]> git.mxchange.org Git - friendica.git/blob - mod/admin.php
Bugfix: The user id wasn't fetched correctly.
[friendica.git] / mod / admin.php
1 <?php
2
3  /**
4   * Friendica admin
5   */
6 require_once("include/remoteupdate.php");
7 require_once("include/enotify.php");
8 require_once("include/text.php");
9
10
11 /**
12  * @param App $a
13  */
14 function admin_post(&$a){
15
16
17         if(!is_site_admin()) {
18                 return;
19         }
20
21         // do not allow a page manager to access the admin panel at all.
22
23         if(x($_SESSION,'submanage') && intval($_SESSION['submanage']))
24                 return;
25
26
27
28         // urls
29         if ($a->argc > 1){
30                 switch ($a->argv[1]){
31                         case 'site':
32                                 admin_page_site_post($a);
33                                 break;
34                         case 'users':
35                                 admin_page_users_post($a);
36                                 break;
37                         case 'plugins':
38                                 if ($a->argc > 2 &&
39                                         is_file("addon/".$a->argv[2]."/".$a->argv[2].".php")){
40                                                 @include_once("addon/".$a->argv[2]."/".$a->argv[2].".php");
41                                                 if(function_exists($a->argv[2].'_plugin_admin_post')) {
42                                                         $func = $a->argv[2].'_plugin_admin_post';
43                                                         $func($a);
44                                                 }
45                                 }
46                                 goaway($a->get_baseurl(true) . '/admin/plugins/' . $a->argv[2] );
47                                 return; // NOTREACHED
48                                 break;
49                         case 'themes':
50                                 $theme = $a->argv[2];
51                                 if (is_file("view/theme/$theme/config.php")){
52                                         require_once("view/theme/$theme/config.php");
53                                         if (function_exists("theme_admin_post")){
54                                                 theme_admin_post($a);
55                                         }
56                                 }
57                                 info(t('Theme settings updated.'));
58                                 if(is_ajax()) return;
59
60                                 goaway($a->get_baseurl(true) . '/admin/themes/' . $theme );
61                                 return;
62                                 break;
63                         case 'logs':
64                                 admin_page_logs_post($a);
65                                 break;
66                         case 'dbsync':
67                                 admin_page_dbsync_post($a);
68                                 break;
69                         case 'update':
70                                 admin_page_remoteupdate_post($a);
71                                 break;
72                 }
73         }
74
75         goaway($a->get_baseurl(true) . '/admin' );
76         return; // NOTREACHED
77 }
78
79 /**
80  * @param App $a
81  * @return string
82  */
83 function admin_content(&$a) {
84
85         if(!is_site_admin()) {
86                 return login(false);
87         }
88
89         if(x($_SESSION,'submanage') && intval($_SESSION['submanage']))
90                 return "";
91
92         // APC deactivated, since there are problems with PHP 5.5
93         //if (function_exists("apc_delete")) {
94         //      $toDelete = new APCIterator('user', APC_ITER_VALUE);
95         //      apc_delete($toDelete);
96         //}
97
98         /**
99          * Side bar links
100          */
101
102         // array( url, name, extra css classes )
103         $aside = Array(
104                 'site'   =>     Array($a->get_baseurl(true)."/admin/site/", t("Site") , "site"),
105                 'users'  =>     Array($a->get_baseurl(true)."/admin/users/", t("Users") , "users"),
106                 'plugins'=>     Array($a->get_baseurl(true)."/admin/plugins/", t("Plugins") , "plugins"),
107                 'themes' =>     Array($a->get_baseurl(true)."/admin/themes/", t("Themes") , "themes"),
108                 'dbsync' => Array($a->get_baseurl(true)."/admin/dbsync/", t('DB updates'), "dbsync"),
109                 //'update' =>   Array($a->get_baseurl(true)."/admin/update/", t("Software Update") , "update")
110         );
111
112         /* get plugins admin page */
113
114         $r = q("SELECT name FROM `addon` WHERE `plugin_admin`=1");
115         $aside['plugins_admin']=Array();
116         foreach ($r as $h){
117                 $plugin =$h['name'];
118                 $aside['plugins_admin'][] = Array($a->get_baseurl(true)."/admin/plugins/".$plugin, $plugin, "plugin");
119                 // temp plugins with admin
120                 $a->plugins_admin[] = $plugin;
121         }
122
123         $aside['logs'] = Array($a->get_baseurl(true)."/admin/logs/", t("Logs"), "logs");
124         $aside['diagnostics_probe'] = Array($a->get_baseurl(true).'/probe/', t('probe address'), 'probe');
125         $aside['diagnostics_webfinger'] = Array($a->get_baseurl(true).'/webfinger/', t('check webfinger'), 'webfinger');
126
127         $t = get_markup_template("admin_aside.tpl");
128         $a->page['aside'] .= replace_macros( $t, array(
129                         '$admin' => $aside,
130                         '$admtxt' => t('Admin'),
131                         '$plugadmtxt' => t('Plugin Features'),
132                         '$logtxt' => t('Logs'),
133                         '$diagnosticstxt' => t('diagnostics'),
134                         '$h_pending' => t('User registrations waiting for confirmation'),
135                         '$admurl'=> $a->get_baseurl(true)."/admin/"
136         ));
137
138
139
140         /**
141          * Page content
142          */
143         $o = '';
144         // urls
145         if ($a->argc > 1){
146                 switch ($a->argv[1]){
147                         case 'site':
148                                 $o = admin_page_site($a);
149                                 break;
150                         case 'users':
151                                 $o = admin_page_users($a);
152                                 break;
153                         case 'plugins':
154                                 $o = admin_page_plugins($a);
155                                 break;
156                         case 'themes':
157                                 $o = admin_page_themes($a);
158                                 break;
159                         case 'logs':
160                                 $o = admin_page_logs($a);
161                                 break;
162                         case 'dbsync':
163                                 $o = admin_page_dbsync($a);
164                                 break;
165                         case 'update':
166                                 $o = admin_page_remoteupdate($a);
167                                 break;
168                         default:
169                                 notice( t("Item not found.") );
170                 }
171         } else {
172                 $o = admin_page_summary($a);
173         }
174
175         if(is_ajax()) {
176                 echo $o;
177                 killme();
178                 return '';
179         } else {
180                 return $o;
181         }
182 }
183
184
185 /**
186  * Admin Summary Page
187  * @param App $a
188  * @return string
189  */
190 function admin_page_summary(&$a) {
191         $r = q("SELECT `page-flags`, COUNT(uid) as `count` FROM `user` GROUP BY `page-flags`");
192         $accounts = Array(
193                 Array( t('Normal Account'), 0),
194                 Array( t('Soapbox Account'), 0),
195                 Array( t('Community/Celebrity Account'), 0),
196                 Array( t('Automatic Friend Account'), 0),
197                 Array( t('Blog Account'), 0),
198                 Array( t('Private Forum'), 0)
199         );
200
201         $users=0;
202         foreach ($r as $u){ $accounts[$u['page-flags']][1] = $u['count']; $users+= $u['count']; }
203
204         logger('accounts: ' . print_r($accounts,true),LOGGER_DATA);
205
206         $r = q("SELECT COUNT(id) as `count` FROM `register`");
207         $pending = $r[0]['count'];
208
209         $r = q("select count(*) as total from deliverq where 1");
210         $deliverq = (($r) ? $r[0]['total'] : 0);
211
212         $r = q("select count(*) as total from queue where 1");
213         $queue = (($r) ? $r[0]['total'] : 0);
214
215         // We can do better, but this is a quick queue status
216
217         $queues = array( 'label' => t('Message queues'), 'deliverq' => $deliverq, 'queue' => $queue );
218
219
220         $t = get_markup_template("admin_summary.tpl");
221         return replace_macros($t, array(
222                 '$title' => t('Administration'),
223                 '$page' => t('Summary'),
224                 '$queues' => $queues,
225                 '$users' => Array( t('Registered users'), $users),
226                 '$accounts' => $accounts,
227                 '$pending' => Array( t('Pending registrations'), $pending),
228                 '$version' => Array( t('Version'), FRIENDICA_VERSION),
229                 '$platform' => FRIENDICA_PLATFORM,
230                 '$codename' => FRIENDICA_CODENAME,
231                 '$build' =>  get_config('system','build'),
232                 '$plugins' => Array( t('Active plugins'), $a->plugins )
233         ));
234 }
235
236
237 /**
238  * Admin Site Page
239  *  @param App $a
240  */
241 function admin_page_site_post(&$a){
242         if (!x($_POST,"page_site")){
243                 return;
244         }
245
246         check_form_security_token_redirectOnErr('/admin/site', 'admin_site');
247
248         // relocate
249         if (x($_POST,'relocate') && x($_POST,'relocate_url') && $_POST['relocate_url']!=""){
250                 $new_url = $_POST['relocate_url'];
251                 $new_url = rtrim($new_url,"/");
252
253                 $parsed = @parse_url($new_url);
254                 if (!$parsed || (!x($parsed,'host') || !x($parsed,'scheme'))) {
255                         notice(t("Can not parse base url. Must have at least <scheme>://<domain>"));
256                         goaway($a->get_baseurl(true) . '/admin/site' );
257                 }
258
259                 /* steps:
260                  * replace all "baseurl" to "new_url" in config, profile, term, items and contacts
261                  * send relocate for every local user
262                  * */
263
264                 $old_url = $a->get_baseurl(true);
265
266                 function update_table($table_name, $fields, $old_url, $new_url) {
267                         global $db, $a;
268
269                         $dbold = dbesc($old_url);
270                         $dbnew = dbesc($new_url);
271
272                         $upd = array();
273                         foreach ($fields as $f) {
274                                 $upd[] = "`$f` = REPLACE(`$f`, '$dbold', '$dbnew')";
275                         }
276
277                         $upds = implode(", ", $upd);
278
279
280
281                         $q = sprintf("UPDATE %s SET %s;", $table_name, $upds);
282                         $r = q($q);
283                         if (!$r) {
284                                 notice( "Failed updating '$table_name': " . $db->error );
285                                 goaway($a->get_baseurl(true) . '/admin/site' );
286                         }
287                 }
288
289                 // update tables
290                 update_table("profile", array('photo', 'thumb'), $old_url, $new_url);
291                 update_table("term", array('url'), $old_url, $new_url);
292                 update_table("contact", array('photo','thumb','micro','url','nurl','request','notify','poll','confirm','poco'), $old_url, $new_url);
293                 update_table("unique_contacts", array('url'), $old_url, $new_url);
294                 update_table("item", array('owner-link','owner-avatar','author-name','author-link','author-avatar','body','plink','tag'), $old_url, $new_url);
295
296                 // update config
297                 $a->set_baseurl($new_url);
298                 set_config('system','url',$new_url);
299
300                 // send relocate
301                 $users = q("SELECT uid FROM user WHERE account_removed = 0 AND account_expired = 0");
302
303                 foreach ($users as $user) {
304                         proc_run('php', 'include/notifier.php', 'relocate', $user['uid']);
305                 }
306
307                 info("Relocation started. Could take a while to complete.");
308
309                 goaway($a->get_baseurl(true) . '/admin/site' );
310         }
311         // end relocate
312
313         $sitename               =       ((x($_POST,'sitename'))                 ? notags(trim($_POST['sitename']))              : '');
314         $hostname               =       ((x($_POST,'hostname'))                 ? notags(trim($_POST['hostname']))              : '');
315         $sender_email           =       ((x($_POST,'sender_email'))             ? notags(trim($_POST['sender_email']))          : '');
316         $banner                 =       ((x($_POST,'banner'))                   ? trim($_POST['banner'])                        : false);
317         $shortcut_icon          =       ((x($_POST,'shortcut_icon'))            ? notags(trim($_POST['shortcut_icon']))         : '');
318         $touch_icon             =       ((x($_POST,'touch_icon'))               ? notags(trim($_POST['touch_icon']))            : '');
319         $info                   =       ((x($_POST,'info'))                     ? trim($_POST['info'])                  : false);
320         $language               =       ((x($_POST,'language'))                 ? notags(trim($_POST['language']))              : '');
321         $theme                  =       ((x($_POST,'theme'))                    ? notags(trim($_POST['theme']))                 : '');
322         $theme_mobile           =       ((x($_POST,'theme_mobile'))             ? notags(trim($_POST['theme_mobile']))          : '');
323         $maximagesize           =       ((x($_POST,'maximagesize'))             ? intval(trim($_POST['maximagesize']))          :  0);
324         $maximagelength         =       ((x($_POST,'maximagelength'))           ? intval(trim($_POST['maximagelength']))        :  MAX_IMAGE_LENGTH);
325         $jpegimagequality       =       ((x($_POST,'jpegimagequality'))         ? intval(trim($_POST['jpegimagequality']))      :  JPEG_QUALITY);
326
327
328         $register_policy        =       ((x($_POST,'register_policy'))          ? intval(trim($_POST['register_policy']))       :  0);
329         $daily_registrations    =       ((x($_POST,'max_daily_registrations'))  ? intval(trim($_POST['max_daily_registrations']))       :0);
330         $abandon_days           =       ((x($_POST,'abandon_days'))             ? intval(trim($_POST['abandon_days']))          :  0);
331
332         $register_text          =       ((x($_POST,'register_text'))            ? notags(trim($_POST['register_text']))         : '');
333
334         $allowed_sites          =       ((x($_POST,'allowed_sites'))            ? notags(trim($_POST['allowed_sites']))         : '');
335         $allowed_email          =       ((x($_POST,'allowed_email'))            ? notags(trim($_POST['allowed_email']))         : '');
336         $block_public           =       ((x($_POST,'block_public'))             ? True                                          : False);
337         $force_publish          =       ((x($_POST,'publish_all'))              ? True                                          : False);
338         $global_directory       =       ((x($_POST,'directory_submit_url'))     ? notags(trim($_POST['directory_submit_url']))  : '');
339         $thread_allow           =       ((x($_POST,'thread_allow'))             ? True                                          : False);
340         $newuser_private                =       ((x($_POST,'newuser_private'))          ? True                                          : False);
341         $enotify_no_content             =       ((x($_POST,'enotify_no_content'))       ? True                                          : False);
342         $private_addons                 =       ((x($_POST,'private_addons'))           ? True                                          : False);
343         $disable_embedded               =       ((x($_POST,'disable_embedded'))         ? True                                          : False);
344         $allow_users_remote_self        =       ((x($_POST,'allow_users_remote_self'))          ? True                                          : False);
345
346         $no_multi_reg           =       ((x($_POST,'no_multi_reg'))             ? True                                          : False);
347         $no_openid              =       !((x($_POST,'no_openid'))               ? True                                          : False);
348         $no_regfullname         =       !((x($_POST,'no_regfullname'))          ? True                                          : False);
349         $no_utf                 =       !((x($_POST,'no_utf'))                  ? True                                          : False);
350         $community_page_style   =       ((x($_POST,'community_page_style'))     ? intval(trim($_POST['community_page_style']))  : 0);
351         $max_author_posts_community_page        =       ((x($_POST,'max_author_posts_community_page'))  ? intval(trim($_POST['max_author_posts_community_page']))       : 0);
352
353         $verifyssl              =       ((x($_POST,'verifyssl'))                ? True                                          : False);
354         $proxyuser              =       ((x($_POST,'proxyuser'))                ? notags(trim($_POST['proxyuser']))             : '');
355         $proxy                  =       ((x($_POST,'proxy'))                    ? notags(trim($_POST['proxy']))                 : '');
356         $timeout                =       ((x($_POST,'timeout'))                  ? intval(trim($_POST['timeout']))               : 60);
357         $delivery_interval      =       ((x($_POST,'delivery_interval'))        ? intval(trim($_POST['delivery_interval']))     : 0);
358         $poll_interval          =       ((x($_POST,'poll_interval'))            ? intval(trim($_POST['poll_interval']))         : 0);
359         $maxloadavg             =       ((x($_POST,'maxloadavg'))               ? intval(trim($_POST['maxloadavg']))            : 50);
360         $maxloadavg_frontend    =       ((x($_POST,'maxloadavg_frontend'))      ? intval(trim($_POST['maxloadavg_frontend']))   : 50);
361         $dfrn_only              =       ((x($_POST,'dfrn_only'))                ? True                                          : False);
362         $ostatus_disabled       =       !((x($_POST,'ostatus_disabled'))        ? True                                          : False);
363         $ostatus_poll_interval  =       ((x($_POST,'ostatus_poll_interval'))    ? intval(trim($_POST['ostatus_poll_interval'])) :  0);
364         $diaspora_enabled       =       ((x($_POST,'diaspora_enabled'))         ? True                                          : False);
365         $ssl_policy             =       ((x($_POST,'ssl_policy'))               ? intval($_POST['ssl_policy'])                  : 0);
366         $force_ssl              =       ((x($_POST,'force_ssl'))                ? True                                          : False);
367         $old_share              =       ((x($_POST,'old_share'))                ? True                                          : False);
368         $hide_help              =       ((x($_POST,'hide_help'))                ? True                                          : False);
369         $suppress_language      =       ((x($_POST,'suppress_language'))        ? True                                          : False);
370         $suppress_tags          =       ((x($_POST,'suppress_tags'))            ? True                                          : False);
371         $use_fulltext_engine    =       ((x($_POST,'use_fulltext_engine'))      ? True                                          : False);
372         $itemcache              =       ((x($_POST,'itemcache'))                ? notags(trim($_POST['itemcache']))             : '');
373         $itemcache_duration     =       ((x($_POST,'itemcache_duration'))       ? intval($_POST['itemcache_duration'])          : 0);
374         $max_comments           =       ((x($_POST,'max_comments'))             ? intval($_POST['max_comments'])                : 0);
375         $lockpath               =       ((x($_POST,'lockpath'))                 ? notags(trim($_POST['lockpath']))              : '');
376         $temppath               =       ((x($_POST,'temppath'))                 ? notags(trim($_POST['temppath']))              : '');
377         $basepath               =       ((x($_POST,'basepath'))                 ? notags(trim($_POST['basepath']))              : '');
378         $singleuser             =       ((x($_POST,'singleuser'))               ? notags(trim($_POST['singleuser']))            : '');
379         $proxy_disabled         =       ((x($_POST,'proxy_disabled'))           ? True                                          : False);
380         $old_pager              =       ((x($_POST,'old_pager'))                ? True                                          : False);
381         $only_tag_search        =       ((x($_POST,'only_tag_search'))          ? True                                          : False);
382
383         if($ssl_policy != intval(get_config('system','ssl_policy'))) {
384                 if($ssl_policy == SSL_POLICY_FULL) {
385                         q("update `contact` set
386                                 `url`     = replace(`url`    , 'http:' , 'https:'),
387                                 `photo`   = replace(`photo`  , 'http:' , 'https:'),
388                                 `thumb`   = replace(`thumb`  , 'http:' , 'https:'),
389                                 `micro`   = replace(`micro`  , 'http:' , 'https:'),
390                                 `request` = replace(`request`, 'http:' , 'https:'),
391                                 `notify`  = replace(`notify` , 'http:' , 'https:'),
392                                 `poll`    = replace(`poll`   , 'http:' , 'https:'),
393                                 `confirm` = replace(`confirm`, 'http:' , 'https:'),
394                                 `poco`    = replace(`poco`   , 'http:' , 'https:')
395                                 where `self` = 1"
396                         );
397                         q("update `profile` set
398                                 `photo`   = replace(`photo`  , 'http:' , 'https:'),
399                                 `thumb`   = replace(`thumb`  , 'http:' , 'https:')
400                                 where 1 "
401                         );
402                 }
403                 elseif($ssl_policy == SSL_POLICY_SELFSIGN) {
404                         q("update `contact` set
405                                 `url`     = replace(`url`    , 'https:' , 'http:'),
406                                 `photo`   = replace(`photo`  , 'https:' , 'http:'),
407                                 `thumb`   = replace(`thumb`  , 'https:' , 'http:'),
408                                 `micro`   = replace(`micro`  , 'https:' , 'http:'),
409                                 `request` = replace(`request`, 'https:' , 'http:'),
410                                 `notify`  = replace(`notify` , 'https:' , 'http:'),
411                                 `poll`    = replace(`poll`   , 'https:' , 'http:'),
412                                 `confirm` = replace(`confirm`, 'https:' , 'http:'),
413                                 `poco`    = replace(`poco`   , 'https:' , 'http:')
414                                 where `self` = 1"
415                         );
416                         q("update `profile` set
417                                 `photo`   = replace(`photo`  , 'https:' , 'http:'),
418                                 `thumb`   = replace(`thumb`  , 'https:' , 'http:')
419                                 where 1 "
420                         );
421                 }
422         }
423         set_config('system','ssl_policy',$ssl_policy);
424         set_config('system','delivery_interval',$delivery_interval);
425         set_config('system','poll_interval',$poll_interval);
426         set_config('system','maxloadavg',$maxloadavg);
427         set_config('system','maxloadavg_frontend',$maxloadavg_frontend);
428         set_config('config','sitename',$sitename);
429         set_config('config','hostname',$hostname);
430         set_config('config','sender_email', $sender_email);
431         set_config('system','suppress_language',$suppress_language);
432         set_config('system','suppress_tags',$suppress_tags);
433         set_config('system','shortcut_icon',$shortcut_icon);
434         set_config('system','touch_icon',$touch_icon);
435         if ($banner==""){
436                 // don't know why, but del_config doesn't work...
437                 q("DELETE FROM `config` WHERE `cat` = '%s' AND `k` = '%s' LIMIT 1",
438                         dbesc("system"),
439                         dbesc("banner")
440                 );
441         } else {
442                 set_config('system','banner', $banner);
443         }
444         if ($info=="") {
445                 del_config('config','info');
446         } else {
447                 set_config('config','info',$info);
448         }
449         set_config('system','language', $language);
450         set_config('system','theme', $theme);
451         if ( $theme_mobile === '---' ) {
452                 del_config('system','mobile-theme');
453         } else {
454                 set_config('system','mobile-theme', $theme_mobile);
455                 }
456                 if ( $singleuser === '---' ) {
457                         del_config('system','singleuser');
458                 } else {
459                         set_config('system','singleuser', $singleuser);
460                 }
461         set_config('system','maximagesize', $maximagesize);
462         set_config('system','max_image_length', $maximagelength);
463         set_config('system','jpeg_quality', $jpegimagequality);
464
465         set_config('config','register_policy', $register_policy);
466         set_config('system','max_daily_registrations', $daily_registrations);
467         set_config('system','account_abandon_days', $abandon_days);
468         set_config('config','register_text', $register_text);
469         set_config('system','allowed_sites', $allowed_sites);
470         set_config('system','allowed_email', $allowed_email);
471         set_config('system','block_public', $block_public);
472         set_config('system','publish_all', $force_publish);
473         if ($global_directory==""){
474                 // don't know why, but del_config doesn't work...
475                 q("DELETE FROM `config` WHERE `cat` = '%s' AND `k` = '%s' LIMIT 1",
476                         dbesc("system"),
477                         dbesc("directory_submit_url")
478                 );
479         } else {
480                 set_config('system','directory_submit_url', $global_directory);
481         }
482         set_config('system','thread_allow', $thread_allow);
483         set_config('system','newuser_private', $newuser_private);
484         set_config('system','enotify_no_content', $enotify_no_content);
485         set_config('system','disable_embedded', $disable_embedded);
486         set_config('system','allow_users_remote_self', $allow_users_remote_self);
487
488         set_config('system','block_extended_register', $no_multi_reg);
489         set_config('system','no_openid', $no_openid);
490         set_config('system','no_regfullname', $no_regfullname);
491         set_config('system','community_page_style', $community_page_style);
492         set_config('system','max_author_posts_community_page', $max_author_posts_community_page);
493         set_config('system','no_utf', $no_utf);
494         set_config('system','verifyssl', $verifyssl);
495         set_config('system','proxyuser', $proxyuser);
496         set_config('system','proxy', $proxy);
497         set_config('system','curl_timeout', $timeout);
498         set_config('system','dfrn_only', $dfrn_only);
499         set_config('system','ostatus_disabled', $ostatus_disabled);
500         set_config('system','ostatus_poll_interval', $ostatus_poll_interval);
501         set_config('system','diaspora_enabled', $diaspora_enabled);
502         set_config('config','private_addons', $private_addons);
503
504         set_config('system','force_ssl', $force_ssl);
505         set_config('system','old_share', $old_share);
506         set_config('system','hide_help', $hide_help);
507         set_config('system','use_fulltext_engine', $use_fulltext_engine);
508         set_config('system','itemcache', $itemcache);
509         set_config('system','itemcache_duration', $itemcache_duration);
510         set_config('system','max_comments', $max_comments);
511         set_config('system','lockpath', $lockpath);
512         set_config('system','temppath', $temppath);
513         set_config('system','basepath', $basepath);
514         set_config('system','proxy_disabled', $proxy_disabled);
515         set_config('system','old_pager', $old_pager);
516         set_config('system','only_tag_search', $only_tag_search);
517
518         info( t('Site settings updated.') . EOL);
519         goaway($a->get_baseurl(true) . '/admin/site' );
520         return; // NOTREACHED
521
522 }
523
524 /**
525  * @param  App $a
526  * @return string
527  */
528 function admin_page_site(&$a) {
529
530         /* Installed langs */
531         $lang_choices = array();
532         $langs = glob('view/*/strings.php');
533
534         if(is_array($langs) && count($langs)) {
535                 if(! in_array('view/en/strings.php',$langs))
536                         $langs[] = 'view/en/';
537                 asort($langs);
538                 foreach($langs as $l) {
539                         $t = explode("/",$l);
540                         $lang_choices[$t[1]] = $t[1];
541                 }
542         }
543
544         /* Installed themes */
545         $theme_choices = array();
546         $theme_choices_mobile = array();
547         $theme_choices_mobile["---"] = t("No special theme for mobile devices");
548         $files = glob('view/theme/*');
549         if($files) {
550                 foreach($files as $file) {
551                         $f = basename($file);
552                         $theme_name = ((file_exists($file . '/experimental')) ?  sprintf("%s - \x28Experimental\x29", $f) : $f);
553                         if (file_exists($file . '/mobile')) {
554                                 $theme_choices_mobile[$f] = $theme_name;
555                         }
556                 else {
557                                 $theme_choices[$f] = $theme_name;
558                         }
559                 }
560                 }
561
562                 /* Community page style */
563                 $community_page_style_choices = array(
564                         CP_NO_COMMUNITY_PAGE => t("No community page"),
565                         CP_USERS_ON_SERVER => t("Public postings from users of this site"),
566                         CP_GLOBAL_COMMUNITY => t("Global community page")
567                         );
568
569                 /* OStatus conversation poll choices */
570                 $ostatus_poll_choices = array(
571                         "-2" => t("Never"),
572                         "-1" => t("At post arrival"),
573                         "0" => t("Frequently"),
574                         "60" => t("Hourly"),
575                         "720" => t("Twice daily"),
576                         "1440" => t("Daily")
577                         );
578
579                 /* get user names to make the install a personal install of X */
580                 $user_names = array();
581                 $user_names['---'] = t('Multi user instance');
582                 $users = q("SELECT username, nickname FROM `user`");
583                 foreach ($users as $user) {
584                         $user_names[$user['nickname']] = $user['username'];
585                 }
586
587         /* Banner */
588         $banner = get_config('system','banner');
589         if($banner == false)
590                 $banner = '<a href="http://friendica.com"><img id="logo-img" src="images/friendica-32.png" alt="logo" /></a><span id="logo-text"><a href="http://friendica.com">Friendica</a></span>';
591         $banner = htmlspecialchars($banner);
592         $info = get_config('config','info');
593         $info = htmlspecialchars($info);
594
595         // Automatically create temporary paths
596         get_temppath();
597         get_lockpath();
598         get_itemcachepath();
599
600         //echo "<pre>"; var_dump($lang_choices); die("</pre>");
601
602         /* Register policy */
603         $register_choices = Array(
604                 REGISTER_CLOSED => t("Closed"),
605                 REGISTER_APPROVE => t("Requires approval"),
606                 REGISTER_OPEN => t("Open")
607         );
608
609         $ssl_choices = array(
610                 SSL_POLICY_NONE => t("No SSL policy, links will track page SSL state"),
611                 SSL_POLICY_FULL => t("Force all links to use SSL"),
612                 SSL_POLICY_SELFSIGN => t("Self-signed certificate, use SSL for local links only (discouraged)")
613         );
614
615         if ($a->config['hostname'] == "")
616                 $a->config['hostname'] = $a->get_hostname();
617
618         $t = get_markup_template("admin_site.tpl");
619         return replace_macros($t, array(
620                 '$title' => t('Administration'),
621                 '$page' => t('Site'),
622                 '$submit' => t('Save Settings'),
623                 '$registration' => t('Registration'),
624                 '$upload' => t('File upload'),
625                 '$corporate' => t('Policies'),
626                 '$advanced' => t('Advanced'),
627                 '$performance' => t('Performance'),
628                 '$relocate'=> t('Relocate - WARNING: advanced function. Could make this server unreachable.'),
629                 '$baseurl' => $a->get_baseurl(true),
630                 // name, label, value, help string, extra data...
631                 '$sitename'             => array('sitename', t("Site name"), htmlentities($a->config['sitename'], ENT_QUOTES), 'UTF-8'),
632                 '$hostname'             => array('hostname', t("Host name"), $a->config['hostname'], ""),
633                 '$sender_email'         => array('sender_email', t("Sender Email"), $a->config['sender_email'], "The email address your server shall use to send notification emails from.", "", "", "email"),
634                 '$banner'               => array('banner', t("Banner/Logo"), $banner, ""),
635                 '$shortcut_icon'        => array('shortcut_icon', t("Shortcut icon"), get_config('system','shortcut_icon'),  "Link to an icon that will be used for browsers."),
636                 '$touch_icon'           => array('touch_icon', t("Touch icon"), get_config('system','touch_icon'),  "Link to an icon that will be used for tablets and mobiles."),
637                 '$info' => array('info',t('Additional Info'), $info, t('For public servers: you can add additional information here that will be listed at dir.friendica.com/siteinfo.')),
638                 '$language'             => array('language', t("System language"), get_config('system','language'), "", $lang_choices),
639                 '$theme'                => array('theme', t("System theme"), get_config('system','theme'), t("Default system theme - may be over-ridden by user profiles - <a href='#' id='cnftheme'>change theme settings</a>"), $theme_choices),
640                 '$theme_mobile'         => array('theme_mobile', t("Mobile system theme"), get_config('system','mobile-theme'), t("Theme for mobile devices"), $theme_choices_mobile),
641                 '$ssl_policy'           => array('ssl_policy', t("SSL link policy"), (string) intval(get_config('system','ssl_policy')), t("Determines whether generated links should be forced to use SSL"), $ssl_choices),
642                 '$force_ssl'            => array('force_ssl', t("Force SSL"), get_config('system','force_ssl'), t("Force all Non-SSL requests to SSL - Attention: on some systems it could lead to endless loops.")),
643                 '$old_share'            => array('old_share', t("Old style 'Share'"), get_config('system','old_share'), t("Deactivates the bbcode element 'share' for repeating items.")),
644                 '$hide_help'            => array('hide_help', t("Hide help entry from navigation menu"), get_config('system','hide_help'), t("Hides the menu entry for the Help pages from the navigation menu. You can still access it calling /help directly.")),
645                 '$singleuser'           => array('singleuser', t("Single user instance"), get_config('system','singleuser'), t("Make this instance multi-user or single-user for the named user"), $user_names),
646                 '$maximagesize'         => array('maximagesize', t("Maximum image size"), get_config('system','maximagesize'), t("Maximum size in bytes of uploaded images. Default is 0, which means no limits.")),
647                 '$maximagelength'               => array('maximagelength', t("Maximum image length"), get_config('system','max_image_length'), t("Maximum length in pixels of the longest side of uploaded images. Default is -1, which means no limits.")),
648                 '$jpegimagequality'             => array('jpegimagequality', t("JPEG image quality"), get_config('system','jpeg_quality'), t("Uploaded JPEGS will be saved at this quality setting [0-100]. Default is 100, which is full quality.")),
649
650                 '$register_policy'      => array('register_policy', t("Register policy"), $a->config['register_policy'], "", $register_choices),
651                 '$daily_registrations'  => array('max_daily_registrations', t("Maximum Daily Registrations"), get_config('system', 'max_daily_registrations'), t("If registration is permitted above, this sets the maximum number of new user registrations to accept per day.  If register is set to closed, this setting has no effect.")),
652                 '$register_text'        => array('register_text', t("Register text"), htmlentities($a->config['register_text'], ENT_QUOTES, 'UTF-8'), t("Will be displayed prominently on the registration page.")),
653                 '$abandon_days'         => array('abandon_days', t('Accounts abandoned after x days'), get_config('system','account_abandon_days'), t('Will not waste system resources polling external sites for abandonded accounts. Enter 0 for no time limit.')),
654                 '$allowed_sites'        => array('allowed_sites', t("Allowed friend domains"), get_config('system','allowed_sites'), t("Comma separated list of domains which are allowed to establish friendships with this site. Wildcards are accepted. Empty to allow any domains")),
655                 '$allowed_email'        => array('allowed_email', t("Allowed email domains"), get_config('system','allowed_email'), t("Comma separated list of domains which are allowed in email addresses for registrations to this site. Wildcards are accepted. Empty to allow any domains")),
656                 '$block_public'         => array('block_public', t("Block public"), get_config('system','block_public'), t("Check to block public access to all otherwise public personal pages on this site unless you are currently logged in.")),
657                 '$force_publish'        => array('publish_all', t("Force publish"), get_config('system','publish_all'), t("Check to force all profiles on this site to be listed in the site directory.")),
658                 '$global_directory'     => array('directory_submit_url', t("Global directory update URL"), get_config('system','directory_submit_url'), t("URL to update the global directory. If this is not set, the global directory is completely unavailable to the application.")),
659                 '$thread_allow'         => array('thread_allow', t("Allow threaded items"), get_config('system','thread_allow'), t("Allow infinite level threading for items on this site.")),
660                 '$newuser_private'      => array('newuser_private', t("Private posts by default for new users"), get_config('system','newuser_private'), t("Set default post permissions for all new members to the default privacy group rather than public.")),
661                 '$enotify_no_content'   => array('enotify_no_content', t("Don't include post content in email notifications"), get_config('system','enotify_no_content'), t("Don't include the content of a post/comment/private message/etc. in the email notifications that are sent out from this site, as a privacy measure.")),
662                 '$private_addons'       => array('private_addons', t("Disallow public access to addons listed in the apps menu."), get_config('config','private_addons'), t("Checking this box will restrict addons listed in the apps menu to members only.")),
663                 '$disable_embedded'     => array('disable_embedded', t("Don't embed private images in posts"), get_config('system','disable_embedded'), t("Don't replace locally-hosted private photos in posts with an embedded copy of the image. This means that contacts who receive posts containing private photos will have to authenticate and load each image, which may take a while.")),
664                 '$allow_users_remote_self'      => array('allow_users_remote_self', t('Allow Users to set remote_self'), get_config('system','allow_users_remote_self'), t('With checking this, every user is allowed to mark every contact as a remote_self in the repair contact dialog. Setting this flag on a contact causes mirroring every posting of that contact in the users stream.')),
665                 '$no_multi_reg'         => array('no_multi_reg', t("Block multiple registrations"),  get_config('system','block_extended_register'), t("Disallow users to register additional accounts for use as pages.")),
666                 '$no_openid'            => array('no_openid', t("OpenID support"), !get_config('system','no_openid'), t("OpenID support for registration and logins.")),
667                 '$no_regfullname'       => array('no_regfullname', t("Fullname check"), !get_config('system','no_regfullname'), t("Force users to register with a space between firstname and lastname in Full name, as an antispam measure")),
668                 '$no_utf'               => array('no_utf', t("UTF-8 Regular expressions"), !get_config('system','no_utf'), t("Use PHP UTF8 regular expressions")),
669                 '$community_page_style' => array('community_page_style', t("Community Page Style"), get_config('system','community_page_style'), t("Type of community page to show. 'Global community' shows every public posting from an open distributed network that arrived on this server."), $community_page_style_choices),
670                 '$max_author_posts_community_page' => array('max_author_posts_community_page', t("Posts per user on community page"), get_config('system','max_author_posts_community_page'), t("The maximum number of posts per user on the community page. (Not valid for 'Global Community')")),
671                 '$ostatus_disabled'     => array('ostatus_disabled', t("Enable OStatus support"), !get_config('system','ostatus_disabled'), t("Provide built-in OStatus \x28StatusNet, GNU Social etc.\x29 compatibility. All communications in OStatus are public, so privacy warnings will be occasionally displayed.")),
672                 '$ostatus_poll_interval'        => array('ostatus_poll_interval', t("OStatus conversation completion interval"), (string) intval(get_config('system','ostatus_poll_interval')), t("How often shall the poller check for new entries in OStatus conversations? This can be a very ressource task."), $ostatus_poll_choices),
673                 '$diaspora_enabled'     => array('diaspora_enabled', t("Enable Diaspora support"), get_config('system','diaspora_enabled'), t("Provide built-in Diaspora network compatibility.")),
674                 '$dfrn_only'            => array('dfrn_only', t('Only allow Friendica contacts'), get_config('system','dfrn_only'), t("All contacts must use Friendica protocols. All other built-in communication protocols disabled.")),
675                 '$verifyssl'            => array('verifyssl', t("Verify SSL"), get_config('system','verifyssl'), t("If you wish, you can turn on strict certificate checking. This will mean you cannot connect (at all) to self-signed SSL sites.")),
676                 '$proxyuser'            => array('proxyuser', t("Proxy user"), get_config('system','proxyuser'), ""),
677                 '$proxy'                => array('proxy', t("Proxy URL"), get_config('system','proxy'), ""),
678                 '$timeout'              => array('timeout', t("Network timeout"), (x(get_config('system','curl_timeout'))?get_config('system','curl_timeout'):60), t("Value is in seconds. Set to 0 for unlimited (not recommended).")),
679                 '$delivery_interval'    => array('delivery_interval', t("Delivery interval"), (x(get_config('system','delivery_interval'))?get_config('system','delivery_interval'):2), t("Delay background delivery processes by this many seconds to reduce system load. Recommend: 4-5 for shared hosts, 2-3 for virtual private servers. 0-1 for large dedicated servers.")),
680                 '$poll_interval'        => array('poll_interval', t("Poll interval"), (x(get_config('system','poll_interval'))?get_config('system','poll_interval'):2), t("Delay background polling processes by this many seconds to reduce system load. If 0, use delivery interval.")),
681                 '$maxloadavg'           => array('maxloadavg', t("Maximum Load Average"), ((intval(get_config('system','maxloadavg')) > 0)?get_config('system','maxloadavg'):50), t("Maximum system load before delivery and poll processes are deferred - default 50.")),
682                 '$maxloadavg_frontend'  => array('maxloadavg_frontend', t("Maximum Load Average (Frontend)"), ((intval(get_config('system','maxloadavg_frontend')) > 0)?get_config('system','maxloadavg_frontend'):50), t("Maximum system load before the frontend quits service - default 50.")),
683
684                 '$use_fulltext_engine'  => array('use_fulltext_engine', t("Use MySQL full text engine"), get_config('system','use_fulltext_engine'), t("Activates the full text engine. Speeds up search - but can only search for four and more characters.")),
685                 '$suppress_language'    => array('suppress_language', t("Suppress Language"), get_config('system','suppress_language'), t("Suppress language information in meta information about a posting.")),
686                 '$suppress_tags'        => array('suppress_tags', t("Suppress Tags"), get_config('system','suppress_tags'), t("Suppress showing a list of hashtags at the end of the posting.")),
687                 '$itemcache'            => array('itemcache', t("Path to item cache"), get_config('system','itemcache'), "The item caches buffers generated bbcode and external images."),
688                 '$itemcache_duration'   => array('itemcache_duration', t("Cache duration in seconds"), get_config('system','itemcache_duration'), t("How long should the cache files be hold? Default value is 86400 seconds (One day). To disable the item cache, set the value to -1.")),
689                 '$max_comments'         => array('max_comments', t("Maximum numbers of comments per post"), get_config('system','max_comments'), t("How much comments should be shown for each post? Default value is 100.")),
690                 '$lockpath'             => array('lockpath', t("Path for lock file"), get_config('system','lockpath'), "The lock file is used to avoid multiple pollers at one time. Only define a folder here."),
691                 '$temppath'             => array('temppath', t("Temp path"), get_config('system','temppath'), "If you have a restricted system where the webserver can't access the system temp path, enter another path here."),
692                 '$basepath'             => array('basepath', t("Base path to installation"), get_config('system','basepath'), "If the system cannot detect the correct path to your installation, enter the correct path here. This setting should only be set if you are using a restricted system and symbolic links to your webroot."),
693                 '$proxy_disabled'       => array('proxy_disabled', t("Disable picture proxy"), get_config('system','proxy_disabled'), t("The picture proxy increases performance and privacy. It shouldn't be used on systems with very low bandwith.")),
694                 '$old_pager'            => array('old_pager', t("Enable old style pager"), get_config('system','old_pager'), t("The old style pager has page numbers but slows down massively the page speed.")),
695                 '$only_tag_search'      => array('only_tag_search', t("Only search in tags"), get_config('system','only_tag_search'), t("On large systems the text search can slow down the system extremely.")),
696
697                 '$relocate_url'     => array('relocate_url', t("New base url"), $a->get_baseurl(), "Change base url for this server. Sends relocate message to all DFRN contacts of all users."),
698         '$form_security_token' => get_form_security_token("admin_site")
699
700         ));
701
702 }
703
704
705 function admin_page_dbsync(&$a) {
706
707         $o = '';
708
709         if($a->argc > 3 && intval($a->argv[3]) && $a->argv[2] === 'mark') {
710                 set_config('database', 'update_' . intval($a->argv[3]), 'success');
711                 $curr = get_config('system','build');
712                 if(intval($curr) == intval($a->argv[3]))
713                         set_config('system','build',intval($curr) + 1);
714                 info( t('Update has been marked successful') . EOL);
715                 goaway($a->get_baseurl(true) . '/admin/dbsync');
716         }
717
718         if(($a->argc > 2) AND (intval($a->argv[2]) OR ($a->argv[2] === 'check'))) {
719                 require_once("include/dbstructure.php");
720                 $retval = update_structure(false, true);
721                 if (!$retval) {
722                         $o .= sprintf(t("Database structure update %s was successfully applied."), DB_UPDATE_VERSION)."<br />";
723                         set_config('database', 'dbupdate_'.DB_UPDATE_VERSION, 'success');
724                 } else
725                         $o .= sprintf(t("Executing of database structure update %s failed with error: %s"),
726                                         DB_UPDATE_VERSION, $retval)."<br />";
727                 if ($a->argv[2] === 'check')
728                         return $o;
729         }
730
731         if ($a->argc > 2 && intval($a->argv[2])) {
732                 require_once('update.php');
733                 $func = 'update_' . intval($a->argv[2]);
734                 if(function_exists($func)) {
735                         $retval = $func();
736                         if($retval === UPDATE_FAILED) {
737                                 $o .= sprintf(t("Executing %s failed with error: %s"), $func, $retval);
738                         }
739                         elseif($retval === UPDATE_SUCCESS) {
740                                 $o .= sprintf(t('Update %s was successfully applied.', $func));
741                                 set_config('database',$func, 'success');
742                         }
743                         else
744                                 $o .= sprintf(t('Update %s did not return a status. Unknown if it succeeded.'), $func);
745                 } else {
746                         $o .= sprintf(t('There was no additional update function %s that needed to be called.'), $func)."<br />";
747                         set_config('database',$func, 'success');
748                 }
749                 return $o;
750         }
751
752         $failed = array();
753         $r = q("select k, v from config where `cat` = 'database' ");
754         if(count($r)) {
755                 foreach($r as $rr) {
756                         $upd = intval(substr($rr['k'],7));
757                         if($upd < 1139 || $rr['v'] === 'success')
758                                 continue;
759                         $failed[] = $upd;
760                 }
761         }
762         if(! count($failed)) {
763                 $o = replace_macros(get_markup_template('structure_check.tpl'),array(
764                         '$base' => $a->get_baseurl(true),
765                         '$banner' => t('No failed updates.'),
766                         '$check' => t('Check database structure'),
767                 ));
768         } else {
769                 $o = replace_macros(get_markup_template('failed_updates.tpl'),array(
770                         '$base' => $a->get_baseurl(true),
771                         '$banner' => t('Failed Updates'),
772                         '$desc' => t('This does not include updates prior to 1139, which did not return a status.'),
773                         '$mark' => t('Mark success (if update was manually applied)'),
774                         '$apply' => t('Attempt to execute this update step automatically'),
775                         '$failed' => $failed
776                 ));
777         }
778
779         return $o;
780
781 }
782
783 /**
784  * Users admin page
785  *
786  * @param App $a
787  */
788 function admin_page_users_post(&$a){
789         $pending = ( x($_POST, 'pending') ? $_POST['pending'] : Array() );
790         $users = ( x($_POST, 'user') ? $_POST['user'] : Array() );
791         $nu_name = ( x($_POST, 'new_user_name') ? $_POST['new_user_name'] : '');
792         $nu_nickname = ( x($_POST, 'new_user_nickname') ? $_POST['new_user_nickname'] : '');
793         $nu_email = ( x($_POST, 'new_user_email') ? $_POST['new_user_email'] : '');
794
795         check_form_security_token_redirectOnErr('/admin/users', 'admin_users');
796
797         if (!($nu_name==="") && !($nu_email==="") && !($nu_nickname==="")) {
798                 require_once('include/user.php');
799
800                 $result = create_user( array('username'=>$nu_name, 'email'=>$nu_email, 'nickname'=>$nu_nickname, 'verified'=>1)  );
801                 if(! $result['success']) {
802                         notice($result['message']);
803                         return;
804                 }
805                 $nu = $result['user'];
806                 $preamble = deindent(t('
807                         Dear %1$s,
808                                 the administrator of %2$s has set up an account for you.'));
809                 $body = deindent(t('
810                         The login details are as follows:
811
812                         Site Location:  %1$s
813                         Login Name:             %2$s
814                         Password:               %3$s
815
816                         You may change your password from your account "Settings" page after logging
817                         in.
818
819                         Please take a few moments to review the other account settings on that page.
820
821                         You may also wish to add some basic information to your default profile
822                         (on the "Profiles" page) so that other people can easily find you.
823
824                         We recommend setting your full name, adding a profile photo,
825                         adding some profile "keywords" (very useful in making new friends) - and
826                         perhaps what country you live in; if you do not wish to be more specific
827                         than that.
828
829                         We fully respect your right to privacy, and none of these items are necessary.
830                         If you are new and do not know anybody here, they may help
831                         you to make some new and interesting friends.
832
833                         Thank you and welcome to %4$s.'));
834
835                 $preamble = sprintf($preamble, $nu['username'], $a->config['sitename']);
836                 $body = sprintf($body, $a->get_baseurl(), $nu['email'], $result['password'], $a->config['sitename']);
837
838                 notification(array(
839                         'type' => "SYSTEM_EMAIL",
840                         'to_email' => $nu['email'],
841                         'subject'=> sprintf( t('Registration details for %s'), $a->config['sitename']),
842                         'preamble'=> $preamble,
843                         'body' => $body));
844
845         }
846
847         if (x($_POST,'page_users_block')){
848                 foreach($users as $uid){
849                         q("UPDATE `user` SET `blocked`=1-`blocked` WHERE `uid`=%s",
850                                 intval( $uid )
851                         );
852                 }
853                 notice( sprintf( tt("%s user blocked/unblocked", "%s users blocked/unblocked", count($users)), count($users)) );
854         }
855         if (x($_POST,'page_users_delete')){
856                 require_once("include/Contact.php");
857                 foreach($users as $uid){
858                         user_remove($uid);
859                 }
860                 notice( sprintf( tt("%s user deleted", "%s users deleted", count($users)), count($users)) );
861         }
862
863         if (x($_POST,'page_users_approve')){
864                 require_once("mod/regmod.php");
865                 foreach($pending as $hash){
866                         user_allow($hash);
867                 }
868         }
869         if (x($_POST,'page_users_deny')){
870                 require_once("mod/regmod.php");
871                 foreach($pending as $hash){
872                         user_deny($hash);
873                 }
874         }
875         goaway($a->get_baseurl(true) . '/admin/users' );
876         return; // NOTREACHED
877 }
878
879 /**
880  * @param App $a
881  * @return string
882  */
883 function admin_page_users(&$a){
884         if ($a->argc>2) {
885                 $uid = $a->argv[3];
886                 $user = q("SELECT username, blocked FROM `user` WHERE `uid`=%d", intval($uid));
887                 if (count($user)==0){
888                         notice( 'User not found' . EOL);
889                         goaway($a->get_baseurl(true) . '/admin/users' );
890                         return ''; // NOTREACHED
891                 }
892                 switch($a->argv[2]){
893                         case "delete":{
894                                 check_form_security_token_redirectOnErr('/admin/users', 'admin_users', 't');
895                                 // delete user
896                                 require_once("include/Contact.php");
897                                 user_remove($uid);
898
899                                 notice( sprintf(t("User '%s' deleted"), $user[0]['username']) . EOL);
900                         }; break;
901                         case "block":{
902                                 check_form_security_token_redirectOnErr('/admin/users', 'admin_users', 't');
903                                 q("UPDATE `user` SET `blocked`=%d WHERE `uid`=%s",
904                                         intval( 1-$user[0]['blocked'] ),
905                                         intval( $uid )
906                                 );
907                                 notice( sprintf( ($user[0]['blocked']?t("User '%s' unblocked"):t("User '%s' blocked")) , $user[0]['username']) . EOL);
908                         }; break;
909                 }
910                 goaway($a->get_baseurl(true) . '/admin/users' );
911                 return ''; // NOTREACHED
912
913         }
914
915         /* get pending */
916         $pending = q("SELECT `register`.*, `contact`.`name`, `user`.`email`
917                                  FROM `register`
918                                  LEFT JOIN `contact` ON `register`.`uid` = `contact`.`uid`
919                                  LEFT JOIN `user` ON `register`.`uid` = `user`.`uid`;");
920
921
922         /* get users */
923
924         $total = q("SELECT count(*) as total FROM `user` where 1");
925         if(count($total)) {
926                 $a->set_pager_total($total[0]['total']);
927                 $a->set_pager_itemspage(100);
928         }
929
930
931         $users = q("SELECT `user` . * , `contact`.`name` , `contact`.`url` , `contact`.`micro`, `lastitem`.`lastitem_date`, `user`.`account_expired`
932                                 FROM
933                                         (SELECT MAX(`item`.`changed`) as `lastitem_date`, `item`.`uid`
934                                         FROM `item`
935                                         WHERE `item`.`type` = 'wall'
936                                         GROUP BY `item`.`uid`) AS `lastitem`
937                                                  RIGHT OUTER JOIN `user` ON `user`.`uid` = `lastitem`.`uid`,
938                                            `contact`
939                                 WHERE
940                                            `user`.`uid` = `contact`.`uid`
941                                                 AND `user`.`verified` =1
942                                         AND `contact`.`self` =1
943                                 ORDER BY `contact`.`name` LIMIT %d, %d
944                                 ",
945                                 intval($a->pager['start']),
946                                 intval($a->pager['itemspage'])
947                                 );
948
949         function _setup_users($e){
950                 $a = get_app();
951
952                 $adminlist = explode(",", str_replace(" ", "", $a->config['admin_email']));
953
954                 $accounts = Array(
955                         t('Normal Account'),
956                         t('Soapbox Account'),
957                         t('Community/Celebrity Account'),
958                                                 t('Automatic Friend Account')
959                 );
960                 $e['page-flags'] = $accounts[$e['page-flags']];
961                 $e['register_date'] = relative_date($e['register_date']);
962                 $e['login_date'] = relative_date($e['login_date']);
963                 $e['lastitem_date'] = relative_date($e['lastitem_date']);
964                 //$e['is_admin'] = ($e['email'] === $a->config['admin_email']);
965                 $e['is_admin'] = in_array($e['email'], $adminlist);
966                 $e['deleted'] = ($e['account_removed']?relative_date($e['account_expires_on']):False);
967                 return $e;
968         }
969         $users = array_map("_setup_users", $users);
970
971
972         // Get rid of dashes in key names, Smarty3 can't handle them
973         // and extracting deleted users
974
975         $tmp_users = Array();
976         $deleted = Array();
977
978         while(count($users)) {
979                 $new_user = Array();
980                 foreach( array_pop($users) as $k => $v) {
981                         $k = str_replace('-','_',$k);
982                         $new_user[$k] = $v;
983                 }
984                 if($new_user['deleted']) {
985                         array_push($deleted, $new_user);
986                 }
987                 else {
988                         array_push($tmp_users, $new_user);
989                 }
990         }
991         //Reversing the two array, and moving $tmp_users to $users
992         array_reverse($deleted);
993         while(count($tmp_users)) {
994                 array_push($users, array_pop($tmp_users));
995         }
996
997         $t = get_markup_template("admin_users.tpl");
998         $o = replace_macros($t, array(
999                 // strings //
1000                 '$title' => t('Administration'),
1001                 '$page' => t('Users'),
1002                 '$submit' => t('Add User'),
1003                 '$select_all' => t('select all'),
1004                 '$h_pending' => t('User registrations waiting for confirm'),
1005                 '$h_deleted' => t('User waiting for permanent deletion'),
1006                 '$th_pending' => array( t('Request date'), t('Name'), t('Email') ),
1007                 '$no_pending' =>  t('No registrations.'),
1008                 '$approve' => t('Approve'),
1009                 '$deny' => t('Deny'),
1010                 '$delete' => t('Delete'),
1011                 '$block' => t('Block'),
1012                 '$unblock' => t('Unblock'),
1013                 '$siteadmin' => t('Site admin'),
1014                 '$accountexpired' => t('Account expired'),
1015
1016                 '$h_users' => t('Users'),
1017                 '$h_newuser' => t('New User'),
1018                 '$th_deleted' => array( t('Name'), t('Email'), t('Register date'), t('Last login'), t('Last item'), t('Deleted since') ),
1019                 '$th_users' => array( t('Name'), t('Email'), t('Register date'), t('Last login'), t('Last item'),  t('Account') ),
1020
1021                 '$confirm_delete_multi' => t('Selected users will be deleted!\n\nEverything these users had posted on this site will be permanently deleted!\n\nAre you sure?'),
1022                 '$confirm_delete' => t('The user {0} will be deleted!\n\nEverything this user has posted on this site will be permanently deleted!\n\nAre you sure?'),
1023
1024                 '$form_security_token' => get_form_security_token("admin_users"),
1025
1026                 // values //
1027                 '$baseurl' => $a->get_baseurl(true),
1028
1029                 '$pending' => $pending,
1030                 'deleted' => $deleted,
1031                 '$users' => $users,
1032                 '$newusername'  => array('new_user_name', t("Name"), '', t("Name of the new user.")),
1033                 '$newusernickname'  => array('new_user_nickname', t("Nickname"), '', t("Nickname of the new user.")),
1034                 '$newuseremail'  => array('new_user_email', t("Email"), '', t("Email address of the new user."), '', '', 'email'),
1035         ));
1036         $o .= paginate($a);
1037         return $o;
1038 }
1039
1040
1041 /**
1042  * Plugins admin page
1043  *
1044  * @param App $a
1045  * @return string
1046  */
1047 function admin_page_plugins(&$a){
1048
1049         /**
1050          * Single plugin
1051          */
1052         if ($a->argc == 3){
1053                 $plugin = $a->argv[2];
1054                 if (!is_file("addon/$plugin/$plugin.php")){
1055                         notice( t("Item not found.") );
1056                         return '';
1057                 }
1058
1059                 if (x($_GET,"a") && $_GET['a']=="t"){
1060                         check_form_security_token_redirectOnErr('/admin/plugins', 'admin_themes', 't');
1061
1062                         // Toggle plugin status
1063                         $idx = array_search($plugin, $a->plugins);
1064                         if ($idx !== false){
1065                                 unset($a->plugins[$idx]);
1066                                 uninstall_plugin($plugin);
1067                                 info( sprintf( t("Plugin %s disabled."), $plugin ) );
1068                         } else {
1069                                 $a->plugins[] = $plugin;
1070                                 install_plugin($plugin);
1071                                 info( sprintf( t("Plugin %s enabled."), $plugin ) );
1072                         }
1073                         set_config("system","addon", implode(", ",$a->plugins));
1074                         goaway($a->get_baseurl(true) . '/admin/plugins' );
1075                         return ''; // NOTREACHED
1076                 }
1077                 // display plugin details
1078                 require_once('library/markdown.php');
1079
1080                 if (in_array($plugin, $a->plugins)){
1081                         $status="on"; $action= t("Disable");
1082                 } else {
1083                         $status="off"; $action= t("Enable");
1084                 }
1085
1086                 $readme=Null;
1087                 if (is_file("addon/$plugin/README.md")){
1088                         $readme = file_get_contents("addon/$plugin/README.md");
1089                         $readme = Markdown($readme);
1090                 } else if (is_file("addon/$plugin/README")){
1091                         $readme = "<pre>". file_get_contents("addon/$plugin/README") ."</pre>";
1092                 }
1093
1094                 $admin_form="";
1095                 if (is_array($a->plugins_admin) && in_array($plugin, $a->plugins_admin)){
1096                         @require_once("addon/$plugin/$plugin.php");
1097                         $func = $plugin.'_plugin_admin';
1098                         $func($a, $admin_form);
1099                 }
1100
1101                 $t = get_markup_template("admin_plugins_details.tpl");
1102
1103                 return replace_macros($t, array(
1104                         '$title' => t('Administration'),
1105                         '$page' => t('Plugins'),
1106                         '$toggle' => t('Toggle'),
1107                         '$settings' => t('Settings'),
1108                         '$baseurl' => $a->get_baseurl(true),
1109
1110                         '$plugin' => $plugin,
1111                         '$status' => $status,
1112                         '$action' => $action,
1113                         '$info' => get_plugin_info($plugin),
1114                         '$str_author' => t('Author: '),
1115                         '$str_maintainer' => t('Maintainer: '),
1116
1117                         '$admin_form' => $admin_form,
1118                         '$function' => 'plugins',
1119                         '$screenshot' => '',
1120                         '$readme' => $readme,
1121
1122                         '$form_security_token' => get_form_security_token("admin_themes"),
1123                 ));
1124         }
1125
1126
1127
1128         /**
1129          * List plugins
1130          */
1131
1132         $plugins = array();
1133         $files = glob("addon/*/"); /* */
1134         if($files) {
1135                 foreach($files as $file) {
1136                         if (is_dir($file)){
1137                                 list($tmp, $id)=array_map("trim", explode("/",$file));
1138                                 $info = get_plugin_info($id);
1139                                 $show_plugin = true;
1140
1141                                 // If the addon is unsupported, then only show it, when it is enabled
1142                                 if ((strtolower($info["status"]) == "unsupported") AND !in_array($id,  $a->plugins))
1143                                         $show_plugin = false;
1144
1145                                 // Override the above szenario, when the admin really wants to see outdated stuff
1146                                 if (get_config("system", "show_unsupported_addons"))
1147                                         $show_plugin = true;
1148
1149                                 if ($show_plugin)
1150                                         $plugins[] = array($id, (in_array($id,  $a->plugins)?"on":"off") , $info);
1151                         }
1152                 }
1153         }
1154
1155         $t = get_markup_template("admin_plugins.tpl");
1156         return replace_macros($t, array(
1157                 '$title' => t('Administration'),
1158                 '$page' => t('Plugins'),
1159                 '$submit' => t('Save Settings'),
1160                 '$baseurl' => $a->get_baseurl(true),
1161                 '$function' => 'plugins',
1162                 '$plugins' => $plugins,
1163                 '$form_security_token' => get_form_security_token("admin_themes"),
1164         ));
1165 }
1166
1167 /**
1168  * @param array $themes
1169  * @param string $th
1170  * @param int $result
1171  */
1172 function toggle_theme(&$themes,$th,&$result) {
1173         for($x = 0; $x < count($themes); $x ++) {
1174                 if($themes[$x]['name'] === $th) {
1175                         if($themes[$x]['allowed']) {
1176                                 $themes[$x]['allowed'] = 0;
1177                                 $result = 0;
1178                         }
1179                         else {
1180                                 $themes[$x]['allowed'] = 1;
1181                                 $result = 1;
1182                         }
1183                 }
1184         }
1185 }
1186
1187 /**
1188  * @param array $themes
1189  * @param string $th
1190  * @return int
1191  */
1192 function theme_status($themes,$th) {
1193         for($x = 0; $x < count($themes); $x ++) {
1194                 if($themes[$x]['name'] === $th) {
1195                         if($themes[$x]['allowed']) {
1196                                 return 1;
1197                         }
1198                         else {
1199                                 return 0;
1200                         }
1201                 }
1202         }
1203         return 0;
1204 }
1205
1206
1207 /**
1208  * @param array $themes
1209  * @return string
1210  */
1211 function rebuild_theme_table($themes) {
1212         $o = '';
1213         if(count($themes)) {
1214                 foreach($themes as $th) {
1215                         if($th['allowed']) {
1216                                 if(strlen($o))
1217                                         $o .= ',';
1218                                 $o .= $th['name'];
1219                         }
1220                 }
1221         }
1222         return $o;
1223 }
1224
1225
1226 /**
1227  * Themes admin page
1228  *
1229  * @param App $a
1230  * @return string
1231  */
1232 function admin_page_themes(&$a){
1233
1234         $allowed_themes_str = get_config('system','allowed_themes');
1235         $allowed_themes_raw = explode(',',$allowed_themes_str);
1236         $allowed_themes = array();
1237         if(count($allowed_themes_raw))
1238                 foreach($allowed_themes_raw as $x)
1239                         if(strlen(trim($x)))
1240                                 $allowed_themes[] = trim($x);
1241
1242         $themes = array();
1243         $files = glob('view/theme/*'); /* */
1244         if($files) {
1245                 foreach($files as $file) {
1246                         $f = basename($file);
1247                         $is_experimental = intval(file_exists($file . '/experimental'));
1248                         $is_supported = 1-(intval(file_exists($file . '/unsupported')));
1249                         $is_allowed = intval(in_array($f,$allowed_themes));
1250
1251                         if ($is_allowed OR $is_supported OR get_config("system", "show_unsupported_themes"))
1252                                 $themes[] = array('name' => $f, 'experimental' => $is_experimental, 'supported' => $is_supported, 'allowed' => $is_allowed);
1253                 }
1254         }
1255
1256         if(! count($themes)) {
1257                 notice( t('No themes found.'));
1258                 return '';
1259         }
1260
1261         /**
1262          * Single theme
1263          */
1264
1265         if ($a->argc == 3){
1266                 $theme = $a->argv[2];
1267                 if(! is_dir("view/theme/$theme")){
1268                         notice( t("Item not found.") );
1269                         return '';
1270                 }
1271
1272                 if (x($_GET,"a") && $_GET['a']=="t"){
1273                         check_form_security_token_redirectOnErr('/admin/themes', 'admin_themes', 't');
1274
1275                         // Toggle theme status
1276
1277                         toggle_theme($themes,$theme,$result);
1278                         $s = rebuild_theme_table($themes);
1279                         if($result) {
1280                                 install_theme($theme);
1281                                 info( sprintf('Theme %s enabled.',$theme));
1282                         }
1283                         else {
1284                                 uninstall_theme($theme);
1285                                 info( sprintf('Theme %s disabled.',$theme));
1286                         }
1287
1288                         set_config('system','allowed_themes',$s);
1289                         goaway($a->get_baseurl(true) . '/admin/themes' );
1290                         return ''; // NOTREACHED
1291                 }
1292
1293                 // display theme details
1294                 require_once('library/markdown.php');
1295
1296                 if (theme_status($themes,$theme)) {
1297                         $status="on"; $action= t("Disable");
1298                 } else {
1299                         $status="off"; $action= t("Enable");
1300                 }
1301
1302                 $readme=Null;
1303                 if (is_file("view/theme/$theme/README.md")){
1304                         $readme = file_get_contents("view/theme/$theme/README.md");
1305                         $readme = Markdown($readme);
1306                 } else if (is_file("view/theme/$theme/README")){
1307                         $readme = "<pre>". file_get_contents("view/theme/$theme/README") ."</pre>";
1308                 }
1309
1310                 $admin_form="";
1311                 if (is_file("view/theme/$theme/config.php")){
1312                         require_once("view/theme/$theme/config.php");
1313                         if(function_exists("theme_admin")){
1314                                 $admin_form = theme_admin($a);
1315                         }
1316
1317                 }
1318
1319                 $screenshot = array( get_theme_screenshot($theme), t('Screenshot'));
1320                 if(! stristr($screenshot[0],$theme))
1321                         $screenshot = null;
1322
1323                 $t = get_markup_template("admin_plugins_details.tpl");
1324                 return replace_macros($t, array(
1325                         '$title' => t('Administration'),
1326                         '$page' => t('Themes'),
1327                         '$toggle' => t('Toggle'),
1328                         '$settings' => t('Settings'),
1329                         '$baseurl' => $a->get_baseurl(true),
1330
1331                         '$plugin' => $theme,
1332                         '$status' => $status,
1333                         '$action' => $action,
1334                         '$info' => get_theme_info($theme),
1335                         '$function' => 'themes',
1336                         '$admin_form' => $admin_form,
1337                         '$str_author' => t('Author: '),
1338                         '$str_maintainer' => t('Maintainer: '),
1339                         '$screenshot' => $screenshot,
1340                         '$readme' => $readme,
1341
1342                         '$form_security_token' => get_form_security_token("admin_themes"),
1343                 ));
1344         }
1345
1346         /**
1347          * List themes
1348          */
1349
1350         $xthemes = array();
1351         if($themes) {
1352                 foreach($themes as $th) {
1353                         $xthemes[] = array($th['name'],(($th['allowed']) ? "on" : "off"), get_theme_info($th['name']));
1354                 }
1355         }
1356
1357         $t = get_markup_template("admin_plugins.tpl");
1358         return replace_macros($t, array(
1359                 '$title' => t('Administration'),
1360                 '$page' => t('Themes'),
1361                 '$submit' => t('Save Settings'),
1362                 '$baseurl' => $a->get_baseurl(true),
1363                 '$function' => 'themes',
1364                 '$plugins' => $xthemes,
1365                 '$experimental' => t('[Experimental]'),
1366                 '$unsupported' => t('[Unsupported]'),
1367                 '$form_security_token' => get_form_security_token("admin_themes"),
1368         ));
1369 }
1370
1371
1372 /**
1373  * Logs admin page
1374  *
1375  * @param App $a
1376  */
1377
1378 function admin_page_logs_post(&$a) {
1379         if (x($_POST,"page_logs")) {
1380                 check_form_security_token_redirectOnErr('/admin/logs', 'admin_logs');
1381
1382                 $logfile                =       ((x($_POST,'logfile'))          ? notags(trim($_POST['logfile']))       : '');
1383                 $debugging              =       ((x($_POST,'debugging'))        ? true                                                          : false);
1384                 $loglevel               =       ((x($_POST,'loglevel'))         ? intval(trim($_POST['loglevel']))      : 0);
1385
1386                 set_config('system','logfile', $logfile);
1387                 set_config('system','debugging',  $debugging);
1388                 set_config('system','loglevel', $loglevel);
1389
1390
1391         }
1392
1393         info( t("Log settings updated.") );
1394         goaway($a->get_baseurl(true) . '/admin/logs' );
1395         return; // NOTREACHED
1396 }
1397
1398 /**
1399  * @param App $a
1400  * @return string
1401  */
1402 function admin_page_logs(&$a){
1403
1404         $log_choices = Array(
1405                 LOGGER_NORMAL => 'Normal',
1406                 LOGGER_TRACE => 'Trace',
1407                 LOGGER_DEBUG => 'Debug',
1408                 LOGGER_DATA => 'Data',
1409                 LOGGER_ALL => 'All'
1410         );
1411
1412         $t = get_markup_template("admin_logs.tpl");
1413
1414         $f = get_config('system','logfile');
1415
1416         $data = '';
1417
1418         if(!file_exists($f)) {
1419                 $data = t("Error trying to open <strong>$f</strong> log file.\r\n<br/>Check to see if file $f exist and is
1420 readable.");
1421         }
1422         else {
1423                 $fp = fopen($f, 'r');
1424                 if(!$fp) {
1425                         $data = t("Couldn't open <strong>$f</strong> log file.\r\n<br/>Check to see if file $f is readable.");
1426                 }
1427                 else {
1428                         $fstat = fstat($fp);
1429                         $size = $fstat['size'];
1430                         if($size != 0)
1431                         {
1432                                 if($size > 5000000 || $size < 0)
1433                                         $size = 5000000;
1434                                 $seek = fseek($fp,0-$size,SEEK_END);
1435                                 if($seek === 0) {
1436                                         $data = escape_tags(fread($fp,$size));
1437                                         while(! feof($fp))
1438                                                 $data .= escape_tags(fread($fp,4096));
1439                                 }
1440                         }
1441                         fclose($fp);
1442                 }
1443         }
1444
1445         return replace_macros($t, array(
1446                 '$title' => t('Administration'),
1447                 '$page' => t('Logs'),
1448                 '$submit' => t('Save Settings'),
1449                 '$clear' => t('Clear'),
1450                 '$data' => $data,
1451                 '$baseurl' => $a->get_baseurl(true),
1452                 '$logname' =>  get_config('system','logfile'),
1453
1454                                                                         // name, label, value, help string, extra data...
1455                 '$debugging'            => array('debugging', t("Enable Debugging"),get_config('system','debugging'), ""),
1456                 '$logfile'                      => array('logfile', t("Log file"), get_config('system','logfile'), t("Must be writable by web server. Relative to your Friendica top-level directory.")),
1457                 '$loglevel'             => array('loglevel', t("Log level"), get_config('system','loglevel'), "", $log_choices),
1458
1459                 '$form_security_token' => get_form_security_token("admin_logs"),
1460         ));
1461 }
1462
1463 /**
1464  * @param App $a
1465  */
1466 function admin_page_remoteupdate_post(&$a) {
1467         // this function should be called via ajax post
1468         if(!is_site_admin()) {
1469                 return;
1470         }
1471
1472
1473         if (x($_POST,'remotefile') && $_POST['remotefile']!=""){
1474                 $remotefile = $_POST['remotefile'];
1475                 $ftpdata = (x($_POST['ftphost'])?$_POST:false);
1476                 doUpdate($remotefile, $ftpdata);
1477         } else {
1478                 echo "No remote file to download. Abort!";
1479         }
1480
1481         killme();
1482 }
1483
1484 /**
1485  * @param App $a
1486  * @return string
1487  */
1488 function admin_page_remoteupdate(&$a) {
1489         if(!is_site_admin()) {
1490                 return login(false);
1491         }
1492
1493         $canwrite = canWeWrite();
1494         $canftp = function_exists('ftp_connect');
1495
1496         $needupdate = true;
1497         $u = checkUpdate();
1498         if (!is_array($u)){
1499                 $needupdate = false;
1500                 $u = array('','','');
1501         }
1502
1503         $tpl = get_markup_template("admin_remoteupdate.tpl");
1504         return replace_macros($tpl, array(
1505                 '$baseurl' => $a->get_baseurl(true),
1506                 '$submit' => t("Update now"),
1507                 '$close' => t("Close"),
1508                 '$localversion' => FRIENDICA_VERSION,
1509                 '$remoteversion' => $u[1],
1510                 '$needupdate' => $needupdate,
1511                 '$canwrite' => $canwrite,
1512                 '$canftp'       => $canftp,
1513                 '$ftphost'      => array('ftphost', t("FTP Host"), '',''),
1514                 '$ftppath'      => array('ftppath', t("FTP Path"), '/',''),
1515                 '$ftpuser'      => array('ftpuser', t("FTP User"), '',''),
1516                 '$ftppwd'       => array('ftppwd', t("FTP Password"), '',''),
1517                 '$remotefile'=>array('remotefile','', $u['2'],''),
1518         ));
1519
1520 }