mod/redir.php

   1 <?php
   2
   3 use Friendica\App;
   4 use Friendica\Core\System;
   5
   6 function redir_init(App $a) {
   7
   8         $url = ((x($_GET,'url')) ? $_GET['url'] : '');
   9         $quiet = ((x($_GET,'quiet')) ? '&quiet=1' : '');
  10         $con_url = ((x($_GET,'conurl')) ? $_GET['conurl'] : '');
  11
  12         // traditional DFRN
  13
  14         if ($con_url || (local_user() && $a->argc > 1 && intval($a->argv[1]))) {
  15
  16                 if ($con_url) {
  17                         $con_url = str_replace('https', 'http', $con_url);
  18
  19                         $r = q("SELECT * FROM `contact` WHERE `nurl` = '%s' AND `uid` = %d LIMIT 1",
  20                                 dbesc($con_url),
  21                                 intval(local_user())
  22                         );
  23
  24                         if (!dbm::is_result($r)) {
  25                                 goaway(System::baseUrl());
  26                         }
  27                         if ($r[0]['network'] !== NETWORK_DFRN) {
  28                                 goaway(($url != '' ? $url : $r[0]['url']));
  29                         }
  30                         $cid = $r[0]['id'];
  31                 } else {
  32                         $cid = $a->argv[1];
  33
  34                         $r = q("SELECT * FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1",
  35                                 intval($cid),
  36                                 intval(local_user())
  37                         );
  38
  39                         if (!dbm::is_result($r)) {
  40                                 goaway(System::baseUrl());
  41                         }
  42                         if ($r[0]['network'] !== NETWORK_DFRN) {
  43                                 goaway(($url != '' ? $url : $r[0]['url']));
  44                         }
  45                 }
  46
  47                 $dfrn_id = $orig_id = (($r[0]['issued-id']) ? $r[0]['issued-id'] : $r[0]['dfrn-id']);
  48
  49                 if ($r[0]['duplex'] && $r[0]['issued-id']) {
  50                         $orig_id = $r[0]['issued-id'];
  51                         $dfrn_id = '1:' . $orig_id;
  52                 }
  53                 if ($r[0]['duplex'] && $r[0]['dfrn-id']) {
  54                         $orig_id = $r[0]['dfrn-id'];
  55                         $dfrn_id = '0:' . $orig_id;
  56                 }
  57
  58                 $sec = random_string();
  59
  60                 q("INSERT INTO `profile_check` ( `uid`, `cid`, `dfrn_id`, `sec`, `expire`)
  61                         VALUES( %d, %s, '%s', '%s', %d )",
  62                         intval(local_user()),
  63                         intval($cid),
  64                         dbesc($dfrn_id),
  65                         dbesc($sec),
  66                         intval(time() + 45)
  67                 );
  68
  69                 logger('mod_redir: ' . $r[0]['name'] . ' ' . $sec, LOGGER_DEBUG);
  70                 $dest = (($url) ? '&destination_url=' . $url : '');
  71                 goaway ($r[0]['poll'] . '?dfrn_id=' . $dfrn_id
  72                         . '&dfrn_version=' . DFRN_PROTOCOL_VERSION . '&type=profile&sec=' . $sec . $dest . $quiet);
  73         }
  74
  75         if (local_user()) {
  76                 $handle = $a->user['nickname'] . '@' . substr(System::baseUrl(),strpos(System::baseUrl(),'://')+3);
  77         }
  78         if (remote_user()) {
  79                 $handle = $_SESSION['handle'];
  80         }
  81
  82         if ($url) {
  83                 $url = str_replace('{zid}','&zid=' . $handle,$url);
  84                 goaway($url);
  85         }
  86
  87         goaway(System::baseUrl());
  88 }