php-e107/e107_handlers/e_parse_class.php

<?php
/*
* e107 website system
*
* Copyright (C) 2008-2011 e107 Inc (e107.org)
* Released under the terms and conditions of the
* GNU General Public License (http://www.gnu.org/licenses/gpl.txt)
*
* Text processing and parsing functions
*
* $URL$
* $Id$
*
*/

/**
 * @package e107
 * @subpackage e107_handlers
 * @version $Id$
 *
 * Text processing and parsing functions.
 * Simple parse data model.
 */

if (!defined('e107_INIT')) { exit(); }

// Directory for the hard-coded utf-8 handling routines
define('E_UTF8_PACK', e_HANDLER.'utf8/');

define("E_NL", chr(2));

class e_parse extends e_parser
{
	/**
	 * Determine how to handle utf-8.
	 *    0 = 'do nothing'
	 *    1 = 'use mb_string'
	 *    2 = emulation
	 *
	 * @var integer
	 */
	protected $utfAction;

	// Shortcode processor - see __get()
	//var $e_sc;

	// BBCode processor
	var $e_bb;

	// Profanity filter
	var $e_pf;

	// Emote filter
	var $e_emote;

	// 'Hooked' parsers (array)
	var $e_hook;

	var $search = array('&amp;#039;', '&#039;', '&#39;', '&quot;', 'onerror', '&gt;', '&amp;quot;', ' & ');

	var $replace = array("'", "'", "'", '"', 'one<i></i>rror', '>', '"', ' &amp; ');

	// Set to TRUE or FALSE once it has been calculated
	var $e_highlighting;

	// Highlight query
	var $e_query;
	
	public $thumbWidth = 100;
	
	public $thumbHeight = 0;
	
	public $thumbCrop = 0;

	private $thumbEncode = 0;

	// Set up the defaults
	var $e_optDefault = array(
		// default context: reflects legacy settings (many items enabled)
		'context' 		=> 'OLDDEFAULT',
		//
		'fromadmin' 	=> FALSE,

		// Enable emote display
		'emotes'		=> TRUE,

		// Convert defines(constants) within text.
		'defs' 			=> FALSE,

		// replace all {e_XXX} constants with their e107 value - 'rel' or 'abs'
		'constants' 	=> FALSE,

		// Enable hooked parsers
		'hook'			=> TRUE,

		// Allow scripts through (new for 0.8)
		'scripts'		=> TRUE,

		// Make links clickable
		'link_click'	=> TRUE,

		// Substitute on clickable links (only if link_click == TRUE)
		'link_replace'	=> TRUE,

		// Parse shortcodes - TRUE enables parsing

		'parse_sc' 		=> FALSE,
		// remove HTML tags.
		'no_tags' 		=> FALSE,

		// Restore entity form of quotes and such to single characters - TRUE disables
		'value'			=> FALSE,

		// Line break compression - TRUE removes newline characters
		'nobreak' 		=> FALSE,

		// Retain newlines - wraps to \n instead of <br /> if TRUE (for non-HTML email text etc)
		'retain_nl' 	=> FALSE
		);

	// Super modifiers override default option values
	var	$e_SuperMods = array(
				//text is part of a title (e.g. news title)
				'TITLE' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE
						),
				'TITLE_PLAIN' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE, 'no_tags' => TRUE
						),
				//text is user-entered (i.e. untrusted) and part of a title (e.g. forum title)
				'USER_TITLE' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'scripts' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE
						),
				// text is 'body' of email or similar - being sent 'off-site' so don't rely on server availability
				'E_TITLE' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'defs'=>TRUE, 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE
						),
				// text is part of the summary of a longer item (e.g. content summary)
				'SUMMARY' =>
					array(
						'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
						),
				// text is the description of an item (e.g. download, link)
				'DESCRIPTION' =>
					array(
						'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
						),
				// text is 'body' or 'bulk' text (e.g. custom page body, content body)
				'BODY' =>
					array(
						'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
						),
				// text is parsed by the Wysiwyg editor. eg. TinyMce
				'WYSIWYG' =>
					array(
							'hook' => false, 'link_click' => false, 'link_replace' => false, 'retain_nl' => true
						),
				// text is user-entered (i.e. untrusted)'body' or 'bulk' text (e.g. custom page body, content body)
				'USER_BODY' =>
					array(
						'constants'=>'full', 'scripts' => FALSE, 'nostrip'=>FALSE
						),
				// text is 'body' of email or similar - being sent 'off-site' so don't rely on server availability
				'E_BODY' =>
					array(
						'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE
						),
				// text is text-only 'body' of email or similar - being sent 'off-site' so don't rely on server availability
				'E_BODY_PLAIN' =>
					array(
						'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE, 'retain_nl' => TRUE, 'no_tags' => TRUE
						),
				// text is the 'content' of a link (A tag, etc)
				'LINKTEXT' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE
						),
				// text is used (for admin edit) without fancy conversions or html.
				'RAWTEXT' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE, 'no_tags'=>TRUE
						)
		);

	// Individual modifiers change the current context
	var $e_Modifiers = array(
				'emotes_off'	=> array('emotes' => FALSE),
				'emotes_on'		=> array('emotes' => TRUE),
				'no_hook'		=> array('hook' => FALSE),
				'do_hook'		=> array('hook' => TRUE),
				// New for 0.8
				'scripts_off'	=> array('scripts' => FALSE),
				// New for 0.8
				'scripts_on'	=> array('scripts' => TRUE),
				'no_make_clickable' => array('link_click' => FALSE),
				'make_clickable' => array('link_click' => TRUE),
				'no_replace' 	=> array('link_replace' => FALSE),
				// Replace text of clickable links (only if make_clickable option set)
				'replace' 		=> array('link_replace' => TRUE),
				// No path replacement
				'consts_off'	=> array('constants' => FALSE),
				// Relative path replacement
				'consts_rel'	=> array('constants' => 'rel'),
				// Absolute path replacement
				'consts_abs'	=> array('constants' => 'abs'),
				// Full path replacement
				'consts_full'	=> array('constants' => 'full'),
				// No shortcode parsing
				'scparse_off'	=> array('parse_sc'	=> FALSE),

				'scparse_on'	=> array('parse_sc'	=> TRUE),
				// Strip tags
				'no_tags' 		=> array('no_tags' 	=> TRUE),
				// Leave tags
				'do_tags' 		=> array('no_tags' 	=> FALSE),

				'fromadmin'		=> array('fromadmin' => TRUE),
				'notadmin'		=> array('fromadmin' => FALSE),
				// entity replacement
				'er_off'		=> array('value' => FALSE),
				'er_on'			=> array('value' => TRUE),
				// Decode constant if exists
				'defs_off'		=> array('defs' => FALSE),
				'defs_on'		=> array('defs' => TRUE),

				'dobreak'		=> array('nobreak' => FALSE),
				'nobreak'		=> array('nobreak' => TRUE),
				// Line break using \n
				'lb_nl'			=> array('retain_nl' => TRUE),
				// Line break using <br />
				'lb_br'			=> array('retain_nl' => FALSE),

				// Legacy option names below here - discontinue later
				'retain_nl'		=> array('retain_nl' => TRUE),
				'defs'			=> array('defs' => TRUE),
				'parse_sc'		=> array('parse_sc'	=> TRUE),
				'constants'		=> array('constants' => 'rel'),
				'value'			=> array('value' => TRUE),
				'wysiwyg'		=> array('wysiwyg'=>TRUE)
		);


	/**
	 * Constructor - keep it public for backward compatibility
	 still some new e_parse() in the core
	 *
	 */
	public function __construct()
	{
		// initialise the type of UTF-8 processing methods depending on PHP version and mb string extension
		parent::__construct();


		$this->init();
		$this->initCharset();

		// Preprocess the supermods to be useful default arrays with all values
		foreach ($this->e_SuperMods as $key => $val)
		{
			// precalculate super defaults
			$this->e_SuperMods[$key] = array_merge($this->e_optDefault , $this->e_SuperMods[$key]);
			$this->e_SuperMods[$key]['context'] = $key;
		}
	}


	/**
	 * Initialise the type of UTF-8 processing methods depending on PHP version and mb string extension.
	 *
	 * NOTE: can't be called until CHARSET is known
	 but we all know that it is UTF-8 now
	 *
	 * @return void
	 */
	private function initCharset()
	{
		// Start by working out what, if anything, we do about utf-8 handling.
		// 'Do nothing' is the simple option
		$this->utfAction = 0;
// CHARSET is utf-8
//		if(strtolower(CHARSET) == 'utf-8')
//		{
			if(version_compare(PHP_VERSION, '6.0.0') < 1)
			{
				// Need to do something here
				if(extension_loaded('mbstring'))
				{
					// Check for function overloading
					$temp = ini_get('mbstring.func_overload');
					// Just check the string functions - will be non-zero if overloaded
					if(($temp & MB_OVERLOAD_STRING) == 0)
					{
						// Can use the mb_string routines
						$this->utfAction = 1;
					}
					// Set the default encoding, so we don't have to specify every time
					mb_internal_encoding('UTF-8');
				}
				else
				{
					// Must use emulation - will probably be slow!
					$this->utfAction = 2;
					require_once(E_UTF8_PACK.'utils/unicode.php');
					// Always load the core routines - bound to need some of them!
					require_once(E_UTF8_PACK.'native/core.php');
				}
			}
//		}
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/strlen strlen PHP function.
	 * Returns the length of the given string.
	 *
	 * @param string $str The UTF-8 encoded string being measured for length.
	 * @return integer The length (amount of UTF-8 characters) of the string on success, and 0 if the string is empty.
	 */
	public function ustrlen($str)
	{
		switch($this->utfAction)
		{
			case 0:
				return strlen($str);
			case 1:
				return mb_strlen($str);
		}
		// Default case shouldn't happen often
		// Save a call - invoke the function directly
		return strlen(utf8_decode($str));
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/strtolower strtolower PHP function.
	 * Make a string lowercase.
	 *
	 * @param string $str The UTF-8 encoded string to be lowercased.
	 * @return string Specified string with all alphabetic characters converted to lowercase.
	 */
	public function ustrtolower($str)
	{
		switch($this->utfAction)
		{
			case 0:
				return strtolower($str);
			case 1:
				return mb_strtolower($str);
		}
		// Default case shouldn't happen often
		return utf8_strtolower($str);
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/strtoupper strtoupper PHP function.
	 * Make a string uppercase.
	 *
	 * @param string $str The UTF-8 encoded string to be uppercased.
	 * @return string Specified string with all alphabetic characters converted to uppercase.
	 */
	public function ustrtoupper($str)
	{
		switch($this->utfAction)
		{
			case 0:
				return strtoupper($str);
			case 1:
				return mb_strtoupper($str);
		}
		// Default case shouldn't happen often
		return utf8_strtoupper($str);
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/strpos strpos PHP function.
	 * Find the position of the first occurrence of a case-sensitive UTF-8 encoded string.
	 * Returns the numeric position (offset in amount of UTF-8 characters)
	 *  of the first occurrence of needle in the haystack string.
	 *
	 * @param string $haystack The UTF-8 encoded string being searched in.
	 * @param integer $needle The UTF-8 encoded string being searched for.
	 * @param integer $offset [optional] The optional offset parameter allows you to specify which character in haystack to start searching.
	 * 				 The position returned is still relative to the beginning of haystack.
	 * @return integer|boolean Returns the position as an integer. If needle is not found, the function will return boolean FALSE.
	 */
	public function ustrpos($haystack, $needle, $offset = 0)
	{
		switch($this->utfAction)
		{
			case 0:
				return strpos($haystack, $needle, $offset);
			case 1:
				return mb_strpos($haystack, $needle, $offset);
		}
		return utf8_strpos($haystack, $needle, $offset);
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/strrpos strrpos PHP function.
	 * Find the position of the last  occurrence of a case-sensitive UTF-8 encoded string.
	 * Returns the numeric position (offset in amount of UTF-8 characters)
	 *  of the last occurrence of needle in the haystack string.
	 *
	 * @param string $haystack The UTF-8 encoded string being searched in.
	 * @param integer $needle The UTF-8 encoded string being searched for.
	 * @param integer $offset [optional] - The optional offset parameter allows you to specify which character in haystack to start searching.
	 * 				 The position returned is still relative to the beginning of haystack.
	 * @return integer|boolean Returns the position as an integer. If needle is not found, the function will return boolean FALSE.
	 */
	public function ustrrpos($haystack, $needle, $offset = 0)
	{
		switch($this->utfAction)
		{
			case 0:
				return strrpos($haystack, $needle, $offset);
			case 1:
				return mb_strrpos($haystack, $needle, $offset);
		}
		return utf8_strrpos($haystack, $needle, $offset);
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/stristr stristr PHP function.
	 * Returns all of haystack starting from and including the first occurrence of needle to the end.
	 *
	 * @param string $haystack The UTF-8 encoded string to search in.
	 * @param mixed $needle If needle is not a string, it is converted to an integer and applied as the ordinal value of a character.
	 * @param integer $length [optional] (PHP 5.3+) If TRUE, returns the part of the haystack before the first occurrence of the needle (excluding needle).
	 * @return string Returns the matched substring. If needle is not found, returns FALSE.
	 */
	public function ustristr($haystack, $needle, $before_needle = false)
	{
		switch($this->utfAction)
		{
			case 0:
				return stristr($haystack, $needle, $before_needle);
			case 1:
				//return mb_substr($haystack, $needle, $before_needle);
				return mb_stristr($haystack, $needle, $before_needle);
		}
		// No utf8 pack backup
		return stristr($haystack, $needle, $before_needle);
	}
	
	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/substr substr PHP function.
	 * Returns the portion of string specified by the start and length parameters.
	 *
	 * NOTE: May be subtle differences in return values dependent on which routine is used.
	 *  Native substr() routine can return FALSE. mb_substr() and utf8_substr() just return an empty string.
	 *
	 * @param string $str The UTF-8 encoded string.
	 * @param integer $start Start of portion to be returned. Position is counted in amount of UTF-8 characters from the beginning of str.
	 * 				First character's position is 0. Second character position is 1, and so on.
	 * @param integer $length [optional] If length is given, the string returned will contain at most length characters beginning from start
	 * 				(depending on the length of string). If length is omitted, the rest of string from start will be returned.
	 * @return string The extracted UTF-8 encoded part of input string.
	 */
	public function usubstr($str, $start, $length = NULL)
	{
		switch($this->utfAction)
		{
			case 0:
				return substr($str, $start, $length);
			case 1:
				if(is_null($length))
				{
					return mb_substr($str, $start);
				}
				else
				{
					return mb_substr($str, $start, $length);
				}
		}
		return utf8_substr($str, $start, $length);
	}

	/**
	 * Converts the supplied text (presumed to be from user input) to a format suitable for storing in a database table.
	 *
	 * @param string $data
	 * @param boolean $nostrip [optional] Assumes all data is GPC ($_GET, $_POST, $_COOKIE) unless indicate otherwise by setting this var to TRUE.
	 * 				If magic quotes is enabled on the server and you do not tell toDB() that the data is non GPC then slashes will be stripped when they should not be.
	 * @param boolean $no_encode [optional] This parameter should nearly always be FALSE. It is used by the save_prefs() function to preserve HTML content within prefs even when
	 * 				the save_prefs() function has been called by a non admin user / user without html posting permissions.
	 * @param boolean $mod [optional] The 'no_html' and 'no_php' modifiers blanket prevent HTML and PHP posting regardless of posting permissions. (used in logging)
	 *		The 'pReFs' value is for internal use only, when saving prefs, to prevent sanitisation of HTML.
	 * @param boolean $original_author [optional]
	 * @return string
	 * @todo complete the documentation of this essential method
	 */
	public function toDB($data, $nostrip =false, $no_encode = false, $mod = false, $original_author = false)
	{
		$core_pref = e107::getConfig();
		if (is_array($data))
		{
			$ret = array();
			foreach ($data as $key => $var)
			{
				//Fix - sanitize keys as well
				$ret[$this->toDB($key, $nostrip, $no_encode, $mod, $original_author)] = $this->toDB($var, $nostrip, $no_encode, $mod, $original_author);
			}
			return $ret;
		}


		if (MAGIC_QUOTES_GPC == true && $nostrip == false)
		{
			$data = stripslashes($data);
		}

		if ($mod != 'pReFs') //XXX We're not saving prefs. 
		{

			$data = $this->preFilter($data); // used by bb_xxx.php toDB() functions. bb_code.php toDB() allows us to properly bypass HTML cleaning below.

		//	if(strlen($data) != strlen(strip_tags($data))) // html tags present. // strip_tags()  doesn't function doesnt look for unclosed '>'.
			if(($this->isHtml($data)) && strpos($mod, 'no_html') === false)
			{
				$this->isHtml = true;
				$data = $this->cleanHtml($data); // sanitize all html.

				$data = str_replace(array('%7B','%7D'),array('{','}'),$data); // fix for {e_XXX} paths.

			//	$data = urldecode($data); //XXX Commented out :  NO LONGER REQUIRED. symptom of cleaning the HTML - urlencodes src attributes containing { and } .eg. {e_BASE}

			}
			else // caused double-encoding of '&'
			{
				//$data = str_replace('<','&lt;',$data);
				//$data = str_replace('>','&gt;',$data);
			}

			if (!check_class($core_pref->get('post_html', e_UC_MAINADMIN)))
			{
				$data = strip_tags($data); // remove tags from cleaned html.
				$data = str_replace(array('[html]','[/html]'),'',$data);
			}


			//  $data = html_entity_decode($data, ENT_QUOTES, 'utf-8');	// Prevent double-entities. Fix for [code]  - see bb_code.php toDB();
		}


		if (check_class($core_pref->get('post_html'))) /*$core_pref->is('post_html') && XXX preformecd by cleanHtml() */
		{
			$no_encode = true;
		}
				
		if (is_numeric($original_author) && !check_class($core_pref->get('post_html'), '', $original_author))
		{
			$no_encode = false;
		}


		if ($no_encode === true && strpos($mod, 'no_html') === false)
		{
			$search = array('$', '"', "'", '\\', '<?');
			$replace = array('&#036;', '&quot;', '&#039;', '&#092;', '&lt;?');
			$ret = str_replace($search, $replace, $data);
		}
		else // add entities for everything. we want to save the code.
		{

			$data = htmlspecialchars($data, ENT_QUOTES, 'UTF-8');
			$data = str_replace('\\', '&#092;', $data);


			$ret = preg_replace("/&amp;#(\d*?);/", "&#\\1;", $data);
		}
		
		// XXX - php_bbcode has been deprecated. 
		if ((strpos($mod, 'no_php') !== false) || !check_class($core_pref->get('php_bbcode')))
		{
			$ret = preg_replace("#\[(php)#i", "&#91;\\1", $ret);
		}

		return $ret;
	}


	/**
	 *	Check for umatched 'dangerous' HTML tags
	 *		(these can destroy page layout where users are able to post HTML)
	 * @DEPRECATED
	 *	@param string $data
	 *	@param string $tagList - if empty, uses default list of input tags. Otherwise a CSV list of tags to check (any type)
	 *
	 *	@return boolean TRUE if an unopened closing tag found
	 *					FALSE if nothing found
	 */
	function htmlAbuseFilter($data, $tagList = '')
	{
		
		if ($tagList == '')
		{
			$checkTags = array('textarea', 'input', 'td', 'tr', 'table');
		}
		else
		{
			$checkTags = explode(',', $tagList);
		}
		$tagArray = array_flip($checkTags);
		foreach ($tagArray as &$v) { $v = 0; };		// Data fields become zero; keys are tag names.
		$data = strtolower(preg_replace('#\[code\].*?\[\/code\]#i', '', $data));            // Ignore code blocks. All lower case simplifies the rest
		$matches = array();
		if (!preg_match_all('#<(\/|)([^<>]*?[^\/])>#', $data, $matches, PREG_SET_ORDER))
		{
			//echo "No tags found<br />";
			return TRUE;				// No tags found; so all OK
		}
		//print_a($matches);
		foreach ($matches as $m)
		{
			// $m[0] is the complete tag; $m[1] is '/' or empty; $m[2] is the tag and any attributes
			list ($tag) = explode(' ', $m[2], 2);
			if (!isset($tagArray[$tag])) continue;			// Not a tag of interest
			if ($m[1] == '/')
			{	// Closing tag
				if ($tagArray[$tag] == 0) 
				{
					//echo "Close before open: {$tag}<br />";
					return TRUE;		// Closing tag before we've had an opening tag
				}
				$tagArray[$tag]--;		// Obviously had at least one opening tag
			}
			else
			{	// Opening tag
				$tagArray[$tag]++;
			}
		}
		//print_a($tagArray);
		foreach ($tagArray as $t)
		{
			if ($t > 0) return TRUE;		// More opening tags than closing tags
		}
		return FALSE;						// OK now
	}


	/**
	 * @DEPRECATED XXX TODO Remove this horrible thing which adds junk to a db. 
	 *	Checks a string for potentially dangerous HTML tags, including malformed tags
	 *
	 */
	public function dataFilter($data, $mode='bbcode')
	{
					

		$ans = '';
		$vetWords = array('<applet', '<body', '<embed', '<frame', '<script','%3Cscript',
						 '<frameset', '<html', '<iframe', '<style', '<layer', '<link',
						 '<ilayer', '<meta', '<object', '<plaintext', 'javascript:',
						 'vbscript:','data:text/html');
		
		$ret = preg_split('#(\[code.*?\[/code.*?])#mis', $data, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );

		foreach ($ret as $s)
		{
			if (substr($s, 0, 5) != '[code')
			{
				$vl = array();
				$t = html_entity_decode(rawurldecode($s), ENT_QUOTES, CHARSET);
				$t = str_replace(array("\r", "\n", "\t", "\v", "\f", "\0"), '', $t);
				$t1 = strtolower($t);
				foreach ($vetWords as $vw)
				{
					if (strpos($t1, $vw) !== FALSE)
					{
						$vl[] = $vw;		// Add to list of words found
					}
					if (substr($vw, 0, 1) == '<')
					{
						$vw = '</'.substr($vw, 1);
						if (strpos($t1, $vw) !== FALSE)
						{
							$vl[] = $vw;		// Add to list of words found
						}
					}
				}
				// More checks here
				if (count($vl))
				{	// Do something
					$s = preg_replace_callback('#('.implode('|', $vl).')#mis', array($this, 'modtag'), $t);
				}
			}
			$s = preg_replace('#(?:onmouse.+?|onclick|onfocus)\s*?\=#', '[sanitised]$0[/sanitised]', $s);
			$s = preg_replace_callback('#base64([,\(])(.+?)([\)\'\"])#mis', array($this, 'proc64'), $s);
			$ans .= $s;
		}
		
		if($mode == 'link' && count($vl))
		{
			return "#sanitized";
		}
		
		return $ans;
	}


	/**
	 * Check base-64 encoded code
	 */
	private function proc64($match)
	{
		$decode = base64_decode($match[2]);
		return 'base64'.$match[1].base64_encode($this->dataFilter($decode)).$match[3];
	}


	// XXX REmove ME. 
	private function modTag($match)
	{
		$ans = '';
		if (isset($match[1]))
		{
			$chop = intval(strlen($match[1]) / 2);
			$ans = substr($match[1], 0, $chop).'##xss##'.substr($match[1], $chop);
		}
		else
		{
			$ans = '?????';
		}
		return '[sanitised]'.$ans.'[/sanitised]';

	}


	/**
	 *	Processes data as needed before its written to the DB.
	 *	Currently gives bbcodes the opportunity to do something
	 *
	 *	@param $data string - data about to be written to DB
	 *	@return string - modified data
	 */
	public function preFilter($data)
	{
		if (!is_object($this->e_bb))
		{
			require_once(e_HANDLER.'bbcode_handler.php');
			$this->e_bb = new e_bbcode;
		}
		$ret = $this->e_bb->parseBBCodes($data, USERID, 'default', 'PRE');			// $postID = logged in user here
		return $ret;
	}


	function toForm($text)
	{

		if(empty($text)) // fix - handle proper 0, Space etc values.
		{
			return $text;
		}


		if(is_string($text) && substr($text,0,6) == '[html]')
		{
			// $text = $this->toHtml($text,true);
			$search = array('&quot;','&#039;','&#092;', '&',); // '&' must be last.
			$replace = array('"',"'","\\", '&amp;');

		//	return htmlspecialchars_decode($text);
			$text = str_replace($search,$replace,$text);
		//	return $text;
			//$text  = htmlentities($text,ENT_NOQUOTES, "UTF-8");

		//	return $text;

		}
	//	return htmlentities($text);

		$search = array('&#036;', '&quot;', '<', '>');
		$replace = array('$', '"', '&lt;', '&gt;');
		$text = str_replace($search, $replace, $text);
		if (e107::wysiwyg() !== true && is_string($text))
		{
			// fix for utf-8 issue with html_entity_decode(); ???
			$text = urldecode($text);
		//	$text = str_replace("&nbsp;", " ", $text);
		}
		return $text;
	}


	function post_toForm($text)
	{
		if(is_array($text))
		{
			foreach ($text as $key=>$value)
			{
				$text[$this->post_toForm($key)] = $this->post_toForm($value);
			}
			return $text;
		}
		if(MAGIC_QUOTES_GPC == TRUE)
		{
			$text = stripslashes($text);
		}
		return str_replace(array("'", '"', "<", ">"), array("&#039;", "&quot;", "&lt;", "&gt;"), $text);
	}


	function post_toHTML($text, $original_author = FALSE, $extra = '', $mod = FALSE)
	{
		$text = $this->toDB($text, FALSE, FALSE, $mod, $original_author);
		return $this->toHTML($text, TRUE, $extra);
	}

	/**
	 * @param $text - template to parse.
	 * @param boolean $parseSCFiles - parse core 'single' shortcodes
	 * @param object|array $extraCodes - shortcode class containing sc_xxxxx methods or an array of key/value pairs or legacy shortcode content (eg. content within .sc)
	 * @param object $eVars - XXX more info needed.
	 * @return string
	 */
	function parseTemplate($text, $parseSCFiles = true, $extraCodes = null, $eVars = null)
	{

		if(!is_bool($parseSCFiles))
		{
			trigger_error("\$parseSCFiles in parseTemplate() was given incorrect data");
		}

		return e107::getScParser()->parseCodes($text, $parseSCFiles, $extraCodes, $eVars);
	}

	
	/**
	 * Check if we are using the simple-Parse array format, or a legacy .sc format which contains 'return ' 
	 * @param array $extraCodes
	 */
	private function isSimpleParse($extraCodes)
	{
		
		if(!is_array($extraCodes))
		{
			return false;	
		}
		
		foreach ($extraCodes as $sc => $code)
		{
			if(preg_match('/return(.*);/',$code)) // still problematic. 'return;' Might be used in common speech.
			{
				return false;
			}
			else
			{
				return true;
			}
		/*	if(!strpos($code, 'return '))
			{
				return true;
			}
			else 
			{
				return false;
			}*/
		}		
	}


	/**
	 * Simple parser
	 *
	 * @param string $template
	 * @param e_vars|array $vars
	 * @param string $replaceUnset string to be used if replace variable is not set, false - don't replace
	 * @return string parsed content
	 */
	function simpleParse($template, $vars, $replaceUnset='')
	{
		$this->replaceVars = $vars;
		$this->replaceUnset = $replaceUnset;
		return preg_replace_callback("#\{([a-zA-Z0-9_]+)\}#", array($this, 'simpleReplace'), $template);
	}

	protected function simpleReplace($tmp) 
	{

		$unset = ($this->replaceUnset !== false ? $this->replaceUnset : $tmp[0]);

		if(is_array($this->replaceVars))
		{
            $this->replaceVars = new e_vars($this->replaceVars);
			//return ($this->replaceVars[$key] !== null ? $this->replaceVars[$key]: $unset);
		}
		$key = $tmp[1]; // PHP7 fix.
		return ($this->replaceVars->$key !== null ? $this->replaceVars->$key : $unset); // Doesn't work.
	}


	function htmlwrap($str, $width, $break = "\n", $nobreak = "a", $nobr = "pre", $utf = FALSE)
	{
		/*
		Pretty well complete rewrite to try and handle utf-8 properly.
		Breaks each utf-8 'word' every $width characters max. If possible, breaks after 'safe' characters.
		$break is the character inserted to flag the break.
		$nobreak is a list of tags within which word wrap is to be inactive
		*/

		//TODO handle htmlwrap somehow
		//return $str;

		// Don't wrap if non-numeric width
		$width = intval($width);
		// And trap stupid wrap counts
		if ($width < 6)
			return $str;

		// Transform protected element lists into arrays
		$nobreak = explode(" ", strtolower($nobreak));

		// Variable setup
		$intag = FALSE;
		$innbk = array();
		$drain = "";

		// List of characters it is "safe" to insert line-breaks at
		// It is not necessary to add < and > as they are automatically implied
		$lbrks = "/?!%)-}]\\\"':;&";

		// Is $str a UTF8 string?
		if ($utf || strtolower(CHARSET) == 'utf-8')
		{
			// 0x1680, 0x180e, 0x2000-0x200a, 0x2028, 0x205f, 0x3000 are 'non-ASCII' Unicode UCS-4 codepoints - see http://www.unicode.org/Public/UNIDATA/UnicodeData.txt
			// All convert to 3-byte utf-8 sequences:
			// 0x1680	0xe1	0x9a	0x80
			// 0x180e	0xe1	0xa0	0x8e
			// 0x2000	0xe2	0x80	0x80
			//   -
			// 0x200a	0xe2	0x80	0x8a
			// 0x2028	0xe2	0x80	0xa8
			// 0x205f	0xe2	0x81	0x9f
			// 0x3000	0xe3	0x80	0x80
			$utf8 = 'u';
			$whiteSpace = '#([\x20|\x0c]|[\xe1][\x9a][\x80]|[\xe1][\xa0][\x8e]|[\xe2][\x80][\x80-\x8a,\xa8]|[\xe2][\x81][\x9f]|[\xe3][\x80][\x80]+)#';
			// Have to explicitly enumerate the whitespace chars, and use non-utf-8 mode, otherwise regex fails on badly formed utf-8
		}
		else
		{
			$utf8 = '';
			// For non-utf-8, can use a simple match string
			$whiteSpace = '#(\s+)#';
		}


		// Start of the serious stuff - split into HTML tags and text between
		$content = preg_split('#(<.*?'.'>)#mis', $str, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
		foreach($content as $value)
		{
			if ($value[0] == "<")
			{
				// We are within an HTML tag
				// Create a lowercase copy of this tag's contents
				$lvalue = strtolower(substr($value, 1, -1));
				if ($lvalue)
				{
					// Tag of non-zero length
					// If the first character is not a / then this is an opening tag
					if ($lvalue[0] != "/")
					{
						// Collect the tag name
						preg_match("/^(\w*?)(\s|$)/", $lvalue, $t);

						// If this is a protected element, activate the associated protection flag
						if(in_array($t[1], $nobreak))
							array_unshift($innbk, $t[1]);
					}
					else
					{
						// Otherwise this is a closing tag
						// If this is a closing tag for a protected element, unset the flag
						if (in_array(substr($lvalue, 1), $nobreak))
						{
							reset($innbk);
							while (list($key, $tag) = each($innbk))
							{
								if (substr($lvalue, 1) == $tag)
								{
									unset($innbk[$key]);
									break;
								}
							}
							$innbk = array_values($innbk);
						}
					}
				}
				else
				{
					// Eliminate any empty tags altogether
					$value = '';
				}
				// Else if we're outside any tags, and with non-zero length string...
			}
			elseif ($value)
			{
				// If unprotected...
				if (!count($innbk))
				{
					// Use the ACK (006) ASCII symbol to replace all HTML entities temporarily
					$value = str_replace("\x06", "", $value);
					preg_match_all("/&([a-z\d]{2,7}|#\d{2,5});/i", $value, $ents);
					$value = preg_replace("/&([a-z\d]{2,7}|#\d{2,5});/i", "\x06", $value);
					//			echo "Found block length ".strlen($value).': '.substr($value,20).'<br />';
					// Split at spaces - note that this will fail if presented with invalid utf-8 when doing the regex whitespace search
					//			$split = preg_split('#(\s)#'.$utf8, $value, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
					$split = preg_split($whiteSpace, $value, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
					$value = '';
					foreach ($split as $sp)
					{
						//			echo "Split length ".strlen($sp).': '.substr($sp,20).'<br />';
						$loopCount = 0;
						while (strlen($sp) > $width)
						{
							// Enough characters that we may need to do something.
							$pulled = '';
							if ($utf8)
							{
								// Pull out a piece of the maximum permissible length
								if (preg_match('#^((?:[\x00-\x7F]|[\xC0-\xFF][\x80-\xBF]+){0,'.$width.'})(.{0,1}).*#s',$sp,$matches) == 0)
								{
									// Make any problems obvious for now
									$value .= '[!<b>invalid utf-8: '.$sp.'<b>!]';
									$sp = '';
								}
								elseif (empty($matches[2]))
								{
									// utf-8 length is less than specified - treat as a special case
									$value .= $sp;
									$sp = '';
								}
								else
								{
									// Need to find somewhere to break the string
									for($i = strlen($matches[1]) - 1; $i >= 0; $i--)
									{
										if(strpos($lbrks, $matches[1][$i]) !== FALSE)
											break;
									}
									if($i < 0)
									{
										// No 'special' break character found - break at the word boundary
										$pulled = $matches[1];
									}
									else
									{
										$pulled = substr($sp, 0, $i + 1);
									}
								}
								$loopCount++;
								if ($loopCount > 20)
								{
									// Make any problems obvious for now
									$value .= '[!<b>loop count exceeded: '.$sp.'</b>!]';
									$sp = '';
								}
							}
							else
							{
								for ($i = min($width, strlen($sp)); $i > 0; $i--)
								{
									// No speed advantage to defining match character
									if (strpos($lbrks, $sp[$i-1]) !== FALSE)
										break;
								}
								if ($i == 0)
								{
									// No 'special' break boundary character found - break at the word boundary
									$pulled = substr($sp, 0, $width);
								}
								else
								{
									$pulled = substr($sp, 0, $i);
								}
							}
							if ($pulled)
							{
								$value .= $pulled.$break;
								// Shorten $sp by whatever we've processed (will work even for utf-8)
								$sp = substr($sp, strlen($pulled));
							}
						}
						// Add in any residue
						$value .= $sp;
					}
					// Put captured HTML entities back into the string
					foreach ($ents[0] as $ent)
						$value = preg_replace("/\x06/", $ent, $value, 1);
				}
			}
			// Send the modified segment down the drain
			$drain .= $value;
		}
		// Return contents of the drain
		return $drain;
	}

	/**
	 * CakePHP(tm) :  Rapid Development Framework (http://www.cakephp.org)
	 * Copyright 2005-2008, Cake Software Foundation, Inc. (http://www.cakefoundation.org)
	 *
	 * Truncate a HTML string
	 *
	 * Cuts a string to the length of $length and adds the value of $ending if the text is longer than length.
	 *
	 * @param string  $text String to truncate.
	 * @param integer $length Length of returned string, including ellipsis.
	 * @param string $ending It will be used as Ending and appended to the trimmed string.
	 * @param boolean $exact If false, $text will not be cut mid-word
	 * @return string Trimmed string.
	 */
	function html_truncate($text, $length = 100, $ending = '...', $exact = true)
	{
		if($this->ustrlen(preg_replace('/<.*?>/', '', $text)) <= $length)
		{
			return $text;
		}
		$totalLength = 0;
		$openTags = array();
		$truncate = '';
		preg_match_all('/(<\/?([\w+]+)[^>]*>)?([^<>]*)/', $text, $tags, PREG_SET_ORDER);

		foreach($tags as $tag)
		{
			if(!$tag[2] || !preg_match('/img|br|input|hr|area|base|basefont|col|frame|isindex|link|meta|param/si', $tag[2]))
			{
				if(preg_match('/<[\w]+[^>]*>/s', $tag[0]))
				{
					array_unshift($openTags, $tag[2]);
				}
				else if(preg_match('/<\/([\w]+)[^>]*>/s', $tag[0], $closeTag))
				{
					$pos = array_search($closeTag[1], $openTags);
					if($pos !== false)
					{
						array_splice($openTags, $pos, 1);
					}
				}
			}
			$truncate .= $tag[1];
			$contentLength = $this->ustrlen(preg_replace('/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i', ' ', $tag[3]));

			if($contentLength + $totalLength > $length)
			{
				$left = $length - $totalLength;
				$entitiesLength = 0;
				if(preg_match_all('/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i', $tag[3], $entities, PREG_OFFSET_CAPTURE))
				{
					foreach($entities[0] as $entity)
					{
						if($entity[1] + 1 - $entitiesLength <= $left)
						{
							$left--;
							$entitiesLength += $this->ustrlen($entity[0]);
						}
						else
						{
							break;
						}
					}
				}

				$truncate .= $this->usubstr($tag[3], 0, $left + $entitiesLength);
				break;
			}
			else
			{
				$truncate .= $tag[3];
				$totalLength += $contentLength;
			}
			if($totalLength >= $length)
			{
				break;
			}
		}
		if(!$exact)
		{
			$spacepos = $this->ustrrpos($truncate, ' ');
			if(isset($spacepos))
			{
				$bits = $this->usubstr($truncate, $spacepos);
				preg_match_all('/<\/([a-z]+)>/i', $bits, $droppedTags, PREG_SET_ORDER);
				if(!empty($droppedTags))
				{
					foreach($droppedTags as $closingTag)
					{
						if(!in_array($closingTag[1], $openTags))
						{
							array_unshift($openTags, $closingTag[1]);
						}
					}
				}
				$truncate = $this->usubstr($truncate, 0, $spacepos);
			}
		}
		$truncate .= $ending;
		foreach($openTags as $tag)
		{
			$truncate .= '</' . $tag . '>';
		}
		return $truncate;
	}

	/**
	 * Truncate a HTML string to a maximum length $len  append the string $more if it was truncated
	 *
	 * @param string $text String to process
	 * @param integer $len [optional] Length of characters to be truncated - default 200
	 * @param string $more [optional] String which will be added if truncation - default ' ... '
	 * @return string
	 */
	public function html_truncate_old ($text, $len = 200, $more = ' ... ')
	{
		$pos = 0;
		$curlen = 0;
		$tmp_pos = 0;
		$intag = FALSE;
		while($curlen < $len && $curlen < strlen($text))
		{
			switch($text {$pos} )
			{
				case "<":
					if($text {$pos + 1} == "/")
					{
						$closing_tag = TRUE;
					}
					$intag = TRUE;
					$tmp_pos = $pos - 1;
					$pos++;
				break;


				case ">":
					if($text {$pos - 1} == "/")
					{
						$closing_tag = TRUE;
					}
					if($closing_tag == TRUE)
					{
						$tmp_pos = 0;
						$closing_tag = FALSE;
					}
					$intag = FALSE;
					$pos++;
				break;


				case "&":
					if($text {$pos + 1} == "#")
					{
						$end = strpos(substr($text, $pos, 7), ";");
						if($end !== FALSE)
						{
							$pos += ($end + 1);
							if(!$intag)
							{
								$curlen++;
							}
						break;
						}
					}
					else
					{
						$pos++;
						if(!$intag)
						{
							$curlen++;
						}
					break;
					}
				default:
					$pos++;
					if(!$intag)
					{
						$curlen++;
					}
				break;
			}
		}
		$ret = ($tmp_pos > 0 ? substr($text, 0, $tmp_pos+1) : substr($text, 0, $pos));
		if($pos < strlen($text))
		{
			$ret = $ret.$more;
		}
		return $ret;
	}


	/**
	 * Truncate a string of text to a maximum length $len  append the string $more if it was truncated
	 * Uses current CHARSET  for utf-8, returns $len characters rather than $len bytes
	 *
	 * @param string $text  string to process
	 * @param integer $len  length of characters to be truncated
	 * @param string $more  string which will be added if truncation
	 * @return string
	 */
	public function text_truncate($text, $len = 200, $more = ' ... ')
	{
		// Always valid

		if($this->ustrlen($text) <= $len)
		{
			return $text;
		}

		$text = html_entity_decode($text,ENT_QUOTES,'utf-8');

		return mb_strimwidth($text, 0, $len, $more);
		
	//	$ret = $this->usubstr($text, 0, $len);

		// search for possible broken html entities
		// - if an & is in the last 8 chars, removing it and whatever follows shouldn't hurt
		// it should work for any characters encoding

/*

		$leftAmp = $this->ustrrpos($this->usubstr($ret, -8), '&');
		if($leftAmp)
		{
			$ret = $this->usubstr($ret, 0, $this->ustrlen($ret) - 8 + $leftAmp);
		}

		return $ret.$more;*/
	}


	function textclean ($text, $wrap = 100)
	{
		$text = str_replace("\n\n\n", "\n\n", $text);
		$text = $this->htmlwrap($text, $wrap);
		$text = str_replace(array('<br /> ', ' <br />', ' <br /> '), '<br />', $text);
		/* we can remove any linebreaks added by htmlwrap function as any \n's will be converted later anyway */
		return $text;
	}


	// Test for text highlighting, and determine the text highlighting transformation
	// Returns TRUE if highlighting is active for this page display
	function checkHighlighting()
	{
		global $pref;

		if (!defined('e_SELF'))
		{
			// Still in startup, so can't calculate highlighting
			return FALSE;
		}

		if(!isset($this->e_highlighting))
		{
			$this->e_highlighting = FALSE;
			$shr = (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : "");
			if($pref['search_highlight'] && (strpos(e_SELF, 'search.php') === FALSE) && ((strpos($shr, 'q=') !== FALSE) || (strpos($shr, 'p=') !== FALSE)))
			{
				$this->e_highlighting = TRUE;
				if(!isset($this->e_query))
				{
					$query = preg_match('#(q|p)=(.*?)(&|$)#', $shr, $matches);
					$this->e_query = str_replace(array('+', '*', '"', ' '), array('', '.*?', '', '\b|\b'), trim(urldecode($matches[2])));
				}
			}
		}
		return $this->e_highlighting;
	}


	/**
	 * Replace text represenation of website urls and email addresses with clickable equivalents.
	 * @param string $text
	 * @param string $type email|url
	 * @param array $opts options. (see below)
	 * @param string $opts['sub'] substitute text within links
	 * @param bool $opts['ext'] load link in new window (not for email)
	 * @return string
	 */
	private function makeClickable($text='', $type='email', $opts=array())
	{

		if(empty($text))
		{
			return '';
		}

		$textReplace = (!empty($opts['sub'])) ? $opts['sub'] : '';

		if(substr($textReplace,-6) == '.glyph')
		{
			$textReplace = $this->toGlyph($textReplace,'');
		}

		switch($type)
		{
			default:
			case "email":

				preg_match_all("#(?:[\n\r ]|^)?([a-z0-9\-_.]+?)@([\w\-]+\.([\w\-\.]+\.)*[\w]+)#i", $text, $match);

				if(!empty($match[0]))
				{

					$srch = array();
					$repl = array();

					foreach($match[0] as $eml)
					{
						$email = trim($eml);
						$srch[] = $email;
						$repl[] = $this->emailObfuscate($email,$textReplace);
					}
					$text = str_replace($srch,$repl,$text);
				}
				break;

			case "url":

				$linktext = (!empty($textReplace)) ? $textReplace : '\\2';
				$external = (!empty($opts['ext'])) ? 'rel="external"' : '';

				$text = preg_replace("#(^|[\s]|&nbsp;)([\w]+?:\/\/(?:[\w-%]+?)(?:\.[\w-%]+?)+.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$|&nbsp;)#is", "\\1<a class=\"e-url\" href=\"\\2\" ".$external.">".$linktext."</a>", $text);
				$text = preg_replace("#(^|[\s])((?:www|ftp)(?:\.[\w-%]+?){2}.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a class=\"e-url\" href=\"http://\\2\" ".$external.">".$linktext."</a>", $text);

				break;

		}

		return $text;


	}

	/**
	 * Converts the text (presumably retrieved from the database) for HTML output.
	 *
	 * @param string $text
	 * @param boolean $parseBB [optional]
	 * @param string $modifiers [optional] TITLE|SUMMARY|DESCRIPTION|BODY|RAW|LINKTEXT etc.
	 *		Comma-separated list, no spaces allowed
	 *		first modifier must be a CONTEXT modifier, in UPPER CASE.
	 *		subsequent modifiers are lower case - see $this->e_Modifiers for possible values
	 * @param mixed $postID [optional]
	 * @param boolean $wrap [optional]
	 * @return string
	 * @todo complete the documentation of this essential method
	 */
	public function toHTML($text, $parseBB = FALSE, $modifiers = '', $postID = '', $wrap = FALSE)
	{
		if($text == '')
		{
			return $text;
		}

		$pref = e107::getPref();

		global $fromadmin;

		// Set default modifiers to start
		$opts = $this->e_optDefault;


		// Now process any modifiers that are specified
		if ($modifiers)
		{
			$aMods = explode(',', $modifiers);

			// If there's a supermodifier, it must be first, and in uppercase
			$psm = trim($aMods[0]);
			if (isset($this->e_SuperMods[$psm]))
			{
				// Supermodifier found - override default values where necessary
				$opts = array_merge($opts,$this->e_SuperMods[$psm]);
				$opts['context'] = $psm;
				unset($aMods[0]);
			}

			// Now find any regular modifiers; use them to modify the context
			// (there should only be one or two out of the list of possibles)
			foreach ($aMods as $mod)
			{
				// Slight concession to varying coding styles - stripping spaces is a waste of CPU cycles!
				$mod = trim($mod);
				if (isset($this->e_Modifiers[$mod]))
				{
					// This is probably quicker than array_merge
					// - especially as usually only one or two loops
					foreach ($this->e_Modifiers[$mod] as $k => $v)
					{
						// Update our context-specific options
						$opts[$k] = $v;
					}
				}
			}
		}

		// Turn off a few things if not enabled in options
		if(!vartrue($pref['smiley_activate']))
		{
			$opts['emotes'] = FALSE;
		}
		if(!vartrue($pref['make_clickable']))
		{
			$opts['link_click'] = FALSE;
		}
		if(!vartrue($pref['link_replace']))
		{
			$opts['link_replace'] = FALSE;
		}

		$fromadmin = $opts['fromadmin'];

		// Convert defines(constants) within text. eg. Lan_XXXX - must be the entire text string (i.e. not embedded)
		// The check for '::' is a workaround for a bug in the Zend Optimiser 3.3.0 and PHP 5.2.4 combination
		// - causes crashes if '::' in site name

		if($opts['defs'] && (strlen($text) < 35) && ((strpos($text, '::') === FALSE) && defined(trim($text))))
		{
			$text = constant(trim($text)); // don't return yet, words could be hooked with linkwords etc.
		}

		if ($opts['no_tags'])
		{
			$text = strip_tags($text);
		}
		
		if (MAGIC_QUOTES_GPC == TRUE) // precaution for badly saved data. 
		{
			$text = stripslashes($text);
		}


		// Make sure we have a valid count for word wrapping
		if (!$wrap && !empty($pref['main_wordwrap']))
		{
			$wrap = $pref['main_wordwrap'];
		}
//		$text = " ".$text;


		// Now get on with the parsing
		$ret_parser = '';
		$last_bbcode = '';
		// So we can change them on each loop
		$saveOpts = $opts;
		
		
		if ($parseBB == FALSE)
		{
			$content = array($text);
		}
		else
		{
			// Split each text block into bits which are either within one of the 'key' bbcodes, or outside them
			// (Because we have to match end words, the 'extra' capturing subpattern gets added to output array. We strip it later)
			$content = preg_split('#(\[(table|html|php|code|scode|hide).*?\[/(?:\\2)\])#mis', $text, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
		}


		// Use $full_text variable so its available to special bbcodes if required
		foreach ($content as $full_text)
		{
			$proc_funcs = TRUE;
			$convertNL = TRUE;

			// We may have 'captured' a bbcode word - strip it if so
			if ($last_bbcode == $full_text)
			{
				$last_bbcode = '';
				$proc_funcs = FALSE;
				$full_text = '';
			}
			else
			{
				// Set the options for this pass
				$opts = $saveOpts;

				// Have to have a good test in case a 'non-key' bbcode starts the block
				// - so pull out the bbcode parameters while we're there
				if (($parseBB !== FALSE) && preg_match('#(^\[(table|html|php|code|scode|hide)(.*?)\])(.*?)(\[/\\2\]$)#is', $full_text, $matches ))
				{
					// It's one of the 'key' bbcodes
					// Usually don't want 'normal' processing if its a 'special' bbcode
					$proc_funcs = FALSE;
					// $matches[0] - complete block from opening bracket of opening tag to closing bracket of closing tag
					// $matches[1] - complete opening tag (inclusive of brackets)
					// $matches[2] - bbcode word
					// $matches[3] - parameter, including '='
					// $matches[4] - bit between the tags (i.e. text to process)
					// $matches[5] - closing tag
					// In case we decide to load a file
					
					$bbPath 		= e_CORE.'bbcodes/';
					$bbFile 		= strtolower(str_replace('_', '', $matches[2]));
					$bbcode 		= '';
					$className 		= '';
					$full_text 		= '';
					$code_text 		= $matches[4];
					$parm 			= $matches[3] ? substr($matches[3],1) : '';
					$last_bbcode 	= $matches[2];
	
					switch ($matches[2])
					{
						case 'php' :
							// Probably run the output through the normal processing functions - but put here so the PHP code can disable if desired
							$proc_funcs = TRUE;

							// This is just the contents of the php.bb file pulled in - its short, so will be quicker
			//				$search = array("&quot;", "&#039;", "&#036;", '<br />', E_NL, "-&gt;", "&lt;br /&gt;");
			//				$replace = array('"', "'", "$", "\n", "\n", "->", "<br />");
							// Shouldn't have any parameter on this bbcode
							// Not sure whether checks are necessary now we've reorganised
			//				if (!$matches[3]) $bbcode = str_replace($search, $replace, $matches[4]);
							// Because we're bypassing most of the initial parser processing, we should be able to just reverse the effects of toDB() and execute the code
							// [SecretR] - avoid php code injections, missing php.bb will completely disable user posted php blocks
							$bbcode = file_get_contents($bbPath.$bbFile.'.bb');
							if (!$matches[3])
							{
								$code_text = html_entity_decode($matches[4], ENT_QUOTES, 'UTF-8');
							}
							break;

						case 'html' : // This overrides and deprecates html.bb
							$proc_funcs = TRUE;


						//	$code_text = str_replace("\r\n", " ", $code_text);
						//	$code_text = html_entity_decode($code_text, ENT_QUOTES, CHARSET);
						//	$code_text = str_replace('&','&amp;',$code_text); // validation safe.
							$html_start = "<!-- bbcode-html-start -->"; // markers for html-to-bbcode replacement. 
							$html_end	= "<!-- bbcode-html-end -->";
							$full_text = str_replace(array("[html]","[/html]"), "",$code_text); // quick fix.. security issue?
							$full_text =$this->replaceConstants($full_text,'abs');
							$full_text = $html_start.$full_text.$html_end;
							$full_text = $this->parseBBTags($full_text); // strip <bbcode> tags. 
							$opts['nobreak'] = true;

							break;

						case 'table' : // strip <br /> from inside of <table>		
						
							$convertNL = FALSE;
						//	break;

						case 'hide' :
							$proc_funcs = TRUE;

						default :		// Most bbcodes will just execute their normal file
							// @todo should we cache these bbcodes? require_once should make class-related codes quite efficient
							if (file_exists($bbPath.'bb_'.$bbFile.'.php'))
							{	// Its a bbcode class file
								require_once($bbPath.'bb_'.$bbFile.'.php');
								$className = 'bb_'.$last_bbcode;
								$this->bbList[$last_bbcode] = new $className();
							}
							elseif(file_exists($bbPath.$bbFile.'.bb'))
							{
								$bbcode = file_get_contents($bbPath.$bbFile.'.bb');
							}
					}   // end - switch ($matches[2])

					if ($className)
					{
						$tempCode = new $className();
						$full_text = $tempCode->bbPreDisplay($matches[4], $parm);
					}
					elseif ($bbcode)
					{	// Execute the file
						$full_text = eval($bbcode);			// Require output of bbcode to be returned
						// added to remove possibility of nested bbcode exploits ...
						//   (same as in bbcode_handler - is it right that it just operates on $bbcode_return and not on $bbcode_output? - QUERY XXX-02
					}
					if(strpos($full_text, '[') !== FALSE)
					{
						$exp_search = array('eval', 'expression');
						$exp_replace = array('ev<b></b>al', 'expres<b></b>sion');
						$bbcode_return = str_replace($exp_search, $exp_replace, $full_text);
					}
				}
			}


			// Do the 'normal' processing - in principle, as previously - but think about the order.
			if ($proc_funcs && !empty($full_text)) // some more speed
			{
				// Split out and ignore any scripts and style blocks. With just two choices we can match the closing tag in the regex
				$subcon = preg_split('#((?:<s)(?:cript[^>]+>.*?</script>|tyle[^>]+>.*?</style>))#mis', $full_text, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
				foreach ($subcon as $sub_blk)
				{
					if(substr($sub_blk, 0, 7) == '<script') // Strip scripts unless permitted
					{
						if($opts['scripts'])
						{
							$ret_parser .= html_entity_decode($sub_blk, ENT_QUOTES);
						}
					}
					elseif(substr($sub_blk, 0, 6) == '<style')
					{
						// Its a style block - just pass it through unaltered - except, do we need the line break stuff? - QUERY XXX-01
						if(defined('DB_INF_SHOW'))
						{
							echo "Processing stylesheet: {$sub_blk}<br />";
						}

						$ret_parser .= $sub_blk;
					}
					else
					{
						// Do 'normal' processing on a chunk


						// Could put tag stripping in here
					
/*
						//	Line break compression - filter white space after HTML tags - among other things, ensures HTML tables display properly
						// Hopefully now achieved by other means
						if ($convertNL && !$opts['nobreak'])
						{
							$sub_blk = preg_replace("#>\s*[\r]*\n[\r]*#", ">", $sub_blk);
						}
*/

						//	Link substitution
						// Convert URL's to clickable links, unless modifiers or prefs override
						if ($opts['link_click'])
						{
							if ($opts['link_replace'] && defset('ADMIN_AREA') !== true)
							{

								$link_text = $pref['link_text'];
								$email_text = ($pref['email_text']) ? $this->replaceConstants($pref['email_text']) : LAN_EMAIL_SUBS;

								$sub_blk = $this->makeClickable($sub_blk, 'url', array('sub'=> $link_text,'ext'=>$pref['links_new_window']));
								$sub_blk = $this->makeClickable($sub_blk, 'email', array('sub'=> $email_text));
							}
							else
							{

								$sub_blk = $this->makeClickable($sub_blk, 'url', array('ext'=>true));
								$sub_blk = $this->makeClickable($sub_blk, 'email');

							}
						}


						// Convert emoticons to graphical icons, if enabled
						if ($opts['emotes'])
						{
							if (!is_object($this->e_emote))
							{
							//	require_once(e_HANDLER.'emote_filter.php');
								$this->e_emote = new e_emoteFilter;
							}
							$sub_blk = $this->e_emote->filterEmotes($sub_blk);
						}


						// Reduce newlines in all forms to a single newline character (finds '\n', '\r\n', '\n\r')
						if (!$opts['nobreak'])
						{
							if ($convertNL && substr($sub_blk,0,6) != '[html]') //XXX Quick Fix, find a cleaner way. 
							{
								// We may need to convert to <br /> later
							
								$sub_blk = preg_replace("#[\r]*\n[\r]*#", E_NL, $sub_blk);
							}
							else
							{
								// Not doing any more - its HTML so keep \n so HTML is formatted
								$sub_blk = preg_replace("#[\r]*\n[\r]*#", "\n", $sub_blk);
							}
						}


						//	Entity conversion
						// Restore entity form of quotes and such to single characters, except for text destined for tag attributes or JS.
						if($opts['value'])
						{
							// output used for attribute values.
							$sub_blk = str_replace($this->replace, $this->search, $sub_blk);
						}
						else
						{
							// output not used for attribute values.
							$sub_blk = str_replace($this->search, $this->replace, $sub_blk);
						}


						//   BBCode processing (other than the four already done, which shouldn't appear at all in the text)
						if ($parseBB !== FALSE)
						{
							if (!is_object($this->e_bb))
							{
								require_once(e_HANDLER.'bbcode_handler.php');
								$this->e_bb = new e_bbcode;
							}
							if ($parseBB === TRUE)
							{
								// 'Normal' or 'legacy' processing
								if($modifiers == "WYSIWYG")
								{
									$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'wysiwyg');	
								}
								else 
								{
									$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID);	
								}
								
							}
							elseif ($parseBB === 'STRIP')
							{
								// Need to strip all BBCodes
								$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'default', TRUE);
							}
							else
							{
								// Need to strip just some BBCodes
								$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'default', $parseBB);
							}
						}


						// replace all {e_XXX} constants with their e107 value. modifier determines relative/absolute conversion
						// (Moved to after bbcode processing by Cameron)
						if ($opts['constants'])
						{
							$sub_blk = $this->replaceConstants($sub_blk, $opts['constants']);		// Now decodes text values
						}


						// profanity filter
						if (!empty($pref['profanity_filter']))
						{
							if (!is_object($this->e_pf))
							{
							//	require_once(e_HANDLER."profanity_filter.php");
								$this->e_pf = new e_profanityFilter;
							}
							$sub_blk = $this->e_pf->filterProfanities($sub_blk);
						}


						//	Shortcodes
						// Optional short-code conversion
						if ($opts['parse_sc'])
						{
							$sub_blk = $this->parseTemplate($sub_blk, TRUE);
						}


						//Run any hooked in parsers
						if ($opts['hook'])
						{
							if ( varset($pref['tohtml_hook']))
							{
								//Process the older tohtml_hook pref (deprecated)
								foreach(explode(",", $pref['tohtml_hook']) as $hook)
								{
									if (!is_object($this->e_hook[$hook]))
									{
										if(is_readable(e_PLUGIN.$hook."/".$hook.".php"))
										{
											require_once(e_PLUGIN.$hook."/".$hook.".php");
											$hook_class = "e_".$hook;
											$this->e_hook[$hook] = new $hook_class;
										}

									}
									$sub_blk = $this->e_hook[$hook]->$hook($sub_blk,$opts['context']);
								}
							}

							if(isset($pref['e_tohtml_list']) && is_array($pref['e_tohtml_list']))
							{
								foreach($pref['e_tohtml_list'] as $hook)
								{
									if (!is_object($this->e_hook[$hook]))
									{
										if(is_readable(e_PLUGIN.$hook."/e_tohtml.php"))
										{
											require_once(e_PLUGIN.$hook."/e_tohtml.php");
											$hook_class = "e_tohtml_".$hook;
											$this->e_hook[$hook] = new $hook_class;
										}
									}

									if(is_object( $this->e_hook[$hook]))
									{
										$sub_blk = $this->e_hook[$hook]->to_html($sub_blk, $opts['context']);
									}
								}
							}


							if(!empty($pref['e_parse_list']))
							{
								foreach($pref['e_parse_list'] as $plugin)
								{
									$hookObj = e107::getAddon($plugin,'e_parse');

									if($tmp = e107::callMethod($hookObj, 'toHTML', $sub_blk, $opts['context']))
									{
										$sub_blk = $tmp;

									}

								}

							}
						}


						// 	Word wrap
						if ($wrap && !$opts['nobreak'])
						{
							$sub_blk = $this->textclean($sub_blk, $wrap);
						}


						//	Search highlighting
						if ($opts['emotes'])			// Why??
						{
							if ($this->checkHighlighting())
							{
								$sub_blk = $this->e_highlight($sub_blk, $this->e_query);
							}
						}

						
						if($convertNL == true)
						{
							// Default replaces all \n with <br /> for HTML display
							$nl_replace = '<br />';
							if ($opts['nobreak'])
							{
								$nl_replace = '';
							}
							elseif ($opts['retain_nl'])
							{
								$nl_replace = "\n";
							}
							
							$sub_blk = str_replace(E_NL, $nl_replace, $sub_blk);
						}

						$ret_parser .= $sub_blk;
					}	// End of 'normal' processing for a block of text

				}		// End of 'foreach() on each block of non-script text

			}		// End of 'normal' parsing (non-script text)
			else
			{
				// Text block that needed no processing at all
				$ret_parser .= $full_text;
			}
		}

		// Quick Fix - Remove trailing <br /> on block-level elements (eg. div, pre, table, etc. )
		$srch = array();
		$repl = array();
		
		foreach($this->blockTags as $val)
		{
			$srch[] = "</".$val."><br />";	
			$repl[]	= "</".$val.">";
		}
		
		$ret_parser = str_replace($srch, $repl, $ret_parser);

		return trim($ret_parser);
	}


	function toASCII($text)
	{

		$char_map = array(
			// Latin
			'À' => 'A', 'Á' => 'A', 'Â' => 'A', 'Ã' => 'A', 'Ä' => 'A', 'Å' => 'A', 'Æ' => 'AE', 'Ç' => 'C',
			'È' => 'E', 'É' => 'E', 'Ê' => 'E', 'Ë' => 'E', 'Ì' => 'I', 'Í' => 'I', 'Î' => 'I', 'Ï' => 'I',
			'Ð' => 'D', 'Ñ' => 'N', 'Ò' => 'O', 'Ó' => 'O', 'Ô' => 'O', 'Õ' => 'O', 'Ö' => 'O', 'Ő' => 'O',
			'Ø' => 'O', 'Ù' => 'U', 'Ú' => 'U', 'Û' => 'U', 'Ü' => 'U', 'Ű' => 'U', 'Ý' => 'Y', 'Þ' => 'TH',
			'ß' => 'ss',
			'à' => 'a', 'á' => 'a', 'â' => 'a', 'ã' => 'a', 'ä' => 'a', 'å' => 'a', 'æ' => 'ae', 'ç' => 'c',
			'è' => 'e', 'é' => 'e', 'ê' => 'e', 'ë' => 'e', 'ì' => 'i', 'í' => 'i', 'î' => 'i', 'ï' => 'i',
			'ð' => 'd', 'ñ' => 'n', 'ò' => 'o', 'ó' => 'o', 'ô' => 'o', 'õ' => 'o', 'ö' => 'o', 'ő' => 'o',
			'ø' => 'o', 'ù' => 'u', 'ú' => 'u', 'û' => 'u', 'ü' => 'u', 'ű' => 'u', 'ý' => 'y', 'þ' => 'th',
			'ÿ' => 'y',
			// Latin symbols
			'©' => '(c)',
			// Greek
			'Α' => 'A', 'Β' => 'B', 'Γ' => 'G', 'Δ' => 'D', 'Ε' => 'E', 'Ζ' => 'Z', 'Η' => 'H', 'Θ' => '8',
			'Ι' => 'I', 'Κ' => 'K', 'Λ' => 'L', 'Μ' => 'M', 'Ν' => 'N', 'Ξ' => '3', 'Ο' => 'O', 'Π' => 'P',
			'Ρ' => 'R', 'Σ' => 'S', 'Τ' => 'T', 'Υ' => 'Y', 'Φ' => 'F', 'Χ' => 'X', 'Ψ' => 'PS', 'Ω' => 'W',
			'Ά' => 'A', 'Έ' => 'E', 'Ί' => 'I', 'Ό' => 'O', 'Ύ' => 'Y', 'Ή' => 'H', 'Ώ' => 'W', 'Ϊ' => 'I',
			'Ϋ' => 'Y',
			'α' => 'a', 'β' => 'b', 'γ' => 'g', 'δ' => 'd', 'ε' => 'e', 'ζ' => 'z', 'η' => 'h', 'θ' => '8',
			'ι' => 'i', 'κ' => 'k', 'λ' => 'l', 'μ' => 'm', 'ν' => 'n', 'ξ' => '3', 'ο' => 'o', 'π' => 'p',
			'ρ' => 'r', 'σ' => 's', 'τ' => 't', 'υ' => 'y', 'φ' => 'f', 'χ' => 'x', 'ψ' => 'ps', 'ω' => 'w',
			'ά' => 'a', 'έ' => 'e', 'ί' => 'i', 'ό' => 'o', 'ύ' => 'y', 'ή' => 'h', 'ώ' => 'w', 'ς' => 's',
			'ϊ' => 'i', 'ΰ' => 'y', 'ϋ' => 'y', 'ΐ' => 'i',
			// Turkish
			'Ş' => 'S', 'İ' => 'I', 'Ç' => 'C', 'Ü' => 'U', 'Ö' => 'O', 'Ğ' => 'G',
			'ş' => 's', 'ı' => 'i', 'ç' => 'c', 'ü' => 'u', 'ö' => 'o', 'ğ' => 'g',
			// Russian
			'А' => 'A', 'Б' => 'B', 'В' => 'V', 'Г' => 'G', 'Д' => 'D', 'Е' => 'E', 'Ё' => 'Yo', 'Ж' => 'Zh',
			'З' => 'Z', 'И' => 'I', 'Й' => 'J', 'К' => 'K', 'Л' => 'L', 'М' => 'M', 'Н' => 'N', 'О' => 'O',
			'П' => 'P', 'Р' => 'R', 'С' => 'S', 'Т' => 'T', 'У' => 'U', 'Ф' => 'F', 'Х' => 'H', 'Ц' => 'C',
			'Ч' => 'Ch', 'Ш' => 'Sh', 'Щ' => 'Sh', 'Ъ' => '', 'Ы' => 'Y', 'Ь' => '', 'Э' => 'E', 'Ю' => 'Yu',
			'Я' => 'Ya',
			'а' => 'a', 'б' => 'b', 'в' => 'v', 'г' => 'g', 'д' => 'd', 'е' => 'e', 'ё' => 'yo', 'ж' => 'zh',
			'з' => 'z', 'и' => 'i', 'й' => 'j', 'к' => 'k', 'л' => 'l', 'м' => 'm', 'н' => 'n', 'о' => 'o',
			'п' => 'p', 'р' => 'r', 'с' => 's', 'т' => 't', 'у' => 'u', 'ф' => 'f', 'х' => 'h', 'ц' => 'c',
			'ч' => 'ch', 'ш' => 'sh', 'щ' => 'sh', 'ъ' => '', 'ы' => 'y', 'ь' => '', 'э' => 'e', 'ю' => 'yu',
			'я' => 'ya',
			// Ukrainian
			'Є' => 'Ye', 'І' => 'I', 'Ї' => 'Yi', 'Ґ' => 'G',
			'є' => 'ye', 'і' => 'i', 'ї' => 'yi', 'ґ' => 'g',
			// Czech
			'Č' => 'C', 'Ď' => 'D', 'Ě' => 'E', 'Ň' => 'N', 'Ř' => 'R', 'Š' => 'S', 'Ť' => 'T', 'Ů' => 'U',
			'Ž' => 'Z',
			'č' => 'c', 'ď' => 'd', 'ě' => 'e', 'ň' => 'n', 'ř' => 'r', 'š' => 's', 'ť' => 't', 'ů' => 'u',
			'ž' => 'z',
			// Polish
			'Ą' => 'A', 'Ć' => 'C', 'Ę' => 'e', 'Ł' => 'L', 'Ń' => 'N', 'Ó' => 'o', 'Ś' => 'S', 'Ź' => 'Z',
			'Ż' => 'Z',
			'ą' => 'a', 'ć' => 'c', 'ę' => 'e', 'ł' => 'l', 'ń' => 'n', 'ó' => 'o', 'ś' => 's', 'ź' => 'z',
			'ż' => 'z',
			// Latvian
			'Ā' => 'A', 'Č' => 'C', 'Ē' => 'E', 'Ģ' => 'G', 'Ī' => 'i', 'Ķ' => 'k', 'Ļ' => 'L', 'Ņ' => 'N',
			'Š' => 'S', 'Ū' => 'u', 'Ž' => 'Z',
			'ā' => 'a', 'č' => 'c', 'ē' => 'e', 'ģ' => 'g', 'ī' => 'i', 'ķ' => 'k', 'ļ' => 'l', 'ņ' => 'n',
			'š' => 's', 'ū' => 'u', 'ž' => 'z'
		);

		return str_replace(array_keys($char_map), $char_map, $text);

	}


	/**
	 * Use it on html attributes to avoid breaking markup . 
	 * @example echo "<a href='#' title='".$tp->toAttribute($text)."'>Hello</a>"; 
	 */
	function toAttribute($text)
	{
		// URLs posted without HTML access may have an &amp; in them.

		// Xhtml compliance.
		$text = htmlspecialchars($text, ENT_QUOTES, 'UTF-8');

		if(!preg_match('/&#|\'|"|<|>/s', $text))
		{
			$text = $this->replaceConstants($text);
			return $text;
		}
		else
		{
			return $text;
		}
	}


	/**
	 * Convert text blocks which are to be embedded within JS
	 *
	 * @param string|array $stringarray
	 * @return string
	 */
	public function toJS($stringarray)
	{
		$search = array("\r\n", "\r", "<br />", "'");
		$replace = array("\\n", "", "\\n", "\'");
		$stringarray = str_replace($search, $replace, $stringarray);
		$stringarray = strip_tags($stringarray);

		$trans_tbl = get_html_translation_table(HTML_ENTITIES);
		$trans_tbl = array_flip($trans_tbl);

		return strtr($stringarray, $trans_tbl);
	}


	/**
	 * Converts a PHP variable into its JavaScript equivalent.
	 * We use HTML-safe strings, with several characters escaped.
	 *
	 * @param mixed $var
	 * @return string
	 */
	public function toJSON($var)
	{
		// The PHP version cannot change within a request.
		static $php530;

		if(!isset($php530))
		{
			$php530 = version_compare(PHP_VERSION, '5.3.0', '>=');
		}

		if($php530)
		{
			// Encode <, >, ', &, and " using the json_encode() options parameter.
			return json_encode($var, JSON_HEX_TAG | JSON_HEX_APOS | JSON_HEX_AMP | JSON_HEX_QUOT);
		}

		return $this->toJSONhelper($var);
	}


	/**
	 * Encodes a PHP variable to HTML-safe JSON for PHP versions below 5.3.0.
	 *
	 * @param mixed $var
	 * @return string
	 */
	public function toJSONhelper($var)
	{
		switch(gettype($var))
		{
			case 'boolean':
				return $var ? 'true' : 'false'; // Lowercase necessary!

			case 'integer':
			case 'double':
				return $var;

			case 'resource':
			case 'string':
				// Always use Unicode escape sequences (\u0022) over JSON escape
				// sequences (\") to prevent browsers interpreting these as
				// special characters.
				$replace_pairs = array(
					// ", \ and U+0000 - U+001F must be escaped according to RFC 4627.
					'\\'           => '\u005C',
					'"'            => '\u0022',
					"\x00"         => '\u0000',
					"\x01"         => '\u0001',
					"\x02"         => '\u0002',
					"\x03"         => '\u0003',
					"\x04"         => '\u0004',
					"\x05"         => '\u0005',
					"\x06"         => '\u0006',
					"\x07"         => '\u0007',
					"\x08"         => '\u0008',
					"\x09"         => '\u0009',
					"\x0a"         => '\u000A',
					"\x0b"         => '\u000B',
					"\x0c"         => '\u000C',
					"\x0d"         => '\u000D',
					"\x0e"         => '\u000E',
					"\x0f"         => '\u000F',
					"\x10"         => '\u0010',
					"\x11"         => '\u0011',
					"\x12"         => '\u0012',
					"\x13"         => '\u0013',
					"\x14"         => '\u0014',
					"\x15"         => '\u0015',
					"\x16"         => '\u0016',
					"\x17"         => '\u0017',
					"\x18"         => '\u0018',
					"\x19"         => '\u0019',
					"\x1a"         => '\u001A',
					"\x1b"         => '\u001B',
					"\x1c"         => '\u001C',
					"\x1d"         => '\u001D',
					"\x1e"         => '\u001E',
					"\x1f"         => '\u001F',
					// Prevent browsers from interpreting these as as special.
					"'"            => '\u0027',
					'<'            => '\u003C',
					'>'            => '\u003E',
					'&'            => '\u0026',
					// Prevent browsers from interpreting the solidus as special and
					// non-compliant JSON parsers from interpreting // as a comment.
					'/'            => '\u002F',
					// While these are allowed unescaped according to ECMA-262, section
					// 15.12.2, they cause problems in some JSON parsers.
					"\xe2\x80\xa8" => '\u2028', // U+2028, Line Separator.
					"\xe2\x80\xa9" => '\u2029', // U+2029, Paragraph Separator.
				);

				return '"' . strtr($var, $replace_pairs) . '"';

			case 'array':
				// Arrays in JSON can't be associative. If the array is empty or if it
				// has sequential whole number keys starting with 0, it's not associative
				// so we can go ahead and convert it as an array.
				if(empty($var) || array_keys($var) === range(0, sizeof($var) - 1))
				{
					$output = array();
					foreach($var as $v)
					{
						$output[] = $this->toJSONhelper($v);
					}
					return '[ ' . implode(', ', $output) . ' ]';
				}
				break;

			// Otherwise, fall through to convert the array as an object.
			case 'object':
				$output = array();
				foreach($var as $k => $v)
				{
					$output[] = $this->toJSONhelper(strval($k)) . ':' . $this->toJSONhelper($v);
				}
				return '{' . implode(', ', $output) . '}';

			default:
				return 'null';
		}
	}


	/**
	 * Convert Text for RSS/XML use.
	 *
	 * @param string $text
	 * @param boolean $tags [optional]
	 * @return string
	 */
	function toRss($text, $tags = false)
	{
		if($tags != true)
		{
			$text = $this -> toHTML($text, true);
			$text = strip_tags($text);
		}

		$text = $this->toEmail($text);

		$search = array("&amp;#039;", "&amp;#036;", "&#039;", "&#036;", e_BASE, "href='request.php","<!-- bbcode-html-start -->","<!-- bbcode-html-end -->");
		$replace = array("'", '$', "'", '$', SITEURL, "href='".SITEURL."request.php", '', '' );
		$text = str_replace($search, $replace, $text);

		$text = $this->ampEncode($text);

		if($tags == true && ($text))
		{
			$text = "<![CDATA[".$text."]]>";
		}

		return $text;
	}


	/**
	 * Clean and Encode Ampersands '&' for output to browser.
	 * @param string $text
	 * @return mixed|string
	 */
	function ampEncode($text='')
	{
		// Fix any left-over '&'
		$text = str_replace('&amp;', '&', $text); //first revert any previously converted.
		$text = str_replace('&', '&amp;', $text);

		return $text;
	}


	/**
	 * Convert any string back to plain text.
	 * @param $text
	 * @return mixed|string
	 */
	function toText($text)
	{

		if($this->isHtml($text)==true)
		{
			$text = $this->toHtml($text,true);
			$text = strip_tags($text);
		}

		$search = array("&amp;#039;", "&amp;#036;", "&#039;", "&#036;", "&#092;", "&amp;#092;");
		$replace = array("'", '$', "'", '$', "\\", "\\");
		$text = str_replace($search, $replace, $text);
		return $text;
	}


	/**
	 * Set the dimensions of a thumbNail (generated by thumbUrl)
	 */
	public function setThumbSize($w=null,$h=null,$crop=null)
	{
		if($w !== null)
		{
			$this->thumbWidth = intval($w);	
		}
		
		if($h !== null)
		{
			$this->thumbHeight = intval($h);	
		}	
		
		if($crop !== null)
		{
			$this->thumbCrop = intval($crop);	
		}				
		
	}

	public function thumbEncode($val = null)
	{

		if($val !== null)
		{
			$this->thumbEncode = intval($val);
			return null;
		}

		return $this->thumbEncode;
	}


	/**
	 * Retrieve img tag width and height attributes for current thumbnail.
	 * @return string
	 */
	public function thumbDimensions($type = 'single')
	{
		if(!empty($this->thumbCrop) && !empty($this->thumbWidth) && !empty($this->thumbHeight)) // dimensions are known.
		{
			return ($type == 'double') ? 'width="'.$this->thumbWidth.'" height="'.$this->thumbHeight.'"' : "width='".$this->thumbWidth."' height='".$this->thumbHeight."'";
		}

		return null;
	}


	/**
	 * Set or Get the value of the thumbNail Width. 
	 * @param $width (optional)
	 */
	public function thumbWidth($width=null)
	{
		if($width !== null)
		{
			$this->thumbWidth = intval($width);
		}
		
		return $this->thumbWidth;		
	}

	/**
	 * Set or Get the value of the thumbNailbCrop.
	 * @param bool $status = true/false
	 */
	public function thumbCrop($status=false)
	{
		if($status !== false)
		{
			$this->thumbCrop = intval($status);
		}

		return $this->thumbCrop;
	}


	/**
	 * Set or Get the value of the thumbNail height. 
	 * @param $height (optional)
	 */
	public function thumbHeight($height= null)
	{
		if($height !== null)
		{
			$this->thumbHeight = intval($height);
		}
		
		return $this->thumbHeight;	
		
	}


	/**
	 * Generate an auto-sized Image URL.
	 * @param $url - path to image or leave blank for a placeholder. eg. {e_MEDIA}folder/my-image.jpg
	 * @param array $options - width and height, but leaving this empty and using $this->thumbWidth() and $this->thumbHeight() is preferred. ie. {SETWIDTH: w=x&y=x}
	 * @param int $options ['w'] width (optional)
	 * @param int $options ['h'] height (optional)
	 * @param bool|string $options ['crop'] true/false or A(auto) or T(op) or B(ottom) or C(enter) or L(eft) or R(right)
	 * @param string $options ['scale'] '2x' (optional)
	 * @param bool $options ['x'] encode/mask the url parms (optional)
	 * @param bool $options ['nosef'] when set to true disabled SEF Url being returned (optional)
	 * @param bool $raw set to true when the $url does not being with an e107 variable ie. "{e_XXXX}" eg. {e_MEDIA} (optional)
	 * @param bool $full when true returns full http:// url. (optional)
	 * @return string
	 */
	public function thumbUrl($url=null, $options = array(), $raw = false, $full = false)
	{
		if(substr($url,0,3)=="{e_") // Fix for broken links that use {e_MEDIA} etc.
		{
			//$url = $this->replaceConstants($url,'abs');	
			// always switch to 'nice' urls when SC is used	
			$url = str_replace($this->getUrlConstants('sc'), $this->getUrlConstants('raw'), $url);	
		}
				
		if(!is_array($options))
		{
			parse_str($options, $options);
		}

		if(!empty($options['scale'])) // eg. scale the width height 2x 3x 4x. etc.
		{
			$options['return'] = 'src';
			$options['size'] = $options['scale'];
			unset($options['scale']);
			return $this->thumbSrcSet($url,$options);
		}


		if(strstr($url,e_MEDIA) || strstr($url,e_SYSTEM)) // prevent disclosure of 'hashed' path. 
		{
			$raw = true; 	
		}

		if($raw) $url = $this->createConstants($url, 'mix');
		
		$baseurl = ($full ? SITEURL : e_HTTP).'thumb.php?';
        
		$thurl = 'src='.urlencode($url).'&amp;';

	//	e107::getDebug()->log("Thumb: ".basename($url). print_a($options,true), E107_DBG_BASIC);

		if(!empty($options) && (isset($options['w']) || isset($options['aw']) || isset($options['h'])))
		{
			$options['w']       = varset($options['w']);
			$options['h']       = varset($options['h']);
			$options['crop']    = (isset($options['aw']) || isset($options['ah'])) ? 1 : varset($options['crop']);
			$options['aw']      = varset($options['aw']);
			$options['ah']      = varset($options['ah']);
			$options['x']       = varset($options['x']);
		}
		else
		{
			$options['w']       = $this->thumbWidth;
			$options['h']       = $this->thumbHeight;
			$options['crop']    = $this->thumbCrop;
			$options['aw']      = null;
			$options['ah']      = null;
			$options['x']       = $this->thumbEncode;

		}


		if(!empty($options['crop']))
		{
			if(!empty($options['aw']) || !empty($options['ah']))
			{
				$options['w']	= $options['aw'] ;
				$options['h']	= $options['ah'] ;
			}

			$thurl .= 'aw='.intval($options['w']).'&amp;ah='.intval($options['h']);

			if(!is_numeric($options['crop']))
			{
				$thurl .= '&amp;c='.$options['crop'];
				$options['nosef'] = true;
			}

		}
		else
		{

			$thurl .= 'w='.intval($options['w']).'&amp;h='.intval($options['h']);

		}


		if(e_MOD_REWRITE_MEDIA == true && empty($options['nosef']) )// Experimental SEF URL support.
		{
			$options['full'] = $full;
			$options['ext'] = substr($url,-3);
			$options['thurl'] = $thurl;
		//	$options['x'] = $this->thumbEncode();

			if($sefUrl = $this->thumbUrlSEF($url,$options))
			{
				return $sefUrl;
			}
		}

		if(!empty($options['x'] ))//base64 encode url
		{
			$thurl = 'id='.base64_encode($thurl);
		}

		return $baseurl.$thurl;
	}


	/**
	 * Experimental: Generate a Thumb URL for use in the img srcset attribute.
	 * @param string $src eg. {e_MEDIA_IMAGE}myimage.jpg
	 * @param int|str $width - desired size in px or '2x' or '3x' or null for all or array (
	 * @return string
	 */
	function thumbSrcSet($src='', $width=null)
	{
		if(is_array($width))
		{
			$parm = $width;
			$multiply = $width['size'];
			$encode = (!empty($width['x'])) ? $width['x'] : false;
			$width = $width['size'];
		}


	//	$encode =  $this->thumbEncode();;
		if($width == null || $width=='all')
		{
			$links = array();
			$mag = ($width == null) ? array(1, 2) : array(160,320,460,600,780,920,1100);
			foreach($mag as $v)
			{
				$w = ($this->thumbWidth * $v);
				$h =  ($this->thumbHeight * $v);

				$att = (!empty($this->thumbCrop)) ? array('aw' => $w, 'ah' => $h) : array('w' => $w, 'h' => $h);
				$att['x'] = $encode;

				$add = ($width == null) ? " ".$v."x" : " ".$v."w";
				$links[] = $this->thumbUrl($src, $att).$add; // " w".$width; //
			}

			return implode(", ",$links);

		}
		elseif($multiply == '2x' || $multiply == '3x' || $multiply == '4x')
		{

			if(empty($parm['w']) && isset($parm['h']))
			{
				$parm['h'] = ($parm['h'] * $multiply) ;
				return $this->thumbUrl($src, $parm)." h".$parm['h']." ".$multiply;
			}

			$width = (!empty($parm['w'])) ? ($parm['w'] * $multiply) : ($this->thumbWidth * $multiply);
			$height = (!empty($parm['h'])) ? ($parm['h'] * $multiply) : ($this->thumbHeight * $multiply);
		}
		else
		{
			$height = (($this->thumbHeight * $width) / $this->thumbWidth);
		}

		if(!isset($parm['aw']))
		{
			$parm['aw'] = null;
		}

		if(!isset($parm['ah']))
		{
			$parm['ah'] = null;
		}

		if(!isset($parm['x']))
		{
			$parm['x'] = null;
		}

		if(!isset($parm['crop']))
		{
			$parm['crop'] = null;
		}

		$parms = array('w'=>$width,'h'=>$height,'crop'=> $parm['crop'],'x'=>$parm['x'], 'aw'=>$parm['aw'],'ah'=>$parm['ah']);

	//	$parms = !empty($this->thumbCrop) ? array('aw' => $width, 'ah' => $height, 'x'=>$encode) : array('w'  => $width,	'h'  => $height, 'x'=>$encode	);

		// $parms['x'] = $encode;

		if(!empty($parm['return']) && $parm['return'] == 'src')
		{
			return $this->thumbUrl($src, $parms);
		}

		return $this->thumbUrl($src, $parms)." ".$width."w";


	}


	public function thumbUrlScale($src,$parm)
	{


	}

	/**
	 * Used by thumbUrl when SEF Image URLS is active. @see e107.htaccess
	 * @param $url
	 * @param array $options
	 * @return string
	 */
	private function thumbUrlSEF($url='', $options=array())
	{
		if(!empty($options['full']))
		{
			$base = SITEURL;
		}
		else
		{
			$base = (!empty($options['ebase'])) ? '{e_BASE}' : e_HTTP;
		}
	//	$base = (!empty($options['full'])) ? SITEURL : e_HTTP;

		if(!empty($options['x'])  && !empty($options['ext'])) // base64 encoded. Build URL for:  RewriteRule ^media\/img\/([-A-Za-z0-9+/]*={0,3})\.(jpg|gif|png)?$ thumb.php?id=$1
		{
			$ext = strtolower($options['ext']);
			return $base.'media/img/'.base64_encode($options['thurl']).'.'.str_replace("jpeg", "jpg", $ext);
		}
		elseif(strstr($url, 'e_MEDIA_IMAGE')) // media images.
		{
			$sefPath = 'media/img/';
			$clean = array('{e_MEDIA_IMAGE}','e_MEDIA_IMAGE/');
		}
		elseif(strstr($url, 'e_AVATAR')) // avatars
		{
			$sefPath = 'media/avatar/';
			$clean = array('{e_AVATAR}','e_AVATAR/');
		}
		elseif(strstr($url, 'e_THEME')) // theme folder images.
		{
			$sefPath = 'theme/img/';
			$clean = array('{e_THEME}','e_THEME/');
		}
		else
		{
			// e107::getDebug()->log("SEF URL False: ".$url);
			return false;
		}

		// Build URL for ReWriteRule ^media\/img\/(a)?([\d]*)x(a)?([\d]*)\/(.*)?$ thumb.php?src=e_MEDIA_IMAGE/$5&$1w=$2&$3h=$4
		$sefUrl =  $base.$sefPath;

		if(vartrue($options['aw']) || vartrue($options['ah']))
		{
			$sefUrl .= 'a'.intval($options['aw']) .'xa'. intval($options['ah']);
		}
		elseif(!empty($options['crop']))
		{

			if(!is_numeric($options['crop']))
			{
				$sefUrl .= strtolower($options['crop']).intval($options['w']) .'x'.strtolower($options['crop']). intval($options['h']);
			}
			else
			{
				$sefUrl .= 'a'.intval($options['w']) .'xa'. intval($options['h']);
			}


		}
		else
		{
			$sefUrl .= intval($options['w']) .'x'. intval($options['h']);
		}

		$sefUrl .= '/';
		$sefUrl .= str_replace($clean,'',$url);

		return $sefUrl;

	}

	/**
	 * Help for converting to more safe URLs
	 * e.g. {e_MEDIA_FILE}path/to/video.flv => e_MEDIA_FILE/path/to/video.flv
	 *
	 * @todo support for ALL URL shortcodes (replacement methods)
	 * @param string $type sc|raw|rev|all
	 * @return array
	 */
	public function getUrlConstants($type = 'sc')
	{
		// sub-folders first!
		static $array = array(
			'e_MEDIA_FILE/' 	=> '{e_MEDIA_FILE}',
			'e_MEDIA_VIDEO/' 	=> '{e_MEDIA_VIDEO}',
			'e_MEDIA_IMAGE/' 	=> '{e_MEDIA_IMAGE}',
			'e_MEDIA_ICON/' 	=> '{e_MEDIA_ICON}',
			'e_AVATAR/' 		=> '{e_AVATAR}',
			'e_AVATAR_DEFAULT/' => '{e_AVATAR_DEFAULT}',
			'e_AVATAR_UPLOAD/' => '{e_AVATAR_UPLOAD}',
			'e_WEB_JS/' 		=> '{e_WEB_JS}',
			'e_WEB_CSS/' 		=> '{e_WEB_CSS}',
			'e_WEB_IMAGE/' 		=> '{e_WEB_IMAGE}',
			'e_IMPORT/' 		=> '{e_IMPORT}',
		//	'e_WEB_PACK/' 		=> '{e_WEB_PACK}',

			'e_BASE/' 			=> '{e_BASE}',
			'e_ADMIN/' 			=> '{e_ADMIN}',
			'e_IMAGE/' 			=> '{e_IMAGE}',
			'e_THEME/' 			=> '{e_THEME}',
			'e_PLUGIN/' 		=> '{e_PLUGIN}',
			'e_HANDLER/' 		=> '{e_HANDLER}', // BC
			'e_MEDIA/' 			=> '{e_MEDIA}',
			'e_WEB/' 			=> '{e_ADMIN}',
	//		'THEME/'			=> '{THEME}',
		);
		
		
		switch ($type)
		{
			case 'sc':
				return array_values($array);
			break;

			case 'raw':
				return array_keys($array);
			break;

			case 'rev':
				return array_reverse($array, true);
			break;

			case 'all':
				return $array;
			break;
		}
		return array();
	}


	function getEmotes()
	{
		return $this->e_emote->emotes;		
	}


	/**
	 * Replace e107 path constants
	 * Note: only an ADMIN user can convert {e_ADMIN}
	 * TODO - runtime cache of search/replace arrays (object property) when $mode !== ''
	 * @param string $text
	 * @param string $mode [optional]	abs|full "full" = produce absolute URL path, e.g. http://sitename.com/e107_plugins/etc
	 * 									'abs' = produce truncated URL path, e.g. e107plugins/etc
	 * 									"" (default) = URL's get relative path e.g. ../e107_plugins/etc
	 * @param mixed $all [optional] 	if TRUE, then when $mode is "full" or TRUE, USERID is also replaced...
	 * 									when $mode is "" (default), ALL other e107 constants are replaced
	 * @return string
	 */
	public function replaceConstants($text, $mode = '', $all = FALSE)
	{

		if($mode != "")
		{
			$e107 = e107::getInstance();

			$replace_relative = array(
				$e107->getFolder('media_files'),
				$e107->getFolder('media_video'),
				$e107->getFolder('media_image'),
				$e107->getFolder('media_icon'),
				$e107->getFolder('avatars'),
				$e107->getFolder('web_js'),
				$e107->getFolder('web_css'),
				$e107->getFolder('web_image'),
				//$e107->getFolder('web_pack'),
				e_IMAGE_ABS,
				e_THEME_ABS,
				$e107->getFolder('images'),
				$e107->getFolder('plugins'),
				$e107->getFolder('files'),
				$e107->getFolder('themes'),
			//	$e107->getFolder('downloads'),
				$e107->getFolder('handlers'),
				$e107->getFolder('media'),
				$e107->getFolder('web'),
				$e107->site_theme ? $e107->getFolder('themes').$e107->site_theme.'/' : '',
				defset('THEME_ABS'),
				(ADMIN ? $e107->getFolder('admin') : ''),
				'',
				$e107->getFolder('core'),
				$e107->getFolder('system'),
			);

			switch ($mode)
			{
				case 'abs':
					$replace_absolute = array(
						e_MEDIA_FILE_ABS,
						e_MEDIA_VIDEO_ABS,
						e_MEDIA_IMAGE_ABS,
						e_MEDIA_ICON_ABS,
						e_AVATAR_ABS,
						e_JS_ABS,
						e_CSS_ABS,
						e_WEB_IMAGE_ABS,
				//		e_PACK_ABS,
						e_IMAGE_ABS,
						e_THEME_ABS,
						e_IMAGE_ABS,
						e_PLUGIN_ABS,
						e_FILE_ABS,
						e_THEME_ABS,
				//		e_DOWNLOAD_ABS, //impossible when download is done via php.
						'', // handlers - no ABS path available
						e_MEDIA_ABS,
						e_WEB_ABS,
						defset('THEME_ABS'),
						defset('THEME_ABS'),
						(ADMIN ? e_ADMIN_ABS : ''),
						$e107->server_path,
						'', // no e_CORE absolute path
						'', // no e_SYSTEM absolute path
					);
				break;

				case 'full':
					$replace_absolute = array(
						SITEURLBASE.e_MEDIA_FILE_ABS,
						SITEURLBASE.e_MEDIA_VIDEO_ABS,
						SITEURLBASE.e_MEDIA_IMAGE_ABS,
						SITEURLBASE.e_MEDIA_ICON_ABS,
						SITEURLBASE.e_AVATAR_ABS,
						SITEURLBASE.e_JS_ABS,
						SITEURLBASE.e_CSS_ABS,
						SITEURLBASE.e_WEB_IMAGE_ABS,
				//		SITEURLBASE.e_PACK_ABS,
						SITEURLBASE.e_IMAGE_ABS,
						SITEURLBASE.e_THEME_ABS,
						SITEURLBASE.e_IMAGE_ABS,
						SITEURLBASE.e_PLUGIN_ABS,
						SITEURLBASE.e_FILE_ABS, // deprecated
						SITEURLBASE.e_THEME_ABS,
						//SITEURL.$e107->getFolder('downloads'),
						'', //  handlers - no ABS path available
						SITEURLBASE.e_MEDIA_ABS,
						SITEURLBASE.e_WEB_ABS,
						defset('THEME_ABS') ? SITEURLBASE.THEME_ABS : '',
						defset('THEME_ABS') ? SITEURLBASE.THEME_ABS : '',
						(ADMIN ? SITEURLBASE.e_ADMIN_ABS : ''),
						SITEURL,
						'', // no e_CORE absolute path
						'', // no e_SYSTEM absolute path
					);
				break;
			}
			// sub-folders first!
			$search = array(
				'{e_MEDIA_FILE}',
				'{e_MEDIA_VIDEO}',
				'{e_MEDIA_IMAGE}',
				'{e_MEDIA_ICON}',
				'{e_AVATAR}',
				'{e_WEB_JS}',
				'{e_WEB_CSS}',
				'{e_WEB_IMAGE}',
		//		'{e_WEB_PACK}',
				"{e_IMAGE_ABS}",
				"{e_THEME_ABS}",
				"{e_IMAGE}",
				"{e_PLUGIN}",
				"{e_FILE}",
				"{e_THEME}",
				//,"{e_DOWNLOAD}"
				"{e_HANDLER}",
				"{e_MEDIA}",
				"{e_WEB}",
				"{THEME}",
				"{THEME_ABS}",
				"{e_ADMIN}",
				"{e_BASE}",
				"{e_CORE}",
				"{e_SYSTEM}",
			);

			/*if (ADMIN)
			{
				$replace_relative[] = $e107->getFolder('admin');
				$replace_absolute[] = SITEURL.$e107->getFolder('admin');
				$search[] = "{e_ADMIN}";
			}*/

			if ($all)
			{
				if (USER)
				{  // Can only replace with valid number for logged in users
					$replace_relative[] = USERID;
					$replace_absolute[] = USERID;
				}
				else
				{
					$replace_relative[] = '';
					$replace_absolute[] = '';
				}
				$search[] = "{USERID}";
			}

			// current THEME
			/*if(!defined('THEME'))
			{
				//if not already parsed by doReplace
				$text = str_replace(array('{THEME}', '{THEME_ABS}'), '', $text);
			}
			else
			{
				$replace_relative[] = THEME;
				$replace_absolute[] = THEME_ABS;
				$search[] = "{THEME}";
				$replace_relative[] = THEME;
				$replace_absolute[] = THEME_ABS;
				$search[] = "{THEME_ABS}";
			}*/

			$replace = ((string)$mode == "full" || (string)$mode=='abs' ) ? $replace_absolute : $replace_relative;
			return str_replace($search,$replace,$text);
		}

//		$pattern = ($all ? "#\{([A-Za-z_0-9]*)\}#s" : "#\{(e_[A-Z]*)\}#s");
		$pattern = ($all ? '#\{([A-Za-z_0-9]*)\}#s' : '#\{(e_[A-Z]*(?:_IMAGE|_VIDEO|_FILE|_CONTENT|_ICON|_AVATAR|_JS|_CSS|_PACK|_DB|_ABS){0,1})\}#s');
		$text = preg_replace_callback($pattern, array($this, 'doReplace'), $text);

		if(!defined('THEME'))
		{
			//if not already parsed by doReplace
			$text = str_replace(array('{THEME}', '{THEME_ABS}'), '', $text);
		}
		else
		{
			$srch = array('{THEME}', '{THEME_ABS}');
			$repl = array(THEME, THEME_ABS);
			$text = str_replace($srch, $repl, $text);
		}

		return $text;
	}


	function doReplace($matches)
	{
		if(defined($matches[1]) && (deftrue('ADMIN') || strpos($matches[1], 'ADMIN') === FALSE))
		{
			return constant($matches[1]);
		}
		return $matches[1];
	}

	/**
	 * Create and substitute e107 constants in passed URL
	 *
	 * @param string $url
	 * @param integer $mode 0-folders, 1-relative ('rel'), 2-absolute ('abs'), 3-full ('full') (with domain), 4-absolute & relative ('mix') (combination of 1,2,3)
	 * @return string
	 */
	public function createConstants($url, $mode = 0)
	{
		
		//FIXME - create constants for absolute paths and site URL's
		if (!is_numeric($mode))
		{
			switch ($mode)
			{
				case 'rel' : $mode = 1; break;
				case 'abs' : $mode = 2; break;
				case 'full' : $mode = 3; break;
				case 'mix' : $mode = 4; break;
				case 'nice': $mode = 5; break;
			}
		}
		$e107 = e107::getInstance();
		switch($mode)
		{
			case 0: // folder name only.
				$tmp = array(
					'{e_MEDIA_FILE}'	=> $e107->getFolder('media_files'),
					'{e_MEDIA_VIDEO}'	=> $e107->getFolder('media_videos'),
					'{e_MEDIA_IMAGE}'	=> $e107->getFolder('media_images'),
					'{e_MEDIA_ICON}'	=> $e107->getFolder('media_icons'),
					'{e_AVATAR}'		=> $e107->getFolder('avatars'),
					'{e_WEB_JS}'		=> $e107->getFolder('web_js'),
					'{e_WEB_CSS}'		=> $e107->getFolder('web_css'),
					'{e_WEB_IMAGE}'		=> $e107->getFolder('web_images'),
			//		'{e_WEB_PACK}'		=> $e107->getFolder('web_packs'),

					'{e_IMAGE}' 	=> $e107->getFolder('images'),
					'{e_PLUGIN}'	=> $e107->getFolder('plugins'),
					'{e_FILE}'		=> $e107->getFolder('files'),
					'{e_THEME}'		=> $e107->getFolder('themes'),
					'{e_DOWNLOAD}'	=> $e107->getFolder('downloads'),
					'{e_ADMIN}'		=> $e107->getFolder('admin'),
					'{e_HANDLER}'	=> $e107->getFolder('handlers'),
					'{e_MEDIA}'		=> $e107->getFolder('media'),
					'{e_WEB}'		=> $e107->getFolder('web'),
					'{e_UPLOAD}'	=> $e107->getFolder('uploads'),
					);
					
			break;


			case 1: // relative path only
				$tmp = array(
					'{e_MEDIA_FILE}'	=> e_MEDIA_FILE,
					'{e_MEDIA_VIDEO}'	=> e_MEDIA_VIDEO,
					'{e_MEDIA_IMAGE}'	=> e_MEDIA_IMAGE,
					'{e_MEDIA_ICON}'	=> e_MEDIA_ICON,
					'{e_AVATAR}'		=> e_AVATAR,
					'{e_IMPORT}'		=> e_IMPORT,
					'{e_WEB_JS}'		=> e_WEB_JS,
					'{e_WEB_CSS}'		=> e_WEB_CSS,
					'{e_WEB_IMAGE}'		=> e_WEB_IMAGE,
				//	'{e_WEB_PACK}'		=> e_WEB_PACK,

					'{e_IMAGE}'		=> e_IMAGE,
					'{e_PLUGIN}'	=> e_PLUGIN,
					'{e_FILE}'		=> e_FILE,
					'{e_THEME}'		=> e_THEME,
					'{e_DOWNLOAD}'	=> e_DOWNLOAD,
					'{e_ADMIN}'		=> e_ADMIN,
					'{e_HANDLER}'	=> e_HANDLER,
					'{e_MEDIA}'		=> e_MEDIA,
					'{e_WEB}'		=> e_WEB,
					'{e_UPLOAD}'	=> e_UPLOAD,
				);
			break;

			case 2: // absolute path only
				$tmp = array(
					'{e_MEDIA_FILE}'	=> e_MEDIA_FILE_ABS,
					'{e_MEDIA_VIDEO}'	=> e_MEDIA_VIDEO_ABS,
					'{e_MEDIA_IMAGE}'	=> e_MEDIA_IMAGE_ABS,
					'{e_MEDIA_ICON}'	=> e_MEDIA_ICON_ABS,
					'{e_AVATAR}'		=> e_AVATAR_ABS,
					'{e_WEB_JS}'		=> e_JS_ABS,
					'{e_WEB_CSS}'		=> e_CSS_ABS,
					'{e_WEB_IMAGE}'		=> e_WEB_IMAGE_ABS,
			//		'{e_WEB_PACK}'		=> e_PACK_ABS,

					'{e_IMAGE}'		=> e_IMAGE_ABS,
					'{e_PLUGIN}'	=> e_PLUGIN_ABS,
					'{e_FILE}'		=> e_FILE_ABS, // deprecated
					'{e_THEME}'		=> e_THEME_ABS,
					'{e_DOWNLOAD}'	=> e_HTTP.'request.php?',// FIXME - we need solution!
					'{e_ADMIN}'		=> e_ADMIN_ABS,
					//'{e_HANDLER}'	=> e_HANDLER_ABS, - no ABS path available
					'{e_MEDIA}'		=> e_MEDIA_ABS,
					'{e_WEB}'		=> e_WEB_ABS,
					'{e_BASE}'		=> e_HTTP,
				);
			break;

			case 3: // full path (e.g http://domain.com/e107_images/)
				$tmp = array(
					'{e_MEDIA_FILE}'	=> SITEURLBASE.e_MEDIA_FILE_ABS,
					'{e_MEDIA_VIDEO}'	=> SITEURLBASE.e_MEDIA_VIDEO_ABS,
					'{e_MEDIA_IMAGE}'	=> SITEURLBASE.e_MEDIA_IMAGE_ABS,
					'{e_MEDIA_ICON}'	=> SITEURLBASE.e_MEDIA_ICON_ABS,
					'{e_AVATAR}'		=> SITEURLBASE.e_AVATAR_ABS,
					'{e_WEB_JS}'		=> SITEURLBASE.e_JS_ABS,
					'{e_WEB_CSS}'		=> SITEURLBASE.e_CSS_ABS,
					'{e_WEB_IMAGE}'		=> SITEURLBASE.e_WEB_IMAGE_ABS,
			//		'{e_WEB_PACK}'		=> SITEURLBASE.e_PACK_ABS,

					'{e_IMAGE}'		=> SITEURLBASE.e_IMAGE_ABS,
					'{e_PLUGIN}'	=> SITEURLBASE.e_PLUGIN_ABS,
					'{e_FILE}'		=> SITEURLBASE.e_FILE_ABS, // deprecated
					'{e_THEME}'		=> SITEURLBASE.e_THEME_ABS,
					'{e_DOWNLOAD}'	=> SITEURLBASE.e_HTTP.'request.php?',// FIXME - we need solution!
					'{e_ADMIN}'		=> SITEURLBASE.e_ADMIN_ABS,
					//'{e_HANDLER}'	=> e_HANDLER_ABS, - no ABS path available
					'{e_MEDIA}'		=> SITEURLBASE.e_MEDIA_ABS,
					'{e_WEB}'		=> SITEURLBASE.e_WEB_ABS,
					'{e_BASE}'		=> SITEURL,
				);
			break;

			case 4: // absolute & relative paths
				$url = $this->createConstants($url, 3);
				$url = $this->createConstants($url, 2);
				$url = $this->createConstants($url, 1);
				return $url;
			break;

			case 5: // nice urls - e.g. e_MEDIA_VIDEO/mystream.flv
				$url = $this->createConstants($url, 4);
				return str_replace($this->getUrlConstants('sc'), $this->getUrlConstants('raw'), $url);
			break;

			default:
				$tmp = array();
			break;
		}

		$hasCDN = strpos($url, '//') === 0;

		foreach($tmp as $key=>$val)
		{
			// Fix - don't break the CDN '//cdn.com' URLs
			if ($hasCDN && $val == '/') {
				continue;
			}

			$len = strlen($val);
			if(substr($url, 0, $len) == $val)
			{
				// replace the first instance only
				return substr_replace($url, $key, 0, $len);
			}
		}

		return $url;
	}


	//FIXME - $match not used?
	function e_highlight($text, $match)
	{
		$tags = array();
		preg_match_all('#<[^>]+>#', $text, $tags);
		$text = preg_replace('#<[^>]+>#', '<|>', $text);
		$text = preg_replace('#(\b".$match."\b)#i', '<span class="searchhighlight">\\1</span>', $text);
		foreach ($tags[0] as $tag)
		{
			$text = preg_replace('#<\|>#', $tag, $text, 1);
		}
		return $text;
	}

	
	/**
	 * Convert Text to a suitable format for use in emails. eg. relative links will be replaced with full links etc. 
	 * @param string $text
	 * @param boolean $posted - if the text has been posted. (uses stripslashes etc)
	 * @param string $mods - flags for text transformation. 
	 */
	public function toEmail($text, $posted = "", $mods = "parse_sc, no_make_clickable")
	{
		if ($posted === TRUE)
		{
			if (MAGIC_QUOTES_GPC)
			{
				$text = stripslashes($text);
			}
			$text = preg_replace('#\[(php)#i', '&#91;\\1', $text);
		}

		$text = (strtolower($mods) != "rawtext") ? $this->replaceConstants($text, "full") : $text;

		if($this->isHtml($text))
		{
			$text = str_replace(array("[html]","[/html]"), "", $text);
			$text = html_entity_decode( $text, ENT_COMPAT, 'UTF-8');
		}
		else
		{

			$text = $this->toHTML($text, true, $mods);
		}

		return $text;
	}


	/**
	 * Given an email address, returns a link including with obfuscated text.
	 * e-email css in e107.css inserts the user/domain data for display.
	 *
	 * @param string $email
	 * @param string $words [optional] text to display
	 * @param null $subject [optional] default subject for email.
	 * @return string
	 */
	function emailObfuscate($email, $words = null, $subject =null)
	{
		if(strpos($email, '@') === false)
		{
			return '';
		}

		if ($subject)
		{
			$subject = '?subject='.$subject;
		}

		list($name, $address) = explode('@', $email, 2);

		if(empty($words))
		{
			$words = "&#64;";
			$user = "data-user='".$this->obfuscate($name)."'";
			$dom =  "data-dom='".$this->obfuscate($address)."'";
		}
		else
		{
			$user = '';
			$dom = '';
		}

		$url = "mailto:".$email.$subject;

		$safe = $this->obfuscate($url);

		return "<a class='e-email' {$user} {$dom} rel='external' href='".$safe."'>".$words.'</a>';
	}


	/**
	 * Obfuscate text from bots using Randomized encoding.
	 * @param $text
	 * @return string
	 */
	public function obfuscate($text)
	{
		$ret = '';
		foreach (str_split($text) as $letter)
		{
			switch (rand(1, 3))
			{
				// HTML entity code
				case 1:
					$ret .= '&#'.ord($letter).';';
				break;

				// Hex character code
				case 2:
					$ret .= '&#x'.dechex(ord($letter)).';';
				break;

				// Raw (no) encoding
				case 3:
					$ret .= $letter;
			}
		}

		return $ret;
	}


	public function __get($name)
	{
		switch($name)
		{
			case 'e_sc':
				$ret = e107::getScParser();
			break;


			default:
				trigger_error('$e107->$'.$name.' not defined', E_USER_WARNING);
				return NULL;
			break;
		}


		$this->$name = $ret;
		return $ret;
	}
}


/**
 * New v2 Parser 
 * Start Fresh and Build on it over time to become eventual replacement to e_parse. 
 * Cameron's DOM-based parser. 
 */
class e_parser
{
    /**
     * @var DOMDocument
     */
    public $domObj                = null;
	public $isHtml                  = false;
    protected $removedList        = array();
    protected $nodesToDelete      = array();
    protected $nodesToConvert     = array();
    protected $nodesToDisableSC = array();
    protected $pathList           = array();
    protected $allowedAttributes  = array(
                                    'default'   => array('id', 'style', 'class'),
                                    'img'       => array('id', 'src', 'style', 'class', 'alt', 'title', 'width', 'height'),
                                    'a'         => array('id', 'href', 'style', 'class', 'title', 'target'),
                                    'script'	=> array('type', 'src', 'language'),
                                    'iframe'	=> array('id', 'src', 'frameborder', 'class', 'width', 'height', 'style'),
	                                'input'     => array('type','name','value','class','style'),
	                                'form'      => array('action','method','target'),
	                                'audio'     => array('src','controls', 'autoplay', 'loop', 'muted', 'preload' ),
	                                'video'     => array('autoplay', 'controls', 'height', 'loop', 'muted', 'poster', 'preload', 'src', 'width'),
	                                'td'        => array('id', 'style', 'class', 'colspan', 'rowspan'),
	                                'th'        => array('id', 'style', 'class', 'colspan', 'rowspan'),
	                                'col'       => array('id', 'span', 'class','style')
                                  );

    protected $badAttrValues     = array('javascript[\s]*?:','alert\(','vbscript[\s]*?:','data:text\/html', 'mhtml[\s]*?:', 'data:[\s]*?image');

    protected $replaceAttrValues = array(
        'default' => array()
    );

    protected $allowedTags        = array('html', 'body','div','a','img','table','tr', 'td', 'th', 'tbody', 'thead', 'colgroup', 'b',
                                        'i', 'pre','code', 'strong', 'u', 'em','ul', 'ol', 'li','img','h1','h2','h3','h4','h5','h6','p',
                                        'div','pre','section','article', 'blockquote','hgroup','aside','figure','figcaption', 'abbr','span', 'audio', 'video', 'br',
                                        'small', 'caption', 'noscript', 'hr', 'section', 'iframe', 'sub', 'sup', 'cite'
                                   );
    protected $scriptTags 		= array('script','applet','form','input','button', 'embed', 'object'); //allowed when $pref['post_script'] is enabled.
	
	protected $blockTags		= array('pre','div','h1','h2','h3','h4','h5','h6','blockquote'); // element includes its own line-break. 


    private $scriptAccess      = false; // nobody.

	/**
	 * e_parser constructor.
	 */
	public function __construct()
    {

		$this->init();
         /*
        $meths = get_class_methods('DomDocument');
        sort($meths);
        print_a($meths);
        */        
    }  

    /**
     * Used by e_parse to start
     */
    function init()
    {
        $this->domObj = new DOMDocument();


    }

	/**
	 * Add Allowed Tags.
	 * @param string
	 */
	public function addAllowedTag($tag)
	{
		$this->allowedTags[] = $tag;
	}


	/**
	 * @param $tag - html tag.
	 * @param $attArray - array of attributes. eg. array('style', 'id', 'class') etc.
	 */
	public function addAllowedAttribute($tag, $attArray)
	{
		$this->allowedAttributes[$tag] = (array) $attArray;
	}


	/**
     * Set Allowed Tags. 
     * @param $array 
     */
    public function setAllowedTags($array=array())
    {
        $this->allowedTags = $array;    
    }

	/**
	 * Set Script Access
	 * @param $val int e_UC_MEMBER, e_UC_NOBODY, e_UC_MAINADMIN or userclass number.
	 */
	public function setScriptAccess($val)
	{
		$this->scriptAccess = $val;
	}

	public function getAllowedTags()
	{
		return $this->allowedTags;

	}


	public function getScriptAccess()
	{
		return $this->scriptAccess;
	}

	/**
     * Set Allowed Attributes. 
     * @param $array 
     */
    public function setAllowedAttributes($array=array())
    {
        $this->allowedAttributes = $array;    
    } 

     /**
     * Set Script Tags.
     * @param $array
     */
    public function setScriptTags($array=array())
    {
        $this->scriptTags = $array;
    }

	/**
	 * Add leading zeros to a number. eg. 3 might become 000003
	 * @param $num integer 
	 * @param $numDigits - total number of digits
	 * @return number with leading zeros. 
	 */
	public function leadingZeros($num,$numDigits)
	{
		return sprintf("%0".$numDigits."d",$num);
	}

	/**
	 * Generic variable translator for LAN definitions.
	 * @param $lan - string LAN
	 * @param string | array $vals - either a single value, which will replace '[x]' or an array with key=>value pairs.
	 * @example $tp->lanVars("My name is [x] and I own a [y]", array('x'=>"John", 'y'=>"Cat"));
	 * @example $tp->lanVars("My name is [x] and I own a [y]", array("John","Cat"));
	 * @return string
	 */
	function lanVars($lan, $vals, $bold=false)
	{
		
		$array = (!is_array($vals)) ? array('x'=>$vals) : $vals;

		$search = array();
		$replace = array();

		$defaults = array('x', 'y', 'z');

		foreach($array as $k=>$v)
		{
			if(is_numeric($k)) // convert array of numeric to x,y,z
			{
				$k = $defaults[$k];
			}

			$search[] = "[".$k."]";
			$replace[] = ($bold===true) ? "<strong>".$v."</strong>" : $v;
		}
		
		return str_replace($search, $replace, $lan);
	}
    
	/**
	 * Return an Array of all specific tags found in an HTML document and their attributes.  
	 * @param $html - raw html code
	 * @param $taglist - comma separated list of tags to search or '*' for all. 
	 * @param $header - if the $html includes the html head or body tags - it should be set to true. 
	 */
	public function getTags($html, $taglist='*', $header = false)
	{
		
		if($header == false)
		{
			$html = "<html><body>".$html."</body></html>";	
		}	
		
		$doc = $this->domObj;   
		       
		$doc->preserveWhiteSpace = true;
		libxml_use_internal_errors(true);
        $doc->loadHTML($html);
	
		$tg = explode(",", $taglist);
		$ret = array();
		
		foreach($tg as $find)
		{
	        $tmp = $doc->getElementsByTagName($find);
			
			 
			foreach($tmp as $k=>$node)
			{
				$tag = $node->nodeName;
				$inner = $node->C14N();
				 $inner = str_replace("&#xD;","",$inner);
				
				foreach ($node->attributes as $attr)
	            {
					$name = $attr->nodeName;
	           		$value = $attr->nodeValue; 
					$ret[$tag][$k][$name] = $value; 
				}
				
				$ret[$tag][$k]['@value'] = $inner; 
				
					
			}
		}
		
		if($header == false)
		{
			unset($ret['html'],$ret['body']);
		}	
		
		
		return $ret;
	}
	
	
	/**
	 * Parse xxxxx.glyph file to bootstrap glyph format. 
	 * @param string $text 
	 * @param array of $parms
	 * @example $tp->toGlyph('fa-spinner', 'spin=1');
	 * @example $tp->toGlyph('fa-spinner', array('spin'=>1));
	 * @example $tp->toGlyph('fa-shield', array('rotate'=>90, 'size'=>'2x'));
	 */ 
	public function toGlyph($text, $space=" ")
	{

		if(!deftrue('BOOTSTRAP') || empty($text))
		{
			return false;	
		}

		if(is_array($space)) 
		{
			$parm = $space;
			$space = varset($parm['space'],'');
		}
		elseif(strpos($space,'='))
		{
			parse_str($space,$parm);
			$space = varset($parm['space'],'');	
		}
		else 
		{
			$parm = array();
		}

		if(substr($text,0,2) == 'e-') 	// e107 admin icon. 
		{
			$size = (substr($text,-3) == '-32') ? 'S32' : 'S16';

			if(substr($text,-3) == '-24')
			{
				$size = 'S24';
			}

			return "<i class='".$size." ".$text."'></i>";
		}

		// Get Glyph names. 
		$bs3 = e107::getMedia()->getGlyphs('bs3','');
		$fa4 = e107::getMedia()->getGlyphs('fa4','');
		
		
		list($cls) = explode('.glyph',$text,2);
	//	list($type, $tmp2) = explode("-",$text,2);
		
	//	return $cls;
		
		$removePrefix = array('glyphicon-','icon-','fa-');
		
		$id = str_replace($removePrefix, "", $cls);

		$spin = null;
		$rotate = null;
		$fixedW = null;
		$prefix = null;
		$size = null;
		$tag = 'span';

	//	return print_r($fa4,true);
		
		if(deftrue('FONTAWESOME') &&  in_array($id ,$fa4)) // Contains FontAwesome 3 set also. 
		{
			$prefix = 'fa fa-';
			$size 	= (vartrue($parm['size'])) ?  ' fa-'.$parm['size'] : '';	
			$tag 	= 'i';
			$spin   = !empty($parm['spin']) ? ' fa-spin' : '';
			$rotate = !empty($parm['rotate']) ? ' fa-rotate-'.intval($parm['rotate']) : '';
			$fixedW = !empty($parm['fw']) ? ' fa-fw' : "";
		}
		elseif(deftrue("BOOTSTRAP")) 
		{
			if(BOOTSTRAP === 3 && in_array($id ,$bs3))
			{
				$prefix = 'glyphicon glyphicon-';
				$tag = 'span';
			}
			else
			{
				$prefix = 'icon-';	
				$tag = 'i';
			}
			
			$size = '';
			
		}

		$idAtt = (!empty($parm['id'])) ? "id='".$parm['id']."' " : '';
		
		$text = "<".$tag." {$idAtt}class='".$prefix.$id.$size.$spin.$rotate.$fixedW."'></".$tag.">" ;
		$text .= ($space !== false) ? $space : "";
		
		return $text;

		
		//$text = preg_replace('/\[(i_[\w]*)\]/',"<i class='$1'></i>", $text); 		
		// return $text;	
	}


	/**
	 * @param $text
	 * @return string
	 */
	public function toBadge($text)
	{
		return "<span class='badge'>".$text."</span>";
	}


	/**
	 * Render an avatar based on supplied user data or current user when missing. 
	 * @param @array  - user data from e107_user. 
	 * @return <img> tag of avatar.  
	 */
	public function toAvatar($userData=null, $options=array())
	{
		$tp 		= e107::getParser();
		$width 		= !empty($options['w']) ? intval($options['w']) : $tp->thumbWidth;
		$height 	= ($tp->thumbHeight !== 0) ? $tp->thumbHeight : "";		
		$linkStart  = '';
		$linkEnd    =  '';
		
		if(!isset($userData['user_image']) && USERID)
		{
			$userData = array();
			$userData['user_id']    = USERID;
			$userData['user_image']	= USERIMAGE;
			$userData['user_name']	= USERNAME; 
		}
		
		
		$image = (!empty($userData['user_image'])) ? varset($userData['user_image']) : null;
		
		$genericImg = $tp->thumbUrl(e_IMAGE."generic/blank_avatar.jpg","w=".$width."&h=".$height,true);	
		
		if (!empty($image)) 
		{
			
			if(strpos($image,"://")!==false) // Remove Image
			{
				$img = $image;	
			}
			elseif(substr($image,0,8) == "-upload-")
			{
				
				$image = substr($image,8); // strip the -upload- from the beginning. 
				$img = (file_exists(e_AVATAR_UPLOAD.$image))  ? $tp->thumbUrl(e_AVATAR_UPLOAD.$image,"w=".$width."&h=".$height) : $genericImg;
			}
			elseif(file_exists(e_AVATAR_DEFAULT.$image))  // User-Uplaoded Image
			{
				$img =	$tp->thumbUrl(e_AVATAR_DEFAULT.$image,"w=".$width."&h=".$height);		
			}
			else // Image Missing. 
			{
				
				$img = $genericImg;
			}
		}
		else // No image provided - so send generic. 
		{
			$img = $genericImg;
		}

		if(($img == $genericImg) && !empty($userData['user_id'] ) && (($userData['user_id'] == USERID)) && !empty($options['link']))
		{
			$linkStart = "<a class='e-tip' title=\"".LAN_EDIT."\" href='".e107::getUrl()->create('user/myprofile/edit')."'>";
			$linkEnd = "</a>";
		}
		
		$title = (ADMIN) ? $image : $tp->toAttribute($userData['user_name']);
		$shape = (!empty($options['shape'])) ? "img-".$options['shape'] : "img-rounded";

		if(!empty($options['type']) && $options['type'] == 'url')
		{
			return $img;
		}


		$heightInsert = empty($height) ? '' : "height='".$height."'";
		$id = (!empty($options['id'])) ? "id='".$options['id']."' " : "";

		$text = $linkStart;
		$text .= "<img ".$id."class='".$shape." user-avatar' alt=\"".$title."\" src='".$img."'  width='".$width."' ".$heightInsert." />";
		$text .= $linkEnd;
	//	return $img;
		return $text;
		
	}


	/**
	 * Display an icon. 
	 * @param string $icon 
	 * @example $tp->toIcon("{e_IMAGES}icons/something.png"); 
	 */
	public function toIcon($icon='',$parm = array())
	{

		if(!vartrue($icon))
		{
			return;
		}

		if(strpos($icon,'e_MEDIA_IMAGE')!==false)
		{
		//	return "<div class='alert alert-danger'>Use \$tp->toImage() instead of toIcon() for ".$icon."</div>"; // debug info only.
		}

		if(substr($icon,0,3) == '<i ') // if it's html (ie. css sprite) return the code.
		{
			return $icon;
		}
				
		$ext = pathinfo($icon, PATHINFO_EXTENSION);
		$dimensions = null;
		
		if(!$ext || $ext == 'glyph') // Bootstrap or Font-Awesome. 
		{
			return $this->toGlyph($icon,$parm);
		}
		
		if(strpos($icon,'e_MEDIA')!==FALSE)
		{
			$path = $this->thumbUrl($icon);
			$dimensions = $this->thumbDimensions();
		}
		elseif($icon[0] == '{')
		{
			$path = $this->replaceConstants($icon,'full');		
		}
		elseif(!empty($parm['legacy']))
		{
			$legacyList = (!is_array($parm['legacy'])) ? array($parm['legacy']) : $parm['legacy'];

			foreach($legacyList as $legPath)
			{
				$legacyPath = $legPath.$icon;
				$filePath = $this->replaceConstants($legacyPath);

				if(is_readable($filePath))
				{
					$path = $this->replaceConstants($legacyPath,'full');
					break;
				}

			}

			if(empty($path))
			{
				$log = e107::getAdminLog();
				$log->addDebug('Broken Icon Path: '.$icon."\n".print_r(debug_backtrace(null,2), true), false)->save('IMALAN_00');
				e107::getDebug()->log('Broken Icon Path: '.$icon);
				return null;
			}
			
		}
		else 
		{
			$path = $icon;
		}


		$alt = (!empty($parm['alt'])) ? $this->toAttribute($parm['alt']) : basename($path);
		$class = (!empty($parm['class'])) ? $parm['class'] : 'icon';
		
		return "<img class='".$class."' src='".$path."' alt='".$alt."' ".$dimensions." />";
	}


	/**
	 * Render an <img> tag.
	 * @param string $file
	 * @param array $parm  legacy|w|h|alt|class|id|crop
	 * @param array $parm['legacy'] Usually a legacy path like {e_FILE}
	 * @return string
	 * @example $tp->toImage('welcome.png', array('legacy'=>{e_IMAGE}newspost_images/','w'=>200));
	 */
	public function toImage($file, $parm=array())
	{

		if(empty($file))
		{
			return null;
		}

		if(strpos($file,'e_AVATAR')!==false)
		{
			return "<div class='alert alert-danger'>Use \$tp->toAvatar() instead of toImage() for ".$file."</div>"; // debug info only.

		}

		$srcset     = null;
		$path       = null;
		$file       = trim($file);
		$ext        = pathinfo($file, PATHINFO_EXTENSION);
		$accepted   = array('jpg','gif','png','jpeg');
		$tp         = $this;

		if(!in_array($ext,$accepted))
		{
			return null;
		}


		if(strpos($file,'e_MEDIA')!==false || strpos($file,'e_THEME')!==false || strpos($file,'e_PLUGIN')!==false) //v2.x path.
		{

			if(!isset($parm['w']) && !isset($parm['h']))
			{
				$parm['w']      = $tp->thumbWidth();
				$parm['h']      = $tp->thumbHeight();
				$parm['crop']   = $tp->thumbCrop();
				$parm['x']      = $tp->thumbEncode();
			}

			unset($parm['src']);
			$path = $tp->thumbUrl($file,$parm);
			$srcSetParm = $parm;
			$srcSetParm['size'] = ($parm['w'] < 100) ? '4x' : '2x';

			$parm['srcset'] = $tp->thumbSrcSet($file, $srcSetParm);

		}
		elseif($file[0] == '{') // Legacy v1.x path. Example: {e_PLUGIN}myplugin/images/fixedimage.png
		{
			$path = $tp->replaceConstants($file,'abs');
		}
		elseif(!empty($parm['legacy'])) // Search legacy path for image in a specific folder. No path, only file name provided.
		{

			$legacyPath = rtrim($parm['legacy'],'/').'/'.$file;
			$filePath = $tp->replaceConstants($legacyPath);

			if(is_readable($filePath))
			{
				$path = $tp->replaceConstants($legacyPath,'abs');
			}
			else
			{
				$log = e107::getAdminLog();
				$log->addDebug('Broken Image Path: '.$legacyPath."\n".print_r(debug_backtrace(null,2), true), false)->save('IMALAN_00');
				e107::getDebug()->log("Broken Image Path: ".$legacyPath);
			}

		}
		else // usually http://....
		{
			$path = $file;
		}

		$id     = (!empty($parm['id']))     ? "id=\"".$parm['id']."\" " :  ""  ;
		$class  = (!empty($parm['class']))  ? $parm['class'] : "img-responsive";
		$alt    = (!empty($parm['alt']))    ? $tp->toAttribute($parm['alt']) : basename($file);
		$style  = (!empty($parm['style']))  ? "style=\"".$parm['style']."\" " :  ""  ;
		$srcset = (!empty($parm['srcset'])) ? "srcset=\"".$parm['srcset']."\" " : "";
		$width  = (!empty($parm['w']))      ? "width=\"".intval($parm['w'])."\" " : "";
		$height = (!empty($parm['h']))      ? "height=\"".intval($parm['h'])."\" " : "";

		return "<img {$id}class='{$class}' src='".$path."' alt=\"".$alt."\" ".$srcset.$width.$height.$style." />";

	}


	/**
	 * Check if a string contains bbcode.
	 * @param $text
	 * @return bool
	 */
	function isBBcode($text)
	{
		$bbsearch = array('[/h]','[/b]','[/link]', '[/right]');

		if(str_replace($bbsearch,'',$text))
		{
			return true;
		}
		else
		{
			return false;
		}

	}


	/**
	 * Check if a string is HTML
	 * @param $text
	 * @return bool
	 */
	function isHtml($text)
	{

		if(strpos($text,'[html]') !== false || (htmlentities($text, ENT_NOQUOTES,'UTF-8') != $text && $this->isBBcode($text) === false ) || preg_match('#(?<=<)\w+(?=[^<]*?>)#', $text))
		{
			return true;
		}
		else
		{
			return false;
		}

	}


	/**
	 * Checks if string is valid UTF-8.
	 *
	 * Try to detect UTF-8 using mb_detect_encoding(). If mb string extension is
	 * not installed, we try to use a simple UTF-8-ness checker using a regular
	 * expression originally created by the W3C. But W3C's function scans the
	 * entire strings and checks that it conforms to UTF-8.
	 *
	 * @see http://w3.org/International/questions/qa-forms-utf-8.html
	 *
	 * So this function is faster and less specific. It only looks for non-ascii
	 * multibyte sequences in the UTF-8 range and also to stop once it finds at
	 * least one multibytes string. This is quite a lot faster.
	 *
	 * @param $string string  string being checked.
	 * @return bool  Returns true if $string is valid UTF-8 and false otherwise.
	 */
	public function isUTF8($string)
	{
		if (function_exists('mb_detect_encoding'))
		{
			return (mb_detect_encoding($string) == "UTF-8");
		}

		return (bool) preg_match('%(?:
        [\xC2-\xDF][\x80-\xBF]        # non-overlong 2-byte
        |\xE0[\xA0-\xBF][\x80-\xBF]               # excluding overlongs
        |[\xE1-\xEC\xEE\xEF][\x80-\xBF]{2}      # straight 3-byte
        |\xED[\x80-\x9F][\x80-\xBF]               # excluding surrogates
        |\xF0[\x90-\xBF][\x80-\xBF]{2}    # planes 1-3
        |[\xF1-\xF3][\x80-\xBF]{3}                  # planes 4-15
        |\xF4[\x80-\x8F][\x80-\xBF]{2}    # plane 16
        )+%xs', $string);

	}


	/**
	 * Check if a file is an video or not. 
	 * @param $file string
	 * @return boolean
	 */
	function isVideo($file)
	{
		$ext = pathinfo($file,PATHINFO_EXTENSION);
			
		return ($ext == 'youtube' || $ext == 'youtubepl') ? true : false;
		
	}

	/**
	 * Check if a file is an image or not.
	 * @param $file string
	 * @return boolean
	 */
	function isImage($file)
	{
		if(substr($file,0,3)=="{e_")
		{
			$file = e107::getParser()->replaceConstants($file);
		}


		$ext = pathinfo($file,PATHINFO_EXTENSION);

		return ($ext == 'jpg' || $ext == 'png' || $ext == 'gif' || $ext == 'jpeg') ? true : false;
	}

	
	/**
	 * Display a Video file. 
	 * @param string $file - format: id.type eg. x123dkax.youtube 
	 * @param boolean $thumbnail  - set to 'tag' to return an image thumbnail and 'src' to return the src url or 'video' for a small video thumbnail. 
	 */
	function toVideo($file, $parm=array())
	{
		if(empty($file))
		{
			return false;
		}

		list($id,$type) = explode(".",$file,2);

		$thumb = vartrue($parm['thumb']);


		$pref = e107::getPref();
		$ytpref = array();
		foreach($pref as $k=>$v) // Find all Youtube Prefs. 
		{
			if(substr($k,0,8) == 'youtube_')
			{
				$key = substr($k,8);
				$ytpref[$key] = $v;
			}	
		}

		unset($ytpref['bbcode_responsive']); // do not include in embed code.

		if(!empty($ytpref['cc_load_policy']))
		{
			$ytpref['cc_lang_pref'] = e_LAN; // switch captions with chosen user language.
		}

		$ytqry = http_build_query($ytpref);

		$defClass = (deftrue('BOOTSTRAP')) ? "embed-responsive embed-responsive-16by9" : "video-responsive"; // levacy backup.


		if($type == 'youtube')
		{
		//	$thumbSrc = "https://i1.ytimg.com/vi/".$id."/0.jpg";
			$thumbSrc = "https://i1.ytimg.com/vi/".$id."/mqdefault.jpg";
			$video =  '<iframe class="embed-responsive-item" width="560" height="315" src="//www.youtube.com/embed/'.$id.'?'.$ytqry.'" style="background-size: 100%;background-image: url('.$thumbSrc.');border:0px" allowfullscreen></iframe>';

		
			if($thumb == 'tag')
			{
				return "<img class='img-responsive' src='".$thumbSrc."' alt='Youtube Video' style='width:".vartrue($parm['w'],'80')."px'/>";	
			}
			
			if($thumb == 'email')
			{
				$thumbSrc = "http://i1.ytimg.com/vi/".$id."/maxresdefault.jpg"; // 640 x 480
				$filename = 'temp/yt-thumb-'.md5($id).".jpg";
				$filepath = e_MEDIA.$filename;
				$url 	= 'http://youtu.be/'.$id;
				
				if(!file_exists($filepath))
				{
					e107::getFile()->getRemoteFile($thumbSrc, $filename,'media');	
				}
								
				return "<a href='".$url."'><img class='video-responsive video-thumbnail' src='{e_MEDIA}".$filename."' alt='Youtube Video' title='Click to view on Youtube' />
				<div class='video-thumbnail-caption'><small>Click to watch video</small></div></a>";	
			}
			
			if($thumb == 'src')
			{
				return $thumbSrc;
			}


			if($thumb == 'video')
			{
				return '<div class="'.$defClass.' video-thumbnail thumbnail">'.$video.'</div>';
			}
			
			return '<div class="'.$defClass.' '.vartrue($parm['class']).'">'.$video.'</div>';
		}


		if($type =='youtubepl')
		{

			if($thumb == 'tag')
			{
				$thumbSrc =  e107::getMedia()->getThumb($id);

				if(empty($thumbSrc))
				{
					$thumbSrc = e_IMAGE_ABS."generic/playlist_120.png";
				}
				return "<img class='img-responsive' src='".$thumbSrc."' alt='Youtube Video Playlist' style='width:".vartrue($parm['w'],'80')."px'/>";

			}

			if($thumb == 'src')
			{
				$thumb = e107::getMedia()->getThumb($id);
				if(!empty($thumb))
				{
					return $thumb;
				}
				else
				{
					// return "https://cdn0.iconfinder.com/data/icons/internet-2-2/64/youtube_playlist_videos_vid_web_online_internet-256.png";
					return e_IMAGE_ABS."generic/playlist_120.png";
				}
			}

			$video = '<iframe width="560" height="315" src="https://www.youtube.com/embed/videoseries?list='.$id.'" style="border:0" allowfullscreen></iframe>';
			return '<div class="'.$defClass.' '.vartrue($parm['class']).'">'.$video.'</div>';
		}
				
		if($type == 'mp4') //TODO FIXME 
		{
			return '
			<div class="video-responsive">
			<video width="320" height="240" controls>
			  <source src="'.$file.'" type="video/mp4">
		
			  Your browser does not support the video tag.
			</video>
			</div>';	
		}
		
		
		return false;
	}
	
	
	/**
	 * Display a Date in the browser. 
	 * Includes support for 'livestamp' (http://mattbradley.github.io/livestampjs/)
	 * @param integer $datestamp - unix timestamp
	 * @param string $format - short | long | relative 
	 * @return HTML with converted date. 
	 */
	public function toDate($datestamp = null, $format='short')
	{
		if(!is_numeric($datestamp)){ return null; }

		return '<span data-livestamp="'.$datestamp.'">'.e107::getDate()->convert($datestamp, $format).'</span>';	
	}
	

	/** 
	 * Parse new <bbcode> tags into bbcode output. 
	 * @param $retainTags : when you want to replace html and retain the <bbcode> tags wrapping it. 
	 * @return html 
	 */
	function parseBBTags($text,$retainTags = false)
	{
		$bbcodes = $this->getTags($text, 'bbcode');
			
		foreach($bbcodes as $v)
		{
			foreach($v as $val)
			{
				$tag = urldecode($val['alt']);
				$repl = ($retainTags == true) ? '$1'.$tag.'$2' : $tag;
				$text = preg_replace('/(<bbcode[^>]*>).*(<\/bbcode>)/s',$repl, $text); //FIXME - handle multiple instances of bbcodes. 
			}	
		}
		return $text;
	}


    /**
     * Perform and render XSS Test Comparison
     */
    public function test($text='',$advanced = false)
    {
      //  $tp = e107::getParser();
        $sql = e107::getDb();
        $tp = e107::getParser();

	    if(empty($text))
	    {
		    $text = <<<TMPL
[html]<p><strong>bold print</strong></p>
<pre class="prettyprint linenums">&lt;a href='#'&gt;Something&lt;/a&gt;</pre>
<p>Some text's and things.</p>
<p>&nbsp;</p>
<p><a href="/test.php?w=9&amp;h=12">link</a></p>
<p>日本語 简体中文</p>
<p>&nbsp;</p>
[/html]
TMPL;
	    }

	    //   $text .= '[code=inline]<b class="something">Something</b>[/code]日本語 ';

        // -------------------- Encoding ----------------

		$acc = $this->getScriptAccess();
		$accName = e107::getUserclass()->uc_get_classname($acc);

		echo "<h2>e107 Parser Test <small>with script access by <span class='label label-warning'>".$accName."</span></small></h2>";
		echo"<h3>User-input <small>(eg. from \$_POST)</small></h3>";

	    print_a($text);

	    $dbText = $tp->toDB($text,true);

		echo "<h3>User-input &gg; toDB() ";

		if($this->isHtml == true)
		{
			echo "<small>detected as <span class='label label-warning'>HTML</span></small>";
		}
		else
		{
			echo "<small>detected as <span class='label label-info'>Plain text</span></small>";
		}

		echo "</h3>";

	    print_a($dbText);


	    if(!empty($advanced))
	    {
			echo "<div class='alert alert-warning'>";
		    $dbText2 = $tp->toDB($text, true, false, 'no_html');
		    echo "<h3>User-input &gg; toDb(\$text, true, false, 'no_html')</h3>";
		    print_a($dbText2);

		    echo "<div class='alert alert-warning'>";
		    $dbText3 = $tp->toDB($text, false, false, 'pReFs');
		    echo "<h3>User-input &gg; toDb(\$text, false, false, 'pReFs')</h3>";
		    print_a($dbText3);

		   // toClean
		    $filter3 = $tp->filter($text, 'wds');
		    echo "<h3>User-input &gg; filter(\$text, 'wds')</h3>";
		    print_a( $filter3);

		    // Filter by String.
		    $filter1 = $tp->filter($text,'str');
		    echo "<h3>User-input &gg; filter(\$text, 'str')</h3>";
		    print_a($filter1);

		    // Filter by Encoded.
		    $filter2 = $tp->filter($text,'enc');
		    echo "<h3>User-input &gg; filter(\$text, 'enc')</h3>";
		    print_a($filter2);


		    // toAttribute
		    $toAtt = $tp->toAttribute($text);
		    echo "<h3>User-input &gg; toAttribute(\$text)</h3>";
		    print_a($toAtt);

		    // toEmail
		    $toEmail = $tp->toEmail($dbText);
		    echo "<h3>User-input &gg; toEmail(\$text) <small>from DB</small></h3>";
		    print_a($toEmail);

		    // toEmail
		    $toRss = $tp->toRss($text);
		    echo "<h3>User-input &gg; toRss(\$text)</h3>";
		    print_a($toRss);

		    echo "</div>";


	    }

	    echo "<h3>toDB() &gg; toHtml()</h3>";
		$html = $tp->toHtml($dbText,true);
	    print_a($html);

	    echo "<h3>toDB &gg; toHtml() <small>(rendered)</small></h3>";
	    echo $html;

	    echo "<h3>toDB &gg; toForm()</h3>";
		$toForm = $tp->toForm($dbText);
	    $toFormRender = e107::getForm()->open('test');
	    $toFormRender .= "<textarea cols='100' style='width:100%;height:300px' >".$toForm."</textarea>";
	    $toFormRender .= e107::getForm()->close();

		echo  $toFormRender;


		 echo "<h3>toDB &gg; bbarea</h3>";
	    echo e107::getForm()->bbarea('name',$toForm);

		if(!empty($advanced))
		{

			echo "<h3>Allowed Tags</h3>";
			print_a($this->allowedTags);


		    echo "<h3>Converted Paths</h3>";
		    print_a($this->pathList);

		    echo "<h3>Removed Tags and Attributes</h3>";
		    print_a($this->removedList);

		    echo "<h3>Nodes to Convert</h3>";
			print_a($this->nodesToConvert);

			  echo "<h3>Nodes to Disable SC</h3>";
			print_a($this->nodesToDisableSC);
		}

	    similar_text($text, html_entity_decode( $toForm, ENT_COMPAT, 'UTF-8'),$perc);
	    $scoreStyle = ($perc > 98) ? 'label-success' : 'label-danger';
	    echo "<h3><span class='label ".$scoreStyle."'>Similarity:  ".number_format($perc)."%</span></h3>";

		echo "<table class='table table-bordered'>


		<tr>
			<th style='width:50%'>User-input</th>
			<th style='width:50%'>toForm() output</th>
		</tr>
		<tr>
			<td>".print_a($text,true)."</td>
			<td>". $toFormRender."</td>
		</tr>

		</table>";
	  /*  <tr>
			<td>".print_a(json_encode($text),true)."</td>
			<td>". print_a(json_encode(html_entity_decode( $toForm, ENT_COMPAT, 'UTF-8')),true)."</td>
		</tr>*/

	//    print_a($text);

return;

//return;
        // ---------------------------------


		$html = $text;

        
      //  $html = $this->getXss();
                   
        echo "<h2>Unprocessed XSS</h2>";
        // echo $html; // Remove Comment for a real mess! 
        print_a($html);
 
        echo "<h2>Standard v2 Parser</h2>";
        echo "<h3>\$tp->dataFilter()</h3>";
        // echo $tp->dataFilter($html); // Remove Comment for a real mess! 
        $sql->db_Mark_Time('------ Start Parser Test -------');
        print_a($tp->dataFilter($html));
        $sql->db_Mark_Time('tp->dataFilter');
         
        echo "<h3>\$tp->toHtml()</h3>";
        // echo $tp->dataFilter($html); // Remove Comment for a real mess! 
        print_a($tp->toHTML($html));
        $sql->db_Mark_Time('tp->toHtml');     
        
        echo "<h3>\$tp->toDB()</h3>";
        // echo $tp->dataFilter($html); // Remove Comment for a real mess!
        $todb = $tp->toDB($html);
        print_a( $todb);
        $sql->db_Mark_Time('tp->toDB');

	    echo "<h3>\$tp->toForm() with toDB input.</h3>";
       print_a( $tp->toForm($todb));
        
        echo "<h2>New Parser</h2>"; 
        echo "<h3>Processed</h3>";
        $cleaned = $this->cleanHtml($html, true);  // false = don't check html pref.
        print_a($cleaned);
        $sql->db_Mark_Time('new Parser');    
      //  $sql->db_Mark_Time('------ End Parser Test -------');
        echo "<h3>Processed &amp; Rendered</h3>";
        echo $cleaned;
        
        echo "<h2>New Parser - Data</h2>"; 
        echo "<h3>Converted Paths</h3>";
        print_a($this->pathList);
                   
        echo "<h3>Removed Tags and Attributes</h3>";
        print_a($this->removedList);
        
         //   print_a($p); 
    }


	/**
	 * Filters/Validates using the PHP5 filter_var() method.
	 * @param $text
	 * @param $type string str|int|email|url|w|wds
	 * @return string | boolean
	 */
	function filter($text, $type='str',$validate=false)
	{
		if(empty($text))
		{
			return $text;
		}

		if($type == 'w') // words only.
		{
			return preg_replace('/[^\w]/',"",$text);
		}

		if($type == 'wds') // words, digits and spaces only.
		{
			return preg_replace('/[^\w\d ]/',"",$text);
		}

		if($type == 'file')
		{
			return preg_replace('/[^\w\d_\.-]/',"",$text);
		}


		if($validate == false)
		{
			$filterTypes = array(
				'int'   => FILTER_SANITIZE_NUMBER_INT,
				'str'   => FILTER_SANITIZE_STRING, // no html.
				'email' => FILTER_SANITIZE_EMAIL,
				'url'   => FILTER_SANITIZE_URL,
				'enc'   => FILTER_SANITIZE_ENCODED
			);
		}
		else
		{
			$filterTypes = array(
				'int'   => FILTER_VALIDATE_INT,
				'email' => FILTER_VALIDATE_EMAIL,
				'ip'    => FILTER_VALIDATE_IP,
				'url'   => FILTER_VALIDATE_URL,

			);
		}

		if(is_array($text))
		{
			return filter_var_array($text, $filterTypes[$type]);
		}


		return filter_var($text, $filterTypes[$type]);

	}


    /**
     * Process and clean HTML from user input.
     * TODO Html5 tag support.
     * @param string $html raw HTML
     * @param boolean $checkPref
     * @return string
     */
    public function cleanHtml($html='', $checkPref = true)
    {
        if(empty($html)){ return ''; }

		$html = str_replace('&nbsp;', '@nbsp;', $html); // prevent replacement of &nbsp; with spaces.


        if(strpos($html, "<body")===false) // HTML Fragment
		{
       		$html = '<?xml version="1.0" encoding="utf-8"?><!DOCTYPE html><html><head><meta charset="utf-8"></head><body>'.$html.'</body></html>'; 
		}
		else  // Full HTML page. 
		{
		//	$this->allowedTags[] = 'head';
		//	$this->allowedTags[] = 'body';
		//	$this->allowedTags[] = 'title';
			//$this->allowedTags[] = 'meta';
		}
         
		if(!is_object($this->domObj))
		{
			$this->init();	
		}

		if($this->scriptAccess === false)
		{
	        $this->scriptAccess = e107::getConfig()->get('post_script', e_UC_MAINADMIN); // Pref to Allow <script> tags11;
		}

		if(check_class($this->scriptAccess))
        {
            $this->allowedTags = array_merge($this->allowedTags, $this->scriptTags);
        }

		
        // Set it up for processing.
	//    libxml_use_internal_errors(true); // hides errors.
        $doc  = $this->domObj;
	    libxml_use_internal_errors(true);
    //    @$doc->loadHTML($html);
	    if(function_exists('mb_convert_encoding'))
	    {
			$html = mb_convert_encoding($html, 'HTML-ENTITIES', "UTF-8");
	    }

		@$doc->loadHTML($html);

		// $doc->encoding = 'UTF-8';

     //   $doc->resolveExternals = true;
        
    //    $tmp = $doc->getElementsByTagName('*');   
    
       	$this->nodesToConvert 	= array(); // required. 
		$this->nodesToDelete 	= array(); // required. 
		$this->removedList		= array();

		$tmp = $doc->getElementsByTagName('*');

        /** @var DOMElement $node */
        foreach($tmp as $node)
        {
            $path = $node->getNodePath();

		//	echo "<br />Path = ".$path;
        //   $tag = strval(basename($path));


	        if(strpos($path,'/code') !== false || strpos($path,'/pre') !== false) //  treat as html.
            {
                $this->pathList[] = $path;
            //     $this->nodesToConvert[] =  $node->parentNode; // $node;
                $this->nodesToDisableSC[] = $node;
                continue;
            }


            $tag = preg_replace('/([a-z0-9\[\]\/]*)?\/([\w]*)(\[(\d)*\])?$/i', "$2", $path);
            if(!in_array($tag, $this->allowedTags))
            {

                $this->removedList['tags'][] = $tag;
                $this->nodesToDelete[] = $node; 
                continue;
            }

            foreach ($node->attributes as $attr)
            {
                $name = $attr->nodeName;
                $value = $attr->nodeValue;

                $allow = varset($this->allowedAttributes[$tag], $this->allowedAttributes['default']);
                $removeAttributes = array();

                if(!in_array($name, $allow))
                {
                    $removeAttributes[] = $name;
                    //$node->removeAttribute($name);
                    $this->removedList['attributes'][] = $name. " from <".$tag.">";
                    continue;
                }

                if($this->invalidAttributeValue($value)) // Check value against blacklisted values.
                {
					//$node->removeAttribute($name);
                    $node->setAttribute($name, '#---sanitized---#');
					$this->removedList['sanitized'][] = $tag.'['.$name.']';    
                }
                else
                {
                    $_value = $this->secureAttributeValue($name, $value);

                    $node->setAttribute($name, $_value);
                    if($_value !== $value)
                    {
                        $this->removedList['sanitized'][] = $tag.'['.$name.'] converted "'.$value.'" -> "'.$_value.'"';
                    }
                }
            }

            // required - removing attributes in a loop breaks the loop
            if(!empty($removeAttributes))
            {
	            foreach ($removeAttributes as $name)
	            {
	                $node->removeAttribute($name);
	            }
            }


        }
        
        // Remove some stuff. 
        foreach($this->nodesToDelete as $node)
        {
            $node->parentNode->removeChild($node);
        }  

		// Disable Shortcodes in pre/code

       foreach($this->nodesToDisableSC as $key => $node)
       {
		    $value = $node->C14N();

		    if(empty($value))
		    {
		        continue;
		    }

		    $value = str_replace("&#xD;", "\r", $value);

		    if($node->nodeName == 'pre')
		    {
		        $value = preg_replace('/^<pre[^>]*>/', '', $value);
		        $value = str_replace("</pre>", "", $value);
		        $value = str_replace('<br></br>', PHP_EOL, $value);
		    }

		    if($node->nodeName == 'code')
		    {
		        $value = preg_replace('/^<code[^>]*>/', '', $value);
		        $value = str_replace("</code>", "", $value);
		        $value = str_replace("<br></br>", PHP_EOL, $value);
		    }

		    $value = str_replace('{', '{{{', $value); // temporarily change {e_XXX} to {{{e_XXX}}}
		    $value = str_replace('}', '}}}', $value); // temporarily change {e_XXX} to {{{e_XXX}}}

		    $newNode = $doc->createElement($node->nodeName);
		    $newNode->nodeValue = $value;

		    $node->parentNode->replaceChild($newNode, $node);
       }


        // Convert <code> and <pre> Tags to Htmlentities.
        /* TODO XXX Still necessary? Perhaps using bbcodes only?
        foreach($this->nodesToConvert as $node)  
        {
            $value = $node->C14N();

            $value = str_replace("&#xD;","",$value);

        //    print_a("WOWOWO");
            
            if($node->nodeName == 'pre')
            {
                $value = substr($value,5);
                $end = strrpos($value,"</pre>");
                $value = substr($value,0,$end);
            }
            
            if($node->nodeName == 'code')
            {
                $value = substr($value,6);
                $end = strrpos($value,"</code>");
                $value = substr($value,0,$end);
            }
            
            $value = htmlentities(htmlentities($value)); // Needed
            $node->nodeValue = $value;
        }
		*/

        $cleaned = $doc->saveHTML($doc->documentElement); // $doc->documentElement fixes utf-8/entities issue. @see http://stackoverflow.com/questions/8218230/php-domdocument-loadhtml-not-encoding-utf-8-correctly

		$cleaned = str_replace('@nbsp;', '&nbsp;',  $cleaned); // prevent replacement of &nbsp; with spaces. - convert back.


		$cleaned = str_replace('{{{','&#123;', $cleaned); // convert shortcode temporary triple-curly braces back to entities.
         $cleaned = str_replace('}}}','&#125;', $cleaned); // convert shortcode temporary triple-curly braces back to entities.

        $cleaned = str_replace(array('<body>','</body>','<html>','</html>','<!DOCTYPE html>','<meta charset="UTF-8">','<?xml version="1.0" encoding="utf-8"?>'),'',$cleaned); // filter out tags. 


     //   $cleaned = html_entity_decode($cleaned, ENT_QUOTES, 'UTF-8');
        
        return trim($cleaned);
    }

    public function secureAttributeValue($attribute, $value)
    {
        $search = isset($this->replaceAttrValues[$attribute]) ? $this->replaceAttrValues[$attribute] : $this->replaceAttrValues['default'];
        if(!empty($search))
        {
            $value = str_replace($search, '', $value);
        }
        return $value;
    }
 
 
    /**
     * Check for Invalid Attribute Values
     * @param $value string
     * @return true/false
     */   
    function invalidAttributeValue($value)
    {
    	
    	
        foreach($this->badAttrValues as $v) // global list because a bad value is bad regardless of the attribute it's in. ;-)
        {
            if(preg_match('/'.$v.'/i',$value)==true)
            {
				$this->removedList['blacklist'][]	= "Match found for '{$v}' in '{$value}'";
            	
                return true;    
            }   
            
        }
        
        return false;    
    }   
    
       
    /**
     * XSS HTML code to test against
     */
    public function getXss()
    {

$html = <<<EOF
Internationalization Test: 
ภาษาไทย <br />
日本語 <br />
简体中文 <br />
<a href='somewhere.html' src='invalidatrribute' >Test</a>
A GOOD LINK: <a href='http://mylink.php'>Some Link</a>
<a href='javascript: something' src='invalidatrribute' >Test regex</a>
<img href='invalidattribute' src='myimage.jpg' />
<frameset onload=alert(1) data-something=where>
<table background="javascript:alert(1)"><tr><td><a href="something.php" onclick="alert(1)">Hi there</a></td></tr></table>
<div>
<!--<img src="--><img src=x onerror=alert(1)//">
<comment><img src="</comment><img src=x onerror=alert(1)//">
<ul>
<li style=list-style:url() onerror=alert(1)></li> <div style=content:url(data:image/svg+xml,%3Csvg/%3E);visibility:hidden onload=alert(1)></div>
</ul>
</div>
</frameset>
<head><base href="javascript://"/></head><body><a href="/. /,alert(1)//#">XXX</a></body>
<SCRIPT FOR=document EVENT=onreadystatechange>alert(1)</SCRIPT>
<OBJECT CLASSID="clsid:333C7BC4-460F-11D0-BC04-0080C7055A83"><PARAM NAME="DataURL" VALUE="javascript:alert(1)"></OBJECT>
<b <script>alert(1)//</script>0</script></b>
<div id="div1"><input value="``onmouseover=alert(1)"></div> <div id="div2"></div><
script>document.getElementById("div2").innerHTML = document.getElementById("div1").innerHTML;</script>
Some example text<br />
<b>This is bold</b><br />
<i>This is italic</i><br />
<small>Some small text</small>
<pre>This is pre-formatted
        <script>alert('something')</script>
        <b>Bold Stuff</b>
        <pre>something</pre>
        <code>code</code>
        <b>BOLD</b>
        function myfunction()
        {
            
        }
 </pre>
<code>
        function myfunction()
        {
            
        }

<script>alert('something')</script>
</code>
<svg><![CDATA[><image xlink:href="]]><img src=xx:x onerror=alert(2)//"></svg>
<style><img src="</style><img src=x onerror=alert(1)//">
<x '="foo"><x foo='><img src=x onerror=alert(1)//'> <!-- IE 6-9 --> <! '="foo"><x foo='><img src=x onerror=alert(2)//'> <? '="foo"><x foo='><img src=x onerror=alert(3)//'>
<embed src="javascript:alert(1)"></embed> // O10.10↓, OM10.0↓, GC6↓, FF <img src="javascript:alert(2)"> <image src="javascript:alert(2)"> // IE6, O10.10↓, OM10.0↓ <script src="javascript:alert(3)"></script> // IE6, O11.01↓, OM10.1↓
<div style=width:1px;filter:glow onfilterchange=alert(1)>x</div>
<object allowscriptaccess="always" data="test.swf"></object>
[A] <? foo="><script>alert(1)</script>"> <! foo="><script>alert(1)</script>"> </ foo="><script>alert(1)</script>"> [B] <? foo="><x foo='?><script>alert(1)</script>'>"> [C] <! foo="[[[x]]"><x foo="]foo><script>alert(1)</script>"> [D] <% foo><x foo="%><script>alert(1)</script>">
<iframe src=mhtml:http://html5sec.org/test.html!xss.html></iframe> <iframe src=mhtml:http://html5sec.org/test.gif!xss.html></iframe>
<html> <body> <b>some content without two new line \n\n</b> Content-Type: multipart/related; boundary="******"<b>some content without two new line</b> --****** Content-Location: xss.html Content-Transfer-Encoding: base64 PGlmcmFtZSBuYW1lPWxvIHN0eWxlPWRpc3BsYXk6bm9uZT48L2lmcmFtZT4NCjxzY3JpcHQ+DQp1 cmw9bG9jYXRpb24uaHJlZjtkb2N1bWVudC5nZXRFbGVtZW50c0J5TmFtZSgnbG8nKVswXS5zcmM9 dXJsLnN1YnN0cmluZyg2LHVybC5pbmRleE9mKCcvJywxNSkpO3NldFRpbWVvdXQoImFsZXJ0KGZy YW1lc1snbG8nXS5kb2N1bWVudC5jb29raWUpIiwyMDAwKTsNCjwvc2NyaXB0PiAgICAg --******-- </body> </html>
<!-- IE 5-9 --> <div id=d><x xmlns="><iframe onload=alert(1)"></div> <script>d.innerHTML+='';</script> <!-- IE 10 in IE5-9 Standards mode --> <div id=d><x xmlns='"><iframe onload=alert(2)//'></div> <script>d.innerHTML+='';</script>
<img[a][b]src=x[d]onerror[c]=[e]"alert(1)">
<a href="[a]java[b]script[c]:alert(1)">XXX</a>
<img src="x` `<script>alert(1)</script>"` `>
<img src onerror /" '"= alt=alert(1)//">
<title onpropertychange=alert(1)></title><title title=></title>
<!-- IE 5-8 standards mode --> <a href=http://foo.bar/#x=`y></a><img alt="`><img src=xx:x onerror=alert(1)></a>"> <!-- IE 5-9 standards mode --> <!a foo=x=`y><img alt="`><img src=xx:x onerror=alert(2)//"> <?a foo=x=`y><img alt="`><img src=xx:x onerror=alert(3)//">
<!--[if]><script>alert(1)</script --> <!--[if<img src=x onerror=alert(2)//]> -->
<script> Blabla </script>
<script src="/\example.com\foo.js"></script> // Safari 5.0, Chrome 9, 10 <script src="\\example.com\foo.js"></script> // Safari 5.0
<object id="x" classid="clsid:CB927D12-4FF7-4a9e-A169-56E4B8A75598"></object> <object classid="clsid:02BF25D5-8C17-4B23-BC80-D3488ABDDC6B" onqt_error="alert(1)" style="behavior:url(#x);"><param name=postdomevents /></object>
<!-- `<img/src=xx:xx onerror=alert(1)//--!>
<xmp> <% </xmp> <img alt='%></xmp><img src=xx:x onerror=alert(1)//'> <script> x='<%' </script> %>/ alert(2) </script> XXX <style> *['<!--']{} </style> -->{} *{color:red}</style>
<a style="-o-link:'javascript:alert(1)';-o-link-source:current">X</a>
<style>p[foo=bar{}*{-o-link:'javascript:alert(1)'}{}*{-o-link-source:current}*{background:red}]{background:green};</style>
<div style="font-family:'foo[a];color:red;';">XXX</div>
<form id="test"></form><button form="test" formaction="javascript:alert(1)">X</button>
<input onfocus=write(1) autofocus>
<video poster=javascript:alert(1)//></video>
<video>somemovei.mp4</video>
<body onscroll=alert(1)><br><br><br><br><br><br>...<br><br><br><br><input autofocus>

<article id="something">Some text goes here</article>


EOF;

return $html;            
            
    }
        
    
}


class e_emotefilter
{
	private $search         = array();
	private $replace        = array();
	public $emotes;
	private $singleSearch   = array();
	private $singleReplace  = array();
	 
	function __construct()
	{		
		$pref = e107::getPref();
		
		if(empty($pref['emotepack']))
		{	
			$pref['emotepack'] = "default";
			e107::getConfig('emote')->clearPrefCache('emote');
			e107::getConfig('core')->set('emotepack','default')->save(false,true,false);
		}

		$this->emotes = e107::getConfig("emote")->getPref();

		if(empty($this->emotes))
		{
			return;
		}

		foreach($this->emotes as $key => $value)
		{

		  $value = trim($value);

		  if ($value)
		  {	// Only 'activate' emote if there's a substitution string set


			$key = preg_replace("#!(\w{3,}?)$#si", ".\\1", $key);
			// Next two probably to sort out legacy issues - may not be required any more
		//	$key = preg_replace("#_(\w{3})$#", ".\\1", $key);

			  $key = str_replace("!", "_", $key);

			  $filename = e_IMAGE."emotes/" . $pref['emotepack'] . "/" . $key;
			  
			  $fileloc = SITEURLBASE.e_IMAGE_ABS."emotes/" . $pref['emotepack'] . "/" . $key;

			  $alt = str_replace(array('.png','.gif', '.jpg'),'', $key);

			  if(file_exists($filename))
			  {
			        $tmp = explode(" ", $value);
					foreach($tmp as $code)
					{
						$img                = "<img class='e-emoticon' src='".$fileloc."' alt=\"".$alt."\"  />";

				        $this->search[]     = "\n".$code;
				        $this->replace[]    = "\n".$img;

						$this->search[]     = " ".$code;
				        $this->replace[]    = " ".$img;

				        $this->search[]     = ">".$code; // Fix for emote within html.
				        $this->replace[]    = ">".$img;

				        $this->singleSearch[] = $code;
				        $this->singleReplace[] = $img;

					}


			  /*
				if(strstr($value, " "))
				{
					$tmp = explode(" ", $value);
					foreach($tmp as $code)
					{
						$this->search[] = " ".$code;
						$this->search[] = "\n".$code;

						$this->replace[] = " <img class='e-emoticon' src='".$fileloc."' alt=\"".$alt."\"  /> ";
						$this->replace[] = "\n <img class='e-emoticon' src='".$fileloc."'alt=\"".$alt."\"   /> ";
					}
					unset($tmp);
				}
				else
				{
					if($value)
					{
						$this->search[] = " ".$value;
						$this->search[] = "\n".$value;

						$this->replace[] = " <img class='e-emoticon' src='".$fileloc."' alt=\"".$alt."\"   /> ";
						$this->replace[] = "\n <img class='e-emoticon' src='".$fileloc."' alt=\"".$alt."\"   /> ";
					}
				}*/
			  }
		  }
		  else
		  {
			unset($this->emotes[$key]);
		  }


		}

	//	print_a($this->regSearch);
	//	print_a($this->regReplace);

	}


	function filterEmotes($text)
	{

		if(empty($text))
		{
			return '';
		}

		if(!empty($this->singleSearch) && (strlen($text) < 12) && in_array($text, $this->singleSearch)) // just one emoticon with no space, line-break or html tags around it.
		{
			return str_replace($this->singleSearch,$this->singleReplace,$text);
		}

		return str_replace($this->search, $this->replace, $text);

	}

	 
	function filterEmotesRev($text)
	{
		return str_replace($this->replace, $this->search, $text);
	}
}


class e_profanityFilter 
{
	var $profanityList;

	function __construct()
	{
		global $pref;

		$words = explode(",", $pref['profanity_words']);
        $word_array = array();
		foreach($words as $word) 
		{
			$word = trim($word);
			if($word != "")
			{
				$word_array[] = $word;
				if (strpos($word, '&#036;') !== FALSE)
				{
					$word_array[] = str_replace('&#036;', '\$', $word);		// Special case - '$' may be 'in clear' or as entity
				}
			}
		}
		if(count($word_array))
		{
			$this->profanityList = str_replace('#','\#',implode("\b|\b", $word_array));		// We can get entities in the string - confuse the regex delimiters
		}
		unset($words);
		return TRUE;
	}

	function filterProfanities($text) 
	{
		global $pref;
		if (!$this->profanityList) 
		{
			return $text;
		}
		if ($pref['profanity_replace']) 
		{
			return preg_replace("#\b".$this->profanityList."\b#is", $pref['profanity_replace'], $text);
		} 
		else 
		{
			return preg_replace_callback("#\b".$this->profanityList."\b#is", array($this, 'replaceProfanities'), $text);
		}
	}

	function replaceProfanities($matches) 
	{
		/*!
		@function replaceProfanities callback
		@abstract replaces vowels in profanity words with stars
		@param text string - text string to be filtered
		@result filtered text
		*/

		return preg_replace("#a|e|i|o|u#i", "*" , $matches[0]);
	}
}
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+								<?php
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+								/*
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+								* e107 website system
 								*
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+								* Copyright (C) 2008-2011 e107 Inc (e107.org)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+								* Released under the terms and conditions of the
 								* GNU General Public License (http://www.gnu.org/licenses/gpl.txt)
 								*
 								* Text processing and parsing functions
 								*
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+								* $URL$
 								* $Id$
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+								*
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+								*/
-												e_parse: phpDoc header added, e_vars class modifications (improvements and fixes) and phpDoc


											
										
										
											2010-01-24 12:05:53 +00:00
 								/**
 								 * @package e107
-												Doc - Update subpackage to be consistent

											
										
										
											2010-11-15 21:45:02 +00:00
+								 * @subpackage e107_handlers
-												svn keywords added (v0.8)

											
										
										
											2010-02-10 18:18:01 +00:00
+								 * @version $Id$
-												Simple parse via parseTemplate added, small improvements

											
										
										
											2010-02-19 15:10:40 +00:00
+								 *
 								 * Text processing and parsing functions.
-												e_parse: phpDoc header added, e_vars class modifications (improvements and fixes) and phpDoc


											
										
										
											2010-01-24 12:05:53 +00:00
+								 * Simple parse data model.
 								 */
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+								if (!defined('e107_INIT')) { exit(); }
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+								// Directory for the hard-coded utf-8 handling routines
 								define('E_UTF8_PACK', e_HANDLER.'utf8/');
 								define("E_NL", chr(2));
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								class e_parse extends e_parser
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+								{
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									/**
 									 * Determine how to handle utf-8.
 									 *    0 = 'do nothing'
 									 *    1 = 'use mb_string'
 									 *    2 = emulation
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @var integer
 									 */
 									protected $utfAction;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+									// Shortcode processor - see __get()
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									//var $e_sc;
 									// BBCode processor
 									var $e_bb;
 									// Profanity filter
 									var $e_pf;
 									// Emote filter
 									var $e_emote;
 									// 'Hooked' parsers (array)
 									var $e_hook;
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+									var $search = array('&amp;#039;', '&#039;', '&#39;', '&quot;', 'onerror', '&gt;', '&amp;quot;', ' & ');
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+									var $replace = array("'", "'", "'", '"', 'one<i></i>rror', '>', '"', ' &amp; ');
-												remove incompatible hook= code; replace w/ new support for "SuperModifiers" as designed
 by team


											
										
										
											2007-01-20 16:19:43 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									// Set to TRUE or FALSE once it has been calculated
 									var $e_highlighting;
 									// Highlight query
 									var $e_query;
-												New {SETIMAGE} shortcode for theme developers. Using this prior to a media-manager image being called will allow one to set the default size for the image (ie. when not specified otherwise). eg. {SETIMAGE|w=293} will set the width of the images to 293px.

											
										
										
											2013-03-08 20:16:49 -08:00
 									public $thumbWidth = 100;
-												{SETIMAGE} can now set Height and also crop the image. eg. {SETIMAGE: w=300&h=200&crop=1}

											
										
										
											2013-03-24 03:03:31 -07:00
 									public $thumbHeight = 0;
-												Fix for google-plus icon on Social plugin. {EXTENDED} may now have a class added. Debug info added when Featurebox returns nothing.

											
										
										
											2014-01-29 11:10:05 -08:00
 									public $thumbCrop = 0;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+									private $thumbEncode = 0;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									// Set up the defaults
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									var $e_optDefault = array(
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// default context: reflects legacy settings (many items enabled)
 										'context' 		=> 'OLDDEFAULT',
 										//
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										'fromadmin' 	=> FALSE,
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
 										// Enable emote display
 										'emotes'		=> TRUE,
 										// Convert defines(constants) within text.
 										'defs' 			=> FALSE,
 										// replace all {e_XXX} constants with their e107 value - 'rel' or 'abs'
 										'constants' 	=> FALSE,
 										// Enable hooked parsers
 										'hook'			=> TRUE,
 										// Allow scripts through (new for 0.8)
 										'scripts'		=> TRUE,
 										// Make links clickable
 										'link_click'	=> TRUE,
 										// Substitute on clickable links (only if link_click == TRUE)
 										'link_replace'	=> TRUE,
 										// Parse shortcodes - TRUE enables parsing
 										'parse_sc' 		=> FALSE,
 										// remove HTML tags.
 										'no_tags' 		=> FALSE,
 										// Restore entity form of quotes and such to single characters - TRUE disables
 										'value'			=> FALSE,
 										// Line break compression - TRUE removes newline characters
 										'nobreak' 		=> FALSE,
 										// Retain newlines - wraps to \n instead of <br /> if TRUE (for non-HTML email text etc)
 										'retain_nl' 	=> FALSE
-												remove incompatible hook= code; replace w/ new support for "SuperModifiers" as designed
 by team


											
										
										
											2007-01-20 16:19:43 +00:00
+										);
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									// Super modifiers override default option values
-												remove incompatible hook= code; replace w/ new support for "SuperModifiers" as designed
 by team


											
										
										
											2007-01-20 16:19:43 +00:00
+									var	$e_SuperMods = array(
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												//text is part of a title (e.g. news title)
 												'TITLE' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE
 														),
-												More BC Fixes. Search, and News Category titles.

											
										
										
											2014-01-20 10:21:44 -08:00
+												'TITLE_PLAIN' =>
 													array(
 														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE, 'no_tags' => TRUE
 														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												//text is user-entered (i.e. untrusted) and part of a title (e.g. forum title)
 												'USER_TITLE' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'scripts' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE
 														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is 'body' of email or similar - being sent 'off-site' so don't rely on server availability
 												'E_TITLE' =>
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													array(
 														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'defs'=>TRUE, 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is part of the summary of a longer item (e.g. content summary)
 												'SUMMARY' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+														'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is the description of an item (e.g. download, link)
 												'DESCRIPTION' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+														'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is 'body' or 'bulk' text (e.g. custom page body, content body)
 												'BODY' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+														'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														),
-												Plugin Addons: e_tohtml.php deprecated in favor of new e_parse.php addon file. TinyMce now disables plugin hooks during parsing.

											
										
										
											2016-08-01 12:58:03 -07:00
+												// text is parsed by the Wysiwyg editor. eg. TinyMce
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
+												'WYSIWYG' =>
 													array(
-												Plugin Addons: e_tohtml.php deprecated in favor of new e_parse.php addon file. TinyMce now disables plugin hooks during parsing.

											
										
										
											2016-08-01 12:58:03 -07:00
+															'hook' => false, 'link_click' => false, 'link_replace' => false, 'retain_nl' => true
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is user-entered (i.e. untrusted)'body' or 'bulk' text (e.g. custom page body, content body)
 												'USER_BODY' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Issue #258 - Should help back-slashes issue

											
										
										
											2013-05-07 03:44:12 -07:00
+														'constants'=>'full', 'scripts' => FALSE, 'nostrip'=>FALSE
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is 'body' of email or similar - being sent 'off-site' so don't rely on server availability
 												'E_BODY' =>
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													array(
-												Next mailer update


											
										
										
											2009-11-16 20:40:39 +00:00
+														'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE
 														),
 												// text is text-only 'body' of email or similar - being sent 'off-site' so don't rely on server availability
 												'E_BODY_PLAIN' =>
 													array(
 														'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE, 'retain_nl' => TRUE, 'no_tags' => TRUE
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is the 'content' of a link (A tag, etc)
 												'LINKTEXT' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is used (for admin edit) without fancy conversions or html.
 												'RAWTEXT' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE, 'no_tags'=>TRUE
-												remove incompatible hook= code; replace w/ new support for "SuperModifiers" as designed
 by team


											
										
										
											2007-01-20 16:19:43 +00:00
+														)
 										);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									// Individual modifiers change the current context
 									var $e_Modifiers = array(
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+												'emotes_off'	=> array('emotes' => FALSE),
 												'emotes_on'		=> array('emotes' => TRUE),
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+												'no_hook'		=> array('hook' => FALSE),
 												'do_hook'		=> array('hook' => TRUE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// New for 0.8
 												'scripts_off'	=> array('scripts' => FALSE),
 												// New for 0.8
 												'scripts_on'	=> array('scripts' => TRUE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												'no_make_clickable' => array('link_click' => FALSE),
 												'make_clickable' => array('link_click' => TRUE),
 												'no_replace' 	=> array('link_replace' => FALSE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Replace text of clickable links (only if make_clickable option set)
 												'replace' 		=> array('link_replace' => TRUE),
 												// No path replacement
 												'consts_off'	=> array('constants' => FALSE),
 												// Relative path replacement
 												'consts_rel'	=> array('constants' => 'rel'),
 												// Absolute path replacement
 												'consts_abs'	=> array('constants' => 'abs'),
-												Mailer next update - inline files should work


											
										
										
											2009-11-17 20:34:50 +00:00
+												// Full path replacement
 												'consts_full'	=> array('constants' => 'full'),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// No shortcode parsing
 												'scparse_off'	=> array('parse_sc'	=> FALSE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												'scparse_on'	=> array('parse_sc'	=> TRUE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Strip tags
 												'no_tags' 		=> array('no_tags' 	=> TRUE),
 												// Leave tags
 												'do_tags' 		=> array('no_tags' 	=> FALSE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												'fromadmin'		=> array('fromadmin' => TRUE),
 												'notadmin'		=> array('fromadmin' => FALSE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// entity replacement
 												'er_off'		=> array('value' => FALSE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												'er_on'			=> array('value' => TRUE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Decode constant if exists
 												'defs_off'		=> array('defs' => FALSE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												'defs_on'		=> array('defs' => TRUE),
-												EONE-73 (bug): Sense of nobreak wrong

											
										
										
											2010-04-07 19:08:02 +00:00
+												'dobreak'		=> array('nobreak' => FALSE),
 												'nobreak'		=> array('nobreak' => TRUE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Line break using \n
 												'lb_nl'			=> array('retain_nl' => TRUE),
 												// Line break using <br />
 												'lb_br'			=> array('retain_nl' => FALSE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
 												// Legacy option names below here - discontinue later
 												'retain_nl'		=> array('retain_nl' => TRUE),
 												'defs'			=> array('defs' => TRUE),
 												'parse_sc'		=> array('parse_sc'	=> TRUE),
 												'constants'		=> array('constants' => 'rel'),
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
+												'value'			=> array('value' => TRUE),
 												'wysiwyg'		=> array('wysiwyg'=>TRUE)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										);
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+									/**
 									 * Constructor - keep it public for backward compatibility
 									 still some new e_parse() in the core
 									 *
 									 */
 									public function __construct()
-												remove incompatible hook= code; replace w/ new support for "SuperModifiers" as designed
 by team


											
										
										
											2007-01-20 16:19:43 +00:00
+									{
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+										// initialise the type of UTF-8 processing methods depending on PHP version and mb string extension
-												Email template simplification

											
										
										
											2016-05-20 15:04:51 -07:00
+										parent::__construct();
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+										$this->init();
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+										$this->initCharset();
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Preprocess the supermods to be useful default arrays with all values
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+										foreach ($this->e_SuperMods as $key => $val)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											// precalculate super defaults
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+											$this->e_SuperMods[$key] = array_merge($this->e_optDefault , $this->e_SuperMods[$key]);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$this->e_SuperMods[$key]['context'] = $key;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										}
-												Initialise shortcode handler later than main parser - requires that $pref is valid, otherwise shortcodes from plugins not loaded. Needs review of best way to do it


											
										
										
											2007-12-30 16:54:31 +00:00
+									}
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+									/**
 									 * Initialise the type of UTF-8 processing methods depending on PHP version and mb string extension.
 									 *
 									 * NOTE: can't be called until CHARSET is known
 									 but we all know that it is UTF-8 now
 									 *
 									 * @return void
 									 */
 									private function initCharset()
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
 										// Start by working out what, if anything, we do about utf-8 handling.
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// 'Do nothing' is the simple option
 										$this->utfAction = 0;
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+								// CHARSET is utf-8
 								//		if(strtolower(CHARSET) == 'utf-8')
 								//		{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											if(version_compare(PHP_VERSION, '6.0.0') < 1)
 											{
 												// Need to do something here
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												if(extension_loaded('mbstring'))
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+												{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// Check for function overloading
 													$temp = ini_get('mbstring.func_overload');
 													// Just check the string functions - will be non-zero if overloaded
 													if(($temp & MB_OVERLOAD_STRING) == 0)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														// Can use the mb_string routines
 														$this->utfAction = 1;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// Set the default encoding, so we don't have to specify every time
 													mb_internal_encoding('UTF-8');
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												}
 												else
 												{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// Must use emulation - will probably be slow!
 													$this->utfAction = 2;
-												Fixes #882 - White screen caused by "PHP Fatal error: Cannot redeclare utf8_to_unicode() "

											
										
										
											2015-02-11 22:46:20 -08:00
+													require_once(E_UTF8_PACK.'utils/unicode.php');
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// Always load the core routines - bound to need some of them!
-												Fixes #882 - White screen caused by "PHP Fatal error: Cannot redeclare utf8_to_unicode() "

											
										
										
											2015-02-11 22:46:20 -08:00
+													require_once(E_UTF8_PACK.'native/core.php');
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+												}
 											}
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+								//		}
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									}
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/strlen strlen PHP function.
 									 * Returns the length of the given string.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $str The UTF-8 encoded string being measured for length.
 									 * @return integer The length (amount of UTF-8 characters) of the string on success, and 0 if the string is empty.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function ustrlen($str)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											case 0:
 												return strlen($str);
 											case 1:
 												return mb_strlen($str);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										}
 										// Default case shouldn't happen often
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// Save a call - invoke the function directly
 										return strlen(utf8_decode($str));
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									}
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/strtolower strtolower PHP function.
 									 * Make a string lowercase.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $str The UTF-8 encoded string to be lowercased.
 									 * @return string Specified string with all alphabetic characters converted to lowercase.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function ustrtolower($str)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											case 0:
 												return strtolower($str);
 											case 1:
 												return mb_strtolower($str);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										}
 										// Default case shouldn't happen often
 										return utf8_strtolower($str);
 									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/strtoupper strtoupper PHP function.
 									 * Make a string uppercase.
 									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $str The UTF-8 encoded string to be uppercased.
 									 * @return string Specified string with all alphabetic characters converted to uppercase.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function ustrtoupper($str)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											case 0:
 												return strtoupper($str);
 											case 1:
 												return mb_strtoupper($str);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										}
 										// Default case shouldn't happen often
 										return utf8_strtoupper($str);
 									}
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/strpos strpos PHP function.
 									 * Find the position of the first occurrence of a case-sensitive UTF-8 encoded string.
 									 * Returns the numeric position (offset in amount of UTF-8 characters)
 									 *  of the first occurrence of needle in the haystack string.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $haystack The UTF-8 encoded string being searched in.
 									 * @param integer $needle The UTF-8 encoded string being searched for.
 									 * @param integer $offset [optional] The optional offset parameter allows you to specify which character in haystack to start searching.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 * 				 The position returned is still relative to the beginning of haystack.
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @return integer|boolean Returns the position as an integer. If needle is not found, the function will return boolean FALSE.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function ustrpos($haystack, $needle, $offset = 0)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											case 0:
 												return strpos($haystack, $needle, $offset);
 											case 1:
 												return mb_strpos($haystack, $needle, $offset);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										}
-												Missing returns


											
										
										
											2009-10-30 23:38:14 +00:00
+										return utf8_strpos($haystack, $needle, $offset);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/strrpos strrpos PHP function.
 									 * Find the position of the last  occurrence of a case-sensitive UTF-8 encoded string.
 									 * Returns the numeric position (offset in amount of UTF-8 characters)
 									 *  of the last occurrence of needle in the haystack string.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $haystack The UTF-8 encoded string being searched in.
 									 * @param integer $needle The UTF-8 encoded string being searched for.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 * @param integer $offset [optional] - The optional offset parameter allows you to specify which character in haystack to start searching.
 									 * 				 The position returned is still relative to the beginning of haystack.
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @return integer|boolean Returns the position as an integer. If needle is not found, the function will return boolean FALSE.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function ustrrpos($haystack, $needle, $offset = 0)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											case 0:
 												return strrpos($haystack, $needle, $offset);
 											case 1:
 												return mb_strrpos($haystack, $needle, $offset);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										}
-												Missing returns


											
										
										
											2009-10-30 23:38:14 +00:00
+										return utf8_strrpos($haystack, $needle, $offset);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									}
-												UTF-8 aware search rendering
Search view supports glyph (former bullet)
Some old paths corrected
											
										
										
											2013-10-24 04:15:25 +03:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/stristr stristr PHP function.
 									 * Returns all of haystack starting from and including the first occurrence of needle to the end.
 									 *
 									 * @param string $haystack The UTF-8 encoded string to search in.
 									 * @param mixed $needle If needle is not a string, it is converted to an integer and applied as the ordinal value of a character.
 									 * @param integer $length [optional] (PHP 5.3+) If TRUE, returns the part of the haystack before the first occurrence of the needle (excluding needle).
 									 * @return string Returns the matched substring. If needle is not found, returns FALSE.
 									 */
 									public function ustristr($haystack, $needle, $before_needle = false)
 									{
 										switch($this->utfAction)
 										{
 											case 0:
 												return stristr($haystack, $needle, $before_needle);
 											case 1:
-												Search Fixes. Forum search upgraded to v2.x spec.

											
										
										
											2016-02-01 20:29:46 -08:00
+												//return mb_substr($haystack, $needle, $before_needle);
 												return mb_stristr($haystack, $needle, $before_needle);
-												UTF-8 aware search rendering
Search view supports glyph (former bullet)
Some old paths corrected
											
										
										
											2013-10-24 04:15:25 +03:00
+										}
 										// No utf8 pack backup
-												Broken stristr utf8 support

											
										
										
											2014-08-17 15:15:40 +03:00
+										return stristr($haystack, $needle, $before_needle);
-												UTF-8 aware search rendering
Search view supports glyph (former bullet)
Some old paths corrected
											
										
										
											2013-10-24 04:15:25 +03:00
+									}
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/substr substr PHP function.
 									 * Returns the portion of string specified by the start and length parameters.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * NOTE: May be subtle differences in return values dependent on which routine is used.
 									 *  Native substr() routine can return FALSE. mb_substr() and utf8_substr() just return an empty string.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $str The UTF-8 encoded string.
 									 * @param integer $start Start of portion to be returned. Position is counted in amount of UTF-8 characters from the beginning of str.
 									 * 				First character's position is 0. Second character position is 1, and so on.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 * @param integer $length [optional] If length is given, the string returned will contain at most length characters beginning from start
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * 				(depending on the length of string). If length is omitted, the rest of string from start will be returned.
 									 * @return string The extracted UTF-8 encoded part of input string.
 									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function usubstr($str, $start, $length = NULL)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+											case 0:
 												return substr($str, $start, $length);
 											case 1:
 												if(is_null($length))
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+												{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+													return mb_substr($str, $start);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+												}
 												else
 												{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+													return mb_substr($str, $start, $length);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+												}
 										}
-												Missing returns


											
										
										
											2009-10-30 23:38:14 +00:00
+										return utf8_substr($str, $start, $length);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									}
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									/**
 									 * Converts the supplied text (presumed to be from user input) to a format suitable for storing in a database table.
 									 *
 									 * @param string $data
 									 * @param boolean $nostrip [optional] Assumes all data is GPC ($_GET, $_POST, $_COOKIE) unless indicate otherwise by setting this var to TRUE.
 									 * 				If magic quotes is enabled on the server and you do not tell toDB() that the data is non GPC then slashes will be stripped when they should not be.
 									 * @param boolean $no_encode [optional] This parameter should nearly always be FALSE. It is used by the save_prefs() function to preserve HTML content within prefs even when
 									 * 				the save_prefs() function has been called by a non admin user / user without html posting permissions.
 									 * @param boolean $mod [optional] The 'no_html' and 'no_php' modifiers blanket prevent HTML and PHP posting regardless of posting permissions. (used in logging)
-												Bugtracker #5013 - stop prefs getting sanitised on save

											
										
										
											2010-09-06 21:35:04 +00:00
+									 *		The 'pReFs' value is for internal use only, when saving prefs, to prevent sanitisation of HTML.
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param boolean $original_author [optional]
 									 * @return string
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+									 * @todo complete the documentation of this essential method
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 */
-												Fix for toDB() in 'no_html' mode. Admin-log now detects table in remarks.

											
										
										
											2015-04-14 11:39:35 -07:00
+									public function toDB($data, $nostrip =false, $no_encode = false, $mod = false, $original_author = false)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												notice removal (not sure if casued by obsolete preference - see the commment)

											
										
										
											2010-10-27 11:23:54 +00:00
+										$core_pref = e107::getConfig();
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+										if (is_array($data))
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+											$ret = array();
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+											foreach ($data as $key => $var)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											{
-												e_parser: post_toForm supports array input now, added key sanitize when array passed toDB, createConstants bug


											
										
										
											2009-10-20 14:47:05 +00:00
+												//Fix - sanitize keys as well
 												$ret[$this->toDB($key, $nostrip, $no_encode, $mod, $original_author)] = $this->toDB($var, $nostrip, $no_encode, $mod, $original_author);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											}
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+											return $ret;
 										}
-												Debug info cleanup

											
										
										
											2015-03-29 20:26:35 -07:00
-												Fix for <?php inside [code][/code]

											
										
										
											2013-06-11 18:29:59 -07:00
-												Minor parsing issue corrected. Debug info removed from newspost 'update'.

											
										
										
											2015-04-12 19:45:55 -07:00
+										if (MAGIC_QUOTES_GPC == true && $nostrip == false)
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										{
 											$data = stripslashes($data);
 										}
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+										if ($mod != 'pReFs') //XXX We're not saving prefs.
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										{
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+											$data = $this->preFilter($data); // used by bb_xxx.php toDB() functions. bb_code.php toDB() allows us to properly bypass HTML cleaning below.
-												Debug info cleanup

											
										
										
											2015-03-29 20:26:35 -07:00
-												Fix for toDB() in 'no_html' mode. Admin-log now detects table in remarks.

											
										
										
											2015-04-14 11:39:35 -07:00
+										//	if(strlen($data) != strlen(strip_tags($data))) // html tags present. // strip_tags()  doesn't function doesnt look for unclosed '>'.
-												Fix for toEmail() method encoding of quotes.

											
										
										
											2015-05-21 21:49:32 -07:00
+											if(($this->isHtml($data)) && strpos($mod, 'no_html') === false)
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+											{
-												Issue #895, Issue #847 - Parser improvements.

											
										
										
											2015-04-11 12:33:21 -07:00
+												$this->isHtml = true;
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+												$data = $this->cleanHtml($data); // sanitize all html.
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
-												Fixes #1007 - toDB() was breaking {e_XXX} paths when HTML was used.

											
										
										
											2015-05-14 09:20:11 -07:00
+												$data = str_replace(array('%7B','%7D'),array('{','}'),$data); // fix for {e_XXX} paths.
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+											//	$data = urldecode($data); //XXX Commented out :  NO LONGER REQUIRED. symptom of cleaning the HTML - urlencodes src attributes containing { and } .eg. {e_BASE}
-												Fix for toDB() in 'no_html' mode. Admin-log now detects table in remarks.

											
										
										
											2015-04-14 11:39:35 -07:00
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+											}
-												Minor parsing issue corrected. Debug info removed from newspost 'update'.

											
										
										
											2015-04-12 19:45:55 -07:00
+											else // caused double-encoding of '&'
-												Issue #895, Issue #847 - Parser improvements.

											
										
										
											2015-04-11 12:33:21 -07:00
+											{
-												Minor parsing issue corrected. Debug info removed from newspost 'update'.

											
										
										
											2015-04-12 19:45:55 -07:00
+												//$data = str_replace('<','&lt;',$data);
 												//$data = str_replace('>','&gt;',$data);
-												Issue #895, Issue #847 - Parser improvements.

											
										
										
											2015-04-11 12:33:21 -07:00
+											}
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+											if (!check_class($core_pref->get('post_html', e_UC_MAINADMIN)))
-												Bugtracker #5013 - stop prefs getting sanitised on save

											
										
										
											2010-09-06 21:35:04 +00:00
+											{
-												Fix for toDB() in 'no_html' mode. Admin-log now detects table in remarks.

											
										
										
											2015-04-14 11:39:35 -07:00
+												$data = strip_tags($data); // remove tags from cleaned html.
 												$data = str_replace(array('[html]','[/html]'),'',$data);
-												Bugtracker #5013 - stop prefs getting sanitised on save

											
										
										
											2010-09-06 21:35:04 +00:00
+											}
-												More [code] parsing work.

											
										
										
											2013-06-15 03:58:47 -07:00
-												Fix for toDB() in 'no_html' mode. Admin-log now detects table in remarks.

											
										
										
											2015-04-14 11:39:35 -07:00
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+											//  $data = html_entity_decode($data, ENT_QUOTES, 'utf-8');	// Prevent double-entities. Fix for [code]  - see bb_code.php toDB();
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										}
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
-												Issue #895, Issue #847 - Parser improvements.

											
										
										
											2015-04-11 12:33:21 -07:00
+										if (check_class($core_pref->get('post_html'))) /*$core_pref->is('post_html') && XXX preformecd by cleanHtml() */
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										{
-												Fix for toDB() in 'no_html' mode. Admin-log now detects table in remarks.

											
										
										
											2015-04-14 11:39:35 -07:00
+											$no_encode = true;
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										}
-												cleanHtml() was urlencoding {e_XXXX} paths in html.

											
										
										
											2013-05-01 03:13:29 -07:00
-												notice removal (not sure if casued by obsolete preference - see the commment)

											
										
										
											2010-10-27 11:23:54 +00:00
+										if (is_numeric($original_author) && !check_class($core_pref->get('post_html'), '', $original_author))
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										{
-												Fix for toDB() in 'no_html' mode. Admin-log now detects table in remarks.

											
										
										
											2015-04-14 11:39:35 -07:00
+											$no_encode = false;
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										}
-												Issue #895, Issue #847 - Parser improvements.

											
										
										
											2015-04-11 12:33:21 -07:00
-												Fix for toDB() in 'no_html' mode. Admin-log now detects table in remarks.

											
										
										
											2015-04-14 11:39:35 -07:00
+										if ($no_encode === true && strpos($mod, 'no_html') === false)
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										{
 											$search = array('$', '"', "'", '\\', '<?');
 											$replace = array('&#036;', '&quot;', '&#039;', '&#092;', '&lt;?');
 											$ret = str_replace($search, $replace, $data);
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+										}
-												Fix for toDB() in 'no_html' mode. Admin-log now detects table in remarks.

											
										
										
											2015-04-14 11:39:35 -07:00
+										else // add entities for everything. we want to save the code.
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												Minor parsing issue corrected. Debug info removed from newspost 'update'.

											
										
										
											2015-04-12 19:45:55 -07:00
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+											$data = htmlspecialchars($data, ENT_QUOTES, 'UTF-8');
 											$data = str_replace('\\', '&#092;', $data);
-												Minor parsing issue corrected. Debug info removed from newspost 'update'.

											
										
										
											2015-04-12 19:45:55 -07:00
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+											$ret = preg_replace("/&amp;#(\d*?);/", "&#\\1;", $data);
 										}
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
 										// XXX - php_bbcode has been deprecated.
-												Fix for toDB() in 'no_html' mode. Admin-log now detects table in remarks.

											
										
										
											2015-04-14 11:39:35 -07:00
+										if ((strpos($mod, 'no_php') !== false) || !check_class($core_pref->get('php_bbcode')))
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										{
-												Bugtracker #5013 - stop prefs getting sanitised on save

											
										
										
											2010-09-06 21:35:04 +00:00
+											$ret = preg_replace("#\[(php)#i", "&#91;\\1", $ret);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
-												Simple parse via parseTemplate added, small improvements

											
										
										
											2010-02-19 15:10:40 +00:00
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										return $ret;
 									}
-												Parser stability, security updates and clean up


											
										
										
											2007-01-12 21:05:20 +00:00
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+									/**
-												Keep HTML abuse filter in line with 1.x.
Remove isutf8 flag - no longer relevant.

											
										
										
											2013-01-05 09:42:34 +00:00
+									 *	Check for umatched 'dangerous' HTML tags
 									 *		(these can destroy page layout where users are able to post HTML)
-												Issue #258 - Should help back-slashes issue

											
										
										
											2013-05-07 03:44:12 -07:00
+									 * @DEPRECATED
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+									 *	@param string $data
 									 *	@param string $tagList - if empty, uses default list of input tags. Otherwise a CSV list of tags to check (any type)
 									 *
 									 *	@return boolean TRUE if an unopened closing tag found
 									 *					FALSE if nothing found
 									 */
 									function htmlAbuseFilter($data, $tagList = '')
 									{
-												Emoticon BBcode Fix

											
										
										
											2013-04-22 20:46:06 -07:00
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+										if ($tagList == '')
 										{
 											$checkTags = array('textarea', 'input', 'td', 'tr', 'table');
 										}
 										else
 										{
 											$checkTags = explode(',', $tagList);
 										}
-												Keep HTML abuse filter in line with 1.x.
Remove isutf8 flag - no longer relevant.

											
										
										
											2013-01-05 09:42:34 +00:00
+										$tagArray = array_flip($checkTags);
 										foreach ($tagArray as &$v) { $v = 0; };		// Data fields become zero; keys are tag names.
 										$data = strtolower(preg_replace('#\[code\].*?\[\/code\]#i', '', $data));            // Ignore code blocks. All lower case simplifies the rest
 										$matches = array();
 										if (!preg_match_all('#<(\/|)([^<>]*?[^\/])>#', $data, $matches, PREG_SET_ORDER))
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+										{
-												Keep HTML abuse filter in line with 1.x.
Remove isutf8 flag - no longer relevant.

											
										
										
											2013-01-05 09:42:34 +00:00
+											//echo "No tags found<br />";
 											return TRUE;				// No tags found; so all OK
 										}
 										//print_a($matches);
 										foreach ($matches as $m)
 										{
 											// $m[0] is the complete tag; $m[1] is '/' or empty; $m[2] is the tag and any attributes
 											list ($tag) = explode(' ', $m[2], 2);
 											if (!isset($tagArray[$tag])) continue;			// Not a tag of interest
 											if ($m[1] == '/')
 											{	// Closing tag
 												if ($tagArray[$tag] == 0)
 												{
 													//echo "Close before open: {$tag}<br />";
 													return TRUE;		// Closing tag before we've had an opening tag
 												}
 												$tagArray[$tag]--;		// Obviously had at least one opening tag
 											}
 											else
 											{	// Opening tag
 												$tagArray[$tag]++;
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+											}
 										}
-												Keep HTML abuse filter in line with 1.x.
Remove isutf8 flag - no longer relevant.

											
										
										
											2013-01-05 09:42:34 +00:00
+										//print_a($tagArray);
 										foreach ($tagArray as $t)
 										{
 											if ($t > 0) return TRUE;		// More opening tags than closing tags
 										}
 										return FALSE;						// OK now
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+									}
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
 									/**
-												Issue #258 - Should help back-slashes issue

											
										
										
											2013-05-07 03:44:12 -07:00
+									 * @DEPRECATED XXX TODO Remove this horrible thing which adds junk to a db.
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+									 *	Checks a string for potentially dangerous HTML tags, including malformed tags
 									 *
 									 */
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+									public function dataFilter($data, $mode='bbcode')
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+									{
-												Emoticon BBcode Fix

											
										
										
											2013-04-22 20:46:06 -07:00
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										$ans = '';
-												User filter fixes

											
										
										
											2011-11-29 23:37:44 +00:00
+										$vetWords = array('<applet', '<body', '<embed', '<frame', '<script','%3Cscript',
 														 '<frameset', '<html', '<iframe', '<style', '<layer', '<link',
 														 '<ilayer', '<meta', '<object', '<plaintext', 'javascript:',
 														 'vbscript:','data:text/html');
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										$ret = preg_split('#(\[code.*?\[/code.*?])#mis', $data, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
 										foreach ($ret as $s)
 										{
 											if (substr($s, 0, 5) != '[code')
 											{
 												$vl = array();
 												$t = html_entity_decode(rawurldecode($s), ENT_QUOTES, CHARSET);
 												$t = str_replace(array("\r", "\n", "\t", "\v", "\f", "\0"), '', $t);
 												$t1 = strtolower($t);
 												foreach ($vetWords as $vw)
 												{
 													if (strpos($t1, $vw) !== FALSE)
 													{
 														$vl[] = $vw;		// Add to list of words found
 													}
 													if (substr($vw, 0, 1) == '<')
 													{
 														$vw = '</'.substr($vw, 1);
 														if (strpos($t1, $vw) !== FALSE)
 														{
 															$vl[] = $vw;		// Add to list of words found
 														}
 													}
 												}
 												// More checks here
 												if (count($vl))
 												{	// Do something
 													$s = preg_replace_callback('#('.implode('|', $vl).')#mis', array($this, 'modtag'), $t);
 												}
 											}
-												Additional check


											
										
										
											2011-06-02 20:03:14 +00:00
+											$s = preg_replace('#(?:onmouse.+?|onclick|onfocus)\s*?\=#', '[sanitised]$0[/sanitised]', $s);
-												Additional checking

											
										
										
											2011-05-28 16:23:40 +00:00
+											$s = preg_replace_callback('#base64([,\(])(.+?)([\)\'\"])#mis', array($this, 'proc64'), $s);
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+											$ans .= $s;
 										}
-												User filter fixes

											
										
										
											2011-11-29 23:37:44 +00:00
 										if($mode == 'link' && count($vl))
 										{
 											return "#sanitized";
 										}
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										return $ans;
 									}
-												Additional checking

											
										
										
											2011-05-28 16:23:40 +00:00
+									/**
 									 * Check base-64 encoded code
 									 */
 									private function proc64($match)
 									{
 										$decode = base64_decode($match[2]);
 										return 'base64'.$match[1].base64_encode($this->dataFilter($decode)).$match[3];
 									}
-												Issue #258 - Should help back-slashes issue

											
										
										
											2013-05-07 03:44:12 -07:00
+									// XXX REmove ME.
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+									private function modTag($match)
 									{
 										$ans = '';
 										if (isset($match[1]))
 										{
 											$chop = intval(strlen($match[1]) / 2);
 											$ans = substr($match[1], 0, $chop).'##xss##'.substr($match[1], $chop);
 										}
 										else
 										{
 											$ans = '?????';
 										}
 										return '[sanitised]'.$ans.'[/sanitised]';
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+									}
 									/**
 									 *	Processes data as needed before its written to the DB.
 									 *	Currently gives bbcodes the opportunity to do something
 									 *
 									 *	@param $data string - data about to be written to DB
 									 *	@return string - modified data
 									 */
 									public function preFilter($data)
 									{
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+										if (!is_object($this->e_bb))
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										{
 											require_once(e_HANDLER.'bbcode_handler.php');
 											$this->e_bb = new e_bbcode;
 										}
 										$ret = $this->e_bb->parseBBCodes($data, USERID, 'default', 'PRE');			// $postID = logged in user here
 										return $ret;
 									}
-												Parser stability, security updates and clean up


											
										
										
											2007-01-12 21:05:20 +00:00
+									function toForm($text)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Admin UI minor improvements; cleanup - warnings removal; various minor bugfixes

											
										
										
											2010-10-30 15:34:48 +00:00
+										if(empty($text)) // fix - handle proper 0, Space etc values.
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										{
-												Admin UI minor improvements; cleanup - warnings removal; various minor bugfixes

											
										
										
											2010-10-30 15:34:48 +00:00
+											return $text;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										}
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												PHP Notice/Warning removal. 'field-help' containers may now be customized with: data-placement="[top|right|bottom|left]"

											
										
										
											2015-06-11 12:29:19 -07:00
+										if(is_string($text) && substr($text,0,6) == '[html]')
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+										{
 											// $text = $this->toHtml($text,true);
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+											$search = array('&quot;','&#039;','&#092;', '&',); // '&' must be last.
 											$replace = array('"',"'","\\", '&amp;');
 										//	return htmlspecialchars_decode($text);
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+											$text = str_replace($search,$replace,$text);
 										//	return $text;
 											//$text  = htmlentities($text,ENT_NOQUOTES, "UTF-8");
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+										//	return $text;
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
 										}
 									//	return htmlentities($text);
-												Parser stability, security updates and clean up


											
										
										
											2007-01-12 21:05:20 +00:00
+										$search = array('&#036;', '&quot;', '<', '>');
 										$replace = array('$', '"', '&lt;', '&gt;');
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										$text = str_replace($search, $replace, $text);
-												Issue #2057 Avoid messing with array values in toForm()

											
										
										
											2016-11-27 15:13:57 -08:00
+										if (e107::wysiwyg() !== true && is_string($text))
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											// fix for utf-8 issue with html_entity_decode(); ???
-												Issue #2018 - Figcaption problem when not using WYSIWYG.

											
										
										
											2016-11-11 17:48:46 -08:00
+											$text = urldecode($text);
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+										//	$text = str_replace("&nbsp;", " ", $text);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
 										return $text;
 									}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+									function post_toForm($text)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												e_parser: post_toForm supports array input now, added key sanitize when array passed toDB, createConstants bug


											
										
										
											2009-10-20 14:47:05 +00:00
+										if(is_array($text))
 										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											foreach ($text as $key=>$value)
-												e_parser: post_toForm supports array input now, added key sanitize when array passed toDB, createConstants bug


											
										
										
											2009-10-20 14:47:05 +00:00
+											{
 												$text[$this->post_toForm($key)] = $this->post_toForm($value);
 											}
 											return $text;
 										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										if(MAGIC_QUOTES_GPC == TRUE)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											$text = stripslashes($text);
 										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										return str_replace(array("'", '"', "<", ">"), array("&#039;", "&quot;", "&lt;", "&gt;"), $text);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									function post_toHTML($text, $original_author = FALSE, $extra = '', $mod = FALSE)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$text = $this->toDB($text, FALSE, FALSE, $mod, $original_author);
 										return $this->toHTML($text, TRUE, $extra);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
+									/**
-												Code cleanup

											
										
										
											2015-02-15 02:37:36 -08:00
+									 * @param $text - template to parse.
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
+									 * @param boolean $parseSCFiles - parse core 'single' shortcodes
-												Issue #1669 - incorrect shortcode object

											
										
										
											2016-05-24 11:08:22 -07:00
+									 * @param object|array $extraCodes - shortcode class containing sc_xxxxx methods or an array of key/value pairs or legacy shortcode content (eg. content within .sc)
-												Code cleanup

											
										
										
											2015-02-15 02:37:36 -08:00
+									 * @param object $eVars - XXX more info needed.
 									 * @return string
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
+									 */
-												Login page template/shortcode fixes.

											
										
										
											2016-02-29 15:13:32 -08:00
+									function parseTemplate($text, $parseSCFiles = true, $extraCodes = null, $eVars = null)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												Parser fix and FAQ 'ask a question' permissions fix.

											
										
										
											2015-06-19 09:52:29 -07:00
-												Login page template/shortcode fixes.

											
										
										
											2016-02-29 15:13:32 -08:00
+										if(!is_bool($parseSCFiles))
 										{
 											trigger_error("\$parseSCFiles in parseTemplate() was given incorrect data");
 										}
-												Shortcode parser: variable/methods name fix, news event trigger mentioned by the recent commit

											
										
										
											2010-04-25 15:04:53 +00:00
+										return e107::getScParser()->parseCodes($text, $parseSCFiles, $extraCodes, $eVars);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
 									/**
 									 * Check if we are using the simple-Parse array format, or a legacy .sc format which contains 'return '
 									 * @param array $extraCodes
 									 */
 									private function isSimpleParse($extraCodes)
 									{
 										if(!is_array($extraCodes))
 										{
 											return false;
 										}
 										foreach ($extraCodes as $sc => $code)
-												Parser fix and FAQ 'ask a question' permissions fix.

											
										
										
											2015-06-19 09:52:29 -07:00
+										{
 											if(preg_match('/return(.*);/',$code)) // still problematic. 'return;' Might be used in common speech.
 											{
 												return false;
 											}
 											else
 											{
 												return true;
 											}
 										/*	if(!strpos($code, 'return '))
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
+											{
 												return true;
 											}
 											else
 											{
 												return false;
-												Parser fix and FAQ 'ask a question' permissions fix.

											
										
										
											2015-06-19 09:52:29 -07:00
+											}*/
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
+										}
 									}
-												simple parser details

											
										
										
											2010-02-27 18:59:57 +00:00
+									/**
 									 * Simple parser
 									 *
 									 * @param string $template
-												Simple parser supports arrays in a proper way

											
										
										
											2014-07-09 16:32:17 +03:00
+									 * @param e_vars|array $vars
-												simple parser details

											
										
										
											2010-02-27 18:59:57 +00:00
+									 * @param string $replaceUnset string to be used if replace variable is not set, false - don't replace
 									 * @return string parsed content
 									 */
-												Simple parser supports arrays in a proper way

											
										
										
											2014-07-09 16:32:17 +03:00
+									function simpleParse($template, $vars, $replaceUnset='')
-												Added the new simpleParse method from 0.7, changed it up a bit for 0.8 though.


											
										
										
											2010-01-23 03:25:31 +00:00
+									{
 										$this->replaceVars = $vars;
 										$this->replaceUnset = $replaceUnset;
 										return preg_replace_callback("#\{([a-zA-Z0-9_]+)\}#", array($this, 'simpleReplace'), $template);
 									}
-												Simple parse via parseTemplate added, small improvements

											
										
										
											2010-02-19 15:10:40 +00:00
-												SimplerParse() fix. Db-verify fix for MPREFIX inclusion in xxxx_sql.php files.

											
										
										
											2012-12-02 17:30:41 -08:00
+									protected function simpleReplace($tmp)
 									{
-												Forum: PHP7 parser fix.

											
										
										
											2016-02-15 19:59:47 -08:00
-												e_parse - simple Parse default replace string option added; e_vars - empty check added


											
										
										
											2010-02-03 11:06:31 +00:00
+										$unset = ($this->replaceUnset !== false ? $this->replaceUnset : $tmp[0]);
-												Forum: PHP7 parser fix.

											
										
										
											2016-02-15 19:59:47 -08:00
-												SimpleParse Fix

											
										
										
											2012-12-02 19:10:07 -08:00
+										if(is_array($this->replaceVars))
 										{
-												Simple parser supports arrays in a proper way

											
										
										
											2014-07-09 16:32:17 +03:00
+								            $this->replaceVars = new e_vars($this->replaceVars);
 											//return ($this->replaceVars[$key] !== null ? $this->replaceVars[$key]: $unset);
 										}
-												Forum: PHP7 parser fix.

											
										
										
											2016-02-15 19:59:47 -08:00
+										$key = $tmp[1]; // PHP7 fix.
 										return ($this->replaceVars->$key !== null ? $this->replaceVars->$key : $unset); // Doesn't work.
-												Added the new simpleParse method from 0.7, changed it up a bit for 0.8 though.


											
										
										
											2010-01-23 03:25:31 +00:00
+									}
-												Simple parse via parseTemplate added, small improvements

											
										
										
											2010-02-19 15:10:40 +00:00
-												Forum: PHP7 parser fix.

											
										
										
											2016-02-15 19:59:47 -08:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									function htmlwrap($str, $width, $break = "\n", $nobreak = "a", $nobr = "pre", $utf = FALSE)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
 										/*
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+										Pretty well complete rewrite to try and handle utf-8 properly.
-												Bugtracker #4492 - eliminate word wrap lockup on badly formed utf-8


											
										
										
											2008-09-04 19:50:18 +00:00
+										Breaks each utf-8 'word' every $width characters max. If possible, breaks after 'safe' characters.
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+										$break is the character inserted to flag the break.
-												Bugtracker #4492 - eliminate word wrap lockup on badly formed utf-8


											
										
										
											2008-09-04 19:50:18 +00:00
+										$nobreak is a list of tags within which word wrap is to be inactive
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										*/
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+										//TODO handle htmlwrap somehow
-												re-enable e_parse html wrap method, UI wrap option for text fields added

											
										
										
											2010-11-15 09:03:54 +00:00
+										//return $str;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+										// Don't wrap if non-numeric width
 										$width = intval($width);
 										// And trap stupid wrap counts
 										if ($width < 6)
 											return $str;
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Transform protected element lists into arrays
 										$nobreak = explode(" ", strtolower($nobreak));
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Variable setup
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$intag = FALSE;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										$innbk = array();
 										$drain = "";
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// List of characters it is "safe" to insert line-breaks at
 										// It is not necessary to add < and > as they are automatically implied
 										$lbrks = "/?!%)-}]\\\"':;&";
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Is $str a UTF8 string?
 										if ($utf || strtolower(CHARSET) == 'utf-8')
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+										{
 											// 0x1680, 0x180e, 0x2000-0x200a, 0x2028, 0x205f, 0x3000 are 'non-ASCII' Unicode UCS-4 codepoints - see http://www.unicode.org/Public/UNIDATA/UnicodeData.txt
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											// All convert to 3-byte utf-8 sequences:
 											// 0x1680	0xe1	0x9a	0x80
 											// 0x180e	0xe1	0xa0	0x8e
 											// 0x2000	0xe2	0x80	0x80
 											//   -
 											// 0x200a	0xe2	0x80	0x8a
 											// 0x2028	0xe2	0x80	0xa8
 											// 0x205f	0xe2	0x81	0x9f
 											// 0x3000	0xe3	0x80	0x80
 											$utf8 = 'u';
 											$whiteSpace = '#([\x20|\x0c]|[\xe1][\x9a][\x80]|[\xe1][\xa0][\x8e]|[\xe2][\x80][\x80-\x8a,\xa8]|[\xe2][\x81][\x9f]|[\xe3][\x80][\x80]+)#';
 											// Have to explicitly enumerate the whitespace chars, and use non-utf-8 mode, otherwise regex fails on badly formed utf-8
 										}
 										else
 										{
 											$utf8 = '';
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+											// For non-utf-8, can use a simple match string
 											$whiteSpace = '#(\s+)#';
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Start of the serious stuff - split into HTML tags and text between
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+										$content = preg_split('#(<.*?'.'>)#mis', $str, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										foreach($content as $value)
 										{
 											if ($value[0] == "<")
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+											{
 												// We are within an HTML tag
 												// Create a lowercase copy of this tag's contents
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+												$lvalue = strtolower(substr($value, 1, -1));
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+												if ($lvalue)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												{
 													// Tag of non-zero length
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+													// If the first character is not a / then this is an opening tag
 													if ($lvalue[0] != "/")
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+													{
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+														// Collect the tag name
 														preg_match("/^(\w*?)(\s|$)/", $lvalue, $t);
 														// If this is a protected element, activate the associated protection flag
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														if(in_array($t[1], $nobreak))
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+															array_unshift($innbk, $t[1]);
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+													}
 													else
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													{
 														// Otherwise this is a closing tag
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+														// If this is a closing tag for a protected element, unset the flag
 														if (in_array(substr($lvalue, 1), $nobreak))
 														{
 															reset($innbk);
 															while (list($key, $tag) = each($innbk))
 															{
 																if (substr($lvalue, 1) == $tag)
 																{
 																	unset($innbk[$key]);
 																	break;
 																}
 															}
 															$innbk = array_values($innbk);
 														}
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+													}
 												}
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+												else
 												{
 													// Eliminate any empty tags altogether
 													$value = '';
 												}
 												// Else if we're outside any tags, and with non-zero length string...
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											}
 											elseif ($value)
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+											{
 												// If unprotected...
 												if (!count($innbk))
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+												{
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+													// Use the ACK (006) ASCII symbol to replace all HTML entities temporarily
 													$value = str_replace("\x06", "", $value);
 													preg_match_all("/&([a-z\d]{2,7}|#\d{2,5});/i", $value, $ents);
 													$value = preg_replace("/&([a-z\d]{2,7}|#\d{2,5});/i", "\x06", $value);
 													//			echo "Found block length ".strlen($value).': '.substr($value,20).'<br />';
 													// Split at spaces - note that this will fail if presented with invalid utf-8 when doing the regex whitespace search
 													//			$split = preg_split('#(\s)#'.$utf8, $value, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
 													$split = preg_split($whiteSpace, $value, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
 													$value = '';
 													foreach ($split as $sp)
 													{
 														//			echo "Split length ".strlen($sp).': '.substr($sp,20).'<br />';
 														$loopCount = 0;
 														while (strlen($sp) > $width)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														{
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+															// Enough characters that we may need to do something.
 															$pulled = '';
 															if ($utf8)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															{
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																// Pull out a piece of the maximum permissible length
 																if (preg_match('#^((?:[\x00-\x7F]|[\xC0-\xFF][\x80-\xBF]+){0,'.$width.'})(.{0,1}).*#s',$sp,$matches) == 0)
 																{
 																	// Make any problems obvious for now
 																	$value .= '[!<b>invalid utf-8: '.$sp.'<b>!]';
 																	$sp = '';
 																}
 																elseif (empty($matches[2]))
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																{
 																	// utf-8 length is less than specified - treat as a special case
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																	$value .= $sp;
 																	$sp = '';
 																}
 																else
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																{
 																	// Need to find somewhere to break the string
 																	for($i = strlen($matches[1]) - 1; $i >= 0; $i--)
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																	{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																		if(strpos($lbrks, $matches[1][$i]) !== FALSE)
 																			break;
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																	}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																	if($i < 0)
 																	{
 																		// No 'special' break character found - break at the word boundary
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																		$pulled = $matches[1];
 																	}
 																	else
 																	{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																		$pulled = substr($sp, 0, $i + 1);
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																	}
 																}
 																$loopCount++;
 																if ($loopCount > 20)
 																{
 																	// Make any problems obvious for now
 																	$value .= '[!<b>loop count exceeded: '.$sp.'</b>!]';
 																	$sp = '';
 																}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 															else
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																for ($i = min($width, strlen($sp)); $i > 0; $i--)
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																{
 																	// No speed advantage to defining match character
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																	if (strpos($lbrks, $sp[$i-1]) !== FALSE)
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																		break;
 																}
 																if ($i == 0)
 																{
 																	// No 'special' break boundary character found - break at the word boundary
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																	$pulled = substr($sp, 0, $width);
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																}
 																else
 																{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																	$pulled = substr($sp, 0, $i);
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+															if ($pulled)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															{
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																$value .= $pulled.$break;
 																// Shorten $sp by whatever we've processed (will work even for utf-8)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																$sp = substr($sp, strlen($pulled));
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 														}
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+														// Add in any residue
 														$value .= $sp;
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+													}
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+													// Put captured HTML entities back into the string
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+													foreach ($ents[0] as $ent)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														$value = preg_replace("/\x06/", $ent, $value, 1);
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+												}
 											}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											// Send the modified segment down the drain
 											$drain .= $value;
 										}
 										// Return contents of the drain
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+										return $drain;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+									/**
 									 * CakePHP(tm) :  Rapid Development Framework (http://www.cakephp.org)
 									 * Copyright 2005-2008, Cake Software Foundation, Inc. (http://www.cakefoundation.org)
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+									 * Truncate a HTML string
 									 *
 									 * Cuts a string to the length of $length and adds the value of $ending if the text is longer than length.
 									 *
 									 * @param string  $text String to truncate.
 									 * @param integer $length Length of returned string, including ellipsis.
 									 * @param string $ending It will be used as Ending and appended to the trimmed string.
 									 * @param boolean $exact If false, $text will not be cut mid-word
 									 * @return string Trimmed string.
 									 */
 									function html_truncate($text, $length = 100, $ending = '...', $exact = true)
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									{
 										if($this->ustrlen(preg_replace('/<.*?>/', '', $text)) <= $length)
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+										{
 											return $text;
 										}
 										$totalLength = 0;
 										$openTags = array();
 										$truncate = '';
 										preg_match_all('/(<\/?([\w+]+)[^>]*>)?([^<>]*)/', $text, $tags, PREG_SET_ORDER);
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+										foreach($tags as $tag)
 										{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+											if(!$tag[2] || !preg_match('/img|br|input|hr|area|base|basefont|col|frame|isindex|link|meta|param/si', $tag[2]))
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+											{
 												if(preg_match('/<[\w]+[^>]*>/s', $tag[0]))
 												{
 													array_unshift($openTags, $tag[2]);
 												}
 												else if(preg_match('/<\/([\w]+)[^>]*>/s', $tag[0], $closeTag))
 												{
 													$pos = array_search($closeTag[1], $openTags);
 													if($pos !== false)
 													{
 														array_splice($openTags, $pos, 1);
 													}
 												}
 											}
 											$truncate .= $tag[1];
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+											$contentLength = $this->ustrlen(preg_replace('/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i', ' ', $tag[3]));
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+											if($contentLength + $totalLength > $length)
 											{
 												$left = $length - $totalLength;
 												$entitiesLength = 0;
 												if(preg_match_all('/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i', $tag[3], $entities, PREG_OFFSET_CAPTURE))
 												{
 													foreach($entities[0] as $entity)
 													{
 														if($entity[1] + 1 - $entitiesLength <= $left)
 														{
 															$left--;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+															$entitiesLength += $this->ustrlen($entity[0]);
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+														}
 														else
 														{
 															break;
 														}
 													}
 												}
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
 												$truncate .= $this->usubstr($tag[3], 0, $left + $entitiesLength);
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+												break;
 											}
 											else
 											{
 												$truncate .= $tag[3];
 												$totalLength += $contentLength;
 											}
 											if($totalLength >= $length)
 											{
 												break;
 											}
 										}
 										if(!$exact)
 										{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+											$spacepos = $this->ustrrpos($truncate, ' ');
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+											if(isset($spacepos))
 											{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+												$bits = $this->usubstr($truncate, $spacepos);
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+												preg_match_all('/<\/([a-z]+)>/i', $bits, $droppedTags, PREG_SET_ORDER);
 												if(!empty($droppedTags))
 												{
 													foreach($droppedTags as $closingTag)
 													{
 														if(!in_array($closingTag[1], $openTags))
 														{
 															array_unshift($openTags, $closingTag[1]);
 														}
 													}
 												}
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+												$truncate = $this->usubstr($truncate, 0, $spacepos);
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+											}
 										}
 										$truncate .= $ending;
 										foreach($openTags as $tag)
 										{
 											$truncate .= '</' . $tag . '>';
 										}
 										return $truncate;
 									}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												html_truncate doc
make [more] more multilanguage


											
										
										
											2009-10-30 21:32:18 +00:00
+									/**
 									 * Truncate a HTML string to a maximum length $len  append the string $more if it was truncated
 									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $text String to process
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+									 * @param integer $len [optional] Length of characters to be truncated - default 200
 									 * @param string $more [optional] String which will be added if truncation - default ' ... '
-												html_truncate doc
make [more] more multilanguage


											
										
										
											2009-10-30 21:32:18 +00:00
+									 * @return string
 									 */
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+									public function html_truncate_old ($text, $len = 200, $more = ' ... ')
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
 										$pos = 0;
 										$curlen = 0;
 										$tmp_pos = 0;
-												Sitelinks for plugins using {e_XXX} weren't always decoded properly. Notice removal.


											
										
										
											2007-05-16 20:24:44 +00:00
+										$intag = FALSE;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										while($curlen < $len && $curlen < strlen($text))
 										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											switch($text {$pos} )
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												case "<":
 													if($text {$pos + 1} == "/")
 													{
 														$closing_tag = TRUE;
 													}
 													$intag = TRUE;
 													$tmp_pos = $pos - 1;
 													$pos++;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												break;
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												case ">":
 													if($text {$pos - 1} == "/")
 													{
 														$closing_tag = TRUE;
 													}
 													if($closing_tag == TRUE)
 													{
 														$tmp_pos = 0;
 														$closing_tag = FALSE;
 													}
 													$intag = FALSE;
 													$pos++;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												break;
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												case "&":
 													if($text {$pos + 1} == "#")
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+													{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														$end = strpos(substr($text, $pos, 7), ";");
 														if($end !== FALSE)
 														{
 															$pos += ($end + 1);
 															if(!$intag)
 															{
 																$curlen++;
 															}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+														break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+													}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													else
 													{
 														$pos++;
 														if(!$intag)
 														{
 															$curlen++;
 														}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+													break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												default:
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													$pos++;
 													if(!$intag)
 													{
 														$curlen++;
 													}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												break;
 											}
 										}
-												Bugtracker #4799 - html_truncate() sometimes left incomplete tag - thanks victorcastelan


											
										
										
											2009-09-03 19:29:11 +00:00
+										$ret = ($tmp_pos > 0 ? substr($text, 0, $tmp_pos+1) : substr($text, 0, $pos));
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										if($pos < strlen($text))
 										{
 											$ret = $ret.$more;
 										}
 										return $ret;
 									}
-												Bugtracker #3963 - proper utf-8 truncate - thanks verant


											
										
										
											2007-06-06 19:28:25 +00:00
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+									/**
-												html_truncate doc
make [more] more multilanguage


											
										
										
											2009-10-30 21:32:18 +00:00
+									 * Truncate a string of text to a maximum length $len  append the string $more if it was truncated
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+									 * Uses current CHARSET  for utf-8, returns $len characters rather than $len bytes
 									 *
 									 * @param string $text  string to process
 									 * @param integer $len  length of characters to be truncated
 									 * @param string $more  string which will be added if truncation
 									 * @return string
 									 */
-												make [more] more multilanguage


											
										
										
											2009-10-30 21:01:13 +00:00
+									public function text_truncate($text, $len = 200, $more = ' ... ')
-												Bugtracker #3963 - proper utf-8 truncate - thanks verant


											
										
										
											2007-06-06 19:28:25 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// Always valid
-												Fixes Newsfeed Cache issue. Fixes text_truncate utf8 issue.

											
										
										
											2016-05-21 09:08:46 -07:00
-												simple parse simplified

											
										
										
											2012-12-13 15:08:00 +02:00
+										if($this->ustrlen($text) <= $len)
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											return $text;
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										}
-												Fixes Newsfeed Cache issue. Fixes text_truncate utf8 issue.

											
										
										
											2016-05-21 09:08:46 -07:00
 										$text = html_entity_decode($text,ENT_QUOTES,'utf-8');
 										return mb_strimwidth($text, 0, $len, $more);
-												simple parse simplified

											
										
										
											2012-12-13 15:08:00 +02:00
-												Fixes Newsfeed Cache issue. Fixes text_truncate utf8 issue.

											
										
										
											2016-05-21 09:08:46 -07:00
+									//	$ret = $this->usubstr($text, 0, $len);
-												simple parse simplified

											
										
										
											2012-12-13 15:08:00 +02:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// search for possible broken html entities
 										// - if an & is in the last 8 chars, removing it and whatever follows shouldn't hurt
 										// it should work for any characters encoding
-												Fixes Newsfeed Cache issue. Fixes text_truncate utf8 issue.

											
										
										
											2016-05-21 09:08:46 -07:00
 								/*
-												Applying missing commits

											
										
										
											2013-10-16 18:13:21 +03:00
+										$leftAmp = $this->ustrrpos($this->usubstr($ret, -8), '&');
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										if($leftAmp)
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												Applying missing commits

											
										
										
											2013-10-16 18:13:21 +03:00
+											$ret = $this->usubstr($ret, 0, $this->ustrlen($ret) - 8 + $leftAmp);
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Fixes Newsfeed Cache issue. Fixes text_truncate utf8 issue.

											
										
										
											2016-05-21 09:08:46 -07:00
+										return $ret.$more;*/
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												Bugtracker #3963 - proper utf-8 truncate - thanks verant


											
										
										
											2007-06-06 19:28:25 +00:00
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+									function textclean ($text, $wrap = 100)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$text = str_replace("\n\n\n", "\n\n", $text);
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
+										$text = $this->htmlwrap($text, $wrap);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$text = str_replace(array('<br /> ', ' <br />', ' <br /> '), '<br />', $text);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										/* we can remove any linebreaks added by htmlwrap function as any \n's will be converted later anyway */
 										return $text;
 									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									// Test for text highlighting, and determine the text highlighting transformation
 									// Returns TRUE if highlighting is active for this page display
 									function checkHighlighting()
 									{
 										global $pref;
 										if (!defined('e_SELF'))
 										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											// Still in startup, so can't calculate highlighting
 											return FALSE;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										if(!isset($this->e_highlighting))
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										{
 											$this->e_highlighting = FALSE;
 											$shr = (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : "");
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											if($pref['search_highlight'] && (strpos(e_SELF, 'search.php') === FALSE) && ((strpos($shr, 'q=') !== FALSE) || (strpos($shr, 'p=') !== FALSE)))
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											{
 												$this->e_highlighting = TRUE;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												if(!isset($this->e_query))
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												{
 													$query = preg_match('#(q|p)=(.*?)(&|$)#', $shr, $matches);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													$this->e_query = str_replace(array('+', '*', '"', ' '), array('', '.*?', '', '\b|\b'), trim(urldecode($matches[2])));
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												}
 											}
 										}
 										return $this->e_highlighting;
 									}
-												Bugtracker #3592, #3835 - modify matching on clickable www links


											
										
										
											2007-03-11 20:52:47 +00:00
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
+									/**
 									 * Replace text represenation of website urls and email addresses with clickable equivalents.
 									 * @param string $text
 									 * @param string $type email|url
 									 * @param array $opts options. (see below)
 									 * @param string $opts['sub'] substitute text within links
 									 * @param bool $opts['ext'] load link in new window (not for email)
 									 * @return string
 									 */
 									private function makeClickable($text='', $type='email', $opts=array())
 									{
 										if(empty($text))
 										{
 											return '';
 										}
 										$textReplace = (!empty($opts['sub'])) ? $opts['sub'] : '';
 										if(substr($textReplace,-6) == '.glyph')
 										{
 											$textReplace = $this->toGlyph($textReplace,'');
 										}
 										switch($type)
 										{
 											default:
 											case "email":
 												preg_match_all("#(?:[\n\r ]|^)?([a-z0-9\-_.]+?)@([\w\-]+\.([\w\-\.]+\.)*[\w]+)#i", $text, $match);
 												if(!empty($match[0]))
 												{
 													$srch = array();
 													$repl = array();
 													foreach($match[0] as $eml)
 													{
 														$email = trim($eml);
 														$srch[] = $email;
 														$repl[] = $this->emailObfuscate($email,$textReplace);
 													}
 													$text = str_replace($srch,$repl,$text);
 												}
 												break;
 											case "url":
 												$linktext = (!empty($textReplace)) ? $textReplace : '\\2';
 												$external = (!empty($opts['ext'])) ? 'rel="external"' : '';
-												BC Fix for comment avatar size. Regexp for "makeClickable" now handles '&nbsp;' before URL correctly.

											
										
										
											2016-03-16 09:21:12 -07:00
+												$text = preg_replace("#(^|[\s]|&nbsp;)([\w]+?:\/\/(?:[\w-%]+?)(?:\.[\w-%]+?)+.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$|&nbsp;)#is", "\\1<a class=\"e-url\" href=\"\\2\" ".$external.">".$linktext."</a>", $text);
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
+												$text = preg_replace("#(^|[\s])((?:www|ftp)(?:\.[\w-%]+?){2}.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a class=\"e-url\" href=\"http://\\2\" ".$external.">".$linktext."</a>", $text);
 												break;
 										}
 										return $text;
 									}
-												uninstall_options() now included in the _setup.php file. Allowing plugin developers to add their own 'uninstall' options.


											
										
										
											2009-10-30 09:13:37 +00:00
+									/**
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * Converts the text (presumably retrieved from the database) for HTML output.
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									 *
-												uninstall_options() now included in the _setup.php file. Allowing plugin developers to add their own 'uninstall' options.


											
										
										
											2009-10-30 09:13:37 +00:00
+									 * @param string $text
 									 * @param boolean $parseBB [optional]
 									 * @param string $modifiers [optional] TITLE|SUMMARY|DESCRIPTION|BODY|RAW|LINKTEXT etc.
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+									 *		Comma-separated list, no spaces allowed
 									 *		first modifier must be a CONTEXT modifier, in UPPER CASE.
 									 *		subsequent modifiers are lower case - see $this->e_Modifiers for possible values
-												uninstall_options() now included in the _setup.php file. Allowing plugin developers to add their own 'uninstall' options.


											
										
										
											2009-10-30 09:13:37 +00:00
+									 * @param mixed $postID [optional]
 									 * @param boolean $wrap [optional]
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 * @return string
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+									 * @todo complete the documentation of this essential method
-												uninstall_options() now included in the _setup.php file. Allowing plugin developers to add their own 'uninstall' options.


											
										
										
											2009-10-30 09:13:37 +00:00
+									 */
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+									public function toHTML($text, $parseBB = FALSE, $modifiers = '', $postID = '', $wrap = FALSE)
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										if($text == '')
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											return $text;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+										}
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+										$pref = e107::getPref();
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+										global $fromadmin;
-												Committed wrong version of file earlier


											
										
										
											2007-12-30 23:31:18 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Set default modifiers to start
 										$opts = $this->e_optDefault;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Now process any modifiers that are specified
 										if ($modifiers)
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$aMods = explode(',', $modifiers);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
 											// If there's a supermodifier, it must be first, and in uppercase
 											$psm = trim($aMods[0]);
 											if (isset($this->e_SuperMods[$psm]))
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											{
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+												// Supermodifier found - override default values where necessary
 												$opts = array_merge($opts,$this->e_SuperMods[$psm]);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												$opts['context'] = $psm;
 												unset($aMods[0]);
 											}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											// Now find any regular modifiers; use them to modify the context
 											// (there should only be one or two out of the list of possibles)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											foreach ($aMods as $mod)
 											{
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+												// Slight concession to varying coding styles - stripping spaces is a waste of CPU cycles!
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												$mod = trim($mod);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												if (isset($this->e_Modifiers[$mod]))
 												{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// This is probably quicker than array_merge
 													// - especially as usually only one or two loops
 													foreach ($this->e_Modifiers[$mod] as $k => $v)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														// Update our context-specific options
 														$opts[$k] = $v;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													}
 												}
 											}
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
+										}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Turn off a few things if not enabled in options
-												Remove some references to deprecated functions/methods.

											
										
										
											2015-02-14 23:34:15 -08:00
+										if(!vartrue($pref['smiley_activate']))
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$opts['emotes'] = FALSE;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+										}
-												Remove some references to deprecated functions/methods.

											
										
										
											2015-02-14 23:34:15 -08:00
+										if(!vartrue($pref['make_clickable']))
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$opts['link_click'] = FALSE;
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										}
-												Remove some references to deprecated functions/methods.

											
										
										
											2015-02-14 23:34:15 -08:00
+										if(!vartrue($pref['link_replace']))
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$opts['link_replace'] = FALSE;
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
 										$fromadmin = $opts['fromadmin'];
 										// Convert defines(constants) within text. eg. Lan_XXXX - must be the entire text string (i.e. not embedded)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// The check for '::' is a workaround for a bug in the Zend Optimiser 3.3.0 and PHP 5.2.4 combination
 										// - causes crashes if '::' in site name
-												More BC Fixes. Search, and News Category titles.

											
										
										
											2014-01-20 10:21:44 -08:00
-												New language file types: English_global.php (for plugin.xml terms) and English_log.php (for admin-log terms). Auto-detected when present and loaded automatically when needed.

											
										
										
											2012-12-12 18:46:34 -08:00
+										if($opts['defs'] && (strlen($text) < 35) && ((strpos($text, '::') === FALSE) && defined(trim($text))))
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
+										{
-												Allow any constants passed to also be hooked, modified etc.

											
										
										
											2016-01-04 23:10:02 -08:00
+											$text = constant(trim($text)); // don't return yet, words could be hooked with linkwords etc.
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										if ($opts['no_tags'])
 										{
 											$text = strip_tags($text);
 										}
-												Issue #258 - Should help back-slashes issue

											
										
										
											2013-05-07 03:44:12 -07:00
 										if (MAGIC_QUOTES_GPC == TRUE) // precaution for badly saved data.
 										{
 											$text = stripslashes($text);
 										}
-												bugfix: contact page - cleaned user input


											
										
										
											2007-09-09 07:05:06 +00:00
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Make sure we have a valid count for word wrapping
-												Issue #1356 - Installation and PHP notice fixes.

											
										
										
											2016-02-15 11:09:58 -08:00
+										if (!$wrap && !empty($pref['main_wordwrap']))
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
 											$wrap = $pref['main_wordwrap'];
 										}
 								//		$text = " ".$text;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// Now get on with the parsing
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										$ret_parser = '';
 										$last_bbcode = '';
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// So we can change them on each loop
 										$saveOpts = $opts;
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										if ($parseBB == FALSE)
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										{
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											$content = array($text);
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										}
 										else
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
+										{
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											// Split each text block into bits which are either within one of the 'key' bbcodes, or outside them
 											// (Because we have to match end words, the 'extra' capturing subpattern gets added to output array. We strip it later)
-												table bbcodes

											
										
										
											2012-06-09 12:01:24 +00:00
+											$content = preg_split('#(\[(table|html|php|code|scode|hide).*?\[/(?:\\2)\])#mis', $text, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Use $full_text variable so its available to special bbcodes if required
 										foreach ($content as $full_text)
 										{
 											$proc_funcs = TRUE;
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+											$convertNL = TRUE;
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											// We may have 'captured' a bbcode word - strip it if so
 											if ($last_bbcode == $full_text)
 											{
 												$last_bbcode = '';
 												$proc_funcs = FALSE;
 												$full_text = '';
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+											}
 											else
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
+											{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Set the options for this pass
 												$opts = $saveOpts;
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Have to have a good test in case a 'non-key' bbcode starts the block
 												// - so pull out the bbcode parameters while we're there
-												table bbcodes

											
										
										
											2012-06-09 12:01:24 +00:00
+												if (($parseBB !== FALSE) && preg_match('#(^\[(table|html|php|code|scode|hide)(.*?)\])(.*?)(\[/\\2\]$)#is', $full_text, $matches ))
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												{
 													// It's one of the 'key' bbcodes
 													// Usually don't want 'normal' processing if its a 'special' bbcode
 													$proc_funcs = FALSE;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													// $matches[0] - complete block from opening bracket of opening tag to closing bracket of closing tag
 													// $matches[1] - complete opening tag (inclusive of brackets)
 													// $matches[2] - bbcode word
 													// $matches[3] - parameter, including '='
 													// $matches[4] - bit between the tags (i.e. text to process)
 													// $matches[5] - closing tag
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// In case we decide to load a file
-												More [code] bbcode work.

											
										
										
											2013-06-15 02:18:15 -07:00
 													$bbPath 		= e_CORE.'bbcodes/';
 													$bbFile 		= strtolower(str_replace('_', '', $matches[2]));
 													$bbcode 		= '';
 													$className 		= '';
 													$full_text 		= '';
 													$code_text 		= $matches[4];
 													$parm 			= $matches[3] ? substr($matches[3],1) : '';
 													$last_bbcode 	= $matches[2];
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													switch ($matches[2])
 													{
 														case 'php' :
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															// Probably run the output through the normal processing functions - but put here so the PHP code can disable if desired
 															$proc_funcs = TRUE;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															// This is just the contents of the php.bb file pulled in - its short, so will be quicker
 											//				$search = array("&quot;", "&#039;", "&#036;", '<br />', E_NL, "-&gt;", "&lt;br /&gt;");
 											//				$replace = array('"', "'", "$", "\n", "\n", "->", "<br />");
 															// Shouldn't have any parameter on this bbcode
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															// Not sure whether checks are necessary now we've reorganised
 											//				if (!$matches[3]) $bbcode = str_replace($search, $replace, $matches[4]);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															// Because we're bypassing most of the initial parser processing, we should be able to just reverse the effects of toDB() and execute the code
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+															// [SecretR] - avoid php code injections, missing php.bb will completely disable user posted php blocks
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+															$bbcode = file_get_contents($bbPath.$bbFile.'.bb');
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+															if (!$matches[3])
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+															{
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+																$code_text = html_entity_decode($matches[4], ENT_QUOTES, 'UTF-8');
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+															}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															break;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Blogger Import added. TinyMce Image fixes. Custom-pages fixes. Moved Upload-js out of admin header and into media-manager page only. Parser fixes for [html] bbcode. XML parser fix for <content:encoded> rss tags.   

											
										
										
											2012-07-23 02:25:17 +00:00
+														case 'html' : // This overrides and deprecates html.bb
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															$proc_funcs = TRUE;
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Issue #1547 - Corrected rendering of <script> tags from database.

											
										
										
											2016-04-17 12:49:15 -07:00
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+														//	$code_text = str_replace("\r\n", " ", $code_text);
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+														//	$code_text = html_entity_decode($code_text, ENT_QUOTES, CHARSET);
 														//	$code_text = str_replace('&','&amp;',$code_text); // validation safe.
-												Blogger Import added. TinyMce Image fixes. Custom-pages fixes. Moved Upload-js out of admin header and into media-manager page only. Parser fixes for [html] bbcode. XML parser fix for <content:encoded> rss tags.   

											
										
										
											2012-07-23 02:25:17 +00:00
+															$html_start = "<!-- bbcode-html-start -->"; // markers for html-to-bbcode replacement.
 															$html_end	= "<!-- bbcode-html-end -->";
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
+															$full_text = str_replace(array("[html]","[/html]"), "",$code_text); // quick fix.. security issue?
 															$full_text =$this->replaceConstants($full_text,'abs');
-												Blogger Import added. TinyMce Image fixes. Custom-pages fixes. Moved Upload-js out of admin header and into media-manager page only. Parser fixes for [html] bbcode. XML parser fix for <content:encoded> rss tags.   

											
										
										
											2012-07-23 02:25:17 +00:00
+															$full_text = $html_start.$full_text.$html_end;
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+															$full_text = $this->parseBBTags($full_text); // strip <bbcode> tags.
-												No line-breaks added when parsing HTML (between [html] bbcodes)

											
										
										
											2013-03-23 03:49:49 -07:00
+															$opts['nobreak'] = true;
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															break;
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Quick fix for trailing line-breaks on block-level elements.

											
										
										
											2013-06-14 16:26:56 -07:00
+														case 'table' : // strip <br /> from inside of <table>
-												table bbcodes

											
										
										
											2012-06-09 12:01:24 +00:00
+															$convertNL = FALSE;
 														//	break;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														case 'hide' :
 															$proc_funcs = TRUE;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														default :		// Most bbcodes will just execute their normal file
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+															// @todo should we cache these bbcodes? require_once should make class-related codes quite efficient
 															if (file_exists($bbPath.'bb_'.$bbFile.'.php'))
 															{	// Its a bbcode class file
 																require_once($bbPath.'bb_'.$bbFile.'.php');
-												More [code] bbcode work.

											
										
										
											2013-06-15 02:18:15 -07:00
+																$className = 'bb_'.$last_bbcode;
 																$this->bbList[$last_bbcode] = new $className();
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+															}
-												More [code] bbcode work.

											
										
										
											2013-06-15 02:18:15 -07:00
+															elseif(file_exists($bbPath.$bbFile.'.bb'))
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+															{
 																$bbcode = file_get_contents($bbPath.$bbFile.'.bb');
 															}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													}   // end - switch ($matches[2])
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+													if ($className)
 													{
 														$tempCode = new $className();
-												Blogger Import added. TinyMce Image fixes. Custom-pages fixes. Moved Upload-js out of admin header and into media-manager page only. Parser fixes for [html] bbcode. XML parser fix for <content:encoded> rss tags.   

											
										
										
											2012-07-23 02:25:17 +00:00
+														$full_text = $tempCode->bbPreDisplay($matches[4], $parm);
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+													}
 													elseif ($bbcode)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													{	// Execute the file
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+														$full_text = eval($bbcode);			// Require output of bbcode to be returned
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// added to remove possibility of nested bbcode exploits ...
 														//   (same as in bbcode_handler - is it right that it just operates on $bbcode_return and not on $bbcode_output? - QUERY XXX-02
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+													}
 													if(strpos($full_text, '[') !== FALSE)
 													{
 														$exp_search = array('eval', 'expression');
 														$exp_replace = array('ev<b></b>al', 'expres<b></b>sion');
 														$bbcode_return = str_replace($exp_search, $exp_replace, $full_text);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													}
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+												}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											// Do the 'normal' processing - in principle, as previously - but think about the order.
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+											if ($proc_funcs && !empty($full_text)) // some more speed
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											{
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												// Split out and ignore any scripts and style blocks. With just two choices we can match the closing tag in the regex
 												$subcon = preg_split('#((?:<s)(?:cript[^>]+>.*?</script>|tyle[^>]+>.*?</style>))#mis', $full_text, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
 												foreach ($subcon as $sub_blk)
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+												{
-												Issue #1547 - Corrected rendering of <script> tags from database.

											
										
										
											2016-04-17 12:49:15 -07:00
+													if(substr($sub_blk, 0, 7) == '<script') // Strip scripts unless permitted
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														if($opts['scripts'])
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														{
-												Issue #1547 - Corrected rendering of <script> tags from database.

											
										
										
											2016-04-17 12:49:15 -07:00
+															$ret_parser .= html_entity_decode($sub_blk, ENT_QUOTES);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
 													}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													elseif(substr($sub_blk, 0, 6) == '<style')
 													{
 														// Its a style block - just pass it through unaltered - except, do we need the line break stuff? - QUERY XXX-01
-												Debug info cleanup

											
										
										
											2015-03-29 20:26:35 -07:00
+														if(defined('DB_INF_SHOW'))
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+														{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															echo "Processing stylesheet: {$sub_blk}<br />";
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+														}
-												Debug info cleanup

											
										
										
											2015-03-29 20:26:35 -07:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														$ret_parser .= $sub_blk;
 													}
 													else
 													{
 														// Do 'normal' processing on a chunk
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// Could put tag stripping in here
-												table bbcodes

											
										
										
											2012-06-09 12:01:24 +00:00
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+								/*
-												Restore some of the line break handling - ensures tables display properly


											
										
										
											2009-01-23 21:18:37 +00:00
+														//	Line break compression - filter white space after HTML tags - among other things, ensures HTML tables display properly
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+														// Hopefully now achieved by other means
 														if ($convertNL && !$opts['nobreak'])
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														{
 															$sub_blk = preg_replace("#>\s*[\r]*\n[\r]*#", ">", $sub_blk);
 														}
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+								*/
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														//	Link substitution
 														// Convert URL's to clickable links, unless modifiers or prefs override
 														if ($opts['link_click'])
 														{
-												Upgrade Fixes - Legacy Download image paths and Download Category icons.

											
										
										
											2016-12-05 15:41:19 -08:00
+															if ($opts['link_replace'] && defset('ADMIN_AREA') !== true)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															{
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
-												Automated clickable links can now be glyphs. eg. enter the following replacement text: 'fa-external-link.glyph'

											
										
										
											2014-07-05 20:51:22 -07:00
+																$link_text = $pref['link_text'];
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																$email_text = ($pref['email_text']) ? $this->replaceConstants($pref['email_text']) : LAN_EMAIL_SUBS;
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
 																$sub_blk = $this->makeClickable($sub_blk, 'url', array('sub'=> $link_text,'ext'=>$pref['links_new_window']));
 																$sub_blk = $this->makeClickable($sub_blk, 'email', array('sub'=> $email_text));
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 															else
 															{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
+																$sub_blk = $this->makeClickable($sub_blk, 'url', array('ext'=>true));
 																$sub_blk = $this->makeClickable($sub_blk, 'email');
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// Convert emoticons to graphical icons, if enabled
 														if ($opts['emotes'])
 														{
 															if (!is_object($this->e_emote))
 															{
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+															//	require_once(e_HANDLER.'emote_filter.php');
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																$this->e_emote = new e_emoteFilter;
 															}
 															$sub_blk = $this->e_emote->filterEmotes($sub_blk);
 														}
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// Reduce newlines in all forms to a single newline character (finds '\n', '\r\n', '\n\r')
 														if (!$opts['nobreak'])
 														{
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+															if ($convertNL && substr($sub_blk,0,6) != '[html]') //XXX Quick Fix, find a cleaner way.
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																// We may need to convert to <br /> later
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																$sub_blk = preg_replace("#[\r]*\n[\r]*#", E_NL, $sub_blk);
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															}
 															else
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																// Not doing any more - its HTML so keep \n so HTML is formatted
 																$sub_blk = preg_replace("#[\r]*\n[\r]*#", "\n", $sub_blk);
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														//	Entity conversion
 														// Restore entity form of quotes and such to single characters, except for text destined for tag attributes or JS.
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														if($opts['value'])
 														{
 															// output used for attribute values.
 															$sub_blk = str_replace($this->replace, $this->search, $sub_blk);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
 														else
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														{
 															// output not used for attribute values.
 															$sub_blk = str_replace($this->search, $this->replace, $sub_blk);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														//   BBCode processing (other than the four already done, which shouldn't appear at all in the text)
 														if ($parseBB !== FALSE)
-												Correct parser hooking logic


											
										
										
											2008-08-17 15:04:20 +00:00
+														{
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															if (!is_object($this->e_bb))
 															{
 																require_once(e_HANDLER.'bbcode_handler.php');
 																$this->e_bb = new e_bbcode;
 															}
 															if ($parseBB === TRUE)
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																// 'Normal' or 'legacy' processing
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
+																if($modifiers == "WYSIWYG")
 																{
 																	$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'wysiwyg');
 																}
 																else
 																{
 																	$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID);
 																}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 															elseif ($parseBB === 'STRIP')
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																// Need to strip all BBCodes
 																$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'default', TRUE);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 															else
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																// Need to strip just some BBCodes
 																$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'default', $parseBB);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
-												Correct parser hooking logic


											
										
										
											2008-08-17 15:04:20 +00:00
+														}
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// replace all {e_XXX} constants with their e107 value. modifier determines relative/absolute conversion
 														// (Moved to after bbcode processing by Cameron)
 														if ($opts['constants'])
 														{
-												Next mailer update


											
										
										
											2009-11-16 20:40:39 +00:00
+															$sub_blk = $this->replaceConstants($sub_blk, $opts['constants']);		// Now decodes text values
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// profanity filter
-												Issue #1356 - Installation and PHP notice fixes.

											
										
										
											2016-02-15 11:09:58 -08:00
+														if (!empty($pref['profanity_filter']))
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														{
 															if (!is_object($this->e_pf))
 															{
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+															//	require_once(e_HANDLER."profanity_filter.php");
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																$this->e_pf = new e_profanityFilter;
 															}
 															$sub_blk = $this->e_pf->filterProfanities($sub_blk);
 														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														//	Shortcodes
 														// Optional short-code conversion
 														if ($opts['parse_sc'])
 														{
 															$sub_blk = $this->parseTemplate($sub_blk, TRUE);
 														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														//Run any hooked in parsers
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														if ($opts['hook'])
 														{
 															if ( varset($pref['tohtml_hook']))
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															{
 																//Process the older tohtml_hook pref (deprecated)
 																foreach(explode(",", $pref['tohtml_hook']) as $hook)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																{
 																	if (!is_object($this->e_hook[$hook]))
 																	{
-												Fix for multiple 0.7 -> 0.8 upgrade issues.


											
										
										
											2009-10-22 13:00:37 +00:00
+																		if(is_readable(e_PLUGIN.$hook."/".$hook.".php"))
 																		{
 																			require_once(e_PLUGIN.$hook."/".$hook.".php");
 																			$hook_class = "e_".$hook;
 																			$this->e_hook[$hook] = new $hook_class;
 																		}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																	}
 																	$sub_blk = $this->e_hook[$hook]->$hook($sub_blk,$opts['context']);
 																}
 															}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															if(isset($pref['e_tohtml_list']) && is_array($pref['e_tohtml_list']))
 															{
 																foreach($pref['e_tohtml_list'] as $hook)
 																{
 																	if (!is_object($this->e_hook[$hook]))
 																	{
-												Fix for multiple 0.7 -> 0.8 upgrade issues.


											
										
										
											2009-10-22 13:00:37 +00:00
+																		if(is_readable(e_PLUGIN.$hook."/e_tohtml.php"))
 																		{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																			require_once(e_PLUGIN.$hook."/e_tohtml.php");
-												Fix for multiple 0.7 -> 0.8 upgrade issues.


											
										
										
											2009-10-22 13:00:37 +00:00
+																			$hook_class = "e_tohtml_".$hook;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																			$this->e_hook[$hook] = new $hook_class;
-												Fix for multiple 0.7 -> 0.8 upgrade issues.


											
										
										
											2009-10-22 13:00:37 +00:00
+																		}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																	}
-												Plugin Addons: e_tohtml.php deprecated in favor of new e_parse.php addon file. TinyMce now disables plugin hooks during parsing.

											
										
										
											2016-08-01 12:58:03 -07:00
 																	if(is_object( $this->e_hook[$hook]))
 																	{
 																		$sub_blk = $this->e_hook[$hook]->to_html($sub_blk, $opts['context']);
 																	}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																}
 															}
-												Plugin Addons: e_tohtml.php deprecated in favor of new e_parse.php addon file. TinyMce now disables plugin hooks during parsing.

											
										
										
											2016-08-01 12:58:03 -07:00
 															if(!empty($pref['e_parse_list']))
 															{
 																foreach($pref['e_parse_list'] as $plugin)
 																{
 																	$hookObj = e107::getAddon($plugin,'e_parse');
 																	if($tmp = e107::callMethod($hookObj, 'toHTML', $sub_blk, $opts['context']))
 																	{
 																		$sub_blk = $tmp;
 																	}
 																}
 															}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// 	Word wrap
 														if ($wrap && !$opts['nobreak'])
 														{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															$sub_blk = $this->textclean($sub_blk, $wrap);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														//	Search highlighting
 														if ($opts['emotes'])			// Why??
 														{
 															if ($this->checkHighlighting())
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																$sub_blk = $this->e_highlight($sub_blk, $this->e_query);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Quick fix for trailing line-breaks on block-level elements.

											
										
										
											2013-06-14 16:26:56 -07:00
 														if($convertNL == true)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															// Default replaces all \n with <br /> for HTML display
 															$nl_replace = '<br />';
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															if ($opts['nobreak'])
 															{
 																$nl_replace = '';
 															}
 															elseif ($opts['retain_nl'])
 															{
 																$nl_replace = "\n";
 															}
-												Quick fix for trailing line-breaks on block-level elements.

											
										
										
											2013-06-14 16:26:56 -07:00
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															$sub_blk = str_replace(E_NL, $nl_replace, $sub_blk);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														$ret_parser .= $sub_blk;
 													}	// End of 'normal' processing for a block of text
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												}		// End of 'foreach() on each block of non-script text
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											}		// End of 'normal' parsing (non-script text)
 											else
 											{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Text block that needed no processing at all
 												$ret_parser .= $full_text;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											}
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										}
-												Quick fix for trailing line-breaks on block-level elements.

											
										
										
											2013-06-14 16:26:56 -07:00
 										// Quick Fix - Remove trailing <br /> on block-level elements (eg. div, pre, table, etc. )
 										$srch = array();
 										$repl = array();
 										foreach($this->blockTags as $val)
 										{
 											$srch[] = "</".$val."><br />";
 											$repl[]	= "</".$val.">";
 										}
 										$ret_parser = str_replace($srch, $repl, $ret_parser);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										return trim($ret_parser);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
-												Upgraded hybridAuth to v2.8.1

											
										
										
											2016-12-08 07:24:31 -08:00
+									function toASCII($text)
 									{
-												toASCII method added.

											
										
										
											2016-12-08 08:21:58 -08:00
+										$char_map = array(
 											// Latin
 											'À' => 'A', 'Á' => 'A', 'Â' => 'A', 'Ã' => 'A', 'Ä' => 'A', 'Å' => 'A', 'Æ' => 'AE', 'Ç' => 'C',
 											'È' => 'E', 'É' => 'E', 'Ê' => 'E', 'Ë' => 'E', 'Ì' => 'I', 'Í' => 'I', 'Î' => 'I', 'Ï' => 'I',
 											'Ð' => 'D', 'Ñ' => 'N', 'Ò' => 'O', 'Ó' => 'O', 'Ô' => 'O', 'Õ' => 'O', 'Ö' => 'O', 'Ő' => 'O',
 											'Ø' => 'O', 'Ù' => 'U', 'Ú' => 'U', 'Û' => 'U', 'Ü' => 'U', 'Ű' => 'U', 'Ý' => 'Y', 'Þ' => 'TH',
 											'ß' => 'ss',
 											'à' => 'a', 'á' => 'a', 'â' => 'a', 'ã' => 'a', 'ä' => 'a', 'å' => 'a', 'æ' => 'ae', 'ç' => 'c',
 											'è' => 'e', 'é' => 'e', 'ê' => 'e', 'ë' => 'e', 'ì' => 'i', 'í' => 'i', 'î' => 'i', 'ï' => 'i',
 											'ð' => 'd', 'ñ' => 'n', 'ò' => 'o', 'ó' => 'o', 'ô' => 'o', 'õ' => 'o', 'ö' => 'o', 'ő' => 'o',
 											'ø' => 'o', 'ù' => 'u', 'ú' => 'u', 'û' => 'u', 'ü' => 'u', 'ű' => 'u', 'ý' => 'y', 'þ' => 'th',
 											'ÿ' => 'y',
 											// Latin symbols
 											'©' => '(c)',
 											// Greek
 											'Α' => 'A', 'Β' => 'B', 'Γ' => 'G', 'Δ' => 'D', 'Ε' => 'E', 'Ζ' => 'Z', 'Η' => 'H', 'Θ' => '8',
 											'Ι' => 'I', 'Κ' => 'K', 'Λ' => 'L', 'Μ' => 'M', 'Ν' => 'N', 'Ξ' => '3', 'Ο' => 'O', 'Π' => 'P',
 											'Ρ' => 'R', 'Σ' => 'S', 'Τ' => 'T', 'Υ' => 'Y', 'Φ' => 'F', 'Χ' => 'X', 'Ψ' => 'PS', 'Ω' => 'W',
 											'Ά' => 'A', 'Έ' => 'E', 'Ί' => 'I', 'Ό' => 'O', 'Ύ' => 'Y', 'Ή' => 'H', 'Ώ' => 'W', 'Ϊ' => 'I',
 											'Ϋ' => 'Y',
 											'α' => 'a', 'β' => 'b', 'γ' => 'g', 'δ' => 'd', 'ε' => 'e', 'ζ' => 'z', 'η' => 'h', 'θ' => '8',
 											'ι' => 'i', 'κ' => 'k', 'λ' => 'l', 'μ' => 'm', 'ν' => 'n', 'ξ' => '3', 'ο' => 'o', 'π' => 'p',
 											'ρ' => 'r', 'σ' => 's', 'τ' => 't', 'υ' => 'y', 'φ' => 'f', 'χ' => 'x', 'ψ' => 'ps', 'ω' => 'w',
 											'ά' => 'a', 'έ' => 'e', 'ί' => 'i', 'ό' => 'o', 'ύ' => 'y', 'ή' => 'h', 'ώ' => 'w', 'ς' => 's',
 											'ϊ' => 'i', 'ΰ' => 'y', 'ϋ' => 'y', 'ΐ' => 'i',
 											// Turkish
 											'Ş' => 'S', 'İ' => 'I', 'Ç' => 'C', 'Ü' => 'U', 'Ö' => 'O', 'Ğ' => 'G',
 											'ş' => 's', 'ı' => 'i', 'ç' => 'c', 'ü' => 'u', 'ö' => 'o', 'ğ' => 'g',
 											// Russian
 											'А' => 'A', 'Б' => 'B', 'В' => 'V', 'Г' => 'G', 'Д' => 'D', 'Е' => 'E', 'Ё' => 'Yo', 'Ж' => 'Zh',
 											'З' => 'Z', 'И' => 'I', 'Й' => 'J', 'К' => 'K', 'Л' => 'L', 'М' => 'M', 'Н' => 'N', 'О' => 'O',
 											'П' => 'P', 'Р' => 'R', 'С' => 'S', 'Т' => 'T', 'У' => 'U', 'Ф' => 'F', 'Х' => 'H', 'Ц' => 'C',
 											'Ч' => 'Ch', 'Ш' => 'Sh', 'Щ' => 'Sh', 'Ъ' => '', 'Ы' => 'Y', 'Ь' => '', 'Э' => 'E', 'Ю' => 'Yu',
 											'Я' => 'Ya',
 											'а' => 'a', 'б' => 'b', 'в' => 'v', 'г' => 'g', 'д' => 'd', 'е' => 'e', 'ё' => 'yo', 'ж' => 'zh',
 											'з' => 'z', 'и' => 'i', 'й' => 'j', 'к' => 'k', 'л' => 'l', 'м' => 'm', 'н' => 'n', 'о' => 'o',
 											'п' => 'p', 'р' => 'r', 'с' => 's', 'т' => 't', 'у' => 'u', 'ф' => 'f', 'х' => 'h', 'ц' => 'c',
 											'ч' => 'ch', 'ш' => 'sh', 'щ' => 'sh', 'ъ' => '', 'ы' => 'y', 'ь' => '', 'э' => 'e', 'ю' => 'yu',
 											'я' => 'ya',
 											// Ukrainian
 											'Є' => 'Ye', 'І' => 'I', 'Ї' => 'Yi', 'Ґ' => 'G',
 											'є' => 'ye', 'і' => 'i', 'ї' => 'yi', 'ґ' => 'g',
 											// Czech
 											'Č' => 'C', 'Ď' => 'D', 'Ě' => 'E', 'Ň' => 'N', 'Ř' => 'R', 'Š' => 'S', 'Ť' => 'T', 'Ů' => 'U',
 											'Ž' => 'Z',
 											'č' => 'c', 'ď' => 'd', 'ě' => 'e', 'ň' => 'n', 'ř' => 'r', 'š' => 's', 'ť' => 't', 'ů' => 'u',
 											'ž' => 'z',
 											// Polish
 											'Ą' => 'A', 'Ć' => 'C', 'Ę' => 'e', 'Ł' => 'L', 'Ń' => 'N', 'Ó' => 'o', 'Ś' => 'S', 'Ź' => 'Z',
 											'Ż' => 'Z',
 											'ą' => 'a', 'ć' => 'c', 'ę' => 'e', 'ł' => 'l', 'ń' => 'n', 'ó' => 'o', 'ś' => 's', 'ź' => 'z',
 											'ż' => 'z',
 											// Latvian
 											'Ā' => 'A', 'Č' => 'C', 'Ē' => 'E', 'Ģ' => 'G', 'Ī' => 'i', 'Ķ' => 'k', 'Ļ' => 'L', 'Ņ' => 'N',
 											'Š' => 'S', 'Ū' => 'u', 'Ž' => 'Z',
 											'ā' => 'a', 'č' => 'c', 'ē' => 'e', 'ģ' => 'g', 'ī' => 'i', 'ķ' => 'k', 'ļ' => 'l', 'ņ' => 'n',
 											'š' => 's', 'ū' => 'u', 'ž' => 'z'
 										);
-												Upgraded hybridAuth to v2.8.1

											
										
										
											2016-12-08 07:24:31 -08:00
-												toASCII method added.

											
										
										
											2016-12-08 08:21:58 -08:00
+										return str_replace(array_keys($char_map), $char_map, $text);
-												Upgraded hybridAuth to v2.8.1

											
										
										
											2016-12-08 07:24:31 -08:00
 									}
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
-												Fixes #850 - Gallery missing description when using simple brackets. Fixes #607 - embedded English text.

											
										
										
											2015-02-01 17:27:05 -08:00
+									/**
 									 * Use it on html attributes to avoid breaking markup .
 									 * @example echo "<a href='#' title='".$tp->toAttribute($text)."'>Hello</a>";
 									 */
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+									function toAttribute($text)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// URLs posted without HTML access may have an &amp; in them.
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// Xhtml compliance.
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+										$text = htmlspecialchars($text, ENT_QUOTES, 'UTF-8');
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
-												Fixes #850 - Gallery missing description when using simple brackets. Fixes #607 - embedded English text.

											
										
										
											2015-02-01 17:27:05 -08:00
+										if(!preg_match('/&#|\'|"|<|>/s', $text))
-												Committed wrong version of file earlier


											
										
										
											2007-12-30 23:31:18 +00:00
+										{
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											$text = $this->replaceConstants($text);
 											return $text;
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+										}
 										else
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												Corrected toAttribute method. <select> item was not respecting attributes when using renderElement().

											
										
										
											2016-04-14 16:32:48 -07:00
+											return $text;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
 									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									/**
 									 * Convert text blocks which are to be embedded within JS
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string|array $stringarray
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 * @return string
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									 */
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									public function toJS($stringarray)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$search = array("\r\n", "\r", "<br />", "'");
 										$replace = array("\\n", "", "\\n", "\'");
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										$stringarray = str_replace($search, $replace, $stringarray);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$stringarray = strip_tags($stringarray);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$trans_tbl = get_html_translation_table(HTML_ENTITIES);
 										$trans_tbl = array_flip($trans_tbl);
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										return strtr($stringarray, $trans_tbl);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												Issue #991: Removed all Selectize JS code from PHP. Additional option (settings) for e107::js(). Integrates Selectize.js using e107::js(settings) and JavaScript behaviors with jQuery Once.

											
										
										
											2015-12-02 14:23:48 +01:00
+									/**
 									 * Converts a PHP variable into its JavaScript equivalent.
 									 * We use HTML-safe strings, with several characters escaped.
 									 *
 									 * @param mixed $var
 									 * @return string
 									 */
 									public function toJSON($var)
 									{
 										// The PHP version cannot change within a request.
 										static $php530;
 										if(!isset($php530))
 										{
 											$php530 = version_compare(PHP_VERSION, '5.3.0', '>=');
 										}
 										if($php530)
 										{
 											// Encode <, >, ', &, and " using the json_encode() options parameter.
 											return json_encode($var, JSON_HEX_TAG | JSON_HEX_APOS | JSON_HEX_AMP | JSON_HEX_QUOT);
 										}
 										return $this->toJSONhelper($var);
 									}
 									/**
 									 * Encodes a PHP variable to HTML-safe JSON for PHP versions below 5.3.0.
 									 *
 									 * @param mixed $var
 									 * @return string
 									 */
 									public function toJSONhelper($var)
 									{
 										switch(gettype($var))
 										{
 											case 'boolean':
 												return $var ? 'true' : 'false'; // Lowercase necessary!
 											case 'integer':
 											case 'double':
 												return $var;
 											case 'resource':
 											case 'string':
 												// Always use Unicode escape sequences (\u0022) over JSON escape
 												// sequences (\") to prevent browsers interpreting these as
 												// special characters.
 												$replace_pairs = array(
 													// ", \ and U+0000 - U+001F must be escaped according to RFC 4627.
 													'\\'           => '\u005C',
 													'"'            => '\u0022',
 													"\x00"         => '\u0000',
 													"\x01"         => '\u0001',
 													"\x02"         => '\u0002',
 													"\x03"         => '\u0003',
 													"\x04"         => '\u0004',
 													"\x05"         => '\u0005',
 													"\x06"         => '\u0006',
 													"\x07"         => '\u0007',
 													"\x08"         => '\u0008',
 													"\x09"         => '\u0009',
 													"\x0a"         => '\u000A',
 													"\x0b"         => '\u000B',
 													"\x0c"         => '\u000C',
 													"\x0d"         => '\u000D',
 													"\x0e"         => '\u000E',
 													"\x0f"         => '\u000F',
 													"\x10"         => '\u0010',
 													"\x11"         => '\u0011',
 													"\x12"         => '\u0012',
 													"\x13"         => '\u0013',
 													"\x14"         => '\u0014',
 													"\x15"         => '\u0015',
 													"\x16"         => '\u0016',
 													"\x17"         => '\u0017',
 													"\x18"         => '\u0018',
 													"\x19"         => '\u0019',
 													"\x1a"         => '\u001A',
 													"\x1b"         => '\u001B',
 													"\x1c"         => '\u001C',
 													"\x1d"         => '\u001D',
 													"\x1e"         => '\u001E',
 													"\x1f"         => '\u001F',
 													// Prevent browsers from interpreting these as as special.
 													"'"            => '\u0027',
 													'<'            => '\u003C',
 													'>'            => '\u003E',
 													'&'            => '\u0026',
 													// Prevent browsers from interpreting the solidus as special and
 													// non-compliant JSON parsers from interpreting // as a comment.
 													'/'            => '\u002F',
 													// While these are allowed unescaped according to ECMA-262, section
 													// 15.12.2, they cause problems in some JSON parsers.
 													"\xe2\x80\xa8" => '\u2028', // U+2028, Line Separator.
 													"\xe2\x80\xa9" => '\u2029', // U+2029, Paragraph Separator.
 												);
 												return '"' . strtr($var, $replace_pairs) . '"';
 											case 'array':
 												// Arrays in JSON can't be associative. If the array is empty or if it
 												// has sequential whole number keys starting with 0, it's not associative
 												// so we can go ahead and convert it as an array.
 												if(empty($var) || array_keys($var) === range(0, sizeof($var) - 1))
 												{
 													$output = array();
 													foreach($var as $v)
 													{
 														$output[] = $this->toJSONhelper($v);
 													}
 													return '[ ' . implode(', ', $output) . ' ]';
 												}
 												break;
 											// Otherwise, fall through to convert the array as an object.
 											case 'object':
 												$output = array();
 												foreach($var as $k => $v)
 												{
 													$output[] = $this->toJSONhelper(strval($k)) . ':' . $this->toJSONhelper($v);
 												}
 												return '{' . implode(', ', $output) . '}';
 											default:
 												return 'null';
 										}
 									}
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									/**
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									 * Convert Text for RSS/XML use.
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $text
 									 * @param boolean $tags [optional]
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 * @return string
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									 */
-												RSS validation fixes.

											
										
										
											2015-06-17 11:26:14 -07:00
+									function toRss($text, $tags = false)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												RSS validation fixes.

											
										
										
											2015-06-17 11:26:14 -07:00
+										if($tags != true)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										{
-												RSS validation fixes.

											
										
										
											2015-06-17 11:26:14 -07:00
+											$text = $this -> toHTML($text, true);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											$text = strip_tags($text);
 										}
 										$text = $this->toEmail($text);
-												Fix for bbcodes showing in news rss feed.

											
										
										
											2015-07-16 18:12:41 -07:00
-												RSS strip html comments from rss feed.

											
										
										
											2015-09-05 20:00:34 -07:00
+										$search = array("&amp;#039;", "&amp;#036;", "&#039;", "&#036;", e_BASE, "href='request.php","<!-- bbcode-html-start -->","<!-- bbcode-html-end -->");
 										$replace = array("'", '$', "'", '$', SITEURL, "href='".SITEURL."request.php", '', '' );
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+										$text = str_replace($search, $replace, $text);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Issue #1281 Include og:image meta for Page-Body content.

											
										
										
											2016-01-27 12:05:15 -08:00
+										$text = $this->ampEncode($text);
-												RSS validation fixes.

											
										
										
											2015-06-17 11:26:14 -07:00
 										if($tags == true && ($text))
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$text = "<![CDATA[".$text."]]>";
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
 										return $text;
 									}
-												toText() method now strips HTML correctly.

											
										
										
											2015-06-07 18:16:06 -07:00
-												Issue #1281 Include og:image meta for Page-Body content.

											
										
										
											2016-01-27 12:05:15 -08:00
+									/**
 									 * Clean and Encode Ampersands '&' for output to browser.
 									 * @param string $text
 									 * @return mixed|string
 									 */
 									function ampEncode($text='')
 									{
 										// Fix any left-over '&'
 										$text = str_replace('&amp;', '&', $text); //first revert any previously converted.
 										$text = str_replace('&', '&amp;', $text);
 										return $text;
 									}
-												toText() method now strips HTML correctly.

											
										
										
											2015-06-07 18:16:06 -07:00
+									/**
 									 * Convert any string back to plain text.
 									 * @param $text
 									 * @return mixed|string
 									 */
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									function toText($text)
 									{
-												toText() method now strips HTML correctly.

											
										
										
											2015-06-07 18:16:06 -07:00
 										if($this->isHtml($text)==true)
 										{
 											$text = $this->toHtml($text,true);
 											$text = strip_tags($text);
 										}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										$search = array("&amp;#039;", "&amp;#036;", "&#039;", "&#036;", "&#092;", "&amp;#092;");
 										$replace = array("'", '$', "'", '$', "\\", "\\");
 										$text = str_replace($search, $replace, $text);
 										return $text;
 									}
-												Blurry avatar fix and usersettings template fix. Also added $tp->setThumbSize($w,$h,$crop);

											
										
										
											2013-05-07 18:32:38 -07:00
-												Issue #372 - I have added toDate() to the text-parser - for returning dates formatted for HTML. It should be backwards compatible and currently supports Livestamp.js . Example usage: echo $tp->toDate(1370234650);

											
										
										
											2013-06-02 21:46:53 -07:00
+									/**
 									 * Set the dimensions of a thumbNail (generated by thumbUrl)
 									 */
-												Blurry avatar fix and usersettings template fix. Also added $tp->setThumbSize($w,$h,$crop);

											
										
										
											2013-05-07 18:32:38 -07:00
+									public function setThumbSize($w=null,$h=null,$crop=null)
 									{
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+										if($w !== null)
-												Blurry avatar fix and usersettings template fix. Also added $tp->setThumbSize($w,$h,$crop);

											
										
										
											2013-05-07 18:32:38 -07:00
+										{
 											$this->thumbWidth = intval($w);
 										}
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+										if($h !== null)
-												Blurry avatar fix and usersettings template fix. Also added $tp->setThumbSize($w,$h,$crop);

											
										
										
											2013-05-07 18:32:38 -07:00
+										{
 											$this->thumbHeight = intval($h);
 										}
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+										if($crop !== null)
-												Blurry avatar fix and usersettings template fix. Also added $tp->setThumbSize($w,$h,$crop);

											
										
										
											2013-05-07 18:32:38 -07:00
+										{
 											$this->thumbCrop = intval($crop);
 										}
 									}
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+									public function thumbEncode($val = null)
 									{
 										if($val !== null)
 										{
 											$this->thumbEncode = intval($val);
 											return null;
 										}
 										return $this->thumbEncode;
 									}
-												Blurry avatar fix and usersettings template fix. Also added $tp->setThumbSize($w,$h,$crop);

											
										
										
											2013-05-07 18:32:38 -07:00
-												Include width/height attributes in img tags with cropped thumbnails.

											
										
										
											2016-02-07 13:28:55 -08:00
+									/**
 									 * Retrieve img tag width and height attributes for current thumbnail.
 									 * @return string
 									 */
 									public function thumbDimensions($type = 'single')
 									{
 										if(!empty($this->thumbCrop) && !empty($this->thumbWidth) && !empty($this->thumbHeight)) // dimensions are known.
 										{
 											return ($type == 'double') ? 'width="'.$this->thumbWidth.'" height="'.$this->thumbHeight.'"' : "width='".$this->thumbWidth."' height='".$this->thumbHeight."'";
 										}
-												Blurry avatar fix and usersettings template fix. Also added $tp->setThumbSize($w,$h,$crop);

											
										
										
											2013-05-07 18:32:38 -07:00
-												Include width/height attributes in img tags with cropped thumbnails.

											
										
										
											2016-02-07 13:28:55 -08:00
+										return null;
 									}
-												Gallery Portfolio Thumbnails added.

											
										
										
											2014-01-14 08:16:12 -08:00
 									/**
 									 * Set or Get the value of the thumbNail Width.
 									 * @param $width (optional)
 									 */
 									public function thumbWidth($width=null)
 									{
-												Prevent filtering of audio and video tags.

											
										
										
											2015-06-28 16:31:02 -07:00
+										if($width !== null)
-												Gallery Portfolio Thumbnails added.

											
										
										
											2014-01-14 08:16:12 -08:00
+										{
 											$this->thumbWidth = intval($width);
 										}
 										return $this->thumbWidth;
 									}
-												toImage() fix.

											
										
										
											2016-03-13 12:34:58 -07:00
+									/**
 									 * Set or Get the value of the thumbNailbCrop.
 									 * @param bool $status = true/false
 									 */
 									public function thumbCrop($status=false)
 									{
 										if($status !== false)
 										{
 											$this->thumbCrop = intval($status);
 										}
-												Gallery Portfolio Thumbnails added.

											
										
										
											2014-01-14 08:16:12 -08:00
-												toImage() fix.

											
										
										
											2016-03-13 12:34:58 -07:00
+										return $this->thumbCrop;
 									}
-												Gallery Portfolio Thumbnails added.

											
										
										
											2014-01-14 08:16:12 -08:00
 									/**
 									 * Set or Get the value of the thumbNail height.
 									 * @param $height (optional)
 									 */
 									public function thumbHeight($height= null)
 									{
-												Typo fix

											
										
										
											2014-11-18 21:11:26 +02:00
+										if($height !== null)
-												Gallery Portfolio Thumbnails added.

											
										
										
											2014-01-14 08:16:12 -08:00
+										{
 											$this->thumbHeight = intval($height);
 										}
 										return $this->thumbHeight;
 									}
-												Parser: thumbUrl() documentation and 'scale' option added.

											
										
										
											2016-10-17 11:18:32 -07:00
-												Forum upgrade fixes. Forum-attachments now converted in batches.

											
										
										
											2013-03-31 00:06:21 -07:00
+									/**
-												Parser: thumbUrl() documentation and 'scale' option added.

											
										
										
											2016-10-17 11:18:32 -07:00
+									 * Generate an auto-sized Image URL.
-												adminUI: Fixes #1686 - 'max' option added to writeParms when type=images. Default value is 5. thumbUrl() empty image prevention.

											
										
										
											2016-10-17 16:22:24 -07:00
+									 * @param $url - path to image or leave blank for a placeholder. eg. {e_MEDIA}folder/my-image.jpg
-												Parser: thumbUrl() documentation and 'scale' option added.

											
										
										
											2016-10-17 11:18:32 -07:00
+									 * @param array $options - width and height, but leaving this empty and using $this->thumbWidth() and $this->thumbHeight() is preferred. ie. {SETWIDTH: w=x&y=x}
 									 * @param int $options ['w'] width (optional)
 									 * @param int $options ['h'] height (optional)
 									 * @param bool|string $options ['crop'] true/false or A(auto) or T(op) or B(ottom) or C(enter) or L(eft) or R(right)
 									 * @param string $options ['scale'] '2x' (optional)
 									 * @param bool $options ['x'] encode/mask the url parms (optional)
 									 * @param bool $options ['nosef'] when set to true disabled SEF Url being returned (optional)
 									 * @param bool $raw set to true when the $url does not being with an e107 variable ie. "{e_XXXX}" eg. {e_MEDIA} (optional)
 									 * @param bool $full when true returns full http:// url. (optional)
 									 * @return string
-												Forum upgrade fixes. Forum-attachments now converted in batches.

											
										
										
											2013-03-31 00:06:21 -07:00
+									 */
-												Bootstrap3 news and search-menu template fixes.
New thumb.php placeholder feature added.
New {GLYPH} shortcode added. Usage: {GLYPH=time}

											
										
										
											2013-12-31 09:59:19 -08:00
+									public function thumbUrl($url=null, $options = array(), $raw = false, $full = false)
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+									{
-												thumbUrl method now converts shortcode paths (testing required)

											
										
										
											2013-03-18 12:26:55 +02:00
+										if(substr($url,0,3)=="{e_") // Fix for broken links that use {e_MEDIA} etc.
-												Fix for broken thumbnails while using {e_xxxx}

											
										
										
											2011-08-19 23:39:44 +00:00
+										{
-												thumbUrl method now converts shortcode paths (testing required)

											
										
										
											2013-03-18 12:26:55 +02:00
+											//$url = $this->replaceConstants($url,'abs');
 											// always switch to 'nice' urls when SC is used
-												Fix for thumbUrl() error.

											
										
										
											2013-03-18 03:41:05 -07:00
+											$url = str_replace($this->getUrlConstants('sc'), $this->getUrlConstants('raw'), $url);
-												Fix for broken thumbnails while using {e_xxxx}

											
										
										
											2011-08-19 23:39:44 +00:00
+										}
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+										if(!is_array($options))
 										{
 											parse_str($options, $options);
 										}
-												Parser: thumbUrl() documentation and 'scale' option added.

											
										
										
											2016-10-17 11:18:32 -07:00
 										if(!empty($options['scale'])) // eg. scale the width height 2x 3x 4x. etc.
 										{
 											$options['return'] = 'src';
 											$options['size'] = $options['scale'];
 											unset($options['scale']);
 											return $this->thumbSrcSet($url,$options);
 										}
-												Prevent hash disclosure.

											
										
										
											2013-04-27 13:15:04 -07:00
 										if(strstr($url,e_MEDIA) || strstr($url,e_SYSTEM)) // prevent disclosure of 'hashed' path.
 										{
 											$raw = true;
 										}
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
 										if($raw) $url = $this->createConstants($url, 'mix');
-												Image-preview path fix. Resize-on-Import added to Media-manager. 

											
										
										
											2011-08-22 23:52:45 +00:00
-												Fixes related to Gallery image import, watermarks and thumbnails. 

											
										
										
											2012-07-14 10:40:40 +00:00
+										$baseurl = ($full ? SITEURL : e_HTTP).'thumb.php?';
-												TinyMce fixes and support for raw html or bbcodes. (depending on Html posting preference)

											
										
										
											2013-02-28 03:38:50 -08:00
-												Media-Manager fixes and enhancements. Glyphs are now searchable.

											
										
										
											2014-01-09 04:42:13 -08:00
+										$thurl = 'src='.urlencode($url).'&amp;';
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
-												PHP7 fix for message_handler. Plugin Builder now includes specific keyword drop-down menu for use on e107.org

											
										
										
											2016-04-12 19:56:29 -07:00
+									//	e107::getDebug()->log("Thumb: ".basename($url). print_a($options,true), E107_DBG_BASIC);
-												adminUI: Fixes #1686 - 'max' option added to writeParms when type=images. Default value is 5. thumbUrl() empty image prevention.

											
										
										
											2016-10-17 16:22:24 -07:00
+										if(!empty($options) && (isset($options['w']) || isset($options['aw']) || isset($options['h'])))
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+										{
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+											$options['w']       = varset($options['w']);
 											$options['h']       = varset($options['h']);
 											$options['crop']    = (isset($options['aw']) || isset($options['ah'])) ? 1 : varset($options['crop']);
 											$options['aw']      = varset($options['aw']);
 											$options['ah']      = varset($options['ah']);
 											$options['x']       = varset($options['x']);
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+										}
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+										else
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+										{
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+											$options['w']       = $this->thumbWidth;
 											$options['h']       = $this->thumbHeight;
 											$options['crop']    = $this->thumbCrop;
 											$options['aw']      = null;
 											$options['ah']      = null;
 											$options['x']       = $this->thumbEncode;
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+										}
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
 										if(!empty($options['crop']))
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+										{
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+											if(!empty($options['aw']) || !empty($options['ah']))
-												{SETIMAGE} can now set Height and also crop the image. eg. {SETIMAGE: w=300&h=200&crop=1}

											
										
										
											2013-03-24 03:03:31 -07:00
+											{
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+												$options['w']	= $options['aw'] ;
 												$options['h']	= $options['ah'] ;
-												{SETIMAGE} can now set Height and also crop the image. eg. {SETIMAGE: w=300&h=200&crop=1}

											
										
										
											2013-03-24 03:03:31 -07:00
+											}
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
 											$thurl .= 'aw='.intval($options['w']).'&amp;ah='.intval($options['h']);
-												thumbUrl() fix.

											
										
										
											2016-10-18 10:20:10 -07:00
+											if(!is_numeric($options['crop']))
-												Thumbnail cropping fixes. thumbUrl() support added.

											
										
										
											2016-10-11 14:58:08 -07:00
+											{
 												$thurl .= '&amp;c='.$options['crop'];
 												$options['nosef'] = true;
 											}
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+										}
 										else
 										{
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
 											$thurl .= 'w='.intval($options['w']).'&amp;h='.intval($options['h']);
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+										}
-												Fixes #1257 SEFURLs for thumb images. Needs testing. See e107.htaccess for required additions/modifications - Set HTTP_MOD_REWRITE_MEDIA to "On"

											
										
										
											2016-02-03 18:17:14 -08:00
-												Thumbnail cropping fixes. thumbUrl() support added.

											
										
										
											2016-10-11 14:58:08 -07:00
+										if(e_MOD_REWRITE_MEDIA == true && empty($options['nosef']) )// Experimental SEF URL support.
-												Fixes #1257 SEFURLs for thumb images. Needs testing. See e107.htaccess for required additions/modifications - Set HTTP_MOD_REWRITE_MEDIA to "On"

											
										
										
											2016-02-03 18:17:14 -08:00
+										{
 											$options['full'] = $full;
 											$options['ext'] = substr($url,-3);
 											$options['thurl'] = $thurl;
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+										//	$options['x'] = $this->thumbEncode();
-												Issue #1257 Added SEF Thumb Urls for Avatar images.

											
										
										
											2016-02-04 12:42:48 -08:00
 											if($sefUrl = $this->thumbUrlSEF($url,$options))
 											{
 												return $sefUrl;
 											}
-												Fixes #1257 SEFURLs for thumb images. Needs testing. See e107.htaccess for required additions/modifications - Set HTTP_MOD_REWRITE_MEDIA to "On"

											
										
										
											2016-02-03 18:17:14 -08:00
+										}
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+										if(!empty($options['x'] ))//base64 encode url
-												Upgrade PHP thumb and watermarks for images added

											
										
										
											2012-07-02 01:32:56 +00:00
+										{
-												Fixes related to Gallery image import, watermarks and thumbnails. 

											
										
										
											2012-07-14 10:40:40 +00:00
+											$thurl = 'id='.base64_encode($thurl);
-												Upgrade PHP thumb and watermarks for images added

											
										
										
											2012-07-02 01:32:56 +00:00
+										}
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
-												Fixes related to Gallery image import, watermarks and thumbnails. 

											
										
										
											2012-07-14 10:40:40 +00:00
+										return $baseurl.$thurl;
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+									}
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
 									/**
 									 * Experimental: Generate a Thumb URL for use in the img srcset attribute.
 									 * @param string $src eg. {e_MEDIA_IMAGE}myimage.jpg
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+									 * @param int|str $width - desired size in px or '2x' or '3x' or null for all or array (
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
+									 * @return string
 									 */
 									function thumbSrcSet($src='', $width=null)
 									{
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+										if(is_array($width))
 										{
 											$parm = $width;
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+											$multiply = $width['size'];
-												PHP Notice removal

											
										
										
											2016-09-17 11:10:25 -07:00
+											$encode = (!empty($width['x'])) ? $width['x'] : false;
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+											$width = $width['size'];
 										}
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
 									//	$encode =  $this->thumbEncode();;
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
+										if($width == null || $width=='all')
 										{
 											$links = array();
 											$mag = ($width == null) ? array(1, 2) : array(160,320,460,600,780,920,1100);
 											foreach($mag as $v)
 											{
 												$w = ($this->thumbWidth * $v);
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+												$h =  ($this->thumbHeight * $v);
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+												$att = (!empty($this->thumbCrop)) ? array('aw' => $w, 'ah' => $h) : array('w' => $w, 'h' => $h);
 												$att['x'] = $encode;
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
 												$add = ($width == null) ? " ".$v."x" : " ".$v."w";
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+												$links[] = $this->thumbUrl($src, $att).$add; // " w".$width; //
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
+											}
 											return implode(", ",$links);
 										}
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+										elseif($multiply == '2x' || $multiply == '3x' || $multiply == '4x')
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
+										{
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
 											if(empty($parm['w']) && isset($parm['h']))
 											{
 												$parm['h'] = ($parm['h'] * $multiply) ;
-												Fix for thumbnail generator with height value only

											
										
										
											2016-04-13 19:44:46 -07:00
+												return $this->thumbUrl($src, $parm)." h".$parm['h']." ".$multiply;
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+											}
 											$width = (!empty($parm['w'])) ? ($parm['w'] * $multiply) : ($this->thumbWidth * $multiply);
 											$height = (!empty($parm['h'])) ? ($parm['h'] * $multiply) : ($this->thumbHeight * $multiply);
-												Banner width may now be set on a per-menu basis.

											
										
										
											2016-03-12 00:15:29 -08:00
+										}
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
+										else
 										{
 											$height = (($this->thumbHeight * $width) / $this->thumbWidth);
 										}
-												Thumbnail cache issue #1648

											
										
										
											2016-05-13 07:14:49 -07:00
+										if(!isset($parm['aw']))
 										{
 											$parm['aw'] = null;
 										}
 										if(!isset($parm['ah']))
 										{
 											$parm['ah'] = null;
 										}
-												PHP Notice removal

											
										
										
											2016-09-17 11:10:25 -07:00
+										if(!isset($parm['x']))
 										{
 											$parm['x'] = null;
 										}
 										if(!isset($parm['crop']))
 										{
 											$parm['crop'] = null;
 										}
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+										$parms = array('w'=>$width,'h'=>$height,'crop'=> $parm['crop'],'x'=>$parm['x'], 'aw'=>$parm['aw'],'ah'=>$parm['ah']);
 									//	$parms = !empty($this->thumbCrop) ? array('aw' => $width, 'ah' => $height, 'x'=>$encode) : array('w'  => $width,	'h'  => $height, 'x'=>$encode	);
 										// $parms['x'] = $encode;
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
-												Parser: thumbUrl() documentation and 'scale' option added.

											
										
										
											2016-10-17 11:18:32 -07:00
+										if(!empty($parm['return']) && $parm['return'] == 'src')
 										{
 											return $this->thumbUrl($src, $parms);
 										}
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
+										return $this->thumbUrl($src, $parms)." ".$width."w";
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
+									}
-												Parser: thumbUrl() documentation and 'scale' option added.

											
										
										
											2016-10-17 11:18:32 -07:00
+									public function thumbUrlScale($src,$parm)
 									{
 									}
-												Fixes #1257 SEFURLs for thumb images. Needs testing. See e107.htaccess for required additions/modifications - Set HTTP_MOD_REWRITE_MEDIA to "On"

											
										
										
											2016-02-03 18:17:14 -08:00
+									/**
 									 * Used by thumbUrl when SEF Image URLS is active. @see e107.htaccess
 									 * @param $url
 									 * @param array $options
 									 * @return string
 									 */
 									private function thumbUrlSEF($url='', $options=array())
 									{
-												TinyMce styling corrected to work with newer version of TinyMce. TinyMce parser image path corrections. Old Tinymce popup code removed.

											
										
										
											2016-03-10 13:33:11 -08:00
+										if(!empty($options['full']))
 										{
 											$base = SITEURL;
 										}
 										else
 										{
 											$base = (!empty($options['ebase'])) ? '{e_BASE}' : e_HTTP;
 										}
 									//	$base = (!empty($options['full'])) ? SITEURL : e_HTTP;
-												Fixes #1257 SEFURLs for thumb images. Needs testing. See e107.htaccess for required additions/modifications - Set HTTP_MOD_REWRITE_MEDIA to "On"

											
										
										
											2016-02-03 18:17:14 -08:00
-												Issue #1257 Added SEF Thumb Urls for Avatar images.

											
										
										
											2016-02-04 12:42:48 -08:00
+										if(!empty($options['x'])  && !empty($options['ext'])) // base64 encoded. Build URL for:  RewriteRule ^media\/img\/([-A-Za-z0-9+/]*={0,3})\.(jpg|gif|png)?$ thumb.php?id=$1
-												Fixes #1257 SEFURLs for thumb images. Needs testing. See e107.htaccess for required additions/modifications - Set HTTP_MOD_REWRITE_MEDIA to "On"

											
										
										
											2016-02-03 18:17:14 -08:00
+										{
 											$ext = strtolower($options['ext']);
 											return $base.'media/img/'.base64_encode($options['thurl']).'.'.str_replace("jpeg", "jpg", $ext);
 										}
-												Issue #1257 Added SEF Thumb Urls for Avatar images.

											
										
										
											2016-02-04 12:42:48 -08:00
+										elseif(strstr($url, 'e_MEDIA_IMAGE')) // media images.
 										{
 											$sefPath = 'media/img/';
 											$clean = array('{e_MEDIA_IMAGE}','e_MEDIA_IMAGE/');
 										}
 										elseif(strstr($url, 'e_AVATAR')) // avatars
 										{
 											$sefPath = 'media/avatar/';
 											$clean = array('{e_AVATAR}','e_AVATAR/');
 										}
-												SEF URL supported for theme images (within media-manager) added. LOGO resizing is now on by default when pref is used.

											
										
										
											2016-02-06 19:33:23 -08:00
+										elseif(strstr($url, 'e_THEME')) // theme folder images.
 										{
 											$sefPath = 'theme/img/';
 											$clean = array('{e_THEME}','e_THEME/');
 										}
-												Issue #1257 Added SEF Thumb Urls for Avatar images.

											
										
										
											2016-02-04 12:42:48 -08:00
+										else
 										{
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+											// e107::getDebug()->log("SEF URL False: ".$url);
-												Issue #1257 Added SEF Thumb Urls for Avatar images.

											
										
										
											2016-02-04 12:42:48 -08:00
+											return false;
 										}
-												Fixes #1257 SEFURLs for thumb images. Needs testing. See e107.htaccess for required additions/modifications - Set HTTP_MOD_REWRITE_MEDIA to "On"

											
										
										
											2016-02-03 18:17:14 -08:00
 										// Build URL for ReWriteRule ^media\/img\/(a)?([\d]*)x(a)?([\d]*)\/(.*)?$ thumb.php?src=e_MEDIA_IMAGE/$5&$1w=$2&$3h=$4
-												Issue #1257 Added SEF Thumb Urls for Avatar images.

											
										
										
											2016-02-04 12:42:48 -08:00
+										$sefUrl =  $base.$sefPath;
-												Fixes #1257 SEFURLs for thumb images. Needs testing. See e107.htaccess for required additions/modifications - Set HTTP_MOD_REWRITE_MEDIA to "On"

											
										
										
											2016-02-03 18:17:14 -08:00
 										if(vartrue($options['aw']) || vartrue($options['ah']))
 										{
 											$sefUrl .= 'a'.intval($options['aw']) .'xa'. intval($options['ah']);
 										}
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+										elseif(!empty($options['crop']))
 										{
-												Thumbnail cropping fixes. thumbUrl() support added.

											
										
										
											2016-10-11 14:58:08 -07:00
-												thumbUrl() fix.

											
										
										
											2016-10-18 10:20:10 -07:00
+											if(!is_numeric($options['crop']))
-												Thumbnail cropping fixes. thumbUrl() support added.

											
										
										
											2016-10-11 14:58:08 -07:00
+											{
 												$sefUrl .= strtolower($options['crop']).intval($options['w']) .'x'.strtolower($options['crop']). intval($options['h']);
 											}
 											else
 											{
 												$sefUrl .= 'a'.intval($options['w']) .'xa'. intval($options['h']);
 											}
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+										}
-												Fixes #1257 SEFURLs for thumb images. Needs testing. See e107.htaccess for required additions/modifications - Set HTTP_MOD_REWRITE_MEDIA to "On"

											
										
										
											2016-02-03 18:17:14 -08:00
+										else
 										{
 											$sefUrl .= intval($options['w']) .'x'. intval($options['h']);
 										}
 										$sefUrl .= '/';
 										$sefUrl .= str_replace($clean,'',$url);
 										return $sefUrl;
 									}
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+									/**
 									 * Help for converting to more safe URLs
 									 * e.g. {e_MEDIA_FILE}path/to/video.flv => e_MEDIA_FILE/path/to/video.flv
 									 *
 									 * @todo support for ALL URL shortcodes (replacement methods)
 									 * @param string $type sc|raw|rev|all
 									 * @return array
 									 */
 									public function getUrlConstants($type = 'sc')
 									{
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+										// sub-folders first!
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+										static $array = array(
 											'e_MEDIA_FILE/' 	=> '{e_MEDIA_FILE}',
 											'e_MEDIA_VIDEO/' 	=> '{e_MEDIA_VIDEO}',
 											'e_MEDIA_IMAGE/' 	=> '{e_MEDIA_IMAGE}',
 											'e_MEDIA_ICON/' 	=> '{e_MEDIA_ICON}',
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+											'e_AVATAR/' 		=> '{e_AVATAR}',
-												Issue #257 , Issue #64, Issue #236 - usersettings and avatar upload issues.

											
										
										
											2013-05-07 20:30:20 -07:00
+											'e_AVATAR_DEFAULT/' => '{e_AVATAR_DEFAULT}',
 											'e_AVATAR_UPLOAD/' => '{e_AVATAR_UPLOAD}',
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+											'e_WEB_JS/' 		=> '{e_WEB_JS}',
 											'e_WEB_CSS/' 		=> '{e_WEB_CSS}',
 											'e_WEB_IMAGE/' 		=> '{e_WEB_IMAGE}',
-												Issue #317 - specific path has been added for importing into media-manager. e_IMPORT.

											
										
										
											2013-05-17 18:17:04 -07:00
+											'e_IMPORT/' 		=> '{e_IMPORT}',
-												Issue #57 - fixes the error but doesn't correct a general issue with the way the mailout section is coded. Admin navigation is  currently broken on some pages. Perhaps @e107steved has some answers.

											
										
										
											2012-12-16 13:19:52 -08:00
+										//	'e_WEB_PACK/' 		=> '{e_WEB_PACK}',
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
 											'e_BASE/' 			=> '{e_BASE}',
 											'e_ADMIN/' 			=> '{e_ADMIN}',
 											'e_IMAGE/' 			=> '{e_IMAGE}',
 											'e_THEME/' 			=> '{e_THEME}',
 											'e_PLUGIN/' 		=> '{e_PLUGIN}',
-												Issue #57 - fixes the error but doesn't correct a general issue with the way the mailout section is coded. Admin navigation is  currently broken on some pages. Perhaps @e107steved has some answers.

											
										
										
											2012-12-16 13:19:52 -08:00
+											'e_HANDLER/' 		=> '{e_HANDLER}', // BC
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+											'e_MEDIA/' 			=> '{e_MEDIA}',
 											'e_WEB/' 			=> '{e_ADMIN}',
-												Mailing now considered to be 'frontend' when loading templates. Fixes consistency issues. (eg. login notifications etc.)

											
										
										
											2014-09-03 14:09:10 -07:00
+									//		'THEME/'			=> '{THEME}',
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+										);
-												Fixes problem where {e_PLUGIN}, {THEME} etc. are replaced with empty values when using parseTemplate(). Now retains theme for use by replaceConstants() etc.

											
										
										
											2014-08-18 22:57:18 -07:00
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+										switch ($type)
 										{
 											case 'sc':
 												return array_values($array);
 											break;
 											case 'raw':
 												return array_keys($array);
 											break;
 											case 'rev':
 												return array_reverse($array, true);
 											break;
 											case 'all':
 												return $array;
 											break;
 										}
 										return array();
 									}
-												Emoticon BBcode Fix

											
										
										
											2013-04-22 20:46:06 -07:00
 									function getEmotes()
 									{
 										return $this->e_emote->emotes;
 									}
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									/**
 									 * Replace e107 path constants
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									 * Note: only an ADMIN user can convert {e_ADMIN}
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+									 * TODO - runtime cache of search/replace arrays (object property) when $mode !== ''
-												phpDoc corrections


											
										
										
											2009-09-12 18:20:23 +00:00
+									 * @param string $text
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									 * @param string $mode [optional]	abs|full "full" = produce absolute URL path, e.g. http://sitename.com/e107_plugins/etc
-												Fix errors in path decoding for sitelinks (e_PLUGIN substituted as e_IMAGE)

											
										
										
											2012-12-16 19:23:11 +00:00
+									 * 									'abs' = produce truncated URL path, e.g. e107plugins/etc
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									 * 									"" (default) = URL's get relative path e.g. ../e107_plugins/etc
-												phpDoc corrections


											
										
										
											2009-09-12 18:20:23 +00:00
+									 * @param mixed $all [optional] 	if TRUE, then when $mode is "full" or TRUE, USERID is also replaced...
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									 * 									when $mode is "" (default), ALL other e107 constants are replaced
-												JS Manager handler - almost ready, awaiting for theme.xml & plugin.xml required additions, admin header.php synchronized with the changes, e107::getJs() proxy method added, new js related preferences - Work in progress


											
										
										
											2009-09-29 17:40:56 +00:00
+									 * @return string
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									 */
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									public function replaceConstants($text, $mode = '', $all = FALSE)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
+										if($mode != "")
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										{
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+											$e107 = e107::getInstance();
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+											$replace_relative = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												$e107->getFolder('media_files'),
 												$e107->getFolder('media_video'),
 												$e107->getFolder('media_image'),
 												$e107->getFolder('media_icon'),
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+												$e107->getFolder('avatars'),
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												$e107->getFolder('web_js'),
 												$e107->getFolder('web_css'),
 												$e107->getFolder('web_image'),
-												Fix errors in path decoding for sitelinks (e_PLUGIN substituted as e_IMAGE)

											
										
										
											2012-12-16 19:23:11 +00:00
+												//$e107->getFolder('web_pack'),
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+												e_IMAGE_ABS,
 												e_THEME_ABS,
-												e_parse: global removal (getFolder in action), e107 coding standards related changes, minor code improvements, some problems pointed (see FIXME, XXX comments)


											
										
										
											2009-08-20 12:27:26 +00:00
+												$e107->getFolder('images'),
 												$e107->getFolder('plugins'),
 												$e107->getFolder('files'),
 												$e107->getFolder('themes'),
-												Notice removal


											
										
										
											2009-09-04 15:24:41 +00:00
+											//	$e107->getFolder('downloads'),
-												Media Manager work..


											
										
										
											2009-11-14 04:13:11 +00:00
+												$e107->getFolder('handlers'),
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												$e107->getFolder('media'),
 												$e107->getFolder('web'),
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+												$e107->site_theme ? $e107->getFolder('themes').$e107->site_theme.'/' : '',
 												defset('THEME_ABS'),
 												(ADMIN ? $e107->getFolder('admin') : ''),
-												Minor fixes and improvements

											
										
										
											2011-11-25 17:36:40 +00:00
+												'',
 												$e107->getFolder('core'),
 												$e107->getFolder('system'),
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+											);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											switch ($mode)
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
+											{
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+												case 'abs':
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													$replace_absolute = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														e_MEDIA_FILE_ABS,
 														e_MEDIA_VIDEO_ABS,
 														e_MEDIA_IMAGE_ABS,
 														e_MEDIA_ICON_ABS,
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+														e_AVATAR_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														e_JS_ABS,
 														e_CSS_ABS,
 														e_WEB_IMAGE_ABS,
-												Improved DEBUG info for PATHs etc.

											
										
										
											2012-12-14 22:25:14 -08:00
+												//		e_PACK_ABS,
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+														e_IMAGE_ABS,
 														e_THEME_ABS,
 														e_IMAGE_ABS,
 														e_PLUGIN_ABS,
 														e_FILE_ABS,
 														e_THEME_ABS,
-												Notice removal


											
										
										
											2009-09-04 15:24:41 +00:00
+												//		e_DOWNLOAD_ABS, //impossible when download is done via php.
-												Fix errors in path decoding for sitelinks (e_PLUGIN substituted as e_IMAGE)

											
										
										
											2012-12-16 19:23:11 +00:00
+														'', // handlers - no ABS path available
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														e_MEDIA_ABS,
 														e_WEB_ABS,
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+														defset('THEME_ABS'),
 														defset('THEME_ABS'),
 														(ADMIN ? e_ADMIN_ABS : ''),
-												Minor fixes and improvements

											
										
										
											2011-11-25 17:36:40 +00:00
+														$e107->server_path,
 														'', // no e_CORE absolute path
 														'', // no e_SYSTEM absolute path
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+													);
 												break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+												case 'full':
 													$replace_absolute = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														SITEURLBASE.e_MEDIA_FILE_ABS,
 														SITEURLBASE.e_MEDIA_VIDEO_ABS,
 														SITEURLBASE.e_MEDIA_IMAGE_ABS,
 														SITEURLBASE.e_MEDIA_ICON_ABS,
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+														SITEURLBASE.e_AVATAR_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														SITEURLBASE.e_JS_ABS,
 														SITEURLBASE.e_CSS_ABS,
 														SITEURLBASE.e_WEB_IMAGE_ABS,
-												Improved DEBUG info for PATHs etc.

											
										
										
											2012-12-14 22:25:14 -08:00
+												//		SITEURLBASE.e_PACK_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														SITEURLBASE.e_IMAGE_ABS,
 														SITEURLBASE.e_THEME_ABS,
 														SITEURLBASE.e_IMAGE_ABS,
 														SITEURLBASE.e_PLUGIN_ABS,
 														SITEURLBASE.e_FILE_ABS, // deprecated
 														SITEURLBASE.e_THEME_ABS,
 														//SITEURL.$e107->getFolder('downloads'),
-												Fix errors in path decoding for sitelinks (e_PLUGIN substituted as e_IMAGE)

											
										
										
											2012-12-16 19:23:11 +00:00
+														'', //  handlers - no ABS path available
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														SITEURLBASE.e_MEDIA_ABS,
 														SITEURLBASE.e_WEB_ABS,
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+														defset('THEME_ABS') ? SITEURLBASE.THEME_ABS : '',
 														defset('THEME_ABS') ? SITEURLBASE.THEME_ABS : '',
 														(ADMIN ? SITEURLBASE.e_ADMIN_ABS : ''),
-												Minor fixes and improvements

											
										
										
											2011-11-25 17:36:40 +00:00
+														SITEURL,
 														'', // no e_CORE absolute path
 														'', // no e_SYSTEM absolute path
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+													);
 												break;
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
+											}
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+											// sub-folders first!
 											$search = array(
 												'{e_MEDIA_FILE}',
 												'{e_MEDIA_VIDEO}',
 												'{e_MEDIA_IMAGE}',
 												'{e_MEDIA_ICON}',
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+												'{e_AVATAR}',
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												'{e_WEB_JS}',
 												'{e_WEB_CSS}',
 												'{e_WEB_IMAGE}',
-												Improved DEBUG info for PATHs etc.

											
										
										
											2012-12-14 22:25:14 -08:00
+										//		'{e_WEB_PACK}',
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												"{e_IMAGE_ABS}",
 												"{e_THEME_ABS}",
 												"{e_IMAGE}",
 												"{e_PLUGIN}",
 												"{e_FILE}",
 												"{e_THEME}",
 												//,"{e_DOWNLOAD}"
 												"{e_HANDLER}",
 												"{e_MEDIA}",
 												"{e_WEB}",
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+												"{THEME}",
 												"{THEME_ABS}",
 												"{e_ADMIN}",
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												"{e_BASE}",
-												Minor fixes and improvements

											
										
										
											2011-11-25 17:36:40 +00:00
+												"{e_CORE}",
 												"{e_SYSTEM}",
-												Media Manager work..


											
										
										
											2009-11-14 04:13:11 +00:00
+											);
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+											/*if (ADMIN)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											{
-												e_parse: global removal (getFolder in action), e107 coding standards related changes, minor code improvements, some problems pointed (see FIXME, XXX comments)


											
										
										
											2009-08-20 12:27:26 +00:00
+												$replace_relative[] = $e107->getFolder('admin');
 												$replace_absolute[] = SITEURL.$e107->getFolder('admin');
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												$search[] = "{e_ADMIN}";
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+											}*/
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+											if ($all)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											{
 												if (USER)
 												{  // Can only replace with valid number for logged in users
 													$replace_relative[] = USERID;
 													$replace_absolute[] = USERID;
 												}
 												else
 												{
 													$replace_relative[] = '';
 													$replace_absolute[] = '';
 												}
 												$search[] = "{USERID}";
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+											}
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+											// current THEME
 											/*if(!defined('THEME'))
 											{
 												//if not already parsed by doReplace
 												$text = str_replace(array('{THEME}', '{THEME_ABS}'), '', $text);
 											}
 											else
 											{
 												$replace_relative[] = THEME;
 												$replace_absolute[] = THEME_ABS;
 												$search[] = "{THEME}";
 												$replace_relative[] = THEME;
 												$replace_absolute[] = THEME_ABS;
 												$search[] = "{THEME_ABS}";
 											}*/
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
 											$replace = ((string)$mode == "full" || (string)$mode=='abs' ) ? $replace_absolute : $replace_relative;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											return str_replace($search,$replace,$text);
 										}
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
-												Committed wrong version of file earlier


											
										
										
											2007-12-30 23:31:18 +00:00
+								//		$pattern = ($all ? "#\{([A-Za-z_0-9]*)\}#s" : "#\{(e_[A-Z]*)\}#s");
-												EONE-11 (Task): fixing relative path shortcode replacement (sync with new e107 paths)

											
										
										
											2010-03-16 18:41:35 +00:00
+										$pattern = ($all ? '#\{([A-Za-z_0-9]*)\}#s' : '#\{(e_[A-Z]*(?:_IMAGE|_VIDEO|_FILE|_CONTENT|_ICON|_AVATAR|_JS|_CSS|_PACK|_DB|_ABS){0,1})\}#s');
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$text = preg_replace_callback($pattern, array($this, 'doReplace'), $text);
 										if(!defined('THEME'))
 										{
 											//if not already parsed by doReplace
 											$text = str_replace(array('{THEME}', '{THEME_ABS}'), '', $text);
 										}
-.7 -> 0.8 upgrade fixes


											
										
										
											2009-11-19 13:46:29 +00:00
+										else
 										{
 											$srch = array('{THEME}', '{THEME_ABS}');
 											$repl = array(THEME, THEME_ABS);
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+											$text = str_replace($srch, $repl, $text);
-.7 -> 0.8 upgrade fixes


											
										
										
											2009-11-19 13:46:29 +00:00
+										}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
 										return $text;
 									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									function doReplace($matches)
 									{
-												e_parse notice (installation routine)

											
										
										
											2011-01-15 11:53:31 +00:00
+										if(defined($matches[1]) && (deftrue('ADMIN') || strpos($matches[1], 'ADMIN') === FALSE))
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										{
 											return constant($matches[1]);
 										}
 										return $matches[1];
 									}
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+									/**
 									 * Create and substitute e107 constants in passed URL
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									 *
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+									 * @param string $url
-												Next mailer update


											
										
										
											2009-11-16 20:40:39 +00:00
+									 * @param integer $mode 0-folders, 1-relative ('rel'), 2-absolute ('abs'), 3-full ('full') (with domain), 4-absolute & relative ('mix') (combination of 1,2,3)
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 * @return string
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+									 */
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									public function createConstants($url, $mode = 0)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									{
-												Corrected path issue in createConstants()

											
										
										
											2011-05-10 12:36:11 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										//FIXME - create constants for absolute paths and site URL's
-												Next mailer update


											
										
										
											2009-11-16 20:40:39 +00:00
+										if (!is_numeric($mode))
 										{
 											switch ($mode)
 											{
 												case 'rel' : $mode = 1; break;
 												case 'abs' : $mode = 2; break;
 												case 'full' : $mode = 3; break;
 												case 'mix' : $mode = 4; break;
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+												case 'nice': $mode = 5; break;
-												Next mailer update


											
										
										
											2009-11-16 20:40:39 +00:00
+											}
 										}
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+										$e107 = e107::getInstance();
 										switch($mode)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										{
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											case 0: // folder name only.
 												$tmp = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_MEDIA_FILE}'	=> $e107->getFolder('media_files'),
-												Corrected path issue in createConstants()

											
										
										
											2011-05-10 12:36:11 +00:00
+													'{e_MEDIA_VIDEO}'	=> $e107->getFolder('media_videos'),
 													'{e_MEDIA_IMAGE}'	=> $e107->getFolder('media_images'),
 													'{e_MEDIA_ICON}'	=> $e107->getFolder('media_icons'),
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+													'{e_AVATAR}'		=> $e107->getFolder('avatars'),
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_WEB_JS}'		=> $e107->getFolder('web_js'),
 													'{e_WEB_CSS}'		=> $e107->getFolder('web_css'),
-												Corrected path issue in createConstants()

											
										
										
											2011-05-10 12:36:11 +00:00
+													'{e_WEB_IMAGE}'		=> $e107->getFolder('web_images'),
-												Files directory no longer created during install. ( Issue #45 )

											
										
										
											2012-12-16 13:02:19 -08:00
+											//		'{e_WEB_PACK}'		=> $e107->getFolder('web_packs'),
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+													'{e_IMAGE}' 	=> $e107->getFolder('images'),
 													'{e_PLUGIN}'	=> $e107->getFolder('plugins'),
 													'{e_FILE}'		=> $e107->getFolder('files'),
 													'{e_THEME}'		=> $e107->getFolder('themes'),
 													'{e_DOWNLOAD}'	=> $e107->getFolder('downloads'),
 													'{e_ADMIN}'		=> $e107->getFolder('admin'),
-												create constants were missing e_MEDIA

											
										
										
											2010-03-01 14:29:49 +00:00
+													'{e_HANDLER}'	=> $e107->getFolder('handlers'),
 													'{e_MEDIA}'		=> $e107->getFolder('media'),
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													'{e_WEB}'		=> $e107->getFolder('web'),
-												Issue #81 - fix for {e_UPLOAD} appearing in generated plugin site-links.

											
										
										
											2013-01-17 21:35:43 -08:00
+													'{e_UPLOAD}'	=> $e107->getFolder('uploads'),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													);
-												Corrected path issue in createConstants()

											
										
										
											2011-05-10 12:36:11 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Corrected path issue in createConstants()

											
										
										
											2011-05-10 12:36:11 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											case 1: // relative path only
 												$tmp = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_MEDIA_FILE}'	=> e_MEDIA_FILE,
 													'{e_MEDIA_VIDEO}'	=> e_MEDIA_VIDEO,
 													'{e_MEDIA_IMAGE}'	=> e_MEDIA_IMAGE,
 													'{e_MEDIA_ICON}'	=> e_MEDIA_ICON,
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+													'{e_AVATAR}'		=> e_AVATAR,
-												Issue #317 - specific path has been added for importing into media-manager. e_IMPORT.

											
										
										
											2013-05-17 18:17:04 -07:00
+													'{e_IMPORT}'		=> e_IMPORT,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_WEB_JS}'		=> e_WEB_JS,
 													'{e_WEB_CSS}'		=> e_WEB_CSS,
 													'{e_WEB_IMAGE}'		=> e_WEB_IMAGE,
-												Issue #57 - fixes the error but doesn't correct a general issue with the way the mailout section is coded. Admin navigation is  currently broken on some pages. Perhaps @e107steved has some answers.

											
										
										
											2012-12-16 13:19:52 -08:00
+												//	'{e_WEB_PACK}'		=> e_WEB_PACK,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+													'{e_IMAGE}'		=> e_IMAGE,
 													'{e_PLUGIN}'	=> e_PLUGIN,
 													'{e_FILE}'		=> e_FILE,
 													'{e_THEME}'		=> e_THEME,
 													'{e_DOWNLOAD}'	=> e_DOWNLOAD,
 													'{e_ADMIN}'		=> e_ADMIN,
-												create constants were missing e_MEDIA

											
										
										
											2010-03-01 14:29:49 +00:00
+													'{e_HANDLER}'	=> e_HANDLER,
 													'{e_MEDIA}'		=> e_MEDIA,
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													'{e_WEB}'		=> e_WEB,
-												Fix for Image Import previews.

											
										
										
											2012-12-22 02:11:03 -08:00
+													'{e_UPLOAD}'	=> e_UPLOAD,
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+												);
 											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											case 2: // absolute path only
 												$tmp = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_MEDIA_FILE}'	=> e_MEDIA_FILE_ABS,
 													'{e_MEDIA_VIDEO}'	=> e_MEDIA_VIDEO_ABS,
 													'{e_MEDIA_IMAGE}'	=> e_MEDIA_IMAGE_ABS,
 													'{e_MEDIA_ICON}'	=> e_MEDIA_ICON_ABS,
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+													'{e_AVATAR}'		=> e_AVATAR_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_WEB_JS}'		=> e_JS_ABS,
 													'{e_WEB_CSS}'		=> e_CSS_ABS,
 													'{e_WEB_IMAGE}'		=> e_WEB_IMAGE_ABS,
-												Improved DEBUG info for PATHs etc.

											
										
										
											2012-12-14 22:25:14 -08:00
+											//		'{e_WEB_PACK}'		=> e_PACK_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+													'{e_IMAGE}'		=> e_IMAGE_ABS,
 													'{e_PLUGIN}'	=> e_PLUGIN_ABS,
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													'{e_FILE}'		=> e_FILE_ABS, // deprecated
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+													'{e_THEME}'		=> e_THEME_ABS,
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													'{e_DOWNLOAD}'	=> e_HTTP.'request.php?',// FIXME - we need solution!
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+													'{e_ADMIN}'		=> e_ADMIN_ABS,
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													//'{e_HANDLER}'	=> e_HANDLER_ABS, - no ABS path available
-												create constants were missing e_MEDIA

											
										
										
											2010-03-01 14:29:49 +00:00
+													'{e_MEDIA}'		=> e_MEDIA_ABS,
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													'{e_WEB}'		=> e_WEB_ABS,
-												- Custom Pages front-end almost completely rewritten, backend fixes, SEF URL support, introducing page batch shortcodes and templates (available per page), compatibility stylesheet added (core css and jayya theme), tagwords plugin links proper to new pages URLs;
- Large number of system stability fixes and obsolete code replacement

											
										
										
											2011-12-07 21:07:21 +00:00
+													'{e_BASE}'		=> e_HTTP,
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+												);
 											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											case 3: // full path (e.g http://domain.com/e107_images/)
 												$tmp = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_MEDIA_FILE}'	=> SITEURLBASE.e_MEDIA_FILE_ABS,
 													'{e_MEDIA_VIDEO}'	=> SITEURLBASE.e_MEDIA_VIDEO_ABS,
 													'{e_MEDIA_IMAGE}'	=> SITEURLBASE.e_MEDIA_IMAGE_ABS,
 													'{e_MEDIA_ICON}'	=> SITEURLBASE.e_MEDIA_ICON_ABS,
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+													'{e_AVATAR}'		=> SITEURLBASE.e_AVATAR_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_WEB_JS}'		=> SITEURLBASE.e_JS_ABS,
 													'{e_WEB_CSS}'		=> SITEURLBASE.e_CSS_ABS,
 													'{e_WEB_IMAGE}'		=> SITEURLBASE.e_WEB_IMAGE_ABS,
-												Improved DEBUG info for PATHs etc.

											
										
										
											2012-12-14 22:25:14 -08:00
+											//		'{e_WEB_PACK}'		=> SITEURLBASE.e_PACK_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
 													'{e_IMAGE}'		=> SITEURLBASE.e_IMAGE_ABS,
 													'{e_PLUGIN}'	=> SITEURLBASE.e_PLUGIN_ABS,
 													'{e_FILE}'		=> SITEURLBASE.e_FILE_ABS, // deprecated
 													'{e_THEME}'		=> SITEURLBASE.e_THEME_ABS,
 													'{e_DOWNLOAD}'	=> SITEURLBASE.e_HTTP.'request.php?',// FIXME - we need solution!
 													'{e_ADMIN}'		=> SITEURLBASE.e_ADMIN_ABS,
 													//'{e_HANDLER}'	=> e_HANDLER_ABS, - no ABS path available
 													'{e_MEDIA}'		=> SITEURLBASE.e_MEDIA_ABS,
 													'{e_WEB}'		=> SITEURLBASE.e_WEB_ABS,
-												- Custom Pages front-end almost completely rewritten, backend fixes, SEF URL support, introducing page batch shortcodes and templates (available per page), compatibility stylesheet added (core css and jayya theme), tagwords plugin links proper to new pages URLs;
- Large number of system stability fixes and obsolete code replacement

											
										
										
											2011-12-07 21:07:21 +00:00
+													'{e_BASE}'		=> SITEURL,
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+												);
 											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											case 4: // absolute & relative paths
-												e107 createConstants typo


											
										
										
											2009-09-29 11:32:09 +00:00
+												$url = $this->createConstants($url, 3);
 												$url = $this->createConstants($url, 2);
 												$url = $this->createConstants($url, 1);
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+												return $url;
 											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+											case 5: // nice urls - e.g. e_MEDIA_VIDEO/mystream.flv
 												$url = $this->createConstants($url, 4);
 												return str_replace($this->getUrlConstants('sc'), $this->getUrlConstants('raw'), $url);
 											break;
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											default:
 												$tmp = array();
 											break;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
-												A proper handling of RFC3986 network-path references

											
										
										
											2016-01-15 13:50:41 +02:00
+										$hasCDN = strpos($url, '//') === 0;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										foreach($tmp as $key=>$val)
 										{
-												A proper handling of RFC3986 network-path references

											
										
										
											2016-01-15 13:50:41 +02:00
+											// Fix - don't break the CDN '//cdn.com' URLs
 											if ($hasCDN && $val == '/') {
 												continue;
 											}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$len = strlen($val);
 											if(substr($url, 0, $len) == $val)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// replace the first instance only
 												return substr_replace($url, $key, 0, $len);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											}
 										}
 										return $url;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									//FIXME - $match not used?
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+									function e_highlight($text, $match)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												e_parse: global removal (getFolder in action), e107 coding standards related changes, minor code improvements, some problems pointed (see FIXME, XXX comments)


											
										
										
											2009-08-20 12:27:26 +00:00
+										$tags = array();
 										preg_match_all('#<[^>]+>#', $text, $tags);
 										$text = preg_replace('#<[^>]+>#', '<|>', $text);
 										$text = preg_replace('#(\b".$match."\b)#i', '<span class="searchhighlight">\\1</span>', $text);
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+										foreach ($tags[0] as $tag)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												e_parse: global removal (getFolder in action), e107 coding standards related changes, minor code improvements, some problems pointed (see FIXME, XXX comments)


											
										
										
											2009-08-20 12:27:26 +00:00
+											$text = preg_replace('#<\|>#', $tag, $text, 1);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
 										return $text;
 									}
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
-												Issue #372 - I have added toDate() to the text-parser - for returning dates formatted for HTML. It should be backwards compatible and currently supports Livestamp.js . Example usage: echo $tp->toDate(1370234650);

											
										
										
											2013-06-02 21:46:53 -07:00
+									/**
 									 * Convert Text to a suitable format for use in emails. eg. relative links will be replaced with full links etc.
 									 * @param string $text
 									 * @param boolean $posted - if the text has been posted. (uses stripslashes etc)
 									 * @param string $mods - flags for text transformation.
 									 */
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									public function toEmail($text, $posted = "", $mods = "parse_sc, no_make_clickable")
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+										if ($posted === TRUE)
-												Committed wrong version of file earlier


											
										
										
											2007-12-30 23:31:18 +00:00
+										{
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+											if (MAGIC_QUOTES_GPC)
 											{
 												$text = stripslashes($text);
 											}
 											$text = preg_replace('#\[(php)#i', '&#91;\\1', $text);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$text = (strtolower($mods) != "rawtext") ? $this->replaceConstants($text, "full") : $text;
-												Fix for toEmail() method encoding of quotes.

											
										
										
											2015-05-21 21:49:32 -07:00
 										if($this->isHtml($text))
 										{
 											$text = str_replace(array("[html]","[/html]"), "", $text);
 											$text = html_entity_decode( $text, ENT_COMPAT, 'UTF-8');
 										}
 										else
 										{
-												Fix for bbcodes showing in news rss feed.

											
										
										
											2015-07-16 18:12:41 -07:00
-												Fix for toEmail() method encoding of quotes.

											
										
										
											2015-05-21 21:49:32 -07:00
+											$text = $this->toHTML($text, true, $mods);
 										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										return $text;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												Move email obfuscation function somewhere sensible


											
										
										
											2008-10-30 22:42:41 +00:00
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
-												Issue #372 - I have added toDate() to the text-parser - for returning dates formatted for HTML. It should be backwards compatible and currently supports Livestamp.js . Example usage: echo $tp->toDate(1370234650);

											
										
										
											2013-06-02 21:46:53 -07:00
+									/**
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
+									 * Given an email address, returns a link including with obfuscated text.
 									 * e-email css in e107.css inserts the user/domain data for display.
 									 *
 									 * @param string $email
 									 * @param string $words [optional] text to display
 									 * @param null $subject [optional] default subject for email.
 									 * @return string
-												Issue #372 - I have added toDate() to the text-parser - for returning dates formatted for HTML. It should be backwards compatible and currently supports Livestamp.js . Example usage: echo $tp->toDate(1370234650);

											
										
										
											2013-06-02 21:46:53 -07:00
+									 */
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
+									function emailObfuscate($email, $words = null, $subject =null)
-												Move email obfuscation function somewhere sensible


											
										
										
											2008-10-30 22:42:41 +00:00
+									{
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
+										if(strpos($email, '@') === false)
-												Move email obfuscation function somewhere sensible


											
										
										
											2008-10-30 22:42:41 +00:00
+										{
 											return '';
 										}
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
-												Move email obfuscation function somewhere sensible


											
										
										
											2008-10-30 22:42:41 +00:00
+										if ($subject)
 										{
 											$subject = '?subject='.$subject;
 										}
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										list($name, $address) = explode('@', $email, 2);
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
 										if(empty($words))
 										{
 											$words = "&#64;";
 											$user = "data-user='".$this->obfuscate($name)."'";
 											$dom =  "data-dom='".$this->obfuscate($address)."'";
 										}
 										else
 										{
 											$user = '';
 											$dom = '';
 										}
 										$url = "mailto:".$email.$subject;
 										$safe = $this->obfuscate($url);
 										return "<a class='e-email' {$user} {$dom} rel='external' href='".$safe."'>".$words.'</a>';
-												Move email obfuscation function somewhere sensible


											
										
										
											2008-10-30 22:42:41 +00:00
+									}
-												Fixes #1408 - Email Obfuscation issue in IE.

											
										
										
											2016-03-09 12:12:15 -08:00
 									/**
 									 * Obfuscate text from bots using Randomized encoding.
 									 * @param $text
 									 * @return string
 									 */
 									public function obfuscate($text)
 									{
 										$ret = '';
 										foreach (str_split($text) as $letter)
 										{
 											switch (rand(1, 3))
 											{
 												// HTML entity code
 												case 1:
 													$ret .= '&#'.ord($letter).';';
 												break;
 												// Hex character code
 												case 2:
 													$ret .= '&#x'.dechex(ord($letter)).';';
 												break;
 												// Raw (no) encoding
 												case 3:
 													$ret .= $letter;
 											}
 										}
 										return $ret;
 									}
-												Issue #372 - I have added toDate() to the text-parser - for returning dates formatted for HTML. It should be backwards compatible and currently supports Livestamp.js . Example usage: echo $tp->toDate(1370234650);

											
										
										
											2013-06-02 21:46:53 -07:00
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+									public function __get($name)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									{
 										switch($name)
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+										{
 											case 'e_sc':
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												$ret = e107::getScParser();
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+											default:
 												trigger_error('$e107->$'.$name.' not defined', E_USER_WARNING);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												return NULL;
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+											break;
 										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+										$this->$name = $ret;
 										return $ret;
 									}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+								}
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
 								/**
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+								 * New v2 Parser
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								 * Start Fresh and Build on it over time to become eventual replacement to e_parse.
 								 * Cameron's DOM-based parser.
 								 */
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								class e_parser
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								{
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								    /**
 								     * @var DOMDocument
 								     */
 								    public $domObj                = null;
-												Issue #895, Issue #847 - Parser improvements.

											
										
										
											2015-04-11 12:33:21 -07:00
+									public $isHtml                  = false;
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								    protected $removedList        = array();
 								    protected $nodesToDelete      = array();
 								    protected $nodesToConvert     = array();
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
+								    protected $nodesToDisableSC = array();
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								    protected $pathList           = array();
 								    protected $allowedAttributes  = array(
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                                    'default'   => array('id', 'style', 'class'),
 								                                    'img'       => array('id', 'src', 'style', 'class', 'alt', 'title', 'width', 'height'),
-												Issue #283 target attribute is valid in html5

											
										
										
											2013-05-12 04:48:26 -07:00
+								                                    'a'         => array('id', 'href', 'style', 'class', 'title', 'target'),
-												Issue #450 - YouTube iframe arc attribute fix.

											
										
										
											2013-10-04 14:12:38 -07:00
+								                                    'script'	=> array('type', 'src', 'language'),
-												Tweaks to the banner menu rendering.

											
										
										
											2015-04-04 16:24:10 -07:00
+								                                    'iframe'	=> array('id', 'src', 'frameborder', 'class', 'width', 'height', 'style'),
 									                                'input'     => array('type','name','value','class','style'),
-												Prevent filtering of audio and video tags.

											
										
										
											2015-06-28 16:31:02 -07:00
+									                                'form'      => array('action','method','target'),
 									                                'audio'     => array('src','controls', 'autoplay', 'loop', 'muted', 'preload' ),
-												Fixes #1103 - html parser issue with table colspan.

											
										
										
											2015-06-30 19:44:33 -07:00
+									                                'video'     => array('autoplay', 'controls', 'height', 'loop', 'muted', 'poster', 'preload', 'src', 'width'),
 									                                'td'        => array('id', 'style', 'class', 'colspan', 'rowspan'),
 									                                'th'        => array('id', 'style', 'class', 'colspan', 'rowspan'),
 									                                'col'       => array('id', 'span', 'class','style')
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                                  );
 								    protected $badAttrValues     = array('javascript[\s]*?:','alert\(','vbscript[\s]*?:','data:text\/html', 'mhtml[\s]*?:', 'data:[\s]*?image');
 								    protected $replaceAttrValues = array(
 								        'default' => array()
 								    );
 								    protected $allowedTags        = array('html', 'body','div','a','img','table','tr', 'td', 'th', 'tbody', 'thead', 'colgroup', 'b',
-												added numbered list 'ol' to allowed tags.

											
										
										
											2014-06-27 23:11:51 -07:00
+								                                        'i', 'pre','code', 'strong', 'u', 'em','ul', 'ol', 'li','img','h1','h2','h3','h4','h5','h6','p',
-												Default image resize pref is now used correctly by TinyMce media-manager. Image captions may now be added to inline images. TinyMce media-manager 'cancel' button is working again.

											
										
										
											2016-01-11 20:53:05 -08:00
+								                                        'div','pre','section','article', 'blockquote','hgroup','aside','figure','figcaption', 'abbr','span', 'audio', 'video', 'br',
-												Plugin Addons: e_tohtml.php deprecated in favor of new e_parse.php addon file. TinyMce now disables plugin hooks during parsing.

											
										
										
											2016-08-01 12:58:03 -07:00
+								                                        'small', 'caption', 'noscript', 'hr', 'section', 'iframe', 'sub', 'sup', 'cite'
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+								                                   );
-												Fixes  #1547 - Parser support for embed and object tags.

											
										
										
											2016-04-17 13:26:52 -07:00
+								    protected $scriptTags 		= array('script','applet','form','input','button', 'embed', 'object'); //allowed when $pref['post_script'] is enabled.
-												Quick fix for trailing line-breaks on block-level elements.

											
										
										
											2013-06-14 16:26:56 -07:00
 									protected $blockTags		= array('pre','div','h1','h2','h3','h4','h5','h6','blockquote'); // element includes its own line-break.
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
 								    private $scriptAccess      = false; // nobody.
-												Email template simplification

											
										
										
											2016-05-20 15:04:51 -07:00
+									/**
 									 * e_parser constructor.
 									 */
 									public function __construct()
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    {
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+										$this->init();
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								         /*
 								        $meths = get_class_methods('DomDocument');
 								        sort($meths);
 								        print_a($meths);
 								        */
 								    }
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
 								    /**
 								     * Used by e_parse to start
 								     */
 								    function init()
 								    {
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+								        $this->domObj = new DOMDocument();
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								    }
-												New methods added to parser: addAllowedTag() and addAllowedAttribute() to use with the cleanHtml() method.

											
										
										
											2015-04-16 15:23:21 -07:00
 									/**
 									 * Add Allowed Tags.
 									 * @param string
 									 */
 									public function addAllowedTag($tag)
 									{
 										$this->allowedTags[] = $tag;
 									}
 									/**
 									 * @param $tag - html tag.
 									 * @param $attArray - array of attributes. eg. array('style', 'id', 'class') etc.
 									 */
 									public function addAllowedAttribute($tag, $attArray)
 									{
 										$this->allowedAttributes[$tag] = (array) $attArray;
 									}
 									/**
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								     * Set Allowed Tags.
 								     * @param $array
 								     */
 								    public function setAllowedTags($array=array())
 								    {
 								        $this->allowedTags = $array;
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+								    }
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+									/**
 									 * Set Script Access
 									 * @param $val int e_UC_MEMBER, e_UC_NOBODY, e_UC_MAINADMIN or userclass number.
 									 */
 									public function setScriptAccess($val)
 									{
 										$this->scriptAccess = $val;
 									}
 									public function getAllowedTags()
 									{
 										return $this->allowedTags;
 									}
 									public function getScriptAccess()
 									{
 										return $this->scriptAccess;
 									}
 									/**
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								     * Set Allowed Attributes.
 								     * @param $array
 								     */
 								    public function setAllowedAttributes($array=array())
 								    {
 								        $this->allowedAttributes = $array;
 								    }
-												Forum upgrade fixes. Forum-attachments now converted in batches.

											
										
										
											2013-03-31 00:06:21 -07:00
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								     /**
 								     * Set Script Tags.
 								     * @param $array
 								     */
 								    public function setScriptTags($array=array())
 								    {
 								        $this->scriptTags = $array;
 								    }
-												Forum upgrade fixes. Forum-attachments now converted in batches.

											
										
										
											2013-03-31 00:06:21 -07:00
 									/**
 									 * Add leading zeros to a number. eg. 3 might become 000003
 									 * @param $num integer
 									 * @param $numDigits - total number of digits
 									 * @return number with leading zeros.
 									 */
 									public function leadingZeros($num,$numDigits)
 									{
 										return sprintf("%0".$numDigits."d",$num);
 									}
-												More language-file cleanup (sprintf removal)

											
										
										
											2013-10-29 18:41:02 -07:00
+									/**
-												Updated failed-login message to include variable.

											
										
										
											2015-04-12 22:45:13 -07:00
+									 * Generic variable translator for LAN definitions.
-												More language-file cleanup (sprintf removal)

											
										
										
											2013-10-29 18:41:02 -07:00
+									 * @param $lan - string LAN
-												Updated failed-login message to include variable.

											
										
										
											2015-04-12 22:45:13 -07:00
+									 * @param string | array $vals - either a single value, which will replace '[x]' or an array with key=>value pairs.
 									 * @example $tp->lanVars("My name is [x] and I own a [y]", array('x'=>"John", 'y'=>"Cat"));
-												Some LAN cleanup. Admin Area caption issue (on legacy plugins) corrected.

											
										
										
											2015-06-26 20:24:53 -07:00
+									 * @example $tp->lanVars("My name is [x] and I own a [y]", array("John","Cat"));
-												Updated failed-login message to include variable.

											
										
										
											2015-04-12 22:45:13 -07:00
+									 * @return string
-												Language file cleanup

											
										
										
											2013-10-29 12:20:23 -07:00
+									 */
-												More language-file cleanup (sprintf removal)

											
										
										
											2013-10-29 18:41:02 -07:00
+									function lanVars($lan, $vals, $bold=false)
-												Language file cleanup

											
										
										
											2013-10-29 12:20:23 -07:00
+									{
-												More language-file cleanup (sprintf removal)

											
										
										
											2013-10-29 18:41:02 -07:00
 										$array = (!is_array($vals)) ? array('x'=>$vals) : $vals;
-												Updated failed-login message to include variable.

											
										
										
											2015-04-12 22:45:13 -07:00
 										$search = array();
 										$replace = array();
-												Some LAN cleanup. Admin Area caption issue (on legacy plugins) corrected.

											
										
										
											2015-06-26 20:24:53 -07:00
+										$defaults = array('x', 'y', 'z');
-												Language file cleanup

											
										
										
											2013-10-29 12:20:23 -07:00
+										foreach($array as $k=>$v)
 										{
-												Some LAN cleanup. Admin Area caption issue (on legacy plugins) corrected.

											
										
										
											2015-06-26 20:24:53 -07:00
+											if(is_numeric($k)) // convert array of numeric to x,y,z
 											{
 												$k = $defaults[$k];
 											}
-												Language file cleanup

											
										
										
											2013-10-29 12:20:23 -07:00
+											$search[] = "[".$k."]";
 											$replace[] = ($bold===true) ? "<strong>".$v."</strong>" : $v;
 										}
 										return str_replace($search, $replace, $lan);
 									}
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+									/**
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+									 * Return an Array of all specific tags found in an HTML document and their attributes.
 									 * @param $html - raw html code
 									 * @param $taglist - comma separated list of tags to search or '*' for all.
-												Modal styling and size fixes.

											
										
										
											2013-03-17 05:39:08 -07:00
+									 * @param $header - if the $html includes the html head or body tags - it should be set to true.
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+									 */
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+									public function getTags($html, $taglist='*', $header = false)
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+									{
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
 										if($header == false)
 										{
 											$html = "<html><body>".$html."</body></html>";
 										}
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										$doc = $this->domObj;
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
-												Better bootstrap detection.

											
										
										
											2013-03-19 19:05:58 -07:00
+										$doc->preserveWhiteSpace = true;
-												Warning removal

											
										
										
											2013-04-29 16:21:46 -07:00
+										libxml_use_internal_errors(true);
-												PHP Notice/Warning removal. 'field-help' containers may now be customized with: data-placement="[top|right|bottom|left]"

											
										
										
											2015-06-11 12:29:19 -07:00
+								        $doc->loadHTML($html);
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
 										$tg = explode(",", $taglist);
 										$ret = array();
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+										foreach($tg as $find)
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										{
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+									        $tmp = $doc->getElementsByTagName($find);
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+											foreach($tmp as $k=>$node)
 											{
 												$tag = $node->nodeName;
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+												$inner = $node->C14N();
 												 $inner = str_replace("&#xD;","",$inner);
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
 												foreach ($node->attributes as $attr)
 									            {
 													$name = $attr->nodeName;
 									           		$value = $attr->nodeValue;
 													$ret[$tag][$k][$name] = $value;
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+												}
 												$ret[$tag][$k]['@value'] = $inner;
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+											}
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										}
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+										if($header == false)
 										{
 											unset($ret['html'],$ret['body']);
 										}
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										return $ret;
 									}
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
+									/**
 									 * Parse xxxxx.glyph file to bootstrap glyph format.
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+									 * @param string $text
-												Corrected .glyph detection in toIcon() function.

											
										
										
											2014-01-22 06:12:54 -08:00
+									 * @param array of $parms
-												toGlyph() enhancements. Support for spin and rotate.
Example 1: $tp->toGlyph('fa-spinner', array('spin'=>1));
Example 2: $tp->toGlyph('fa-shield', array('rotate'=>90, 'size'=>'2x'));

											
										
										
											2016-02-11 12:01:26 -08:00
+									 * @example $tp->toGlyph('fa-spinner', 'spin=1');
 									 * @example $tp->toGlyph('fa-spinner', array('spin'=>1));
 									 * @example $tp->toGlyph('fa-shield', array('rotate'=>90, 'size'=>'2x'));
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
+									 */
-												Issue #435 - start of Bootstrap 3 core support. Enable by adding the following to your theme.php file:

define("BOOTSTRAP", 3);
define("FONTAWESOME", 4); // optional

e107::js("url", "//netdna.bootstrapcdn.com/bootstrap/3.0.3/js/bootstrap.min.js");
e107::css('url', '//netdna.bootstrapcdn.com/bootstrap/3.0.3/css/bootstrap.min.css');
e107::css('url', "//netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.min.css"); // optional

											
										
										
											2013-12-17 11:12:42 -08:00
+									public function toGlyph($text, $space=" ")
-												New {SETIMAGE} shortcode for theme developers. Using this prior to a media-manager image being called will allow one to set the default size for the image (ie. when not specified otherwise). eg. {SETIMAGE|w=293} will set the width of the images to 293px.

											
										
										
											2013-03-08 20:16:49 -08:00
+									{
-												Support for HTML/CSS sprites in toIcon() method.

											
										
										
											2016-02-03 13:48:35 -08:00
-												PHP Notice removal

											
										
										
											2014-02-07 07:03:23 -08:00
+										if(!deftrue('BOOTSTRAP') || empty($text))
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
+										{
 											return false;
 										}
-												toGlyph() enhancements. Support for spin and rotate.
Example 1: $tp->toGlyph('fa-spinner', array('spin'=>1));
Example 2: $tp->toGlyph('fa-shield', array('rotate'=>90, 'size'=>'2x'));

											
										
										
											2016-02-11 12:01:26 -08:00
-												GUI Glyph fixes and Bbcode button styling fixes.

											
										
										
											2014-01-17 06:49:55 -08:00
+										if(is_array($space))
 										{
 											$parm = $space;
 											$space = varset($parm['space'],'');
 										}
-												Issue #619 - media-manager icon issue on non-image files.

											
										
										
											2014-07-05 20:27:03 -07:00
+										elseif(strpos($space,'='))
 										{
 											parse_str($space,$parm);
 											$space = varset($parm['space'],'');
 										}
-												GUI Glyph fixes and Bbcode button styling fixes.

											
										
										
											2014-01-17 06:49:55 -08:00
+										else
 										{
 											$parm = array();
 										}
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										if(substr($text,0,2) == 'e-') 	// e107 admin icon.
 										{
-												AdminUI: Menu icon added.

											
										
										
											2016-11-01 16:42:47 -07:00
+											$size = (substr($text,-3) == '-32') ? 'S32' : 'S16';
 											if(substr($text,-3) == '-24')
 											{
 												$size = 'S24';
 											}
 											return "<i class='".$size." ".$text."'></i>";
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										}
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										// Get Glyph names.
-												Media-Manager fixes and enhancements. Glyphs are now searchable.

											
										
										
											2014-01-09 04:42:13 -08:00
+										$bs3 = e107::getMedia()->getGlyphs('bs3','');
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										$fa4 = e107::getMedia()->getGlyphs('fa4','');
-												PHP Notice removal

											
										
										
											2014-02-07 07:03:23 -08:00
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
-												PHP Notice removal

											
										
										
											2014-02-07 07:03:23 -08:00
+										list($cls) = explode('.glyph',$text,2);
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+									//	list($type, $tmp2) = explode("-",$text,2);
-												Bootstrap3 news and search-menu template fixes.
New thumb.php placeholder feature added.
New {GLYPH} shortcode added. Usage: {GLYPH=time}

											
										
										
											2013-12-31 09:59:19 -08:00
-												PHP Notice removal

											
										
										
											2014-02-07 07:03:23 -08:00
+									//	return $cls;
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										$removePrefix = array('glyphicon-','icon-','fa-');
-												Bootstrap3 news and search-menu template fixes.
New thumb.php placeholder feature added.
New {GLYPH} shortcode added. Usage: {GLYPH=time}

											
										
										
											2013-12-31 09:59:19 -08:00
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										$id = str_replace($removePrefix, "", $cls);
-												toGlyph() enhancements. Support for spin and rotate.
Example 1: $tp->toGlyph('fa-spinner', array('spin'=>1));
Example 2: $tp->toGlyph('fa-shield', array('rotate'=>90, 'size'=>'2x'));

											
										
										
											2016-02-11 12:01:26 -08:00
 										$spin = null;
 										$rotate = null;
-												Private Messages: Fixes #1485. Also check language files for changes. 'fw' (fixed width) option added to $tp->toGlyph()

											
										
										
											2016-04-03 14:37:37 -07:00
+										$fixedW = null;
 										$prefix = null;
 										$size = null;
 										$tag = 'span';
-												toGlyph() enhancements. Support for spin and rotate.
Example 1: $tp->toGlyph('fa-spinner', array('spin'=>1));
Example 2: $tp->toGlyph('fa-shield', array('rotate'=>90, 'size'=>'2x'));

											
										
										
											2016-02-11 12:01:26 -08:00
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+									//	return print_r($fa4,true);
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										if(deftrue('FONTAWESOME') &&  in_array($id ,$fa4)) // Contains FontAwesome 3 set also.
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
+										{
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+											$prefix = 'fa fa-';
-												Fix for "Change theme" hover icons.

											
										
										
											2014-01-31 04:13:30 -08:00
+											$size 	= (vartrue($parm['size'])) ?  ' fa-'.$parm['size'] : '';
-												Fixes #558 - Font Awesome tag corrected.

											
										
										
											2014-05-13 19:45:01 -07:00
+											$tag 	= 'i';
-												toGlyph() enhancements. Support for spin and rotate.
Example 1: $tp->toGlyph('fa-spinner', array('spin'=>1));
Example 2: $tp->toGlyph('fa-shield', array('rotate'=>90, 'size'=>'2x'));

											
										
										
											2016-02-11 12:01:26 -08:00
+											$spin   = !empty($parm['spin']) ? ' fa-spin' : '';
 											$rotate = !empty($parm['rotate']) ? ' fa-rotate-'.intval($parm['rotate']) : '';
-												Private Messages: Fixes #1485. Also check language files for changes. 'fw' (fixed width) option added to $tp->toGlyph()

											
										
										
											2016-04-03 14:37:37 -07:00
+											$fixedW = !empty($parm['fw']) ? ' fa-fw' : "";
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										}
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										elseif(deftrue("BOOTSTRAP"))
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										{
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+											if(BOOTSTRAP === 3 && in_array($id ,$bs3))
 											{
 												$prefix = 'glyphicon glyphicon-';
 												$tag = 'span';
 											}
 											else
 											{
 												$prefix = 'icon-';
 												$tag = 'i';
 											}
-												Issue #435 - start of Bootstrap 3 core support. Enable by adding the following to your theme.php file:

define("BOOTSTRAP", 3);
define("FONTAWESOME", 4); // optional

e107::js("url", "//netdna.bootstrapcdn.com/bootstrap/3.0.3/js/bootstrap.min.js");
e107::css('url', '//netdna.bootstrapcdn.com/bootstrap/3.0.3/css/bootstrap.min.css');
e107::css('url', "//netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.min.css"); // optional

											
										
										
											2013-12-17 11:12:42 -08:00
-												PHP Notice removal

											
										
										
											2014-02-07 07:03:23 -08:00
+											$size = '';
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
+										}
-												Support for IDs in toGlyph()

											
										
										
											2016-02-11 12:47:28 -08:00
 										$idAtt = (!empty($parm['id'])) ? "id='".$parm['id']."' " : '';
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
-												Private Messages: Fixes #1485. Also check language files for changes. 'fw' (fixed width) option added to $tp->toGlyph()

											
										
										
											2016-04-03 14:37:37 -07:00
+										$text = "<".$tag." {$idAtt}class='".$prefix.$id.$size.$spin.$rotate.$fixedW."'></".$tag.">" ;
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										$text .= ($space !== false) ? $space : "";
 										return $text;
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
 										//$text = preg_replace('/\[(i_[\w]*)\]/',"<i class='$1'></i>", $text);
 										// return $text;
-												New {SETIMAGE} shortcode for theme developers. Using this prior to a media-manager image being called will allow one to set the default size for the image (ie. when not specified otherwise). eg. {SETIMAGE|w=293} will set the width of the images to 293px.

											
										
										
											2013-03-08 20:16:49 -08:00
+									}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
-												Fixes #2100 toBadge() method added for Bootstrap badge numbers.

											
										
										
											2016-12-07 08:23:53 -08:00
+									/**
 									 * @param $text
 									 * @return string
 									 */
 									public function toBadge($text)
 									{
 										return "<span class='badge'>".$text."</span>";
 									}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
 									/**
 									 * Render an avatar based on supplied user data or current user when missing.
 									 * @param @array  - user data from e107_user.
 									 * @return <img> tag of avatar.
 									 */
-												Forum styling changes/fixes.

											
										
										
											2015-05-07 20:55:12 -07:00
+									public function toAvatar($userData=null, $options=array())
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
+									{
 										$tp 		= e107::getParser();
-												Some User-Avatar cleanup.

											
										
										
											2016-03-08 17:51:29 -08:00
+										$width 		= !empty($options['w']) ? intval($options['w']) : $tp->thumbWidth;
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
+										$height 	= ($tp->thumbHeight !== 0) ? $tp->thumbHeight : "";
-												Installation configuration fixes. RSS install now included default configuration correctly.

											
										
										
											2016-02-25 18:43:49 -08:00
+										$linkStart  = '';
 										$linkEnd    =  '';
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
 										if(!isset($userData['user_image']) && USERID)
 										{
-												PHP Warning Fixes.

											
										
										
											2016-06-09 16:43:36 -07:00
+											$userData = array();
-												Installation configuration fixes. RSS install now included default configuration correctly.

											
										
										
											2016-02-25 18:43:49 -08:00
+											$userData['user_id']    = USERID;
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
+											$userData['user_image']	= USERIMAGE;
 											$userData['user_name']	= USERNAME;
 										}
-												Some User-Avatar cleanup.

											
										
										
											2016-03-08 17:51:29 -08:00
+										$image = (!empty($userData['user_image'])) ? varset($userData['user_image']) : null;
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
 										$genericImg = $tp->thumbUrl(e_IMAGE."generic/blank_avatar.jpg","w=".$width."&h=".$height,true);
 										if (!empty($image))
 										{
 											if(strpos($image,"://")!==false) // Remove Image
 											{
 												$img = $image;
 											}
 											elseif(substr($image,0,8) == "-upload-")
 											{
 												$image = substr($image,8); // strip the -upload- from the beginning.
 												$img = (file_exists(e_AVATAR_UPLOAD.$image))  ? $tp->thumbUrl(e_AVATAR_UPLOAD.$image,"w=".$width."&h=".$height) : $genericImg;
 											}
 											elseif(file_exists(e_AVATAR_DEFAULT.$image))  // User-Uplaoded Image
 											{
 												$img =	$tp->thumbUrl(e_AVATAR_DEFAULT.$image,"w=".$width."&h=".$height);
 											}
 											else // Image Missing.
 											{
 												$img = $genericImg;
 											}
 										}
 										else // No image provided - so send generic.
 										{
 											$img = $genericImg;
 										}
-												Installation configuration fixes. RSS install now included default configuration correctly.

											
										
										
											2016-02-25 18:43:49 -08:00
-												PHP Notice removal and Forum Rank display preference added.

											
										
										
											2016-05-16 11:44:38 -07:00
+										if(($img == $genericImg) && !empty($userData['user_id'] ) && (($userData['user_id'] == USERID)) && !empty($options['link']))
-												Installation configuration fixes. RSS install now included default configuration correctly.

											
										
										
											2016-02-25 18:43:49 -08:00
+										{
-												Some User-Avatar cleanup.

											
										
										
											2016-03-08 17:51:29 -08:00
+											$linkStart = "<a class='e-tip' title=\"".LAN_EDIT."\" href='".e107::getUrl()->create('user/myprofile/edit')."'>";
-												Installation configuration fixes. RSS install now included default configuration correctly.

											
										
										
											2016-02-25 18:43:49 -08:00
+											$linkEnd = "</a>";
 										}
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
 										$title = (ADMIN) ? $image : $tp->toAttribute($userData['user_name']);
-												Some User-Avatar cleanup.

											
										
										
											2016-03-08 17:51:29 -08:00
+										$shape = (!empty($options['shape'])) ? "img-".$options['shape'] : "img-rounded";
 										if(!empty($options['type']) && $options['type'] == 'url')
 										{
 											return $img;
 										}
-												Removed fixed width and height from imgage tag.

											
										
										
											2015-12-16 15:28:05 +01:00
-												HTML5 Validation fixes.

											
										
										
											2016-01-30 18:39:01 -08:00
 										$heightInsert = empty($height) ? '' : "height='".$height."'";
-												Some User-Avatar cleanup.

											
										
										
											2016-03-08 17:51:29 -08:00
+										$id = (!empty($options['id'])) ? "id='".$options['id']."' " : "";
-												HTML5 Validation fixes.

											
										
										
											2016-01-30 18:39:01 -08:00
-												Installation configuration fixes. RSS install now included default configuration correctly.

											
										
										
											2016-02-25 18:43:49 -08:00
+										$text = $linkStart;
-												Issue #1423 - User Profile template upgrade tweaks.

											
										
										
											2016-03-14 18:32:51 -07:00
+										$text .= "<img ".$id."class='".$shape." user-avatar' alt=\"".$title."\" src='".$img."'  width='".$width."' ".$heightInsert." />";
-												Installation configuration fixes. RSS install now included default configuration correctly.

											
										
										
											2016-02-25 18:43:49 -08:00
+										$text .= $linkEnd;
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
+									//	return $img;
 										return $text;
 									}
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
 									/**
 									 * Display an icon.
 									 * @param string $icon
 									 * @example $tp->toIcon("{e_IMAGES}icons/something.png");
 									 */
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+									public function toIcon($icon='',$parm = array())
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
+									{
-												Fixes #1253  - News Category Icon. Improved legacy support for news list page. toIcon() can now check for multiple legacy img paths.

											
										
										
											2016-04-15 10:46:58 -07:00
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
+										if(!vartrue($icon))
 										{
 											return;
 										}
-												Support for HTML/CSS sprites in toIcon() method.

											
										
										
											2016-02-03 13:48:35 -08:00
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+										if(strpos($icon,'e_MEDIA_IMAGE')!==false)
 										{
 										//	return "<div class='alert alert-danger'>Use \$tp->toImage() instead of toIcon() for ".$icon."</div>"; // debug info only.
 										}
-												Support for HTML/CSS sprites in toIcon() method.

											
										
										
											2016-02-03 13:48:35 -08:00
+										if(substr($icon,0,3) == '<i ') // if it's html (ie. css sprite) return the code.
 										{
 											return $icon;
 										}
-												Better BC fix for sitelink images.

											
										
										
											2014-05-31 16:10:54 -07:00
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										$ext = pathinfo($icon, PATHINFO_EXTENSION);
-												Include width/height attributes in img tags with cropped thumbnails. toImage() and toIcon() methods.

											
										
										
											2016-02-07 13:37:45 -08:00
+										$dimensions = null;
-												Better BC fix for sitelink images.

											
										
										
											2014-05-31 16:10:54 -07:00
-												Corrected .glyph detection in toIcon() function.

											
										
										
											2014-01-22 06:12:54 -08:00
+										if(!$ext || $ext == 'glyph') // Bootstrap or Font-Awesome.
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+										{
-												GUI Glyph fixes and Bbcode button styling fixes.

											
										
										
											2014-01-17 06:49:55 -08:00
+											return $this->toGlyph($icon,$parm);
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+										}
-												Book and Chapter SEF Url support added.

											
										
										
											2014-01-04 10:14:38 -08:00
 										if(strpos($icon,'e_MEDIA')!==FALSE)
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+										{
-												Allow Custom Menu-Images to be used in page-navigation template.

											
										
										
											2014-01-04 06:02:24 -08:00
+											$path = $this->thumbUrl($icon);
-												Include width/height attributes in img tags with cropped thumbnails. toImage() and toIcon() methods.

											
										
										
											2016-02-07 13:37:45 -08:00
+											$dimensions = $this->thumbDimensions();
-												Book and Chapter SEF Url support added.

											
										
										
											2014-01-04 10:14:38 -08:00
+										}
 										elseif($icon[0] == '{')
 										{
 											$path = $this->replaceConstants($icon,'full');
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+										}
-												Fixes #1253  - News Category Icon. Improved legacy support for news list page. toIcon() can now check for multiple legacy img paths.

											
										
										
											2016-04-15 10:46:58 -07:00
+										elseif(!empty($parm['legacy']))
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+										{
-												Fixes #1253  - News Category Icon. Improved legacy support for news list page. toIcon() can now check for multiple legacy img paths.

											
										
										
											2016-04-15 10:46:58 -07:00
+											$legacyList = (!is_array($parm['legacy'])) ? array($parm['legacy']) : $parm['legacy'];
 											foreach($legacyList as $legPath)
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+											{
-												Fixes #1253  - News Category Icon. Improved legacy support for news list page. toIcon() can now check for multiple legacy img paths.

											
										
										
											2016-04-15 10:46:58 -07:00
+												$legacyPath = $legPath.$icon;
 												$filePath = $this->replaceConstants($legacyPath);
 												if(is_readable($filePath))
 												{
 													$path = $this->replaceConstants($legacyPath,'full');
 													break;
 												}
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+											}
-												Fixes #1253  - News Category Icon. Improved legacy support for news list page. toIcon() can now check for multiple legacy img paths.

											
										
										
											2016-04-15 10:46:58 -07:00
 											if(empty($path))
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+											{
-												Log missing legacy icons

											
										
										
											2014-01-15 04:06:14 -08:00
+												$log = e107::getAdminLog();
-												Fixes #1253  - News Category Icon. Improved legacy support for news list page. toIcon() can now check for multiple legacy img paths.

											
										
										
											2016-04-15 10:46:58 -07:00
+												$log->addDebug('Broken Icon Path: '.$icon."\n".print_r(debug_backtrace(null,2), true), false)->save('IMALAN_00');
 												e107::getDebug()->log('Broken Icon Path: '.$icon);
 												return null;
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+											}
 										}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+										else
 										{
 											$path = $icon;
 										}
-												Include width/height attributes in img tags with cropped thumbnails. toImage() and toIcon() methods.

											
										
										
											2016-02-07 13:37:45 -08:00
-												Fixes #1253  - News Category Icon. Improved legacy support for news list page. toIcon() can now check for multiple legacy img paths.

											
										
										
											2016-04-15 10:46:58 -07:00
+										$alt = (!empty($parm['alt'])) ? $this->toAttribute($parm['alt']) : basename($path);
 										$class = (!empty($parm['class'])) ? $parm['class'] : 'icon';
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
-												Fixes #1253  - News Category Icon. Improved legacy support for news list page. toIcon() can now check for multiple legacy img paths.

											
										
										
											2016-04-15 10:46:58 -07:00
+										return "<img class='".$class."' src='".$path."' alt='".$alt."' ".$dimensions." />";
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+									}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+									/**
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+									 * Render an <img> tag.
 									 * @param string $file
 									 * @param array $parm  legacy|w|h|alt|class|id|crop
-												Downloads: Legacy Upgrade image-path fixes.

											
										
										
											2016-12-03 14:16:14 -08:00
+									 * @param array $parm['legacy'] Usually a legacy path like {e_FILE}
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+									 * @return string
 									 * @example $tp->toImage('welcome.png', array('legacy'=>{e_IMAGE}newspost_images/','w'=>200));
 									 */
 									public function toImage($file, $parm=array())
 									{
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+										if(empty($file))
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+										{
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+											return null;
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+										}
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+										if(strpos($file,'e_AVATAR')!==false)
 										{
 											return "<div class='alert alert-danger'>Use \$tp->toAvatar() instead of toImage() for ".$file."</div>"; // debug info only.
 										}
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+										$srcset     = null;
 										$path       = null;
 										$file       = trim($file);
 										$ext        = pathinfo($file, PATHINFO_EXTENSION);
 										$accepted   = array('jpg','gif','png','jpeg');
 										$tp         = $this;
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+										if(!in_array($ext,$accepted))
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+										{
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+											return null;
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+										}
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+										if(strpos($file,'e_MEDIA')!==false || strpos($file,'e_THEME')!==false || strpos($file,'e_PLUGIN')!==false) //v2.x path.
 										{
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
+											if(!isset($parm['w']) && !isset($parm['h']))
 											{
 												$parm['w']      = $tp->thumbWidth();
 												$parm['h']      = $tp->thumbHeight();
 												$parm['crop']   = $tp->thumbCrop();
 												$parm['x']      = $tp->thumbEncode();
 											}
 											unset($parm['src']);
 											$path = $tp->thumbUrl($file,$parm);
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+											$srcSetParm = $parm;
-												Banner width may now be set on a per-menu basis.

											
										
										
											2016-03-12 00:15:29 -08:00
+											$srcSetParm['size'] = ($parm['w'] < 100) ? '4x' : '2x';
-												Rework of the thumbnail routine for more consistent behavior. {SITELOGO} rendering improved. (requires testing on older themes)

											
										
										
											2016-04-13 14:30:42 -07:00
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+											$parm['srcset'] = $tp->thumbSrcSet($file, $srcSetParm);
-												Experimental parser method added: thumbSrcSet();

											
										
										
											2016-02-08 21:33:55 -08:00
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+										}
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+										elseif($file[0] == '{') // Legacy v1.x path. Example: {e_PLUGIN}myplugin/images/fixedimage.png
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+										{
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+											$path = $tp->replaceConstants($file,'abs');
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+										}
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+										elseif(!empty($parm['legacy'])) // Search legacy path for image in a specific folder. No path, only file name provided.
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+										{
-												Upgrade Fixes - Legacy Download image paths and Download Category icons.

											
										
										
											2016-12-05 15:41:19 -08:00
+											$legacyPath = rtrim($parm['legacy'],'/').'/'.$file;
 											$filePath = $tp->replaceConstants($legacyPath);
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
 											if(is_readable($filePath))
 											{
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+												$path = $tp->replaceConstants($legacyPath,'abs');
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+											}
 											else
 											{
 												$log = e107::getAdminLog();
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+												$log->addDebug('Broken Image Path: '.$legacyPath."\n".print_r(debug_backtrace(null,2), true), false)->save('IMALAN_00');
-												Downloads: Legacy Upgrade image-path fixes.

											
										
										
											2016-12-03 14:16:14 -08:00
+												e107::getDebug()->log("Broken Image Path: ".$legacyPath);
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+											}
 										}
 										else // usually http://....
 										{
 											$path = $file;
 										}
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+										$id     = (!empty($parm['id']))     ? "id=\"".$parm['id']."\" " :  ""  ;
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+										$class  = (!empty($parm['class']))  ? $parm['class'] : "img-responsive";
 										$alt    = (!empty($parm['alt']))    ? $tp->toAttribute($parm['alt']) : basename($file);
-												Issue #1342 toImage() method updated.

											
										
										
											2016-02-09 11:02:08 -08:00
+										$style  = (!empty($parm['style']))  ? "style=\"".$parm['style']."\" " :  ""  ;
 										$srcset = (!empty($parm['srcset'])) ? "srcset=\"".$parm['srcset']."\" " : "";
 										$width  = (!empty($parm['w']))      ? "width=\"".intval($parm['w'])."\" " : "";
 										$height = (!empty($parm['h']))      ? "height=\"".intval($parm['h'])."\" " : "";
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
-												Issue #1342 - toImage() fixes. Gallery thumb now using it.

											
										
										
											2016-02-09 22:53:03 -08:00
+										return "<img {$id}class='{$class}' src='".$path."' alt=\"".$alt."\" ".$srcset.$width.$height.$style." />";
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
 									}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
-												Fix for toEmail() method encoding of quotes.

											
										
										
											2015-05-21 21:49:32 -07:00
-												Fix for bbcodes showing in news rss feed.

											
										
										
											2015-07-16 18:12:41 -07:00
+									/**
 									 * Check if a string contains bbcode.
 									 * @param $text
 									 * @return bool
 									 */
 									function isBBcode($text)
 									{
 										$bbsearch = array('[/h]','[/b]','[/link]', '[/right]');
 										if(str_replace($bbsearch,'',$text))
 										{
 											return true;
 										}
 										else
 										{
 											return false;
 										}
 									}
-												Fix for toEmail() method encoding of quotes.

											
										
										
											2015-05-21 21:49:32 -07:00
+									/**
 									 * Check if a string is HTML
 									 * @param $text
 									 * @return bool
 									 */
 									function isHtml($text)
 									{
-												Fix for bbcodes showing in news rss feed.

											
										
										
											2015-07-16 18:12:41 -07:00
 										if(strpos($text,'[html]') !== false || (htmlentities($text, ENT_NOQUOTES,'UTF-8') != $text && $this->isBBcode($text) === false ) || preg_match('#(?<=<)\w+(?=[^<]*?>)#', $text))
-												Fix for toEmail() method encoding of quotes.

											
										
										
											2015-05-21 21:49:32 -07:00
+										{
 											return true;
 										}
 										else
 										{
 											return false;
 										}
 									}
-												Issue: #1885 #1866 - Moved utf8 detection method to parser class.

											
										
										
											2016-09-28 10:26:39 -07:00
 									/**
 									 * Checks if string is valid UTF-8.
 									 *
 									 * Try to detect UTF-8 using mb_detect_encoding(). If mb string extension is
 									 * not installed, we try to use a simple UTF-8-ness checker using a regular
 									 * expression originally created by the W3C. But W3C's function scans the
 									 * entire strings and checks that it conforms to UTF-8.
 									 *
 									 * @see http://w3.org/International/questions/qa-forms-utf-8.html
 									 *
 									 * So this function is faster and less specific. It only looks for non-ascii
 									 * multibyte sequences in the UTF-8 range and also to stop once it finds at
 									 * least one multibytes string. This is quite a lot faster.
 									 *
 									 * @param $string string  string being checked.
 									 * @return bool  Returns true if $string is valid UTF-8 and false otherwise.
 									 */
 									public function isUTF8($string)
 									{
 										if (function_exists('mb_detect_encoding'))
 										{
 											return (mb_detect_encoding($string) == "UTF-8");
 										}
 										return (bool) preg_match('%(?:
 								        [\xC2-\xDF][\x80-\xBF]        # non-overlong 2-byte
 								        |\xE0[\xA0-\xBF][\x80-\xBF]               # excluding overlongs
 								        |[\xE1-\xEC\xEE\xEF][\x80-\xBF]{2}      # straight 3-byte
 								        |\xED[\x80-\x9F][\x80-\xBF]               # excluding surrogates
 								        |\xF0[\x90-\xBF][\x80-\xBF]{2}    # planes 1-3
 								        |[\xF1-\xF3][\x80-\xBF]{3}                  # planes 4-15
 								        |\xF4[\x80-\x8F][\x80-\xBF]{2}    # plane 16
 								        )+%xs', $string);
 									}
-												Improved control over news images and video. Separate css classes added for each. eg. news-image-1 , news-video-3

											
										
										
											2014-02-04 06:21:05 -08:00
+									/**
 									 * Check if a file is an video or not.
 									 * @param $file string
 									 * @return boolean
 									 */
 									function isVideo($file)
 									{
 										$ext = pathinfo($file,PATHINFO_EXTENSION);
-												Youtube browser now supports searching by video and playlist ids. eg. video:_j0b9syAuIk

											
										
										
											2015-03-31 14:48:07 -07:00
+										return ($ext == 'youtube' || $ext == 'youtubepl') ? true : false;
-												Improved control over news images and video. Separate css classes added for each. eg. news-image-1 , news-video-3

											
										
										
											2014-02-04 06:21:05 -08:00
 									}
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+									/**
 									 * Check if a file is an image or not.
 									 * @param $file string
 									 * @return boolean
 									 */
 									function isImage($file)
 									{
-												Include associated menu image in page meta.

											
										
										
											2015-11-22 13:04:21 -08:00
+										if(substr($file,0,3)=="{e_")
 										{
 											$file = e107::getParser()->replaceConstants($file);
 										}
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+										$ext = pathinfo($file,PATHINFO_EXTENSION);
 										return ($ext == 'jpg' || $ext == 'png' || $ext == 'gif' || $ext == 'jpeg') ? true : false;
 									}
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+									/**
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+									 * Display a Video file.
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+									 * @param string $file - format: id.type eg. x123dkax.youtube
 									 * @param boolean $thumbnail  - set to 'tag' to return an image thumbnail and 'src' to return the src url or 'video' for a small video thumbnail.
 									 */
 									function toVideo($file, $parm=array())
 									{
-												Issue #6 Removed duplicate LAN_SEARCH from English.php. PHP Notice removal.

											
										
										
											2015-08-24 10:19:34 -07:00
+										if(empty($file))
 										{
 											return false;
 										}
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+										list($id,$type) = explode(".",$file,2);
-												Issue #6 Removed duplicate LAN_SEARCH from English.php. PHP Notice removal.

											
										
										
											2015-08-24 10:19:34 -07:00
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+										$thumb = vartrue($parm['thumb']);
-												Allow Youtube playlists when API key is not found. Generic playlist icon added.

											
										
										
											2015-12-12 16:54:10 -08:00
-												Media-Manager Youtube video default prefs added.

											
										
										
											2014-03-12 14:09:48 -07:00
+										$pref = e107::getPref();
 										$ytpref = array();
 										foreach($pref as $k=>$v) // Find all Youtube Prefs.
 										{
 											if(substr($k,0,8) == 'youtube_')
 											{
 												$key = substr($k,8);
 												$ytpref[$key] = $v;
 											}
-												Youtube embed code now uses embed-responsive when Bootstrap is found. Closed-Captions now display in their respective languages. (when active)

											
										
										
											2015-10-01 11:02:24 -07:00
+										}
 										unset($ytpref['bbcode_responsive']); // do not include in embed code.
 										if(!empty($ytpref['cc_load_policy']))
 										{
 											$ytpref['cc_lang_pref'] = e_LAN; // switch captions with chosen user language.
 										}
-												Media-Manager Youtube video default prefs added.

											
										
										
											2014-03-12 14:09:48 -07:00
+										$ytqry = http_build_query($ytpref);
-												Youtube embed code now uses embed-responsive when Bootstrap is found. Closed-Captions now display in their respective languages. (when active)

											
										
										
											2015-10-01 11:02:24 -07:00
 										$defClass = (deftrue('BOOTSTRAP')) ? "embed-responsive embed-responsive-16by9" : "video-responsive"; // levacy backup.
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+										if($type == 'youtube')
-												Video thumbnail fix. Use bootstrap css as default on Tinymce tables.

											
										
										
											2015-04-02 03:36:45 -07:00
+										{
 										//	$thumbSrc = "https://i1.ytimg.com/vi/".$id."/0.jpg";
-												Fix for news-comment moderate button. Use https for generated YouTube thumbnails.

											
										
										
											2016-12-13 11:22:07 -08:00
+											$thumbSrc = "https://i1.ytimg.com/vi/".$id."/mqdefault.jpg";
-												Youtube embed code now uses embed-responsive when Bootstrap is found. Closed-Captions now display in their respective languages. (when active)

											
										
										
											2015-10-01 11:02:24 -07:00
+											$video =  '<iframe class="embed-responsive-item" width="560" height="315" src="//www.youtube.com/embed/'.$id.'?'.$ytqry.'" style="background-size: 100%;background-image: url('.$thumbSrc.');border:0px" allowfullscreen></iframe>';
-												Video thumbnail fix. Use bootstrap css as default on Tinymce tables.

											
										
										
											2015-04-02 03:36:45 -07:00
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
 											if($thumb == 'tag')
 											{
-												Multiple Image/Video fix for news_carousel_menu.php

											
										
										
											2014-01-31 07:09:34 -08:00
+												return "<img class='img-responsive' src='".$thumbSrc."' alt='Youtube Video' style='width:".vartrue($parm['w'],'80')."px'/>";
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+											}
-												Added support for embedded mail media in mailouts.

											
										
										
											2014-10-18 15:00:40 -07:00
+											if($thumb == 'email')
 											{
 												$thumbSrc = "http://i1.ytimg.com/vi/".$id."/maxresdefault.jpg"; // 640 x 480
 												$filename = 'temp/yt-thumb-'.md5($id).".jpg";
 												$filepath = e_MEDIA.$filename;
 												$url 	= 'http://youtu.be/'.$id;
 												if(!file_exists($filepath))
 												{
 													e107::getFile()->getRemoteFile($thumbSrc, $filename,'media');
 												}
-												Mailout bounce handling fixes.

											
										
										
											2014-10-22 17:58:20 -07:00
+												return "<a href='".$url."'><img class='video-responsive video-thumbnail' src='{e_MEDIA}".$filename."' alt='Youtube Video' title='Click to view on Youtube' />
-												Admin->mailout embedded video thumbnail styling.

											
										
										
											2014-10-19 14:44:41 -07:00
+												<div class='video-thumbnail-caption'><small>Click to watch video</small></div></a>";
-												Added support for embedded mail media in mailouts.

											
										
										
											2014-10-18 15:00:40 -07:00
+											}
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+											if($thumb == 'src')
 											{
 												return $thumbSrc;
 											}
-												Youtube embed code now uses embed-responsive when Bootstrap is found. Closed-Captions now display in their respective languages. (when active)

											
										
										
											2015-10-01 11:02:24 -07:00
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
 											if($thumb == 'video')
 											{
-												Youtube embed code now uses embed-responsive when Bootstrap is found. Closed-Captions now display in their respective languages. (when active)

											
										
										
											2015-10-01 11:02:24 -07:00
+												return '<div class="'.$defClass.' video-thumbnail thumbnail">'.$video.'</div>';
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+											}
-												Youtube embed code now uses embed-responsive when Bootstrap is found. Closed-Captions now display in their respective languages. (when active)

											
										
										
											2015-10-01 11:02:24 -07:00
+											return '<div class="'.$defClass.' '.vartrue($parm['class']).'">'.$video.'</div>';
-												Youtube browser now supports searching by video and playlist ids. eg. video:_j0b9syAuIk

											
										
										
											2015-03-31 14:48:07 -07:00
+										}
 										if($type =='youtubepl')
 										{
 											if($thumb == 'tag')
 											{
 												$thumbSrc =  e107::getMedia()->getThumb($id);
-												Allow Youtube playlists when API key is not found. Generic playlist icon added.

											
										
										
											2015-12-12 16:54:10 -08:00
 												if(empty($thumbSrc))
 												{
 													$thumbSrc = e_IMAGE_ABS."generic/playlist_120.png";
 												}
-												Youtube browser now supports searching by video and playlist ids. eg. video:_j0b9syAuIk

											
										
										
											2015-03-31 14:48:07 -07:00
+												return "<img class='img-responsive' src='".$thumbSrc."' alt='Youtube Video Playlist' style='width:".vartrue($parm['w'],'80')."px'/>";
 											}
 											if($thumb == 'src')
 											{
-												Allow Youtube playlists when API key is not found. Generic playlist icon added.

											
										
										
											2015-12-12 16:54:10 -08:00
+												$thumb = e107::getMedia()->getThumb($id);
 												if(!empty($thumb))
 												{
 													return $thumb;
 												}
 												else
 												{
 													// return "https://cdn0.iconfinder.com/data/icons/internet-2-2/64/youtube_playlist_videos_vid_web_online_internet-256.png";
 													return e_IMAGE_ABS."generic/playlist_120.png";
 												}
-												Youtube browser now supports searching by video and playlist ids. eg. video:_j0b9syAuIk

											
										
										
											2015-03-31 14:48:07 -07:00
+											}
-												HTML5 validation fixes.

											
										
										
											2015-04-09 01:39:37 -07:00
+											$video = '<iframe width="560" height="315" src="https://www.youtube.com/embed/videoseries?list='.$id.'" style="border:0" allowfullscreen></iframe>';
-												Youtube embed code now uses embed-responsive when Bootstrap is found. Closed-Captions now display in their respective languages. (when active)

											
										
										
											2015-10-01 11:02:24 -07:00
+											return '<div class="'.$defClass.' '.vartrue($parm['class']).'">'.$video.'</div>';
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+										}
-												Improved control over news images and video. Separate css classes added for each. eg. news-image-1 , news-video-3

											
										
										
											2014-02-04 06:21:05 -08:00
-												New SEF-URL for book/chapter/page (a few bugs remain)

											
										
										
											2014-01-10 18:27:42 -08:00
+										if($type == 'mp4') //TODO FIXME
 										{
 											return '
 											<div class="video-responsive">
 											<video width="320" height="240" controls>
-												RSS News feeds upgraded and corrected.

											
										
										
											2015-04-05 20:24:51 -07:00
+											  <source src="'.$file.'" type="video/mp4">
-												New SEF-URL for book/chapter/page (a few bugs remain)

											
										
										
											2014-01-10 18:27:42 -08:00
 											  Your browser does not support the video tag.
 											</video>
 											</div>';
 										}
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+										return false;
 									}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+									/**
 									 * Display a Date in the browser.
 									 * Includes support for 'livestamp' (http://mattbradley.github.io/livestampjs/)
 									 * @param integer $datestamp - unix timestamp
 									 * @param string $format - short | long | relative
 									 * @return HTML with converted date.
 									 */
 									public function toDate($datestamp = null, $format='short')
 									{
-												Fix for forgotten password page layout in membersonly mode.

											
										
										
											2016-05-01 10:34:34 -07:00
+										if(!is_numeric($datestamp)){ return null; }
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
 										return '<span data-livestamp="'.$datestamp.'">'.e107::getDate()->convert($datestamp, $format).'</span>';
 									}
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+									/**
 									 * Parse new <bbcode> tags into bbcode output.
 									 * @param $retainTags : when you want to replace html and retain the <bbcode> tags wrapping it.
 									 * @return html
 									 */
 									function parseBBTags($text,$retainTags = false)
 									{
 										$bbcodes = $this->getTags($text, 'bbcode');
 										foreach($bbcodes as $v)
 										{
 											foreach($v as $val)
 											{
 												$tag = urldecode($val['alt']);
 												$repl = ($retainTags == true) ? '$1'.$tag.'$2' : $tag;
 												$text = preg_replace('/(<bbcode[^>]*>).*(<\/bbcode>)/s',$repl, $text); //FIXME - handle multiple instances of bbcodes.
 											}
 										}
 										return $text;
 									}
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    /**
 								     * Perform and render XSS Test Comparison
 								     */
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+								    public function test($text='',$advanced = false)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    {
-												New parser extends existing one.

											
										
										
											2013-03-01 03:46:15 -08:00
+								      //  $tp = e107::getParser();
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        $sql = e107::getDb();
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        $tp = e107::getParser();
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+									    if(empty($text))
 									    {
 										    $text = <<<TMPL
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+								[html]<p><strong>bold print</strong></p>
 								<pre class="prettyprint linenums">&lt;a href='#'&gt;Something&lt;/a&gt;</pre>
 								<p>Some text's and things.</p>
 								<p>&nbsp;</p>
 								<p><a href="/test.php?w=9&amp;h=12">link</a></p>
 								<p>日本語 简体中文</p>
 								<p>&nbsp;</p>
 								[/html]
 								TMPL;
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+									    }
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+									    //   $text .= '[code=inline]<b class="something">Something</b>[/code]日本語 ';
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+								        // -------------------- Encoding ----------------
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+										$acc = $this->getScriptAccess();
 										$accName = e107::getUserclass()->uc_get_classname($acc);
 										echo "<h2>e107 Parser Test <small>with script access by <span class='label label-warning'>".$accName."</span></small></h2>";
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+										echo"<h3>User-input <small>(eg. from \$_POST)</small></h3>";
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
 									    print_a($text);
 									    $dbText = $tp->toDB($text,true);
-												Issue #895, Issue #847 - Parser improvements.

											
										
										
											2015-04-11 12:33:21 -07:00
+										echo "<h3>User-input &gg; toDB() ";
 										if($this->isHtml == true)
 										{
 											echo "<small>detected as <span class='label label-warning'>HTML</span></small>";
 										}
 										else
 										{
 											echo "<small>detected as <span class='label label-info'>Plain text</span></small>";
 										}
 										echo "</h3>";
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
 									    print_a($dbText);
-												Minor parsing issue corrected. Debug info removed from newspost 'update'.

											
										
										
											2015-04-12 19:45:55 -07:00
 									    if(!empty($advanced))
 									    {
 											echo "<div class='alert alert-warning'>";
 										    $dbText2 = $tp->toDB($text, true, false, 'no_html');
 										    echo "<h3>User-input &gg; toDb(\$text, true, false, 'no_html')</h3>";
 										    print_a($dbText2);
-												Experimental "code" data format added to adminUI. PHP Notice removal.

											
										
										
											2016-11-04 17:49:22 -07:00
+										    echo "<div class='alert alert-warning'>";
 										    $dbText3 = $tp->toDB($text, false, false, 'pReFs');
 										    echo "<h3>User-input &gg; toDb(\$text, false, false, 'pReFs')</h3>";
 										    print_a($dbText3);
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+										   // toClean
 										    $filter3 = $tp->filter($text, 'wds');
 										    echo "<h3>User-input &gg; filter(\$text, 'wds')</h3>";
 										    print_a( $filter3);
 										    // Filter by String.
 										    $filter1 = $tp->filter($text,'str');
 										    echo "<h3>User-input &gg; filter(\$text, 'str')</h3>";
 										    print_a($filter1);
 										    // Filter by Encoded.
 										    $filter2 = $tp->filter($text,'enc');
 										    echo "<h3>User-input &gg; filter(\$text, 'enc')</h3>";
 										    print_a($filter2);
 										    // toAttribute
 										    $toAtt = $tp->toAttribute($text);
 										    echo "<h3>User-input &gg; toAttribute(\$text)</h3>";
 										    print_a($toAtt);
 										    // toEmail
-												Fix for toEmail() method encoding of quotes.

											
										
										
											2015-05-21 21:49:32 -07:00
+										    $toEmail = $tp->toEmail($dbText);
 										    echo "<h3>User-input &gg; toEmail(\$text) <small>from DB</small></h3>";
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+										    print_a($toEmail);
-												RSS validation fixes.

											
										
										
											2015-06-17 11:26:14 -07:00
+										    // toEmail
 										    $toRss = $tp->toRss($text);
 										    echo "<h3>User-input &gg; toRss(\$text)</h3>";
 										    print_a($toRss);
-												Minor parsing issue corrected. Debug info removed from newspost 'update'.

											
										
										
											2015-04-12 19:45:55 -07:00
 										    echo "</div>";
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
-												Minor parsing issue corrected. Debug info removed from newspost 'update'.

											
										
										
											2015-04-12 19:45:55 -07:00
+									    }
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+									    echo "<h3>toDB() &gg; toHtml()</h3>";
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+										$html = $tp->toHtml($dbText,true);
 									    print_a($html);
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+									    echo "<h3>toDB &gg; toHtml() <small>(rendered)</small></h3>";
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+									    echo $html;
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+									    echo "<h3>toDB &gg; toForm()</h3>";
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+										$toForm = $tp->toForm($dbText);
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+									    $toFormRender = e107::getForm()->open('test');
 									    $toFormRender .= "<textarea cols='100' style='width:100%;height:300px' >".$toForm."</textarea>";
 									    $toFormRender .= e107::getForm()->close();
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+										echo  $toFormRender;
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
 										 echo "<h3>toDB &gg; bbarea</h3>";
 									    echo e107::getForm()->bbarea('name',$toForm);
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+										if(!empty($advanced))
 										{
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
 											echo "<h3>Allowed Tags</h3>";
 											print_a($this->allowedTags);
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+										    echo "<h3>Converted Paths</h3>";
 										    print_a($this->pathList);
 										    echo "<h3>Removed Tags and Attributes</h3>";
 										    print_a($this->removedList);
 										    echo "<h3>Nodes to Convert</h3>";
 											print_a($this->nodesToConvert);
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
 											  echo "<h3>Nodes to Disable SC</h3>";
 											print_a($this->nodesToDisableSC);
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+										}
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
 									    similar_text($text, html_entity_decode( $toForm, ENT_COMPAT, 'UTF-8'),$perc);
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+									    $scoreStyle = ($perc > 98) ? 'label-success' : 'label-danger';
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+									    echo "<h3><span class='label ".$scoreStyle."'>Similarity:  ".number_format($perc)."%</span></h3>";
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+										echo "<table class='table table-bordered'>
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+										<tr>
 											<th style='width:50%'>User-input</th>
 											<th style='width:50%'>toForm() output</th>
 										</tr>
 										<tr>
 											<td>".print_a($text,true)."</td>
 											<td>". $toFormRender."</td>
 										</tr>
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+										</table>";
 									  /*  <tr>
 											<td>".print_a(json_encode($text),true)."</td>
 											<td>". print_a(json_encode(html_entity_decode( $toForm, ENT_COMPAT, 'UTF-8')),true)."</td>
 										</tr>*/
 									//    print_a($text);
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
 								return;
 								//return;
 								        // ---------------------------------
 										$html = $text;
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+								      //  $html = $this->getXss();
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
 								        echo "<h2>Unprocessed XSS</h2>";
 								        // echo $html; // Remove Comment for a real mess!
 								        print_a($html);
 								        echo "<h2>Standard v2 Parser</h2>";
 								        echo "<h3>\$tp->dataFilter()</h3>";
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								        // echo $tp->dataFilter($html); // Remove Comment for a real mess!
 								        $sql->db_Mark_Time('------ Start Parser Test -------');
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        print_a($tp->dataFilter($html));
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        $sql->db_Mark_Time('tp->dataFilter');
 								        echo "<h3>\$tp->toHtml()</h3>";
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								        // echo $tp->dataFilter($html); // Remove Comment for a real mess!
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        print_a($tp->toHTML($html));
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        $sql->db_Mark_Time('tp->toHtml');
 								        echo "<h3>\$tp->toDB()</h3>";
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+								        // echo $tp->dataFilter($html); // Remove Comment for a real mess!
 								        $todb = $tp->toDB($html);
 								        print_a( $todb);
 								        $sql->db_Mark_Time('tp->toDB');
 									    echo "<h3>\$tp->toForm() with toDB input.</h3>";
 								       print_a( $tp->toForm($todb));
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
 								        echo "<h2>New Parser</h2>";
 								        echo "<h3>Processed</h3>";
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+								        $cleaned = $this->cleanHtml($html, true);  // false = don't check html pref.
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        print_a($cleaned);
 								        $sql->db_Mark_Time('new Parser');
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								      //  $sql->db_Mark_Time('------ End Parser Test -------');
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        echo "<h3>Processed &amp; Rendered</h3>";
 								        echo $cleaned;
 								        echo "<h2>New Parser - Data</h2>";
 								        echo "<h3>Converted Paths</h3>";
 								        print_a($this->pathList);
 								        echo "<h3>Removed Tags and Attributes</h3>";
 								        print_a($this->removedList);
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								         //   print_a($p);
 								    }
-												New methods added to parser: addAllowedTag() and addAllowedAttribute() to use with the cleanHtml() method.

											
										
										
											2015-04-16 15:23:21 -07:00
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
 									/**
 									 * Filters/Validates using the PHP5 filter_var() method.
 									 * @param $text
-												Language admin ui fixes.

											
										
										
											2015-07-07 12:03:45 -07:00
+									 * @param $type string str|int|email|url|w|wds
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+									 * @return string | boolean
 									 */
 									function filter($text, $type='str',$validate=false)
 									{
 										if(empty($text))
 										{
 											return $text;
 										}
 										if($type == 'w') // words only.
 										{
 											return preg_replace('/[^\w]/',"",$text);
 										}
 										if($type == 'wds') // words, digits and spaces only.
 										{
 											return preg_replace('/[^\w\d ]/',"",$text);
 										}
-												New parser filter added for file names.

											
										
										
											2016-12-04 07:50:27 -08:00
+										if($type == 'file')
 										{
 											return preg_replace('/[^\w\d_\.-]/',"",$text);
 										}
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
 										if($validate == false)
 										{
 											$filterTypes = array(
 												'int'   => FILTER_SANITIZE_NUMBER_INT,
 												'str'   => FILTER_SANITIZE_STRING, // no html.
 												'email' => FILTER_SANITIZE_EMAIL,
 												'url'   => FILTER_SANITIZE_URL,
 												'enc'   => FILTER_SANITIZE_ENCODED
 											);
 										}
 										else
 										{
 											$filterTypes = array(
 												'int'   => FILTER_VALIDATE_INT,
 												'email' => FILTER_VALIDATE_EMAIL,
 												'ip'    => FILTER_VALIDATE_IP,
 												'url'   => FILTER_VALIDATE_URL,
 											);
 										}
 										if(is_array($text))
 										{
 											return filter_var_array($text, $filterTypes[$type]);
 										}
 										return filter_var($text, $filterTypes[$type]);
 									}
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    /**
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								     * Process and clean HTML from user input.
 								     * TODO Html5 tag support.
 								     * @param string $html raw HTML
 								     * @param boolean $checkPref
 								     * @return string
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								     */
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								    public function cleanHtml($html='', $checkPref = true)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    {
-												PHP Notice removal

											
										
										
											2015-03-07 16:31:13 -08:00
+								        if(empty($html)){ return ''; }
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
-												Removed unnecessary conversion from within cleanHtml()

											
										
										
											2015-04-11 16:56:46 -07:00
+										$html = str_replace('&nbsp;', '@nbsp;', $html); // prevent replacement of &nbsp; with spaces.
-												New methods added to parser: addAllowedTag() and addAllowedAttribute() to use with the cleanHtml() method.

											
										
										
											2015-04-16 15:23:21 -07:00
 								        if(strpos($html, "<body")===false) // HTML Fragment
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										{
 								       		$html = '<?xml version="1.0" encoding="utf-8"?><!DOCTYPE html><html><head><meta charset="utf-8"></head><body>'.$html.'</body></html>';
 										}
 										else  // Full HTML page.
 										{
 										//	$this->allowedTags[] = 'head';
 										//	$this->allowedTags[] = 'body';
 										//	$this->allowedTags[] = 'title';
 											//$this->allowedTags[] = 'meta';
 										}
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										if(!is_object($this->domObj))
 										{
 											$this->init();
 										}
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+										if($this->scriptAccess === false)
 										{
 									        $this->scriptAccess = e107::getConfig()->get('post_script', e_UC_MAINADMIN); // Pref to Allow <script> tags11;
 										}
 										if(check_class($this->scriptAccess))
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        {
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+								            $this->allowedTags = array_merge($this->allowedTags, $this->scriptTags);
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        }
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
-												New methods added to parser: addAllowedTag() and addAllowedAttribute() to use with the cleanHtml() method.

											
										
										
											2015-04-16 15:23:21 -07:00
+								        // Set it up for processing.
 									//    libxml_use_internal_errors(true); // hides errors.
-												PHP Notice/Warning removal. 'field-help' containers may now be customized with: data-placement="[top|right|bottom|left]"

											
										
										
											2015-06-11 12:29:19 -07:00
+								        $doc  = $this->domObj;
 									    libxml_use_internal_errors(true);
-												Propper fix for #1362

Should work now with both latin and non latin characters
											
										
										
											2016-02-26 02:03:49 +02:00
+								    //    @$doc->loadHTML($html);
-												Added more missing data from page vars. Precaution for if mb_convert_encoding() is missing. TinyMce member template added.

											
										
										
											2016-02-29 22:01:58 -08:00
+									    if(function_exists('mb_convert_encoding'))
 									    {
 											$html = mb_convert_encoding($html, 'HTML-ENTITIES', "UTF-8");
 									    }
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
-												Added more missing data from page vars. Precaution for if mb_convert_encoding() is missing. TinyMce member template added.

											
										
										
											2016-02-29 22:01:58 -08:00
+										@$doc->loadHTML($html);
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+										// $doc->encoding = 'UTF-8';
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								     //   $doc->resolveExternals = true;
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
+								    //    $tmp = $doc->getElementsByTagName('*');
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
 								       	$this->nodesToConvert 	= array(); // required.
 										$this->nodesToDelete 	= array(); // required.
 										$this->removedList		= array();
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+										$tmp = $doc->getElementsByTagName('*');
 								        /** @var DOMElement $node */
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        foreach($tmp as $node)
 								        {
 								            $path = $node->getNodePath();
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										//	echo "<br />Path = ".$path;
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
+								        //   $tag = strval(basename($path));
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
+									        if(strpos($path,'/code') !== false || strpos($path,'/pre') !== false) //  treat as html.
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
+								            {
 								                $this->pathList[] = $path;
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
+								            //     $this->nodesToConvert[] =  $node->parentNode; // $node;
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
+								                $this->nodesToDisableSC[] = $node;
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
+								                continue;
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
+								            }
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            $tag = preg_replace('/([a-z0-9\[\]\/]*)?\/([\w]*)(\[(\d)*\])?$/i', "$2", $path);
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								            if(!in_array($tag, $this->allowedTags))
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            {
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								                $this->removedList['tags'][] = $tag;
 								                $this->nodesToDelete[] = $node;
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                continue;
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            }
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            foreach ($node->attributes as $attr)
 								            {
 								                $name = $attr->nodeName;
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                $value = $attr->nodeValue;
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                $allow = varset($this->allowedAttributes[$tag], $this->allowedAttributes['default']);
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                $removeAttributes = array();
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                if(!in_array($name, $allow))
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								                {
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                    $removeAttributes[] = $name;
 								                    //$node->removeAttribute($name);
 								                    $this->removedList['attributes'][] = $name. " from <".$tag.">";
 								                    continue;
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								                }
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
 								                if($this->invalidAttributeValue($value)) // Check value against blacklisted values.
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                {
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+													//$node->removeAttribute($name);
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                    $node->setAttribute($name, '#---sanitized---#');
 													$this->removedList['sanitized'][] = $tag.'['.$name.']';
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                }
 								                else
 								                {
 								                    $_value = $this->secureAttributeValue($name, $value);
 								                    $node->setAttribute($name, $_value);
 								                    if($_value !== $value)
 								                    {
 								                        $this->removedList['sanitized'][] = $tag.'['.$name.'] converted "'.$value.'" -> "'.$_value.'"';
 								                    }
 								                }
 								            }
 								            // required - removing attributes in a loop breaks the loop
-												PHP Notice removal

											
										
										
											2015-03-07 16:31:13 -08:00
+								            if(!empty($removeAttributes))
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								            {
-												PHP Notice removal

											
										
										
											2015-03-07 16:31:13 -08:00
+									            foreach ($removeAttributes as $name)
 									            {
 									                $node->removeAttribute($name);
 									            }
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								            }
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        }
 								        // Remove some stuff.
 								        foreach($this->nodesToDelete as $node)
 								        {
 								            $node->parentNode->removeChild($node);
 								        }
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
 										// Disable Shortcodes in pre/code
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+								       foreach($this->nodesToDisableSC as $key => $node)
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
+								       {
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+										    $value = $node->C14N();
-												Remove error message when 0 records returned.

											
										
										
											2016-03-03 15:24:59 -08:00
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+										    if(empty($value))
 										    {
 										        continue;
 										    }
-												Remove error message when 0 records returned.

											
										
										
											2016-03-03 15:24:59 -08:00
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+										    $value = str_replace("&#xD;", "\r", $value);
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+										    if($node->nodeName == 'pre')
 										    {
 										        $value = preg_replace('/^<pre[^>]*>/', '', $value);
 										        $value = str_replace("</pre>", "", $value);
-												Email template simplification

											
										
										
											2016-05-20 15:04:51 -07:00
+										        $value = str_replace('<br></br>', PHP_EOL, $value);
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+										    }
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+										    if($node->nodeName == 'code')
 										    {
 										        $value = preg_replace('/^<code[^>]*>/', '', $value);
 										        $value = str_replace("</code>", "", $value);
-												Parser correction for code and pre tags.

											
										
										
											2016-04-04 12:44:40 -07:00
+										        $value = str_replace("<br></br>", PHP_EOL, $value);
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+										    }
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+										    $value = str_replace('{', '{{{', $value); // temporarily change {e_XXX} to {{{e_XXX}}}
 										    $value = str_replace('}', '}}}', $value); // temporarily change {e_XXX} to {{{e_XXX}}}
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+										    $newNode = $doc->createElement($node->nodeName);
 										    $newNode->nodeValue = $value;
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
-												Issue #1460 - Fix crash in parser when posting code.

											
										
										
											2016-04-01 11:27:06 -07:00
+										    $node->parentNode->replaceChild($newNode, $node);
 								       }
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
 								        // Convert <code> and <pre> Tags to Htmlentities.
 								        /* TODO XXX Still necessary? Perhaps using bbcodes only?
-												Tiny syntax fix

											
										
										
											2013-03-01 18:22:27 -08:00
+								        foreach($this->nodesToConvert as $node)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        {
 								            $value = $node->C14N();
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            $value = str_replace("&#xD;","",$value);
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
 								        //    print_a("WOWOWO");
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
 								            if($node->nodeName == 'pre')
 								            {
 								                $value = substr($value,5);
 								                $end = strrpos($value,"</pre>");
 								                $value = substr($value,0,$end);
 								            }
 								            if($node->nodeName == 'code')
 								            {
 								                $value = substr($value,6);
 								                $end = strrpos($value,"</code>");
 								                $value = substr($value,0,$end);
 								            }
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+								            $value = htmlentities(htmlentities($value)); // Needed
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								            $node->nodeValue = $value;
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        }
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
+										*/
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+								        $cleaned = $doc->saveHTML($doc->documentElement); // $doc->documentElement fixes utf-8/entities issue. @see http://stackoverflow.com/questions/8218230/php-domdocument-loadhtml-not-encoding-utf-8-correctly
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
+										$cleaned = str_replace('@nbsp;', '&nbsp;',  $cleaned); // prevent replacement of &nbsp; with spaces. - convert back.
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
-												Fix for shortcodes within <code> and <pre> tags.

											
										
										
											2016-03-01 13:29:50 -08:00
+										$cleaned = str_replace('{{{','&#123;', $cleaned); // convert shortcode temporary triple-curly braces back to entities.
-												Additional fix for shortcodes in pre and code tags.

											
										
										
											2016-03-01 17:50:53 -08:00
+								         $cleaned = str_replace('}}}','&#125;', $cleaned); // convert shortcode temporary triple-curly braces back to entities.
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								        $cleaned = str_replace(array('<body>','</body>','<html>','</html>','<!DOCTYPE html>','<meta charset="UTF-8">','<?xml version="1.0" encoding="utf-8"?>'),'',$cleaned); // filter out tags.
-												Fixes #895 - encoding issue on prefs.

											
										
										
											2015-04-11 11:47:40 -07:00
-												MAJOR cleanup of toDB(), toHTML() and toForm(). Requires extensive testing on different server environments.
Has potential to break backward compatibility, so please backup your DBs. May be tested using: echo $tp->test();

											
										
										
											2015-04-11 02:53:51 -07:00
+								     //   $cleaned = html_entity_decode($cleaned, ENT_QUOTES, 'UTF-8');
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												FIX #411 - Sitedisclaimer issue

Sitedisclaimer issue #411

											
										
										
											2014-03-13 00:31:54 +01:00
+								        return trim($cleaned);
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    }
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
 								    public function secureAttributeValue($attribute, $value)
 								    {
 								        $search = isset($this->replaceAttrValues[$attribute]) ? $this->replaceAttrValues[$attribute] : $this->replaceAttrValues['default'];
 								        if(!empty($search))
 								        {
 								            $value = str_replace($search, '', $value);
 								        }
 								        return $value;
 								    }
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
 								    /**
 								     * Check for Invalid Attribute Values
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								     * @param $value string
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								     * @return true/false
 								     */
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								    function invalidAttributeValue($value)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    {
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								        foreach($this->badAttrValues as $v) // global list because a bad value is bad regardless of the attribute it's in. ;-)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        {
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								            if(preg_match('/'.$v.'/i',$value)==true)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            {
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+												$this->removedList['blacklist'][]	= "Match found for '{$v}' in '{$value}'";
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								                return true;
 								            }
 								        }
 								        return false;
 								    }
 								    /**
 								     * XSS HTML code to test against
 								     */
-												Fixes #559 - installer issue when no database found or created.

											
										
										
											2015-04-29 10:22:46 -07:00
+								    public function getXss()
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    {
 								$html = <<<EOF
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								Internationalization Test:
 								ภาษาไทย <br />
 								日本語 <br />
 								简体中文 <br />
 								<a href='somewhere.html' src='invalidatrribute' >Test</a>
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
+								A GOOD LINK: <a href='http://mylink.php'>Some Link</a>
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								<a href='javascript: something' src='invalidatrribute' >Test regex</a>
 								<img href='invalidattribute' src='myimage.jpg' />
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								<frameset onload=alert(1) data-something=where>
 								<table background="javascript:alert(1)"><tr><td><a href="something.php" onclick="alert(1)">Hi there</a></td></tr></table>
 								<div>
 								<!--<img src="--><img src=x onerror=alert(1)//">
 								<comment><img src="</comment><img src=x onerror=alert(1)//">
 								<ul>
 								<li style=list-style:url() onerror=alert(1)></li> <div style=content:url(data:image/svg+xml,%3Csvg/%3E);visibility:hidden onload=alert(1)></div>
 								</ul>
 								</div>
 								</frameset>
 								<head><base href="javascript://"/></head><body><a href="/. /,alert(1)//#">XXX</a></body>
 								<SCRIPT FOR=document EVENT=onreadystatechange>alert(1)</SCRIPT>
 								<OBJECT CLASSID="clsid:333C7BC4-460F-11D0-BC04-0080C7055A83"><PARAM NAME="DataURL" VALUE="javascript:alert(1)"></OBJECT>
 								<b <script>alert(1)//</script>0</script></b>
 								<div id="div1"><input value="``onmouseover=alert(1)"></div> <div id="div2"></div><
 								script>document.getElementById("div2").innerHTML = document.getElementById("div1").innerHTML;</script>
 								Some example text<br />
 								<b>This is bold</b><br />
 								<i>This is italic</i><br />
 								<small>Some small text</small>
 								<pre>This is pre-formatted
 								        <script>alert('something')</script>
 								        <b>Bold Stuff</b>
 								        <pre>something</pre>
 								        <code>code</code>
 								        <b>BOLD</b>
 								        function myfunction()
 								        {
 								        }
 								 </pre>
 								<code>
 								        function myfunction()
 								        {
 								        }
 								<script>alert('something')</script>
 								</code>
-												Performance improvements of output parser, few test cases added
											
										
										
											2013-03-01 17:24:33 +02:00
+								<svg><![CDATA[><image xlink:href="]]><img src=xx:x onerror=alert(2)//"></svg>
 								<style><img src="</style><img src=x onerror=alert(1)//">
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								<x '="foo"><x foo='><img src=x onerror=alert(1)//'> <!-- IE 6-9 --> <! '="foo"><x foo='><img src=x onerror=alert(2)//'> <? '="foo"><x foo='><img src=x onerror=alert(3)//'>
 								<embed src="javascript:alert(1)"></embed> // O10.10↓, OM10.0↓, GC6↓, FF <img src="javascript:alert(2)"> <image src="javascript:alert(2)"> // IE6, O10.10↓, OM10.0↓ <script src="javascript:alert(3)"></script> // IE6, O11.01↓, OM10.1↓
 								<div style=width:1px;filter:glow onfilterchange=alert(1)>x</div>
 								<object allowscriptaccess="always" data="test.swf"></object>
 								[A] <? foo="><script>alert(1)</script>"> <! foo="><script>alert(1)</script>"> </ foo="><script>alert(1)</script>"> [B] <? foo="><x foo='?><script>alert(1)</script>'>"> [C] <! foo="[[[x]]"><x foo="]foo><script>alert(1)</script>"> [D] <% foo><x foo="%><script>alert(1)</script>">
 								<iframe src=mhtml:http://html5sec.org/test.html!xss.html></iframe> <iframe src=mhtml:http://html5sec.org/test.gif!xss.html></iframe>
 								<html> <body> <b>some content without two new line \n\n</b> Content-Type: multipart/related; boundary="******"<b>some content without two new line</b> --****** Content-Location: xss.html Content-Transfer-Encoding: base64 PGlmcmFtZSBuYW1lPWxvIHN0eWxlPWRpc3BsYXk6bm9uZT48L2lmcmFtZT4NCjxzY3JpcHQ+DQp1 cmw9bG9jYXRpb24uaHJlZjtkb2N1bWVudC5nZXRFbGVtZW50c0J5TmFtZSgnbG8nKVswXS5zcmM9 dXJsLnN1YnN0cmluZyg2LHVybC5pbmRleE9mKCcvJywxNSkpO3NldFRpbWVvdXQoImFsZXJ0KGZy YW1lc1snbG8nXS5kb2N1bWVudC5jb29raWUpIiwyMDAwKTsNCjwvc2NyaXB0PiAgICAg --******-- </body> </html>
 								<!-- IE 5-9 --> <div id=d><x xmlns="><iframe onload=alert(1)"></div> <script>d.innerHTML+='';</script> <!-- IE 10 in IE5-9 Standards mode --> <div id=d><x xmlns='"><iframe onload=alert(2)//'></div> <script>d.innerHTML+='';</script>
 								<img[a][b]src=x[d]onerror[c]=[e]"alert(1)">
 								<a href="[a]java[b]script[c]:alert(1)">XXX</a>
 								<img src="x` `<script>alert(1)</script>"` `>
 								<img src onerror /" '"= alt=alert(1)//">
 								<title onpropertychange=alert(1)></title><title title=></title>
 								<!-- IE 5-8 standards mode --> <a href=http://foo.bar/#x=`y></a><img alt="`><img src=xx:x onerror=alert(1)></a>"> <!-- IE 5-9 standards mode --> <!a foo=x=`y><img alt="`><img src=xx:x onerror=alert(2)//"> <?a foo=x=`y><img alt="`><img src=xx:x onerror=alert(3)//">
 								<!--[if]><script>alert(1)</script --> <!--[if<img src=x onerror=alert(2)//]> -->
 								<script> Blabla </script>
 								<script src="/\example.com\foo.js"></script> // Safari 5.0, Chrome 9, 10 <script src="\\example.com\foo.js"></script> // Safari 5.0
 								<object id="x" classid="clsid:CB927D12-4FF7-4a9e-A169-56E4B8A75598"></object> <object classid="clsid:02BF25D5-8C17-4B23-BC80-D3488ABDDC6B" onqt_error="alert(1)" style="behavior:url(#x);"><param name=postdomevents /></object>
 								<!-- `<img/src=xx:xx onerror=alert(1)//--!>
 								<xmp> <% </xmp> <img alt='%></xmp><img src=xx:x onerror=alert(1)//'> <script> x='<%' </script> %>/ alert(2) </script> XXX <style> *['<!--']{} </style> -->{} *{color:red}</style>
 								<a style="-o-link:'javascript:alert(1)';-o-link-source:current">X</a>
 								<style>p[foo=bar{}*{-o-link:'javascript:alert(1)'}{}*{-o-link-source:current}*{background:red}]{background:green};</style>
 								<div style="font-family:'foo[a];color:red;';">XXX</div>
 								<form id="test"></form><button form="test" formaction="javascript:alert(1)">X</button>
 								<input onfocus=write(1) autofocus>
 								<video poster=javascript:alert(1)//></video>
-												New parser extends existing one.

											
										
										
											2013-03-01 03:46:15 -08:00
+								<video>somemovei.mp4</video>
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								<body onscroll=alert(1)><br><br><br><br><br><br>...<br><br><br><br><input autofocus>
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												New parser extends existing one.

											
										
										
											2013-03-01 03:46:15 -08:00
+								<article id="something">Some text goes here</article>
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								EOF;
 								return $html;
 								    }
 								}
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
+								class e_emotefilter
 								{
-												Emoticon parser PHP warning removal Issue #1633

											
										
										
											2016-05-13 07:02:50 -07:00
+									private $search         = array();
 									private $replace        = array();
-												Fix for emotes and PM

											
										
										
											2016-05-06 08:25:12 -07:00
+									public $emotes;
-												Emoticon parser PHP warning removal Issue #1633

											
										
										
											2016-05-13 07:02:50 -07:00
+									private $singleSearch   = array();
 									private $singleReplace  = array();
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
+									function __construct()
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+									{
 										$pref = e107::getPref();
-												Fixes #732 - Custom Emoticon packs were being ignored.

											
										
										
											2015-08-24 09:48:27 -07:00
+										if(empty($pref['emotepack']))
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+										{
 											$pref['emotepack'] = "default";
-												Fixes #732 - Custom Emoticon packs were being ignored.

											
										
										
											2015-08-24 09:48:27 -07:00
+											e107::getConfig('emote')->clearPrefCache('emote');
 											e107::getConfig('core')->set('emotepack','default')->save(false,true,false);
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+										}
-												Fixes #732 - Custom Emoticon packs were being ignored.

											
										
										
											2015-08-24 09:48:27 -07:00
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+										$this->emotes = e107::getConfig("emote")->getPref();
-												Fixes #732 - Custom Emoticon packs were being ignored.

											
										
										
											2015-08-24 09:48:27 -07:00
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
+										if(empty($this->emotes))
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+										{
 											return;
 										}
 										foreach($this->emotes as $key => $value)
 										{
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+										  $value = trim($value);
 										  if ($value)
 										  {	// Only 'activate' emote if there's a substitution string set
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+											$key = preg_replace("#!(\w{3,}?)$#si", ".\\1", $key);
 											// Next two probably to sort out legacy issues - may not be required any more
-												Issue #1628 Should fix it.

											
										
										
											2016-05-08 08:31:04 -07:00
+										//	$key = preg_replace("#_(\w{3})$#", ".\\1", $key);
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
 											  $key = str_replace("!", "_", $key);
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
 											  $filename = e_IMAGE."emotes/" . $pref['emotepack'] . "/" . $key;
 											  $fileloc = SITEURLBASE.e_IMAGE_ABS."emotes/" . $pref['emotepack'] . "/" . $key;
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
+											  $alt = str_replace(array('.png','.gif', '.jpg'),'', $key);
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+											  if(file_exists($filename))
 											  {
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
+											        $tmp = explode(" ", $value);
 													foreach($tmp as $code)
 													{
 														$img                = "<img class='e-emoticon' src='".$fileloc."' alt=\"".$alt."\"  />";
-												Issue #1628 Should fix it.

											
										
										
											2016-05-08 08:31:04 -07:00
 												        $this->search[]     = "\n".$code;
 												        $this->replace[]    = "\n".$img;
 														$this->search[]     = " ".$code;
 												        $this->replace[]    = " ".$img;
 												        $this->search[]     = ">".$code; // Fix for emote within html.
 												        $this->replace[]    = ">".$img;
-												Fix for texts containing only one emoticon. Cleanup of some debug reporting.

											
										
										
											2016-05-08 08:59:54 -07:00
+												        $this->singleSearch[] = $code;
 												        $this->singleReplace[] = $img;
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
+													}
 											  /*
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+												if(strstr($value, " "))
 												{
 													$tmp = explode(" ", $value);
 													foreach($tmp as $code)
 													{
 														$this->search[] = " ".$code;
 														$this->search[] = "\n".$code;
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
 														$this->replace[] = " <img class='e-emoticon' src='".$fileloc."' alt=\"".$alt."\"  /> ";
 														$this->replace[] = "\n <img class='e-emoticon' src='".$fileloc."'alt=\"".$alt."\"   /> ";
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+													}
 													unset($tmp);
 												}
 												else
 												{
 													if($value)
 													{
 														$this->search[] = " ".$value;
 														$this->search[] = "\n".$value;
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
 														$this->replace[] = " <img class='e-emoticon' src='".$fileloc."' alt=\"".$alt."\"   /> ";
 														$this->replace[] = "\n <img class='e-emoticon' src='".$fileloc."' alt=\"".$alt."\"   /> ";
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+													}
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
+												}*/
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+											  }
 										  }
 										  else
 										  {
 											unset($this->emotes[$key]);
 										  }
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+										}
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
-												Fixes #1621 : Emoticons fix for codes using | char.

											
										
										
											2016-05-06 08:16:45 -07:00
+									//	print_a($this->regSearch);
 									//	print_a($this->regReplace);
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+									}
-												Fixes #732 - Custom Emoticon packs were being ignored.

											
										
										
											2015-08-24 09:48:27 -07:00
-												Fix for texts containing only one emoticon. Cleanup of some debug reporting.

											
										
										
											2016-05-08 08:59:54 -07:00
 									function filterEmotes($text)
-												Fixes #1621 : Emoticons fix for codes using | char.

											
										
										
											2016-05-06 08:16:45 -07:00
+									{
-												Fix for texts containing only one emoticon. Cleanup of some debug reporting.

											
										
										
											2016-05-08 08:59:54 -07:00
+										if(empty($text))
 										{
 											return '';
 										}
-												Fixes #1621 : Emoticons fix for codes using | char.

											
										
										
											2016-05-06 08:16:45 -07:00
-												Emoticon parser PHP warning removal Issue #1633

											
										
										
											2016-05-13 07:02:50 -07:00
+										if(!empty($this->singleSearch) && (strlen($text) < 12) && in_array($text, $this->singleSearch)) // just one emoticon with no space, line-break or html tags around it.
-												Fix for texts containing only one emoticon. Cleanup of some debug reporting.

											
										
										
											2016-05-08 08:59:54 -07:00
+										{
 											return str_replace($this->singleSearch,$this->singleReplace,$text);
 										}
-												Fixes #732 - Custom Emoticon packs were being ignored.

											
										
										
											2015-08-24 09:48:27 -07:00
-												Issue #1628 Should fix it.

											
										
										
											2016-05-08 08:31:04 -07:00
+										return str_replace($this->search, $this->replace, $text);
-												Fix for texts containing only one emoticon. Cleanup of some debug reporting.

											
										
										
											2016-05-08 08:59:54 -07:00
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+									}
-												Fixes #732 - Custom Emoticon packs were being ignored.

											
										
										
											2015-08-24 09:48:27 -07:00
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
 									function filterEmotesRev($text)
 									{
-												Emoticons now have their own css class. Improved emoticon code detection.

											
										
										
											2016-05-05 18:42:09 -07:00
+										return str_replace($this->replace, $this->search, $text);
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+									}
 								}
 								class e_profanityFilter
 								{
 									var $profanityList;
-												Issue #1356 - PHP7 Fixes.

											
										
										
											2016-02-14 12:15:55 -08:00
+									function __construct()
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+									{
 										global $pref;
 										$words = explode(",", $pref['profanity_words']);
 								        $word_array = array();
 										foreach($words as $word)
 										{
 											$word = trim($word);
 											if($word != "")
 											{
 												$word_array[] = $word;
 												if (strpos($word, '&#036;') !== FALSE)
 												{
 													$word_array[] = str_replace('&#036;', '\$', $word);		// Special case - '$' may be 'in clear' or as entity
 												}
 											}
 										}
 										if(count($word_array))
 										{
 											$this->profanityList = str_replace('#','\#',implode("\b|\b", $word_array));		// We can get entities in the string - confuse the regex delimiters
 										}
 										unset($words);
 										return TRUE;
 									}
 									function filterProfanities($text)
 									{
 										global $pref;
 										if (!$this->profanityList)
 										{
 											return $text;
 										}
 										if ($pref['profanity_replace'])
 										{
 											return preg_replace("#\b".$this->profanityList."\b#is", $pref['profanity_replace'], $text);
 										}
 										else
 										{
 											return preg_replace_callback("#\b".$this->profanityList."\b#is", array($this, 'replaceProfanities'), $text);
 										}
 									}
 									function replaceProfanities($matches)
 									{
 										/*!
 										@function replaceProfanities callback
 										@abstract replaces vowels in profanity words with stars
 										@param text string - text string to be filtered
 										@result filtered text
 										*/
 										return preg_replace("#a|e|i|o|u#i", "*" , $matches[0]);
 									}
 								}