X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=include%2Fitems.php;h=38f4a58fba4bfb3b1e157c78fa9b5e0fb66baea1;hb=16d486dd2422947713783470d3e0fb165fe528f3;hp=3ddb1f27931f094dc7b11cdd73bf2102b2b25b4d;hpb=390d5706f46ce58cbed24b292d5c1f1b9789a8a8;p=friendica.git diff --git a/include/items.php b/include/items.php index 3ddb1f2793..38f4a58fba 100644 --- a/include/items.php +++ b/include/items.php @@ -1,170 +1,58 @@ . * - * @brief Truncates imported message body string length to max_import_size - * @param string $body - * @return string */ -function limit_body_size($body) -{ - $maxlen = get_max_import_size(); - - // If the length of the body, including the embedded images, is smaller - // than the maximum, then don't waste time looking for the images - if ($maxlen && (strlen($body) > $maxlen)) { - - logger('limit_body_size: the total body length exceeds the limit', LOGGER_DEBUG); - - $orig_body = $body; - $new_body = ''; - $textlen = 0; - - $img_start = strpos($orig_body, '[img'); - $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false); - $img_end = ($img_start !== false ? strpos(substr($orig_body, $img_start), '[/img]') : false); - while (($img_st_close !== false) && ($img_end !== false)) { - - $img_st_close++; // make it point to AFTER the closing bracket - $img_end += $img_start; - $img_end += strlen('[/img]'); - - if (! strcmp(substr($orig_body, $img_start + $img_st_close, 5), 'data:')) { - // This is an embedded image - - if (($textlen + $img_start) > $maxlen ) { - if ($textlen < $maxlen) { - logger('limit_body_size: the limit happens before an embedded image', LOGGER_DEBUG); - $new_body = $new_body . substr($orig_body, 0, $maxlen - $textlen); - $textlen = $maxlen; - } - } else { - $new_body = $new_body . substr($orig_body, 0, $img_start); - $textlen += $img_start; - } - - $new_body = $new_body . substr($orig_body, $img_start, $img_end - $img_start); - } else { - - if (($textlen + $img_end) > $maxlen ) { - if ($textlen < $maxlen) { - logger('limit_body_size: the limit happens before the end of a non-embedded image', LOGGER_DEBUG); - $new_body = $new_body . substr($orig_body, 0, $maxlen - $textlen); - $textlen = $maxlen; - } - } else { - $new_body = $new_body . substr($orig_body, 0, $img_end); - $textlen += $img_end; - } - } - $orig_body = substr($orig_body, $img_end); - - if ($orig_body === false) { - // in case the body ends on a closing image tag - $orig_body = ''; - } - - $img_start = strpos($orig_body, '[img'); - $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false); - $img_end = ($img_start !== false ? strpos(substr($orig_body, $img_start), '[/img]') : false); - } - - if (($textlen + strlen($orig_body)) > $maxlen) { - if ($textlen < $maxlen) { - logger('limit_body_size: the limit happens after the end of the last image', LOGGER_DEBUG); - $new_body = $new_body . substr($orig_body, 0, $maxlen - $textlen); - } - } else { - logger('limit_body_size: the text size with embedded images extracted did not violate the limit', LOGGER_DEBUG); - $new_body = $new_body . $orig_body; - } - - return $new_body; - } else { - return $body; - } -} -function title_is_body($title, $body) { - - $title = strip_tags($title); - $title = trim($title); - $title = html_entity_decode($title, ENT_QUOTES, 'UTF-8'); - $title = str_replace(array("\n", "\r", "\t", " "), array("", "", "", ""), $title); +use Friendica\Core\Hook; +use Friendica\Core\Logger; +use Friendica\Core\Protocol; +use Friendica\Core\Renderer; +use Friendica\Core\Session; +use Friendica\Database\DBA; +use Friendica\DI; +use Friendica\Model\Item; +use Friendica\Protocol\DFRN; +use Friendica\Protocol\Feed; +use Friendica\Protocol\OStatus; +use Friendica\Util\Network; +use Friendica\Util\ParseUrl; +use Friendica\Util\Strings; - $body = strip_tags($body); - $body = trim($body); - $body = html_entity_decode($body, ENT_QUOTES, 'UTF-8'); - $body = str_replace(array("\n", "\r", "\t", " "), array("", "", "", ""), $body); +require_once __DIR__ . '/../mod/share.php'; - if (strlen($title) < strlen($body)) { - $body = substr($body, 0, strlen($title)); - } +function add_page_info_data(array $data, $no_photos = false) +{ + Hook::callAll('page_info_data', $data); - if (($title != $body) && (substr($title, -3) == "...")) { - $pos = strrpos($title, "..."); - if ($pos > 0) { - $title = substr($title, 0, $pos); - $body = substr($body, 0, $pos); - } + if (empty($data['type'])) { + return ''; } - return ($title == $body); -} - -function add_page_info_data($data) { - call_hooks('page_info_data', $data); - // It maybe is a rich content, but if it does have everything that a link has, // then treat it that way if (($data["type"] == "rich") && is_string($data["title"]) && - is_string($data["text"]) && (sizeof($data["images"]) > 0)) { + is_string($data["text"]) && !empty($data["images"])) { $data["type"] = "link"; } + $data["title"] = $data["title"] ?? ''; + if ((($data["type"] != "link") && ($data["type"] != "video") && ($data["type"] != "photo")) || ($data["title"] == $data["url"])) { return ""; } @@ -174,32 +62,33 @@ function add_page_info_data($data) { } // Escape some bad characters - $data["url"] = str_replace(array("[", "]"), array("[", "]"), htmlentities($data["url"], ENT_QUOTES, 'UTF-8', false)); - $data["title"] = str_replace(array("[", "]"), array("[", "]"), htmlentities($data["title"], ENT_QUOTES, 'UTF-8', false)); + $data["url"] = str_replace(["[", "]"], ["[", "]"], htmlentities($data["url"], ENT_QUOTES, 'UTF-8', false)); + $data["title"] = str_replace(["[", "]"], ["[", "]"], htmlentities($data["title"], ENT_QUOTES, 'UTF-8', false)); $text = "[attachment type='".$data["type"]."'"; - if ($data["text"] == "") { + if (empty($data["text"])) { $data["text"] = $data["title"]; } - if ($data["text"] == "") { + if (empty($data["text"])) { $data["text"] = $data["url"]; } - if ($data["url"] != "") { + if (!empty($data["url"])) { $text .= " url='".$data["url"]."'"; } - if ($data["title"] != "") { + if (!empty($data["title"])) { $text .= " title='".$data["title"]."'"; } - if (sizeof($data["images"]) > 0) { - $preview = str_replace(array("[", "]"), array("[", "]"), htmlentities($data["images"][0]["src"], ENT_QUOTES, 'UTF-8', false)); + // Only embedd a picture link when it seems to be a valid picture ("width" is set) + if (!empty($data["images"]) && !empty($data["images"][0]["width"])) { + $preview = str_replace(["[", "]"], ["[", "]"], htmlentities($data["images"][0]["src"], ENT_QUOTES, 'UTF-8', false)); // if the preview picture is larger than 500 pixels then show it in a larger mode // But only, if the picture isn't higher than large (To prevent huge posts) - if (!Config::get('system', 'always_show_preview') && ($data["images"][0]["width"] >= 500) + if (!DI::config()->get('system', 'always_show_preview') && ($data["images"][0]["width"] >= 500) && ($data["images"][0]["width"] >= $data["images"][0]["height"])) { $text .= " image='".$preview."'"; } else { @@ -212,26 +101,25 @@ function add_page_info_data($data) { $hashtags = ""; if (isset($data["keywords"]) && count($data["keywords"])) { $hashtags = "\n"; - foreach ($data["keywords"] AS $keyword) { - /// @todo make a positive list of allowed characters - $hashtag = str_replace(array(" ", "+", "/", ".", "#", "'", "â", "`", "(", ")", "â", "â"), - array("", "", "", "", "", "", "", "", "", "", "", ""), $keyword); - $hashtags .= "#[url=" . System::baseUrl() . "/search?tag=" . rawurlencode($hashtag) . "]" . $hashtag . "[/url] "; + foreach ($data["keywords"] as $keyword) { + /// @TODO make a positive list of allowed characters + $hashtag = str_replace([' ', '+', '/', '.', '#', '@', "'", '"', 'â', '`', '(', ')', 'â', 'â'], '', $keyword); + $hashtags .= "#[url=" . DI::baseUrl() . "/search?tag=" . $hashtag . "]" . $hashtag . "[/url] "; } } return "\n".$text.$hashtags; } -function query_page_info($url, $no_photos = false, $photo = "", $keywords = false, $keyword_blacklist = "") { - +function query_page_info($url, $photo = "", $keywords = false, $keyword_blacklist = "") +{ $data = ParseUrl::getSiteinfoCached($url, true); if ($photo != "") { $data["images"][0]["src"] = $photo; } - logger('fetch page info for ' . $url . ' ' . print_r($data, true), LOGGER_DEBUG); + Logger::log('fetch page info for ' . $url . ' ' . print_r($data, true), Logger::DEBUG); if (!$keywords && isset($data["keywords"])) { unset($data["keywords"]); @@ -239,8 +127,10 @@ function query_page_info($url, $no_photos = false, $photo = "", $keywords = fals if (($keyword_blacklist != "") && isset($data["keywords"])) { $list = explode(", ", $keyword_blacklist); - foreach ($list AS $keyword) { + + foreach ($list as $keyword) { $keyword = trim($keyword); + $index = array_search($keyword, $data["keywords"]); if ($index !== false) { unset($data["keywords"][$index]); @@ -251,37 +141,40 @@ function query_page_info($url, $no_photos = false, $photo = "", $keywords = fals return $data; } -function add_page_keywords($url, $no_photos = false, $photo = "", $keywords = false, $keyword_blacklist = "") { - $data = query_page_info($url, $no_photos, $photo, $keywords, $keyword_blacklist); - - $tags = ""; - if (isset($data["keywords"]) && count($data["keywords"])) { - foreach ($data["keywords"] AS $keyword) { - $hashtag = str_replace(array(" ", "+", "/", ".", "#", "'"), - array("", "", "", "", "", ""), $keyword); +function get_page_keywords($url, $photo = "", $keywords = false, $keyword_blacklist = "") +{ + $data = query_page_info($url, $photo, $keywords, $keyword_blacklist); + if (empty($data["keywords"]) || !is_array($data["keywords"])) { + return []; + } - if ($tags != "") { - $tags .= ", "; - } + $taglist = []; + foreach ($data['keywords'] as $keyword) { + $hashtag = str_replace([" ", "+", "/", ".", "#", "'"], + ["", "", "", "", "", ""], $keyword); - $tags .= "#[url=" . System::baseUrl() . "/search?tag=" . rawurlencode($hashtag) . "]" . $hashtag . "[/url]"; - } + $taglist[] = $hashtag; } - return $tags; + return $taglist; } -function add_page_info($url, $no_photos = false, $photo = "", $keywords = false, $keyword_blacklist = "") { - $data = query_page_info($url, $no_photos, $photo, $keywords, $keyword_blacklist); +function add_page_info($url, $no_photos = false, $photo = "", $keywords = false, $keyword_blacklist = "") +{ + $data = query_page_info($url, $photo, $keywords, $keyword_blacklist); + + $text = ''; - $text = add_page_info_data($data); + if (is_array($data)) { + $text = add_page_info_data($data, $no_photos); + } return $text; } -function add_page_info_to_body($body, $texturl = false, $no_photos = false) { - - logger('add_page_info_to_body: fetch page info for body ' . $body, LOGGER_DEBUG); +function add_page_info_to_body($body, $texturl = false, $no_photos = false) +{ + Logger::log('add_page_info_to_body: fetch page info for body ' . $body, Logger::DEBUG); $URLSearchString = "^\[\]"; @@ -317,8 +210,7 @@ function add_page_info_to_body($body, $texturl = false, $no_photos = false) { $body = $removedlink; } - $url = str_replace(array('/', '.'), array('\/', '\.'), $matches[1]); - $removedlink = preg_replace("/\[url\=" . $url . "\](.*?)\[\/url\]/ism", '', $body); + $removedlink = preg_replace("/\[url\=" . preg_quote($matches[1], '/') . "\](.*?)\[\/url\]/ism", '', $body); if (($removedlink == "") || strstr($body, $removedlink)) { $body = $removedlink; } @@ -333,2062 +225,224 @@ function add_page_info_to_body($body, $texturl = false, $no_photos = false) { } /** - * Adds a "lang" specification in a "postopts" element of given $arr, - * if possible and not already present. - * Expects "body" element to exist in $arr. * - * @todo Add a parameter to request forcing override + * consume_feed - process atom feed and update anything/everything we might need to update + * + * $xml = the (atom) feed to consume - RSS isn't as fully supported but may work for simple feeds. + * + * $importer = the contact_record (joined to user_record) of the local user who owns this relationship. + * It is this person's stuff that is going to be updated. + * $contact = the person who is sending us stuff. If not set, we MAY be processing a "follow" activity + * from an external network and MAY create an appropriate contact record. Otherwise, we MUST + * have a contact record. + * $hub = should we find a hub declation in the feed, pass it back to our calling process, who might (or + * might not) try and subscribe to it. + * $datedir sorts in reverse order + * $pass - by default ($pass = 0) we cannot guarantee that a parent item has been + * imported prior to its children being seen in the stream unless we are certain + * of how the feed is arranged/ordered. + * With $pass = 1, we only pull parent items out of the stream. + * With $pass = 2, we only pull children (comments/likes). + * + * So running this twice, first with pass 1 and then with pass 2 will do the right + * thing regardless of feed ordering. This won't be adequate in a fully-threaded + * model where comments can have sub-threads. That would require some massive sorting + * to get all the feed items into a mostly linear ordering, and might still require + * recursion. + * + * @param $xml + * @param array $importer + * @param array $contact + * @param $hub + * @throws ImagickException + * @throws \Friendica\Network\HTTPException\InternalServerErrorException */ -function item_add_language_opt(&$arr) { +function consume_feed($xml, array $importer, array $contact, &$hub) +{ + if ($contact['network'] === Protocol::OSTATUS) { + Logger::log("Consume OStatus messages ", Logger::DEBUG); + OStatus::import($xml, $importer, $contact, $hub); - if (version_compare(PHP_VERSION, '5.3.0', '<')) { - // LanguageDetect.php not available ? return; } - if (x($arr, 'postopts') ) { - if (strstr($arr['postopts'], 'lang=') ) { - // do not override - /// @TODO Add parameter to request overriding - return; - } - $postopts = $arr['postopts']; - } else { - $postopts = ""; - } - - $naked_body = preg_replace('/\[(.+?)\]/','', $arr['body']); - $l = new Text_LanguageDetect(); - $lng = $l->detect($naked_body, 3); - - if (sizeof($lng) > 0) { - if ($postopts != "") $postopts .= '&'; // arbitrary separator, to be reviewed - $postopts .= 'lang='; - $sep = ""; - foreach ($lng as $language => $score) { - $postopts .= $sep . $language . ";" . $score; - $sep = ':'; - } - $arr['postopts'] = $postopts; - } -} + if ($contact['network'] === Protocol::FEED) { + Logger::log("Consume feeds", Logger::DEBUG); + Feed::import($xml, $importer, $contact); -/** - * @brief Creates an unique guid out of a given uri - * - * @param string $uri uri of an item entry - * @param string $host (Optional) hostname for the GUID prefix - * @return string unique guid - */ -function uri_to_guid($uri, $host = "") { - - // Our regular guid routine is using this kind of prefix as well - // We have to avoid that different routines could accidentally create the same value - $parsed = parse_url($uri); - - // When the hostname isn't given, we take it from the uri - if ($host == "") { - // Is it in the format data@host.tld? - if ((count($parsed) == 1) && strstr($uri, '@')) { - $mailparts = explode('@', $uri); - $host = array_pop($mailparts); - } else { - $host = $parsed["host"]; - } + return; } - // We use a hash of the hostname as prefix for the guid - $guid_prefix = hash("crc32", $host); - - // Remove the scheme to make sure that "https" and "http" doesn't make a difference - unset($parsed["scheme"]); - - // Glue it together to be able to make a hash from it - $host_id = implode("/", $parsed); - - // We could use any hash algorithm since it isn't a security issue - $host_hash = hash("ripemd128", $host_id); - - return $guid_prefix.$host_hash; -} - -/** - * @brief Store the conversation data - * - * @param array $arr Item array with conversation data - * @return array Item array with removed conversation data - */ -function store_conversation($arr) { - if (in_array(defaults($arr, 'network', NETWORK_PHANTOM), array(NETWORK_DFRN, NETWORK_DIASPORA, NETWORK_OSTATUS)) && !empty($arr['uri'])) { - $conversation = array('item-uri' => $arr['uri'], 'received' => DBM::date()); - - if (isset($arr['parent-uri']) && ($arr['parent-uri'] != $arr['uri'])) { - $conversation['reply-to-uri'] = $arr['parent-uri']; - } - if (isset($arr['thr-parent']) && ($arr['thr-parent'] != $arr['uri'])) { - $conversation['reply-to-uri'] = $arr['thr-parent']; - } - - if (isset($arr['conversation-uri'])) { - $conversation['conversation-uri'] = $arr['conversation-uri']; - } - - if (isset($arr['conversation-href'])) { - $conversation['conversation-href'] = $arr['conversation-href']; - } - - if (isset($arr['protocol'])) { - $conversation['protocol'] = $arr['protocol']; - } - - if (isset($arr['source'])) { - $conversation['source'] = $arr['source']; - } - - $old_conv = dba::fetch_first("SELECT `item-uri`, `reply-to-uri`, `conversation-uri`, `conversation-href`, `protocol`, `source` - FROM `conversation` WHERE `item-uri` = ?", $conversation['item-uri']); - if (DBM::is_result($old_conv)) { - // Don't update when only the source has changed. - // Only do this when there had been no source before. - if ($old_conv['source'] != '') { - unset($old_conv['source']); - } - // Update structure data all the time but the source only when its from a better protocol. - if (($old_conv['protocol'] < $conversation['protocol']) && ($old_conv['protocol'] != 0)) { - unset($conversation['protocol']); - unset($conversation['source']); - } - if (!dba::update('conversation', $conversation, array('item-uri' => $conversation['item-uri']), $old_conv)) { - logger('Conversation: update for '.$conversation['item-uri'].' from '.$conv['protocol'].' to '.$conversation['protocol'].' failed', LOGGER_DEBUG); - } - } else { - if (!dba::insert('conversation', $conversation, true)) { - logger('Conversation: insert for '.$conversation['item-uri'].' (protocol '.$conversation['protocol'].') failed', LOGGER_DEBUG); - } + if ($contact['network'] === Protocol::DFRN) { + Logger::log("Consume DFRN messages", Logger::DEBUG); + $dfrn_importer = DFRN::getImporter($contact["id"], $importer["uid"]); + if (!empty($dfrn_importer)) { + Logger::log("Now import the DFRN feed"); + DFRN::import($xml, $dfrn_importer, true); + return; } } - - unset($arr['conversation-uri']); - unset($arr['conversation-href']); - unset($arr['protocol']); - unset($arr['source']); - - return $arr; } -/// @TODO add type-hint array -function item_store($arr, $force_parent = false, $notify = false, $dontcache = false) +function subscribe_to_hub($url, array $importer, array $contact, $hubmode = 'subscribe') { - $a = get_app(); - - // If it is a posting where users should get notifications, then define it as wall posting - if ($notify) { - $arr['wall'] = 1; - $arr['type'] = 'wall'; - $arr['origin'] = 1; - $arr['last-child'] = 1; - $arr['network'] = NETWORK_DFRN; - $arr['protocol'] = PROTOCOL_DFRN; - - // We have to avoid duplicates. So we create the GUID in form of a hash of the plink or uri. - // In difference to the call to "uri_to_guid" several lines below we add the hash of our own host. - // This is done because our host is the original creator of the post. - if (!isset($arr['guid'])) { - if (isset($arr['plink'])) { - $arr['guid'] = uri_to_guid($arr['plink'], $a->get_hostname()); - } elseif (isset($arr['uri'])) { - $arr['guid'] = uri_to_guid($arr['uri'], $a->get_hostname()); - } - } - } else { - $arr['network'] = trim(defaults($arr, 'network', NETWORK_PHANTOM)); - } - - if ($notify) { - $guid_prefix = ""; - } elseif ((trim($arr['guid']) == "") && (trim($arr['plink']) != "")) { - $arr['guid'] = uri_to_guid($arr['plink']); - } elseif ((trim($arr['guid']) == "") && (trim($arr['uri']) != "")) { - $arr['guid'] = uri_to_guid($arr['uri']); - } else { - $parsed = parse_url($arr["author-link"]); - $guid_prefix = hash("crc32", $parsed["host"]); - } - - $arr['guid'] = ((x($arr, 'guid')) ? notags(trim($arr['guid'])) : get_guid(32, $guid_prefix)); - $arr['uri'] = ((x($arr, 'uri')) ? notags(trim($arr['uri'])) : item_new_uri($a->get_hostname(), $uid, $arr['guid'])); - - // Store conversation data - $arr = store_conversation($arr); - /* - * If a Diaspora signature structure was passed in, pull it out of the - * item array and set it aside for later storage. + * Diaspora has different message-ids in feeds than they do + * through the direct Diaspora protocol. If we try and use + * the feed, we'll get duplicates. So don't. */ - - $dsprsig = null; - if (x($arr, 'dsprsig')) { - $encoded_signature = $arr['dsprsig']; - $dsprsig = json_decode(base64_decode($arr['dsprsig'])); - unset($arr['dsprsig']); - } - - // Converting the plink - /// @todo Check if this is really still needed - if ($arr['network'] == NETWORK_OSTATUS) { - if (isset($arr['plink'])) { - $arr['plink'] = OStatus::convertHref($arr['plink']); - } elseif (isset($arr['uri'])) { - $arr['plink'] = OStatus::convertHref($arr['uri']); - } - } - - if (x($arr, 'gravity')) { - $arr['gravity'] = intval($arr['gravity']); - } elseif ($arr['parent-uri'] === $arr['uri']) { - $arr['gravity'] = 0; - } elseif (activity_match($arr['verb'],ACTIVITY_POST)) { - $arr['gravity'] = 6; - } else { - $arr['gravity'] = 6; // extensible catchall + if ($contact['network'] === Protocol::DIASPORA) { + return; } - if (! x($arr, 'type')) { - $arr['type'] = 'remote'; + // Without an importer we don't have a user id - so we quit + if (empty($importer)) { + return; } - $uid = intval($arr['uid']); - - // check for create date and expire time - $expire_interval = Config::get('system', 'dbclean-expire-days', 0); - - $r = dba::select('user', array('expire'), array('uid' => $uid), array("limit" => 1)); - if (DBM::is_result($r) && ($r['expire'] > 0) && (($r['expire'] < $expire_interval) || ($expire_interval == 0))) { - $expire_interval = $r['expire']; - } + $user = DBA::selectFirst('user', ['nickname'], ['uid' => $importer['uid']]); - if (($expire_interval > 0) && !empty($arr['created'])) { - $expire_date = time() - ($expire_interval * 86400); - $created_date = strtotime($arr['created']); - if ($created_date < $expire_date) { - logger('item-store: item created ('.date('c', $created_date).') before expiration time ('.date('c', $expire_date).'). ignored. ' . print_r($arr,true), LOGGER_DEBUG); - return 0; - } + // No user, no nickname, we quit + if (!DBA::isResult($user)) { + return; } - /* - * Do we already have this item? - * We have to check several networks since Friendica posts could be repeated - * via OStatus (maybe Diasporsa as well) - */ - if (in_array($arr['network'], array(NETWORK_DIASPORA, NETWORK_DFRN, NETWORK_OSTATUS, ""))) { - $r = q("SELECT `id`, `network` FROM `item` WHERE `uri` = '%s' AND `uid` = %d AND `network` IN ('%s', '%s', '%s') LIMIT 1", - dbesc(trim($arr['uri'])), - intval($uid), - dbesc(NETWORK_DIASPORA), - dbesc(NETWORK_DFRN), - dbesc(NETWORK_OSTATUS) - ); - if (DBM::is_result($r)) { - // We only log the entries with a different user id than 0. Otherwise we would have too many false positives - if ($uid != 0) { - logger("Item with uri ".$arr['uri']." already existed for user ".$uid." with id ".$r[0]["id"]." target network ".$r[0]["network"]." - new network: ".$arr['network']); - } - - return $r[0]["id"]; - } - } + $push_url = DI::baseUrl() . '/pubsub/' . $user['nickname'] . '/' . $contact['id']; - /// @TODO old-lost code? - // Shouldn't happen but we want to make absolutely sure it doesn't leak from a plugin. - // Deactivated, since the bbcode parser can handle with it - and it destroys posts with some smileys that contain "<" - //if ((strpos($arr['body'],'<') !== false) || (strpos($arr['body'],'>') !== false)) - // $arr['body'] = strip_tags($arr['body']); - - item_add_language_opt($arr); - - $arr['wall'] = ((x($arr, 'wall')) ? intval($arr['wall']) : 0); - $arr['extid'] = ((x($arr, 'extid')) ? notags(trim($arr['extid'])) : ''); - $arr['author-name'] = ((x($arr, 'author-name')) ? trim($arr['author-name']) : ''); - $arr['author-link'] = ((x($arr, 'author-link')) ? notags(trim($arr['author-link'])) : ''); - $arr['author-avatar'] = ((x($arr, 'author-avatar')) ? notags(trim($arr['author-avatar'])) : ''); - $arr['owner-name'] = ((x($arr, 'owner-name')) ? trim($arr['owner-name']) : ''); - $arr['owner-link'] = ((x($arr, 'owner-link')) ? notags(trim($arr['owner-link'])) : ''); - $arr['owner-avatar'] = ((x($arr, 'owner-avatar')) ? notags(trim($arr['owner-avatar'])) : ''); - $arr['received'] = ((x($arr, 'received') !== false) ? datetime_convert('UTC','UTC', $arr['received']) : datetime_convert()); - $arr['created'] = ((x($arr, 'created') !== false) ? datetime_convert('UTC','UTC', $arr['created']) : $arr['received']); - $arr['edited'] = ((x($arr, 'edited') !== false) ? datetime_convert('UTC','UTC', $arr['edited']) : $arr['created']); - $arr['changed'] = ((x($arr, 'changed') !== false) ? datetime_convert('UTC','UTC', $arr['changed']) : $arr['created']); - $arr['commented'] = ((x($arr, 'commented') !== false) ? datetime_convert('UTC','UTC', $arr['commented']) : $arr['created']); - $arr['title'] = ((x($arr, 'title')) ? trim($arr['title']) : ''); - $arr['location'] = ((x($arr, 'location')) ? trim($arr['location']) : ''); - $arr['coord'] = ((x($arr, 'coord')) ? notags(trim($arr['coord'])) : ''); - $arr['last-child'] = ((x($arr, 'last-child')) ? intval($arr['last-child']) : 0 ); - $arr['visible'] = ((x($arr, 'visible') !== false) ? intval($arr['visible']) : 1 ); - $arr['deleted'] = 0; - $arr['parent-uri'] = ((x($arr, 'parent-uri')) ? notags(trim($arr['parent-uri'])) : $arr['uri']); - $arr['verb'] = ((x($arr, 'verb')) ? notags(trim($arr['verb'])) : ''); - $arr['object-type'] = ((x($arr, 'object-type')) ? notags(trim($arr['object-type'])) : ''); - $arr['object'] = ((x($arr, 'object')) ? trim($arr['object']) : ''); - $arr['target-type'] = ((x($arr, 'target-type')) ? notags(trim($arr['target-type'])) : ''); - $arr['target'] = ((x($arr, 'target')) ? trim($arr['target']) : ''); - $arr['plink'] = ((x($arr, 'plink')) ? notags(trim($arr['plink'])) : ''); - $arr['allow_cid'] = ((x($arr, 'allow_cid')) ? trim($arr['allow_cid']) : ''); - $arr['allow_gid'] = ((x($arr, 'allow_gid')) ? trim($arr['allow_gid']) : ''); - $arr['deny_cid'] = ((x($arr, 'deny_cid')) ? trim($arr['deny_cid']) : ''); - $arr['deny_gid'] = ((x($arr, 'deny_gid')) ? trim($arr['deny_gid']) : ''); - $arr['private'] = ((x($arr, 'private')) ? intval($arr['private']) : 0 ); - $arr['bookmark'] = ((x($arr, 'bookmark')) ? intval($arr['bookmark']) : 0 ); - $arr['body'] = ((x($arr, 'body')) ? trim($arr['body']) : ''); - $arr['tag'] = ((x($arr, 'tag')) ? notags(trim($arr['tag'])) : ''); - $arr['attach'] = ((x($arr, 'attach')) ? notags(trim($arr['attach'])) : ''); - $arr['app'] = ((x($arr, 'app')) ? notags(trim($arr['app'])) : ''); - $arr['origin'] = ((x($arr, 'origin')) ? intval($arr['origin']) : 0 ); - $arr['postopts'] = ((x($arr, 'postopts')) ? trim($arr['postopts']) : ''); - $arr['resource-id'] = ((x($arr, 'resource-id')) ? trim($arr['resource-id']) : ''); - $arr['event-id'] = ((x($arr, 'event-id')) ? intval($arr['event-id']) : 0 ); - $arr['inform'] = ((x($arr, 'inform')) ? trim($arr['inform']) : ''); - $arr['file'] = ((x($arr, 'file')) ? trim($arr['file']) : ''); - - // When there is no content then we don't post it - if ($arr['body'].$arr['title'] == '') { - return 0; - } + // Use a single verify token, even if multiple hubs + $verify_token = ((strlen($contact['hub-verify'])) ? $contact['hub-verify'] : Strings::getRandomHex()); - // Items cannot be stored before they happen ... - if ($arr['created'] > datetime_convert()) { - $arr['created'] = datetime_convert(); - } + $params= 'hub.mode=' . $hubmode . '&hub.callback=' . urlencode($push_url) . '&hub.topic=' . urlencode($contact['poll']) . '&hub.verify=async&hub.verify_token=' . $verify_token; - // We haven't invented time travel by now. - if ($arr['edited'] > datetime_convert()) { - $arr['edited'] = datetime_convert(); - } + Logger::log('subscribe_to_hub: ' . $hubmode . ' ' . $contact['name'] . ' to hub ' . $url . ' endpoint: ' . $push_url . ' with verifier ' . $verify_token); - if (($arr['author-link'] == "") && ($arr['owner-link'] == "")) { - logger("Both author-link and owner-link are empty. Called by: " . System::callstack(), LOGGER_DEBUG); + if (!strlen($contact['hub-verify']) || ($contact['hub-verify'] != $verify_token)) { + DBA::update('contact', ['hub-verify' => $verify_token], ['id' => $contact['id']]); } - if ($arr['plink'] == "") { - $arr['plink'] = System::baseUrl() . '/display/' . urlencode($arr['guid']); - } + $postResult = Network::post($url, $params); - if ($arr['network'] == NETWORK_PHANTOM) { - $r = q("SELECT `network` FROM `contact` WHERE `network` IN ('%s', '%s', '%s') AND `nurl` = '%s' AND `uid` = %d LIMIT 1", - dbesc(NETWORK_DFRN), dbesc(NETWORK_DIASPORA), dbesc(NETWORK_OSTATUS), - dbesc(normalise_link($arr['author-link'])), - intval($arr['uid']) - ); - - if (!DBM::is_result($r)) { - $r = q("SELECT `network` FROM `gcontact` WHERE `network` IN ('%s', '%s', '%s') AND `nurl` = '%s' LIMIT 1", - dbesc(NETWORK_DFRN), dbesc(NETWORK_DIASPORA), dbesc(NETWORK_OSTATUS), - dbesc(normalise_link($arr['author-link'])) - ); - } + Logger::log('subscribe_to_hub: returns: ' . $postResult->getReturnCode(), Logger::DEBUG); - if (!DBM::is_result($r)) { - $r = q("SELECT `network` FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1", - intval($arr['contact-id']), - intval($arr['uid']) - ); - } + return; - if (DBM::is_result($r)) { - $arr['network'] = $r[0]["network"]; - } +} - // Fallback to friendica (why is it empty in some cases?) - if ($arr['network'] == "") { - $arr['network'] = NETWORK_DFRN; - } +function drop_items(array $items) +{ + $uid = 0; - logger("item_store: Set network to " . $arr["network"] . " for " . $arr["uri"], LOGGER_DEBUG); + if (!Session::isAuthenticated()) { + return; } - // The contact-id should be set before "item_store" was called - but there seems to be some issues - if ($arr["contact-id"] == 0) { - /* - * First we are looking for a suitable contact that matches with the author of the post - * This is done only for comments (See below explanation at "gcontact-id") - */ - if ($arr['parent-uri'] != $arr['uri']) { - $arr["contact-id"] = Contact::getIdForURL($arr['author-link'], $uid); - } - - // If not present then maybe the owner was found - if ($arr["contact-id"] == 0) { - $arr["contact-id"] = Contact::getIdForURL($arr['owner-link'], $uid); - } - - // Still missing? Then use the "self" contact of the current user - if ($arr["contact-id"] == 0) { - $r = q("SELECT `id` FROM `contact` WHERE `self` AND `uid` = %d", intval($uid)); + if (!empty($items)) { + foreach ($items as $item) { + $owner = Item::deleteForUser(['id' => $item], local_user()); - if (DBM::is_result($r)) { - $arr["contact-id"] = $r[0]["id"]; + if ($owner && !$uid) { + $uid = $owner; } } - - logger("Contact-id was missing for post ".$arr["guid"]." from user id ".$uid." - now set to ".$arr["contact-id"], LOGGER_DEBUG); } +} - if (!x($arr, "gcontact-id")) { - /* - * The gcontact should mostly behave like the contact. But is is supposed to be global for the system. - * This means that wall posts, repeated posts, etc. should have the gcontact id of the owner. - * On comments the author is the better choice. - */ - if ($arr['parent-uri'] === $arr['uri']) { - $arr["gcontact-id"] = GContact::getId(array("url" => $arr['owner-link'], "network" => $arr['network'], - "photo" => $arr['owner-avatar'], "name" => $arr['owner-name'])); - } else { - $arr["gcontact-id"] = GContact::getId(array("url" => $arr['author-link'], "network" => $arr['network'], - "photo" => $arr['author-avatar'], "name" => $arr['author-name'])); - } - } +function drop_item($id, $return = '') +{ + $a = DI::app(); - if ($arr["author-id"] == 0) { - $arr["author-id"] = Contact::getIdForURL($arr["author-link"], 0); - } + // locate item to be deleted - if (Contact::isBlocked($arr["author-id"])) { - logger('Contact '.$arr["author-id"].' is blocked, item '.$arr["uri"].' will not be stored'); - return 0; - } + $fields = ['id', 'uid', 'guid', 'contact-id', 'deleted', 'gravity', 'parent']; + $item = Item::selectFirstForUser(local_user(), $fields, ['id' => $id]); - if ($arr["owner-id"] == 0) { - $arr["owner-id"] = Contact::getIdForURL($arr["owner-link"], 0); + if (!DBA::isResult($item)) { + notice(DI::l10n()->t('Item not found.') . EOL); + DI::baseUrl()->redirect('network'); } - if (Contact::isBlocked($arr["owner-id"])) { - logger('Contact '.$arr["owner-id"].' is blocked, item '.$arr["uri"].' will not be stored'); + if ($item['deleted']) { return 0; } - if ($arr['guid'] != "") { - // Checking if there is already an item with the same guid - logger('checking for an item for user '.$arr['uid'].' on network '.$arr['network'].' with the guid '.$arr['guid'], LOGGER_DEBUG); - $r = q("SELECT `guid` FROM `item` WHERE `guid` = '%s' AND `network` = '%s' AND `uid` = '%d' LIMIT 1", - dbesc($arr['guid']), dbesc($arr['network']), intval($arr['uid'])); + $contact_id = 0; - if (DBM::is_result($r)) { - logger('found item with guid '.$arr['guid'].' for user '.$arr['uid'].' on network '.$arr['network'], LOGGER_DEBUG); - return 0; - } + // check if logged in user is either the author or owner of this item + if (Session::getRemoteContactID($item['uid']) == $item['contact-id']) { + $contact_id = $item['contact-id']; } - // Check for hashtags in the body and repair or add hashtag links - item_body_set_hashtags($arr); - - $arr['thr-parent'] = $arr['parent-uri']; - - if ($arr['parent-uri'] === $arr['uri']) { - $parent_id = 0; - $parent_deleted = 0; - $allow_cid = $arr['allow_cid']; - $allow_gid = $arr['allow_gid']; - $deny_cid = $arr['deny_cid']; - $deny_gid = $arr['deny_gid']; - $notify_type = 'wall-new'; - } else { - - // find the parent and snarf the item id and ACLs - // and anything else we need to inherit + if ((local_user() == $item['uid']) || $contact_id) { + // Check if we should do HTML-based delete confirmation + if (!empty($_REQUEST['confirm'])) { + //