3 function display_init(&$a) {
5 if((get_config('system','block_public')) && (! local_user()) && (! remote_user())) {
9 $nick = (($a->argc > 1) ? $a->argv[1] : '');
10 $profiledata = array();
12 // If there is only one parameter, then check if this parameter could be a guid
17 // Does the local user have this item?
19 $r = q("SELECT `id`, `parent`, `author-name`, `author-link`, `author-avatar`, `network`, `body`, `uid` FROM `item`
20 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
21 AND `guid` = '%s' AND `uid` = %d", dbesc($a->argv[1]), local_user());
23 $nick = $a->user["nickname"];
24 $itemuid = local_user();
28 // Or is it anywhere on the server?
30 $r = q("SELECT `user`.`nickname`, `item`.`id`, `item`.`parent`, `item`.`author-name`,
31 `item`.`author-link`, `item`.`author-avatar`, `item`.`network`, `item`.`uid`, `item`.`body`
32 FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid`
33 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
34 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
35 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
36 AND `item`.`private` = 0 AND NOT `user`.`hidewall`
37 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
38 // AND `item`.`private` = 0 AND `item`.`wall` = 1
40 $nick = $r[0]["nickname"];
41 $itemuid = $r[0]["uid"];
45 // Is it an item with uid=0?
47 $r = q("SELECT `item`.`id`, `item`.`parent`, `item`.`author-name`,
48 `item`.`author-link`, `item`.`author-avatar`, `item`.`network`, `item`.`uid`, `item`.`body`
49 FROM `item` WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
50 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
51 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
52 AND `item`.`private` = 0 AND `item`.`uid` = 0
53 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
54 // AND `item`.`private` = 0 AND `item`.`wall` = 1
57 if ($r[0]["id"] != $r[0]["parent"])
58 $r = q("SELECT `id`, `author-name`, `author-link`, `author-avatar`, `network`, `body`, `uid` FROM `item`
59 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
60 AND `id` = %d", $r[0]["parent"]);
62 $profiledata = display_fetchauthor($a, $r[0]);
64 if (strstr(normalise_link($profiledata["url"]), normalise_link($a->get_baseurl()))) {
65 $nickname = str_replace(normalise_link($a->get_baseurl())."/profile/", "", normalise_link($profiledata["url"]));
67 if (($nickname != $a->user["nickname"])) {
68 $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
69 INNER JOIN `contact` on `contact`.`uid` = `profile`.`uid` INNER JOIN `user` ON `profile`.`uid` = `user`.`uid`
70 WHERE `user`.`nickname` = '%s' AND `profile`.`is-default` = 1 and `contact`.`self` = 1 LIMIT 1",
76 $profiledata["network"] = NETWORK_DFRN;
78 $profiledata = array();
82 notice( t('Item not found.') . EOL);
87 profile_load($a, $nick, 0, $profiledata);
91 function display_fetchauthor($a, $item) {
93 $profiledata = array();
94 $profiledata["uid"] = -1;
95 $profiledata["nickname"] = $item["author-name"];
96 $profiledata["name"] = $item["author-name"];
97 $profiledata["picdate"] = "";
98 $profiledata["photo"] = $item["author-avatar"];
99 $profiledata["url"] = $item["author-link"];
100 $profiledata["network"] = $item["network"];
102 // Check for a repeated message
104 $body = trim($item["body"]);
106 // Skip if it isn't a pure repeated messages
107 // Does it start with a share?
108 if (!$skip AND strpos($body, "[share") > 0)
111 // Does it end with a share?
112 if (!$skip AND (strlen($body) > (strrpos($body, "[/share]") + 8)))
116 $attributes = preg_replace("/\[share(.*?)\]\s?(.*?)\s?\[\/share\]\s?/ism","$1",$body);
117 // Skip if there is no shared message in there
118 if ($body == $attributes)
124 preg_match("/author='(.*?)'/ism", $attributes, $matches);
125 if ($matches[1] != "")
126 $profiledata["name"] = html_entity_decode($matches[1],ENT_QUOTES,'UTF-8');
128 preg_match('/author="(.*?)"/ism', $attributes, $matches);
129 if ($matches[1] != "")
130 $profiledata["name"] = html_entity_decode($matches[1],ENT_QUOTES,'UTF-8');
133 preg_match("/profile='(.*?)'/ism", $attributes, $matches);
134 if ($matches[1] != "")
135 $profiledata["url"] = $matches[1];
137 preg_match('/profile="(.*?)"/ism', $attributes, $matches);
138 if ($matches[1] != "")
139 $profiledata["url"] = $matches[1];
142 preg_match("/avatar='(.*?)'/ism", $attributes, $matches);
143 if ($matches[1] != "")
144 $profiledata["photo"] = $matches[1];
146 preg_match('/avatar="(.*?)"/ism', $attributes, $matches);
147 if ($matches[1] != "")
148 $profiledata["photo"] = $matches[1];
150 $profiledata["nickname"] = $profiledata["name"];
151 $profiledata["network"] = GetProfileUsername($profiledata["url"], "", false, true);
153 $profiledata["address"] = "";
154 $profiledata["about"] = "";
157 // Don't show details from Diaspora contacts if you don't follow the contact
158 $showdetails = ($profiledata["network"] != NETWORK_DIASPORA);
160 // Fetching further contact data from the contact table
161 $r = q("SELECT `uid`, `network`, `name`, `photo`, `nick`, `addr`, `location`, `about`, `gender`, `keywords`
162 FROM `contact` WHERE `nurl` = '%s' AND `uid` = %d AND `network` = '%s' AND `rel` IN (%d, %d)",
163 dbesc(normalise_link($profiledata["url"])), intval(local_user()), dbesc($item["network"]),
164 intval(CONTACT_IS_SHARING), intval(CONTACT_IS_FRIEND));
166 $r = q("SELECT `uid`, `network`, `name`, `photo`, `nick`, `addr`, `location`, `about`, `gender`, `keywords`
167 FROM `contact` WHERE `nurl` = '%s' AND `uid` = %d AND `rel` IN (%d, %d)",
168 dbesc(normalise_link($profiledata["url"])), intval(local_user()),
169 intval(CONTACT_IS_SHARING), intval(CONTACT_IS_FRIEND));
172 $profiledata["name"] = $r[0]["name"];
173 $profiledata["photo"] = $r[0]["photo"];
174 $profiledata["nickname"] = $r[0]["nick"];
175 $profiledata["addr"] = $r[0]["addr"];
176 $profiledata["keywords"] = $r[0]["keywords"];
177 $profiledata["network"] = $r[0]["network"];
179 if (local_user() OR $showdetails) {
181 $profiledata["address"] = $r[0]["location"];
182 $profiledata["about"] = $r[0]["about"];
183 $profiledata["gender"] = $r[0]["gender"];
187 // Fetching profile data from global contacts
188 if ($profiledata["network"] != NETWORK_FEED) {
189 $r = q("SELECT `name`, `photo`, `nick`, `addr`, `location`, `about`, `gender`, `keywords`, `network` FROM `gcontact` WHERE `nurl` = '%s'", dbesc(normalise_link($profiledata["url"])));
191 $profiledata["name"] = $r[0]["name"];
192 $profiledata["photo"] = $r[0]["photo"];
193 $profiledata["nickname"] = $r[0]["nick"];
194 $profiledata["addr"] = $r[0]["addr"];
195 $profiledata["keywords"] = $r[0]["keywords"];
196 $profiledata["network"] = $r[0]["network"];
199 $profiledata["address"] = $r[0]["location"];
200 $profiledata["about"] = $r[0]["about"];
201 $profiledata["gender"] = $r[0]["gender"];
207 if (in_array($profiledata["network"], array(NETWORK_DFRN, NETWORK_DIASPORA, NETWORK_OSTATUS)))
208 $profiledata["remoteconnect"] = $a->get_baseurl()."/follow?url=".urlencode($profiledata["url"]);
209 } elseif ($profiledata["network"] == NETWORK_DFRN) {
210 $connect = str_replace("/profile/", "/dfrn_request/", $profiledata["url"]);
211 $profiledata["remoteconnect"] = $connect;
214 return($profiledata);
217 function display_content(&$a, $update = 0) {
219 if((get_config('system','block_public')) && (! local_user()) && (! remote_user())) {
220 notice( t('Public access denied.') . EOL);
224 require_once('include/security.php');
225 require_once('include/conversation.php');
226 require_once('include/acl_selectors.php');
231 $a->page['htmlhead'] .= replace_macros(get_markup_template('display-head.tpl'), array());
235 $nick = $_REQUEST['nick'];
238 $nick = (($a->argc > 1) ? $a->argv[1] : '');
242 $item_id = $_REQUEST['item_id'];
243 $a->profile = array('uid' => intval($update), 'profile_uid' => intval($update));
246 $item_id = (($a->argc > 2) ? $a->argv[2] : 0);
252 $r = q("SELECT `id` FROM `item`
253 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
254 AND `guid` = '%s' AND `uid` = %d", dbesc($a->argv[1]), local_user());
256 $item_id = $r[0]["id"];
257 $nick = $a->user["nickname"];
262 $r = q("SELECT `user`.`nickname`, `item`.`id` FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid`
263 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
264 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
265 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
266 AND `item`.`private` = 0 AND NOT `user`.`hidewall`
267 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
268 // AND `item`.`private` = 0 AND `item`.`wall` = 1
270 $item_id = $r[0]["id"];
271 $nick = $r[0]["nickname"];
275 $r = q("SELECT `item`.`id` FROM `item`
276 WHERE `item`.`visible` = 1 AND `item`.`deleted` = 0 and `item`.`moderated` = 0
277 AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = ''
278 AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = ''
279 AND `item`.`private` = 0 AND `item`.`uid` = 0
280 AND `item`.`guid` = '%s'", dbesc($a->argv[1]));
281 // AND `item`.`private` = 0 AND `item`.`wall` = 1
283 $item_id = $r[0]["id"];
291 notice( t('Item not found.') . EOL);
298 $remote_contact = false;
302 if(is_array($_SESSION['remote'])) {
303 foreach($_SESSION['remote'] as $v) {
304 if($v['uid'] == $a->profile['uid']) {
305 $contact_id = $v['cid'];
312 $groups = init_groups_visitor($contact_id);
313 $r = q("SELECT * FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1",
315 intval($a->profile['uid'])
319 $remote_contact = true;
323 if(! $remote_contact) {
325 $contact_id = $_SESSION['cid'];
326 $contact = $a->contact;
330 $r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `self` = 1 LIMIT 1",
331 intval($a->profile['uid'])
334 $a->page_contact = $r[0];
336 $is_owner = ((local_user()) && (local_user() == $a->profile['profile_uid']) ? true : false);
338 if($a->profile['hidewall'] && (! $is_owner) && (! $remote_contact)) {
339 notice( t('Access to this profile has been restricted.') . EOL);
343 // Why do we need this on the display page? We don't have the possibility to write new content here.
344 // Ad editing of posts work without this as well.
345 // We should remove this completely for the 3.5.1 release.
350 'allow_location' => $a->user['allow_location'],
351 'default_location' => $a->user['default-location'],
352 'nickname' => $a->user['nickname'],
353 'lockstate' => ( (is_array($a->user)) && ((strlen($a->user['allow_cid'])) || (strlen($a->user['allow_gid'])) || (strlen($a->user['deny_cid'])) || (strlen($a->user['deny_gid']))) ? 'lock' : 'unlock'),
354 'acl' => populate_acl($a->user, true),
356 'visitor' => 'block',
357 'profile_uid' => local_user(),
358 'acl_data' => construct_acl_data($a, $a->user), // For non-Javascript ACL selector
360 $o .= status_editor($a,$x,0,true);
364 $sql_extra = item_permissions_sql($a->profile['uid'],$remote_contact,$groups);
366 // AND `item`.`parent` = ( SELECT `parent` FROM `item` FORCE INDEX (PRIMARY, `uri`) WHERE ( `id` = '%s' OR `uri` = '%s' ))
370 $r = q("SELECT id FROM item WHERE item.uid = %d
371 AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE (`id` = '%s' OR `uri` = '%s'))
372 $sql_extra AND unseen = 1",
373 intval($a->profile['uid']),
382 // AND `item`.`parent` = ( SELECT `parent` FROM `item` FORCE INDEX (PRIMARY, `uri`) WHERE ( `id` = '%s' OR `uri` = '%s' )
384 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, `item`.`network` AS `item_network`,
385 `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
386 `contact`.`network`, `contact`.`thumb`, `contact`.`self`, `contact`.`writable`,
387 `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
388 FROM `item` INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
389 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
390 WHERE `item`.`uid` = %d AND `item`.`visible` = 1 AND `item`.`deleted` = 0
391 and `item`.`moderated` = 0
392 AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE (`id` = '%s' OR `uri` = '%s')
395 ORDER BY `parent` DESC, `gravity` ASC, `id` ASC",
396 intval($a->profile['uid']),
399 intval($a->profile['uid'])
402 if(!$r && local_user()) {
403 // Check if this is another person's link to a post that we have
404 $r = q("SELECT `item`.uri FROM `item`
405 WHERE (`item`.`id` = '%s' OR `item`.`uri` = '%s' )
411 $item_uri = $r[0]['uri'];
412 // AND `item`.`parent` = ( SELECT `parent` FROM `item` FORCE INDEX (PRIMARY, `uri`) WHERE `uri` = '%s' AND uid = %d )
414 $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, `item`.`network` AS `item_network`,
415 `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`rel`,
416 `contact`.`network`, `contact`.`thumb`, `contact`.`self`, `contact`.`writable`,
417 `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
418 FROM `item` INNER JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
419 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
420 WHERE `item`.`uid` = %d AND `item`.`visible` = 1 AND `item`.`deleted` = 0
421 and `item`.`moderated` = 0
422 AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE `uri` = '%s' AND uid = %d)
423 ORDER BY `parent` DESC, `gravity` ASC, `id` ASC ",
424 intval(local_user()),
434 if((local_user()) && (local_user() == $a->profile['uid'])) {
435 q("UPDATE `item` SET `unseen` = 0
436 WHERE `parent` = %d AND `unseen` = 1",
437 intval($r[0]['parent'])
441 $items = conv_sort($r,"`commented`");
444 $o .= "<script> var netargs = '?f=&nick=" . $nick . "&item_id=" . $item_id . "'; </script>";
445 $o .= conversation($a,$items,'display', $update);
447 // Preparing the meta header
448 require_once('include/bbcode.php');
449 require_once("include/html2plain.php");
450 $description = trim(html2plain(bbcode($r[0]["body"], false, false), 0, true));
451 $title = trim(html2plain(bbcode($r[0]["title"], false, false), 0, true));
452 $author_name = $r[0]["author-name"];
456 $image = $r[0]["thumb"];
459 $title = $author_name;
461 $description = htmlspecialchars($description, ENT_COMPAT, 'UTF-8', true); // allow double encoding here
462 $title = htmlspecialchars($title, ENT_COMPAT, 'UTF-8', true); // allow double encoding here
463 $author_name = htmlspecialchars($author_name, ENT_COMPAT, 'UTF-8', true); // allow double encoding here
465 //<meta name="keywords" content="">
466 $a->page['htmlhead'] .= '<meta name="author" content="'.$author_name.'" />'."\n";
467 $a->page['htmlhead'] .= '<meta name="title" content="'.$title.'" />'."\n";
468 $a->page['htmlhead'] .= '<meta name="fulltitle" content="'.$title.'" />'."\n";
469 $a->page['htmlhead'] .= '<meta name="description" content="'.$description.'" />'."\n";
471 // Schema.org microdata
472 $a->page['htmlhead'] .= '<meta itemprop="name" content="'.$title.'" />'."\n";
473 $a->page['htmlhead'] .= '<meta itemprop="description" content="'.$description.'" />'."\n";
474 $a->page['htmlhead'] .= '<meta itemprop="image" content="'.$image.'" />'."\n";
475 $a->page['htmlhead'] .= '<meta itemprop="author" content="'.$author_name.'" />'."\n";
478 $a->page['htmlhead'] .= '<meta name="twitter:card" content="summary" />'."\n";
479 $a->page['htmlhead'] .= '<meta name="twitter:title" content="'.$title.'" />'."\n";
480 $a->page['htmlhead'] .= '<meta name="twitter:description" content="'.$description.'" />'."\n";
481 $a->page['htmlhead'] .= '<meta name="twitter:image" content="'.$image.'" />'."\n";
482 $a->page['htmlhead'] .= '<meta name="twitter:url" content="'.$r[0]["plink"].'" />'."\n";
485 $a->page['htmlhead'] .= '<meta name="DC.title" content="'.$title.'" />'."\n";
486 $a->page['htmlhead'] .= '<meta name="DC.description" content="'.$description.'" />'."\n";
489 $a->page['htmlhead'] .= '<meta property="og:type" content="website" />'."\n";
490 $a->page['htmlhead'] .= '<meta property="og:title" content="'.$title.'" />'."\n";
491 $a->page['htmlhead'] .= '<meta property="og:image" content="'.$image.'" />'."\n";
492 $a->page['htmlhead'] .= '<meta property="og:url" content="'.$r[0]["plink"].'" />'."\n";
493 $a->page['htmlhead'] .= '<meta property="og:description" content="'.$description.'" />'."\n";
494 $a->page['htmlhead'] .= '<meta name="og:article:author" content="'.$author_name.'" />'."\n";
500 $r = q("SELECT `id`,`deleted` FROM `item` WHERE `id` = '%s' OR `uri` = '%s' LIMIT 1",
505 if($r[0]['deleted']) {
506 notice( t('Item has been removed.') . EOL );
509 notice( t('Permission denied.') . EOL );
513 notice( t('Item not found.') . EOL );
projects / friendica.git / blob