2 if(! function_exists('display_init')) {
3 function display_init(&$a) {
5 if((get_config('system','block_public')) && (! local_user()) && (! remote_user())) {
9 $nick = (($a->argc > 1) ? $a->argv[1] : '');
10 $profiledata = array();
12 // If there is only one parameter, then check if this parameter could be a guid
17 // Does the local user have this item?
19 $r = q("SELECT `id`, `parent`, `author-name`, `author-link`, `author-avatar`, `network`, `body`, `uid` FROM `item`
20 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
21 AND `guid` = '%s' AND `uid` = %d", dbesc($a->argv[1]), local_user());
23 $nick = $a->user["nickname"];
24 $itemuid = local_user();
28 // Or is it anywhere on the server?
30 $r = q("SELECT `user`.`nickname`, `item`.`id`, `item`.`parent`, `item`.`author-name`,
31 `item`.`author-link`, `item`.`author-avatar`, `item`.`network`, `item`.`uid`, `item`.`body`
32 FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid`
33 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
34 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
35 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
36 AND `item`.`private` = 0 AND NOT `user`.`hidewall`
37 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
38 // AND `item`.`private` = 0 AND `item`.`wall` = 1
40 $nick = $r[0]["nickname"];
41 $itemuid = $r[0]["uid"];
45 // Is it an item with uid=0?
47 $r = q("SELECT `item`.`id`, `item`.`parent`, `item`.`author-name`,
48 `item`.`author-link`, `item`.`author-avatar`, `item`.`network`, `item`.`uid`, `item`.`body`
49 FROM `item` WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
50 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
51 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
52 AND `item`.`private` = 0 AND `item`.`uid` = 0
53 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
54 // AND `item`.`private` = 0 AND `item`.`wall` = 1
57 if ($r[0]["id"] != $r[0]["parent"])
58 $r = q("SELECT `id`, `author-name`, `author-link`, `author-avatar`, `network`, `body`, `uid` FROM `item`
59 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
60 AND `id` = %d", $r[0]["parent"]);
62 $profiledata = display_fetchauthor($a, $r[0]);
64 if (strstr(normalise_link($profiledata["url"]), normalise_link($a->get_baseurl()))) {
65 $nickname = str_replace(normalise_link($a->get_baseurl())."/profile/", "", normalise_link($profiledata["url"]));
67 if (($nickname != $a->user["nickname"])) {
68 $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
69 INNER JOIN `contact` on `contact`.`uid` = `profile`.`uid` INNER JOIN `user` ON `profile`.`uid` = `user`.`uid`
70 WHERE `user`.`nickname` = '%s' AND `profile`.`is-default` = 1 and `contact`.`self` = 1 LIMIT 1",
76 $profiledata["network"] = NETWORK_DFRN;
78 $profiledata = array();
82 notice( t('Item not found.') . EOL);
87 profile_load($a, $nick, 0, $profiledata);
91 if(! function_exists('display_fetchauthor')) {
92 function display_fetchauthor($a, $item) {
94 $profiledata = array();
95 $profiledata["uid"] = -1;
96 $profiledata["nickname"] = $item["author-name"];
97 $profiledata["name"] = $item["author-name"];
98 $profiledata["picdate"] = "";
99 $profiledata["photo"] = $item["author-avatar"];
100 $profiledata["url"] = $item["author-link"];
101 $profiledata["network"] = $item["network"];
103 // Check for a repeated message
105 $body = trim($item["body"]);
107 // Skip if it isn't a pure repeated messages
108 // Does it start with a share?
109 if (!$skip AND strpos($body, "[share") > 0)
112 // Does it end with a share?
113 if (!$skip AND (strlen($body) > (strrpos($body, "[/share]") + 8)))
117 $attributes = preg_replace("/\[share(.*?)\]\s?(.*?)\s?\[\/share\]\s?/ism","$1",$body);
118 // Skip if there is no shared message in there
119 if ($body == $attributes)
125 preg_match("/author='(.*?)'/ism", $attributes, $matches);
126 if ($matches[1] != "")
127 $profiledata["name"] = html_entity_decode($matches[1],ENT_QUOTES,'UTF-8');
129 preg_match('/author="(.*?)"/ism', $attributes, $matches);
130 if ($matches[1] != "")
131 $profiledata["name"] = html_entity_decode($matches[1],ENT_QUOTES,'UTF-8');
134 preg_match("/profile='(.*?)'/ism", $attributes, $matches);
135 if ($matches[1] != "")
136 $profiledata["url"] = $matches[1];
138 preg_match('/profile="(.*?)"/ism', $attributes, $matches);
139 if ($matches[1] != "")
140 $profiledata["url"] = $matches[1];
143 preg_match("/avatar='(.*?)'/ism", $attributes, $matches);
144 if ($matches[1] != "")
145 $profiledata["photo"] = $matches[1];
147 preg_match('/avatar="(.*?)"/ism', $attributes, $matches);
148 if ($matches[1] != "")
149 $profiledata["photo"] = $matches[1];
151 $profiledata["nickname"] = $profiledata["name"];
152 $profiledata["network"] = GetProfileUsername($profiledata["url"], "", false, true);
154 $profiledata["address"] = "";
155 $profiledata["about"] = "";
158 // Don't show details from Diaspora contacts if you don't follow the contact
159 $showdetails = ($profiledata["network"] != NETWORK_DIASPORA);
161 // Fetching further contact data from the contact table
162 $r = q("SELECT `uid`, `network`, `name`, `photo`, `nick`, `addr`, `location`, `about`, `gender`, `keywords`
163 FROM `contact` WHERE `nurl` = '%s' AND `uid` = %d AND `network` = '%s' AND `rel` IN (%d, %d)",
164 dbesc(normalise_link($profiledata["url"])), intval(local_user()), dbesc($item["network"]),
165 intval(CONTACT_IS_SHARING), intval(CONTACT_IS_FRIEND));
167 $r = q("SELECT `uid`, `network`, `name`, `photo`, `nick`, `addr`, `location`, `about`, `gender`, `keywords`
168 FROM `contact` WHERE `nurl` = '%s' AND `uid` = %d AND `rel` IN (%d, %d)",
169 dbesc(normalise_link($profiledata["url"])), intval(local_user()),
170 intval(CONTACT_IS_SHARING), intval(CONTACT_IS_FRIEND));
173 $profiledata["name"] = $r[0]["name"];
174 $profiledata["photo"] = $r[0]["photo"];
175 $profiledata["nickname"] = $r[0]["nick"];
176 $profiledata["addr"] = $r[0]["addr"];
177 $profiledata["keywords"] = $r[0]["keywords"];
178 $profiledata["network"] = $r[0]["network"];
180 if (local_user() OR $showdetails) {
182 $profiledata["address"] = $r[0]["location"];
183 $profiledata["about"] = $r[0]["about"];
184 $profiledata["gender"] = $r[0]["gender"];
188 // Fetching profile data from global contacts
189 if ($profiledata["network"] != NETWORK_FEED) {
190 $r = q("SELECT `name`, `photo`, `nick`, `addr`, `location`, `about`, `gender`, `keywords`, `network` FROM `gcontact` WHERE `nurl` = '%s'", dbesc(normalise_link($profiledata["url"])));
192 $profiledata["name"] = $r[0]["name"];
193 $profiledata["photo"] = $r[0]["photo"];
194 $profiledata["nickname"] = $r[0]["nick"];
195 $profiledata["addr"] = $r[0]["addr"];
196 $profiledata["network"] = $r[0]["network"];
198 if ($r[0]["keywords"])
199 $profiledata["keywords"] = $r[0]["keywords"];
202 if ($r[0]["location"])
203 $profiledata["address"] = $r[0]["location"];
206 $profiledata["about"] = $r[0]["about"];
209 $profiledata["gender"] = $r[0]["gender"];
215 if (in_array($profiledata["network"], array(NETWORK_DFRN, NETWORK_DIASPORA, NETWORK_OSTATUS)))
216 $profiledata["remoteconnect"] = $a->get_baseurl()."/follow?url=".urlencode($profiledata["url"]);
217 } elseif ($profiledata["network"] == NETWORK_DFRN) {
218 $connect = str_replace("/profile/", "/dfrn_request/", $profiledata["url"]);
219 $profiledata["remoteconnect"] = $connect;
222 return($profiledata);
226 if(! function_exists('display_content')) {
227 function display_content(&$a, $update = 0) {
229 if((get_config('system','block_public')) && (! local_user()) && (! remote_user())) {
230 notice( t('Public access denied.') . EOL);
234 require_once('include/security.php');
235 require_once('include/conversation.php');
236 require_once('include/acl_selectors.php');
241 $a->page['htmlhead'] .= replace_macros(get_markup_template('display-head.tpl'), array());
245 $nick = $_REQUEST['nick'];
248 $nick = (($a->argc > 1) ? $a->argv[1] : '');
252 $item_id = $_REQUEST['item_id'];
253 $a->profile = array('uid' => intval($update), 'profile_uid' => intval($update));
256 $item_id = (($a->argc > 2) ? $a->argv[2] : 0);
262 $r = q("SELECT `id` FROM `item`
263 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
264 AND `guid` = '%s' AND `uid` = %d", dbesc($a->argv[1]), local_user());
266 $item_id = $r[0]["id"];
267 $nick = $a->user["nickname"];
272 $r = q("SELECT `user`.`nickname`, `item`.`id` FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid`
273 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
274 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
275 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
276 AND `item`.`private` = 0 AND NOT `user`.`hidewall`
277 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
278 // AND `item`.`private` = 0 AND `item`.`wall` = 1
280 $item_id = $r[0]["id"];
281 $nick = $r[0]["nickname"];
285 $r = q("SELECT `item`.`id` FROM `item`
286 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
287 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
288 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
289 AND `item`.`private` = 0 AND `item`.`uid` = 0
290 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
291 // AND `item`.`private` = 0 AND `item`.`wall` = 1
293 $item_id = $r[0]["id"];
301 notice( t('Item not found.') . EOL);
308 $remote_contact = false;
312 if(is_array($_SESSION['remote'])) {
313 foreach($_SESSION['remote'] as $v) {
314 if($v['uid'] == $a->profile['uid']) {
315 $contact_id = $v['cid'];
322 $groups = init_groups_visitor($contact_id);
323 $r = q("SELECT * FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1",
325 intval($a->profile['uid'])
329 $remote_contact = true;
333 if(! $remote_contact) {
335 $contact_id = $_SESSION['cid'];
336 $contact = $a->contact;
340 $r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `self` = 1 LIMIT 1",
341 intval($a->profile['uid'])
344 $a->page_contact = $r[0];
346 $is_owner = ((local_user()) && (local_user() == $a->profile['profile_uid']) ? true : false);
348 if($a->profile['hidewall'] && (! $is_owner) && (! $remote_contact)) {
349 notice( t('Access to this profile has been restricted.') . EOL);
353 // Why do we need this on the display page? We don't have the possibility to write new content here.
354 // Ad editing of posts work without this as well.
355 // We should remove this completely for the 3.5.1 release.
360 'allow_location' => $a->user['allow_location'],
361 'default_location' => $a->user['default-location'],
362 'nickname' => $a->user['nickname'],
363 'lockstate' => ( (is_array($a->user)) && ((strlen($a->user['allow_cid'])) || (strlen($a->user['allow_gid'])) || (strlen($a->user['deny_cid'])) || (strlen($a->user['deny_gid']))) ? 'lock' : 'unlock'),
364 'acl' => populate_acl($a->user, true),
366 'visitor' => 'block',
367 'profile_uid' => local_user(),
368 'acl_data' => construct_acl_data($a, $a->user), // For non-Javascript ACL selector
370 $o .= status_editor($a,$x,0,true);
374 $sql_extra = item_permissions_sql($a->profile['uid'],$remote_contact,$groups);
376 // AND `item`.`parent` = ( SELECT `parent` FROM `item` FORCE INDEX (PRIMARY, `uri`) WHERE ( `id` = '%s' OR `uri` = '%s' ))
380 $r = q("SELECT id FROM item WHERE item.uid = %d
381 AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE (`id` = '%s' OR `uri` = '%s'))
382 $sql_extra AND unseen = 1",
383 intval($a->profile['uid']),
392 // AND `item`.`parent` = ( SELECT `parent` FROM `item` FORCE INDEX (PRIMARY, `uri`) WHERE ( `id` = '%s' OR `uri` = '%s' )
394 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, `item`.`network` AS `item_network`,
395 `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
396 `contact`.`network`, `contact`.`thumb`, `contact`.`self`, `contact`.`writable`,
397 `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
398 FROM `item` INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
399 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
400 WHERE `item`.`uid` = %d AND `item`.`visible` = 1 AND `item`.`deleted` = 0
401 and `item`.`moderated` = 0
402 AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE (`id` = '%s' OR `uri` = '%s')
405 ORDER BY `parent` DESC, `gravity` ASC, `id` ASC",
406 intval($a->profile['uid']),
409 intval($a->profile['uid'])
412 if(!$r && local_user()) {
413 // Check if this is another person's link to a post that we have
414 $r = q("SELECT `item`.uri FROM `item`
415 WHERE (`item`.`id` = '%s' OR `item`.`uri` = '%s' )
421 $item_uri = $r[0]['uri'];
422 // AND `item`.`parent` = ( SELECT `parent` FROM `item` FORCE INDEX (PRIMARY, `uri`) WHERE `uri` = '%s' AND uid = %d )
424 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, `item`.`network` AS `item_network`,
425 `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
426 `contact`.`network`, `contact`.`thumb`, `contact`.`self`, `contact`.`writable`,
427 `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
428 FROM `item` INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
429 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
430 WHERE `item`.`uid` = %d AND `item`.`visible` = 1 AND `item`.`deleted` = 0
431 and `item`.`moderated` = 0
432 AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE `uri` = '%s' AND uid = %d)
433 ORDER BY `parent` DESC, `gravity` ASC, `id` ASC ",
434 intval(local_user()),
444 if((local_user()) && (local_user() == $a->profile['uid'])) {
445 q("UPDATE `item` SET `unseen` = 0
446 WHERE `parent` = %d AND `unseen` = 1",
447 intval($r[0]['parent'])
451 $items = conv_sort($r,"`commented`");
454 $o .= "<script> var netargs = '?f=&nick=" . $nick . "&item_id=" . $item_id . "'; </script>";
455 $o .= conversation($a,$items,'display', $update);
457 // Preparing the meta header
458 require_once('include/bbcode.php');
459 require_once("include/html2plain.php");
460 $description = trim(html2plain(bbcode($r[0]["body"], false, false), 0, true));
461 $title = trim(html2plain(bbcode($r[0]["title"], false, false), 0, true));
462 $author_name = $r[0]["author-name"];
466 $image = $r[0]["thumb"];
469 $title = $author_name;
471 $description = htmlspecialchars($description, ENT_COMPAT, 'UTF-8', true); // allow double encoding here
472 $title = htmlspecialchars($title, ENT_COMPAT, 'UTF-8', true); // allow double encoding here
473 $author_name = htmlspecialchars($author_name, ENT_COMPAT, 'UTF-8', true); // allow double encoding here
475 //<meta name="keywords" content="">
476 $a->page['htmlhead'] .= '<meta name="author" content="'.$author_name.'" />'."\n";
477 $a->page['htmlhead'] .= '<meta name="title" content="'.$title.'" />'."\n";
478 $a->page['htmlhead'] .= '<meta name="fulltitle" content="'.$title.'" />'."\n";
479 $a->page['htmlhead'] .= '<meta name="description" content="'.$description.'" />'."\n";
481 // Schema.org microdata
482 $a->page['htmlhead'] .= '<meta itemprop="name" content="'.$title.'" />'."\n";
483 $a->page['htmlhead'] .= '<meta itemprop="description" content="'.$description.'" />'."\n";
484 $a->page['htmlhead'] .= '<meta itemprop="image" content="'.$image.'" />'."\n";
485 $a->page['htmlhead'] .= '<meta itemprop="author" content="'.$author_name.'" />'."\n";
488 $a->page['htmlhead'] .= '<meta name="twitter:card" content="summary" />'."\n";
489 $a->page['htmlhead'] .= '<meta name="twitter:title" content="'.$title.'" />'."\n";
490 $a->page['htmlhead'] .= '<meta name="twitter:description" content="'.$description.'" />'."\n";
491 $a->page['htmlhead'] .= '<meta name="twitter:image" content="'.$image.'" />'."\n";
492 $a->page['htmlhead'] .= '<meta name="twitter:url" content="'.$r[0]["plink"].'" />'."\n";
495 $a->page['htmlhead'] .= '<meta name="DC.title" content="'.$title.'" />'."\n";
496 $a->page['htmlhead'] .= '<meta name="DC.description" content="'.$description.'" />'."\n";
499 $a->page['htmlhead'] .= '<meta property="og:type" content="website" />'."\n";
500 $a->page['htmlhead'] .= '<meta property="og:title" content="'.$title.'" />'."\n";
501 $a->page['htmlhead'] .= '<meta property="og:image" content="'.$image.'" />'."\n";
502 $a->page['htmlhead'] .= '<meta property="og:url" content="'.$r[0]["plink"].'" />'."\n";
503 $a->page['htmlhead'] .= '<meta property="og:description" content="'.$description.'" />'."\n";
504 $a->page['htmlhead'] .= '<meta name="og:article:author" content="'.$author_name.'" />'."\n";
510 $r = q("SELECT `id`,`deleted` FROM `item` WHERE `id` = '%s' OR `uri` = '%s' LIMIT 1",
515 if($r[0]['deleted']) {
516 notice( t('Item has been removed.') . EOL );
519 notice( t('Permission denied.') . EOL );
523 notice( t('Item not found.') . EOL );