Friendica Communications Platform (please note that this is a clone of the repository at github, issues are handled there) https://friendi.ca
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 

1374 lines
38 KiB

  1. <?php
  2. require_once('include/config.php');
  3. require_once('include/network.php');
  4. require_once('include/plugin.php');
  5. require_once('include/text.php');
  6. require_once('include/pgettext.php');
  7. require_once('include/nav.php');
  8. require_once('include/cache.php');
  9. define ( 'FRIENDICA_PLATFORM', 'Friendica');
  10. define ( 'FRIENDICA_VERSION', '2.3.1281' );
  11. define ( 'DFRN_PROTOCOL_VERSION', '2.22' );
  12. define ( 'DB_UPDATE_VERSION', 1131 );
  13. define ( 'EOL', "<br />\r\n" );
  14. define ( 'ATOM_TIME', 'Y-m-d\TH:i:s\Z' );
  15. /**
  16. *
  17. * Image storage quality. Lower numbers save space at cost of image detail.
  18. * For ease of upgrade, please do not change here. Change jpeg quality with
  19. * $a->config['system']['jpeg_quality'] = n;
  20. * in .htconfig.php, where n is netween 1 and 100, and with very poor results
  21. * below about 50
  22. *
  23. */
  24. define ( 'JPEG_QUALITY', 100 );
  25. /**
  26. * SSL redirection policies
  27. */
  28. define ( 'SSL_POLICY_NONE', 0 );
  29. define ( 'SSL_POLICY_FULL', 1 );
  30. define ( 'SSL_POLICY_SELFSIGN', 2 );
  31. /**
  32. * log levels
  33. */
  34. define ( 'LOGGER_NORMAL', 0 );
  35. define ( 'LOGGER_TRACE', 1 );
  36. define ( 'LOGGER_DEBUG', 2 );
  37. define ( 'LOGGER_DATA', 3 );
  38. define ( 'LOGGER_ALL', 4 );
  39. /**
  40. * registration policies
  41. */
  42. define ( 'REGISTER_CLOSED', 0 );
  43. define ( 'REGISTER_APPROVE', 1 );
  44. define ( 'REGISTER_OPEN', 2 );
  45. /**
  46. * relationship types
  47. */
  48. define ( 'CONTACT_IS_FOLLOWER', 1);
  49. define ( 'CONTACT_IS_SHARING', 2);
  50. define ( 'CONTACT_IS_FRIEND', 3);
  51. /**
  52. * Hook array order
  53. */
  54. define ( 'HOOK_HOOK', 0);
  55. define ( 'HOOK_FILE', 1);
  56. define ( 'HOOK_FUNCTION', 2);
  57. /**
  58. *
  59. * page/profile types
  60. *
  61. * PAGE_NORMAL is a typical personal profile account
  62. * PAGE_SOAPBOX automatically approves all friend requests as CONTACT_IS_SHARING, (readonly)
  63. * PAGE_COMMUNITY automatically approves all friend requests as CONTACT_IS_SHARING, but with
  64. * write access to wall and comments (no email and not included in page owner's ACL lists)
  65. * PAGE_FREELOVE automatically approves all friend requests as full friends (CONTACT_IS_FRIEND).
  66. *
  67. */
  68. define ( 'PAGE_NORMAL', 0 );
  69. define ( 'PAGE_SOAPBOX', 1 );
  70. define ( 'PAGE_COMMUNITY', 2 );
  71. define ( 'PAGE_FREELOVE', 3 );
  72. define ( 'PAGE_BLOG', 4 );
  73. /**
  74. * Network and protocol family types
  75. */
  76. define ( 'NETWORK_ZOT', 'zot!'); // Zot!
  77. define ( 'NETWORK_DFRN', 'dfrn'); // Friendica, Mistpark, other DFRN implementations
  78. define ( 'NETWORK_OSTATUS', 'stat'); // status.net, identi.ca, GNU-social, other OStatus implementations
  79. define ( 'NETWORK_FEED', 'feed'); // RSS/Atom feeds with no known "post/notify" protocol
  80. define ( 'NETWORK_DIASPORA', 'dspr'); // Diaspora
  81. define ( 'NETWORK_MAIL', 'mail'); // IMAP/POP
  82. define ( 'NETWORK_MAIL2', 'mai2'); // extended IMAP/POP
  83. define ( 'NETWORK_FACEBOOK', 'face'); // Facebook API
  84. define ( 'NETWORK_LINKEDIN', 'lnkd'); // LinkedIn
  85. define ( 'NETWORK_XMPP', 'xmpp'); // XMPP
  86. define ( 'NETWORK_MYSPACE', 'mysp'); // MySpace
  87. define ( 'NETWORK_GPLUS', 'goog'); // Google+
  88. /**
  89. * Maximum number of "people who like (or don't like) this" that we will list by name
  90. */
  91. define ( 'MAX_LIKERS', 75);
  92. /**
  93. * Communication timeout
  94. */
  95. define ( 'ZCURL_TIMEOUT' , (-1));
  96. /**
  97. * email notification options
  98. */
  99. define ( 'NOTIFY_INTRO', 0x0001 );
  100. define ( 'NOTIFY_CONFIRM', 0x0002 );
  101. define ( 'NOTIFY_WALL', 0x0004 );
  102. define ( 'NOTIFY_COMMENT', 0x0008 );
  103. define ( 'NOTIFY_MAIL', 0x0010 );
  104. define ( 'NOTIFY_SUGGEST', 0x0020 );
  105. define ( 'NOTIFY_PROFILE', 0x0040 );
  106. define ( 'NOTIFY_TAGSELF', 0x0080 );
  107. define ( 'NOTIFY_TAGSHARE', 0x0100 );
  108. /**
  109. * various namespaces we may need to parse
  110. */
  111. define ( 'NAMESPACE_ZOT', 'http://purl.org/macgirvin/zot' );
  112. define ( 'NAMESPACE_DFRN' , 'http://purl.org/macgirvin/dfrn/1.0' );
  113. define ( 'NAMESPACE_THREAD' , 'http://purl.org/syndication/thread/1.0' );
  114. define ( 'NAMESPACE_TOMB' , 'http://purl.org/atompub/tombstones/1.0' );
  115. define ( 'NAMESPACE_ACTIVITY', 'http://activitystrea.ms/spec/1.0/' );
  116. define ( 'NAMESPACE_ACTIVITY_SCHEMA', 'http://activitystrea.ms/schema/1.0/' );
  117. define ( 'NAMESPACE_MEDIA', 'http://purl.org/syndication/atommedia' );
  118. define ( 'NAMESPACE_SALMON_ME', 'http://salmon-protocol.org/ns/magic-env' );
  119. define ( 'NAMESPACE_OSTATUSSUB', 'http://ostatus.org/schema/1.0/subscribe' );
  120. define ( 'NAMESPACE_GEORSS', 'http://www.georss.org/georss' );
  121. define ( 'NAMESPACE_POCO', 'http://portablecontacts.net/spec/1.0' );
  122. define ( 'NAMESPACE_FEED', 'http://schemas.google.com/g/2010#updates-from' );
  123. define ( 'NAMESPACE_OSTATUS', 'http://ostatus.org/schema/1.0' );
  124. define ( 'NAMESPACE_STATUSNET', 'http://status.net/schema/api/1/' );
  125. define ( 'NAMESPACE_ATOM1', 'http://www.w3.org/2005/Atom' );
  126. /**
  127. * activity stream defines
  128. */
  129. define ( 'ACTIVITY_LIKE', NAMESPACE_ACTIVITY_SCHEMA . 'like' );
  130. define ( 'ACTIVITY_DISLIKE', NAMESPACE_DFRN . '/dislike' );
  131. define ( 'ACTIVITY_OBJ_HEART', NAMESPACE_DFRN . '/heart' );
  132. define ( 'ACTIVITY_FRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'make-friend' );
  133. define ( 'ACTIVITY_REQ_FRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'request-friend' );
  134. define ( 'ACTIVITY_UNFRIEND', NAMESPACE_ACTIVITY_SCHEMA . 'remove-friend' );
  135. define ( 'ACTIVITY_FOLLOW', NAMESPACE_ACTIVITY_SCHEMA . 'follow' );
  136. define ( 'ACTIVITY_UNFOLLOW', NAMESPACE_ACTIVITY_SCHEMA . 'stop-following' );
  137. define ( 'ACTIVITY_POST', NAMESPACE_ACTIVITY_SCHEMA . 'post' );
  138. define ( 'ACTIVITY_UPDATE', NAMESPACE_ACTIVITY_SCHEMA . 'update' );
  139. define ( 'ACTIVITY_TAG', NAMESPACE_ACTIVITY_SCHEMA . 'tag' );
  140. define ( 'ACTIVITY_FAVORITE', NAMESPACE_ACTIVITY_SCHEMA . 'favorite' );
  141. define ( 'ACTIVITY_OBJ_COMMENT', NAMESPACE_ACTIVITY_SCHEMA . 'comment' );
  142. define ( 'ACTIVITY_OBJ_NOTE', NAMESPACE_ACTIVITY_SCHEMA . 'note' );
  143. define ( 'ACTIVITY_OBJ_PERSON', NAMESPACE_ACTIVITY_SCHEMA . 'person' );
  144. define ( 'ACTIVITY_OBJ_PHOTO', NAMESPACE_ACTIVITY_SCHEMA . 'photo' );
  145. define ( 'ACTIVITY_OBJ_P_PHOTO', NAMESPACE_ACTIVITY_SCHEMA . 'profile-photo' );
  146. define ( 'ACTIVITY_OBJ_ALBUM', NAMESPACE_ACTIVITY_SCHEMA . 'photo-album' );
  147. define ( 'ACTIVITY_OBJ_EVENT', NAMESPACE_ACTIVITY_SCHEMA . 'event' );
  148. define ( 'ACTIVITY_OBJ_TAGTERM', NAMESPACE_DFRN . '/tagterm' );
  149. /**
  150. * item weight for query ordering
  151. */
  152. define ( 'GRAVITY_PARENT', 0);
  153. define ( 'GRAVITY_LIKE', 3);
  154. define ( 'GRAVITY_COMMENT', 6);
  155. /**
  156. *
  157. * Reverse the effect of magic_quotes_gpc if it is enabled.
  158. * Please disable magic_quotes_gpc so we don't have to do this.
  159. * See http://php.net/manual/en/security.magicquotes.disabling.php
  160. *
  161. */
  162. function startup() {
  163. error_reporting(E_ERROR | E_WARNING | E_PARSE);
  164. set_time_limit(0);
  165. // This has to be quite large to deal with embedded private photos
  166. ini_set('pcre.backtrack_limit', 500000);
  167. if (get_magic_quotes_gpc()) {
  168. $process = array(&$_GET, &$_POST, &$_COOKIE, &$_REQUEST);
  169. while (list($key, $val) = each($process)) {
  170. foreach ($val as $k => $v) {
  171. unset($process[$key][$k]);
  172. if (is_array($v)) {
  173. $process[$key][stripslashes($k)] = $v;
  174. $process[] = &$process[$key][stripslashes($k)];
  175. } else {
  176. $process[$key][stripslashes($k)] = stripslashes($v);
  177. }
  178. }
  179. }
  180. unset($process);
  181. }
  182. }
  183. /**
  184. *
  185. * class: App
  186. *
  187. * Our main application structure for the life of this page
  188. * Primarily deals with the URL that got us here
  189. * and tries to make some sense of it, and
  190. * stores our page contents and config storage
  191. * and anything else that might need to be passed around
  192. * before we spit the page out.
  193. *
  194. */
  195. if(! class_exists('App')) {
  196. class App {
  197. public $module_loaded = false;
  198. public $query_string;
  199. public $config;
  200. public $page;
  201. public $profile;
  202. public $user;
  203. public $cid;
  204. public $contact;
  205. public $contacts;
  206. public $page_contact;
  207. public $content;
  208. public $data = array();
  209. public $error = false;
  210. public $cmd;
  211. public $argv;
  212. public $argc;
  213. public $module;
  214. public $pager;
  215. public $strings;
  216. public $path;
  217. public $hooks;
  218. public $timezone;
  219. public $interactive = true;
  220. public $plugins;
  221. public $apps = array();
  222. public $identities;
  223. public $nav_sel;
  224. private $scheme;
  225. private $hostname;
  226. private $baseurl;
  227. private $db;
  228. private $curl_code;
  229. private $curl_headers;
  230. function __construct() {
  231. $this->config = array();
  232. $this->page = array();
  233. $this->pager= array();
  234. $this->query_string = '';
  235. startup();
  236. $this->scheme = ((isset($_SERVER['HTTPS']) && ($_SERVER['HTTPS'])) ? 'https' : 'http' );
  237. if(x($_SERVER,'SERVER_NAME')) {
  238. $this->hostname = $_SERVER['SERVER_NAME'];
  239. if(x($_SERVER,'SERVER_PORT') && $_SERVER['SERVER_PORT'] != 80 && $_SERVER['SERVER_PORT'] != 443)
  240. $this->hostname .= ':' . $_SERVER['SERVER_PORT'];
  241. /**
  242. * Figure out if we are running at the top of a domain
  243. * or in a sub-directory and adjust accordingly
  244. */
  245. $path = trim(dirname($_SERVER['SCRIPT_NAME']),'/\\');
  246. if(isset($path) && strlen($path) && ($path != $this->path))
  247. $this->path = $path;
  248. }
  249. set_include_path(
  250. "include/$this->hostname" . PATH_SEPARATOR
  251. . 'include' . PATH_SEPARATOR
  252. . 'library' . PATH_SEPARATOR
  253. . 'library/phpsec' . PATH_SEPARATOR
  254. . '.' );
  255. if((x($_SERVER,'QUERY_STRING')) && substr($_SERVER['QUERY_STRING'],0,2) === "q=") {
  256. $this->query_string = substr($_SERVER['QUERY_STRING'],2);
  257. // removing trailing / - maybe a nginx problem
  258. if (substr($this->query_string, 0, 1) == "/")
  259. $this->query_string = substr($this->query_string, 1);
  260. }
  261. if(x($_GET,'q'))
  262. $this->cmd = trim($_GET['q'],'/\\');
  263. // unix style "homedir"
  264. if(substr($this->cmd,0,1) === '~')
  265. $this->cmd = 'profile/' . substr($this->cmd,1);
  266. // Diaspora style profile url
  267. if(substr($this->cmd,0,2) === 'u/')
  268. $this->cmd = 'profile/' . substr($this->cmd,2);
  269. /**
  270. *
  271. * Break the URL path into C style argc/argv style arguments for our
  272. * modules. Given "http://example.com/module/arg1/arg2", $this->argc
  273. * will be 3 (integer) and $this->argv will contain:
  274. * [0] => 'module'
  275. * [1] => 'arg1'
  276. * [2] => 'arg2'
  277. *
  278. *
  279. * There will always be one argument. If provided a naked domain
  280. * URL, $this->argv[0] is set to "home".
  281. *
  282. */
  283. $this->argv = explode('/',$this->cmd);
  284. $this->argc = count($this->argv);
  285. if((array_key_exists('0',$this->argv)) && strlen($this->argv[0])) {
  286. $this->module = str_replace(".", "_", $this->argv[0]);
  287. }
  288. else {
  289. $this->argc = 1;
  290. $this->argv = array('home');
  291. $this->module = 'home';
  292. }
  293. /**
  294. * Special handling for the webfinger/lrdd host XRD file
  295. */
  296. if($this->cmd === '.well-known/host-meta') {
  297. $this->argc = 1;
  298. $this->argv = array('hostxrd');
  299. $this->module = 'hostxrd';
  300. }
  301. /**
  302. * See if there is any page number information, and initialise
  303. * pagination
  304. */
  305. $this->pager['page'] = ((x($_GET,'page')) ? $_GET['page'] : 1);
  306. $this->pager['itemspage'] = 50;
  307. $this->pager['start'] = ($this->pager['page'] * $this->pager['itemspage']) - $this->pager['itemspage'];
  308. $this->pager['total'] = 0;
  309. }
  310. function get_baseurl($ssl = false) {
  311. $scheme = $this->scheme;
  312. if((x($this->config,'system')) && (x($this->config['system'],'ssl_policy'))) {
  313. if($this->config['system']['ssl_policy'] == SSL_POLICY_FULL)
  314. $scheme = 'https';
  315. // We need to populate the $ssl flag across the entire program before turning this on.
  316. // Basically, we'll have $ssl = true on any links which can only be seen by a logged in user
  317. // (and also the login link). Anything seen by an outsider will have it turned off.
  318. // At present, setting SSL_POLICY_SELFSIGN will only force remote contacts to update their
  319. // contact links to this site with "http:" if they are currently using "https:"
  320. // if($this->config['system']['ssl_policy'] == SSL_POLICY_SELFSIGN) {
  321. // if($ssl)
  322. // $scheme = 'https';
  323. // else
  324. // $scheme = 'http';
  325. // }
  326. }
  327. $this->baseurl = $scheme . "://" . $this->hostname . ((isset($this->path) && strlen($this->path)) ? '/' . $this->path : '' );
  328. return $this->baseurl;
  329. }
  330. function set_baseurl($url) {
  331. $parsed = @parse_url($url);
  332. $this->baseurl = $url;
  333. if($parsed) {
  334. $this->scheme = $parsed['scheme'];
  335. $this->hostname = $parsed['host'];
  336. if(x($parsed,'port'))
  337. $this->hostname .= ':' . $parsed['port'];
  338. if(x($parsed,'path'))
  339. $this->path = trim($parsed['path'],'\\/');
  340. }
  341. }
  342. function get_hostname() {
  343. return $this->hostname;
  344. }
  345. function set_hostname($h) {
  346. $this->hostname = $h;
  347. }
  348. function set_path($p) {
  349. $this->path = trim(trim($p),'/');
  350. }
  351. function get_path() {
  352. return $this->path;
  353. }
  354. function set_pager_total($n) {
  355. $this->pager['total'] = intval($n);
  356. }
  357. function set_pager_itemspage($n) {
  358. $this->pager['itemspage'] = intval($n);
  359. $this->pager['start'] = ($this->pager['page'] * $this->pager['itemspage']) - $this->pager['itemspage'];
  360. }
  361. function init_pagehead() {
  362. $interval = ((local_user()) ? get_pconfig(local_user(),'system','update_interval') : 40000);
  363. if($interval < 10000)
  364. $interval = 40000;
  365. $this->page['title'] = $this->config['sitename'];
  366. $tpl = file_get_contents('view/head.tpl');
  367. $this->page['htmlhead'] = replace_macros($tpl,array(
  368. '$baseurl' => $this->get_baseurl(), // FIXME for z_path!!!!
  369. '$generator' => 'Friendica' . ' ' . FRIENDICA_VERSION,
  370. '$delitem' => t('Delete this item?'),
  371. '$comment' => t('Comment'),
  372. '$showmore' => t('show more'),
  373. '$showfewer' => t('show fewer'),
  374. '$update_interval' => $interval
  375. ));
  376. }
  377. function set_curl_code($code) {
  378. $this->curl_code = $code;
  379. }
  380. function get_curl_code() {
  381. return $this->curl_code;
  382. }
  383. function set_curl_headers($headers) {
  384. $this->curl_headers = $headers;
  385. }
  386. function get_curl_headers() {
  387. return $this->curl_headers;
  388. }
  389. }}
  390. // retrieve the App structure
  391. // useful in functions which require it but don't get it passed to them
  392. if(! function_exists('get_app')) {
  393. function get_app() {
  394. global $a;
  395. return $a;
  396. }};
  397. // Multi-purpose function to check variable state.
  398. // Usage: x($var) or $x($array,'key')
  399. // returns false if variable/key is not set
  400. // if variable is set, returns 1 if has 'non-zero' value, otherwise returns 0.
  401. // e.g. x('') or x(0) returns 0;
  402. if(! function_exists('x')) {
  403. function x($s,$k = NULL) {
  404. if($k != NULL) {
  405. if((is_array($s)) && (array_key_exists($k,$s))) {
  406. if($s[$k])
  407. return (int) 1;
  408. return (int) 0;
  409. }
  410. return false;
  411. }
  412. else {
  413. if(isset($s)) {
  414. if($s) {
  415. return (int) 1;
  416. }
  417. return (int) 0;
  418. }
  419. return false;
  420. }
  421. }}
  422. // called from db initialisation if db is dead.
  423. if(! function_exists('system_unavailable')) {
  424. function system_unavailable() {
  425. include('system_unavailable.php');
  426. system_down();
  427. killme();
  428. }}
  429. function clean_urls() {
  430. global $a;
  431. // if($a->config['system']['clean_urls'])
  432. return true;
  433. // return false;
  434. }
  435. function z_path() {
  436. global $a;
  437. $base = $a->get_baseurl();
  438. if(! clean_urls())
  439. $base .= '/?q=';
  440. return $base;
  441. }
  442. function z_root() {
  443. global $a;
  444. return $a->get_baseurl();
  445. }
  446. function absurl($path) {
  447. if(strpos($path,'/') === 0)
  448. return z_path() . $path;
  449. return $path;
  450. }
  451. // Primarily involved with database upgrade, but also sets the
  452. // base url for use in cmdline programs which don't have
  453. // $_SERVER variables, and synchronising the state of installed plugins.
  454. if(! function_exists('check_config')) {
  455. function check_config(&$a) {
  456. $build = get_config('system','build');
  457. if(! x($build))
  458. $build = set_config('system','build',DB_UPDATE_VERSION);
  459. $url = get_config('system','url');
  460. // if the url isn't set or the stored url is radically different
  461. // than the currently visited url, store the current value accordingly.
  462. // "Radically different" ignores common variations such as http vs https
  463. // and www.example.com vs example.com.
  464. if((! x($url)) || (! link_compare($url,$a->get_baseurl())))
  465. $url = set_config('system','url',$a->get_baseurl());
  466. if($build != DB_UPDATE_VERSION) {
  467. $stored = intval($build);
  468. $current = intval(DB_UPDATE_VERSION);
  469. if(($stored < $current) && file_exists('update.php')) {
  470. load_config('database');
  471. // We're reporting a different version than what is currently installed.
  472. // Run any existing update scripts to bring the database up to current.
  473. require_once('update.php');
  474. // make sure that boot.php and update.php are the same release, we might be
  475. // updating right this very second and the correct version of the update.php
  476. // file may not be here yet. This can happen on a very busy site.
  477. if(DB_UPDATE_VERSION == UPDATE_VERSION) {
  478. for($x = $stored; $x < $current; $x ++) {
  479. if(function_exists('update_' . $x)) {
  480. // There could be a lot of processes running or about to run.
  481. // We want exactly one process to run the update command.
  482. // So store the fact that we're taking responsibility
  483. // after first checking to see if somebody else already has.
  484. // If the update fails or times-out completely you may need to
  485. // delete the config entry to try again.
  486. if(get_config('database','update_' . $x))
  487. break;
  488. set_config('database','update_' . $x, '1');
  489. // call the specific update
  490. $func = 'update_' . $x;
  491. $func($a);
  492. }
  493. }
  494. set_config('system','build', DB_UPDATE_VERSION);
  495. }
  496. }
  497. }
  498. /**
  499. *
  500. * Synchronise plugins:
  501. *
  502. * $a->config['system']['addon'] contains a comma-separated list of names
  503. * of plugins/addons which are used on this system.
  504. * Go through the database list of already installed addons, and if we have
  505. * an entry, but it isn't in the config list, call the uninstall procedure
  506. * and mark it uninstalled in the database (for now we'll remove it).
  507. * Then go through the config list and if we have a plugin that isn't installed,
  508. * call the install procedure and add it to the database.
  509. *
  510. */
  511. $r = q("SELECT * FROM `addon` WHERE `installed` = 1");
  512. if(count($r))
  513. $installed = $r;
  514. else
  515. $installed = array();
  516. $plugins = get_config('system','addon');
  517. $plugins_arr = array();
  518. if($plugins)
  519. $plugins_arr = explode(',',str_replace(' ', '',$plugins));
  520. $a->plugins = $plugins_arr;
  521. $installed_arr = array();
  522. if(count($installed)) {
  523. foreach($installed as $i) {
  524. if(! in_array($i['name'],$plugins_arr)) {
  525. uninstall_plugin($i['name']);
  526. }
  527. else
  528. $installed_arr[] = $i['name'];
  529. }
  530. }
  531. if(count($plugins_arr)) {
  532. foreach($plugins_arr as $p) {
  533. if(! in_array($p,$installed_arr)) {
  534. install_plugin($p);
  535. }
  536. }
  537. }
  538. load_hooks();
  539. return;
  540. }}
  541. function get_guid($size=16) {
  542. $exists = true; // assume by default that we don't have a unique guid
  543. do {
  544. $s = random_string($size);
  545. $r = q("select id from guid where guid = '%s' limit 1", dbesc($s));
  546. if(! count($r))
  547. $exists = false;
  548. } while($exists);
  549. q("insert into guid ( guid ) values ( '%s' ) ", dbesc($s));
  550. return $s;
  551. }
  552. // wrapper for adding a login box. If $register == true provide a registration
  553. // link. This will most always depend on the value of $a->config['register_policy'].
  554. // returns the complete html for inserting into the page
  555. if(! function_exists('login')) {
  556. function login($register = false, $hiddens=false) {
  557. $o = "";
  558. $reg = false;
  559. if ($register) {
  560. $reg = array(
  561. 'title' => t('Create a New Account'),
  562. 'desc' => t('Register')
  563. );
  564. }
  565. $noid = get_config('system','no_openid');
  566. if(local_user()) {
  567. $tpl = get_markup_template("logout.tpl");
  568. }
  569. else {
  570. $tpl = get_markup_template("login.tpl");
  571. }
  572. $o .= replace_macros($tpl,array(
  573. '$logout' => t('Logout'),
  574. '$login' => t('Login'),
  575. '$lname' => array('username', t('Nickname or Email address: ') , '', ''),
  576. '$lpassword' => array('password', t('Password: '), '', ''),
  577. '$openid' => !$noid,
  578. '$lopenid' => array('openid_url', t('Or login using OpenID: '),'',''),
  579. '$hiddens' => $hiddens,
  580. '$register' => $reg,
  581. '$lostpass' => t('Forgot your password?'),
  582. '$lostlink' => t('Password Reset'),
  583. ));
  584. call_hooks('login_hook',$o);
  585. return $o;
  586. }}
  587. // Used to end the current process, after saving session state.
  588. if(! function_exists('killme')) {
  589. function killme() {
  590. session_write_close();
  591. exit;
  592. }}
  593. // redirect to another URL and terminate this process.
  594. if(! function_exists('goaway')) {
  595. function goaway($s) {
  596. header("Location: $s");
  597. killme();
  598. }}
  599. // Returns the uid of locally logged in user or false.
  600. if(! function_exists('local_user')) {
  601. function local_user() {
  602. if((x($_SESSION,'authenticated')) && (x($_SESSION,'uid')))
  603. return intval($_SESSION['uid']);
  604. return false;
  605. }}
  606. // Returns contact id of authenticated site visitor or false
  607. if(! function_exists('remote_user')) {
  608. function remote_user() {
  609. if((x($_SESSION,'authenticated')) && (x($_SESSION,'visitor_id')))
  610. return intval($_SESSION['visitor_id']);
  611. return false;
  612. }}
  613. // contents of $s are displayed prominently on the page the next time
  614. // a page is loaded. Usually used for errors or alerts.
  615. if(! function_exists('notice')) {
  616. function notice($s) {
  617. $a = get_app();
  618. if(! x($_SESSION,'sysmsg')) $_SESSION['sysmsg'] = array();
  619. if($a->interactive)
  620. $_SESSION['sysmsg'][] = $s;
  621. }}
  622. if(! function_exists('info')) {
  623. function info($s) {
  624. $a = get_app();
  625. if(! x($_SESSION,'sysmsg_info')) $_SESSION['sysmsg_info'] = array();
  626. if($a->interactive)
  627. $_SESSION['sysmsg_info'][] = $s;
  628. }}
  629. // wrapper around config to limit the text length of an incoming message
  630. if(! function_exists('get_max_import_size')) {
  631. function get_max_import_size() {
  632. global $a;
  633. return ((x($a->config,'max_import_size')) ? $a->config['max_import_size'] : 0 );
  634. }}
  635. /**
  636. *
  637. * Function : profile_load
  638. * @parameter App $a
  639. * @parameter string $nickname
  640. * @parameter int $profile
  641. *
  642. * Summary: Loads a profile into the page sidebar.
  643. * The function requires a writeable copy of the main App structure, and the nickname
  644. * of a registered local account.
  645. *
  646. * If the viewer is an authenticated remote viewer, the profile displayed is the
  647. * one that has been configured for his/her viewing in the Contact manager.
  648. * Passing a non-zero profile ID can also allow a preview of a selected profile
  649. * by the owner.
  650. *
  651. * Profile information is placed in the App structure for later retrieval.
  652. * Honours the owner's chosen theme for display.
  653. *
  654. */
  655. if(! function_exists('profile_load')) {
  656. function profile_load(&$a, $nickname, $profile = 0) {
  657. if(remote_user()) {
  658. $r = q("SELECT `profile-id` FROM `contact` WHERE `id` = %d LIMIT 1",
  659. intval($_SESSION['visitor_id']));
  660. if(count($r))
  661. $profile = $r[0]['profile-id'];
  662. }
  663. $r = null;
  664. if($profile) {
  665. $profile_int = intval($profile);
  666. $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
  667. left join `contact` on `contact`.`uid` = `profile`.`uid` LEFT JOIN `user` ON `profile`.`uid` = `user`.`uid`
  668. WHERE `user`.`nickname` = '%s' AND `profile`.`id` = %d and `contact`.`self` = 1 LIMIT 1",
  669. dbesc($nickname),
  670. intval($profile_int)
  671. );
  672. }
  673. if((! $r) && (! count($r))) {
  674. $r = q("SELECT `profile`.`uid` AS `profile_uid`, `profile`.* , `contact`.`avatar-date` AS picdate, `user`.* FROM `profile`
  675. left join `contact` on `contact`.`uid` = `profile`.`uid` LEFT JOIN `user` ON `profile`.`uid` = `user`.`uid`
  676. WHERE `user`.`nickname` = '%s' AND `profile`.`is-default` = 1 and `contact`.`self` = 1 LIMIT 1",
  677. dbesc($nickname)
  678. );
  679. }
  680. if(($r === false) || (! count($r))) {
  681. notice( t('Requested profile is not available.') . EOL );
  682. $a->error = 404;
  683. return;
  684. }
  685. // fetch user tags if this isn't the default profile
  686. if(! $r[0]['is-default']) {
  687. $x = q("select `pub_keywords` from `profile` where uid = %d and `is-default` = 1 limit 1",
  688. intval($profile_uid)
  689. );
  690. if($x && count($x))
  691. $r[0]['pub_keywords'] = $x[0]['pub_keywords'];
  692. }
  693. $a->profile = $r[0];
  694. $a->page['title'] = $a->profile['name'] . " @ " . $a->config['sitename'];
  695. $_SESSION['theme'] = $a->profile['theme'];
  696. /**
  697. * load/reload current theme info
  698. */
  699. $theme_info_file = "view/theme/".current_theme()."/theme.php";
  700. if (file_exists($theme_info_file)){
  701. require_once($theme_info_file);
  702. }
  703. if(! (x($a->page,'aside')))
  704. $a->page['aside'] = '';
  705. if(local_user() && local_user() == $a->profile['uid']) {
  706. $a->page['aside'] .= replace_macros(get_markup_template('profile_edlink.tpl'),array(
  707. '$editprofile' => t('Edit profile'),
  708. '$profid' => $a->profile['id']
  709. ));
  710. }
  711. $block = (((get_config('system','block_public')) && (! local_user()) && (! remote_user())) ? true : false);
  712. $a->page['aside'] .= profile_sidebar($a->profile, $block);
  713. /*if(! $block)
  714. $a->page['aside'] .= contact_block();*/
  715. return;
  716. }}
  717. /**
  718. *
  719. * Function: profile_sidebar
  720. *
  721. * Formats a profile for display in the sidebar.
  722. * It is very difficult to templatise the HTML completely
  723. * because of all the conditional logic.
  724. *
  725. * @parameter: array $profile
  726. *
  727. * Returns HTML string stuitable for sidebar inclusion
  728. * Exceptions: Returns empty string if passed $profile is wrong type or not populated
  729. *
  730. */
  731. if(! function_exists('profile_sidebar')) {
  732. function profile_sidebar($profile, $block = 0) {
  733. $a = get_app();
  734. $o = '';
  735. $location = false;
  736. $address = false;
  737. $pdesc = true;
  738. if((! is_array($profile)) && (! count($profile)))
  739. return $o;
  740. $profile['picdate'] = urlencode($profile['picdate']);
  741. call_hooks('profile_sidebar_enter', $profile);
  742. // don't show connect link to yourself
  743. $connect = (($profile['uid'] != local_user()) ? t('Connect') : False);
  744. // don't show connect link to authenticated visitors either
  745. if((remote_user()) && ($_SESSION['visitor_visiting'] == $profile['uid']))
  746. $connect = False;
  747. // show edit profile to yourself
  748. if ($profile['uid'] == local_user()) {
  749. $profile['edit'] = array($a->get_baseurl(). '/profiles', t('Profiles'),"", t('Manage/edit profiles'));
  750. $r = q("SELECT * FROM `profile` WHERE `uid` = %d",
  751. local_user());
  752. $profile['menu'] = array(
  753. 'chg_photo' => t('Change profile photo'),
  754. 'cr_new' => t('Create New Profile'),
  755. 'entries' => array(),
  756. );
  757. if(count($r)) {
  758. foreach($r as $rr) {
  759. $profile['menu']['entries'][] = array(
  760. 'photo' => $rr['thumb'],
  761. 'id' => $rr['id'],
  762. 'alt' => t('Profile Image'),
  763. 'profile_name' => $rr['profile-name'],
  764. 'isdefault' => $rr['is-default'],
  765. 'visibile_to_everybody' => t('visible to everybody'),
  766. 'edit_visibility' => t('Edit visibility'),
  767. );
  768. }
  769. }
  770. }
  771. if((x($profile,'address') == 1)
  772. || (x($profile,'locality') == 1)
  773. || (x($profile,'region') == 1)
  774. || (x($profile,'postal-code') == 1)
  775. || (x($profile,'country-name') == 1))
  776. $location = t('Location:');
  777. $gender = ((x($profile,'gender') == 1) ? t('Gender:') : False);
  778. $marital = ((x($profile,'marital') == 1) ? t('Status:') : False);
  779. $homepage = ((x($profile,'homepage') == 1) ? t('Homepage:') : False);
  780. if(($profile['hidewall'] || $block) && (! local_user()) && (! remote_user())) {
  781. $location = $pdesc = $gender = $marital = $homepage = False;
  782. }
  783. $firstname = ((strpos($profile['name'],' '))
  784. ? trim(substr($profile['name'],0,strpos($profile['name'],' '))) : $profile['name']);
  785. $lastname = (($firstname === $profile['name']) ? '' : trim(substr($profile['name'],strlen($firstname))));
  786. $diaspora = array(
  787. 'podloc' => $a->get_baseurl(),
  788. 'searchable' => (($profile['publish'] && $profile['net-publish']) ? 'true' : 'false' ),
  789. 'nickname' => $profile['nickname'],
  790. 'fullname' => $profile['name'],
  791. 'firstname' => $firstname,
  792. 'lastname' => $lastname,
  793. 'photo300' => $a->get_baseurl() . '/photo/custom/300/' . $profile['uid'] . '.jpg',
  794. 'photo100' => $a->get_baseurl() . '/photo/custom/100/' . $profile['uid'] . '.jpg',
  795. 'photo50' => $a->get_baseurl() . '/photo/custom/50/' . $profile['uid'] . '.jpg',
  796. );
  797. if (!$block){
  798. $contact_block = contact_block();
  799. }
  800. $tpl = get_markup_template('profile_vcard.tpl');
  801. $o .= replace_macros($tpl, array(
  802. '$profile' => $profile,
  803. '$connect' => $connect,
  804. '$location' => template_escape($location),
  805. '$gender' => $gender,
  806. '$pdesc' => $pdesc,
  807. '$marital' => $marital,
  808. '$homepage' => $homepage,
  809. '$diaspora' => $diaspora,
  810. '$contact_block' => $contact_block,
  811. ));
  812. $arr = array('profile' => &$profile, 'entry' => &$o);
  813. call_hooks('profile_sidebar', $arr);
  814. return $o;
  815. }}
  816. if(! function_exists('get_birthdays')) {
  817. function get_birthdays() {
  818. $a = get_app();
  819. $o = '';
  820. if(! local_user())
  821. return $o;
  822. $bd_format = t('g A l F d') ; // 8 AM Friday January 18
  823. $bd_short = t('F d');
  824. $r = q("SELECT `event`.*, `event`.`id` AS `eid`, `contact`.* FROM `event`
  825. LEFT JOIN `contact` ON `contact`.`id` = `event`.`cid`
  826. WHERE `event`.`uid` = %d AND `type` = 'birthday' AND `start` < '%s' AND `finish` > '%s'
  827. ORDER BY `start` ASC ",
  828. intval(local_user()),
  829. dbesc(datetime_convert('UTC','UTC','now + 6 days')),
  830. dbesc(datetime_convert('UTC','UTC','now'))
  831. );
  832. if($r && count($r)) {
  833. $total = 0;
  834. $now = strtotime('now');
  835. $cids = array();
  836. $istoday = false;
  837. foreach($r as $rr) {
  838. if(strlen($rr['name']))
  839. $total ++;
  840. if((strtotime($rr['start'] . ' +00:00') < $now) && (strtotime($rr['finish'] . ' +00:00') > $now))
  841. $istoday = true;
  842. }
  843. $classtoday = $istoday ? ' birthday-today ' : '';
  844. if($total) {
  845. $o .= '<div id="birthday-notice" class="birthday-notice fakelink' . $classtoday . '" onclick=openClose(\'birthday-wrapper\'); >' . t('Birthday Reminders') . ' ' . '(' . $total . ')' . '</div>';
  846. $o .= '<div id="birthday-wrapper" style="display: none;" ><div id="birthday-title">' . t('Birthdays this week:') . '</div>';
  847. $o .= '<div id="birthday-title-end"></div>';
  848. foreach($r as $rr) {
  849. if(! strlen($rr['name']))
  850. continue;
  851. // avoid duplicates
  852. if(in_array($rr['cid'],$cids))
  853. continue;
  854. $cids[] = $rr['cid'];
  855. $today = (((strtotime($rr['start'] . ' +00:00') < $now) && (strtotime($rr['finish'] . ' +00:00') > $now)) ? true : false);
  856. $sparkle = '';
  857. $url = $rr['url'];
  858. if($rr['network'] === NETWORK_DFRN) {
  859. $sparkle = " sparkle";
  860. $url = $a->get_baseurl() . '/redir/' . $rr['cid'];
  861. }
  862. $o .= '<div class="birthday-list" id="birthday-' . $rr['eid'] . '"><a class="birthday-link$sparkle" target="redir" href="'
  863. . $url . '">' . $rr['name'] . '</a> '
  864. . day_translate(datetime_convert('UTC', $a->timezone, $rr['start'], $rr['adjust'] ? $bd_format : $bd_short)) . (($today) ? ' ' . t('[today]') : '')
  865. . '</div>' ;
  866. }
  867. $o .= '</div></div>';
  868. }
  869. }
  870. return $o;
  871. }}
  872. if(! function_exists('get_events')) {
  873. function get_events() {
  874. require_once('include/bbcode.php');
  875. $a = get_app();
  876. $o = '';
  877. if(! local_user())
  878. return $o;
  879. $bd_format = t('g A l F d') ; // 8 AM Friday January 18
  880. $bd_short = t('F d');
  881. $r = q("SELECT `event`.* FROM `event`
  882. WHERE `event`.`uid` = %d AND `type` != 'birthday' AND `start` < '%s' AND `start` > '%s'
  883. ORDER BY `start` ASC ",
  884. intval(local_user()),
  885. dbesc(datetime_convert('UTC','UTC','now + 6 days')),
  886. dbesc(datetime_convert('UTC','UTC','now - 1 days'))
  887. );
  888. if($r && count($r)) {
  889. $now = strtotime('now');
  890. $istoday = false;
  891. foreach($r as $rr) {
  892. if(strlen($rr['name']))
  893. $total ++;
  894. $strt = datetime_convert('UTC',$rr['convert'] ? $a->timezone : 'UTC',$rr['start'],'Y-m-d');
  895. if($strt === datetime_convert('UTC',$a->timezone,'now','Y-m-d'))
  896. $istoday = true;
  897. }
  898. $classtoday = (($istoday) ? ' event-today ' : '');
  899. $o .= '<div id="event-notice" class="birthday-notice fakelink' . $classtoday . '" onclick=openClose(\'event-wrapper\'); >' . t('Event Reminders') . ' ' . '(' . count($r) . ')' . '</div>';
  900. $o .= '<div id="event-wrapper" style="display: none;" ><div id="event-title">' . t('Events this week:') . '</div>';
  901. $o .= '<div id="event-title-end"></div>';
  902. foreach($r as $rr) {
  903. if($rr['adjust'])
  904. $md = datetime_convert('UTC',$a->timezone,$rr['start'],'Y/m\#\l\i\n\k\-j');
  905. else
  906. $md = datetime_convert('UTC','UTC',$rr['start'],'Y/m\#\l\i\n\k\-j');
  907. $title = substr(strip_tags(bbcode($rr['desc'])),0,32) . '... ';
  908. if(! $title)
  909. $title = t('[No description]');
  910. $strt = datetime_convert('UTC',$rr['convert'] ? $a->timezone : 'UTC',$rr['start']);
  911. $today = ((substr($strt,0,10) === datetime_convert('UTC',$a->timezone,'now','Y-m-d')) ? true : false);
  912. $o .= '<div class="event-list" id="event-' . $rr['eid'] . '"></a> <a href="events/' . $md . '">' . $title . '</a>'
  913. . day_translate(datetime_convert('UTC', $rr['adjust'] ? $a->timezone : 'UTC', $rr['start'], $bd_format)) . (($today) ? ' ' . t('[today]') : '')
  914. . '</div>' ;
  915. }
  916. $o .= '</div></div>';
  917. }
  918. return $o;
  919. }}
  920. /**
  921. *
  922. * Wrap calls to proc_close(proc_open()) and call hook
  923. * so plugins can take part in process :)
  924. *
  925. * args:
  926. * $cmd program to run
  927. * next args are passed as $cmd command line
  928. *
  929. * e.g.: proc_run("ls","-la","/tmp");
  930. *
  931. * $cmd and string args are surrounded with ""
  932. */
  933. if(! function_exists('proc_run')) {
  934. function proc_run($cmd){
  935. $a = get_app();
  936. $args = func_get_args();
  937. $arr = array('args' => $args, 'run_cmd' => true);
  938. call_hooks("proc_run", $arr);
  939. if(! $arr['run_cmd'])
  940. return;
  941. if(count($args) && $args[0] === 'php')
  942. $args[0] = ((x($a->config,'php_path')) && (strlen($a->config['php_path'])) ? $a->config['php_path'] : 'php');
  943. foreach ($args as $arg){
  944. $arg = escapeshellarg($arg);
  945. }
  946. $cmdline = implode($args," ");
  947. proc_close(proc_open($cmdline." &",array(),$foo));
  948. }}
  949. if(! function_exists('current_theme')) {
  950. function current_theme(){
  951. $app_base_themes = array('duepuntozero', 'loozah');
  952. $a = get_app();
  953. $system_theme = ((isset($a->config['system']['theme'])) ? $a->config['system']['theme'] : '');
  954. $theme_name = ((isset($_SESSION) && x($_SESSION,'theme')) ? $_SESSION['theme'] : $system_theme);
  955. if($theme_name && file_exists('view/theme/' . $theme_name . '/style.css'))
  956. return($theme_name);
  957. foreach($app_base_themes as $t) {
  958. if(file_exists('view/theme/' . $t . '/style.css'))
  959. return($t);
  960. }
  961. $fallback = glob('view/theme/*/style.css');
  962. if(count($fallback))
  963. return (str_replace('view/theme/','', str_replace("/style.css","",$fallback[0])));
  964. }}
  965. /*
  966. * Return full URL to theme which is currently in effect.
  967. * Provide a sane default if nothing is chosen or the specified theme does not exist.
  968. */
  969. if(! function_exists('current_theme_url')) {
  970. function current_theme_url() {
  971. global $a;
  972. $t = current_theme();
  973. return($a->get_baseurl() . '/view/theme/' . $t . '/style.css');
  974. }}
  975. if(! function_exists('feed_birthday')) {
  976. function feed_birthday($uid,$tz) {
  977. /**
  978. *
  979. * Determine the next birthday, but only if the birthday is published
  980. * in the default profile. We _could_ also look for a private profile that the
  981. * recipient can see, but somebody could get mad at us if they start getting
  982. * public birthday greetings when they haven't made this info public.
  983. *
  984. * Assuming we are able to publish this info, we are then going to convert
  985. * the start time from the owner's timezone to UTC.
  986. *
  987. * This will potentially solve the problem found with some social networks
  988. * where birthdays are converted to the viewer's timezone and salutations from
  989. * elsewhere in the world show up on the wrong day. We will convert it to the
  990. * viewer's timezone also, but first we are going to convert it from the birthday
  991. * person's timezone to GMT - so the viewer may find the birthday starting at
  992. * 6:00PM the day before, but that will correspond to midnight to the birthday person.
  993. *
  994. */
  995. $birthday = '';
  996. $p = q("SELECT `dob` FROM `profile` WHERE `is-default` = 1 AND `uid` = %d LIMIT 1",
  997. intval($uid)
  998. );
  999. if($p && count($p)) {
  1000. $tmp_dob = substr($p[0]['dob'],5);
  1001. if(intval($tmp_dob)) {
  1002. $y = datetime_convert($tz,$tz,'now','Y');
  1003. $bd = $y . '-' . $tmp_dob . ' 00:00';
  1004. $t_dob = strtotime($bd);
  1005. $now = strtotime(datetime_convert($tz,$tz,'now'));
  1006. if($t_dob < $now)
  1007. $bd = $y + 1 . '-' . $tmp_dob . ' 00:00';
  1008. $birthday = datetime_convert($tz,'UTC',$bd,ATOM_TIME);
  1009. }
  1010. }
  1011. return $birthday;
  1012. }}
  1013. if(! function_exists('is_site_admin')) {
  1014. function is_site_admin() {
  1015. $a = get_app();
  1016. if(local_user() && x($a->user,'email') && x($a->config,'admin_email') && ($a->user['email'] === $a->config['admin_email']))
  1017. return true;
  1018. return false;
  1019. }}
  1020. if(! function_exists('load_contact_links')) {
  1021. function load_contact_links($uid) {
  1022. $a = get_app();
  1023. $ret = array();
  1024. if(! $uid || x($a->contacts,'empty'))
  1025. return;
  1026. $r = q("SELECT `id`,`network`,`url`,`thumb` FROM `contact` WHERE `uid` = %d AND `self` = 0 AND `blocked` = 0 ",
  1027. intval($uid)
  1028. );
  1029. if(count($r)) {
  1030. foreach($r as $rr){
  1031. $url = normalise_link($rr['url']);
  1032. $ret[$url] = $rr;
  1033. }
  1034. }
  1035. else
  1036. $ret['empty'] = true;
  1037. $a->contacts = $ret;
  1038. return;
  1039. }}
  1040. if(! function_exists('profile_tabs')){
  1041. function profile_tabs($a, $is_owner=False, $nickname=Null){
  1042. //echo "<pre>"; var_dump($a->user); killme();
  1043. if (is_null($nickname))
  1044. $nickname = $a->user['nickname'];
  1045. if(x($_GET,'tab'))
  1046. $tab = notags(trim($_GET['tab']));
  1047. $url = $a->get_baseurl() . '/profile/' . $nickname;
  1048. $tabs = array(
  1049. array(
  1050. 'label'=>t('Status'),
  1051. 'url' => $url,
  1052. 'sel' => ((!isset($tab)&&$a->argv[0]=='profile')?'active':''),
  1053. ),
  1054. array(
  1055. 'label' => t('Profile'),
  1056. 'url' => $url.'/?tab=profile',
  1057. 'sel' => ((isset($tab) && $tab=='profile')?'active':''),
  1058. ),
  1059. array(
  1060. 'label' => t('Photos'),
  1061. 'url' => $a->get_baseurl() . '/photos/' . $nickname,
  1062. 'sel' => ((!isset($tab)&&$a->argv[0]=='photos')?'active':''),
  1063. ),
  1064. );
  1065. if ($is_owner){
  1066. $tabs[] = array(
  1067. 'label' => t('Events'),
  1068. 'url' => $a->get_baseurl() . '/events',
  1069. 'sel' =>((!isset($tab)&&$a->argv[0]=='events')?'active':''),
  1070. );
  1071. $tabs[] = array(
  1072. 'label' => t('Personal Notes'),
  1073. 'url' => $a->get_baseurl() . '/notes',
  1074. 'sel' =>((!isset($tab)&&$a->argv[0]=='notes')?'active':''),
  1075. );
  1076. }
  1077. $tpl = get_markup_template('common_tabs.tpl');
  1078. return replace_macros($tpl,array('$tabs'=>$tabs));
  1079. }}