2011-03-19 11:54:12 +00:00
< ? php
2006-12-02 04:36:16 +00:00
/*
2009-01-03 22:32:54 +00:00
* e107 website system
*
2016-12-24 16:54:31 +00:00
* Copyright ( C ) 2008 - 2016 e107 Inc ( e107 . org )
2009-01-03 22:32:54 +00:00
* Released under the terms and conditions of the
* GNU General Public License ( http :// www . gnu . org / licenses / gpl . txt )
*
* Text processing and parsing functions
*
2006-12-02 04:36:16 +00:00
*/
2010-01-24 12:05:53 +00:00
2009-10-30 19:57:28 +00:00
if ( ! defined ( 'e107_INIT' )) { exit (); }
2006-12-02 04:36:16 +00:00
2009-10-30 19:57:28 +00:00
// Directory for the hard-coded utf-8 handling routines
define ( 'E_UTF8_PACK' , e_HANDLER . 'utf8/' );
define ( " E_NL " , chr ( 2 ));
2008-11-13 20:41:20 +00:00
2013-03-01 18:17:03 -08:00
class e_parse extends e_parser
2006-12-02 04:36:16 +00:00
{
2009-10-30 23:31:08 +00:00
/**
* Determine how to handle utf - 8.
* 0 = 'do nothing'
* 1 = 'use mb_string'
* 2 = emulation
2010-01-12 13:11:48 +00:00
*
2009-10-30 23:31:08 +00:00
* @ var integer
*/
protected $utfAction ;
2009-10-30 19:57:28 +00:00
2009-07-23 15:29:07 +00:00
// Shortcode processor - see __get()
2009-10-30 19:57:28 +00:00
//var $e_sc;
// BBCode processor
var $e_bb ;
// Profanity filter
var $e_pf ;
// Emote filter
var $e_emote ;
// 'Hooked' parsers (array)
var $e_hook ;
2010-01-02 21:42:51 +00:00
var $search = array ( '&#039;' , ''' , ''' , '"' , 'onerror' , '>' , '&quot;' , ' & ' );
2009-10-30 19:57:28 +00:00
2010-01-02 21:42:51 +00:00
var $replace = array ( " ' " , " ' " , " ' " , '"' , 'one<i></i>rror' , '>' , '"' , ' & ' );
2007-01-20 16:19:43 +00:00
2009-10-30 19:57:28 +00:00
// Set to TRUE or FALSE once it has been calculated
var $e_highlighting ;
// Highlight query
var $e_query ;
2013-03-08 20:16:49 -08:00
public $thumbWidth = 100 ;
2013-03-24 03:03:31 -07:00
public $thumbHeight = 0 ;
2014-01-29 11:10:05 -08:00
public $thumbCrop = 0 ;
2009-10-30 19:57:28 +00:00
2016-02-09 22:53:03 -08:00
private $thumbEncode = 0 ;
2009-10-30 19:57:28 +00:00
// Set up the defaults
2009-01-03 22:32:54 +00:00
var $e_optDefault = array (
2009-10-30 19:57:28 +00:00
// default context: reflects legacy settings (many items enabled)
'context' => 'OLDDEFAULT' ,
//
2008-06-14 21:01:04 +00:00
'fromadmin' => FALSE ,
2009-10-30 19:57:28 +00:00
// Enable emote display
'emotes' => TRUE ,
// Convert defines(constants) within text.
'defs' => FALSE ,
// replace all {e_XXX} constants with their e107 value - 'rel' or 'abs'
'constants' => FALSE ,
// Enable hooked parsers
'hook' => TRUE ,
// Allow scripts through (new for 0.8)
'scripts' => TRUE ,
// Make links clickable
'link_click' => TRUE ,
// Substitute on clickable links (only if link_click == TRUE)
'link_replace' => TRUE ,
// Parse shortcodes - TRUE enables parsing
'parse_sc' => FALSE ,
// remove HTML tags.
'no_tags' => FALSE ,
// Restore entity form of quotes and such to single characters - TRUE disables
'value' => FALSE ,
// Line break compression - TRUE removes newline characters
'nobreak' => FALSE ,
// Retain newlines - wraps to \n instead of <br /> if TRUE (for non-HTML email text etc)
'retain_nl' => FALSE
2007-01-20 16:19:43 +00:00
);
2008-12-30 13:51:41 +00:00
2009-10-30 19:57:28 +00:00
// Super modifiers override default option values
2007-01-20 16:19:43 +00:00
var $e_SuperMods = array (
2009-10-30 19:57:28 +00:00
//text is part of a title (e.g. news title)
'TITLE' =>
2007-04-30 20:17:05 +00:00
array (
2009-01-03 22:32:54 +00:00
'nobreak' => TRUE , 'retain_nl' => TRUE , 'link_click' => FALSE , 'emotes' => FALSE , 'defs' => TRUE , 'parse_sc' => TRUE
),
2014-01-20 10:21:44 -08:00
'TITLE_PLAIN' =>
array (
'nobreak' => TRUE , 'retain_nl' => TRUE , 'link_click' => FALSE , 'emotes' => FALSE , 'defs' => TRUE , 'parse_sc' => TRUE , 'no_tags' => TRUE
),
2009-10-30 19:57:28 +00:00
//text is user-entered (i.e. untrusted) and part of a title (e.g. forum title)
'USER_TITLE' =>
2007-04-30 20:17:05 +00:00
array (
2009-01-03 22:32:54 +00:00
'nobreak' => TRUE , 'retain_nl' => TRUE , 'link_click' => FALSE , 'scripts' => FALSE , 'emotes' => FALSE , 'hook' => FALSE
),
2009-10-30 19:57:28 +00:00
// text is 'body' of email or similar - being sent 'off-site' so don't rely on server availability
'E_TITLE' =>
2009-01-03 22:32:54 +00:00
array (
'nobreak' => TRUE , 'retain_nl' => TRUE , 'defs' => TRUE , 'parse_sc' => TRUE , 'emotes' => FALSE , 'scripts' => FALSE , 'link_click' => FALSE
2007-04-30 20:17:05 +00:00
),
2009-10-30 19:57:28 +00:00
// text is part of the summary of a longer item (e.g. content summary)
'SUMMARY' =>
2007-04-30 20:17:05 +00:00
array (
2012-03-31 21:10:26 +00:00
'defs' => TRUE , 'constants' => 'full' , 'parse_sc' => TRUE
2009-01-03 22:32:54 +00:00
),
2009-10-30 19:57:28 +00:00
// text is the description of an item (e.g. download, link)
'DESCRIPTION' =>
2007-04-30 20:17:05 +00:00
array (
2012-03-31 21:10:26 +00:00
'defs' => TRUE , 'constants' => 'full' , 'parse_sc' => TRUE
2009-01-03 22:32:54 +00:00
),
2009-10-30 19:57:28 +00:00
// text is 'body' or 'bulk' text (e.g. custom page body, content body)
'BODY' =>
2007-04-30 20:17:05 +00:00
array (
2012-03-31 21:10:26 +00:00
'defs' => TRUE , 'constants' => 'full' , 'parse_sc' => TRUE
2009-01-03 22:32:54 +00:00
),
2016-08-01 12:58:03 -07:00
// text is parsed by the Wysiwyg editor. eg. TinyMce
2012-07-22 10:03:00 +00:00
'WYSIWYG' =>
array (
2016-08-01 12:58:03 -07:00
'hook' => false , 'link_click' => false , 'link_replace' => false , 'retain_nl' => true
2012-07-22 10:03:00 +00:00
),
2009-10-30 19:57:28 +00:00
// text is user-entered (i.e. untrusted)'body' or 'bulk' text (e.g. custom page body, content body)
'USER_BODY' =>
2007-04-30 20:17:05 +00:00
array (
2013-05-07 03:44:12 -07:00
'constants' => 'full' , 'scripts' => FALSE , 'nostrip' => FALSE
2009-01-03 22:32:54 +00:00
),
2009-10-30 19:57:28 +00:00
// text is 'body' of email or similar - being sent 'off-site' so don't rely on server availability
'E_BODY' =>
2009-01-03 22:32:54 +00:00
array (
2009-11-16 20:40:39 +00:00
'defs' => TRUE , 'constants' => 'full' , 'parse_sc' => TRUE , 'emotes' => FALSE , 'scripts' => FALSE , 'link_click' => FALSE
),
// text is text-only 'body' of email or similar - being sent 'off-site' so don't rely on server availability
'E_BODY_PLAIN' =>
array (
'defs' => TRUE , 'constants' => 'full' , 'parse_sc' => TRUE , 'emotes' => FALSE , 'scripts' => FALSE , 'link_click' => FALSE , 'retain_nl' => TRUE , 'no_tags' => TRUE
2007-04-30 20:17:05 +00:00
),
2009-10-30 19:57:28 +00:00
// text is the 'content' of a link (A tag, etc)
'LINKTEXT' =>
2007-04-30 20:17:05 +00:00
array (
2010-01-02 21:42:51 +00:00
'nobreak' => TRUE , 'retain_nl' => TRUE , 'link_click' => FALSE , 'emotes' => FALSE , 'hook' => FALSE , 'defs' => TRUE , 'parse_sc' => TRUE
2009-01-03 22:32:54 +00:00
),
2009-10-30 19:57:28 +00:00
// text is used (for admin edit) without fancy conversions or html.
'RAWTEXT' =>
2007-04-30 20:17:05 +00:00
array (
2009-01-03 22:32:54 +00:00
'nobreak' => TRUE , 'retain_nl' => TRUE , 'link_click' => FALSE , 'emotes' => FALSE , 'hook' => FALSE , 'no_tags' => TRUE
2007-01-20 16:19:43 +00:00
)
);
2009-01-03 22:32:54 +00:00
// Individual modifiers change the current context
var $e_Modifiers = array (
2010-01-02 21:42:51 +00:00
'emotes_off' => array ( 'emotes' => FALSE ),
'emotes_on' => array ( 'emotes' => TRUE ),
2009-01-08 21:47:44 +00:00
'no_hook' => array ( 'hook' => FALSE ),
'do_hook' => array ( 'hook' => TRUE ),
2009-10-30 19:57:28 +00:00
// New for 0.8
'scripts_off' => array ( 'scripts' => FALSE ),
// New for 0.8
'scripts_on' => array ( 'scripts' => TRUE ),
2009-01-03 22:32:54 +00:00
'no_make_clickable' => array ( 'link_click' => FALSE ),
'make_clickable' => array ( 'link_click' => TRUE ),
'no_replace' => array ( 'link_replace' => FALSE ),
2009-10-30 19:57:28 +00:00
// Replace text of clickable links (only if make_clickable option set)
'replace' => array ( 'link_replace' => TRUE ),
// No path replacement
'consts_off' => array ( 'constants' => FALSE ),
// Relative path replacement
'consts_rel' => array ( 'constants' => 'rel' ),
// Absolute path replacement
'consts_abs' => array ( 'constants' => 'abs' ),
2009-11-17 20:34:50 +00:00
// Full path replacement
'consts_full' => array ( 'constants' => 'full' ),
2009-10-30 19:57:28 +00:00
// No shortcode parsing
'scparse_off' => array ( 'parse_sc' => FALSE ),
2009-01-03 22:32:54 +00:00
'scparse_on' => array ( 'parse_sc' => TRUE ),
2009-10-30 19:57:28 +00:00
// Strip tags
'no_tags' => array ( 'no_tags' => TRUE ),
// Leave tags
'do_tags' => array ( 'no_tags' => FALSE ),
2009-01-03 22:32:54 +00:00
'fromadmin' => array ( 'fromadmin' => TRUE ),
'notadmin' => array ( 'fromadmin' => FALSE ),
2009-10-30 19:57:28 +00:00
// entity replacement
'er_off' => array ( 'value' => FALSE ),
2009-01-03 22:32:54 +00:00
'er_on' => array ( 'value' => TRUE ),
2009-10-30 19:57:28 +00:00
// Decode constant if exists
'defs_off' => array ( 'defs' => FALSE ),
2009-01-03 22:32:54 +00:00
'defs_on' => array ( 'defs' => TRUE ),
2010-04-07 19:08:02 +00:00
'dobreak' => array ( 'nobreak' => FALSE ),
'nobreak' => array ( 'nobreak' => TRUE ),
2009-10-30 19:57:28 +00:00
// Line break using \n
'lb_nl' => array ( 'retain_nl' => TRUE ),
// Line break using <br />
'lb_br' => array ( 'retain_nl' => FALSE ),
2009-01-03 22:32:54 +00:00
// Legacy option names below here - discontinue later
'retain_nl' => array ( 'retain_nl' => TRUE ),
'defs' => array ( 'defs' => TRUE ),
'parse_sc' => array ( 'parse_sc' => TRUE ),
'constants' => array ( 'constants' => 'rel' ),
2012-07-22 10:03:00 +00:00
'value' => array ( 'value' => TRUE ),
'wysiwyg' => array ( 'wysiwyg' => TRUE )
2009-01-03 22:32:54 +00:00
);
2009-10-30 20:58:52 +00:00
/**
* Constructor - keep it public for backward compatibility
still some new e_parse () in the core
*
*/
public function __construct ()
2007-01-20 16:19:43 +00:00
{
2009-10-30 20:58:52 +00:00
// initialise the type of UTF-8 processing methods depending on PHP version and mb string extension
2016-05-20 15:04:51 -07:00
parent :: __construct ();
2015-04-29 10:22:46 -07:00
2013-03-01 18:17:03 -08:00
$this -> init ();
2009-10-30 20:58:52 +00:00
$this -> initCharset ();
2010-01-12 13:11:48 +00:00
2009-01-03 22:32:54 +00:00
// Preprocess the supermods to be useful default arrays with all values
2009-10-30 20:58:52 +00:00
foreach ( $this -> e_SuperMods as $key => $val )
2009-01-03 22:32:54 +00:00
{
2009-10-30 19:57:28 +00:00
// precalculate super defaults
2009-10-30 20:58:52 +00:00
$this -> e_SuperMods [ $key ] = array_merge ( $this -> e_optDefault , $this -> e_SuperMods [ $key ]);
2009-10-30 19:57:28 +00:00
$this -> e_SuperMods [ $key ][ 'context' ] = $key ;
2009-01-03 22:32:54 +00:00
}
2007-12-30 16:54:31 +00:00
}
2009-10-30 20:58:52 +00:00
/**
* Initialise the type of UTF - 8 processing methods depending on PHP version and mb string extension .
*
* NOTE : can ' t be called until CHARSET is known
but we all know that it is UTF - 8 now
*
* @ return void
*/
private function initCharset ()
2008-11-13 20:41:20 +00:00
{
// Start by working out what, if anything, we do about utf-8 handling.
2009-10-30 19:57:28 +00:00
// 'Do nothing' is the simple option
$this -> utfAction = 0 ;
2009-10-30 20:58:52 +00:00
// CHARSET is utf-8
// if(strtolower(CHARSET) == 'utf-8')
// {
2009-10-30 19:57:28 +00:00
if ( version_compare ( PHP_VERSION , '6.0.0' ) < 1 )
{
// Need to do something here
2009-01-03 22:32:54 +00:00
if ( extension_loaded ( 'mbstring' ))
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
// Check for function overloading
$temp = ini_get ( 'mbstring.func_overload' );
// Just check the string functions - will be non-zero if overloaded
if (( $temp & MB_OVERLOAD_STRING ) == 0 )
2009-01-03 22:32:54 +00:00
{
2009-10-30 19:57:28 +00:00
// Can use the mb_string routines
$this -> utfAction = 1 ;
2009-01-03 22:32:54 +00:00
}
2009-10-30 19:57:28 +00:00
// Set the default encoding, so we don't have to specify every time
mb_internal_encoding ( 'UTF-8' );
2009-01-03 22:32:54 +00:00
}
else
{
2009-10-30 19:57:28 +00:00
// Must use emulation - will probably be slow!
$this -> utfAction = 2 ;
2015-02-11 22:46:20 -08:00
require_once ( E_UTF8_PACK . 'utils/unicode.php' );
2009-10-30 19:57:28 +00:00
// Always load the core routines - bound to need some of them!
2015-02-11 22:46:20 -08:00
require_once ( E_UTF8_PACK . 'native/core.php' );
2008-11-13 20:41:20 +00:00
}
}
2009-10-30 20:58:52 +00:00
// }
2008-11-13 20:41:20 +00:00
}
2010-01-12 13:11:48 +00:00
2008-11-13 20:41:20 +00:00
2009-10-30 22:19:56 +00:00
/**
* Unicode ( UTF - 8 ) analogue of standard @ link http :// php . net / strlen strlen PHP function .
* Returns the length of the given string .
2010-01-12 13:11:48 +00:00
*
2009-10-30 23:31:08 +00:00
* @ param string $str The UTF - 8 encoded string being measured for length .
* @ return integer The length ( amount of UTF - 8 characters ) of the string on success , and 0 if the string is empty .
2009-10-30 22:19:56 +00:00
*/
2010-01-12 13:11:48 +00:00
public function ustrlen ( $str )
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
switch ( $this -> utfAction )
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
case 0 :
return strlen ( $str );
case 1 :
return mb_strlen ( $str );
2008-11-13 20:41:20 +00:00
}
// Default case shouldn't happen often
2009-10-30 19:57:28 +00:00
// Save a call - invoke the function directly
return strlen ( utf8_decode ( $str ));
2008-11-13 20:41:20 +00:00
}
2009-10-30 22:19:56 +00:00
/**
* Unicode ( UTF - 8 ) analogue of standard @ link http :// php . net / strtolower strtolower PHP function .
* Make a string lowercase .
2010-01-12 13:11:48 +00:00
*
2009-10-30 23:31:08 +00:00
* @ param string $str The UTF - 8 encoded string to be lowercased .
* @ return string Specified string with all alphabetic characters converted to lowercase .
2009-10-30 22:19:56 +00:00
*/
2010-01-12 13:11:48 +00:00
public function ustrtolower ( $str )
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
switch ( $this -> utfAction )
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
case 0 :
return strtolower ( $str );
case 1 :
return mb_strtolower ( $str );
2008-11-13 20:41:20 +00:00
}
// Default case shouldn't happen often
return utf8_strtolower ( $str );
}
2009-01-03 22:32:54 +00:00
2009-10-30 22:19:56 +00:00
/**
* Unicode ( UTF - 8 ) analogue of standard @ link http :// php . net / strtoupper strtoupper PHP function .
* Make a string uppercase .
*
2009-10-30 23:31:08 +00:00
* @ param string $str The UTF - 8 encoded string to be uppercased .
* @ return string Specified string with all alphabetic characters converted to uppercase .
2009-10-30 22:19:56 +00:00
*/
2010-01-12 13:11:48 +00:00
public function ustrtoupper ( $str )
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
switch ( $this -> utfAction )
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
case 0 :
return strtoupper ( $str );
case 1 :
return mb_strtoupper ( $str );
2008-11-13 20:41:20 +00:00
}
// Default case shouldn't happen often
return utf8_strtoupper ( $str );
}
2009-10-30 22:19:56 +00:00
/**
* Unicode ( UTF - 8 ) analogue of standard @ link http :// php . net / strpos strpos PHP function .
* Find the position of the first occurrence of a case - sensitive UTF - 8 encoded string .
* Returns the numeric position ( offset in amount of UTF - 8 characters )
* of the first occurrence of needle in the haystack string .
2010-01-12 13:11:48 +00:00
*
2009-10-30 23:31:08 +00:00
* @ param string $haystack The UTF - 8 encoded string being searched in .
* @ param integer $needle The UTF - 8 encoded string being searched for .
* @ param integer $offset [ optional ] The optional offset parameter allows you to specify which character in haystack to start searching .
2009-10-30 22:19:56 +00:00
* The position returned is still relative to the beginning of haystack .
2009-10-30 23:31:08 +00:00
* @ return integer | boolean Returns the position as an integer . If needle is not found , the function will return boolean FALSE .
2009-10-30 22:19:56 +00:00
*/
2010-01-12 13:11:48 +00:00
public function ustrpos ( $haystack , $needle , $offset = 0 )
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
switch ( $this -> utfAction )
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
case 0 :
return strpos ( $haystack , $needle , $offset );
case 1 :
return mb_strpos ( $haystack , $needle , $offset );
2008-11-13 20:41:20 +00:00
}
2009-10-30 23:38:14 +00:00
return utf8_strpos ( $haystack , $needle , $offset );
2008-11-13 20:41:20 +00:00
}
2009-01-03 22:32:54 +00:00
2009-10-30 22:19:56 +00:00
/**
* Unicode ( UTF - 8 ) analogue of standard @ link http :// php . net / strrpos strrpos PHP function .
* Find the position of the last occurrence of a case - sensitive UTF - 8 encoded string .
* Returns the numeric position ( offset in amount of UTF - 8 characters )
* of the last occurrence of needle in the haystack string .
2010-01-12 13:11:48 +00:00
*
2009-10-30 23:31:08 +00:00
* @ param string $haystack The UTF - 8 encoded string being searched in .
* @ param integer $needle The UTF - 8 encoded string being searched for .
2009-10-30 22:19:56 +00:00
* @ param integer $offset [ optional ] - The optional offset parameter allows you to specify which character in haystack to start searching .
* The position returned is still relative to the beginning of haystack .
2009-10-30 23:31:08 +00:00
* @ return integer | boolean Returns the position as an integer . If needle is not found , the function will return boolean FALSE .
2009-10-30 22:19:56 +00:00
*/
2010-01-12 13:11:48 +00:00
public function ustrrpos ( $haystack , $needle , $offset = 0 )
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
switch ( $this -> utfAction )
2008-11-13 20:41:20 +00:00
{
2009-10-30 19:57:28 +00:00
case 0 :
return strrpos ( $haystack , $needle , $offset );
case 1 :
return mb_strrpos ( $haystack , $needle , $offset );
2008-11-13 20:41:20 +00:00
}
2009-10-30 23:38:14 +00:00
return utf8_strrpos ( $haystack , $needle , $offset );
2008-11-13 20:41:20 +00:00
}
2013-10-24 04:15:25 +03:00
/**
* Unicode ( UTF - 8 ) analogue of standard @ link http :// php . net / stristr stristr PHP function .
* Returns all of haystack starting from and including the first occurrence of needle to the end .
*
* @ param string $haystack The UTF - 8 encoded string to search in .
* @ param mixed $needle If needle is not a string , it is converted to an integer and applied as the ordinal value of a character .
* @ param integer $length [ optional ] ( PHP 5.3 + ) If TRUE , returns the part of the haystack before the first occurrence of the needle ( excluding needle ) .
* @ return string Returns the matched substring . If needle is not found , returns FALSE .
*/
public function ustristr ( $haystack , $needle , $before_needle = false )
{
switch ( $this -> utfAction )
{
case 0 :
return stristr ( $haystack , $needle , $before_needle );
case 1 :
2016-02-01 20:29:46 -08:00
//return mb_substr($haystack, $needle, $before_needle);
return mb_stristr ( $haystack , $needle , $before_needle );
2013-10-24 04:15:25 +03:00
}
// No utf8 pack backup
2014-08-17 15:15:40 +03:00
return stristr ( $haystack , $needle , $before_needle );
2013-10-24 04:15:25 +03:00
}
2009-10-30 23:31:08 +00:00
/**
* Unicode ( UTF - 8 ) analogue of standard @ link http :// php . net / substr substr PHP function .
* Returns the portion of string specified by the start and length parameters .
2010-01-12 13:11:48 +00:00
*
2009-10-30 23:31:08 +00:00
* NOTE : May be subtle differences in return values dependent on which routine is used .
* Native substr () routine can return FALSE . mb_substr () and utf8_substr () just return an empty string .
2010-01-12 13:11:48 +00:00
*
2009-10-30 23:31:08 +00:00
* @ param string $str The UTF - 8 encoded string .
* @ param integer $start Start of portion to be returned . Position is counted in amount of UTF - 8 characters from the beginning of str .
* First character ' s position is 0. Second character position is 1 , and so on .
2010-01-12 13:11:48 +00:00
* @ param integer $length [ optional ] If length is given , the string returned will contain at most length characters beginning from start
2009-10-30 23:31:08 +00:00
* ( depending on the length of string ) . If length is omitted , the rest of string from start will be returned .
* @ return string The extracted UTF - 8 encoded part of input string .
*/
2010-01-12 13:11:48 +00:00
public function usubstr ( $str , $start , $length = NULL )
2008-11-13 20:41:20 +00:00
{
2009-10-30 23:31:08 +00:00
switch ( $this -> utfAction )
2008-11-13 20:41:20 +00:00
{
2009-10-30 23:31:08 +00:00
case 0 :
return substr ( $str , $start , $length );
case 1 :
if ( is_null ( $length ))
2008-11-13 20:41:20 +00:00
{
2010-01-12 13:11:48 +00:00
return mb_substr ( $str , $start );
2008-11-13 20:41:20 +00:00
}
else
{
2010-01-12 13:11:48 +00:00
return mb_substr ( $str , $start , $length );
2008-11-13 20:41:20 +00:00
}
}
2009-10-30 23:38:14 +00:00
return utf8_substr ( $str , $start , $length );
2008-11-13 20:41:20 +00:00
}
2009-10-30 23:31:08 +00:00
/**
* Converts the supplied text ( presumed to be from user input ) to a format suitable for storing in a database table .
*
* @ param string $data
* @ param boolean $nostrip [ optional ] Assumes all data is GPC ( $_GET , $_POST , $_COOKIE ) unless indicate otherwise by setting this var to TRUE .
* If magic quotes is enabled on the server and you do not tell toDB () that the data is non GPC then slashes will be stripped when they should not be .
* @ param boolean $no_encode [ optional ] This parameter should nearly always be FALSE . It is used by the save_prefs () function to preserve HTML content within prefs even when
* the save_prefs () function has been called by a non admin user / user without html posting permissions .
* @ param boolean $mod [ optional ] The 'no_html' and 'no_php' modifiers blanket prevent HTML and PHP posting regardless of posting permissions . ( used in logging )
2010-09-06 21:35:04 +00:00
* The 'pReFs' value is for internal use only , when saving prefs , to prevent sanitisation of HTML .
2009-10-30 23:31:08 +00:00
* @ param boolean $original_author [ optional ]
* @ return string
2009-11-12 21:41:34 +00:00
* @ todo complete the documentation of this essential method
2009-10-30 23:31:08 +00:00
*/
2015-04-14 11:39:35 -07:00
public function toDB ( $data , $nostrip = false , $no_encode = false , $mod = false , $original_author = false )
2006-12-02 04:36:16 +00:00
{
2010-10-27 11:23:54 +00:00
$core_pref = e107 :: getConfig ();
2009-01-08 21:47:44 +00:00
if ( is_array ( $data ))
2009-01-03 22:32:54 +00:00
{
2015-04-29 10:22:46 -07:00
$ret = array ();
2009-01-08 21:47:44 +00:00
foreach ( $data as $key => $var )
2009-01-03 22:32:54 +00:00
{
2009-10-20 14:47:05 +00:00
//Fix - sanitize keys as well
$ret [ $this -> toDB ( $key , $nostrip , $no_encode , $mod , $original_author )] = $this -> toDB ( $var , $nostrip , $no_encode , $mod , $original_author );
2006-12-02 04:36:16 +00:00
}
2010-02-12 16:37:42 +00:00
return $ret ;
}
2015-03-29 20:26:35 -07:00
2013-06-11 18:29:59 -07:00
2015-04-12 19:45:55 -07:00
if ( MAGIC_QUOTES_GPC == true && $nostrip == false )
2010-02-12 16:37:42 +00:00
{
$data = stripslashes ( $data );
}
2010-09-06 12:34:06 +00:00
2013-04-30 02:57:33 -07:00
if ( $mod != 'pReFs' ) //XXX We're not saving prefs.
2010-09-06 12:34:06 +00:00
{
2015-04-11 02:53:51 -07:00
2015-04-29 10:22:46 -07:00
$data = $this -> preFilter ( $data ); // used by bb_xxx.php toDB() functions. bb_code.php toDB() allows us to properly bypass HTML cleaning below.
2015-03-29 20:26:35 -07:00
2015-04-14 11:39:35 -07:00
// if(strlen($data) != strlen(strip_tags($data))) // html tags present. // strip_tags() doesn't function doesnt look for unclosed '>'.
2015-05-21 21:49:32 -07:00
if (( $this -> isHtml ( $data )) && strpos ( $mod , 'no_html' ) === false )
2013-04-30 02:57:33 -07:00
{
2015-04-11 12:33:21 -07:00
$this -> isHtml = true ;
2015-04-11 02:53:51 -07:00
$data = $this -> cleanHtml ( $data ); // sanitize all html.
2015-04-29 10:22:46 -07:00
2015-05-14 09:20:11 -07:00
$data = str_replace ( array ( '%7B' , '%7D' ), array ( '{' , '}' ), $data ); // fix for {e_XXX} paths.
2015-04-29 10:22:46 -07:00
// $data = urldecode($data); //XXX Commented out : NO LONGER REQUIRED. symptom of cleaning the HTML - urlencodes src attributes containing { and } .eg. {e_BASE}
2015-04-14 11:39:35 -07:00
2013-04-30 02:57:33 -07:00
}
2015-04-12 19:45:55 -07:00
else // caused double-encoding of '&'
2015-04-11 12:33:21 -07:00
{
2015-04-12 19:45:55 -07:00
//$data = str_replace('<','<',$data);
//$data = str_replace('>','>',$data);
2015-04-11 12:33:21 -07:00
}
2015-04-11 11:47:40 -07:00
2013-04-30 02:57:33 -07:00
if ( ! check_class ( $core_pref -> get ( 'post_html' , e_UC_MAINADMIN )))
2010-09-06 21:35:04 +00:00
{
2015-04-14 11:39:35 -07:00
$data = strip_tags ( $data ); // remove tags from cleaned html.
$data = str_replace ( array ( '[html]' , '[/html]' ), '' , $data );
2010-09-06 21:35:04 +00:00
}
2013-06-15 03:58:47 -07:00
2015-04-14 11:39:35 -07:00
2015-04-11 02:53:51 -07:00
// $data = html_entity_decode($data, ENT_QUOTES, 'utf-8'); // Prevent double-entities. Fix for [code] - see bb_code.php toDB();
2010-09-06 12:34:06 +00:00
}
2015-04-11 02:53:51 -07:00
2015-04-11 11:47:40 -07:00
2015-04-11 12:33:21 -07:00
if ( check_class ( $core_pref -> get ( 'post_html' ))) /*$core_pref->is('post_html') && XXX preformecd by cleanHtml() */
2010-02-12 16:37:42 +00:00
{
2015-04-14 11:39:35 -07:00
$no_encode = true ;
2010-02-12 16:37:42 +00:00
}
2013-05-01 03:13:29 -07:00
2010-10-27 11:23:54 +00:00
if ( is_numeric ( $original_author ) && ! check_class ( $core_pref -> get ( 'post_html' ), '' , $original_author ))
2010-02-12 16:37:42 +00:00
{
2015-04-14 11:39:35 -07:00
$no_encode = false ;
2010-02-12 16:37:42 +00:00
}
2015-04-11 12:33:21 -07:00
2015-04-14 11:39:35 -07:00
if ( $no_encode === true && strpos ( $mod , 'no_html' ) === false )
2010-02-12 16:37:42 +00:00
{
$search = array ( '$' , '"' , " ' " , '\\' , '<?' );
$replace = array ( '$' , '"' , ''' , '\' , '<?' );
$ret = str_replace ( $search , $replace , $data );
2009-01-08 21:47:44 +00:00
}
2015-04-14 11:39:35 -07:00
else // add entities for everything. we want to save the code.
2009-01-03 22:32:54 +00:00
{
2015-04-12 19:45:55 -07:00
2010-02-12 16:37:42 +00:00
$data = htmlspecialchars ( $data , ENT_QUOTES , 'UTF-8' );
$data = str_replace ( '\\' , '\' , $data );
2015-04-12 19:45:55 -07:00
2010-02-12 16:37:42 +00:00
$ret = preg_replace ( " /&#( \ d*?);/ " , " &# \\ 1; " , $data );
}
2013-04-30 02:57:33 -07:00
// XXX - php_bbcode has been deprecated.
2015-04-14 11:39:35 -07:00
if (( strpos ( $mod , 'no_php' ) !== false ) || ! check_class ( $core_pref -> get ( 'php_bbcode' )))
2010-02-12 16:37:42 +00:00
{
2010-09-06 21:35:04 +00:00
$ret = preg_replace ( " # \ [(php)#i " , " [ \\ 1 " , $ret );
2006-12-02 04:36:16 +00:00
}
2010-02-19 15:10:40 +00:00
2006-12-02 04:36:16 +00:00
return $ret ;
}
2007-01-12 21:05:20 +00:00
2010-09-06 12:34:06 +00:00
2010-12-18 22:55:27 +00:00
/**
2013-01-05 09:42:34 +00:00
* Check for umatched 'dangerous' HTML tags
* ( these can destroy page layout where users are able to post HTML )
2013-05-07 03:44:12 -07:00
* @ DEPRECATED
2010-12-18 22:55:27 +00:00
* @ param string $data
* @ param string $tagList - if empty , uses default list of input tags . Otherwise a CSV list of tags to check ( any type )
*
* @ return boolean TRUE if an unopened closing tag found
* FALSE if nothing found
*/
function htmlAbuseFilter ( $data , $tagList = '' )
{
2013-04-22 20:46:06 -07:00
2010-12-18 22:55:27 +00:00
if ( $tagList == '' )
{
$checkTags = array ( 'textarea' , 'input' , 'td' , 'tr' , 'table' );
}
else
{
$checkTags = explode ( ',' , $tagList );
}
2013-01-05 09:42:34 +00:00
$tagArray = array_flip ( $checkTags );
foreach ( $tagArray as & $v ) { $v = 0 ; }; // Data fields become zero; keys are tag names.
$data = strtolower ( preg_replace ( '#\[code\].*?\[\/code\]#i' , '' , $data )); // Ignore code blocks. All lower case simplifies the rest
$matches = array ();
if ( ! preg_match_all ( '#<(\/|)([^<>]*?[^\/])>#' , $data , $matches , PREG_SET_ORDER ))
2010-12-18 22:55:27 +00:00
{
2013-01-05 09:42:34 +00:00
//echo "No tags found<br />";
return TRUE ; // No tags found; so all OK
}
//print_a($matches);
foreach ( $matches as $m )
{
// $m[0] is the complete tag; $m[1] is '/' or empty; $m[2] is the tag and any attributes
list ( $tag ) = explode ( ' ' , $m [ 2 ], 2 );
if ( ! isset ( $tagArray [ $tag ])) continue ; // Not a tag of interest
if ( $m [ 1 ] == '/' )
{ // Closing tag
if ( $tagArray [ $tag ] == 0 )
{
//echo "Close before open: {$tag}<br />";
return TRUE ; // Closing tag before we've had an opening tag
}
$tagArray [ $tag ] -- ; // Obviously had at least one opening tag
}
else
{ // Opening tag
$tagArray [ $tag ] ++ ;
2010-12-18 22:55:27 +00:00
}
}
2013-01-05 09:42:34 +00:00
//print_a($tagArray);
foreach ( $tagArray as $t )
{
if ( $t > 0 ) return TRUE ; // More opening tags than closing tags
}
return FALSE ; // OK now
2010-12-18 22:55:27 +00:00
}
2010-09-06 12:34:06 +00:00
/**
2013-05-07 03:44:12 -07:00
* @ DEPRECATED XXX TODO Remove this horrible thing which adds junk to a db .
2010-09-06 12:34:06 +00:00
* Checks a string for potentially dangerous HTML tags , including malformed tags
*
*/
2012-03-31 21:10:26 +00:00
public function dataFilter ( $data , $mode = 'bbcode' )
2010-09-06 12:34:06 +00:00
{
2013-04-22 20:46:06 -07:00
2010-09-06 12:34:06 +00:00
$ans = '' ;
2011-11-29 23:37:44 +00:00
$vetWords = array ( '<applet' , '<body' , '<embed' , '<frame' , '<script' , '%3Cscript' ,
'<frameset' , '<html' , '<iframe' , '<style' , '<layer' , '<link' ,
'<ilayer' , '<meta' , '<object' , '<plaintext' , 'javascript:' ,
'vbscript:' , 'data:text/html' );
2010-09-06 12:34:06 +00:00
$ret = preg_split ( '#(\[code.*?\[/code.*?])#mis' , $data , - 1 , PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
foreach ( $ret as $s )
{
if ( substr ( $s , 0 , 5 ) != '[code' )
{
$vl = array ();
$t = html_entity_decode ( rawurldecode ( $s ), ENT_QUOTES , CHARSET );
$t = str_replace ( array ( " \r " , " \n " , " \t " , " \ v " , " \ f " , " \0 " ), '' , $t );
$t1 = strtolower ( $t );
foreach ( $vetWords as $vw )
{
if ( strpos ( $t1 , $vw ) !== FALSE )
{
$vl [] = $vw ; // Add to list of words found
}
if ( substr ( $vw , 0 , 1 ) == '<' )
{
$vw = '</' . substr ( $vw , 1 );
if ( strpos ( $t1 , $vw ) !== FALSE )
{
$vl [] = $vw ; // Add to list of words found
}
}
}
// More checks here
if ( count ( $vl ))
{ // Do something
$s = preg_replace_callback ( '#(' . implode ( '|' , $vl ) . ')#mis' , array ( $this , 'modtag' ), $t );
}
}
2011-06-02 20:03:14 +00:00
$s = preg_replace ( '#(?:onmouse.+?|onclick|onfocus)\s*?\=#' , '[sanitised]$0[/sanitised]' , $s );
2011-05-28 16:23:40 +00:00
$s = preg_replace_callback ( '#base64([,\(])(.+?)([\)\'\"])#mis' , array ( $this , 'proc64' ), $s );
2010-09-06 12:34:06 +00:00
$ans .= $s ;
}
2011-11-29 23:37:44 +00:00
if ( $mode == 'link' && count ( $vl ))
{
return " #sanitized " ;
}
2010-09-06 12:34:06 +00:00
return $ans ;
}
2011-05-28 16:23:40 +00:00
/**
* Check base - 64 encoded code
*/
private function proc64 ( $match )
{
$decode = base64_decode ( $match [ 2 ]);
return 'base64' . $match [ 1 ] . base64_encode ( $this -> dataFilter ( $decode )) . $match [ 3 ];
}
2013-05-07 03:44:12 -07:00
// XXX REmove ME.
2010-09-06 12:34:06 +00:00
private function modTag ( $match )
{
$ans = '' ;
if ( isset ( $match [ 1 ]))
{
$chop = intval ( strlen ( $match [ 1 ]) / 2 );
$ans = substr ( $match [ 1 ], 0 , $chop ) . '##xss##' . substr ( $match [ 1 ], $chop );
}
else
{
$ans = '?????' ;
}
return '[sanitised]' . $ans . '[/sanitised]' ;
2011-03-19 11:54:12 +00:00
2010-09-06 12:34:06 +00:00
}
/**
* Processes data as needed before its written to the DB .
* Currently gives bbcodes the opportunity to do something
*
* @ param $data string - data about to be written to DB
* @ return string - modified data
*/
public function preFilter ( $data )
{
2011-03-19 11:54:12 +00:00
if ( ! is_object ( $this -> e_bb ))
2010-09-06 12:34:06 +00:00
{
require_once ( e_HANDLER . 'bbcode_handler.php' );
$this -> e_bb = new e_bbcode ;
}
$ret = $this -> e_bb -> parseBBCodes ( $data , USERID , 'default' , 'PRE' ); // $postID = logged in user here
return $ret ;
}
2007-01-12 21:05:20 +00:00
function toForm ( $text )
2006-12-02 04:36:16 +00:00
{
2015-04-11 02:53:51 -07:00
2010-10-30 15:34:48 +00:00
if ( empty ( $text )) // fix - handle proper 0, Space etc values.
2009-10-30 19:57:28 +00:00
{
2010-10-30 15:34:48 +00:00
return $text ;
2009-10-30 19:57:28 +00:00
}
2015-04-11 02:53:51 -07:00
2015-06-11 12:29:19 -07:00
if ( is_string ( $text ) && substr ( $text , 0 , 6 ) == '[html]' )
2015-04-11 02:53:51 -07:00
{
// $text = $this->toHtml($text,true);
2015-04-11 11:47:40 -07:00
$search = array ( '"' , ''' , '\' , '&' ,); // '&' must be last.
$replace = array ( '"' , " ' " , " \\ " , '&' );
// return htmlspecialchars_decode($text);
2015-04-11 02:53:51 -07:00
$text = str_replace ( $search , $replace , $text );
// return $text;
//$text = htmlentities($text,ENT_NOQUOTES, "UTF-8");
2015-04-11 11:47:40 -07:00
// return $text;
2015-04-11 02:53:51 -07:00
}
// return htmlentities($text);
2007-01-12 21:05:20 +00:00
$search = array ( '$' , '"' , '<' , '>' );
$replace = array ( '$' , '"' , '<' , '>' );
2006-12-02 04:36:16 +00:00
$text = str_replace ( $search , $replace , $text );
2016-11-27 15:13:57 -08:00
if ( e107 :: wysiwyg () !== true && is_string ( $text ))
2009-01-03 22:32:54 +00:00
{
2009-10-30 19:57:28 +00:00
// fix for utf-8 issue with html_entity_decode(); ???
2016-11-11 17:48:46 -08:00
$text = urldecode ( $text );
2015-04-11 02:53:51 -07:00
// $text = str_replace(" ", " ", $text);
2006-12-02 04:36:16 +00:00
}
return $text ;
}
2009-01-08 21:47:44 +00:00
function post_toForm ( $text )
2009-01-03 22:32:54 +00:00
{
2009-10-20 14:47:05 +00:00
if ( is_array ( $text ))
{
2009-10-30 19:57:28 +00:00
foreach ( $text as $key => $value )
2009-10-20 14:47:05 +00:00
{
$text [ $this -> post_toForm ( $key )] = $this -> post_toForm ( $value );
}
return $text ;
}
2009-10-30 19:57:28 +00:00
if ( MAGIC_QUOTES_GPC == TRUE )
2009-01-03 22:32:54 +00:00
{
2006-12-02 04:36:16 +00:00
$text = stripslashes ( $text );
}
2009-10-30 19:57:28 +00:00
return str_replace ( array ( " ' " , '"' , " < " , " > " ), array ( " ' " , " " " , " < " , " > " ), $text );
2006-12-02 04:36:16 +00:00
}
2009-10-30 19:57:28 +00:00
function post_toHTML ( $text , $original_author = FALSE , $extra = '' , $mod = FALSE )
2009-01-03 22:32:54 +00:00
{
2009-10-30 19:57:28 +00:00
$text = $this -> toDB ( $text , FALSE , FALSE , $mod , $original_author );
return $this -> toHTML ( $text , TRUE , $extra );
2006-12-02 04:36:16 +00:00
}
2014-08-17 20:53:44 -07:00
/**
2015-02-15 02:37:36 -08:00
* @ param $text - template to parse .
2014-08-17 20:53:44 -07:00
* @ param boolean $parseSCFiles - parse core 'single' shortcodes
2016-05-24 11:08:22 -07:00
* @ param object | array $extraCodes - shortcode class containing sc_xxxxx methods or an array of key / value pairs or legacy shortcode content ( eg . content within . sc )
2015-02-15 02:37:36 -08:00
* @ param object $eVars - XXX more info needed .
* @ return string
2014-08-17 20:53:44 -07:00
*/
2016-02-29 15:13:32 -08:00
function parseTemplate ( $text , $parseSCFiles = true , $extraCodes = null , $eVars = null )
2009-01-03 22:32:54 +00:00
{
2015-06-19 09:52:29 -07:00
2016-02-29 15:13:32 -08:00
if ( ! is_bool ( $parseSCFiles ))
{
trigger_error ( " \$ parseSCFiles in parseTemplate() was given incorrect data " );
}
2010-04-25 15:04:53 +00:00
return e107 :: getScParser () -> parseCodes ( $text , $parseSCFiles , $extraCodes , $eVars );
2006-12-02 04:36:16 +00:00
}
2014-08-17 20:53:44 -07:00
/**
* Check if we are using the simple - Parse array format , or a legacy . sc format which contains 'return '
* @ param array $extraCodes
*/
private function isSimpleParse ( $extraCodes )
{
if ( ! is_array ( $extraCodes ))
{
return false ;
}
foreach ( $extraCodes as $sc => $code )
2015-06-19 09:52:29 -07:00
{
if ( preg_match ( '/return(.*);/' , $code )) // still problematic. 'return;' Might be used in common speech.
{
return false ;
}
else
{
return true ;
}
/* if ( ! strpos ( $code , 'return ' ))
2014-08-17 20:53:44 -07:00
{
return true ;
}
else
{
return false ;
2015-06-19 09:52:29 -07:00
} */
2014-08-17 20:53:44 -07:00
}
}
2010-02-27 18:59:57 +00:00
/**
* Simple parser
*
* @ param string $template
2014-07-09 16:32:17 +03:00
* @ param e_vars | array $vars
2010-02-27 18:59:57 +00:00
* @ param string $replaceUnset string to be used if replace variable is not set , false - don ' t replace
* @ return string parsed content
*/
2014-07-09 16:32:17 +03:00
function simpleParse ( $template , $vars , $replaceUnset = '' )
2010-01-23 03:25:31 +00:00
{
$this -> replaceVars = $vars ;
$this -> replaceUnset = $replaceUnset ;
return preg_replace_callback ( " # \ { ([a-zA-Z0-9_]+) \ }# " , array ( $this , 'simpleReplace' ), $template );
}
2010-02-19 15:10:40 +00:00
2012-12-02 17:30:41 -08:00
protected function simpleReplace ( $tmp )
{
2016-02-15 19:59:47 -08:00
2010-02-03 11:06:31 +00:00
$unset = ( $this -> replaceUnset !== false ? $this -> replaceUnset : $tmp [ 0 ]);
2016-02-15 19:59:47 -08:00
2012-12-02 19:10:07 -08:00
if ( is_array ( $this -> replaceVars ))
{
2014-07-09 16:32:17 +03:00
$this -> replaceVars = new e_vars ( $this -> replaceVars );
//return ($this->replaceVars[$key] !== null ? $this->replaceVars[$key]: $unset);
}
2016-02-15 19:59:47 -08:00
$key = $tmp [ 1 ]; // PHP7 fix.
return ( $this -> replaceVars -> $key !== null ? $this -> replaceVars -> $key : $unset ); // Doesn't work.
2010-01-23 03:25:31 +00:00
}
2010-02-19 15:10:40 +00:00
2016-02-15 19:59:47 -08:00
2009-10-30 19:57:28 +00:00
function htmlwrap ( $str , $width , $break = " \n " , $nobreak = " a " , $nobr = " pre " , $utf = FALSE )
2006-12-02 04:36:16 +00:00
{
/*
2008-02-25 22:15:24 +00:00
Pretty well complete rewrite to try and handle utf - 8 properly .
2008-09-04 19:50:18 +00:00
Breaks each utf - 8 'word' every $width characters max . If possible , breaks after 'safe' characters .
2008-02-25 22:15:24 +00:00
$break is the character inserted to flag the break .
2008-09-04 19:50:18 +00:00
$nobreak is a list of tags within which word wrap is to be inactive
2006-12-02 04:36:16 +00:00
*/
2009-08-08 14:14:39 +00:00
//TODO handle htmlwrap somehow
2010-11-15 09:03:54 +00:00
//return $str;
2009-01-03 22:32:54 +00:00
2009-08-08 14:14:39 +00:00
// Don't wrap if non-numeric width
$width = intval ( $width );
// And trap stupid wrap counts
if ( $width < 6 )
return $str ;
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// Transform protected element lists into arrays
$nobreak = explode ( " " , strtolower ( $nobreak ));
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// Variable setup
2009-10-30 19:57:28 +00:00
$intag = FALSE ;
2009-01-03 22:32:54 +00:00
$innbk = array ();
$drain = " " ;
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// List of characters it is "safe" to insert line-breaks at
// It is not necessary to add < and > as they are automatically implied
$lbrks = " /?!%)-}] \\ \" ':;& " ;
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// Is $str a UTF8 string?
if ( $utf || strtolower ( CHARSET ) == 'utf-8' )
2009-08-08 14:14:39 +00:00
{
// 0x1680, 0x180e, 0x2000-0x200a, 0x2028, 0x205f, 0x3000 are 'non-ASCII' Unicode UCS-4 codepoints - see http://www.unicode.org/Public/UNIDATA/UnicodeData.txt
2009-01-03 22:32:54 +00:00
// All convert to 3-byte utf-8 sequences:
// 0x1680 0xe1 0x9a 0x80
// 0x180e 0xe1 0xa0 0x8e
// 0x2000 0xe2 0x80 0x80
// -
// 0x200a 0xe2 0x80 0x8a
// 0x2028 0xe2 0x80 0xa8
// 0x205f 0xe2 0x81 0x9f
// 0x3000 0xe3 0x80 0x80
$utf8 = 'u' ;
$whiteSpace = '#([\x20|\x0c]|[\xe1][\x9a][\x80]|[\xe1][\xa0][\x8e]|[\xe2][\x80][\x80-\x8a,\xa8]|[\xe2][\x81][\x9f]|[\xe3][\x80][\x80]+)#' ;
// Have to explicitly enumerate the whitespace chars, and use non-utf-8 mode, otherwise regex fails on badly formed utf-8
}
else
{
$utf8 = '' ;
2009-08-08 14:14:39 +00:00
// For non-utf-8, can use a simple match string
$whiteSpace = '#(\s+)#' ;
2009-01-03 22:32:54 +00:00
}
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// Start of the serious stuff - split into HTML tags and text between
2009-08-08 14:14:39 +00:00
$content = preg_split ( '#(<.*?' . '>)#mis' , $str , - 1 , PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
2009-01-03 22:32:54 +00:00
foreach ( $content as $value )
{
if ( $value [ 0 ] == " < " )
2009-08-08 14:14:39 +00:00
{
// We are within an HTML tag
// Create a lowercase copy of this tag's contents
2010-01-12 13:11:48 +00:00
$lvalue = strtolower ( substr ( $value , 1 , - 1 ));
2009-08-08 14:14:39 +00:00
if ( $lvalue )
2009-10-30 19:57:28 +00:00
{
// Tag of non-zero length
2009-08-08 14:14:39 +00:00
// If the first character is not a / then this is an opening tag
if ( $lvalue [ 0 ] != " / " )
2008-02-25 22:15:24 +00:00
{
2009-08-08 14:14:39 +00:00
// Collect the tag name
preg_match ( " /^( \ w*?)( \ s| $ )/ " , $lvalue , $t );
// If this is a protected element, activate the associated protection flag
2009-10-30 19:57:28 +00:00
if ( in_array ( $t [ 1 ], $nobreak ))
2010-01-12 13:11:48 +00:00
array_unshift ( $innbk , $t [ 1 ]);
2009-08-08 14:14:39 +00:00
}
else
2009-10-30 19:57:28 +00:00
{
// Otherwise this is a closing tag
2009-08-08 14:14:39 +00:00
// If this is a closing tag for a protected element, unset the flag
if ( in_array ( substr ( $lvalue , 1 ), $nobreak ))
{
reset ( $innbk );
while ( list ( $key , $tag ) = each ( $innbk ))
{
if ( substr ( $lvalue , 1 ) == $tag )
{
unset ( $innbk [ $key ]);
break ;
}
}
$innbk = array_values ( $innbk );
}
2008-02-25 22:15:24 +00:00
}
}
2009-08-08 14:14:39 +00:00
else
{
// Eliminate any empty tags altogether
$value = '' ;
}
// Else if we're outside any tags, and with non-zero length string...
2009-01-03 22:32:54 +00:00
}
elseif ( $value )
2009-08-08 14:14:39 +00:00
{
// If unprotected...
if ( ! count ( $innbk ))
2008-02-25 22:15:24 +00:00
{
2009-08-08 14:14:39 +00:00
// Use the ACK (006) ASCII symbol to replace all HTML entities temporarily
$value = str_replace ( " \x06 " , " " , $value );
preg_match_all ( " /&([a-z \ d] { 2,7}|# \ d { 2,5});/i " , $value , $ents );
$value = preg_replace ( " /&([a-z \ d] { 2,7}|# \ d { 2,5});/i " , " \x06 " , $value );
// echo "Found block length ".strlen($value).': '.substr($value,20).'<br />';
// Split at spaces - note that this will fail if presented with invalid utf-8 when doing the regex whitespace search
// $split = preg_split('#(\s)#'.$utf8, $value, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
$split = preg_split ( $whiteSpace , $value , - 1 , PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
$value = '' ;
foreach ( $split as $sp )
{
// echo "Split length ".strlen($sp).': '.substr($sp,20).'<br />';
$loopCount = 0 ;
while ( strlen ( $sp ) > $width )
2009-01-03 22:32:54 +00:00
{
2009-08-08 14:14:39 +00:00
// Enough characters that we may need to do something.
$pulled = '' ;
if ( $utf8 )
2009-01-03 22:32:54 +00:00
{
2009-08-08 14:14:39 +00:00
// Pull out a piece of the maximum permissible length
if ( preg_match ( '#^((?:[\x00-\x7F]|[\xC0-\xFF][\x80-\xBF]+){0,' . $width . '})(.{0,1}).*#s' , $sp , $matches ) == 0 )
{
// Make any problems obvious for now
$value .= '[!<b>invalid utf-8: ' . $sp . '<b>!]' ;
$sp = '' ;
}
elseif ( empty ( $matches [ 2 ]))
2009-10-30 19:57:28 +00:00
{
// utf-8 length is less than specified - treat as a special case
2009-08-08 14:14:39 +00:00
$value .= $sp ;
$sp = '' ;
}
else
2009-10-30 19:57:28 +00:00
{
// Need to find somewhere to break the string
for ( $i = strlen ( $matches [ 1 ]) - 1 ; $i >= 0 ; $i -- )
2009-08-08 14:14:39 +00:00
{
2009-10-30 19:57:28 +00:00
if ( strpos ( $lbrks , $matches [ 1 ][ $i ]) !== FALSE )
break ;
2009-08-08 14:14:39 +00:00
}
2009-10-30 19:57:28 +00:00
if ( $i < 0 )
{
// No 'special' break character found - break at the word boundary
2009-08-08 14:14:39 +00:00
$pulled = $matches [ 1 ];
}
else
{
2009-10-30 19:57:28 +00:00
$pulled = substr ( $sp , 0 , $i + 1 );
2009-08-08 14:14:39 +00:00
}
}
$loopCount ++ ;
if ( $loopCount > 20 )
{
// Make any problems obvious for now
$value .= '[!<b>loop count exceeded: ' . $sp . '</b>!]' ;
$sp = '' ;
}
2009-01-03 22:32:54 +00:00
}
else
{
2009-10-30 19:57:28 +00:00
for ( $i = min ( $width , strlen ( $sp )); $i > 0 ; $i -- )
2009-08-08 14:14:39 +00:00
{
// No speed advantage to defining match character
2009-10-30 19:57:28 +00:00
if ( strpos ( $lbrks , $sp [ $i - 1 ]) !== FALSE )
2009-08-08 14:14:39 +00:00
break ;
}
if ( $i == 0 )
{
// No 'special' break boundary character found - break at the word boundary
2009-10-30 19:57:28 +00:00
$pulled = substr ( $sp , 0 , $width );
2009-08-08 14:14:39 +00:00
}
else
{
2009-10-30 19:57:28 +00:00
$pulled = substr ( $sp , 0 , $i );
2009-08-08 14:14:39 +00:00
}
2009-01-03 22:32:54 +00:00
}
2009-08-08 14:14:39 +00:00
if ( $pulled )
2009-01-03 22:32:54 +00:00
{
2009-08-08 14:14:39 +00:00
$value .= $pulled . $break ;
// Shorten $sp by whatever we've processed (will work even for utf-8)
2009-10-30 19:57:28 +00:00
$sp = substr ( $sp , strlen ( $pulled ));
2009-01-03 22:32:54 +00:00
}
}
2009-08-08 14:14:39 +00:00
// Add in any residue
$value .= $sp ;
2008-02-25 22:15:24 +00:00
}
2009-08-08 14:14:39 +00:00
// Put captured HTML entities back into the string
2010-01-12 13:11:48 +00:00
foreach ( $ents [ 0 ] as $ent )
2009-10-30 19:57:28 +00:00
$value = preg_replace ( " / \x06 / " , $ent , $value , 1 );
2008-02-25 22:15:24 +00:00
}
}
2009-01-03 22:32:54 +00:00
// Send the modified segment down the drain
$drain .= $value ;
}
// Return contents of the drain
2009-01-08 21:47:44 +00:00
return $drain ;
2006-12-02 04:36:16 +00:00
}
2010-01-12 13:11:48 +00:00
2010-01-09 13:17:45 +00:00
/**
* CakePHP ( tm ) : Rapid Development Framework ( http :// www . cakephp . org )
* Copyright 2005 - 2008 , Cake Software Foundation , Inc . ( http :// www . cakefoundation . org )
2010-01-12 13:11:48 +00:00
*
2010-01-09 13:17:45 +00:00
* Truncate a HTML string
*
* Cuts a string to the length of $length and adds the value of $ending if the text is longer than length .
*
* @ param string $text String to truncate .
* @ param integer $length Length of returned string , including ellipsis .
* @ param string $ending It will be used as Ending and appended to the trimmed string .
* @ param boolean $exact If false , $text will not be cut mid - word
* @ return string Trimmed string .
*/
function html_truncate ( $text , $length = 100 , $ending = '...' , $exact = true )
2010-01-12 13:11:48 +00:00
{
if ( $this -> ustrlen ( preg_replace ( '/<.*?>/' , '' , $text )) <= $length )
2010-01-09 13:17:45 +00:00
{
return $text ;
}
$totalLength = 0 ;
$openTags = array ();
$truncate = '' ;
preg_match_all ( '/(<\/?([\w+]+)[^>]*>)?([^<>]*)/' , $text , $tags , PREG_SET_ORDER );
2010-01-12 13:11:48 +00:00
2010-01-09 13:17:45 +00:00
foreach ( $tags as $tag )
{
2010-01-12 13:11:48 +00:00
if ( ! $tag [ 2 ] || ! preg_match ( '/img|br|input|hr|area|base|basefont|col|frame|isindex|link|meta|param/si' , $tag [ 2 ]))
2010-01-09 13:17:45 +00:00
{
if ( preg_match ( '/<[\w]+[^>]*>/s' , $tag [ 0 ]))
{
array_unshift ( $openTags , $tag [ 2 ]);
}
else if ( preg_match ( '/<\/([\w]+)[^>]*>/s' , $tag [ 0 ], $closeTag ))
{
$pos = array_search ( $closeTag [ 1 ], $openTags );
if ( $pos !== false )
{
array_splice ( $openTags , $pos , 1 );
}
}
}
$truncate .= $tag [ 1 ];
2010-01-12 13:11:48 +00:00
$contentLength = $this -> ustrlen ( preg_replace ( '/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i' , ' ' , $tag [ 3 ]));
2010-01-09 13:17:45 +00:00
if ( $contentLength + $totalLength > $length )
{
$left = $length - $totalLength ;
$entitiesLength = 0 ;
if ( preg_match_all ( '/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i' , $tag [ 3 ], $entities , PREG_OFFSET_CAPTURE ))
{
foreach ( $entities [ 0 ] as $entity )
{
if ( $entity [ 1 ] + 1 - $entitiesLength <= $left )
{
$left -- ;
2010-01-12 13:11:48 +00:00
$entitiesLength += $this -> ustrlen ( $entity [ 0 ]);
2010-01-09 13:17:45 +00:00
}
else
{
break ;
}
}
}
2010-01-12 13:11:48 +00:00
$truncate .= $this -> usubstr ( $tag [ 3 ], 0 , $left + $entitiesLength );
2010-01-09 13:17:45 +00:00
break ;
}
else
{
$truncate .= $tag [ 3 ];
$totalLength += $contentLength ;
}
if ( $totalLength >= $length )
{
break ;
}
}
if ( ! $exact )
{
2010-01-12 13:11:48 +00:00
$spacepos = $this -> ustrrpos ( $truncate , ' ' );
2010-01-09 13:17:45 +00:00
if ( isset ( $spacepos ))
{
2010-01-12 13:11:48 +00:00
$bits = $this -> usubstr ( $truncate , $spacepos );
2010-01-09 13:17:45 +00:00
preg_match_all ( '/<\/([a-z]+)>/i' , $bits , $droppedTags , PREG_SET_ORDER );
if ( ! empty ( $droppedTags ))
{
foreach ( $droppedTags as $closingTag )
{
if ( ! in_array ( $closingTag [ 1 ], $openTags ))
{
array_unshift ( $openTags , $closingTag [ 1 ]);
}
}
}
2010-01-12 13:11:48 +00:00
$truncate = $this -> usubstr ( $truncate , 0 , $spacepos );
2010-01-09 13:17:45 +00:00
}
}
$truncate .= $ending ;
foreach ( $openTags as $tag )
{
$truncate .= '</' . $tag . '>' ;
}
return $truncate ;
}
2006-12-02 04:36:16 +00:00
2009-10-30 21:32:18 +00:00
/**
* Truncate a HTML string to a maximum length $len append the string $more if it was truncated
*
2009-10-30 23:31:08 +00:00
* @ param string $text String to process
2009-11-12 21:41:34 +00:00
* @ param integer $len [ optional ] Length of characters to be truncated - default 200
* @ param string $more [ optional ] String which will be added if truncation - default ' ... '
2009-10-30 21:32:18 +00:00
* @ return string
*/
2010-01-09 13:17:45 +00:00
public function html_truncate_old ( $text , $len = 200 , $more = ' ... ' )
2006-12-02 04:36:16 +00:00
{
$pos = 0 ;
$curlen = 0 ;
$tmp_pos = 0 ;
2007-05-16 20:24:44 +00:00
$intag = FALSE ;
2006-12-02 04:36:16 +00:00
while ( $curlen < $len && $curlen < strlen ( $text ))
{
2009-10-30 19:57:28 +00:00
switch ( $text { $pos } )
2006-12-02 04:36:16 +00:00
{
2009-10-30 19:57:28 +00:00
case " < " :
if ( $text { $pos + 1 } == " / " )
{
$closing_tag = TRUE ;
}
$intag = TRUE ;
$tmp_pos = $pos - 1 ;
$pos ++ ;
2006-12-02 04:36:16 +00:00
break ;
2008-12-30 13:51:41 +00:00
2010-01-12 13:11:48 +00:00
2009-10-30 19:57:28 +00:00
case " > " :
if ( $text { $pos - 1 } == " / " )
{
$closing_tag = TRUE ;
}
if ( $closing_tag == TRUE )
{
$tmp_pos = 0 ;
$closing_tag = FALSE ;
}
$intag = FALSE ;
$pos ++ ;
2006-12-02 04:36:16 +00:00
break ;
2008-12-30 13:51:41 +00:00
2010-01-12 13:11:48 +00:00
2009-10-30 19:57:28 +00:00
case " & " :
if ( $text { $pos + 1 } == " # " )
2006-12-02 04:36:16 +00:00
{
2009-10-30 19:57:28 +00:00
$end = strpos ( substr ( $text , $pos , 7 ), " ; " );
if ( $end !== FALSE )
{
$pos += ( $end + 1 );
if ( ! $intag )
{
$curlen ++ ;
}
2006-12-02 04:36:16 +00:00
break ;
2009-10-30 19:57:28 +00:00
}
2006-12-02 04:36:16 +00:00
}
2009-10-30 19:57:28 +00:00
else
{
$pos ++ ;
if ( ! $intag )
{
$curlen ++ ;
}
2006-12-02 04:36:16 +00:00
break ;
2009-10-30 19:57:28 +00:00
}
2006-12-02 04:36:16 +00:00
default :
2009-10-30 19:57:28 +00:00
$pos ++ ;
if ( ! $intag )
{
$curlen ++ ;
}
2006-12-02 04:36:16 +00:00
break ;
}
}
2009-09-03 19:29:11 +00:00
$ret = ( $tmp_pos > 0 ? substr ( $text , 0 , $tmp_pos + 1 ) : substr ( $text , 0 , $pos ));
2006-12-02 04:36:16 +00:00
if ( $pos < strlen ( $text ))
{
$ret = $ret . $more ;
}
return $ret ;
}
2007-06-06 19:28:25 +00:00
2009-10-30 20:58:52 +00:00
/**
2009-10-30 21:32:18 +00:00
* Truncate a string of text to a maximum length $len append the string $more if it was truncated
2009-10-30 20:58:52 +00:00
* Uses current CHARSET for utf - 8 , returns $len characters rather than $len bytes
*
* @ param string $text string to process
* @ param integer $len length of characters to be truncated
* @ param string $more string which will be added if truncation
* @ return string
*/
2009-10-30 21:01:13 +00:00
public function text_truncate ( $text , $len = 200 , $more = ' ... ' )
2007-06-06 19:28:25 +00:00
{
2009-10-30 19:57:28 +00:00
// Always valid
2016-05-21 09:08:46 -07:00
2012-12-13 15:08:00 +02:00
if ( $this -> ustrlen ( $text ) <= $len )
2009-11-12 21:41:34 +00:00
{
2009-10-30 19:57:28 +00:00
return $text ;
2009-11-12 21:41:34 +00:00
}
2016-05-21 09:08:46 -07:00
$text = html_entity_decode ( $text , ENT_QUOTES , 'utf-8' );
return mb_strimwidth ( $text , 0 , $len , $more );
2012-12-13 15:08:00 +02:00
2016-05-21 09:08:46 -07:00
// $ret = $this->usubstr($text, 0, $len);
2012-12-13 15:08:00 +02:00
2009-01-03 22:32:54 +00:00
// search for possible broken html entities
// - if an & is in the last 8 chars, removing it and whatever follows shouldn't hurt
// it should work for any characters encoding
2016-05-21 09:08:46 -07:00
/*
2013-10-16 18:13:21 +03:00
$leftAmp = $this -> ustrrpos ( $this -> usubstr ( $ret , - 8 ), '&' );
2009-10-30 19:57:28 +00:00
if ( $leftAmp )
2009-11-12 21:41:34 +00:00
{
2013-10-16 18:13:21 +03:00
$ret = $this -> usubstr ( $ret , 0 , $this -> ustrlen ( $ret ) - 8 + $leftAmp );
2009-11-12 21:41:34 +00:00
}
2009-10-30 19:57:28 +00:00
2016-05-21 09:08:46 -07:00
return $ret . $more ; */
2006-12-02 04:36:16 +00:00
}
2007-06-06 19:28:25 +00:00
2009-10-30 20:58:52 +00:00
function textclean ( $text , $wrap = 100 )
2006-12-02 04:36:16 +00:00
{
2009-10-30 19:57:28 +00:00
$text = str_replace ( " \n \n \n " , " \n \n " , $text );
2008-12-30 13:51:41 +00:00
$text = $this -> htmlwrap ( $text , $wrap );
2009-10-30 19:57:28 +00:00
$text = str_replace ( array ( '<br /> ' , ' <br />' , ' <br /> ' ), '<br />' , $text );
2006-12-02 04:36:16 +00:00
/* we can remove any linebreaks added by htmlwrap function as any \n's will be converted later anyway */
return $text ;
}
2009-01-03 22:32:54 +00:00
2006-12-02 04:36:16 +00:00
// Test for text highlighting, and determine the text highlighting transformation
// Returns TRUE if highlighting is active for this page display
function checkHighlighting ()
{
global $pref ;
if ( ! defined ( 'e_SELF' ))
{
2009-10-30 19:57:28 +00:00
// Still in startup, so can't calculate highlighting
return FALSE ;
2006-12-02 04:36:16 +00:00
}
2009-10-30 19:57:28 +00:00
if ( ! isset ( $this -> e_highlighting ))
2006-12-02 04:36:16 +00:00
{
$this -> e_highlighting = FALSE ;
$shr = ( isset ( $_SERVER [ 'HTTP_REFERER' ]) ? $_SERVER [ 'HTTP_REFERER' ] : " " );
2009-10-30 19:57:28 +00:00
if ( $pref [ 'search_highlight' ] && ( strpos ( e_SELF , 'search.php' ) === FALSE ) && (( strpos ( $shr , 'q=' ) !== FALSE ) || ( strpos ( $shr , 'p=' ) !== FALSE )))
2006-12-02 04:36:16 +00:00
{
$this -> e_highlighting = TRUE ;
2009-10-30 19:57:28 +00:00
if ( ! isset ( $this -> e_query ))
2006-12-02 04:36:16 +00:00
{
$query = preg_match ( '#(q|p)=(.*?)(&|$)#' , $shr , $matches );
2009-10-30 19:57:28 +00:00
$this -> e_query = str_replace ( array ( '+' , '*' , '"' , ' ' ), array ( '' , '.*?' , '' , '\b|\b' ), trim ( urldecode ( $matches [ 2 ])));
2006-12-02 04:36:16 +00:00
}
}
}
return $this -> e_highlighting ;
}
2007-03-11 20:52:47 +00:00
2016-03-09 12:12:15 -08:00
/**
* Replace text represenation of website urls and email addresses with clickable equivalents .
* @ param string $text
* @ param string $type email | url
* @ param array $opts options . ( see below )
* @ param string $opts [ 'sub' ] substitute text within links
* @ param bool $opts [ 'ext' ] load link in new window ( not for email )
* @ return string
*/
private function makeClickable ( $text = '' , $type = 'email' , $opts = array ())
{
if ( empty ( $text ))
{
return '' ;
}
$textReplace = ( ! empty ( $opts [ 'sub' ])) ? $opts [ 'sub' ] : '' ;
if ( substr ( $textReplace , - 6 ) == '.glyph' )
{
$textReplace = $this -> toGlyph ( $textReplace , '' );
}
switch ( $type )
{
default :
case " email " :
preg_match_all ( " #(?:[ \n \r ]|^)?([a-z0-9 \ -_.]+?)@([ \ w \ -]+ \ .([ \ w \ - \ .]+ \ .)*[ \ w]+)#i " , $text , $match );
if ( ! empty ( $match [ 0 ]))
{
$srch = array ();
$repl = array ();
foreach ( $match [ 0 ] as $eml )
{
$email = trim ( $eml );
$srch [] = $email ;
$repl [] = $this -> emailObfuscate ( $email , $textReplace );
}
$text = str_replace ( $srch , $repl , $text );
}
break ;
case " url " :
$linktext = ( ! empty ( $textReplace )) ? $textReplace : '\\2' ;
$external = ( ! empty ( $opts [ 'ext' ])) ? 'rel="external"' : '' ;
2016-03-16 09:21:12 -07:00
$text = preg_replace ( " #(^|[ \ s]| )([ \ w]+?: \ / \ /(?:[ \ w-%]+?)(?: \ .[ \ w-%]+?)+.*?)(?= $ |[ \ s[ \ ]<]| \ . \ s| \ . $ |, \ s|, $ | )#is " , " \\ 1<a class= \" e-url \" href= \" \\ 2 \" " . $external . " > " . $linktext . " </a> " , $text );
2016-03-09 12:12:15 -08:00
$text = preg_replace ( " #(^|[ \ s])((?:www|ftp)(?: \ .[ \ w-%]+?) { 2}.*?)(?= $ |[ \ s[ \ ]<]| \ . \ s| \ . $ |, \ s|, $ )#is " , " \\ 1<a class= \" e-url \" href= \" http:// \\ 2 \" " . $external . " > " . $linktext . " </a> " , $text );
break ;
}
return $text ;
}
2009-10-30 09:13:37 +00:00
/**
2009-10-30 23:31:08 +00:00
* Converts the text ( presumably retrieved from the database ) for HTML output .
2009-10-30 19:57:28 +00:00
*
2009-10-30 09:13:37 +00:00
* @ param string $text
* @ param boolean $parseBB [ optional ]
* @ param string $modifiers [ optional ] TITLE | SUMMARY | DESCRIPTION | BODY | RAW | LINKTEXT etc .
2010-01-02 21:42:51 +00:00
* Comma - separated list , no spaces allowed
* first modifier must be a CONTEXT modifier , in UPPER CASE .
* subsequent modifiers are lower case - see $this -> e_Modifiers for possible values
2009-10-30 09:13:37 +00:00
* @ param mixed $postID [ optional ]
* @ param boolean $wrap [ optional ]
2009-10-30 20:05:17 +00:00
* @ return string
2009-11-12 21:41:34 +00:00
* @ todo complete the documentation of this essential method
2009-10-30 09:13:37 +00:00
*/
2010-01-02 21:42:51 +00:00
public function toHTML ( $text , $parseBB = FALSE , $modifiers = '' , $postID = '' , $wrap = FALSE )
2008-06-14 21:01:04 +00:00
{
2009-10-30 19:57:28 +00:00
if ( $text == '' )
2009-11-12 21:41:34 +00:00
{
2009-10-30 19:57:28 +00:00
return $text ;
2010-01-12 13:11:48 +00:00
}
2015-04-11 02:53:51 -07:00
2013-05-20 17:10:38 -07:00
$pref = e107 :: getPref ();
2008-12-30 13:51:41 +00:00
2013-05-20 17:10:38 -07:00
global $fromadmin ;
2007-12-30 23:31:18 +00:00
2009-01-03 22:32:54 +00:00
// Set default modifiers to start
$opts = $this -> e_optDefault ;
2010-01-12 13:11:48 +00:00
2008-12-30 13:51:41 +00:00
2009-01-03 22:32:54 +00:00
// Now process any modifiers that are specified
if ( $modifiers )
2008-06-14 21:01:04 +00:00
{
2009-10-30 19:57:28 +00:00
$aMods = explode ( ',' , $modifiers );
2009-01-03 22:32:54 +00:00
// If there's a supermodifier, it must be first, and in uppercase
$psm = trim ( $aMods [ 0 ]);
if ( isset ( $this -> e_SuperMods [ $psm ]))
2009-10-30 19:57:28 +00:00
{
2010-01-02 21:42:51 +00:00
// Supermodifier found - override default values where necessary
$opts = array_merge ( $opts , $this -> e_SuperMods [ $psm ]);
2009-01-03 22:32:54 +00:00
$opts [ 'context' ] = $psm ;
unset ( $aMods [ 0 ]);
}
2009-10-30 19:57:28 +00:00
// Now find any regular modifiers; use them to modify the context
// (there should only be one or two out of the list of possibles)
2009-01-03 22:32:54 +00:00
foreach ( $aMods as $mod )
{
2010-01-02 21:42:51 +00:00
// Slight concession to varying coding styles - stripping spaces is a waste of CPU cycles!
2009-10-30 19:57:28 +00:00
$mod = trim ( $mod );
2009-01-03 22:32:54 +00:00
if ( isset ( $this -> e_Modifiers [ $mod ]))
{
2009-10-30 19:57:28 +00:00
// This is probably quicker than array_merge
// - especially as usually only one or two loops
foreach ( $this -> e_Modifiers [ $mod ] as $k => $v )
2009-01-03 22:32:54 +00:00
{
2009-10-30 19:57:28 +00:00
// Update our context-specific options
$opts [ $k ] = $v ;
2009-01-03 22:32:54 +00:00
}
}
}
2007-01-17 21:29:28 +00:00
}
2006-12-02 04:36:16 +00:00
2009-01-03 22:32:54 +00:00
// Turn off a few things if not enabled in options
2015-02-14 23:34:15 -08:00
if ( ! vartrue ( $pref [ 'smiley_activate' ]))
2009-11-12 21:41:34 +00:00
{
2009-10-30 19:57:28 +00:00
$opts [ 'emotes' ] = FALSE ;
2010-01-12 13:11:48 +00:00
}
2015-02-14 23:34:15 -08:00
if ( ! vartrue ( $pref [ 'make_clickable' ]))
2009-11-12 21:41:34 +00:00
{
2009-10-30 19:57:28 +00:00
$opts [ 'link_click' ] = FALSE ;
2009-11-12 21:41:34 +00:00
}
2015-02-14 23:34:15 -08:00
if ( ! vartrue ( $pref [ 'link_replace' ]))
2009-11-12 21:41:34 +00:00
{
2009-10-30 19:57:28 +00:00
$opts [ 'link_replace' ] = FALSE ;
2009-11-12 21:41:34 +00:00
}
2009-01-03 22:32:54 +00:00
$fromadmin = $opts [ 'fromadmin' ];
// Convert defines(constants) within text. eg. Lan_XXXX - must be the entire text string (i.e. not embedded)
2009-10-30 19:57:28 +00:00
// The check for '::' is a workaround for a bug in the Zend Optimiser 3.3.0 and PHP 5.2.4 combination
// - causes crashes if '::' in site name
2014-01-20 10:21:44 -08:00
2012-12-12 18:46:34 -08:00
if ( $opts [ 'defs' ] && ( strlen ( $text ) < 35 ) && (( strpos ( $text , '::' ) === FALSE ) && defined ( trim ( $text ))))
2007-01-17 21:29:28 +00:00
{
2016-01-04 23:10:02 -08:00
$text = constant ( trim ( $text )); // don't return yet, words could be hooked with linkwords etc.
2006-12-02 04:36:16 +00:00
}
2009-01-03 22:32:54 +00:00
if ( $opts [ 'no_tags' ])
{
$text = strip_tags ( $text );
}
2013-05-07 03:44:12 -07:00
if ( MAGIC_QUOTES_GPC == TRUE ) // precaution for badly saved data.
{
$text = stripslashes ( $text );
}
2007-09-09 07:05:06 +00:00
2007-01-17 21:29:28 +00:00
2009-01-03 22:32:54 +00:00
// Make sure we have a valid count for word wrapping
2016-02-15 11:09:58 -08:00
if ( ! $wrap && ! empty ( $pref [ 'main_wordwrap' ]))
2009-01-03 22:32:54 +00:00
{
$wrap = $pref [ 'main_wordwrap' ];
}
// $text = " ".$text;
2006-12-02 04:36:16 +00:00
2007-01-17 21:29:28 +00:00
2009-10-30 19:57:28 +00:00
// Now get on with the parsing
2009-01-03 22:32:54 +00:00
$ret_parser = '' ;
$last_bbcode = '' ;
2009-10-30 19:57:28 +00:00
// So we can change them on each loop
$saveOpts = $opts ;
2012-07-22 10:03:00 +00:00
2009-01-03 22:32:54 +00:00
if ( $parseBB == FALSE )
2008-06-14 21:01:04 +00:00
{
2009-01-03 22:32:54 +00:00
$content = array ( $text );
2008-06-14 21:01:04 +00:00
}
else
2007-01-17 21:29:28 +00:00
{
2009-01-03 22:32:54 +00:00
// Split each text block into bits which are either within one of the 'key' bbcodes, or outside them
// (Because we have to match end words, the 'extra' capturing subpattern gets added to output array. We strip it later)
2012-06-09 12:01:24 +00:00
$content = preg_split ( '#(\[(table|html|php|code|scode|hide).*?\[/(?:\\2)\])#mis' , $text , - 1 , PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
2008-06-14 21:01:04 +00:00
}
2009-01-03 22:32:54 +00:00
// Use $full_text variable so its available to special bbcodes if required
foreach ( $content as $full_text )
{
$proc_funcs = TRUE ;
2009-01-30 20:39:03 +00:00
$convertNL = TRUE ;
2008-06-14 21:01:04 +00:00
2009-01-03 22:32:54 +00:00
// We may have 'captured' a bbcode word - strip it if so
if ( $last_bbcode == $full_text )
{
$last_bbcode = '' ;
$proc_funcs = FALSE ;
$full_text = '' ;
2008-06-14 21:01:04 +00:00
}
else
2007-01-17 21:29:28 +00:00
{
2009-10-30 19:57:28 +00:00
// Set the options for this pass
$opts = $saveOpts ;
2009-01-30 20:39:03 +00:00
2009-10-30 19:57:28 +00:00
// Have to have a good test in case a 'non-key' bbcode starts the block
// - so pull out the bbcode parameters while we're there
2012-06-09 12:01:24 +00:00
if (( $parseBB !== FALSE ) && preg_match ( '#(^\[(table|html|php|code|scode|hide)(.*?)\])(.*?)(\[/\\2\]$)#is' , $full_text , $matches ))
2009-10-30 19:57:28 +00:00
{
// It's one of the 'key' bbcodes
// Usually don't want 'normal' processing if its a 'special' bbcode
$proc_funcs = FALSE ;
2009-01-03 22:32:54 +00:00
// $matches[0] - complete block from opening bracket of opening tag to closing bracket of closing tag
// $matches[1] - complete opening tag (inclusive of brackets)
// $matches[2] - bbcode word
// $matches[3] - parameter, including '='
// $matches[4] - bit between the tags (i.e. text to process)
// $matches[5] - closing tag
2009-10-30 19:57:28 +00:00
// In case we decide to load a file
2013-06-15 02:18:15 -07:00
$bbPath = e_CORE . 'bbcodes/' ;
$bbFile = strtolower ( str_replace ( '_' , '' , $matches [ 2 ]));
$bbcode = '' ;
$className = '' ;
$full_text = '' ;
$code_text = $matches [ 4 ];
$parm = $matches [ 3 ] ? substr ( $matches [ 3 ], 1 ) : '' ;
$last_bbcode = $matches [ 2 ];
2012-07-22 10:03:00 +00:00
2009-01-03 22:32:54 +00:00
switch ( $matches [ 2 ])
{
case 'php' :
2009-10-30 19:57:28 +00:00
// Probably run the output through the normal processing functions - but put here so the PHP code can disable if desired
$proc_funcs = TRUE ;
2009-01-03 22:32:54 +00:00
// This is just the contents of the php.bb file pulled in - its short, so will be quicker
// $search = array(""", "'", "$", '<br />', E_NL, "->", "<br />");
// $replace = array('"', "'", "$", "\n", "\n", "->", "<br />");
// Shouldn't have any parameter on this bbcode
2009-10-30 19:57:28 +00:00
// Not sure whether checks are necessary now we've reorganised
// if (!$matches[3]) $bbcode = str_replace($search, $replace, $matches[4]);
2009-01-03 22:32:54 +00:00
// Because we're bypassing most of the initial parser processing, we should be able to just reverse the effects of toDB() and execute the code
2011-03-19 11:54:12 +00:00
// [SecretR] - avoid php code injections, missing php.bb will completely disable user posted php blocks
2012-03-31 21:10:26 +00:00
$bbcode = file_get_contents ( $bbPath . $bbFile . '.bb' );
2009-10-30 20:58:52 +00:00
if ( ! $matches [ 3 ])
2009-11-12 21:41:34 +00:00
{
2011-03-19 11:54:12 +00:00
$code_text = html_entity_decode ( $matches [ 4 ], ENT_QUOTES , 'UTF-8' );
2009-11-12 21:41:34 +00:00
}
2009-01-03 22:32:54 +00:00
break ;
2010-01-12 13:11:48 +00:00
2012-07-23 02:25:17 +00:00
case 'html' : // This overrides and deprecates html.bb
2009-01-30 20:39:03 +00:00
$proc_funcs = TRUE ;
2015-04-11 02:53:51 -07:00
2016-04-17 12:49:15 -07:00
2013-03-18 22:14:05 -07:00
// $code_text = str_replace("\r\n", " ", $code_text);
2015-04-11 02:53:51 -07:00
// $code_text = html_entity_decode($code_text, ENT_QUOTES, CHARSET);
// $code_text = str_replace('&','&',$code_text); // validation safe.
2012-07-23 02:25:17 +00:00
$html_start = " <!-- bbcode-html-start --> " ; // markers for html-to-bbcode replacement.
$html_end = " <!-- bbcode-html-end --> " ;
2016-03-01 13:29:50 -08:00
$full_text = str_replace ( array ( " [html] " , " [/html] " ), " " , $code_text ); // quick fix.. security issue?
$full_text = $this -> replaceConstants ( $full_text , 'abs' );
2012-07-23 02:25:17 +00:00
$full_text = $html_start . $full_text . $html_end ;
2013-03-18 22:14:05 -07:00
$full_text = $this -> parseBBTags ( $full_text ); // strip <bbcode> tags.
2013-03-23 03:49:49 -07:00
$opts [ 'nobreak' ] = true ;
2015-04-11 02:53:51 -07:00
2009-01-30 20:39:03 +00:00
break ;
2015-04-11 02:53:51 -07:00
2013-06-14 16:26:56 -07:00
case 'table' : // strip <br /> from inside of <table>
2012-06-09 12:01:24 +00:00
$convertNL = FALSE ;
// break;
2010-01-12 13:11:48 +00:00
2009-01-03 22:32:54 +00:00
case 'hide' :
$proc_funcs = TRUE ;
2010-01-12 13:11:48 +00:00
2009-01-03 22:32:54 +00:00
default : // Most bbcodes will just execute their normal file
2012-03-31 21:10:26 +00:00
// @todo should we cache these bbcodes? require_once should make class-related codes quite efficient
if ( file_exists ( $bbPath . 'bb_' . $bbFile . '.php' ))
{ // Its a bbcode class file
require_once ( $bbPath . 'bb_' . $bbFile . '.php' );
2013-06-15 02:18:15 -07:00
$className = 'bb_' . $last_bbcode ;
$this -> bbList [ $last_bbcode ] = new $className ();
2012-03-31 21:10:26 +00:00
}
2013-06-15 02:18:15 -07:00
elseif ( file_exists ( $bbPath . $bbFile . '.bb' ))
2012-03-31 21:10:26 +00:00
{
$bbcode = file_get_contents ( $bbPath . $bbFile . '.bb' );
}
2009-01-03 22:32:54 +00:00
} // end - switch ($matches[2])
2010-01-12 13:11:48 +00:00
2012-03-31 21:10:26 +00:00
if ( $className )
{
$tempCode = new $className ();
2012-07-23 02:25:17 +00:00
$full_text = $tempCode -> bbPreDisplay ( $matches [ 4 ], $parm );
2012-03-31 21:10:26 +00:00
}
elseif ( $bbcode )
2009-01-03 22:32:54 +00:00
{ // Execute the file
2012-03-31 21:10:26 +00:00
$full_text = eval ( $bbcode ); // Require output of bbcode to be returned
2009-01-03 22:32:54 +00:00
// added to remove possibility of nested bbcode exploits ...
// (same as in bbcode_handler - is it right that it just operates on $bbcode_return and not on $bbcode_output? - QUERY XXX-02
2012-03-31 21:10:26 +00:00
}
if ( strpos ( $full_text , '[' ) !== FALSE )
{
$exp_search = array ( 'eval' , 'expression' );
$exp_replace = array ( 'ev<b></b>al' , 'expres<b></b>sion' );
$bbcode_return = str_replace ( $exp_search , $exp_replace , $full_text );
2009-01-03 22:32:54 +00:00
}
2008-06-14 21:01:04 +00:00
}
2009-01-03 22:32:54 +00:00
}
2006-12-02 04:36:16 +00:00
2007-01-17 21:29:28 +00:00
2009-10-30 19:57:28 +00:00
// Do the 'normal' processing - in principle, as previously - but think about the order.
2011-03-19 11:54:12 +00:00
if ( $proc_funcs && ! empty ( $full_text )) // some more speed
2009-10-30 19:57:28 +00:00
{
2009-01-03 22:32:54 +00:00
// Split out and ignore any scripts and style blocks. With just two choices we can match the closing tag in the regex
$subcon = preg_split ( '#((?:<s)(?:cript[^>]+>.*?</script>|tyle[^>]+>.*?</style>))#mis' , $full_text , - 1 , PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
foreach ( $subcon as $sub_blk )
2008-06-14 21:01:04 +00:00
{
2016-04-17 12:49:15 -07:00
if ( substr ( $sub_blk , 0 , 7 ) == '<script' ) // Strip scripts unless permitted
2009-01-03 22:32:54 +00:00
{
2009-10-30 19:57:28 +00:00
if ( $opts [ 'scripts' ])
2009-01-03 22:32:54 +00:00
{
2016-04-17 12:49:15 -07:00
$ret_parser .= html_entity_decode ( $sub_blk , ENT_QUOTES );
2009-01-03 22:32:54 +00:00
}
}
2009-10-30 19:57:28 +00:00
elseif ( substr ( $sub_blk , 0 , 6 ) == '<style' )
{
// Its a style block - just pass it through unaltered - except, do we need the line break stuff? - QUERY XXX-01
2015-03-29 20:26:35 -07:00
if ( defined ( 'DB_INF_SHOW' ))
2009-11-12 21:41:34 +00:00
{
2009-10-30 19:57:28 +00:00
echo " Processing stylesheet: { $sub_blk } <br /> " ;
2009-11-12 21:41:34 +00:00
}
2015-03-29 20:26:35 -07:00
2009-01-03 22:32:54 +00:00
$ret_parser .= $sub_blk ;
}
else
{
// Do 'normal' processing on a chunk
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// Could put tag stripping in here
2012-06-09 12:01:24 +00:00
2009-01-30 20:39:03 +00:00
/*
2009-01-23 21:18:37 +00:00
// Line break compression - filter white space after HTML tags - among other things, ensures HTML tables display properly
2009-01-30 20:39:03 +00:00
// Hopefully now achieved by other means
if ( $convertNL && ! $opts [ 'nobreak' ])
2009-01-03 22:32:54 +00:00
{
$sub_blk = preg_replace ( " #> \ s*[ \r ]* \n [ \r ]*# " , " > " , $sub_blk );
}
2009-01-30 20:39:03 +00:00
*/
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// Link substitution
// Convert URL's to clickable links, unless modifiers or prefs override
if ( $opts [ 'link_click' ])
{
2016-12-05 15:41:19 -08:00
if ( $opts [ 'link_replace' ] && defset ( 'ADMIN_AREA' ) !== true )
2009-01-03 22:32:54 +00:00
{
2016-03-09 12:12:15 -08:00
2014-07-05 20:51:22 -07:00
$link_text = $pref [ 'link_text' ];
2009-10-30 19:57:28 +00:00
$email_text = ( $pref [ 'email_text' ]) ? $this -> replaceConstants ( $pref [ 'email_text' ]) : LAN_EMAIL_SUBS ;
2016-03-09 12:12:15 -08:00
$sub_blk = $this -> makeClickable ( $sub_blk , 'url' , array ( 'sub' => $link_text , 'ext' => $pref [ 'links_new_window' ]));
$sub_blk = $this -> makeClickable ( $sub_blk , 'email' , array ( 'sub' => $email_text ));
2009-01-03 22:32:54 +00:00
}
else
{
2010-01-12 13:11:48 +00:00
2016-03-09 12:12:15 -08:00
$sub_blk = $this -> makeClickable ( $sub_blk , 'url' , array ( 'ext' => true ));
$sub_blk = $this -> makeClickable ( $sub_blk , 'email' );
2009-01-03 22:32:54 +00:00
}
}
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// Convert emoticons to graphical icons, if enabled
if ( $opts [ 'emotes' ])
{
if ( ! is_object ( $this -> e_emote ))
{
2013-05-20 17:10:38 -07:00
// require_once(e_HANDLER.'emote_filter.php');
2009-01-03 22:32:54 +00:00
$this -> e_emote = new e_emoteFilter ;
}
$sub_blk = $this -> e_emote -> filterEmotes ( $sub_blk );
}
2007-01-17 21:29:28 +00:00
2006-12-02 04:36:16 +00:00
2009-01-03 22:32:54 +00:00
// Reduce newlines in all forms to a single newline character (finds '\n', '\r\n', '\n\r')
if ( ! $opts [ 'nobreak' ])
{
2013-03-18 22:14:05 -07:00
if ( $convertNL && substr ( $sub_blk , 0 , 6 ) != '[html]' ) //XXX Quick Fix, find a cleaner way.
2009-01-30 20:39:03 +00:00
{
2009-10-30 19:57:28 +00:00
// We may need to convert to <br /> later
2013-03-18 22:14:05 -07:00
2009-10-30 19:57:28 +00:00
$sub_blk = preg_replace ( " #[ \r ]* \n [ \r ]*# " , E_NL , $sub_blk );
2009-01-30 20:39:03 +00:00
}
else
{
2009-10-30 19:57:28 +00:00
// Not doing any more - its HTML so keep \n so HTML is formatted
$sub_blk = preg_replace ( " #[ \r ]* \n [ \r ]*# " , " \n " , $sub_blk );
2009-01-30 20:39:03 +00:00
}
2009-01-03 22:32:54 +00:00
}
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// Entity conversion
// Restore entity form of quotes and such to single characters, except for text destined for tag attributes or JS.
2009-10-30 19:57:28 +00:00
if ( $opts [ 'value' ])
{
// output used for attribute values.
$sub_blk = str_replace ( $this -> replace , $this -> search , $sub_blk );
2009-01-03 22:32:54 +00:00
}
else
2009-10-30 19:57:28 +00:00
{
// output not used for attribute values.
$sub_blk = str_replace ( $this -> search , $this -> replace , $sub_blk );
2009-01-03 22:32:54 +00:00
}
2006-12-02 04:36:16 +00:00
2007-01-17 21:29:28 +00:00
2009-01-03 22:32:54 +00:00
// BBCode processing (other than the four already done, which shouldn't appear at all in the text)
if ( $parseBB !== FALSE )
2008-08-17 15:04:20 +00:00
{
2009-01-03 22:32:54 +00:00
if ( ! is_object ( $this -> e_bb ))
{
require_once ( e_HANDLER . 'bbcode_handler.php' );
$this -> e_bb = new e_bbcode ;
}
if ( $parseBB === TRUE )
{
2009-10-30 19:57:28 +00:00
// 'Normal' or 'legacy' processing
2012-07-22 10:03:00 +00:00
if ( $modifiers == " WYSIWYG " )
{
$sub_blk = $this -> e_bb -> parseBBCodes ( $sub_blk , $postID , 'wysiwyg' );
}
else
{
$sub_blk = $this -> e_bb -> parseBBCodes ( $sub_blk , $postID );
}
2009-01-03 22:32:54 +00:00
}
elseif ( $parseBB === 'STRIP' )
{
2009-10-30 19:57:28 +00:00
// Need to strip all BBCodes
$sub_blk = $this -> e_bb -> parseBBCodes ( $sub_blk , $postID , 'default' , TRUE );
2009-01-03 22:32:54 +00:00
}
else
{
2009-10-30 19:57:28 +00:00
// Need to strip just some BBCodes
$sub_blk = $this -> e_bb -> parseBBCodes ( $sub_blk , $postID , 'default' , $parseBB );
2009-01-03 22:32:54 +00:00
}
2008-08-17 15:04:20 +00:00
}
2007-01-17 21:29:28 +00:00
2009-01-03 22:32:54 +00:00
// replace all {e_XXX} constants with their e107 value. modifier determines relative/absolute conversion
// (Moved to after bbcode processing by Cameron)
if ( $opts [ 'constants' ])
{
2009-11-16 20:40:39 +00:00
$sub_blk = $this -> replaceConstants ( $sub_blk , $opts [ 'constants' ]); // Now decodes text values
2009-01-03 22:32:54 +00:00
}
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// profanity filter
2016-02-15 11:09:58 -08:00
if ( ! empty ( $pref [ 'profanity_filter' ]))
2009-01-03 22:32:54 +00:00
{
if ( ! is_object ( $this -> e_pf ))
{
2013-05-20 17:10:38 -07:00
// require_once(e_HANDLER."profanity_filter.php");
2009-01-03 22:32:54 +00:00
$this -> e_pf = new e_profanityFilter ;
}
$sub_blk = $this -> e_pf -> filterProfanities ( $sub_blk );
}
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// Shortcodes
// Optional short-code conversion
if ( $opts [ 'parse_sc' ])
{
$sub_blk = $this -> parseTemplate ( $sub_blk , TRUE );
}
2009-01-08 21:47:44 +00:00
2008-06-14 21:01:04 +00:00
2009-10-30 19:57:28 +00:00
//Run any hooked in parsers
2009-01-03 22:32:54 +00:00
if ( $opts [ 'hook' ])
{
if ( varset ( $pref [ 'tohtml_hook' ]))
2009-10-30 19:57:28 +00:00
{
//Process the older tohtml_hook pref (deprecated)
foreach ( explode ( " , " , $pref [ 'tohtml_hook' ]) as $hook )
2009-01-03 22:32:54 +00:00
{
if ( ! is_object ( $this -> e_hook [ $hook ]))
{
2009-10-22 13:00:37 +00:00
if ( is_readable ( e_PLUGIN . $hook . " / " . $hook . " .php " ))
{
require_once ( e_PLUGIN . $hook . " / " . $hook . " .php " );
$hook_class = " e_ " . $hook ;
$this -> e_hook [ $hook ] = new $hook_class ;
}
2009-10-30 19:57:28 +00:00
2009-01-03 22:32:54 +00:00
}
$sub_blk = $this -> e_hook [ $hook ] -> $hook ( $sub_blk , $opts [ 'context' ]);
}
}
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
if ( isset ( $pref [ 'e_tohtml_list' ]) && is_array ( $pref [ 'e_tohtml_list' ]))
{
foreach ( $pref [ 'e_tohtml_list' ] as $hook )
{
if ( ! is_object ( $this -> e_hook [ $hook ]))
{
2009-10-22 13:00:37 +00:00
if ( is_readable ( e_PLUGIN . $hook . " /e_tohtml.php " ))
{
2009-10-30 19:57:28 +00:00
require_once ( e_PLUGIN . $hook . " /e_tohtml.php " );
2009-10-22 13:00:37 +00:00
$hook_class = " e_tohtml_ " . $hook ;
2009-10-30 19:57:28 +00:00
$this -> e_hook [ $hook ] = new $hook_class ;
2009-10-22 13:00:37 +00:00
}
2009-01-03 22:32:54 +00:00
}
2016-08-01 12:58:03 -07:00
if ( is_object ( $this -> e_hook [ $hook ]))
{
$sub_blk = $this -> e_hook [ $hook ] -> to_html ( $sub_blk , $opts [ 'context' ]);
}
2009-01-03 22:32:54 +00:00
}
}
2016-08-01 12:58:03 -07:00
if ( ! empty ( $pref [ 'e_parse_list' ]))
{
foreach ( $pref [ 'e_parse_list' ] as $plugin )
{
$hookObj = e107 :: getAddon ( $plugin , 'e_parse' );
if ( $tmp = e107 :: callMethod ( $hookObj , 'toHTML' , $sub_blk , $opts [ 'context' ]))
{
$sub_blk = $tmp ;
}
}
}
2009-01-03 22:32:54 +00:00
}
2008-06-14 21:01:04 +00:00
2009-01-03 22:32:54 +00:00
// Word wrap
if ( $wrap && ! $opts [ 'nobreak' ])
{
2009-10-30 19:57:28 +00:00
$sub_blk = $this -> textclean ( $sub_blk , $wrap );
2009-01-03 22:32:54 +00:00
}
2008-06-14 21:01:04 +00:00
2009-01-08 21:47:44 +00:00
2009-01-03 22:32:54 +00:00
// Search highlighting
if ( $opts [ 'emotes' ]) // Why??
{
if ( $this -> checkHighlighting ())
{
2009-10-30 19:57:28 +00:00
$sub_blk = $this -> e_highlight ( $sub_blk , $this -> e_query );
2009-01-03 22:32:54 +00:00
}
}
2009-01-08 21:47:44 +00:00
2013-06-14 16:26:56 -07:00
if ( $convertNL == true )
2009-01-03 22:32:54 +00:00
{
2009-10-30 19:57:28 +00:00
// Default replaces all \n with <br /> for HTML display
$nl_replace = '<br />' ;
2009-01-30 20:39:03 +00:00
if ( $opts [ 'nobreak' ])
{
$nl_replace = '' ;
}
elseif ( $opts [ 'retain_nl' ])
{
$nl_replace = " \n " ;
}
2013-06-14 16:26:56 -07:00
2009-01-30 20:39:03 +00:00
$sub_blk = str_replace ( E_NL , $nl_replace , $sub_blk );
2009-01-03 22:32:54 +00:00
}
2008-06-14 21:01:04 +00:00
2009-01-03 22:32:54 +00:00
$ret_parser .= $sub_blk ;
} // End of 'normal' processing for a block of text
2006-12-02 04:36:16 +00:00
2009-01-03 22:32:54 +00:00
} // End of 'foreach() on each block of non-script text
2008-06-14 21:01:04 +00:00
2009-01-03 22:32:54 +00:00
} // End of 'normal' parsing (non-script text)
else
{
2009-10-30 19:57:28 +00:00
// Text block that needed no processing at all
$ret_parser .= $full_text ;
2009-01-03 22:32:54 +00:00
}
2008-06-14 21:01:04 +00:00
}
2013-06-14 16:26:56 -07:00
// Quick Fix - Remove trailing <br /> on block-level elements (eg. div, pre, table, etc. )
$srch = array ();
$repl = array ();
foreach ( $this -> blockTags as $val )
{
$srch [] = " </ " . $val . " ><br /> " ;
$repl [] = " </ " . $val . " > " ;
}
$ret_parser = str_replace ( $srch , $repl , $ret_parser );
2009-01-03 22:32:54 +00:00
return trim ( $ret_parser );
2006-12-02 04:36:16 +00:00
}
2015-04-29 10:22:46 -07:00
2016-12-08 07:24:31 -08:00
function toASCII ( $text )
{
2016-12-08 08:21:58 -08:00
$char_map = array (
// Latin
'À' => 'A' , 'Á' => 'A' , 'Â' => 'A' , 'Ã' => 'A' , 'Ä' => 'A' , 'Å' => 'A' , 'Æ' => 'AE' , 'Ç' => 'C' ,
'È' => 'E' , 'É' => 'E' , 'Ê' => 'E' , 'Ë' => 'E' , 'Ì' => 'I' , 'Í' => 'I' , 'Î' => 'I' , 'Ï' => 'I' ,
'Ð' => 'D' , 'Ñ' => 'N' , 'Ò' => 'O' , 'Ó' => 'O' , 'Ô' => 'O' , 'Õ' => 'O' , 'Ö' => 'O' , 'Ő' => 'O' ,
'Ø' => 'O' , 'Ù' => 'U' , 'Ú' => 'U' , 'Û' => 'U' , 'Ü' => 'U' , 'Ű' => 'U' , 'Ý' => 'Y' , 'Þ' => 'TH' ,
'ß' => 'ss' ,
'à' => 'a' , 'á' => 'a' , 'â' => 'a' , 'ã' => 'a' , 'ä' => 'a' , 'å' => 'a' , 'æ' => 'ae' , 'ç' => 'c' ,
'è' => 'e' , 'é' => 'e' , 'ê' => 'e' , 'ë' => 'e' , 'ì' => 'i' , 'í' => 'i' , 'î' => 'i' , 'ï' => 'i' ,
'ð' => 'd' , 'ñ' => 'n' , 'ò' => 'o' , 'ó' => 'o' , 'ô' => 'o' , 'õ' => 'o' , 'ö' => 'o' , 'ő' => 'o' ,
'ø' => 'o' , 'ù' => 'u' , 'ú' => 'u' , 'û' => 'u' , 'ü' => 'u' , 'ű' => 'u' , 'ý' => 'y' , 'þ' => 'th' ,
'ÿ' => 'y' ,
// Latin symbols
'©' => '(c)' ,
// Greek
'Α ' => 'A' , 'Β ' => 'B' , 'Γ' => 'G' , 'Δ' => 'D' , 'Ε ' => 'E' , 'Ζ ' => 'Z' , 'Η ' => 'H' , 'Θ' => '8' ,
'Ι ' => 'I' , 'Κ ' => 'K' , 'Λ' => 'L' , 'Μ ' => 'M' , 'Ν ' => 'N' , 'Ξ' => '3' , 'Ο ' => 'O' , 'Π' => 'P' ,
'Ρ ' => 'R' , 'Σ' => 'S' , 'Τ ' => 'T' , 'Υ ' => 'Y' , 'Φ' => 'F' , 'Χ ' => 'X' , 'Ψ' => 'PS' , 'Ω' => 'W' ,
'Ά' => 'A' , 'Έ' => 'E' , 'Ί' => 'I' , 'Ό' => 'O' , 'Ύ' => 'Y' , 'Ή' => 'H' , 'Ώ' => 'W' , 'Ϊ' => 'I' ,
'Ϋ' => 'Y' ,
'α ' => 'a' , 'β' => 'b' , 'γ ' => 'g' , 'δ' => 'd' , 'ε' => 'e' , 'ζ' => 'z' , 'η' => 'h' , 'θ' => '8' ,
'ι ' => 'i' , 'κ' => 'k' , 'λ' => 'l' , 'μ' => 'm' , 'ν ' => 'n' , 'ξ' => '3' , 'ο ' => 'o' , 'π' => 'p' ,
'ρ ' => 'r' , 'σ ' => 's' , 'τ' => 't' , 'υ ' => 'y' , 'φ' => 'f' , 'χ' => 'x' , 'ψ' => 'ps' , 'ω' => 'w' ,
'ά' => 'a' , 'έ' => 'e' , 'ί' => 'i' , 'ό' => 'o' , 'ύ' => 'y' , 'ή' => 'h' , 'ώ' => 'w' , 'ς' => 's' ,
'ϊ' => 'i' , 'ΰ' => 'y' , 'ϋ' => 'y' , 'ΐ' => 'i' ,
// Turkish
'Ş' => 'S' , 'İ' => 'I' , 'Ç' => 'C' , 'Ü' => 'U' , 'Ö' => 'O' , 'Ğ' => 'G' ,
'ş' => 's' , 'ı ' => 'i' , 'ç' => 'c' , 'ü' => 'u' , 'ö' => 'o' , 'ğ' => 'g' ,
// Russian
'А ' => 'A' , 'Б' => 'B' , 'В ' => 'V' , 'Г' => 'G' , 'Д' => 'D' , 'Е ' => 'E' , 'Ё' => 'Yo' , 'Ж' => 'Zh' ,
'З ' => 'Z' , 'И' => 'I' , 'Й' => 'J' , 'К ' => 'K' , 'Л' => 'L' , 'М ' => 'M' , 'Н ' => 'N' , 'О ' => 'O' ,
'П' => 'P' , 'Р ' => 'R' , 'С ' => 'S' , 'Т ' => 'T' , 'У ' => 'U' , 'Ф' => 'F' , 'Х ' => 'H' , 'Ц' => 'C' ,
'Ч' => 'Ch' , 'Ш' => 'Sh' , 'Щ' => 'Sh' , 'Ъ' => '' , 'Ы' => 'Y' , 'Ь ' => '' , 'Э' => 'E' , 'Ю' => 'Yu' ,
'Я' => 'Ya' ,
'а ' => 'a' , 'б ' => 'b' , 'в' => 'v' , 'г ' => 'g' , 'д' => 'd' , 'е ' => 'e' , 'ё' => 'yo' , 'ж' => 'zh' ,
'з' => 'z' , 'и' => 'i' , 'й' => 'j' , 'к' => 'k' , 'л' => 'l' , 'м' => 'm' , 'н' => 'n' , 'о ' => 'o' ,
'п' => 'p' , 'р ' => 'r' , 'с ' => 's' , 'т' => 't' , 'у ' => 'u' , 'ф' => 'f' , 'х ' => 'h' , 'ц' => 'c' ,
'ч' => 'ch' , 'ш' => 'sh' , 'щ' => 'sh' , 'ъ' => '' , 'ы' => 'y' , 'ь' => '' , 'э' => 'e' , 'ю' => 'yu' ,
'я' => 'ya' ,
// Ukrainian
'Є' => 'Ye' , 'І ' => 'I' , 'Ї' => 'Yi' , 'Ґ' => 'G' ,
'є' => 'ye' , 'і ' => 'i' , 'ї' => 'yi' , 'ґ' => 'g' ,
// Czech
'Č' => 'C' , 'Ď' => 'D' , 'Ě' => 'E' , 'Ň' => 'N' , 'Ř' => 'R' , 'Š' => 'S' , 'Ť' => 'T' , 'Ů' => 'U' ,
'Ž' => 'Z' ,
'č' => 'c' , 'ď' => 'd' , 'ě' => 'e' , 'ň' => 'n' , 'ř' => 'r' , 'š' => 's' , 'ť' => 't' , 'ů' => 'u' ,
'ž' => 'z' ,
// Polish
'Ą' => 'A' , 'Ć' => 'C' , 'Ę' => 'e' , 'Ł' => 'L' , 'Ń' => 'N' , 'Ó' => 'o' , 'Ś' => 'S' , 'Ź' => 'Z' ,
'Ż' => 'Z' ,
'ą' => 'a' , 'ć' => 'c' , 'ę' => 'e' , 'ł' => 'l' , 'ń' => 'n' , 'ó' => 'o' , 'ś' => 's' , 'ź' => 'z' ,
'ż' => 'z' ,
// Latvian
'Ā' => 'A' , 'Č' => 'C' , 'Ē' => 'E' , 'Ģ' => 'G' , 'Ī' => 'i' , 'Ķ' => 'k' , 'Ļ' => 'L' , 'Ņ' => 'N' ,
'Š' => 'S' , 'Ū' => 'u' , 'Ž' => 'Z' ,
'ā' => 'a' , 'č' => 'c' , 'ē' => 'e' , 'ģ' => 'g' , 'ī' => 'i' , 'ķ' => 'k' , 'ļ' => 'l' , 'ņ' => 'n' ,
'š' => 's' , 'ū' => 'u' , 'ž' => 'z'
);
2016-12-08 07:24:31 -08:00
2016-12-08 08:21:58 -08:00
return str_replace ( array_keys ( $char_map ), $char_map , $text );
2016-12-08 07:24:31 -08:00
}
2015-04-29 10:22:46 -07:00
2015-02-01 17:27:05 -08:00
/**
* Use it on html attributes to avoid breaking markup .
* @ example echo " <a href='#' title=' " . $tp -> toAttribute ( $text ) . " '>Hello</a> " ;
*/
2009-01-08 21:47:44 +00:00
function toAttribute ( $text )
2009-01-03 22:32:54 +00:00
{
2009-10-30 19:57:28 +00:00
// URLs posted without HTML access may have an & in them.
2015-04-29 10:22:46 -07:00
2009-10-30 19:57:28 +00:00
// Xhtml compliance.
2009-10-30 20:58:52 +00:00
$text = htmlspecialchars ( $text , ENT_QUOTES , 'UTF-8' );
2015-04-29 10:22:46 -07:00
2015-02-01 17:27:05 -08:00
if ( ! preg_match ( '/&#|\'|"|<|>/s' , $text ))
2007-12-30 23:31:18 +00:00
{
2009-01-03 22:32:54 +00:00
$text = $this -> replaceConstants ( $text );
return $text ;
2009-01-08 21:47:44 +00:00
}
else
2009-01-03 22:32:54 +00:00
{
2016-04-14 16:32:48 -07:00
return $text ;
2006-12-02 04:36:16 +00:00
}
}
2009-01-03 22:32:54 +00:00
2009-09-02 16:39:32 +00:00
/**
* Convert text blocks which are to be embedded within JS
2009-10-30 20:05:17 +00:00
*
2009-10-30 23:31:08 +00:00
* @ param string | array $stringarray
2009-10-30 20:05:17 +00:00
* @ return string
2009-09-02 16:39:32 +00:00
*/
2009-10-30 23:31:08 +00:00
public function toJS ( $stringarray )
2009-01-03 22:32:54 +00:00
{
2009-10-30 19:57:28 +00:00
$search = array ( " \r \n " , " \r " , " <br /> " , " ' " );
$replace = array ( " \\ n " , " " , " \\ n " , " \ ' " );
2006-12-02 04:36:16 +00:00
$stringarray = str_replace ( $search , $replace , $stringarray );
2009-10-30 19:57:28 +00:00
$stringarray = strip_tags ( $stringarray );
2006-12-02 04:36:16 +00:00
2009-10-30 19:57:28 +00:00
$trans_tbl = get_html_translation_table ( HTML_ENTITIES );
$trans_tbl = array_flip ( $trans_tbl );
2010-01-12 13:11:48 +00:00
2009-10-30 19:57:28 +00:00
return strtr ( $stringarray , $trans_tbl );
2006-12-02 04:36:16 +00:00
}
2009-01-03 22:32:54 +00:00
2015-12-02 14:23:48 +01:00
/**
* Converts a PHP variable into its JavaScript equivalent .
* We use HTML - safe strings , with several characters escaped .
*
* @ param mixed $var
* @ return string
*/
public function toJSON ( $var )
{
// The PHP version cannot change within a request.
static $php530 ;
if ( ! isset ( $php530 ))
{
$php530 = version_compare ( PHP_VERSION , '5.3.0' , '>=' );
}
if ( $php530 )
{
// Encode <, >, ', &, and " using the json_encode() options parameter.
return json_encode ( $var , JSON_HEX_TAG | JSON_HEX_APOS | JSON_HEX_AMP | JSON_HEX_QUOT );
}
return $this -> toJSONhelper ( $var );
}
/**
* Encodes a PHP variable to HTML - safe JSON for PHP versions below 5.3 . 0.
*
* @ param mixed $var
* @ return string
*/
public function toJSONhelper ( $var )
{
switch ( gettype ( $var ))
{
case 'boolean' :
return $var ? 'true' : 'false' ; // Lowercase necessary!
case 'integer' :
case 'double' :
return $var ;
case 'resource' :
case 'string' :
// Always use Unicode escape sequences (\u0022) over JSON escape
// sequences (\") to prevent browsers interpreting these as
// special characters.
$replace_pairs = array (
// ", \ and U+0000 - U+001F must be escaped according to RFC 4627.
'\\' => '\u005C' ,
'"' => '\u0022' ,
" \x00 " => '\u0000' ,
" \x01 " => '\u0001' ,
" \x02 " => '\u0002' ,
" \x03 " => '\u0003' ,
" \x04 " => '\u0004' ,
" \x05 " => '\u0005' ,
" \x06 " => '\u0006' ,
" \x07 " => '\u0007' ,
" \x08 " => '\u0008' ,
" \x09 " => '\u0009' ,
" \x0a " => '\u000A' ,
" \x0b " => '\u000B' ,
" \x0c " => '\u000C' ,
" \x0d " => '\u000D' ,
" \x0e " => '\u000E' ,
" \x0f " => '\u000F' ,
" \x10 " => '\u0010' ,
" \x11 " => '\u0011' ,
" \x12 " => '\u0012' ,
" \x13 " => '\u0013' ,
" \x14 " => '\u0014' ,
" \x15 " => '\u0015' ,
" \x16 " => '\u0016' ,
" \x17 " => '\u0017' ,
" \x18 " => '\u0018' ,
" \x19 " => '\u0019' ,
" \x1a " => '\u001A' ,
" \x1b " => '\u001B' ,
" \x1c " => '\u001C' ,
" \x1d " => '\u001D' ,
" \x1e " => '\u001E' ,
" \x1f " => '\u001F' ,
// Prevent browsers from interpreting these as as special.
" ' " => '\u0027' ,
'<' => '\u003C' ,
'>' => '\u003E' ,
'&' => '\u0026' ,
// Prevent browsers from interpreting the solidus as special and
// non-compliant JSON parsers from interpreting // as a comment.
'/' => '\u002F' ,
// While these are allowed unescaped according to ECMA-262, section
// 15.12.2, they cause problems in some JSON parsers.
" \xe2 \x80 \xa8 " => '\u2028' , // U+2028, Line Separator.
" \xe2 \x80 \xa9 " => '\u2029' , // U+2029, Paragraph Separator.
);
return '"' . strtr ( $var , $replace_pairs ) . '"' ;
case 'array' :
// Arrays in JSON can't be associative. If the array is empty or if it
// has sequential whole number keys starting with 0, it's not associative
// so we can go ahead and convert it as an array.
if ( empty ( $var ) || array_keys ( $var ) === range ( 0 , sizeof ( $var ) - 1 ))
{
$output = array ();
foreach ( $var as $v )
{
$output [] = $this -> toJSONhelper ( $v );
}
return '[ ' . implode ( ', ' , $output ) . ' ]' ;
}
break ;
// Otherwise, fall through to convert the array as an object.
case 'object' :
$output = array ();
foreach ( $var as $k => $v )
{
$output [] = $this -> toJSONhelper ( strval ( $k )) . ':' . $this -> toJSONhelper ( $v );
}
return '{' . implode ( ', ' , $output ) . '}' ;
default :
return 'null' ;
}
}
2009-09-02 16:39:32 +00:00
/**
2009-10-30 19:57:28 +00:00
* Convert Text for RSS / XML use .
2009-10-30 20:05:17 +00:00
*
2009-10-30 23:31:08 +00:00
* @ param string $text
* @ param boolean $tags [ optional ]
2009-10-30 20:05:17 +00:00
* @ return string
2009-09-02 16:39:32 +00:00
*/
2015-06-17 11:26:14 -07:00
function toRss ( $text , $tags = false )
2006-12-02 04:36:16 +00:00
{
2015-06-17 11:26:14 -07:00
if ( $tags != true )
2006-12-02 04:36:16 +00:00
{
2015-06-17 11:26:14 -07:00
$text = $this -> toHTML ( $text , true );
2006-12-02 04:36:16 +00:00
$text = strip_tags ( $text );
}
$text = $this -> toEmail ( $text );
2015-07-16 18:12:41 -07:00
2015-09-05 20:00:34 -07:00
$search = array ( " &#039; " , " &#036; " , " ' " , " $ " , e_BASE , " href='request.php " , " <!-- bbcode-html-start --> " , " <!-- bbcode-html-end --> " );
$replace = array ( " ' " , '$' , " ' " , '$' , SITEURL , " href=' " . SITEURL . " request.php " , '' , '' );
2009-10-30 20:05:17 +00:00
$text = str_replace ( $search , $replace , $text );
2006-12-02 04:36:16 +00:00
2016-01-27 12:05:15 -08:00
$text = $this -> ampEncode ( $text );
2015-06-17 11:26:14 -07:00
if ( $tags == true && ( $text ))
2006-12-02 04:36:16 +00:00
{
2009-10-30 19:57:28 +00:00
$text = " <![CDATA[ " . $text . " ]]> " ;
2006-12-02 04:36:16 +00:00
}
return $text ;
}
2015-06-07 18:16:06 -07:00
2016-01-27 12:05:15 -08:00
/**
* Clean and Encode Ampersands '&' for output to browser .
* @ param string $text
* @ return mixed | string
*/
function ampEncode ( $text = '' )
{
// Fix any left-over '&'
$text = str_replace ( '&' , '&' , $text ); //first revert any previously converted.
$text = str_replace ( '&' , '&' , $text );
return $text ;
}
2015-06-07 18:16:06 -07:00
/**
* Convert any string back to plain text .
* @ param $text
* @ return mixed | string
*/
2006-12-02 04:36:16 +00:00
function toText ( $text )
{
2015-06-07 18:16:06 -07:00
if ( $this -> isHtml ( $text ) == true )
{
$text = $this -> toHtml ( $text , true );
$text = strip_tags ( $text );
}
2006-12-02 04:36:16 +00:00
$search = array ( " &#039; " , " &#036; " , " ' " , " $ " , " \ " , " &#092; " );
$replace = array ( " ' " , '$' , " ' " , '$' , " \\ " , " \\ " );
$text = str_replace ( $search , $replace , $text );
return $text ;
}
2013-05-07 18:32:38 -07:00
2013-06-02 21:46:53 -07:00
/**
* Set the dimensions of a thumbNail ( generated by thumbUrl )
*/
2013-05-07 18:32:38 -07:00
public function setThumbSize ( $w = null , $h = null , $crop = null )
{
2016-02-09 11:02:08 -08:00
if ( $w !== null )
2013-05-07 18:32:38 -07:00
{
$this -> thumbWidth = intval ( $w );
}
2016-02-09 11:02:08 -08:00
if ( $h !== null )
2013-05-07 18:32:38 -07:00
{
$this -> thumbHeight = intval ( $h );
}
2016-02-09 11:02:08 -08:00
if ( $crop !== null )
2013-05-07 18:32:38 -07:00
{
$this -> thumbCrop = intval ( $crop );
}
}
2016-02-09 22:53:03 -08:00
public function thumbEncode ( $val = null )
{
if ( $val !== null )
{
$this -> thumbEncode = intval ( $val );
return null ;
}
return $this -> thumbEncode ;
}
2013-05-07 18:32:38 -07:00
2016-02-07 13:28:55 -08:00
/**
* Retrieve img tag width and height attributes for current thumbnail .
* @ return string
*/
public function thumbDimensions ( $type = 'single' )
{
if ( ! empty ( $this -> thumbCrop ) && ! empty ( $this -> thumbWidth ) && ! empty ( $this -> thumbHeight )) // dimensions are known.
{
return ( $type == 'double' ) ? 'width="' . $this -> thumbWidth . '" height="' . $this -> thumbHeight . '"' : " width=' " . $this -> thumbWidth . " ' height=' " . $this -> thumbHeight . " ' " ;
}
2013-05-07 18:32:38 -07:00
2016-02-07 13:28:55 -08:00
return null ;
}
2014-01-14 08:16:12 -08:00
/**
* Set or Get the value of the thumbNail Width .
* @ param $width ( optional )
*/
public function thumbWidth ( $width = null )
{
2015-06-28 16:31:02 -07:00
if ( $width !== null )
2014-01-14 08:16:12 -08:00
{
$this -> thumbWidth = intval ( $width );
}
return $this -> thumbWidth ;
}
2016-03-13 12:34:58 -07:00
/**
* Set or Get the value of the thumbNailbCrop .
* @ param bool $status = true / false
*/
public function thumbCrop ( $status = false )
{
if ( $status !== false )
{
$this -> thumbCrop = intval ( $status );
}
2014-01-14 08:16:12 -08:00
2016-03-13 12:34:58 -07:00
return $this -> thumbCrop ;
}
2014-01-14 08:16:12 -08:00
/**
* Set or Get the value of the thumbNail height .
* @ param $height ( optional )
*/
public function thumbHeight ( $height = null )
{
2014-11-18 21:11:26 +02:00
if ( $height !== null )
2014-01-14 08:16:12 -08:00
{
$this -> thumbHeight = intval ( $height );
}
return $this -> thumbHeight ;
}
2016-10-17 11:18:32 -07:00
2013-03-31 00:06:21 -07:00
/**
2016-10-17 11:18:32 -07:00
* Generate an auto - sized Image URL .
2016-10-17 16:22:24 -07:00
* @ param $url - path to image or leave blank for a placeholder . eg . { e_MEDIA } folder / my - image . jpg
2016-10-17 11:18:32 -07:00
* @ param array $options - width and height , but leaving this empty and using $this -> thumbWidth () and $this -> thumbHeight () is preferred . ie . { SETWIDTH : w = x & y = x }
* @ param int $options [ 'w' ] width ( optional )
* @ param int $options [ 'h' ] height ( optional )
* @ param bool | string $options [ 'crop' ] true / false or A ( auto ) or T ( op ) or B ( ottom ) or C ( enter ) or L ( eft ) or R ( right )
* @ param string $options [ 'scale' ] '2x' ( optional )
* @ param bool $options [ 'x' ] encode / mask the url parms ( optional )
* @ param bool $options [ 'nosef' ] when set to true disabled SEF Url being returned ( optional )
* @ param bool $raw set to true when the $url does not being with an e107 variable ie . " { e_XXXX} " eg . { e_MEDIA } ( optional )
* @ param bool $full when true returns full http :// url . ( optional )
* @ return string
2013-03-31 00:06:21 -07:00
*/
2013-12-31 09:59:19 -08:00
public function thumbUrl ( $url = null , $options = array (), $raw = false , $full = false )
2010-03-09 16:05:41 +00:00
{
2013-03-18 12:26:55 +02:00
if ( substr ( $url , 0 , 3 ) == " { e_ " ) // Fix for broken links that use {e_MEDIA} etc.
2011-08-19 23:39:44 +00:00
{
2013-03-18 12:26:55 +02:00
//$url = $this->replaceConstants($url,'abs');
// always switch to 'nice' urls when SC is used
2013-03-18 03:41:05 -07:00
$url = str_replace ( $this -> getUrlConstants ( 'sc' ), $this -> getUrlConstants ( 'raw' ), $url );
2011-08-19 23:39:44 +00:00
}
2010-03-09 16:05:41 +00:00
if ( ! is_array ( $options ))
{
parse_str ( $options , $options );
}
2016-10-17 11:18:32 -07:00
if ( ! empty ( $options [ 'scale' ])) // eg. scale the width height 2x 3x 4x. etc.
{
$options [ 'return' ] = 'src' ;
$options [ 'size' ] = $options [ 'scale' ];
unset ( $options [ 'scale' ]);
return $this -> thumbSrcSet ( $url , $options );
}
2013-04-27 13:15:04 -07:00
if ( strstr ( $url , e_MEDIA ) || strstr ( $url , e_SYSTEM )) // prevent disclosure of 'hashed' path.
{
$raw = true ;
}
2010-03-09 16:05:41 +00:00
if ( $raw ) $url = $this -> createConstants ( $url , 'mix' );
2011-08-22 23:52:45 +00:00
2012-07-14 10:40:40 +00:00
$baseurl = ( $full ? SITEURL : e_HTTP ) . 'thumb.php?' ;
2013-02-28 03:38:50 -08:00
2014-01-09 04:42:13 -08:00
$thurl = 'src=' . urlencode ( $url ) . '&' ;
2016-02-09 22:53:03 -08:00
2016-04-12 19:56:29 -07:00
// e107::getDebug()->log("Thumb: ".basename($url). print_a($options,true), E107_DBG_BASIC);
2016-10-17 16:22:24 -07:00
if ( ! empty ( $options ) && ( isset ( $options [ 'w' ]) || isset ( $options [ 'aw' ]) || isset ( $options [ 'h' ])))
2016-02-09 22:53:03 -08:00
{
2016-04-13 14:30:42 -07:00
$options [ 'w' ] = varset ( $options [ 'w' ]);
$options [ 'h' ] = varset ( $options [ 'h' ]);
$options [ 'crop' ] = ( isset ( $options [ 'aw' ]) || isset ( $options [ 'ah' ])) ? 1 : varset ( $options [ 'crop' ]);
$options [ 'aw' ] = varset ( $options [ 'aw' ]);
$options [ 'ah' ] = varset ( $options [ 'ah' ]);
$options [ 'x' ] = varset ( $options [ 'x' ]);
2016-02-09 22:53:03 -08:00
}
2016-04-13 14:30:42 -07:00
else
2016-02-09 22:53:03 -08:00
{
2016-04-13 14:30:42 -07:00
$options [ 'w' ] = $this -> thumbWidth ;
$options [ 'h' ] = $this -> thumbHeight ;
$options [ 'crop' ] = $this -> thumbCrop ;
$options [ 'aw' ] = null ;
$options [ 'ah' ] = null ;
$options [ 'x' ] = $this -> thumbEncode ;
2016-02-09 22:53:03 -08:00
}
2016-04-13 14:30:42 -07:00
if ( ! empty ( $options [ 'crop' ]))
2010-03-09 16:05:41 +00:00
{
2016-04-13 14:30:42 -07:00
if ( ! empty ( $options [ 'aw' ]) || ! empty ( $options [ 'ah' ]))
2013-03-24 03:03:31 -07:00
{
2016-04-13 14:30:42 -07:00
$options [ 'w' ] = $options [ 'aw' ] ;
$options [ 'h' ] = $options [ 'ah' ] ;
2013-03-24 03:03:31 -07:00
}
2016-04-13 14:30:42 -07:00
$thurl .= 'aw=' . intval ( $options [ 'w' ]) . '&ah=' . intval ( $options [ 'h' ]);
2016-10-18 10:20:10 -07:00
if ( ! is_numeric ( $options [ 'crop' ]))
2016-10-11 14:58:08 -07:00
{
$thurl .= '&c=' . $options [ 'crop' ];
$options [ 'nosef' ] = true ;
}
2010-03-09 16:05:41 +00:00
}
else
{
2016-04-13 14:30:42 -07:00
$thurl .= 'w=' . intval ( $options [ 'w' ]) . '&h=' . intval ( $options [ 'h' ]);
2010-03-09 16:05:41 +00:00
}
2016-02-03 18:17:14 -08:00
2016-10-11 14:58:08 -07:00
if ( e_MOD_REWRITE_MEDIA == true && empty ( $options [ 'nosef' ]) ) // Experimental SEF URL support.
2016-02-03 18:17:14 -08:00
{
$options [ 'full' ] = $full ;
$options [ 'ext' ] = substr ( $url , - 3 );
$options [ 'thurl' ] = $thurl ;
2016-04-13 14:30:42 -07:00
// $options['x'] = $this->thumbEncode();
2016-02-04 12:42:48 -08:00
if ( $sefUrl = $this -> thumbUrlSEF ( $url , $options ))
{
return $sefUrl ;
}
2016-02-03 18:17:14 -08:00
}
2016-04-13 14:30:42 -07:00
if ( ! empty ( $options [ 'x' ] )) //base64 encode url
2012-07-02 01:32:56 +00:00
{
2012-07-14 10:40:40 +00:00
$thurl = 'id=' . base64_encode ( $thurl );
2012-07-02 01:32:56 +00:00
}
2010-03-09 16:05:41 +00:00
2012-07-14 10:40:40 +00:00
return $baseurl . $thurl ;
2010-03-09 16:05:41 +00:00
}
2009-09-02 16:39:32 +00:00
2016-02-08 21:33:55 -08:00
/**
* Experimental : Generate a Thumb URL for use in the img srcset attribute .
* @ param string $src eg . { e_MEDIA_IMAGE } myimage . jpg
2016-02-09 22:53:03 -08:00
* @ param int | str $width - desired size in px or '2x' or '3x' or null for all or array (
2016-02-08 21:33:55 -08:00
* @ return string
*/
function thumbSrcSet ( $src = '' , $width = null )
{
2016-02-09 22:53:03 -08:00
if ( is_array ( $width ))
{
$parm = $width ;
2016-04-13 14:30:42 -07:00
$multiply = $width [ 'size' ];
2016-09-17 11:10:25 -07:00
$encode = ( ! empty ( $width [ 'x' ])) ? $width [ 'x' ] : false ;
2016-02-09 22:53:03 -08:00
$width = $width [ 'size' ];
}
2016-02-08 21:33:55 -08:00
2016-04-13 14:30:42 -07:00
// $encode = $this->thumbEncode();;
2016-02-08 21:33:55 -08:00
if ( $width == null || $width == 'all' )
{
$links = array ();
$mag = ( $width == null ) ? array ( 1 , 2 ) : array ( 160 , 320 , 460 , 600 , 780 , 920 , 1100 );
foreach ( $mag as $v )
{
$w = ( $this -> thumbWidth * $v );
2016-02-09 22:53:03 -08:00
$h = ( $this -> thumbHeight * $v );
2016-02-08 21:33:55 -08:00
2016-02-09 22:53:03 -08:00
$att = ( ! empty ( $this -> thumbCrop )) ? array ( 'aw' => $w , 'ah' => $h ) : array ( 'w' => $w , 'h' => $h );
$att [ 'x' ] = $encode ;
2016-02-08 21:33:55 -08:00
$add = ( $width == null ) ? " " . $v . " x " : " " . $v . " w " ;
2016-02-09 22:53:03 -08:00
$links [] = $this -> thumbUrl ( $src , $att ) . $add ; // " w".$width; //
2016-02-08 21:33:55 -08:00
}
return implode ( " , " , $links );
}
2016-04-13 14:30:42 -07:00
elseif ( $multiply == '2x' || $multiply == '3x' || $multiply == '4x' )
2016-02-08 21:33:55 -08:00
{
2016-04-13 14:30:42 -07:00
if ( empty ( $parm [ 'w' ]) && isset ( $parm [ 'h' ]))
{
$parm [ 'h' ] = ( $parm [ 'h' ] * $multiply ) ;
2016-04-13 19:44:46 -07:00
return $this -> thumbUrl ( $src , $parm ) . " h " . $parm [ 'h' ] . " " . $multiply ;
2016-04-13 14:30:42 -07:00
}
2016-12-23 08:53:47 -08:00
$width = ( ! empty ( $parm [ 'w' ]) || ! empty ( $parm [ 'h' ])) ? ( intval ( $parm [ 'w' ]) * $multiply ) : ( $this -> thumbWidth * $multiply );
$height = ( ! empty ( $parm [ 'h' ]) || ! empty ( $parm [ 'w' ])) ? ( intval ( $parm [ 'h' ]) * $multiply ) : ( $this -> thumbHeight * $multiply );
2016-03-12 00:15:29 -08:00
}
2016-02-08 21:33:55 -08:00
else
{
$height = (( $this -> thumbHeight * $width ) / $this -> thumbWidth );
2016-12-23 08:53:47 -08:00
2016-02-08 21:33:55 -08:00
}
2016-12-23 08:53:47 -08:00
2016-05-13 07:14:49 -07:00
if ( ! isset ( $parm [ 'aw' ]))
{
$parm [ 'aw' ] = null ;
}
if ( ! isset ( $parm [ 'ah' ]))
{
$parm [ 'ah' ] = null ;
}
2016-09-17 11:10:25 -07:00
if ( ! isset ( $parm [ 'x' ]))
{
$parm [ 'x' ] = null ;
}
if ( ! isset ( $parm [ 'crop' ]))
{
$parm [ 'crop' ] = null ;
}
2016-04-13 14:30:42 -07:00
$parms = array ( 'w' => $width , 'h' => $height , 'crop' => $parm [ 'crop' ], 'x' => $parm [ 'x' ], 'aw' => $parm [ 'aw' ], 'ah' => $parm [ 'ah' ]);
// $parms = !empty($this->thumbCrop) ? array('aw' => $width, 'ah' => $height, 'x'=>$encode) : array('w' => $width, 'h' => $height, 'x'=>$encode );
// $parms['x'] = $encode;
2016-02-08 21:33:55 -08:00
2016-12-23 08:53:47 -08:00
2016-10-17 11:18:32 -07:00
if ( ! empty ( $parm [ 'return' ]) && $parm [ 'return' ] == 'src' )
{
return $this -> thumbUrl ( $src , $parms );
}
2016-02-08 21:33:55 -08:00
return $this -> thumbUrl ( $src , $parms ) . " " . $width . " w " ;
2016-04-13 14:30:42 -07:00
2016-02-08 21:33:55 -08:00
}
2016-10-17 11:18:32 -07:00
public function thumbUrlScale ( $src , $parm )
{
}
2016-02-03 18:17:14 -08:00
/**
* Used by thumbUrl when SEF Image URLS is active . @ see e107 . htaccess
* @ param $url
* @ param array $options
* @ return string
*/
private function thumbUrlSEF ( $url = '' , $options = array ())
{
2016-03-10 13:33:11 -08:00
if ( ! empty ( $options [ 'full' ]))
{
$base = SITEURL ;
}
else
{
$base = ( ! empty ( $options [ 'ebase' ])) ? '{e_BASE}' : e_HTTP ;
}
// $base = (!empty($options['full'])) ? SITEURL : e_HTTP;
2016-02-03 18:17:14 -08:00
2016-02-04 12:42:48 -08:00
if ( ! empty ( $options [ 'x' ]) && ! empty ( $options [ 'ext' ])) // base64 encoded. Build URL for: RewriteRule ^media\/img\/([-A-Za-z0-9+/]*={0,3})\.(jpg|gif|png)?$ thumb.php?id=$1
2016-02-03 18:17:14 -08:00
{
$ext = strtolower ( $options [ 'ext' ]);
return $base . 'media/img/' . base64_encode ( $options [ 'thurl' ]) . '.' . str_replace ( " jpeg " , " jpg " , $ext );
}
2016-02-04 12:42:48 -08:00
elseif ( strstr ( $url , 'e_MEDIA_IMAGE' )) // media images.
{
$sefPath = 'media/img/' ;
$clean = array ( '{e_MEDIA_IMAGE}' , 'e_MEDIA_IMAGE/' );
}
elseif ( strstr ( $url , 'e_AVATAR' )) // avatars
{
$sefPath = 'media/avatar/' ;
$clean = array ( '{e_AVATAR}' , 'e_AVATAR/' );
}
2016-02-06 19:33:23 -08:00
elseif ( strstr ( $url , 'e_THEME' )) // theme folder images.
{
$sefPath = 'theme/img/' ;
$clean = array ( '{e_THEME}' , 'e_THEME/' );
}
2016-02-04 12:42:48 -08:00
else
{
2016-04-13 14:30:42 -07:00
// e107::getDebug()->log("SEF URL False: ".$url);
2016-02-04 12:42:48 -08:00
return false ;
}
2016-02-03 18:17:14 -08:00
// Build URL for ReWriteRule ^media\/img\/(a)?([\d]*)x(a)?([\d]*)\/(.*)?$ thumb.php?src=e_MEDIA_IMAGE/$5&$1w=$2&$3h=$4
2016-02-04 12:42:48 -08:00
$sefUrl = $base . $sefPath ;
2016-02-03 18:17:14 -08:00
if ( vartrue ( $options [ 'aw' ]) || vartrue ( $options [ 'ah' ]))
{
$sefUrl .= 'a' . intval ( $options [ 'aw' ]) . 'xa' . intval ( $options [ 'ah' ]);
}
2016-04-13 14:30:42 -07:00
elseif ( ! empty ( $options [ 'crop' ]))
{
2016-10-11 14:58:08 -07:00
2016-10-18 10:20:10 -07:00
if ( ! is_numeric ( $options [ 'crop' ]))
2016-10-11 14:58:08 -07:00
{
$sefUrl .= strtolower ( $options [ 'crop' ]) . intval ( $options [ 'w' ]) . 'x' . strtolower ( $options [ 'crop' ]) . intval ( $options [ 'h' ]);
}
else
{
$sefUrl .= 'a' . intval ( $options [ 'w' ]) . 'xa' . intval ( $options [ 'h' ]);
}
2016-04-13 14:30:42 -07:00
}
2016-02-03 18:17:14 -08:00
else
{
$sefUrl .= intval ( $options [ 'w' ]) . 'x' . intval ( $options [ 'h' ]);
}
$sefUrl .= '/' ;
$sefUrl .= str_replace ( $clean , '' , $url );
return $sefUrl ;
}
2010-03-10 12:48:05 +00:00
/**
* Help for converting to more safe URLs
* e . g . { e_MEDIA_FILE } path / to / video . flv => e_MEDIA_FILE / path / to / video . flv
*
* @ todo support for ALL URL shortcodes ( replacement methods )
* @ param string $type sc | raw | rev | all
* @ return array
*/
public function getUrlConstants ( $type = 'sc' )
{
2010-03-10 15:43:42 +00:00
// sub-folders first!
2010-03-10 12:48:05 +00:00
static $array = array (
'e_MEDIA_FILE/' => '{e_MEDIA_FILE}' ,
'e_MEDIA_VIDEO/' => '{e_MEDIA_VIDEO}' ,
'e_MEDIA_IMAGE/' => '{e_MEDIA_IMAGE}' ,
'e_MEDIA_ICON/' => '{e_MEDIA_ICON}' ,
2013-04-19 22:50:41 -07:00
'e_AVATAR/' => '{e_AVATAR}' ,
2013-05-07 20:30:20 -07:00
'e_AVATAR_DEFAULT/' => '{e_AVATAR_DEFAULT}' ,
'e_AVATAR_UPLOAD/' => '{e_AVATAR_UPLOAD}' ,
2010-03-10 12:48:05 +00:00
'e_WEB_JS/' => '{e_WEB_JS}' ,
'e_WEB_CSS/' => '{e_WEB_CSS}' ,
'e_WEB_IMAGE/' => '{e_WEB_IMAGE}' ,
2013-05-17 18:17:04 -07:00
'e_IMPORT/' => '{e_IMPORT}' ,
2012-12-16 13:19:52 -08:00
// 'e_WEB_PACK/' => '{e_WEB_PACK}',
2010-03-10 15:43:42 +00:00
'e_BASE/' => '{e_BASE}' ,
'e_ADMIN/' => '{e_ADMIN}' ,
'e_IMAGE/' => '{e_IMAGE}' ,
'e_THEME/' => '{e_THEME}' ,
'e_PLUGIN/' => '{e_PLUGIN}' ,
2012-12-16 13:19:52 -08:00
'e_HANDLER/' => '{e_HANDLER}' , // BC
2010-03-10 15:43:42 +00:00
'e_MEDIA/' => '{e_MEDIA}' ,
'e_WEB/' => '{e_ADMIN}' ,
2014-09-03 14:09:10 -07:00
// 'THEME/' => '{THEME}',
2010-03-10 12:48:05 +00:00
);
2014-08-18 22:57:18 -07:00
2010-03-10 12:48:05 +00:00
switch ( $type )
{
case 'sc' :
return array_values ( $array );
break ;
case 'raw' :
return array_keys ( $array );
break ;
case 'rev' :
return array_reverse ( $array , true );
break ;
case 'all' :
return $array ;
break ;
}
return array ();
}
2013-04-22 20:46:06 -07:00
function getEmotes ()
{
return $this -> e_emote -> emotes ;
}
2009-09-02 16:39:32 +00:00
/**
* Replace e107 path constants
2009-10-30 19:57:28 +00:00
* Note : only an ADMIN user can convert { e_ADMIN }
2011-01-03 10:54:08 +00:00
* TODO - runtime cache of search / replace arrays ( object property ) when $mode !== ''
2009-09-12 18:20:23 +00:00
* @ param string $text
2009-10-30 19:57:28 +00:00
* @ param string $mode [ optional ] abs | full " full " = produce absolute URL path , e . g . http :// sitename . com / e107_plugins / etc
2012-12-16 19:23:11 +00:00
* 'abs' = produce truncated URL path , e . g . e107plugins / etc
2009-09-02 16:39:32 +00:00
* " " ( default ) = URL ' s get relative path e . g . ../ e107_plugins / etc
2009-09-12 18:20:23 +00:00
* @ param mixed $all [ optional ] if TRUE , then when $mode is " full " or TRUE , USERID is also replaced ...
2009-09-02 16:39:32 +00:00
* when $mode is " " ( default ), ALL other e107 constants are replaced
2009-09-29 17:40:56 +00:00
* @ return string
2009-09-02 16:39:32 +00:00
*/
2009-10-30 23:31:08 +00:00
public function replaceConstants ( $text , $mode = '' , $all = FALSE )
2006-12-02 04:36:16 +00:00
{
2010-01-12 13:11:48 +00:00
2009-07-17 02:28:49 +00:00
if ( $mode != " " )
2006-12-02 04:36:16 +00:00
{
2009-08-19 14:39:57 +00:00
$e107 = e107 :: getInstance ();
2009-10-30 19:57:28 +00:00
2009-08-19 14:39:57 +00:00
$replace_relative = array (
2010-03-10 15:43:42 +00:00
$e107 -> getFolder ( 'media_files' ),
$e107 -> getFolder ( 'media_video' ),
$e107 -> getFolder ( 'media_image' ),
$e107 -> getFolder ( 'media_icon' ),
2013-04-19 22:50:41 -07:00
$e107 -> getFolder ( 'avatars' ),
2010-03-10 15:43:42 +00:00
$e107 -> getFolder ( 'web_js' ),
$e107 -> getFolder ( 'web_css' ),
$e107 -> getFolder ( 'web_image' ),
2012-12-16 19:23:11 +00:00
//$e107->getFolder('web_pack'),
2011-01-03 10:54:08 +00:00
e_IMAGE_ABS ,
e_THEME_ABS ,
2009-08-20 12:27:26 +00:00
$e107 -> getFolder ( 'images' ),
$e107 -> getFolder ( 'plugins' ),
$e107 -> getFolder ( 'files' ),
$e107 -> getFolder ( 'themes' ),
2009-09-04 15:24:41 +00:00
// $e107->getFolder('downloads'),
2009-11-14 04:13:11 +00:00
$e107 -> getFolder ( 'handlers' ),
2010-03-10 15:43:42 +00:00
$e107 -> getFolder ( 'media' ),
$e107 -> getFolder ( 'web' ),
2011-01-03 10:54:08 +00:00
$e107 -> site_theme ? $e107 -> getFolder ( 'themes' ) . $e107 -> site_theme . '/' : '' ,
defset ( 'THEME_ABS' ),
( ADMIN ? $e107 -> getFolder ( 'admin' ) : '' ),
2011-11-25 17:36:40 +00:00
'' ,
$e107 -> getFolder ( 'core' ),
$e107 -> getFolder ( 'system' ),
2009-08-19 14:39:57 +00:00
);
2009-10-30 19:57:28 +00:00
switch ( $mode )
2009-07-17 02:28:49 +00:00
{
2009-08-19 14:39:57 +00:00
case 'abs' :
2009-10-30 19:57:28 +00:00
$replace_absolute = array (
2010-03-10 15:43:42 +00:00
e_MEDIA_FILE_ABS ,
e_MEDIA_VIDEO_ABS ,
e_MEDIA_IMAGE_ABS ,
e_MEDIA_ICON_ABS ,
2013-04-19 22:50:41 -07:00
e_AVATAR_ABS ,
2010-03-10 15:43:42 +00:00
e_JS_ABS ,
e_CSS_ABS ,
e_WEB_IMAGE_ABS ,
2012-12-14 22:25:14 -08:00
// e_PACK_ABS,
2009-08-19 14:39:57 +00:00
e_IMAGE_ABS ,
e_THEME_ABS ,
e_IMAGE_ABS ,
e_PLUGIN_ABS ,
e_FILE_ABS ,
e_THEME_ABS ,
2009-09-04 15:24:41 +00:00
// e_DOWNLOAD_ABS, //impossible when download is done via php.
2012-12-16 19:23:11 +00:00
'' , // handlers - no ABS path available
2010-03-10 15:43:42 +00:00
e_MEDIA_ABS ,
e_WEB_ABS ,
2011-01-03 10:54:08 +00:00
defset ( 'THEME_ABS' ),
defset ( 'THEME_ABS' ),
( ADMIN ? e_ADMIN_ABS : '' ),
2011-11-25 17:36:40 +00:00
$e107 -> server_path ,
'' , // no e_CORE absolute path
'' , // no e_SYSTEM absolute path
2009-08-19 14:39:57 +00:00
);
break ;
2009-10-30 19:57:28 +00:00
2009-08-19 14:39:57 +00:00
case 'full' :
$replace_absolute = array (
2010-03-10 15:43:42 +00:00
SITEURLBASE . e_MEDIA_FILE_ABS ,
SITEURLBASE . e_MEDIA_VIDEO_ABS ,
SITEURLBASE . e_MEDIA_IMAGE_ABS ,
SITEURLBASE . e_MEDIA_ICON_ABS ,
2013-04-19 22:50:41 -07:00
SITEURLBASE . e_AVATAR_ABS ,
2010-03-10 15:43:42 +00:00
SITEURLBASE . e_JS_ABS ,
SITEURLBASE . e_CSS_ABS ,
SITEURLBASE . e_WEB_IMAGE_ABS ,
2012-12-14 22:25:14 -08:00
// SITEURLBASE.e_PACK_ABS,
2010-03-10 15:43:42 +00:00
SITEURLBASE . e_IMAGE_ABS ,
SITEURLBASE . e_THEME_ABS ,
SITEURLBASE . e_IMAGE_ABS ,
SITEURLBASE . e_PLUGIN_ABS ,
SITEURLBASE . e_FILE_ABS , // deprecated
SITEURLBASE . e_THEME_ABS ,
//SITEURL.$e107->getFolder('downloads'),
2012-12-16 19:23:11 +00:00
'' , // handlers - no ABS path available
2010-03-10 15:43:42 +00:00
SITEURLBASE . e_MEDIA_ABS ,
SITEURLBASE . e_WEB_ABS ,
2011-01-03 10:54:08 +00:00
defset ( 'THEME_ABS' ) ? SITEURLBASE . THEME_ABS : '' ,
defset ( 'THEME_ABS' ) ? SITEURLBASE . THEME_ABS : '' ,
( ADMIN ? SITEURLBASE . e_ADMIN_ABS : '' ),
2011-11-25 17:36:40 +00:00
SITEURL ,
'' , // no e_CORE absolute path
'' , // no e_SYSTEM absolute path
2009-08-19 14:39:57 +00:00
);
break ;
2009-07-17 02:28:49 +00:00
}
2010-03-10 15:43:42 +00:00
// sub-folders first!
$search = array (
'{e_MEDIA_FILE}' ,
'{e_MEDIA_VIDEO}' ,
'{e_MEDIA_IMAGE}' ,
'{e_MEDIA_ICON}' ,
2013-04-19 22:50:41 -07:00
'{e_AVATAR}' ,
2010-03-10 15:43:42 +00:00
'{e_WEB_JS}' ,
'{e_WEB_CSS}' ,
'{e_WEB_IMAGE}' ,
2012-12-14 22:25:14 -08:00
// '{e_WEB_PACK}',
2010-03-10 15:43:42 +00:00
" { e_IMAGE_ABS} " ,
" { e_THEME_ABS} " ,
" { e_IMAGE} " ,
" { e_PLUGIN} " ,
" { e_FILE} " ,
" { e_THEME} " ,
//,"{e_DOWNLOAD}"
" { e_HANDLER} " ,
" { e_MEDIA} " ,
" { e_WEB} " ,
2011-01-03 10:54:08 +00:00
" { THEME} " ,
" { THEME_ABS} " ,
" { e_ADMIN} " ,
2010-03-10 15:43:42 +00:00
" { e_BASE} " ,
2011-11-25 17:36:40 +00:00
" { e_CORE} " ,
" { e_SYSTEM} " ,
2009-11-14 04:13:11 +00:00
);
2009-07-17 02:28:49 +00:00
2011-01-03 10:54:08 +00:00
/* if ( ADMIN )
2009-01-03 22:32:54 +00:00
{
2009-08-20 12:27:26 +00:00
$replace_relative [] = $e107 -> getFolder ( 'admin' );
$replace_absolute [] = SITEURL . $e107 -> getFolder ( 'admin' );
2006-12-02 04:36:16 +00:00
$search [] = " { e_ADMIN} " ;
2011-01-03 10:54:08 +00:00
} */
2009-07-17 02:28:49 +00:00
2009-01-08 21:47:44 +00:00
if ( $all )
2009-01-03 22:32:54 +00:00
{
if ( USER )
{ // Can only replace with valid number for logged in users
$replace_relative [] = USERID ;
$replace_absolute [] = USERID ;
}
else
{
$replace_relative [] = '' ;
$replace_absolute [] = '' ;
}
$search [] = " { USERID} " ;
2010-01-12 13:11:48 +00:00
}
2011-03-19 11:54:12 +00:00
2011-01-03 10:54:08 +00:00
// current THEME
/* if ( ! defined ( 'THEME' ))
{
//if not already parsed by doReplace
$text = str_replace ( array ( '{THEME}' , '{THEME_ABS}' ), '' , $text );
}
else
{
$replace_relative [] = THEME ;
$replace_absolute [] = THEME_ABS ;
$search [] = " { THEME} " ;
$replace_relative [] = THEME ;
$replace_absolute [] = THEME_ABS ;
$search [] = " { THEME_ABS} " ;
} */
2009-07-17 02:28:49 +00:00
$replace = (( string ) $mode == " full " || ( string ) $mode == 'abs' ) ? $replace_absolute : $replace_relative ;
2006-12-02 04:36:16 +00:00
return str_replace ( $search , $replace , $text );
}
2009-07-17 02:28:49 +00:00
2007-12-30 23:31:18 +00:00
// $pattern = ($all ? "#\{([A-Za-z_0-9]*)\}#s" : "#\{(e_[A-Z]*)\}#s");
2010-03-16 18:41:35 +00:00
$pattern = ( $all ? '#\{([A-Za-z_0-9]*)\}#s' : '#\{(e_[A-Z]*(?:_IMAGE|_VIDEO|_FILE|_CONTENT|_ICON|_AVATAR|_JS|_CSS|_PACK|_DB|_ABS){0,1})\}#s' );
2009-10-30 19:57:28 +00:00
$text = preg_replace_callback ( $pattern , array ( $this , 'doReplace' ), $text );
if ( ! defined ( 'THEME' ))
{
//if not already parsed by doReplace
$text = str_replace ( array ( '{THEME}' , '{THEME_ABS}' ), '' , $text );
}
2009-11-19 13:46:29 +00:00
else
{
$srch = array ( '{THEME}' , '{THEME_ABS}' );
$repl = array ( THEME , THEME_ABS );
2010-01-12 13:11:48 +00:00
$text = str_replace ( $srch , $repl , $text );
2009-11-19 13:46:29 +00:00
}
2006-12-02 04:36:16 +00:00
return $text ;
}
2009-01-03 22:32:54 +00:00
2006-12-02 04:36:16 +00:00
function doReplace ( $matches )
{
2011-01-15 11:53:31 +00:00
if ( defined ( $matches [ 1 ]) && ( deftrue ( 'ADMIN' ) || strpos ( $matches [ 1 ], 'ADMIN' ) === FALSE ))
2006-12-02 04:36:16 +00:00
{
return constant ( $matches [ 1 ]);
}
return $matches [ 1 ];
}
2009-09-28 19:17:59 +00:00
/**
* Create and substitute e107 constants in passed URL
2009-10-30 19:57:28 +00:00
*
2009-09-28 19:17:59 +00:00
* @ param string $url
2009-11-16 20:40:39 +00:00
* @ param integer $mode 0 - folders , 1 - relative ( 'rel' ), 2 - absolute ( 'abs' ), 3 - full ( 'full' ) ( with domain ), 4 - absolute & relative ( 'mix' ) ( combination of 1 , 2 , 3 )
2009-10-30 20:05:17 +00:00
* @ return string
2009-09-28 19:17:59 +00:00
*/
2009-10-30 23:31:08 +00:00
public function createConstants ( $url , $mode = 0 )
2009-10-30 19:57:28 +00:00
{
2011-05-10 12:36:11 +00:00
2009-10-30 19:57:28 +00:00
//FIXME - create constants for absolute paths and site URL's
2009-11-16 20:40:39 +00:00
if ( ! is_numeric ( $mode ))
{
switch ( $mode )
{
case 'rel' : $mode = 1 ; break ;
case 'abs' : $mode = 2 ; break ;
case 'full' : $mode = 3 ; break ;
case 'mix' : $mode = 4 ; break ;
2010-03-10 12:48:05 +00:00
case 'nice' : $mode = 5 ; break ;
2009-11-16 20:40:39 +00:00
}
}
2009-09-28 19:17:59 +00:00
$e107 = e107 :: getInstance ();
switch ( $mode )
2006-12-02 04:36:16 +00:00
{
2009-09-28 19:17:59 +00:00
case 0 : // folder name only.
$tmp = array (
2010-03-10 15:43:42 +00:00
'{e_MEDIA_FILE}' => $e107 -> getFolder ( 'media_files' ),
2011-05-10 12:36:11 +00:00
'{e_MEDIA_VIDEO}' => $e107 -> getFolder ( 'media_videos' ),
'{e_MEDIA_IMAGE}' => $e107 -> getFolder ( 'media_images' ),
'{e_MEDIA_ICON}' => $e107 -> getFolder ( 'media_icons' ),
2013-04-19 22:50:41 -07:00
'{e_AVATAR}' => $e107 -> getFolder ( 'avatars' ),
2010-03-10 15:43:42 +00:00
'{e_WEB_JS}' => $e107 -> getFolder ( 'web_js' ),
'{e_WEB_CSS}' => $e107 -> getFolder ( 'web_css' ),
2011-05-10 12:36:11 +00:00
'{e_WEB_IMAGE}' => $e107 -> getFolder ( 'web_images' ),
2012-12-16 13:02:19 -08:00
// '{e_WEB_PACK}' => $e107->getFolder('web_packs'),
2010-03-10 15:43:42 +00:00
2009-09-28 19:17:59 +00:00
'{e_IMAGE}' => $e107 -> getFolder ( 'images' ),
'{e_PLUGIN}' => $e107 -> getFolder ( 'plugins' ),
'{e_FILE}' => $e107 -> getFolder ( 'files' ),
'{e_THEME}' => $e107 -> getFolder ( 'themes' ),
'{e_DOWNLOAD}' => $e107 -> getFolder ( 'downloads' ),
'{e_ADMIN}' => $e107 -> getFolder ( 'admin' ),
2010-03-01 14:29:49 +00:00
'{e_HANDLER}' => $e107 -> getFolder ( 'handlers' ),
'{e_MEDIA}' => $e107 -> getFolder ( 'media' ),
2010-03-08 16:00:36 +00:00
'{e_WEB}' => $e107 -> getFolder ( 'web' ),
2013-01-17 21:35:43 -08:00
'{e_UPLOAD}' => $e107 -> getFolder ( 'uploads' ),
2009-10-30 19:57:28 +00:00
);
2011-05-10 12:36:11 +00:00
2009-09-28 19:17:59 +00:00
break ;
2009-10-30 19:57:28 +00:00
2011-05-10 12:36:11 +00:00
2009-09-28 19:17:59 +00:00
case 1 : // relative path only
$tmp = array (
2010-03-10 15:43:42 +00:00
'{e_MEDIA_FILE}' => e_MEDIA_FILE ,
'{e_MEDIA_VIDEO}' => e_MEDIA_VIDEO ,
'{e_MEDIA_IMAGE}' => e_MEDIA_IMAGE ,
'{e_MEDIA_ICON}' => e_MEDIA_ICON ,
2013-04-19 22:50:41 -07:00
'{e_AVATAR}' => e_AVATAR ,
2013-05-17 18:17:04 -07:00
'{e_IMPORT}' => e_IMPORT ,
2010-03-10 15:43:42 +00:00
'{e_WEB_JS}' => e_WEB_JS ,
'{e_WEB_CSS}' => e_WEB_CSS ,
'{e_WEB_IMAGE}' => e_WEB_IMAGE ,
2012-12-16 13:19:52 -08:00
// '{e_WEB_PACK}' => e_WEB_PACK,
2010-03-10 15:43:42 +00:00
2009-09-28 19:17:59 +00:00
'{e_IMAGE}' => e_IMAGE ,
'{e_PLUGIN}' => e_PLUGIN ,
'{e_FILE}' => e_FILE ,
'{e_THEME}' => e_THEME ,
'{e_DOWNLOAD}' => e_DOWNLOAD ,
'{e_ADMIN}' => e_ADMIN ,
2010-03-01 14:29:49 +00:00
'{e_HANDLER}' => e_HANDLER ,
'{e_MEDIA}' => e_MEDIA ,
2010-03-08 16:00:36 +00:00
'{e_WEB}' => e_WEB ,
2012-12-22 02:11:03 -08:00
'{e_UPLOAD}' => e_UPLOAD ,
2009-09-28 19:17:59 +00:00
);
break ;
2009-10-30 19:57:28 +00:00
2009-09-28 19:17:59 +00:00
case 2 : // absolute path only
$tmp = array (
2010-03-10 15:43:42 +00:00
'{e_MEDIA_FILE}' => e_MEDIA_FILE_ABS ,
'{e_MEDIA_VIDEO}' => e_MEDIA_VIDEO_ABS ,
'{e_MEDIA_IMAGE}' => e_MEDIA_IMAGE_ABS ,
'{e_MEDIA_ICON}' => e_MEDIA_ICON_ABS ,
2013-04-19 22:50:41 -07:00
'{e_AVATAR}' => e_AVATAR_ABS ,
2010-03-10 15:43:42 +00:00
'{e_WEB_JS}' => e_JS_ABS ,
'{e_WEB_CSS}' => e_CSS_ABS ,
'{e_WEB_IMAGE}' => e_WEB_IMAGE_ABS ,
2012-12-14 22:25:14 -08:00
// '{e_WEB_PACK}' => e_PACK_ABS,
2010-03-10 15:43:42 +00:00
2009-09-28 19:17:59 +00:00
'{e_IMAGE}' => e_IMAGE_ABS ,
'{e_PLUGIN}' => e_PLUGIN_ABS ,
2010-03-08 16:00:36 +00:00
'{e_FILE}' => e_FILE_ABS , // deprecated
2009-09-28 19:17:59 +00:00
'{e_THEME}' => e_THEME_ABS ,
2010-03-08 16:00:36 +00:00
'{e_DOWNLOAD}' => e_HTTP . 'request.php?' , // FIXME - we need solution!
2009-09-28 19:17:59 +00:00
'{e_ADMIN}' => e_ADMIN_ABS ,
2010-03-08 16:00:36 +00:00
//'{e_HANDLER}' => e_HANDLER_ABS, - no ABS path available
2010-03-01 14:29:49 +00:00
'{e_MEDIA}' => e_MEDIA_ABS ,
2010-03-08 16:00:36 +00:00
'{e_WEB}' => e_WEB_ABS ,
2011-12-07 21:07:21 +00:00
'{e_BASE}' => e_HTTP ,
2009-09-28 19:17:59 +00:00
);
break ;
2009-10-30 19:57:28 +00:00
2009-09-28 19:17:59 +00:00
case 3 : // full path (e.g http://domain.com/e107_images/)
$tmp = array (
2010-03-10 15:43:42 +00:00
'{e_MEDIA_FILE}' => SITEURLBASE . e_MEDIA_FILE_ABS ,
'{e_MEDIA_VIDEO}' => SITEURLBASE . e_MEDIA_VIDEO_ABS ,
'{e_MEDIA_IMAGE}' => SITEURLBASE . e_MEDIA_IMAGE_ABS ,
'{e_MEDIA_ICON}' => SITEURLBASE . e_MEDIA_ICON_ABS ,
2013-04-19 22:50:41 -07:00
'{e_AVATAR}' => SITEURLBASE . e_AVATAR_ABS ,
2010-03-10 15:43:42 +00:00
'{e_WEB_JS}' => SITEURLBASE . e_JS_ABS ,
'{e_WEB_CSS}' => SITEURLBASE . e_CSS_ABS ,
'{e_WEB_IMAGE}' => SITEURLBASE . e_WEB_IMAGE_ABS ,
2012-12-14 22:25:14 -08:00
// '{e_WEB_PACK}' => SITEURLBASE.e_PACK_ABS,
2010-03-10 15:43:42 +00:00
'{e_IMAGE}' => SITEURLBASE . e_IMAGE_ABS ,
'{e_PLUGIN}' => SITEURLBASE . e_PLUGIN_ABS ,
'{e_FILE}' => SITEURLBASE . e_FILE_ABS , // deprecated
'{e_THEME}' => SITEURLBASE . e_THEME_ABS ,
'{e_DOWNLOAD}' => SITEURLBASE . e_HTTP . 'request.php?' , // FIXME - we need solution!
'{e_ADMIN}' => SITEURLBASE . e_ADMIN_ABS ,
//'{e_HANDLER}' => e_HANDLER_ABS, - no ABS path available
'{e_MEDIA}' => SITEURLBASE . e_MEDIA_ABS ,
'{e_WEB}' => SITEURLBASE . e_WEB_ABS ,
2011-12-07 21:07:21 +00:00
'{e_BASE}' => SITEURL ,
2009-09-28 19:17:59 +00:00
);
break ;
2009-10-30 19:57:28 +00:00
2009-09-28 19:17:59 +00:00
case 4 : // absolute & relative paths
2009-09-29 11:32:09 +00:00
$url = $this -> createConstants ( $url , 3 );
$url = $this -> createConstants ( $url , 2 );
$url = $this -> createConstants ( $url , 1 );
2009-09-28 19:17:59 +00:00
return $url ;
break ;
2009-10-30 19:57:28 +00:00
2010-03-10 12:48:05 +00:00
case 5 : // nice urls - e.g. e_MEDIA_VIDEO/mystream.flv
$url = $this -> createConstants ( $url , 4 );
return str_replace ( $this -> getUrlConstants ( 'sc' ), $this -> getUrlConstants ( 'raw' ), $url );
break ;
2009-09-28 19:17:59 +00:00
default :
$tmp = array ();
break ;
2006-12-02 04:36:16 +00:00
}
2009-09-28 19:17:59 +00:00
2016-01-15 13:50:41 +02:00
$hasCDN = strpos ( $url , '//' ) === 0 ;
2006-12-02 04:36:16 +00:00
foreach ( $tmp as $key => $val )
{
2016-01-15 13:50:41 +02:00
// Fix - don't break the CDN '//cdn.com' URLs
if ( $hasCDN && $val == '/' ) {
continue ;
}
2009-10-30 19:57:28 +00:00
$len = strlen ( $val );
if ( substr ( $url , 0 , $len ) == $val )
2006-12-02 04:36:16 +00:00
{
2009-10-30 19:57:28 +00:00
// replace the first instance only
return substr_replace ( $url , $key , 0 , $len );
2006-12-02 04:36:16 +00:00
}
}
return $url ;
2009-10-30 19:57:28 +00:00
}
2006-12-02 04:36:16 +00:00
2009-10-30 19:57:28 +00:00
//FIXME - $match not used?
2009-01-08 21:47:44 +00:00
function e_highlight ( $text , $match )
2009-01-03 22:32:54 +00:00
{
2009-08-20 12:27:26 +00:00
$tags = array ();
preg_match_all ( '#<[^>]+>#' , $text , $tags );
$text = preg_replace ( '#<[^>]+>#' , '<|>' , $text );
$text = preg_replace ( '#(\b".$match."\b)#i' , '<span class="searchhighlight">\\1</span>' , $text );
2009-01-08 21:47:44 +00:00
foreach ( $tags [ 0 ] as $tag )
2009-01-03 22:32:54 +00:00
{
2009-08-20 12:27:26 +00:00
$text = preg_replace ( '#<\|>#' , $tag , $text , 1 );
2006-12-02 04:36:16 +00:00
}
return $text ;
}
2013-07-12 13:52:39 -07:00
2013-06-02 21:46:53 -07:00
/**
* Convert Text to a suitable format for use in emails . eg . relative links will be replaced with full links etc .
* @ param string $text
* @ param boolean $posted - if the text has been posted . ( uses stripslashes etc )
* @ param string $mods - flags for text transformation .
*/
2009-10-30 19:57:28 +00:00
public function toEmail ( $text , $posted = " " , $mods = " parse_sc, no_make_clickable " )
2006-12-02 04:36:16 +00:00
{
2011-03-19 11:54:12 +00:00
if ( $posted === TRUE )
2007-12-30 23:31:18 +00:00
{
2011-03-19 11:54:12 +00:00
if ( MAGIC_QUOTES_GPC )
{
$text = stripslashes ( $text );
}
$text = preg_replace ( '#\[(php)#i' , '[\\1' , $text );
2006-12-02 04:36:16 +00:00
}
2009-10-30 19:57:28 +00:00
$text = ( strtolower ( $mods ) != " rawtext " ) ? $this -> replaceConstants ( $text , " full " ) : $text ;
2015-05-21 21:49:32 -07:00
if ( $this -> isHtml ( $text ))
{
$text = str_replace ( array ( " [html] " , " [/html] " ), " " , $text );
$text = html_entity_decode ( $text , ENT_COMPAT , 'UTF-8' );
}
else
{
2015-07-16 18:12:41 -07:00
2015-05-21 21:49:32 -07:00
$text = $this -> toHTML ( $text , true , $mods );
}
2009-10-30 19:57:28 +00:00
return $text ;
2006-12-02 04:36:16 +00:00
}
2008-10-30 22:42:41 +00:00
2013-07-12 07:13:10 -07:00
2013-06-02 21:46:53 -07:00
/**
2016-03-09 12:12:15 -08:00
* Given an email address , returns a link including with obfuscated text .
* e - email css in e107 . css inserts the user / domain data for display .
*
* @ param string $email
* @ param string $words [ optional ] text to display
* @ param null $subject [ optional ] default subject for email .
* @ return string
2013-06-02 21:46:53 -07:00
*/
2016-03-09 12:12:15 -08:00
function emailObfuscate ( $email , $words = null , $subject = null )
2008-10-30 22:42:41 +00:00
{
2016-03-09 12:12:15 -08:00
if ( strpos ( $email , '@' ) === false )
2008-10-30 22:42:41 +00:00
{
return '' ;
}
2016-03-09 12:12:15 -08:00
2008-10-30 22:42:41 +00:00
if ( $subject )
{
$subject = '?subject=' . $subject ;
}
2016-03-09 12:12:15 -08:00
2009-10-30 19:57:28 +00:00
list ( $name , $address ) = explode ( '@' , $email , 2 );
2016-03-09 12:12:15 -08:00
if ( empty ( $words ))
{
$words = " @ " ;
$user = " data-user=' " . $this -> obfuscate ( $name ) . " ' " ;
$dom = " data-dom=' " . $this -> obfuscate ( $address ) . " ' " ;
}
else
{
$user = '' ;
$dom = '' ;
}
$url = " mailto: " . $email . $subject ;
$safe = $this -> obfuscate ( $url );
return " <a class='e-email' { $user } { $dom } rel='external' href=' " . $safe . " '> " . $words . '</a>' ;
2008-10-30 22:42:41 +00:00
}
2016-03-09 12:12:15 -08:00
/**
* Obfuscate text from bots using Randomized encoding .
* @ param $text
* @ return string
*/
public function obfuscate ( $text )
{
$ret = '' ;
foreach ( str_split ( $text ) as $letter )
{
switch ( rand ( 1 , 3 ))
{
// HTML entity code
case 1 :
$ret .= '&#' . ord ( $letter ) . ';' ;
break ;
// Hex character code
case 2 :
$ret .= '&#x' . dechex ( ord ( $letter )) . ';' ;
break ;
// Raw (no) encoding
case 3 :
$ret .= $letter ;
}
}
return $ret ;
}
2013-06-02 21:46:53 -07:00
2009-07-23 15:29:07 +00:00
public function __get ( $name )
2009-10-30 19:57:28 +00:00
{
switch ( $name )
2009-07-23 15:29:07 +00:00
{
case 'e_sc' :
2009-10-30 19:57:28 +00:00
$ret = e107 :: getScParser ();
2009-07-23 15:29:07 +00:00
break ;
2009-10-30 19:57:28 +00:00
2010-01-12 13:11:48 +00:00
2009-07-23 15:29:07 +00:00
default :
trigger_error ( '$e107->$' . $name . ' not defined' , E_USER_WARNING );
2009-10-30 19:57:28 +00:00
return NULL ;
2009-07-23 15:29:07 +00:00
break ;
}
2009-10-30 19:57:28 +00:00
2010-01-12 13:11:48 +00:00
2009-07-23 15:29:07 +00:00
$this -> $name = $ret ;
return $ret ;
}
2006-12-02 04:36:16 +00:00
}
2013-03-01 00:19:53 -08:00
/**
2014-01-15 04:02:05 -08:00
* New v2 Parser
2013-03-01 00:19:53 -08:00
* Start Fresh and Build on it over time to become eventual replacement to e_parse .
* Cameron ' s DOM - based parser .
*/
2013-03-01 18:17:03 -08:00
class e_parser
2013-03-01 00:19:53 -08:00
{
2014-06-09 21:45:40 +03:00
/**
* @ var DOMDocument
*/
public $domObj = null ;
2015-04-11 12:33:21 -07:00
public $isHtml = false ;
2014-06-09 21:45:40 +03:00
protected $removedList = array ();
protected $nodesToDelete = array ();
protected $nodesToConvert = array ();
2016-03-01 13:29:50 -08:00
protected $nodesToDisableSC = array ();
2014-06-09 21:45:40 +03:00
protected $pathList = array ();
protected $allowedAttributes = array (
2013-03-01 18:17:03 -08:00
'default' => array ( 'id' , 'style' , 'class' ),
'img' => array ( 'id' , 'src' , 'style' , 'class' , 'alt' , 'title' , 'width' , 'height' ),
2013-05-12 04:48:26 -07:00
'a' => array ( 'id' , 'href' , 'style' , 'class' , 'title' , 'target' ),
2013-10-04 14:12:38 -07:00
'script' => array ( 'type' , 'src' , 'language' ),
2015-04-04 16:24:10 -07:00
'iframe' => array ( 'id' , 'src' , 'frameborder' , 'class' , 'width' , 'height' , 'style' ),
'input' => array ( 'type' , 'name' , 'value' , 'class' , 'style' ),
2015-06-28 16:31:02 -07:00
'form' => array ( 'action' , 'method' , 'target' ),
'audio' => array ( 'src' , 'controls' , 'autoplay' , 'loop' , 'muted' , 'preload' ),
2015-06-30 19:44:33 -07:00
'video' => array ( 'autoplay' , 'controls' , 'height' , 'loop' , 'muted' , 'poster' , 'preload' , 'src' , 'width' ),
'td' => array ( 'id' , 'style' , 'class' , 'colspan' , 'rowspan' ),
'th' => array ( 'id' , 'style' , 'class' , 'colspan' , 'rowspan' ),
'col' => array ( 'id' , 'span' , 'class' , 'style' )
2014-06-09 21:45:40 +03:00
);
protected $badAttrValues = array ( 'javascript[\s]*?:' , 'alert\(' , 'vbscript[\s]*?:' , 'data:text\/html' , 'mhtml[\s]*?:' , 'data:[\s]*?image' );
protected $replaceAttrValues = array (
'default' => array ()
);
protected $allowedTags = array ( 'html' , 'body' , 'div' , 'a' , 'img' , 'table' , 'tr' , 'td' , 'th' , 'tbody' , 'thead' , 'colgroup' , 'b' ,
2014-06-27 23:11:51 -07:00
'i' , 'pre' , 'code' , 'strong' , 'u' , 'em' , 'ul' , 'ol' , 'li' , 'img' , 'h1' , 'h2' , 'h3' , 'h4' , 'h5' , 'h6' , 'p' ,
2016-01-11 20:53:05 -08:00
'div' , 'pre' , 'section' , 'article' , 'blockquote' , 'hgroup' , 'aside' , 'figure' , 'figcaption' , 'abbr' , 'span' , 'audio' , 'video' , 'br' ,
2016-08-01 12:58:03 -07:00
'small' , 'caption' , 'noscript' , 'hr' , 'section' , 'iframe' , 'sub' , 'sup' , 'cite'
2013-04-30 02:57:33 -07:00
);
2016-04-17 13:26:52 -07:00
protected $scriptTags = array ( 'script' , 'applet' , 'form' , 'input' , 'button' , 'embed' , 'object' ); //allowed when $pref['post_script'] is enabled.
2013-06-14 16:26:56 -07:00
protected $blockTags = array ( 'pre' , 'div' , 'h1' , 'h2' , 'h3' , 'h4' , 'h5' , 'h6' , 'blockquote' ); // element includes its own line-break.
2015-04-29 10:22:46 -07:00
private $scriptAccess = false ; // nobody.
2016-05-20 15:04:51 -07:00
/**
* e_parser constructor .
*/
public function __construct ()
2013-03-01 00:19:53 -08:00
{
2015-04-29 10:22:46 -07:00
2013-04-30 02:57:33 -07:00
$this -> init ();
2013-03-01 00:19:53 -08:00
/*
$meths = get_class_methods ( 'DomDocument' );
sort ( $meths );
print_a ( $meths );
*/
}
2013-03-01 18:17:03 -08:00
/**
* Used by e_parse to start
*/
function init ()
{
2015-04-29 10:22:46 -07:00
$this -> domObj = new DOMDocument ();
2013-03-01 18:17:03 -08:00
}
2015-04-16 15:23:21 -07:00
/**
* Add Allowed Tags .
* @ param string
*/
public function addAllowedTag ( $tag )
{
$this -> allowedTags [] = $tag ;
}
/**
* @ param $tag - html tag .
* @ param $attArray - array of attributes . eg . array ( 'style' , 'id' , 'class' ) etc .
*/
public function addAllowedAttribute ( $tag , $attArray )
{
$this -> allowedAttributes [ $tag ] = ( array ) $attArray ;
}
/**
2013-03-01 00:19:53 -08:00
* Set Allowed Tags .
* @ param $array
*/
public function setAllowedTags ( $array = array ())
{
$this -> allowedTags = $array ;
2015-04-29 10:22:46 -07:00
}
2013-03-01 00:19:53 -08:00
2015-04-29 10:22:46 -07:00
/**
* Set Script Access
* @ param $val int e_UC_MEMBER , e_UC_NOBODY , e_UC_MAINADMIN or userclass number .
*/
public function setScriptAccess ( $val )
{
$this -> scriptAccess = $val ;
}
public function getAllowedTags ()
{
return $this -> allowedTags ;
}
public function getScriptAccess ()
{
return $this -> scriptAccess ;
}
/**
2013-03-01 00:19:53 -08:00
* Set Allowed Attributes .
* @ param $array
*/
public function setAllowedAttributes ( $array = array ())
{
$this -> allowedAttributes = $array ;
}
2013-03-31 00:06:21 -07:00
2014-06-09 21:45:40 +03:00
/**
* Set Script Tags .
* @ param $array
*/
public function setScriptTags ( $array = array ())
{
$this -> scriptTags = $array ;
}
2013-03-31 00:06:21 -07:00
/**
* Add leading zeros to a number . eg . 3 might become 000003
* @ param $num integer
* @ param $numDigits - total number of digits
* @ return number with leading zeros .
*/
public function leadingZeros ( $num , $numDigits )
{
return sprintf ( " %0 " . $numDigits . " d " , $num );
}
2013-10-29 18:41:02 -07:00
/**
2015-04-12 22:45:13 -07:00
* Generic variable translator for LAN definitions .
2013-10-29 18:41:02 -07:00
* @ param $lan - string LAN
2015-04-12 22:45:13 -07:00
* @ param string | array $vals - either a single value , which will replace '[x]' or an array with key => value pairs .
* @ example $tp -> lanVars ( " My name is [x] and I own a [y] " , array ( 'x' => " John " , 'y' => " Cat " ));
2015-06-26 20:24:53 -07:00
* @ example $tp -> lanVars ( " My name is [x] and I own a [y] " , array ( " John " , " Cat " ));
2015-04-12 22:45:13 -07:00
* @ return string
2013-10-29 12:20:23 -07:00
*/
2013-10-29 18:41:02 -07:00
function lanVars ( $lan , $vals , $bold = false )
2013-10-29 12:20:23 -07:00
{
2013-10-29 18:41:02 -07:00
$array = ( ! is_array ( $vals )) ? array ( 'x' => $vals ) : $vals ;
2015-04-12 22:45:13 -07:00
$search = array ();
$replace = array ();
2015-06-26 20:24:53 -07:00
$defaults = array ( 'x' , 'y' , 'z' );
2013-10-29 12:20:23 -07:00
foreach ( $array as $k => $v )
{
2015-06-26 20:24:53 -07:00
if ( is_numeric ( $k )) // convert array of numeric to x,y,z
{
$k = $defaults [ $k ];
}
2013-10-29 12:20:23 -07:00
$search [] = " [ " . $k . " ] " ;
$replace [] = ( $bold === true ) ? " <strong> " . $v . " </strong> " : $v ;
}
return str_replace ( $search , $replace , $lan );
}
2013-03-01 00:19:53 -08:00
2013-03-05 23:46:51 -08:00
/**
2013-03-06 01:24:04 -08:00
* Return an Array of all specific tags found in an HTML document and their attributes .
* @ param $html - raw html code
* @ param $taglist - comma separated list of tags to search or '*' for all .
2013-03-17 05:39:08 -07:00
* @ param $header - if the $html includes the html head or body tags - it should be set to true .
2013-03-05 23:46:51 -08:00
*/
2013-03-06 01:24:04 -08:00
public function getTags ( $html , $taglist = '*' , $header = false )
2013-03-05 23:46:51 -08:00
{
2013-03-06 01:24:04 -08:00
if ( $header == false )
{
$html = " <html><body> " . $html . " </body></html> " ;
}
2013-03-05 23:46:51 -08:00
$doc = $this -> domObj ;
2013-03-06 01:24:04 -08:00
2013-03-19 19:05:58 -07:00
$doc -> preserveWhiteSpace = true ;
2013-04-29 16:21:46 -07:00
libxml_use_internal_errors ( true );
2015-06-11 12:29:19 -07:00
$doc -> loadHTML ( $html );
2013-03-06 01:24:04 -08:00
$tg = explode ( " , " , $taglist );
$ret = array ();
2013-03-05 23:46:51 -08:00
2013-03-06 01:24:04 -08:00
foreach ( $tg as $find )
2013-03-05 23:46:51 -08:00
{
2013-03-06 01:24:04 -08:00
$tmp = $doc -> getElementsByTagName ( $find );
2013-03-05 23:46:51 -08:00
2013-03-18 22:14:05 -07:00
2013-03-06 01:24:04 -08:00
foreach ( $tmp as $k => $node )
{
$tag = $node -> nodeName ;
2013-03-18 22:14:05 -07:00
$inner = $node -> C14N ();
$inner = str_replace ( " 
 " , " " , $inner );
2013-03-06 01:24:04 -08:00
foreach ( $node -> attributes as $attr )
{
$name = $attr -> nodeName ;
$value = $attr -> nodeValue ;
$ret [ $tag ][ $k ][ $name ] = $value ;
2013-03-18 22:14:05 -07:00
}
$ret [ $tag ][ $k ][ '@value' ] = $inner ;
2013-03-06 01:24:04 -08:00
}
2013-03-05 23:46:51 -08:00
}
2013-03-18 22:14:05 -07:00
if ( $header == false )
{
unset ( $ret [ 'html' ], $ret [ 'body' ]);
}
2013-03-05 23:46:51 -08:00
return $ret ;
}
2013-07-12 07:13:10 -07:00
/**
* Parse xxxxx . glyph file to bootstrap glyph format .
2014-01-22 06:10:44 -08:00
* @ param string $text
2014-01-22 06:12:54 -08:00
* @ param array of $parms
2016-02-11 12:01:26 -08:00
* @ example $tp -> toGlyph ( 'fa-spinner' , 'spin=1' );
* @ example $tp -> toGlyph ( 'fa-spinner' , array ( 'spin' => 1 ));
* @ example $tp -> toGlyph ( 'fa-shield' , array ( 'rotate' => 90 , 'size' => '2x' ));
2013-07-12 07:13:10 -07:00
*/
2013-12-17 11:12:42 -08:00
public function toGlyph ( $text , $space = " " )
2013-03-08 20:16:49 -08:00
{
2016-02-03 13:48:35 -08:00
2014-02-07 07:03:23 -08:00
if ( ! deftrue ( 'BOOTSTRAP' ) || empty ( $text ))
2013-07-12 07:13:10 -07:00
{
return false ;
}
2016-02-11 12:01:26 -08:00
2014-01-17 06:49:55 -08:00
if ( is_array ( $space ))
{
$parm = $space ;
$space = varset ( $parm [ 'space' ], '' );
}
2014-07-05 20:27:03 -07:00
elseif ( strpos ( $space , '=' ))
{
parse_str ( $space , $parm );
$space = varset ( $parm [ 'space' ], '' );
}
2014-01-17 06:49:55 -08:00
else
{
$parm = array ();
}
2014-01-22 06:10:44 -08:00
if ( substr ( $text , 0 , 2 ) == 'e-' ) // e107 admin icon.
{
2016-11-01 16:42:47 -07:00
$size = ( substr ( $text , - 3 ) == '-32' ) ? 'S32' : 'S16' ;
if ( substr ( $text , - 3 ) == '-24' )
{
$size = 'S24' ;
}
return " <i class=' " . $size . " " . $text . " '></i> " ;
2014-01-22 06:10:44 -08:00
}
2014-01-28 05:59:40 -08:00
// Get Glyph names.
2014-01-09 04:42:13 -08:00
$bs3 = e107 :: getMedia () -> getGlyphs ( 'bs3' , '' );
2014-01-28 05:59:40 -08:00
$fa4 = e107 :: getMedia () -> getGlyphs ( 'fa4' , '' );
2014-02-07 07:03:23 -08:00
2014-01-28 05:59:40 -08:00
2014-02-07 07:03:23 -08:00
list ( $cls ) = explode ( '.glyph' , $text , 2 );
2014-01-28 05:59:40 -08:00
// list($type, $tmp2) = explode("-",$text,2);
2013-12-31 09:59:19 -08:00
2014-02-07 07:03:23 -08:00
// return $cls;
2014-01-28 05:59:40 -08:00
$removePrefix = array ( 'glyphicon-' , 'icon-' , 'fa-' );
2013-12-31 09:59:19 -08:00
2014-01-28 05:59:40 -08:00
$id = str_replace ( $removePrefix , " " , $cls );
2016-02-11 12:01:26 -08:00
$spin = null ;
$rotate = null ;
2016-04-03 14:37:37 -07:00
$fixedW = null ;
$prefix = null ;
$size = null ;
$tag = 'span' ;
2016-02-11 12:01:26 -08:00
2014-01-28 05:59:40 -08:00
// return print_r($fa4,true);
2014-01-22 06:10:44 -08:00
2014-01-28 05:59:40 -08:00
if ( deftrue ( 'FONTAWESOME' ) && in_array ( $id , $fa4 )) // Contains FontAwesome 3 set also.
2013-07-12 07:13:10 -07:00
{
2014-01-28 05:59:40 -08:00
$prefix = 'fa fa-' ;
2014-01-31 04:13:30 -08:00
$size = ( vartrue ( $parm [ 'size' ])) ? ' fa-' . $parm [ 'size' ] : '' ;
2014-05-13 19:45:01 -07:00
$tag = 'i' ;
2016-02-11 12:01:26 -08:00
$spin = ! empty ( $parm [ 'spin' ]) ? ' fa-spin' : '' ;
$rotate = ! empty ( $parm [ 'rotate' ]) ? ' fa-rotate-' . intval ( $parm [ 'rotate' ]) : '' ;
2016-04-03 14:37:37 -07:00
$fixedW = ! empty ( $parm [ 'fw' ]) ? ' fa-fw' : " " ;
2014-01-22 06:10:44 -08:00
}
2014-01-28 05:59:40 -08:00
elseif ( deftrue ( " BOOTSTRAP " ))
2014-01-22 06:10:44 -08:00
{
2014-01-28 05:59:40 -08:00
if ( BOOTSTRAP === 3 && in_array ( $id , $bs3 ))
{
$prefix = 'glyphicon glyphicon-' ;
$tag = 'span' ;
}
else
{
$prefix = 'icon-' ;
$tag = 'i' ;
}
2013-12-17 11:12:42 -08:00
2014-02-07 07:03:23 -08:00
$size = '' ;
2013-07-12 07:13:10 -07:00
}
2016-02-11 12:47:28 -08:00
$idAtt = ( ! empty ( $parm [ 'id' ])) ? " id=' " . $parm [ 'id' ] . " ' " : '' ;
2013-07-12 07:13:10 -07:00
2016-04-03 14:37:37 -07:00
$text = " < " . $tag . " { $idAtt } class=' " . $prefix . $id . $size . $spin . $rotate . $fixedW . " '></ " . $tag . " > " ;
2014-01-22 06:10:44 -08:00
$text .= ( $space !== false ) ? $space : " " ;
return $text ;
2013-07-12 07:13:10 -07:00
//$text = preg_replace('/\[(i_[\w]*)\]/',"<i class='$1'></i>", $text);
// return $text;
2013-03-08 20:16:49 -08:00
}
2014-01-15 04:02:05 -08:00
2016-12-07 08:23:53 -08:00
/**
* @ param $text
* @ return string
*/
public function toBadge ( $text )
{
return " <span class='badge'> " . $text . " </span> " ;
}
2014-01-15 04:02:05 -08:00
2015-02-04 20:36:56 -08:00
/**
* Render an avatar based on supplied user data or current user when missing .
* @ param @ array - user data from e107_user .
* @ return < img > tag of avatar .
*/
2015-05-07 20:55:12 -07:00
public function toAvatar ( $userData = null , $options = array ())
2015-02-04 20:36:56 -08:00
{
$tp = e107 :: getParser ();
2016-03-08 17:51:29 -08:00
$width = ! empty ( $options [ 'w' ]) ? intval ( $options [ 'w' ]) : $tp -> thumbWidth ;
2015-02-04 20:36:56 -08:00
$height = ( $tp -> thumbHeight !== 0 ) ? $tp -> thumbHeight : " " ;
2016-02-25 18:43:49 -08:00
$linkStart = '' ;
$linkEnd = '' ;
2015-02-04 20:36:56 -08:00
if ( ! isset ( $userData [ 'user_image' ]) && USERID )
{
2016-06-09 16:43:36 -07:00
$userData = array ();
2016-02-25 18:43:49 -08:00
$userData [ 'user_id' ] = USERID ;
2015-02-04 20:36:56 -08:00
$userData [ 'user_image' ] = USERIMAGE ;
$userData [ 'user_name' ] = USERNAME ;
}
2016-03-08 17:51:29 -08:00
$image = ( ! empty ( $userData [ 'user_image' ])) ? varset ( $userData [ 'user_image' ]) : null ;
2015-02-04 20:36:56 -08:00
$genericImg = $tp -> thumbUrl ( e_IMAGE . " generic/blank_avatar.jpg " , " w= " . $width . " &h= " . $height , true );
if ( ! empty ( $image ))
{
if ( strpos ( $image , " :// " ) !== false ) // Remove Image
{
$img = $image ;
}
elseif ( substr ( $image , 0 , 8 ) == " -upload- " )
{
$image = substr ( $image , 8 ); // strip the -upload- from the beginning.
$img = ( file_exists ( e_AVATAR_UPLOAD . $image )) ? $tp -> thumbUrl ( e_AVATAR_UPLOAD . $image , " w= " . $width . " &h= " . $height ) : $genericImg ;
}
elseif ( file_exists ( e_AVATAR_DEFAULT . $image )) // User-Uplaoded Image
{
$img = $tp -> thumbUrl ( e_AVATAR_DEFAULT . $image , " w= " . $width . " &h= " . $height );
}
else // Image Missing.
{
$img = $genericImg ;
}
}
else // No image provided - so send generic.
{
$img = $genericImg ;
}
2016-02-25 18:43:49 -08:00
2016-05-16 11:44:38 -07:00
if (( $img == $genericImg ) && ! empty ( $userData [ 'user_id' ] ) && (( $userData [ 'user_id' ] == USERID )) && ! empty ( $options [ 'link' ]))
2016-02-25 18:43:49 -08:00
{
2016-03-08 17:51:29 -08:00
$linkStart = " <a class='e-tip' title= \" " . LAN_EDIT . " \" href=' " . e107 :: getUrl () -> create ( 'user/myprofile/edit' ) . " '> " ;
2016-02-25 18:43:49 -08:00
$linkEnd = " </a> " ;
}
2015-02-04 20:36:56 -08:00
$title = ( ADMIN ) ? $image : $tp -> toAttribute ( $userData [ 'user_name' ]);
2016-03-08 17:51:29 -08:00
$shape = ( ! empty ( $options [ 'shape' ])) ? " img- " . $options [ 'shape' ] : " img-rounded " ;
if ( ! empty ( $options [ 'type' ]) && $options [ 'type' ] == 'url' )
{
return $img ;
}
2015-12-16 15:28:05 +01:00
2016-01-30 18:39:01 -08:00
$heightInsert = empty ( $height ) ? '' : " height=' " . $height . " ' " ;
2016-03-08 17:51:29 -08:00
$id = ( ! empty ( $options [ 'id' ])) ? " id=' " . $options [ 'id' ] . " ' " : " " ;
2016-01-30 18:39:01 -08:00
2016-02-25 18:43:49 -08:00
$text = $linkStart ;
2016-03-14 18:32:51 -07:00
$text .= " <img " . $id . " class=' " . $shape . " user-avatar' alt= \" " . $title . " \" src=' " . $img . " ' width=' " . $width . " ' " . $heightInsert . " /> " ;
2016-02-25 18:43:49 -08:00
$text .= $linkEnd ;
2015-02-04 20:36:56 -08:00
// return $img;
return $text ;
}
2013-07-12 13:52:39 -07:00
/**
* Display an icon .
* @ param string $icon
* @ example $tp -> toIcon ( " { e_IMAGES}icons/something.png " );
*/
2014-01-15 04:02:05 -08:00
public function toIcon ( $icon = '' , $parm = array ())
2013-07-12 13:52:39 -07:00
{
2016-04-15 10:46:58 -07:00
2013-07-12 13:52:39 -07:00
if ( ! vartrue ( $icon ))
{
return ;
}
2016-02-03 13:48:35 -08:00
2016-02-09 22:53:03 -08:00
if ( strpos ( $icon , 'e_MEDIA_IMAGE' ) !== false )
{
// return "<div class='alert alert-danger'>Use \$tp->toImage() instead of toIcon() for ".$icon."</div>"; // debug info only.
}
2016-02-03 13:48:35 -08:00
if ( substr ( $icon , 0 , 3 ) == '<i ' ) // if it's html (ie. css sprite) return the code.
{
return $icon ;
}
2014-05-31 16:10:54 -07:00
2014-01-22 06:10:44 -08:00
$ext = pathinfo ( $icon , PATHINFO_EXTENSION );
2016-02-07 13:37:45 -08:00
$dimensions = null ;
2014-05-31 16:10:54 -07:00
2014-01-22 06:12:54 -08:00
if ( ! $ext || $ext == 'glyph' ) // Bootstrap or Font-Awesome.
2013-12-30 03:56:27 -08:00
{
2014-01-17 06:49:55 -08:00
return $this -> toGlyph ( $icon , $parm );
2013-12-30 03:56:27 -08:00
}
2014-01-04 10:14:38 -08:00
if ( strpos ( $icon , 'e_MEDIA' ) !== FALSE )
2013-12-30 03:56:27 -08:00
{
2014-01-04 06:02:24 -08:00
$path = $this -> thumbUrl ( $icon );
2016-02-07 13:37:45 -08:00
$dimensions = $this -> thumbDimensions ();
2014-01-04 10:14:38 -08:00
}
elseif ( $icon [ 0 ] == '{' )
{
$path = $this -> replaceConstants ( $icon , 'full' );
2013-12-30 03:56:27 -08:00
}
2016-04-15 10:46:58 -07:00
elseif ( ! empty ( $parm [ 'legacy' ]))
2013-12-30 03:56:27 -08:00
{
2016-04-15 10:46:58 -07:00
$legacyList = ( ! is_array ( $parm [ 'legacy' ])) ? array ( $parm [ 'legacy' ]) : $parm [ 'legacy' ];
foreach ( $legacyList as $legPath )
2013-12-30 03:56:27 -08:00
{
2016-04-15 10:46:58 -07:00
$legacyPath = $legPath . $icon ;
$filePath = $this -> replaceConstants ( $legacyPath );
if ( is_readable ( $filePath ))
{
$path = $this -> replaceConstants ( $legacyPath , 'full' );
break ;
}
2013-12-30 03:56:27 -08:00
}
2016-04-15 10:46:58 -07:00
if ( empty ( $path ))
2013-12-30 03:56:27 -08:00
{
2014-01-15 04:06:14 -08:00
$log = e107 :: getAdminLog ();
2016-04-15 10:46:58 -07:00
$log -> addDebug ( 'Broken Icon Path: ' . $icon . " \n " . print_r ( debug_backtrace ( null , 2 ), true ), false ) -> save ( 'IMALAN_00' );
e107 :: getDebug () -> log ( 'Broken Icon Path: ' . $icon );
return null ;
2013-12-30 03:56:27 -08:00
}
}
2014-01-15 04:02:05 -08:00
else
{
$path = $icon ;
}
2016-02-07 13:37:45 -08:00
2016-04-15 10:46:58 -07:00
$alt = ( ! empty ( $parm [ 'alt' ])) ? $this -> toAttribute ( $parm [ 'alt' ]) : basename ( $path );
$class = ( ! empty ( $parm [ 'class' ])) ? $parm [ 'class' ] : 'icon' ;
2013-12-30 03:56:27 -08:00
2016-04-15 10:46:58 -07:00
return " <img class=' " . $class . " ' src=' " . $path . " ' alt=' " . $alt . " ' " . $dimensions . " /> " ;
2015-04-05 20:24:51 -07:00
}
2014-01-15 04:02:05 -08:00
2015-04-05 20:24:51 -07:00
/**
2016-02-09 11:02:08 -08:00
* Render an < img > tag .
* @ param string $file
* @ param array $parm legacy | w | h | alt | class | id | crop
2016-12-03 14:16:14 -08:00
* @ param array $parm [ 'legacy' ] Usually a legacy path like { e_FILE }
2015-04-05 20:24:51 -07:00
* @ return string
* @ example $tp -> toImage ( 'welcome.png' , array ( 'legacy' => { e_IMAGE } newspost_images / ',' w ' => 200 ));
*/
public function toImage ( $file , $parm = array ())
{
2016-02-09 11:02:08 -08:00
if ( empty ( $file ))
2015-04-05 20:24:51 -07:00
{
2016-02-09 11:02:08 -08:00
return null ;
2015-04-05 20:24:51 -07:00
}
2016-02-09 22:53:03 -08:00
if ( strpos ( $file , 'e_AVATAR' ) !== false )
{
return " <div class='alert alert-danger'>Use \$ tp->toAvatar() instead of toImage() for " . $file . " </div> " ; // debug info only.
}
2016-02-09 11:02:08 -08:00
$srcset = null ;
$path = null ;
$file = trim ( $file );
$ext = pathinfo ( $file , PATHINFO_EXTENSION );
$accepted = array ( 'jpg' , 'gif' , 'png' , 'jpeg' );
$tp = $this ;
2015-04-05 20:24:51 -07:00
2016-02-09 11:02:08 -08:00
if ( ! in_array ( $ext , $accepted ))
2015-04-05 20:24:51 -07:00
{
2016-02-09 11:02:08 -08:00
return null ;
2015-04-05 20:24:51 -07:00
}
2016-12-22 13:53:47 -08:00
// e107::getDebug()->log($file);
// e107::getDebug()->log($parm);
2016-12-17 09:43:37 -08:00
2016-02-08 21:33:55 -08:00
2016-12-22 13:53:47 -08:00
if ( strpos ( $file , 'e_MEDIA' ) !== false || strpos ( $file , 'e_THEME' ) !== false || strpos ( $file , 'e_PLUGIN' ) !== false || strpos ( $file , '{e_IMAGE}' ) !== false ) //v2.x path.
2016-02-09 22:53:03 -08:00
{
2016-04-13 14:30:42 -07:00
if ( ! isset ( $parm [ 'w' ]) && ! isset ( $parm [ 'h' ]))
{
$parm [ 'w' ] = $tp -> thumbWidth ();
$parm [ 'h' ] = $tp -> thumbHeight ();
$parm [ 'crop' ] = $tp -> thumbCrop ();
$parm [ 'x' ] = $tp -> thumbEncode ();
}
unset ( $parm [ 'src' ]);
$path = $tp -> thumbUrl ( $file , $parm );
2016-02-09 22:53:03 -08:00
$srcSetParm = $parm ;
2016-03-12 00:15:29 -08:00
$srcSetParm [ 'size' ] = ( $parm [ 'w' ] < 100 ) ? '4x' : '2x' ;
2016-04-13 14:30:42 -07:00
2016-02-09 22:53:03 -08:00
$parm [ 'srcset' ] = $tp -> thumbSrcSet ( $file , $srcSetParm );
2016-02-08 21:33:55 -08:00
2015-04-05 20:24:51 -07:00
}
2016-12-19 13:49:18 -08:00
elseif ( strpos ( $file , 'http' ) === 0 )
{
$path = $file ;
}
2016-02-09 11:02:08 -08:00
elseif ( $file [ 0 ] == '{' ) // Legacy v1.x path. Example: {e_PLUGIN}myplugin/images/fixedimage.png
2015-04-05 20:24:51 -07:00
{
2016-02-09 11:02:08 -08:00
$path = $tp -> replaceConstants ( $file , 'abs' );
2015-04-05 20:24:51 -07:00
}
2016-02-09 11:02:08 -08:00
elseif ( ! empty ( $parm [ 'legacy' ])) // Search legacy path for image in a specific folder. No path, only file name provided.
2015-04-05 20:24:51 -07:00
{
2016-12-05 15:41:19 -08:00
$legacyPath = rtrim ( $parm [ 'legacy' ], '/' ) . '/' . $file ;
$filePath = $tp -> replaceConstants ( $legacyPath );
2015-04-05 20:24:51 -07:00
if ( is_readable ( $filePath ))
{
2016-02-09 11:02:08 -08:00
$path = $tp -> replaceConstants ( $legacyPath , 'abs' );
2015-04-05 20:24:51 -07:00
}
else
{
$log = e107 :: getAdminLog ();
2016-02-09 11:02:08 -08:00
$log -> addDebug ( 'Broken Image Path: ' . $legacyPath . " \n " . print_r ( debug_backtrace ( null , 2 ), true ), false ) -> save ( 'IMALAN_00' );
2016-12-03 14:16:14 -08:00
e107 :: getDebug () -> log ( " Broken Image Path: " . $legacyPath );
2015-04-05 20:24:51 -07:00
}
}
else // usually http://....
{
$path = $file ;
}
2016-12-19 13:49:18 -08:00
2016-02-09 11:02:08 -08:00
$id = ( ! empty ( $parm [ 'id' ])) ? " id= \" " . $parm [ 'id' ] . " \" " : " " ;
2016-02-09 22:53:03 -08:00
$class = ( ! empty ( $parm [ 'class' ])) ? $parm [ 'class' ] : " img-responsive " ;
$alt = ( ! empty ( $parm [ 'alt' ])) ? $tp -> toAttribute ( $parm [ 'alt' ]) : basename ( $file );
2016-02-09 11:02:08 -08:00
$style = ( ! empty ( $parm [ 'style' ])) ? " style= \" " . $parm [ 'style' ] . " \" " : " " ;
$srcset = ( ! empty ( $parm [ 'srcset' ])) ? " srcset= \" " . $parm [ 'srcset' ] . " \" " : " " ;
$width = ( ! empty ( $parm [ 'w' ])) ? " width= \" " . intval ( $parm [ 'w' ]) . " \" " : " " ;
$height = ( ! empty ( $parm [ 'h' ])) ? " height= \" " . intval ( $parm [ 'h' ]) . " \" " : " " ;
2015-04-05 20:24:51 -07:00
2016-02-09 22:53:03 -08:00
return " <img { $id } class=' { $class } ' src=' " . $path . " ' alt= \" " . $alt . " \" " . $srcset . $width . $height . $style . " /> " ;
2015-04-05 20:24:51 -07:00
}
2014-01-15 04:02:05 -08:00
2015-05-21 21:49:32 -07:00
2015-07-16 18:12:41 -07:00
/**
* Check if a string contains bbcode .
* @ param $text
* @ return bool
*/
function isBBcode ( $text )
{
$bbsearch = array ( '[/h]' , '[/b]' , '[/link]' , '[/right]' );
if ( str_replace ( $bbsearch , '' , $text ))
{
return true ;
}
else
{
return false ;
}
}
2015-05-21 21:49:32 -07:00
/**
* Check if a string is HTML
* @ param $text
* @ return bool
*/
function isHtml ( $text )
{
2015-07-16 18:12:41 -07:00
if ( strpos ( $text , '[html]' ) !== false || ( htmlentities ( $text , ENT_NOQUOTES , 'UTF-8' ) != $text && $this -> isBBcode ( $text ) === false ) || preg_match ( '#(?<=<)\w+(?=[^<]*?>)#' , $text ))
2015-05-21 21:49:32 -07:00
{
return true ;
}
else
{
return false ;
}
}
2016-09-28 10:26:39 -07:00
/**
* Checks if string is valid UTF - 8.
*
* Try to detect UTF - 8 using mb_detect_encoding () . If mb string extension is
* not installed , we try to use a simple UTF - 8 - ness checker using a regular
* expression originally created by the W3C . But W3C ' s function scans the
* entire strings and checks that it conforms to UTF - 8.
*
* @ see http :// w3 . org / International / questions / qa - forms - utf - 8. html
*
* So this function is faster and less specific . It only looks for non - ascii
* multibyte sequences in the UTF - 8 range and also to stop once it finds at
* least one multibytes string . This is quite a lot faster .
*
* @ param $string string string being checked .
* @ return bool Returns true if $string is valid UTF - 8 and false otherwise .
*/
public function isUTF8 ( $string )
{
if ( function_exists ( 'mb_detect_encoding' ))
{
return ( mb_detect_encoding ( $string ) == " UTF-8 " );
}
return ( bool ) preg_match ( ' % ( ? :
[ \xC2 - \xDF ][ \x80 - \xBF ] # non-overlong 2-byte
| \xE0 [ \xA0 - \xBF ][ \x80 - \xBF ] # excluding overlongs
| [ \xE1 - \xEC\xEE\xEF ][ \x80 - \xBF ]{ 2 } # straight 3-byte
| \xED [ \x80 - \x9F ][ \x80 - \xBF ] # excluding surrogates
| \xF0 [ \x90 - \xBF ][ \x80 - \xBF ]{ 2 } # planes 1-3
| [ \xF1 - \xF3 ][ \x80 - \xBF ]{ 3 } # planes 4-15
| \xF4 [ \x80 - \x8F ][ \x80 - \xBF ]{ 2 } # plane 16
) +% xs ' , $string );
}
2014-02-04 06:21:05 -08:00
/**
* Check if a file is an video or not .
* @ param $file string
* @ return boolean
*/
function isVideo ( $file )
{
$ext = pathinfo ( $file , PATHINFO_EXTENSION );
2015-03-31 14:48:07 -07:00
return ( $ext == 'youtube' || $ext == 'youtubepl' ) ? true : false ;
2014-02-04 06:21:05 -08:00
}
2015-04-05 20:24:51 -07:00
/**
* Check if a file is an image or not .
* @ param $file string
* @ return boolean
*/
function isImage ( $file )
{
2015-11-22 13:04:21 -08:00
if ( substr ( $file , 0 , 3 ) == " { e_ " )
{
$file = e107 :: getParser () -> replaceConstants ( $file );
}
2015-04-05 20:24:51 -07:00
$ext = pathinfo ( $file , PATHINFO_EXTENSION );
return ( $ext == 'jpg' || $ext == 'png' || $ext == 'gif' || $ext == 'jpeg' ) ? true : false ;
}
2013-07-12 13:52:39 -07:00
2014-01-08 15:51:14 -08:00
/**
2014-01-15 04:02:05 -08:00
* Display a Video file .
2014-01-08 15:51:14 -08:00
* @ param string $file - format : id . type eg . x123dkax . youtube
* @ param boolean $thumbnail - set to 'tag' to return an image thumbnail and 'src' to return the src url or 'video' for a small video thumbnail .
*/
function toVideo ( $file , $parm = array ())
{
2015-08-24 10:19:34 -07:00
if ( empty ( $file ))
{
return false ;
}
2014-01-08 15:51:14 -08:00
list ( $id , $type ) = explode ( " . " , $file , 2 );
2015-08-24 10:19:34 -07:00
2014-01-08 15:51:14 -08:00
$thumb = vartrue ( $parm [ 'thumb' ]);
2015-12-12 16:54:10 -08:00
2014-03-12 14:09:48 -07:00
$pref = e107 :: getPref ();
$ytpref = array ();
foreach ( $pref as $k => $v ) // Find all Youtube Prefs.
{
if ( substr ( $k , 0 , 8 ) == 'youtube_' )
{
$key = substr ( $k , 8 );
$ytpref [ $key ] = $v ;
}
2015-10-01 11:02:24 -07:00
}
unset ( $ytpref [ 'bbcode_responsive' ]); // do not include in embed code.
if ( ! empty ( $ytpref [ 'cc_load_policy' ]))
{
$ytpref [ 'cc_lang_pref' ] = e_LAN ; // switch captions with chosen user language.
}
2014-03-12 14:09:48 -07:00
$ytqry = http_build_query ( $ytpref );
2015-10-01 11:02:24 -07:00
$defClass = ( deftrue ( 'BOOTSTRAP' )) ? " embed-responsive embed-responsive-16by9 " : " video-responsive " ; // levacy backup.
2014-01-08 15:51:14 -08:00
if ( $type == 'youtube' )
2015-04-02 03:36:45 -07:00
{
// $thumbSrc = "https://i1.ytimg.com/vi/".$id."/0.jpg";
2016-12-13 11:22:07 -08:00
$thumbSrc = " https://i1.ytimg.com/vi/ " . $id . " /mqdefault.jpg " ;
2015-10-01 11:02:24 -07:00
$video = '<iframe class="embed-responsive-item" width="560" height="315" src="//www.youtube.com/embed/' . $id . '?' . $ytqry . '" style="background-size: 100%;background-image: url(' . $thumbSrc . ');border:0px" allowfullscreen></iframe>' ;
2015-04-02 03:36:45 -07:00
2014-01-08 15:51:14 -08:00
if ( $thumb == 'tag' )
{
2014-01-31 07:09:34 -08:00
return " <img class='img-responsive' src=' " . $thumbSrc . " ' alt='Youtube Video' style='width: " . vartrue ( $parm [ 'w' ], '80' ) . " px'/> " ;
2014-01-08 15:51:14 -08:00
}
2014-10-18 15:00:40 -07:00
if ( $thumb == 'email' )
{
$thumbSrc = " http://i1.ytimg.com/vi/ " . $id . " /maxresdefault.jpg " ; // 640 x 480
$filename = 'temp/yt-thumb-' . md5 ( $id ) . " .jpg " ;
$filepath = e_MEDIA . $filename ;
$url = 'http://youtu.be/' . $id ;
if ( ! file_exists ( $filepath ))
{
e107 :: getFile () -> getRemoteFile ( $thumbSrc , $filename , 'media' );
}
2016-12-24 16:54:31 +00:00
return " <a href=' " . $url . " '><img class='video-responsive video-thumbnail' src=' { e_MEDIA} " . $filename . " ' alt=' " . LAN_YOUTUBE_VIDEO . " ' title=' " . LAN_CLICK_TO_VIEW . " ' />
< div class = 'video-thumbnail-caption' >< small > " .LAN_CLICK_TO_VIEW. " </ small ></ div ></ a > " ;
2014-10-18 15:00:40 -07:00
}
2014-01-08 15:51:14 -08:00
if ( $thumb == 'src' )
{
return $thumbSrc ;
}
2015-10-01 11:02:24 -07:00
2014-01-08 15:51:14 -08:00
if ( $thumb == 'video' )
{
2015-10-01 11:02:24 -07:00
return '<div class="' . $defClass . ' video-thumbnail thumbnail">' . $video . '</div>' ;
2014-01-08 15:51:14 -08:00
}
2015-10-01 11:02:24 -07:00
return '<div class="' . $defClass . ' ' . vartrue ( $parm [ 'class' ]) . '">' . $video . '</div>' ;
2015-03-31 14:48:07 -07:00
}
if ( $type == 'youtubepl' )
{
if ( $thumb == 'tag' )
{
$thumbSrc = e107 :: getMedia () -> getThumb ( $id );
2015-12-12 16:54:10 -08:00
if ( empty ( $thumbSrc ))
{
$thumbSrc = e_IMAGE_ABS . " generic/playlist_120.png " ;
}
2016-12-24 16:54:31 +00:00
return " <img class='img-responsive' src=' " . $thumbSrc . " ' alt=' " . LAN_YOUTUBE_PLAYLIST . " ' style='width: " . vartrue ( $parm [ 'w' ], '80' ) . " px'/> " ;
2015-03-31 14:48:07 -07:00
}
if ( $thumb == 'src' )
{
2015-12-12 16:54:10 -08:00
$thumb = e107 :: getMedia () -> getThumb ( $id );
if ( ! empty ( $thumb ))
{
return $thumb ;
}
else
{
// return "https://cdn0.iconfinder.com/data/icons/internet-2-2/64/youtube_playlist_videos_vid_web_online_internet-256.png";
return e_IMAGE_ABS . " generic/playlist_120.png " ;
}
2015-03-31 14:48:07 -07:00
}
2015-04-09 01:39:37 -07:00
$video = '<iframe width="560" height="315" src="https://www.youtube.com/embed/videoseries?list=' . $id . '" style="border:0" allowfullscreen></iframe>' ;
2015-10-01 11:02:24 -07:00
return '<div class="' . $defClass . ' ' . vartrue ( $parm [ 'class' ]) . '">' . $video . '</div>' ;
2014-01-08 15:51:14 -08:00
}
2014-02-04 06:21:05 -08:00
2014-01-10 18:27:42 -08:00
if ( $type == 'mp4' ) //TODO FIXME
{
return '
< div class = " video-responsive " >
< video width = " 320 " height = " 240 " controls >
2015-04-05 20:24:51 -07:00
< source src = " '. $file .' " type = " video/mp4 " >
2014-01-10 18:27:42 -08:00
Your browser does not support the video tag .
</ video >
</ div > ' ;
}
2014-01-08 15:51:14 -08:00
return false ;
}
2014-01-15 04:02:05 -08:00
/**
* Display a Date in the browser .
* Includes support for 'livestamp' ( http :// mattbradley . github . io / livestampjs / )
* @ param integer $datestamp - unix timestamp
* @ param string $format - short | long | relative
* @ return HTML with converted date .
*/
public function toDate ( $datestamp = null , $format = 'short' )
{
2016-05-01 10:34:34 -07:00
if ( ! is_numeric ( $datestamp )){ return null ; }
2014-01-15 04:02:05 -08:00
return '<span data-livestamp="' . $datestamp . '">' . e107 :: getDate () -> convert ( $datestamp , $format ) . '</span>' ;
}
2014-01-08 15:51:14 -08:00
2013-07-12 13:52:39 -07:00
2013-03-18 22:14:05 -07:00
/**
* Parse new < bbcode > tags into bbcode output .
* @ param $retainTags : when you want to replace html and retain the < bbcode > tags wrapping it .
* @ return html
*/
function parseBBTags ( $text , $retainTags = false )
{
$bbcodes = $this -> getTags ( $text , 'bbcode' );
foreach ( $bbcodes as $v )
{
foreach ( $v as $val )
{
$tag = urldecode ( $val [ 'alt' ]);
$repl = ( $retainTags == true ) ? '$1' . $tag . '$2' : $tag ;
$text = preg_replace ( '/(<bbcode[^>]*>).*(<\/bbcode>)/s' , $repl , $text ); //FIXME - handle multiple instances of bbcodes.
}
}
return $text ;
}
2013-03-05 23:46:51 -08:00
2013-03-01 00:19:53 -08:00
/**
* Perform and render XSS Test Comparison
*/
2015-04-11 11:47:40 -07:00
public function test ( $text = '' , $advanced = false )
2013-03-01 00:19:53 -08:00
{
2013-03-01 03:46:15 -08:00
// $tp = e107::getParser();
2013-03-01 00:19:53 -08:00
$sql = e107 :: getDb ();
2014-06-09 21:45:40 +03:00
$tp = e107 :: getParser ();
2015-04-11 02:53:51 -07:00
2015-04-11 11:47:40 -07:00
if ( empty ( $text ))
{
$text = <<< TMPL
2015-04-11 02:53:51 -07:00
[ html ] < p >< strong > bold print </ strong ></ p >
< pre class = " prettyprint linenums " >& lt ; a href = '#' & gt ; Something & lt ; / a & gt ; </ pre >
< p > Some text ' s and things .</ p >
< p >& nbsp ; </ p >
< p >< a href = " /test.php?w=9&h=12 " > link </ a ></ p >
< p > 日本語 简体中文 </ p >
< p >& nbsp ; </ p >
[ / html ]
TMPL ;
2015-04-11 11:47:40 -07:00
}
2015-04-11 02:53:51 -07:00
2015-04-11 11:47:40 -07:00
// $text .= '[code=inline]<b class="something">Something</b>[/code]日本語 ';
2015-04-11 02:53:51 -07:00
2015-04-11 11:47:40 -07:00
// -------------------- Encoding ----------------
2015-04-11 02:53:51 -07:00
2015-04-29 10:22:46 -07:00
$acc = $this -> getScriptAccess ();
$accName = e107 :: getUserclass () -> uc_get_classname ( $acc );
echo " <h2>e107 Parser Test <small>with script access by <span class='label label-warning'> " . $accName . " </span></small></h2> " ;
2015-04-11 11:47:40 -07:00
echo " <h3>User-input <small>(eg. from \$ _POST)</small></h3> " ;
2015-04-11 02:53:51 -07:00
print_a ( $text );
$dbText = $tp -> toDB ( $text , true );
2015-04-11 12:33:21 -07:00
echo " <h3>User-input ≫ toDB() " ;
if ( $this -> isHtml == true )
{
echo " <small>detected as <span class='label label-warning'>HTML</span></small> " ;
}
else
{
echo " <small>detected as <span class='label label-info'>Plain text</span></small> " ;
}
echo " </h3> " ;
2015-04-11 02:53:51 -07:00
print_a ( $dbText );
2015-04-12 19:45:55 -07:00
if ( ! empty ( $advanced ))
{
echo " <div class='alert alert-warning'> " ;
$dbText2 = $tp -> toDB ( $text , true , false , 'no_html' );
echo " <h3>User-input ≫ toDb( \$ text, true, false, 'no_html')</h3> " ;
print_a ( $dbText2 );
2016-11-04 17:49:22 -07:00
echo " <div class='alert alert-warning'> " ;
$dbText3 = $tp -> toDB ( $text , false , false , 'pReFs' );
echo " <h3>User-input ≫ toDb( \$ text, false, false, 'pReFs')</h3> " ;
print_a ( $dbText3 );
2015-04-29 10:22:46 -07:00
// toClean
$filter3 = $tp -> filter ( $text , 'wds' );
echo " <h3>User-input ≫ filter( \$ text, 'wds')</h3> " ;
print_a ( $filter3 );
// Filter by String.
$filter1 = $tp -> filter ( $text , 'str' );
echo " <h3>User-input ≫ filter( \$ text, 'str')</h3> " ;
print_a ( $filter1 );
// Filter by Encoded.
$filter2 = $tp -> filter ( $text , 'enc' );
echo " <h3>User-input ≫ filter( \$ text, 'enc')</h3> " ;
print_a ( $filter2 );
// toAttribute
$toAtt = $tp -> toAttribute ( $text );
echo " <h3>User-input ≫ toAttribute( \$ text)</h3> " ;
print_a ( $toAtt );
// toEmail
2015-05-21 21:49:32 -07:00
$toEmail = $tp -> toEmail ( $dbText );
echo " <h3>User-input ≫ toEmail( \$ text) <small>from DB</small></h3> " ;
2015-04-29 10:22:46 -07:00
print_a ( $toEmail );
2015-06-17 11:26:14 -07:00
// toEmail
$toRss = $tp -> toRss ( $text );
echo " <h3>User-input ≫ toRss( \$ text)</h3> " ;
print_a ( $toRss );
2015-04-12 19:45:55 -07:00
echo " </div> " ;
2016-03-01 17:50:53 -08:00
2016-03-01 13:29:50 -08:00
2015-04-12 19:45:55 -07:00
}
2015-04-11 11:47:40 -07:00
echo " <h3>toDB() ≫ toHtml()</h3> " ;
2015-04-11 02:53:51 -07:00
$html = $tp -> toHtml ( $dbText , true );
print_a ( $html );
2015-04-11 11:47:40 -07:00
echo " <h3>toDB ≫ toHtml() <small>(rendered)</small></h3> " ;
2015-04-11 02:53:51 -07:00
echo $html ;
2015-04-11 11:47:40 -07:00
echo " <h3>toDB ≫ toForm()</h3> " ;
2015-04-11 02:53:51 -07:00
$toForm = $tp -> toForm ( $dbText );
2015-04-11 11:47:40 -07:00
$toFormRender = e107 :: getForm () -> open ( 'test' );
$toFormRender .= " <textarea cols='100' style='width:100%;height:300px' > " . $toForm . " </textarea> " ;
$toFormRender .= e107 :: getForm () -> close ();
2015-04-11 02:53:51 -07:00
2015-04-11 11:47:40 -07:00
echo $toFormRender ;
2016-03-01 17:50:53 -08:00
echo " <h3>toDB ≫ bbarea</h3> " ;
echo e107 :: getForm () -> bbarea ( 'name' , $toForm );
2015-04-11 11:47:40 -07:00
if ( ! empty ( $advanced ))
{
2015-04-29 10:22:46 -07:00
echo " <h3>Allowed Tags</h3> " ;
print_a ( $this -> allowedTags );
2015-04-11 11:47:40 -07:00
echo " <h3>Converted Paths</h3> " ;
print_a ( $this -> pathList );
echo " <h3>Removed Tags and Attributes</h3> " ;
print_a ( $this -> removedList );
echo " <h3>Nodes to Convert</h3> " ;
print_a ( $this -> nodesToConvert );
2016-03-01 13:29:50 -08:00
echo " <h3>Nodes to Disable SC</h3> " ;
print_a ( $this -> nodesToDisableSC );
2015-04-11 11:47:40 -07:00
}
2015-04-11 02:53:51 -07:00
similar_text ( $text , html_entity_decode ( $toForm , ENT_COMPAT , 'UTF-8' ), $perc );
2015-04-11 11:47:40 -07:00
$scoreStyle = ( $perc > 98 ) ? 'label-success' : 'label-danger' ;
2015-04-29 10:22:46 -07:00
echo " <h3><span class='label " . $scoreStyle . " '>Similarity: " . number_format ( $perc ) . " %</span></h3> " ;
2015-04-11 02:53:51 -07:00
2015-04-11 11:47:40 -07:00
echo " <table class='table table-bordered'>
2015-04-11 02:53:51 -07:00
2015-04-11 11:47:40 -07:00
< tr >
< th style = 'width:50%' > User - input </ th >
< th style = 'width:50%' > toForm () output </ th >
</ tr >
< tr >
< td > " .print_a( $text ,true). " </ td >
< td > " . $toFormRender . " </ td >
</ tr >
2015-04-11 02:53:51 -07:00
2015-04-11 11:47:40 -07:00
</ table > " ;
/* < tr >
< td > " .print_a(json_encode( $text ),true). " </ td >
< td > " . print_a(json_encode(html_entity_decode( $toForm , ENT_COMPAT, 'UTF-8')),true). " </ td >
</ tr >*/
// print_a($text);
2015-04-11 02:53:51 -07:00
return ;
//return;
// ---------------------------------
$html = $text ;
2013-03-01 00:19:53 -08:00
2015-04-11 02:53:51 -07:00
// $html = $this->getXss();
2013-03-01 00:19:53 -08:00
echo " <h2>Unprocessed XSS</h2> " ;
// echo $html; // Remove Comment for a real mess!
print_a ( $html );
echo " <h2>Standard v2 Parser</h2> " ;
echo " <h3> \$ tp->dataFilter()</h3> " ;
2013-03-01 18:17:03 -08:00
// echo $tp->dataFilter($html); // Remove Comment for a real mess!
$sql -> db_Mark_Time ( '------ Start Parser Test -------' );
2014-06-09 21:45:40 +03:00
print_a ( $tp -> dataFilter ( $html ));
2013-03-01 00:19:53 -08:00
$sql -> db_Mark_Time ( 'tp->dataFilter' );
echo " <h3> \$ tp->toHtml()</h3> " ;
2013-03-01 18:17:03 -08:00
// echo $tp->dataFilter($html); // Remove Comment for a real mess!
2014-06-09 21:45:40 +03:00
print_a ( $tp -> toHTML ( $html ));
2013-03-01 00:19:53 -08:00
$sql -> db_Mark_Time ( 'tp->toHtml' );
echo " <h3> \$ tp->toDB()</h3> " ;
2015-04-11 02:53:51 -07:00
// echo $tp->dataFilter($html); // Remove Comment for a real mess!
$todb = $tp -> toDB ( $html );
print_a ( $todb );
$sql -> db_Mark_Time ( 'tp->toDB' );
echo " <h3> \$ tp->toForm() with toDB input.</h3> " ;
print_a ( $tp -> toForm ( $todb ));
2013-03-01 00:19:53 -08:00
echo " <h2>New Parser</h2> " ;
echo " <h3>Processed</h3> " ;
2015-04-11 02:53:51 -07:00
$cleaned = $this -> cleanHtml ( $html , true ); // false = don't check html pref.
2013-03-01 00:19:53 -08:00
print_a ( $cleaned );
$sql -> db_Mark_Time ( 'new Parser' );
2013-03-01 18:17:03 -08:00
// $sql->db_Mark_Time('------ End Parser Test -------');
2013-03-01 00:19:53 -08:00
echo " <h3>Processed & Rendered</h3> " ;
echo $cleaned ;
echo " <h2>New Parser - Data</h2> " ;
echo " <h3>Converted Paths</h3> " ;
print_a ( $this -> pathList );
echo " <h3>Removed Tags and Attributes</h3> " ;
print_a ( $this -> removedList );
2013-03-01 18:17:03 -08:00
2013-03-01 00:19:53 -08:00
// print_a($p);
}
2015-04-16 15:23:21 -07:00
2015-04-29 10:22:46 -07:00
/**
* Filters / Validates using the PHP5 filter_var () method .
* @ param $text
2015-07-07 12:03:45 -07:00
* @ param $type string str | int | email | url | w | wds
2016-12-15 15:08:49 +01:00
* @ return string | boolean | array
2015-04-29 10:22:46 -07:00
*/
function filter ( $text , $type = 'str' , $validate = false )
{
if ( empty ( $text ))
{
return $text ;
}
if ( $type == 'w' ) // words only.
{
return preg_replace ( '/[^\w]/' , " " , $text );
}
if ( $type == 'wds' ) // words, digits and spaces only.
{
return preg_replace ( '/[^\w\d ]/' , " " , $text );
}
2016-12-04 07:50:27 -08:00
if ( $type == 'file' )
{
return preg_replace ( '/[^\w\d_\.-]/' , " " , $text );
}
2015-04-29 10:22:46 -07:00
if ( $validate == false )
{
$filterTypes = array (
'int' => FILTER_SANITIZE_NUMBER_INT ,
'str' => FILTER_SANITIZE_STRING , // no html.
'email' => FILTER_SANITIZE_EMAIL ,
'url' => FILTER_SANITIZE_URL ,
'enc' => FILTER_SANITIZE_ENCODED
);
}
else
{
$filterTypes = array (
'int' => FILTER_VALIDATE_INT ,
'email' => FILTER_VALIDATE_EMAIL ,
'ip' => FILTER_VALIDATE_IP ,
'url' => FILTER_VALIDATE_URL ,
);
}
if ( is_array ( $text ))
{
return filter_var_array ( $text , $filterTypes [ $type ]);
}
return filter_var ( $text , $filterTypes [ $type ]);
}
2013-03-01 00:19:53 -08:00
/**
2014-06-09 21:45:40 +03:00
* Process and clean HTML from user input .
* TODO Html5 tag support .
* @ param string $html raw HTML
* @ param boolean $checkPref
* @ return string
2013-03-01 00:19:53 -08:00
*/
2014-06-09 21:45:40 +03:00
public function cleanHtml ( $html = '' , $checkPref = true )
2013-03-01 00:19:53 -08:00
{
2015-03-07 16:31:13 -08:00
if ( empty ( $html )){ return '' ; }
2015-04-11 02:53:51 -07:00
2015-04-11 16:56:46 -07:00
$html = str_replace ( ' ' , '@nbsp;' , $html ); // prevent replacement of with spaces.
2015-04-16 15:23:21 -07:00
if ( strpos ( $html , " <body " ) === false ) // HTML Fragment
2013-03-05 23:46:51 -08:00
{
$html = '<?xml version="1.0" encoding="utf-8"?><!DOCTYPE html><html><head><meta charset="utf-8"></head><body>' . $html . '</body></html>' ;
}
else // Full HTML page.
{
// $this->allowedTags[] = 'head';
// $this->allowedTags[] = 'body';
// $this->allowedTags[] = 'title';
//$this->allowedTags[] = 'meta';
}
2013-03-05 15:13:16 -08:00
2013-03-05 23:46:51 -08:00
if ( ! is_object ( $this -> domObj ))
{
$this -> init ();
}
2014-06-09 21:45:40 +03:00
2015-04-29 10:22:46 -07:00
if ( $this -> scriptAccess === false )
{
$this -> scriptAccess = e107 :: getConfig () -> get ( 'post_script' , e_UC_MAINADMIN ); // Pref to Allow <script> tags11;
}
if ( check_class ( $this -> scriptAccess ))
2014-06-09 21:45:40 +03:00
{
2015-04-29 10:22:46 -07:00
$this -> allowedTags = array_merge ( $this -> allowedTags , $this -> scriptTags );
2014-06-09 21:45:40 +03:00
}
2013-04-30 02:57:33 -07:00
2015-04-16 15:23:21 -07:00
// Set it up for processing.
// libxml_use_internal_errors(true); // hides errors.
2015-06-11 12:29:19 -07:00
$doc = $this -> domObj ;
libxml_use_internal_errors ( true );
2016-02-26 02:03:49 +02:00
// @$doc->loadHTML($html);
2016-02-29 22:01:58 -08:00
if ( function_exists ( 'mb_convert_encoding' ))
{
$html = mb_convert_encoding ( $html , 'HTML-ENTITIES' , " UTF-8 " );
}
2016-03-01 17:50:53 -08:00
2016-02-29 22:01:58 -08:00
@ $doc -> loadHTML ( $html );
2016-03-01 17:50:53 -08:00
2015-04-11 02:53:51 -07:00
// $doc->encoding = 'UTF-8';
2013-03-01 18:17:03 -08:00
// $doc->resolveExternals = true;
2013-03-01 00:19:53 -08:00
2013-03-05 15:13:16 -08:00
// $tmp = $doc->getElementsByTagName('*');
2013-03-05 23:46:51 -08:00
$this -> nodesToConvert = array (); // required.
$this -> nodesToDelete = array (); // required.
$this -> removedList = array ();
2013-03-05 15:13:16 -08:00
2014-06-09 21:45:40 +03:00
$tmp = $doc -> getElementsByTagName ( '*' );
/** @var DOMElement $node */
2013-03-01 00:19:53 -08:00
foreach ( $tmp as $node )
{
$path = $node -> getNodePath ();
2014-06-09 21:45:40 +03:00
2013-03-05 23:46:51 -08:00
// echo "<br />Path = ".$path;
2015-04-11 11:47:40 -07:00
// $tag = strval(basename($path));
2016-03-01 13:29:50 -08:00
2016-03-01 17:50:53 -08:00
if ( strpos ( $path , '/code' ) !== false || strpos ( $path , '/pre' ) !== false ) // treat as html.
2016-03-01 13:29:50 -08:00
{
$this -> pathList [] = $path ;
2016-03-01 17:50:53 -08:00
// $this->nodesToConvert[] = $node->parentNode; // $node;
2016-03-01 13:29:50 -08:00
$this -> nodesToDisableSC [] = $node ;
2016-03-01 17:50:53 -08:00
continue ;
2016-03-01 13:29:50 -08:00
}
2016-03-01 17:50:53 -08:00
2013-03-01 00:19:53 -08:00
$tag = preg_replace ( '/([a-z0-9\[\]\/]*)?\/([\w]*)(\[(\d)*\])?$/i' , " $ 2 " , $path );
2013-03-01 18:17:03 -08:00
if ( ! in_array ( $tag , $this -> allowedTags ))
2013-03-01 00:19:53 -08:00
{
2016-03-01 13:29:50 -08:00
2013-03-01 00:19:53 -08:00
$this -> removedList [ 'tags' ][] = $tag ;
$this -> nodesToDelete [] = $node ;
2013-03-01 18:17:03 -08:00
continue ;
2013-03-01 00:19:53 -08:00
}
2014-06-09 21:45:40 +03:00
2013-03-01 00:19:53 -08:00
foreach ( $node -> attributes as $attr )
{
$name = $attr -> nodeName ;
2014-06-09 21:45:40 +03:00
$value = $attr -> nodeValue ;
2013-03-01 18:17:03 -08:00
$allow = varset ( $this -> allowedAttributes [ $tag ], $this -> allowedAttributes [ 'default' ]);
2014-06-09 21:45:40 +03:00
$removeAttributes = array ();
2013-03-01 00:19:53 -08:00
2013-03-01 18:17:03 -08:00
if ( ! in_array ( $name , $allow ))
2013-03-01 00:19:53 -08:00
{
2014-06-09 21:45:40 +03:00
$removeAttributes [] = $name ;
//$node->removeAttribute($name);
$this -> removedList [ 'attributes' ][] = $name . " from < " . $tag . " > " ;
continue ;
2013-03-01 00:19:53 -08:00
}
2014-06-09 21:45:40 +03:00
if ( $this -> invalidAttributeValue ( $value )) // Check value against blacklisted values.
2013-03-01 18:17:03 -08:00
{
2014-06-09 21:45:40 +03:00
//$node->removeAttribute($name);
2013-03-01 18:17:03 -08:00
$node -> setAttribute ( $name , '#---sanitized---#' );
$this -> removedList [ 'sanitized' ][] = $tag . '[' . $name . ']' ;
2014-06-09 21:45:40 +03:00
}
else
{
$_value = $this -> secureAttributeValue ( $name , $value );
$node -> setAttribute ( $name , $_value );
if ( $_value !== $value )
{
$this -> removedList [ 'sanitized' ][] = $tag . '[' . $name . '] converted "' . $value . '" -> "' . $_value . '"' ;
}
}
}
// required - removing attributes in a loop breaks the loop
2015-03-07 16:31:13 -08:00
if ( ! empty ( $removeAttributes ))
2014-06-09 21:45:40 +03:00
{
2015-03-07 16:31:13 -08:00
foreach ( $removeAttributes as $name )
{
$node -> removeAttribute ( $name );
}
2014-06-09 21:45:40 +03:00
}
2013-03-01 18:17:03 -08:00
2013-03-01 00:19:53 -08:00
}
// Remove some stuff.
foreach ( $this -> nodesToDelete as $node )
{
$node -> parentNode -> removeChild ( $node );
}
2016-03-01 13:29:50 -08:00
// Disable Shortcodes in pre/code
2016-03-01 17:50:53 -08:00
2016-04-01 11:27:06 -07:00
foreach ( $this -> nodesToDisableSC as $key => $node )
2016-03-01 13:29:50 -08:00
{
2016-04-01 11:27:06 -07:00
$value = $node -> C14N ();
2016-03-03 15:24:59 -08:00
2016-04-01 11:27:06 -07:00
if ( empty ( $value ))
{
continue ;
}
2016-03-03 15:24:59 -08:00
2016-04-01 11:27:06 -07:00
$value = str_replace ( " 
 " , " \r " , $value );
2016-03-01 17:50:53 -08:00
2016-04-01 11:27:06 -07:00
if ( $node -> nodeName == 'pre' )
{
$value = preg_replace ( '/^<pre[^>]*>/' , '' , $value );
$value = str_replace ( " </pre> " , " " , $value );
2016-05-20 15:04:51 -07:00
$value = str_replace ( '<br></br>' , PHP_EOL , $value );
2016-04-01 11:27:06 -07:00
}
2016-03-01 17:50:53 -08:00
2016-04-01 11:27:06 -07:00
if ( $node -> nodeName == 'code' )
{
$value = preg_replace ( '/^<code[^>]*>/' , '' , $value );
$value = str_replace ( " </code> " , " " , $value );
2016-04-04 12:44:40 -07:00
$value = str_replace ( " <br></br> " , PHP_EOL , $value );
2016-04-01 11:27:06 -07:00
}
2016-03-01 17:50:53 -08:00
2016-04-01 11:27:06 -07:00
$value = str_replace ( '{' , '{{{' , $value ); // temporarily change {e_XXX} to {{{e_XXX}}}
$value = str_replace ( '}' , '}}}' , $value ); // temporarily change {e_XXX} to {{{e_XXX}}}
2016-03-01 17:50:53 -08:00
2016-04-01 11:27:06 -07:00
$newNode = $doc -> createElement ( $node -> nodeName );
$newNode -> nodeValue = $value ;
2016-03-01 13:29:50 -08:00
2016-04-01 11:27:06 -07:00
$node -> parentNode -> replaceChild ( $newNode , $node );
}
2016-03-01 13:29:50 -08:00
2016-03-01 17:50:53 -08:00
// Convert <code> and <pre> Tags to Htmlentities.
/* TODO XXX Still necessary ? Perhaps using bbcodes only ?
2013-03-01 18:22:27 -08:00
foreach ( $this -> nodesToConvert as $node )
2013-03-01 00:19:53 -08:00
{
$value = $node -> C14N ();
2013-03-01 18:17:03 -08:00
2013-03-01 00:19:53 -08:00
$value = str_replace ( " 
 " , " " , $value );
2016-03-01 17:50:53 -08:00
// print_a("WOWOWO");
2013-03-01 18:17:03 -08:00
if ( $node -> nodeName == 'pre' )
{
$value = substr ( $value , 5 );
$end = strrpos ( $value , " </pre> " );
$value = substr ( $value , 0 , $end );
}
if ( $node -> nodeName == 'code' )
{
$value = substr ( $value , 6 );
$end = strrpos ( $value , " </code> " );
$value = substr ( $value , 0 , $end );
}
2015-04-11 02:53:51 -07:00
$value = htmlentities ( htmlentities ( $value )); // Needed
2013-03-01 18:17:03 -08:00
$node -> nodeValue = $value ;
2014-06-09 21:45:40 +03:00
}
2016-03-01 17:50:53 -08:00
*/
2016-03-01 13:29:50 -08:00
2015-04-11 02:53:51 -07:00
$cleaned = $doc -> saveHTML ( $doc -> documentElement ); // $doc->documentElement fixes utf-8/entities issue. @see http://stackoverflow.com/questions/8218230/php-domdocument-loadhtml-not-encoding-utf-8-correctly
2014-06-09 21:45:40 +03:00
2016-03-01 13:29:50 -08:00
$cleaned = str_replace ( '@nbsp;' , ' ' , $cleaned ); // prevent replacement of with spaces. - convert back.
2016-03-01 17:50:53 -08:00
2016-03-01 13:29:50 -08:00
$cleaned = str_replace ( '{{{' , '{' , $cleaned ); // convert shortcode temporary triple-curly braces back to entities.
2016-03-01 17:50:53 -08:00
$cleaned = str_replace ( '}}}' , '}' , $cleaned ); // convert shortcode temporary triple-curly braces back to entities.
2015-04-11 11:47:40 -07:00
2013-03-01 18:17:03 -08:00
$cleaned = str_replace ( array ( '<body>' , '</body>' , '<html>' , '</html>' , '<!DOCTYPE html>' , '<meta charset="UTF-8">' , '<?xml version="1.0" encoding="utf-8"?>' ), '' , $cleaned ); // filter out tags.
2015-04-11 11:47:40 -07:00
2015-04-11 02:53:51 -07:00
// $cleaned = html_entity_decode($cleaned, ENT_QUOTES, 'UTF-8');
2013-03-01 18:17:03 -08:00
2014-03-13 00:31:54 +01:00
return trim ( $cleaned );
2013-03-01 00:19:53 -08:00
}
2014-06-09 21:45:40 +03:00
public function secureAttributeValue ( $attribute , $value )
{
$search = isset ( $this -> replaceAttrValues [ $attribute ]) ? $this -> replaceAttrValues [ $attribute ] : $this -> replaceAttrValues [ 'default' ];
if ( ! empty ( $search ))
{
$value = str_replace ( $search , '' , $value );
}
return $value ;
}
2013-03-01 00:19:53 -08:00
/**
* Check for Invalid Attribute Values
2014-06-09 21:45:40 +03:00
* @ param $value string
2013-03-01 00:19:53 -08:00
* @ return true / false
*/
2014-06-09 21:45:40 +03:00
function invalidAttributeValue ( $value )
2013-03-01 00:19:53 -08:00
{
2013-03-05 15:13:16 -08:00
2013-03-01 18:17:03 -08:00
foreach ( $this -> badAttrValues as $v ) // global list because a bad value is bad regardless of the attribute it's in. ;-)
2013-03-01 00:19:53 -08:00
{
2014-06-09 21:45:40 +03:00
if ( preg_match ( '/' . $v . '/i' , $value ) == true )
2013-03-01 00:19:53 -08:00
{
2014-06-09 21:45:40 +03:00
$this -> removedList [ 'blacklist' ][] = " Match found for ' { $v } ' in ' { $value } ' " ;
2013-03-05 15:13:16 -08:00
2013-03-01 00:19:53 -08:00
return true ;
}
}
return false ;
}
/**
* XSS HTML code to test against
*/
2015-04-29 10:22:46 -07:00
public function getXss ()
2013-03-01 00:19:53 -08:00
{
$html = <<< EOF
2013-03-01 18:17:03 -08:00
Internationalization Test :
ภาษาไทย < br />
日本語 < br />
简体中文 < br />
< a href = 'somewhere.html' src = 'invalidatrribute' > Test </ a >
2013-03-05 15:13:16 -08:00
A GOOD LINK : < a href = 'http://mylink.php' > Some Link </ a >
2013-03-01 18:17:03 -08:00
< a href = 'javascript: something' src = 'invalidatrribute' > Test regex </ a >
< img href = 'invalidattribute' src = 'myimage.jpg' />
2013-03-01 00:19:53 -08:00
< frameset onload = alert ( 1 ) data - something = where >
< table background = " javascript:alert(1) " >< tr >< td >< a href = " something.php " onclick = " alert(1) " > Hi there </ a ></ td ></ tr ></ table >
< div >
<!--< img src = " --><img src=x onerror=alert(1)// " >
< comment >< img src = " </comment><img src=x onerror=alert(1)// " >
< ul >
< li style = list - style : url () onerror = alert ( 1 ) ></ li > < div style = content : url ( data : image / svg + xml , % 3 Csvg /% 3 E ); visibility : hidden onload = alert ( 1 ) ></ div >
</ ul >
</ div >
</ frameset >
< head >< base href = " javascript:// " /></ head >< body >< a href = " /. /,alert(1)//# " > XXX </ a ></ body >
< SCRIPT FOR = document EVENT = onreadystatechange > alert ( 1 ) </ SCRIPT >
< OBJECT CLASSID = " clsid:333C7BC4-460F-11D0-BC04-0080C7055A83 " >< PARAM NAME = " DataURL " VALUE = " javascript:alert(1) " ></ OBJECT >
< b < script > alert ( 1 ) //</script>0</script></b>
< div id = " div1 " >< input value = " ``onmouseover=alert(1) " ></ div > < div id = " div2 " ></ div ><
script > document . getElementById ( " div2 " ) . innerHTML = document . getElementById ( " div1 " ) . innerHTML ; </ script >
Some example text < br />
< b > This is bold </ b >< br />
< i > This is italic </ i >< br />
< small > Some small text </ small >
< pre > This is pre - formatted
< script > alert ( 'something' ) </ script >
< b > Bold Stuff </ b >
< pre > something </ pre >
< code > code </ code >
< b > BOLD </ b >
function myfunction ()
{
}
</ pre >
< code >
function myfunction ()
{
}
< script > alert ( 'something' ) </ script >
</ code >
2013-03-01 17:24:33 +02:00
< svg ><! [ CDATA [ >< image xlink : href = " ]]><img src=xx:x onerror=alert(2)// " ></ svg >
< style >< img src = " </style><img src=x onerror=alert(1)// " >
2013-03-01 00:19:53 -08:00
< x '="foo"><x foo=' >< img src = x onerror = alert ( 1 ) //'> <!-- IE 6-9 --> <! '="foo"><x foo='><img src=x onerror=alert(2)//'> <? '="foo"><x foo='><img src=x onerror=alert(3)//'>
< embed src = " javascript:alert(1) " ></ embed > // O10.10↓, OM10.0↓, GC6↓, FF <img src="javascript:alert(2)"> <image src="javascript:alert(2)"> // IE6, O10.10↓, OM10.0↓ <script src="javascript:alert(3)"></script> // IE6, O11.01↓, OM10.1↓
< div style = width : 1 px ; filter : glow onfilterchange = alert ( 1 ) > x </ div >
< object allowscriptaccess = " always " data = " test.swf " ></ object >
[ A ] < ? foo = " ><script>alert(1)</script> " > <! foo = " ><script>alert(1)</script> " > </ foo = " ><script>alert(1)</script> " > [ B ] < ? foo = " ><x foo='?><script>alert(1)</script>'> " > [ C ] <! foo = " [[[x]] " >< x foo = " ]foo><script>alert(1)</script> " > [ D ] <% foo >< x foo = " %><script>alert(1)</script> " >
< iframe src = mhtml : http :// html5sec . org / test . html ! xss . html ></ iframe > < iframe src = mhtml : http :// html5sec . org / test . gif ! xss . html ></ iframe >
< html > < body > < b > some content without two new line \n\n </ b > Content - Type : multipart / related ; boundary = " ****** " < b > some content without two new line </ b > --****** Content - Location : xss . html Content - Transfer - Encoding : base64 PGlmcmFtZSBuYW1lPWxvIHN0eWxlPWRpc3BsYXk6bm9uZT48L2lmcmFtZT4NCjxzY3JpcHQ + DQp1 cmw9bG9jYXRpb24uaHJlZjtkb2N1bWVudC5nZXRFbGVtZW50c0J5TmFtZSgnbG8nKVswXS5zcmM9 dXJsLnN1YnN0cmluZyg2LHVybC5pbmRleE9mKCcvJywxNSkpO3NldFRpbWVvdXQoImFsZXJ0KGZy YW1lc1snbG8nXS5kb2N1bWVudC5jb29raWUpIiwyMDAwKTsNCjwvc2NyaXB0PiAgICAg --******-- </ body > </ html >
<!-- IE 5 - 9 --> < div id = d >< x xmlns = " ><iframe onload=alert(1) " ></ div > < script > d . innerHTML += '' ; </ script > <!-- IE 10 in IE5 - 9 Standards mode --> < div id = d >< x xmlns = '"><iframe onload=alert(2)//' ></ div > < script > d . innerHTML += '' ; </ script >
< img [ a ][ b ] src = x [ d ] onerror [ c ] = [ e ] " alert(1) " >
< a href = " [a]java[b]script[c]:alert(1) " > XXX </ a >
< img src = " x` `<script>alert(1)</script> " ` ` >
< img src onerror / " ' " = alt = alert ( 1 ) //">
< title onpropertychange = alert ( 1 ) ></ title >< title title =></ title >
<!-- IE 5 - 8 standards mode --> < a href = http :// foo . bar / #x=`y></a><img alt="`><img src=xx:x onerror=alert(1)></a>"> <!-- IE 5-9 standards mode --> <!a foo=x=`y><img alt="`><img src=xx:x onerror=alert(2)//"> <?a foo=x=`y><img alt="`><img src=xx:x onerror=alert(3)//">
<!-- [ if ] >< script > alert ( 1 ) </ script --> <!-- [ if < img src = x onerror = alert ( 2 ) //]> -->
< script > Blabla </ script >
< script src = " / \ example.com \ foo.js " ></ script > // Safari 5.0, Chrome 9, 10 <script src="\\example.com\foo.js"></script> // Safari 5.0
< object id = " x " classid = " clsid:CB927D12-4FF7-4a9e-A169-56E4B8A75598 " ></ object > < object classid = " clsid:02BF25D5-8C17-4B23-BC80-D3488ABDDC6B " onqt_error = " alert(1) " style = " behavior:url(#x); " >< param name = postdomevents /></ object >
<!-- ` < img / src = xx : xx onerror = alert ( 1 ) //--!>
< xmp > <% </ xmp > < img alt = '%></xmp><img src=xx:x onerror=alert(1)//' > < script > x = '<%' </ script > %>/ alert ( 2 ) </ script > XXX < style > * [ '<!--' ]{} </ style > --> {} * { color : red } </ style >
< a style = " -o-link:'javascript:alert(1)';-o-link-source:current " > X </ a >
< style > p [ foo = bar {} * { - o - link : 'javascript:alert(1)' }{} * { - o - link - source : current } * { background : red }]{ background : green }; </ style >
< div style = " font-family:'foo[a];color:red;'; " > XXX </ div >
< form id = " test " ></ form >< button form = " test " formaction = " javascript:alert(1) " > X </ button >
< input onfocus = write ( 1 ) autofocus >
< video poster = javascript : alert ( 1 ) //></video>
2013-03-01 03:46:15 -08:00
< video > somemovei . mp4 </ video >
2013-03-01 00:19:53 -08:00
< body onscroll = alert ( 1 ) >< br >< br >< br >< br >< br >< br >...< br >< br >< br >< br >< input autofocus >
2013-03-01 18:17:03 -08:00
2013-03-01 03:46:15 -08:00
< article id = " something " > Some text goes here </ article >
2013-03-01 18:17:03 -08:00
2013-03-01 00:19:53 -08:00
EOF ;
return $html ;
}
}
2013-05-20 17:10:38 -07:00
2016-05-05 18:42:09 -07:00
class e_emotefilter
{
2016-05-13 07:02:50 -07:00
private $search = array ();
private $replace = array ();
2016-05-06 08:25:12 -07:00
public $emotes ;
2016-05-13 07:02:50 -07:00
private $singleSearch = array ();
private $singleReplace = array ();
2013-05-20 17:10:38 -07:00
2016-05-05 18:42:09 -07:00
function __construct ()
2013-05-20 17:10:38 -07:00
{
$pref = e107 :: getPref ();
2015-08-24 09:48:27 -07:00
if ( empty ( $pref [ 'emotepack' ]))
2013-05-20 17:10:38 -07:00
{
$pref [ 'emotepack' ] = " default " ;
2015-08-24 09:48:27 -07:00
e107 :: getConfig ( 'emote' ) -> clearPrefCache ( 'emote' );
e107 :: getConfig ( 'core' ) -> set ( 'emotepack' , 'default' ) -> save ( false , true , false );
2013-05-20 17:10:38 -07:00
}
2015-08-24 09:48:27 -07:00
2013-05-20 17:10:38 -07:00
$this -> emotes = e107 :: getConfig ( " emote " ) -> getPref ();
2015-08-24 09:48:27 -07:00
2016-05-05 18:42:09 -07:00
if ( empty ( $this -> emotes ))
2013-05-20 17:10:38 -07:00
{
return ;
}
foreach ( $this -> emotes as $key => $value )
{
2016-05-05 18:42:09 -07:00
2013-05-20 17:10:38 -07:00
$value = trim ( $value );
if ( $value )
{ // Only 'activate' emote if there's a substitution string set
2016-05-05 18:42:09 -07:00
2013-05-20 17:10:38 -07:00
$key = preg_replace ( " #!( \ w { 3,}?) $ #si " , " . \\ 1 " , $key );
// Next two probably to sort out legacy issues - may not be required any more
2016-05-08 08:31:04 -07:00
// $key = preg_replace("#_(\w{3})$#", ".\\1", $key);
2016-05-05 18:42:09 -07:00
$key = str_replace ( " ! " , " _ " , $key );
2013-05-20 17:10:38 -07:00
$filename = e_IMAGE . " emotes/ " . $pref [ 'emotepack' ] . " / " . $key ;
$fileloc = SITEURLBASE . e_IMAGE_ABS . " emotes/ " . $pref [ 'emotepack' ] . " / " . $key ;
2016-05-05 18:42:09 -07:00
$alt = str_replace ( array ( '.png' , '.gif' , '.jpg' ), '' , $key );
2013-05-20 17:10:38 -07:00
if ( file_exists ( $filename ))
{
2016-05-05 18:42:09 -07:00
$tmp = explode ( " " , $value );
foreach ( $tmp as $code )
{
$img = " <img class='e-emoticon' src=' " . $fileloc . " ' alt= \" " . $alt . " \" /> " ;
2016-05-08 08:31:04 -07:00
$this -> search [] = " \n " . $code ;
$this -> replace [] = " \n " . $img ;
$this -> search [] = " " . $code ;
$this -> replace [] = " " . $img ;
$this -> search [] = " > " . $code ; // Fix for emote within html.
$this -> replace [] = " > " . $img ;
2016-05-08 08:59:54 -07:00
$this -> singleSearch [] = $code ;
$this -> singleReplace [] = $img ;
2016-05-05 18:42:09 -07:00
}
/*
2013-05-20 17:10:38 -07:00
if ( strstr ( $value , " " ))
{
$tmp = explode ( " " , $value );
foreach ( $tmp as $code )
{
$this -> search [] = " " . $code ;
$this -> search [] = " \n " . $code ;
2016-05-05 18:42:09 -07:00
$this -> replace [] = " <img class='e-emoticon' src=' " . $fileloc . " ' alt= \" " . $alt . " \" /> " ;
$this -> replace [] = " \n <img class='e-emoticon' src=' " . $fileloc . " 'alt= \" " . $alt . " \" /> " ;
2013-05-20 17:10:38 -07:00
}
unset ( $tmp );
}
else
{
if ( $value )
{
$this -> search [] = " " . $value ;
$this -> search [] = " \n " . $value ;
2016-05-05 18:42:09 -07:00
$this -> replace [] = " <img class='e-emoticon' src=' " . $fileloc . " ' alt= \" " . $alt . " \" /> " ;
$this -> replace [] = " \n <img class='e-emoticon' src=' " . $fileloc . " ' alt= \" " . $alt . " \" /> " ;
2013-05-20 17:10:38 -07:00
}
2016-05-05 18:42:09 -07:00
} */
2013-05-20 17:10:38 -07:00
}
}
else
{
unset ( $this -> emotes [ $key ]);
}
2016-05-05 18:42:09 -07:00
2013-05-20 17:10:38 -07:00
}
2016-05-05 18:42:09 -07:00
2016-05-06 08:16:45 -07:00
// print_a($this->regSearch);
// print_a($this->regReplace);
2016-05-05 18:42:09 -07:00
2013-05-20 17:10:38 -07:00
}
2015-08-24 09:48:27 -07:00
2016-05-08 08:59:54 -07:00
function filterEmotes ( $text )
2016-05-06 08:16:45 -07:00
{
2016-05-08 08:59:54 -07:00
if ( empty ( $text ))
{
return '' ;
}
2016-05-06 08:16:45 -07:00
2016-05-13 07:02:50 -07:00
if ( ! empty ( $this -> singleSearch ) && ( strlen ( $text ) < 12 ) && in_array ( $text , $this -> singleSearch )) // just one emoticon with no space, line-break or html tags around it.
2016-05-08 08:59:54 -07:00
{
return str_replace ( $this -> singleSearch , $this -> singleReplace , $text );
}
2015-08-24 09:48:27 -07:00
2016-05-08 08:31:04 -07:00
return str_replace ( $this -> search , $this -> replace , $text );
2016-05-08 08:59:54 -07:00
2013-05-20 17:10:38 -07:00
}
2015-08-24 09:48:27 -07:00
2013-05-20 17:10:38 -07:00
function filterEmotesRev ( $text )
{
2016-05-05 18:42:09 -07:00
return str_replace ( $this -> replace , $this -> search , $text );
2013-05-20 17:10:38 -07:00
}
}
class e_profanityFilter
{
var $profanityList ;
2016-02-14 12:15:55 -08:00
function __construct ()
2013-05-20 17:10:38 -07:00
{
global $pref ;
$words = explode ( " , " , $pref [ 'profanity_words' ]);
$word_array = array ();
foreach ( $words as $word )
{
$word = trim ( $word );
if ( $word != " " )
{
$word_array [] = $word ;
if ( strpos ( $word , '$' ) !== FALSE )
{
$word_array [] = str_replace ( '$' , '\$' , $word ); // Special case - '$' may be 'in clear' or as entity
}
}
}
if ( count ( $word_array ))
{
$this -> profanityList = str_replace ( '#' , '\#' , implode ( " \ b| \ b " , $word_array )); // We can get entities in the string - confuse the regex delimiters
}
unset ( $words );
return TRUE ;
}
function filterProfanities ( $text )
{
global $pref ;
if ( ! $this -> profanityList )
{
return $text ;
}
if ( $pref [ 'profanity_replace' ])
{
return preg_replace ( " # \ b " . $this -> profanityList . " \ b#is " , $pref [ 'profanity_replace' ], $text );
}
else
{
return preg_replace_callback ( " # \ b " . $this -> profanityList . " \ b#is " , array ( $this , 'replaceProfanities' ), $text );
}
}
function replaceProfanities ( $matches )
{
/*!
@ function replaceProfanities callback
@ abstract replaces vowels in profanity words with stars
@ param text string - text string to be filtered
@ result filtered text
*/
return preg_replace ( " #a|e|i|o|u#i " , " * " , $matches [ 0 ]);
}
}