\='".'"'."]|^)(https?\:\/\/[a-zA-Z0-9\:\/\-\?\&\;\.\=\_\~\#\%\$\!\+\,]+)/ism", " ".$body, $matches);
1038 // Yeah, a hack. I really hate regular expressions :)
1040 $matches[1] = $matches[2];
1044 $footer = add_page_info($matches[1], $no_photos);
1046 // Remove the link from the body if the link is attached at the end of the post
1047 if (isset($footer) AND (trim($footer) != "") AND (strpos($footer, $matches[1]))) {
1048 $removedlink = trim(str_replace($matches[1], "", $body));
1049 if (($removedlink == "") OR strstr($body, $removedlink))
1050 $body = $removedlink;
1052 $url = str_replace(array('/', '.'), array('\/', '\.'), $matches[1]);
1053 $removedlink = preg_replace("/\[url\=".$url."\](.*?)\[\/url\]/ism", '', $body);
1054 if (($removedlink == "") OR strstr($body, $removedlink))
1055 $body = $removedlink;
1058 // Add the page information to the bottom
1059 if (isset($footer) AND (trim($footer) != ""))
1065 function encode_rel_links($links) {
1067 if(! ((is_array($links)) && (count($links))))
1069 foreach($links as $link) {
1071 if($link['attribs']['']['rel'])
1072 $o .= 'rel="' . $link['attribs']['']['rel'] . '" ';
1073 if($link['attribs']['']['type'])
1074 $o .= 'type="' . $link['attribs']['']['type'] . '" ';
1075 if($link['attribs']['']['href'])
1076 $o .= 'href="' . $link['attribs']['']['href'] . '" ';
1077 if( (x($link['attribs'],NAMESPACE_MEDIA)) && $link['attribs'][NAMESPACE_MEDIA]['width'])
1078 $o .= 'media:width="' . $link['attribs'][NAMESPACE_MEDIA]['width'] . '" ';
1079 if( (x($link['attribs'],NAMESPACE_MEDIA)) && $link['attribs'][NAMESPACE_MEDIA]['height'])
1080 $o .= 'media:height="' . $link['attribs'][NAMESPACE_MEDIA]['height'] . '" ';
1081 $o .= ' />' . "\n" ;
1086 function add_guid($item) {
1087 $r = q("SELECT `guid` FROM `guid` WHERE `guid` = '%s' LIMIT 1", dbesc($item["guid"]));
1091 q("INSERT INTO `guid` (`guid`,`plink`,`uri`,`network`) VALUES ('%s','%s','%s','%s')",
1092 dbesc($item["guid"]), dbesc($item["plink"]),
1093 dbesc($item["uri"]), dbesc($item["network"]));
1097 * Adds a "lang" specification in a "postopts" element of given $arr,
1098 * if possible and not already present.
1099 * Expects "body" element to exist in $arr.
1101 * @todo Add a parameter to request forcing override
1103 function item_add_language_opt(&$arr) {
1105 if (version_compare(PHP_VERSION, '5.3.0', '<')) return; // LanguageDetect.php not available ?
1107 if ( x($arr, 'postopts') )
1109 if ( strstr($arr['postopts'], 'lang=') )
1112 /// @TODO Add parameter to request overriding
1115 $postopts = $arr['postopts'];
1122 require_once('library/langdet/Text/LanguageDetect.php');
1123 $naked_body = preg_replace('/\[(.+?)\]/','',$arr['body']);
1124 $l = new Text_LanguageDetect;
1125 //$lng = $l->detectConfidence($naked_body);
1126 //$arr['postopts'] = (($lng['language']) ? 'lang=' . $lng['language'] . ';' . $lng['confidence'] : '');
1127 $lng = $l->detect($naked_body, 3);
1129 if (sizeof($lng) > 0) {
1130 if ($postopts != "") $postopts .= '&'; // arbitrary separator, to be reviewed
1131 $postopts .= 'lang=';
1133 foreach ($lng as $language => $score) {
1134 $postopts .= $sep . $language.";".$score;
1137 $arr['postopts'] = $postopts;
1141 function item_store($arr,$force_parent = false, $notify = false, $dontcache = false) {
1143 // If it is a posting where users should get notifications, then define it as wall posting
1146 $arr['type'] = 'wall';
1148 $arr['last-child'] = 1;
1149 $arr['network'] = NETWORK_DFRN;
1152 // If a Diaspora signature structure was passed in, pull it out of the
1153 // item array and set it aside for later storage.
1156 if(x($arr,'dsprsig')) {
1157 $dsprsig = json_decode(base64_decode($arr['dsprsig']));
1158 unset($arr['dsprsig']);
1161 // Converting the plink
1162 if ($arr['network'] == NETWORK_OSTATUS) {
1163 if (isset($arr['plink']))
1164 $arr['plink'] = ostatus_convert_href($arr['plink']);
1165 elseif (isset($arr['uri']))
1166 $arr['plink'] = ostatus_convert_href($arr['uri']);
1169 if(x($arr, 'gravity'))
1170 $arr['gravity'] = intval($arr['gravity']);
1171 elseif($arr['parent-uri'] === $arr['uri'])
1172 $arr['gravity'] = 0;
1173 elseif(activity_match($arr['verb'],ACTIVITY_POST))
1174 $arr['gravity'] = 6;
1176 $arr['gravity'] = 6; // extensible catchall
1178 if(! x($arr,'type'))
1179 $arr['type'] = 'remote';
1183 /* check for create date and expire time */
1184 $uid = intval($arr['uid']);
1185 $r = q("SELECT expire FROM user WHERE uid = %d", intval($uid));
1187 $expire_interval = $r[0]['expire'];
1188 if ($expire_interval>0) {
1189 $expire_date = new DateTime( '- '.$expire_interval.' days', new DateTimeZone('UTC'));
1190 $created_date = new DateTime($arr['created'], new DateTimeZone('UTC'));
1191 if ($created_date < $expire_date) {
1192 logger('item-store: item created ('.$arr['created'].') before expiration time ('.$expire_date->format(DateTime::W3C).'). ignored. ' . print_r($arr,true), LOGGER_DEBUG);
1198 // Do we already have this item?
1199 // We have to check several networks since Friendica posts could be repeated via OStatus (maybe Diasporsa as well)
1200 if (in_array(trim($arr['network']), array(NETWORK_DIASPORA, NETWORK_DFRN, NETWORK_OSTATUS, ""))) {
1201 $r = q("SELECT `id`, `network` FROM `item` WHERE `uri` = '%s' AND `uid` = %d AND `network` IN ('%s', '%s', '%s') LIMIT 1",
1202 dbesc(trim($arr['uri'])),
1204 dbesc(NETWORK_DIASPORA),
1205 dbesc(NETWORK_DFRN),
1206 dbesc(NETWORK_OSTATUS)
1209 // We only log the entries with a different user id than 0. Otherwise we would have too many false positives
1211 logger("Item with uri ".$arr['uri']." already existed for user ".$uid." with id ".$r[0]["id"]." target network ".$r[0]["network"]." - new network: ".$arr['network']);
1212 return($r[0]["id"]);
1216 // If there is no guid then take the same guid that was taken before for the same uri
1217 if ((trim($arr['guid']) == "") AND (trim($arr['uri']) != "") AND (trim($arr['network']) != "")) {
1218 logger('item_store: checking for an existing guid for uri '.$arr['uri'], LOGGER_DEBUG);
1219 $r = q("SELECT `guid` FROM `guid` WHERE `uri` = '%s' AND `network` = '%s' LIMIT 1",
1220 dbesc(trim($arr['uri'])), dbesc(trim($arr['network'])));
1223 $arr['guid'] = $r[0]["guid"];
1224 logger('item_store: found guid '.$arr['guid'].' for uri '.$arr['uri'], LOGGER_DEBUG);
1228 // If there is no guid then take the same guid that was taken before for the same plink
1229 if ((trim($arr['guid']) == "") AND (trim($arr['plink']) != "") AND (trim($arr['network']) != "")) {
1230 logger('item_store: checking for an existing guid for plink '.$arr['plink'], LOGGER_DEBUG);
1231 $r = q("SELECT `guid`, `uri` FROM `guid` WHERE `plink` = '%s' AND `network` = '%s' LIMIT 1",
1232 dbesc(trim($arr['plink'])), dbesc(trim($arr['network'])));
1235 $arr['guid'] = $r[0]["guid"];
1236 logger('item_store: found guid '.$arr['guid'].' for plink '.$arr['plink'], LOGGER_DEBUG);
1238 if ($r[0]["uri"] != $arr['uri'])
1239 logger('Different uri for same guid: '.$arr['uri'].' and '.$r[0]["uri"].' - this shouldnt happen!', LOGGER_DEBUG);
1243 // Shouldn't happen but we want to make absolutely sure it doesn't leak from a plugin.
1244 // Deactivated, since the bbcode parser can handle with it - and it destroys posts with some smileys that contain "<"
1245 //if((strpos($arr['body'],'<') !== false) || (strpos($arr['body'],'>') !== false))
1246 // $arr['body'] = strip_tags($arr['body']);
1248 item_add_language_opt($arr);
1253 $parsed = parse_url($arr["author-link"]);
1254 $guid_prefix = hash("crc32", $parsed["host"]);
1257 $arr['wall'] = ((x($arr,'wall')) ? intval($arr['wall']) : 0);
1258 $arr['guid'] = ((x($arr,'guid')) ? notags(trim($arr['guid'])) : get_guid(32, $guid_prefix));
1259 $arr['uri'] = ((x($arr,'uri')) ? notags(trim($arr['uri'])) : $arr['guid']);
1260 $arr['extid'] = ((x($arr,'extid')) ? notags(trim($arr['extid'])) : '');
1261 $arr['author-name'] = ((x($arr,'author-name')) ? trim($arr['author-name']) : '');
1262 $arr['author-link'] = ((x($arr,'author-link')) ? notags(trim($arr['author-link'])) : '');
1263 $arr['author-avatar'] = ((x($arr,'author-avatar')) ? notags(trim($arr['author-avatar'])) : '');
1264 $arr['owner-name'] = ((x($arr,'owner-name')) ? trim($arr['owner-name']) : '');
1265 $arr['owner-link'] = ((x($arr,'owner-link')) ? notags(trim($arr['owner-link'])) : '');
1266 $arr['owner-avatar'] = ((x($arr,'owner-avatar')) ? notags(trim($arr['owner-avatar'])) : '');
1267 $arr['created'] = ((x($arr,'created') !== false) ? datetime_convert('UTC','UTC',$arr['created']) : datetime_convert());
1268 $arr['edited'] = ((x($arr,'edited') !== false) ? datetime_convert('UTC','UTC',$arr['edited']) : datetime_convert());
1269 $arr['commented'] = ((x($arr,'commented') !== false) ? datetime_convert('UTC','UTC',$arr['commented']) : datetime_convert());
1270 $arr['received'] = ((x($arr,'received') !== false) ? datetime_convert('UTC','UTC',$arr['received']) : datetime_convert());
1271 $arr['changed'] = ((x($arr,'changed') !== false) ? datetime_convert('UTC','UTC',$arr['changed']) : datetime_convert());
1272 $arr['title'] = ((x($arr,'title')) ? trim($arr['title']) : '');
1273 $arr['location'] = ((x($arr,'location')) ? trim($arr['location']) : '');
1274 $arr['coord'] = ((x($arr,'coord')) ? notags(trim($arr['coord'])) : '');
1275 $arr['last-child'] = ((x($arr,'last-child')) ? intval($arr['last-child']) : 0 );
1276 $arr['visible'] = ((x($arr,'visible') !== false) ? intval($arr['visible']) : 1 );
1277 $arr['deleted'] = 0;
1278 $arr['parent-uri'] = ((x($arr,'parent-uri')) ? notags(trim($arr['parent-uri'])) : '');
1279 $arr['verb'] = ((x($arr,'verb')) ? notags(trim($arr['verb'])) : '');
1280 $arr['object-type'] = ((x($arr,'object-type')) ? notags(trim($arr['object-type'])) : '');
1281 $arr['object'] = ((x($arr,'object')) ? trim($arr['object']) : '');
1282 $arr['target-type'] = ((x($arr,'target-type')) ? notags(trim($arr['target-type'])) : '');
1283 $arr['target'] = ((x($arr,'target')) ? trim($arr['target']) : '');
1284 $arr['plink'] = ((x($arr,'plink')) ? notags(trim($arr['plink'])) : '');
1285 $arr['allow_cid'] = ((x($arr,'allow_cid')) ? trim($arr['allow_cid']) : '');
1286 $arr['allow_gid'] = ((x($arr,'allow_gid')) ? trim($arr['allow_gid']) : '');
1287 $arr['deny_cid'] = ((x($arr,'deny_cid')) ? trim($arr['deny_cid']) : '');
1288 $arr['deny_gid'] = ((x($arr,'deny_gid')) ? trim($arr['deny_gid']) : '');
1289 $arr['private'] = ((x($arr,'private')) ? intval($arr['private']) : 0 );
1290 $arr['bookmark'] = ((x($arr,'bookmark')) ? intval($arr['bookmark']) : 0 );
1291 $arr['body'] = ((x($arr,'body')) ? trim($arr['body']) : '');
1292 $arr['tag'] = ((x($arr,'tag')) ? notags(trim($arr['tag'])) : '');
1293 $arr['attach'] = ((x($arr,'attach')) ? notags(trim($arr['attach'])) : '');
1294 $arr['app'] = ((x($arr,'app')) ? notags(trim($arr['app'])) : '');
1295 $arr['origin'] = ((x($arr,'origin')) ? intval($arr['origin']) : 0 );
1296 $arr['network'] = ((x($arr,'network')) ? trim($arr['network']) : '');
1297 $arr['postopts'] = ((x($arr,'postopts')) ? trim($arr['postopts']) : '');
1298 $arr['resource-id'] = ((x($arr,'resource-id')) ? trim($arr['resource-id']) : '');
1299 $arr['event-id'] = ((x($arr,'event-id')) ? intval($arr['event-id']) : 0 );
1300 $arr['inform'] = ((x($arr,'inform')) ? trim($arr['inform']) : '');
1301 $arr['file'] = ((x($arr,'file')) ? trim($arr['file']) : '');
1303 if ($arr['plink'] == "") {
1305 $arr['plink'] = $a->get_baseurl().'/display/'.urlencode($arr['guid']);
1308 if ($arr['network'] == "") {
1309 $r = q("SELECT `network` FROM `contact` WHERE `network` IN ('%s', '%s', '%s') AND `nurl` = '%s' AND `uid` = %d LIMIT 1",
1310 dbesc(NETWORK_DFRN), dbesc(NETWORK_DIASPORA), dbesc(NETWORK_OSTATUS),
1311 dbesc(normalise_link($arr['author-link'])),
1316 $r = q("SELECT `network` FROM `gcontact` WHERE `network` IN ('%s', '%s', '%s') AND `nurl` = '%s' LIMIT 1",
1317 dbesc(NETWORK_DFRN), dbesc(NETWORK_DIASPORA), dbesc(NETWORK_OSTATUS),
1318 dbesc(normalise_link($arr['author-link']))
1322 $r = q("SELECT `network` FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1",
1323 intval($arr['contact-id']),
1328 $arr['network'] = $r[0]["network"];
1330 // Fallback to friendica (why is it empty in some cases?)
1331 if ($arr['network'] == "")
1332 $arr['network'] = NETWORK_DFRN;
1334 logger("item_store: Set network to ".$arr["network"]." for ".$arr["uri"], LOGGER_DEBUG);
1337 if ($arr["gcontact-id"] == 0)
1338 $arr["gcontact-id"] = get_gcontact_id(array("url" => $arr['author-link'], "network" => $arr['network'],
1339 "photo" => $arr['author-avatar'], "name" => $arr['author-name']));
1341 if ($arr['guid'] != "") {
1342 // Checking if there is already an item with the same guid
1343 logger('checking for an item for user '.$arr['uid'].' on network '.$arr['network'].' with the guid '.$arr['guid'], LOGGER_DEBUG);
1344 $r = q("SELECT `guid` FROM `item` WHERE `guid` = '%s' AND `network` = '%s' AND `uid` = '%d' LIMIT 1",
1345 dbesc($arr['guid']), dbesc($arr['network']), intval($arr['uid']));
1348 logger('found item with guid '.$arr['guid'].' for user '.$arr['uid'].' on network '.$arr['network'], LOGGER_DEBUG);
1353 // Check for hashtags in the body and repair or add hashtag links
1354 item_body_set_hashtags($arr);
1356 $arr['thr-parent'] = $arr['parent-uri'];
1357 if($arr['parent-uri'] === $arr['uri']) {
1359 $parent_deleted = 0;
1360 $allow_cid = $arr['allow_cid'];
1361 $allow_gid = $arr['allow_gid'];
1362 $deny_cid = $arr['deny_cid'];
1363 $deny_gid = $arr['deny_gid'];
1364 $notify_type = 'wall-new';
1368 // find the parent and snarf the item id and ACLs
1369 // and anything else we need to inherit
1371 $r = q("SELECT * FROM `item` WHERE `uri` = '%s' AND `uid` = %d ORDER BY `id` ASC LIMIT 1",
1372 dbesc($arr['parent-uri']),
1378 // is the new message multi-level threaded?
1379 // even though we don't support it now, preserve the info
1380 // and re-attach to the conversation parent.
1382 if($r[0]['uri'] != $r[0]['parent-uri']) {
1383 $arr['parent-uri'] = $r[0]['parent-uri'];
1384 $z = q("SELECT * FROM `item` WHERE `uri` = '%s' AND `parent-uri` = '%s' AND `uid` = %d
1385 ORDER BY `id` ASC LIMIT 1",
1386 dbesc($r[0]['parent-uri']),
1387 dbesc($r[0]['parent-uri']),
1394 $parent_id = $r[0]['id'];
1395 $parent_deleted = $r[0]['deleted'];
1396 $allow_cid = $r[0]['allow_cid'];
1397 $allow_gid = $r[0]['allow_gid'];
1398 $deny_cid = $r[0]['deny_cid'];
1399 $deny_gid = $r[0]['deny_gid'];
1400 $arr['wall'] = $r[0]['wall'];
1401 $notify_type = 'comment-new';
1403 // if the parent is private, force privacy for the entire conversation
1404 // This differs from the above settings as it subtly allows comments from
1405 // email correspondents to be private even if the overall thread is not.
1407 if($r[0]['private'])
1408 $arr['private'] = $r[0]['private'];
1410 // Edge case. We host a public forum that was originally posted to privately.
1411 // The original author commented, but as this is a comment, the permissions
1412 // weren't fixed up so it will still show the comment as private unless we fix it here.
1414 if((intval($r[0]['forum_mode']) == 1) && (! $r[0]['private']))
1415 $arr['private'] = 0;
1418 // If its a post from myself then tag the thread as "mention"
1419 logger("item_store: Checking if parent ".$parent_id." has to be tagged as mention for user ".$arr['uid'], LOGGER_DEBUG);
1420 $u = q("select * from user where uid = %d limit 1", intval($arr['uid']));
1423 $self = normalise_link($a->get_baseurl() . '/profile/' . $u[0]['nickname']);
1424 logger("item_store: 'myself' is ".$self." for parent ".$parent_id." checking against ".$arr['author-link']." and ".$arr['owner-link'], LOGGER_DEBUG);
1425 if ((normalise_link($arr['author-link']) == $self) OR (normalise_link($arr['owner-link']) == $self)) {
1426 q("UPDATE `thread` SET `mention` = 1 WHERE `iid` = %d", intval($parent_id));
1427 logger("item_store: tagged thread ".$parent_id." as mention for user ".$self, LOGGER_DEBUG);
1433 // Allow one to see reply tweets from status.net even when
1434 // we don't have or can't see the original post.
1437 logger('item_store: $force_parent=true, reply converted to top-level post.');
1439 $arr['parent-uri'] = $arr['uri'];
1440 $arr['gravity'] = 0;
1443 logger('item_store: item parent '.$arr['parent-uri'].' for '.$arr['uid'].' was not found - ignoring item');
1447 $parent_deleted = 0;
1451 $r = q("SELECT `id` FROM `item` WHERE `uri` = '%s' AND `network` IN ('%s', '%s') AND `uid` = %d LIMIT 1",
1453 dbesc($arr['network']),
1454 dbesc(NETWORK_DFRN),
1457 if($r && count($r)) {
1458 logger('duplicated item with the same uri found. ' . print_r($arr,true));
1462 // Check for an existing post with the same content. There seems to be a problem with OStatus.
1463 $r = q("SELECT `id` FROM `item` WHERE `body` = '%s' AND `network` = '%s' AND `created` = '%s' AND `contact-id` = %d AND `uid` = %d LIMIT 1",
1464 dbesc($arr['body']),
1465 dbesc($arr['network']),
1466 dbesc($arr['created']),
1467 intval($arr['contact-id']),
1470 if($r && count($r)) {
1471 logger('duplicated item with the same body found. ' . print_r($arr,true));
1475 // Is this item available in the global items (with uid=0)?
1476 if ($arr["uid"] == 0) {
1477 $arr["global"] = true;
1479 q("UPDATE `item` SET `global` = 1 WHERE `guid` = '%s'", dbesc($arr["guid"]));
1481 $isglobal = q("SELECT `global` FROM `item` WHERE `uid` = 0 AND `guid` = '%s'", dbesc($arr["guid"]));
1483 $arr["global"] = (count($isglobal) > 0);
1486 // Fill the cache field
1487 put_item_in_cache($arr);
1490 call_hooks('post_local',$arr);
1492 call_hooks('post_remote',$arr);
1494 if(x($arr,'cancel')) {
1495 logger('item_store: post cancelled by plugin.');
1499 // Store the unescaped version
1504 logger('item_store: ' . print_r($arr,true), LOGGER_DATA);
1506 $r = dbq("INSERT INTO `item` (`"
1507 . implode("`, `", array_keys($arr))
1509 . implode("', '", array_values($arr))
1515 // find the item that we just created
1516 $r = q("SELECT `id` FROM `item` WHERE `uri` = '%s' AND `uid` = %d AND `network` = '%s' ORDER BY `id` ASC",
1518 intval($arr['uid']),
1519 dbesc($arr['network'])
1523 // There are duplicates. Keep the oldest one, delete the others
1524 logger('item_store: duplicated post occurred. Removing newer duplicates. uri = '.$arr['uri'].' uid = '.$arr['uid']);
1525 q("DELETE FROM `item` WHERE `uri` = '%s' AND `uid` = %d AND `network` = '%s' AND `id` > %d",
1527 intval($arr['uid']),
1528 dbesc($arr['network']),
1532 } elseif(count($r)) {
1534 // Store the guid and other relevant data
1537 $current_post = $r[0]['id'];
1538 logger('item_store: created item ' . $current_post);
1540 // Set "success_update" and "last-item" to the date of the last time we heard from this contact
1541 // This can be used to filter for inactive contacts.
1542 // Only do this for public postings to avoid privacy problems, since poco data is public.
1543 // Don't set this value if it isn't from the owner (could be an author that we don't know)
1545 $update = (!$arr['private'] AND (($arr["author-link"] === $arr["owner-link"]) OR ($arr["parent-uri"] === $arr["uri"])));
1547 // Is it a forum? Then we don't care about the rules from above
1548 if (!$update AND ($arr["network"] == NETWORK_DFRN) AND ($arr["parent-uri"] === $arr["uri"])) {
1549 $isforum = q("SELECT `forum` FROM `contact` WHERE `id` = %d AND `forum`",
1550 intval($arr['contact-id']));
1556 q("UPDATE `contact` SET `success_update` = '%s', `last-item` = '%s' WHERE `id` = %d",
1557 dbesc($arr['received']),
1558 dbesc($arr['received']),
1559 intval($arr['contact-id'])
1562 logger('item_store: could not locate created item');
1566 if((! $parent_id) || ($arr['parent-uri'] === $arr['uri']))
1567 $parent_id = $current_post;
1569 if(strlen($allow_cid) || strlen($allow_gid) || strlen($deny_cid) || strlen($deny_gid))
1572 $private = $arr['private'];
1574 // Set parent id - and also make sure to inherit the parent's ACLs.
1576 $r = q("UPDATE `item` SET `parent` = %d, `allow_cid` = '%s', `allow_gid` = '%s',
1577 `deny_cid` = '%s', `deny_gid` = '%s', `private` = %d, `deleted` = %d WHERE `id` = %d",
1584 intval($parent_deleted),
1585 intval($current_post)
1588 $arr['id'] = $current_post;
1589 $arr['parent'] = $parent_id;
1590 $arr['allow_cid'] = $allow_cid;
1591 $arr['allow_gid'] = $allow_gid;
1592 $arr['deny_cid'] = $deny_cid;
1593 $arr['deny_gid'] = $deny_gid;
1594 $arr['private'] = $private;
1595 $arr['deleted'] = $parent_deleted;
1597 // update the commented timestamp on the parent
1598 // Only update "commented" if it is really a comment
1599 if (($arr['verb'] == ACTIVITY_POST) OR !get_config("system", "like_no_comment"))
1600 q("UPDATE `item` SET `commented` = '%s', `changed` = '%s' WHERE `id` = %d",
1601 dbesc(datetime_convert()),
1602 dbesc(datetime_convert()),
1606 q("UPDATE `item` SET `changed` = '%s' WHERE `id` = %d",
1607 dbesc(datetime_convert()),
1612 q("insert into sign (`iid`,`signed_text`,`signature`,`signer`) values (%d,'%s','%s','%s') ",
1613 intval($current_post),
1614 dbesc($dsprsig->signed_text),
1615 dbesc($dsprsig->signature),
1616 dbesc($dsprsig->signer)
1622 * If this is now the last-child, force all _other_ children of this parent to *not* be last-child
1625 if($arr['last-child']) {
1626 $r = q("UPDATE `item` SET `last-child` = 0 WHERE `parent-uri` = '%s' AND `uid` = %d AND `id` != %d",
1628 intval($arr['uid']),
1629 intval($current_post)
1633 $deleted = tag_deliver($arr['uid'],$current_post);
1635 // current post can be deleted if is for a community page and no mention are
1637 if (!$deleted AND !$dontcache) {
1639 $r = q('SELECT * FROM `item` WHERE id = %d', intval($current_post));
1640 if (count($r) == 1) {
1642 call_hooks('post_local_end', $r[0]);
1644 call_hooks('post_remote_end', $r[0]);
1646 logger('item_store: new item not found in DB, id ' . $current_post);
1649 // Add every contact of the post to the global contact table
1652 create_tags_from_item($current_post);
1653 create_files_from_item($current_post);
1655 // Only check for notifications on start posts
1656 if ($arr['parent-uri'] === $arr['uri']) {
1657 add_thread($current_post);
1658 logger('item_store: Check notification for contact '.$arr['contact-id'].' and post '.$current_post, LOGGER_DEBUG);
1660 // Send a notification for every new post?
1661 $r = q("SELECT `notify_new_posts` FROM `contact` WHERE `id` = %d AND `uid` = %d AND `notify_new_posts` LIMIT 1",
1662 intval($arr['contact-id']),
1665 $send_notification = count($r);
1667 if (!$send_notification) {
1668 $tags = q("SELECT `url` FROM `term` WHERE `otype` = %d AND `oid` = %d AND `type` = %d AND `uid` = %d",
1669 intval(TERM_OBJ_POST), intval($current_post), intval(TERM_MENTION), intval($arr['uid']));
1672 foreach ($tags AS $tag) {
1673 $r = q("SELECT `id` FROM `contact` WHERE `nurl` = '%s' AND `uid` = %d AND `notify_new_posts`",
1674 normalise_link($tag["url"]), intval($arr['uid']));
1676 $send_notification = true;
1681 if ($send_notification) {
1682 logger('item_store: Send notification for contact '.$arr['contact-id'].' and post '.$current_post, LOGGER_DEBUG);
1683 $u = q("SELECT * FROM user WHERE uid = %d LIMIT 1",
1684 intval($arr['uid']));
1686 $item = q("SELECT * FROM `item` WHERE `id` = %d AND `uid` = %d",
1687 intval($current_post),
1693 require_once('include/enotify.php');
1695 'type' => NOTIFY_SHARE,
1696 'notify_flags' => $u[0]['notify-flags'],
1697 'language' => $u[0]['language'],
1698 'to_name' => $u[0]['username'],
1699 'to_email' => $u[0]['email'],
1700 'uid' => $u[0]['uid'],
1702 'link' => $a->get_baseurl().'/display/'.urlencode($arr['guid']),
1703 'source_name' => $item[0]['author-name'],
1704 'source_link' => $item[0]['author-link'],
1705 'source_photo' => $item[0]['author-avatar'],
1706 'verb' => ACTIVITY_TAG,
1708 'parent' => $arr['parent']
1710 logger('item_store: Notification sent for contact '.$arr['contact-id'].' and post '.$current_post, LOGGER_DEBUG);
1713 update_thread($parent_id);
1714 add_shadow_entry($arr);
1718 proc_run('php', "include/notifier.php", $notify_type, $current_post);
1720 return $current_post;
1723 function item_body_set_hashtags(&$item) {
1725 $tags = get_tags($item["body"]);
1731 // This sorting is important when there are hashtags that are part of other hashtags
1732 // Otherwise there could be problems with hashtags like #test and #test2
1737 $URLSearchString = "^\[\]";
1739 // All hashtags should point to the home server
1740 //$item["body"] = preg_replace("/#\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism",
1741 // "#[url=".$a->get_baseurl()."/search?tag=$2]$2[/url]", $item["body"]);
1743 //$item["tag"] = preg_replace("/#\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism",
1744 // "#[url=".$a->get_baseurl()."/search?tag=$2]$2[/url]", $item["tag"]);
1746 // mask hashtags inside of url, bookmarks and attachments to avoid urls in urls
1747 $item["body"] = preg_replace_callback("/\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism",
1749 return("[url=".str_replace("#", "#", $match[1])."]".str_replace("#", "#", $match[2])."[/url]");
1752 $item["body"] = preg_replace_callback("/\[bookmark\=([$URLSearchString]*)\](.*?)\[\/bookmark\]/ism",
1754 return("[bookmark=".str_replace("#", "#", $match[1])."]".str_replace("#", "#", $match[2])."[/bookmark]");
1757 $item["body"] = preg_replace_callback("/\[attachment (.*)\](.*?)\[\/attachment\]/ism",
1759 return("[attachment ".str_replace("#", "#", $match[1])."]".$match[2]."[/attachment]");
1762 // Repair recursive urls
1763 $item["body"] = preg_replace("/#\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism",
1764 "#$2", $item["body"]);
1767 foreach($tags as $tag) {
1768 if(strpos($tag,'#') !== 0)
1771 if(strpos($tag,'[url='))
1774 $basetag = str_replace('_',' ',substr($tag,1));
1776 $newtag = '#[url='.$a->get_baseurl().'/search?tag='.rawurlencode($basetag).']'.$basetag.'[/url]';
1778 $item["body"] = str_replace($tag, $newtag, $item["body"]);
1780 if(!stristr($item["tag"],"/search?tag=".$basetag."]".$basetag."[/url]")) {
1781 if(strlen($item["tag"]))
1782 $item["tag"] = ','.$item["tag"];
1783 $item["tag"] = $newtag.$item["tag"];
1787 // Convert back the masked hashtags
1788 $item["body"] = str_replace("#", "#", $item["body"]);
1791 function get_item_guid($id) {
1792 $r = q("SELECT `guid` FROM `item` WHERE `id` = %d LIMIT 1", intval($id));
1794 return($r[0]["guid"]);
1799 function get_item_id($guid, $uid = 0) {
1805 $uid == local_user();
1807 // Does the given user have this item?
1809 $r = q("SELECT `item`.`id`, `user`.`nickname` FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid`
1810 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
1811 AND `item`.`guid` = '%s' AND `item`.`uid` = %d", dbesc($guid), intval($uid));
1814 $nick = $r[0]["nickname"];
1818 // Or is it anywhere on the server?
1820 $r = q("SELECT `item`.`id`, `user`.`nickname` FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid`
1821 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
1822 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
1823 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
1824 AND `item`.`private` = 0 AND `item`.`wall` = 1
1825 AND `item`.`guid` = '%s'", dbesc($guid));
1828 $nick = $r[0]["nickname"];
1831 return(array("nick" => $nick, "id" => $id));
1835 function get_item_contact($item,$contacts) {
1836 if(! count($contacts) || (! is_array($item)))
1838 foreach($contacts as $contact) {
1839 if($contact['id'] == $item['contact-id']) {
1841 break; // NOTREACHED
1848 * look for mention tags and setup a second delivery chain for forum/community posts if appropriate
1850 * @param int $item_id
1851 * @return bool true if item was deleted, else false
1853 function tag_deliver($uid,$item_id) {
1861 $u = q("select * from user where uid = %d limit 1",
1867 $community_page = (($u[0]['page-flags'] == PAGE_COMMUNITY) ? true : false);
1868 $prvgroup = (($u[0]['page-flags'] == PAGE_PRVGROUP) ? true : false);
1871 $i = q("select * from item where id = %d and uid = %d limit 1",
1880 $link = normalise_link($a->get_baseurl() . '/profile/' . $u[0]['nickname']);
1882 // Diaspora uses their own hardwired link URL in @-tags
1883 // instead of the one we supply with webfinger
1885 $dlink = normalise_link($a->get_baseurl() . '/u/' . $u[0]['nickname']);
1887 $cnt = preg_match_all('/[\@\!]\[url\=(.*?)\](.*?)\[\/url\]/ism',$item['body'],$matches,PREG_SET_ORDER);
1889 foreach($matches as $mtch) {
1890 if(link_compare($link,$mtch[1]) || link_compare($dlink,$mtch[1])) {
1892 logger('tag_deliver: mention found: ' . $mtch[2]);
1898 if ( ($community_page || $prvgroup) &&
1899 (!$item['wall']) && (!$item['origin']) && ($item['id'] == $item['parent'])){
1900 // mmh.. no mention.. community page or private group... no wall.. no origin.. top-post (not a comment)
1902 logger("tag_deliver: no-mention top-level post to communuty or private group. delete.");
1903 q("DELETE FROM item WHERE id = %d and uid = %d",
1913 // send a notification
1915 // use a local photo if we have one
1917 $r = q("select * from contact where uid = %d and nurl = '%s' limit 1",
1918 intval($u[0]['uid']),
1919 dbesc(normalise_link($item['author-link']))
1921 $photo = (($r && count($r)) ? $r[0]['thumb'] : $item['author-avatar']);
1924 require_once('include/enotify.php');
1926 'type' => NOTIFY_TAGSELF,
1927 'notify_flags' => $u[0]['notify-flags'],
1928 'language' => $u[0]['language'],
1929 'to_name' => $u[0]['username'],
1930 'to_email' => $u[0]['email'],
1931 'uid' => $u[0]['uid'],
1933 'link' => $a->get_baseurl() . '/display/'.urlencode(get_item_guid($item['id'])),
1934 'source_name' => $item['author-name'],
1935 'source_link' => $item['author-link'],
1936 'source_photo' => $photo,
1937 'verb' => ACTIVITY_TAG,
1939 'parent' => $item['parent']
1943 $arr = array('item' => $item, 'user' => $u[0], 'contact' => $r[0]);
1945 call_hooks('tagged', $arr);
1947 if((! $community_page) && (! $prvgroup))
1951 // tgroup delivery - setup a second delivery chain
1952 // prevent delivery looping - only proceed
1953 // if the message originated elsewhere and is a top-level post
1955 if(($item['wall']) || ($item['origin']) || ($item['id'] != $item['parent']))
1958 // now change this copy of the post to a forum head message and deliver to all the tgroup members
1961 $c = q("select name, url, thumb from contact where self = 1 and uid = %d limit 1",
1962 intval($u[0]['uid'])
1967 // also reset all the privacy bits to the forum default permissions
1969 $private = ($u[0]['allow_cid'] || $u[0]['allow_gid'] || $u[0]['deny_cid'] || $u[0]['deny_gid']) ? 1 : 0;
1971 $forum_mode = (($prvgroup) ? 2 : 1);
1973 q("update item set wall = 1, origin = 1, forum_mode = %d, `owner-name` = '%s', `owner-link` = '%s', `owner-avatar` = '%s',
1974 `private` = %d, `allow_cid` = '%s', `allow_gid` = '%s', `deny_cid` = '%s', `deny_gid` = '%s' where id = %d",
1975 intval($forum_mode),
1976 dbesc($c[0]['name']),
1977 dbesc($c[0]['url']),
1978 dbesc($c[0]['thumb']),
1980 dbesc($u[0]['allow_cid']),
1981 dbesc($u[0]['allow_gid']),
1982 dbesc($u[0]['deny_cid']),
1983 dbesc($u[0]['deny_gid']),
1986 update_thread($item_id);
1988 proc_run('php','include/notifier.php','tgroup',$item_id);
1994 function tgroup_check($uid,$item) {
2000 // check that the message originated elsewhere and is a top-level post
2002 if(($item['wall']) || ($item['origin']) || ($item['uri'] != $item['parent-uri']))
2006 $u = q("select * from user where uid = %d limit 1",
2012 $community_page = (($u[0]['page-flags'] == PAGE_COMMUNITY) ? true : false);
2013 $prvgroup = (($u[0]['page-flags'] == PAGE_PRVGROUP) ? true : false);
2016 $link = normalise_link($a->get_baseurl() . '/profile/' . $u[0]['nickname']);
2018 // Diaspora uses their own hardwired link URL in @-tags
2019 // instead of the one we supply with webfinger
2021 $dlink = normalise_link($a->get_baseurl() . '/u/' . $u[0]['nickname']);
2023 $cnt = preg_match_all('/[\@\!]\[url\=(.*?)\](.*?)\[\/url\]/ism',$item['body'],$matches,PREG_SET_ORDER);
2025 foreach($matches as $mtch) {
2026 if(link_compare($link,$mtch[1]) || link_compare($dlink,$mtch[1])) {
2028 logger('tgroup_check: mention found: ' . $mtch[2]);
2036 if((! $community_page) && (! $prvgroup))
2050 function dfrn_deliver($owner,$contact,$atom, $dissolve = false) {
2054 $idtosend = $orig_id = (($contact['dfrn-id']) ? $contact['dfrn-id'] : $contact['issued-id']);
2056 if($contact['duplex'] && $contact['dfrn-id'])
2057 $idtosend = '0:' . $orig_id;
2058 if($contact['duplex'] && $contact['issued-id'])
2059 $idtosend = '1:' . $orig_id;
2062 $rino = get_config('system','rino_encrypt');
2063 $rino = intval($rino);
2064 // use RINO1 if mcrypt isn't installed and RINO2 was selected
2065 if ($rino==2 and !function_exists('mcrypt_create_iv')) $rino=1;
2067 logger("Local rino version: ". $rino, LOGGER_DEBUG);
2069 $ssl_val = intval(get_config('system','ssl_policy'));
2073 case SSL_POLICY_FULL:
2074 $ssl_policy = 'full';
2076 case SSL_POLICY_SELFSIGN:
2077 $ssl_policy = 'self';
2079 case SSL_POLICY_NONE:
2081 $ssl_policy = 'none';
2085 $url = $contact['notify'] . '&dfrn_id=' . $idtosend . '&dfrn_version=' . DFRN_PROTOCOL_VERSION . (($rino) ? '&rino='.$rino : '');
2087 logger('dfrn_deliver: ' . $url);
2089 $xml = fetch_url($url);
2091 $curl_stat = $a->get_curl_code();
2093 return(-1); // timed out
2095 logger('dfrn_deliver: ' . $xml, LOGGER_DATA);
2100 if(strpos($xml,'<?xml') === false) {
2101 logger('dfrn_deliver: no valid XML returned');
2102 logger('dfrn_deliver: returned XML: ' . $xml, LOGGER_DATA);
2106 $res = parse_xml_string($xml);
2108 if((intval($res->status) != 0) || (! strlen($res->challenge)) || (! strlen($res->dfrn_id)))
2109 return (($res->status) ? $res->status : 3);
2111 $postvars = array();
2112 $sent_dfrn_id = hex2bin((string) $res->dfrn_id);
2113 $challenge = hex2bin((string) $res->challenge);
2114 $perm = (($res->perm) ? $res->perm : null);
2115 $dfrn_version = (float) (($res->dfrn_version) ? $res->dfrn_version : 2.0);
2116 $rino_remote_version = intval($res->rino);
2117 $page = (($owner['page-flags'] == PAGE_COMMUNITY) ? 1 : 0);
2119 logger("Remote rino version: ".$rino_remote_version." for ".$contact["url"], LOGGER_DEBUG);
2121 if($owner['page-flags'] == PAGE_PRVGROUP)
2124 $final_dfrn_id = '';
2127 if((($perm == 'rw') && (! intval($contact['writable'])))
2128 || (($perm == 'r') && (intval($contact['writable'])))) {
2129 q("update contact set writable = %d where id = %d",
2130 intval(($perm == 'rw') ? 1 : 0),
2131 intval($contact['id'])
2133 $contact['writable'] = (string) 1 - intval($contact['writable']);
2137 if(($contact['duplex'] && strlen($contact['pubkey']))
2138 || ($owner['page-flags'] == PAGE_COMMUNITY && strlen($contact['pubkey']))
2139 || ($contact['rel'] == CONTACT_IS_SHARING && strlen($contact['pubkey']))) {
2140 openssl_public_decrypt($sent_dfrn_id,$final_dfrn_id,$contact['pubkey']);
2141 openssl_public_decrypt($challenge,$postvars['challenge'],$contact['pubkey']);
2144 openssl_private_decrypt($sent_dfrn_id,$final_dfrn_id,$contact['prvkey']);
2145 openssl_private_decrypt($challenge,$postvars['challenge'],$contact['prvkey']);
2148 $final_dfrn_id = substr($final_dfrn_id, 0, strpos($final_dfrn_id, '.'));
2150 if(strpos($final_dfrn_id,':') == 1)
2151 $final_dfrn_id = substr($final_dfrn_id,2);
2153 if($final_dfrn_id != $orig_id) {
2154 logger('dfrn_deliver: wrong dfrn_id.');
2155 // did not decode properly - cannot trust this site
2159 $postvars['dfrn_id'] = $idtosend;
2160 $postvars['dfrn_version'] = DFRN_PROTOCOL_VERSION;
2162 $postvars['dissolve'] = '1';
2165 if((($contact['rel']) && ($contact['rel'] != CONTACT_IS_SHARING) && (! $contact['blocked'])) || ($owner['page-flags'] == PAGE_COMMUNITY)) {
2166 $postvars['data'] = $atom;
2167 $postvars['perm'] = 'rw';
2170 $postvars['data'] = str_replace('<dfrn:comment-allow>1','<dfrn:comment-allow>0',$atom);
2171 $postvars['perm'] = 'r';
2174 $postvars['ssl_policy'] = $ssl_policy;
2177 $postvars['page'] = $page;
2180 if($rino>0 && $rino_remote_version>0 && (! $dissolve)) {
2181 logger('rino version: '. $rino_remote_version);
2183 switch($rino_remote_version) {
2185 // Deprecated rino version!
2186 $key = substr(random_string(),0,16);
2187 $data = aes_encrypt($postvars['data'],$key);
2190 // RINO 2 based on php-encryption
2192 $key = Crypto::createNewRandomKey();
2193 } catch (CryptoTestFailed $ex) {
2194 logger('Cannot safely create a key');
2196 } catch (CannotPerformOperation $ex) {
2197 logger('Cannot safely create a key');
2201 $data = Crypto::encrypt($postvars['data'], $key);
2202 } catch (CryptoTestFailed $ex) {
2203 logger('Cannot safely perform encryption');
2205 } catch (CannotPerformOperation $ex) {
2206 logger('Cannot safely perform encryption');
2211 logger("rino: invalid requested verision '$rino_remote_version'");
2215 $postvars['rino'] = $rino_remote_version;
2216 $postvars['data'] = bin2hex($data);
2218 #logger('rino: sent key = ' . $key, LOGGER_DEBUG);
2221 if($dfrn_version >= 2.1) {
2222 if(($contact['duplex'] && strlen($contact['pubkey']))
2223 || ($owner['page-flags'] == PAGE_COMMUNITY && strlen($contact['pubkey']))
2224 || ($contact['rel'] == CONTACT_IS_SHARING && strlen($contact['pubkey']))) {
2226 openssl_public_encrypt($key,$postvars['key'],$contact['pubkey']);
2229 openssl_private_encrypt($key,$postvars['key'],$contact['prvkey']);
2233 if(($contact['duplex'] && strlen($contact['prvkey'])) || ($owner['page-flags'] == PAGE_COMMUNITY)) {
2234 openssl_private_encrypt($key,$postvars['key'],$contact['prvkey']);
2237 openssl_public_encrypt($key,$postvars['key'],$contact['pubkey']);
2241 logger('md5 rawkey ' . md5($postvars['key']));
2243 $postvars['key'] = bin2hex($postvars['key']);
2247 logger('dfrn_deliver: ' . "SENDING: " . print_r($postvars,true), LOGGER_DATA);
2249 $xml = post_url($contact['notify'],$postvars);
2251 logger('dfrn_deliver: ' . "RECEIVED: " . $xml, LOGGER_DATA);
2253 $curl_stat = $a->get_curl_code();
2254 if((! $curl_stat) || (! strlen($xml)))
2255 return(-1); // timed out
2257 if(($curl_stat == 503) && (stristr($a->get_curl_headers(),'retry-after')))
2260 if(strpos($xml,'<?xml') === false) {
2261 logger('dfrn_deliver: phase 2: no valid XML returned');
2262 logger('dfrn_deliver: phase 2: returned XML: ' . $xml, LOGGER_DATA);
2266 if($contact['term-date'] != '0000-00-00 00:00:00') {
2267 logger("dfrn_deliver: $url back from the dead - removing mark for death");
2268 require_once('include/Contact.php');
2269 unmark_for_death($contact);
2272 $res = parse_xml_string($xml);
2274 return $res->status;
2279 This function returns true if $update has an edited timestamp newer
2280 than $existing, i.e. $update contains new data which should override
2281 what's already there. If there is no timestamp yet, the update is
2282 assumed to be newer. If the update has no timestamp, the existing
2283 item is assumed to be up-to-date. If the timestamps are equal it
2284 assumes the update has been seen before and should be ignored.
2286 function edited_timestamp_is_newer($existing, $update) {
2287 if (!x($existing,'edited') || !$existing['edited']) {
2290 if (!x($update,'edited') || !$update['edited']) {
2293 $existing_edited = datetime_convert('UTC', 'UTC', $existing['edited']);
2294 $update_edited = datetime_convert('UTC', 'UTC', $update['edited']);
2295 return (strcmp($existing_edited, $update_edited) < 0);
2300 * consume_feed - process atom feed and update anything/everything we might need to update
2302 * $xml = the (atom) feed to consume - RSS isn't as fully supported but may work for simple feeds.
2304 * $importer = the contact_record (joined to user_record) of the local user who owns this relationship.
2305 * It is this person's stuff that is going to be updated.
2306 * $contact = the person who is sending us stuff. If not set, we MAY be processing a "follow" activity
2307 * from an external network and MAY create an appropriate contact record. Otherwise, we MUST
2308 * have a contact record.
2309 * $hub = should we find a hub declation in the feed, pass it back to our calling process, who might (or
2310 * might not) try and subscribe to it.
2311 * $datedir sorts in reverse order
2312 * $pass - by default ($pass = 0) we cannot guarantee that a parent item has been
2313 * imported prior to its children being seen in the stream unless we are certain
2314 * of how the feed is arranged/ordered.
2315 * With $pass = 1, we only pull parent items out of the stream.
2316 * With $pass = 2, we only pull children (comments/likes).
2318 * So running this twice, first with pass 1 and then with pass 2 will do the right
2319 * thing regardless of feed ordering. This won't be adequate in a fully-threaded
2320 * model where comments can have sub-threads. That would require some massive sorting
2321 * to get all the feed items into a mostly linear ordering, and might still require
2325 function consume_feed($xml,$importer,&$contact, &$hub, $datedir = 0, $pass = 0) {
2326 if ($contact['network'] === NETWORK_OSTATUS) {
2328 // Test - remove before flight
2329 //$tempfile = tempnam(get_temppath(), "ostatus2");
2330 //file_put_contents($tempfile, $xml);
2331 logger("Consume OStatus messages ", LOGGER_DEBUG);
2332 ostatus_import($xml,$importer,$contact, $hub);
2337 if ($contact['network'] === NETWORK_FEED) {
2339 logger("Consume feeds", LOGGER_DEBUG);
2340 feed_import($xml,$importer,$contact, $hub);
2345 require_once('library/simplepie/simplepie.inc');
2346 require_once('include/contact_selectors.php');
2348 if(! strlen($xml)) {
2349 logger('consume_feed: empty input');
2353 $feed = new SimplePie();
2354 $feed->set_raw_data($xml);
2356 $feed->enable_order_by_date(true);
2358 $feed->enable_order_by_date(false);
2362 logger('consume_feed: Error parsing XML: ' . $feed->error());
2364 $permalink = $feed->get_permalink();
2366 // Check at the feed level for updated contact name and/or photo
2370 $photo_timestamp = '';
2373 $contact_updated = '';
2375 $hubs = $feed->get_links('hub');
2376 logger('consume_feed: hubs: ' . print_r($hubs,true), LOGGER_DATA);
2379 $hub = implode(',', $hubs);
2381 $rawtags = $feed->get_feed_tags( NAMESPACE_DFRN, 'owner');
2383 $rawtags = $feed->get_feed_tags( SIMPLEPIE_NAMESPACE_ATOM_10, 'author');
2385 $elems = $rawtags[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10];
2386 if($elems['name'][0]['attribs'][NAMESPACE_DFRN]['updated']) {
2387 $name_updated = $elems['name'][0]['attribs'][NAMESPACE_DFRN]['updated'];
2388 $new_name = $elems['name'][0]['data'];
2390 // Manually checking for changed contact names
2391 if (($new_name != $contact['name']) AND ($new_name != "") AND ($name_updated <= $contact['name-date'])) {
2392 $name_updated = date("c");
2393 $photo_timestamp = date("c");
2396 if((x($elems,'link')) && ($elems['link'][0]['attribs']['']['rel'] === 'photo') && ($elems['link'][0]['attribs'][NAMESPACE_DFRN]['updated'])) {
2397 if ($photo_timestamp == "")
2398 $photo_timestamp = datetime_convert('UTC','UTC',$elems['link'][0]['attribs'][NAMESPACE_DFRN]['updated']);
2399 $photo_url = $elems['link'][0]['attribs']['']['href'];
2402 if((x($rawtags[0]['child'], NAMESPACE_DFRN)) && (x($rawtags[0]['child'][NAMESPACE_DFRN],'birthday'))) {
2403 $birthday = datetime_convert('UTC','UTC', $rawtags[0]['child'][NAMESPACE_DFRN]['birthday'][0]['data']);
2407 if((is_array($contact)) && ($photo_timestamp) && (strlen($photo_url)) && ($photo_timestamp > $contact['avatar-date'])) {
2408 logger('consume_feed: Updating photo for '.$contact['name'].' from '.$photo_url.' uid: '.$contact['uid']);
2410 $contact_updated = $photo_timestamp;
2412 require_once("include/Photo.php");
2413 $photos = import_profile_photo($photo_url,$contact['uid'],$contact['id']);
2415 q("UPDATE `contact` SET `avatar-date` = '%s', `photo` = '%s', `thumb` = '%s', `micro` = '%s'
2416 WHERE `uid` = %d AND `id` = %d AND NOT `self`",
2417 dbesc(datetime_convert()),
2421 intval($contact['uid']),
2422 intval($contact['id'])
2426 if((is_array($contact)) && ($name_updated) && (strlen($new_name)) && ($name_updated > $contact['name-date'])) {
2427 if ($name_updated > $contact_updated)
2428 $contact_updated = $name_updated;
2430 $r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `id` = %d LIMIT 1",
2431 intval($contact['uid']),
2432 intval($contact['id'])
2435 $x = q("UPDATE `contact` SET `name` = '%s', `name-date` = '%s' WHERE `uid` = %d AND `id` = %d AND `name` != '%s' AND NOT `self`",
2436 dbesc(notags(trim($new_name))),
2437 dbesc(datetime_convert()),
2438 intval($contact['uid']),
2439 intval($contact['id']),
2440 dbesc(notags(trim($new_name)))
2443 // do our best to update the name on content items
2445 if(count($r) AND (notags(trim($new_name)) != $r[0]['name'])) {
2446 q("UPDATE `item` SET `author-name` = '%s' WHERE `author-name` = '%s' AND `author-link` = '%s' AND `uid` = %d AND `author-name` != '%s'",
2447 dbesc(notags(trim($new_name))),
2448 dbesc($r[0]['name']),
2449 dbesc($r[0]['url']),
2450 intval($contact['uid']),
2451 dbesc(notags(trim($new_name)))
2456 if ($contact_updated AND $new_name AND $photo_url)
2457 poco_check($contact['url'], $new_name, NETWORK_DFRN, $photo_url, "", "", "", "", "", $contact_updated, 2, $contact['id'], $contact['uid']);
2459 if(strlen($birthday)) {
2460 if(substr($birthday,0,4) != $contact['bdyear']) {
2461 logger('consume_feed: updating birthday: ' . $birthday);
2465 * Add new birthday event for this person
2467 * $bdtext is just a readable placeholder in case the event is shared
2468 * with others. We will replace it during presentation to our $importer
2469 * to contain a sparkle link and perhaps a photo.
2473 $bdtext = sprintf( t('%s\'s birthday'), $contact['name']);
2474 $bdtext2 = sprintf( t('Happy Birthday %s'), ' [url=' . $contact['url'] . ']' . $contact['name'] . '[/url]' ) ;
2477 $r = q("INSERT INTO `event` (`uid`,`cid`,`created`,`edited`,`start`,`finish`,`summary`,`desc`,`type`)
2478 VALUES ( %d, %d, '%s', '%s', '%s', '%s', '%s', '%s', '%s' ) ",
2479 intval($contact['uid']),
2480 intval($contact['id']),
2481 dbesc(datetime_convert()),
2482 dbesc(datetime_convert()),
2483 dbesc(datetime_convert('UTC','UTC', $birthday)),
2484 dbesc(datetime_convert('UTC','UTC', $birthday . ' + 1 day ')),
2493 q("UPDATE `contact` SET `bdyear` = '%s' WHERE `uid` = %d AND `id` = %d",
2494 dbesc(substr($birthday,0,4)),
2495 intval($contact['uid']),
2496 intval($contact['id'])
2499 // This function is called twice without reloading the contact
2500 // Make sure we only create one event. This is why &$contact
2501 // is a reference var in this function
2503 $contact['bdyear'] = substr($birthday,0,4);
2507 $community_page = 0;
2508 $rawtags = $feed->get_feed_tags( NAMESPACE_DFRN, 'community');
2510 $community_page = intval($rawtags[0]['data']);
2512 if(is_array($contact) && intval($contact['forum']) != $community_page) {
2513 q("update contact set forum = %d where id = %d",
2514 intval($community_page),
2515 intval($contact['id'])
2517 $contact['forum'] = (string) $community_page;
2521 // process any deleted entries
2523 $del_entries = $feed->get_feed_tags(NAMESPACE_TOMB, 'deleted-entry');
2524 if(is_array($del_entries) && count($del_entries) && $pass != 2) {
2525 foreach($del_entries as $dentry) {
2527 if(isset($dentry['attribs']['']['ref'])) {
2528 $uri = $dentry['attribs']['']['ref'];
2530 if(isset($dentry['attribs']['']['when'])) {
2531 $when = $dentry['attribs']['']['when'];
2532 $when = datetime_convert('UTC','UTC', $when, 'Y-m-d H:i:s');
2535 $when = datetime_convert('UTC','UTC','now','Y-m-d H:i:s');
2537 if($deleted && is_array($contact)) {
2538 $r = q("SELECT `item`.*, `contact`.`self` FROM `item` INNER JOIN `contact` on `item`.`contact-id` = `contact`.`id`
2539 WHERE `uri` = '%s' AND `item`.`uid` = %d AND `contact-id` = %d AND NOT `item`.`file` LIKE '%%[%%' LIMIT 1",
2541 intval($importer['uid']),
2542 intval($contact['id'])
2547 if(! $item['deleted'])
2548 logger('consume_feed: deleting item ' . $item['id'] . ' uri=' . $item['uri'], LOGGER_DEBUG);
2550 if($item['object-type'] === ACTIVITY_OBJ_EVENT) {
2551 logger("Deleting event ".$item['event-id'], LOGGER_DEBUG);
2552 event_delete($item['event-id']);
2555 if(($item['verb'] === ACTIVITY_TAG) && ($item['object-type'] === ACTIVITY_OBJ_TAGTERM)) {
2556 $xo = parse_xml_string($item['object'],false);
2557 $xt = parse_xml_string($item['target'],false);
2558 if($xt->type === ACTIVITY_OBJ_NOTE) {
2559 $i = q("select * from `item` where uri = '%s' and uid = %d limit 1",
2561 intval($importer['importer_uid'])
2565 // For tags, the owner cannot remove the tag on the author's copy of the post.
2567 $owner_remove = (($item['contact-id'] == $i[0]['contact-id']) ? true: false);
2568 $author_remove = (($item['origin'] && $item['self']) ? true : false);
2569 $author_copy = (($item['origin']) ? true : false);
2571 if($owner_remove && $author_copy)
2573 if($author_remove || $owner_remove) {
2574 $tags = explode(',',$i[0]['tag']);
2577 foreach($tags as $tag)
2578 if(trim($tag) !== trim($xo->body))
2579 $newtags[] = trim($tag);
2581 q("update item set tag = '%s' where id = %d",
2582 dbesc(implode(',',$newtags)),
2585 create_tags_from_item($i[0]['id']);
2591 if($item['uri'] == $item['parent-uri']) {
2592 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s',
2593 `body` = '', `title` = ''
2594 WHERE `parent-uri` = '%s' AND `uid` = %d",
2596 dbesc(datetime_convert()),
2597 dbesc($item['uri']),
2598 intval($importer['uid'])
2600 create_tags_from_itemuri($item['uri'], $importer['uid']);
2601 create_files_from_itemuri($item['uri'], $importer['uid']);
2602 update_thread_uri($item['uri'], $importer['uid']);
2605 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s',
2606 `body` = '', `title` = ''
2607 WHERE `uri` = '%s' AND `uid` = %d",
2609 dbesc(datetime_convert()),
2611 intval($importer['uid'])
2613 create_tags_from_itemuri($uri, $importer['uid']);
2614 create_files_from_itemuri($uri, $importer['uid']);
2615 if($item['last-child']) {
2616 // ensure that last-child is set in case the comment that had it just got wiped.
2617 q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d ",
2618 dbesc(datetime_convert()),
2619 dbesc($item['parent-uri']),
2620 intval($item['uid'])
2622 // who is the last child now?
2623 $r = q("SELECT `id` FROM `item` WHERE `parent-uri` = '%s' AND `type` != 'activity' AND `deleted` = 0 AND `moderated` = 0 AND `uid` = %d
2624 ORDER BY `created` DESC LIMIT 1",
2625 dbesc($item['parent-uri']),
2626 intval($importer['uid'])
2629 q("UPDATE `item` SET `last-child` = 1 WHERE `id` = %d",
2640 // Now process the feed
2642 if($feed->get_item_quantity()) {
2644 logger('consume_feed: feed item count = ' . $feed->get_item_quantity());
2646 // in inverse date order
2648 $items = array_reverse($feed->get_items());
2650 $items = $feed->get_items();
2653 foreach($items as $item) {
2656 $item_id = $item->get_id();
2657 $rawthread = $item->get_item_tags( NAMESPACE_THREAD,'in-reply-to');
2658 if(isset($rawthread[0]['attribs']['']['ref'])) {
2660 $parent_uri = $rawthread[0]['attribs']['']['ref'];
2663 if(($is_reply) && is_array($contact)) {
2668 // not allowed to post
2670 if($contact['rel'] == CONTACT_IS_FOLLOWER)
2674 // Have we seen it? If not, import it.
2676 $item_id = $item->get_id();
2677 $datarray = get_atom_elements($feed, $item, $contact);
2679 if((! x($datarray,'author-name')) && ($contact['network'] != NETWORK_DFRN))
2680 $datarray['author-name'] = $contact['name'];
2681 if((! x($datarray,'author-link')) && ($contact['network'] != NETWORK_DFRN))
2682 $datarray['author-link'] = $contact['url'];
2683 if((! x($datarray,'author-avatar')) && ($contact['network'] != NETWORK_DFRN))
2684 $datarray['author-avatar'] = $contact['thumb'];
2686 if((! x($datarray,'author-name')) || (! x($datarray,'author-link'))) {
2687 logger('consume_feed: no author information! ' . print_r($datarray,true));
2691 $force_parent = false;
2692 if($contact['network'] === NETWORK_OSTATUS || stristr($contact['url'],'twitter.com')) {
2693 if($contact['network'] === NETWORK_OSTATUS)
2694 $force_parent = true;
2695 if(strlen($datarray['title']))
2696 unset($datarray['title']);
2697 $r = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d",
2698 dbesc(datetime_convert()),
2700 intval($importer['uid'])
2702 $datarray['last-child'] = 1;
2703 update_thread_uri($parent_uri, $importer['uid']);
2707 $r = q("SELECT `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
2709 intval($importer['uid'])
2712 // Update content if 'updated' changes
2715 if (edited_timestamp_is_newer($r[0], $datarray)) {
2717 // do not accept (ignore) an earlier edit than one we currently have.
2718 if(datetime_convert('UTC','UTC',$datarray['edited']) < $r[0]['edited'])
2721 $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
2722 dbesc($datarray['title']),
2723 dbesc($datarray['body']),
2724 dbesc($datarray['tag']),
2725 dbesc(datetime_convert('UTC','UTC',$datarray['edited'])),
2726 dbesc(datetime_convert()),
2728 intval($importer['uid'])
2730 create_tags_from_itemuri($item_id, $importer['uid']);
2731 update_thread_uri($item_id, $importer['uid']);
2734 // update last-child if it changes
2736 $allow = $item->get_item_tags( NAMESPACE_DFRN, 'comment-allow');
2737 if(($allow) && ($allow[0]['data'] != $r[0]['last-child'])) {
2738 $r = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d",
2739 dbesc(datetime_convert()),
2741 intval($importer['uid'])
2743 $r = q("UPDATE `item` SET `last-child` = %d , `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
2744 intval($allow[0]['data']),
2745 dbesc(datetime_convert()),
2747 intval($importer['uid'])
2749 update_thread_uri($item_id, $importer['uid']);
2755 if(($contact['network'] === NETWORK_FEED) || (! strlen($contact['notify']))) {
2756 // one way feed - no remote comment ability
2757 $datarray['last-child'] = 0;
2759 $datarray['parent-uri'] = $parent_uri;
2760 $datarray['uid'] = $importer['uid'];
2761 $datarray['contact-id'] = $contact['id'];
2762 if(($datarray['verb'] === ACTIVITY_LIKE)
2763 || ($datarray['verb'] === ACTIVITY_DISLIKE)
2764 || ($datarray['verb'] === ACTIVITY_ATTEND)
2765 || ($datarray['verb'] === ACTIVITY_ATTENDNO)
2766 || ($datarray['verb'] === ACTIVITY_ATTENDMAYBE)) {
2767 $datarray['type'] = 'activity';
2768 $datarray['gravity'] = GRAVITY_LIKE;
2769 // only one like or dislike per person
2770 // splitted into two queries for performance issues
2771 $r = q("SELECT `id` FROM `item` WHERE `uid` = %d AND `author-link` = '%s' AND `verb` = '%s' AND `parent-uri` = '%s' AND NOT `deleted` LIMIT 1",
2772 intval($datarray['uid']),
2773 dbesc($datarray['author-link']),
2774 dbesc($datarray['verb']),
2775 dbesc($datarray['parent-uri'])
2780 $r = q("SELECT `id` FROM `item` WHERE `uid` = %d AND `author-link` = '%s' AND `verb` = '%s' AND `thr-parent` = '%s' AND NOT `deleted` LIMIT 1",
2781 intval($datarray['uid']),
2782 dbesc($datarray['author-link']),
2783 dbesc($datarray['verb']),
2784 dbesc($datarray['parent-uri'])
2790 if(($datarray['verb'] === ACTIVITY_TAG) && ($datarray['object-type'] === ACTIVITY_OBJ_TAGTERM)) {
2791 $xo = parse_xml_string($datarray['object'],false);
2792 $xt = parse_xml_string($datarray['target'],false);
2794 if($xt->type == ACTIVITY_OBJ_NOTE) {
2795 $r = q("select * from item where `uri` = '%s' AND `uid` = %d limit 1",
2797 intval($importer['importer_uid'])
2802 // extract tag, if not duplicate, add to parent item
2803 if($xo->id && $xo->content) {
2804 $newtag = '#[url=' . $xo->id . ']'. $xo->content . '[/url]';
2805 if(! (stristr($r[0]['tag'],$newtag))) {
2806 q("UPDATE item SET tag = '%s' WHERE id = %d",
2807 dbesc($r[0]['tag'] . (strlen($r[0]['tag']) ? ',' : '') . $newtag),
2810 create_tags_from_item($r[0]['id']);
2816 $r = item_store($datarray,$force_parent);
2822 // Head post of a conversation. Have we seen it? If not, import it.
2824 $item_id = $item->get_id();
2826 $datarray = get_atom_elements($feed, $item, $contact);
2828 if(is_array($contact)) {
2829 if((! x($datarray,'author-name')) && ($contact['network'] != NETWORK_DFRN))
2830 $datarray['author-name'] = $contact['name'];
2831 if((! x($datarray,'author-link')) && ($contact['network'] != NETWORK_DFRN))
2832 $datarray['author-link'] = $contact['url'];
2833 if((! x($datarray,'author-avatar')) && ($contact['network'] != NETWORK_DFRN))
2834 $datarray['author-avatar'] = $contact['thumb'];
2837 if((! x($datarray,'author-name')) || (! x($datarray,'author-link'))) {
2838 logger('consume_feed: no author information! ' . print_r($datarray,true));
2842 // special handling for events
2844 if((x($datarray,'object-type')) && ($datarray['object-type'] === ACTIVITY_OBJ_EVENT)) {
2845 $ev = bbtoevent($datarray['body']);
2846 if((x($ev,'desc') || x($ev,'summary')) && x($ev,'start')) {
2847 $ev['uid'] = $importer['uid'];
2848 $ev['uri'] = $item_id;
2849 $ev['edited'] = $datarray['edited'];
2850 $ev['private'] = $datarray['private'];
2851 $ev['guid'] = $datarray['guid'];
2853 if(is_array($contact))
2854 $ev['cid'] = $contact['id'];
2855 $r = q("SELECT * FROM `event` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
2857 intval($importer['uid'])
2860 $ev['id'] = $r[0]['id'];
2861 $xyz = event_store($ev);
2866 if($contact['network'] === NETWORK_OSTATUS || stristr($contact['url'],'twitter.com')) {
2867 if(strlen($datarray['title']))
2868 unset($datarray['title']);
2869 $datarray['last-child'] = 1;
2873 $r = q("SELECT `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
2875 intval($importer['uid'])
2878 // Update content if 'updated' changes
2881 if (edited_timestamp_is_newer($r[0], $datarray)) {
2883 // do not accept (ignore) an earlier edit than one we currently have.
2884 if(datetime_convert('UTC','UTC',$datarray['edited']) < $r[0]['edited'])
2887 $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
2888 dbesc($datarray['title']),
2889 dbesc($datarray['body']),
2890 dbesc($datarray['tag']),
2891 dbesc(datetime_convert('UTC','UTC',$datarray['edited'])),
2892 dbesc(datetime_convert()),
2894 intval($importer['uid'])
2896 create_tags_from_itemuri($item_id, $importer['uid']);
2897 update_thread_uri($item_id, $importer['uid']);
2900 // update last-child if it changes
2902 $allow = $item->get_item_tags( NAMESPACE_DFRN, 'comment-allow');
2903 if($allow && $allow[0]['data'] != $r[0]['last-child']) {
2904 $r = q("UPDATE `item` SET `last-child` = %d , `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
2905 intval($allow[0]['data']),
2906 dbesc(datetime_convert()),
2908 intval($importer['uid'])
2910 update_thread_uri($item_id, $importer['uid']);
2915 if(activity_match($datarray['verb'],ACTIVITY_FOLLOW)) {
2916 logger('consume-feed: New follower');
2917 new_follower($importer,$contact,$datarray,$item);
2920 if(activity_match($datarray['verb'],ACTIVITY_UNFOLLOW)) {
2921 lose_follower($importer,$contact,$datarray,$item);
2925 if(activity_match($datarray['verb'],ACTIVITY_REQ_FRIEND)) {
2926 logger('consume-feed: New friend request');
2927 new_follower($importer,$contact,$datarray,$item,true);
2930 if(activity_match($datarray['verb'],ACTIVITY_UNFRIEND)) {
2931 lose_sharer($importer,$contact,$datarray,$item);
2936 if(! is_array($contact))
2940 if(($contact['network'] === NETWORK_FEED) || (! strlen($contact['notify']))) {
2941 // one way feed - no remote comment ability
2942 $datarray['last-child'] = 0;
2944 if($contact['network'] === NETWORK_FEED)
2945 $datarray['private'] = 2;
2947 $datarray['parent-uri'] = $item_id;
2948 $datarray['uid'] = $importer['uid'];
2949 $datarray['contact-id'] = $contact['id'];
2951 if(! link_compare($datarray['owner-link'],$contact['url'])) {
2952 // The item owner info is not our contact. It's OK and is to be expected if this is a tgroup delivery,
2953 // but otherwise there's a possible data mixup on the sender's system.
2954 // the tgroup delivery code called from item_store will correct it if it's a forum,
2955 // but we're going to unconditionally correct it here so that the post will always be owned by our contact.
2956 logger('consume_feed: Correcting item owner.', LOGGER_DEBUG);
2957 $datarray['owner-name'] = $contact['name'];
2958 $datarray['owner-link'] = $contact['url'];
2959 $datarray['owner-avatar'] = $contact['thumb'];
2962 // We've allowed "followers" to reach this point so we can decide if they are
2963 // posting an @-tag delivery, which followers are allowed to do for certain
2964 // page types. Now that we've parsed the post, let's check if it is legit. Otherwise ignore it.
2966 if(($contact['rel'] == CONTACT_IS_FOLLOWER) && (! tgroup_check($importer['uid'],$datarray)))
2969 // This is my contact on another system, but it's really me.
2970 // Turn this into a wall post.
2971 $notify = item_is_remote_self($contact, $datarray);
2973 $r = item_store($datarray, false, $notify);
2974 logger('Stored - Contact '.$contact['url'].' Notify '.$notify.' return '.$r.' Item '.print_r($datarray, true), LOGGER_DEBUG);
2982 function item_is_remote_self($contact, &$datarray) {
2985 if (!$contact['remote_self'])
2988 // Prevent the forwarding of posts that are forwarded
2989 if ($datarray["extid"] == NETWORK_DFRN)
2992 // Prevent to forward already forwarded posts
2993 if ($datarray["app"] == $a->get_hostname())
2996 // Only forward posts
2997 if ($datarray["verb"] != ACTIVITY_POST)
3000 if (($contact['network'] != NETWORK_FEED) AND $datarray['private'])
3003 $datarray2 = $datarray;
3004 logger('remote-self start - Contact '.$contact['url'].' - '.$contact['remote_self'].' Item '.print_r($datarray, true), LOGGER_DEBUG);
3005 if ($contact['remote_self'] == 2) {
3006 $r = q("SELECT `id`,`url`,`name`,`thumb` FROM `contact` WHERE `uid` = %d AND `self`",
3007 intval($contact['uid']));
3009 $datarray['contact-id'] = $r[0]["id"];
3011 $datarray['owner-name'] = $r[0]["name"];
3012 $datarray['owner-link'] = $r[0]["url"];
3013 $datarray['owner-avatar'] = $r[0]["thumb"];
3015 $datarray['author-name'] = $datarray['owner-name'];
3016 $datarray['author-link'] = $datarray['owner-link'];
3017 $datarray['author-avatar'] = $datarray['owner-avatar'];
3020 if ($contact['network'] != NETWORK_FEED) {
3021 $datarray["guid"] = get_guid(32);
3022 unset($datarray["plink"]);
3023 $datarray["uri"] = item_new_uri($a->get_hostname(),$contact['uid'], $datarray["guid"]);
3024 $datarray["parent-uri"] = $datarray["uri"];
3025 $datarray["extid"] = $contact['network'];
3026 $urlpart = parse_url($datarray2['author-link']);
3027 $datarray["app"] = $urlpart["host"];
3029 $datarray['private'] = 0;
3032 if ($contact['network'] != NETWORK_FEED) {
3033 // Store the original post
3034 $r = item_store($datarray2, false, false);
3035 logger('remote-self post original item - Contact '.$contact['url'].' return '.$r.' Item '.print_r($datarray2, true), LOGGER_DEBUG);
3037 $datarray["app"] = "Feed";
3042 function local_delivery($importer,$data) {
3045 logger(__function__, LOGGER_TRACE);
3047 if($importer['readonly']) {
3048 // We aren't receiving stuff from this person. But we will quietly ignore them
3049 // rather than a blatant "go away" message.
3050 logger('local_delivery: ignoring');
3055 // Consume notification feed. This may differ from consuming a public feed in several ways
3056 // - might contain email or friend suggestions
3057 // - might contain remote followup to our message
3058 // - in which case we need to accept it and then notify other conversants
3059 // - we may need to send various email notifications
3061 $feed = new SimplePie();
3062 $feed->set_raw_data($data);
3063 $feed->enable_order_by_date(false);
3068 logger('local_delivery: Error parsing XML: ' . $feed->error());
3071 // Check at the feed level for updated contact name and/or photo
3075 $photo_timestamp = '';
3077 $contact_updated = '';
3080 $rawtags = $feed->get_feed_tags( NAMESPACE_DFRN, 'owner');
3082 // Fallback should not be needed here. If it isn't DFRN it won't have DFRN updated tags
3084 // $rawtags = $feed->get_feed_tags( SIMPLEPIE_NAMESPACE_ATOM_10, 'author');
3087 $elems = $rawtags[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10];
3088 if($elems['name'][0]['attribs'][NAMESPACE_DFRN]['updated']) {
3089 $name_updated = $elems['name'][0]['attribs'][NAMESPACE_DFRN]['updated'];
3090 $new_name = $elems['name'][0]['data'];
3092 // Manually checking for changed contact names
3093 if (($new_name != $importer['name']) AND ($new_name != "") AND ($name_updated <= $importer['name-date'])) {
3094 $name_updated = date("c");
3095 $photo_timestamp = date("c");
3098 if((x($elems,'link')) && ($elems['link'][0]['attribs']['']['rel'] === 'photo') && ($elems['link'][0]['attribs'][NAMESPACE_DFRN]['updated'])) {
3099 if ($photo_timestamp == "")
3100 $photo_timestamp = datetime_convert('UTC','UTC',$elems['link'][0]['attribs'][NAMESPACE_DFRN]['updated']);
3101 $photo_url = $elems['link'][0]['attribs']['']['href'];
3105 if(($photo_timestamp) && (strlen($photo_url)) && ($photo_timestamp > $importer['avatar-date'])) {
3107 $contact_updated = $photo_timestamp;
3109 logger('local_delivery: Updating photo for ' . $importer['name']);
3110 require_once("include/Photo.php");
3112 $photos = import_profile_photo($photo_url,$importer['importer_uid'],$importer['id']);
3114 q("UPDATE `contact` SET `avatar-date` = '%s', `photo` = '%s', `thumb` = '%s', `micro` = '%s'
3115 WHERE `uid` = %d AND `id` = %d AND NOT `self`",
3116 dbesc(datetime_convert()),
3120 intval($importer['importer_uid']),
3121 intval($importer['id'])
3125 if(($name_updated) && (strlen($new_name)) && ($name_updated > $importer['name-date'])) {
3126 if ($name_updated > $contact_updated)
3127 $contact_updated = $name_updated;
3129 $r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `id` = %d LIMIT 1",
3130 intval($importer['importer_uid']),
3131 intval($importer['id'])
3134 $x = q("UPDATE `contact` SET `name` = '%s', `name-date` = '%s' WHERE `uid` = %d AND `id` = %d AND `name` != '%s' AND NOT `self`",
3135 dbesc(notags(trim($new_name))),
3136 dbesc(datetime_convert()),
3137 intval($importer['importer_uid']),
3138 intval($importer['id']),
3139 dbesc(notags(trim($new_name)))
3142 // do our best to update the name on content items
3144 if(count($r) AND (notags(trim($new_name)) != $r[0]['name'])) {
3145 q("UPDATE `item` SET `author-name` = '%s' WHERE `author-name` = '%s' AND `author-link` = '%s' AND `uid` = %d AND `author-name` != '%s'",
3146 dbesc(notags(trim($new_name))),
3147 dbesc($r[0]['name']),
3148 dbesc($r[0]['url']),
3149 intval($importer['importer_uid']),
3150 dbesc(notags(trim($new_name)))
3155 if ($contact_updated AND $new_name AND $photo_url)
3156 poco_check($importer['url'], $new_name, NETWORK_DFRN, $photo_url, "", "", "", "", "", $contact_updated, 2, $importer['id'], $importer['importer_uid']);
3158 // Currently unsupported - needs a lot of work
3159 $reloc = $feed->get_feed_tags( NAMESPACE_DFRN, 'relocate' );
3160 if(isset($reloc[0]['child'][NAMESPACE_DFRN])) {
3161 $base = $reloc[0]['child'][NAMESPACE_DFRN];
3163 $newloc['uid'] = $importer['importer_uid'];
3164 $newloc['cid'] = $importer['id'];
3165 $newloc['name'] = notags(unxmlify($base['name'][0]['data']));
3166 $newloc['photo'] = notags(unxmlify($base['photo'][0]['data']));
3167 $newloc['thumb'] = notags(unxmlify($base['thumb'][0]['data']));
3168 $newloc['micro'] = notags(unxmlify($base['micro'][0]['data']));
3169 $newloc['url'] = notags(unxmlify($base['url'][0]['data']));
3170 $newloc['request'] = notags(unxmlify($base['request'][0]['data']));
3171 $newloc['confirm'] = notags(unxmlify($base['confirm'][0]['data']));
3172 $newloc['notify'] = notags(unxmlify($base['notify'][0]['data']));
3173 $newloc['poll'] = notags(unxmlify($base['poll'][0]['data']));
3174 $newloc['sitepubkey'] = notags(unxmlify($base['sitepubkey'][0]['data']));
3175 /** relocated user must have original key pair */
3176 /*$newloc['pubkey'] = notags(unxmlify($base['pubkey'][0]['data']));
3177 $newloc['prvkey'] = notags(unxmlify($base['prvkey'][0]['data']));*/
3179 logger("items:relocate contact ".print_r($newloc, true).print_r($importer, true), LOGGER_DEBUG);
3182 $r = q("SELECT photo, url FROM contact WHERE id=%d AND uid=%d;",
3183 intval($importer['id']),
3184 intval($importer['importer_uid']));
3189 $x = q("UPDATE contact SET
3200 `site-pubkey` = '%s'
3201 WHERE id=%d AND uid=%d;",
3202 dbesc($newloc['name']),
3203 dbesc($newloc['photo']),
3204 dbesc($newloc['thumb']),
3205 dbesc($newloc['micro']),
3206 dbesc($newloc['url']),
3207 dbesc(normalise_link($newloc['url'])),
3208 dbesc($newloc['request']),
3209 dbesc($newloc['confirm']),
3210 dbesc($newloc['notify']),
3211 dbesc($newloc['poll']),
3212 dbesc($newloc['sitepubkey']),
3213 intval($importer['id']),
3214 intval($importer['importer_uid']));
3220 'owner-link' => array($old['url'], $newloc['url']),
3221 'author-link' => array($old['url'], $newloc['url']),
3222 'owner-avatar' => array($old['photo'], $newloc['photo']),
3223 'author-avatar' => array($old['photo'], $newloc['photo']),
3225 foreach ($fields as $n=>$f){
3226 $x = q("UPDATE `item` SET `%s`='%s' WHERE `%s`='%s' AND uid=%d",
3229 intval($importer['importer_uid']));
3235 /// merge with current record, current contents have priority
3236 /// update record, set url-updated
3237 /// update profile photos
3238 /// schedule a scan?
3243 // handle friend suggestion notification
3245 $sugg = $feed->get_feed_tags( NAMESPACE_DFRN, 'suggest' );
3246 if(isset($sugg[0]['child'][NAMESPACE_DFRN])) {
3247 $base = $sugg[0]['child'][NAMESPACE_DFRN];
3249 $fsugg['uid'] = $importer['importer_uid'];
3250 $fsugg['cid'] = $importer['id'];
3251 $fsugg['name'] = notags(unxmlify($base['name'][0]['data']));
3252 $fsugg['photo'] = notags(unxmlify($base['photo'][0]['data']));
3253 $fsugg['url'] = notags(unxmlify($base['url'][0]['data']));
3254 $fsugg['request'] = notags(unxmlify($base['request'][0]['data']));
3255 $fsugg['body'] = escape_tags(unxmlify($base['note'][0]['data']));
3257 // Does our member already have a friend matching this description?
3259 $r = q("SELECT * FROM `contact` WHERE `name` = '%s' AND `nurl` = '%s' AND `uid` = %d LIMIT 1",
3260 dbesc($fsugg['name']),
3261 dbesc(normalise_link($fsugg['url'])),
3262 intval($fsugg['uid'])
3267 // Do we already have an fcontact record for this person?
3270 $r = q("SELECT * FROM `fcontact` WHERE `url` = '%s' AND `name` = '%s' AND `request` = '%s' LIMIT 1",
3271 dbesc($fsugg['url']),
3272 dbesc($fsugg['name']),
3273 dbesc($fsugg['request'])
3278 // OK, we do. Do we already have an introduction for this person ?
3279 $r = q("select id from intro where uid = %d and fid = %d limit 1",
3280 intval($fsugg['uid']),
3287 $r = q("INSERT INTO `fcontact` ( `name`,`url`,`photo`,`request` ) VALUES ( '%s', '%s', '%s', '%s' ) ",
3288 dbesc($fsugg['name']),
3289 dbesc($fsugg['url']),
3290 dbesc($fsugg['photo']),
3291 dbesc($fsugg['request'])
3293 $r = q("SELECT * FROM `fcontact` WHERE `url` = '%s' AND `name` = '%s' AND `request` = '%s' LIMIT 1",
3294 dbesc($fsugg['url']),
3295 dbesc($fsugg['name']),
3296 dbesc($fsugg['request'])
3301 // database record did not get created. Quietly give up.
3306 $hash = random_string();
3308 $r = q("INSERT INTO `intro` ( `uid`, `fid`, `contact-id`, `note`, `hash`, `datetime`, `blocked` )
3309 VALUES( %d, %d, %d, '%s', '%s', '%s', %d )",
3310 intval($fsugg['uid']),
3312 intval($fsugg['cid']),
3313 dbesc($fsugg['body']),
3315 dbesc(datetime_convert()),
3320 'type' => NOTIFY_SUGGEST,
3321 'notify_flags' => $importer['notify-flags'],
3322 'language' => $importer['language'],
3323 'to_name' => $importer['username'],
3324 'to_email' => $importer['email'],
3325 'uid' => $importer['importer_uid'],
3327 'link' => $a->get_baseurl() . '/notifications/intros',
3328 'source_name' => $importer['name'],
3329 'source_link' => $importer['url'],
3330 'source_photo' => $importer['photo'],
3331 'verb' => ACTIVITY_REQ_FRIEND,
3340 $rawmail = $feed->get_feed_tags( NAMESPACE_DFRN, 'mail' );
3341 if(isset($rawmail[0]['child'][NAMESPACE_DFRN])) {
3343 logger('local_delivery: private message received');
3346 $base = $rawmail[0]['child'][NAMESPACE_DFRN];
3349 $msg['uid'] = $importer['importer_uid'];
3350 $msg['from-name'] = notags(unxmlify($base['sender'][0]['child'][NAMESPACE_DFRN]['name'][0]['data']));
3351 $msg['from-photo'] = notags(unxmlify($base['sender'][0]['child'][NAMESPACE_DFRN]['avatar'][0]['data']));
3352 $msg['from-url'] = notags(unxmlify($base['sender'][0]['child'][NAMESPACE_DFRN]['uri'][0]['data']));
3353 $msg['contact-id'] = $importer['id'];
3354 $msg['title'] = notags(unxmlify($base['subject'][0]['data']));
3355 $msg['body'] = escape_tags(unxmlify($base['content'][0]['data']));
3357 $msg['replied'] = 0;
3358 $msg['uri'] = notags(unxmlify($base['id'][0]['data']));
3359 $msg['parent-uri'] = notags(unxmlify($base['in-reply-to'][0]['data']));
3360 $msg['created'] = datetime_convert(notags(unxmlify('UTC','UTC',$base['sentdate'][0]['data'])));
3364 $r = dbq("INSERT INTO `mail` (`" . implode("`, `", array_keys($msg))
3365 . "`) VALUES ('" . implode("', '", array_values($msg)) . "')" );
3367 // send notifications.
3369 require_once('include/enotify.php');
3371 $notif_params = array(
3372 'type' => NOTIFY_MAIL,
3373 'notify_flags' => $importer['notify-flags'],
3374 'language' => $importer['language'],
3375 'to_name' => $importer['username'],
3376 'to_email' => $importer['email'],
3377 'uid' => $importer['importer_uid'],
3379 'source_name' => $msg['from-name'],
3380 'source_link' => $importer['url'],
3381 'source_photo' => $importer['thumb'],
3382 'verb' => ACTIVITY_POST,
3386 notification($notif_params);
3392 $community_page = 0;
3393 $rawtags = $feed->get_feed_tags( NAMESPACE_DFRN, 'community');
3395 $community_page = intval($rawtags[0]['data']);
3397 if(intval($importer['forum']) != $community_page) {
3398 q("update contact set forum = %d where id = %d",
3399 intval($community_page),
3400 intval($importer['id'])
3402 $importer['forum'] = (string) $community_page;
3405 logger('local_delivery: feed item count = ' . $feed->get_item_quantity());
3407 // process any deleted entries
3409 $del_entries = $feed->get_feed_tags(NAMESPACE_TOMB, 'deleted-entry');
3410 if(is_array($del_entries) && count($del_entries)) {
3411 foreach($del_entries as $dentry) {
3413 if(isset($dentry['attribs']['']['ref'])) {
3414 $uri = $dentry['attribs']['']['ref'];
3416 if(isset($dentry['attribs']['']['when'])) {
3417 $when = $dentry['attribs']['']['when'];
3418 $when = datetime_convert('UTC','UTC', $when, 'Y-m-d H:i:s');
3421 $when = datetime_convert('UTC','UTC','now','Y-m-d H:i:s');
3425 // check for relayed deletes to our conversation
3428 $r = q("select * from item where uri = '%s' and uid = %d limit 1",
3430 intval($importer['importer_uid'])
3433 $parent_uri = $r[0]['parent-uri'];
3434 if($r[0]['id'] != $r[0]['parent'])
3441 if($importer['page-flags'] == PAGE_COMMUNITY || $importer['page-flags'] == PAGE_PRVGROUP ) {
3444 logger('local_delivery: possible community delete');
3447 $sql_extra = " and contact.self = 1 and item.wall = 1 ";
3449 // was the top-level post for this reply written by somebody on this site?
3450 // Specifically, the recipient?
3452 $is_a_remote_delete = false;
3454 // POSSIBLE CLEANUP --> Why select so many fields when only forum_mode and wall are used?
3455 $r = q("select `item`.`id`, `item`.`uri`, `item`.`tag`, `item`.`forum_mode`,`item`.`origin`,`item`.`wall`,
3456 `contact`.`name`, `contact`.`url`, `contact`.`thumb` from `item`
3457 INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
3458 WHERE `item`.`uri` = '%s' AND (`item`.`parent-uri` = '%s' or `item`.`thr-parent` = '%s')
3459 AND `item`.`uid` = %d
3465 intval($importer['importer_uid'])
3468 $is_a_remote_delete = true;
3470 // Does this have the characteristics of a community or private group comment?
3471 // If it's a reply to a wall post on a community/prvgroup page it's a
3472 // valid community comment. Also forum_mode makes it valid for sure.
3473 // If neither, it's not.
3475 if($is_a_remote_delete && $community) {
3476 if((! $r[0]['forum_mode']) && (! $r[0]['wall'])) {
3477 $is_a_remote_delete = false;
3478 logger('local_delivery: not a community delete');
3482 if($is_a_remote_delete) {
3483 logger('local_delivery: received remote delete');
3487 $r = q("SELECT `item`.*, `contact`.`self` FROM `item` INNER JOIN contact on `item`.`contact-id` = `contact`.`id`
3488 WHERE `uri` = '%s' AND `item`.`uid` = %d AND `contact-id` = %d AND NOT `item`.`file` LIKE '%%[%%' LIMIT 1",
3490 intval($importer['importer_uid']),
3491 intval($importer['id'])
3497 if($item['deleted'])
3500 logger('local_delivery: deleting item ' . $item['id'] . ' uri=' . $item['uri'], LOGGER_DEBUG);
3502 if($item['object-type'] === ACTIVITY_OBJ_EVENT) {
3503 logger("Deleting event ".$item['event-id'], LOGGER_DEBUG);
3504 event_delete($item['event-id']);
3507 if(($item['verb'] === ACTIVITY_TAG) && ($item['object-type'] === ACTIVITY_OBJ_TAGTERM)) {
3508 $xo = parse_xml_string($item['object'],false);
3509 $xt = parse_xml_string($item['target'],false);
3511 if($xt->type === ACTIVITY_OBJ_NOTE) {
3512 $i = q("select * from `item` where uri = '%s' and uid = %d limit 1",
3514 intval($importer['importer_uid'])
3518 // For tags, the owner cannot remove the tag on the author's copy of the post.
3520 $owner_remove = (($item['contact-id'] == $i[0]['contact-id']) ? true: false);
3521 $author_remove = (($item['origin'] && $item['self']) ? true : false);
3522 $author_copy = (($item['origin']) ? true : false);
3524 if($owner_remove && $author_copy)
3526 if($author_remove || $owner_remove) {
3527 $tags = explode(',',$i[0]['tag']);
3530 foreach($tags as $tag)
3531 if(trim($tag) !== trim($xo->body))
3532 $newtags[] = trim($tag);
3534 q("update item set tag = '%s' where id = %d",
3535 dbesc(implode(',',$newtags)),
3538 create_tags_from_item($i[0]['id']);
3544 if($item['uri'] == $item['parent-uri']) {
3545 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s',
3546 `body` = '', `title` = ''
3547 WHERE `parent-uri` = '%s' AND `uid` = %d",
3549 dbesc(datetime_convert()),
3550 dbesc($item['uri']),
3551 intval($importer['importer_uid'])
3553 create_tags_from_itemuri($item['uri'], $importer['importer_uid']);
3554 create_files_from_itemuri($item['uri'], $importer['importer_uid']);
3555 update_thread_uri($item['uri'], $importer['importer_uid']);
3558 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s',
3559 `body` = '', `title` = ''
3560 WHERE `uri` = '%s' AND `uid` = %d",
3562 dbesc(datetime_convert()),
3564 intval($importer['importer_uid'])
3566 create_tags_from_itemuri($uri, $importer['importer_uid']);
3567 create_files_from_itemuri($uri, $importer['importer_uid']);
3568 update_thread_uri($uri, $importer['importer_uid']);
3569 if($item['last-child']) {
3570 // ensure that last-child is set in case the comment that had it just got wiped.
3571 q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d ",
3572 dbesc(datetime_convert()),
3573 dbesc($item['parent-uri']),
3574 intval($item['uid'])
3576 // who is the last child now?
3577 $r = q("SELECT `id` FROM `item` WHERE `parent-uri` = '%s' AND `type` != 'activity' AND `deleted` = 0 AND `uid` = %d
3578 ORDER BY `created` DESC LIMIT 1",
3579 dbesc($item['parent-uri']),
3580 intval($importer['importer_uid'])
3583 q("UPDATE `item` SET `last-child` = 1 WHERE `id` = %d",
3588 // if this is a relayed delete, propagate it to other recipients
3590 if($is_a_remote_delete)
3591 proc_run('php',"include/notifier.php","drop",$item['id']);
3599 foreach($feed->get_items() as $item) {
3602 $item_id = $item->get_id();
3603 $rawthread = $item->get_item_tags( NAMESPACE_THREAD, 'in-reply-to');
3604 if(isset($rawthread[0]['attribs']['']['ref'])) {
3606 $parent_uri = $rawthread[0]['attribs']['']['ref'];
3612 if($importer['page-flags'] == PAGE_COMMUNITY || $importer['page-flags'] == PAGE_PRVGROUP ) {
3615 logger('local_delivery: possible community reply');
3618 $sql_extra = " and contact.self = 1 and item.wall = 1 ";
3620 // was the top-level post for this reply written by somebody on this site?
3621 // Specifically, the recipient?
3623 $is_a_remote_comment = false;
3624 $top_uri = $parent_uri;
3626 $r = q("select `item`.`parent-uri` from `item`
3627 WHERE `item`.`uri` = '%s'
3631 if($r && count($r)) {
3632 $top_uri = $r[0]['parent-uri'];
3634 // POSSIBLE CLEANUP --> Why select so many fields when only forum_mode and wall are used?
3635 $r = q("select `item`.`id`, `item`.`uri`, `item`.`tag`, `item`.`forum_mode`,`item`.`origin`,`item`.`wall`,
3636 `contact`.`name`, `contact`.`url`, `contact`.`thumb` from `item`
3637 INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
3638 WHERE `item`.`uri` = '%s' AND (`item`.`parent-uri` = '%s' or `item`.`thr-parent` = '%s')
3639 AND `item`.`uid` = %d
3645 intval($importer['importer_uid'])
3648 $is_a_remote_comment = true;
3651 // Does this have the characteristics of a community or private group comment?
3652 // If it's a reply to a wall post on a community/prvgroup page it's a
3653 // valid community comment. Also forum_mode makes it valid for sure.
3654 // If neither, it's not.
3656 if($is_a_remote_comment && $community) {
3657 if((! $r[0]['forum_mode']) && (! $r[0]['wall'])) {
3658 $is_a_remote_comment = false;
3659 logger('local_delivery: not a community reply');
3663 if($is_a_remote_comment) {
3664 logger('local_delivery: received remote comment');
3666 // remote reply to our post. Import and then notify everybody else.
3668 $datarray = get_atom_elements($feed, $item);
3670 $r = q("SELECT `id`, `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
3672 intval($importer['importer_uid'])
3675 // Update content if 'updated' changes
3679 if (edited_timestamp_is_newer($r[0], $datarray)) {
3681 // do not accept (ignore) an earlier edit than one we currently have.
3682 if(datetime_convert('UTC','UTC',$datarray['edited']) < $r[0]['edited'])
3685 logger('received updated comment' , LOGGER_DEBUG);
3686 $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
3687 dbesc($datarray['title']),
3688 dbesc($datarray['body']),
3689 dbesc($datarray['tag']),
3690 dbesc(datetime_convert('UTC','UTC',$datarray['edited'])),
3691 dbesc(datetime_convert()),
3693 intval($importer['importer_uid'])
3695 create_tags_from_itemuri($item_id, $importer['importer_uid']);
3697 proc_run('php',"include/notifier.php","comment-import",$iid);
3706 $own = q("select name,url,thumb from contact where uid = %d and self = 1 limit 1",
3707 intval($importer['importer_uid'])
3711 $datarray['type'] = 'remote-comment';
3712 $datarray['wall'] = 1;
3713 $datarray['parent-uri'] = $parent_uri;
3714 $datarray['uid'] = $importer['importer_uid'];
3715 $datarray['owner-name'] = $own[0]['name'];
3716 $datarray['owner-link'] = $own[0]['url'];
3717 $datarray['owner-avatar'] = $own[0]['thumb'];
3718 $datarray['contact-id'] = $importer['id'];
3720 if(($datarray['verb'] === ACTIVITY_LIKE)
3721 || ($datarray['verb'] === ACTIVITY_DISLIKE)
3722 || ($datarray['verb'] === ACTIVITY_ATTEND)
3723 || ($datarray['verb'] === ACTIVITY_ATTENDNO)
3724 || ($datarray['verb'] === ACTIVITY_ATTENDMAYBE)) {
3726 $datarray['type'] = 'activity';
3727 $datarray['gravity'] = GRAVITY_LIKE;
3728 $datarray['last-child'] = 0;
3729 // only one like or dislike per person
3730 // splitted into two queries for performance issues
3731 $r = q("SELECT `id` FROM `item` WHERE `uid` = %d AND `author-link` = '%s' AND `verb` = '%s' AND `parent-uri` = '%s' AND NOT `deleted` LIMIT 1",
3732 intval($datarray['uid']),
3733 dbesc($datarray['author-link']),
3734 dbesc($datarray['verb']),
3735 dbesc($datarray['parent-uri'])
3740 $r = q("SELECT `id` FROM `item` WHERE `uid` = %d AND `author-link` = '%s' AND `verb` = '%s' AND `thr-parent` = '%s' AND NOT `deleted` LIMIT 1",
3741 intval($datarray['uid']),
3742 dbesc($datarray['author-link']),
3743 dbesc($datarray['verb']),
3744 dbesc($datarray['parent-uri'])
3751 if(($datarray['verb'] === ACTIVITY_TAG) && ($datarray['object-type'] === ACTIVITY_OBJ_TAGTERM)) {
3753 $xo = parse_xml_string($datarray['object'],false);
3754 $xt = parse_xml_string($datarray['target'],false);
3756 if(($xt->type == ACTIVITY_OBJ_NOTE) && ($xt->id)) {
3758 // fetch the parent item
3760 $tagp = q("select * from item where uri = '%s' and uid = %d limit 1",
3762 intval($importer['importer_uid'])
3767 // extract tag, if not duplicate, and this user allows tags, add to parent item
3769 if($xo->id && $xo->content) {
3770 $newtag = '#[url=' . $xo->id . ']'. $xo->content . '[/url]';
3771 if(! (stristr($tagp[0]['tag'],$newtag))) {
3772 $i = q("SELECT `blocktags` FROM `user` where `uid` = %d LIMIT 1",
3773 intval($importer['importer_uid'])
3775 if(count($i) && ! intval($i[0]['blocktags'])) {
3776 q("UPDATE item SET tag = '%s', `edited` = '%s', `changed` = '%s' WHERE id = %d",
3777 dbesc($tagp[0]['tag'] . (strlen($tagp[0]['tag']) ? ',' : '') . $newtag),
3778 intval($tagp[0]['id']),
3779 dbesc(datetime_convert()),
3780 dbesc(datetime_convert())
3782 create_tags_from_item($tagp[0]['id']);
3790 $posted_id = item_store($datarray);
3795 $datarray["id"] = $posted_id;
3797 $r = q("SELECT `parent`, `parent-uri` FROM `item` WHERE `id` = %d AND `uid` = %d LIMIT 1",
3799 intval($importer['importer_uid'])
3802 $parent = $r[0]['parent'];
3803 $parent_uri = $r[0]['parent-uri'];
3807 $r1 = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `uid` = %d AND `parent` = %d",
3808 dbesc(datetime_convert()),
3809 intval($importer['importer_uid']),
3810 intval($r[0]['parent'])
3813 $r2 = q("UPDATE `item` SET `last-child` = 1, `changed` = '%s' WHERE `uid` = %d AND `id` = %d",
3814 dbesc(datetime_convert()),
3815 intval($importer['importer_uid']),
3820 if($posted_id && $parent) {
3822 proc_run('php',"include/notifier.php","comment-import","$posted_id");
3824 if((! $is_like) && (! $importer['self'])) {
3826 require_once('include/enotify.php');
3829 'type' => NOTIFY_COMMENT,
3830 'notify_flags' => $importer['notify-flags'],
3831 'language' => $importer['language'],
3832 'to_name' => $importer['username'],
3833 'to_email' => $importer['email'],
3834 'uid' => $importer['importer_uid'],
3835 'item' => $datarray,
3836 'link' => $a->get_baseurl().'/display/'.urlencode(get_item_guid($posted_id)),
3837 'source_name' => stripslashes($datarray['author-name']),
3838 'source_link' => $datarray['author-link'],
3839 'source_photo' => ((link_compare($datarray['author-link'],$importer['url']))
3840 ? $importer['thumb'] : $datarray['author-avatar']),
3841 'verb' => ACTIVITY_POST,
3843 'parent' => $parent,
3844 'parent_uri' => $parent_uri,
3856 // regular comment that is part of this total conversation. Have we seen it? If not, import it.
3858 $item_id = $item->get_id();
3859 $datarray = get_atom_elements($feed,$item);
3861 if($importer['rel'] == CONTACT_IS_FOLLOWER)
3864 $r = q("SELECT `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
3866 intval($importer['importer_uid'])
3869 // Update content if 'updated' changes
3872 if (edited_timestamp_is_newer($r[0], $datarray)) {
3874 // do not accept (ignore) an earlier edit than one we currently have.
3875 if(datetime_convert('UTC','UTC',$datarray['edited']) < $r[0]['edited'])
3878 $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
3879 dbesc($datarray['title']),
3880 dbesc($datarray['body']),
3881 dbesc($datarray['tag']),
3882 dbesc(datetime_convert('UTC','UTC',$datarray['edited'])),
3883 dbesc(datetime_convert()),
3885 intval($importer['importer_uid'])
3887 create_tags_from_itemuri($item_id, $importer['importer_uid']);
3890 // update last-child if it changes
3892 $allow = $item->get_item_tags( NAMESPACE_DFRN, 'comment-allow');
3893 if(($allow) && ($allow[0]['data'] != $r[0]['last-child'])) {
3894 $r = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d",
3895 dbesc(datetime_convert()),
3897 intval($importer['importer_uid'])
3899 $r = q("UPDATE `item` SET `last-child` = %d , `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
3900 intval($allow[0]['data']),
3901 dbesc(datetime_convert()),
3903 intval($importer['importer_uid'])
3909 $datarray['parent-uri'] = $parent_uri;
3910 $datarray['uid'] = $importer['importer_uid'];
3911 $datarray['contact-id'] = $importer['id'];
3912 if(($datarray['verb'] === ACTIVITY_LIKE)
3913 || ($datarray['verb'] === ACTIVITY_DISLIKE)
3914 || ($datarray['verb'] === ACTIVITY_ATTEND)
3915 || ($datarray['verb'] === ACTIVITY_ATTENDNO)
3916 || ($datarray['verb'] === ACTIVITY_ATTENDMAYBE)) {
3917 $datarray['type'] = 'activity';
3918 $datarray['gravity'] = GRAVITY_LIKE;
3919 // only one like or dislike per person
3920 // splitted into two queries for performance issues
3921 $r = q("SELECT `id` FROM `item` WHERE `uid` = %d AND `author-link` = '%s' AND `verb` = '%s' AND `parent-uri` = '%s' AND NOT `deleted` LIMIT 1",
3922 intval($datarray['uid']),
3923 dbesc($datarray['author-link']),
3924 dbesc($datarray['verb']),
3925 dbesc($datarray['parent-uri'])
3930 $r = q("SELECT `id` FROM `item` WHERE `uid` = %d AND `author-link` = '%s' AND `verb` = '%s' AND `thr-parent` = '%s' AND NOT `deleted` LIMIT 1",
3931 intval($datarray['uid']),
3932 dbesc($datarray['author-link']),
3933 dbesc($datarray['verb']),
3934 dbesc($datarray['parent-uri'])
3941 if(($datarray['verb'] === ACTIVITY_TAG) && ($datarray['object-type'] === ACTIVITY_OBJ_TAGTERM)) {
3943 $xo = parse_xml_string($datarray['object'],false);
3944 $xt = parse_xml_string($datarray['target'],false);
3946 if($xt->type == ACTIVITY_OBJ_NOTE) {
3947 $r = q("select * from item where `uri` = '%s' AND `uid` = %d limit 1",
3949 intval($importer['importer_uid'])
3954 // extract tag, if not duplicate, add to parent item
3956 if(! (stristr($r[0]['tag'],trim($xo->content)))) {
3957 q("UPDATE item SET tag = '%s' WHERE id = %d",
3958 dbesc($r[0]['tag'] . (strlen($r[0]['tag']) ? ',' : '') . '#[url=' . $xo->id . ']'. $xo->content . '[/url]'),
3961 create_tags_from_item($r[0]['id']);
3967 $posted_id = item_store($datarray);
3969 // find out if our user is involved in this conversation and wants to be notified.
3971 if(!x($datarray['type']) || $datarray['type'] != 'activity') {
3973 $myconv = q("SELECT `author-link`, `author-avatar`, `parent` FROM `item` WHERE `parent-uri` = '%s' AND `uid` = %d AND `parent` != 0 AND `deleted` = 0",
3975 intval($importer['importer_uid'])
3978 if(count($myconv)) {
3979 $importer_url = $a->get_baseurl() . '/profile/' . $importer['nickname'];
3981 // first make sure this isn't our own post coming back to us from a wall-to-wall event
3982 if(! link_compare($datarray['author-link'],$importer_url)) {
3985 foreach($myconv as $conv) {
3987 // now if we find a match, it means we're in this conversation
3989 if(! link_compare($conv['author-link'],$importer_url))
3992 require_once('include/enotify.php');
3994 $conv_parent = $conv['parent'];
3997 'type' => NOTIFY_COMMENT,
3998 'notify_flags' => $importer['notify-flags'],
3999 'language' => $importer['language'],
4000 'to_name' => $importer['username'],
4001 'to_email' => $importer['email'],
4002 'uid' => $importer['importer_uid'],
4003 'item' => $datarray,
4004 'link' => $a->get_baseurl().'/display/'.urlencode(get_item_guid($posted_id)),
4005 'source_name' => stripslashes($datarray['author-name']),
4006 'source_link' => $datarray['author-link'],
4007 'source_photo' => ((link_compare($datarray['author-link'],$importer['url']))
4008 ? $importer['thumb'] : $datarray['author-avatar']),
4009 'verb' => ACTIVITY_POST,
4011 'parent' => $conv_parent,
4012 'parent_uri' => $parent_uri
4016 // only send one notification
4028 // Head post of a conversation. Have we seen it? If not, import it.
4031 $item_id = $item->get_id();
4032 $datarray = get_atom_elements($feed,$item);
4034 if((x($datarray,'object-type')) && ($datarray['object-type'] === ACTIVITY_OBJ_EVENT)) {
4035 $ev = bbtoevent($datarray['body']);
4036 if((x($ev,'desc') || x($ev,'summary')) && x($ev,'start')) {
4037 $ev['cid'] = $importer['id'];
4038 $ev['uid'] = $importer['uid'];
4039 $ev['uri'] = $item_id;
4040 $ev['edited'] = $datarray['edited'];
4041 $ev['private'] = $datarray['private'];
4042 $ev['guid'] = $datarray['guid'];
4044 $r = q("SELECT * FROM `event` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
4046 intval($importer['uid'])
4049 $ev['id'] = $r[0]['id'];
4050 $xyz = event_store($ev);
4055 $r = q("SELECT `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
4057 intval($importer['importer_uid'])
4060 // Update content if 'updated' changes
4063 if (edited_timestamp_is_newer($r[0], $datarray)) {
4065 // do not accept (ignore) an earlier edit than one we currently have.
4066 if(datetime_convert('UTC','UTC',$datarray['edited']) < $r[0]['edited'])
4069 $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
4070 dbesc($datarray['title']),
4071 dbesc($datarray['body']),
4072 dbesc($datarray['tag']),
4073 dbesc(datetime_convert('UTC','UTC',$datarray['edited'])),
4074 dbesc(datetime_convert()),
4076 intval($importer['importer_uid'])
4078 create_tags_from_itemuri($item_id, $importer['importer_uid']);
4079 update_thread_uri($item_id, $importer['importer_uid']);
4082 // update last-child if it changes
4084 $allow = $item->get_item_tags( NAMESPACE_DFRN, 'comment-allow');
4085 if($allow && $allow[0]['data'] != $r[0]['last-child']) {
4086 $r = q("UPDATE `item` SET `last-child` = %d , `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
4087 intval($allow[0]['data']),
4088 dbesc(datetime_convert()),
4090 intval($importer['importer_uid'])
4096 $datarray['parent-uri'] = $item_id;
4097 $datarray['uid'] = $importer['importer_uid'];
4098 $datarray['contact-id'] = $importer['id'];
4101 if(! link_compare($datarray['owner-link'],$importer['url'])) {
4102 // The item owner info is not our contact. It's OK and is to be expected if this is a tgroup delivery,
4103 // but otherwise there's a possible data mixup on the sender's system.
4104 // the tgroup delivery code called from item_store will correct it if it's a forum,
4105 // but we're going to unconditionally correct it here so that the post will always be owned by our contact.
4106 logger('local_delivery: Correcting item owner.', LOGGER_DEBUG);
4107 $datarray['owner-name'] = $importer['senderName'];
4108 $datarray['owner-link'] = $importer['url'];
4109 $datarray['owner-avatar'] = $importer['thumb'];
4112 if(($importer['rel'] == CONTACT_IS_FOLLOWER) && (! tgroup_check($importer['importer_uid'],$datarray)))
4115 // This is my contact on another system, but it's really me.
4116 // Turn this into a wall post.
4117 $notify = item_is_remote_self($importer, $datarray);
4119 $posted_id = item_store($datarray, false, $notify);
4121 if(stristr($datarray['verb'],ACTIVITY_POKE)) {
4122 $verb = urldecode(substr($datarray['verb'],strpos($datarray['verb'],'#')+1));
4125 $xo = parse_xml_string($datarray['object'],false);
4127 if(($xo->type == ACTIVITY_OBJ_PERSON) && ($xo->id)) {
4129 // somebody was poked/prodded. Was it me?
4131 $links = parse_xml_string("<links>".unxmlify($xo->link)."</links>",false);
4133 foreach($links->link as $l) {
4134 $atts = $l->attributes();
4135 switch($atts['rel']) {
4137 $Blink = $atts['href'];
4143 if($Blink && link_compare($Blink,$a->get_baseurl() . '/profile/' . $importer['nickname'])) {
4145 // send a notification
4146 require_once('include/enotify.php');
4149 'type' => NOTIFY_POKE,
4150 'notify_flags' => $importer['notify-flags'],
4151 'language' => $importer['language'],
4152 'to_name' => $importer['username'],
4153 'to_email' => $importer['email'],
4154 'uid' => $importer['importer_uid'],
4155 'item' => $datarray,
4156 'link' => $a->get_baseurl().'/display/'.urlencode(get_item_guid($posted_id)),
4157 'source_name' => stripslashes($datarray['author-name']),
4158 'source_link' => $datarray['author-link'],
4159 'source_photo' => ((link_compare($datarray['author-link'],$importer['url']))
4160 ? $importer['thumb'] : $datarray['author-avatar']),
4161 'verb' => $datarray['verb'],
4162 'otype' => 'person',
4163 'activity' => $verb,
4164 'parent' => $datarray['parent']
4180 function new_follower($importer,$contact,$datarray,$item,$sharing = false) {
4181 $url = notags(trim($datarray['author-link']));
4182 $name = notags(trim($datarray['author-name']));
4183 $photo = notags(trim($datarray['author-avatar']));
4185 if (is_object($item)) {
4186 $rawtag = $item->get_item_tags(NAMESPACE_ACTIVITY,'actor');
4187 if($rawtag && $rawtag[0]['child'][NAMESPACE_POCO]['preferredUsername'][0]['data'])
4188 $nick = $rawtag[0]['child'][NAMESPACE_POCO]['preferredUsername'][0]['data'];
4192 if(is_array($contact)) {
4193 if(($contact['network'] == NETWORK_OSTATUS && $contact['rel'] == CONTACT_IS_SHARING)
4194 || ($sharing && $contact['rel'] == CONTACT_IS_FOLLOWER)) {
4195 $r = q("UPDATE `contact` SET `rel` = %d, `writable` = 1 WHERE `id` = %d AND `uid` = %d",
4196 intval(CONTACT_IS_FRIEND),
4197 intval($contact['id']),
4198 intval($importer['uid'])
4201 // send email notification to owner?
4204 // create contact record
4206 $r = q("INSERT INTO `contact` (`uid`, `created`, `url`, `nurl`, `name`, `nick`, `photo`, `network`, `rel`,
4207 `blocked`, `readonly`, `pending`, `writable`)
4208 VALUES (%d, '%s', '%s', '%s', '%s', '%s', '%s', '%s', %d, 0, 0, 1, 1)",
4209 intval($importer['uid']),
4210 dbesc(datetime_convert()),
4212 dbesc(normalise_link($url)),
4216 dbesc(($sharing) ? NETWORK_ZOT : NETWORK_OSTATUS),
4217 intval(($sharing) ? CONTACT_IS_SHARING : CONTACT_IS_FOLLOWER)
4219 $r = q("SELECT `id` FROM `contact` WHERE `uid` = %d AND `url` = '%s' AND `pending` = 1 LIMIT 1",
4220 intval($importer['uid']),
4224 $contact_record = $r[0];
4226 $photos = import_profile_photo($photo,$importer["uid"],$contact_record["id"]);
4228 q("UPDATE `contact` SET `photo` = '%s', `thumb` = '%s', `micro` = '%s' WHERE `id` = %d",
4232 intval($contact_record["id"])
4237 $r = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
4238 intval($importer['uid'])
4241 if(count($r) AND !in_array($r[0]['page-flags'], array(PAGE_SOAPBOX, PAGE_FREELOVE))) {
4243 // create notification
4244 $hash = random_string();
4246 if(is_array($contact_record)) {
4247 $ret = q("INSERT INTO `intro` ( `uid`, `contact-id`, `blocked`, `knowyou`, `hash`, `datetime`)
4248 VALUES ( %d, %d, 0, 0, '%s', '%s' )",
4249 intval($importer['uid']),
4250 intval($contact_record['id']),
4252 dbesc(datetime_convert())
4256 if(intval($r[0]['def_gid'])) {
4257 require_once('include/group.php');
4258 group_add_member($r[0]['uid'],'',$contact_record['id'],$r[0]['def_gid']);
4261 if(($r[0]['notify-flags'] & NOTIFY_INTRO) &&
4262 in_array($r[0]['page-flags'], array(PAGE_NORMAL))) {
4265 'type' => NOTIFY_INTRO,
4266 'notify_flags' => $r[0]['notify-flags'],
4267 'language' => $r[0]['language'],
4268 'to_name' => $r[0]['username'],
4269 'to_email' => $r[0]['email'],
4270 'uid' => $r[0]['uid'],
4271 'link' => $a->get_baseurl() . '/notifications/intro',
4272 'source_name' => ((strlen(stripslashes($contact_record['name']))) ? stripslashes($contact_record['name']) : t('[Name Withheld]')),
4273 'source_link' => $contact_record['url'],
4274 'source_photo' => $contact_record['photo'],
4275 'verb' => ($sharing ? ACTIVITY_FRIEND : ACTIVITY_FOLLOW),
4280 } elseif (count($r) AND in_array($r[0]['page-flags'], array(PAGE_SOAPBOX, PAGE_FREELOVE))) {
4281 $r = q("UPDATE `contact` SET `pending` = 0 WHERE `uid` = %d AND `url` = '%s' AND `pending` LIMIT 1",
4282 intval($importer['uid']),
4290 function lose_follower($importer,$contact,$datarray,$item) {
4292 if(($contact['rel'] == CONTACT_IS_FRIEND) || ($contact['rel'] == CONTACT_IS_SHARING)) {
4293 q("UPDATE `contact` SET `rel` = %d WHERE `id` = %d",
4294 intval(CONTACT_IS_SHARING),
4295 intval($contact['id'])
4299 contact_remove($contact['id']);
4303 function lose_sharer($importer,$contact,$datarray,$item) {
4305 if(($contact['rel'] == CONTACT_IS_FRIEND) || ($contact['rel'] == CONTACT_IS_FOLLOWER)) {
4306 q("UPDATE `contact` SET `rel` = %d WHERE `id` = %d",
4307 intval(CONTACT_IS_FOLLOWER),
4308 intval($contact['id'])
4312 contact_remove($contact['id']);
4317 function subscribe_to_hub($url,$importer,$contact,$hubmode = 'subscribe') {
4321 if(is_array($importer)) {
4322 $r = q("SELECT `nickname` FROM `user` WHERE `uid` = %d LIMIT 1",
4323 intval($importer['uid'])
4327 // Diaspora has different message-ids in feeds than they do
4328 // through the direct Diaspora protocol. If we try and use
4329 // the feed, we'll get duplicates. So don't.
4331 if((! count($r)) || $contact['network'] === NETWORK_DIASPORA)
4334 $push_url = get_config('system','url') . '/pubsub/' . $r[0]['nickname'] . '/' . $contact['id'];
4336 // Use a single verify token, even if multiple hubs
4338 $verify_token = ((strlen($contact['hub-verify'])) ? $contact['hub-verify'] : random_string());
4340 $params= 'hub.mode=' . $hubmode . '&hub.callback=' . urlencode($push_url) . '&hub.topic=' . urlencode($contact['poll']) . '&hub.verify=async&hub.verify_token=' . $verify_token;
4342 logger('subscribe_to_hub: ' . $hubmode . ' ' . $contact['name'] . ' to hub ' . $url . ' endpoint: ' . $push_url . ' with verifier ' . $verify_token);
4344 if(!strlen($contact['hub-verify']) OR ($contact['hub-verify'] != $verify_token)) {
4345 $r = q("UPDATE `contact` SET `hub-verify` = '%s' WHERE `id` = %d",
4346 dbesc($verify_token),
4347 intval($contact['id'])
4351 post_url($url,$params);
4353 logger('subscribe_to_hub: returns: ' . $a->get_curl_code(), LOGGER_DEBUG);
4360 function atom_author($tag,$name,$uri,$h,$w,$photo,$geo) {
4364 $name = xmlify($name);
4365 $uri = xmlify($uri);
4368 $photo = xmlify($photo);
4372 $o .= "\t<name>$name</name>\r\n";
4373 $o .= "\t<uri>$uri</uri>\r\n";
4374 $o .= "\t".'<link rel="photo" type="image/jpeg" media:width="' . $w . '" media:height="' . $h . '" href="' . $photo . '" />' . "\r\n";
4375 $o .= "\t".'<link rel="avatar" type="image/jpeg" media:width="' . $w . '" media:height="' . $h . '" href="' . $photo . '" />' . "\r\n";
4377 if ($tag == "author") {
4380 $o .= '<georss:point>'.xmlify($geo).'</georss:point>'."\r\n";
4382 $r = q("SELECT `profile`.`locality`, `profile`.`region`, `profile`.`country-name`,
4383 `profile`.`name`, `profile`.`pub_keywords`, `profile`.`about`,
4384 `profile`.`homepage`,`contact`.`nick` FROM `profile`
4385 INNER JOIN `contact` ON `contact`.`uid` = `profile`.`uid`
4386 INNER JOIN `user` ON `user`.`uid` = `profile`.`uid`
4387 WHERE `profile`.`is-default` AND `contact`.`self` AND
4388 NOT `user`.`hidewall` AND `contact`.`nurl`='%s'",
4389 dbesc(normalise_link($uri)));
4392 if($r[0]['locality'])
4393 $location .= $r[0]['locality'];
4394 if($r[0]['region']) {
4397 $location .= $r[0]['region'];
4399 if($r[0]['country-name']) {
4402 $location .= $r[0]['country-name'];
4405 $o .= "\t<poco:preferredUsername>".xmlify($r[0]["nick"])."</poco:preferredUsername>\r\n";
4406 $o .= "\t<poco:displayName>".xmlify($r[0]["name"])."</poco:displayName>\r\n";
4407 $o .= "\t<poco:note>".xmlify(bbcode($r[0]["about"]))."</poco:note>\r\n";
4408 $o .= "\t<poco:address>\r\n";
4409 $o .= "\t\t<poco:formatted>".xmlify($location)."</poco:formatted>\r\n";
4410 $o .= "\t</poco:address>\r\n";
4411 $o .= "\t<poco:urls>\r\n";
4412 $o .= "\t<poco:type>homepage</poco:type>\r\n";
4413 $o .= "\t\t<poco:value>".xmlify($r[0]["homepage"])."</poco:value>\r\n";
4414 $o .= "\t\t<poco:primary>true</poco:primary>\r\n";
4415 $o .= "\t</poco:urls>\r\n";
4419 call_hooks('atom_author', $o);
4421 $o .= "</$tag>\r\n";
4425 function atom_entry($item,$type,$author,$owner,$comment = false,$cid = 0) {
4429 if(! $item['parent'])
4432 if($item['deleted'])
4433 return '<at:deleted-entry ref="' . xmlify($item['uri']) . '" when="' . xmlify(datetime_convert('UTC','UTC',$item['edited'] . '+00:00',ATOM_TIME)) . '" />' . "\r\n";
4436 if($item['allow_cid'] || $item['allow_gid'] || $item['deny_cid'] || $item['deny_gid'])
4437 $body = fix_private_photos($item['body'],$owner['uid'],$item,$cid);
4439 $body = $item['body'];
4442 $o = "\r\n\r\n<entry>\r\n";
4444 if(is_array($author))
4445 $o .= atom_author('author',$author['name'],$author['url'],80,80,$author['thumb'], $item['coord']);
4447 $o .= atom_author('author',(($item['author-name']) ? $item['author-name'] : $item['name']),(($item['author-link']) ? $item['author-link'] : $item['url']),80,80,(($item['author-avatar']) ? $item['author-avatar'] : $item['thumb']), $item['coord']);
4448 if(strlen($item['owner-name']))
4449 $o .= atom_author('dfrn:owner',$item['owner-name'],$item['owner-link'],80,80,$item['owner-avatar'], $item['coord']);
4451 if(($item['parent'] != $item['id']) || ($item['parent-uri'] !== $item['uri']) || (($item['thr-parent'] !== '') && ($item['thr-parent'] !== $item['uri']))) {
4452 $parent = q("SELECT `guid` FROM `item` WHERE `id` = %d", intval($item["parent"]));
4453 $parent_item = (($item['thr-parent']) ? $item['thr-parent'] : $item['parent-uri']);
4454 $o .= '<thr:in-reply-to ref="'.xmlify($parent_item).'" type="text/html" href="'.xmlify($a->get_baseurl().'/display/'.$parent[0]['guid']).'" />'."\r\n";
4459 if ($item['title'] != "")
4460 $htmlbody = "[b]".$item['title']."[/b]\n\n".$htmlbody;
4462 $htmlbody = bbcode($htmlbody, false, false, 7);
4464 $o .= '<id>' . xmlify($item['uri']) . '</id>' . "\r\n";
4465 $o .= '<title>' . xmlify($item['title']) . '</title>' . "\r\n";
4466 $o .= '<published>' . xmlify(datetime_convert('UTC','UTC',$item['created'] . '+00:00',ATOM_TIME)) . '</published>' . "\r\n";
4467 $o .= '<updated>' . xmlify(datetime_convert('UTC','UTC',$item['edited'] . '+00:00',ATOM_TIME)) . '</updated>' . "\r\n";
4468 $o .= '<dfrn:env>' . base64url_encode($body, true) . '</dfrn:env>' . "\r\n";
4469 $o .= '<content type="' . $type . '" >' . xmlify((($type === 'html') ? $htmlbody : $body)) . '</content>' . "\r\n";
4470 $o .= '<link rel="alternate" type="text/html" href="'.xmlify($a->get_baseurl().'/display/'.$item['guid']).'" />'."\r\n";
4472 $o .= '<status_net notice_id="'.$item['id'].'"></status_net>'."\r\n";
4475 $o .= '<dfrn:comment-allow>' . intval($item['last-child']) . '</dfrn:comment-allow>' . "\r\n";
4477 if($item['location']) {
4478 $o .= '<dfrn:location>' . xmlify($item['location']) . '</dfrn:location>' . "\r\n";
4479 $o .= '<poco:address><poco:formatted>' . xmlify($item['location']) . '</poco:formatted></poco:address>' . "\r\n";
4483 $o .= '<georss:point>' . xmlify($item['coord']) . '</georss:point>' . "\r\n";
4485 if(($item['private']) || strlen($item['allow_cid']) || strlen($item['allow_gid']) || strlen($item['deny_cid']) || strlen($item['deny_gid']))
4486 $o .= '<dfrn:private>' . (($item['private']) ? $item['private'] : 1) . '</dfrn:private>' . "\r\n";
4489 $o .= '<dfrn:extid>' . xmlify($item['extid']) . '</dfrn:extid>' . "\r\n";
4490 if($item['bookmark'])
4491 $o .= '<dfrn:bookmark>true</dfrn:bookmark>' . "\r\n";
4494 $o .= '<statusnet:notice_info local_id="' . $item['id'] . '" source="' . xmlify($item['app']) . '" ></statusnet:notice_info>' . "\r\n";
4497 $o .= '<dfrn:diaspora_guid>' . $item['guid'] . '</dfrn:diaspora_guid>' . "\r\n";
4499 if($item['signed_text']) {
4500 $sign = base64_encode(json_encode(array('signed_text' => $item['signed_text'],'signature' => $item['signature'],'signer' => $item['signer'])));
4501 $o .= '<dfrn:diaspora_signature>' . xmlify($sign) . '</dfrn:diaspora_signature>' . "\r\n";
4504 $verb = construct_verb($item);
4505 $o .= '<as:verb>' . xmlify($verb) . '</as:verb>' . "\r\n";
4506 $actobj = construct_activity_object($item);
4509 $actarg = construct_activity_target($item);
4513 $tags = item_getfeedtags($item);
4515 foreach($tags as $t)
4516 if (($type != 'html') OR ($t[0] != "@"))
4517 $o .= '<category scheme="X-DFRN:' . xmlify($t[0]) . ':' . xmlify($t[1]) . '" term="' . xmlify($t[2]) . '" />' . "\r\n";
4521 /// To support these elements, the API needs to be enhanced
4522 /// $o .= '<link rel="ostatus:conversation" href="'.xmlify($a->get_baseurl().'/display/'.$owner['nickname'].'/'.$item['parent']).'"/>'."\r\n";
4523 /// $o .= "\t".'<link rel="self" type="application/atom+xml" href="'.xmlify($a->get_baseurl().'/api/statuses/show/'.$item['id'].'.atom').'"/>'."\r\n";
4524 /// $o .= "\t".'<link rel="edit" type="application/atom+xml" href="'.xmlify($a->get_baseurl().'/api/statuses/show/'.$item['id'].'.atom').'"/>'."\r\n";
4526 // Deactivated since it was meant only for OStatus
4527 //$o .= item_get_attachment($item);
4529 $o .= item_getfeedattach($item);
4531 $mentioned = get_mentions($item);
4535 call_hooks('atom_entry', $o);
4537 $o .= '</entry>' . "\r\n";
4542 function fix_private_photos($s, $uid, $item = null, $cid = 0) {
4544 if(get_config('system','disable_embedded'))
4549 logger('fix_private_photos: check for photos', LOGGER_DEBUG);
4550 $site = substr($a->get_baseurl(),strpos($a->get_baseurl(),'://'));
4555 $img_start = strpos($orig_body, '[img');
4556 $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false);
4557 $img_len = ($img_start !== false ? strpos(substr($orig_body, $img_start + $img_st_close + 1), '[/img]') : false);
4558 while( ($img_st_close !== false) && ($img_len !== false) ) {
4560 $img_st_close++; // make it point to AFTER the closing bracket
4561 $image = substr($orig_body, $img_start + $img_st_close, $img_len);
4563 logger('fix_private_photos: found photo ' . $image, LOGGER_DEBUG);
4566 if(stristr($image , $site . '/photo/')) {
4567 // Only embed locally hosted photos
4569 $i = basename($image);
4570 $i = str_replace(array('.jpg','.png','.gif'),array('','',''),$i);
4571 $x = strpos($i,'-');
4574 $res = substr($i,$x+1);
4575 $i = substr($i,0,$x);
4576 $r = q("SELECT * FROM `photo` WHERE `resource-id` = '%s' AND `scale` = %d AND `uid` = %d",
4583 // Check to see if we should replace this photo link with an embedded image
4584 // 1. No need to do so if the photo is public
4585 // 2. If there's a contact-id provided, see if they're in the access list
4586 // for the photo. If so, embed it.
4587 // 3. Otherwise, if we have an item, see if the item permissions match the photo
4588 // permissions, regardless of order but first check to see if they're an exact
4589 // match to save some processing overhead.
4591 if(has_permissions($r[0])) {
4593 $recips = enumerate_permissions($r[0]);
4594 if(in_array($cid, $recips)) {
4599 if(compare_permissions($item,$r[0]))
4604 $data = $r[0]['data'];
4605 $type = $r[0]['type'];
4607 // If a custom width and height were specified, apply before embedding
4608 if(preg_match("/\[img\=([0-9]*)x([0-9]*)\]/is", substr($orig_body, $img_start, $img_st_close), $match)) {
4609 logger('fix_private_photos: scaling photo', LOGGER_DEBUG);
4611 $width = intval($match[1]);
4612 $height = intval($match[2]);
4614 $ph = new Photo($data, $type);
4615 if($ph->is_valid()) {
4616 $ph->scaleImage(max($width, $height));
4617 $data = $ph->imageString();
4618 $type = $ph->getType();
4622 logger('fix_private_photos: replacing photo', LOGGER_DEBUG);
4623 $image = 'data:' . $type . ';base64,' . base64_encode($data);
4624 logger('fix_private_photos: replaced: ' . $image, LOGGER_DATA);
4630 $new_body = $new_body . substr($orig_body, 0, $img_start + $img_st_close) . $image . '[/img]';
4631 $orig_body = substr($orig_body, $img_start + $img_st_close + $img_len + strlen('[/img]'));
4632 if($orig_body === false)
4635 $img_start = strpos($orig_body, '[img');
4636 $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false);
4637 $img_len = ($img_start !== false ? strpos(substr($orig_body, $img_start + $img_st_close + 1), '[/img]') : false);
4640 $new_body = $new_body . $orig_body;
4646 function has_permissions($obj) {
4647 if(($obj['allow_cid'] != '') || ($obj['allow_gid'] != '') || ($obj['deny_cid'] != '') || ($obj['deny_gid'] != ''))
4652 function compare_permissions($obj1,$obj2) {
4653 // first part is easy. Check that these are exactly the same.
4654 if(($obj1['allow_cid'] == $obj2['allow_cid'])
4655 && ($obj1['allow_gid'] == $obj2['allow_gid'])
4656 && ($obj1['deny_cid'] == $obj2['deny_cid'])
4657 && ($obj1['deny_gid'] == $obj2['deny_gid']))
4660 // This is harder. Parse all the permissions and compare the resulting set.
4662 $recipients1 = enumerate_permissions($obj1);
4663 $recipients2 = enumerate_permissions($obj2);
4666 if($recipients1 == $recipients2)
4671 // returns an array of contact-ids that are allowed to see this object
4673 function enumerate_permissions($obj) {
4674 require_once('include/group.php');
4675 $allow_people = expand_acl($obj['allow_cid']);
4676 $allow_groups = expand_groups(expand_acl($obj['allow_gid']));
4677 $deny_people = expand_acl($obj['deny_cid']);
4678 $deny_groups = expand_groups(expand_acl($obj['deny_gid']));
4679 $recipients = array_unique(array_merge($allow_people,$allow_groups));
4680 $deny = array_unique(array_merge($deny_people,$deny_groups));
4681 $recipients = array_diff($recipients,$deny);
4685 function item_getfeedtags($item) {
4688 $cnt = preg_match_all('|\#\[url\=(.*?)\](.*?)\[\/url\]|',$item['tag'],$matches);
4690 for($x = 0; $x < $cnt; $x ++) {
4692 $ret[$matches[2][$x]] = array('#',$matches[1][$x], $matches[2][$x]);
4696 $cnt = preg_match_all('|\@\[url\=(.*?)\](.*?)\[\/url\]|',$item['tag'],$matches);
4698 for($x = 0; $x < $cnt; $x ++) {
4700 $ret[] = array('@',$matches[1][$x], $matches[2][$x]);
4706 function item_get_attachment($item) {
4708 $siteinfo = get_attached_data($item["body"]);
4710 switch($siteinfo["type"]) {
4712 $o = '<link rel="enclosure" href="'.xmlify($siteinfo["url"]).'" type="text/html; charset=UTF-8" length="" title="'.xmlify($siteinfo["title"]).'"/>'."\r\n";
4715 $imgdata = get_photo_info($siteinfo["image"]);
4716 $o = '<link rel="enclosure" href="'.xmlify($siteinfo["image"]).'" type="'.$imgdata["mime"].'" length="'.$imgdata["size"].'"/>'."\r\n";
4719 $o = '<link rel="enclosure" href="'.xmlify($siteinfo["url"]).'" type="text/html; charset=UTF-8" length="" title="'.xmlify($siteinfo["title"]).'"/>'."\r\n";
4728 function item_getfeedattach($item) {
4730 $arr = explode('[/attach],',$item['attach']);
4732 foreach($arr as $r) {
4734 $cnt = preg_match('|\[attach\]href=\"(.*?)\" length=\"(.*?)\" type=\"(.*?)\" title=\"(.*?)\"|',$r,$matches);
4736 $ret .= '<link rel="enclosure" href="' . xmlify($matches[1]) . '" type="' . xmlify($matches[3]) . '" ';
4737 if(intval($matches[2]))
4738 $ret .= 'length="' . intval($matches[2]) . '" ';
4739 if($matches[4] !== ' ')
4740 $ret .= 'title="' . xmlify(trim($matches[4])) . '" ';
4741 $ret .= ' />' . "\r\n";
4750 function item_expire($uid, $days, $network = "", $force = false) {
4752 if((! $uid) || ($days < 1))
4755 // $expire_network_only = save your own wall posts
4756 // and just expire conversations started by others
4758 $expire_network_only = get_pconfig($uid,'expire','network_only');
4759 $sql_extra = ((intval($expire_network_only)) ? " AND wall = 0 " : "");
4761 if ($network != "") {
4762 $sql_extra .= sprintf(" AND network = '%s' ", dbesc($network));
4763 // There is an index "uid_network_received" but not "uid_network_created"
4764 // This avoids the creation of another index just for one purpose.
4765 // And it doesn't really matter wether to look at "received" or "created"
4766 $range = "AND `received` < UTC_TIMESTAMP() - INTERVAL %d DAY ";
4768 $range = "AND `created` < UTC_TIMESTAMP() - INTERVAL %d DAY ";
4770 $r = q("SELECT * FROM `item`
4771 WHERE `uid` = %d $range
4782 $expire_items = get_pconfig($uid, 'expire','items');
4783 $expire_items = (($expire_items===false)?1:intval($expire_items)); // default if not set: 1
4785 // Forcing expiring of items - but not notes and marked items
4787 $expire_items = true;
4789 $expire_notes = get_pconfig($uid, 'expire','notes');
4790 $expire_notes = (($expire_notes===false)?1:intval($expire_notes)); // default if not set: 1
4792 $expire_starred = get_pconfig($uid, 'expire','starred');
4793 $expire_starred = (($expire_starred===false)?1:intval($expire_starred)); // default if not set: 1
4795 $expire_photos = get_pconfig($uid, 'expire','photos');
4796 $expire_photos = (($expire_photos===false)?0:intval($expire_photos)); // default if not set: 0
4798 logger('expire: # items=' . count($r). "; expire items: $expire_items, expire notes: $expire_notes, expire starred: $expire_starred, expire photos: $expire_photos");
4800 foreach($r as $item) {
4802 // don't expire filed items
4804 if(strpos($item['file'],'[') !== false)
4807 // Only expire posts, not photos and photo comments
4809 if($expire_photos==0 && strlen($item['resource-id']))
4811 if($expire_starred==0 && intval($item['starred']))
4813 if($expire_notes==0 && $item['type']=='note')
4815 if($expire_items==0 && $item['type']!='note')
4818 drop_item($item['id'],false);
4821 proc_run('php',"include/notifier.php","expire","$uid");
4826 function drop_items($items) {
4829 if(! local_user() && ! remote_user())
4833 foreach($items as $item) {
4834 $owner = drop_item($item,false);
4835 if($owner && ! $uid)
4840 // multiple threads may have been deleted, send an expire notification
4843 proc_run('php',"include/notifier.php","expire","$uid");
4847 function drop_item($id,$interactive = true) {
4851 // locate item to be deleted
4853 $r = q("SELECT * FROM `item` WHERE `id` = %d LIMIT 1",
4860 notice( t('Item not found.') . EOL);
4861 goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
4866 $owner = $item['uid'];
4870 // check if logged in user is either the author or owner of this item
4872 if(is_array($_SESSION['remote'])) {
4873 foreach($_SESSION['remote'] as $visitor) {
4874 if($visitor['uid'] == $item['uid'] && $visitor['cid'] == $item['contact-id']) {
4875 $cid = $visitor['cid'];
4882 if((local_user() == $item['uid']) || ($cid) || (! $interactive)) {
4884 // Check if we should do HTML-based delete confirmation
4885 if($_REQUEST['confirm']) {
4886 // <form> can't take arguments in its "action" parameter
4887 // so add any arguments as hidden inputs
4888 $query = explode_querystring($a->query_string);
4890 foreach($query['args'] as $arg) {
4891 if(strpos($arg, 'confirm=') === false) {
4892 $arg_parts = explode('=', $arg);
4893 $inputs[] = array('name' => $arg_parts[0], 'value' => $arg_parts[1]);
4897 return replace_macros(get_markup_template('confirm.tpl'), array(
4899 '$message' => t('Do you really want to delete this item?'),
4900 '$extra_inputs' => $inputs,
4901 '$confirm' => t('Yes'),
4902 '$confirm_url' => $query['base'],
4903 '$confirm_name' => 'confirmed',
4904 '$cancel' => t('Cancel'),
4907 // Now check how the user responded to the confirmation query
4908 if($_REQUEST['canceled']) {
4909 goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
4912 logger('delete item: ' . $item['id'], LOGGER_DEBUG);
4915 $r = q("UPDATE `item` SET `deleted` = 1, `title` = '', `body` = '', `edited` = '%s', `changed` = '%s' WHERE `id` = %d",
4916 dbesc(datetime_convert()),
4917 dbesc(datetime_convert()),
4920 create_tags_from_item($item['id']);
4921 create_files_from_item($item['id']);
4922 delete_thread($item['id'], $item['parent-uri']);
4924 // clean up categories and tags so they don't end up as orphans
4927 $cnt = preg_match_all('/<(.*?)>/',$item['file'],$matches,PREG_SET_ORDER);
4929 foreach($matches as $mtch) {
4930 file_tag_unsave_file($item['uid'],$item['id'],$mtch[1],true);
4936 $cnt = preg_match_all('/\[(.*?)\]/',$item['file'],$matches,PREG_SET_ORDER);
4938 foreach($matches as $mtch) {
4939 file_tag_unsave_file($item['uid'],$item['id'],$mtch[1],false);
4943 // If item is a link to a photo resource, nuke all the associated photos
4944 // (visitors will not have photo resources)
4945 // This only applies to photos uploaded from the photos page. Photos inserted into a post do not
4946 // generate a resource-id and therefore aren't intimately linked to the item.
4948 if(strlen($item['resource-id'])) {
4949 q("DELETE FROM `photo` WHERE `resource-id` = '%s' AND `uid` = %d ",
4950 dbesc($item['resource-id']),
4951 intval($item['uid'])
4953 // ignore the result
4956 // If item is a link to an event, nuke the event record.
4958 if(intval($item['event-id'])) {
4959 q("DELETE FROM `event` WHERE `id` = %d AND `uid` = %d",
4960 intval($item['event-id']),
4961 intval($item['uid'])
4963 // ignore the result
4966 // If item has attachments, drop them
4968 foreach(explode(",",$item['attach']) as $attach){
4969 preg_match("|attach/(\d+)|", $attach, $matches);
4970 q("DELETE FROM `attach` WHERE `id` = %d AND `uid` = %d",
4971 intval($matches[1]),
4974 // ignore the result
4978 // clean up item_id and sign meta-data tables
4981 // Old code - caused very long queries and warning entries in the mysql logfiles:
4983 $r = q("DELETE FROM item_id where iid in (select id from item where parent = %d and uid = %d)",
4984 intval($item['id']),
4985 intval($item['uid'])
4988 $r = q("DELETE FROM sign where iid in (select id from item where parent = %d and uid = %d)",
4989 intval($item['id']),
4990 intval($item['uid'])
4994 // The new code splits the queries since the mysql optimizer really has bad problems with subqueries
4996 // Creating list of parents
4997 $r = q("select id from item where parent = %d and uid = %d",
4998 intval($item['id']),
4999 intval($item['uid'])
5004 foreach ($r AS $row) {
5005 if ($parentid != "")
5008 $parentid .= $row["id"];
5012 if ($parentid != "") {
5013 $r = q("DELETE FROM item_id where iid in (%s)", dbesc($parentid));
5015 $r = q("DELETE FROM sign where iid in (%s)", dbesc($parentid));
5018 // If it's the parent of a comment thread, kill all the kids
5020 if($item['uri'] == $item['parent-uri']) {
5021 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s', `body` = '' , `title` = ''
5022 WHERE `parent-uri` = '%s' AND `uid` = %d ",
5023 dbesc(datetime_convert()),
5024 dbesc(datetime_convert()),
5025 dbesc($item['parent-uri']),
5026 intval($item['uid'])
5028 create_tags_from_itemuri($item['parent-uri'], $item['uid']);
5029 create_files_from_itemuri($item['parent-uri'], $item['uid']);
5030 delete_thread_uri($item['parent-uri'], $item['uid']);
5031 // ignore the result
5034 // ensure that last-child is set in case the comment that had it just got wiped.
5035 q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d ",
5036 dbesc(datetime_convert()),
5037 dbesc($item['parent-uri']),
5038 intval($item['uid'])
5040 // who is the last child now?
5041 $r = q("SELECT `id` FROM `item` WHERE `parent-uri` = '%s' AND `type` != 'activity' AND `deleted` = 0 AND `uid` = %d ORDER BY `edited` DESC LIMIT 1",
5042 dbesc($item['parent-uri']),
5043 intval($item['uid'])
5046 q("UPDATE `item` SET `last-child` = 1 WHERE `id` = %d",
5051 // Add a relayable_retraction signature for Diaspora.
5052 store_diaspora_retract_sig($item, $a->user, $a->get_baseurl());
5055 $drop_id = intval($item['id']);
5057 // send the notification upstream/downstream as the case may be
5059 proc_run('php',"include/notifier.php","drop","$drop_id");
5063 goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
5069 notice( t('Permission denied.') . EOL);
5070 goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
5077 function first_post_date($uid,$wall = false) {
5078 $r = q("select id, created from item
5079 where uid = %d and wall = %d and deleted = 0 and visible = 1 AND moderated = 0
5081 order by created asc limit 1",
5083 intval($wall ? 1 : 0)
5086 // logger('first_post_date: ' . $r[0]['id'] . ' ' . $r[0]['created'], LOGGER_DATA);
5087 return substr(datetime_convert('',date_default_timezone_get(),$r[0]['created']),0,10);
5092 /* modified posted_dates() {below} to arrange the list in years */
5093 function list_post_dates($uid, $wall) {
5094 $dnow = datetime_convert('',date_default_timezone_get(),'now','Y-m-d');
5096 $dthen = first_post_date($uid, $wall);
5100 // Set the start and end date to the beginning of the month
5101 $dnow = substr($dnow,0,8).'01';
5102 $dthen = substr($dthen,0,8).'01';
5106 // Starting with the current month, get the first and last days of every
5107 // month down to and including the month of the first post
5108 while(substr($dnow, 0, 7) >= substr($dthen, 0, 7)) {
5109 $dyear = intval(substr($dnow,0,4));
5110 $dstart = substr($dnow,0,8) . '01';
5111 $dend = substr($dnow,0,8) . get_dim(intval($dnow),intval(substr($dnow,5)));
5112 $start_month = datetime_convert('','',$dstart,'Y-m-d');
5113 $end_month = datetime_convert('','',$dend,'Y-m-d');
5114 $str = day_translate(datetime_convert('','',$dnow,'F'));
5116 $ret[$dyear] = array();
5117 $ret[$dyear][] = array($str,$end_month,$start_month);
5118 $dnow = datetime_convert('','',$dnow . ' -1 month', 'Y-m-d');
5123 function posted_dates($uid,$wall) {
5124 $dnow = datetime_convert('',date_default_timezone_get(),'now','Y-m-d');
5126 $dthen = first_post_date($uid,$wall);
5130 // Set the start and end date to the beginning of the month
5131 $dnow = substr($dnow,0,8).'01';
5132 $dthen = substr($dthen,0,8).'01';
5135 // Starting with the current month, get the first and last days of every
5136 // month down to and including the month of the first post
5137 while(substr($dnow, 0, 7) >= substr($dthen, 0, 7)) {
5138 $dstart = substr($dnow,0,8) . '01';
5139 $dend = substr($dnow,0,8) . get_dim(intval($dnow),intval(substr($dnow,5)));
5140 $start_month = datetime_convert('','',$dstart,'Y-m-d');
5141 $end_month = datetime_convert('','',$dend,'Y-m-d');
5142 $str = day_translate(datetime_convert('','',$dnow,'F Y'));
5143 $ret[] = array($str,$end_month,$start_month);
5144 $dnow = datetime_convert('','',$dnow . ' -1 month', 'Y-m-d');
5150 function posted_date_widget($url,$uid,$wall) {
5153 if(! feature_enabled($uid,'archives'))
5156 // For former Facebook folks that left because of "timeline"
5158 /* if($wall && intval(get_pconfig($uid,'system','no_wall_archive_widget')))
5161 $visible_years = get_pconfig($uid,'system','archive_visible_years');
5162 if(! $visible_years)
5165 $ret = list_post_dates($uid,$wall);
5170 $cutoff_year = intval(datetime_convert('',date_default_timezone_get(),'now','Y')) - $visible_years;
5171 $cutoff = ((array_key_exists($cutoff_year,$ret))? true : false);
5173 $o = replace_macros(get_markup_template('posted_date_widget.tpl'),array(
5174 '$title' => t('Archives'),
5175 '$size' => $visible_years,
5176 '$cutoff_year' => $cutoff_year,
5177 '$cutoff' => $cutoff,
5180 '$showmore' => t('show more')
5186 function store_diaspora_retract_sig($item, $user, $baseurl) {
5187 // Note that we can't add a target_author_signature
5188 // if the comment was deleted by a remote user. That should be ok, because if a remote user is deleting
5189 // the comment, that means we're the home of the post, and Diaspora will only
5190 // check the parent_author_signature of retractions that it doesn't have to relay further
5192 // I don't think this function gets called for an "unlike," but I'll check anyway
5194 $enabled = intval(get_config('system','diaspora_enabled'));
5196 logger('drop_item: diaspora support disabled, not storing retraction signature', LOGGER_DEBUG);
5200 logger('drop_item: storing diaspora retraction signature');
5202 $signed_text = $item['guid'] . ';' . ( ($item['verb'] === ACTIVITY_LIKE) ? 'Like' : 'Comment');
5204 if(local_user() == $item['uid']) {
5206 $handle = $user['nickname'] . '@' . substr($baseurl, strpos($baseurl,'://') + 3);
5207 $authorsig = base64_encode(rsa_sign($signed_text,$user['prvkey'],'sha256'));
5210 $r = q("SELECT `nick`, `url` FROM `contact` WHERE `id` = '%d' LIMIT 1",
5211 $item['contact-id'] // If this function gets called, drop_item() has already checked remote_user() == $item['contact-id']
5214 // The below handle only works for NETWORK_DFRN. I think that's ok, because this function
5215 // only handles DFRN deletes
5216 $handle_baseurl_start = strpos($r['url'],'://') + 3;
5217 $handle_baseurl_length = strpos($r['url'],'/profile') - $handle_baseurl_start;
5218 $handle = $r['nick'] . '@' . substr($r['url'], $handle_baseurl_start, $handle_baseurl_length);
5224 q("insert into sign (`retract_iid`,`signed_text`,`signature`,`signer`) values (%d,'%s','%s','%s') ",
5225 intval($item['id']),
5226 dbesc($signed_text),