Friendica Communications Platform
(please note that this is a clone of the repository at github, issues are handled there)
https://friendi.ca
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
483 lines
16 KiB
483 lines
16 KiB
<?php |
|
|
|
function display_init(&$a) { |
|
|
|
if((get_config('system','block_public')) && (! local_user()) && (! remote_user())) { |
|
return; |
|
} |
|
|
|
$nick = (($a->argc > 1) ? $a->argv[1] : ''); |
|
$profiledata = array(); |
|
|
|
// If there is only one parameter, then check if this parameter could be a guid |
|
if ($a->argc == 2) { |
|
$nick = ""; |
|
$itemuid = 0; |
|
|
|
// Does the local user have this item? |
|
if (local_user()) { |
|
$r = q("SELECT `id`, `parent`, `author-name`, `author-link`, `author-avatar`, `network`, `body`, `uid`, `owner-link` FROM `item` |
|
WHERE `item`.`visible` AND NOT `item`.`deleted` AND NOT `item`.`moderated` |
|
AND `guid` = '%s' AND `uid` = %d", dbesc($a->argv[1]), local_user()); |
|
if (count($r)) { |
|
$nick = $a->user["nickname"]; |
|
$itemuid = local_user(); |
|
} |
|
} |
|
|
|
// Or is it anywhere on the server? |
|
if ($nick == "") { |
|
$r = q("SELECT `user`.`nickname`, `item`.`id`, `item`.`parent`, `item`.`author-name`, |
|
`item`.`author-link`, `item`.`author-avatar`, `item`.`network`, `item`.`uid`, `item`.`owner-link`, `item`.`body` |
|
FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid` |
|
WHERE `item`.`visible` AND NOT `item`.`deleted` AND NOT `item`.`moderated` |
|
AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = '' |
|
AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = '' |
|
AND NOT `item`.`private` AND NOT `user`.`hidewall` |
|
AND `item`.`guid` = '%s'", dbesc($a->argv[1])); |
|
// AND NOT `item`.`private` AND `item`.`wall` |
|
if (count($r)) { |
|
$nick = $r[0]["nickname"]; |
|
$itemuid = $r[0]["uid"]; |
|
} |
|
} |
|
|
|
// Is it an item with uid=0? |
|
if ($nick == "") { |
|
$r = q("SELECT `item`.`id`, `item`.`parent`, `item`.`author-name`, `item`.`author-link`, |
|
`item`.`author-avatar`, `item`.`network`, `item`.`uid`, `item`.`owner-link`, `item`.`body` |
|
FROM `item` WHERE `item`.`visible` AND NOT `item`.`deleted` AND NOT `item`.`moderated` |
|
AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = '' |
|
AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = '' |
|
AND NOT `item`.`private` AND `item`.`uid` = 0 |
|
AND `item`.`guid` = '%s'", dbesc($a->argv[1])); |
|
// AND NOT `item`.`private` AND `item`.`wall` |
|
} |
|
if (count($r)) { |
|
if ($r[0]["id"] != $r[0]["parent"]) |
|
$r = q("SELECT `id`, `author-name`, `author-link`, `author-avatar`, `network`, `body`, `uid`, `owner-link` FROM `item` |
|
WHERE `item`.`visible` AND NOT `item`.`deleted` AND NOT `item`.`moderated` |
|
AND `id` = %d", $r[0]["parent"]); |
|
|
|
if (($itemuid != local_user()) AND local_user()) { |
|
// Do we know this contact but we haven't got this item? |
|
// Copy the wohle thread to our local storage so that we can interact. |
|
// We really should change this need for the future since it scales very bad. |
|
$contactid = get_contact($r[0]['owner-link'], local_user()); |
|
if ($contactid) { |
|
$items = q("SELECT * FROM `item` WHERE `parent` = %d ORDER BY `id`", intval($r[0]["id"])); |
|
foreach ($items AS $item) { |
|
$itemcontactid = get_contact($item['owner-link'], local_user()); |
|
if (!$itemcontactid) |
|
$itemcontactid = $contactid; |
|
|
|
unset($item['id']); |
|
$item['uid'] = local_user(); |
|
$item['origin'] = 0; |
|
$item['contact-id'] = $itemcontactid; |
|
$local_copy = item_store($item, false, false, true); |
|
logger("Stored local copy for post ".$item['guid']." under id ".$local_copy, LOGGER_DEBUG); |
|
} |
|
} |
|
} |
|
|
|
$profiledata = display_fetchauthor($a, $r[0]); |
|
|
|
if (strstr(normalise_link($profiledata["url"]), normalise_link($a->get_baseurl()))) { |
|
$nickname = str_replace(normalise_link($a->get_baseurl())."/profile/", "", normalise_link($profiledata["url"])); |
|
|
|
if (($nickname != $a->user["nickname"])) { |
|
$r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile` |
|
INNER JOIN `contact` on `contact`.`uid` = `profile`.`uid` INNER JOIN `user` ON `profile`.`uid` = `user`.`uid` |
|
WHERE `user`.`nickname` = '%s' AND `profile`.`is-default` AND `contact`.`self` LIMIT 1", |
|
dbesc($nickname) |
|
); |
|
if (count($r)) |
|
$profiledata = $r[0]; |
|
|
|
$profiledata["network"] = NETWORK_DFRN; |
|
} else |
|
$profiledata = array(); |
|
} |
|
} else { |
|
$a->error = 404; |
|
notice( t('Item not found.') . EOL); |
|
return; |
|
} |
|
} |
|
|
|
profile_load($a, $nick, 0, $profiledata); |
|
|
|
} |
|
|
|
function display_fetchauthor($a, $item) { |
|
|
|
require_once("include/Contact.php"); |
|
|
|
$profiledata = array(); |
|
$profiledata["uid"] = -1; |
|
$profiledata["nickname"] = $item["author-name"]; |
|
$profiledata["name"] = $item["author-name"]; |
|
$profiledata["picdate"] = ""; |
|
$profiledata["photo"] = $item["author-avatar"]; |
|
$profiledata["url"] = $item["author-link"]; |
|
$profiledata["network"] = $item["network"]; |
|
|
|
// Check for a repeated message |
|
$skip = false; |
|
$body = trim($item["body"]); |
|
|
|
// Skip if it isn't a pure repeated messages |
|
// Does it start with a share? |
|
if (!$skip AND strpos($body, "[share") > 0) |
|
$skip = true; |
|
|
|
// Does it end with a share? |
|
if (!$skip AND (strlen($body) > (strrpos($body, "[/share]") + 8))) |
|
$skip = true; |
|
|
|
if (!$skip) { |
|
$attributes = preg_replace("/\[share(.*?)\]\s?(.*?)\s?\[\/share\]\s?/ism","$1",$body); |
|
// Skip if there is no shared message in there |
|
if ($body == $attributes) |
|
$skip = true; |
|
} |
|
|
|
if (!$skip) { |
|
$author = ""; |
|
preg_match("/author='(.*?)'/ism", $attributes, $matches); |
|
if ($matches[1] != "") |
|
$profiledata["name"] = html_entity_decode($matches[1],ENT_QUOTES,'UTF-8'); |
|
|
|
preg_match('/author="(.*?)"/ism', $attributes, $matches); |
|
if ($matches[1] != "") |
|
$profiledata["name"] = html_entity_decode($matches[1],ENT_QUOTES,'UTF-8'); |
|
|
|
$profile = ""; |
|
preg_match("/profile='(.*?)'/ism", $attributes, $matches); |
|
if ($matches[1] != "") |
|
$profiledata["url"] = $matches[1]; |
|
|
|
preg_match('/profile="(.*?)"/ism', $attributes, $matches); |
|
if ($matches[1] != "") |
|
$profiledata["url"] = $matches[1]; |
|
|
|
$avatar = ""; |
|
preg_match("/avatar='(.*?)'/ism", $attributes, $matches); |
|
if ($matches[1] != "") |
|
$profiledata["photo"] = $matches[1]; |
|
|
|
preg_match('/avatar="(.*?)"/ism', $attributes, $matches); |
|
if ($matches[1] != "") |
|
$profiledata["photo"] = $matches[1]; |
|
|
|
$profiledata["nickname"] = $profiledata["name"]; |
|
$profiledata["network"] = GetProfileUsername($profiledata["url"], "", false, true); |
|
|
|
$profiledata["address"] = ""; |
|
$profiledata["about"] = ""; |
|
} |
|
|
|
$profiledata = get_contact_details_by_url($profiledata["url"], local_user(), $profiledata); |
|
|
|
$profiledata["photo"] = App::remove_baseurl($profiledata["photo"]); |
|
|
|
if (local_user()) { |
|
if (in_array($profiledata["network"], array(NETWORK_DFRN, NETWORK_DIASPORA, NETWORK_OSTATUS))) |
|
$profiledata["remoteconnect"] = $a->get_baseurl()."/follow?url=".urlencode($profiledata["url"]); |
|
} elseif ($profiledata["network"] == NETWORK_DFRN) { |
|
$connect = str_replace("/profile/", "/dfrn_request/", $profiledata["url"]); |
|
$profiledata["remoteconnect"] = $connect; |
|
} |
|
|
|
return($profiledata); |
|
} |
|
|
|
function display_content(&$a, $update = 0) { |
|
|
|
if((get_config('system','block_public')) && (! local_user()) && (! remote_user())) { |
|
notice( t('Public access denied.') . EOL); |
|
return; |
|
} |
|
|
|
require_once('include/security.php'); |
|
require_once('include/conversation.php'); |
|
require_once('include/acl_selectors.php'); |
|
|
|
|
|
$o = ''; |
|
|
|
$a->page['htmlhead'] .= replace_macros(get_markup_template('display-head.tpl'), array()); |
|
|
|
|
|
if($update) { |
|
$nick = $_REQUEST['nick']; |
|
} |
|
else { |
|
$nick = (($a->argc > 1) ? $a->argv[1] : ''); |
|
} |
|
|
|
if($update) { |
|
$item_id = $_REQUEST['item_id']; |
|
$a->profile = array('uid' => intval($update), 'profile_uid' => intval($update)); |
|
} |
|
else { |
|
$item_id = (($a->argc > 2) ? $a->argv[2] : 0); |
|
|
|
if ($a->argc == 2) { |
|
$nick = ""; |
|
|
|
if (local_user()) { |
|
$r = q("SELECT `id` FROM `item` |
|
WHERE `item`.`visible` AND NOT `item`.`deleted` AND NOT `item`.`moderated` |
|
AND `guid` = '%s' AND `uid` = %d", dbesc($a->argv[1]), local_user()); |
|
if (count($r)) { |
|
$item_id = $r[0]["id"]; |
|
$nick = $a->user["nickname"]; |
|
} |
|
} |
|
|
|
if ($nick == "") { |
|
$r = q("SELECT `user`.`nickname`, `item`.`id` FROM `item` INNER JOIN `user` ON `user`.`uid` = `item`.`uid` |
|
WHERE `item`.`visible` AND NOT `item`.`deleted` AND NOT `item`.`moderated` |
|
AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = '' |
|
AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = '' |
|
AND NOT `item`.`private` AND NOT `user`.`hidewall` |
|
AND `item`.`guid` = '%s'", dbesc($a->argv[1])); |
|
// AND NOT `item`.`private` AND `item`.`wall` |
|
if (count($r)) { |
|
$item_id = $r[0]["id"]; |
|
$nick = $r[0]["nickname"]; |
|
} |
|
} |
|
if ($nick == "") { |
|
$r = q("SELECT `item`.`id` FROM `item` |
|
WHERE `item`.`visible` AND NOT `item`.`deleted` AND NOT `item`.`moderated` |
|
AND `item`.`allow_cid` = '' AND `item`.`allow_gid` = '' |
|
AND `item`.`deny_cid` = '' AND `item`.`deny_gid` = '' |
|
AND NOT `item`.`private` AND `item`.`uid` = 0 |
|
AND `item`.`guid` = '%s'", dbesc($a->argv[1])); |
|
// AND NOT `item`.`private` AND `item`.`wall` |
|
if (count($r)) { |
|
$item_id = $r[0]["id"]; |
|
} |
|
} |
|
} |
|
} |
|
|
|
if ($item_id AND !is_numeric($item_id)) { |
|
$r = q("SELECT `id` FROM `item` WHERE `uri` = '%s' AND `uid` = %d LIMIT 1", |
|
dbesc($item_id), intval($a->profile['uid'])); |
|
if ($r) |
|
$item_id = $r[0]["id"]; |
|
else |
|
$item_id = false; |
|
} |
|
|
|
if (!$item_id) { |
|
$a->error = 404; |
|
notice(t('Item not found.').EOL); |
|
return; |
|
} |
|
|
|
|
|
$groups = array(); |
|
|
|
$contact = null; |
|
$remote_contact = false; |
|
|
|
$contact_id = 0; |
|
|
|
if(is_array($_SESSION['remote'])) { |
|
foreach($_SESSION['remote'] as $v) { |
|
if($v['uid'] == $a->profile['uid']) { |
|
$contact_id = $v['cid']; |
|
break; |
|
} |
|
} |
|
} |
|
|
|
if($contact_id) { |
|
$groups = init_groups_visitor($contact_id); |
|
$r = q("SELECT * FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1", |
|
intval($contact_id), |
|
intval($a->profile['uid']) |
|
); |
|
if(count($r)) { |
|
$contact = $r[0]; |
|
$remote_contact = true; |
|
} |
|
} |
|
|
|
if(! $remote_contact) { |
|
if(local_user()) { |
|
$contact_id = $_SESSION['cid']; |
|
$contact = $a->contact; |
|
} |
|
} |
|
|
|
$r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `self` LIMIT 1", |
|
intval($a->profile['uid']) |
|
); |
|
if(count($r)) |
|
$a->page_contact = $r[0]; |
|
|
|
$is_owner = ((local_user()) && (local_user() == $a->profile['profile_uid']) ? true : false); |
|
|
|
if($a->profile['hidewall'] && (! $is_owner) && (! $remote_contact)) { |
|
notice( t('Access to this profile has been restricted.') . EOL); |
|
return; |
|
} |
|
|
|
// We need the editor here to be able to reshare an item. |
|
|
|
if ($is_owner) { |
|
$x = array( |
|
'is_owner' => true, |
|
'allow_location' => $a->user['allow_location'], |
|
'default_location' => $a->user['default-location'], |
|
'nickname' => $a->user['nickname'], |
|
'lockstate' => ( (is_array($a->user)) && ((strlen($a->user['allow_cid'])) || (strlen($a->user['allow_gid'])) || (strlen($a->user['deny_cid'])) || (strlen($a->user['deny_gid']))) ? 'lock' : 'unlock'), |
|
'acl' => populate_acl($a->user, true), |
|
'bang' => '', |
|
'visitor' => 'block', |
|
'profile_uid' => local_user(), |
|
'acl_data' => construct_acl_data($a, $a->user), // For non-Javascript ACL selector |
|
); |
|
$o .= status_editor($a,$x,0,true); |
|
} |
|
|
|
$sql_extra = item_permissions_sql($a->profile['uid'],$remote_contact,$groups); |
|
|
|
if($update) { |
|
|
|
$r = q("SELECT `id` FROM `item` WHERE `item`.`uid` = %d |
|
AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE `id` = %d) |
|
$sql_extra AND `unseen`", |
|
intval($a->profile['uid']), |
|
intval($item_id) |
|
); |
|
|
|
if(!$r) |
|
return ''; |
|
} |
|
|
|
$r = q(item_query()." AND `item`.`uid` = %d |
|
AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE `id` = %d) |
|
$sql_extra |
|
ORDER BY `parent` DESC, `gravity` ASC, `id` ASC", |
|
intval($a->profile['uid']), |
|
intval($item_id) |
|
); |
|
|
|
|
|
if(!$r && local_user()) { |
|
// Check if this is another person's link to a post that we have |
|
$r = q("SELECT `item`.uri FROM `item` |
|
WHERE (`item`.`id` = %d OR `item`.`uri` = '%s') |
|
LIMIT 1", |
|
intval($item_id), |
|
dbesc($item_id) |
|
); |
|
if($r) { |
|
$item_uri = $r[0]['uri']; |
|
|
|
$r = q(item_query()." AND `item`.`uid` = %d |
|
AND `item`.`parent` = (SELECT `parent` FROM `item` WHERE `uri` = '%s' AND uid = %d) |
|
ORDER BY `parent` DESC, `gravity` ASC, `id` ASC ", |
|
intval(local_user()), |
|
dbesc($item_uri), |
|
intval(local_user()) |
|
); |
|
} |
|
} |
|
|
|
if($r) { |
|
|
|
if((local_user()) && (local_user() == $a->profile['uid'])) { |
|
$unseen = q("SELECT `id` FROM `item` WHERE `unseen` AND `parent` = %d", |
|
intval($r[0]['parent'])); |
|
|
|
if ($unseen) |
|
q("UPDATE `item` SET `unseen` = 0 |
|
WHERE `parent` = %d AND `unseen`", |
|
intval($r[0]['parent']) |
|
); |
|
} |
|
|
|
$items = conv_sort($r,"`commented`"); |
|
|
|
if(!$update) |
|
$o .= "<script> var netargs = '?f=&nick=" . $nick . "&item_id=" . $item_id . "'; </script>"; |
|
$o .= conversation($a,$items,'display', $update); |
|
|
|
// Preparing the meta header |
|
require_once('include/bbcode.php'); |
|
require_once("include/html2plain.php"); |
|
$description = trim(html2plain(bbcode($r[0]["body"], false, false), 0, true)); |
|
$title = trim(html2plain(bbcode($r[0]["title"], false, false), 0, true)); |
|
$author_name = $r[0]["author-name"]; |
|
|
|
$image = $a->remove_baseurl($r[0]["thumb"]); |
|
|
|
if ($title == "") |
|
$title = $author_name; |
|
|
|
$description = htmlspecialchars($description, ENT_COMPAT, 'UTF-8', true); // allow double encoding here |
|
$title = htmlspecialchars($title, ENT_COMPAT, 'UTF-8', true); // allow double encoding here |
|
$author_name = htmlspecialchars($author_name, ENT_COMPAT, 'UTF-8', true); // allow double encoding here |
|
|
|
//<meta name="keywords" content=""> |
|
$a->page['htmlhead'] .= '<meta name="author" content="'.$author_name.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta name="title" content="'.$title.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta name="fulltitle" content="'.$title.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta name="description" content="'.$description.'" />'."\n"; |
|
|
|
// Schema.org microdata |
|
$a->page['htmlhead'] .= '<meta itemprop="name" content="'.$title.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta itemprop="description" content="'.$description.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta itemprop="image" content="'.$image.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta itemprop="author" content="'.$author_name.'" />'."\n"; |
|
|
|
// Twitter cards |
|
$a->page['htmlhead'] .= '<meta name="twitter:card" content="summary" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta name="twitter:title" content="'.$title.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta name="twitter:description" content="'.$description.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta name="twitter:image" content="'.$image.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta name="twitter:url" content="'.$r[0]["plink"].'" />'."\n"; |
|
|
|
// Dublin Core |
|
$a->page['htmlhead'] .= '<meta name="DC.title" content="'.$title.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta name="DC.description" content="'.$description.'" />'."\n"; |
|
|
|
// Open Graph |
|
$a->page['htmlhead'] .= '<meta property="og:type" content="website" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta property="og:title" content="'.$title.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta property="og:image" content="'.$image.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta property="og:url" content="'.$r[0]["plink"].'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta property="og:description" content="'.$description.'" />'."\n"; |
|
$a->page['htmlhead'] .= '<meta name="og:article:author" content="'.$author_name.'" />'."\n"; |
|
// article:tag |
|
|
|
return $o; |
|
} |
|
|
|
$r = q("SELECT `id`,`deleted` FROM `item` WHERE `id` = '%s' OR `uri` = '%s' LIMIT 1", |
|
dbesc($item_id), |
|
dbesc($item_id) |
|
); |
|
if($r) { |
|
if($r[0]['deleted']) { |
|
notice( t('Item has been removed.') . EOL ); |
|
} |
|
else { |
|
notice( t('Permission denied.') . EOL ); |
|
} |
|
} |
|
else { |
|
notice( t('Item not found.') . EOL ); |
|
} |
|
|
|
return $o; |
|
} |
|
|
|
|