3 function display_init(&$a) {
5 if((get_config('system','block_public')) && (! local_user()) && (! remote_user())) {
9 $nick = (($a->argc > 1) ? $a->argv[1] : '');
10 $profiledata = array();
12 // If there is only one parameter, then check if this parameter could be a guid
17 // Does the local user have this item?
19 $r = q("SELECT `id`, `parent`, `author-name`, `author-link`, `author-avatar`, `network`, `body`, `uid` FROM `item`
20 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
21 AND `guid` = '%s' AND `uid` = %d", dbesc($a->argv[1]), local_user());
23 $nick = $a->user["nickname"];
24 $itemuid = local_user();
28 // Or is it anywhere on the server?
30 $r = q("SELECT `user`.`nickname`, `item`.`id`, `item`.`parent`, `item`.`author-name`,
31 `item`.`author-link`, `item`.`author-avatar`, `item`.`network`, `item`.`uid`, `item`.`body`
32 FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid`
33 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
34 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
35 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
36 AND `item`.`private` = 0 AND NOT `user`.`hidewall`
37 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
38 // AND `item`.`private` = 0 AND `item`.`wall` = 1
40 $nick = $r[0]["nickname"];
41 $itemuid = $r[0]["uid"];
45 // Is it an item with uid=0?
47 $r = q("SELECT `item`.`id`, `item`.`parent`, `item`.`author-name`,
48 `item`.`author-link`, `item`.`author-avatar`, `item`.`network`, `item`.`uid`, `item`.`body`
49 FROM `item` WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
50 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
51 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
52 AND `item`.`private` = 0 AND `item`.`uid` = 0
53 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
54 // AND `item`.`private` = 0 AND `item`.`wall` = 1
57 if ($r[0]["id"] != $r[0]["parent"])
58 $r = q("SELECT `id`, `author-name`, `author-link`, `author-avatar`, `network`, `body`, `uid` FROM `item`
59 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
60 AND `id` = %d", $r[0]["parent"]);
62 $profiledata = display_fetchauthor($a, $r[0]);
64 if (strstr(normalise_link($profiledata["url"]), normalise_link($a->get_baseurl()))) {
65 $nickname = str_replace(normalise_link($a->get_baseurl())."/profile/", "", normalise_link($profiledata["url"]));
67 if (($nickname != $a->user["nickname"])) {
68 $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
69 INNER JOIN `contact` on `contact`.`uid` = `profile`.`uid` INNER JOIN `user` ON `profile`.`uid` = `user`.`uid`
70 WHERE `user`.`nickname` = '%s' AND `profile`.`is-default` = 1 and `contact`.`self` = 1 LIMIT 1",
76 $profiledata["network"] = NETWORK_DFRN;
78 $profiledata = array();
82 notice( t('Item not found.') . EOL);
87 profile_load($a, $nick, 0, $profiledata);
91 function display_fetchauthor($a, $item) {
93 $profiledata = array();
94 $profiledata["uid"] = -1;
95 $profiledata["nickname"] = $item["author-name"];
96 $profiledata["name"] = $item["author-name"];
97 $profiledata["picdate"] = "";
98 $profiledata["photo"] = $item["author-avatar"];
99 $profiledata["url"] = $item["author-link"];
100 $profiledata["network"] = $item["network"];
102 // Check for a repeated message
104 $body = trim($item["body"]);
106 // Skip if it isn't a pure repeated messages
107 // Does it start with a share?
108 if (!$skip AND strpos($body, "[share") > 0)
111 // Does it end with a share?
112 if (!$skip AND (strlen($body) > (strrpos($body, "[/share]") + 8)))
116 $attributes = preg_replace("/\[share(.*?)\]\s?(.*?)\s?\[\/share\]\s?/ism","$1",$body);
117 // Skip if there is no shared message in there
118 if ($body == $attributes)
124 preg_match("/author='(.*?)'/ism", $attributes, $matches);
125 if ($matches[1] != "")
126 $profiledata["name"] = html_entity_decode($matches[1],ENT_QUOTES,'UTF-8');
128 preg_match('/author="(.*?)"/ism', $attributes, $matches);
129 if ($matches[1] != "")
130 $profiledata["name"] = html_entity_decode($matches[1],ENT_QUOTES,'UTF-8');
133 preg_match("/profile='(.*?)'/ism", $attributes, $matches);
134 if ($matches[1] != "")
135 $profiledata["url"] = $matches[1];
137 preg_match('/profile="(.*?)"/ism', $attributes, $matches);
138 if ($matches[1] != "")
139 $profiledata["url"] = $matches[1];
142 preg_match("/avatar='(.*?)'/ism", $attributes, $matches);
143 if ($matches[1] != "")
144 $profiledata["photo"] = $matches[1];
146 preg_match('/avatar="(.*?)"/ism', $attributes, $matches);
147 if ($matches[1] != "")
148 $profiledata["photo"] = $matches[1];
150 $profiledata["nickname"] = $profiledata["name"];
151 $profiledata["network"] = GetProfileUsername($profiledata["url"], "", false, true);
153 $profiledata["address"] = "";
154 $profiledata["about"] = "";
157 // Don't show details from Diaspora contacts if you don't follow the contact
158 $showdetails = ($profiledata["network"] != NETWORK_DIASPORA);
160 // Fetching further contact data from the contact table
161 $r = q("SELECT `uid`, `network`, `name`, `photo`, `nick`, `addr`, `location`, `about`, `gender`, `keywords`
162 FROM `contact` WHERE `nurl` = '%s' AND `uid` = %d AND `network` = '%s' AND `rel` IN (%d, %d)",
163 dbesc(normalise_link($profiledata["url"])), intval(local_user()), dbesc($item["network"]),
164 intval(CONTACT_IS_SHARING), intval(CONTACT_IS_FRIEND));
166 $r = q("SELECT `uid`, `network`, `name`, `photo`, `nick`, `addr`, `location`, `about`, `gender`, `keywords`
167 FROM `contact` WHERE `nurl` = '%s' AND `uid` = %d AND `rel` IN (%d, %d)",
168 dbesc(normalise_link($profiledata["url"])), intval(local_user()),
169 intval(CONTACT_IS_SHARING), intval(CONTACT_IS_FRIEND));
172 $profiledata["name"] = $r[0]["name"];
173 $profiledata["photo"] = $r[0]["photo"];
174 $profiledata["nickname"] = $r[0]["nick"];
175 $profiledata["addr"] = $r[0]["addr"];
176 $profiledata["keywords"] = $r[0]["keywords"];
177 $profiledata["network"] = $r[0]["network"];
179 if (local_user() OR $showdetails) {
181 $profiledata["address"] = $r[0]["location"];
182 $profiledata["about"] = $r[0]["about"];
183 $profiledata["gender"] = $r[0]["gender"];
187 // Fetching profile data from global contacts
188 if ($profiledata["network"] != NETWORK_FEED) {
189 $r = q("SELECT `name`, `photo`, `nick`, `addr`, `location`, `about`, `gender`, `keywords`, `network` FROM `gcontact` WHERE `nurl` = '%s'", dbesc(normalise_link($profiledata["url"])));
191 $profiledata["name"] = $r[0]["name"];
192 $profiledata["photo"] = $r[0]["photo"];
193 $profiledata["nickname"] = $r[0]["nick"];
194 $profiledata["addr"] = $r[0]["addr"];
195 $profiledata["network"] = $r[0]["network"];
197 if ($r[0]["keywords"])
198 $profiledata["keywords"] = $r[0]["keywords"];
201 if ($r[0]["location"])
202 $profiledata["address"] = $r[0]["location"];
205 $profiledata["about"] = $r[0]["about"];
208 $profiledata["gender"] = $r[0]["gender"];
214 if (in_array($profiledata["network"], array(NETWORK_DFRN, NETWORK_DIASPORA, NETWORK_OSTATUS)))
215 $profiledata["remoteconnect"] = $a->get_baseurl()."/follow?url=".urlencode($profiledata["url"]);
216 } elseif ($profiledata["network"] == NETWORK_DFRN) {
217 $connect = str_replace("/profile/", "/dfrn_request/", $profiledata["url"]);
218 $profiledata["remoteconnect"] = $connect;
221 return($profiledata);
224 function display_content(&$a, $update = 0) {
226 if((get_config('system','block_public')) && (! local_user()) && (! remote_user())) {
227 notice( t('Public access denied.') . EOL);
231 require_once('include/security.php');
232 require_once('include/conversation.php');
233 require_once('include/acl_selectors.php');
238 $a->page['htmlhead'] .= replace_macros(get_markup_template('display-head.tpl'), array());
242 $nick = $_REQUEST['nick'];
245 $nick = (($a->argc > 1) ? $a->argv[1] : '');
249 $item_id = $_REQUEST['item_id'];
250 $a->profile = array('uid' => intval($update), 'profile_uid' => intval($update));
253 $item_id = (($a->argc > 2) ? $a->argv[2] : 0);
259 $r = q("SELECT `id` FROM `item`
260 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
261 AND `guid` = '%s' AND `uid` = %d", dbesc($a->argv[1]), local_user());
263 $item_id = $r[0]["id"];
264 $nick = $a->user["nickname"];
269 $r = q("SELECT `user`.`nickname`, `item`.`id` FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid`
270 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
271 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
272 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
273 AND `item`.`private` = 0 AND NOT `user`.`hidewall`
274 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
275 // AND `item`.`private` = 0 AND `item`.`wall` = 1
277 $item_id = $r[0]["id"];
278 $nick = $r[0]["nickname"];
282 $r = q("SELECT `item`.`id` FROM `item`
283 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
284 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
285 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
286 AND `item`.`private` = 0 AND `item`.`uid` = 0
287 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
288 // AND `item`.`private` = 0 AND `item`.`wall` = 1
290 $item_id = $r[0]["id"];
298 notice( t('Item not found.') . EOL);
305 $remote_contact = false;
309 if(is_array($_SESSION['remote'])) {
310 foreach($_SESSION['remote'] as $v) {
311 if($v['uid'] == $a->profile['uid']) {
312 $contact_id = $v['cid'];
319 $groups = init_groups_visitor($contact_id);
320 $r = q("SELECT * FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1",
322 intval($a->profile['uid'])
326 $remote_contact = true;
330 if(! $remote_contact) {
332 $contact_id = $_SESSION['cid'];
333 $contact = $a->contact;
337 $r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `self` = 1 LIMIT 1",
338 intval($a->profile['uid'])
341 $a->page_contact = $r[0];
343 $is_owner = ((local_user()) && (local_user() == $a->profile['profile_uid']) ? true : false);
345 if($a->profile['hidewall'] && (! $is_owner) && (! $remote_contact)) {
346 notice( t('Access to this profile has been restricted.') . EOL);
350 // Why do we need this on the display page? We don't have the possibility to write new content here.
351 // Ad editing of posts work without this as well.
352 // We should remove this completely for the 3.5.1 release.
357 'allow_location' => $a->user['allow_location'],
358 'default_location' => $a->user['default-location'],
359 'nickname' => $a->user['nickname'],
360 'lockstate' => ( (is_array($a->user)) && ((strlen($a->user['allow_cid'])) || (strlen($a->user['allow_gid'])) || (strlen($a->user['deny_cid'])) || (strlen($a->user['deny_gid']))) ? 'lock' : 'unlock'),
361 'acl' => populate_acl($a->user, true),
363 'visitor' => 'block',
364 'profile_uid' => local_user(),
365 'acl_data' => construct_acl_data($a, $a->user), // For non-Javascript ACL selector
367 $o .= status_editor($a,$x,0,true);
371 $sql_extra = item_permissions_sql($a->profile['uid'],$remote_contact,$groups);
373 // AND `item`.`parent` = ( SELECT `parent` FROM `item` FORCE INDEX (PRIMARY, `uri`) WHERE ( `id` = '%s' OR `uri` = '%s' ))
377 $r = q("SELECT id FROM item WHERE item.uid = %d
378 AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE (`id` = '%s' OR `uri` = '%s'))
379 $sql_extra AND unseen = 1",
380 intval($a->profile['uid']),
389 // AND `item`.`parent` = ( SELECT `parent` FROM `item` FORCE INDEX (PRIMARY, `uri`) WHERE ( `id` = '%s' OR `uri` = '%s' )
391 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, `item`.`network` AS `item_network`,
392 `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
393 `contact`.`network`, `contact`.`thumb`, `contact`.`self`, `contact`.`writable`,
394 `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
395 FROM `item` INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
396 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
397 WHERE `item`.`uid` = %d AND `item`.`visible` = 1 AND `item`.`deleted` = 0
398 and `item`.`moderated` = 0
399 AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE (`id` = '%s' OR `uri` = '%s')
402 ORDER BY `parent` DESC, `gravity` ASC, `id` ASC",
403 intval($a->profile['uid']),
406 intval($a->profile['uid'])
409 if(!$r && local_user()) {
410 // Check if this is another person's link to a post that we have
411 $r = q("SELECT `item`.uri FROM `item`
412 WHERE (`item`.`id` = '%s' OR `item`.`uri` = '%s' )
418 $item_uri = $r[0]['uri'];
419 // AND `item`.`parent` = ( SELECT `parent` FROM `item` FORCE INDEX (PRIMARY, `uri`) WHERE `uri` = '%s' AND uid = %d )
421 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, `item`.`network` AS `item_network`,
422 `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
423 `contact`.`network`, `contact`.`thumb`, `contact`.`self`, `contact`.`writable`,
424 `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
425 FROM `item` INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
426 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
427 WHERE `item`.`uid` = %d AND `item`.`visible` = 1 AND `item`.`deleted` = 0
428 and `item`.`moderated` = 0
429 AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE `uri` = '%s' AND uid = %d)
430 ORDER BY `parent` DESC, `gravity` ASC, `id` ASC ",
431 intval(local_user()),
441 if((local_user()) && (local_user() == $a->profile['uid'])) {
442 q("UPDATE `item` SET `unseen` = 0
443 WHERE `parent` = %d AND `unseen` = 1",
444 intval($r[0]['parent'])
448 $items = conv_sort($r,"`commented`");
451 $o .= "<script> var netargs = '?f=&nick=" . $nick . "&item_id=" . $item_id . "'; </script>";
452 $o .= conversation($a,$items,'display', $update);
454 // Preparing the meta header
455 require_once('include/bbcode.php');
456 require_once("include/html2plain.php");
457 $description = trim(html2plain(bbcode($r[0]["body"], false, false), 0, true));
458 $title = trim(html2plain(bbcode($r[0]["title"], false, false), 0, true));
459 $author_name = $r[0]["author-name"];
463 $image = $r[0]["thumb"];
466 $title = $author_name;
468 $description = htmlspecialchars($description, ENT_COMPAT, 'UTF-8', true); // allow double encoding here
469 $title = htmlspecialchars($title, ENT_COMPAT, 'UTF-8', true); // allow double encoding here
470 $author_name = htmlspecialchars($author_name, ENT_COMPAT, 'UTF-8', true); // allow double encoding here
472 //<meta name="keywords" content="">
473 $a->page['htmlhead'] .= '<meta name="author" content="'.$author_name.'" />'."\n";
474 $a->page['htmlhead'] .= '<meta name="title" content="'.$title.'" />'."\n";
475 $a->page['htmlhead'] .= '<meta name="fulltitle" content="'.$title.'" />'."\n";
476 $a->page['htmlhead'] .= '<meta name="description" content="'.$description.'" />'."\n";
478 // Schema.org microdata
479 $a->page['htmlhead'] .= '<meta itemprop="name" content="'.$title.'" />'."\n";
480 $a->page['htmlhead'] .= '<meta itemprop="description" content="'.$description.'" />'."\n";
481 $a->page['htmlhead'] .= '<meta itemprop="image" content="'.$image.'" />'."\n";
482 $a->page['htmlhead'] .= '<meta itemprop="author" content="'.$author_name.'" />'."\n";
485 $a->page['htmlhead'] .= '<meta name="twitter:card" content="summary" />'."\n";
486 $a->page['htmlhead'] .= '<meta name="twitter:title" content="'.$title.'" />'."\n";
487 $a->page['htmlhead'] .= '<meta name="twitter:description" content="'.$description.'" />'."\n";
488 $a->page['htmlhead'] .= '<meta name="twitter:image" content="'.$image.'" />'."\n";
489 $a->page['htmlhead'] .= '<meta name="twitter:url" content="'.$r[0]["plink"].'" />'."\n";
492 $a->page['htmlhead'] .= '<meta name="DC.title" content="'.$title.'" />'."\n";
493 $a->page['htmlhead'] .= '<meta name="DC.description" content="'.$description.'" />'."\n";
496 $a->page['htmlhead'] .= '<meta property="og:type" content="website" />'."\n";
497 $a->page['htmlhead'] .= '<meta property="og:title" content="'.$title.'" />'."\n";
498 $a->page['htmlhead'] .= '<meta property="og:image" content="'.$image.'" />'."\n";
499 $a->page['htmlhead'] .= '<meta property="og:url" content="'.$r[0]["plink"].'" />'."\n";
500 $a->page['htmlhead'] .= '<meta property="og:description" content="'.$description.'" />'."\n";
501 $a->page['htmlhead'] .= '<meta name="og:article:author" content="'.$author_name.'" />'."\n";
507 $r = q("SELECT `id`,`deleted` FROM `item` WHERE `id` = '%s' OR `uri` = '%s' LIMIT 1",
512 if($r[0]['deleted']) {
513 notice( t('Item has been removed.') . EOL );
516 notice( t('Permission denied.') . EOL );
520 notice( t('Item not found.') . EOL );