-<?php\r
-/**\r
- * @file src/Core/Theme.php\r
- */\r
-namespace Friendica\Core;\r
-\r
-use Friendica\Core\System;\r
-\r
-require_once 'boot.php';\r
-\r
-/**\r
- * Some functions to handle themes\r
- */\r
-class Theme\r
-{\r
- /**\r
- * @brief Parse theme comment in search of theme infos.\r
- *\r
- * like\r
- * \code\r
- * ..* Name: My Theme\r
- * * Description: My Cool Theme\r
- * . * Version: 1.2.3\r
- * * Author: John <profile url>\r
- * * Maintainer: Jane <profile url>\r
- * *\r
- * \endcode\r
- * @param string $theme the name of the theme\r
- * @return array\r
- */\r
-\r
- public static function getInfo($theme)\r
- {\r
- $info=[\r
- 'name' => $theme,\r
- 'description' => "",\r
- 'author' => [],\r
- 'maintainer' => [],\r
- 'version' => "",\r
- 'credits' => "",\r
- 'experimental' => false,\r
- 'unsupported' => false\r
- ];\r
-\r
- if (file_exists("view/theme/$theme/experimental"))\r
- $info['experimental'] = true;\r
- if (file_exists("view/theme/$theme/unsupported"))\r
- $info['unsupported'] = true;\r
-\r
- if (!is_file("view/theme/$theme/theme.php")) return $info;\r
-\r
- $a = get_app();\r
- $stamp1 = microtime(true);\r
- $f = file_get_contents("view/theme/$theme/theme.php");\r
- $a->save_timestamp($stamp1, "file");\r
-\r
- $r = preg_match("|/\*.*\*/|msU", $f, $m);\r
-\r
- if ($r) {\r
- $ll = explode("\n", $m[0]);\r
- foreach ( $ll as $l ) {\r
- $l = trim($l,"\t\n\r */");\r
- if ($l != "") {\r
- list($k, $v) = array_map("trim", explode(":", $l, 2));\r
- $k= strtolower($k);\r
- if ($k == "author") {\r
-\r
- $r=preg_match("|([^<]+)<([^>]+)>|", $v, $m);\r
- if ($r) {\r
- $info['author'][] = ['name'=>$m[1], 'link'=>$m[2]];\r
- } else {\r
- $info['author'][] = ['name'=>$v];\r
- }\r
- } elseif ($k == "maintainer") {\r
- $r=preg_match("|([^<]+)<([^>]+)>|", $v, $m);\r
- if ($r) {\r
- $info['maintainer'][] = ['name'=>$m[1], 'link'=>$m[2]];\r
- } else {\r
- $info['maintainer'][] = ['name'=>$v];\r
- }\r
- } else {\r
- if (array_key_exists($k, $info)) {\r
- $info[$k] = $v;\r
- }\r
- }\r
- }\r
- }\r
- }\r
- return $info;\r
- }\r
-\r
- /**\r
- * @brief Returns the theme's screenshot.\r
- *\r
- * The screenshot is expected as view/theme/$theme/screenshot.[png|jpg].\r
- *\r
- * @param sring $theme The name of the theme\r
- * @return string\r
- */\r
- public static function getScreenshot($theme)\r
- {\r
- $exts = ['.png','.jpg'];\r
- foreach ($exts as $ext) {\r
- if (file_exists('view/theme/' . $theme . '/screenshot' . $ext)) {\r
- return(System::baseUrl() . '/view/theme/' . $theme . '/screenshot' . $ext);\r
- }\r
- }\r
- return(System::baseUrl() . '/images/blank.png');\r
- }\r
-\r
- // install and uninstall theme\r
- public static function uninstall($theme)\r
- {\r
- logger("Addons: uninstalling theme " . $theme);\r
-\r
- include_once("view/theme/$theme/theme.php");\r
- if (function_exists("{$theme}_uninstall")) {\r
- $func = "{$theme}_uninstall";\r
- $func();\r
- }\r
- }\r
-\r
- public static function install($theme)\r
- {\r
- // silently fail if theme was removed\r
-\r
- if (! file_exists("view/theme/$theme/theme.php")) {\r
- return false;\r
- }\r
-\r
- logger("Addons: installing theme $theme");\r
-\r
- include_once("view/theme/$theme/theme.php");\r
-\r
- if (function_exists("{$theme}_install")) {\r
- $func = "{$theme}_install";\r
- $func();\r
- return true;\r
- } else {\r
- logger("Addons: FAILED installing theme $theme");\r
- return false;\r
- }\r
-\r
- }\r
-\r
- /**\r
- * @brief Get the full path to relevant theme files by filename\r
- *\r
- * This function search in the theme directory (and if not present in global theme directory)\r
- * if there is a directory with the file extension and for a file with the given\r
- * filename.\r
- *\r
- * @param string $file Filename\r
- * @param string $root Full root path\r
- * @return string Path to the file or empty string if the file isn't found\r
- */\r
- public static function getPathForFile($file, $root = '')\r
- {\r
- $file = basename($file);\r
-\r
- // Make sure $root ends with a slash / if it's not blank\r
- if ($root !== '' && $root[strlen($root)-1] !== '/') {\r
- $root = $root . '/';\r
- }\r
- $theme_info = get_app()->theme_info;\r
- if (is_array($theme_info) && array_key_exists('extends',$theme_info)) {\r
- $parent = $theme_info['extends'];\r
- } else {\r
- $parent = 'NOPATH';\r
- }\r
- $theme = current_theme();\r
- $thname = $theme;\r
- $ext = substr($file,strrpos($file,'.')+1);\r
- $paths = [\r
- "{$root}view/theme/$thname/$ext/$file",\r
- "{$root}view/theme/$parent/$ext/$file",\r
- "{$root}view/$ext/$file",\r
- ];\r
- foreach ($paths as $p) {\r
- // strpos() is faster than strstr when checking if one string is in another (http://php.net/manual/en/function.strstr.php)\r
- if (strpos($p,'NOPATH') !== false) {\r
- continue;\r
- } elseif (file_exists($p)) {\r
- return $p;\r
- }\r
- }\r
- return '';\r
- }\r
-}\r
+<?php
+
+/**
+ * @file src/Core/Theme.php
+ */
+
+namespace Friendica\Core;
+
+use Friendica\DI;
+use Friendica\Model\Profile;
+use Friendica\Util\Strings;
+
+require_once 'boot.php';
+
+/**
+ * Some functions to handle themes
+ */
+class Theme
+{
+ public static function getAllowedList()
+ {
+ $allowed_themes_str = DI::config()->get('system', 'allowed_themes');
+ $allowed_themes_raw = explode(',', str_replace(' ', '', $allowed_themes_str));
+ $allowed_themes = [];
+ if (count($allowed_themes_raw)) {
+ foreach ($allowed_themes_raw as $theme) {
+ $theme = Strings::sanitizeFilePathItem(trim($theme));
+ if (strlen($theme) && is_dir("view/theme/$theme")) {
+ $allowed_themes[] = $theme;
+ }
+ }
+ }
+
+ return array_unique($allowed_themes);
+ }
+
+ public static function setAllowedList(array $allowed_themes)
+ {
+ DI::config()->set('system', 'allowed_themes', implode(',', array_unique($allowed_themes)));
+ }
+
+ /**
+ * Parse theme comment in search of theme infos.
+ *
+ * like
+ * \code
+ * ..* Name: My Theme
+ * * Description: My Cool Theme
+ * . * Version: 1.2.3
+ * * Author: John <profile url>
+ * * Maintainer: Jane <profile url>
+ * *
+ * \endcode
+ * @param string $theme the name of the theme
+ * @return array
+ */
+ public static function getInfo($theme)
+ {
+ $theme = Strings::sanitizeFilePathItem($theme);
+
+ $info = [
+ 'name' => $theme,
+ 'description' => "",
+ 'author' => [],
+ 'maintainer' => [],
+ 'version' => "",
+ 'credits' => "",
+ 'experimental' => file_exists("view/theme/$theme/experimental"),
+ 'unsupported' => file_exists("view/theme/$theme/unsupported")
+ ];
+
+ if (!is_file("view/theme/$theme/theme.php")) {
+ return $info;
+ }
+
+ $stamp1 = microtime(true);
+ $theme_file = file_get_contents("view/theme/$theme/theme.php");
+ DI::profiler()->saveTimestamp($stamp1, "file", System::callstack());
+
+ $result = preg_match("|/\*.*\*/|msU", $theme_file, $matches);
+
+ if ($result) {
+ $comment_lines = explode("\n", $matches[0]);
+ foreach ($comment_lines as $comment_line) {
+ $comment_line = trim($comment_line, "\t\n\r */");
+ if ($comment_line != "") {
+ list($key, $value) = array_map("trim", explode(":", $comment_line, 2));
+ $key = strtolower($key);
+ if ($key == "author") {
+ $result = preg_match("|([^<]+)<([^>]+)>|", $value, $matches);
+ if ($result) {
+ $info['author'][] = ['name' => $matches[1], 'link' => $matches[2]];
+ } else {
+ $info['author'][] = ['name' => $value];
+ }
+ } elseif ($key == "maintainer") {
+ $result = preg_match("|([^<]+)<([^>]+)>|", $value, $matches);
+ if ($result) {
+ $info['maintainer'][] = ['name' => $matches[1], 'link' => $matches[2]];
+ } else {
+ $info['maintainer'][] = ['name' => $value];
+ }
+ } elseif (array_key_exists($key, $info)) {
+ $info[$key] = $value;
+ }
+ }
+ }
+ }
+ return $info;
+ }
+
+ /**
+ * Returns the theme's screenshot.
+ *
+ * The screenshot is expected as view/theme/$theme/screenshot.[png|jpg].
+ *
+ * @param string $theme The name of the theme
+ * @return string
+ * @throws \Friendica\Network\HTTPException\InternalServerErrorException
+ */
+ public static function getScreenshot($theme)
+ {
+ $theme = Strings::sanitizeFilePathItem($theme);
+
+ $exts = ['.png', '.jpg'];
+ foreach ($exts as $ext) {
+ if (file_exists('view/theme/' . $theme . '/screenshot' . $ext)) {
+ return DI::baseUrl() . '/view/theme/' . $theme . '/screenshot' . $ext;
+ }
+ }
+ return DI::baseUrl() . '/images/blank.png';
+ }
+
+ public static function uninstall($theme)
+ {
+ $theme = Strings::sanitizeFilePathItem($theme);
+
+ // silently fail if theme was removed or if $theme is funky
+ if (file_exists("view/theme/$theme/theme.php")) {
+ include_once "view/theme/$theme/theme.php";
+
+ $func = "{$theme}_uninstall";
+ if (function_exists($func)) {
+ $func();
+ }
+ }
+
+ $allowed_themes = Theme::getAllowedList();
+ $key = array_search($theme, $allowed_themes);
+ if ($key !== false) {
+ unset($allowed_themes[$key]);
+ Theme::setAllowedList($allowed_themes);
+ }
+ }
+
+ public static function install($theme)
+ {
+ $theme = Strings::sanitizeFilePathItem($theme);
+
+ // silently fail if theme was removed or if $theme is funky
+ if (!file_exists("view/theme/$theme/theme.php")) {
+ return false;
+ }
+
+ try {
+ include_once "view/theme/$theme/theme.php";
+
+ $func = "{$theme}_install";
+ if (function_exists($func)) {
+ $func();
+ }
+
+ $allowed_themes = Theme::getAllowedList();
+ $allowed_themes[] = $theme;
+ Theme::setAllowedList($allowed_themes);
+
+ return true;
+ } catch (\Exception $e) {
+ Logger::error('Theme installation failed', ['theme' => $theme, 'error' => $e->getMessage()]);
+ return false;
+ }
+ }
+
+ /**
+ * Get the full path to relevant theme files by filename
+ *
+ * This function searches in order in the current theme directory, in the current theme parent directory, and lastly
+ * in the base view/ folder.
+ *
+ * @param string $file Filename
+ * @return string Path to the file or empty string if the file isn't found
+ * @throws \Exception
+ */
+ public static function getPathForFile($file)
+ {
+ $a = DI::app();
+
+ $theme = $a->getCurrentTheme();
+
+ $parent = Strings::sanitizeFilePathItem($a->theme_info['extends'] ?? $theme);
+
+ $paths = [
+ "view/theme/$theme/$file",
+ "view/theme/$parent/$file",
+ "view/$file",
+ ];
+
+ foreach ($paths as $path) {
+ if (file_exists($path)) {
+ return $path;
+ }
+ }
+
+ return '';
+ }
+
+ /**
+ * Return relative path to theme stylesheet file
+ *
+ * Provide a sane default if nothing is chosen or the specified theme does not exist.
+ *
+ * @param string $theme Theme name
+ *
+ * @return string
+ */
+ public static function getStylesheetPath($theme)
+ {
+ $theme = Strings::sanitizeFilePathItem($theme);
+
+ if (!file_exists('view/theme/' . $theme . '/style.php')) {
+ return 'view/theme/' . $theme . '/style.css';
+ }
+
+ $a = DI::app();
+
+ $query_params = [];
+
+ $puid = Profile::getThemeUid($a);
+ if ($puid) {
+ $query_params['puid'] = $puid;
+ }
+
+ return 'view/theme/' . $theme . '/style.pcss' . (!empty($query_params) ? '?' . http_build_query($query_params) : '');
+ }
+}