]> git.mxchange.org Git - friendica.git/blob - mod/settings.php
The central item fetch does work now and the API now uses these functions
[friendica.git] / mod / settings.php
1 <?php
2 /**
3  * @file mod/settings.php
4  */
5
6 use Friendica\App;
7 use Friendica\Content\Feature;
8 use Friendica\Content\Nav;
9 use Friendica\Core\ACL;
10 use Friendica\Core\Addon;
11 use Friendica\Core\Config;
12 use Friendica\Core\L10n;
13 use Friendica\Core\PConfig;
14 use Friendica\Core\System;
15 use Friendica\Core\Theme;
16 use Friendica\Core\Worker;
17 use Friendica\Database\DBM;
18 use Friendica\Model\Contact;
19 use Friendica\Model\GContact;
20 use Friendica\Model\Group;
21 use Friendica\Model\User;
22 use Friendica\Protocol\Email;
23 use Friendica\Util\Network;
24 use Friendica\Util\Temporal;
25
26 function get_theme_config_file($theme)
27 {
28         $a = get_app();
29         $base_theme = $a->theme_info['extends'];
30
31         if (file_exists("view/theme/$theme/config.php")) {
32                 return "view/theme/$theme/config.php";
33         }
34         if (file_exists("view/theme/$base_theme/config.php")) {
35                 return "view/theme/$base_theme/config.php";
36         }
37         return null;
38 }
39
40 function settings_init(App $a)
41 {
42         if (!local_user()) {
43                 notice(L10n::t('Permission denied.') . EOL);
44                 return;
45         }
46
47         // These lines provide the javascript needed by the acl selector
48
49         $tpl = get_markup_template('settings/head.tpl');
50         $a->page['htmlhead'] .= replace_macros($tpl, [
51                 '$ispublic' => L10n::t('everybody')
52         ]);
53
54         $tabs = [
55                 [
56                         'label' => L10n::t('Account'),
57                         'url'   => 'settings',
58                         'selected'      =>  (($a->argc == 1) && ($a->argv[0] === 'settings')?'active':''),
59                         'accesskey' => 'o',
60                 ],
61         ];
62
63         if (Feature::get()) {
64                 $tabs[] =       [
65                                         'label' => L10n::t('Additional features'),
66                                         'url'   => 'settings/features',
67                                         'selected'      => (($a->argc > 1) && ($a->argv[1] === 'features') ? 'active' : ''),
68                                         'accesskey' => 't',
69                                 ];
70         }
71
72         $tabs[] =       [
73                 'label' => L10n::t('Display'),
74                 'url'   => 'settings/display',
75                 'selected'      => (($a->argc > 1) && ($a->argv[1] === 'display')?'active':''),
76                 'accesskey' => 'i',
77         ];
78
79         $tabs[] =       [
80                 'label' => L10n::t('Social Networks'),
81                 'url'   => 'settings/connectors',
82                 'selected'      => (($a->argc > 1) && ($a->argv[1] === 'connectors')?'active':''),
83                 'accesskey' => 'w',
84         ];
85
86         $tabs[] =       [
87                 'label' => L10n::t('Addons'),
88                 'url'   => 'settings/addon',
89                 'selected'      => (($a->argc > 1) && ($a->argv[1] === 'addon')?'active':''),
90                 'accesskey' => 'l',
91         ];
92
93         $tabs[] =       [
94                 'label' => L10n::t('Delegations'),
95                 'url'   => 'delegate',
96                 'selected'      => (($a->argc == 1) && ($a->argv[0] === 'delegate')?'active':''),
97                 'accesskey' => 'd',
98         ];
99
100         $tabs[] =       [
101                 'label' => L10n::t('Connected apps'),
102                 'url' => 'settings/oauth',
103                 'selected' => (($a->argc > 1) && ($a->argv[1] === 'oauth')?'active':''),
104                 'accesskey' => 'b',
105         ];
106
107         $tabs[] =       [
108                 'label' => L10n::t('Export personal data'),
109                 'url' => 'uexport',
110                 'selected' => (($a->argc == 1) && ($a->argv[0] === 'uexport')?'active':''),
111                 'accesskey' => 'e',
112         ];
113
114         $tabs[] =       [
115                 'label' => L10n::t('Remove account'),
116                 'url' => 'removeme',
117                 'selected' => (($a->argc == 1) && ($a->argv[0] === 'removeme')?'active':''),
118                 'accesskey' => 'r',
119         ];
120
121
122         $tabtpl = get_markup_template("generic_links_widget.tpl");
123         $a->page['aside'] = replace_macros($tabtpl, [
124                 '$title' => L10n::t('Settings'),
125                 '$class' => 'settings-widget',
126                 '$items' => $tabs,
127         ]);
128
129 }
130
131 function settings_post(App $a)
132 {
133         if (!local_user()) {
134                 return;
135         }
136
137         if (x($_SESSION, 'submanage') && intval($_SESSION['submanage'])) {
138                 return;
139         }
140
141         if (count($a->user) && x($a->user, 'uid') && $a->user['uid'] != local_user()) {
142                 notice(L10n::t('Permission denied.') . EOL);
143                 return;
144         }
145
146         $old_page_flags = $a->user['page-flags'];
147
148         if (($a->argc > 1) && ($a->argv[1] === 'oauth') && x($_POST, 'remove')) {
149                 check_form_security_token_redirectOnErr('/settings/oauth', 'settings_oauth');
150
151                 $key = $_POST['remove'];
152                 dba::delete('tokens', ['id' => $key, 'uid' => local_user()]);
153                 goaway(System::baseUrl(true)."/settings/oauth/");
154                 return;
155         }
156
157         if (($a->argc > 2) && ($a->argv[1] === 'oauth')  && ($a->argv[2] === 'edit'||($a->argv[2] === 'add')) && x($_POST, 'submit')) {
158                 check_form_security_token_redirectOnErr('/settings/oauth', 'settings_oauth');
159
160                 $name     = defaults($_POST, 'name'    , '');
161                 $key      = defaults($_POST, 'key'     , '');
162                 $secret   = defaults($_POST, 'secret'  , '');
163                 $redirect = defaults($_POST, 'redirect', '');
164                 $icon     = defaults($_POST, 'icon'    , '');
165
166                 if ($name == "" || $key == "" || $secret == "") {
167                         notice(L10n::t("Missing some important data!"));
168                 } else {
169                         if ($_POST['submit'] == L10n::t("Update")) {
170                                 q("UPDATE clients SET
171                                                         client_id='%s',
172                                                         pw='%s',
173                                                         name='%s',
174                                                         redirect_uri='%s',
175                                                         icon='%s',
176                                                         uid=%d
177                                                 WHERE client_id='%s'",
178                                         dbesc($key),
179                                         dbesc($secret),
180                                         dbesc($name),
181                                         dbesc($redirect),
182                                         dbesc($icon),
183                                         local_user(),
184                                         dbesc($key)
185                                 );
186                         } else {
187                                 q("INSERT INTO clients
188                                                         (client_id, pw, name, redirect_uri, icon, uid)
189                                                 VALUES ('%s', '%s', '%s', '%s', '%s',%d)",
190                                         dbesc($key),
191                                         dbesc($secret),
192                                         dbesc($name),
193                                         dbesc($redirect),
194                                         dbesc($icon),
195                                         local_user()
196                                 );
197                         }
198                 }
199                 goaway(System::baseUrl(true)."/settings/oauth/");
200                 return;
201         }
202
203         if (($a->argc > 1) && ($a->argv[1] == 'addon')) {
204                 check_form_security_token_redirectOnErr('/settings/addon', 'settings_addon');
205
206                 Addon::callHooks('addon_settings_post', $_POST);
207                 return;
208         }
209
210         if (($a->argc > 1) && ($a->argv[1] == 'connectors')) {
211                 check_form_security_token_redirectOnErr('/settings/connectors', 'settings_connectors');
212
213                 if (x($_POST, 'general-submit')) {
214                         PConfig::set(local_user(), 'system', 'disable_cw', intval($_POST['disable_cw']));
215                         PConfig::set(local_user(), 'system', 'no_intelligent_shortening', intval($_POST['no_intelligent_shortening']));
216                         PConfig::set(local_user(), 'system', 'ostatus_autofriend', intval($_POST['snautofollow']));
217                         PConfig::set(local_user(), 'ostatus', 'default_group', $_POST['group-selection']);
218                         PConfig::set(local_user(), 'ostatus', 'legacy_contact', $_POST['legacy_contact']);
219                 } elseif (x($_POST, 'imap-submit')) {
220
221                         $mail_server       = ((x($_POST, 'mail_server')) ? $_POST['mail_server'] : '');
222                         $mail_port         = ((x($_POST, 'mail_port')) ? $_POST['mail_port'] : '');
223                         $mail_ssl          = ((x($_POST, 'mail_ssl')) ? strtolower(trim($_POST['mail_ssl'])) : '');
224                         $mail_user         = ((x($_POST, 'mail_user')) ? $_POST['mail_user'] : '');
225                         $mail_pass         = ((x($_POST, 'mail_pass')) ? trim($_POST['mail_pass']) : '');
226                         $mail_action       = ((x($_POST, 'mail_action')) ? trim($_POST['mail_action']) : '');
227                         $mail_movetofolder = ((x($_POST, 'mail_movetofolder')) ? trim($_POST['mail_movetofolder']) : '');
228                         $mail_replyto      = ((x($_POST, 'mail_replyto')) ? $_POST['mail_replyto'] : '');
229                         $mail_pubmail      = ((x($_POST, 'mail_pubmail')) ? $_POST['mail_pubmail'] : '');
230
231
232                         $mail_disabled = ((function_exists('imap_open') && (!Config::get('system', 'imap_disabled'))) ? 0 : 1);
233                         if (Config::get('system', 'dfrn_only')) {
234                                 $mail_disabled = 1;
235                         }
236
237                         if (!$mail_disabled) {
238                                 $failed = false;
239                                 $r = q("SELECT * FROM `mailacct` WHERE `uid` = %d LIMIT 1",
240                                         intval(local_user())
241                                 );
242                                 if (!DBM::is_result($r)) {
243                                         dba::insert('mailacct', ['uid' => local_user()]);
244                                 }
245                                 if (strlen($mail_pass)) {
246                                         $pass = '';
247                                         openssl_public_encrypt($mail_pass, $pass, $a->user['pubkey']);
248                                         dba::update('mailacct', ['pass' => bin2hex($pass)], ['uid' => local_user()]);
249                                 }
250                                 $r = q("UPDATE `mailacct` SET `server` = '%s', `port` = %d, `ssltype` = '%s', `user` = '%s',
251                                         `action` = %d, `movetofolder` = '%s',
252                                         `mailbox` = 'INBOX', `reply_to` = '%s', `pubmail` = %d WHERE `uid` = %d",
253                                         dbesc($mail_server),
254                                         intval($mail_port),
255                                         dbesc($mail_ssl),
256                                         dbesc($mail_user),
257                                         intval($mail_action),
258                                         dbesc($mail_movetofolder),
259                                         dbesc($mail_replyto),
260                                         intval($mail_pubmail),
261                                         intval(local_user())
262                                 );
263                                 logger("mail: updating mailaccount. Response: ".print_r($r, true));
264                                 $r = q("SELECT * FROM `mailacct` WHERE `uid` = %d LIMIT 1",
265                                         intval(local_user())
266                                 );
267                                 if (DBM::is_result($r)) {
268                                         $eacct = $r[0];
269                                         $mb = Email::constructMailboxName($eacct);
270
271                                         if (strlen($eacct['server'])) {
272                                                 $dcrpass = '';
273                                                 openssl_private_decrypt(hex2bin($eacct['pass']), $dcrpass, $a->user['prvkey']);
274                                                 $mbox = Email::connect($mb, $mail_user, $dcrpass);
275                                                 unset($dcrpass);
276                                                 if (!$mbox) {
277                                                         $failed = true;
278                                                         notice(L10n::t('Failed to connect with email account using the settings provided.') . EOL);
279                                                 }
280                                         }
281                                 }
282                                 if (!$failed) {
283                                         info(L10n::t('Email settings updated.') . EOL);
284                                 }
285                         }
286                 }
287
288                 Addon::callHooks('connector_settings_post', $_POST);
289                 return;
290         }
291
292         if (($a->argc > 1) && ($a->argv[1] === 'features')) {
293                 check_form_security_token_redirectOnErr('/settings/features', 'settings_features');
294                 foreach ($_POST as $k => $v) {
295                         if (strpos($k, 'feature_') === 0) {
296                                 PConfig::set(local_user(), 'feature', substr($k, 8), ((intval($v)) ? 1 : 0));
297                         }
298                 }
299                 info(L10n::t('Features updated') . EOL);
300                 return;
301         }
302
303         if (($a->argc > 1) && ($a->argv[1] === 'display')) {
304                 check_form_security_token_redirectOnErr('/settings/display', 'settings_display');
305
306                 $theme             = x($_POST, 'theme')             ? notags(trim($_POST['theme']))        : $a->user['theme'];
307                 $mobile_theme      = x($_POST, 'mobile_theme')      ? notags(trim($_POST['mobile_theme'])) : '';
308                 $nosmile           = x($_POST, 'nosmile')           ? intval($_POST['nosmile'])            : 0;
309                 $first_day_of_week = x($_POST, 'first_day_of_week') ? intval($_POST['first_day_of_week'])  : 0;
310                 $noinfo            = x($_POST, 'noinfo')            ? intval($_POST['noinfo'])             : 0;
311                 $infinite_scroll   = x($_POST, 'infinite_scroll')   ? intval($_POST['infinite_scroll'])    : 0;
312                 $no_auto_update    = x($_POST, 'no_auto_update')    ? intval($_POST['no_auto_update'])     : 0;
313                 $bandwidth_saver   = x($_POST, 'bandwidth_saver')   ? intval($_POST['bandwidth_saver'])    : 0;
314                 $smart_threading   = x($_POST, 'smart_threading')   ? intval($_POST['smart_threading'])    : 0;
315                 $nowarn_insecure   = x($_POST, 'nowarn_insecure')   ? intval($_POST['nowarn_insecure'])    : 0;
316                 $browser_update    = x($_POST, 'browser_update')    ? intval($_POST['browser_update'])     : 0;
317                 if ($browser_update != -1) {
318                         $browser_update = $browser_update * 1000;
319                         if ($browser_update < 10000) {
320                                 $browser_update = 10000;
321                         }
322                 }
323
324                 $itemspage_network = x($_POST, 'itemspage_network')  ? intval($_POST['itemspage_network'])  : 40;
325                 if ($itemspage_network > 100) {
326                         $itemspage_network = 100;
327                 }
328                 $itemspage_mobile_network = x($_POST, 'itemspage_mobile_network') ? intval($_POST['itemspage_mobile_network']) : 20;
329                 if ($itemspage_mobile_network > 100) {
330                         $itemspage_mobile_network = 100;
331                 }
332
333                 if ($mobile_theme !== '') {
334                         PConfig::set(local_user(), 'system', 'mobile_theme', $mobile_theme);
335                 }
336
337                 PConfig::set(local_user(), 'system', 'nowarn_insecure'         , $nowarn_insecure);
338                 PConfig::set(local_user(), 'system', 'update_interval'         , $browser_update);
339                 PConfig::set(local_user(), 'system', 'itemspage_network'       , $itemspage_network);
340                 PConfig::set(local_user(), 'system', 'itemspage_mobile_network', $itemspage_mobile_network);
341                 PConfig::set(local_user(), 'system', 'no_smilies'              , $nosmile);
342                 PConfig::set(local_user(), 'system', 'first_day_of_week'       , $first_day_of_week);
343                 PConfig::set(local_user(), 'system', 'ignore_info'             , $noinfo);
344                 PConfig::set(local_user(), 'system', 'infinite_scroll'         , $infinite_scroll);
345                 PConfig::set(local_user(), 'system', 'no_auto_update'          , $no_auto_update);
346                 PConfig::set(local_user(), 'system', 'bandwidth_saver'         , $bandwidth_saver);
347                 PConfig::set(local_user(), 'system', 'smart_threading'         , $smart_threading);
348
349                 if ($theme == $a->user['theme']) {
350                         // call theme_post only if theme has not been changed
351                         if (($themeconfigfile = get_theme_config_file($theme)) !== null) {
352                                 require_once $themeconfigfile;
353                                 theme_post($a);
354                         }
355                 }
356                 Theme::install($theme);
357
358                 $r = q("UPDATE `user` SET `theme` = '%s' WHERE `uid` = %d",
359                                 dbesc($theme),
360                                 intval(local_user())
361                 );
362
363                 Addon::callHooks('display_settings_post', $_POST);
364                 goaway('settings/display');
365                 return; // NOTREACHED
366         }
367
368         check_form_security_token_redirectOnErr('/settings', 'settings');
369
370         if (x($_POST,'resend_relocate')) {
371                 Worker::add(PRIORITY_HIGH, 'Notifier', 'relocate', local_user());
372                 info(L10n::t("Relocate message has been send to your contacts"));
373                 goaway('settings');
374         }
375
376         Addon::callHooks('settings_post', $_POST);
377
378         if (x($_POST, 'password') || x($_POST, 'confirm')) {
379                 $newpass = $_POST['password'];
380                 $confirm = $_POST['confirm'];
381
382                 $err = false;
383                 if ($newpass != $confirm) {
384                         notice(L10n::t('Passwords do not match. Password unchanged.') . EOL);
385                         $err = true;
386                 }
387
388                 if (!x($newpass) || !x($confirm)) {
389                         notice(L10n::t('Empty passwords are not allowed. Password unchanged.') . EOL);
390                         $err = true;
391                 }
392
393                 if (!Config::get('system', 'disable_password_exposed', false) && User::isPasswordExposed($newpass)) {
394                         notice(L10n::t('The new password has been exposed in a public data dump, please choose another.') . EOL);
395                         $err = true;
396                 }
397
398                 //  check if the old password was supplied correctly before changing it to the new value
399                 if (!User::authenticate(intval(local_user()), $_POST['opassword'])) {
400                         notice(L10n::t('Wrong password.') . EOL);
401                         $err = true;
402                 }
403
404                 if (!$err) {
405                         $result = User::updatePassword(local_user(), $newpass);
406                         if (DBM::is_result($result)) {
407                                 info(L10n::t('Password changed.') . EOL);
408                         } else {
409                                 notice(L10n::t('Password update failed. Please try again.') . EOL);
410                         }
411                 }
412         }
413
414         $username         = ((x($_POST, 'username'))   ? notags(trim($_POST['username']))     : '');
415         $email            = ((x($_POST, 'email'))      ? notags(trim($_POST['email']))        : '');
416         $timezone         = ((x($_POST, 'timezone'))   ? notags(trim($_POST['timezone']))     : '');
417         $language         = ((x($_POST, 'language'))   ? notags(trim($_POST['language']))     : '');
418
419         $defloc           = ((x($_POST, 'defloc'))     ? notags(trim($_POST['defloc']))       : '');
420         $openid           = ((x($_POST, 'openid_url')) ? notags(trim($_POST['openid_url']))   : '');
421         $maxreq           = ((x($_POST, 'maxreq'))     ? intval($_POST['maxreq'])             : 0);
422         $expire           = ((x($_POST, 'expire'))     ? intval($_POST['expire'])             : 0);
423         $def_gid          = ((x($_POST, 'group-selection')) ? intval($_POST['group-selection']) : 0);
424
425
426         $expire_items     = ((x($_POST, 'expire_items')) ? intval($_POST['expire_items'])        : 0);
427         $expire_notes     = ((x($_POST, 'expire_notes')) ? intval($_POST['expire_notes'])        : 0);
428         $expire_starred   = ((x($_POST, 'expire_starred')) ? intval($_POST['expire_starred']) : 0);
429         $expire_photos    = ((x($_POST, 'expire_photos'))? intval($_POST['expire_photos'])       : 0);
430         $expire_network_only    = ((x($_POST, 'expire_network_only'))? intval($_POST['expire_network_only'])     : 0);
431
432         $allow_location   = (((x($_POST, 'allow_location')) && (intval($_POST['allow_location']) == 1)) ? 1: 0);
433         $publish          = (((x($_POST, 'profile_in_directory')) && (intval($_POST['profile_in_directory']) == 1)) ? 1: 0);
434         $net_publish      = (((x($_POST, 'profile_in_netdirectory')) && (intval($_POST['profile_in_netdirectory']) == 1)) ? 1: 0);
435         $old_visibility   = (((x($_POST, 'visibility')) && (intval($_POST['visibility']) == 1)) ? 1 : 0);
436         $account_type     = (((x($_POST, 'account-type')) && (intval($_POST['account-type']))) ? intval($_POST['account-type']) : 0);
437         $page_flags       = (((x($_POST, 'page-flags')) && (intval($_POST['page-flags']))) ? intval($_POST['page-flags']) : 0);
438         $blockwall        = (((x($_POST, 'blockwall')) && (intval($_POST['blockwall']) == 1)) ? 0: 1); // this setting is inverted!
439         $blocktags        = (((x($_POST, 'blocktags')) && (intval($_POST['blocktags']) == 1)) ? 0: 1); // this setting is inverted!
440         $unkmail          = (((x($_POST, 'unkmail')) && (intval($_POST['unkmail']) == 1)) ? 1: 0);
441         $cntunkmail       = ((x($_POST, 'cntunkmail')) ? intval($_POST['cntunkmail']) : 0);
442         $suggestme        = ((x($_POST, 'suggestme')) ? intval($_POST['suggestme'])  : 0);
443         $hide_friends     = (($_POST['hide-friends'] == 1) ? 1: 0);
444         $hidewall         = (($_POST['hidewall'] == 1) ? 1: 0);
445
446         $email_textonly   = (($_POST['email_textonly'] == 1) ? 1 : 0);
447         $detailed_notif   = (($_POST['detailed_notif'] == 1) ? 1 : 0);
448
449         $notify = 0;
450
451         if (x($_POST, 'notify1')) {
452                 $notify += intval($_POST['notify1']);
453         }
454         if (x($_POST, 'notify2')) {
455                 $notify += intval($_POST['notify2']);
456         }
457         if (x($_POST, 'notify3')) {
458                 $notify += intval($_POST['notify3']);
459         }
460         if (x($_POST, 'notify4')) {
461                 $notify += intval($_POST['notify4']);
462         }
463         if (x($_POST, 'notify5')) {
464                 $notify += intval($_POST['notify5']);
465         }
466         if (x($_POST, 'notify6')) {
467                 $notify += intval($_POST['notify6']);
468         }
469         if (x($_POST, 'notify7')) {
470                 $notify += intval($_POST['notify7']);
471         }
472         if (x($_POST, 'notify8')) {
473                 $notify += intval($_POST['notify8']);
474         }
475
476         // Adjust the page flag if the account type doesn't fit to the page flag.
477         if (($account_type == ACCOUNT_TYPE_PERSON) && !in_array($page_flags, [PAGE_NORMAL, PAGE_SOAPBOX, PAGE_FREELOVE])) {
478                 $page_flags = PAGE_NORMAL;
479         } elseif (($account_type == ACCOUNT_TYPE_ORGANISATION) && !in_array($page_flags, [PAGE_SOAPBOX])) {
480                 $page_flags = PAGE_SOAPBOX;
481         } elseif (($account_type == ACCOUNT_TYPE_NEWS) && !in_array($page_flags, [PAGE_SOAPBOX])) {
482                 $page_flags = PAGE_SOAPBOX;
483         } elseif (($account_type == ACCOUNT_TYPE_COMMUNITY) && !in_array($page_flags, [PAGE_COMMUNITY, PAGE_PRVGROUP])) {
484                 $page_flags = PAGE_COMMUNITY;
485         }
486
487         $email_changed = false;
488
489         $err = '';
490
491         if ($username != $a->user['username']) {
492                 if (strlen($username) > 40) {
493                         $err .= L10n::t(' Please use a shorter name.');
494                 }
495                 if (strlen($username) < 3) {
496                         $err .= L10n::t(' Name too short.');
497                 }
498         }
499
500         if ($email != $a->user['email']) {
501                 $email_changed = true;
502                 //  check for the correct password
503                 if (!User::authenticate(intval(local_user()), $_POST['mpassword'])) {
504                         $err .= L10n::t('Wrong Password') . EOL;
505                         $email = $a->user['email'];
506                 }
507                 //  check the email is valid
508                 if (!valid_email($email)) {
509                         $err .= L10n::t('Invalid email.');
510                 }
511                 //  ensure new email is not the admin mail
512                 //if ((x($a->config, 'admin_email')) && (strcasecmp($email, $a->config['admin_email']) == 0)) {
513                 if (x($a->config, 'admin_email')) {
514                         $adminlist = explode(",", str_replace(" ", "", strtolower($a->config['admin_email'])));
515                         if (in_array(strtolower($email), $adminlist)) {
516                                 $err .= L10n::t('Cannot change to that email.');
517                                 $email = $a->user['email'];
518                         }
519                 }
520         }
521
522         if (strlen($err)) {
523                 notice($err . EOL);
524                 return;
525         }
526
527         if (($timezone != $a->user['timezone']) && strlen($timezone)) {
528                 date_default_timezone_set($timezone);
529         }
530
531         $str_group_allow   = perms2str($_POST['group_allow']);
532         $str_contact_allow = perms2str($_POST['contact_allow']);
533         $str_group_deny    = perms2str($_POST['group_deny']);
534         $str_contact_deny  = perms2str($_POST['contact_deny']);
535
536         $openidserver = $a->user['openidserver'];
537         //$openid = normalise_openid($openid);
538
539         // If openid has changed or if there's an openid but no openidserver, try and discover it.
540         if ($openid != $a->user['openid'] || (strlen($openid) && (!strlen($openidserver)))) {
541                 if (Network::isUrlValid($openid)) {
542                         logger('updating openidserver');
543                         $open_id_obj = new LightOpenID($a->get_hostname());
544                         $open_id_obj->identity = $openid;
545                         $openidserver = $open_id_obj->discover($open_id_obj->identity);
546                 } else {
547                         $openidserver = '';
548                 }
549         }
550
551         PConfig::set(local_user(), 'expire', 'items', $expire_items);
552         PConfig::set(local_user(), 'expire', 'notes', $expire_notes);
553         PConfig::set(local_user(), 'expire', 'starred', $expire_starred);
554         PConfig::set(local_user(), 'expire', 'photos', $expire_photos);
555         PConfig::set(local_user(), 'expire', 'network_only', $expire_network_only);
556
557         PConfig::set(local_user(), 'system', 'suggestme', $suggestme);
558
559         PConfig::set(local_user(), 'system', 'email_textonly', $email_textonly);
560         PConfig::set(local_user(), 'system', 'detailed_notif', $detailed_notif);
561
562         if ($page_flags == PAGE_PRVGROUP) {
563                 $hidewall = 1;
564                 if (!$str_contact_allow && !$str_group_allow && !$str_contact_deny && !$str_group_deny) {
565                         if ($def_gid) {
566                                 info(L10n::t('Private forum has no privacy permissions. Using default privacy group.'). EOL);
567                                 $str_group_allow = '<' . $def_gid . '>';
568                         } else {
569                                 notice(L10n::t('Private forum has no privacy permissions and no default privacy group.') . EOL);
570                         }
571                 }
572         }
573
574
575         $r = q("UPDATE `user` SET `username` = '%s', `email` = '%s',
576                                 `openid` = '%s', `timezone` = '%s',
577                                 `allow_cid` = '%s', `allow_gid` = '%s', `deny_cid` = '%s', `deny_gid` = '%s',
578                                 `notify-flags` = %d, `page-flags` = %d, `account-type` = %d, `default-location` = '%s',
579                                 `allow_location` = %d, `maxreq` = %d, `expire` = %d, `openidserver` = '%s',
580                                 `def_gid` = %d, `blockwall` = %d, `hidewall` = %d, `blocktags` = %d,
581                                 `unkmail` = %d, `cntunkmail` = %d, `language` = '%s'
582                         WHERE `uid` = %d",
583                         dbesc($username),
584                         dbesc($email),
585                         dbesc($openid),
586                         dbesc($timezone),
587                         dbesc($str_contact_allow),
588                         dbesc($str_group_allow),
589                         dbesc($str_contact_deny),
590                         dbesc($str_group_deny),
591                         intval($notify),
592                         intval($page_flags),
593                         intval($account_type),
594                         dbesc($defloc),
595                         intval($allow_location),
596                         intval($maxreq),
597                         intval($expire),
598                         dbesc($openidserver),
599                         intval($def_gid),
600                         intval($blockwall),
601                         intval($hidewall),
602                         intval($blocktags),
603                         intval($unkmail),
604                         intval($cntunkmail),
605                         dbesc($language),
606                         intval(local_user())
607         );
608         if (DBM::is_result($r)) {
609                 info(L10n::t('Settings updated.') . EOL);
610         }
611
612         // clear session language
613         unset($_SESSION['language']);
614
615         $r = q("UPDATE `profile`
616                 SET `publish` = %d,
617                 `name` = '%s',
618                 `net-publish` = %d,
619                 `hide-friends` = %d
620                 WHERE `is-default` = 1 AND `uid` = %d",
621                 intval($publish),
622                 dbesc($username),
623                 intval($net_publish),
624                 intval($hide_friends),
625                 intval(local_user())
626         );
627
628         Contact::updateSelfFromUserID(local_user());
629
630         if (($old_visibility != $net_publish) || ($page_flags != $old_page_flags)) {
631                 // Update global directory in background
632                 $url = $_SESSION['my_url'];
633                 if ($url && strlen(Config::get('system', 'directory'))) {
634                         Worker::add(PRIORITY_LOW, "Directory", $url);
635                 }
636         }
637
638         Worker::add(PRIORITY_LOW, 'ProfileUpdate', local_user());
639
640         // Update the global contact for the user
641         GContact::updateForUser(local_user());
642
643         goaway('settings');
644         return; // NOTREACHED
645 }
646
647
648 function settings_content(App $a)
649 {
650         $o = '';
651         Nav::setSelected('settings');
652
653         if (!local_user()) {
654                 //notice(L10n::t('Permission denied.') . EOL);
655                 return;
656         }
657
658         if (x($_SESSION, 'submanage') && intval($_SESSION['submanage'])) {
659                 notice(L10n::t('Permission denied.') . EOL);
660                 return;
661         }
662
663         if (($a->argc > 1) && ($a->argv[1] === 'oauth')) {
664                 if (($a->argc > 2) && ($a->argv[2] === 'add')) {
665                         $tpl = get_markup_template('settings/oauth_edit.tpl');
666                         $o .= replace_macros($tpl, [
667                                 '$form_security_token' => get_form_security_token("settings_oauth"),
668                                 '$title'        => L10n::t('Add application'),
669                                 '$submit'       => L10n::t('Save Settings'),
670                                 '$cancel'       => L10n::t('Cancel'),
671                                 '$name'         => ['name', L10n::t('Name'), '', ''],
672                                 '$key'          => ['key', L10n::t('Consumer Key'), '', ''],
673                                 '$secret'       => ['secret', L10n::t('Consumer Secret'), '', ''],
674                                 '$redirect'     => ['redirect', L10n::t('Redirect'), '', ''],
675                                 '$icon'         => ['icon', L10n::t('Icon url'), '', ''],
676                         ]);
677                         return $o;
678                 }
679
680                 if (($a->argc > 3) && ($a->argv[2] === 'edit')) {
681                         $r = q("SELECT * FROM clients WHERE client_id='%s' AND uid=%d",
682                                         dbesc($a->argv[3]),
683                                         local_user());
684
685                         if (!DBM::is_result($r)) {
686                                 notice(L10n::t("You can't edit this application."));
687                                 return;
688                         }
689                         $app = $r[0];
690
691                         $tpl = get_markup_template('settings/oauth_edit.tpl');
692                         $o .= replace_macros($tpl, [
693                                 '$form_security_token' => get_form_security_token("settings_oauth"),
694                                 '$title'        => L10n::t('Add application'),
695                                 '$submit'       => L10n::t('Update'),
696                                 '$cancel'       => L10n::t('Cancel'),
697                                 '$name'         => ['name', L10n::t('Name'), $app['name'] , ''],
698                                 '$key'          => ['key', L10n::t('Consumer Key'), $app['client_id'], ''],
699                                 '$secret'       => ['secret', L10n::t('Consumer Secret'), $app['pw'], ''],
700                                 '$redirect'     => ['redirect', L10n::t('Redirect'), $app['redirect_uri'], ''],
701                                 '$icon'         => ['icon', L10n::t('Icon url'), $app['icon'], ''],
702                         ]);
703                         return $o;
704                 }
705
706                 if (($a->argc > 3) && ($a->argv[2] === 'delete')) {
707                         check_form_security_token_redirectOnErr('/settings/oauth', 'settings_oauth', 't');
708
709                         dba::delete('clients', ['client_id' => $a->argv[3], 'uid' => local_user()]);
710                         goaway(System::baseUrl(true)."/settings/oauth/");
711                         return;
712                 }
713
714                 /// @TODO validate result with DBM::is_result()
715                 $r = q("SELECT clients.*, tokens.id as oauth_token, (clients.uid=%d) AS my
716                                 FROM clients
717                                 LEFT JOIN tokens ON clients.client_id=tokens.client_id
718                                 WHERE clients.uid IN (%d, 0)",
719                                 local_user(),
720                                 local_user());
721
722
723                 $tpl = get_markup_template('settings/oauth.tpl');
724                 $o .= replace_macros($tpl, [
725                         '$form_security_token' => get_form_security_token("settings_oauth"),
726                         '$baseurl'      => System::baseUrl(true),
727                         '$title'        => L10n::t('Connected Apps'),
728                         '$add'          => L10n::t('Add application'),
729                         '$edit'         => L10n::t('Edit'),
730                         '$delete'               => L10n::t('Delete'),
731                         '$consumerkey' => L10n::t('Client key starts with'),
732                         '$noname'       => L10n::t('No name'),
733                         '$remove'       => L10n::t('Remove authorization'),
734                         '$apps'         => $r,
735                 ]);
736                 return $o;
737         }
738
739         if (($a->argc > 1) && ($a->argv[1] === 'addon')) {
740                 $settings_addons = "";
741
742                 $r = q("SELECT * FROM `hook` WHERE `hook` = 'addon_settings' ");
743                 if (!DBM::is_result($r)) {
744                         $settings_addons = L10n::t('No Addon settings configured');
745                 }
746
747                 Addon::callHooks('addon_settings', $settings_addons);
748
749
750                 $tpl = get_markup_template('settings/addons.tpl');
751                 $o .= replace_macros($tpl, [
752                         '$form_security_token' => get_form_security_token("settings_addon"),
753                         '$title'        => L10n::t('Addon Settings'),
754                         '$settings_addons' => $settings_addons
755                 ]);
756                 return $o;
757         }
758
759         if (($a->argc > 1) && ($a->argv[1] === 'features')) {
760
761                 $arr = [];
762                 $features = Feature::get();
763                 foreach ($features as $fname => $fdata) {
764                         $arr[$fname] = [];
765                         $arr[$fname][0] = $fdata[0];
766                         foreach (array_slice($fdata,1) as $f) {
767                                 $arr[$fname][1][] = ['feature_' .$f[0], $f[1],((intval(Feature::isEnabled(local_user(), $f[0]))) ? "1" : ''), $f[2],[L10n::t('Off'), L10n::t('On')]];
768                         }
769                 }
770
771                 $tpl = get_markup_template('settings/features.tpl');
772                 $o .= replace_macros($tpl, [
773                         '$form_security_token' => get_form_security_token("settings_features"),
774                         '$title'               => L10n::t('Additional Features'),
775                         '$features'            => $arr,
776                         '$submit'              => L10n::t('Save Settings'),
777                 ]);
778                 return $o;
779         }
780
781         if (($a->argc > 1) && ($a->argv[1] === 'connectors')) {
782                 $disable_cw                = intval(PConfig::get(local_user(), 'system', 'disable_cw'));
783                 $no_intelligent_shortening = intval(PConfig::get(local_user(), 'system', 'no_intelligent_shortening'));
784                 $ostatus_autofriend        = intval(PConfig::get(local_user(), 'system', 'ostatus_autofriend'));
785                 $default_group             = PConfig::get(local_user(), 'ostatus', 'default_group');
786                 $legacy_contact            = PConfig::get(local_user(), 'ostatus', 'legacy_contact');
787
788                 if (x($legacy_contact)) {
789                         /// @todo Isn't it supposed to be a goaway() call?
790                         $a->page['htmlhead'] = '<meta http-equiv="refresh" content="0; URL=' . System::baseUrl().'/ostatus_subscribe?url=' . urlencode($legacy_contact) . '">';
791                 }
792
793                 $settings_connectors = '';
794                 Addon::callHooks('connector_settings', $settings_connectors);
795
796                 if (is_site_admin()) {
797                         $diasp_enabled = L10n::t('Built-in support for %s connectivity is %s', L10n::t('Diaspora'), ((Config::get('system', 'diaspora_enabled')) ? L10n::t('enabled') : L10n::t('disabled')));
798                         $ostat_enabled = L10n::t('Built-in support for %s connectivity is %s', L10n::t("GNU Social \x28OStatus\x29"), ((Config::get('system', 'ostatus_disabled')) ? L10n::t('disabled') : L10n::t('enabled')));
799                 } else {
800                         $diasp_enabled = "";
801                         $ostat_enabled = "";
802                 }
803
804                 $mail_disabled = ((function_exists('imap_open') && (!Config::get('system', 'imap_disabled'))) ? 0 : 1);
805                 if (Config::get('system', 'dfrn_only')) {
806                         $mail_disabled = 1;
807                 }
808                 if (!$mail_disabled) {
809                         $r = q("SELECT * FROM `mailacct` WHERE `uid` = %d LIMIT 1",
810                                 local_user()
811                         );
812                 } else {
813                         $r = null;
814                 }
815
816                 $mail_server       = ((DBM::is_result($r)) ? $r[0]['server'] : '');
817                 $mail_port         = ((DBM::is_result($r) && intval($r[0]['port'])) ? intval($r[0]['port']) : '');
818                 $mail_ssl          = ((DBM::is_result($r)) ? $r[0]['ssltype'] : '');
819                 $mail_user         = ((DBM::is_result($r)) ? $r[0]['user'] : '');
820                 $mail_replyto      = ((DBM::is_result($r)) ? $r[0]['reply_to'] : '');
821                 $mail_pubmail      = ((DBM::is_result($r)) ? $r[0]['pubmail'] : 0);
822                 $mail_action       = ((DBM::is_result($r)) ? $r[0]['action'] : 0);
823                 $mail_movetofolder = ((DBM::is_result($r)) ? $r[0]['movetofolder'] : '');
824                 $mail_chk          = ((DBM::is_result($r)) ? $r[0]['last_check'] : NULL_DATE);
825
826
827                 $tpl = get_markup_template('settings/connectors.tpl');
828
829                 $mail_disabled_message = (($mail_disabled) ? L10n::t('Email access is disabled on this site.') : '');
830
831                 $o .= replace_macros($tpl, [
832                         '$form_security_token' => get_form_security_token("settings_connectors"),
833
834                         '$title'        => L10n::t('Social Networks'),
835
836                         '$diasp_enabled' => $diasp_enabled,
837                         '$ostat_enabled' => $ostat_enabled,
838
839                         '$general_settings' => L10n::t('General Social Media Settings'),
840                         '$disable_cw' => ['disable_cw', L10n::t('Disable Content Warning'), $disable_cw, L10n::t('Users on networks like Mastodon or Pleroma are able to set a content warning field which collapse their post by default. This disables the automatic collapsing and sets the content warning as the post title. Doesn\'t affect any other content filtering you eventually set up.')],
841                         '$no_intelligent_shortening' => ['no_intelligent_shortening', L10n::t('Disable intelligent shortening'), $no_intelligent_shortening, L10n::t('Normally the system tries to find the best link to add to shortened posts. If this option is enabled then every shortened post will always point to the original friendica post.')],
842                         '$ostatus_autofriend' => ['snautofollow', L10n::t("Automatically follow any GNU Social \x28OStatus\x29 followers/mentioners"), $ostatus_autofriend, L10n::t('If you receive a message from an unknown OStatus user, this option decides what to do. If it is checked, a new contact will be created for every unknown user.')],
843                         '$default_group' => Group::displayGroupSelection(local_user(), $default_group, L10n::t("Default group for OStatus contacts")),
844                         '$legacy_contact' => ['legacy_contact', L10n::t('Your legacy GNU Social account'), $legacy_contact, L10n::t("If you enter your old GNU Social/Statusnet account name here \x28in the format user@domain.tld\x29, your contacts will be added automatically. The field will be emptied when done.")],
845
846                         '$repair_ostatus_url' => System::baseUrl() . '/repair_ostatus',
847                         '$repair_ostatus_text' => L10n::t('Repair OStatus subscriptions'),
848
849                         '$settings_connectors' => $settings_connectors,
850
851                         '$h_imap' => L10n::t('Email/Mailbox Setup'),
852                         '$imap_desc' => L10n::t("If you wish to communicate with email contacts using this service \x28optional\x29, please specify how to connect to your mailbox."),
853                         '$imap_lastcheck' => ['imap_lastcheck', L10n::t('Last successful email check:'), $mail_chk, ''],
854                         '$mail_disabled' => $mail_disabled_message,
855                         '$mail_server'  => ['mail_server',  L10n::t('IMAP server name:'), $mail_server, ''],
856                         '$mail_port'    => ['mail_port',         L10n::t('IMAP port:'), $mail_port, ''],
857                         '$mail_ssl'             => ['mail_ssl',          L10n::t('Security:'), strtoupper($mail_ssl), '', ['notls'=>L10n::t('None'), 'TLS'=>'TLS', 'SSL'=>'SSL']],
858                         '$mail_user'    => ['mail_user',    L10n::t('Email login name:'), $mail_user, ''],
859                         '$mail_pass'    => ['mail_pass',         L10n::t('Email password:'), '', ''],
860                         '$mail_replyto' => ['mail_replyto', L10n::t('Reply-to address:'), $mail_replyto, 'Optional'],
861                         '$mail_pubmail' => ['mail_pubmail', L10n::t('Send public posts to all email contacts:'), $mail_pubmail, ''],
862                         '$mail_action'  => ['mail_action',       L10n::t('Action after import:'), $mail_action, '', [0=>L10n::t('None'), /*1=>L10n::t('Delete'),*/ 2=>L10n::t('Mark as seen'), 3=>L10n::t('Move to folder')]],
863                         '$mail_movetofolder'    => ['mail_movetofolder',         L10n::t('Move to folder:'), $mail_movetofolder, ''],
864                         '$submit' => L10n::t('Save Settings'),
865                 ]);
866
867                 Addon::callHooks('display_settings', $o);
868                 return $o;
869         }
870
871         /*
872          * DISPLAY SETTINGS
873          */
874         if (($a->argc > 1) && ($a->argv[1] === 'display')) {
875                 $default_theme = Config::get('system', 'theme');
876                 if (!$default_theme) {
877                         $default_theme = 'default';
878                 }
879                 $default_mobile_theme = Config::get('system', 'mobile-theme');
880                 if (!$default_mobile_theme) {
881                         $default_mobile_theme = 'none';
882                 }
883
884                 $allowed_themes_str = Config::get('system', 'allowed_themes');
885                 $allowed_themes_raw = explode(',', $allowed_themes_str);
886                 $allowed_themes = [];
887                 if (count($allowed_themes_raw)) {
888                         foreach ($allowed_themes_raw as $x) {
889                                 if (strlen(trim($x)) && is_dir("view/theme/$x")) {
890                                         $allowed_themes[] = trim($x);
891                                 }
892                         }
893                 }
894
895
896                 $themes = [];
897                 $mobile_themes = ["---" => L10n::t('No special theme for mobile devices')];
898                 if ($allowed_themes) {
899                         foreach ($allowed_themes as $theme) {
900                                 $is_experimental = file_exists('view/theme/' . $theme . '/experimental');
901                                 $is_unsupported  = file_exists('view/theme/' . $theme . '/unsupported');
902                                 $is_mobile       = file_exists('view/theme/' . $theme . '/mobile');
903                                 if (!$is_experimental || ($is_experimental && (Config::get('experimentals', 'exp_themes')==1 || is_null(Config::get('experimentals', 'exp_themes'))))) {
904                                         $theme_name = ucfirst($theme);
905                                         if ($is_unsupported) {
906                                                 $theme_name = L10n::t("%s - \x28Unsupported\x29", $theme_name);
907                                         } elseif ($is_experimental) {
908                                                 $theme_name = L10n::t("%s - \x28Experimental\x29", $theme_name);
909                                         }
910                                         if ($is_mobile) {
911                                                 $mobile_themes[$theme] = $theme_name;
912                                         } else {
913                                                 $themes[$theme] = $theme_name;
914                                         }
915                                 }
916                         }
917                 }
918                 $theme_selected        = defaults($_SESSION, 'theme'       , $default_theme);
919                 $mobile_theme_selected = defaults($_SESSION, 'mobile-theme', $default_mobile_theme);
920
921                 $nowarn_insecure = intval(PConfig::get(local_user(), 'system', 'nowarn_insecure'));
922
923                 $browser_update = intval(PConfig::get(local_user(), 'system', 'update_interval'));
924                 if (intval($browser_update) != -1) {
925                         $browser_update = (($browser_update == 0) ? 40 : $browser_update / 1000); // default if not set: 40 seconds
926                 }
927
928                 $itemspage_network = intval(PConfig::get(local_user(), 'system', 'itemspage_network'));
929                 $itemspage_network = (($itemspage_network > 0 && $itemspage_network < 101) ? $itemspage_network : 40); // default if not set: 40 items
930                 $itemspage_mobile_network = intval(PConfig::get(local_user(), 'system', 'itemspage_mobile_network'));
931                 $itemspage_mobile_network = (($itemspage_mobile_network > 0 && $itemspage_mobile_network < 101) ? $itemspage_mobile_network : 20); // default if not set: 20 items
932
933                 $nosmile = PConfig::get(local_user(), 'system', 'no_smilies', 0);
934                 $first_day_of_week = PConfig::get(local_user(), 'system', 'first_day_of_week', 0);
935                 $weekdays = [0 => L10n::t("Sunday"), 1 => L10n::t("Monday")];
936
937                 $noinfo = PConfig::get(local_user(), 'system', 'ignore_info', 0);
938                 $infinite_scroll = PConfig::get(local_user(), 'system', 'infinite_scroll', 0);
939                 $no_auto_update = PConfig::get(local_user(), 'system', 'no_auto_update', 0);
940                 $bandwidth_saver = PConfig::get(local_user(), 'system', 'bandwidth_saver', 0);
941                 $smart_threading = PConfig::get(local_user(), 'system', 'smart_threading', 0);
942
943                 $theme_config = "";
944                 if (($themeconfigfile = get_theme_config_file($theme_selected)) !== null) {
945                         require_once $themeconfigfile;
946                         $theme_config = theme_content($a);
947                 }
948
949                 $tpl = get_markup_template('settings/display.tpl');
950                 $o = replace_macros($tpl, [
951                         '$ptitle'       => L10n::t('Display Settings'),
952                         '$form_security_token' => get_form_security_token("settings_display"),
953                         '$submit'       => L10n::t('Save Settings'),
954                         '$baseurl' => System::baseUrl(true),
955                         '$uid' => local_user(),
956
957                         '$theme'        => ['theme', L10n::t('Display Theme:'), $theme_selected, '', $themes, true],
958                         '$mobile_theme' => ['mobile_theme', L10n::t('Mobile Theme:'), $mobile_theme_selected, '', $mobile_themes, false],
959                         '$nowarn_insecure' => ['nowarn_insecure',  L10n::t('Suppress warning of insecure networks'), $nowarn_insecure, L10n::t("Should the system suppress the warning that the current group contains members of networks that can't receive non public postings.")],
960                         '$ajaxint'   => ['browser_update',  L10n::t("Update browser every xx seconds"), $browser_update, L10n::t('Minimum of 10 seconds. Enter -1 to disable it.')],
961                         '$itemspage_network'   => ['itemspage_network',  L10n::t("Number of items to display per page:"), $itemspage_network, L10n::t('Maximum of 100 items')],
962                         '$itemspage_mobile_network'   => ['itemspage_mobile_network',  L10n::t("Number of items to display per page when viewed from mobile device:"), $itemspage_mobile_network, L10n::t('Maximum of 100 items')],
963                         '$nosmile'      => ['nosmile', L10n::t("Don't show emoticons"), $nosmile, ''],
964                         '$calendar_title' => L10n::t('Calendar'),
965                         '$first_day_of_week'    => ['first_day_of_week', L10n::t('Beginning of week:'), $first_day_of_week, '', $weekdays, false],
966                         '$noinfo'       => ['noinfo', L10n::t("Don't show notices"), $noinfo, ''],
967                         '$infinite_scroll'      => ['infinite_scroll', L10n::t("Infinite scroll"), $infinite_scroll, ''],
968                         '$no_auto_update'       => ['no_auto_update', L10n::t("Automatic updates only at the top of the network page"), $no_auto_update, L10n::t('When disabled, the network page is updated all the time, which could be confusing while reading.')],
969                         '$bandwidth_saver' => ['bandwidth_saver', L10n::t('Bandwidth Saver Mode'), $bandwidth_saver, L10n::t('When enabled, embedded content is not displayed on automatic updates, they only show on page reload.')],
970                         '$smart_threading' => ['smart_threading', L10n::t('Smart Threading'), $smart_threading, L10n::t('When enabled, suppress extraneous thread indentation while keeping it where it matters. Only works if threading is available and enabled.')],
971
972                         '$d_tset' => L10n::t('General Theme Settings'),
973                         '$d_ctset' => L10n::t('Custom Theme Settings'),
974                         '$d_cset' => L10n::t('Content Settings'),
975                         'stitle' => L10n::t('Theme settings'),
976                         '$theme_config' => $theme_config,
977                 ]);
978
979                 $tpl = get_markup_template('settings/display_end.tpl');
980                 $a->page['end'] .= replace_macros($tpl, [
981                         '$theme'        => ['theme', L10n::t('Display Theme:'), $theme_selected, '', $themes]
982                 ]);
983
984                 return $o;
985         }
986
987
988         /*
989          * ACCOUNT SETTINGS
990          */
991
992         $profile = dba::selectFirst('profile', [], ['is-default' => true, 'uid' => local_user()]);
993         if (!DBM::is_result($profile)) {
994                 notice(L10n::t('Unable to find your profile. Please contact your admin.') . EOL);
995                 return;
996         }
997
998         $username   = $a->user['username'];
999         $email      = $a->user['email'];
1000         $nickname   = $a->user['nickname'];
1001         $timezone   = $a->user['timezone'];
1002         $language   = $a->user['language'];
1003         $notify     = $a->user['notify-flags'];
1004         $defloc     = $a->user['default-location'];
1005         $openid     = $a->user['openid'];
1006         $maxreq     = $a->user['maxreq'];
1007         $expire     = ((intval($a->user['expire'])) ? $a->user['expire'] : '');
1008         $unkmail    = $a->user['unkmail'];
1009         $cntunkmail = $a->user['cntunkmail'];
1010
1011         $expire_items = PConfig::get(local_user(), 'expire', 'items', true);
1012         $expire_notes = PConfig::get(local_user(), 'expire', 'notes', true);
1013         $expire_starred = PConfig::get(local_user(), 'expire', 'starred', true);
1014         $expire_photos = PConfig::get(local_user(), 'expire', 'photos', false);
1015         $expire_network_only = PConfig::get(local_user(), 'expire', 'network_only', false);
1016         $suggestme = PConfig::get(local_user(), 'system', 'suggestme', false);
1017
1018         // nowarn_insecure
1019
1020         if (!strlen($a->user['timezone'])) {
1021                 $timezone = date_default_timezone_get();
1022         }
1023
1024         // Set the account type to "Community" when the page is a community page but the account type doesn't fit
1025         // This is only happening on the first visit after the update
1026         if (in_array($a->user['page-flags'], [PAGE_COMMUNITY, PAGE_PRVGROUP]) &&
1027                 ($a->user['account-type'] != ACCOUNT_TYPE_COMMUNITY))
1028                 $a->user['account-type'] = ACCOUNT_TYPE_COMMUNITY;
1029
1030         $pageset_tpl = get_markup_template('settings/pagetypes.tpl');
1031
1032         $pagetype = replace_macros($pageset_tpl, [
1033                 '$account_types'        => L10n::t("Account Types"),
1034                 '$user'                 => L10n::t("Personal Page Subtypes"),
1035                 '$community'            => L10n::t("Community Forum Subtypes"),
1036                 '$account_type'         => $a->user['account-type'],
1037                 '$type_person'          => ACCOUNT_TYPE_PERSON,
1038                 '$type_organisation'    => ACCOUNT_TYPE_ORGANISATION,
1039                 '$type_news'            => ACCOUNT_TYPE_NEWS,
1040                 '$type_community'       => ACCOUNT_TYPE_COMMUNITY,
1041
1042                 '$account_person'       => ['account-type', L10n::t('Personal Page'), ACCOUNT_TYPE_PERSON,
1043                                                                         L10n::t('Account for a personal profile.'),
1044                                                                         ($a->user['account-type'] == ACCOUNT_TYPE_PERSON)],
1045
1046                 '$account_organisation' => ['account-type', L10n::t('Organisation Page'), ACCOUNT_TYPE_ORGANISATION,
1047                                                                         L10n::t('Account for an organisation that automatically approves contact requests as "Followers".'),
1048                                                                         ($a->user['account-type'] == ACCOUNT_TYPE_ORGANISATION)],
1049
1050                 '$account_news'         => ['account-type', L10n::t('News Page'), ACCOUNT_TYPE_NEWS,
1051                                                                         L10n::t('Account for a news reflector that automatically approves contact requests as "Followers".'),
1052                                                                         ($a->user['account-type'] == ACCOUNT_TYPE_NEWS)],
1053
1054                 '$account_community'    => ['account-type', L10n::t('Community Forum'), ACCOUNT_TYPE_COMMUNITY,
1055                                                                         L10n::t('Account for community discussions.'),
1056                                                                         ($a->user['account-type'] == ACCOUNT_TYPE_COMMUNITY)],
1057
1058                 '$page_normal'          => ['page-flags', L10n::t('Normal Account Page'), PAGE_NORMAL,
1059                                                                         L10n::t('Account for a regular personal profile that requires manual approval of "Friends" and "Followers".'),
1060                                                                         ($a->user['page-flags'] == PAGE_NORMAL)],
1061
1062                 '$page_soapbox'         => ['page-flags', L10n::t('Soapbox Page'), PAGE_SOAPBOX,
1063                                                                         L10n::t('Account for a public profile that automatically approves contact requests as "Followers".'),
1064                                                                         ($a->user['page-flags'] == PAGE_SOAPBOX)],
1065
1066                 '$page_community'       => ['page-flags', L10n::t('Public Forum'), PAGE_COMMUNITY,
1067                                                                         L10n::t('Automatically approves all contact requests.'),
1068                                                                         ($a->user['page-flags'] == PAGE_COMMUNITY)],
1069
1070                 '$page_freelove'        => ['page-flags', L10n::t('Automatic Friend Page'), PAGE_FREELOVE,
1071                                                                         L10n::t('Account for a popular profile that automatically approves contact requests as "Friends".'),
1072                                                                         ($a->user['page-flags'] == PAGE_FREELOVE)],
1073
1074                 '$page_prvgroup'        => ['page-flags', L10n::t('Private Forum [Experimental]'), PAGE_PRVGROUP,
1075                                                                         L10n::t('Requires manual approval of contact requests.'),
1076                                                                         ($a->user['page-flags'] == PAGE_PRVGROUP)],
1077
1078
1079         ]);
1080
1081         $noid = Config::get('system', 'no_openid');
1082
1083         if ($noid) {
1084                 $openid_field = false;
1085         } else {
1086                 $openid_field = ['openid_url', L10n::t('OpenID:'), $openid, L10n::t("\x28Optional\x29 Allow this OpenID to login to this account."), "", "", "url"];
1087         }
1088
1089         $opt_tpl = get_markup_template("field_yesno.tpl");
1090         if (Config::get('system', 'publish_all')) {
1091                 $profile_in_dir = '<input type="hidden" name="profile_in_directory" value="1" />';
1092         } else {
1093                 $profile_in_dir = replace_macros($opt_tpl, [
1094                         '$field' => ['profile_in_directory', L10n::t('Publish your default profile in your local site directory?'), $profile['publish'], L10n::t('Your profile will be published in this node\'s <a href="%s">local directory</a>. Your profile details may be publicly visible depending on the system settings.', System::baseUrl().'/directory'), [L10n::t('No'), L10n::t('Yes')]]
1095                 ]);
1096         }
1097
1098         if (strlen(Config::get('system', 'directory'))) {
1099                 $profile_in_net_dir = replace_macros($opt_tpl, [
1100                         '$field' => ['profile_in_netdirectory', L10n::t('Publish your default profile in the global social directory?'), $profile['net-publish'], L10n::t('Your profile will be published in the global friendica directories (e.g. <a href="%s">%s</a>). Your profile will be visible in public.', Config::get('system', 'directory'), Config::get('system', 'directory')), [L10n::t('No'), L10n::t('Yes')]]
1101                 ]);
1102         } else {
1103                 $profile_in_net_dir = '';
1104         }
1105
1106         $hide_friends = replace_macros($opt_tpl, [
1107                 '$field' => ['hide-friends', L10n::t('Hide your contact/friend list from viewers of your default profile?'), $profile['hide-friends'], L10n::t('Your contact list won\'t be shown in your default profile page. You can decide to show your contact list separately for each additional profile you create'), [L10n::t('No'), L10n::t('Yes')]],
1108         ]);
1109
1110         $hide_wall = replace_macros($opt_tpl, [
1111                 '$field' => ['hidewall', L10n::t('Hide your profile details from anonymous viewers?'), $a->user['hidewall'], L10n::t('Anonymous visitors will only see your profile picture, your display name and the nickname you are using on your profile page. Your public posts and replies will still be accessible by other means.'), [L10n::t('No'), L10n::t('Yes')]],
1112         ]);
1113
1114         $blockwall = replace_macros($opt_tpl, [
1115                 '$field' => ['blockwall', L10n::t('Allow friends to post to your profile page?'), (intval($a->user['blockwall']) ? '0' : '1'), L10n::t('Your contacts may write posts on your profile wall. These posts will be distributed to your contacts'), [L10n::t('No'), L10n::t('Yes')]],
1116         ]);
1117
1118         $blocktags = replace_macros($opt_tpl, [
1119                 '$field' => ['blocktags', L10n::t('Allow friends to tag your posts?'), (intval($a->user['blocktags']) ? '0' : '1'), L10n::t('Your contacts can add additional tags to your posts.'), [L10n::t('No'), L10n::t('Yes')]],
1120         ]);
1121
1122         $suggestme = replace_macros($opt_tpl, [
1123                 '$field' => ['suggestme', L10n::t('Allow us to suggest you as a potential friend to new members?'), $suggestme, L10n::t('If you like, Friendica may suggest new members to add you as a contact.'), [L10n::t('No'), L10n::t('Yes')]],
1124         ]);
1125
1126         $unkmail = replace_macros($opt_tpl, [
1127                 '$field' => ['unkmail', L10n::t('Permit unknown people to send you private mail?'), $unkmail, L10n::t('Friendica network users may send you private messages even if they are not in your contact list.'), [L10n::t('No'), L10n::t('Yes')]],
1128         ]);
1129
1130         if (!$profile['publish'] && !$profile['net-publish']) {
1131                 info(L10n::t('Profile is <strong>not published</strong>.') . EOL);
1132         }
1133
1134         $tpl_addr = get_markup_template('settings/nick_set.tpl');
1135
1136         $prof_addr = replace_macros($tpl_addr,[
1137                 '$desc' => L10n::t("Your Identity Address is <strong>'%s'</strong> or '%s'.", $nickname . '@' . $a->get_hostname() . $a->get_path(), System::baseUrl() . '/profile/' . $nickname),
1138                 '$basepath' => $a->get_hostname()
1139         ]);
1140
1141         $stpl = get_markup_template('settings/settings.tpl');
1142
1143         $expire_arr = [
1144                 'days' => ['expire',  L10n::t("Automatically expire posts after this many days:"), $expire, L10n::t('If empty, posts will not expire. Expired posts will be deleted')],
1145                 'advanced' => L10n::t('Advanced expiration settings'),
1146                 'label' => L10n::t('Advanced Expiration'),
1147                 'items' => ['expire_items',  L10n::t("Expire posts:"), $expire_items, '', [L10n::t('No'), L10n::t('Yes')]],
1148                 'notes' => ['expire_notes',  L10n::t("Expire personal notes:"), $expire_notes, '', [L10n::t('No'), L10n::t('Yes')]],
1149                 'starred' => ['expire_starred',  L10n::t("Expire starred posts:"), $expire_starred, '', [L10n::t('No'), L10n::t('Yes')]],
1150                 'photos' => ['expire_photos',  L10n::t("Expire photos:"), $expire_photos, '', [L10n::t('No'), L10n::t('Yes')]],
1151                 'network_only' => ['expire_network_only',  L10n::t("Only expire posts by others:"), $expire_network_only, '', [L10n::t('No'), L10n::t('Yes')]],
1152         ];
1153
1154         $group_select = Group::displayGroupSelection(local_user(), $a->user['def_gid']);
1155
1156         // Private/public post links for the non-JS ACL form
1157         $private_post = 1;
1158         if ($_REQUEST['public']) {
1159                 $private_post = 0;
1160         }
1161
1162         $query_str = $a->query_string;
1163         if (strpos($query_str, 'public=1') !== false) {
1164                 $query_str = str_replace(['?public=1', '&public=1'], ['', ''], $query_str);
1165         }
1166
1167         // I think $a->query_string may never have ? in it, but I could be wrong
1168         // It looks like it's from the index.php?q=[etc] rewrite that the web
1169         // server does, which converts any ? to &, e.g. suggest&ignore=61 for suggest?ignore=61
1170         if (strpos($query_str, '?') === false) {
1171                 $public_post_link = '?public=1';
1172         } else {
1173                 $public_post_link = '&public=1';
1174         }
1175
1176         /* Installed langs */
1177         $lang_choices = L10n::getAvailableLanguages();
1178
1179         /// @TODO Fix indending (or so)
1180         $o .= replace_macros($stpl, [
1181                 '$ptitle'       => L10n::t('Account Settings'),
1182
1183                 '$submit'       => L10n::t('Save Settings'),
1184                 '$baseurl' => System::baseUrl(true),
1185                 '$uid' => local_user(),
1186                 '$form_security_token' => get_form_security_token("settings"),
1187                 '$nickname_block' => $prof_addr,
1188
1189                 '$h_pass'       => L10n::t('Password Settings'),
1190                 '$password1'=> ['password', L10n::t('New Password:'), '', ''],
1191                 '$password2'=> ['confirm', L10n::t('Confirm:'), '', L10n::t('Leave password fields blank unless changing')],
1192                 '$password3'=> ['opassword', L10n::t('Current Password:'), '', L10n::t('Your current password to confirm the changes')],
1193                 '$password4'=> ['mpassword', L10n::t('Password:'), '', L10n::t('Your current password to confirm the changes')],
1194                 '$oid_enable' => (!Config::get('system', 'no_openid')),
1195                 '$openid'       => $openid_field,
1196
1197                 '$h_basic'      => L10n::t('Basic Settings'),
1198                 '$username' => ['username',  L10n::t('Full Name:'), $username, ''],
1199                 '$email'        => ['email', L10n::t('Email Address:'), $email, '', '', '', 'email'],
1200                 '$timezone' => ['timezone_select' , L10n::t('Your Timezone:'), Temporal::getTimezoneSelect($timezone), ''],
1201                 '$language' => ['language', L10n::t('Your Language:'), $language, L10n::t('Set the language we use to show you friendica interface and to send you emails'), $lang_choices],
1202                 '$defloc'       => ['defloc', L10n::t('Default Post Location:'), $defloc, ''],
1203                 '$allowloc' => ['allow_location', L10n::t('Use Browser Location:'), ($a->user['allow_location'] == 1), ''],
1204
1205
1206                 '$h_prv'        => L10n::t('Security and Privacy Settings'),
1207
1208                 '$maxreq'       => ['maxreq', L10n::t('Maximum Friend Requests/Day:'), $maxreq , L10n::t("\x28to prevent spam abuse\x29")],
1209                 '$permissions' => L10n::t('Default Post Permissions'),
1210                 '$permdesc' => L10n::t("\x28click to open/close\x29"),
1211                 '$visibility' => $profile['net-publish'],
1212                 '$aclselect' => ACL::getFullSelectorHTML($a->user),
1213                 '$suggestme' => $suggestme,
1214                 '$blockwall'=> $blockwall, // array('blockwall', L10n::t('Allow friends to post to your profile page:'), !$blockwall, ''),
1215                 '$blocktags'=> $blocktags, // array('blocktags', L10n::t('Allow friends to tag your posts:'), !$blocktags, ''),
1216
1217                 // ACL permissions box
1218                 '$group_perms' => L10n::t('Show to Groups'),
1219                 '$contact_perms' => L10n::t('Show to Contacts'),
1220                 '$private' => L10n::t('Default Private Post'),
1221                 '$public' => L10n::t('Default Public Post'),
1222                 '$is_private' => $private_post,
1223                 '$return_path' => $query_str,
1224                 '$public_link' => $public_post_link,
1225                 '$settings_perms' => L10n::t('Default Permissions for New Posts'),
1226
1227                 '$group_select' => $group_select,
1228
1229
1230                 '$expire'       => $expire_arr,
1231
1232                 '$profile_in_dir' => $profile_in_dir,
1233                 '$profile_in_net_dir' => $profile_in_net_dir,
1234                 '$hide_friends' => $hide_friends,
1235                 '$hide_wall' => $hide_wall,
1236                 '$unkmail' => $unkmail,
1237                 '$cntunkmail'   => ['cntunkmail', L10n::t('Maximum private messages per day from unknown people:'), $cntunkmail , L10n::t("\x28to prevent spam abuse\x29")],
1238
1239
1240                 '$h_not'        => L10n::t('Notification Settings'),
1241                 '$lbl_not'      => L10n::t('Send a notification email when:'),
1242                 '$notify1'      => ['notify1', L10n::t('You receive an introduction'), ($notify & NOTIFY_INTRO), NOTIFY_INTRO, ''],
1243                 '$notify2'      => ['notify2', L10n::t('Your introductions are confirmed'), ($notify & NOTIFY_CONFIRM), NOTIFY_CONFIRM, ''],
1244                 '$notify3'      => ['notify3', L10n::t('Someone writes on your profile wall'), ($notify & NOTIFY_WALL), NOTIFY_WALL, ''],
1245                 '$notify4'      => ['notify4', L10n::t('Someone writes a followup comment'), ($notify & NOTIFY_COMMENT), NOTIFY_COMMENT, ''],
1246                 '$notify5'      => ['notify5', L10n::t('You receive a private message'), ($notify & NOTIFY_MAIL), NOTIFY_MAIL, ''],
1247                 '$notify6'  => ['notify6', L10n::t('You receive a friend suggestion'), ($notify & NOTIFY_SUGGEST), NOTIFY_SUGGEST, ''],
1248                 '$notify7'  => ['notify7', L10n::t('You are tagged in a post'), ($notify & NOTIFY_TAGSELF), NOTIFY_TAGSELF, ''],
1249                 '$notify8'  => ['notify8', L10n::t('You are poked/prodded/etc. in a post'), ($notify & NOTIFY_POKE), NOTIFY_POKE, ''],
1250
1251                 '$desktop_notifications' => ['desktop_notifications', L10n::t('Activate desktop notifications') , false, L10n::t('Show desktop popup on new notifications')],
1252
1253                 '$email_textonly' => ['email_textonly', L10n::t('Text-only notification emails'),
1254                                                                         PConfig::get(local_user(), 'system', 'email_textonly'),
1255                                                                         L10n::t('Send text only notification emails, without the html part')],
1256
1257                 '$detailed_notif' => ['detailed_notif', L10n::t('Show detailled notifications'),
1258                                                                         PConfig::get(local_user(), 'system', 'detailed_notif'),
1259                                                                         L10n::t('Per default, notifications are condensed to a single notification per item. When enabled every notification is displayed.')],
1260
1261                 '$h_advn' => L10n::t('Advanced Account/Page Type Settings'),
1262                 '$h_descadvn' => L10n::t('Change the behaviour of this account for special situations'),
1263                 '$pagetype' => $pagetype,
1264
1265                 '$relocate' => L10n::t('Relocate'),
1266                 '$relocate_text' => L10n::t("If you have moved this profile from another server, and some of your contacts don't receive your updates, try pushing this button."),
1267                 '$relocate_button' => L10n::t("Resend relocate message to contacts"),
1268
1269         ]);
1270
1271         Addon::callHooks('settings_form', $o);
1272
1273         $o .= '</form>' . "\r\n";
1274
1275         return $o;
1276
1277 }