3 * StatusNet, the distributed open-source microblogging tool
5 * Base class for all actions (~views)
9 * LICENCE: This program is free software: you can redistribute it and/or modify
10 * it under the terms of the GNU Affero General Public License as published by
11 * the Free Software Foundation, either version 3 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU Affero General Public License for more details.
19 * You should have received a copy of the GNU Affero General Public License
20 * along with this program. If not, see <http://www.gnu.org/licenses/>.
24 * @author Evan Prodromou <evan@status.net>
25 * @author Sarven Capadisli <csarven@status.net>
26 * @copyright 2008 StatusNet, Inc.
27 * @license http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0
28 * @link http://status.net/
31 if (!defined('GNUSOCIAL')) { exit(1); }
34 * Base class for all actions
36 * This is the base class for all actions in the package. An action is
37 * more or less a "view" in an MVC framework.
39 * Actions are responsible for extracting and validating parameters; using
40 * model classes to read and write to the database; and doing ouput.
44 * @author Evan Prodromou <evan@status.net>
45 * @author Sarven Capadisli <csarven@status.net>
46 * @license http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0
47 * @link http://status.net/
51 class Action extends HTMLOutputter // lawsuit
53 // This should be protected/private in the future
54 public $args = array();
56 // Action properties, set per-class
57 protected $action = false;
58 protected $ajax = false;
59 protected $menus = true;
60 protected $needLogin = false;
61 protected $needPost = false; // implies canPost if true
62 protected $canPost = false; // can this action handle POST method?
64 // The currently scoped profile (normally Profile::current; from $this->auth_user for API)
65 protected $scoped = null;
67 // Related to front-end user representation
68 protected $format = null;
69 protected $error = null;
70 protected $msg = null;
75 * Just wraps the HTMLOutputter constructor.
77 * @param string $output URI to output to, default = stdout
78 * @param boolean $indent Whether to indent output, default true
80 * @see XMLOutputter::__construct
81 * @see HTMLOutputter::__construct
83 function __construct($output='php://output', $indent=null)
85 parent::__construct($output, $indent);
98 public function handleError($e)
100 if ($e instanceof ClientException) {
101 $this->clientError($e->getMessage(), $e->getCode());
102 } elseif ($e instanceof ServerException) {
103 $this->serverError($e->getMessage(), $e->getCode());
105 // If it wasn't specified more closely which kind of exception it was
106 $this->serverError($e->getMessage(), 500);
110 static public function run(array $args=array(), $output='php://output', $indent=null) {
111 $class = get_called_class();
112 $action = new $class($output, $indent);
113 set_exception_handler(array($action, 'handleError'));
114 $action->execute($args);
118 public function execute(array $args=array()) {
120 if (common_config('db', 'mirror') && $this->isReadOnly($args)) {
121 if (is_array(common_config('db', 'mirror'))) {
122 // "load balancing", ha ha
123 $arr = common_config('db', 'mirror');
124 $k = array_rand($arr);
127 $mirror = common_config('db', 'mirror');
130 // everyone else uses the mirror
131 common_config_set('db', 'database', $mirror);
134 if (Event::handle('StartActionExecute', array($this, &$args))) {
135 $prepared = $this->prepare($args);
137 $this->handle($args);
139 common_debug('Prepare failed for Action.');
143 Event::handle('EndActionExecute', array($this));
148 * For initializing members of the class.
150 * @param array $argarray misc. arguments
152 * @return boolean true
154 protected function prepare(array $args=array())
156 if ($this->needPost && !$this->isPost()) {
157 // TRANS: Client error. POST is a HTTP command. It should not be translated.
158 $this->clientError(_('This method requires a POST.'), 405);
161 // needPost, of course, overrides canPost if true
162 if (!$this->canPost) {
163 $this->canPost = $this->needPost;
166 $this->args = common_copy_args($args);
168 // This could be set with get_called_action and then
169 // chop off 'Action' from the class name. In lower case.
170 $this->action = strtolower($this->trimmed('action'));
172 if ($this->ajax || $this->boolean('ajax')) {
173 // check with GNUsocial::isAjax()
174 GNUsocial::setAjax(true);
177 if ($this->needLogin) {
178 $this->checkLogin(); // if not logged in, this redirs/excepts
181 $this->updateScopedProfile();
186 public function updateScopedProfile()
188 $this->scoped = Profile::current();
189 return $this->scoped;
192 public function getScoped()
194 return ($this->scoped instanceof Profile) ? $this->scoped : null;
197 // Must be run _after_ prepare
198 public function getActionName()
200 return $this->action;
203 public function isAction(array $names)
205 foreach ($names as $class) {
206 // PHP is case insensitive, and we have stuff like ApiUpperCaseAction,
207 // but we at least make a point out of wanting to do stuff case-sensitive.
208 $class = ucfirst($class) . 'Action';
209 if ($this instanceof $class) {
217 * Show page, a template method.
221 public function showPage()
223 if (GNUsocial::isAjax()) {
227 if (Event::handle('StartShowHTML', array($this))) {
230 Event::handle('EndShowHTML', array($this));
232 if (Event::handle('StartShowHead', array($this))) {
235 Event::handle('EndShowHead', array($this));
237 if (Event::handle('StartShowBody', array($this))) {
239 Event::handle('EndShowBody', array($this));
241 if (Event::handle('StartEndHTML', array($this))) {
243 Event::handle('EndEndHTML', array($this));
247 public function showAjax()
249 $this->startHTML('text/xml;charset=utf-8');
250 $this->elementStart('head');
251 // TRANS: Title for conversation page.
252 $this->element('title', null, $this->title());
253 $this->elementEnd('head');
254 $this->elementStart('body');
255 if ($this->getError()) {
256 $this->element('p', array('id'=>'error'), $this->getError());
258 $this->showContent();
260 $this->elementEnd('body');
268 if (isset($_startTime)) {
269 $endTime = microtime(true);
270 $diff = round(($endTime - $_startTime) * 1000);
271 $this->raw("<!-- ${diff}ms -->");
274 return parent::endHTML();
278 * Show head, a template method.
284 // XXX: attributes (profile?)
285 $this->elementStart('head');
286 if (Event::handle('StartShowHeadElements', array($this))) {
287 if (Event::handle('StartShowHeadTitle', array($this))) {
289 Event::handle('EndShowHeadTitle', array($this));
291 $this->showShortcutIcon();
292 $this->showStylesheets();
293 $this->showOpenSearch();
295 $this->showDescription();
297 Event::handle('EndShowHeadElements', array($this));
299 $this->elementEnd('head');
303 * Show title, a template method.
309 $this->element('title', null,
310 // TRANS: Page title. %1$s is the title, %2$s is the site name.
311 sprintf(_('%1$s - %2$s'),
313 common_config('site', 'name')));
317 * Returns the page title
321 * @return string page title
326 // TRANS: Page title for a page without a title set.
327 return _('Untitled page');
331 * Show themed shortcut icon
335 function showShortcutIcon()
337 if (is_readable(INSTALLDIR . '/theme/' . common_config('site', 'theme') . '/favicon.ico')) {
338 $this->element('link', array('rel' => 'shortcut icon',
339 'href' => Theme::path('favicon.ico')));
341 // favicon.ico should be HTTPS if the rest of the page is
342 $this->element('link', array('rel' => 'shortcut icon',
343 'href' => common_path('favicon.ico', GNUsocial::isHTTPS())));
346 if (common_config('site', 'mobile')) {
347 if (is_readable(INSTALLDIR . '/theme/' . common_config('site', 'theme') . '/apple-touch-icon.png')) {
348 $this->element('link', array('rel' => 'apple-touch-icon',
349 'href' => Theme::path('apple-touch-icon.png')));
351 $this->element('link', array('rel' => 'apple-touch-icon',
352 'href' => common_path('apple-touch-icon.png')));
362 function showStylesheets()
364 if (Event::handle('StartShowStyles', array($this))) {
366 // Use old name for StatusNet for compatibility on events
368 if (Event::handle('StartShowStylesheets', array($this))) {
369 $this->primaryCssLink(null, 'screen, projection, tv, print');
370 Event::handle('EndShowStylesheets', array($this));
373 $this->cssLink('js/extlib/jquery-ui/css/smoothness/jquery-ui.css');
375 if (Event::handle('StartShowUAStyles', array($this))) {
376 Event::handle('EndShowUAStyles', array($this));
379 Event::handle('EndShowStyles', array($this));
381 if (common_config('custom_css', 'enabled')) {
382 $css = common_config('custom_css', 'css');
383 if (Event::handle('StartShowCustomCss', array($this, &$css))) {
384 if (trim($css) != '') {
387 Event::handle('EndShowCustomCss', array($this));
393 function primaryCssLink($mainTheme=null, $media=null)
395 $theme = new Theme($mainTheme);
397 // Some themes may have external stylesheets, such as using the
398 // Google Font APIs to load webfonts.
399 foreach ($theme->getExternals() as $url) {
400 $this->cssLink($url, $mainTheme, $media);
403 // If the currently-selected theme has dependencies on other themes,
404 // we'll need to load their display.css files as well in order.
405 $baseThemes = $theme->getDeps();
406 foreach ($baseThemes as $baseTheme) {
407 $this->cssLink('css/display.css', $baseTheme, $media);
409 $this->cssLink('css/display.css', $mainTheme, $media);
411 // Additional styles for RTL languages
412 if (is_rtl(common_language())) {
413 if (file_exists(Theme::file('css/rtl.css'))) {
414 $this->cssLink('css/rtl.css', $mainTheme, $media);
420 * Show javascript headers
424 function showScripts()
426 if (Event::handle('StartShowScripts', array($this))) {
427 if (Event::handle('StartShowJQueryScripts', array($this))) {
428 $this->script('extlib/jquery.js');
429 $this->script('extlib/jquery.form.js');
430 $this->script('extlib/jquery-ui/jquery-ui.js');
431 $this->script('extlib/jquery.cookie.js');
432 $this->inlineScript('if (typeof window.JSON !== "object") { $.getScript("'.common_path('js/extlib/json2.js', GNUsocial::isHTTPS()).'"); }');
434 Event::handle('EndShowJQueryScripts', array($this));
436 if (Event::handle('StartShowStatusNetScripts', array($this))) {
437 $this->script('util.js');
438 $this->script('xbImportNode.js');
439 $this->script('geometa.js');
441 // This route isn't available in single-user mode.
442 // Not sure why, but it causes errors here.
443 $this->inlineScript('var _peopletagAC = "' .
444 common_local_url('peopletagautocomplete') . '";');
445 $this->showScriptMessages();
446 $this->showScriptVariables();
447 // Anti-framing code to avoid clickjacking attacks in older browsers.
448 // This will show a blank page if the page is being framed, which is
449 // consistent with the behavior of the 'X-Frame-Options: SAMEORIGIN'
450 // header, which prevents framing in newer browser.
451 if (common_config('javascript', 'bustframes')) {
452 $this->inlineScript('if (window.top !== window.self) { document.write = ""; window.top.location = window.self.location; setTimeout(function () { document.body.innerHTML = ""; }, 1); window.self.onload = function () { document.body.innerHTML = ""; }; }');
454 Event::handle('EndShowStatusNetScripts', array($this));
456 Event::handle('EndShowScripts', array($this));
461 * Exports a map of localized text strings to JavaScript code.
463 * Plugins can add to what's exported by hooking the StartScriptMessages or EndScriptMessages
464 * events and appending to the array. Try to avoid adding strings that won't be used, as
465 * they'll be added to HTML output.
467 function showScriptMessages()
471 if (Event::handle('StartScriptMessages', array($this, &$messages))) {
472 // Common messages needed for timeline views etc...
474 // TRANS: Localized tooltip for '...' expansion button on overlong remote messages.
475 $messages['showmore_tooltip'] = _m('TOOLTIP', 'Show more');
476 $messages['popup_close_button'] = _m('TOOLTIP', 'Close popup');
478 $messages = array_merge($messages, $this->getScriptMessages());
480 Event::handle('EndScriptMessages', array($this, &$messages));
483 if (!empty($messages)) {
484 $this->inlineScript('SN.messages=' . json_encode($messages));
490 protected function showScriptVariables()
494 if (Event::handle('StartScriptVariables', array($this, &$vars))) {
495 $vars['urlNewNotice'] = common_local_url('newnotice');
498 $this->inlineScript('SN.V = ' . json_encode($vars));
504 * If the action will need localizable text strings, export them here like so:
506 * return array('pool_deepend' => _('Deep end'),
507 * 'pool_shallow' => _('Shallow end'));
509 * The exported map will be available via SN.msg() to JS code:
511 * $('#pool').html('<div class="deepend"></div><div class="shallow"></div>');
512 * $('#pool .deepend').text(SN.msg('pool_deepend'));
513 * $('#pool .shallow').text(SN.msg('pool_shallow'));
515 * Exports a map of localized text strings to JavaScript code.
517 * Plugins can add to what's exported on any action by hooking the StartScriptMessages or
518 * EndScriptMessages events and appending to the array. Try to avoid adding strings that won't
519 * be used, as they'll be added to HTML output.
521 function getScriptMessages()
527 * Show OpenSearch headers
531 function showOpenSearch()
533 $this->element('link', array('rel' => 'search',
534 'type' => 'application/opensearchdescription+xml',
535 'href' => common_local_url('opensearch', array('type' => 'people')),
536 'title' => common_config('site', 'name').' People Search'));
537 $this->element('link', array('rel' => 'search', 'type' => 'application/opensearchdescription+xml',
538 'href' => common_local_url('opensearch', array('type' => 'notice')),
539 'title' => common_config('site', 'name').' Notice Search'));
551 foreach ($this->getFeeds() as $feed) {
552 $this->element('link', array('rel' => $feed->rel(),
553 'href' => $feed->url,
554 'type' => $feed->mimeType(),
555 'title' => $feed->title));
566 function showDescription()
568 // does nothing by default
572 * Show extra stuff in <head>.
580 // does nothing by default
586 * Calls template methods
592 $params = array('id' => $this->getActionName());
593 if ($this->scoped instanceof Profile) {
594 $params['class'] = 'user_in';
596 $this->elementStart('body', $params);
597 $this->elementStart('div', array('id' => 'wrap'));
598 if (Event::handle('StartShowHeader', array($this))) {
601 Event::handle('EndShowHeader', array($this));
605 if (Event::handle('StartShowFooter', array($this))) {
608 Event::handle('EndShowFooter', array($this));
610 $this->elementEnd('div');
611 $this->showScripts();
612 $this->elementEnd('body');
616 * Show header of the page.
618 * Calls template methods
622 function showHeader()
624 $this->elementStart('div', array('id' => 'header'));
626 $this->showPrimaryNav();
627 if (Event::handle('StartShowSiteNotice', array($this))) {
628 $this->showSiteNotice();
630 Event::handle('EndShowSiteNotice', array($this));
633 $this->elementEnd('div');
637 * Show configured logo.
643 $this->elementStart('address', array('id' => 'site_contact', 'class' => 'h-card'));
644 if (Event::handle('StartAddressData', array($this))) {
645 if (common_config('singleuser', 'enabled')) {
646 $user = User::singleUser();
647 $url = common_local_url('showstream',
648 array('nickname' => $user->nickname));
649 } else if (common_logged_in()) {
650 $cur = common_current_user();
651 $url = common_local_url('all', array('nickname' => $cur->nickname));
653 $url = common_local_url('public');
656 $this->elementStart('a', array('class' => 'home bookmark',
659 if (GNUsocial::isHTTPS()) {
660 $logoUrl = common_config('site', 'ssllogo');
661 if (empty($logoUrl)) {
662 // if logo is an uploaded file, try to fall back to HTTPS file URL
663 $httpUrl = common_config('site', 'logo');
664 if (!empty($httpUrl)) {
665 $f = File::getKV('url', $httpUrl);
666 if (!empty($f) && !empty($f->filename)) {
667 // this will handle the HTTPS case
668 $logoUrl = File::url($f->filename);
673 $logoUrl = common_config('site', 'logo');
676 if (empty($logoUrl) && file_exists(Theme::file('logo.png'))) {
677 // This should handle the HTTPS case internally
678 $logoUrl = Theme::path('logo.png');
681 if (!empty($logoUrl)) {
682 $this->element('img', array('class' => 'logo u-photo p-name',
684 'alt' => common_config('site', 'name')));
687 $this->elementEnd('a');
689 Event::handle('EndAddressData', array($this));
691 $this->elementEnd('address');
695 * Show primary navigation.
699 function showPrimaryNav()
701 $this->elementStart('div', array('id' => 'site_nav_global_primary'));
703 $user = common_current_user();
705 if (!empty($user) || !common_config('site', 'private')) {
706 $form = new SearchForm($this);
710 $pn = new PrimaryNav($this);
712 $this->elementEnd('div');
720 function showSiteNotice()
722 // Revist. Should probably do an hAtom pattern here
723 $text = common_config('site', 'notice');
725 $this->elementStart('div', array('id' => 'site_notice',
726 'class' => 'system_notice'));
728 $this->elementEnd('div');
735 * MAY overload if no notice form needed... or direct message box????
739 function showNoticeForm()
741 // TRANS: Tab on the notice form.
742 $tabs = array('status' => array('title' => _m('TAB','Status'),
743 'href' => common_local_url('newnotice')));
745 $this->elementStart('div', 'input_forms');
747 $this->element('label', array('for'=>'input_form_nav'), _m('TAB', 'Share your:'));
749 if (Event::handle('StartShowEntryForms', array(&$tabs))) {
750 $this->elementStart('ul', array('class' => 'nav',
751 'id' => 'input_form_nav'));
753 foreach ($tabs as $tag => $data) {
754 $tag = htmlspecialchars($tag);
755 $attrs = array('id' => 'input_form_nav_'.$tag,
756 'class' => 'input_form_nav_tab');
758 if ($tag == 'status') {
759 $attrs['class'] .= ' current';
761 $this->elementStart('li', $attrs);
764 array('onclick' => 'return SN.U.switchInputFormTab("'.$tag.'");',
765 'href' => $data['href']),
767 $this->elementEnd('li');
770 $this->elementEnd('ul');
772 foreach ($tabs as $tag => $data) {
773 $attrs = array('class' => 'input_form',
774 'id' => 'input_form_'.$tag);
775 if ($tag == 'status') {
776 $attrs['class'] .= ' current';
779 $this->elementStart('div', $attrs);
783 if (Event::handle('StartMakeEntryForm', array($tag, $this, &$form))) {
784 if ($tag == 'status') {
785 $options = $this->noticeFormOptions();
786 $form = new NoticeForm($this, $options);
788 Event::handle('EndMakeEntryForm', array($tag, $this, $form));
795 $this->elementEnd('div');
799 $this->elementEnd('div');
802 function noticeFormOptions()
808 * Show anonymous message.
814 function showAnonymousMessage()
816 // needs to be defined by the class
822 * Shows local navigation, content block and aside.
828 $this->elementStart('div', array('id' => 'core'));
829 $this->elementStart('div', array('id' => 'aside_primary_wrapper'));
830 $this->elementStart('div', array('id' => 'content_wrapper'));
831 $this->elementStart('div', array('id' => 'site_nav_local_views_wrapper'));
832 if (Event::handle('StartShowLocalNavBlock', array($this))) {
833 $this->showLocalNavBlock();
835 Event::handle('EndShowLocalNavBlock', array($this));
837 if (Event::handle('StartShowContentBlock', array($this))) {
838 $this->showContentBlock();
840 Event::handle('EndShowContentBlock', array($this));
842 if (Event::handle('StartShowAside', array($this))) {
845 Event::handle('EndShowAside', array($this));
847 $this->elementEnd('div');
848 $this->elementEnd('div');
849 $this->elementEnd('div');
850 $this->elementEnd('div');
854 * Show local navigation block.
858 function showLocalNavBlock()
860 // Need to have this ID for CSS; I'm too lazy to add it to
862 $this->elementStart('div', array('id' => 'site_nav_local_views'));
863 // Cheat cheat cheat!
864 $this->showLocalNav();
865 $this->elementEnd('div');
869 * If there's a logged-in user, show a bit of login context
873 function showProfileBlock()
875 if (common_logged_in()) {
876 $block = new DefaultProfileBlock($this);
882 * Show local navigation.
888 function showLocalNav()
890 $nav = new DefaultLocalNav($this);
895 * Show menu for an object (group, profile)
897 * This block will only show if a subclass has overridden
898 * the showObjectNav() method.
902 function showObjectNavBlock()
904 $rmethod = new ReflectionMethod($this, 'showObjectNav');
905 $dclass = $rmethod->getDeclaringClass()->getName();
907 if ($dclass != 'Action') {
908 // Need to have this ID for CSS; I'm too lazy to add it to
910 $this->elementStart('div', array('id' => 'site_nav_object',
911 'class' => 'section'));
912 $this->showObjectNav();
913 $this->elementEnd('div');
918 * Show object navigation.
920 * If there are things to do with this object, show it here.
924 function showObjectNav()
930 * Show content block.
934 function showContentBlock()
936 $this->elementStart('div', array('id' => 'content'));
937 if (common_logged_in()) {
938 if (Event::handle('StartShowNoticeForm', array($this))) {
939 $this->showNoticeForm();
940 Event::handle('EndShowNoticeForm', array($this));
943 if (Event::handle('StartShowPageTitle', array($this))) {
944 $this->showPageTitle();
945 Event::handle('EndShowPageTitle', array($this));
947 $this->showPageNoticeBlock();
948 $this->elementStart('div', array('id' => 'content_inner'));
949 // show the actual content (forms, lists, whatever)
950 $this->showContent();
951 $this->elementEnd('div');
952 $this->elementEnd('div');
960 function showPageTitle()
962 $this->element('h1', null, $this->title());
966 * Show page notice block.
968 * Only show the block if a subclassed action has overrided
969 * Action::showPageNotice(), or an event handler is registered for
970 * the StartShowPageNotice event, in which case we assume the
971 * 'page_notice' definition list is desired. This is to prevent
972 * empty 'page_notice' definition lists from being output everywhere.
976 function showPageNoticeBlock()
978 $rmethod = new ReflectionMethod($this, 'showPageNotice');
979 $dclass = $rmethod->getDeclaringClass()->getName();
981 if ($dclass != 'Action' || Event::hasHandler('StartShowPageNotice')) {
983 $this->elementStart('div', array('id' => 'page_notice',
984 'class' => 'system_notice'));
985 if (Event::handle('StartShowPageNotice', array($this))) {
986 $this->showPageNotice();
987 Event::handle('EndShowPageNotice', array($this));
989 $this->elementEnd('div');
996 * SHOULD overload (unless there's not a notice)
1000 function showPageNotice()
1007 * MUST overload (unless there's not a notice)
1011 protected function showContent()
1020 function showAside()
1022 $this->elementStart('div', array('id' => 'aside_primary',
1023 'class' => 'aside'));
1024 $this->showProfileBlock();
1025 if (Event::handle('StartShowObjectNavBlock', array($this))) {
1026 $this->showObjectNavBlock();
1027 Event::handle('EndShowObjectNavBlock', array($this));
1029 if (Event::handle('StartShowSections', array($this))) {
1030 $this->showSections();
1031 Event::handle('EndShowSections', array($this));
1033 if (Event::handle('StartShowExportData', array($this))) {
1034 $this->showExportData();
1035 Event::handle('EndShowExportData', array($this));
1037 $this->elementEnd('div');
1041 * Show export data feeds.
1045 function showExportData()
1047 $feeds = $this->getFeeds();
1048 if (!empty($feeds)) {
1049 $fl = new FeedList($this, $feeds);
1061 function showSections()
1063 // for each section, show it
1071 function showFooter()
1073 $this->elementStart('div', array('id' => 'footer'));
1074 if (Event::handle('StartShowInsideFooter', array($this))) {
1075 $this->showSecondaryNav();
1076 $this->showLicenses();
1077 Event::handle('EndShowInsideFooter', array($this));
1079 $this->elementEnd('div');
1083 * Show secondary navigation.
1087 function showSecondaryNav()
1089 $sn = new SecondaryNav($this);
1098 function showLicenses()
1100 $this->showGNUsocialLicense();
1101 $this->showContentLicense();
1105 * Show GNU social license.
1109 function showGNUsocialLicense()
1111 if (common_config('site', 'broughtby')) {
1112 // TRANS: First sentence of the GNU social site license. Used if 'broughtby' is set.
1113 // TRANS: Text between [] is a link description, text between () is the link itself.
1114 // TRANS: Make sure there is no whitespace between "]" and "(".
1115 // TRANS: "%%site.broughtby%%" is the value of the variable site.broughtby
1116 $instr = _('**%%site.name%%** is a social network, courtesy of [%%site.broughtby%%](%%site.broughtbyurl%%).');
1118 // TRANS: First sentence of the GNU social site license. Used if 'broughtby' is not set.
1119 $instr = _('**%%site.name%%** is a social network.');
1122 // TRANS: Second sentence of the GNU social site license. Mentions the GNU social source code license.
1123 // TRANS: Make sure there is no whitespace between "]" and "(".
1124 // TRANS: [%1$s](%2$s) is a link description followed by the link itself
1125 // TRANS: %3$s is the version of GNU social that is being used.
1126 $instr .= sprintf(_('It runs on [%1$s](%2$s), version %3$s, available under the [GNU Affero General Public License](http://www.fsf.org/licensing/licenses/agpl-3.0.html).'), GNUSOCIAL_ENGINE, GNUSOCIAL_ENGINE_URL, GNUSOCIAL_VERSION);
1127 $output = common_markup_to_html($instr);
1128 $this->raw($output);
1133 * Show content license.
1137 function showContentLicense()
1139 if (Event::handle('StartShowContentLicense', array($this))) {
1140 switch (common_config('license', 'type')) {
1142 // TRANS: Content license displayed when license is set to 'private'.
1143 // TRANS: %1$s is the site name.
1144 $this->element('p', null, sprintf(_('Content and data of %1$s are private and confidential.'),
1145 common_config('site', 'name')));
1147 case 'allrightsreserved':
1148 if (common_config('license', 'owner')) {
1149 // TRANS: Content license displayed when license is set to 'allrightsreserved'.
1150 // TRANS: %1$s is the copyright owner.
1151 $this->element('p', null, sprintf(_('Content and data copyright by %1$s. All rights reserved.'),
1152 common_config('license', 'owner')));
1154 // TRANS: Content license displayed when license is set to 'allrightsreserved' and no owner is set.
1155 $this->element('p', null, _('Content and data copyright by contributors. All rights reserved.'));
1158 case 'cc': // fall through
1160 $this->elementStart('p');
1162 $image = common_config('license', 'image');
1163 $sslimage = common_config('license', 'sslimage');
1165 if (GNUsocial::isHTTPS()) {
1166 if (!empty($sslimage)) {
1168 } else if (preg_match('#^http://i.creativecommons.org/#', $image)) {
1169 // CC support HTTPS on their images
1170 $url = preg_replace('/^http/', 'https', $image, 1);
1172 // Better to show mixed content than no content
1179 $this->element('img', array('id' => 'license_cc',
1181 'alt' => common_config('license', 'title'),
1185 // TRANS: license message in footer.
1186 // TRANS: %1$s is the site name, %2$s is a link to the license URL, with a licence name set in configuration.
1187 $notice = _('All %1$s content and data are available under the %2$s license.');
1188 $link = sprintf('<a class="license" rel="external license" href="%1$s">%2$s</a>',
1189 htmlspecialchars(common_config('license', 'url')),
1190 htmlspecialchars(common_config('license', 'title')));
1191 $this->raw(@sprintf(htmlspecialchars($notice),
1192 htmlspecialchars(common_config('site', 'name')),
1194 $this->elementEnd('p');
1198 Event::handle('EndShowContentLicense', array($this));
1203 * Return last modified, if applicable.
1207 * @return string last modified http header
1209 function lastModified()
1211 // For comparison with If-Last-Modified
1212 // If not applicable, return null
1217 * Return etag, if applicable.
1221 * @return string etag http header
1229 * Return true if read only.
1233 * @param array $args other arguments
1235 * @return boolean is read only action?
1237 function isReadOnly($args)
1243 * Returns query argument or default value if not found
1245 * @param string $key requested argument
1246 * @param string $def default value to return if $key is not provided
1248 * @return boolean is read only action?
1250 function arg($key, $def=null)
1252 if (array_key_exists($key, $this->args)) {
1253 return $this->args[$key];
1260 * Returns trimmed query argument or default value if not found
1262 * @param string $key requested argument
1263 * @param string $def default value to return if $key is not provided
1265 * @return boolean is read only action?
1267 function trimmed($key, $def=null)
1269 $arg = $this->arg($key, $def);
1270 return is_string($arg) ? trim($arg) : $arg;
1276 * @return boolean is read only action?
1278 protected function handle()
1280 header('Vary: Accept-Encoding,Cookie');
1282 $lm = $this->lastModified();
1283 $etag = $this->etag();
1286 header('ETag: ' . $etag);
1290 header('Last-Modified: ' . date(DATE_RFC1123, $lm));
1291 if ($this->isCacheable()) {
1292 header( 'Expires: ' . gmdate( 'D, d M Y H:i:s', 0 ) . ' GMT' );
1293 header( "Cache-Control: private, must-revalidate, max-age=0" );
1300 $if_none_match = (array_key_exists('HTTP_IF_NONE_MATCH', $_SERVER)) ?
1301 $_SERVER['HTTP_IF_NONE_MATCH'] : null;
1302 if ($if_none_match) {
1303 // If this check fails, ignore the if-modified-since below.
1305 if ($this->_hasEtag($etag, $if_none_match)) {
1306 header('HTTP/1.1 304 Not Modified');
1307 // Better way to do this?
1313 if (!$checked && $lm && array_key_exists('HTTP_IF_MODIFIED_SINCE', $_SERVER)) {
1314 $if_modified_since = $_SERVER['HTTP_IF_MODIFIED_SINCE'];
1315 $ims = strtotime($if_modified_since);
1317 header('HTTP/1.1 304 Not Modified');
1318 // Better way to do this?
1325 * Is this action cacheable?
1327 * If the action returns a last-modified
1329 * @param array $argarray is ignored since it's now passed in in prepare()
1331 * @return boolean is read only action?
1333 function isCacheable()
1339 * Has etag? (private)
1341 * @param string $etag etag http header
1342 * @param string $if_none_match ifNoneMatch http header
1346 function _hasEtag($etag, $if_none_match)
1348 $etags = explode(',', $if_none_match);
1349 return in_array($etag, $etags) || in_array('*', $etags);
1353 * Boolean understands english (yes, no, true, false)
1355 * @param string $key query key we're interested in
1356 * @param string $def default value
1358 * @return boolean interprets yes/no strings as boolean
1360 function boolean($key, $def=false)
1362 $arg = strtolower($this->trimmed($key));
1364 if (is_null($arg)) {
1366 } else if (in_array($arg, array('true', 'yes', '1', 'on'))) {
1368 } else if (in_array($arg, array('false', 'no', '0'))) {
1376 * This is a cheap hack to avoid a bug in DB_DataObject
1377 * where '' is non-type-aware compared to 0, which means it
1378 * will always be true for values like false and 0 too...
1381 * https://pear.php.net/bugs/bug.php?id=20291
1383 function booleanintstring($key, $def=false)
1385 return $this->boolean($key, $def) ? '1' : '0';
1389 * Integer value of an argument
1391 * @param string $key query key we're interested in
1392 * @param string $defValue optional default value (default null)
1393 * @param string $maxValue optional max value (default null)
1394 * @param string $minValue optional min value (default null)
1396 * @return integer integer value
1398 function int($key, $defValue=null, $maxValue=null, $minValue=null)
1400 $arg = intval($this->arg($key));
1402 if (!is_numeric($this->arg($key)) || $arg != $this->arg($key)) {
1406 if (!is_null($maxValue)) {
1407 $arg = min($arg, $maxValue);
1410 if (!is_null($minValue)) {
1411 $arg = max($arg, $minValue);
1420 * @param string $msg error message to display
1421 * @param integer $code http error code, 500 by default
1425 function serverError($msg, $code=500, $format=null)
1427 if ($format === null) {
1428 $format = $this->format;
1431 common_debug("Server error '{$code}' on '{$this->action}': {$msg}", __FILE__);
1433 if (!array_key_exists($code, ServerErrorAction::$status)) {
1437 $status_string = ServerErrorAction::$status[$code];
1441 header("HTTP/1.1 {$code} {$status_string}");
1442 $this->initDocument('xml');
1443 $this->elementStart('hash');
1444 $this->element('error', null, $msg);
1445 $this->element('request', null, $_SERVER['REQUEST_URI']);
1446 $this->elementEnd('hash');
1447 $this->endDocument('xml');
1450 if (!isset($this->callback)) {
1451 header("HTTP/1.1 {$code} {$status_string}");
1453 $this->initDocument('json');
1454 $error_array = array('error' => $msg, 'request' => $_SERVER['REQUEST_URI']);
1455 print(json_encode($error_array));
1456 $this->endDocument('json');
1459 common_log(LOG_ERR, 'Handled serverError ('._ve($code).') but cannot output into desired format ('._ve($this->format).'): '._ve($msg));
1460 $action = new ServerErrorAction($msg, $code);
1470 * @param string $msg error message to display
1471 * @param integer $code http error code, 400 by default
1472 * @param string $format error format (json, xml, text) for ApiAction
1475 * @throws ClientException always
1477 function clientError($msg, $code=400, $format=null)
1479 // $format is currently only relevant for an ApiAction anyway
1480 if ($format === null) {
1481 $format = $this->format;
1484 common_debug("User error '{$code}' on '{$this->action}': {$msg}", __FILE__);
1486 if (!array_key_exists($code, ClientErrorAction::$status)) {
1490 $status_string = ClientErrorAction::$status[$code];
1494 header("HTTP/1.1 {$code} {$status_string}");
1495 $this->initDocument('xml');
1496 $this->elementStart('hash');
1497 $this->element('error', null, $msg);
1498 $this->element('request', null, $_SERVER['REQUEST_URI']);
1499 $this->elementEnd('hash');
1500 $this->endDocument('xml');
1503 if (!isset($this->callback)) {
1504 header("HTTP/1.1 {$code} {$status_string}");
1506 $this->initDocument('json');
1507 $error_array = array('error' => $msg, 'request' => $_SERVER['REQUEST_URI']);
1508 print(json_encode($error_array));
1509 $this->endDocument('json');
1512 header("HTTP/1.1 {$code} {$status_string}");
1513 header('Content-Type: text/plain; charset=utf-8');
1517 common_log(LOG_ERR, 'Handled clientError ('._ve($code).') but cannot output into desired format ('._ve($this->format).'): '._ve($msg));
1518 $action = new ClientErrorAction($msg, $code);
1525 * If not logged in, take appropriate action (redir or exception)
1527 * @param boolean $redir Redirect to login if not logged in
1529 * @return boolean true if logged in (never returns if not)
1531 public function checkLogin($redir=true)
1533 if (common_logged_in()) {
1538 common_set_returnto($_SERVER['REQUEST_URI']);
1539 common_redirect(common_local_url('login'));
1542 // TRANS: Error message displayed when trying to perform an action that requires a logged in user.
1543 $this->clientError(_('Not logged in.'), 403);
1547 * Returns the current URL
1549 * @return string current URL
1553 list($action, $args) = $this->returnToArgs();
1554 return common_local_url($action, $args);
1558 * Returns arguments sufficient for re-constructing URL
1560 * @return array two elements: action, other args
1562 function returnToArgs()
1564 $action = $this->getActionName();
1565 $args = $this->args;
1566 unset($args['action']);
1567 if (common_config('site', 'fancy')) {
1570 if (array_key_exists('submit', $args)) {
1571 unset($args['submit']);
1573 foreach (array_keys($_COOKIE) as $cookie) {
1574 unset($args[$cookie]);
1576 return array($action, $args);
1580 * Generate a menu item
1582 * @param string $url menu URL
1583 * @param string $text menu name
1584 * @param string $title title attribute, null by default
1585 * @param boolean $is_selected current menu item, false by default
1586 * @param string $id element id, null by default
1590 function menuItem($url, $text, $title=null, $is_selected=false, $id=null, $class=null)
1592 // Added @id to li for some control.
1593 // XXX: We might want to move this to htmloutputter.php
1596 if ($class !== null) {
1597 $classes[] = trim($class);
1600 $classes[] = 'current';
1603 if (!empty($classes)) {
1604 $lattrs['class'] = implode(' ', $classes);
1607 if (!is_null($id)) {
1608 $lattrs['id'] = $id;
1611 $this->elementStart('li', $lattrs);
1612 $attrs['href'] = $url;
1614 $attrs['title'] = $title;
1616 $this->element('a', $attrs, $text);
1617 $this->elementEnd('li');
1621 * Generate pagination links
1623 * @param boolean $have_before is there something before?
1624 * @param boolean $have_after is there something after?
1625 * @param integer $page current page
1626 * @param string $action current action
1627 * @param array $args rest of query arguments
1631 // XXX: The messages in this pagination method only tailor to navigating
1632 // notices. In other lists, "Previous"/"Next" type navigation is
1633 // desirable, but not available.
1634 function pagination($have_before, $have_after, $page, $action, $args=null)
1636 // Does a little before-after block for next/prev page
1637 if ($have_before || $have_after) {
1638 $this->elementStart('ul', array('class' => 'nav',
1639 'id' => 'pagination'));
1642 $pargs = array('page' => $page-1);
1643 $this->elementStart('li', array('class' => 'nav_prev'));
1644 $this->element('a', array('href' => common_local_url($action, $args, $pargs),
1646 // TRANS: Pagination message to go to a page displaying information more in the
1647 // TRANS: present than the currently displayed information.
1649 $this->elementEnd('li');
1652 $pargs = array('page' => $page+1);
1653 $this->elementStart('li', array('class' => 'nav_next'));
1654 $this->element('a', array('href' => common_local_url($action, $args, $pargs),
1656 // TRANS: Pagination message to go to a page displaying information more in the
1657 // TRANS: past than the currently displayed information.
1659 $this->elementEnd('li');
1661 if ($have_before || $have_after) {
1662 $this->elementEnd('ul');
1667 * An array of feeds for this action.
1669 * Returns an array of potential feeds for this action.
1671 * @return array Feed object to show in head and links
1679 * Check the session token.
1681 * Checks that the current form has the correct session token,
1682 * and throw an exception if it does not.
1686 // XXX: Finding this type of check with the same message about 50 times.
1687 // Possible to refactor?
1688 function checkSessionToken()
1691 $token = $this->trimmed('token');
1692 if (empty($token) || $token != common_session_token()) {
1693 // TRANS: Client error text when there is a problem with the session token.
1694 $this->clientError(_('There was a problem with your session token.'));
1699 * Check if the current request is a POST
1701 * @return boolean true if POST; otherwise false.
1706 return ($_SERVER['REQUEST_METHOD'] == 'POST');