2010-07-02 01:48:07 +02:00
< ? php
2012-08-13 00:54:38 +02:00
require_once ( 'include/contact_widgets.php' );
2012-10-09 17:50:24 +02:00
require_once ( 'include/redir.php' );
2012-08-13 00:54:38 +02:00
2016-02-07 15:11:34 +01:00
2012-08-13 00:54:38 +02:00
function profile_init ( & $a ) {
2012-04-02 03:28:31 +02:00
if ( ! x ( $a -> page , 'aside' ))
$a -> page [ 'aside' ] = '' ;
2010-07-02 01:48:07 +02:00
if ( $a -> argc > 1 )
2016-09-23 08:29:02 +02:00
$which = htmlspecialchars ( $a -> argv [ 1 ]);
2010-07-02 01:48:07 +02:00
else {
2016-01-04 11:46:19 +01:00
$r = q ( " select nickname from user where blocked = 0 and account_expired = 0 and account_removed = 0 and verified = 1 order by rand() limit 1 " );
2016-12-13 10:44:13 +01:00
if ( dbm :: is_result ( $r )) {
2012-04-11 05:50:31 +02:00
goaway ( $a -> get_baseurl () . '/profile/' . $r [ 0 ][ 'nickname' ]);
2011-12-08 10:28:27 +01:00
}
else {
2012-04-14 23:45:09 +02:00
logger ( 'profile error: mod_profile ' . $a -> query_string , LOGGER_DEBUG );
2011-12-08 10:28:27 +01:00
notice ( t ( 'Requested profile is not available.' ) . EOL );
$a -> error = 404 ;
return ;
}
2010-07-02 01:48:07 +02:00
}
2010-07-29 06:02:36 +02:00
$profile = 0 ;
2010-09-27 02:24:20 +02:00
if (( local_user ()) && ( $a -> argc > 2 ) && ( $a -> argv [ 2 ] === 'view' )) {
2010-07-29 06:02:36 +02:00
$which = $a -> user [ 'nickname' ];
2016-09-23 08:29:02 +02:00
$profile = htmlspecialchars ( $a -> argv [ 1 ]);
2010-07-29 06:02:36 +02:00
}
2012-10-09 17:50:24 +02:00
else {
auto_redir ( $a , $which );
}
2010-10-21 23:32:29 +02:00
2010-07-29 06:02:36 +02:00
profile_load ( $a , $which , $profile );
2010-08-11 01:54:36 +02:00
2012-10-09 17:41:33 +02:00
$blocked = ((( get_config ( 'system' , 'block_public' )) && ( ! local_user ()) && ( ! remote_user ())) ? true : false );
2012-04-28 04:39:19 +02:00
$userblock = (( $a -> profile [ 'hidewall' ] && ( ! local_user ()) && ( ! remote_user ())) ? true : false );
2011-07-29 04:18:07 +02:00
if (( x ( $a -> profile , 'page-flags' )) && ( $a -> profile [ 'page-flags' ] == PAGE_COMMUNITY )) {
2012-03-11 23:50:23 +01:00
$a -> page [ 'htmlhead' ] .= '<meta name="friendica.community" content="true" />' ;
2011-02-27 23:17:42 +01:00
}
2014-03-09 09:19:14 +01:00
if ( x ( $a -> profile , 'openidserver' ))
2010-12-23 23:40:32 +01:00
$a -> page [ 'htmlhead' ] .= '<link rel="openid.server" href="' . $a -> profile [ 'openidserver' ] . '" />' . " \r \n " ;
if ( x ( $a -> profile , 'openid' )) {
2015-04-14 12:27:36 +02:00
$delegate = (( strstr ( $a -> profile [ 'openid' ], '://' )) ? $a -> profile [ 'openid' ] : 'https://' . $a -> profile [ 'openid' ]);
2010-12-23 23:40:32 +01:00
$a -> page [ 'htmlhead' ] .= '<link rel="openid.delegate" href="' . $delegate . '" />' . " \r \n " ;
2010-12-23 21:32:13 +01:00
}
2012-04-28 04:39:19 +02:00
// site block
if (( ! $blocked ) && ( ! $userblock )) {
2011-08-18 08:01:44 +02:00
$keywords = (( x ( $a -> profile , 'pub_keywords' )) ? $a -> profile [ 'pub_keywords' ] : '' );
2011-12-20 12:04:20 +01:00
$keywords = str_replace ( array ( '#' , ',' , ' ' , ',,' ), array ( '' , ' ' , ',' , ',' ), $keywords );
2011-08-18 08:01:44 +02:00
if ( strlen ( $keywords ))
$a -> page [ 'htmlhead' ] .= '<meta name="keywords" content="' . $keywords . '" />' . " \r \n " ;
}
2011-03-15 04:19:45 +01:00
2010-10-21 23:32:29 +02:00
$a -> page [ 'htmlhead' ] .= '<meta name="dfrn-global-visibility" content="' . (( $a -> profile [ 'net-publish' ]) ? 'true' : 'false' ) . '" />' . " \r \n " ;
$a -> page [ 'htmlhead' ] .= '<link rel="alternate" type="application/atom+xml" href="' . $a -> get_baseurl () . '/dfrn_poll/' . $which . '" />' . " \r \n " ;
2010-10-23 10:20:26 +02:00
$uri = urlencode ( 'acct:' . $a -> profile [ 'nickname' ] . '@' . $a -> get_hostname () . (( $a -> path ) ? '/' . $a -> path : '' ));
2010-10-21 23:32:29 +02:00
$a -> page [ 'htmlhead' ] .= '<link rel="lrdd" type="application/xrd+xml" href="' . $a -> get_baseurl () . '/xrd/?uri=' . $uri . '" />' . " \r \n " ;
2010-11-11 11:49:28 +01:00
header ( 'Link: <' . $a -> get_baseurl () . '/xrd/?uri=' . $uri . '>; rel="lrdd"; type="application/xrd+xml"' , false );
2014-03-09 09:19:14 +01:00
2010-07-02 01:48:07 +02:00
$dfrn_pages = array ( 'request' , 'confirm' , 'notify' , 'poll' );
foreach ( $dfrn_pages as $dfrn )
$a -> page [ 'htmlhead' ] .= " <link rel= \" dfrn- { $dfrn } \" href= \" " . $a -> get_baseurl () . " /dfrn_ { $dfrn } / { $which } \" /> \r \n " ;
2011-11-01 04:39:04 +01:00
$a -> page [ 'htmlhead' ] .= " <link rel= \" dfrn-poco \" href= \" " . $a -> get_baseurl () . " /poco/ { $which } \" /> \r \n " ;
2016-02-07 15:11:34 +01:00
2010-07-02 01:48:07 +02:00
}
2016-02-07 15:11:34 +01:00
2010-09-21 04:34:44 +02:00
function profile_content ( & $a , $update = 0 ) {
2012-06-12 04:52:46 +02:00
$category = $datequery = $datequery2 = '' ;
2012-06-12 04:36:04 +02:00
if ( $a -> argc > 2 ) {
for ( $x = 2 ; $x < $a -> argc ; $x ++ ) {
if ( is_a_date_arg ( $a -> argv [ $x ])) {
if ( $datequery )
$datequery2 = escape_tags ( $a -> argv [ $x ]);
else
$datequery = escape_tags ( $a -> argv [ $x ]);
}
else
$category = $a -> argv [ $x ];
}
2012-04-02 03:28:31 +02:00
}
2012-06-12 04:36:04 +02:00
if ( ! x ( $category )) {
$category = (( x ( $_GET , 'category' )) ? $_GET [ 'category' ] : '' );
2012-04-02 03:28:31 +02:00
}
2011-05-25 01:30:52 +02:00
if ( get_config ( 'system' , 'block_public' ) && ( ! local_user ()) && ( ! remote_user ())) {
2011-04-22 03:39:07 +02:00
return login ();
2011-04-22 02:29:47 +02:00
}
2010-07-02 01:48:07 +02:00
require_once ( " include/bbcode.php " );
require_once ( 'include/security.php' );
2011-04-13 02:58:16 +02:00
require_once ( 'include/conversation.php' );
2011-04-20 14:51:02 +02:00
require_once ( 'include/acl_selectors.php' );
2012-06-13 05:46:30 +02:00
require_once ( 'include/items.php' );
2010-07-12 08:10:52 +02:00
$groups = array ();
2010-07-11 04:43:55 +02:00
$tab = 'posts' ;
2010-10-30 22:25:37 +02:00
$o = '' ;
2010-07-11 04:43:55 +02:00
2010-08-20 02:23:13 +02:00
if ( $update ) {
// Ensure we've got a profile owner if updating.
2010-09-21 04:34:44 +02:00
$a -> profile [ 'profile_uid' ] = $update ;
2010-08-20 02:23:13 +02:00
}
else {
2011-08-17 18:36:24 +02:00
if ( $a -> profile [ 'profile_uid' ] == local_user ()) {
nav_set_selected ( 'home' );
}
2010-07-28 14:01:52 +02:00
}
2010-07-26 07:51:45 +02:00
2012-06-12 04:36:04 +02:00
2010-08-20 02:23:13 +02:00
$contact = null ;
$remote_contact = false ;
2012-09-05 07:50:28 +02:00
$contact_id = 0 ;
if ( is_array ( $_SESSION [ 'remote' ])) {
foreach ( $_SESSION [ 'remote' ] as $v ) {
if ( $v [ 'uid' ] == $a -> profile [ 'profile_uid' ]) {
$contact_id = $v [ 'cid' ];
break ;
}
}
}
if ( $contact_id ) {
2010-07-12 08:10:52 +02:00
$groups = init_groups_visitor ( $contact_id );
2010-08-14 16:55:18 +02:00
$r = q ( " SELECT * FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1 " ,
intval ( $contact_id ),
2010-08-20 02:23:13 +02:00
intval ( $a -> profile [ 'profile_uid' ])
2010-08-14 16:55:18 +02:00
);
2016-12-13 10:44:13 +01:00
if ( dbm :: is_result ( $r )) {
2010-08-14 16:55:18 +02:00
$contact = $r [ 0 ];
2010-08-20 02:23:13 +02:00
$remote_contact = true ;
}
2010-07-12 08:10:52 +02:00
}
2010-08-20 02:23:13 +02:00
if ( ! $remote_contact ) {
2010-08-19 13:59:31 +02:00
if ( local_user ()) {
$contact_id = $_SESSION [ 'cid' ];
$contact = $a -> contact ;
}
2010-07-06 06:39:55 +02:00
}
2010-10-20 05:52:05 +02:00
$is_owner = (( local_user ()) && ( local_user () == $a -> profile [ 'profile_uid' ]) ? true : false );
2011-05-28 09:42:01 +02:00
2012-03-27 10:31:47 +02:00
if ( $a -> profile [ 'hidewall' ] && ( ! $is_owner ) && ( ! $remote_contact )) {
2011-05-28 09:42:01 +02:00
notice ( t ( 'Access to this profile has been restricted.' ) . EOL );
return ;
}
2012-04-04 04:20:39 +02:00
if ( ! $update ) {
2012-04-04 04:16:02 +02:00
2012-04-02 03:28:31 +02:00
2010-07-25 00:21:33 +02:00
if ( x ( $_GET , 'tab' ))
$tab = notags ( trim ( $_GET [ 'tab' ]));
2010-07-02 01:48:07 +02:00
2011-10-10 16:40:12 +02:00
$o .= profile_tabs ( $a , $is_owner , $a -> profile [ 'nickname' ]);
2010-07-02 01:48:07 +02:00
2010-07-24 15:56:02 +02:00
2010-09-27 02:24:20 +02:00
if ( $tab === 'profile' ) {
2011-04-08 08:10:43 +02:00
$o .= advanced_profile ( $a );
2010-12-23 05:23:41 +01:00
call_hooks ( 'profile_advanced' , $o );
2010-07-25 00:21:33 +02:00
return $o ;
}
2012-05-02 04:16:18 +02:00
2012-05-02 04:24:22 +02:00
$o .= common_friends_visitor_widget ( $a -> profile [ 'profile_uid' ]);
2012-05-02 04:16:18 +02:00
2011-06-03 15:22:39 +02:00
if ( x ( $_SESSION , 'new_member' ) && $_SESSION [ 'new_member' ] && $is_owner )
2012-02-16 10:57:59 +01:00
$o .= '<a href="newmember" id="newmember-tips" style="font-size: 1.2em;"><b>' . t ( 'Tips for New Members' ) . '</b></a>' . EOL ;
2011-06-03 15:12:34 +02:00
2010-12-06 03:08:36 +01:00
$commpage = (( $a -> profile [ 'page-flags' ] == PAGE_COMMUNITY ) ? true : false );
$commvisitor = (( $commpage && $remote_contact == true ) ? true : false );
2015-08-08 17:33:43 +02:00
$a -> page [ 'aside' ] .= posted_date_widget ( $a -> get_baseurl ( true ) . '/profile/' . $a -> profile [ 'nickname' ], $a -> profile [ 'profile_uid' ], true );
2012-04-04 04:20:39 +02:00
$a -> page [ 'aside' ] .= categories_widget ( $a -> get_baseurl ( true ) . '/profile/' . $a -> profile [ 'nickname' ],( x ( $category ) ? xmlify ( $category ) : '' ));
2012-04-02 03:28:31 +02:00
2010-12-06 03:08:36 +01:00
if ( can_write_wall ( $a , $a -> profile [ 'profile_uid' ])) {
2010-10-20 05:52:05 +02:00
2011-04-20 14:48:12 +02:00
$x = array (
'is_owner' => $is_owner ,
2015-06-26 15:13:52 +02:00
'allow_location' => ((( $is_owner || $commvisitor ) && $a -> profile [ 'allow_location' ]) ? true : false ),
'default_location' => (( $is_owner ) ? $a -> user [ 'default-location' ] : '' ),
'nickname' => $a -> profile [ 'nickname' ],
2015-08-08 17:33:43 +02:00
'lockstate' => ((( is_array ( $a -> user ) && (( strlen ( $a -> user [ 'allow_cid' ])) ||
( strlen ( $a -> user [ 'allow_gid' ])) || ( strlen ( $a -> user [ 'deny_cid' ])) ||
2015-06-26 15:13:52 +02:00
( strlen ( $a -> user [ 'deny_gid' ]))))) ? 'lock' : 'unlock' ),
'acl' => (( $is_owner ) ? populate_acl ( $a -> user , true ) : '' ),
'bang' => '' ,
'visitor' => (( $is_owner || $commvisitor ) ? 'block' : 'none' ),
'profile_uid' => $a -> profile [ 'profile_uid' ],
2013-01-26 20:52:21 +01:00
'acl_data' => ( $is_owner ? construct_acl_data ( $a , $a -> user ) : '' ), // For non-Javascript ACL selector
2015-06-26 15:13:52 +02:00
);
2011-04-20 14:48:12 +02:00
2015-06-26 15:13:52 +02:00
$o .= status_editor ( $a , $x );
2010-07-25 00:21:33 +02:00
}
}
2010-07-02 01:48:07 +02:00
2011-07-01 02:35:35 +02:00
/**
* Get permissions SQL - if $remote_contact is true , our remote user has been pre - verified and we already have fetched his / her groups
*/
2012-03-07 02:52:00 +01:00
$sql_extra = item_permissions_sql ( $a -> profile [ 'profile_uid' ], $remote_contact , $groups );
2011-07-01 02:35:35 +02:00
2010-07-02 01:48:07 +02:00
2011-12-12 23:39:25 +01:00
if ( $update ) {
2010-07-06 06:39:55 +02:00
2016-06-12 21:04:55 +02:00
$r = q ( " SELECT distinct(parent) AS `item_id`, `item`.`network` AS `item_network`
2014-03-09 09:19:14 +01:00
FROM `item` INNER JOIN `contact` ON `contact` . `id` = `item` . `contact-id`
AND `contact` . `blocked` = 0 AND `contact` . `pending` = 0
2012-07-13 17:09:01 +02:00
WHERE `item` . `uid` = % d AND `item` . `visible` = 1 AND
2016-01-04 11:46:19 +01:00
( `item` . `deleted` = 0 OR item . verb = '" . ACTIVITY_LIKE ."'
OR item . verb = '" . ACTIVITY_DISLIKE . "' OR item . verb = '" . ACTIVITY_ATTEND . "'
OR item . verb = '" . ACTIVITY_ATTENDNO . "' OR item . verb = '" . ACTIVITY_ATTENDMAYBE . "' )
2015-10-09 14:20:01 +02:00
AND `item` . `moderated` = 0 and `item` . `unseen` = 1
2011-12-13 01:11:03 +01:00
AND `item` . `wall` = 1
$sql_extra
ORDER BY `item` . `created` DESC " ,
intval ( $a -> profile [ 'profile_uid' ])
);
2010-07-06 06:39:55 +02:00
2014-03-16 17:12:56 +01:00
} else {
$sql_post_table = " " ;
2011-12-12 23:39:25 +01:00
2012-06-12 04:36:04 +02:00
if ( x ( $category )) {
2014-03-16 17:12:56 +01:00
$sql_post_table = sprintf ( " INNER JOIN (SELECT `oid` FROM `term` WHERE `term` = '%s' AND `otype` = %d AND `type` = %d AND `uid` = %d ORDER BY `tid` DESC) AS `term` ON `item`.`id` = `term`.`oid` " ,
dbesc ( protect_sprintf ( $category )), intval ( TERM_OBJ_POST ), intval ( TERM_CATEGORY ), intval ( $a -> profile [ 'profile_uid' ]));
//$sql_extra .= protect_sprintf(file_tag_file_query('item',$category,'category'));
2012-06-12 04:36:04 +02:00
}
if ( $datequery ) {
2014-03-09 09:19:14 +01:00
$sql_extra2 .= protect_sprintf ( sprintf ( " AND `thread`.`created` <= '%s' " , dbesc ( datetime_convert ( date_default_timezone_get (), '' , $datequery ))));
2012-06-12 04:36:04 +02:00
}
if ( $datequery2 ) {
2014-03-09 09:19:14 +01:00
$sql_extra2 .= protect_sprintf ( sprintf ( " AND `thread`.`created` >= '%s' " , dbesc ( datetime_convert ( date_default_timezone_get (), '' , $datequery2 ))));
2012-04-02 03:28:31 +02:00
}
2015-02-08 11:54:42 +01:00
if ( get_config ( 'system' , 'old_pager' )) {
2012-08-26 23:21:26 +02:00
$r = q ( " SELECT COUNT(*) AS `total`
2014-03-09 09:19:14 +01:00
FROM `thread` INNER JOIN `item` ON `item` . `id` = `thread` . `iid`
2014-03-16 17:12:56 +01:00
$sql_post_table INNER JOIN `contact` ON `contact` . `id` = `thread` . `contact-id`
2014-03-09 09:19:14 +01:00
AND `contact` . `blocked` = 0 AND `contact` . `pending` = 0
WHERE `thread` . `uid` = % d AND `thread` . `visible` = 1 AND `thread` . `deleted` = 0
and `thread` . `moderated` = 0
AND `thread` . `wall` = 1
2012-08-26 23:21:26 +02:00
$sql_extra $sql_extra2 " ,
intval ( $a -> profile [ 'profile_uid' ])
);
2016-12-13 10:44:13 +01:00
if ( dbm :: is_result ( $r )) {
2012-08-26 23:21:26 +02:00
$a -> set_pager_total ( $r [ 0 ][ 'total' ]);
}
2011-12-12 23:39:25 +01:00
}
2012-08-26 23:21:26 +02:00
2014-03-16 22:42:47 +01:00
// check if we serve a mobile device and get the user settings
2013-04-24 03:58:52 +02:00
// accordingly
2014-03-16 22:42:47 +01:00
if ( $a -> is_mobile ) {
2013-04-24 03:58:52 +02:00
$itemspage_network = get_pconfig ( local_user (), 'system' , 'itemspage_mobile_network' );
2015-10-28 19:01:45 +01:00
$itemspage_network = (( intval ( $itemspage_network )) ? $itemspage_network : 10 );
2014-03-16 22:42:47 +01:00
} else {
2013-04-24 03:58:52 +02:00
$itemspage_network = get_pconfig ( local_user (), 'system' , 'itemspage_network' );
2015-10-28 19:01:45 +01:00
$itemspage_network = (( intval ( $itemspage_network )) ? $itemspage_network : 20 );
2013-04-24 03:58:52 +02:00
}
2014-03-16 22:42:47 +01:00
// now that we have the user settings, see if the theme forces
2013-04-24 03:58:52 +02:00
// a maximum item number which is lower then the user choice
2012-08-26 23:21:26 +02:00
if (( $a -> force_max_items > 0 ) && ( $a -> force_max_items < $itemspage_network ))
$itemspage_network = $a -> force_max_items ;
$a -> set_pager_itemspage ( $itemspage_network );
2011-12-12 23:39:25 +01:00
$pager_sql = sprintf ( " LIMIT %d, %d " , intval ( $a -> pager [ 'start' ]), intval ( $a -> pager [ 'itemspage' ]));
2010-07-12 08:10:52 +02:00
2016-06-12 21:04:55 +02:00
$r = q ( " SELECT `thread`.`iid` AS `item_id`, `thread`.`network` AS `item_network`
2016-10-23 23:59:40 +02:00
FROM `thread`
STRAIGHT_JOIN `item` ON `item` . `id` = `thread` . `iid`
$sql_post_table
STRAIGHT_JOIN `contact` ON `contact` . `id` = `thread` . `contact-id`
AND NOT `contact` . `blocked` AND NOT `contact` . `pending`
WHERE `thread` . `uid` = % d AND `thread` . `visible`
AND `thread` . `contact-id` = % d
AND NOT `thread` . `deleted`
AND NOT `thread` . `moderated`
AND `thread` . `wall`
$sql_extra $sql_extra2
ORDER BY `thread` . `created` DESC $pager_sql " ,
intval ( $a -> profile [ 'profile_uid' ]),
intval ( $a -> profile [ 'contact_id' ])
2011-12-13 01:11:03 +01:00
);
}
2010-07-02 01:48:07 +02:00
2011-03-28 04:53:36 +02:00
$parents_arr = array ();
$parents_str = '' ;
2016-07-02 14:00:42 +02:00
if ( dbm :: is_result ( $r )) {
2011-03-28 04:53:36 +02:00
foreach ( $r as $rr )
$parents_arr [] = $rr [ 'item_id' ];
$parents_str = implode ( ', ' , $parents_arr );
2015-08-08 17:33:43 +02:00
2016-06-19 01:07:20 +02:00
$items = q ( item_query () . " AND `item`.`uid` = %d
2016-06-12 21:04:55 +02:00
AND `item` . `parent` IN ( % s )
2012-01-03 01:54:37 +01:00
$sql_extra " ,
2011-03-28 04:53:36 +02:00
intval ( $a -> profile [ 'profile_uid' ]),
dbesc ( $parents_str )
);
2014-03-09 09:19:14 +01:00
2012-02-26 21:39:37 +01:00
$items = conv_sort ( $items , 'created' );
} else {
$items = array ();
2011-03-28 04:53:36 +02:00
}
2011-01-14 05:28:33 +01:00
2012-09-19 02:43:09 +02:00
if ( $is_owner && ( ! $update ) && ( ! get_config ( 'theme' , 'hide_eventlist' ))) {
2011-01-17 01:40:09 +01:00
$o .= get_birthdays ();
2011-10-25 07:07:42 +02:00
$o .= get_events ();
}
2011-01-14 05:28:33 +01:00
2011-12-12 23:39:25 +01:00
if ( $is_owner ) {
2015-02-08 11:54:42 +01:00
$r = q ( " UPDATE `item` SET `unseen` = 0
2011-12-12 23:39:25 +01:00
WHERE `wall` = 1 AND `unseen` = 1 AND `uid` = % d " ,
intval ( local_user ())
);
2011-11-25 02:32:45 +01:00
}
2011-12-12 23:39:25 +01:00
$o .= conversation ( $a , $items , 'profile' , $update );
2010-07-17 08:14:37 +02:00
2011-04-11 08:01:38 +02:00
if ( ! $update ) {
2015-02-08 11:54:42 +01:00
if ( ! get_config ( 'system' , 'old_pager' )) {
2012-11-28 03:33:04 +01:00
$o .= alt_pager ( $a , count ( $items ));
2015-02-08 11:54:42 +01:00
} else {
2012-11-28 03:33:04 +01:00
$o .= paginate ( $a );
2012-11-28 03:30:46 +01:00
}
2011-04-11 08:01:38 +02:00
}
2011-01-23 23:56:14 +01:00
2010-07-02 01:48:07 +02:00
return $o ;
2010-12-23 21:32:13 +01:00
}