]> git.mxchange.org Git - friendica.git/blob - mod/photos.php
"profile locator/address" is now called "Identity Address" to reduce confusion
[friendica.git] / mod / photos.php
1 <?php
2 require_once('include/Photo.php');
3 require_once('include/items.php');
4 require_once('include/acl_selectors.php');
5 require_once('include/bbcode.php');
6
7 function photos_init(&$a) {
8
9         $o = '';
10
11         if($a->argc > 1) {
12                 $nick = $a->argv[1];
13                 $r = q("SELECT * FROM `user` WHERE `nickname` = '%s' AND `blocked` = 0 LIMIT 1",
14                         dbesc($nick)
15                 );
16
17                 if(! count($r))
18                         return;
19
20                 $a->data['user'] = $r[0];
21
22                 $albums = q("SELECT distinct(`album`) AS `album` FROM `photo` WHERE `uid` = %d",
23                         intval($a->data['user']['uid'])
24                 );
25
26                 if(count($albums)) {
27                         $a->data['albums'] = $albums;
28
29                         $o .= '<h4><a href="' . $a->get_baseurl() . '/profile/' . $a->data['user']['nickname'] . '">' . $a->data['user']['username'] . '</a></h4>';
30                         $o .= '<h4>' . '<a href="' . $a->get_baseurl() . '/photos/' . $a->data['user']['nickname'] . '">' . t('Photo Albums') . '</a></h4>';
31                 
32                         $o .= '<ul>';
33                         foreach($albums as $album) {
34                                 if((! strlen($album['album'])) || ($album['album'] == t('Contact Photos')))
35                                         continue;
36                                 $o .= '<li>' . '<a href="photos/' . $a->argv[1] . '/album/' . bin2hex($album['album']) . '" />' . $album['album'] . '</a></li>'; 
37                         }
38                         $o .= '</ul>';
39                 }
40
41                 if(! x($a->page,'aside'))
42                         $a->page['aside'] = '';
43                 $a->page['aside'] .= $o;
44         }
45
46         return;
47 }
48
49
50
51 function photos_post(&$a) {
52
53 logger('mod/photos.php: photos_post(): begin' , 'LOGGER_DEBUG');
54
55 foreach($_REQUEST AS $key => $val) {
56         logger('mod/photos.php: photos_post(): $_REQUEST key: ' . $key . ' val: ' . $val , 'LOGGER_DEBUG');
57 }
58
59 foreach($_FILES AS $key => $val) {
60         logger('mod/photos.php: photos_post(): $_FILES key: ' . $key . ' val: ' . $val , 'LOGGER_DEBUG');
61 }
62
63         $can_post  = false;
64         $visitor   = 0;
65
66         $page_owner_uid = $a->data['user']['uid'];
67         $community_page = (($a->data['user']['page-flags'] == PAGE_COMMUNITY) ? true : false);
68
69         if((local_user()) && (local_user() == $page_owner_uid))
70                 $can_post = true;
71         else {
72                 if($community_page && remote_user()) {
73                         $r = q("SELECT `uid` FROM `contact` WHERE `blocked` = 0 AND `pending` = 0 AND `id` = %d AND `uid` = %d LIMIT 1",
74                                 intval(remote_user()),
75                                 intval($page_owner_uid)
76                         );
77                         if(count($r)) {
78                                 $can_post = true;
79                                 $visitor = remote_user();
80                         }
81                 }
82         }
83
84         if(! $can_post) {
85                 notice( t('Permission denied.') . EOL );
86                 killme();
87         }
88
89         $r = q("SELECT `contact`.*, `user`.`nickname` FROM `contact` LEFT JOIN `user` ON `user`.`uid` = `contact`.`uid` 
90                 WHERE `user`.`uid` = %d AND `self` = 1 LIMIT 1",
91                 intval($page_owner_uid)
92         );
93
94         if(! count($r)) {
95                 notice( t('Contact information unavailable') . EOL);
96                 logger('photos_post: unable to locate contact record for page owner. uid=' . $page_owner_uid);
97                 killme();
98         }
99
100         $owner_record = $r[0];  
101
102
103         if(($a->argc > 3) && ($a->argv[2] === 'album')) {
104                 $album = hex2bin($a->argv[3]);
105
106                 if($album == t('Profile Photos') || $album == t('Contact Photos')) {
107                         goaway($a->get_baseurl() . '/' . $_SESSION['photo_return']);
108                         return; // NOTREACHED
109                 }
110
111                 $r = q("SELECT count(*) FROM `photo` WHERE `album` = '%s' AND `uid` = %d",
112                         dbesc($album),
113                         intval($page_owner_uid)
114                 );
115                 if(! count($r)) {
116                         notice( t('Album not found.') . EOL);
117                         goaway($a->get_baseurl() . '/' . $_SESSION['photo_return']);
118                         return; // NOTREACHED
119                 }
120
121                 $newalbum = notags(trim($_POST['albumname']));
122                 if($newalbum != $album) {
123                         q("UPDATE `photo` SET `album` = '%s' WHERE `album` = '%s' AND `uid` = %d",
124                                 dbesc($newalbum),
125                                 dbesc($album),
126                                 intval($page_owner_uid)
127                         );
128                         $newurl = str_replace(bin2hex($album),bin2hex($newalbum),$_SESSION['photo_return']);
129                         goaway($a->get_baseurl() . '/' . $newurl);
130                         return; // NOTREACHED
131                 }
132
133
134                 if($_POST['dropalbum'] == t('Delete Album')) {
135
136                         $res = array();
137
138                         // get the list of photos we are about to delete
139
140                         if($visitor) {
141                                 $r = q("SELECT distinct(`resource-id`) as `rid` FROM `photo` WHERE `contact-id` = %d AND `uid` = %d AND `album` = '%s'",
142                                         intval($visitor),
143                                         intval($page_owner_uid),
144                                         dbesc($album)
145                                 );
146                         }
147                         else {
148                                 $r = q("SELECT distinct(`resource-id`) as `rid` FROM `photo` WHERE `uid` = %d AND `album` = '%s'",
149                                         intval(local_user()),
150                                         dbesc($album)
151                                 );
152                         }
153                         if(count($r)) {
154                                 foreach($r as $rr) {
155                                         $res[] = "'" . dbesc($rr['rid']) . "'" ;
156                                 }
157                         }
158                         else {
159                                 goaway($a->get_baseurl() . '/' . $_SESSION['photo_return']);
160                                 return; // NOTREACHED
161                         }
162
163                         $str_res = implode(',', $res);
164
165                         // remove the associated photos
166
167                         q("DELETE FROM `photo` WHERE `resource-id` IN ( $str_res ) AND `uid` = %d",
168                                 intval($page_owner_uid)
169                         );
170
171                         // find and delete the corresponding item with all the comments and likes/dislikes
172
173                         $r = q("SELECT `parent-uri` FROM `item` WHERE `resource-id` IN ( $str_res ) AND `uid` = %d",
174                                 intval($page_owner_uid)
175                         );
176                         if(count($r)) {
177                                 foreach($r as $rr) {
178                                         q("UPDATE `item` SET `deleted` = 1, `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d",
179                                                 dbesc(datetime_convert()),
180                                                 dbesc($rr['parent-uri']),
181                                                 intval($page_owner_uid)
182                                         );
183
184                                         $drop_id = intval($rr['id']);
185
186                                         // send the notification upstream/downstream as the case may be
187
188                                         if($rr['visible'])
189                                                 proc_run('php',"include/notifier.php","drop","$drop_id");
190                                 }
191                         }
192                 }
193                 goaway($a->get_baseurl() . '/photos/' . $a->data['user']['nickname']);
194                 return; // NOTREACHED
195         }
196
197         if(($a->argc > 2) && (x($_POST,'delete')) && ($_POST['delete'] == t('Delete Photo'))) {
198
199                 // same as above but remove single photo
200
201                 if($visitor) {
202                         $r = q("SELECT `id`, `resource-id` FROM `photo` WHERE `contact-id` = %d AND `uid` = %d AND `resource-id` = '%s' LIMIT 1",
203                                 intval($visitor),
204                                 intval($page_owner_uid),
205                                 dbesc($a->argv[2])
206                         );
207                 }
208                 else {
209                         $r = q("SELECT `id`, `resource-id` FROM `photo` WHERE `uid` = %d AND `resource-id` = '%s' LIMIT 1",
210                                 intval(local_user()),
211                                 dbesc($a->argv[2])
212                         );
213                 }
214                 if(count($r)) {
215                         q("DELETE FROM `photo` WHERE `uid` = %d AND `resource-id` = '%s'",
216                                 intval($page_owner_uid),
217                                 dbesc($r[0]['resource-id'])
218                         );
219                         $i = q("SELECT * FROM `item` WHERE `resource-id` = '%s' AND `uid` = %d LIMIT 1",
220                                 dbesc($r[0]['resource-id']),
221                                 intval($page_owner_uid)
222                         );
223                         if(count($i)) {
224                                 q("UPDATE `item` SET `deleted` = 1, `edited` = '%s', `changed` = '%s' WHERE `parent-uri` = '%s' AND `uid` = %d",
225                                         dbesc(datetime_convert()),
226                                         dbesc(datetime_convert()),
227                                         dbesc($i[0]['uri']),
228                                         intval($page_owner_uid)
229                                 );
230
231                                 $url = $a->get_baseurl();
232                                 $drop_id = intval($i[0]['id']);
233
234                                 if($i[0]['visible'])
235                                         proc_run('php',"include/notifier.php","drop","$drop_id");
236                         }
237                 }
238
239                 goaway($a->get_baseurl() . '/' . $_SESSION['photo_return']);
240                 return; // NOTREACHED
241         }
242
243         if(($a->argc > 2) && ((x($_POST,'desc') !== false) || (x($_POST,'newtag') !== false)) || (x($_POST,'albname') !== false)) {
244
245                 $desc        = ((x($_POST,'desc'))    ? notags(trim($_POST['desc']))    : '');
246                 $rawtags     = ((x($_POST,'newtag'))  ? notags(trim($_POST['newtag']))  : '');
247                 $item_id     = ((x($_POST,'item_id')) ? intval($_POST['item_id'])       : 0);
248                 $albname     = ((x($_POST,'albname')) ? notags(trim($_POST['albname'])) : '');
249                 $str_group_allow   = perms2str($_POST['group_allow']);
250                 $str_contact_allow = perms2str($_POST['contact_allow']);
251                 $str_group_deny    = perms2str($_POST['group_deny']);
252                 $str_contact_deny  = perms2str($_POST['contact_deny']);
253
254                 $resource_id = $a->argv[2];
255
256                 if(! strlen($albname))
257                         $albname = datetime_convert('UTC',date_default_timezone_get(),'now', 'Y');
258                 
259
260                 $p = q("SELECT * FROM `photo` WHERE `resource-id` = '%s' AND `uid` = %d ORDER BY `scale` DESC",
261                         dbesc($resource_id),
262                         intval($page_owner_uid)
263                 );
264                 if(count($p)) {
265                         $r = q("UPDATE `photo` SET `desc` = '%s', `album` = '%s', `allow_cid` = '%s', `allow_gid` = '%s', `deny_cid` = '%s', `deny_gid` = '%s' WHERE `resource-id` = '%s' AND `uid` = %d",
266                                 dbesc($desc),
267                                 dbesc($albname),
268                                 dbesc($str_contact_allow),
269                                 dbesc($str_group_allow),
270                                 dbesc($str_contact_deny),
271                                 dbesc($str_group_deny),
272                                 dbesc($resource_id),
273                                 intval($page_owner_uid)
274                         );
275                 }
276
277                 /* Don't make the item visible if the only change was the album name */
278
279                 $visibility = 0;
280                 if($p[0]['desc'] !== $desc || strlen($rawtags))
281                         $visibility = 1;
282                 
283                 if(! $item_id) {
284
285                         // Create item container
286
287                         $title = '';
288                         $basename = basename($filename);
289                         $uri = item_new_uri($a->get_hostname(),$page_owner_uid);
290
291                         $arr = array();
292
293                         $arr['uid']           = $page_owner_uid;
294                         $arr['uri']           = $uri;
295                         $arr['parent-uri']    = $uri; 
296                         $arr['type']          = 'photo';
297                         $arr['wall']          = 1;
298                         $arr['resource-id']   = $p[0]['resource-id'];
299                         $arr['contact-id']    = $owner_record['id'];
300                         $arr['owner-name']    = $owner_record['name'];
301                         $arr['owner-link']    = $owner_record['url'];
302                         $arr['owner-avatar']  = $owner_record['thumb'];
303                         $arr['author-name']   = $owner_record['name'];
304                         $arr['author-link']   = $owner_record['url'];
305                         $arr['author-avatar'] = $owner_record['thumb'];
306                         $arr['title']         = $title;
307                         $arr['allow_cid']     = $p[0]['allow_cid'];
308                         $arr['allow_gid']     = $p[0]['allow_gid'];
309                         $arr['deny_cid']      = $p[0]['deny_cid'];
310                         $arr['deny_gid']      = $p[0]['deny_gid'];
311                         $arr['last-child']    = 1;
312                         $arr['visible']       = $visibility;
313                         
314                         $arr['body']          = '[url=' . $a->get_baseurl() . '/photos/' . $a->data['user']['nickname'] . '/image/' . $p[0]['resource-id'] . ']' 
315                                                 . '[img]' . $a->get_baseurl() . '/photo/' . $p[0]['resource-id'] . '-' . $p[0]['scale'] . '.jpg' . '[/img]' 
316                                                 . '[/url]';
317                 
318                         $item_id = item_store($arr);
319
320                 }
321
322                 if($item_id) {
323                         $r = q("SELECT * FROM `item` WHERE `id` = %d AND `uid` = %d LIMIT 1",
324                                 intval($item_id),
325                                 intval($page_owner_uid)
326                         );
327                 }
328                 if(count($r)) {
329                         $old_tag    = $r[0]['tag'];
330                         $old_inform = $r[0]['inform'];
331                 }
332
333                 if(strlen($rawtags)) {
334
335                         $str_tags = '';
336                         $inform   = '';
337
338                         // if the new tag doesn't have a namespace specifier (@foo or #foo) give it a hashtag
339
340                         $x = substr($rawtags,0,1);
341                         if($x !== '@' && $x !== '#')
342                                 $rawtags = '#' . $rawtags;
343
344                         $taginfo = array();
345                         $tags = get_tags($rawtags);
346
347                         if(count($tags)) {
348                                 foreach($tags as $tag) {
349                                         if(strpos($tag,'@') === 0) {
350                                                 $name = substr($tag,1);
351                                                 if((strpos($name,'@')) || (strpos($name,'http://'))) {
352                                                         $newname = $name;
353                                                         $links = @lrdd($name);
354                                                         if(count($links)) {
355                                                                 foreach($links as $link) {
356                                                                         if($link['@attributes']['rel'] === 'http://webfinger.net/rel/profile-page')
357                                                         $profile = $link['@attributes']['href'];
358                                                                         if($link['@attributes']['rel'] === 'salmon') {
359                                                                                 $salmon = '$url:' . str_replace(',','%sc',$link['@attributes']['href']);
360                                                                                 if(strlen($inform))
361                                                                                         $inform .= ',';
362                                                         $inform .= $salmon;
363                                                                         }
364                                                                 }
365                                                         }
366                                                         $taginfo[] = array($newname,$profile,$salmon);
367                                                 }
368                                                 else {
369                                                         $newname = $name;
370                                                         if(strstr($name,'_')) {
371                                                                 $newname = str_replace('_',' ',$name);
372                                                                 $r = q("SELECT * FROM `contact` WHERE `name` = '%s' AND `uid` = %d LIMIT 1",
373                                                                         dbesc($newname),
374                                                                         intval($page_owner_uid)
375                                                                 );
376                                                         }
377                                                         else {
378                                                                 $r = q("SELECT * FROM `contact` WHERE `nick` = '%s' AND `uid` = %d LIMIT 1",
379                                                                         dbesc($name),
380                                                                         intval($page_owner_uid)
381                                                                 );
382                                                         }
383                                                         if(count($r)) {
384                                                                 $newname = $r[0]['name'];
385                                                                 $profile = $r[0]['url'];
386                                                                 $notify = 'cid:' . $r[0]['id'];
387                                                                 if(strlen($inform))
388                                                                         $inform .= ',';
389                                                                 $inform .= $notify;
390                                                         }
391                                                 }
392                                                 if($profile) {
393                                                         if(substr($notify,0,4) === 'cid:')
394                                                                 $taginfo[] = array($newname,$profile,$notify,$r[0],'@[url=' . str_replace(',','%2c',$profile) . ']' . $newname  . '[/url]');
395                                                         else
396                                                                 $taginfo[] = array($newname,$profile,$notify,null,$str_tags .= '@[url=' . $profile . ']' . $newname     . '[/url]');
397                                                         if(strlen($str_tags))
398                                                                 $str_tags .= ',';
399                                                         $profile = str_replace(',','%2c',$profile);
400                                                         $str_tags .= '@[url=' . $profile . ']' . $newname       . '[/url]';
401                                                 }
402                                         }
403                                 }
404                         }
405
406                         $newtag = $old_tag;
407                         if(strlen($newtag) && strlen($str_tags)) 
408                                 $newtag .= ',';
409                         $newtag .= $str_tags;
410
411                         $newinform = $old_inform;
412                         if(strlen($newinform) && strlen($inform))
413                                 $newinform .= ',';
414                         $newinform .= $inform;
415
416                         $r = q("UPDATE `item` SET `tag` = '%s', `inform` = '%s', `edited` = '%s', `changed` = '%s' WHERE `id` = %d AND `uid` = %d LIMIT 1",
417                                 dbesc($newtag),
418                                 dbesc($newinform),
419                                 dbesc(datetime_convert()),
420                                 dbesc(datetime_convert()),
421                                 intval($item_id),
422                                 intval($page_owner_uid)
423                         );
424
425                         $best = 0;
426                         foreach($p as $scales) {
427                                 if(intval($scales['scale']) == 2) {
428                                         $best = 2;
429                                         break;
430                                 }
431                                 if(intval($scales['scale']) == 4) {
432                                         $best = 4;
433                                         break;
434                                 }
435                         }
436
437                         if(count($taginfo)) {
438                                 foreach($taginfo as $tagged) {
439                 
440                                         $uri = item_new_uri($a->get_hostname(),$page_owner_uid);
441
442                                         $arr = array();
443
444                                         $arr['uid']           = $page_owner_uid;
445                                         $arr['uri']           = $uri;
446                                         $arr['parent-uri']    = $uri;
447                                         $arr['type']          = 'activity';
448                                         $arr['wall']          = 1;
449                                         $arr['contact-id']    = $owner_record['id'];
450                                         $arr['owner-name']    = $owner_record['name'];
451                                         $arr['owner-link']    = $owner_record['url'];
452                                         $arr['owner-avatar']  = $owner_record['thumb'];
453                                         $arr['author-name']   = $owner_record['name'];
454                                         $arr['author-link']   = $owner_record['url'];
455                                         $arr['author-avatar'] = $owner_record['thumb'];
456                                         $arr['title']         = '';
457                                         $arr['allow_cid']     = $p[0]['allow_cid'];
458                                         $arr['allow_gid']     = $p[0]['allow_gid'];
459                                         $arr['deny_cid']      = $p[0]['deny_cid'];
460                                         $arr['deny_gid']      = $p[0]['deny_gid'];
461                                         $arr['last-child']    = 1;
462                                         $arr['visible']       = 1;
463                                         $arr['verb']          = ACTIVITY_TAG;
464                                         $arr['object-type']   = ACTIVITY_OBJ_PERSON;
465                                         $arr['target-type']   = ACTIVITY_OBJ_PHOTO;
466                                         $arr['tag']           = $tagged[4];
467                                         $arr['inform']        = $tagged[2];
468
469                                         $arr['body']          = '[url=' . $tagged[1] . ']' . $tagged[0] . '[/url]' . ' ' . t('was tagged in a') . ' ' . '[url=' . $a->get_baseurl() . '/photos/' . $owner_record['nickname'] . '/image/' . $p[0]['resource-id'] . ']' . t('photo') . '[/url]' . ' ' . t('by') . ' ' . '[url=' . $owner_record['url'] . ']' . $owner_record['name'] . '[/url]' ;
470                                         $arr['body'] .= "\n\n" . '[url=' . $a->get_baseurl() . '/photos/' . $owner_record['nickname'] . '/image/' . $p[0]['resource-id'] . ']' . '[img]' . $a->get_baseurl() . "/photo/" . $p[0]['resource-id'] . '-' . $best . '.jpg' . '[/img][/url]' . "\n" ;
471
472                                         $arr['object'] = '<object><type>' . ACTIVITY_OBJ_PERSON . '</type><title>' . $tagged[0] . '</title><id>' . $tagged[1] . '/' . $tagged[0] . '</id>';
473                                         $arr['object'] .= '<link>' . xmlify('<link rel="alternate" type="text/html" href="' . $tagged[1] . '" />' . "\n");
474                                         if($tagged[3])
475                                                 $arr['object'] .= xmlify('<link rel="photo" type="image/jpeg" href="' . $tagged[3]['photo'] . '" />' . "\n");
476                                         $arr['object'] .= '</link></object>' . "\n";
477
478                                         $arr['target'] = '<target><type>' . ACTIVITY_OBJ_PHOTO . '</type><title>' . $p[0]['desc'] . '</title><id>'
479                                                 . $a->get_baseurl() . '/photos/' . $owner_record['nickname'] . '/image/' . $p[0]['resource-id'] . '</id>';
480                                         $arr['target'] .= '<link>' . xmlify('<link rel="alternate" type="text/html" href="' . $a->get_baseurl() . '/photos/' . $owner_record['nickname'] . '/image/' . $p[0]['resource-id'] . '" />' . "\n" . '<link rel="preview" type="image/jpeg" href="' . $a->get_baseurl() . "/photo/" . $p[0]['resource-id'] . '-' . $best . '.jpg' . '" />') . '</link></target>';
481
482                                         $item_id = item_store($arr);
483                                         if($item_id)
484                                                 proc_run('php',"include/notifier.php","tag","$item_id");
485                                 }
486
487                         }
488
489                 }
490                 goaway($a->get_baseurl() . '/' . $_SESSION['photo_return']);
491                 return; // NOTREACHED
492         }
493
494
495         /**
496          * default post action - upload a photo
497          */
498
499         call_hooks('photo_post_init', $_POST);
500
501         /**
502          * Determine the album to use
503          */
504
505         $album    = notags(trim($_REQUEST['album']));
506         $newalbum = notags(trim($_REQUEST['newalbum']));
507
508         logger('mod/photos.php: photos_post(): album= ' . $album . ' newalbum= ' . $newalbum , 'LOGGER_DEBUG');
509
510         if(! strlen($album)) {
511                 if(strlen($newalbum))
512                         $album = $newalbum;
513                 else
514                         $album = datetime_convert('UTC',date_default_timezone_get(),'now', 'Y');
515         }
516
517         /**
518          *
519          * We create a wall item for every photo, but we don't want to
520          * overwhelm the data stream with a hundred newly uploaded photos.
521          * So we will make one photo (the first one uploaded to this album)
522          * visible by default, the rest will become visible over time when and if
523          * they acquire comments, likes, dislikes, and/or tags 
524          *
525          */
526
527         $r = q("SELECT * FROM `photo` WHERE `album` = '%s' AND `uid` = %d",
528                 dbesc($album),
529                 intval($page_owner_uid)
530         );
531         if((! count($r)) || ($album == t('Profile Photos')))
532                 $visible = 1;
533         else
534                 $visible = 0;
535
536         $str_group_allow   = perms2str(((is_array($_REQUEST['group_allow']))   ? $_REQUEST['group_allow']   : explode(',',$_REQUEST['group_allow'])));
537         $str_contact_allow = perms2str(((is_array($_REQUEST['contact_allow'])) ? $_REQUEST['contact_allow'] : explode(',',$_REQUEST['contact_allow'])));
538         $str_group_deny    = perms2str(((is_array($_REQUEST['group_deny']))    ? $_REQUEST['group_deny']    : explode(',',$_REQUEST['group_deny'])));
539         $str_contact_deny  = perms2str(((is_array($_REQUEST['contact_deny']))  ? $_REQUEST['contact_deny']  : explode(',',$_REQUEST['contact_deny'])));
540
541         $ret = array('src' => '', 'filename' => '', 'filesize' => 0);
542
543         call_hooks('photo_post_file',$ret);
544
545         if(x($ret,'src') && x($ret,'filesize')) {
546                 $src      = $ret['src'];
547                 $filename = $ret['filename'];
548                 $filesize = $ret['filesize'];
549         }
550         else {
551                 $src        = $_FILES['userfile']['tmp_name'];
552                 $filename   = basename($_FILES['userfile']['name']);
553                 $filesize   = intval($_FILES['userfile']['size']);
554         }
555
556         $maximagesize = get_config('system','maximagesize');
557
558         if(($maximagesize) && ($filesize > $maximagesize)) {
559                 notice( t('Image exceeds size limit of ') . $maximagesize . EOL);
560                 @unlink($src);
561                 return;
562         }
563
564         logger('mod/photos.php: photos_post(): loading the contents of ' . $src , 'LOGGER_DEBUG');
565
566         $imagedata = @file_get_contents($src);
567         $ph = new Photo($imagedata);
568
569         if(! $ph->is_valid()) {
570                 logger('mod/photos.php: photos_post(): unable to process image' , 'LOGGER_DEBUG');
571                 notice( t('Unable to process image.') . EOL );
572                 @unlink($src);
573                 killme();
574         }
575
576         @unlink($src);
577
578         $width  = $ph->getWidth();
579         $height = $ph->getHeight();
580
581         $smallest = 0;
582
583         $photo_hash = photo_new_resource();
584
585         $r = $ph->store($page_owner_uid, $visitor, $photo_hash, $filename, $album, 0 , 0, $str_contact_allow, $str_group_allow, $str_contact_deny, $str_group_deny);
586
587         if(! $r) {
588                 logger('mod/photos.php: photos_post(): image store failed' , 'LOGGER_DEBUG');
589                 notice( t('Image upload failed.') . EOL );
590                 killme();
591         }
592
593         if($width > 640 || $height > 640) {
594                 $ph->scaleImage(640);
595                 $ph->store($page_owner_uid, $visitor, $photo_hash, $filename, $album, 1, 0, $str_contact_allow, $str_group_allow, $str_contact_deny, $str_group_deny);
596                 $smallest = 1;
597         }
598
599         if($width > 320 || $height > 320) {
600                 $ph->scaleImage(320);
601                 $ph->store($page_owner_uid, $visitor, $photo_hash, $filename, $album, 2, 0, $str_contact_allow, $str_group_allow, $str_contact_deny, $str_group_deny);
602                 $smallest = 2;
603         }
604         
605         $basename = basename($filename);
606         $uri = item_new_uri($a->get_hostname(), $page_owner_uid);
607
608         // Create item container
609
610         $arr = array();
611
612         $arr['uid']           = $page_owner_uid;
613         $arr['uri']           = $uri;
614         $arr['parent-uri']    = $uri;
615         $arr['type']          = 'photo';
616         $arr['wall']          = 1;
617         $arr['resource-id']   = $photo_hash;
618         $arr['contact-id']    = $owner_record['id'];
619         $arr['owner-name']    = $owner_record['name'];
620         $arr['owner-link']    = $owner_record['url'];
621         $arr['owner-avatar']  = $owner_record['thumb'];
622         $arr['author-name']   = $owner_record['name'];
623         $arr['author-link']   = $owner_record['url'];
624         $arr['author-avatar'] = $owner_record['thumb'];
625         $arr['title']         = '';
626         $arr['allow_cid']     = $str_contact_allow;
627         $arr['allow_gid']     = $str_group_allow;
628         $arr['deny_cid']      = $str_contact_deny;
629         $arr['deny_gid']      = $str_group_deny;
630         $arr['last-child']    = 1;
631         $arr['visible']       = $visible;
632         $arr['body']          = '[url=' . $a->get_baseurl() . '/photos/' . $owner_record['nickname'] . '/image/' . $photo_hash . ']' 
633                                 . '[img]' . $a->get_baseurl() . "/photo/{$photo_hash}-{$smallest}.jpg" . '[/img]' 
634                                 . '[/url]';
635
636         $item_id = item_store($arr);
637
638         call_hooks('photo_post_end',intval($item_id));
639
640         // addon uploaders should call "killme()" [e.g. exit] within the photo_post_end hook
641         // if they do not wish to be redirected
642
643         goaway($a->get_baseurl() . '/' . $_SESSION['photo_return']);
644         // NOTREACHED
645 }
646
647
648
649 function photos_content(&$a) {
650
651         // URLs:
652         // photos/name
653         // photos/name/upload
654         // photos/name/album/xxxxx
655         // photos/name/album/xxxxx/edit
656         // photos/name/image/xxxxx
657         // photos/name/image/xxxxx/edit
658
659
660         require_once('include/bbcode.php');
661         require_once('include/security.php');
662         require_once('include/conversation.php');
663
664         if(! x($a->data,'user')) {
665                 notice( t('No photos selected') . EOL );
666                 return;
667         }
668
669         $_SESSION['photo_return'] = $a->cmd;
670
671         //
672         // Parse arguments 
673         //
674
675         if($a->argc > 3) {
676                 $datatype = $a->argv[2];
677                 $datum = $a->argv[3];
678         }
679         elseif(($a->argc > 2) && ($a->argv[2] === 'upload'))
680                 $datatype = 'upload';
681         else
682                 $datatype = 'summary';
683
684         if($a->argc > 4)
685                 $cmd = $a->argv[4];
686         else
687                 $cmd = 'view';
688
689         //
690         // Setup permissions structures
691         //
692
693         $can_post       = false;
694         $visitor        = 0;
695         $contact        = null;
696         $remote_contact = false;
697
698         $owner_uid = $a->data['user']['uid'];
699
700         $community_page = (($a->data['user']['page-flags'] == PAGE_COMMUNITY) ? true : false);
701
702         if((local_user()) && (local_user() == $owner_uid))
703                 $can_post = true;
704         else {
705                 if($community_page && remote_user()) {
706                         $r = q("SELECT `uid` FROM `contact` WHERE `blocked` = 0 AND `pending` = 0 AND `id` = %d AND `uid` = %d LIMIT 1",
707                                 intval(remote_user()),
708                                 intval($owner_uid)
709                         );
710                         if(count($r)) {
711                                 $can_post = true;
712                                 $contact  = $r[0];
713                                 $remote_contact = true;
714                                 $visitor = remote_user();
715                         }
716                 }
717         }
718
719         // perhaps they're visiting - but not a community page, so they wouldn't have write access
720
721         if(remote_user() && (! $visitor)) {
722                 $contact_id = $_SESSION['visitor_id'];
723                 $groups = init_groups_visitor($contact_id);
724                 $r = q("SELECT * FROM `contact` WHERE `blocked` = 0 AND `pending` = 0 AND `id` = %d AND `uid` = %d LIMIT 1",
725                         intval(remote_user()),
726                         intval($owner_uid)
727                 );
728                 if(count($r)) {
729                         $contact = $r[0];
730                         $remote_contact = true;
731                 }
732         }
733
734         if(! $remote_contact) {
735                 if(local_user()) {
736                         $contact_id = $_SESSION['cid'];
737                         $contact = $a->contact;
738                 }
739         }
740
741         // default permissions - anonymous user
742
743         $sql_extra = " AND `allow_cid` = '' AND `allow_gid` = '' AND `deny_cid` = '' AND `deny_gid` = '' ";
744
745         // Profile owner - everything is visible
746
747         if(local_user() && (local_user() == $owner_uid)) {
748                 $sql_extra = '';        
749         }
750         elseif(remote_user()) {
751                 // authenticated visitor - here lie dragons
752                 $gs = '<<>>'; // should be impossible to match
753                 if(count($groups)) {
754                         foreach($groups as $g)
755                                 $gs .= '|<' . intval($g) . '>';
756                 } 
757                 $sql_extra = sprintf(
758                         " AND ( `allow_cid` = '' OR `allow_cid` REGEXP '<%d>' ) 
759                           AND ( `deny_cid`  = '' OR  NOT `deny_cid` REGEXP '<%d>' ) 
760                           AND ( `allow_gid` = '' OR `allow_gid` REGEXP '%s' )
761                           AND ( `deny_gid`  = '' OR NOT `deny_gid` REGEXP '%s') ",
762
763                         intval(remote_user()),
764                         intval(remote_user()),
765                         dbesc($gs),
766                         dbesc($gs)
767                 );
768         }
769
770         //
771         // dispatch request
772         //
773
774
775         if($datatype === 'upload') {
776                 if(! ($can_post)) {
777                         notice( t('Permission denied.'));
778                         return;
779                 }
780                 $albumselect = '<select id="photos-upload-album-select" name="album" size="4">';
781
782                 $albumselect .= '<option value="" selected="selected" >&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</option>';
783                 if(count($a->data['albums'])) {
784                         foreach($a->data['albums'] as $album) {
785                                 if(($album['album'] === '') || ($album['album'] == t('Contact Photos')))
786                                         continue;
787                                 $albumselect .= '<option value="' . $album['album'] . '">' . $album['album'] . '</option>';
788                         }
789                 }
790
791                 $celeb = ((($a->user['page-flags'] == PAGE_SOAPBOX) || ($a->user['page-flags'] == PAGE_COMMUNITY)) ? true : false);
792
793                 $albumselect .= '</select>';
794
795                 $uploader = '';
796
797                 $ret = array('post_url' => $a->get_baseurl() . '/photos/' . $a->data['user']['nickname'],
798                                 'addon_text' => $uploader,
799                                 'default_upload' => true);
800
801
802                 call_hooks('photo_upload_form',$ret);
803
804                 $default_upload = '<input type="file" name="userfile" />        <div class="photos-upload-submit-wrapper" >
805                 <input type="submit" name="submit" value="' . t('Submit') . '" id="photos-upload-submit" /> </div>';
806
807
808  
809
810                 $tpl = load_view_file('view/photos_upload.tpl');
811                 $o .= replace_macros($tpl,array(
812                         '$pagename' => t('Upload Photos'),
813                         '$sessid' => session_id(),
814                         '$nickname' => $a->data['user']['nickname'],
815                         '$newalbum' => t('New album name: '),
816                         '$existalbumtext' => t('or existing album name: '),
817                         '$albumselect' => $albumselect,
818                         '$permissions' => t('Permissions'),
819                         '$aclselect' => (($visitor) ? '' : populate_acl($a->user, $celeb)),
820                         '$uploader' => $ret['addon_text'],
821                         '$default' => (($ret['default_upload']) ? $default_upload : ''),
822                         '$uploadurl' => $ret['post_url']
823
824                 ));
825
826                 return $o; 
827         }
828
829         if($datatype === 'album') {
830
831                 $album = hex2bin($datum);
832
833                 $r = q("SELECT `resource-id`, max(`scale`) AS `scale` FROM `photo` WHERE `uid` = %d AND `album` = '%s' 
834                         $sql_extra GROUP BY `resource-id`",
835                         intval($owner_uid),
836                         dbesc($album)
837                 );
838                 if(count($r)) {
839                         $a->set_pager_total(count($r));
840                         $a->set_pager_itemspage(20);
841                 }
842
843                 $r = q("SELECT `resource-id`, `id`, `filename`, max(`scale`) AS `scale`, `desc` FROM `photo` WHERE `uid` = %d AND `album` = '%s' 
844                         $sql_extra GROUP BY `resource-id` ORDER BY `created` DESC LIMIT %d , %d",
845                         intval($owner_uid),
846                         dbesc($album),
847                         intval($a->pager['start']),
848                         intval($a->pager['itemspage'])
849                 );
850
851                 $o .= '<h3>' . $album . '</h3>';
852                 
853                 if($cmd === 'edit') {           
854                         if(($album != t('Profile Photos')) && ($album != t('Contact Photos'))) {
855                                 if($can_post) {
856                                         $edit_tpl = load_view_file('view/album_edit.tpl');
857                                         $o .= replace_macros($edit_tpl,array(
858                                                 '$nametext' => t('New album name: '),
859                                                 '$nickname' => $a->data['user']['nickname'],
860                                                 '$album' => $album,
861                                                 '$hexalbum' => bin2hex($album),
862                                                 '$submit' => t('Submit'),
863                                                 '$dropsubmit' => t('Delete Album')
864                                         ));
865                                 }
866                         }
867                 }
868                 else {
869                         if(($album != t('Profile Photos')) && ($album != t('Contact Photos'))) {
870                                 if($can_post) {
871                                         $o .= '<div id="album-edit-link"><a href="'. $a->get_baseurl() . '/photos/' 
872                                                 . $a->data['user']['nickname'] . '/album/' . bin2hex($album) . '/edit' . '">' 
873                                                 . t('Edit Album') . '</a></div>';
874                                 }
875                         }
876                 }
877                 $tpl = load_view_file('view/photo_album.tpl');
878                 if(count($r))
879                         foreach($r as $rr) {
880                                 $o .= replace_macros($tpl,array(
881                                         '$id' => $rr['id'],
882                                         '$photolink' => $a->get_baseurl() . '/photos/' . $a->data['user']['nickname'] . '/image/' . $rr['resource-id'],
883                                         '$phototitle' => t('View Photo'),
884                                         '$imgsrc' => $a->get_baseurl() . '/photo/' . $rr['resource-id'] . '-' . $rr['scale'] . '.jpg',
885                                         '$imgalt' => $rr['filename'],
886                                         '$desc'=> $rr['desc']
887                                 ));
888
889                 }
890                 $o .= '<div id="photo-album-end"></div>';
891                 $o .= paginate($a);
892
893                 return $o;
894
895         }       
896
897
898         if($datatype === 'image') {
899
900
901
902                 $o = '<div id="live-display"></div>' . "\r\n";
903                 // fetch image, item containing image, then comments
904
905                 $ph = q("SELECT * FROM `photo` WHERE `uid` = %d AND `resource-id` = '%s' 
906                         $sql_extra ORDER BY `scale` ASC ",
907                         intval($owner_uid),
908                         dbesc($datum)
909                 );
910
911                 if(! count($ph)) {
912                         notice( t('Photo not available') . EOL );
913                         return;
914                 }
915
916                 $prevlink = '';
917                 $nextlink = '';
918
919                 $prvnxt = q("SELECT `resource-id` FROM `photo` WHERE `album` = '%s' AND `uid` = %d AND `scale` = 0 
920                         $sql_extra ORDER BY `created` DESC ",
921                         dbesc($ph[0]['album']),
922                         intval($owner_uid)
923                 ); 
924
925                 if(count($prvnxt)) {
926                         for($z = 0; $z < count($prvnxt); $z++) {
927                                 if($prvnxt[$z]['resource-id'] == $ph[0]['resource-id']) {
928                                         $prv = $z - 1;
929                                         $nxt = $z + 1;
930                                         if($prv < 0)
931                                                 $prv = count($prvnxt) - 1;
932                                         if($nxt >= count($prvnxt))
933                                                 $nxt = 0;
934                                         break;
935                                 }
936                         }
937                         $prevlink = $a->get_baseurl() . '/photos/' . $a->data['user']['nickname'] . '/image/' . $prvnxt[$prv]['resource-id'] ;
938                         $nextlink = $a->get_baseurl() . '/photos/' . $a->data['user']['nickname'] . '/image/' . $prvnxt[$nxt]['resource-id'] ;
939                 }
940
941
942                 if(count($ph) == 1)
943                         $hires = $lores = $ph[0];
944                 if(count($ph) > 1) {
945                         if($ph[1]['scale'] == 2) {
946                                 // original is 640 or less, we can display it directly
947                                 $hires = $lores = $ph[0];
948                         }
949                         else {
950                         $hires = $ph[0];
951                         $lores = $ph[1];
952                         }
953                 }
954
955                 
956                 $o .= '<h3>' . '<a href="' . $a->get_baseurl() . '/photos/' . $a->data['user']['nickname'] . '/album/' . bin2hex($ph[0]['album']) . '">' . $ph[0]['album'] . '</a></h3>';
957  
958                 if($can_post && ($ph[0]['uid'] == $owner_uid)) {
959                         $o .= '<div id="photo-edit-link-wrap" ><a id="photo-edit-link" href="' . $a->get_baseurl() . '/photos/' . $a->data['user']['nickname'] . '/image/' . $datum . '/edit' . '">' . t('Edit photo') . '</a>';
960                         
961                         $o .= ' - <a id="photo-toprofile-link" href="' . $a->get_baseurl() . '/profile_photo/use/'.$ph[0]['resource-id'].'">'.t('Use as profile photo').'</a>';
962                         // lock
963                         $o .= ( ( ($ph[0]['uid'] == local_user()) && (strlen($ph[0]['allow_cid']) || strlen($ph[0]['allow_gid']) 
964                                         || strlen($ph[0]['deny_cid']) || strlen($ph[0]['deny_gid'])) ) 
965                                         ? ' - <img src="images/lock_icon.gif" class="lockview" alt="' . t('Private Message') . '" onclick="lockview(event,\'photo/' . $ph[0]['id'] . '\');" />'
966                                         : '');
967                         
968                         $o .= '</div>';
969                 }
970
971                 if($prevlink)
972                         $o .= '<div id="photo-prev-link"><a href="' . $prevlink .'">' . t('<< Prev') . '</a></div>' ;
973
974                 $o .= '<div id="photo-photo"><a href="' . $a->get_baseurl() . '/photo/' 
975                         . $hires['resource-id'] . '-' . $hires['scale'] . '.jpg" title="' 
976                         . t('View Full Size') . '" ><img src="' . $a->get_baseurl() . '/photo/' 
977                         . $lores['resource-id'] . '-' . $lores['scale'] . '.jpg' . '" /></a></div>';
978
979                 if($nextlink)
980                         $o .= '<div id="photo-next-link"><a href="' . $nextlink .'">' . t('Next >>') . '</a></div>';
981
982                 $o .= '<div id="photo-photo-end"></div>';
983
984
985                 // Do we have an item for this photo?
986
987                 $linked_items = q("SELECT * FROM `item` WHERE `resource-id` = '%s' $sql_extra LIMIT 1",
988                         dbesc($datum)
989                 );
990                 if(count($linked_items)) {
991                         $link_item = $linked_items[0];
992                         $r = q("SELECT COUNT(*) AS `total`
993                                 FROM `item` LEFT JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
994                                 WHERE `parent-uri` = '%s' AND `uri` != '%s' AND `item`.`deleted` = 0
995                                 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
996                                 AND `item`.`uid` = %d 
997                                 $sql_extra ",
998                                 dbesc($link_item['uri']),
999                                 dbesc($link_item['uri']),
1000                                 intval($link_item['uid'])
1001
1002                         );
1003
1004                         if(count($r))
1005                                 $a->set_pager_total($r[0]['total']);
1006
1007
1008                         $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, 
1009                                 `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`network`, 
1010                                 `contact`.`rel`, `contact`.`thumb`, `contact`.`self`, 
1011                                 `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid`
1012                                 FROM `item` LEFT JOIN `contact` ON `contact`.`id` = `item`.`contact-id`
1013                                 WHERE `parent-uri` = '%s' AND `uri` != '%s' AND `item`.`deleted` = 0
1014                                 AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0
1015                                 AND `item`.`uid` = %d
1016                                 $sql_extra
1017                                 ORDER BY `parent` DESC, `id` ASC LIMIT %d ,%d ",
1018                                 dbesc($link_item['uri']),
1019                                 dbesc($link_item['uri']),
1020                                 intval($link_item['uid']),
1021                                 intval($a->pager['start']),
1022                                 intval($a->pager['itemspage'])
1023
1024                         );
1025                 
1026                         if((local_user()) && (local_user() == $link_item['uid'])) {
1027                                 q("UPDATE `item` SET `unseen` = 0 WHERE `parent` = %d and `uid` = %d",
1028                                         intval($link_item['parent']),
1029                                         intval(local_user())
1030                                 );
1031                         }
1032                 }
1033
1034                 $o .= '<div id="photo-caption" >' . $ph[0]['desc'] . '</div>';
1035
1036                 if(count($linked_items) && strlen($link_item['tag'])) {
1037                         $arr = explode(',',$link_item['tag']);
1038                         // parse tags and add links     
1039                         $o .= '<div id="in-this-photo-text">' . t('Tags: ') . '</div>';
1040                         $o .= '<div id="in-this-photo">';
1041                         $tag_str = '';
1042                         foreach($arr as $t) {
1043                                 if(strlen($tag_str))
1044                                         $tag_str .= ', ';
1045                                 $tag_str .= bbcode($t);
1046                         } 
1047                         $o .= $tag_str . '</div>';
1048                         if($cmd === 'edit')
1049                                 $o .= '<div id="tag-remove"><a href="' . $a->get_baseurl() . '/tagrm/' . $link_item['id'] . '">' . t('[Remove any tag]') . '</a></div>';
1050                 }
1051
1052
1053                 if(($cmd === 'edit') && ($can_post)) {
1054                         $edit_tpl = load_view_file('view/photo_edit.tpl');
1055                         $o .= replace_macros($edit_tpl, array(
1056                                 '$id' => $ph[0]['id'],
1057                                 '$album' => $ph[0]['album'],
1058                                 '$newalbum' => t('New album name'), 
1059                                 '$nickname' => $a->data['user']['nickname'],
1060                                 '$resource_id' => $ph[0]['resource-id'],
1061                                 '$capt_label' => t('Caption'),
1062                                 '$caption' => $ph[0]['desc'],
1063                                 '$tag_label' => t('Add a Tag'),
1064                                 '$tags' => $link_item['tag'],
1065                                 '$permissions' => t('Permissions'),
1066                                 '$aclselect' => populate_acl($ph[0]),
1067                                 '$help_tags' => t('Example: @bob, @Barbara_Jensen, @jim@example.com, #California, #camping'),
1068                                 '$item_id' => ((count($linked_items)) ? $link_item['id'] : 0),
1069                                 '$submit' => t('Submit'),
1070                                 '$delete' => t('Delete Photo')
1071                         ));
1072                 }
1073
1074                 if(count($linked_items)) {
1075
1076                         $cmnt_tpl = load_view_file('view/comment_item.tpl');
1077                         $tpl = load_view_file('view/photo_item.tpl');
1078                         $return_url = $a->cmd;
1079
1080                         $like_tpl = load_view_file('view/like_noshare.tpl');
1081
1082                         $likebuttons = '';
1083
1084                         if($can_post || can_write_wall($a,$owner_uid)) {
1085                                 $likebuttons = replace_macros($like_tpl,array(
1086                                         '$id' => $item['id'],
1087                                         '$likethis' => t("I like this \x28toggle\x29"),
1088                                         '$nolike' => t("I don't like this \x28toggle\x29"),
1089                                         '$share' => t('Share'),
1090                                         '$wait' => t('Please wait') 
1091                                 ));
1092                         }
1093
1094                         if(! count($r)) {
1095                                 $o .= '<div id="photo-like-div">';
1096                                 $o .= $likebuttons;
1097                                 $o .= '</div>';
1098
1099                                 if($can_post || can_write_wall($a,$owner_uid)) {
1100                                         if($link_item['last-child']) {
1101                                                 $o .= replace_macros($cmnt_tpl,array(
1102                                                         '$return_path' => '', 
1103                                                         '$jsreload' => $return_url,
1104                                                         '$type' => 'wall-comment',
1105                                                         '$id' => $link_item['id'],
1106                                                         '$parent' => $link_item['id'],
1107                                                         '$profile_uid' =>  $owner_uid,
1108                                                         '$mylink' => $contact['url'],
1109                                                         '$mytitle' => t('This is you'),
1110                                                         '$myphoto' => $contact['thumb'],
1111                                                         '$comment' => t('Comment'),
1112                                                         '$submit' => t('Submit'),
1113                                                         '$ww' => ''
1114                                                 ));
1115                                         }
1116                                 }
1117                         }
1118
1119                         $alike = array();
1120                         $dlike = array();
1121
1122                         // display comments
1123                         if(count($r)) {
1124
1125                                 foreach($r as $item) {
1126                                         like_puller($a,$item,$alike,'like');
1127                                         like_puller($a,$item,$dlike,'dislike');
1128                                 }
1129
1130                                 $like    = ((isset($alike[$link_item['id']])) ? format_like($alike[$link_item['id']],$alike[$link_item['id'] . '-l'],'like',$link_item['id']) : '');
1131                                 $dislike = ((isset($dlike[$link_item['id']])) ? format_like($dlike[$link_item['id']],$dlike[$link_item['id'] . '-l'],'dislike',$link_item['id']) : '');
1132
1133                                 $o .= '<div id="photo-like-div">';
1134                                 $o .= $likebuttons;
1135                                 $o .= $like;
1136                                 $o .= $dislike;
1137                                 $o .= '</div>';
1138
1139
1140
1141                                 if($can_post || can_write_wall($a,$owner_uid)) {
1142                                         if($link_item['last-child']) {
1143                                                 $o .= replace_macros($cmnt_tpl,array(
1144                                                         '$return_path' => '',
1145                                                         '$jsreload' => $return_url,
1146                                                         '$type' => 'wall-comment',
1147                                                         '$id' => $link_item['id'],
1148                                                         '$parent' => $link_item['id'],
1149                                                         '$profile_uid' =>  $owner_uid,
1150                                                         '$mylink' => $contact['url'],
1151                                                         '$mytitle' => t('This is you'),
1152                                                         '$myphoto' => $contact['thumb'],
1153                                                         '$ww' => ''
1154                                                 ));
1155                                         }
1156                                 }
1157
1158
1159                                 foreach($r as $item) {
1160                                         $comment = '';
1161                                         $template = $tpl;
1162                                         $sparkle = '';
1163
1164                                         if(((activity_match($item['verb'],ACTIVITY_LIKE)) || (activity_match($item['verb'],ACTIVITY_DISLIKE))) && ($item['id'] != $item['parent']))
1165                                                 continue;
1166
1167                                         $redirect_url = $a->get_baseurl() . '/redir/' . $item['cid'] ;
1168                         
1169                                         if($can_post || can_write_wall($a,$owner_uid)) {
1170
1171                                                 if($item['last-child']) {
1172                                                         $comment = replace_macros($cmnt_tpl,array(
1173                                                                 '$return_path' => '',
1174                                                                 '$jsreload' => $return_url,
1175                                                                 '$type' => 'wall-comment',
1176                                                                 '$id' => $item['item_id'],
1177                                                                 '$parent' => $item['parent'],
1178                                                                 '$profile_uid' =>  $owner_uid,
1179                                                                 '$mylink' => $contact['url'],
1180                                                                 '$mytitle' => t('This is you'),
1181                                                                 '$myphoto' => $contact['thumb'],
1182                                                                 '$ww' => ''
1183                                                         ));
1184                                                 }
1185                                         }
1186
1187
1188                                         if(local_user() && ($item['contact-uid'] == local_user()) 
1189                                                 && ($item['network'] == 'dfrn') && (! $item['self'] )) {
1190                                                 $profile_url = $redirect_url;
1191                                                 $sparkle = ' sparkle';
1192                                         }
1193                                         else {
1194                                                 $profile_url = $item['url'];
1195                                                 $sparkle = '';
1196                                         }
1197  
1198                                         $diff_author = (($item['url'] !== $item['author-link']) ? true : false);
1199
1200                                         $profile_name   = (((strlen($item['author-name']))   && $diff_author) ? $item['author-name']   : $item['name']);
1201                                         $profile_avatar = (((strlen($item['author-avatar'])) && $diff_author) ? $item['author-avatar'] : $item['thumb']);
1202
1203                                         $profile_link = $profile_url;
1204
1205                                         $drop = '';
1206
1207                                         if(($item['contact-id'] == remote_user()) || ($item['uid'] == local_user()))
1208                                                 $drop = replace_macros(load_view_file('view/wall_item_drop.tpl'), array('$id' => $item['id'], '$delete' => t('Delete')));
1209
1210
1211                                         $o .= replace_macros($template,array(
1212                                                 '$id' => $item['item_id'],
1213                                                 '$profile_url' => $profile_link,
1214                                                 '$name' => $profile_name,
1215                                                 '$thumb' => $profile_avatar,
1216                                                 '$sparkle' => $sparkle,
1217                                                 '$title' => $item['title'],
1218                                                 '$body' => bbcode($item['body']),
1219                                                 '$ago' => relative_date($item['created']),
1220                                                 '$indent' => (($item['parent'] != $item['item_id']) ? ' comment' : ''),
1221                                                 '$drop' => $drop,
1222                                                 '$comment' => $comment
1223                                         ));
1224                                 }
1225                         }
1226
1227                         $o .= paginate($a);
1228                 }
1229                 return $o;
1230         }
1231
1232         // Default - show recent photos with upload link (if applicable)
1233         $o = '';
1234
1235         $r = q("SELECT `resource-id`, max(`scale`) AS `scale` FROM `photo` WHERE `uid` = %d AND `album` != '%s' 
1236                 $sql_extra GROUP BY `resource-id`",
1237                 intval($a->data['user']['uid']),
1238                 dbesc( t('Contact Photos'))
1239         );
1240         if(count($r)) {
1241                 $a->set_pager_total(count($r));
1242                 $a->set_pager_itemspage(20);
1243         }
1244
1245         $r = q("SELECT `resource-id`, `id`, `filename`, `album`, max(`scale`) AS `scale` FROM `photo`
1246                 WHERE `uid` = %d AND `album` != '%s' 
1247                 $sql_extra GROUP BY `resource-id` ORDER BY `created` DESC LIMIT %d , %d",
1248                 intval($a->data['user']['uid']),
1249                 dbesc( t('Contact Photos')),
1250                 intval($a->pager['start']),
1251                 intval($a->pager['itemspage'])
1252         );
1253
1254         $o .= '<h3>' . t('Recent Photos') . '</h3>';
1255
1256         if($can_post) {
1257                 $o .= '<div id="photo-top-links"><a id="photo-top-upload-link" href="'. $a->get_baseurl() . '/photos/' 
1258                         . $a->data['user']['nickname'] . '/upload' . '">' . t('Upload New Photos') . '</a></div>';
1259         }
1260
1261         $tpl = load_view_file('view/photo_top.tpl');
1262         if(count($r)) {
1263                 foreach($r as $rr) {
1264                         $o .= replace_macros($tpl,array(
1265                                 '$id'         => $rr['id'],
1266                                 '$photolink'  => $a->get_baseurl() . '/photos/' . $a->data['user']['nickname'] . '/image/' . $rr['resource-id'],
1267                                 '$phototitle' => t('View Photo'),
1268                                 '$imgsrc'     => $a->get_baseurl() . '/photo/' . $rr['resource-id'] . '-' . ((($rr['scale']) == 6) ? 4 : $rr['scale']) . '.jpg',
1269                                 '$albumlink'  => $a->get_baseurl() . '/photos/' . $a->data['user']['nickname'] . '/album/' . bin2hex($rr['album']),
1270                                 '$albumname'  => $rr['album'],
1271                                 '$albumalt'   => t('View Album'),
1272                                 '$imgalt'     => $rr['filename']
1273                         ));
1274
1275                 }
1276                 $o .= '<div id="photo-top-end"></div>';
1277         }
1278         $o .= paginate($a);
1279         return $o;
1280 }
1281