Don't try to build form for "None" backend.

[friendica.git] / include / conversation.php

diff --git a/include/conversation.php b/include/conversation.php
index c1d428f24486fa3857d626fb35dde7a7bfc9d1d7..1059941b9e0bcb274b12f678ff37d4f7b6895601 100644 (file)
--- a/include/conversation.php
+++ b/include/conversation.php
@@ -26,7 +26,9 @@ use Friendica\Object\Thread;
 use Friendica\Util\DateTimeFormat;
 use Friendica\Util\Proxy as ProxyUtils;
 use Friendica\Util\Temporal;
+use Friendica\Util\Strings;
 use Friendica\Util\XML;
+use Friendica\Util\Crypto;
 
 function item_extract_images($body) {
 
@@ -195,7 +197,7 @@ function localize_item(&$item)
                $xmlhead="<"."?xml version='1.0' encoding='UTF-8' ?".">";
 
                $obj = XML::parseString($xmlhead.$item['object']);
-               $links = XML::parseString($xmlhead."<links>".unxmlify($obj->link)."</links>");
+               $links = XML::parseString($xmlhead."<links>".XML::unescape($obj->link)."</links>");
 
                $Bname = $obj->title;
                $Blink = "";
@@ -387,7 +389,7 @@ function visible_activity($item) {
         * likes (etc.) can apply to other things besides posts. Check if they are post children,
         * in which case we handle them specially
         */
-       $hidden_activities = [ACTIVITY_LIKE, ACTIVITY_DISLIKE, ACTIVITY_ATTEND, ACTIVITY_ATTENDNO, ACTIVITY_ATTENDMAYBE];
+       $hidden_activities = [ACTIVITY_LIKE, ACTIVITY_DISLIKE, ACTIVITY_ATTEND, ACTIVITY_ATTENDNO, ACTIVITY_ATTENDMAYBE, ACTIVITY_FOLLOW];
        foreach ($hidden_activities as $act) {
                if (activity_match($item['verb'], $act)) {
                        return false;
@@ -460,17 +462,17 @@ function conversation(App $a, array $items, Pager $pager, $mode, $update, $previ
                                . "<script> var profile_uid = " . $_SESSION['uid']
                                . "; var netargs = '" . substr($a->cmd, 8)
                                . '?f='
-                               . ((x($_GET, 'cid'))    ? '&cid='    . $_GET['cid']    : '')
-                               . ((x($_GET, 'search')) ? '&search=' . $_GET['search'] : '')
-                               . ((x($_GET, 'star'))   ? '&star='   . $_GET['star']   : '')
-                               . ((x($_GET, 'order'))  ? '&order='  . $_GET['order']  : '')
-                               . ((x($_GET, 'bmark'))  ? '&bmark='  . $_GET['bmark']  : '')
-                               . ((x($_GET, 'liked'))  ? '&liked='  . $_GET['liked']  : '')
-                               . ((x($_GET, 'conv'))   ? '&conv='   . $_GET['conv']   : '')
-                               . ((x($_GET, 'nets'))   ? '&nets='   . $_GET['nets']   : '')
-                               . ((x($_GET, 'cmin'))   ? '&cmin='   . $_GET['cmin']   : '')
-                               . ((x($_GET, 'cmax'))   ? '&cmax='   . $_GET['cmax']   : '')
-                               . ((x($_GET, 'file'))   ? '&file='   . $_GET['file']   : '')
+                               . (!empty($_GET['cid'])    ? '&cid='    . rawurlencode($_GET['cid'])    : '')
+                               . (!empty($_GET['search']) ? '&search=' . rawurlencode($_GET['search']) : '')
+                               . (!empty($_GET['star'])   ? '&star='   . rawurlencode($_GET['star'])   : '')
+                               . (!empty($_GET['order'])  ? '&order='  . rawurlencode($_GET['order'])  : '')
+                               . (!empty($_GET['bmark'])  ? '&bmark='  . rawurlencode($_GET['bmark'])  : '')
+                               . (!empty($_GET['liked'])  ? '&liked='  . rawurlencode($_GET['liked'])  : '')
+                               . (!empty($_GET['conv'])   ? '&conv='   . rawurlencode($_GET['conv'])   : '')
+                               . (!empty($_GET['nets'])   ? '&nets='   . rawurlencode($_GET['nets'])   : '')
+                               . (!empty($_GET['cmin'])   ? '&cmin='   . rawurlencode($_GET['cmin'])   : '')
+                               . (!empty($_GET['cmax'])   ? '&cmax='   . rawurlencode($_GET['cmax'])   : '')
+                               . (!empty($_GET['file'])   ? '&file='   . rawurlencode($_GET['file'])   : '')
 
                                . "'; var profile_page = " . $pager->getPage() . "; </script>\r\n";
                }
@@ -480,8 +482,8 @@ function conversation(App $a, array $items, Pager $pager, $mode, $update, $previ
 
                if (!$update) {
                        $tab = 'posts';
-                       if (x($_GET, 'tab')) {
-                               $tab = notags(trim($_GET['tab']));
+                       if (!empty($_GET['tab'])) {
+                               $tab = Strings::escapeTags(trim($_GET['tab']));
                        }
                        if ($tab === 'posts') {
                                /*
@@ -495,7 +497,7 @@ function conversation(App $a, array $items, Pager $pager, $mode, $update, $previ
                        }
                }
        } elseif ($mode === 'notes') {
-               $items = conversation_add_children($items, false, $order, $uid);
+               $items = conversation_add_children($items, false, $order, local_user());
                $profile_owner = local_user();
 
                if (!$update) {
@@ -522,7 +524,7 @@ function conversation(App $a, array $items, Pager $pager, $mode, $update, $previ
                                ."/?f='; var profile_page = " . $pager->getPage() . "; </script>\r\n";
                }
        } elseif ($mode === 'contacts') {
-               $items = conversation_add_children($items, true, $order, $uid);
+               $items = conversation_add_children($items, false, $order, $uid);
                $profile_owner = 0;
 
                if (!$update) {
@@ -637,7 +639,7 @@ function conversation(App $a, array $items, Pager $pager, $mode, $update, $previ
                                $lock = false;
                                $likebuttons = false;
 
-                               $body = prepare_body($item, true, $preview);
+                               $body = Item::prepareBody($item, true, $preview);
 
                                list($categories, $folders) = get_cats_and_terms($item);
 
@@ -688,7 +690,7 @@ function conversation(App $a, array $items, Pager $pager, $mode, $update, $previ
                                        'owner_name' => $owner_name_e,
                                        'owner_url' => $owner_url,
                                        'owner_photo' => System::removedBaseUrl(ProxyUtils::proxifyUrl($item['owner-avatar'], false, ProxyUtils::SIZE_THUMB)),
-                                       'plink' => get_plink($item),
+                                       'plink' => Item::getPlink($item),
                                        'edpost' => false,
                                        'isstarred' => $isstarred,
                                        'star' => $star,
@@ -767,7 +769,7 @@ function conversation(App $a, array $items, Pager $pager, $mode, $update, $previ
                '$mode' => $mode,
                '$user' => $a->user,
                '$threads' => $threads,
-               '$dropping' => ($page_dropping && Feature::isEnabled(local_user(), 'multi_delete') ? L10n::t('Delete Selected Items') : False),
+               '$dropping' => ($page_dropping ? L10n::t('Delete Selected Items') : False),
        ]);
 
        return $o;
@@ -796,7 +798,7 @@ function conversation_add_children(array $parents, $block_authors, $order, $uid)
 
        foreach ($parents AS $parent) {
                $condition = ["`item`.`parent-uri` = ? AND `item`.`uid` IN (0, ?) ",
-                       $parent['uri'], local_user()];
+                       $parent['uri'], $uid];
                if ($block_authors) {
                        $condition[0] .= "AND NOT `author`.`hidden`";
                }
@@ -841,7 +843,7 @@ function item_photo_menu($item) {
        $cid = 0;
        $network = '';
        $rel = 0;
-       $condition = ['uid' => local_user(), 'nurl' => normalise_link($item['author-link'])];
+       $condition = ['uid' => local_user(), 'nurl' => Strings::normaliseLink($item['author-link'])];
        $contact = DBA::selectFirst('contact', ['id', 'network', 'rel'], $condition);
        if (DBA::isResult($contact)) {
                $cid = $contact['id'];
@@ -949,7 +951,7 @@ function builtin_activity_puller($item, &$conv_responses) {
 
                        $url = '<a href="'. $url . '"'. $sparkle .'>' . htmlentities($item['author-name']) . '</a>';
 
-                       if (!x($item, 'thr-parent')) {
+                       if (empty($item['thr-parent'])) {
                                $item['thr-parent'] = $item['parent-uri'];
                        }
 
@@ -992,6 +994,7 @@ function builtin_activity_puller($item, &$conv_responses) {
 function format_like($cnt, array $arr, $type, $id) {
        $o = '';
        $expanded = '';
+       $phrase = '';
 
        if ($cnt == 1) {
                $likers = $arr[0];
@@ -1062,7 +1065,7 @@ function format_like($cnt, array $arr, $type, $id) {
                $expanded .= "\t" . '<div class="wall-item-' . $type . '-expanded" id="' . $type . 'list-' . $id . '" style="display: none;" >' . $explikers . EOL . '</div>';
        }
 
-       $phrase .= EOL ;
+       $phrase .= EOL;
        $o .= Renderer::replaceMacros(Renderer::getMarkupTemplate('voting_fakelink.tpl'), [
                '$phrase' => $phrase,
                '$type' => $type,
@@ -1077,7 +1080,7 @@ function status_editor(App $a, $x, $notes_cid = 0, $popup = false)
 {
        $o = '';
 
-       $geotag = x($x, 'allow_location') ? Renderer::replaceMacros(Renderer::getMarkupTemplate('jot_geotag.tpl'), []) : '';
+       $geotag = !empty($x['allow_location']) ? Renderer::replaceMacros(Renderer::getMarkupTemplate('jot_geotag.tpl'), []) : '';
 
        $tpl = Renderer::getMarkupTemplate('jot-header.tpl');
        $a->page['htmlhead'] .= Renderer::replaceMacros($tpl, [
@@ -1098,7 +1101,7 @@ function status_editor(App $a, $x, $notes_cid = 0, $popup = false)
 
        // Private/public post links for the non-JS ACL form
        $private_post = 1;
-       if (x($_REQUEST, 'public')) {
+       if (!empty($_REQUEST['public'])) {
                $private_post = 0;
        }
 
@@ -1161,12 +1164,12 @@ function status_editor(App $a, $x, $notes_cid = 0, $popup = false)
                '$lockstate'    => $x['lockstate'],
                '$bang'         => $x['bang'],
                '$profile_uid'  => $x['profile_uid'],
-               '$preview'      => Feature::isEnabled($x['profile_uid'], 'preview') ? L10n::t('Preview') : '',
+               '$preview'      => L10n::t('Preview'),
                '$jotplugins'   => $jotplugins,
                '$notes_cid'    => $notes_cid,
                '$sourceapp'    => L10n::t($a->sourcename),
                '$cancel'       => L10n::t('Cancel'),
-               '$rand_num'     => random_digits(12),
+               '$rand_num'     => Crypto::randomDigits(12),
 
                // ACL permissions box
                '$acl'           => $x['acl'],
@@ -1430,11 +1433,11 @@ function sort_thr_commented(array $a, array $b)
 }
 
 function render_location_dummy(array $item) {
-       if (x($item, 'location') && !empty($item['location'])) {
+       if (!empty($item['location']) && !empty($item['location'])) {
                return $item['location'];
        }
 
-       if (x($item, 'coord') && !empty($item['coord'])) {
+       if (!empty($item['coord']) && !empty($item['coord'])) {
                return $item['coord'];
        }
 }