X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=mod%2Fprofile.php;h=bcd2b64e36c5b1b44c6920caf82795fc1f83bbc4;hb=3811923c14b5a2be88104ea8069d0d0bb3d9800a;hp=0e9bb6ff61ef33d56d9de0eb01aadfc05cfe1173;hpb=cf1b5c47dc710e4d644429ad716ba81703875420;p=friendica.git diff --git a/mod/profile.php b/mod/profile.php index 0e9bb6ff61..bcd2b64e36 100644 --- a/mod/profile.php +++ b/mod/profile.php @@ -1,189 +1,384 @@ argc > 1) + $which = $a->argv[1]; + else { + notice( t('No profile') . EOL ); + $a->error = 404; + return; + } - if(remote_user()) { - $r = q("SELECT `profile-id` FROM `contact` WHERE `id` = %d LIMIT 1", - intval($_SESSION['visitor_id'])); - if(count($r)) - $profile = $r[0]['profile-id']; - } - - if($profile) { - $profile_int = intval($profile); - $sql_which = " AND `profile`.`id` = $profile_int "; + $profile = 0; + if((local_user()) && ($a->argc > 2) && ($a->argv[2] === 'view')) { + $which = $a->user['nickname']; + $profile = $a->argv[1]; } - else - $sql_which = " AND `profile`.`is-default` = 1 "; - $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `user`.* FROM `profile` - LEFT JOIN `user` ON `profile`.`uid` = `user`.`uid` - $sql_extra $sql_which LIMIT 1" - ); + profile_load($a,$which,$profile); - if(($r === false) || (! count($r))) { - $_SESSION['sysmsg'] .= "No profile" . EOL ; - $a->error = 404; - return; + if(x($a->profile,'openidserver')) + $a->page['htmlhead'] .= '' . "\r\n"; + if(x($a->profile,'openid')) { + $delegate = ((strstr($a->profile['openid'],'://')) ? $a->profile['openid'] : 'http://' . $a->profile['openid']); + $a->page['htmlhead'] .= '' . "\r\n"; } - $a->profile = $r[0]; + $a->page['htmlhead'] .= '' . "\r\n" ; + $a->page['htmlhead'] .= '' . "\r\n" ; + $uri = urlencode('acct:' . $a->profile['nickname'] . '@' . $a->get_hostname() . (($a->path) ? '/' . $a->path : '')); + $a->page['htmlhead'] .= '' . "\r\n"; + header('Link: <' . $a->get_baseurl() . '/xrd/?uri=' . $uri . '>; rel="lrdd"; type="application/xrd+xml"', false); + + $dfrn_pages = array('request', 'confirm', 'notify', 'poll'); + foreach($dfrn_pages as $dfrn) + $a->page['htmlhead'] .= "get_baseurl()."/dfrn_{$dfrn}/{$which}\" />\r\n"; - $a->page['template'] = 'profile'; +} - $a->page['title'] = $a->profile['name']; - return; -}} +function profile_content(&$a, $update = 0) { -function profile_init(&$a) { + require_once("include/bbcode.php"); + require_once('include/security.php'); - if($_SESSION['authenticated']) { + $groups = array(); - // choose which page to show (could be remote auth) + $tab = 'posts'; + $o = ''; + if($update) { + // Ensure we've got a profile owner if updating. + $a->profile['profile_uid'] = $update; } - - if($a->argc > 1) - $which = $a->argv[1]; else { - $_SESSION['sysmsg'] .= "No profile" . EOL ; - $a->error = 404; - return; + if($a->profile['profile_uid'] == local_user()) + $o .= ''; } - profile_load($a,$which); - $a->page['htmlhead'] .= "get_baseurl() . "/profile/%s" . "\" />\r\n"; + $contact = null; + $remote_contact = false; + + if(remote_user()) { + $contact_id = $_SESSION['visitor_id']; + $groups = init_groups_visitor($contact_id); + $r = q("SELECT * FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1", + intval($contact_id), + intval($a->profile['profile_uid']) + ); + if(count($r)) { + $contact = $r[0]; + $remote_contact = true; + } + } + + if(! $remote_contact) { + if(local_user()) { + $contact_id = $_SESSION['cid']; + $contact = $a->contact; + } + } + + $is_owner = ((local_user()) && (local_user() == $a->profile['profile_uid']) ? true : false); - $dfrn_pages = array('request', 'confirm', 'notify', 'poll'); - foreach($dfrn_pages as $dfrn) - $a->page['htmlhead'] .= "get_baseurl()."/dfrn_{$dfrn}/{$which}\" />\r\n"; -} + if(! $update) { + if(x($_GET,'tab')) + $tab = notags(trim($_GET['tab'])); -function item_display(&$a, $item,$template,$comment) { + $tpl = load_view_file('view/profile_tabs.tpl'); + $o .= replace_macros($tpl,array( + '$url' => $a->get_baseurl() . '/' . $a->cmd, + '$phototab' => $a->get_baseurl() . '/photos/' . $a->profile['nickname'] + )); - $profile_url = $item['url']; - if(local_user() && ($item['contact-uid'] == $_SESSION['uid']) && (strlen($item['dfrn-id'])) && (! $item['self'] )) - $profile_url = $a->get_baseurl() . '/redir/' . $item['cid'] ; + if($tab === 'profile') { + $profile_lang = get_config('system','language'); + if(! $profile_lang) + $profile_lang = 'en'; + if(file_exists("view/$profile_lang/profile_advanced.php")) + require_once("view/$profile_lang/profile_advanced.php"); + else + require_once('view/profile_advanced.php'); - $photo = (($item['self']) ? $a->profile['photo'] : $item['photo']); - $thumb = (($item['self']) ? $a->profile['thumb'] : $item['thumb']); + call_hooks('profile_advanced',$o); - $o .= replace_macros($template,array( - '$id' => $item['item_id'], - '$profile_url' => $profile_url, - '$name' => $item['name'], - '$thumb' => $thumb, - '$body' => bbcode($item['body']), - '$ago' => relative_date($item['created']), - '$comment' => $comment - )); + return $o; + } + $commpage = (($a->profile['page-flags'] == PAGE_COMMUNITY) ? true : false); + $commvisitor = (($commpage && $remote_contact == true) ? true : false); - return $o; -} + $celeb = ((($a->profile['page-flags'] == PAGE_SOAPBOX) || ($a->profile['page-flags'] == PAGE_COMMUNITY)) ? true : false); + if(can_write_wall($a,$a->profile['profile_uid'])) { + $geotag = ((($is_owner || $commvisitor) && $a->profile['allow_location']) ? load_view_file('view/jot_geotag.tpl') : ''); -function profile_content(&$a) { + $tpl = load_view_file('view/jot-header.tpl'); + + $a->page['htmlhead'] .= replace_macros($tpl, array( + '$baseurl' => $a->get_baseurl(), + '$geotag' => $geotag, + '$nickname' => $a->profile['nickname'] + )); + + require_once('include/acl_selectors.php'); + + $tpl = load_view_file('view/jot.tpl'); + + if(is_array($a->user) && ((strlen($a->user['allow_cid'])) || (strlen($a->user['allow_gid'])) || (strlen($a->user['deny_cid'])) || (strlen($a->user['deny_gid'])))) + $lockstate = 'lock'; + else + $lockstate = 'unlock'; + $o .= replace_macros($tpl,array( + '$baseurl' => $a->get_baseurl(), + '$defloc' => (($is_owner) ? $a->user['default-location'] : ''), + '$return_path' => $a->cmd, + '$visitor' => (($is_owner || $commvisitor) ? 'block' : 'none'), + '$lockstate' => $lockstate, + '$bang' => '', + '$acl' => (($is_owner) ? populate_acl($a->user, $celeb) : ''), + '$profile_uid' => $a->profile['profile_uid'] + )); + } - require_once("include/bbcode.php"); - require_once('include/security.php'); + // This is ugly, but we can't pass the profile_uid through the session to the ajax updater, + // because browser prefetching might change it on us. We have to deliver it with the page. - $tab = 'posts'; + if($tab === 'posts' && (! $a->pager['start'])) { + $o .= '
' . "\r\n"; + $o .= "\r\n"; + } - if(x($_GET,'tab')) - $tab = notags(trim($_GET['tab'])); + } - $tpl = file_get_contents('view/profile_tabs.tpl'); + // Construct permissions - $o .= replace_macros($tpl,array( - '$url' => $a->get_baseurl() . '/' . $a->cmd - )); + // default permissions - anonymous user + $sql_extra = " AND `allow_cid` = '' AND `allow_gid` = '' AND `deny_cid` = '' AND `deny_gid` = '' "; - if(remote_user()) - $contact_id = $_SESSION['visitor_id']; - if(local_user()) { - $r = q("SELECT `id` FROM `contact` WHERE `uid` = %d AND `self` = 1 LIMIT 1", - $_SESSION['uid'] - ); - if(count($r)) - $contact_id = $r[0]['id']; - } + // Profile owner - everything is visible - if($tab == 'profile') { + if($is_owner) { + $sql_extra = ''; + + // Oh - while we're here... reset the Unseen messages - require_once('view/profile_advanced.php'); + $r = q("UPDATE `item` SET `unseen` = 0 + WHERE `type` != 'remote' AND `unseen` = 1 AND `uid` = %d", + intval($_SESSION['uid']) + ); - return $o; } - if(can_write_wall($a,$a->profile['profile_uid'])) { - $tpl = file_get_contents('view/jot-header.tpl'); - - $a->page['htmlhead'] .= replace_macros($tpl, array('$baseurl' => $a->get_baseurl())); - $tpl = file_get_contents("view/jot.tpl"); - $o .= replace_macros($tpl,array( - '$baseurl' => $a->get_baseurl(), - '$profile_uid' => $a->profile['profile_uid'] - )); + // authenticated visitor - here lie dragons + // If $remotecontact is true, we know that not only is this a remotely authenticated + // person, but that it is *our* contact, which is important in multi-user mode. + + elseif($remote_contact) { + $gs = '<<>>'; // should be impossible to match + if(count($groups)) { + foreach($groups as $g) + $gs .= '|<' . intval($g) . '>'; + } + $sql_extra = sprintf( + " AND ( `allow_cid` = '' OR `allow_cid` REGEXP '<%d>' ) + AND ( `deny_cid` = '' OR NOT `deny_cid` REGEXP '<%d>' ) + AND ( `allow_gid` = '' OR `allow_gid` REGEXP '%s' ) + AND ( `deny_gid` = '' OR NOT `deny_gid` REGEXP '%s') ", + + intval($_SESSION['visitor_id']), + intval($_SESSION['visitor_id']), + dbesc($gs), + dbesc($gs) + ); } + $r = q("SELECT COUNT(*) AS `total` + FROM `item` LEFT JOIN `contact` ON `contact`.`id` = `item`.`contact-id` + WHERE `item`.`uid` = %d AND `item`.`visible` = 1 AND `item`.`deleted` = 0 + AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0 + AND `item`.`parent` IN ( SELECT `parent` FROM `item` WHERE `id` = `parent` AND `wall` = 1 ) + $sql_extra ", + intval($a->profile['profile_uid']) - if($a->profile['is-default']) { + ); - // TODO left join with contact which will carry names and photos. (done)Store local users in contact as well as user.(done) - // Alter registration and settings - // and profile to update contact table when names and photos change. - // work on item_display and can_write_wall + if(count($r)) + $a->set_pager_total($r[0]['total']); + + $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, + `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`network`, `contact`.`rel`, + `contact`.`thumb`, `contact`.`self`, + `contact`.`id` AS `cid`, `contact`.`uid` AS `contact-uid` + FROM `item` LEFT JOIN `contact` ON `contact`.`id` = `item`.`contact-id` + WHERE `item`.`uid` = %d AND `item`.`visible` = 1 AND `item`.`deleted` = 0 + AND `contact`.`blocked` = 0 AND `contact`.`pending` = 0 + AND `item`.`parent` IN ( SELECT `parent` FROM `item` WHERE `id` = `parent` AND `wall` = 1 ) + $sql_extra + ORDER BY `parent` DESC, `gravity` ASC, `id` ASC LIMIT %d ,%d ", + intval($a->profile['profile_uid']), + intval($a->pager['start']), + intval($a->pager['itemspage']) - // Add comments. + ); - $r = q("SELECT `item`.*, `item`.`id` AS `item_id`, `contact`.`name`, `contact`.`photo`, `contact`.`url`, `contact`.`thumb`, `contact`.`dfrn-id`, `contact`.`self`, `contact`.`id` AS `cid`, - `contact`.`uid` AS `contact-uid` - FROM `item` LEFT JOIN `contact` ON `contact`.`id` = `item`.`contact-id` - WHERE `item`.`uid` = %d AND `item`.`visible` = 1 - AND `contact`.`blocked` = 0 - AND `allow_uid` = '' AND `allow_gid` = '' AND `deny_uid` = '' AND `deny_gid` = '' - GROUP BY `item`.`parent`, `item`.`id` - ORDER BY `created` DESC LIMIT 0,30 ", - intval($a->profile['uid']) - ); - $template = file_get_contents('view/comment_item.tpl'); + if($is_owner && ! $update) + $o .= get_birthdays(); + $cmnt_tpl = load_view_file('view/comment_item.tpl'); + $like_tpl = load_view_file('view/like.tpl'); + $tpl = load_view_file('view/wall_item.tpl'); - $tpl = file_get_contents('view/wall_item.tpl'); + $droptpl = load_view_file('view/wall_item_drop.tpl'); + $fakedrop = load_view_file('view/wall_fake_drop.tpl'); - if(count($r)) { - foreach($r as $rr) { - if(can_write_wall($a,$a->profile['profile_uid'])) { - $comment = replace_macros($template,array( - '$id' => $rr['item_id'], - '$profile_uid' => $a->profile['profile_uid'] - )); + if($update) + $return_url = $_SESSION['return_url']; + else + $return_url = $_SESSION['return_url'] = $a->cmd; + + $alike = array(); + $dlike = array(); + + if($r !== false && count($r)) { + + foreach($r as $item) { + like_puller($a,$item,$alike,'like'); + like_puller($a,$item,$dlike,'dislike'); + } + + foreach($r as $item) { + + $sparkle = ''; + $comment = ''; + $likebuttons = ''; + + $template = $tpl; + + $redirect_url = $a->get_baseurl() . '/redir/' . $item['cid'] ; + + if(((activity_match($item['verb'],ACTIVITY_LIKE)) || (activity_match($item['verb'],ACTIVITY_DISLIKE))) + && ($item['id'] != $item['parent'])) + continue; + + $lock = ((($item['private']) || (($item['uid'] == local_user()) && (strlen($item['allow_cid']) || strlen($item['allow_gid']) + || strlen($item['deny_cid']) || strlen($item['deny_gid'])))) + ? '