3 require_once('include/bbcode.php');
4 require_once('include/oembed.php');
5 require_once('include/salmon.php');
6 require_once('include/crypto.php');
7 require_once('include/Photo.php');
8 require_once('include/tags.php');
9 require_once('include/files.php');
10 require_once('include/text.php');
11 require_once('include/email.php');
12 require_once('include/threads.php');
13 require_once('include/socgraph.php');
14 require_once('include/plaintext.php');
15 require_once('include/ostatus.php');
16 require_once('include/feed.php');
17 require_once('mod/share.php');
19 require_once('library/defuse/php-encryption-1.2.1/Crypto.php');
22 function get_feed_for(&$a, $dfrn_id, $owner_nick, $last_update, $direction = 0, $forpubsub = false) {
25 $sitefeed = ((strlen($owner_nick)) ? false : true); // not yet implemented, need to rewrite huge chunks of following logic
26 $public_feed = (($dfrn_id) ? false : true);
27 $starred = false; // not yet implemented, possible security issues
30 if($public_feed && $a->argc > 2) {
31 for($x = 2; $x < $a->argc; $x++) {
32 if($a->argv[$x] == 'converse')
34 if($a->argv[$x] == 'starred')
36 if($a->argv[$x] === 'category' && $a->argc > ($x + 1) && strlen($a->argv[$x+1]))
37 $category = $a->argv[$x+1];
43 // default permissions - anonymous user
45 $sql_extra = " AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = '' AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = '' ";
47 $r = q("SELECT `contact`.*, `user`.`uid` AS `user_uid`, `user`.`nickname`, `user`.`timezone`, `user`.`page-flags`
48 FROM `contact` INNER JOIN `user` ON `user`.`uid` = `contact`.`uid`
49 WHERE `contact`.`self` = 1 AND `user`.`nickname` = '%s' LIMIT 1",
57 $owner_id = $owner['user_uid'];
58 $owner_nick = $owner['nickname'];
60 $birthday = feed_birthday($owner_id,$owner['timezone']);
70 $sql_extra = sprintf(" AND `issued-id` = '%s' ", dbesc($dfrn_id));
74 $sql_extra = sprintf(" AND `issued-id` = '%s' AND `duplex` = 1 ", dbesc($dfrn_id));
75 $my_id = '1:' . $dfrn_id;
78 $sql_extra = sprintf(" AND `dfrn-id` = '%s' AND `duplex` = 1 ", dbesc($dfrn_id));
79 $my_id = '0:' . $dfrn_id;
86 $r = q("SELECT * FROM `contact` WHERE `blocked` = 0 AND `pending` = 0 AND `contact`.`uid` = %d $sql_extra LIMIT 1",
94 require_once('include/security.php');
95 $groups = init_groups_visitor($contact['id']);
98 for($x = 0; $x < count($groups); $x ++)
99 $groups[$x] = '<' . intval($groups[$x]) . '>' ;
100 $gs = implode('|', $groups);
103 $gs = '<<>>' ; // Impossible to match
105 $sql_extra = sprintf("
106 AND ( `allow_cid` = '' OR `allow_cid` REGEXP '<%d>' )
107 AND ( `deny_cid` = '' OR NOT `deny_cid` REGEXP '<%d>' )
108 AND ( `allow_gid` = '' OR `allow_gid` REGEXP '%s' )
109 AND ( `deny_gid` = '' OR NOT `deny_gid` REGEXP '%s')
111 intval($contact['id']),
112 intval($contact['id']),
123 // Include answers to status.net posts in pubsub feeds
125 $sql_post_table = "INNER JOIN `thread` ON `thread`.`iid` = `item`.`parent`
126 LEFT JOIN `item` AS `thritem` ON `thritem`.`uri`=`item`.`thr-parent` AND `thritem`.`uid`=`item`.`uid`";
127 $visibility = sprintf("AND (`item`.`parent` = `item`.`id`) OR (`item`.`network` = '%s' AND ((`thread`.`network`='%s') OR (`thritem`.`network` = '%s')))",
128 dbesc(NETWORK_DFRN), dbesc(NETWORK_OSTATUS), dbesc(NETWORK_OSTATUS));
129 $date_field = "`received`";
130 $sql_order = "`item`.`received` DESC";
132 $date_field = "`changed`";
133 $sql_order = "`item`.`parent` ".$sort.", `item`.`created` ASC";
136 if(! strlen($last_update))
137 $last_update = 'now -30 days';
139 if(isset($category)) {
140 $sql_post_table = sprintf("INNER JOIN (SELECT `oid` FROM `term` WHERE `term` = '%s' AND `otype` = %d AND `type` = %d AND `uid` = %d ORDER BY `tid` DESC) AS `term` ON `item`.`id` = `term`.`oid` ",
141 dbesc(protect_sprintf($category)), intval(TERM_OBJ_POST), intval(TERM_CATEGORY), intval($owner_id));
142 //$sql_extra .= file_tag_file_query('item',$category,'category');
147 $sql_extra .= " AND `contact`.`self` = 1 ";
150 $check_date = datetime_convert('UTC','UTC',$last_update,'Y-m-d H:i:s');
152 // AND ( `item`.`edited` > '%s' OR `item`.`changed` > '%s' )
153 // dbesc($check_date),
155 $r = q("SELECT STRAIGHT_JOIN `item`.*, `item`.`id` AS `item_id`,
156 `contact`.`name`, `contact`.`network`, `contact`.`photo`, `contact`.`url`,
157 `contact`.`name-date`, `contact`.`uri-date`, `contact`.`avatar-date`,
158 `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`,
159 `contact`.`id` AS `contact-id`, `contact`.`uid` AS `contact-uid`,
160 `sign`.`signed_text`, `sign`.`signature`, `sign`.`signer`
161 FROM `item` $sql_post_table
162 INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
163 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
164 LEFT JOIN `sign` ON `sign`.`iid` = `item`.`id`
165 WHERE `item`.`uid` = %d AND `item`.`visible` = 1 and `item`.`moderated` = 0 AND `item`.`parent` != 0
166 AND ((`item`.`wall` = 1) $visibility) AND `item`.$date_field > '%s'
168 ORDER BY $sql_order LIMIT 0, 300",
174 // Will check further below if this actually returned results.
175 // We will provide an empty feed if that is the case.
179 $feed_template = get_markup_template(($dfrn_id) ? 'atom_feed_dfrn.tpl' : 'atom_feed.tpl');
183 $hubxml = feed_hublinks();
185 $salmon = feed_salmonlinks($owner_nick);
187 $alternatelink = $owner['url'];
190 $alternatelink .= "/category/".$category;
192 $atom .= replace_macros($feed_template, array(
193 '$version' => xmlify(FRIENDICA_VERSION),
194 '$feed_id' => xmlify($a->get_baseurl() . '/profile/' . $owner_nick),
195 '$feed_title' => xmlify($owner['name']),
196 '$feed_updated' => xmlify(datetime_convert('UTC', 'UTC', 'now' , ATOM_TIME)) ,
198 '$salmon' => $salmon,
199 '$alternatelink' => xmlify($alternatelink),
200 '$name' => xmlify($owner['name']),
201 '$profile_page' => xmlify($owner['url']),
202 '$photo' => xmlify($owner['photo']),
203 '$thumb' => xmlify($owner['thumb']),
204 '$picdate' => xmlify(datetime_convert('UTC','UTC',$owner['avatar-date'] . '+00:00' , ATOM_TIME)) ,
205 '$uridate' => xmlify(datetime_convert('UTC','UTC',$owner['uri-date'] . '+00:00' , ATOM_TIME)) ,
206 '$namdate' => xmlify(datetime_convert('UTC','UTC',$owner['name-date'] . '+00:00' , ATOM_TIME)) ,
207 '$birthday' => ((strlen($birthday)) ? '<dfrn:birthday>' . xmlify($birthday) . '</dfrn:birthday>' : ''),
208 '$community' => (($owner['page-flags'] == PAGE_COMMUNITY) ? '<dfrn:community>1</dfrn:community>' : '')
211 call_hooks('atom_feed', $atom);
213 if(! count($items)) {
215 call_hooks('atom_feed_end', $atom);
217 $atom .= '</feed>' . "\r\n";
221 foreach($items as $item) {
223 // prevent private email from leaking.
224 if($item['network'] === NETWORK_MAIL)
227 // public feeds get html, our own nodes use bbcode
231 // catch any email that's in a public conversation and make sure it doesn't leak
239 $atom .= atom_entry($item,$type,null,$owner,true);
242 call_hooks('atom_feed_end', $atom);
244 $atom .= '</feed>' . "\r\n";
250 function construct_verb($item) {
252 return $item['verb'];
253 return ACTIVITY_POST;
256 function construct_activity_object($item) {
258 if($item['object']) {
259 $o = '<as:object>' . "\r\n";
260 $r = parse_xml_string($item['object'],false);
266 $o .= '<as:object-type>' . xmlify($r->type) . '</as:object-type>' . "\r\n";
268 $o .= '<id>' . xmlify($r->id) . '</id>' . "\r\n";
270 $o .= '<title>' . xmlify($r->title) . '</title>' . "\r\n";
272 if(substr($r->link,0,1) === '<') {
273 // patch up some facebook "like" activity objects that got stored incorrectly
274 // for a couple of months prior to 9-Jun-2011 and generated bad XML.
275 // we can probably remove this hack here and in the following function in a few months time.
276 if(strstr($r->link,'&') && (! strstr($r->link,'&')))
277 $r->link = str_replace('&','&', $r->link);
278 $r->link = preg_replace('/\<link(.*?)\"\>/','<link$1"/>',$r->link);
282 $o .= '<link rel="alternate" type="text/html" href="' . xmlify($r->link) . '" />' . "\r\n";
285 $o .= '<content type="html" >' . xmlify(bbcode($r->content)) . '</content>' . "\r\n";
286 $o .= '</as:object>' . "\r\n";
293 function construct_activity_target($item) {
295 if($item['target']) {
296 $o = '<as:target>' . "\r\n";
297 $r = parse_xml_string($item['target'],false);
301 $o .= '<as:object-type>' . xmlify($r->type) . '</as:object-type>' . "\r\n";
303 $o .= '<id>' . xmlify($r->id) . '</id>' . "\r\n";
305 $o .= '<title>' . xmlify($r->title) . '</title>' . "\r\n";
307 if(substr($r->link,0,1) === '<') {
308 if(strstr($r->link,'&') && (! strstr($r->link,'&')))
309 $r->link = str_replace('&','&', $r->link);
310 $r->link = preg_replace('/\<link(.*?)\"\>/','<link$1"/>',$r->link);
314 $o .= '<link rel="alternate" type="text/html" href="' . xmlify($r->link) . '" />' . "\r\n";
317 $o .= '<content type="html" >' . xmlify(bbcode($r->content)) . '</content>' . "\r\n";
318 $o .= '</as:target>' . "\r\n";
327 * The purpose of this function is to apply system message length limits to
328 * imported messages without including any embedded photos in the length
330 if(! function_exists('limit_body_size')) {
331 function limit_body_size($body) {
333 // logger('limit_body_size: start', LOGGER_DEBUG);
335 $maxlen = get_max_import_size();
337 // If the length of the body, including the embedded images, is smaller
338 // than the maximum, then don't waste time looking for the images
339 if($maxlen && (strlen($body) > $maxlen)) {
341 logger('limit_body_size: the total body length exceeds the limit', LOGGER_DEBUG);
348 $img_start = strpos($orig_body, '[img');
349 $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false);
350 $img_end = ($img_start !== false ? strpos(substr($orig_body, $img_start), '[/img]') : false);
351 while(($img_st_close !== false) && ($img_end !== false)) {
353 $img_st_close++; // make it point to AFTER the closing bracket
354 $img_end += $img_start;
355 $img_end += strlen('[/img]');
357 if(! strcmp(substr($orig_body, $img_start + $img_st_close, 5), 'data:')) {
358 // This is an embedded image
360 if( ($textlen + $img_start) > $maxlen ) {
361 if($textlen < $maxlen) {
362 logger('limit_body_size: the limit happens before an embedded image', LOGGER_DEBUG);
363 $new_body = $new_body . substr($orig_body, 0, $maxlen - $textlen);
368 $new_body = $new_body . substr($orig_body, 0, $img_start);
369 $textlen += $img_start;
372 $new_body = $new_body . substr($orig_body, $img_start, $img_end - $img_start);
376 if( ($textlen + $img_end) > $maxlen ) {
377 if($textlen < $maxlen) {
378 logger('limit_body_size: the limit happens before the end of a non-embedded image', LOGGER_DEBUG);
379 $new_body = $new_body . substr($orig_body, 0, $maxlen - $textlen);
384 $new_body = $new_body . substr($orig_body, 0, $img_end);
385 $textlen += $img_end;
388 $orig_body = substr($orig_body, $img_end);
390 if($orig_body === false) // in case the body ends on a closing image tag
393 $img_start = strpos($orig_body, '[img');
394 $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false);
395 $img_end = ($img_start !== false ? strpos(substr($orig_body, $img_start), '[/img]') : false);
398 if( ($textlen + strlen($orig_body)) > $maxlen) {
399 if($textlen < $maxlen) {
400 logger('limit_body_size: the limit happens after the end of the last image', LOGGER_DEBUG);
401 $new_body = $new_body . substr($orig_body, 0, $maxlen - $textlen);
406 logger('limit_body_size: the text size with embedded images extracted did not violate the limit', LOGGER_DEBUG);
407 $new_body = $new_body . $orig_body;
408 $textlen += strlen($orig_body);
417 function title_is_body($title, $body) {
419 $title = strip_tags($title);
420 $title = trim($title);
421 $title = html_entity_decode($title, ENT_QUOTES, 'UTF-8');
422 $title = str_replace(array("\n", "\r", "\t", " "), array("","","",""), $title);
424 $body = strip_tags($body);
426 $body = html_entity_decode($body, ENT_QUOTES, 'UTF-8');
427 $body = str_replace(array("\n", "\r", "\t", " "), array("","","",""), $body);
429 if (strlen($title) < strlen($body))
430 $body = substr($body, 0, strlen($title));
432 if (($title != $body) and (substr($title, -3) == "...")) {
433 $pos = strrpos($title, "...");
435 $title = substr($title, 0, $pos);
436 $body = substr($body, 0, $pos);
440 return($title == $body);
445 function get_atom_elements($feed, $item, $contact = array()) {
447 require_once('library/HTMLPurifier.auto.php');
448 require_once('include/html2bbcode.php');
450 $best_photo = array();
454 $author = $item->get_author();
456 $res['author-name'] = unxmlify($author->get_name());
457 $res['author-link'] = unxmlify($author->get_link());
460 $res['author-name'] = unxmlify($feed->get_title());
461 $res['author-link'] = unxmlify($feed->get_permalink());
463 $res['uri'] = unxmlify($item->get_id());
464 $res['title'] = unxmlify($item->get_title());
465 $res['body'] = unxmlify($item->get_content());
466 $res['plink'] = unxmlify($item->get_link(0));
468 if (isset($contact["network"]) AND ($contact["network"] == NETWORK_FEED) AND strstr($res['plink'], ".app.net/")) {
469 logger("get_atom_elements: detected app.net posting: ".print_r($res, true), LOGGER_DEBUG);
471 $res['body'] = nl2br($res['body']);
474 // removing the content of the title if its identically to the body
475 // This helps with auto generated titles e.g. from tumblr
476 if (title_is_body($res["title"], $res["body"]))
480 $base_url = implode('/', array_slice(explode('/',$res['plink']),0,3));
484 // look for a photo. We should check media size and find the best one,
485 // but for now let's just find any author photo
486 // Additionally we look for an alternate author link. On OStatus this one is the one we want.
488 $authorlinks = $item->feed->data["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["feed"][0]["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["author"][0]["child"]["http://www.w3.org/2005/Atom"]["link"];
489 if (is_array($authorlinks)) {
490 foreach ($authorlinks as $link) {
491 $linkdata = array_shift($link["attribs"]);
493 if ($linkdata["rel"] == "alternate")
494 $res["author-link"] = $linkdata["href"];
498 $rawauthor = $item->get_item_tags(SIMPLEPIE_NAMESPACE_ATOM_10,'author');
500 if($rawauthor && $rawauthor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link']) {
501 $base = $rawauthor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link'];
502 foreach($base as $link) {
503 if($link['attribs']['']['rel'] === 'alternate')
504 $res['author-link'] = unxmlify($link['attribs']['']['href']);
506 if(!x($res, 'author-avatar') || !$res['author-avatar']) {
507 if($link['attribs']['']['rel'] === 'photo' || $link['attribs']['']['rel'] === 'avatar')
508 $res['author-avatar'] = unxmlify($link['attribs']['']['href']);
513 $rawactor = $item->get_item_tags(NAMESPACE_ACTIVITY, 'actor');
515 if($rawactor && activity_match($rawactor[0]['child'][NAMESPACE_ACTIVITY]['object-type'][0]['data'],ACTIVITY_OBJ_PERSON)) {
516 $base = $rawactor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link'];
517 if($base && count($base)) {
518 foreach($base as $link) {
519 if($link['attribs']['']['rel'] === 'alternate' && (! $res['author-link']))
520 $res['author-link'] = unxmlify($link['attribs']['']['href']);
521 if(!x($res, 'author-avatar') || !$res['author-avatar']) {
522 if($link['attribs']['']['rel'] === 'avatar' || $link['attribs']['']['rel'] === 'photo')
523 $res['author-avatar'] = unxmlify($link['attribs']['']['href']);
529 // No photo/profile-link on the item - look at the feed level
531 if((! (x($res,'author-link'))) || (! (x($res,'author-avatar')))) {
532 $rawauthor = $feed->get_feed_tags(SIMPLEPIE_NAMESPACE_ATOM_10,'author');
533 if($rawauthor && $rawauthor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link']) {
534 $base = $rawauthor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link'];
535 foreach($base as $link) {
536 if($link['attribs']['']['rel'] === 'alternate' && (! $res['author-link']))
537 $res['author-link'] = unxmlify($link['attribs']['']['href']);
538 if(! $res['author-avatar']) {
539 if($link['attribs']['']['rel'] === 'photo' || $link['attribs']['']['rel'] === 'avatar')
540 $res['author-avatar'] = unxmlify($link['attribs']['']['href']);
545 $rawactor = $feed->get_feed_tags(NAMESPACE_ACTIVITY, 'subject');
547 if($rawactor && activity_match($rawactor[0]['child'][NAMESPACE_ACTIVITY]['object-type'][0]['data'],ACTIVITY_OBJ_PERSON)) {
548 $base = $rawactor[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link'];
550 if($base && count($base)) {
551 foreach($base as $link) {
552 if($link['attribs']['']['rel'] === 'alternate' && (! $res['author-link']))
553 $res['author-link'] = unxmlify($link['attribs']['']['href']);
554 if(! (x($res,'author-avatar'))) {
555 if($link['attribs']['']['rel'] === 'avatar' || $link['attribs']['']['rel'] === 'photo')
556 $res['author-avatar'] = unxmlify($link['attribs']['']['href']);
563 $apps = $item->get_item_tags(NAMESPACE_STATUSNET,'notice_info');
564 if($apps && $apps[0]['attribs']['']['source']) {
565 $res['app'] = strip_tags(unxmlify($apps[0]['attribs']['']['source']));
566 if($res['app'] === 'web')
567 $res['app'] = 'OStatus';
570 // base64 encoded json structure representing Diaspora signature
572 $dsig = $item->get_item_tags(NAMESPACE_DFRN,'diaspora_signature');
574 $res['dsprsig'] = unxmlify($dsig[0]['data']);
577 $dguid = $item->get_item_tags(NAMESPACE_DFRN,'diaspora_guid');
579 $res['guid'] = unxmlify($dguid[0]['data']);
581 $bm = $item->get_item_tags(NAMESPACE_DFRN,'bookmark');
583 $res['bookmark'] = ((unxmlify($bm[0]['data']) === 'true') ? 1 : 0);
587 * If there's a copy of the body content which is guaranteed to have survived mangling in transit, use it.
590 $have_real_body = false;
592 $rawenv = $item->get_item_tags(NAMESPACE_DFRN, 'env');
594 $have_real_body = true;
595 $res['body'] = $rawenv[0]['data'];
596 $res['body'] = str_replace(array(' ',"\t","\r","\n"), array('','','',''),$res['body']);
597 // make sure nobody is trying to sneak some html tags by us
598 $res['body'] = notags(base64url_decode($res['body']));
602 $res['body'] = limit_body_size($res['body']);
604 // It isn't certain at this point whether our content is plaintext or html and we'd be foolish to trust
605 // the content type. Our own network only emits text normally, though it might have been converted to
606 // html if we used a pubsubhubbub transport. But if we see even one html tag in our text, we will
607 // have to assume it is all html and needs to be purified.
609 // It doesn't matter all that much security wise - because before this content is used anywhere, we are
610 // going to escape any tags we find regardless, but this lets us import a limited subset of html from
611 // the wild, by sanitising it and converting supported tags to bbcode before we rip out any remaining
614 if((strpos($res['body'],'<') !== false) && (strpos($res['body'],'>') !== false)) {
616 $res['body'] = reltoabs($res['body'],$base_url);
618 $res['body'] = html2bb_video($res['body']);
620 $res['body'] = oembed_html2bbcode($res['body']);
622 $config = HTMLPurifier_Config::createDefault();
623 $config->set('Cache.DefinitionImpl', null);
625 // we shouldn't need a whitelist, because the bbcode converter
626 // will strip out any unsupported tags.
628 $purifier = new HTMLPurifier($config);
629 $res['body'] = $purifier->purify($res['body']);
631 $res['body'] = @html2bbcode($res['body']);
635 elseif(! $have_real_body) {
637 // it's not one of our messages and it has no tags
638 // so it's probably just text. We'll escape it just to be safe.
640 $res['body'] = escape_tags($res['body']);
644 // this tag is obsolete but we keep it for really old sites
646 $allow = $item->get_item_tags(NAMESPACE_DFRN,'comment-allow');
647 if($allow && $allow[0]['data'] == 1)
648 $res['last-child'] = 1;
650 $res['last-child'] = 0;
652 $private = $item->get_item_tags(NAMESPACE_DFRN,'private');
653 if($private && intval($private[0]['data']) > 0)
654 $res['private'] = intval($private[0]['data']);
658 $extid = $item->get_item_tags(NAMESPACE_DFRN,'extid');
659 if($extid && $extid[0]['data'])
660 $res['extid'] = $extid[0]['data'];
662 $rawlocation = $item->get_item_tags(NAMESPACE_DFRN, 'location');
664 $res['location'] = unxmlify($rawlocation[0]['data']);
667 $rawcreated = $item->get_item_tags(SIMPLEPIE_NAMESPACE_ATOM_10,'published');
669 $res['created'] = unxmlify($rawcreated[0]['data']);
672 $rawedited = $item->get_item_tags(SIMPLEPIE_NAMESPACE_ATOM_10,'updated');
674 $res['edited'] = unxmlify($rawedited[0]['data']);
676 if((x($res,'edited')) && (! (x($res,'created'))))
677 $res['created'] = $res['edited'];
679 if(! $res['created'])
680 $res['created'] = $item->get_date('c');
683 $res['edited'] = $item->get_date('c');
686 // Disallow time travelling posts
688 $d1 = strtotime($res['created']);
689 $d2 = strtotime($res['edited']);
690 $d3 = strtotime('now');
693 $res['created'] = datetime_convert();
695 $res['edited'] = datetime_convert();
697 $rawowner = $item->get_item_tags(NAMESPACE_DFRN, 'owner');
698 if($rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['name'][0]['data'])
699 $res['owner-name'] = unxmlify($rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['name'][0]['data']);
700 elseif($rawowner[0]['child'][NAMESPACE_DFRN]['name'][0]['data'])
701 $res['owner-name'] = unxmlify($rawowner[0]['child'][NAMESPACE_DFRN]['name'][0]['data']);
702 if($rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['uri'][0]['data'])
703 $res['owner-link'] = unxmlify($rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['uri'][0]['data']);
704 elseif($rawowner[0]['child'][NAMESPACE_DFRN]['uri'][0]['data'])
705 $res['owner-link'] = unxmlify($rawowner[0]['child'][NAMESPACE_DFRN]['uri'][0]['data']);
707 if($rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link']) {
708 $base = $rawowner[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10]['link'];
710 foreach($base as $link) {
711 if(!x($res, 'owner-avatar') || !$res['owner-avatar']) {
712 if($link['attribs']['']['rel'] === 'photo' || $link['attribs']['']['rel'] === 'avatar')
713 $res['owner-avatar'] = unxmlify($link['attribs']['']['href']);
718 $rawgeo = $item->get_item_tags(NAMESPACE_GEORSS,'point');
720 $res['coord'] = unxmlify($rawgeo[0]['data']);
722 if ($contact["network"] == NETWORK_FEED) {
723 $res['verb'] = ACTIVITY_POST;
724 $res['object-type'] = ACTIVITY_OBJ_NOTE;
727 $rawverb = $item->get_item_tags(NAMESPACE_ACTIVITY, 'verb');
729 // select between supported verbs
732 $res['verb'] = unxmlify($rawverb[0]['data']);
735 // translate OStatus unfollow to activity streams if it happened to get selected
737 if((x($res,'verb')) && ($res['verb'] === 'http://ostatus.org/schema/1.0/unfollow'))
738 $res['verb'] = ACTIVITY_UNFOLLOW;
740 $cats = $item->get_categories();
743 foreach($cats as $cat) {
744 $term = $cat->get_term();
746 $term = $cat->get_label();
747 $scheme = $cat->get_scheme();
748 if($scheme && $term && stristr($scheme,'X-DFRN:'))
749 $tag_arr[] = substr($scheme,7,1) . '[url=' . unxmlify(substr($scheme,9)) . ']' . unxmlify($term) . '[/url]';
751 $tag_arr[] = notags(trim($term));
753 $res['tag'] = implode(',', $tag_arr);
756 $attach = $item->get_enclosures();
759 foreach($attach as $att) {
760 $len = intval($att->get_length());
761 $link = str_replace(array(',','"'),array('%2D','%22'),notags(trim(unxmlify($att->get_link()))));
762 $title = str_replace(array(',','"'),array('%2D','%22'),notags(trim(unxmlify($att->get_title()))));
763 $type = str_replace(array(',','"'),array('%2D','%22'),notags(trim(unxmlify($att->get_type()))));
764 if(strpos($type,';'))
765 $type = substr($type,0,strpos($type,';'));
766 if((! $link) || (strpos($link,'http') !== 0))
772 $type = 'application/octet-stream';
774 $att_arr[] = '[attach]href="' . $link . '" length="' . $len . '" type="' . $type . '" title="' . $title . '"[/attach]';
776 $res['attach'] = implode(',', $att_arr);
779 $rawobj = $item->get_item_tags(NAMESPACE_ACTIVITY, 'object');
782 $res['object'] = '<object>' . "\n";
783 $child = $rawobj[0]['child'];
784 if($child[NAMESPACE_ACTIVITY]['object-type'][0]['data']) {
785 $res['object-type'] = $child[NAMESPACE_ACTIVITY]['object-type'][0]['data'];
786 $res['object'] .= '<type>' . $child[NAMESPACE_ACTIVITY]['object-type'][0]['data'] . '</type>' . "\n";
788 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'id') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['id'][0]['data'])
789 $res['object'] .= '<id>' . $child[SIMPLEPIE_NAMESPACE_ATOM_10]['id'][0]['data'] . '</id>' . "\n";
790 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'link') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['link'])
791 $res['object'] .= '<link>' . encode_rel_links($child[SIMPLEPIE_NAMESPACE_ATOM_10]['link']) . '</link>' . "\n";
792 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'title') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['title'][0]['data'])
793 $res['object'] .= '<title>' . $child[SIMPLEPIE_NAMESPACE_ATOM_10]['title'][0]['data'] . '</title>' . "\n";
794 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'content') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['content'][0]['data']) {
795 $body = $child[SIMPLEPIE_NAMESPACE_ATOM_10]['content'][0]['data'];
797 $body = $child[SIMPLEPIE_NAMESPACE_ATOM_10]['summary'][0]['data'];
798 // preserve a copy of the original body content in case we later need to parse out any microformat information, e.g. events
799 $res['object'] .= '<orig>' . xmlify($body) . '</orig>' . "\n";
800 if((strpos($body,'<') !== false) || (strpos($body,'>') !== false)) {
802 $body = html2bb_video($body);
804 $config = HTMLPurifier_Config::createDefault();
805 $config->set('Cache.DefinitionImpl', null);
807 $purifier = new HTMLPurifier($config);
808 $body = $purifier->purify($body);
809 $body = html2bbcode($body);
812 $res['object'] .= '<content>' . $body . '</content>' . "\n";
815 $res['object'] .= '</object>' . "\n";
818 $rawobj = $item->get_item_tags(NAMESPACE_ACTIVITY, 'target');
821 $res['target'] = '<target>' . "\n";
822 $child = $rawobj[0]['child'];
823 if($child[NAMESPACE_ACTIVITY]['object-type'][0]['data']) {
824 $res['target'] .= '<type>' . $child[NAMESPACE_ACTIVITY]['object-type'][0]['data'] . '</type>' . "\n";
826 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'id') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['id'][0]['data'])
827 $res['target'] .= '<id>' . $child[SIMPLEPIE_NAMESPACE_ATOM_10]['id'][0]['data'] . '</id>' . "\n";
828 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'link') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['link'])
829 $res['target'] .= '<link>' . encode_rel_links($child[SIMPLEPIE_NAMESPACE_ATOM_10]['link']) . '</link>' . "\n";
830 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'data') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['title'][0]['data'])
831 $res['target'] .= '<title>' . $child[SIMPLEPIE_NAMESPACE_ATOM_10]['title'][0]['data'] . '</title>' . "\n";
832 if(x($child[SIMPLEPIE_NAMESPACE_ATOM_10], 'data') && $child[SIMPLEPIE_NAMESPACE_ATOM_10]['content'][0]['data']) {
833 $body = $child[SIMPLEPIE_NAMESPACE_ATOM_10]['content'][0]['data'];
835 $body = $child[SIMPLEPIE_NAMESPACE_ATOM_10]['summary'][0]['data'];
836 // preserve a copy of the original body content in case we later need to parse out any microformat information, e.g. events
837 $res['target'] .= '<orig>' . xmlify($body) . '</orig>' . "\n";
838 if((strpos($body,'<') !== false) || (strpos($body,'>') !== false)) {
840 $body = html2bb_video($body);
842 $config = HTMLPurifier_Config::createDefault();
843 $config->set('Cache.DefinitionImpl', null);
845 $purifier = new HTMLPurifier($config);
846 $body = $purifier->purify($body);
847 $body = html2bbcode($body);
850 $res['target'] .= '<content>' . $body . '</content>' . "\n";
853 $res['target'] .= '</target>' . "\n";
856 // This is some experimental stuff. By now retweets are shown with "RT:"
857 // But: There is data so that the message could be shown similar to native retweets
858 // There is some better way to parse this array - but it didn't worked for me.
859 $child = $item->feed->data["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["feed"][0]["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["entry"][0]["child"]["http://activitystrea.ms/spec/1.0/"][object][0]["child"];
860 if (is_array($child)) {
861 logger('get_atom_elements: Looking for status.net repeated message');
863 $message = $child["http://activitystrea.ms/spec/1.0/"]["object"][0]["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["content"][0]["data"];
864 $orig_id = ostatus_convert_href($child["http://activitystrea.ms/spec/1.0/"]["object"][0]["child"][SIMPLEPIE_NAMESPACE_ATOM_10]["id"][0]["data"]);
865 $author = $child[SIMPLEPIE_NAMESPACE_ATOM_10]["author"][0]["child"][SIMPLEPIE_NAMESPACE_ATOM_10];
866 $uri = $author["uri"][0]["data"];
867 $name = $author["name"][0]["data"];
868 $avatar = @array_shift($author["link"][2]["attribs"]);
869 $avatar = $avatar["href"];
871 if (($name != "") and ($uri != "") and ($avatar != "") and ($message != "")) {
872 logger('get_atom_elements: fixing sender of repeated message. '.$orig_id, LOGGER_DEBUG);
874 if (!intval(get_config('system','wall-to-wall_share'))) {
875 $prefix = share_header($name, $uri, $avatar, "", "", $orig_link);
877 $res["body"] = $prefix.html2bbcode($message)."[/share]";
879 $res["owner-name"] = $res["author-name"];
880 $res["owner-link"] = $res["author-link"];
881 $res["owner-avatar"] = $res["author-avatar"];
883 $res["author-name"] = $name;
884 $res["author-link"] = $uri;
885 $res["author-avatar"] = $avatar;
887 $res["body"] = html2bbcode($message);
892 if (isset($contact["network"]) AND ($contact["network"] == NETWORK_FEED) AND $contact['fetch_further_information']) {
895 // Handle enclosures and treat them as preview picture
897 foreach ($attach AS $attachment)
898 if ($attachment->type == "image/jpeg")
899 $preview = $attachment->link;
901 $res["body"] = $res["title"].add_page_info($res['plink'], false, $preview, ($contact['fetch_further_information'] == 2), $contact['ffi_keyword_blacklist']);
902 $res["tag"] = add_page_keywords($res['plink'], false, $preview, ($contact['fetch_further_information'] == 2), $contact['ffi_keyword_blacklist']);
904 $res["object-type"] = ACTIVITY_OBJ_BOOKMARK;
905 unset($res["attach"]);
906 } elseif (isset($contact["network"]) AND ($contact["network"] == NETWORK_OSTATUS))
907 $res["body"] = add_page_info_to_body($res["body"]);
908 elseif (isset($contact["network"]) AND ($contact["network"] == NETWORK_FEED) AND strstr($res['plink'], ".app.net/")) {
909 $res["body"] = add_page_info_to_body($res["body"]);
912 $arr = array('feed' => $feed, 'item' => $item, 'result' => $res);
914 call_hooks('parse_atom', $arr);
919 function add_page_info_data($data) {
920 call_hooks('page_info_data', $data);
922 // It maybe is a rich content, but if it does have everything that a link has,
923 // then treat it that way
924 if (($data["type"] == "rich") AND is_string($data["title"]) AND
925 is_string($data["text"]) AND (sizeof($data["images"]) > 0))
926 $data["type"] = "link";
928 if ((($data["type"] != "link") AND ($data["type"] != "video") AND ($data["type"] != "photo")) OR ($data["title"] == $url))
931 if ($no_photos AND ($data["type"] == "photo"))
934 // If the link contains BBCode stuff, make a short link out of this to avoid parsing problems
935 if (strpos($data["url"], '[') OR strpos($data["url"], ']')) {
936 require_once("include/network.php");
937 $data["url"] = short_link($data["url"]);
940 if (($data["type"] != "photo") AND is_string($data["title"]))
941 $text .= "[bookmark=".$data["url"]."]".trim($data["title"])."[/bookmark]";
943 if (($data["type"] != "video") AND ($photo != ""))
944 $text .= '[img]'.$photo.'[/img]';
945 elseif (($data["type"] != "video") AND (sizeof($data["images"]) > 0)) {
946 $imagedata = $data["images"][0];
947 $text .= '[img]'.$imagedata["src"].'[/img]';
950 if (($data["type"] != "photo") AND is_string($data["text"]))
951 $text .= "[quote]".$data["text"]."[/quote]";
954 if (isset($data["keywords"]) AND count($data["keywords"])) {
957 foreach ($data["keywords"] AS $keyword) {
958 $hashtag = str_replace(array(" ", "+", "/", ".", "#", "'"),
959 array("","", "", "", "", ""), $keyword);
960 $hashtags .= "#[url=".$a->get_baseurl()."/search?tag=".rawurlencode($hashtag)."]".$hashtag."[/url] ";
964 return("\n[class=type-".$data["type"]."]".$text."[/class]".$hashtags);
967 function query_page_info($url, $no_photos = false, $photo = "", $keywords = false, $keyword_blacklist = "") {
968 require_once("mod/parse_url.php");
970 $data = Cache::get("parse_url:".$url);
972 $data = parseurl_getsiteinfo($url, true);
973 Cache::set("parse_url:".$url,serialize($data), CACHE_DAY);
975 $data = unserialize($data);
978 $data["images"][0]["src"] = $photo;
980 logger('fetch page info for '.$url.' '.print_r($data, true), LOGGER_DEBUG);
982 if (!$keywords AND isset($data["keywords"]))
983 unset($data["keywords"]);
985 if (($keyword_blacklist != "") AND isset($data["keywords"])) {
986 $list = explode(",", $keyword_blacklist);
987 foreach ($list AS $keyword) {
988 $keyword = trim($keyword);
989 $index = array_search($keyword, $data["keywords"]);
990 if ($index !== false)
991 unset($data["keywords"][$index]);
998 function add_page_keywords($url, $no_photos = false, $photo = "", $keywords = false, $keyword_blacklist = "") {
999 $data = query_page_info($url, $no_photos, $photo, $keywords, $keyword_blacklist);
1002 if (isset($data["keywords"]) AND count($data["keywords"])) {
1004 foreach ($data["keywords"] AS $keyword) {
1005 $hashtag = str_replace(array(" ", "+", "/", ".", "#", "'"),
1006 array("","", "", "", "", ""), $keyword);
1011 $tags .= "#[url=".$a->get_baseurl()."/search?tag=".rawurlencode($hashtag)."]".$hashtag."[/url]";
1018 function add_page_info($url, $no_photos = false, $photo = "", $keywords = false, $keyword_blacklist = "") {
1019 $data = query_page_info($url, $no_photos, $photo, $keywords, $keyword_blacklist);
1021 $text = add_page_info_data($data);
1026 function add_page_info_to_body($body, $texturl = false, $no_photos = false) {
1028 logger('add_page_info_to_body: fetch page info for body '.$body, LOGGER_DEBUG);
1030 $URLSearchString = "^\[\]";
1032 // Adding these spaces is a quick hack due to my problems with regular expressions :)
1033 preg_match("/[^!#@]\[url\]([$URLSearchString]*)\[\/url\]/ism", " ".$body, $matches);
1036 preg_match("/[^!#@]\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism", " ".$body, $matches);
1038 // Convert urls without bbcode elements
1039 if (!$matches AND $texturl) {
1040 preg_match("/([^\]\='".'"'."]|^)(https?\:\/\/[a-zA-Z0-9\:\/\-\?\&\;\.\=\_\~\#\%\$\!\+\,]+)/ism", " ".$body, $matches);
1042 // Yeah, a hack. I really hate regular expressions :)
1044 $matches[1] = $matches[2];
1048 $footer = add_page_info($matches[1], $no_photos);
1050 // Remove the link from the body if the link is attached at the end of the post
1051 if (isset($footer) AND (trim($footer) != "") AND (strpos($footer, $matches[1]))) {
1052 $removedlink = trim(str_replace($matches[1], "", $body));
1053 if (($removedlink == "") OR strstr($body, $removedlink))
1054 $body = $removedlink;
1056 $url = str_replace(array('/', '.'), array('\/', '\.'), $matches[1]);
1057 $removedlink = preg_replace("/\[url\=".$url."\](.*?)\[\/url\]/ism", '', $body);
1058 if (($removedlink == "") OR strstr($body, $removedlink))
1059 $body = $removedlink;
1062 // Add the page information to the bottom
1063 if (isset($footer) AND (trim($footer) != ""))
1069 function encode_rel_links($links) {
1071 if(! ((is_array($links)) && (count($links))))
1073 foreach($links as $link) {
1075 if($link['attribs']['']['rel'])
1076 $o .= 'rel="' . $link['attribs']['']['rel'] . '" ';
1077 if($link['attribs']['']['type'])
1078 $o .= 'type="' . $link['attribs']['']['type'] . '" ';
1079 if($link['attribs']['']['href'])
1080 $o .= 'href="' . $link['attribs']['']['href'] . '" ';
1081 if( (x($link['attribs'],NAMESPACE_MEDIA)) && $link['attribs'][NAMESPACE_MEDIA]['width'])
1082 $o .= 'media:width="' . $link['attribs'][NAMESPACE_MEDIA]['width'] . '" ';
1083 if( (x($link['attribs'],NAMESPACE_MEDIA)) && $link['attribs'][NAMESPACE_MEDIA]['height'])
1084 $o .= 'media:height="' . $link['attribs'][NAMESPACE_MEDIA]['height'] . '" ';
1085 $o .= ' />' . "\n" ;
1090 function add_guid($item) {
1091 $r = q("SELECT `guid` FROM `guid` WHERE `guid` = '%s' LIMIT 1", dbesc($item["guid"]));
1095 q("INSERT INTO `guid` (`guid`,`plink`,`uri`,`network`) VALUES ('%s','%s','%s','%s')",
1096 dbesc($item["guid"]), dbesc($item["plink"]),
1097 dbesc($item["uri"]), dbesc($item["network"]));
1100 // Adds a "lang" specification in a "postopts" element of given $arr,
1101 // if possible and not already present.
1102 // Expects "body" element to exist in $arr.
1103 // TODO: add a parameter to request forcing override
1104 function item_add_language_opt(&$arr) {
1106 if (version_compare(PHP_VERSION, '5.3.0', '<')) return; // LanguageDetect.php not available ?
1108 if ( x($arr, 'postopts') )
1110 if ( strstr($arr['postopts'], 'lang=') )
1113 // TODO: add parameter to request overriding
1116 $postopts = $arr['postopts'];
1123 require_once('library/langdet/Text/LanguageDetect.php');
1124 $naked_body = preg_replace('/\[(.+?)\]/','',$arr['body']);
1125 $l = new Text_LanguageDetect;
1126 //$lng = $l->detectConfidence($naked_body);
1127 //$arr['postopts'] = (($lng['language']) ? 'lang=' . $lng['language'] . ';' . $lng['confidence'] : '');
1128 $lng = $l->detect($naked_body, 3);
1130 if (sizeof($lng) > 0) {
1131 if ($postopts != "") $postopts .= '&'; // arbitrary separator, to be reviewed
1132 $postopts .= 'lang=';
1134 foreach ($lng as $language => $score) {
1135 $postopts .= $sep . $language.";".$score;
1138 $arr['postopts'] = $postopts;
1142 function item_store($arr,$force_parent = false, $notify = false, $dontcache = false) {
1144 // If it is a posting where users should get notifications, then define it as wall posting
1147 $arr['type'] = 'wall';
1149 $arr['last-child'] = 1;
1150 $arr['network'] = NETWORK_DFRN;
1153 // If a Diaspora signature structure was passed in, pull it out of the
1154 // item array and set it aside for later storage.
1157 if(x($arr,'dsprsig')) {
1158 $dsprsig = json_decode(base64_decode($arr['dsprsig']));
1159 unset($arr['dsprsig']);
1162 // Converting the plink
1163 if ($arr['network'] == NETWORK_OSTATUS) {
1164 if (isset($arr['plink']))
1165 $arr['plink'] = ostatus_convert_href($arr['plink']);
1166 elseif (isset($arr['uri']))
1167 $arr['plink'] = ostatus_convert_href($arr['uri']);
1170 if(x($arr, 'gravity'))
1171 $arr['gravity'] = intval($arr['gravity']);
1172 elseif($arr['parent-uri'] === $arr['uri'])
1173 $arr['gravity'] = 0;
1174 elseif(activity_match($arr['verb'],ACTIVITY_POST))
1175 $arr['gravity'] = 6;
1177 $arr['gravity'] = 6; // extensible catchall
1179 if(! x($arr,'type'))
1180 $arr['type'] = 'remote';
1184 /* check for create date and expire time */
1185 $uid = intval($arr['uid']);
1186 $r = q("SELECT expire FROM user WHERE uid = %d", intval($uid));
1188 $expire_interval = $r[0]['expire'];
1189 if ($expire_interval>0) {
1190 $expire_date = new DateTime( '- '.$expire_interval.' days', new DateTimeZone('UTC'));
1191 $created_date = new DateTime($arr['created'], new DateTimeZone('UTC'));
1192 if ($created_date < $expire_date) {
1193 logger('item-store: item created ('.$arr['created'].') before expiration time ('.$expire_date->format(DateTime::W3C).'). ignored. ' . print_r($arr,true), LOGGER_DEBUG);
1199 // If there is no guid then take the same guid that was taken before for the same uri
1200 if ((trim($arr['guid']) == "") AND (trim($arr['uri']) != "") AND (trim($arr['network']) != "")) {
1201 logger('item_store: checking for an existing guid for uri '.$arr['uri'], LOGGER_DEBUG);
1202 $r = q("SELECT `guid` FROM `guid` WHERE `uri` = '%s' AND `network` = '%s' LIMIT 1",
1203 dbesc(trim($arr['uri'])), dbesc(trim($arr['network'])));
1206 $arr['guid'] = $r[0]["guid"];
1207 logger('item_store: found guid '.$arr['guid'].' for uri '.$arr['uri'], LOGGER_DEBUG);
1211 // If there is no guid then take the same guid that was taken before for the same plink
1212 if ((trim($arr['guid']) == "") AND (trim($arr['plink']) != "") AND (trim($arr['network']) != "")) {
1213 logger('item_store: checking for an existing guid for plink '.$arr['plink'], LOGGER_DEBUG);
1214 $r = q("SELECT `guid`, `uri` FROM `guid` WHERE `plink` = '%s' AND `network` = '%s' LIMIT 1",
1215 dbesc(trim($arr['plink'])), dbesc(trim($arr['network'])));
1218 $arr['guid'] = $r[0]["guid"];
1219 logger('item_store: found guid '.$arr['guid'].' for plink '.$arr['plink'], LOGGER_DEBUG);
1221 if ($r[0]["uri"] != $arr['uri'])
1222 logger('Different uri for same guid: '.$arr['uri'].' and '.$r[0]["uri"].' - this shouldnt happen!', LOGGER_DEBUG);
1226 // Shouldn't happen but we want to make absolutely sure it doesn't leak from a plugin.
1227 // Deactivated, since the bbcode parser can handle with it - and it destroys posts with some smileys that contain "<"
1228 //if((strpos($arr['body'],'<') !== false) || (strpos($arr['body'],'>') !== false))
1229 // $arr['body'] = strip_tags($arr['body']);
1231 item_add_language_opt($arr);
1236 $guid_prefix = $arr['network'];
1238 $arr['wall'] = ((x($arr,'wall')) ? intval($arr['wall']) : 0);
1239 $arr['guid'] = ((x($arr,'guid')) ? notags(trim($arr['guid'])) : get_guid(32, $guid_prefix));
1240 $arr['uri'] = ((x($arr,'uri')) ? notags(trim($arr['uri'])) : $arr['guid']);
1241 $arr['extid'] = ((x($arr,'extid')) ? notags(trim($arr['extid'])) : '');
1242 $arr['author-name'] = ((x($arr,'author-name')) ? trim($arr['author-name']) : '');
1243 $arr['author-link'] = ((x($arr,'author-link')) ? notags(trim($arr['author-link'])) : '');
1244 $arr['author-avatar'] = ((x($arr,'author-avatar')) ? notags(trim($arr['author-avatar'])) : '');
1245 $arr['owner-name'] = ((x($arr,'owner-name')) ? trim($arr['owner-name']) : '');
1246 $arr['owner-link'] = ((x($arr,'owner-link')) ? notags(trim($arr['owner-link'])) : '');
1247 $arr['owner-avatar'] = ((x($arr,'owner-avatar')) ? notags(trim($arr['owner-avatar'])) : '');
1248 $arr['created'] = ((x($arr,'created') !== false) ? datetime_convert('UTC','UTC',$arr['created']) : datetime_convert());
1249 $arr['edited'] = ((x($arr,'edited') !== false) ? datetime_convert('UTC','UTC',$arr['edited']) : datetime_convert());
1250 $arr['commented'] = ((x($arr,'commented') !== false) ? datetime_convert('UTC','UTC',$arr['commented']) : datetime_convert());
1251 $arr['received'] = ((x($arr,'received') !== false) ? datetime_convert('UTC','UTC',$arr['received']) : datetime_convert());
1252 $arr['changed'] = ((x($arr,'changed') !== false) ? datetime_convert('UTC','UTC',$arr['changed']) : datetime_convert());
1253 $arr['title'] = ((x($arr,'title')) ? trim($arr['title']) : '');
1254 $arr['location'] = ((x($arr,'location')) ? trim($arr['location']) : '');
1255 $arr['coord'] = ((x($arr,'coord')) ? notags(trim($arr['coord'])) : '');
1256 $arr['last-child'] = ((x($arr,'last-child')) ? intval($arr['last-child']) : 0 );
1257 $arr['visible'] = ((x($arr,'visible') !== false) ? intval($arr['visible']) : 1 );
1258 $arr['deleted'] = 0;
1259 $arr['parent-uri'] = ((x($arr,'parent-uri')) ? notags(trim($arr['parent-uri'])) : '');
1260 $arr['verb'] = ((x($arr,'verb')) ? notags(trim($arr['verb'])) : '');
1261 $arr['object-type'] = ((x($arr,'object-type')) ? notags(trim($arr['object-type'])) : '');
1262 $arr['object'] = ((x($arr,'object')) ? trim($arr['object']) : '');
1263 $arr['target-type'] = ((x($arr,'target-type')) ? notags(trim($arr['target-type'])) : '');
1264 $arr['target'] = ((x($arr,'target')) ? trim($arr['target']) : '');
1265 $arr['plink'] = ((x($arr,'plink')) ? notags(trim($arr['plink'])) : '');
1266 $arr['allow_cid'] = ((x($arr,'allow_cid')) ? trim($arr['allow_cid']) : '');
1267 $arr['allow_gid'] = ((x($arr,'allow_gid')) ? trim($arr['allow_gid']) : '');
1268 $arr['deny_cid'] = ((x($arr,'deny_cid')) ? trim($arr['deny_cid']) : '');
1269 $arr['deny_gid'] = ((x($arr,'deny_gid')) ? trim($arr['deny_gid']) : '');
1270 $arr['private'] = ((x($arr,'private')) ? intval($arr['private']) : 0 );
1271 $arr['bookmark'] = ((x($arr,'bookmark')) ? intval($arr['bookmark']) : 0 );
1272 $arr['body'] = ((x($arr,'body')) ? trim($arr['body']) : '');
1273 $arr['tag'] = ((x($arr,'tag')) ? notags(trim($arr['tag'])) : '');
1274 $arr['attach'] = ((x($arr,'attach')) ? notags(trim($arr['attach'])) : '');
1275 $arr['app'] = ((x($arr,'app')) ? notags(trim($arr['app'])) : '');
1276 $arr['origin'] = ((x($arr,'origin')) ? intval($arr['origin']) : 0 );
1277 $arr['network'] = ((x($arr,'network')) ? trim($arr['network']) : '');
1278 $arr['postopts'] = ((x($arr,'postopts')) ? trim($arr['postopts']) : '');
1279 $arr['resource-id'] = ((x($arr,'resource-id')) ? trim($arr['resource-id']) : '');
1280 $arr['event-id'] = ((x($arr,'event-id')) ? intval($arr['event-id']) : 0 );
1281 $arr['inform'] = ((x($arr,'inform')) ? trim($arr['inform']) : '');
1282 $arr['file'] = ((x($arr,'file')) ? trim($arr['file']) : '');
1284 if ($arr['plink'] == "") {
1286 $arr['plink'] = $a->get_baseurl().'/display/'.urlencode($arr['guid']);
1289 if ($arr['network'] == "") {
1290 $r = q("SELECT `network` FROM `contact` WHERE `network` IN ('%s', '%s', '%s') AND `nurl` = '%s' AND `uid` = %d LIMIT 1",
1291 dbesc(NETWORK_DFRN), dbesc(NETWORK_DIASPORA), dbesc(NETWORK_OSTATUS),
1292 dbesc(normalise_link($arr['author-link'])),
1297 $r = q("SELECT `network` FROM `gcontact` WHERE `network` IN ('%s', '%s', '%s') AND `nurl` = '%s' LIMIT 1",
1298 dbesc(NETWORK_DFRN), dbesc(NETWORK_DIASPORA), dbesc(NETWORK_OSTATUS),
1299 dbesc(normalise_link($arr['author-link']))
1303 $r = q("SELECT `network` FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1",
1304 intval($arr['contact-id']),
1309 $arr['network'] = $r[0]["network"];
1311 // Fallback to friendica (why is it empty in some cases?)
1312 if ($arr['network'] == "")
1313 $arr['network'] = NETWORK_DFRN;
1315 logger("item_store: Set network to ".$arr["network"]." for ".$arr["uri"], LOGGER_DEBUG);
1318 if ($arr['guid'] != "") {
1319 // Checking if there is already an item with the same guid
1320 logger('checking for an item for user '.$arr['uid'].' on network '.$arr['network'].' with the guid '.$arr['guid'], LOGGER_DEBUG);
1321 $r = q("SELECT `guid` FROM `item` WHERE `guid` = '%s' AND `network` = '%s' AND `uid` = '%d' LIMIT 1",
1322 dbesc($arr['guid']), dbesc($arr['network']), intval($arr['uid']));
1325 logger('found item with guid '.$arr['guid'].' for user '.$arr['uid'].' on network '.$arr['network'], LOGGER_DEBUG);
1330 // Check for hashtags in the body and repair or add hashtag links
1331 item_body_set_hashtags($arr);
1333 $arr['thr-parent'] = $arr['parent-uri'];
1334 if($arr['parent-uri'] === $arr['uri']) {
1336 $parent_deleted = 0;
1337 $allow_cid = $arr['allow_cid'];
1338 $allow_gid = $arr['allow_gid'];
1339 $deny_cid = $arr['deny_cid'];
1340 $deny_gid = $arr['deny_gid'];
1341 $notify_type = 'wall-new';
1345 // find the parent and snarf the item id and ACLs
1346 // and anything else we need to inherit
1348 $r = q("SELECT * FROM `item` WHERE `uri` = '%s' AND `uid` = %d ORDER BY `id` ASC LIMIT 1",
1349 dbesc($arr['parent-uri']),
1355 // is the new message multi-level threaded?
1356 // even though we don't support it now, preserve the info
1357 // and re-attach to the conversation parent.
1359 if($r[0]['uri'] != $r[0]['parent-uri']) {
1360 $arr['parent-uri'] = $r[0]['parent-uri'];
1361 $z = q("SELECT * FROM `item` WHERE `uri` = '%s' AND `parent-uri` = '%s' AND `uid` = %d
1362 ORDER BY `id` ASC LIMIT 1",
1363 dbesc($r[0]['parent-uri']),
1364 dbesc($r[0]['parent-uri']),
1371 $parent_id = $r[0]['id'];
1372 $parent_deleted = $r[0]['deleted'];
1373 $allow_cid = $r[0]['allow_cid'];
1374 $allow_gid = $r[0]['allow_gid'];
1375 $deny_cid = $r[0]['deny_cid'];
1376 $deny_gid = $r[0]['deny_gid'];
1377 $arr['wall'] = $r[0]['wall'];
1378 $notify_type = 'comment-new';
1380 // if the parent is private, force privacy for the entire conversation
1381 // This differs from the above settings as it subtly allows comments from
1382 // email correspondents to be private even if the overall thread is not.
1384 if($r[0]['private'])
1385 $arr['private'] = $r[0]['private'];
1387 // Edge case. We host a public forum that was originally posted to privately.
1388 // The original author commented, but as this is a comment, the permissions
1389 // weren't fixed up so it will still show the comment as private unless we fix it here.
1391 if((intval($r[0]['forum_mode']) == 1) && (! $r[0]['private']))
1392 $arr['private'] = 0;
1395 // If its a post from myself then tag the thread as "mention"
1396 logger("item_store: Checking if parent ".$parent_id." has to be tagged as mention for user ".$arr['uid'], LOGGER_DEBUG);
1397 $u = q("select * from user where uid = %d limit 1", intval($arr['uid']));
1400 $self = normalise_link($a->get_baseurl() . '/profile/' . $u[0]['nickname']);
1401 logger("item_store: 'myself' is ".$self." for parent ".$parent_id." checking against ".$arr['author-link']." and ".$arr['owner-link'], LOGGER_DEBUG);
1402 if ((normalise_link($arr['author-link']) == $self) OR (normalise_link($arr['owner-link']) == $self)) {
1403 q("UPDATE `thread` SET `mention` = 1 WHERE `iid` = %d", intval($parent_id));
1404 logger("item_store: tagged thread ".$parent_id." as mention for user ".$self, LOGGER_DEBUG);
1410 // Allow one to see reply tweets from status.net even when
1411 // we don't have or can't see the original post.
1414 logger('item_store: $force_parent=true, reply converted to top-level post.');
1416 $arr['parent-uri'] = $arr['uri'];
1417 $arr['gravity'] = 0;
1420 logger('item_store: item parent '.$arr['parent-uri'].' for '.$arr['uid'].' was not found - ignoring item');
1424 $parent_deleted = 0;
1428 $r = q("SELECT `id` FROM `item` WHERE `uri` = '%s' AND `network` = '%s' AND `uid` = %d LIMIT 1",
1430 dbesc($arr['network']),
1433 if($r && count($r)) {
1434 logger('duplicated item with the same uri found. ' . print_r($arr,true));
1438 // Check for an existing post with the same content. There seems to be a problem with OStatus.
1439 $r = q("SELECT `id` FROM `item` WHERE `body` = '%s' AND `network` = '%s' AND `created` = '%s' AND `contact-id` = %d AND `uid` = %d LIMIT 1",
1440 dbesc($arr['body']),
1441 dbesc($arr['network']),
1442 dbesc($arr['created']),
1443 intval($arr['contact-id']),
1446 if($r && count($r)) {
1447 logger('duplicated item with the same body found. ' . print_r($arr,true));
1451 // Is this item available in the global items (with uid=0)?
1452 if ($arr["uid"] == 0) {
1453 $arr["global"] = true;
1455 q("UPDATE `item` SET `global` = 1 WHERE `guid` = '%s'", dbesc($arr["guid"]));
1457 $isglobal = q("SELECT `global` FROM `item` WHERE `uid` = 0 AND `guid` = '%s'", dbesc($arr["guid"]));
1459 $arr["global"] = (count($isglobal) > 0);
1462 // Fill the cache field
1463 put_item_in_cache($arr);
1466 call_hooks('post_local',$arr);
1468 call_hooks('post_remote',$arr);
1470 if(x($arr,'cancel')) {
1471 logger('item_store: post cancelled by plugin.');
1475 // Store the unescaped version
1480 logger('item_store: ' . print_r($arr,true), LOGGER_DATA);
1482 $r = dbq("INSERT INTO `item` (`"
1483 . implode("`, `", array_keys($arr))
1485 . implode("', '", array_values($arr))
1491 // find the item we just created
1492 $r = q("SELECT `id` FROM `item` WHERE `uri` = '%s' AND `uid` = %d AND `network` = '%s' ORDER BY `id` ASC ",
1494 intval($arr['uid']),
1495 dbesc($arr['network'])
1500 // Store the guid and other relevant data
1503 $current_post = $r[0]['id'];
1504 logger('item_store: created item ' . $current_post);
1506 // Set "success_update" and "last-item" to the date of the last time we heard from this contact
1507 // This can be used to filter for inactive contacts.
1508 // Only do this for public postings to avoid privacy problems, since poco data is public.
1509 // Don't set this value if it isn't from the owner (could be an author that we don't know)
1511 $update = (!$arr['private'] AND (($arr["author-link"] === $arr["owner-link"]) OR ($arr["parent-uri"] === $arr["uri"])));
1513 // Is it a forum? Then we don't care about the rules from above
1514 if (!$update AND ($arr["network"] == NETWORK_DFRN) AND ($arr["parent-uri"] === $arr["uri"])) {
1515 $isforum = q("SELECT `forum` FROM `contact` WHERE `id` = %d AND `forum`",
1516 intval($arr['contact-id']));
1522 q("UPDATE `contact` SET `success_update` = '%s', `last-item` = '%s' WHERE `id` = %d",
1523 dbesc($arr['received']),
1524 dbesc($arr['received']),
1525 intval($arr['contact-id'])
1528 logger('item_store: could not locate created item');
1532 logger('item_store: duplicated post occurred. Removing duplicates. uri = '.$arr['uri'].' uid = '.$arr['uid']);
1533 q("DELETE FROM `item` WHERE `uri` = '%s' AND `uid` = %d AND `id` != %d ",
1535 intval($arr['uid']),
1536 intval($current_post)
1540 if((! $parent_id) || ($arr['parent-uri'] === $arr['uri']))
1541 $parent_id = $current_post;
1543 if(strlen($allow_cid) || strlen($allow_gid) || strlen($deny_cid) || strlen($deny_gid))
1546 $private = $arr['private'];
1548 // Set parent id - and also make sure to inherit the parent's ACLs.
1550 $r = q("UPDATE `item` SET `parent` = %d, `allow_cid` = '%s', `allow_gid` = '%s',
1551 `deny_cid` = '%s', `deny_gid` = '%s', `private` = %d, `deleted` = %d WHERE `id` = %d",
1558 intval($parent_deleted),
1559 intval($current_post)
1562 $arr['id'] = $current_post;
1563 $arr['parent'] = $parent_id;
1564 $arr['allow_cid'] = $allow_cid;
1565 $arr['allow_gid'] = $allow_gid;
1566 $arr['deny_cid'] = $deny_cid;
1567 $arr['deny_gid'] = $deny_gid;
1568 $arr['private'] = $private;
1569 $arr['deleted'] = $parent_deleted;
1571 // update the commented timestamp on the parent
1572 // Only update "commented" if it is really a comment
1573 if (($arr['verb'] == ACTIVITY_POST) OR !get_config("system", "like_no_comment"))
1574 q("UPDATE `item` SET `commented` = '%s', `changed` = '%s' WHERE `id` = %d",
1575 dbesc(datetime_convert()),
1576 dbesc(datetime_convert()),
1580 q("UPDATE `item` SET `changed` = '%s' WHERE `id` = %d",
1581 dbesc(datetime_convert()),
1586 q("insert into sign (`iid`,`signed_text`,`signature`,`signer`) values (%d,'%s','%s','%s') ",
1587 intval($current_post),
1588 dbesc($dsprsig->signed_text),
1589 dbesc($dsprsig->signature),
1590 dbesc($dsprsig->signer)
1596 * If this is now the last-child, force all _other_ children of this parent to *not* be last-child
1599 if($arr['last-child']) {
1600 $r = q("UPDATE `item` SET `last-child` = 0 WHERE `parent-uri` = '%s' AND `uid` = %d AND `id` != %d",
1602 intval($arr['uid']),
1603 intval($current_post)
1607 $deleted = tag_deliver($arr['uid'],$current_post);
1609 // current post can be deleted if is for a community page and no mention are
1611 if (!$deleted AND !$dontcache) {
1613 $r = q('SELECT * FROM `item` WHERE id = %d', intval($current_post));
1614 if (count($r) == 1) {
1616 call_hooks('post_local_end', $r[0]);
1618 call_hooks('post_remote_end', $r[0]);
1620 logger('item_store: new item not found in DB, id ' . $current_post);
1623 // Add every contact of the post to the global contact table
1626 create_tags_from_item($current_post);
1627 create_files_from_item($current_post);
1629 // Only check for notifications on start posts
1630 if ($arr['parent-uri'] === $arr['uri']) {
1631 add_thread($current_post);
1632 logger('item_store: Check notification for contact '.$arr['contact-id'].' and post '.$current_post, LOGGER_DEBUG);
1634 // Send a notification for every new post?
1635 $r = q("SELECT `notify_new_posts` FROM `contact` WHERE `id` = %d AND `uid` = %d AND `notify_new_posts` LIMIT 1",
1636 intval($arr['contact-id']),
1639 $send_notification = count($r);
1641 if (!$send_notification) {
1642 $tags = q("SELECT `url` FROM `term` WHERE `otype` = %d AND `oid` = %d AND `type` = %d AND `uid` = %d",
1643 intval(TERM_OBJ_POST), intval($current_post), intval(TERM_MENTION), intval($arr['uid']));
1646 foreach ($tags AS $tag) {
1647 $r = q("SELECT `id` FROM `contact` WHERE `nurl` = '%s' AND `uid` = %d AND `notify_new_posts`",
1648 normalise_link($tag["url"]), intval($arr['uid']));
1650 $send_notification = true;
1655 if ($send_notification) {
1656 logger('item_store: Send notification for contact '.$arr['contact-id'].' and post '.$current_post, LOGGER_DEBUG);
1657 $u = q("SELECT * FROM user WHERE uid = %d LIMIT 1",
1658 intval($arr['uid']));
1660 $item = q("SELECT * FROM `item` WHERE `id` = %d AND `uid` = %d",
1661 intval($current_post),
1667 require_once('include/enotify.php');
1669 'type' => NOTIFY_SHARE,
1670 'notify_flags' => $u[0]['notify-flags'],
1671 'language' => $u[0]['language'],
1672 'to_name' => $u[0]['username'],
1673 'to_email' => $u[0]['email'],
1674 'uid' => $u[0]['uid'],
1676 'link' => $a->get_baseurl().'/display/'.urlencode($arr['guid']),
1677 'source_name' => $item[0]['author-name'],
1678 'source_link' => $item[0]['author-link'],
1679 'source_photo' => $item[0]['author-avatar'],
1680 'verb' => ACTIVITY_TAG,
1682 'parent' => $arr['parent']
1684 logger('item_store: Notification sent for contact '.$arr['contact-id'].' and post '.$current_post, LOGGER_DEBUG);
1687 update_thread($parent_id);
1688 add_shadow_entry($arr);
1692 proc_run('php', "include/notifier.php", $notify_type, $current_post);
1694 return $current_post;
1697 function item_body_set_hashtags(&$item) {
1699 $tags = get_tags($item["body"]);
1705 // This sorting is important when there are hashtags that are part of other hashtags
1706 // Otherwise there could be problems with hashtags like #test and #test2
1711 $URLSearchString = "^\[\]";
1713 // All hashtags should point to the home server
1714 //$item["body"] = preg_replace("/#\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism",
1715 // "#[url=".$a->get_baseurl()."/search?tag=$2]$2[/url]", $item["body"]);
1717 //$item["tag"] = preg_replace("/#\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism",
1718 // "#[url=".$a->get_baseurl()."/search?tag=$2]$2[/url]", $item["tag"]);
1720 // mask hashtags inside of url, bookmarks and attachments to avoid urls in urls
1721 $item["body"] = preg_replace_callback("/\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism",
1723 return("[url=".str_replace("#", "#", $match[1])."]".str_replace("#", "#", $match[2])."[/url]");
1726 $item["body"] = preg_replace_callback("/\[bookmark\=([$URLSearchString]*)\](.*?)\[\/bookmark\]/ism",
1728 return("[bookmark=".str_replace("#", "#", $match[1])."]".str_replace("#", "#", $match[2])."[/bookmark]");
1731 $item["body"] = preg_replace_callback("/\[attachment (.*)\](.*?)\[\/attachment\]/ism",
1733 return("[attachment ".str_replace("#", "#", $match[1])."]".$match[2]."[/attachment]");
1736 // Repair recursive urls
1737 $item["body"] = preg_replace("/#\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism",
1738 "#$2", $item["body"]);
1741 foreach($tags as $tag) {
1742 if(strpos($tag,'#') !== 0)
1745 if(strpos($tag,'[url='))
1748 $basetag = str_replace('_',' ',substr($tag,1));
1750 $newtag = '#[url='.$a->get_baseurl().'/search?tag='.rawurlencode($basetag).']'.$basetag.'[/url]';
1752 $item["body"] = str_replace($tag, $newtag, $item["body"]);
1754 if(!stristr($item["tag"],"/search?tag=".$basetag."]".$basetag."[/url]")) {
1755 if(strlen($item["tag"]))
1756 $item["tag"] = ','.$item["tag"];
1757 $item["tag"] = $newtag.$item["tag"];
1761 // Convert back the masked hashtags
1762 $item["body"] = str_replace("#", "#", $item["body"]);
1765 function get_item_guid($id) {
1766 $r = q("SELECT `guid` FROM `item` WHERE `id` = %d LIMIT 1", intval($id));
1768 return($r[0]["guid"]);
1773 function get_item_id($guid, $uid = 0) {
1779 $uid == local_user();
1781 // Does the given user have this item?
1783 $r = q("SELECT `item`.`id`, `user`.`nickname` FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid`
1784 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
1785 AND `item`.`guid` = '%s' AND `item`.`uid` = %d", dbesc($guid), intval($uid));
1788 $nick = $r[0]["nickname"];
1792 // Or is it anywhere on the server?
1794 $r = q("SELECT `item`.`id`, `user`.`nickname` FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid`
1795 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
1796 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
1797 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
1798 AND `item`.`private` = 0 AND `item`.`wall` = 1
1799 AND `item`.`guid` = '%s'", dbesc($guid));
1802 $nick = $r[0]["nickname"];
1805 return(array("nick" => $nick, "id" => $id));
1809 function get_item_contact($item,$contacts) {
1810 if(! count($contacts) || (! is_array($item)))
1812 foreach($contacts as $contact) {
1813 if($contact['id'] == $item['contact-id']) {
1815 break; // NOTREACHED
1822 * look for mention tags and setup a second delivery chain for forum/community posts if appropriate
1824 * @param int $item_id
1825 * @return bool true if item was deleted, else false
1827 function tag_deliver($uid,$item_id) {
1835 $u = q("select * from user where uid = %d limit 1",
1841 $community_page = (($u[0]['page-flags'] == PAGE_COMMUNITY) ? true : false);
1842 $prvgroup = (($u[0]['page-flags'] == PAGE_PRVGROUP) ? true : false);
1845 $i = q("select * from item where id = %d and uid = %d limit 1",
1854 $link = normalise_link($a->get_baseurl() . '/profile/' . $u[0]['nickname']);
1856 // Diaspora uses their own hardwired link URL in @-tags
1857 // instead of the one we supply with webfinger
1859 $dlink = normalise_link($a->get_baseurl() . '/u/' . $u[0]['nickname']);
1861 $cnt = preg_match_all('/[\@\!]\[url\=(.*?)\](.*?)\[\/url\]/ism',$item['body'],$matches,PREG_SET_ORDER);
1863 foreach($matches as $mtch) {
1864 if(link_compare($link,$mtch[1]) || link_compare($dlink,$mtch[1])) {
1866 logger('tag_deliver: mention found: ' . $mtch[2]);
1872 if ( ($community_page || $prvgroup) &&
1873 (!$item['wall']) && (!$item['origin']) && ($item['id'] == $item['parent'])){
1874 // mmh.. no mention.. community page or private group... no wall.. no origin.. top-post (not a comment)
1876 logger("tag_deliver: no-mention top-level post to communuty or private group. delete.");
1877 q("DELETE FROM item WHERE id = %d and uid = %d",
1887 // send a notification
1889 // use a local photo if we have one
1891 $r = q("select * from contact where uid = %d and nurl = '%s' limit 1",
1892 intval($u[0]['uid']),
1893 dbesc(normalise_link($item['author-link']))
1895 $photo = (($r && count($r)) ? $r[0]['thumb'] : $item['author-avatar']);
1898 require_once('include/enotify.php');
1900 'type' => NOTIFY_TAGSELF,
1901 'notify_flags' => $u[0]['notify-flags'],
1902 'language' => $u[0]['language'],
1903 'to_name' => $u[0]['username'],
1904 'to_email' => $u[0]['email'],
1905 'uid' => $u[0]['uid'],
1907 'link' => $a->get_baseurl() . '/display/'.urlencode(get_item_guid($item['id'])),
1908 'source_name' => $item['author-name'],
1909 'source_link' => $item['author-link'],
1910 'source_photo' => $photo,
1911 'verb' => ACTIVITY_TAG,
1913 'parent' => $item['parent']
1917 $arr = array('item' => $item, 'user' => $u[0], 'contact' => $r[0]);
1919 call_hooks('tagged', $arr);
1921 if((! $community_page) && (! $prvgroup))
1925 // tgroup delivery - setup a second delivery chain
1926 // prevent delivery looping - only proceed
1927 // if the message originated elsewhere and is a top-level post
1929 if(($item['wall']) || ($item['origin']) || ($item['id'] != $item['parent']))
1932 // now change this copy of the post to a forum head message and deliver to all the tgroup members
1935 $c = q("select name, url, thumb from contact where self = 1 and uid = %d limit 1",
1936 intval($u[0]['uid'])
1941 // also reset all the privacy bits to the forum default permissions
1943 $private = ($u[0]['allow_cid'] || $u[0]['allow_gid'] || $u[0]['deny_cid'] || $u[0]['deny_gid']) ? 1 : 0;
1945 $forum_mode = (($prvgroup) ? 2 : 1);
1947 q("update item set wall = 1, origin = 1, forum_mode = %d, `owner-name` = '%s', `owner-link` = '%s', `owner-avatar` = '%s',
1948 `private` = %d, `allow_cid` = '%s', `allow_gid` = '%s', `deny_cid` = '%s', `deny_gid` = '%s' where id = %d",
1949 intval($forum_mode),
1950 dbesc($c[0]['name']),
1951 dbesc($c[0]['url']),
1952 dbesc($c[0]['thumb']),
1954 dbesc($u[0]['allow_cid']),
1955 dbesc($u[0]['allow_gid']),
1956 dbesc($u[0]['deny_cid']),
1957 dbesc($u[0]['deny_gid']),
1960 update_thread($item_id);
1962 proc_run('php','include/notifier.php','tgroup',$item_id);
1968 function tgroup_check($uid,$item) {
1974 // check that the message originated elsewhere and is a top-level post
1976 if(($item['wall']) || ($item['origin']) || ($item['uri'] != $item['parent-uri']))
1980 $u = q("select * from user where uid = %d limit 1",
1986 $community_page = (($u[0]['page-flags'] == PAGE_COMMUNITY) ? true : false);
1987 $prvgroup = (($u[0]['page-flags'] == PAGE_PRVGROUP) ? true : false);
1990 $link = normalise_link($a->get_baseurl() . '/profile/' . $u[0]['nickname']);
1992 // Diaspora uses their own hardwired link URL in @-tags
1993 // instead of the one we supply with webfinger
1995 $dlink = normalise_link($a->get_baseurl() . '/u/' . $u[0]['nickname']);
1997 $cnt = preg_match_all('/[\@\!]\[url\=(.*?)\](.*?)\[\/url\]/ism',$item['body'],$matches,PREG_SET_ORDER);
1999 foreach($matches as $mtch) {
2000 if(link_compare($link,$mtch[1]) || link_compare($dlink,$mtch[1])) {
2002 logger('tgroup_check: mention found: ' . $mtch[2]);
2010 if((! $community_page) && (! $prvgroup))
2024 function dfrn_deliver($owner,$contact,$atom, $dissolve = false) {
2028 $idtosend = $orig_id = (($contact['dfrn-id']) ? $contact['dfrn-id'] : $contact['issued-id']);
2030 if($contact['duplex'] && $contact['dfrn-id'])
2031 $idtosend = '0:' . $orig_id;
2032 if($contact['duplex'] && $contact['issued-id'])
2033 $idtosend = '1:' . $orig_id;
2036 $rino = get_config('system','rino_encrypt');
2037 $rino = intval($rino);
2038 // use RINO1 if mcrypt isn't installed and RINO2 was selected
2039 if ($rino==2 and !function_exists('mcrypt_create_iv')) $rino=1;
2041 logger("Local rino version: ". $rino, LOGGER_DEBUG);
2043 $ssl_val = intval(get_config('system','ssl_policy'));
2047 case SSL_POLICY_FULL:
2048 $ssl_policy = 'full';
2050 case SSL_POLICY_SELFSIGN:
2051 $ssl_policy = 'self';
2053 case SSL_POLICY_NONE:
2055 $ssl_policy = 'none';
2059 $url = $contact['notify'] . '&dfrn_id=' . $idtosend . '&dfrn_version=' . DFRN_PROTOCOL_VERSION . (($rino) ? '&rino='.$rino : '');
2061 logger('dfrn_deliver: ' . $url);
2063 $xml = fetch_url($url);
2065 $curl_stat = $a->get_curl_code();
2067 return(-1); // timed out
2069 logger('dfrn_deliver: ' . $xml, LOGGER_DATA);
2074 if(strpos($xml,'<?xml') === false) {
2075 logger('dfrn_deliver: no valid XML returned');
2076 logger('dfrn_deliver: returned XML: ' . $xml, LOGGER_DATA);
2080 $res = parse_xml_string($xml);
2082 if((intval($res->status) != 0) || (! strlen($res->challenge)) || (! strlen($res->dfrn_id)))
2083 return (($res->status) ? $res->status : 3);
2085 $postvars = array();
2086 $sent_dfrn_id = hex2bin((string) $res->dfrn_id);
2087 $challenge = hex2bin((string) $res->challenge);
2088 $perm = (($res->perm) ? $res->perm : null);
2089 $dfrn_version = (float) (($res->dfrn_version) ? $res->dfrn_version : 2.0);
2090 $rino_remote_version = intval($res->rino);
2091 $page = (($owner['page-flags'] == PAGE_COMMUNITY) ? 1 : 0);
2093 logger("Remote rino version: ".$rino_remote_version." for ".$contact["url"], LOGGER_DEBUG);
2095 if($owner['page-flags'] == PAGE_PRVGROUP)
2098 $final_dfrn_id = '';
2101 if((($perm == 'rw') && (! intval($contact['writable'])))
2102 || (($perm == 'r') && (intval($contact['writable'])))) {
2103 q("update contact set writable = %d where id = %d",
2104 intval(($perm == 'rw') ? 1 : 0),
2105 intval($contact['id'])
2107 $contact['writable'] = (string) 1 - intval($contact['writable']);
2111 if(($contact['duplex'] && strlen($contact['pubkey']))
2112 || ($owner['page-flags'] == PAGE_COMMUNITY && strlen($contact['pubkey']))
2113 || ($contact['rel'] == CONTACT_IS_SHARING && strlen($contact['pubkey']))) {
2114 openssl_public_decrypt($sent_dfrn_id,$final_dfrn_id,$contact['pubkey']);
2115 openssl_public_decrypt($challenge,$postvars['challenge'],$contact['pubkey']);
2118 openssl_private_decrypt($sent_dfrn_id,$final_dfrn_id,$contact['prvkey']);
2119 openssl_private_decrypt($challenge,$postvars['challenge'],$contact['prvkey']);
2122 $final_dfrn_id = substr($final_dfrn_id, 0, strpos($final_dfrn_id, '.'));
2124 if(strpos($final_dfrn_id,':') == 1)
2125 $final_dfrn_id = substr($final_dfrn_id,2);
2127 if($final_dfrn_id != $orig_id) {
2128 logger('dfrn_deliver: wrong dfrn_id.');
2129 // did not decode properly - cannot trust this site
2133 $postvars['dfrn_id'] = $idtosend;
2134 $postvars['dfrn_version'] = DFRN_PROTOCOL_VERSION;
2136 $postvars['dissolve'] = '1';
2139 if((($contact['rel']) && ($contact['rel'] != CONTACT_IS_SHARING) && (! $contact['blocked'])) || ($owner['page-flags'] == PAGE_COMMUNITY)) {
2140 $postvars['data'] = $atom;
2141 $postvars['perm'] = 'rw';
2144 $postvars['data'] = str_replace('<dfrn:comment-allow>1','<dfrn:comment-allow>0',$atom);
2145 $postvars['perm'] = 'r';
2148 $postvars['ssl_policy'] = $ssl_policy;
2151 $postvars['page'] = $page;
2154 if($rino>0 && $rino_remote_version>0 && (! $dissolve)) {
2155 logger('rino version: '. $rino_remote_version);
2157 switch($rino_remote_version) {
2159 // Deprecated rino version!
2160 $key = substr(random_string(),0,16);
2161 $data = aes_encrypt($postvars['data'],$key);
2164 // RINO 2 based on php-encryption
2166 $key = Crypto::createNewRandomKey();
2167 } catch (CryptoTestFailed $ex) {
2168 logger('Cannot safely create a key');
2170 } catch (CannotPerformOperation $ex) {
2171 logger('Cannot safely create a key');
2175 $data = Crypto::encrypt($postvars['data'], $key);
2176 } catch (CryptoTestFailed $ex) {
2177 logger('Cannot safely perform encryption');
2179 } catch (CannotPerformOperation $ex) {
2180 logger('Cannot safely perform encryption');
2185 logger("rino: invalid requested verision '$rino_remote_version'");
2189 $postvars['rino'] = $rino_remote_version;
2190 $postvars['data'] = bin2hex($data);
2192 #logger('rino: sent key = ' . $key, LOGGER_DEBUG);
2195 if($dfrn_version >= 2.1) {
2196 if(($contact['duplex'] && strlen($contact['pubkey']))
2197 || ($owner['page-flags'] == PAGE_COMMUNITY && strlen($contact['pubkey']))
2198 || ($contact['rel'] == CONTACT_IS_SHARING && strlen($contact['pubkey']))) {
2200 openssl_public_encrypt($key,$postvars['key'],$contact['pubkey']);
2203 openssl_private_encrypt($key,$postvars['key'],$contact['prvkey']);
2207 if(($contact['duplex'] && strlen($contact['prvkey'])) || ($owner['page-flags'] == PAGE_COMMUNITY)) {
2208 openssl_private_encrypt($key,$postvars['key'],$contact['prvkey']);
2211 openssl_public_encrypt($key,$postvars['key'],$contact['pubkey']);
2215 logger('md5 rawkey ' . md5($postvars['key']));
2217 $postvars['key'] = bin2hex($postvars['key']);
2221 logger('dfrn_deliver: ' . "SENDING: " . print_r($postvars,true), LOGGER_DATA);
2223 $xml = post_url($contact['notify'],$postvars);
2225 logger('dfrn_deliver: ' . "RECEIVED: " . $xml, LOGGER_DATA);
2227 $curl_stat = $a->get_curl_code();
2228 if((! $curl_stat) || (! strlen($xml)))
2229 return(-1); // timed out
2231 if(($curl_stat == 503) && (stristr($a->get_curl_headers(),'retry-after')))
2234 if(strpos($xml,'<?xml') === false) {
2235 logger('dfrn_deliver: phase 2: no valid XML returned');
2236 logger('dfrn_deliver: phase 2: returned XML: ' . $xml, LOGGER_DATA);
2240 if($contact['term-date'] != '0000-00-00 00:00:00') {
2241 logger("dfrn_deliver: $url back from the dead - removing mark for death");
2242 require_once('include/Contact.php');
2243 unmark_for_death($contact);
2246 $res = parse_xml_string($xml);
2248 return $res->status;
2253 This function returns true if $update has an edited timestamp newer
2254 than $existing, i.e. $update contains new data which should override
2255 what's already there. If there is no timestamp yet, the update is
2256 assumed to be newer. If the update has no timestamp, the existing
2257 item is assumed to be up-to-date. If the timestamps are equal it
2258 assumes the update has been seen before and should be ignored.
2260 function edited_timestamp_is_newer($existing, $update) {
2261 if (!x($existing,'edited') || !$existing['edited']) {
2264 if (!x($update,'edited') || !$update['edited']) {
2267 $existing_edited = datetime_convert('UTC', 'UTC', $existing['edited']);
2268 $update_edited = datetime_convert('UTC', 'UTC', $update['edited']);
2269 return (strcmp($existing_edited, $update_edited) < 0);
2274 * consume_feed - process atom feed and update anything/everything we might need to update
2276 * $xml = the (atom) feed to consume - RSS isn't as fully supported but may work for simple feeds.
2278 * $importer = the contact_record (joined to user_record) of the local user who owns this relationship.
2279 * It is this person's stuff that is going to be updated.
2280 * $contact = the person who is sending us stuff. If not set, we MAY be processing a "follow" activity
2281 * from an external network and MAY create an appropriate contact record. Otherwise, we MUST
2282 * have a contact record.
2283 * $hub = should we find a hub declation in the feed, pass it back to our calling process, who might (or
2284 * might not) try and subscribe to it.
2285 * $datedir sorts in reverse order
2286 * $pass - by default ($pass = 0) we cannot guarantee that a parent item has been
2287 * imported prior to its children being seen in the stream unless we are certain
2288 * of how the feed is arranged/ordered.
2289 * With $pass = 1, we only pull parent items out of the stream.
2290 * With $pass = 2, we only pull children (comments/likes).
2292 * So running this twice, first with pass 1 and then with pass 2 will do the right
2293 * thing regardless of feed ordering. This won't be adequate in a fully-threaded
2294 * model where comments can have sub-threads. That would require some massive sorting
2295 * to get all the feed items into a mostly linear ordering, and might still require
2299 function consume_feed($xml,$importer,&$contact, &$hub, $datedir = 0, $pass = 0) {
2300 if ($contact['network'] === NETWORK_OSTATUS) {
2302 logger("Consume OStatus messages ", LOGGER_DEBUG);
2303 ostatus_import($xml,$importer,$contact, $hub);
2308 if ($contact['network'] === NETWORK_FEED) {
2310 logger("Consume feeds", LOGGER_DEBUG);
2311 feed_import($xml,$importer,$contact, $hub);
2316 require_once('library/simplepie/simplepie.inc');
2317 require_once('include/contact_selectors.php');
2319 if(! strlen($xml)) {
2320 logger('consume_feed: empty input');
2324 $feed = new SimplePie();
2325 $feed->set_raw_data($xml);
2327 $feed->enable_order_by_date(true);
2329 $feed->enable_order_by_date(false);
2333 logger('consume_feed: Error parsing XML: ' . $feed->error());
2335 $permalink = $feed->get_permalink();
2337 // Check at the feed level for updated contact name and/or photo
2341 $photo_timestamp = '';
2344 $contact_updated = '';
2346 $hubs = $feed->get_links('hub');
2347 logger('consume_feed: hubs: ' . print_r($hubs,true), LOGGER_DATA);
2350 $hub = implode(',', $hubs);
2352 $rawtags = $feed->get_feed_tags( NAMESPACE_DFRN, 'owner');
2354 $rawtags = $feed->get_feed_tags( SIMPLEPIE_NAMESPACE_ATOM_10, 'author');
2356 $elems = $rawtags[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10];
2357 if($elems['name'][0]['attribs'][NAMESPACE_DFRN]['updated']) {
2358 $name_updated = $elems['name'][0]['attribs'][NAMESPACE_DFRN]['updated'];
2359 $new_name = $elems['name'][0]['data'];
2361 // Manually checking for changed contact names
2362 if (($new_name != $contact['name']) AND ($new_name != "") AND ($name_updated <= $contact['name-date'])) {
2363 $name_updated = date("c");
2364 $photo_timestamp = date("c");
2367 if((x($elems,'link')) && ($elems['link'][0]['attribs']['']['rel'] === 'photo') && ($elems['link'][0]['attribs'][NAMESPACE_DFRN]['updated'])) {
2368 if ($photo_timestamp == "")
2369 $photo_timestamp = datetime_convert('UTC','UTC',$elems['link'][0]['attribs'][NAMESPACE_DFRN]['updated']);
2370 $photo_url = $elems['link'][0]['attribs']['']['href'];
2373 if((x($rawtags[0]['child'], NAMESPACE_DFRN)) && (x($rawtags[0]['child'][NAMESPACE_DFRN],'birthday'))) {
2374 $birthday = datetime_convert('UTC','UTC', $rawtags[0]['child'][NAMESPACE_DFRN]['birthday'][0]['data']);
2378 if((is_array($contact)) && ($photo_timestamp) && (strlen($photo_url)) && ($photo_timestamp > $contact['avatar-date'])) {
2379 logger('consume_feed: Updating photo for '.$contact['name'].' from '.$photo_url.' uid: '.$contact['uid']);
2381 $contact_updated = $photo_timestamp;
2383 require_once("include/Photo.php");
2384 $photo_failure = false;
2385 $have_photo = false;
2387 $r = q("SELECT `resource-id` FROM `photo` WHERE `contact-id` = %d AND `uid` = %d LIMIT 1",
2388 intval($contact['id']),
2389 intval($contact['uid'])
2392 $resource_id = $r[0]['resource-id'];
2396 $resource_id = photo_new_resource();
2399 $img_str = fetch_url($photo_url,true);
2400 // guess mimetype from headers or filename
2401 $type = guess_image_type($photo_url,true);
2404 $img = new Photo($img_str, $type);
2405 if($img->is_valid()) {
2407 q("DELETE FROM `photo` WHERE `resource-id` = '%s' AND `contact-id` = %d AND `uid` = %d",
2408 dbesc($resource_id),
2409 intval($contact['id']),
2410 intval($contact['uid'])
2414 $img->scaleImageSquare(175);
2416 $hash = $resource_id;
2417 $r = $img->store($contact['uid'], $contact['id'], $hash, basename($photo_url), 'Contact Photos', 4);
2419 $img->scaleImage(80);
2420 $r = $img->store($contact['uid'], $contact['id'], $hash, basename($photo_url), 'Contact Photos', 5);
2422 $img->scaleImage(48);
2423 $r = $img->store($contact['uid'], $contact['id'], $hash, basename($photo_url), 'Contact Photos', 6);
2427 q("UPDATE `contact` SET `avatar-date` = '%s', `photo` = '%s', `thumb` = '%s', `micro` = '%s'
2428 WHERE `uid` = %d AND `id` = %d",
2429 dbesc(datetime_convert()),
2430 dbesc($a->get_baseurl() . '/photo/' . $hash . '-4.'.$img->getExt()),
2431 dbesc($a->get_baseurl() . '/photo/' . $hash . '-5.'.$img->getExt()),
2432 dbesc($a->get_baseurl() . '/photo/' . $hash . '-6.'.$img->getExt()),
2433 intval($contact['uid']),
2434 intval($contact['id'])
2439 if((is_array($contact)) && ($name_updated) && (strlen($new_name)) && ($name_updated > $contact['name-date'])) {
2440 if ($name_updated > $contact_updated)
2441 $contact_updated = $name_updated;
2443 $r = q("select * from contact where uid = %d and id = %d limit 1",
2444 intval($contact['uid']),
2445 intval($contact['id'])
2448 $x = q("UPDATE `contact` SET `name` = '%s', `name-date` = '%s' WHERE `uid` = %d AND `id` = %d",
2449 dbesc(notags(trim($new_name))),
2450 dbesc(datetime_convert()),
2451 intval($contact['uid']),
2452 intval($contact['id'])
2455 // do our best to update the name on content items
2458 q("update item set `author-name` = '%s' where `author-name` = '%s' and `author-link` = '%s' and uid = %d",
2459 dbesc(notags(trim($new_name))),
2460 dbesc($r[0]['name']),
2461 dbesc($r[0]['url']),
2462 intval($contact['uid'])
2467 if ($contact_updated AND $new_name AND $photo_url)
2468 poco_check($contact['url'], $new_name, NETWORK_DFRN, $photo_url, "", "", "", "", "", $contact_updated, 2, $contact['id'], $contact['uid']);
2470 if(strlen($birthday)) {
2471 if(substr($birthday,0,4) != $contact['bdyear']) {
2472 logger('consume_feed: updating birthday: ' . $birthday);
2476 * Add new birthday event for this person
2478 * $bdtext is just a readable placeholder in case the event is shared
2479 * with others. We will replace it during presentation to our $importer
2480 * to contain a sparkle link and perhaps a photo.
2484 $bdtext = sprintf( t('%s\'s birthday'), $contact['name']);
2485 $bdtext2 = sprintf( t('Happy Birthday %s'), ' [url=' . $contact['url'] . ']' . $contact['name'] . '[/url]' ) ;
2488 $r = q("INSERT INTO `event` (`uid`,`cid`,`created`,`edited`,`start`,`finish`,`summary`,`desc`,`type`)
2489 VALUES ( %d, %d, '%s', '%s', '%s', '%s', '%s', '%s', '%s' ) ",
2490 intval($contact['uid']),
2491 intval($contact['id']),
2492 dbesc(datetime_convert()),
2493 dbesc(datetime_convert()),
2494 dbesc(datetime_convert('UTC','UTC', $birthday)),
2495 dbesc(datetime_convert('UTC','UTC', $birthday . ' + 1 day ')),
2504 q("UPDATE `contact` SET `bdyear` = '%s' WHERE `uid` = %d AND `id` = %d",
2505 dbesc(substr($birthday,0,4)),
2506 intval($contact['uid']),
2507 intval($contact['id'])
2510 // This function is called twice without reloading the contact
2511 // Make sure we only create one event. This is why &$contact
2512 // is a reference var in this function
2514 $contact['bdyear'] = substr($birthday,0,4);
2518 $community_page = 0;
2519 $rawtags = $feed->get_feed_tags( NAMESPACE_DFRN, 'community');
2521 $community_page = intval($rawtags[0]['data']);
2523 if(is_array($contact) && intval($contact['forum']) != $community_page) {
2524 q("update contact set forum = %d where id = %d",
2525 intval($community_page),
2526 intval($contact['id'])
2528 $contact['forum'] = (string) $community_page;
2532 // process any deleted entries
2534 $del_entries = $feed->get_feed_tags(NAMESPACE_TOMB, 'deleted-entry');
2535 if(is_array($del_entries) && count($del_entries) && $pass != 2) {
2536 foreach($del_entries as $dentry) {
2538 if(isset($dentry['attribs']['']['ref'])) {
2539 $uri = $dentry['attribs']['']['ref'];
2541 if(isset($dentry['attribs']['']['when'])) {
2542 $when = $dentry['attribs']['']['when'];
2543 $when = datetime_convert('UTC','UTC', $when, 'Y-m-d H:i:s');
2546 $when = datetime_convert('UTC','UTC','now','Y-m-d H:i:s');
2548 if($deleted && is_array($contact)) {
2549 $r = q("SELECT `item`.*, `contact`.`self` FROM `item` INNER JOIN `contact` on `item`.`contact-id` = `contact`.`id`
2550 WHERE `uri` = '%s' AND `item`.`uid` = %d AND `contact-id` = %d AND NOT `item`.`file` LIKE '%%[%%' LIMIT 1",
2552 intval($importer['uid']),
2553 intval($contact['id'])
2558 if(! $item['deleted'])
2559 logger('consume_feed: deleting item ' . $item['id'] . ' uri=' . $item['uri'], LOGGER_DEBUG);
2561 if($item['object-type'] === ACTIVITY_OBJ_EVENT) {
2562 logger("Deleting event ".$item['event-id'], LOGGER_DEBUG);
2563 event_delete($item['event-id']);
2566 if(($item['verb'] === ACTIVITY_TAG) && ($item['object-type'] === ACTIVITY_OBJ_TAGTERM)) {
2567 $xo = parse_xml_string($item['object'],false);
2568 $xt = parse_xml_string($item['target'],false);
2569 if($xt->type === ACTIVITY_OBJ_NOTE) {
2570 $i = q("select * from `item` where uri = '%s' and uid = %d limit 1",
2572 intval($importer['importer_uid'])
2576 // For tags, the owner cannot remove the tag on the author's copy of the post.
2578 $owner_remove = (($item['contact-id'] == $i[0]['contact-id']) ? true: false);
2579 $author_remove = (($item['origin'] && $item['self']) ? true : false);
2580 $author_copy = (($item['origin']) ? true : false);
2582 if($owner_remove && $author_copy)
2584 if($author_remove || $owner_remove) {
2585 $tags = explode(',',$i[0]['tag']);
2588 foreach($tags as $tag)
2589 if(trim($tag) !== trim($xo->body))
2590 $newtags[] = trim($tag);
2592 q("update item set tag = '%s' where id = %d",
2593 dbesc(implode(',',$newtags)),
2596 create_tags_from_item($i[0]['id']);
2602 if($item['uri'] == $item['parent-uri']) {
2603 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s',
2604 `body` = '', `title` = ''
2605 WHERE `parent-uri` = '%s' AND `uid` = %d",
2607 dbesc(datetime_convert()),
2608 dbesc($item['uri']),
2609 intval($importer['uid'])
2611 create_tags_from_itemuri($item['uri'], $importer['uid']);
2612 create_files_from_itemuri($item['uri'], $importer['uid']);
2613 update_thread_uri($item['uri'], $importer['uid']);
2616 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s',
2617 `body` = '', `title` = ''
2618 WHERE `uri` = '%s' AND `uid` = %d",
2620 dbesc(datetime_convert()),
2622 intval($importer['uid'])
2624 create_tags_from_itemuri($uri, $importer['uid']);
2625 create_files_from_itemuri($uri, $importer['uid']);
2626 if($item['last-child']) {
2627 // ensure that last-child is set in case the comment that had it just got wiped.
2628 q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d ",
2629 dbesc(datetime_convert()),
2630 dbesc($item['parent-uri']),
2631 intval($item['uid'])
2633 // who is the last child now?
2634 $r = q("SELECT `id` FROM `item` WHERE `parent-uri` = '%s' AND `type` != 'activity' AND `deleted` = 0 AND `moderated` = 0 AND `uid` = %d
2635 ORDER BY `created` DESC LIMIT 1",
2636 dbesc($item['parent-uri']),
2637 intval($importer['uid'])
2640 q("UPDATE `item` SET `last-child` = 1 WHERE `id` = %d",
2651 // Now process the feed
2653 if($feed->get_item_quantity()) {
2655 logger('consume_feed: feed item count = ' . $feed->get_item_quantity());
2657 // in inverse date order
2659 $items = array_reverse($feed->get_items());
2661 $items = $feed->get_items();
2664 foreach($items as $item) {
2667 $item_id = $item->get_id();
2668 $rawthread = $item->get_item_tags( NAMESPACE_THREAD,'in-reply-to');
2669 if(isset($rawthread[0]['attribs']['']['ref'])) {
2671 $parent_uri = $rawthread[0]['attribs']['']['ref'];
2674 if(($is_reply) && is_array($contact)) {
2679 // not allowed to post
2681 if($contact['rel'] == CONTACT_IS_FOLLOWER)
2685 // Have we seen it? If not, import it.
2687 $item_id = $item->get_id();
2688 $datarray = get_atom_elements($feed, $item, $contact);
2690 if((! x($datarray,'author-name')) && ($contact['network'] != NETWORK_DFRN))
2691 $datarray['author-name'] = $contact['name'];
2692 if((! x($datarray,'author-link')) && ($contact['network'] != NETWORK_DFRN))
2693 $datarray['author-link'] = $contact['url'];
2694 if((! x($datarray,'author-avatar')) && ($contact['network'] != NETWORK_DFRN))
2695 $datarray['author-avatar'] = $contact['thumb'];
2697 if((! x($datarray,'author-name')) || (! x($datarray,'author-link'))) {
2698 logger('consume_feed: no author information! ' . print_r($datarray,true));
2702 $force_parent = false;
2703 if($contact['network'] === NETWORK_OSTATUS || stristr($contact['url'],'twitter.com')) {
2704 if($contact['network'] === NETWORK_OSTATUS)
2705 $force_parent = true;
2706 if(strlen($datarray['title']))
2707 unset($datarray['title']);
2708 $r = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d",
2709 dbesc(datetime_convert()),
2711 intval($importer['uid'])
2713 $datarray['last-child'] = 1;
2714 update_thread_uri($parent_uri, $importer['uid']);
2718 $r = q("SELECT `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
2720 intval($importer['uid'])
2723 // Update content if 'updated' changes
2726 if (edited_timestamp_is_newer($r[0], $datarray)) {
2728 // do not accept (ignore) an earlier edit than one we currently have.
2729 if(datetime_convert('UTC','UTC',$datarray['edited']) < $r[0]['edited'])
2732 $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
2733 dbesc($datarray['title']),
2734 dbesc($datarray['body']),
2735 dbesc($datarray['tag']),
2736 dbesc(datetime_convert('UTC','UTC',$datarray['edited'])),
2737 dbesc(datetime_convert()),
2739 intval($importer['uid'])
2741 create_tags_from_itemuri($item_id, $importer['uid']);
2742 update_thread_uri($item_id, $importer['uid']);
2745 // update last-child if it changes
2747 $allow = $item->get_item_tags( NAMESPACE_DFRN, 'comment-allow');
2748 if(($allow) && ($allow[0]['data'] != $r[0]['last-child'])) {
2749 $r = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d",
2750 dbesc(datetime_convert()),
2752 intval($importer['uid'])
2754 $r = q("UPDATE `item` SET `last-child` = %d , `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
2755 intval($allow[0]['data']),
2756 dbesc(datetime_convert()),
2758 intval($importer['uid'])
2760 update_thread_uri($item_id, $importer['uid']);
2766 if(($contact['network'] === NETWORK_FEED) || (! strlen($contact['notify']))) {
2767 // one way feed - no remote comment ability
2768 $datarray['last-child'] = 0;
2770 $datarray['parent-uri'] = $parent_uri;
2771 $datarray['uid'] = $importer['uid'];
2772 $datarray['contact-id'] = $contact['id'];
2773 if(($datarray['verb'] === ACTIVITY_LIKE)
2774 || ($datarray['verb'] === ACTIVITY_DISLIKE)
2775 || ($datarray['verb'] === ACTIVITY_ATTEND)
2776 || ($datarray['verb'] === ACTIVITY_ATTENDNO)
2777 || ($datarray['verb'] === ACTIVITY_ATTENDMAYBE)) {
2778 $datarray['type'] = 'activity';
2779 $datarray['gravity'] = GRAVITY_LIKE;
2780 // only one like or dislike per person
2781 // splitted into two queries for performance issues
2782 $r = q("select id from item where uid = %d and `contact-id` = %d and verb ='%s' and deleted = 0 and (`parent-uri` = '%s') limit 1",
2783 intval($datarray['uid']),
2784 intval($datarray['contact-id']),
2785 dbesc($datarray['verb']),
2791 $r = q("select id from item where uid = %d and `contact-id` = %d and verb ='%s' and deleted = 0 and (`thr-parent` = '%s') limit 1",
2792 intval($datarray['uid']),
2793 intval($datarray['contact-id']),
2794 dbesc($datarray['verb']),
2801 if(($datarray['verb'] === ACTIVITY_TAG) && ($datarray['object-type'] === ACTIVITY_OBJ_TAGTERM)) {
2802 $xo = parse_xml_string($datarray['object'],false);
2803 $xt = parse_xml_string($datarray['target'],false);
2805 if($xt->type == ACTIVITY_OBJ_NOTE) {
2806 $r = q("select * from item where `uri` = '%s' AND `uid` = %d limit 1",
2808 intval($importer['importer_uid'])
2813 // extract tag, if not duplicate, add to parent item
2814 if($xo->id && $xo->content) {
2815 $newtag = '#[url=' . $xo->id . ']'. $xo->content . '[/url]';
2816 if(! (stristr($r[0]['tag'],$newtag))) {
2817 q("UPDATE item SET tag = '%s' WHERE id = %d",
2818 dbesc($r[0]['tag'] . (strlen($r[0]['tag']) ? ',' : '') . $newtag),
2821 create_tags_from_item($r[0]['id']);
2827 $r = item_store($datarray,$force_parent);
2833 // Head post of a conversation. Have we seen it? If not, import it.
2835 $item_id = $item->get_id();
2837 $datarray = get_atom_elements($feed, $item, $contact);
2839 if(is_array($contact)) {
2840 if((! x($datarray,'author-name')) && ($contact['network'] != NETWORK_DFRN))
2841 $datarray['author-name'] = $contact['name'];
2842 if((! x($datarray,'author-link')) && ($contact['network'] != NETWORK_DFRN))
2843 $datarray['author-link'] = $contact['url'];
2844 if((! x($datarray,'author-avatar')) && ($contact['network'] != NETWORK_DFRN))
2845 $datarray['author-avatar'] = $contact['thumb'];
2848 if((! x($datarray,'author-name')) || (! x($datarray,'author-link'))) {
2849 logger('consume_feed: no author information! ' . print_r($datarray,true));
2853 // special handling for events
2855 if((x($datarray,'object-type')) && ($datarray['object-type'] === ACTIVITY_OBJ_EVENT)) {
2856 $ev = bbtoevent($datarray['body']);
2857 if((x($ev,'desc') || x($ev,'summary')) && x($ev,'start')) {
2858 $ev['uid'] = $importer['uid'];
2859 $ev['uri'] = $item_id;
2860 $ev['edited'] = $datarray['edited'];
2861 $ev['private'] = $datarray['private'];
2862 $ev['guid'] = $datarray['guid'];
2864 if(is_array($contact))
2865 $ev['cid'] = $contact['id'];
2866 $r = q("SELECT * FROM `event` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
2868 intval($importer['uid'])
2871 $ev['id'] = $r[0]['id'];
2872 $xyz = event_store($ev);
2877 if($contact['network'] === NETWORK_OSTATUS || stristr($contact['url'],'twitter.com')) {
2878 if(strlen($datarray['title']))
2879 unset($datarray['title']);
2880 $datarray['last-child'] = 1;
2884 $r = q("SELECT `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
2886 intval($importer['uid'])
2889 // Update content if 'updated' changes
2892 if (edited_timestamp_is_newer($r[0], $datarray)) {
2894 // do not accept (ignore) an earlier edit than one we currently have.
2895 if(datetime_convert('UTC','UTC',$datarray['edited']) < $r[0]['edited'])
2898 $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
2899 dbesc($datarray['title']),
2900 dbesc($datarray['body']),
2901 dbesc($datarray['tag']),
2902 dbesc(datetime_convert('UTC','UTC',$datarray['edited'])),
2903 dbesc(datetime_convert()),
2905 intval($importer['uid'])
2907 create_tags_from_itemuri($item_id, $importer['uid']);
2908 update_thread_uri($item_id, $importer['uid']);
2911 // update last-child if it changes
2913 $allow = $item->get_item_tags( NAMESPACE_DFRN, 'comment-allow');
2914 if($allow && $allow[0]['data'] != $r[0]['last-child']) {
2915 $r = q("UPDATE `item` SET `last-child` = %d , `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
2916 intval($allow[0]['data']),
2917 dbesc(datetime_convert()),
2919 intval($importer['uid'])
2921 update_thread_uri($item_id, $importer['uid']);
2926 if(activity_match($datarray['verb'],ACTIVITY_FOLLOW)) {
2927 logger('consume-feed: New follower');
2928 new_follower($importer,$contact,$datarray,$item);
2931 if(activity_match($datarray['verb'],ACTIVITY_UNFOLLOW)) {
2932 lose_follower($importer,$contact,$datarray,$item);
2936 if(activity_match($datarray['verb'],ACTIVITY_REQ_FRIEND)) {
2937 logger('consume-feed: New friend request');
2938 new_follower($importer,$contact,$datarray,$item,true);
2941 if(activity_match($datarray['verb'],ACTIVITY_UNFRIEND)) {
2942 lose_sharer($importer,$contact,$datarray,$item);
2947 if(! is_array($contact))
2951 if(($contact['network'] === NETWORK_FEED) || (! strlen($contact['notify']))) {
2952 // one way feed - no remote comment ability
2953 $datarray['last-child'] = 0;
2955 if($contact['network'] === NETWORK_FEED)
2956 $datarray['private'] = 2;
2958 $datarray['parent-uri'] = $item_id;
2959 $datarray['uid'] = $importer['uid'];
2960 $datarray['contact-id'] = $contact['id'];
2962 if(! link_compare($datarray['owner-link'],$contact['url'])) {
2963 // The item owner info is not our contact. It's OK and is to be expected if this is a tgroup delivery,
2964 // but otherwise there's a possible data mixup on the sender's system.
2965 // the tgroup delivery code called from item_store will correct it if it's a forum,
2966 // but we're going to unconditionally correct it here so that the post will always be owned by our contact.
2967 logger('consume_feed: Correcting item owner.', LOGGER_DEBUG);
2968 $datarray['owner-name'] = $contact['name'];
2969 $datarray['owner-link'] = $contact['url'];
2970 $datarray['owner-avatar'] = $contact['thumb'];
2973 // We've allowed "followers" to reach this point so we can decide if they are
2974 // posting an @-tag delivery, which followers are allowed to do for certain
2975 // page types. Now that we've parsed the post, let's check if it is legit. Otherwise ignore it.
2977 if(($contact['rel'] == CONTACT_IS_FOLLOWER) && (! tgroup_check($importer['uid'],$datarray)))
2980 // This is my contact on another system, but it's really me.
2981 // Turn this into a wall post.
2982 $notify = item_is_remote_self($contact, $datarray);
2984 $r = item_store($datarray, false, $notify);
2985 logger('Stored - Contact '.$contact['url'].' Notify '.$notify.' return '.$r.' Item '.print_r($datarray, true), LOGGER_DEBUG);
2993 function item_is_remote_self($contact, &$datarray) {
2996 if (!$contact['remote_self'])
2999 // Prevent the forwarding of posts that are forwarded
3000 if ($datarray["extid"] == NETWORK_DFRN)
3003 // Prevent to forward already forwarded posts
3004 if ($datarray["app"] == $a->get_hostname())
3007 // Only forward posts
3008 if ($datarray["verb"] != ACTIVITY_POST)
3011 if (($contact['network'] != NETWORK_FEED) AND $datarray['private'])
3014 $datarray2 = $datarray;
3015 logger('remote-self start - Contact '.$contact['url'].' - '.$contact['remote_self'].' Item '.print_r($datarray, true), LOGGER_DEBUG);
3016 if ($contact['remote_self'] == 2) {
3017 $r = q("SELECT `id`,`url`,`name`,`thumb` FROM `contact` WHERE `uid` = %d AND `self`",
3018 intval($contact['uid']));
3020 $datarray['contact-id'] = $r[0]["id"];
3022 $datarray['owner-name'] = $r[0]["name"];
3023 $datarray['owner-link'] = $r[0]["url"];
3024 $datarray['owner-avatar'] = $r[0]["thumb"];
3026 $datarray['author-name'] = $datarray['owner-name'];
3027 $datarray['author-link'] = $datarray['owner-link'];
3028 $datarray['author-avatar'] = $datarray['owner-avatar'];
3031 if ($contact['network'] != NETWORK_FEED) {
3032 $datarray["guid"] = get_guid(32);
3033 unset($datarray["plink"]);
3034 $datarray["uri"] = item_new_uri($a->get_hostname(),$contact['uid'], $datarray["guid"]);
3035 $datarray["parent-uri"] = $datarray["uri"];
3036 $datarray["extid"] = $contact['network'];
3037 $urlpart = parse_url($datarray2['author-link']);
3038 $datarray["app"] = $urlpart["host"];
3040 $datarray['private'] = 0;
3043 if ($contact['network'] != NETWORK_FEED) {
3044 // Store the original post
3045 $r = item_store($datarray2, false, false);
3046 logger('remote-self post original item - Contact '.$contact['url'].' return '.$r.' Item '.print_r($datarray2, true), LOGGER_DEBUG);
3048 $datarray["app"] = "Feed";
3053 function local_delivery($importer,$data) {
3056 logger(__function__, LOGGER_TRACE);
3058 if($importer['readonly']) {
3059 // We aren't receiving stuff from this person. But we will quietly ignore them
3060 // rather than a blatant "go away" message.
3061 logger('local_delivery: ignoring');
3066 // Consume notification feed. This may differ from consuming a public feed in several ways
3067 // - might contain email or friend suggestions
3068 // - might contain remote followup to our message
3069 // - in which case we need to accept it and then notify other conversants
3070 // - we may need to send various email notifications
3072 $feed = new SimplePie();
3073 $feed->set_raw_data($data);
3074 $feed->enable_order_by_date(false);
3079 logger('local_delivery: Error parsing XML: ' . $feed->error());
3082 // Check at the feed level for updated contact name and/or photo
3086 $photo_timestamp = '';
3088 $contact_updated = '';
3091 $rawtags = $feed->get_feed_tags( NAMESPACE_DFRN, 'owner');
3093 // Fallback should not be needed here. If it isn't DFRN it won't have DFRN updated tags
3095 // $rawtags = $feed->get_feed_tags( SIMPLEPIE_NAMESPACE_ATOM_10, 'author');
3098 $elems = $rawtags[0]['child'][SIMPLEPIE_NAMESPACE_ATOM_10];
3099 if($elems['name'][0]['attribs'][NAMESPACE_DFRN]['updated']) {
3100 $name_updated = $elems['name'][0]['attribs'][NAMESPACE_DFRN]['updated'];
3101 $new_name = $elems['name'][0]['data'];
3103 // Manually checking for changed contact names
3104 if (($new_name != $importer['name']) AND ($new_name != "") AND ($name_updated <= $importer['name-date'])) {
3105 $name_updated = date("c");
3106 $photo_timestamp = date("c");
3109 if((x($elems,'link')) && ($elems['link'][0]['attribs']['']['rel'] === 'photo') && ($elems['link'][0]['attribs'][NAMESPACE_DFRN]['updated'])) {
3110 if ($photo_timestamp == "")
3111 $photo_timestamp = datetime_convert('UTC','UTC',$elems['link'][0]['attribs'][NAMESPACE_DFRN]['updated']);
3112 $photo_url = $elems['link'][0]['attribs']['']['href'];
3116 if(($photo_timestamp) && (strlen($photo_url)) && ($photo_timestamp > $importer['avatar-date'])) {
3118 $contact_updated = $photo_timestamp;
3120 logger('local_delivery: Updating photo for ' . $importer['name']);
3121 require_once("include/Photo.php");
3122 $photo_failure = false;
3123 $have_photo = false;
3125 $r = q("SELECT `resource-id` FROM `photo` WHERE `contact-id` = %d AND `uid` = %d LIMIT 1",
3126 intval($importer['id']),
3127 intval($importer['importer_uid'])
3130 $resource_id = $r[0]['resource-id'];
3134 $resource_id = photo_new_resource();
3137 $img_str = fetch_url($photo_url,true);
3138 // guess mimetype from headers or filename
3139 $type = guess_image_type($photo_url,true);
3142 $img = new Photo($img_str, $type);
3143 if($img->is_valid()) {
3145 q("DELETE FROM `photo` WHERE `resource-id` = '%s' AND `contact-id` = %d AND `uid` = %d",
3146 dbesc($resource_id),
3147 intval($importer['id']),
3148 intval($importer['importer_uid'])
3152 $img->scaleImageSquare(175);
3154 $hash = $resource_id;
3155 $r = $img->store($importer['importer_uid'], $importer['id'], $hash, basename($photo_url), 'Contact Photos', 4);
3157 $img->scaleImage(80);
3158 $r = $img->store($importer['importer_uid'], $importer['id'], $hash, basename($photo_url), 'Contact Photos', 5);
3160 $img->scaleImage(48);
3161 $r = $img->store($importer['importer_uid'], $importer['id'], $hash, basename($photo_url), 'Contact Photos', 6);
3165 q("UPDATE `contact` SET `avatar-date` = '%s', `photo` = '%s', `thumb` = '%s', `micro` = '%s'
3166 WHERE `uid` = %d AND `id` = %d",
3167 dbesc(datetime_convert()),
3168 dbesc($a->get_baseurl() . '/photo/' . $hash . '-4.'.$img->getExt()),
3169 dbesc($a->get_baseurl() . '/photo/' . $hash . '-5.'.$img->getExt()),
3170 dbesc($a->get_baseurl() . '/photo/' . $hash . '-6.'.$img->getExt()),
3171 intval($importer['importer_uid']),
3172 intval($importer['id'])
3177 if(($name_updated) && (strlen($new_name)) && ($name_updated > $importer['name-date'])) {
3178 if ($name_updated > $contact_updated)
3179 $contact_updated = $name_updated;
3181 $r = q("select * from contact where uid = %d and id = %d limit 1",
3182 intval($importer['importer_uid']),
3183 intval($importer['id'])
3186 $x = q("UPDATE `contact` SET `name` = '%s', `name-date` = '%s' WHERE `uid` = %d AND `id` = %d",
3187 dbesc(notags(trim($new_name))),
3188 dbesc(datetime_convert()),
3189 intval($importer['importer_uid']),
3190 intval($importer['id'])
3193 // do our best to update the name on content items
3196 q("update item set `author-name` = '%s' where `author-name` = '%s' and `author-link` = '%s' and uid = %d",
3197 dbesc(notags(trim($new_name))),
3198 dbesc($r[0]['name']),
3199 dbesc($r[0]['url']),
3200 intval($importer['importer_uid'])
3205 if ($contact_updated AND $new_name AND $photo_url)
3206 poco_check($importer['url'], $new_name, NETWORK_DFRN, $photo_url, "", "", "", "", "", $contact_updated, 2, $importer['id'], $importer['importer_uid']);
3208 // Currently unsupported - needs a lot of work
3209 $reloc = $feed->get_feed_tags( NAMESPACE_DFRN, 'relocate' );
3210 if(isset($reloc[0]['child'][NAMESPACE_DFRN])) {
3211 $base = $reloc[0]['child'][NAMESPACE_DFRN];
3213 $newloc['uid'] = $importer['importer_uid'];
3214 $newloc['cid'] = $importer['id'];
3215 $newloc['name'] = notags(unxmlify($base['name'][0]['data']));
3216 $newloc['photo'] = notags(unxmlify($base['photo'][0]['data']));
3217 $newloc['thumb'] = notags(unxmlify($base['thumb'][0]['data']));
3218 $newloc['micro'] = notags(unxmlify($base['micro'][0]['data']));
3219 $newloc['url'] = notags(unxmlify($base['url'][0]['data']));
3220 $newloc['request'] = notags(unxmlify($base['request'][0]['data']));
3221 $newloc['confirm'] = notags(unxmlify($base['confirm'][0]['data']));
3222 $newloc['notify'] = notags(unxmlify($base['notify'][0]['data']));
3223 $newloc['poll'] = notags(unxmlify($base['poll'][0]['data']));
3224 $newloc['sitepubkey'] = notags(unxmlify($base['sitepubkey'][0]['data']));
3225 /** relocated user must have original key pair */
3226 /*$newloc['pubkey'] = notags(unxmlify($base['pubkey'][0]['data']));
3227 $newloc['prvkey'] = notags(unxmlify($base['prvkey'][0]['data']));*/
3229 logger("items:relocate contact ".print_r($newloc, true).print_r($importer, true), LOGGER_DEBUG);
3232 $r = q("SELECT photo, url FROM contact WHERE id=%d AND uid=%d;",
3233 intval($importer['id']),
3234 intval($importer['importer_uid']));
3239 $x = q("UPDATE contact SET
3250 `site-pubkey` = '%s'
3251 WHERE id=%d AND uid=%d;",
3252 dbesc($newloc['name']),
3253 dbesc($newloc['photo']),
3254 dbesc($newloc['thumb']),
3255 dbesc($newloc['micro']),
3256 dbesc($newloc['url']),
3257 dbesc(normalise_link($newloc['url'])),
3258 dbesc($newloc['request']),
3259 dbesc($newloc['confirm']),
3260 dbesc($newloc['notify']),
3261 dbesc($newloc['poll']),
3262 dbesc($newloc['sitepubkey']),
3263 intval($importer['id']),
3264 intval($importer['importer_uid']));
3270 'owner-link' => array($old['url'], $newloc['url']),
3271 'author-link' => array($old['url'], $newloc['url']),
3272 'owner-avatar' => array($old['photo'], $newloc['photo']),
3273 'author-avatar' => array($old['photo'], $newloc['photo']),
3275 foreach ($fields as $n=>$f){
3276 $x = q("UPDATE `item` SET `%s`='%s' WHERE `%s`='%s' AND uid=%d",
3279 intval($importer['importer_uid']));
3285 // merge with current record, current contents have priority
3286 // update record, set url-updated
3287 // update profile photos
3293 // handle friend suggestion notification
3295 $sugg = $feed->get_feed_tags( NAMESPACE_DFRN, 'suggest' );
3296 if(isset($sugg[0]['child'][NAMESPACE_DFRN])) {
3297 $base = $sugg[0]['child'][NAMESPACE_DFRN];
3299 $fsugg['uid'] = $importer['importer_uid'];
3300 $fsugg['cid'] = $importer['id'];
3301 $fsugg['name'] = notags(unxmlify($base['name'][0]['data']));
3302 $fsugg['photo'] = notags(unxmlify($base['photo'][0]['data']));
3303 $fsugg['url'] = notags(unxmlify($base['url'][0]['data']));
3304 $fsugg['request'] = notags(unxmlify($base['request'][0]['data']));
3305 $fsugg['body'] = escape_tags(unxmlify($base['note'][0]['data']));
3307 // Does our member already have a friend matching this description?
3309 $r = q("SELECT * FROM `contact` WHERE `name` = '%s' AND `nurl` = '%s' AND `uid` = %d LIMIT 1",
3310 dbesc($fsugg['name']),
3311 dbesc(normalise_link($fsugg['url'])),
3312 intval($fsugg['uid'])
3317 // Do we already have an fcontact record for this person?
3320 $r = q("SELECT * FROM `fcontact` WHERE `url` = '%s' AND `name` = '%s' AND `request` = '%s' LIMIT 1",
3321 dbesc($fsugg['url']),
3322 dbesc($fsugg['name']),
3323 dbesc($fsugg['request'])
3328 // OK, we do. Do we already have an introduction for this person ?
3329 $r = q("select id from intro where uid = %d and fid = %d limit 1",
3330 intval($fsugg['uid']),
3337 $r = q("INSERT INTO `fcontact` ( `name`,`url`,`photo`,`request` ) VALUES ( '%s', '%s', '%s', '%s' ) ",
3338 dbesc($fsugg['name']),
3339 dbesc($fsugg['url']),
3340 dbesc($fsugg['photo']),
3341 dbesc($fsugg['request'])
3343 $r = q("SELECT * FROM `fcontact` WHERE `url` = '%s' AND `name` = '%s' AND `request` = '%s' LIMIT 1",
3344 dbesc($fsugg['url']),
3345 dbesc($fsugg['name']),
3346 dbesc($fsugg['request'])
3351 // database record did not get created. Quietly give up.
3356 $hash = random_string();
3358 $r = q("INSERT INTO `intro` ( `uid`, `fid`, `contact-id`, `note`, `hash`, `datetime`, `blocked` )
3359 VALUES( %d, %d, %d, '%s', '%s', '%s', %d )",
3360 intval($fsugg['uid']),
3362 intval($fsugg['cid']),
3363 dbesc($fsugg['body']),
3365 dbesc(datetime_convert()),
3370 'type' => NOTIFY_SUGGEST,
3371 'notify_flags' => $importer['notify-flags'],
3372 'language' => $importer['language'],
3373 'to_name' => $importer['username'],
3374 'to_email' => $importer['email'],
3375 'uid' => $importer['importer_uid'],
3377 'link' => $a->get_baseurl() . '/notifications/intros',
3378 'source_name' => $importer['name'],
3379 'source_link' => $importer['url'],
3380 'source_photo' => $importer['photo'],
3381 'verb' => ACTIVITY_REQ_FRIEND,
3390 $rawmail = $feed->get_feed_tags( NAMESPACE_DFRN, 'mail' );
3391 if(isset($rawmail[0]['child'][NAMESPACE_DFRN])) {
3393 logger('local_delivery: private message received');
3396 $base = $rawmail[0]['child'][NAMESPACE_DFRN];
3399 $msg['uid'] = $importer['importer_uid'];
3400 $msg['from-name'] = notags(unxmlify($base['sender'][0]['child'][NAMESPACE_DFRN]['name'][0]['data']));
3401 $msg['from-photo'] = notags(unxmlify($base['sender'][0]['child'][NAMESPACE_DFRN]['avatar'][0]['data']));
3402 $msg['from-url'] = notags(unxmlify($base['sender'][0]['child'][NAMESPACE_DFRN]['uri'][0]['data']));
3403 $msg['contact-id'] = $importer['id'];
3404 $msg['title'] = notags(unxmlify($base['subject'][0]['data']));
3405 $msg['body'] = escape_tags(unxmlify($base['content'][0]['data']));
3407 $msg['replied'] = 0;
3408 $msg['uri'] = notags(unxmlify($base['id'][0]['data']));
3409 $msg['parent-uri'] = notags(unxmlify($base['in-reply-to'][0]['data']));
3410 $msg['created'] = datetime_convert(notags(unxmlify('UTC','UTC',$base['sentdate'][0]['data'])));
3414 $r = dbq("INSERT INTO `mail` (`" . implode("`, `", array_keys($msg))
3415 . "`) VALUES ('" . implode("', '", array_values($msg)) . "')" );
3417 // send notifications.
3419 require_once('include/enotify.php');
3421 $notif_params = array(
3422 'type' => NOTIFY_MAIL,
3423 'notify_flags' => $importer['notify-flags'],
3424 'language' => $importer['language'],
3425 'to_name' => $importer['username'],
3426 'to_email' => $importer['email'],
3427 'uid' => $importer['importer_uid'],
3429 'source_name' => $msg['from-name'],
3430 'source_link' => $importer['url'],
3431 'source_photo' => $importer['thumb'],
3432 'verb' => ACTIVITY_POST,
3436 notification($notif_params);
3442 $community_page = 0;
3443 $rawtags = $feed->get_feed_tags( NAMESPACE_DFRN, 'community');
3445 $community_page = intval($rawtags[0]['data']);
3447 if(intval($importer['forum']) != $community_page) {
3448 q("update contact set forum = %d where id = %d",
3449 intval($community_page),
3450 intval($importer['id'])
3452 $importer['forum'] = (string) $community_page;
3455 logger('local_delivery: feed item count = ' . $feed->get_item_quantity());
3457 // process any deleted entries
3459 $del_entries = $feed->get_feed_tags(NAMESPACE_TOMB, 'deleted-entry');
3460 if(is_array($del_entries) && count($del_entries)) {
3461 foreach($del_entries as $dentry) {
3463 if(isset($dentry['attribs']['']['ref'])) {
3464 $uri = $dentry['attribs']['']['ref'];
3466 if(isset($dentry['attribs']['']['when'])) {
3467 $when = $dentry['attribs']['']['when'];
3468 $when = datetime_convert('UTC','UTC', $when, 'Y-m-d H:i:s');
3471 $when = datetime_convert('UTC','UTC','now','Y-m-d H:i:s');
3475 // check for relayed deletes to our conversation
3478 $r = q("select * from item where uri = '%s' and uid = %d limit 1",
3480 intval($importer['importer_uid'])
3483 $parent_uri = $r[0]['parent-uri'];
3484 if($r[0]['id'] != $r[0]['parent'])
3491 if($importer['page-flags'] == PAGE_COMMUNITY || $importer['page-flags'] == PAGE_PRVGROUP ) {
3494 logger('local_delivery: possible community delete');
3497 $sql_extra = " and contact.self = 1 and item.wall = 1 ";
3499 // was the top-level post for this reply written by somebody on this site?
3500 // Specifically, the recipient?
3502 $is_a_remote_delete = false;
3504 // POSSIBLE CLEANUP --> Why select so many fields when only forum_mode and wall are used?
3505 $r = q("select `item`.`id`, `item`.`uri`, `item`.`tag`, `item`.`forum_mode`,`item`.`origin`,`item`.`wall`,
3506 `contact`.`name`, `contact`.`url`, `contact`.`thumb` from `item`
3507 INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
3508 WHERE `item`.`uri` = '%s' AND (`item`.`parent-uri` = '%s' or `item`.`thr-parent` = '%s')
3509 AND `item`.`uid` = %d
3515 intval($importer['importer_uid'])
3518 $is_a_remote_delete = true;
3520 // Does this have the characteristics of a community or private group comment?
3521 // If it's a reply to a wall post on a community/prvgroup page it's a
3522 // valid community comment. Also forum_mode makes it valid for sure.
3523 // If neither, it's not.
3525 if($is_a_remote_delete && $community) {
3526 if((! $r[0]['forum_mode']) && (! $r[0]['wall'])) {
3527 $is_a_remote_delete = false;
3528 logger('local_delivery: not a community delete');
3532 if($is_a_remote_delete) {
3533 logger('local_delivery: received remote delete');
3537 $r = q("SELECT `item`.*, `contact`.`self` FROM `item` INNER JOIN contact on `item`.`contact-id` = `contact`.`id`
3538 WHERE `uri` = '%s' AND `item`.`uid` = %d AND `contact-id` = %d AND NOT `item`.`file` LIKE '%%[%%' LIMIT 1",
3540 intval($importer['importer_uid']),
3541 intval($importer['id'])
3547 if($item['deleted'])
3550 logger('local_delivery: deleting item ' . $item['id'] . ' uri=' . $item['uri'], LOGGER_DEBUG);
3552 if($item['object-type'] === ACTIVITY_OBJ_EVENT) {
3553 logger("Deleting event ".$item['event-id'], LOGGER_DEBUG);
3554 event_delete($item['event-id']);
3557 if(($item['verb'] === ACTIVITY_TAG) && ($item['object-type'] === ACTIVITY_OBJ_TAGTERM)) {
3558 $xo = parse_xml_string($item['object'],false);
3559 $xt = parse_xml_string($item['target'],false);
3561 if($xt->type === ACTIVITY_OBJ_NOTE) {
3562 $i = q("select * from `item` where uri = '%s' and uid = %d limit 1",
3564 intval($importer['importer_uid'])
3568 // For tags, the owner cannot remove the tag on the author's copy of the post.
3570 $owner_remove = (($item['contact-id'] == $i[0]['contact-id']) ? true: false);
3571 $author_remove = (($item['origin'] && $item['self']) ? true : false);
3572 $author_copy = (($item['origin']) ? true : false);
3574 if($owner_remove && $author_copy)
3576 if($author_remove || $owner_remove) {
3577 $tags = explode(',',$i[0]['tag']);
3580 foreach($tags as $tag)
3581 if(trim($tag) !== trim($xo->body))
3582 $newtags[] = trim($tag);
3584 q("update item set tag = '%s' where id = %d",
3585 dbesc(implode(',',$newtags)),
3588 create_tags_from_item($i[0]['id']);
3594 if($item['uri'] == $item['parent-uri']) {
3595 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s',
3596 `body` = '', `title` = ''
3597 WHERE `parent-uri` = '%s' AND `uid` = %d",
3599 dbesc(datetime_convert()),
3600 dbesc($item['uri']),
3601 intval($importer['importer_uid'])
3603 create_tags_from_itemuri($item['uri'], $importer['importer_uid']);
3604 create_files_from_itemuri($item['uri'], $importer['importer_uid']);
3605 update_thread_uri($item['uri'], $importer['importer_uid']);
3608 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s',
3609 `body` = '', `title` = ''
3610 WHERE `uri` = '%s' AND `uid` = %d",
3612 dbesc(datetime_convert()),
3614 intval($importer['importer_uid'])
3616 create_tags_from_itemuri($uri, $importer['importer_uid']);
3617 create_files_from_itemuri($uri, $importer['importer_uid']);
3618 update_thread_uri($uri, $importer['importer_uid']);
3619 if($item['last-child']) {
3620 // ensure that last-child is set in case the comment that had it just got wiped.
3621 q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d ",
3622 dbesc(datetime_convert()),
3623 dbesc($item['parent-uri']),
3624 intval($item['uid'])
3626 // who is the last child now?
3627 $r = q("SELECT `id` FROM `item` WHERE `parent-uri` = '%s' AND `type` != 'activity' AND `deleted` = 0 AND `uid` = %d
3628 ORDER BY `created` DESC LIMIT 1",
3629 dbesc($item['parent-uri']),
3630 intval($importer['importer_uid'])
3633 q("UPDATE `item` SET `last-child` = 1 WHERE `id` = %d",
3638 // if this is a relayed delete, propagate it to other recipients
3640 if($is_a_remote_delete)
3641 proc_run('php',"include/notifier.php","drop",$item['id']);
3649 foreach($feed->get_items() as $item) {
3652 $item_id = $item->get_id();
3653 $rawthread = $item->get_item_tags( NAMESPACE_THREAD, 'in-reply-to');
3654 if(isset($rawthread[0]['attribs']['']['ref'])) {
3656 $parent_uri = $rawthread[0]['attribs']['']['ref'];
3662 if($importer['page-flags'] == PAGE_COMMUNITY || $importer['page-flags'] == PAGE_PRVGROUP ) {
3665 logger('local_delivery: possible community reply');
3668 $sql_extra = " and contact.self = 1 and item.wall = 1 ";
3670 // was the top-level post for this reply written by somebody on this site?
3671 // Specifically, the recipient?
3673 $is_a_remote_comment = false;
3674 $top_uri = $parent_uri;
3676 $r = q("select `item`.`parent-uri` from `item`
3677 WHERE `item`.`uri` = '%s'
3681 if($r && count($r)) {
3682 $top_uri = $r[0]['parent-uri'];
3684 // POSSIBLE CLEANUP --> Why select so many fields when only forum_mode and wall are used?
3685 $r = q("select `item`.`id`, `item`.`uri`, `item`.`tag`, `item`.`forum_mode`,`item`.`origin`,`item`.`wall`,
3686 `contact`.`name`, `contact`.`url`, `contact`.`thumb` from `item`
3687 INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
3688 WHERE `item`.`uri` = '%s' AND (`item`.`parent-uri` = '%s' or `item`.`thr-parent` = '%s')
3689 AND `item`.`uid` = %d
3695 intval($importer['importer_uid'])
3698 $is_a_remote_comment = true;
3701 // Does this have the characteristics of a community or private group comment?
3702 // If it's a reply to a wall post on a community/prvgroup page it's a
3703 // valid community comment. Also forum_mode makes it valid for sure.
3704 // If neither, it's not.
3706 if($is_a_remote_comment && $community) {
3707 if((! $r[0]['forum_mode']) && (! $r[0]['wall'])) {
3708 $is_a_remote_comment = false;
3709 logger('local_delivery: not a community reply');
3713 if($is_a_remote_comment) {
3714 logger('local_delivery: received remote comment');
3716 // remote reply to our post. Import and then notify everybody else.
3718 $datarray = get_atom_elements($feed, $item);
3720 $r = q("SELECT `id`, `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
3722 intval($importer['importer_uid'])
3725 // Update content if 'updated' changes
3729 if (edited_timestamp_is_newer($r[0], $datarray)) {
3731 // do not accept (ignore) an earlier edit than one we currently have.
3732 if(datetime_convert('UTC','UTC',$datarray['edited']) < $r[0]['edited'])
3735 logger('received updated comment' , LOGGER_DEBUG);
3736 $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
3737 dbesc($datarray['title']),
3738 dbesc($datarray['body']),
3739 dbesc($datarray['tag']),
3740 dbesc(datetime_convert('UTC','UTC',$datarray['edited'])),
3741 dbesc(datetime_convert()),
3743 intval($importer['importer_uid'])
3745 create_tags_from_itemuri($item_id, $importer['importer_uid']);
3747 proc_run('php',"include/notifier.php","comment-import",$iid);
3756 $own = q("select name,url,thumb from contact where uid = %d and self = 1 limit 1",
3757 intval($importer['importer_uid'])
3761 $datarray['type'] = 'remote-comment';
3762 $datarray['wall'] = 1;
3763 $datarray['parent-uri'] = $parent_uri;
3764 $datarray['uid'] = $importer['importer_uid'];
3765 $datarray['owner-name'] = $own[0]['name'];
3766 $datarray['owner-link'] = $own[0]['url'];
3767 $datarray['owner-avatar'] = $own[0]['thumb'];
3768 $datarray['contact-id'] = $importer['id'];
3770 if(($datarray['verb'] === ACTIVITY_LIKE)
3771 || ($datarray['verb'] === ACTIVITY_DISLIKE)
3772 || ($datarray['verb'] === ACTIVITY_ATTEND)
3773 || ($datarray['verb'] === ACTIVITY_ATTENDNO)
3774 || ($datarray['verb'] === ACTIVITY_ATTENDMAYBE)) {
3776 $datarray['type'] = 'activity';
3777 $datarray['gravity'] = GRAVITY_LIKE;
3778 $datarray['last-child'] = 0;
3779 // only one like or dislike per person
3780 // splitted into two queries for performance issues
3781 $r = q("select id from item where uid = %d and `contact-id` = %d and verb = '%s' and (`parent-uri` = '%s') and deleted = 0 limit 1",
3782 intval($datarray['uid']),
3783 intval($datarray['contact-id']),
3784 dbesc($datarray['verb']),
3785 dbesc($datarray['parent-uri'])
3791 $r = q("select id from item where uid = %d and `contact-id` = %d and verb = '%s' and (`thr-parent` = '%s') and deleted = 0 limit 1",
3792 intval($datarray['uid']),
3793 intval($datarray['contact-id']),
3794 dbesc($datarray['verb']),
3795 dbesc($datarray['parent-uri'])
3802 if(($datarray['verb'] === ACTIVITY_TAG) && ($datarray['object-type'] === ACTIVITY_OBJ_TAGTERM)) {
3804 $xo = parse_xml_string($datarray['object'],false);
3805 $xt = parse_xml_string($datarray['target'],false);
3807 if(($xt->type == ACTIVITY_OBJ_NOTE) && ($xt->id)) {
3809 // fetch the parent item
3811 $tagp = q("select * from item where uri = '%s' and uid = %d limit 1",
3813 intval($importer['importer_uid'])
3818 // extract tag, if not duplicate, and this user allows tags, add to parent item
3820 if($xo->id && $xo->content) {
3821 $newtag = '#[url=' . $xo->id . ']'. $xo->content . '[/url]';
3822 if(! (stristr($tagp[0]['tag'],$newtag))) {
3823 $i = q("SELECT `blocktags` FROM `user` where `uid` = %d LIMIT 1",
3824 intval($importer['importer_uid'])
3826 if(count($i) && ! intval($i[0]['blocktags'])) {
3827 q("UPDATE item SET tag = '%s', `edited` = '%s', `changed` = '%s' WHERE id = %d",
3828 dbesc($tagp[0]['tag'] . (strlen($tagp[0]['tag']) ? ',' : '') . $newtag),
3829 intval($tagp[0]['id']),
3830 dbesc(datetime_convert()),
3831 dbesc(datetime_convert())
3833 create_tags_from_item($tagp[0]['id']);
3841 $posted_id = item_store($datarray);
3846 $datarray["id"] = $posted_id;
3848 $r = q("SELECT `parent`, `parent-uri` FROM `item` WHERE `id` = %d AND `uid` = %d LIMIT 1",
3850 intval($importer['importer_uid'])
3853 $parent = $r[0]['parent'];
3854 $parent_uri = $r[0]['parent-uri'];
3858 $r1 = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `uid` = %d AND `parent` = %d",
3859 dbesc(datetime_convert()),
3860 intval($importer['importer_uid']),
3861 intval($r[0]['parent'])
3864 $r2 = q("UPDATE `item` SET `last-child` = 1, `changed` = '%s' WHERE `uid` = %d AND `id` = %d",
3865 dbesc(datetime_convert()),
3866 intval($importer['importer_uid']),
3871 if($posted_id && $parent) {
3873 proc_run('php',"include/notifier.php","comment-import","$posted_id");
3875 if((! $is_like) && (! $importer['self'])) {
3877 require_once('include/enotify.php');
3880 'type' => NOTIFY_COMMENT,
3881 'notify_flags' => $importer['notify-flags'],
3882 'language' => $importer['language'],
3883 'to_name' => $importer['username'],
3884 'to_email' => $importer['email'],
3885 'uid' => $importer['importer_uid'],
3886 'item' => $datarray,
3887 'link' => $a->get_baseurl().'/display/'.urlencode(get_item_guid($posted_id)),
3888 'source_name' => stripslashes($datarray['author-name']),
3889 'source_link' => $datarray['author-link'],
3890 'source_photo' => ((link_compare($datarray['author-link'],$importer['url']))
3891 ? $importer['thumb'] : $datarray['author-avatar']),
3892 'verb' => ACTIVITY_POST,
3894 'parent' => $parent,
3895 'parent_uri' => $parent_uri,
3907 // regular comment that is part of this total conversation. Have we seen it? If not, import it.
3909 $item_id = $item->get_id();
3910 $datarray = get_atom_elements($feed,$item);
3912 if($importer['rel'] == CONTACT_IS_FOLLOWER)
3915 $r = q("SELECT `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
3917 intval($importer['importer_uid'])
3920 // Update content if 'updated' changes
3923 if (edited_timestamp_is_newer($r[0], $datarray)) {
3925 // do not accept (ignore) an earlier edit than one we currently have.
3926 if(datetime_convert('UTC','UTC',$datarray['edited']) < $r[0]['edited'])
3929 $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
3930 dbesc($datarray['title']),
3931 dbesc($datarray['body']),
3932 dbesc($datarray['tag']),
3933 dbesc(datetime_convert('UTC','UTC',$datarray['edited'])),
3934 dbesc(datetime_convert()),
3936 intval($importer['importer_uid'])
3938 create_tags_from_itemuri($item_id, $importer['importer_uid']);
3941 // update last-child if it changes
3943 $allow = $item->get_item_tags( NAMESPACE_DFRN, 'comment-allow');
3944 if(($allow) && ($allow[0]['data'] != $r[0]['last-child'])) {
3945 $r = q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d",
3946 dbesc(datetime_convert()),
3948 intval($importer['importer_uid'])
3950 $r = q("UPDATE `item` SET `last-child` = %d , `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
3951 intval($allow[0]['data']),
3952 dbesc(datetime_convert()),
3954 intval($importer['importer_uid'])
3960 $datarray['parent-uri'] = $parent_uri;
3961 $datarray['uid'] = $importer['importer_uid'];
3962 $datarray['contact-id'] = $importer['id'];
3963 if(($datarray['verb'] === ACTIVITY_LIKE)
3964 || ($datarray['verb'] === ACTIVITY_DISLIKE)
3965 || ($datarray['verb'] === ACTIVITY_ATTEND)
3966 || ($datarray['verb'] === ACTIVITY_ATTENDNO)
3967 || ($datarray['verb'] === ACTIVITY_ATTENDMAYBE)) {
3968 $datarray['type'] = 'activity';
3969 $datarray['gravity'] = GRAVITY_LIKE;
3970 // only one like or dislike per person
3971 // splitted into two queries for performance issues
3972 $r = q("select id from item where uid = %d and `contact-id` = %d and verb ='%s' and deleted = 0 and (`parent-uri` = '%s') limit 1",
3973 intval($datarray['uid']),
3974 intval($datarray['contact-id']),
3975 dbesc($datarray['verb']),
3981 $r = q("select id from item where uid = %d and `contact-id` = %d and verb ='%s' and deleted = 0 and (`thr-parent` = '%s') limit 1",
3982 intval($datarray['uid']),
3983 intval($datarray['contact-id']),
3984 dbesc($datarray['verb']),
3992 if(($datarray['verb'] === ACTIVITY_TAG) && ($datarray['object-type'] === ACTIVITY_OBJ_TAGTERM)) {
3994 $xo = parse_xml_string($datarray['object'],false);
3995 $xt = parse_xml_string($datarray['target'],false);
3997 if($xt->type == ACTIVITY_OBJ_NOTE) {
3998 $r = q("select * from item where `uri` = '%s' AND `uid` = %d limit 1",
4000 intval($importer['importer_uid'])
4005 // extract tag, if not duplicate, add to parent item
4007 if(! (stristr($r[0]['tag'],trim($xo->content)))) {
4008 q("UPDATE item SET tag = '%s' WHERE id = %d",
4009 dbesc($r[0]['tag'] . (strlen($r[0]['tag']) ? ',' : '') . '#[url=' . $xo->id . ']'. $xo->content . '[/url]'),
4012 create_tags_from_item($r[0]['id']);
4018 $posted_id = item_store($datarray);
4020 // find out if our user is involved in this conversation and wants to be notified.
4022 if(!x($datarray['type']) || $datarray['type'] != 'activity') {
4024 $myconv = q("SELECT `author-link`, `author-avatar`, `parent` FROM `item` WHERE `parent-uri` = '%s' AND `uid` = %d AND `parent` != 0 AND `deleted` = 0",
4026 intval($importer['importer_uid'])
4029 if(count($myconv)) {
4030 $importer_url = $a->get_baseurl() . '/profile/' . $importer['nickname'];
4032 // first make sure this isn't our own post coming back to us from a wall-to-wall event
4033 if(! link_compare($datarray['author-link'],$importer_url)) {
4036 foreach($myconv as $conv) {
4038 // now if we find a match, it means we're in this conversation
4040 if(! link_compare($conv['author-link'],$importer_url))
4043 require_once('include/enotify.php');
4045 $conv_parent = $conv['parent'];
4048 'type' => NOTIFY_COMMENT,
4049 'notify_flags' => $importer['notify-flags'],
4050 'language' => $importer['language'],
4051 'to_name' => $importer['username'],
4052 'to_email' => $importer['email'],
4053 'uid' => $importer['importer_uid'],
4054 'item' => $datarray,
4055 'link' => $a->get_baseurl().'/display/'.urlencode(get_item_guid($posted_id)),
4056 'source_name' => stripslashes($datarray['author-name']),
4057 'source_link' => $datarray['author-link'],
4058 'source_photo' => ((link_compare($datarray['author-link'],$importer['url']))
4059 ? $importer['thumb'] : $datarray['author-avatar']),
4060 'verb' => ACTIVITY_POST,
4062 'parent' => $conv_parent,
4063 'parent_uri' => $parent_uri
4067 // only send one notification
4079 // Head post of a conversation. Have we seen it? If not, import it.
4082 $item_id = $item->get_id();
4083 $datarray = get_atom_elements($feed,$item);
4085 if((x($datarray,'object-type')) && ($datarray['object-type'] === ACTIVITY_OBJ_EVENT)) {
4086 $ev = bbtoevent($datarray['body']);
4087 if((x($ev,'desc') || x($ev,'summary')) && x($ev,'start')) {
4088 $ev['cid'] = $importer['id'];
4089 $ev['uid'] = $importer['uid'];
4090 $ev['uri'] = $item_id;
4091 $ev['edited'] = $datarray['edited'];
4092 $ev['private'] = $datarray['private'];
4093 $ev['guid'] = $datarray['guid'];
4095 $r = q("SELECT * FROM `event` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
4097 intval($importer['uid'])
4100 $ev['id'] = $r[0]['id'];
4101 $xyz = event_store($ev);
4106 $r = q("SELECT `uid`, `last-child`, `edited`, `body` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1",
4108 intval($importer['importer_uid'])
4111 // Update content if 'updated' changes
4114 if (edited_timestamp_is_newer($r[0], $datarray)) {
4116 // do not accept (ignore) an earlier edit than one we currently have.
4117 if(datetime_convert('UTC','UTC',$datarray['edited']) < $r[0]['edited'])
4120 $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `tag` = '%s', `edited` = '%s', `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
4121 dbesc($datarray['title']),
4122 dbesc($datarray['body']),
4123 dbesc($datarray['tag']),
4124 dbesc(datetime_convert('UTC','UTC',$datarray['edited'])),
4125 dbesc(datetime_convert()),
4127 intval($importer['importer_uid'])
4129 create_tags_from_itemuri($item_id, $importer['importer_uid']);
4130 update_thread_uri($item_id, $importer['importer_uid']);
4133 // update last-child if it changes
4135 $allow = $item->get_item_tags( NAMESPACE_DFRN, 'comment-allow');
4136 if($allow && $allow[0]['data'] != $r[0]['last-child']) {
4137 $r = q("UPDATE `item` SET `last-child` = %d , `changed` = '%s' WHERE `uri` = '%s' AND `uid` = %d",
4138 intval($allow[0]['data']),
4139 dbesc(datetime_convert()),
4141 intval($importer['importer_uid'])
4147 $datarray['parent-uri'] = $item_id;
4148 $datarray['uid'] = $importer['importer_uid'];
4149 $datarray['contact-id'] = $importer['id'];
4152 if(! link_compare($datarray['owner-link'],$importer['url'])) {
4153 // The item owner info is not our contact. It's OK and is to be expected if this is a tgroup delivery,
4154 // but otherwise there's a possible data mixup on the sender's system.
4155 // the tgroup delivery code called from item_store will correct it if it's a forum,
4156 // but we're going to unconditionally correct it here so that the post will always be owned by our contact.
4157 logger('local_delivery: Correcting item owner.', LOGGER_DEBUG);
4158 $datarray['owner-name'] = $importer['senderName'];
4159 $datarray['owner-link'] = $importer['url'];
4160 $datarray['owner-avatar'] = $importer['thumb'];
4163 if(($importer['rel'] == CONTACT_IS_FOLLOWER) && (! tgroup_check($importer['importer_uid'],$datarray)))
4166 // This is my contact on another system, but it's really me.
4167 // Turn this into a wall post.
4168 $notify = item_is_remote_self($importer, $datarray);
4170 $posted_id = item_store($datarray, false, $notify);
4172 if(stristr($datarray['verb'],ACTIVITY_POKE)) {
4173 $verb = urldecode(substr($datarray['verb'],strpos($datarray['verb'],'#')+1));
4176 $xo = parse_xml_string($datarray['object'],false);
4178 if(($xo->type == ACTIVITY_OBJ_PERSON) && ($xo->id)) {
4180 // somebody was poked/prodded. Was it me?
4182 $links = parse_xml_string("<links>".unxmlify($xo->link)."</links>",false);
4184 foreach($links->link as $l) {
4185 $atts = $l->attributes();
4186 switch($atts['rel']) {
4188 $Blink = $atts['href'];
4194 if($Blink && link_compare($Blink,$a->get_baseurl() . '/profile/' . $importer['nickname'])) {
4196 // send a notification
4197 require_once('include/enotify.php');
4200 'type' => NOTIFY_POKE,
4201 'notify_flags' => $importer['notify-flags'],
4202 'language' => $importer['language'],
4203 'to_name' => $importer['username'],
4204 'to_email' => $importer['email'],
4205 'uid' => $importer['importer_uid'],
4206 'item' => $datarray,
4207 'link' => $a->get_baseurl().'/display/'.urlencode(get_item_guid($posted_id)),
4208 'source_name' => stripslashes($datarray['author-name']),
4209 'source_link' => $datarray['author-link'],
4210 'source_photo' => ((link_compare($datarray['author-link'],$importer['url']))
4211 ? $importer['thumb'] : $datarray['author-avatar']),
4212 'verb' => $datarray['verb'],
4213 'otype' => 'person',
4214 'activity' => $verb,
4215 'parent' => $datarray['parent']
4231 function new_follower($importer,$contact,$datarray,$item,$sharing = false) {
4232 $url = notags(trim($datarray['author-link']));
4233 $name = notags(trim($datarray['author-name']));
4234 $photo = notags(trim($datarray['author-avatar']));
4236 if (is_object($item)) {
4237 $rawtag = $item->get_item_tags(NAMESPACE_ACTIVITY,'actor');
4238 if($rawtag && $rawtag[0]['child'][NAMESPACE_POCO]['preferredUsername'][0]['data'])
4239 $nick = $rawtag[0]['child'][NAMESPACE_POCO]['preferredUsername'][0]['data'];
4243 if(is_array($contact)) {
4244 if(($contact['network'] == NETWORK_OSTATUS && $contact['rel'] == CONTACT_IS_SHARING)
4245 || ($sharing && $contact['rel'] == CONTACT_IS_FOLLOWER)) {
4246 $r = q("UPDATE `contact` SET `rel` = %d, `writable` = 1 WHERE `id` = %d AND `uid` = %d",
4247 intval(CONTACT_IS_FRIEND),
4248 intval($contact['id']),
4249 intval($importer['uid'])
4252 // send email notification to owner?
4256 // create contact record
4258 $r = q("INSERT INTO `contact` ( `uid`, `created`, `url`, `nurl`, `name`, `nick`, `photo`, `network`, `rel`,
4259 `blocked`, `readonly`, `pending`, `writable` )
4260 VALUES ( %d, '%s', '%s', '%s', '%s', '%s', '%s', '%s', %d, 0, 0, 1, 1 ) ",
4261 intval($importer['uid']),
4262 dbesc(datetime_convert()),
4264 dbesc(normalise_link($url)),
4268 dbesc(($sharing) ? NETWORK_ZOT : NETWORK_OSTATUS),
4269 intval(($sharing) ? CONTACT_IS_SHARING : CONTACT_IS_FOLLOWER)
4271 $r = q("SELECT `id` FROM `contact` WHERE `uid` = %d AND `url` = '%s' AND `pending` = 1 LIMIT 1",
4272 intval($importer['uid']),
4276 $contact_record = $r[0];
4278 // create notification
4279 $hash = random_string();
4281 if(is_array($contact_record)) {
4282 $ret = q("INSERT INTO `intro` ( `uid`, `contact-id`, `blocked`, `knowyou`, `hash`, `datetime`)
4283 VALUES ( %d, %d, 0, 0, '%s', '%s' )",
4284 intval($importer['uid']),
4285 intval($contact_record['id']),
4287 dbesc(datetime_convert())
4291 $r = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
4292 intval($importer['uid'])
4297 if(intval($r[0]['def_gid'])) {
4298 require_once('include/group.php');
4299 group_add_member($r[0]['uid'],'',$contact_record['id'],$r[0]['def_gid']);
4302 if(($r[0]['notify-flags'] & NOTIFY_INTRO) &&
4303 in_array($r[0]['page-flags'], array(PAGE_NORMAL, PAGE_SOAPBOX, PAGE_FREELOVE))) {
4306 'type' => NOTIFY_INTRO,
4307 'notify_flags' => $r[0]['notify-flags'],
4308 'language' => $r[0]['language'],
4309 'to_name' => $r[0]['username'],
4310 'to_email' => $r[0]['email'],
4311 'uid' => $r[0]['uid'],
4312 'link' => $a->get_baseurl() . '/notifications/intro',
4313 'source_name' => ((strlen(stripslashes($contact_record['name']))) ? stripslashes($contact_record['name']) : t('[Name Withheld]')),
4314 'source_link' => $contact_record['url'],
4315 'source_photo' => $contact_record['photo'],
4316 'verb' => ($sharing ? ACTIVITY_FRIEND : ACTIVITY_FOLLOW),
4325 function lose_follower($importer,$contact,$datarray,$item) {
4327 if(($contact['rel'] == CONTACT_IS_FRIEND) || ($contact['rel'] == CONTACT_IS_SHARING)) {
4328 q("UPDATE `contact` SET `rel` = %d WHERE `id` = %d",
4329 intval(CONTACT_IS_SHARING),
4330 intval($contact['id'])
4334 contact_remove($contact['id']);
4338 function lose_sharer($importer,$contact,$datarray,$item) {
4340 if(($contact['rel'] == CONTACT_IS_FRIEND) || ($contact['rel'] == CONTACT_IS_FOLLOWER)) {
4341 q("UPDATE `contact` SET `rel` = %d WHERE `id` = %d",
4342 intval(CONTACT_IS_FOLLOWER),
4343 intval($contact['id'])
4347 contact_remove($contact['id']);
4352 function subscribe_to_hub($url,$importer,$contact,$hubmode = 'subscribe') {
4356 if(is_array($importer)) {
4357 $r = q("SELECT `nickname` FROM `user` WHERE `uid` = %d LIMIT 1",
4358 intval($importer['uid'])
4362 // Diaspora has different message-ids in feeds than they do
4363 // through the direct Diaspora protocol. If we try and use
4364 // the feed, we'll get duplicates. So don't.
4366 if((! count($r)) || $contact['network'] === NETWORK_DIASPORA)
4369 $push_url = get_config('system','url') . '/pubsub/' . $r[0]['nickname'] . '/' . $contact['id'];
4371 // Use a single verify token, even if multiple hubs
4373 $verify_token = ((strlen($contact['hub-verify'])) ? $contact['hub-verify'] : random_string());
4375 $params= 'hub.mode=' . $hubmode . '&hub.callback=' . urlencode($push_url) . '&hub.topic=' . urlencode($contact['poll']) . '&hub.verify=async&hub.verify_token=' . $verify_token;
4377 logger('subscribe_to_hub: ' . $hubmode . ' ' . $contact['name'] . ' to hub ' . $url . ' endpoint: ' . $push_url . ' with verifier ' . $verify_token);
4379 if(!strlen($contact['hub-verify']) OR ($contact['hub-verify'] != $verify_token)) {
4380 $r = q("UPDATE `contact` SET `hub-verify` = '%s' WHERE `id` = %d",
4381 dbesc($verify_token),
4382 intval($contact['id'])
4386 post_url($url,$params);
4388 logger('subscribe_to_hub: returns: ' . $a->get_curl_code(), LOGGER_DEBUG);
4395 function atom_author($tag,$name,$uri,$h,$w,$photo,$geo) {
4399 $name = xmlify($name);
4400 $uri = xmlify($uri);
4403 $photo = xmlify($photo);
4407 $o .= "\t<name>$name</name>\r\n";
4408 $o .= "\t<uri>$uri</uri>\r\n";
4409 $o .= "\t".'<link rel="photo" type="image/jpeg" media:width="' . $w . '" media:height="' . $h . '" href="' . $photo . '" />' . "\r\n";
4410 $o .= "\t".'<link rel="avatar" type="image/jpeg" media:width="' . $w . '" media:height="' . $h . '" href="' . $photo . '" />' . "\r\n";
4412 if ($tag == "author") {
4415 $o .= '<georss:point>'.xmlify($geo).'</georss:point>'."\r\n";
4417 $r = q("SELECT `profile`.`locality`, `profile`.`region`, `profile`.`country-name`,
4418 `profile`.`name`, `profile`.`pub_keywords`, `profile`.`about`,
4419 `profile`.`homepage`,`contact`.`nick` FROM `profile`
4420 INNER JOIN `contact` ON `contact`.`uid` = `profile`.`uid`
4421 INNER JOIN `user` ON `user`.`uid` = `profile`.`uid`
4422 WHERE `profile`.`is-default` AND `contact`.`self` AND
4423 NOT `user`.`hidewall` AND `contact`.`nurl`='%s'",
4424 dbesc(normalise_link($uri)));
4427 if($r[0]['locality'])
4428 $location .= $r[0]['locality'];
4429 if($r[0]['region']) {
4432 $location .= $r[0]['region'];
4434 if($r[0]['country-name']) {
4437 $location .= $r[0]['country-name'];
4440 $o .= "\t<poco:preferredUsername>".xmlify($r[0]["nick"])."</poco:preferredUsername>\r\n";
4441 $o .= "\t<poco:displayName>".xmlify($r[0]["name"])."</poco:displayName>\r\n";
4442 $o .= "\t<poco:note>".xmlify($r[0]["about"])."</poco:note>\r\n";
4443 $o .= "\t<poco:address>\r\n";
4444 $o .= "\t\t<poco:formatted>".xmlify($location)."</poco:formatted>\r\n";
4445 $o .= "\t</poco:address>\r\n";
4446 $o .= "\t<poco:urls>\r\n";
4447 $o .= "\t<poco:type>homepage</poco:type>\r\n";
4448 $o .= "\t\t<poco:value>".xmlify($r[0]["homepage"])."</poco:value>\r\n";
4449 $o .= "\t\t<poco:primary>true</poco:primary>\r\n";
4450 $o .= "\t</poco:urls>\r\n";
4454 call_hooks('atom_author', $o);
4456 $o .= "</$tag>\r\n";
4460 function atom_entry($item,$type,$author,$owner,$comment = false,$cid = 0) {
4464 if(! $item['parent'])
4467 if($item['deleted'])
4468 return '<at:deleted-entry ref="' . xmlify($item['uri']) . '" when="' . xmlify(datetime_convert('UTC','UTC',$item['edited'] . '+00:00',ATOM_TIME)) . '" />' . "\r\n";
4471 if($item['allow_cid'] || $item['allow_gid'] || $item['deny_cid'] || $item['deny_gid'])
4472 $body = fix_private_photos($item['body'],$owner['uid'],$item,$cid);
4474 $body = $item['body'];
4477 $o = "\r\n\r\n<entry>\r\n";
4479 if(is_array($author))
4480 $o .= atom_author('author',$author['name'],$author['url'],80,80,$author['thumb'], $item['coord']);
4482 $o .= atom_author('author',(($item['author-name']) ? $item['author-name'] : $item['name']),(($item['author-link']) ? $item['author-link'] : $item['url']),80,80,(($item['author-avatar']) ? $item['author-avatar'] : $item['thumb']), $item['coord']);
4483 if(strlen($item['owner-name']))
4484 $o .= atom_author('dfrn:owner',$item['owner-name'],$item['owner-link'],80,80,$item['owner-avatar'], $item['coord']);
4486 if(($item['parent'] != $item['id']) || ($item['parent-uri'] !== $item['uri']) || (($item['thr-parent'] !== '') && ($item['thr-parent'] !== $item['uri']))) {
4487 $parent = q("SELECT `guid` FROM `item` WHERE `id` = %d", intval($item["parent"]));
4488 $parent_item = (($item['thr-parent']) ? $item['thr-parent'] : $item['parent-uri']);
4489 $o .= '<thr:in-reply-to ref="'.xmlify($parent_item).'" type="text/html" href="'.xmlify($a->get_baseurl().'/display/'.$parent[0]['guid']).'" />'."\r\n";
4494 if ($item['title'] != "")
4495 $htmlbody = "[b]".$item['title']."[/b]\n\n".$htmlbody;
4497 $htmlbody = bbcode($htmlbody, false, false, 7);
4499 $o .= '<id>' . xmlify($item['uri']) . '</id>' . "\r\n";
4500 $o .= '<title>' . xmlify($item['title']) . '</title>' . "\r\n";
4501 $o .= '<published>' . xmlify(datetime_convert('UTC','UTC',$item['created'] . '+00:00',ATOM_TIME)) . '</published>' . "\r\n";
4502 $o .= '<updated>' . xmlify(datetime_convert('UTC','UTC',$item['edited'] . '+00:00',ATOM_TIME)) . '</updated>' . "\r\n";
4503 $o .= '<dfrn:env>' . base64url_encode($body, true) . '</dfrn:env>' . "\r\n";
4504 $o .= '<content type="' . $type . '" >' . xmlify((($type === 'html') ? $htmlbody : $body)) . '</content>' . "\r\n";
4505 $o .= '<link rel="alternate" type="text/html" href="'.xmlify($a->get_baseurl().'/display/'.$item['guid']).'" />'."\r\n";
4507 $o .= '<status_net notice_id="'.$item['id'].'"></status_net>'."\r\n";
4510 $o .= '<dfrn:comment-allow>' . intval($item['last-child']) . '</dfrn:comment-allow>' . "\r\n";
4512 if($item['location']) {
4513 $o .= '<dfrn:location>' . xmlify($item['location']) . '</dfrn:location>' . "\r\n";
4514 $o .= '<poco:address><poco:formatted>' . xmlify($item['location']) . '</poco:formatted></poco:address>' . "\r\n";
4518 $o .= '<georss:point>' . xmlify($item['coord']) . '</georss:point>' . "\r\n";
4520 if(($item['private']) || strlen($item['allow_cid']) || strlen($item['allow_gid']) || strlen($item['deny_cid']) || strlen($item['deny_gid']))
4521 $o .= '<dfrn:private>' . (($item['private']) ? $item['private'] : 1) . '</dfrn:private>' . "\r\n";
4524 $o .= '<dfrn:extid>' . xmlify($item['extid']) . '</dfrn:extid>' . "\r\n";
4525 if($item['bookmark'])
4526 $o .= '<dfrn:bookmark>true</dfrn:bookmark>' . "\r\n";
4529 $o .= '<statusnet:notice_info local_id="' . $item['id'] . '" source="' . xmlify($item['app']) . '" ></statusnet:notice_info>' . "\r\n";
4532 $o .= '<dfrn:diaspora_guid>' . $item['guid'] . '</dfrn:diaspora_guid>' . "\r\n";
4534 if($item['signed_text']) {
4535 $sign = base64_encode(json_encode(array('signed_text' => $item['signed_text'],'signature' => $item['signature'],'signer' => $item['signer'])));
4536 $o .= '<dfrn:diaspora_signature>' . xmlify($sign) . '</dfrn:diaspora_signature>' . "\r\n";
4539 $verb = construct_verb($item);
4540 $o .= '<as:verb>' . xmlify($verb) . '</as:verb>' . "\r\n";
4541 $actobj = construct_activity_object($item);
4544 $actarg = construct_activity_target($item);
4548 $tags = item_getfeedtags($item);
4550 foreach($tags as $t)
4551 if (($type != 'html') OR ($t[0] != "@"))
4552 $o .= '<category scheme="X-DFRN:' . xmlify($t[0]) . ':' . xmlify($t[1]) . '" term="' . xmlify($t[2]) . '" />' . "\r\n";
4556 // To support these elements, the API needs to be enhanced
4557 //$o .= '<link rel="ostatus:conversation" href="'.xmlify($a->get_baseurl().'/display/'.$owner['nickname'].'/'.$item['parent']).'"/>'."\r\n";
4558 //$o .= "\t".'<link rel="self" type="application/atom+xml" href="'.xmlify($a->get_baseurl().'/api/statuses/show/'.$item['id'].'.atom').'"/>'."\r\n";
4559 //$o .= "\t".'<link rel="edit" type="application/atom+xml" href="'.xmlify($a->get_baseurl().'/api/statuses/show/'.$item['id'].'.atom').'"/>'."\r\n";
4561 $o .= item_get_attachment($item);
4563 $o .= item_getfeedattach($item);
4565 $mentioned = get_mentions($item);
4569 call_hooks('atom_entry', $o);
4571 $o .= '</entry>' . "\r\n";
4576 function fix_private_photos($s, $uid, $item = null, $cid = 0) {
4578 if(get_config('system','disable_embedded'))
4583 logger('fix_private_photos: check for photos', LOGGER_DEBUG);
4584 $site = substr($a->get_baseurl(),strpos($a->get_baseurl(),'://'));
4589 $img_start = strpos($orig_body, '[img');
4590 $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false);
4591 $img_len = ($img_start !== false ? strpos(substr($orig_body, $img_start + $img_st_close + 1), '[/img]') : false);
4592 while( ($img_st_close !== false) && ($img_len !== false) ) {
4594 $img_st_close++; // make it point to AFTER the closing bracket
4595 $image = substr($orig_body, $img_start + $img_st_close, $img_len);
4597 logger('fix_private_photos: found photo ' . $image, LOGGER_DEBUG);
4600 if(stristr($image , $site . '/photo/')) {
4601 // Only embed locally hosted photos
4603 $i = basename($image);
4604 $i = str_replace(array('.jpg','.png','.gif'),array('','',''),$i);
4605 $x = strpos($i,'-');
4608 $res = substr($i,$x+1);
4609 $i = substr($i,0,$x);
4610 $r = q("SELECT * FROM `photo` WHERE `resource-id` = '%s' AND `scale` = %d AND `uid` = %d",
4617 // Check to see if we should replace this photo link with an embedded image
4618 // 1. No need to do so if the photo is public
4619 // 2. If there's a contact-id provided, see if they're in the access list
4620 // for the photo. If so, embed it.
4621 // 3. Otherwise, if we have an item, see if the item permissions match the photo
4622 // permissions, regardless of order but first check to see if they're an exact
4623 // match to save some processing overhead.
4625 if(has_permissions($r[0])) {
4627 $recips = enumerate_permissions($r[0]);
4628 if(in_array($cid, $recips)) {
4633 if(compare_permissions($item,$r[0]))
4638 $data = $r[0]['data'];
4639 $type = $r[0]['type'];
4641 // If a custom width and height were specified, apply before embedding
4642 if(preg_match("/\[img\=([0-9]*)x([0-9]*)\]/is", substr($orig_body, $img_start, $img_st_close), $match)) {
4643 logger('fix_private_photos: scaling photo', LOGGER_DEBUG);
4645 $width = intval($match[1]);
4646 $height = intval($match[2]);
4648 $ph = new Photo($data, $type);
4649 if($ph->is_valid()) {
4650 $ph->scaleImage(max($width, $height));
4651 $data = $ph->imageString();
4652 $type = $ph->getType();
4656 logger('fix_private_photos: replacing photo', LOGGER_DEBUG);
4657 $image = 'data:' . $type . ';base64,' . base64_encode($data);
4658 logger('fix_private_photos: replaced: ' . $image, LOGGER_DATA);
4664 $new_body = $new_body . substr($orig_body, 0, $img_start + $img_st_close) . $image . '[/img]';
4665 $orig_body = substr($orig_body, $img_start + $img_st_close + $img_len + strlen('[/img]'));
4666 if($orig_body === false)
4669 $img_start = strpos($orig_body, '[img');
4670 $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false);
4671 $img_len = ($img_start !== false ? strpos(substr($orig_body, $img_start + $img_st_close + 1), '[/img]') : false);
4674 $new_body = $new_body . $orig_body;
4680 function has_permissions($obj) {
4681 if(($obj['allow_cid'] != '') || ($obj['allow_gid'] != '') || ($obj['deny_cid'] != '') || ($obj['deny_gid'] != ''))
4686 function compare_permissions($obj1,$obj2) {
4687 // first part is easy. Check that these are exactly the same.
4688 if(($obj1['allow_cid'] == $obj2['allow_cid'])
4689 && ($obj1['allow_gid'] == $obj2['allow_gid'])
4690 && ($obj1['deny_cid'] == $obj2['deny_cid'])
4691 && ($obj1['deny_gid'] == $obj2['deny_gid']))
4694 // This is harder. Parse all the permissions and compare the resulting set.
4696 $recipients1 = enumerate_permissions($obj1);
4697 $recipients2 = enumerate_permissions($obj2);
4700 if($recipients1 == $recipients2)
4705 // returns an array of contact-ids that are allowed to see this object
4707 function enumerate_permissions($obj) {
4708 require_once('include/group.php');
4709 $allow_people = expand_acl($obj['allow_cid']);
4710 $allow_groups = expand_groups(expand_acl($obj['allow_gid']));
4711 $deny_people = expand_acl($obj['deny_cid']);
4712 $deny_groups = expand_groups(expand_acl($obj['deny_gid']));
4713 $recipients = array_unique(array_merge($allow_people,$allow_groups));
4714 $deny = array_unique(array_merge($deny_people,$deny_groups));
4715 $recipients = array_diff($recipients,$deny);
4719 function item_getfeedtags($item) {
4722 $cnt = preg_match_all('|\#\[url\=(.*?)\](.*?)\[\/url\]|',$item['tag'],$matches);
4724 for($x = 0; $x < $cnt; $x ++) {
4726 $ret[] = array('#',$matches[1][$x], $matches[2][$x]);
4730 $cnt = preg_match_all('|\@\[url\=(.*?)\](.*?)\[\/url\]|',$item['tag'],$matches);
4732 for($x = 0; $x < $cnt; $x ++) {
4734 $ret[] = array('@',$matches[1][$x], $matches[2][$x]);
4740 function item_get_attachment($item) {
4742 $siteinfo = get_attached_data($item["body"]);
4744 switch($siteinfo["type"]) {
4746 $o = '<link rel="enclosure" href="'.xmlify($siteinfo["url"]).'" type="text/html; charset=UTF-8" length="" title="'.xmlify($siteinfo["title"]).'"/>'."\r\n";
4749 $imgdata = get_photo_info($siteinfo["image"]);
4750 $o = '<link rel="enclosure" href="'.xmlify($siteinfo["image"]).'" type="'.$imgdata["mime"].'" length="'.$imgdata["size"].'"/>'."\r\n";
4753 $o = '<link rel="enclosure" href="'.xmlify($siteinfo["url"]).'" type="text/html; charset=UTF-8" length="" title="'.xmlify($siteinfo["title"]).'"/>'."\r\n";
4762 function item_getfeedattach($item) {
4764 $arr = explode('[/attach],',$item['attach']);
4766 foreach($arr as $r) {
4768 $cnt = preg_match('|\[attach\]href=\"(.*?)\" length=\"(.*?)\" type=\"(.*?)\" title=\"(.*?)\"|',$r,$matches);
4770 $ret .= '<link rel="enclosure" href="' . xmlify($matches[1]) . '" type="' . xmlify($matches[3]) . '" ';
4771 if(intval($matches[2]))
4772 $ret .= 'length="' . intval($matches[2]) . '" ';
4773 if($matches[4] !== ' ')
4774 $ret .= 'title="' . xmlify(trim($matches[4])) . '" ';
4775 $ret .= ' />' . "\r\n";
4784 function item_expire($uid, $days, $network = "", $force = false) {
4786 if((! $uid) || ($days < 1))
4789 // $expire_network_only = save your own wall posts
4790 // and just expire conversations started by others
4792 $expire_network_only = get_pconfig($uid,'expire','network_only');
4793 $sql_extra = ((intval($expire_network_only)) ? " AND wall = 0 " : "");
4795 if ($network != "") {
4796 $sql_extra .= sprintf(" AND network = '%s' ", dbesc($network));
4797 // There is an index "uid_network_received" but not "uid_network_created"
4798 // This avoids the creation of another index just for one purpose.
4799 // And it doesn't really matter wether to look at "received" or "created"
4800 $range = "AND `received` < UTC_TIMESTAMP() - INTERVAL %d DAY ";
4802 $range = "AND `created` < UTC_TIMESTAMP() - INTERVAL %d DAY ";
4804 $r = q("SELECT * FROM `item`
4805 WHERE `uid` = %d $range
4816 $expire_items = get_pconfig($uid, 'expire','items');
4817 $expire_items = (($expire_items===false)?1:intval($expire_items)); // default if not set: 1
4819 // Forcing expiring of items - but not notes and marked items
4821 $expire_items = true;
4823 $expire_notes = get_pconfig($uid, 'expire','notes');
4824 $expire_notes = (($expire_notes===false)?1:intval($expire_notes)); // default if not set: 1
4826 $expire_starred = get_pconfig($uid, 'expire','starred');
4827 $expire_starred = (($expire_starred===false)?1:intval($expire_starred)); // default if not set: 1
4829 $expire_photos = get_pconfig($uid, 'expire','photos');
4830 $expire_photos = (($expire_photos===false)?0:intval($expire_photos)); // default if not set: 0
4832 logger('expire: # items=' . count($r). "; expire items: $expire_items, expire notes: $expire_notes, expire starred: $expire_starred, expire photos: $expire_photos");
4834 foreach($r as $item) {
4836 // don't expire filed items
4838 if(strpos($item['file'],'[') !== false)
4841 // Only expire posts, not photos and photo comments
4843 if($expire_photos==0 && strlen($item['resource-id']))
4845 if($expire_starred==0 && intval($item['starred']))
4847 if($expire_notes==0 && $item['type']=='note')
4849 if($expire_items==0 && $item['type']!='note')
4852 drop_item($item['id'],false);
4855 proc_run('php',"include/notifier.php","expire","$uid");
4860 function drop_items($items) {
4863 if(! local_user() && ! remote_user())
4867 foreach($items as $item) {
4868 $owner = drop_item($item,false);
4869 if($owner && ! $uid)
4874 // multiple threads may have been deleted, send an expire notification
4877 proc_run('php',"include/notifier.php","expire","$uid");
4881 function drop_item($id,$interactive = true) {
4885 // locate item to be deleted
4887 $r = q("SELECT * FROM `item` WHERE `id` = %d LIMIT 1",
4894 notice( t('Item not found.') . EOL);
4895 goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
4900 $owner = $item['uid'];
4904 // check if logged in user is either the author or owner of this item
4906 if(is_array($_SESSION['remote'])) {
4907 foreach($_SESSION['remote'] as $visitor) {
4908 if($visitor['uid'] == $item['uid'] && $visitor['cid'] == $item['contact-id']) {
4909 $cid = $visitor['cid'];
4916 if((local_user() == $item['uid']) || ($cid) || (! $interactive)) {
4918 // Check if we should do HTML-based delete confirmation
4919 if($_REQUEST['confirm']) {
4920 // <form> can't take arguments in its "action" parameter
4921 // so add any arguments as hidden inputs
4922 $query = explode_querystring($a->query_string);
4924 foreach($query['args'] as $arg) {
4925 if(strpos($arg, 'confirm=') === false) {
4926 $arg_parts = explode('=', $arg);
4927 $inputs[] = array('name' => $arg_parts[0], 'value' => $arg_parts[1]);
4931 return replace_macros(get_markup_template('confirm.tpl'), array(
4933 '$message' => t('Do you really want to delete this item?'),
4934 '$extra_inputs' => $inputs,
4935 '$confirm' => t('Yes'),
4936 '$confirm_url' => $query['base'],
4937 '$confirm_name' => 'confirmed',
4938 '$cancel' => t('Cancel'),
4941 // Now check how the user responded to the confirmation query
4942 if($_REQUEST['canceled']) {
4943 goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
4946 logger('delete item: ' . $item['id'], LOGGER_DEBUG);
4949 $r = q("UPDATE `item` SET `deleted` = 1, `title` = '', `body` = '', `edited` = '%s', `changed` = '%s' WHERE `id` = %d",
4950 dbesc(datetime_convert()),
4951 dbesc(datetime_convert()),
4954 create_tags_from_item($item['id']);
4955 create_files_from_item($item['id']);
4956 delete_thread($item['id'], $item['parent-uri']);
4958 // clean up categories and tags so they don't end up as orphans
4961 $cnt = preg_match_all('/<(.*?)>/',$item['file'],$matches,PREG_SET_ORDER);
4963 foreach($matches as $mtch) {
4964 file_tag_unsave_file($item['uid'],$item['id'],$mtch[1],true);
4970 $cnt = preg_match_all('/\[(.*?)\]/',$item['file'],$matches,PREG_SET_ORDER);
4972 foreach($matches as $mtch) {
4973 file_tag_unsave_file($item['uid'],$item['id'],$mtch[1],false);
4977 // If item is a link to a photo resource, nuke all the associated photos
4978 // (visitors will not have photo resources)
4979 // This only applies to photos uploaded from the photos page. Photos inserted into a post do not
4980 // generate a resource-id and therefore aren't intimately linked to the item.
4982 if(strlen($item['resource-id'])) {
4983 q("DELETE FROM `photo` WHERE `resource-id` = '%s' AND `uid` = %d ",
4984 dbesc($item['resource-id']),
4985 intval($item['uid'])
4987 // ignore the result
4990 // If item is a link to an event, nuke the event record.
4992 if(intval($item['event-id'])) {
4993 q("DELETE FROM `event` WHERE `id` = %d AND `uid` = %d",
4994 intval($item['event-id']),
4995 intval($item['uid'])
4997 // ignore the result
5000 // If item has attachments, drop them
5002 foreach(explode(",",$item['attach']) as $attach){
5003 preg_match("|attach/(\d+)|", $attach, $matches);
5004 q("DELETE FROM `attach` WHERE `id` = %d AND `uid` = %d",
5005 intval($matches[1]),
5008 // ignore the result
5012 // clean up item_id and sign meta-data tables
5015 // Old code - caused very long queries and warning entries in the mysql logfiles:
5017 $r = q("DELETE FROM item_id where iid in (select id from item where parent = %d and uid = %d)",
5018 intval($item['id']),
5019 intval($item['uid'])
5022 $r = q("DELETE FROM sign where iid in (select id from item where parent = %d and uid = %d)",
5023 intval($item['id']),
5024 intval($item['uid'])
5028 // The new code splits the queries since the mysql optimizer really has bad problems with subqueries
5030 // Creating list of parents
5031 $r = q("select id from item where parent = %d and uid = %d",
5032 intval($item['id']),
5033 intval($item['uid'])
5038 foreach ($r AS $row) {
5039 if ($parentid != "")
5042 $parentid .= $row["id"];
5046 if ($parentid != "") {
5047 $r = q("DELETE FROM item_id where iid in (%s)", dbesc($parentid));
5049 $r = q("DELETE FROM sign where iid in (%s)", dbesc($parentid));
5052 // If it's the parent of a comment thread, kill all the kids
5054 if($item['uri'] == $item['parent-uri']) {
5055 $r = q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s', `body` = '' , `title` = ''
5056 WHERE `parent-uri` = '%s' AND `uid` = %d ",
5057 dbesc(datetime_convert()),
5058 dbesc(datetime_convert()),
5059 dbesc($item['parent-uri']),
5060 intval($item['uid'])
5062 create_tags_from_itemuri($item['parent-uri'], $item['uid']);
5063 create_files_from_itemuri($item['parent-uri'], $item['uid']);
5064 delete_thread_uri($item['parent-uri'], $item['uid']);
5065 // ignore the result
5068 // ensure that last-child is set in case the comment that had it just got wiped.
5069 q("UPDATE `item` SET `last-child` = 0, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d ",
5070 dbesc(datetime_convert()),
5071 dbesc($item['parent-uri']),
5072 intval($item['uid'])
5074 // who is the last child now?
5075 $r = q("SELECT `id` FROM `item` WHERE `parent-uri` = '%s' AND `type` != 'activity' AND `deleted` = 0 AND `uid` = %d ORDER BY `edited` DESC LIMIT 1",
5076 dbesc($item['parent-uri']),
5077 intval($item['uid'])
5080 q("UPDATE `item` SET `last-child` = 1 WHERE `id` = %d",
5085 // Add a relayable_retraction signature for Diaspora.
5086 store_diaspora_retract_sig($item, $a->user, $a->get_baseurl());
5089 $drop_id = intval($item['id']);
5091 // send the notification upstream/downstream as the case may be
5093 proc_run('php',"include/notifier.php","drop","$drop_id");
5097 goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
5103 notice( t('Permission denied.') . EOL);
5104 goaway($a->get_baseurl() . '/' . $_SESSION['return_url']);
5111 function first_post_date($uid,$wall = false) {
5112 $r = q("select id, created from item
5113 where uid = %d and wall = %d and deleted = 0 and visible = 1 AND moderated = 0
5115 order by created asc limit 1",
5117 intval($wall ? 1 : 0)
5120 // logger('first_post_date: ' . $r[0]['id'] . ' ' . $r[0]['created'], LOGGER_DATA);
5121 return substr(datetime_convert('',date_default_timezone_get(),$r[0]['created']),0,10);
5126 /* modified posted_dates() {below} to arrange the list in years */
5127 function list_post_dates($uid, $wall) {
5128 $dnow = datetime_convert('',date_default_timezone_get(),'now','Y-m-d');
5130 $dthen = first_post_date($uid, $wall);
5134 // Set the start and end date to the beginning of the month
5135 $dnow = substr($dnow,0,8).'01';
5136 $dthen = substr($dthen,0,8).'01';
5140 // Starting with the current month, get the first and last days of every
5141 // month down to and including the month of the first post
5142 while(substr($dnow, 0, 7) >= substr($dthen, 0, 7)) {
5143 $dyear = intval(substr($dnow,0,4));
5144 $dstart = substr($dnow,0,8) . '01';
5145 $dend = substr($dnow,0,8) . get_dim(intval($dnow),intval(substr($dnow,5)));
5146 $start_month = datetime_convert('','',$dstart,'Y-m-d');
5147 $end_month = datetime_convert('','',$dend,'Y-m-d');
5148 $str = day_translate(datetime_convert('','',$dnow,'F'));
5150 $ret[$dyear] = array();
5151 $ret[$dyear][] = array($str,$end_month,$start_month);
5152 $dnow = datetime_convert('','',$dnow . ' -1 month', 'Y-m-d');
5157 function posted_dates($uid,$wall) {
5158 $dnow = datetime_convert('',date_default_timezone_get(),'now','Y-m-d');
5160 $dthen = first_post_date($uid,$wall);
5164 // Set the start and end date to the beginning of the month
5165 $dnow = substr($dnow,0,8).'01';
5166 $dthen = substr($dthen,0,8).'01';
5169 // Starting with the current month, get the first and last days of every
5170 // month down to and including the month of the first post
5171 while(substr($dnow, 0, 7) >= substr($dthen, 0, 7)) {
5172 $dstart = substr($dnow,0,8) . '01';
5173 $dend = substr($dnow,0,8) . get_dim(intval($dnow),intval(substr($dnow,5)));
5174 $start_month = datetime_convert('','',$dstart,'Y-m-d');
5175 $end_month = datetime_convert('','',$dend,'Y-m-d');
5176 $str = day_translate(datetime_convert('','',$dnow,'F Y'));
5177 $ret[] = array($str,$end_month,$start_month);
5178 $dnow = datetime_convert('','',$dnow . ' -1 month', 'Y-m-d');
5184 function posted_date_widget($url,$uid,$wall) {
5187 if(! feature_enabled($uid,'archives'))
5190 // For former Facebook folks that left because of "timeline"
5192 /* if($wall && intval(get_pconfig($uid,'system','no_wall_archive_widget')))
5195 $visible_years = get_pconfig($uid,'system','archive_visible_years');
5196 if(! $visible_years)
5199 $ret = list_post_dates($uid,$wall);
5204 $cutoff_year = intval(datetime_convert('',date_default_timezone_get(),'now','Y')) - $visible_years;
5205 $cutoff = ((array_key_exists($cutoff_year,$ret))? true : false);
5207 $o = replace_macros(get_markup_template('posted_date_widget.tpl'),array(
5208 '$title' => t('Archives'),
5209 '$size' => $visible_years,
5210 '$cutoff_year' => $cutoff_year,
5211 '$cutoff' => $cutoff,
5214 '$showmore' => t('show more')
5220 function store_diaspora_retract_sig($item, $user, $baseurl) {
5221 // Note that we can't add a target_author_signature
5222 // if the comment was deleted by a remote user. That should be ok, because if a remote user is deleting
5223 // the comment, that means we're the home of the post, and Diaspora will only
5224 // check the parent_author_signature of retractions that it doesn't have to relay further
5226 // I don't think this function gets called for an "unlike," but I'll check anyway
5228 $enabled = intval(get_config('system','diaspora_enabled'));
5230 logger('drop_item: diaspora support disabled, not storing retraction signature', LOGGER_DEBUG);
5234 logger('drop_item: storing diaspora retraction signature');
5236 $signed_text = $item['guid'] . ';' . ( ($item['verb'] === ACTIVITY_LIKE) ? 'Like' : 'Comment');
5238 if(local_user() == $item['uid']) {
5240 $handle = $user['nickname'] . '@' . substr($baseurl, strpos($baseurl,'://') + 3);
5241 $authorsig = base64_encode(rsa_sign($signed_text,$user['prvkey'],'sha256'));
5244 $r = q("SELECT `nick`, `url` FROM `contact` WHERE `id` = '%d' LIMIT 1",
5245 $item['contact-id'] // If this function gets called, drop_item() has already checked remote_user() == $item['contact-id']
5248 // The below handle only works for NETWORK_DFRN. I think that's ok, because this function
5249 // only handles DFRN deletes
5250 $handle_baseurl_start = strpos($r['url'],'://') + 3;
5251 $handle_baseurl_length = strpos($r['url'],'/profile') - $handle_baseurl_start;
5252 $handle = $r['nick'] . '@' . substr($r['url'], $handle_baseurl_start, $handle_baseurl_length);
5258 q("insert into sign (`retract_iid`,`signed_text`,`signature`,`signer`) values (%d,'%s','%s','%s') ",
5259 intval($item['id']),
5260 dbesc($signed_text),