3 * @copyright Copyright (C) 2020, Friendica
5 * @license GNU AGPL version 3 or any later version
7 * This program is free software: you can redistribute it and/or modify
8 * it under the terms of the GNU Affero General Public License as
9 * published by the Free Software Foundation, either version 3 of the
10 * License, or (at your option) any later version.
12 * This program is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU Affero General Public License for more details.
17 * You should have received a copy of the GNU Affero General Public License
18 * along with this program. If not, see <https://www.gnu.org/licenses/>.
22 namespace Friendica\Model;
25 use Friendica\Content\Text\BBCode;
26 use Friendica\Content\Widget\ContactBlock;
27 use Friendica\Core\Cache\Duration;
28 use Friendica\Core\Hook;
29 use Friendica\Core\Logger;
30 use Friendica\Network\Probe;
31 use Friendica\Core\Protocol;
32 use Friendica\Core\Renderer;
33 use Friendica\Core\Session;
34 use Friendica\Core\System;
35 use Friendica\Database\DBA;
37 use Friendica\Protocol\Activity;
38 use Friendica\Protocol\Diaspora;
39 use Friendica\Util\DateTimeFormat;
40 use Friendica\Util\Network;
41 use Friendica\Util\Proxy as ProxyUtils;
42 use Friendica\Util\Strings;
47 * Returns default profile for a given user id
49 * @param integer User ID
51 * @return array Profile data
54 public static function getByUID($uid)
56 return DBA::selectFirst('profile', [], ['uid' => $uid]);
60 * Returns default profile for a given user ID and ID
62 * @param int $uid The contact ID
63 * @param int $id The contact owner ID
64 * @param array $fields The selected fields
66 * @return array Profile data for the ID
69 public static function getById(int $uid, int $id, array $fields = [])
71 return DBA::selectFirst('profile', $fields, ['uid' => $uid, 'id' => $id]);
75 * Returns profile data for the contact owner
77 * @param int $uid The User ID
78 * @param array $fields The fields to retrieve
80 * @return array Array of profile data
83 public static function getListByUser(int $uid, array $fields = [])
85 return DBA::selectToArray('profile', $fields, ['uid' => $uid]);
89 * Returns a formatted location string from the given profile array
91 * @param array $profile Profile array (Generated from the "profile" table)
93 * @return string Location string
95 public static function formatLocation(array $profile)
99 if (!empty($profile['locality'])) {
100 $location .= $profile['locality'];
103 if (!empty($profile['region']) && (($profile['locality'] ?? '') != $profile['region'])) {
108 $location .= $profile['region'];
111 if (!empty($profile['country-name'])) {
116 $location .= $profile['country-name'];
123 * Loads a profile into the page sidebar.
125 * The function requires a writeable copy of the main App structure, and the nickname
126 * of a registered local account.
128 * If the viewer is an authenticated remote viewer, the profile displayed is the
129 * one that has been configured for his/her viewing in the Contact manager.
130 * Passing a non-zero profile ID can also allow a preview of a selected profile
133 * Profile information is placed in the App structure for later retrieval.
134 * Honours the owner's chosen theme for display.
136 * @attention Should only be run in the _init() functions of a module. That ensures that
137 * the theme is chosen before the _init() function of a theme is run, which will usually
138 * load a lot of theme-specific content
141 * @param string $nickname string
142 * @param array $profiledata array
143 * @param boolean $show_connect Show connect link
144 * @throws \Friendica\Network\HTTPException\InternalServerErrorException
145 * @throws \ImagickException
147 public static function load(App $a, $nickname, array $profiledata = [], $show_connect = true)
149 $user = DBA::selectFirst('user', ['uid'], ['nickname' => $nickname, 'account_removed' => false]);
151 if (!DBA::isResult($user) && empty($profiledata)) {
152 Logger::log('profile error: ' . DI::args()->getQueryString(), Logger::DEBUG);
156 if (count($profiledata) > 0) {
157 // Ensure to have a "nickname" field
158 if (empty($profiledata['nickname']) && !empty($profiledata['nick'])) {
159 $profiledata['nickname'] = $profiledata['nick'];
162 // Add profile data to sidebar
163 DI::page()['aside'] .= self::sidebar($a, $profiledata, true, $show_connect);
165 if (!DBA::isResult($user)) {
170 $profile = self::getByNickname($nickname, $user['uid']);
172 if (empty($profile) && empty($profiledata)) {
173 Logger::log('profile error: ' . DI::args()->getQueryString(), Logger::DEBUG);
177 if (empty($profile)) {
178 $profile = ['uid' => 0, 'name' => $nickname];
181 $a->profile = $profile;
182 $a->profile_uid = $profile['uid'];
184 $a->profile['mobile-theme'] = DI::pConfig()->get($a->profile['uid'], 'system', 'mobile_theme');
185 $a->profile['network'] = Protocol::DFRN;
187 DI::page()['title'] = $a->profile['name'] . ' @ ' . DI::config()->get('config', 'sitename');
189 if (!$profiledata && !DI::pConfig()->get(local_user(), 'system', 'always_my_theme')) {
190 $a->setCurrentTheme($a->profile['theme']);
191 $a->setCurrentMobileTheme($a->profile['mobile-theme']);
195 * load/reload current theme info
198 Renderer::setActiveTemplateEngine(); // reset the template engine to the default in case the user's theme doesn't specify one
200 $theme_info_file = 'view/theme/' . $a->getCurrentTheme() . '/theme.php';
201 if (file_exists($theme_info_file)) {
202 require_once $theme_info_file;
205 $block = ((DI::config()->get('system', 'block_public') && !Session::isAuthenticated()) ? true : false);
209 * By now, the contact block isn't shown, when a different profile is given
210 * But: When this profile was on the same server, then we could display the contacts
213 DI::page()['aside'] .= self::sidebar($a, $a->profile, $block, $show_connect);
220 * Get all profile data of a local user
222 * If the viewer is an authenticated remote viewer, the profile displayed is the
223 * one that has been configured for his/her viewing in the Contact manager.
224 * Passing a non-zero profile ID can also allow a preview of a selected profile
227 * Includes all available profile data
229 * @param string $nickname nick
230 * @param int $uid uid
231 * @param int $profile_id ID of the profile
235 public static function getByNickname($nickname, $uid = 0)
237 $profile = DBA::fetchFirst(
238 "SELECT `contact`.`id` AS `contact_id`, `contact`.`photo` AS `contact_photo`,
239 `contact`.`thumb` AS `contact_thumb`, `contact`.`micro` AS `contact_micro`,
241 `contact`.`avatar-date` AS picdate, `contact`.`addr`, `contact`.`url`, `user`.*
243 INNER JOIN `contact` on `contact`.`uid` = `profile`.`uid` AND `contact`.`self`
244 INNER JOIN `user` ON `profile`.`uid` = `user`.`uid`
245 WHERE `user`.`nickname` = ? AND `profile`.`uid` = ? LIMIT 1",
254 * Formats a profile for display in the sidebar.
256 * It is very difficult to templatise the HTML completely
257 * because of all the conditional logic.
259 * @param array $profile
261 * @param boolean $show_connect Show connect link
263 * @return string HTML sidebar module
265 * @throws \Friendica\Network\HTTPException\InternalServerErrorException
266 * @throws \ImagickException
267 * @note Returns empty string if passed $profile is wrong type or not populated
269 * @hooks 'profile_sidebar_enter'
270 * array $profile - profile data
271 * @hooks 'profile_sidebar'
274 private static function sidebar(App $a, $profile, $block = 0, $show_connect = true)
279 // This function can also use contact information in $profile
280 $is_contact = !empty($profile['cid']);
282 if (!is_array($profile) && !count($profile)) {
286 $profile['picdate'] = urlencode($profile['picdate'] ?? '');
288 if (($profile['network'] != '') && ($profile['network'] != Protocol::DFRN)) {
289 $profile['network_link'] = Strings::formatNetworkName($profile['network'], $profile['url']);
291 $profile['network_link'] = '';
294 Hook::callAll('profile_sidebar_enter', $profile);
296 if (isset($profile['url'])) {
297 $profile_url = $profile['url'];
299 $profile_url = DI::baseUrl()->get() . '/profile/' . $profile['nickname'];
303 $unfollow_link = null;
304 $subscribe_feed_link = null;
305 $wallmessage_link = null;
309 $visitor_contact = [];
310 if (!empty($profile['uid']) && self::getMyURL()) {
311 $visitor_contact = Contact::selectFirst(['rel'], ['uid' => $profile['uid'], 'nurl' => Strings::normaliseLink(self::getMyURL())]);
314 $profile_contact = [];
315 if (!empty($profile['cid']) && self::getMyURL()) {
316 $profile_contact = Contact::selectFirst(['rel'], ['id' => $profile['cid']]);
319 $profile_is_dfrn = $profile['network'] == Protocol::DFRN;
320 $profile_is_native = in_array($profile['network'], Protocol::NATIVE_SUPPORT);
321 $local_user_is_self = local_user() && local_user() == ($profile['uid'] ?? 0);
322 $visitor_is_authenticated = (bool)self::getMyURL();
323 $visitor_is_following =
324 in_array($visitor_contact['rel'] ?? 0, [Contact::FOLLOWER, Contact::FRIEND])
325 || in_array($profile_contact['rel'] ?? 0, [Contact::SHARING, Contact::FRIEND]);
326 $visitor_is_followed =
327 in_array($visitor_contact['rel'] ?? 0, [Contact::SHARING, Contact::FRIEND])
328 || in_array($profile_contact['rel'] ?? 0, [Contact::FOLLOWER, Contact::FRIEND]);
329 $visitor_base_path = self::getMyURL() ? preg_replace('=/profile/(.*)=ism', '', self::getMyURL()) : '';
331 if (!$local_user_is_self && $show_connect) {
332 if (!$visitor_is_authenticated) {
333 // Remote follow is only available for local profiles
334 if (!empty($profile['nickname']) && strpos($profile_url, DI::baseUrl()->get()) === 0) {
335 $follow_link = 'remote_follow/' . $profile['nickname'];
337 } elseif ($profile_is_native) {
338 if ($visitor_is_following) {
339 $unfollow_link = $visitor_base_path . '/unfollow?url=' . urlencode($profile_url);
341 $follow_link = $visitor_base_path .'/follow?url=' . urlencode($profile_url);
345 if ($profile_is_dfrn) {
346 $subscribe_feed_link = 'dfrn_poll/' . $profile['nickname'];
349 if (Contact::canReceivePrivateMessages($profile)) {
350 if ($visitor_is_followed || $visitor_is_following) {
351 $wallmessage_link = $visitor_base_path . '/message/new/' . base64_encode($profile['addr'] ?? '');
352 } elseif ($visitor_is_authenticated && !empty($profile['unkmail'])) {
353 $wallmessage_link = 'wallmessage/' . $profile['nickname'];
358 // show edit profile to yourself
359 if (!$is_contact && $local_user_is_self) {
360 $profile['edit'] = [DI::baseUrl() . '/settings/profile', DI::l10n()->t('Edit profile'), '', DI::l10n()->t('Edit profile')];
362 'chg_photo' => DI::l10n()->t('Change profile photo'),
368 // Fetch the account type
369 $account_type = Contact::getAccountType($profile);
371 if (!empty($profile['address'])
372 || !empty($profile['location'])
373 || !empty($profile['locality'])
374 || !empty($profile['region'])
375 || !empty($profile['postal-code'])
376 || !empty($profile['country-name'])
378 $location = DI::l10n()->t('Location:');
381 $homepage = !empty($profile['homepage']) ? DI::l10n()->t('Homepage:') : false;
382 $about = !empty($profile['about']) ? DI::l10n()->t('About:') : false;
383 $xmpp = !empty($profile['xmpp']) ? DI::l10n()->t('XMPP:') : false;
385 if ((!empty($profile['hidewall']) || $block) && !Session::isAuthenticated()) {
386 $location = $homepage = $about = false;
389 $split_name = Diaspora::splitName($profile['name']);
390 $firstname = $split_name['first'];
391 $lastname = $split_name['last'];
393 if (!empty($profile['guid'])) {
395 'guid' => $profile['guid'],
396 'podloc' => DI::baseUrl(),
397 'searchable' => ($profile['net-publish'] ? 'true' : 'false'),
398 'nickname' => $profile['nickname'],
399 'fullname' => $profile['name'],
400 'firstname' => $firstname,
401 'lastname' => $lastname,
402 'photo300' => $profile['contact_photo'] ?? '',
403 'photo100' => $profile['contact_thumb'] ?? '',
404 'photo50' => $profile['contact_micro'] ?? '',
414 $contact_block = ContactBlock::getHTML($a->profile);
416 if (is_array($a->profile) && !$a->profile['hide-friends']) {
418 "SELECT `gcontact`.`updated` FROM `contact` INNER JOIN `gcontact` WHERE `gcontact`.`nurl` = `contact`.`nurl` AND `self` AND `uid` = %d LIMIT 1",
419 intval($a->profile['uid'])
421 if (DBA::isResult($r)) {
422 $updated = date('c', strtotime($r[0]['updated']));
425 $contact_count = DBA::count('contact', [
426 'uid' => $profile['uid'],
432 'network' => Protocol::FEDERATED,
438 foreach ($profile as $k => $v) {
439 $k = str_replace('-', '_', $k);
443 if (isset($p['about'])) {
444 $p['about'] = BBCode::convert($p['about']);
447 if (empty($p['address']) && !empty($p['location'])) {
448 $p['address'] = $p['location'];
451 if (isset($p['address'])) {
452 $p['address'] = BBCode::convert($p['address']);
455 if (isset($p['photo'])) {
456 $p['photo'] = ProxyUtils::proxifyUrl($p['photo'], false, ProxyUtils::SIZE_SMALL);
459 $p['url'] = Contact::magicLink(($p['url'] ?? '') ?: $profile_url);
461 $tpl = Renderer::getMarkupTemplate('profile/vcard.tpl');
462 $o .= Renderer::replaceMacros($tpl, [
465 '$follow' => DI::l10n()->t('Follow'),
466 '$follow_link' => $follow_link,
467 '$unfollow' => DI::l10n()->t('Unfollow'),
468 '$unfollow_link' => $unfollow_link,
469 '$subscribe_feed' => DI::l10n()->t('Atom feed'),
470 '$subscribe_feed_link' => $subscribe_feed_link,
471 '$wallmessage' => DI::l10n()->t('Message'),
472 '$wallmessage_link' => $wallmessage_link,
473 '$account_type' => $account_type,
474 '$location' => $location,
475 '$homepage' => $homepage,
477 '$network' => DI::l10n()->t('Network:'),
478 '$contacts' => $contact_count,
479 '$updated' => $updated,
480 '$diaspora' => $diaspora,
481 '$contact_block' => $contact_block,
484 $arr = ['profile' => &$profile, 'entry' => &$o];
486 Hook::callAll('profile_sidebar', $arr);
491 public static function getBirthdays()
496 if (!local_user() || DI::mode()->isMobile() || DI::mode()->isMobile()) {
501 * $mobile_detect = new Mobile_Detect();
502 * $is_mobile = $mobile_detect->isMobile() || $mobile_detect->isTablet();
507 $bd_format = DI::l10n()->t('g A l F d'); // 8 AM Friday January 18
508 $bd_short = DI::l10n()->t('F d');
510 $cachekey = 'get_birthdays:' . local_user();
511 $r = DI::cache()->get($cachekey);
514 "SELECT `event`.*, `event`.`id` AS `eid`, `contact`.* FROM `event`
516 ON `contact`.`id` = `event`.`cid`
517 AND (`contact`.`rel` = ? OR `contact`.`rel` = ?)
518 AND NOT `contact`.`pending`
519 AND NOT `contact`.`hidden`
520 AND NOT `contact`.`blocked`
521 AND NOT `contact`.`archive`
522 AND NOT `contact`.`deleted`
523 WHERE `event`.`uid` = ? AND `type` = 'birthday' AND `start` < ? AND `finish` > ?
524 ORDER BY `start` ASC ",
528 DateTimeFormat::utc('now + 6 days'),
529 DateTimeFormat::utcNow()
531 if (DBA::isResult($s)) {
532 $r = DBA::toArray($s);
533 DI::cache()->set($cachekey, $r, Duration::HOUR);
539 if (DBA::isResult($r)) {
540 $now = strtotime('now');
544 foreach ($r as $rr) {
545 if (strlen($rr['name'])) {
548 if ((strtotime($rr['start'] . ' +00:00') < $now) && (strtotime($rr['finish'] . ' +00:00') > $now)) {
552 $classtoday = $istoday ? ' birthday-today ' : '';
554 foreach ($r as &$rr) {
555 if (!strlen($rr['name'])) {
561 if (in_array($rr['cid'], $cids)) {
564 $cids[] = $rr['cid'];
566 $today = (((strtotime($rr['start'] . ' +00:00') < $now) && (strtotime($rr['finish'] . ' +00:00') > $now)) ? true : false);
568 $rr['link'] = Contact::magicLink($rr['url']);
569 $rr['title'] = $rr['name'];
570 $rr['date'] = DI::l10n()->getDay(DateTimeFormat::convert($rr['start'], $a->timezone, 'UTC', $rr['adjust'] ? $bd_format : $bd_short)) . (($today) ? ' ' . DI::l10n()->t('[today]') : '');
571 $rr['startime'] = null;
572 $rr['today'] = $today;
576 $tpl = Renderer::getMarkupTemplate('birthdays_reminder.tpl');
577 return Renderer::replaceMacros($tpl, [
578 '$classtoday' => $classtoday,
580 '$event_reminders' => DI::l10n()->t('Birthday Reminders'),
581 '$event_title' => DI::l10n()->t('Birthdays this week:'),
583 '$lbr' => '{', // raw brackets mess up if/endif macro processing
588 public static function getEventsReminderHTML()
593 if (!local_user() || DI::mode()->isMobile() || DI::mode()->isMobile()) {
598 * $mobile_detect = new Mobile_Detect();
599 * $is_mobile = $mobile_detect->isMobile() || $mobile_detect->isTablet();
604 $bd_format = DI::l10n()->t('g A l F d'); // 8 AM Friday January 18
607 $condition = ["`uid` = ? AND `type` != 'birthday' AND `start` < ? AND `start` >= ?",
608 local_user(), DateTimeFormat::utc('now + 7 days'), DateTimeFormat::utc('now - 1 days')];
609 $s = DBA::select('event', [], $condition, ['order' => ['start']]);
613 if (DBA::isResult($s)) {
617 while ($rr = DBA::fetch($s)) {
618 $condition = ['parent-uri' => $rr['uri'], 'uid' => $rr['uid'], 'author-id' => public_contact(),
619 'activity' => [Item::activityToIndex( Activity::ATTEND), Item::activityToIndex(Activity::ATTENDMAYBE)],
620 'visible' => true, 'deleted' => false];
621 if (!Item::exists($condition)) {
625 if (strlen($rr['summary'])) {
629 $strt = DateTimeFormat::convert($rr['start'], $rr['adjust'] ? $a->timezone : 'UTC', 'UTC', 'Y-m-d');
630 if ($strt === DateTimeFormat::timezoneNow($a->timezone, 'Y-m-d')) {
634 $title = strip_tags(html_entity_decode(BBCode::convert($rr['summary']), ENT_QUOTES, 'UTF-8'));
636 if (strlen($title) > 35) {
637 $title = substr($title, 0, 32) . '... ';
640 $description = substr(strip_tags(BBCode::convert($rr['desc'])), 0, 32) . '... ';
642 $description = DI::l10n()->t('[No description]');
645 $strt = DateTimeFormat::convert($rr['start'], $rr['adjust'] ? $a->timezone : 'UTC');
647 if (substr($strt, 0, 10) < DateTimeFormat::timezoneNow($a->timezone, 'Y-m-d')) {
651 $today = ((substr($strt, 0, 10) === DateTimeFormat::timezoneNow($a->timezone, 'Y-m-d')) ? true : false);
653 $rr['title'] = $title;
654 $rr['description'] = $description;
655 $rr['date'] = DI::l10n()->getDay(DateTimeFormat::convert($rr['start'], $rr['adjust'] ? $a->timezone : 'UTC', 'UTC', $bd_format)) . (($today) ? ' ' . DI::l10n()->t('[today]') : '');
656 $rr['startime'] = $strt;
657 $rr['today'] = $today;
662 $classtoday = (($istoday) ? 'event-today' : '');
664 $tpl = Renderer::getMarkupTemplate('events_reminder.tpl');
665 return Renderer::replaceMacros($tpl, [
666 '$classtoday' => $classtoday,
667 '$count' => count($r),
668 '$event_reminders' => DI::l10n()->t('Event Reminders'),
669 '$event_title' => DI::l10n()->t('Upcoming events the next 7 days:'),
675 * Retrieves the my_url session variable
679 public static function getMyURL()
681 return Session::get('my_url');
685 * Process the 'zrl' parameter and initiate the remote authentication.
687 * This method checks if the visitor has a public contact entry and
688 * redirects the visitor to his/her instance to start the magic auth (Authentication)
691 * Ported from Hubzilla: https://framagit.org/hubzilla/core/blob/master/include/channel.php
693 * The implementation for Friendica sadly differs in some points from the one for Hubzilla:
694 * - Hubzilla uses the "zid" parameter, while for Friendica it had been replaced with "zrl"
695 * - There seem to be some reverse authentication (rmagic) that isn't implemented in Friendica at all
697 * It would be favourable to harmonize the two implementations.
699 * @param App $a Application instance.
700 * @throws \Friendica\Network\HTTPException\InternalServerErrorException
701 * @throws \ImagickException
703 public static function zrlInit(App $a)
705 $my_url = self::getMyURL();
706 $my_url = Network::isUrlValid($my_url);
708 if (empty($my_url) || local_user()) {
712 $addr = $_GET['addr'] ?? $my_url;
714 $arr = ['zrl' => $my_url, 'url' => DI::args()->getCommand()];
715 Hook::callAll('zrl_init', $arr);
717 // Try to find the public contact entry of the visitor.
718 $cid = Contact::getIdForURL($my_url);
720 Logger::log('No contact record found for ' . $my_url, Logger::DEBUG);
724 $contact = DBA::selectFirst('contact',['id', 'url'], ['id' => $cid]);
726 if (DBA::isResult($contact) && remote_user() && remote_user() == $contact['id']) {
727 Logger::log('The visitor ' . $my_url . ' is already authenticated', Logger::DEBUG);
731 // Avoid endless loops
732 $cachekey = 'zrlInit:' . $my_url;
733 if (DI::cache()->get($cachekey)) {
734 Logger::log('URL ' . $my_url . ' already tried to authenticate.', Logger::DEBUG);
737 DI::cache()->set($cachekey, true, Duration::MINUTE);
740 Logger::log('Not authenticated. Invoking reverse magic-auth for ' . $my_url, Logger::DEBUG);
742 // Remove the "addr" parameter from the destination. It is later added as separate parameter again.
743 $addr_request = 'addr=' . urlencode($addr);
744 $query = rtrim(str_replace($addr_request, '', DI::args()->getQueryString()), '?&');
746 // The other instance needs to know where to redirect.
747 $dest = urlencode(DI::baseUrl()->get() . '/' . $query);
749 // We need to extract the basebath from the profile url
750 // to redirect the visitors '/magic' module.
751 $basepath = Contact::getBasepath($contact['url']);
753 if ($basepath != DI::baseUrl()->get() && !strstr($dest, '/magic')) {
754 $magic_path = $basepath . '/magic' . '?owa=1&dest=' . $dest . '&' . $addr_request;
756 // We have to check if the remote server does understand /magic without invoking something
757 $serverret = Network::curl($basepath . '/magic');
758 if ($serverret->isSuccess()) {
759 Logger::log('Doing magic auth for visitor ' . $my_url . ' to ' . $magic_path, Logger::DEBUG);
760 System::externalRedirect($magic_path);
766 * Set the visitor cookies (see remote_user()) for the given handle
768 * @param string $handle Visitor handle
769 * @return array Visitor contact array
771 public static function addVisitorCookieForHandle($handle)
775 // Try to find the public contact entry of the visitor.
776 $cid = Contact::getIdForURL($handle);
778 Logger::log('unable to finger ' . $handle, Logger::DEBUG);
782 $visitor = DBA::selectFirst('contact', [], ['id' => $cid]);
784 // Authenticate the visitor.
785 $_SESSION['authenticated'] = 1;
786 $_SESSION['visitor_id'] = $visitor['id'];
787 $_SESSION['visitor_handle'] = $visitor['addr'];
788 $_SESSION['visitor_home'] = $visitor['url'];
789 $_SESSION['my_url'] = $visitor['url'];
790 $_SESSION['remote_comment'] = Probe::getRemoteFollowLink($visitor['url']);
792 Session::setVisitorsContacts();
794 $a->contact = $visitor;
796 Logger::info('Authenticated visitor', ['url' => $visitor['url']]);
802 * OpenWebAuth authentication.
804 * Ported from Hubzilla: https://framagit.org/hubzilla/core/blob/master/include/zid.php
806 * @param string $token
807 * @throws \Friendica\Network\HTTPException\InternalServerErrorException
808 * @throws \ImagickException
810 public static function openWebAuthInit($token)
814 // Clean old OpenWebAuthToken entries.
815 OpenWebAuthToken::purge('owt', '3 MINUTE');
817 // Check if the token we got is the same one
818 // we have stored in the database.
819 $visitor_handle = OpenWebAuthToken::getMeta('owt', 0, $token);
821 if ($visitor_handle === false) {
825 $visitor = self::addVisitorCookieForHandle($visitor_handle);
826 if (empty($visitor)) {
831 'visitor' => $visitor,
832 'url' => DI::args()->getQueryString()
835 * @hooks magic_auth_success
836 * Called when a magic-auth was successful.
837 * * \e array \b visitor
840 Hook::callAll('magic_auth_success', $arr);
842 $a->contact = $arr['visitor'];
844 info(DI::l10n()->t('OpenWebAuth: %1$s welcomes %2$s', DI::baseUrl()->getHostname(), $visitor['name']));
846 Logger::log('OpenWebAuth: auth success from ' . $visitor['addr'], Logger::DEBUG);
849 public static function zrl($s, $force = false)
854 if (!strpos($s, '/profile/') && !$force) {
857 if ($force && substr($s, -1, 1) !== '/') {
860 $achar = strpos($s, '?') ? '&' : '?';
861 $mine = self::getMyURL();
862 if ($mine && !Strings::compareLink($mine, $s)) {
863 return $s . $achar . 'zrl=' . urlencode($mine);
869 * Get the user ID of the page owner.
871 * Used from within PCSS themes to set theme parameters. If there's a
872 * profile_uid variable set in App, that is the "page owner" and normally their theme
873 * settings take precedence; unless a local user sets the "always_my_theme"
874 * system pconfig, which means they don't want to see anybody else's theme
875 * settings except their own while on this site.
877 * @return int user ID
879 * @throws \Friendica\Network\HTTPException\InternalServerErrorException
880 * @note Returns local_user instead of user ID if "always_my_theme" is set to true
882 public static function getThemeUid(App $a)
884 $uid = !empty($a->profile_uid) ? intval($a->profile_uid) : 0;
885 if (local_user() && (DI::pConfig()->get(local_user(), 'system', 'always_my_theme') || !$uid)) {
893 * search for Profiles
897 * @param null $search
899 * @return array [ 'total' => 123, 'entries' => [...] ];
903 public static function searchProfiles($start = 0, $count = 100, $search = null)
905 $publish = (DI::config()->get('system', 'publish_all') ? '' : "`publish` = 1");
908 if (!empty($search)) {
909 $searchTerm = '%' . $search . '%';
910 $cnt = DBA::fetchFirst("SELECT COUNT(*) AS `total`
912 LEFT JOIN `user` ON `user`.`uid` = `profile`.`uid`
913 WHERE $publish AND NOT `user`.`blocked` AND NOT `user`.`account_removed`
914 AND ((`profile`.`name` LIKE ?) OR
915 (`user`.`nickname` LIKE ?) OR
916 (`profile`.`about` LIKE ?) OR
917 (`profile`.`locality` LIKE ?) OR
918 (`profile`.`region` LIKE ?) OR
919 (`profile`.`country-name` LIKE ?) OR
920 (`profile`.`pub_keywords` LIKE ?) OR
921 (`profile`.`prv_keywords` LIKE ?))",
922 $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm,
923 $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm);
925 $cnt = DBA::fetchFirst("SELECT COUNT(*) AS `total`
927 LEFT JOIN `user` ON `user`.`uid` = `profile`.`uid`
928 WHERE $publish AND NOT `user`.`blocked` AND NOT `user`.`account_removed`");
931 if (DBA::isResult($cnt)) {
932 $total = $cnt['total'];
935 $order = " ORDER BY `name` ASC ";
938 // If nothing found, don't try to select details
940 if (!empty($search)) {
941 $searchTerm = '%' . $search . '%';
943 $profiles = DBA::p("SELECT `profile`.*, `profile`.`uid` AS `profile_uid`, `user`.`nickname`, `user`.`timezone` , `user`.`page-flags`,
944 `contact`.`addr`, `contact`.`url` AS `profile_url`
946 LEFT JOIN `user` ON `user`.`uid` = `profile`.`uid`
947 LEFT JOIN `contact` ON `contact`.`uid` = `user`.`uid`
948 WHERE $publish AND NOT `user`.`blocked` AND NOT `user`.`account_removed` AND `contact`.`self`
949 AND ((`profile`.`name` LIKE ?) OR
950 (`user`.`nickname` LIKE ?) OR
951 (`profile`.`about` LIKE ?) OR
952 (`profile`.`locality` LIKE ?) OR
953 (`profile`.`region` LIKE ?) OR
954 (`profile`.`country-name` LIKE ?) OR
955 (`profile`.`pub_keywords` LIKE ?) OR
956 (`profile`.`prv_keywords` LIKE ?))
958 $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm,
959 $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm, $searchTerm,
963 $profiles = DBA::p("SELECT `profile`.*, `profile`.`uid` AS `profile_uid`, `user`.`nickname`, `user`.`timezone` , `user`.`page-flags`,
964 `contact`.`addr`, `contact`.`url` AS `profile_url`
966 LEFT JOIN `user` ON `user`.`uid` = `profile`.`uid`
967 LEFT JOIN `contact` ON `contact`.`uid` = `user`.`uid`
968 WHERE $publish AND NOT `user`.`blocked` AND NOT `user`.`account_removed` AND `contact`.`self`
975 if (DBA::isResult($profiles) && $total > 0) {
978 'entries' => DBA::toArray($profiles),