php-e107/e107_handlers/e_parse_class.php

<?php
/*
* e107 website system
*
* Copyright (C) 2008-2011 e107 Inc (e107.org)
* Released under the terms and conditions of the
* GNU General Public License (http://www.gnu.org/licenses/gpl.txt)
*
* Text processing and parsing functions
*
* $URL$
* $Id$
*
*/

/**
 * @package e107
 * @subpackage e107_handlers
 * @version $Id$
 *
 * Text processing and parsing functions.
 * Simple parse data model.
 */

if (!defined('e107_INIT')) { exit(); }

// Directory for the hard-coded utf-8 handling routines
define('E_UTF8_PACK', e_HANDLER.'utf8/');

define("E_NL", chr(2));

class e_parse extends e_parser
{
	/**
	 * Determine how to handle utf-8.
	 *    0 = 'do nothing'
	 *    1 = 'use mb_string'
	 *    2 = emulation
	 *
	 * @var integer
	 */
	protected $utfAction;

	// Shortcode processor - see __get()
	//var $e_sc;

	// BBCode processor
	var $e_bb;

	// Profanity filter
	var $e_pf;

	// Emote filter
	var $e_emote;

	// 'Hooked' parsers (array)
	var $e_hook;

	var $search = array('&amp;#039;', '&#039;', '&#39;', '&quot;', 'onerror', '&gt;', '&amp;quot;', ' & ');

	var $replace = array("'", "'", "'", '"', 'one<i></i>rror', '>', '"', ' &amp; ');

	// Set to TRUE or FALSE once it has been calculated
	var $e_highlighting;

	// Highlight query
	var $e_query;
	
	public $thumbWidth = 100;
	
	public $thumbHeight = 0;
	
	public $thumbCrop = 0;

	// Set up the defaults
	var $e_optDefault = array(
		// default context: reflects legacy settings (many items enabled)
		'context' 		=> 'OLDDEFAULT',
		//
		'fromadmin' 	=> FALSE,

		// Enable emote display
		'emotes'		=> TRUE,

		// Convert defines(constants) within text.
		'defs' 			=> FALSE,

		// replace all {e_XXX} constants with their e107 value - 'rel' or 'abs'
		'constants' 	=> FALSE,

		// Enable hooked parsers
		'hook'			=> TRUE,

		// Allow scripts through (new for 0.8)
		'scripts'		=> TRUE,

		// Make links clickable
		'link_click'	=> TRUE,

		// Substitute on clickable links (only if link_click == TRUE)
		'link_replace'	=> TRUE,

		// Parse shortcodes - TRUE enables parsing

		'parse_sc' 		=> FALSE,
		// remove HTML tags.
		'no_tags' 		=> FALSE,

		// Restore entity form of quotes and such to single characters - TRUE disables
		'value'			=> FALSE,

		// Line break compression - TRUE removes newline characters
		'nobreak' 		=> FALSE,

		// Retain newlines - wraps to \n instead of <br /> if TRUE (for non-HTML email text etc)
		'retain_nl' 	=> FALSE
		);

	// Super modifiers override default option values
	var	$e_SuperMods = array(
				//text is part of a title (e.g. news title)
				'TITLE' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE
						),
				'TITLE_PLAIN' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE, 'no_tags' => TRUE
						),
				//text is user-entered (i.e. untrusted) and part of a title (e.g. forum title)
				'USER_TITLE' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'scripts' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE
						),
				// text is 'body' of email or similar - being sent 'off-site' so don't rely on server availability
				'E_TITLE' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'defs'=>TRUE, 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE
						),
				// text is part of the summary of a longer item (e.g. content summary)
				'SUMMARY' =>
					array(
						'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
						),
				// text is the description of an item (e.g. download, link)
				'DESCRIPTION' =>
					array(
						'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
						),
				// text is 'body' or 'bulk' text (e.g. custom page body, content body)
				'BODY' =>
					array(
						'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
						),
				'WYSIWYG' =>
					array(
						'defs'=>FALSE, 'constants'=>'full', 'parse_sc'=>FALSE, 'wysiwyg'=>TRUE
						),
				// text is user-entered (i.e. untrusted)'body' or 'bulk' text (e.g. custom page body, content body)
				'USER_BODY' =>
					array(
						'constants'=>'full', 'scripts' => FALSE, 'nostrip'=>FALSE
						),
				// text is 'body' of email or similar - being sent 'off-site' so don't rely on server availability
				'E_BODY' =>
					array(
						'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE
						),
				// text is text-only 'body' of email or similar - being sent 'off-site' so don't rely on server availability
				'E_BODY_PLAIN' =>
					array(
						'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE, 'retain_nl' => TRUE, 'no_tags' => TRUE
						),
				// text is the 'content' of a link (A tag, etc)
				'LINKTEXT' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE
						),
				// text is used (for admin edit) without fancy conversions or html.
				'RAWTEXT' =>
					array(
						'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE, 'no_tags'=>TRUE
						)
		);

	// Individual modifiers change the current context
	var $e_Modifiers = array(
				'emotes_off'	=> array('emotes' => FALSE),
				'emotes_on'		=> array('emotes' => TRUE),
				'no_hook'		=> array('hook' => FALSE),
				'do_hook'		=> array('hook' => TRUE),
				// New for 0.8
				'scripts_off'	=> array('scripts' => FALSE),
				// New for 0.8
				'scripts_on'	=> array('scripts' => TRUE),
				'no_make_clickable' => array('link_click' => FALSE),
				'make_clickable' => array('link_click' => TRUE),
				'no_replace' 	=> array('link_replace' => FALSE),
				// Replace text of clickable links (only if make_clickable option set)
				'replace' 		=> array('link_replace' => TRUE),
				// No path replacement
				'consts_off'	=> array('constants' => FALSE),
				// Relative path replacement
				'consts_rel'	=> array('constants' => 'rel'),
				// Absolute path replacement
				'consts_abs'	=> array('constants' => 'abs'),
				// Full path replacement
				'consts_full'	=> array('constants' => 'full'),
				// No shortcode parsing
				'scparse_off'	=> array('parse_sc'	=> FALSE),

				'scparse_on'	=> array('parse_sc'	=> TRUE),
				// Strip tags
				'no_tags' 		=> array('no_tags' 	=> TRUE),
				// Leave tags
				'do_tags' 		=> array('no_tags' 	=> FALSE),

				'fromadmin'		=> array('fromadmin' => TRUE),
				'notadmin'		=> array('fromadmin' => FALSE),
				// entity replacement
				'er_off'		=> array('value' => FALSE),
				'er_on'			=> array('value' => TRUE),
				// Decode constant if exists
				'defs_off'		=> array('defs' => FALSE),
				'defs_on'		=> array('defs' => TRUE),

				'dobreak'		=> array('nobreak' => FALSE),
				'nobreak'		=> array('nobreak' => TRUE),
				// Line break using \n
				'lb_nl'			=> array('retain_nl' => TRUE),
				// Line break using <br />
				'lb_br'			=> array('retain_nl' => FALSE),

				// Legacy option names below here - discontinue later
				'retain_nl'		=> array('retain_nl' => TRUE),
				'defs'			=> array('defs' => TRUE),
				'parse_sc'		=> array('parse_sc'	=> TRUE),
				'constants'		=> array('constants' => 'rel'),
				'value'			=> array('value' => TRUE),
				'wysiwyg'		=> array('wysiwyg'=>TRUE)
		);


	/**
	 * Constructor - keep it public for backward compatibility
	 still some new e_parse() in the core
	 *
	 * @return void
	 */
	public function __construct()
	{
		// initialise the type of UTF-8 processing methods depending on PHP version and mb string extension
		$this->init();
		$this->initCharset();

		// Preprocess the supermods to be useful default arrays with all values
		foreach ($this->e_SuperMods as $key => $val)
		{
			// precalculate super defaults
			$this->e_SuperMods[$key] = array_merge($this->e_optDefault , $this->e_SuperMods[$key]);
			$this->e_SuperMods[$key]['context'] = $key;
		}
	}


	/**
	 * Initialise the type of UTF-8 processing methods depending on PHP version and mb string extension.
	 *
	 * NOTE: can't be called until CHARSET is known
	 but we all know that it is UTF-8 now
	 *
	 * @return void
	 */
	private function initCharset()
	{
		// Start by working out what, if anything, we do about utf-8 handling.
		// 'Do nothing' is the simple option
		$this->utfAction = 0;
// CHARSET is utf-8
//		if(strtolower(CHARSET) == 'utf-8')
//		{
			if(version_compare(PHP_VERSION, '6.0.0') < 1)
			{
				// Need to do something here
				if(extension_loaded('mbstring'))
				{
					// Check for function overloading
					$temp = ini_get('mbstring.func_overload');
					// Just check the string functions - will be non-zero if overloaded
					if(($temp & MB_OVERLOAD_STRING) == 0)
					{
						// Can use the mb_string routines
						$this->utfAction = 1;
					}
					// Set the default encoding, so we don't have to specify every time
					mb_internal_encoding('UTF-8');
				}
				else
				{
					// Must use emulation - will probably be slow!
					$this->utfAction = 2;
					require_once(E_UTF8_PACK.'utils/unicode.php');
					// Always load the core routines - bound to need some of them!
					require_once(E_UTF8_PACK.'native/core.php');
				}
			}
//		}
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/strlen strlen PHP function.
	 * Returns the length of the given string.
	 *
	 * @param string $str The UTF-8 encoded string being measured for length.
	 * @return integer The length (amount of UTF-8 characters) of the string on success, and 0 if the string is empty.
	 */
	public function ustrlen($str)
	{
		switch($this->utfAction)
		{
			case 0:
				return strlen($str);
			case 1:
				return mb_strlen($str);
		}
		// Default case shouldn't happen often
		// Save a call - invoke the function directly
		return strlen(utf8_decode($str));
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/strtolower strtolower PHP function.
	 * Make a string lowercase.
	 *
	 * @param string $str The UTF-8 encoded string to be lowercased.
	 * @return string Specified string with all alphabetic characters converted to lowercase.
	 */
	public function ustrtolower($str)
	{
		switch($this->utfAction)
		{
			case 0:
				return strtolower($str);
			case 1:
				return mb_strtolower($str);
		}
		// Default case shouldn't happen often
		return utf8_strtolower($str);
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/strtoupper strtoupper PHP function.
	 * Make a string uppercase.
	 *
	 * @param string $str The UTF-8 encoded string to be uppercased.
	 * @return string Specified string with all alphabetic characters converted to uppercase.
	 */
	public function ustrtoupper($str)
	{
		switch($this->utfAction)
		{
			case 0:
				return strtoupper($str);
			case 1:
				return mb_strtoupper($str);
		}
		// Default case shouldn't happen often
		return utf8_strtoupper($str);
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/strpos strpos PHP function.
	 * Find the position of the first occurrence of a case-sensitive UTF-8 encoded string.
	 * Returns the numeric position (offset in amount of UTF-8 characters)
	 *  of the first occurrence of needle in the haystack string.
	 *
	 * @param string $haystack The UTF-8 encoded string being searched in.
	 * @param integer $needle The UTF-8 encoded string being searched for.
	 * @param integer $offset [optional] The optional offset parameter allows you to specify which character in haystack to start searching.
	 * 				 The position returned is still relative to the beginning of haystack.
	 * @return integer|boolean Returns the position as an integer. If needle is not found, the function will return boolean FALSE.
	 */
	public function ustrpos($haystack, $needle, $offset = 0)
	{
		switch($this->utfAction)
		{
			case 0:
				return strpos($haystack, $needle, $offset);
			case 1:
				return mb_strpos($haystack, $needle, $offset);
		}
		return utf8_strpos($haystack, $needle, $offset);
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/strrpos strrpos PHP function.
	 * Find the position of the last  occurrence of a case-sensitive UTF-8 encoded string.
	 * Returns the numeric position (offset in amount of UTF-8 characters)
	 *  of the last occurrence of needle in the haystack string.
	 *
	 * @param string $haystack The UTF-8 encoded string being searched in.
	 * @param integer $needle The UTF-8 encoded string being searched for.
	 * @param integer $offset [optional] - The optional offset parameter allows you to specify which character in haystack to start searching.
	 * 				 The position returned is still relative to the beginning of haystack.
	 * @return integer|boolean Returns the position as an integer. If needle is not found, the function will return boolean FALSE.
	 */
	public function ustrrpos($haystack, $needle, $offset = 0)
	{
		switch($this->utfAction)
		{
			case 0:
				return strrpos($haystack, $needle, $offset);
			case 1:
				return mb_strrpos($haystack, $needle, $offset);
		}
		return utf8_strrpos($haystack, $needle, $offset);
	}


	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/stristr stristr PHP function.
	 * Returns all of haystack starting from and including the first occurrence of needle to the end.
	 *
	 * @param string $haystack The UTF-8 encoded string to search in.
	 * @param mixed $needle If needle is not a string, it is converted to an integer and applied as the ordinal value of a character.
	 * @param integer $length [optional] (PHP 5.3+) If TRUE, returns the part of the haystack before the first occurrence of the needle (excluding needle).
	 * @return string Returns the matched substring. If needle is not found, returns FALSE.
	 */
	public function ustristr($haystack, $needle, $before_needle = false)
	{
		switch($this->utfAction)
		{
			case 0:
				return stristr($haystack, $needle, $before_needle);
			case 1:
				return mb_substr($haystack, $needle, $before_needle);
		}
		// No utf8 pack backup
		return stristr($haystack, $needle, $before_needle);
	}
	
	/**
	 * Unicode (UTF-8) analogue of standard @link http://php.net/substr substr PHP function.
	 * Returns the portion of string specified by the start and length parameters.
	 *
	 * NOTE: May be subtle differences in return values dependent on which routine is used.
	 *  Native substr() routine can return FALSE. mb_substr() and utf8_substr() just return an empty string.
	 *
	 * @param string $str The UTF-8 encoded string.
	 * @param integer $start Start of portion to be returned. Position is counted in amount of UTF-8 characters from the beginning of str.
	 * 				First character's position is 0. Second character position is 1, and so on.
	 * @param integer $length [optional] If length is given, the string returned will contain at most length characters beginning from start
	 * 				(depending on the length of string). If length is omitted, the rest of string from start will be returned.
	 * @return string The extracted UTF-8 encoded part of input string.
	 */
	public function usubstr($str, $start, $length = NULL)
	{
		switch($this->utfAction)
		{
			case 0:
				return substr($str, $start, $length);
			case 1:
				if(is_null($length))
				{
					return mb_substr($str, $start);
				}
				else
				{
					return mb_substr($str, $start, $length);
				}
		}
		return utf8_substr($str, $start, $length);
	}

	/**
	 * Converts the supplied text (presumed to be from user input) to a format suitable for storing in a database table.
	 *
	 * @param string $data
	 * @param boolean $nostrip [optional] Assumes all data is GPC ($_GET, $_POST, $_COOKIE) unless indicate otherwise by setting this var to TRUE.
	 * 				If magic quotes is enabled on the server and you do not tell toDB() that the data is non GPC then slashes will be stripped when they should not be.
	 * @param boolean $no_encode [optional] This parameter should nearly always be FALSE. It is used by the save_prefs() function to preserve HTML content within prefs even when
	 * 				the save_prefs() function has been called by a non admin user / user without html posting permissions.
	 * @param boolean $mod [optional] The 'no_html' and 'no_php' modifiers blanket prevent HTML and PHP posting regardless of posting permissions. (used in logging)
	 *		The 'pReFs' value is for internal use only, when saving prefs, to prevent sanitisation of HTML.
	 * @param boolean $original_author [optional]
	 * @return string
	 * @todo complete the documentation of this essential method
	 */
	public function toDB($data, $nostrip = FALSE, $no_encode = FALSE, $mod = FALSE, $original_author = FALSE)
	{
		
		$core_pref = e107::getConfig();
		if (is_array($data))
		{
			foreach ($data as $key => $var)
			{
				//Fix - sanitize keys as well
				$ret[$this->toDB($key, $nostrip, $no_encode, $mod, $original_author)] = $this->toDB($var, $nostrip, $no_encode, $mod, $original_author);
			}
			return $ret;
		}


		if (MAGIC_QUOTES_GPC == TRUE && $nostrip == FALSE)
		{
			$data = stripslashes($data);
		}

		if ($mod != 'pReFs') //XXX We're not saving prefs. 
		{
			$data = $this->preFilter($data); // used by bb_xxx.php toDB() functions. bb_code.php toDB() allows us to properly bypass HTML cleaning below. 

			if (strip_tags($data) != $data) // html tags present. 
			{
			//	return $data;
				$data = $this->cleanHtml($data); // sanitize all html. 
				
				$data = urldecode($data); // symptom of cleaning the HTML - urlencodes src attributes containing { and } .eg. {e_BASE} 
			}
			
			if (!check_class($core_pref->get('post_html', e_UC_MAINADMIN)))
			{
				$data = strip_tags($data); // remove tags from cleaned html. 
				$data = str_replace(array('[html]','[/html]'),'',$data); 
			//	$data = $this->dataFilter($data);
			}

			$data = html_entity_decode($data, ENT_QUOTES, 'utf-8');	// Prevent double-entities. Fix for [code]  - see bb_code.php toDB(); 
		}
	
		if (check_class($core_pref->get('post_html'))) /*$core_pref->is('post_html') && */
		{
			$no_encode = TRUE;
		}
				
		if (is_numeric($original_author) && !check_class($core_pref->get('post_html'), '', $original_author))
		{
			$no_encode = FALSE;
		}
		if ($no_encode === TRUE && strpos($mod, 'no_html') === FALSE)
		{
			$search = array('$', '"', "'", '\\', '<?');
			$replace = array('&#036;', '&quot;', '&#039;', '&#092;', '&lt;?');
			$ret = str_replace($search, $replace, $data);
		}
		else
		{
			$data = htmlspecialchars($data, ENT_QUOTES, 'UTF-8');
			$data = str_replace('\\', '&#092;', $data);

			$ret = preg_replace("/&amp;#(\d*?);/", "&#\\1;", $data);
		}
		
		// XXX - php_bbcode has been deprecated. 
		if ((strpos($mod, 'no_php') !== FALSE) || !check_class($core_pref->get('php_bbcode')))
		{
			$ret = preg_replace("#\[(php)#i", "&#91;\\1", $ret);
		}

		return $ret;
	}


	/**
	 *	Check for umatched 'dangerous' HTML tags
	 *		(these can destroy page layout where users are able to post HTML)
	 * @DEPRECATED
	 *	@param string $data
	 *	@param string $tagList - if empty, uses default list of input tags. Otherwise a CSV list of tags to check (any type)
	 *
	 *	@return boolean TRUE if an unopened closing tag found
	 *					FALSE if nothing found
	 */
	function htmlAbuseFilter($data, $tagList = '')
	{
		
		if ($tagList == '')
		{
			$checkTags = array('textarea', 'input', 'td', 'tr', 'table');
		}
		else
		{
			$checkTags = explode(',', $tagList);
		}
		$tagArray = array_flip($checkTags);
		foreach ($tagArray as &$v) { $v = 0; };		// Data fields become zero; keys are tag names.
		$data = strtolower(preg_replace('#\[code\].*?\[\/code\]#i', '', $data));            // Ignore code blocks. All lower case simplifies the rest
		$matches = array();
		if (!preg_match_all('#<(\/|)([^<>]*?[^\/])>#', $data, $matches, PREG_SET_ORDER))
		{
			//echo "No tags found<br />";
			return TRUE;				// No tags found; so all OK
		}
		//print_a($matches);
		foreach ($matches as $m)
		{
			// $m[0] is the complete tag; $m[1] is '/' or empty; $m[2] is the tag and any attributes
			list ($tag) = explode(' ', $m[2], 2);
			if (!isset($tagArray[$tag])) continue;			// Not a tag of interest
			if ($m[1] == '/')
			{	// Closing tag
				if ($tagArray[$tag] == 0) 
				{
					//echo "Close before open: {$tag}<br />";
					return TRUE;		// Closing tag before we've had an opening tag
				}
				$tagArray[$tag]--;		// Obviously had at least one opening tag
			}
			else
			{	// Opening tag
				$tagArray[$tag]++;
			}
		}
		//print_a($tagArray);
		foreach ($tagArray as $t)
		{
			if ($t > 0) return TRUE;		// More opening tags than closing tags
		}
		return FALSE;						// OK now
	}


	/**
	 * @DEPRECATED XXX TODO Remove this horrible thing which adds junk to a db. 
	 *	Checks a string for potentially dangerous HTML tags, including malformed tags
	 *
	 */
	public function dataFilter($data, $mode='bbcode')
	{
					

		$ans = '';
		$vetWords = array('<applet', '<body', '<embed', '<frame', '<script','%3Cscript',
						 '<frameset', '<html', '<iframe', '<style', '<layer', '<link',
						 '<ilayer', '<meta', '<object', '<plaintext', 'javascript:',
						 'vbscript:','data:text/html');
		
		$ret = preg_split('#(\[code.*?\[/code.*?])#mis', $data, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );

		foreach ($ret as $s)
		{
			if (substr($s, 0, 5) != '[code')
			{
				$vl = array();
				$t = html_entity_decode(rawurldecode($s), ENT_QUOTES, CHARSET);
				$t = str_replace(array("\r", "\n", "\t", "\v", "\f", "\0"), '', $t);
				$t1 = strtolower($t);
				foreach ($vetWords as $vw)
				{
					if (strpos($t1, $vw) !== FALSE)
					{
						$vl[] = $vw;		// Add to list of words found
					}
					if (substr($vw, 0, 1) == '<')
					{
						$vw = '</'.substr($vw, 1);
						if (strpos($t1, $vw) !== FALSE)
						{
							$vl[] = $vw;		// Add to list of words found
						}
					}
				}
				// More checks here
				if (count($vl))
				{	// Do something
					$s = preg_replace_callback('#('.implode('|', $vl).')#mis', array($this, 'modtag'), $t);
				}
			}
			$s = preg_replace('#(?:onmouse.+?|onclick|onfocus)\s*?\=#', '[sanitised]$0[/sanitised]', $s);
			$s = preg_replace_callback('#base64([,\(])(.+?)([\)\'\"])#mis', array($this, 'proc64'), $s);
			$ans .= $s;
		}
		
		if($mode == 'link' && count($vl))
		{
			return "#sanitized";
		}
		
		return $ans;
	}


	/**
	 * Check base-64 encoded code
	 */
	private function proc64($match)
	{
		$decode = base64_decode($match[2]);
		return 'base64'.$match[1].base64_encode($this->dataFilter($decode)).$match[3];
	}


	// XXX REmove ME. 
	private function modTag($match)
	{
		$ans = '';
		if (isset($match[1]))
		{
			$chop = intval(strlen($match[1]) / 2);
			$ans = substr($match[1], 0, $chop).'##xss##'.substr($match[1], $chop);
		}
		else
		{
			$ans = '?????';
		}
		return '[sanitised]'.$ans.'[/sanitised]';

	}


	/**
	 *	Processes data as needed before its written to the DB.
	 *	Currently gives bbcodes the opportunity to do something
	 *
	 *	@param $data string - data about to be written to DB
	 *	@return string - modified data
	 */
	public function preFilter($data)
	{
		if (!is_object($this->e_bb))
		{
			require_once(e_HANDLER.'bbcode_handler.php');
			$this->e_bb = new e_bbcode;
		}
		$ret = $this->e_bb->parseBBCodes($data, USERID, 'default', 'PRE');			// $postID = logged in user here
		return $ret;
	}


	function toForm($text)
	{
		if(empty($text)) // fix - handle proper 0, Space etc values.
		{
			return $text;
		}
		$search = array('&#036;', '&quot;', '<', '>');
		$replace = array('$', '"', '&lt;', '&gt;');
		$text = str_replace($search, $replace, $text);
		if (e107::wysiwyg() !== true)
		{
			// fix for utf-8 issue with html_entity_decode(); ???
			$text = str_replace("&nbsp;", " ", $text);
		}
		return $text;
	}


	function post_toForm($text)
	{
		if(is_array($text))
		{
			foreach ($text as $key=>$value)
			{
				$text[$this->post_toForm($key)] = $this->post_toForm($value);
			}
			return $text;
		}
		if(MAGIC_QUOTES_GPC == TRUE)
		{
			$text = stripslashes($text);
		}
		return str_replace(array("'", '"', "<", ">"), array("&#039;", "&quot;", "&lt;", "&gt;"), $text);
	}


	function post_toHTML($text, $original_author = FALSE, $extra = '', $mod = FALSE)
	{
		$text = $this->toDB($text, FALSE, FALSE, $mod, $original_author);
		return $this->toHTML($text, TRUE, $extra);
	}

	/**
	 * @param $text - template to parse.
	 * @param boolean $parseSCFiles - parse core 'single' shortcodes
	 * @param array $extraCodes - support legacy shortcode content (eg. content within .sc) as well as simpleParse array format.
	 * @param object $eVars - XXX more info needed.
	 * @return string
	 */
	function parseTemplate($text, $parseSCFiles = TRUE, $extraCodes = null, $eVars = null)
	{
		if(!empty($extraCodes) && $this->isSimpleParse($extraCodes)) // support for a combined simple and standard template parse. - (eg. used by signup email template.) 
		{
			$text = $this->simpleParse($text, $extraCodes, false);	
		}
		
		
		return e107::getScParser()->parseCodes($text, $parseSCFiles, $extraCodes, $eVars);
	}

	
	/**
	 * Check if we are using the simple-Parse array format, or a legacy .sc format which contains 'return ' 
	 * @param array $extraCodes
	 */
	private function isSimpleParse($extraCodes)
	{
		
		if(!is_array($extraCodes))
		{
			return false;	
		}
		
		foreach ($extraCodes as $sc => $code)
		{			
			if(!strpos($code, 'return '))
			{
				return true;
			}
			else 
			{
				return false;
			}
		}		
	}


	/**
	 * Simple parser
	 *
	 * @param string $template
	 * @param e_vars|array $vars
	 * @param string $replaceUnset string to be used if replace variable is not set, false - don't replace
	 * @return string parsed content
	 */
	function simpleParse($template, $vars, $replaceUnset='')
	{
		$this->replaceVars = $vars;
		$this->replaceUnset = $replaceUnset;
		return preg_replace_callback("#\{([a-zA-Z0-9_]+)\}#", array($this, 'simpleReplace'), $template);
	}

	protected function simpleReplace($tmp) 
	{
		$unset = ($this->replaceUnset !== false ? $this->replaceUnset : $tmp[0]);
		$key = $tmp[1];
		if(is_array($this->replaceVars))
		{
            $this->replaceVars = new e_vars($this->replaceVars);
			//return ($this->replaceVars[$key] !== null ? $this->replaceVars[$key]: $unset);
		}
	//	
		return ($this->replaceVars->$tmp[1] !== null ? $this->replaceVars->$tmp[1] : $unset); // Doesn't work. 
	}

	function htmlwrap($str, $width, $break = "\n", $nobreak = "a", $nobr = "pre", $utf = FALSE)
	{
		/*
		Pretty well complete rewrite to try and handle utf-8 properly.
		Breaks each utf-8 'word' every $width characters max. If possible, breaks after 'safe' characters.
		$break is the character inserted to flag the break.
		$nobreak is a list of tags within which word wrap is to be inactive
		*/

		//TODO handle htmlwrap somehow
		//return $str;

		// Don't wrap if non-numeric width
		$width = intval($width);
		// And trap stupid wrap counts
		if ($width < 6)
			return $str;

		// Transform protected element lists into arrays
		$nobreak = explode(" ", strtolower($nobreak));

		// Variable setup
		$intag = FALSE;
		$innbk = array();
		$drain = "";

		// List of characters it is "safe" to insert line-breaks at
		// It is not necessary to add < and > as they are automatically implied
		$lbrks = "/?!%)-}]\\\"':;&";

		// Is $str a UTF8 string?
		if ($utf || strtolower(CHARSET) == 'utf-8')
		{
			// 0x1680, 0x180e, 0x2000-0x200a, 0x2028, 0x205f, 0x3000 are 'non-ASCII' Unicode UCS-4 codepoints - see http://www.unicode.org/Public/UNIDATA/UnicodeData.txt
			// All convert to 3-byte utf-8 sequences:
			// 0x1680	0xe1	0x9a	0x80
			// 0x180e	0xe1	0xa0	0x8e
			// 0x2000	0xe2	0x80	0x80
			//   -
			// 0x200a	0xe2	0x80	0x8a
			// 0x2028	0xe2	0x80	0xa8
			// 0x205f	0xe2	0x81	0x9f
			// 0x3000	0xe3	0x80	0x80
			$utf8 = 'u';
			$whiteSpace = '#([\x20|\x0c]|[\xe1][\x9a][\x80]|[\xe1][\xa0][\x8e]|[\xe2][\x80][\x80-\x8a,\xa8]|[\xe2][\x81][\x9f]|[\xe3][\x80][\x80]+)#';
			// Have to explicitly enumerate the whitespace chars, and use non-utf-8 mode, otherwise regex fails on badly formed utf-8
		}
		else
		{
			$utf8 = '';
			// For non-utf-8, can use a simple match string
			$whiteSpace = '#(\s+)#';
		}


		// Start of the serious stuff - split into HTML tags and text between
		$content = preg_split('#(<.*?'.'>)#mis', $str, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
		foreach($content as $value)
		{
			if ($value[0] == "<")
			{
				// We are within an HTML tag
				// Create a lowercase copy of this tag's contents
				$lvalue = strtolower(substr($value, 1, -1));
				if ($lvalue)
				{
					// Tag of non-zero length
					// If the first character is not a / then this is an opening tag
					if ($lvalue[0] != "/")
					{
						// Collect the tag name
						preg_match("/^(\w*?)(\s|$)/", $lvalue, $t);

						// If this is a protected element, activate the associated protection flag
						if(in_array($t[1], $nobreak))
							array_unshift($innbk, $t[1]);
					}
					else
					{
						// Otherwise this is a closing tag
						// If this is a closing tag for a protected element, unset the flag
						if (in_array(substr($lvalue, 1), $nobreak))
						{
							reset($innbk);
							while (list($key, $tag) = each($innbk))
							{
								if (substr($lvalue, 1) == $tag)
								{
									unset($innbk[$key]);
									break;
								}
							}
							$innbk = array_values($innbk);
						}
					}
				}
				else
				{
					// Eliminate any empty tags altogether
					$value = '';
				}
				// Else if we're outside any tags, and with non-zero length string...
			}
			elseif ($value)
			{
				// If unprotected...
				if (!count($innbk))
				{
					// Use the ACK (006) ASCII symbol to replace all HTML entities temporarily
					$value = str_replace("\x06", "", $value);
					preg_match_all("/&([a-z\d]{2,7}|#\d{2,5});/i", $value, $ents);
					$value = preg_replace("/&([a-z\d]{2,7}|#\d{2,5});/i", "\x06", $value);
					//			echo "Found block length ".strlen($value).': '.substr($value,20).'<br />';
					// Split at spaces - note that this will fail if presented with invalid utf-8 when doing the regex whitespace search
					//			$split = preg_split('#(\s)#'.$utf8, $value, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
					$split = preg_split($whiteSpace, $value, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
					$value = '';
					foreach ($split as $sp)
					{
						//			echo "Split length ".strlen($sp).': '.substr($sp,20).'<br />';
						$loopCount = 0;
						while (strlen($sp) > $width)
						{
							// Enough characters that we may need to do something.
							$pulled = '';
							if ($utf8)
							{
								// Pull out a piece of the maximum permissible length
								if (preg_match('#^((?:[\x00-\x7F]|[\xC0-\xFF][\x80-\xBF]+){0,'.$width.'})(.{0,1}).*#s',$sp,$matches) == 0)
								{
									// Make any problems obvious for now
									$value .= '[!<b>invalid utf-8: '.$sp.'<b>!]';
									$sp = '';
								}
								elseif (empty($matches[2]))
								{
									// utf-8 length is less than specified - treat as a special case
									$value .= $sp;
									$sp = '';
								}
								else
								{
									// Need to find somewhere to break the string
									for($i = strlen($matches[1]) - 1; $i >= 0; $i--)
									{
										if(strpos($lbrks, $matches[1][$i]) !== FALSE)
											break;
									}
									if($i < 0)
									{
										// No 'special' break character found - break at the word boundary
										$pulled = $matches[1];
									}
									else
									{
										$pulled = substr($sp, 0, $i + 1);
									}
								}
								$loopCount++;
								if ($loopCount > 20)
								{
									// Make any problems obvious for now
									$value .= '[!<b>loop count exceeded: '.$sp.'</b>!]';
									$sp = '';
								}
							}
							else
							{
								for ($i = min($width, strlen($sp)); $i > 0; $i--)
								{
									// No speed advantage to defining match character
									if (strpos($lbrks, $sp[$i-1]) !== FALSE)
										break;
								}
								if ($i == 0)
								{
									// No 'special' break boundary character found - break at the word boundary
									$pulled = substr($sp, 0, $width);
								}
								else
								{
									$pulled = substr($sp, 0, $i);
								}
							}
							if ($pulled)
							{
								$value .= $pulled.$break;
								// Shorten $sp by whatever we've processed (will work even for utf-8)
								$sp = substr($sp, strlen($pulled));
							}
						}
						// Add in any residue
						$value .= $sp;
					}
					// Put captured HTML entities back into the string
					foreach ($ents[0] as $ent)
						$value = preg_replace("/\x06/", $ent, $value, 1);
				}
			}
			// Send the modified segment down the drain
			$drain .= $value;
		}
		// Return contents of the drain
		return $drain;
	}

	/**
	 * CakePHP(tm) :  Rapid Development Framework (http://www.cakephp.org)
	 * Copyright 2005-2008, Cake Software Foundation, Inc. (http://www.cakefoundation.org)
	 *
	 * Truncate a HTML string
	 *
	 * Cuts a string to the length of $length and adds the value of $ending if the text is longer than length.
	 *
	 * @param string  $text String to truncate.
	 * @param integer $length Length of returned string, including ellipsis.
	 * @param string $ending It will be used as Ending and appended to the trimmed string.
	 * @param boolean $exact If false, $text will not be cut mid-word
	 * @return string Trimmed string.
	 */
	function html_truncate($text, $length = 100, $ending = '...', $exact = true)
	{
		if($this->ustrlen(preg_replace('/<.*?>/', '', $text)) <= $length)
		{
			return $text;
		}
		$totalLength = 0;
		$openTags = array();
		$truncate = '';
		preg_match_all('/(<\/?([\w+]+)[^>]*>)?([^<>]*)/', $text, $tags, PREG_SET_ORDER);

		foreach($tags as $tag)
		{
			if(!$tag[2] || !preg_match('/img|br|input|hr|area|base|basefont|col|frame|isindex|link|meta|param/si', $tag[2]))
			{
				if(preg_match('/<[\w]+[^>]*>/s', $tag[0]))
				{
					array_unshift($openTags, $tag[2]);
				}
				else if(preg_match('/<\/([\w]+)[^>]*>/s', $tag[0], $closeTag))
				{
					$pos = array_search($closeTag[1], $openTags);
					if($pos !== false)
					{
						array_splice($openTags, $pos, 1);
					}
				}
			}
			$truncate .= $tag[1];
			$contentLength = $this->ustrlen(preg_replace('/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i', ' ', $tag[3]));

			if($contentLength + $totalLength > $length)
			{
				$left = $length - $totalLength;
				$entitiesLength = 0;
				if(preg_match_all('/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i', $tag[3], $entities, PREG_OFFSET_CAPTURE))
				{
					foreach($entities[0] as $entity)
					{
						if($entity[1] + 1 - $entitiesLength <= $left)
						{
							$left--;
							$entitiesLength += $this->ustrlen($entity[0]);
						}
						else
						{
							break;
						}
					}
				}

				$truncate .= $this->usubstr($tag[3], 0, $left + $entitiesLength);
				break;
			}
			else
			{
				$truncate .= $tag[3];
				$totalLength += $contentLength;
			}
			if($totalLength >= $length)
			{
				break;
			}
		}
		if(!$exact)
		{
			$spacepos = $this->ustrrpos($truncate, ' ');
			if(isset($spacepos))
			{
				$bits = $this->usubstr($truncate, $spacepos);
				preg_match_all('/<\/([a-z]+)>/i', $bits, $droppedTags, PREG_SET_ORDER);
				if(!empty($droppedTags))
				{
					foreach($droppedTags as $closingTag)
					{
						if(!in_array($closingTag[1], $openTags))
						{
							array_unshift($openTags, $closingTag[1]);
						}
					}
				}
				$truncate = $this->usubstr($truncate, 0, $spacepos);
			}
		}
		$truncate .= $ending;
		foreach($openTags as $tag)
		{
			$truncate .= '</' . $tag . '>';
		}
		return $truncate;
	}

	/**
	 * Truncate a HTML string to a maximum length $len  append the string $more if it was truncated
	 *
	 * @param string $text String to process
	 * @param integer $len [optional] Length of characters to be truncated - default 200
	 * @param string $more [optional] String which will be added if truncation - default ' ... '
	 * @return string
	 */
	public function html_truncate_old ($text, $len = 200, $more = ' ... ')
	{
		$pos = 0;
		$curlen = 0;
		$tmp_pos = 0;
		$intag = FALSE;
		while($curlen < $len && $curlen < strlen($text))
		{
			switch($text {$pos} )
			{
				case "<":
					if($text {$pos + 1} == "/")
					{
						$closing_tag = TRUE;
					}
					$intag = TRUE;
					$tmp_pos = $pos - 1;
					$pos++;
				break;


				case ">":
					if($text {$pos - 1} == "/")
					{
						$closing_tag = TRUE;
					}
					if($closing_tag == TRUE)
					{
						$tmp_pos = 0;
						$closing_tag = FALSE;
					}
					$intag = FALSE;
					$pos++;
				break;


				case "&":
					if($text {$pos + 1} == "#")
					{
						$end = strpos(substr($text, $pos, 7), ";");
						if($end !== FALSE)
						{
							$pos += ($end + 1);
							if(!$intag)
							{
								$curlen++;
							}
						break;
						}
					}
					else
					{
						$pos++;
						if(!$intag)
						{
							$curlen++;
						}
					break;
					}
				default:
					$pos++;
					if(!$intag)
					{
						$curlen++;
					}
				break;
			}
		}
		$ret = ($tmp_pos > 0 ? substr($text, 0, $tmp_pos+1) : substr($text, 0, $pos));
		if($pos < strlen($text))
		{
			$ret = $ret.$more;
		}
		return $ret;
	}


	/**
	 * Truncate a string of text to a maximum length $len  append the string $more if it was truncated
	 * Uses current CHARSET  for utf-8, returns $len characters rather than $len bytes
	 *
	 * @param string $text  string to process
	 * @param integer $len  length of characters to be truncated
	 * @param string $more  string which will be added if truncation
	 * @return string
	 */
	public function text_truncate($text, $len = 200, $more = ' ... ')
	{
		// Always valid
		if($this->ustrlen($text) <= $len)
		{
			return $text;
		}
		
		$ret = $this->usubstr($text, 0, $len);

		// search for possible broken html entities
		// - if an & is in the last 8 chars, removing it and whatever follows shouldn't hurt
		// it should work for any characters encoding
		
		// FIXME - INVESTIGATE this one, switch to utf8 aware methods
		$leftAmp = $this->ustrrpos($this->usubstr($ret, -8), '&');
		if($leftAmp)
		{
			$ret = $this->usubstr($ret, 0, $this->ustrlen($ret) - 8 + $leftAmp);
		}

		return $ret.$more;
	}


	function textclean ($text, $wrap = 100)
	{
		$text = str_replace("\n\n\n", "\n\n", $text);
		$text = $this->htmlwrap($text, $wrap);
		$text = str_replace(array('<br /> ', ' <br />', ' <br /> '), '<br />', $text);
		/* we can remove any linebreaks added by htmlwrap function as any \n's will be converted later anyway */
		return $text;
	}


	// Test for text highlighting, and determine the text highlighting transformation
	// Returns TRUE if highlighting is active for this page display
	function checkHighlighting()
	{
		global $pref;

		if (!defined('e_SELF'))
		{
			// Still in startup, so can't calculate highlighting
			return FALSE;
		}

		if(!isset($this->e_highlighting))
		{
			$this->e_highlighting = FALSE;
			$shr = (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : "");
			if($pref['search_highlight'] && (strpos(e_SELF, 'search.php') === FALSE) && ((strpos($shr, 'q=') !== FALSE) || (strpos($shr, 'p=') !== FALSE)))
			{
				$this->e_highlighting = TRUE;
				if(!isset($this->e_query))
				{
					$query = preg_match('#(q|p)=(.*?)(&|$)#', $shr, $matches);
					$this->e_query = str_replace(array('+', '*', '"', ' '), array('', '.*?', '', '\b|\b'), trim(urldecode($matches[2])));
				}
			}
		}
		return $this->e_highlighting;
	}


	/**
	 * Converts the text (presumably retrieved from the database) for HTML output.
	 *
	 * @param string $text
	 * @param boolean $parseBB [optional]
	 * @param string $modifiers [optional] TITLE|SUMMARY|DESCRIPTION|BODY|RAW|LINKTEXT etc.
	 *		Comma-separated list, no spaces allowed
	 *		first modifier must be a CONTEXT modifier, in UPPER CASE.
	 *		subsequent modifiers are lower case - see $this->e_Modifiers for possible values
	 * @param mixed $postID [optional]
	 * @param boolean $wrap [optional]
	 * @return string
	 * @todo complete the documentation of this essential method
	 */
	public function toHTML($text, $parseBB = FALSE, $modifiers = '', $postID = '', $wrap = FALSE)
	{
		if($text == '')
		{
			return $text;
		}
		
		$pref = e107::getPref();

		global $fromadmin;

		// Set default modifiers to start
		$opts = $this->e_optDefault;


		// Now process any modifiers that are specified
		if ($modifiers)
		{
			$aMods = explode(',', $modifiers);

			// If there's a supermodifier, it must be first, and in uppercase
			$psm = trim($aMods[0]);
			if (isset($this->e_SuperMods[$psm]))
			{
				// Supermodifier found - override default values where necessary
				$opts = array_merge($opts,$this->e_SuperMods[$psm]);
				$opts['context'] = $psm;
				unset($aMods[0]);
			}

			// Now find any regular modifiers; use them to modify the context
			// (there should only be one or two out of the list of possibles)
			foreach ($aMods as $mod)
			{
				// Slight concession to varying coding styles - stripping spaces is a waste of CPU cycles!
				$mod = trim($mod);
				if (isset($this->e_Modifiers[$mod]))
				{
					// This is probably quicker than array_merge
					// - especially as usually only one or two loops
					foreach ($this->e_Modifiers[$mod] as $k => $v)
					{
						// Update our context-specific options
						$opts[$k] = $v;
					}
				}
			}
		}

		// Turn off a few things if not enabled in options
		if(!vartrue($pref['smiley_activate']))
		{
			$opts['emotes'] = FALSE;
		}
		if(!vartrue($pref['make_clickable']))
		{
			$opts['link_click'] = FALSE;
		}
		if(!vartrue($pref['link_replace']))
		{
			$opts['link_replace'] = FALSE;
		}

		$fromadmin = $opts['fromadmin'];

		// Convert defines(constants) within text. eg. Lan_XXXX - must be the entire text string (i.e. not embedded)
		// The check for '::' is a workaround for a bug in the Zend Optimiser 3.3.0 and PHP 5.2.4 combination
		// - causes crashes if '::' in site name

		if($opts['defs'] && (strlen($text) < 35) && ((strpos($text, '::') === FALSE) && defined(trim($text))))
		{
			return constant(trim($text));
		}

		if ($opts['no_tags'])
		{
			$text = strip_tags($text);
		}
		
		if (MAGIC_QUOTES_GPC == TRUE) // precaution for badly saved data. 
		{
			$text = stripslashes($text);
		}


		// Make sure we have a valid count for word wrapping
		if (!$wrap && $pref['main_wordwrap'])
		{
			$wrap = $pref['main_wordwrap'];
		}
//		$text = " ".$text;


		// Now get on with the parsing
		$ret_parser = '';
		$last_bbcode = '';
		// So we can change them on each loop
		$saveOpts = $opts;
		
		
		if ($parseBB == FALSE)
		{
			$content = array($text);
		}
		else
		{
			// Split each text block into bits which are either within one of the 'key' bbcodes, or outside them
			// (Because we have to match end words, the 'extra' capturing subpattern gets added to output array. We strip it later)
			$content = preg_split('#(\[(table|html|php|code|scode|hide).*?\[/(?:\\2)\])#mis', $text, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
		}


		// Use $full_text variable so its available to special bbcodes if required
		foreach ($content as $full_text)
		{
			$proc_funcs = TRUE;
			$convertNL = TRUE;

			// We may have 'captured' a bbcode word - strip it if so
			if ($last_bbcode == $full_text)
			{
				$last_bbcode = '';
				$proc_funcs = FALSE;
				$full_text = '';
			}
			else
			{
				// Set the options for this pass
				$opts = $saveOpts;

				// Have to have a good test in case a 'non-key' bbcode starts the block
				// - so pull out the bbcode parameters while we're there
				if (($parseBB !== FALSE) && preg_match('#(^\[(table|html|php|code|scode|hide)(.*?)\])(.*?)(\[/\\2\]$)#is', $full_text, $matches ))
				{
					// It's one of the 'key' bbcodes
					// Usually don't want 'normal' processing if its a 'special' bbcode
					$proc_funcs = FALSE;
					// $matches[0] - complete block from opening bracket of opening tag to closing bracket of closing tag
					// $matches[1] - complete opening tag (inclusive of brackets)
					// $matches[2] - bbcode word
					// $matches[3] - parameter, including '='
					// $matches[4] - bit between the tags (i.e. text to process)
					// $matches[5] - closing tag
					// In case we decide to load a file
					
					$bbPath 		= e_CORE.'bbcodes/';
					$bbFile 		= strtolower(str_replace('_', '', $matches[2]));
					$bbcode 		= '';
					$className 		= '';
					$full_text 		= '';
					$code_text 		= $matches[4];
					$parm 			= $matches[3] ? substr($matches[3],1) : '';
					$last_bbcode 	= $matches[2];
	
					switch ($matches[2])
					{
						case 'php' :
							// Probably run the output through the normal processing functions - but put here so the PHP code can disable if desired
							$proc_funcs = TRUE;

							// This is just the contents of the php.bb file pulled in - its short, so will be quicker
			//				$search = array("&quot;", "&#039;", "&#036;", '<br />', E_NL, "-&gt;", "&lt;br /&gt;");
			//				$replace = array('"', "'", "$", "\n", "\n", "->", "<br />");
							// Shouldn't have any parameter on this bbcode
							// Not sure whether checks are necessary now we've reorganised
			//				if (!$matches[3]) $bbcode = str_replace($search, $replace, $matches[4]);
							// Because we're bypassing most of the initial parser processing, we should be able to just reverse the effects of toDB() and execute the code
							// [SecretR] - avoid php code injections, missing php.bb will completely disable user posted php blocks
							$bbcode = file_get_contents($bbPath.$bbFile.'.bb');
							if (!$matches[3])
							{
								$code_text = html_entity_decode($matches[4], ENT_QUOTES, 'UTF-8');
							}
							break;

						case 'html' : // This overrides and deprecates html.bb
							$proc_funcs = TRUE;
							$noBreak = TRUE;
						//	$code_text = str_replace("\r\n", " ", $code_text);
							$code_text = html_entity_decode($code_text, ENT_QUOTES, CHARSET);
							$html_start = "<!-- bbcode-html-start -->"; // markers for html-to-bbcode replacement. 
							$html_end	= "<!-- bbcode-html-end -->";
							$full_text = str_replace(array("[html]","[/html]"), "",$code_text); // quick fix.. security issue?							
							$full_text =$this->replaceConstants($full_text,'abs');	
							$full_text = $html_start.$full_text.$html_end;
							$full_text = $this->parseBBTags($full_text); // strip <bbcode> tags. 
							$opts['nobreak'] = true;
							break;
						
						case 'table' : // strip <br /> from inside of <table>		
						
							$convertNL = FALSE;
						//	break;

						case 'hide' :
							$proc_funcs = TRUE;

						default :		// Most bbcodes will just execute their normal file
							// @todo should we cache these bbcodes? require_once should make class-related codes quite efficient
							if (file_exists($bbPath.'bb_'.$bbFile.'.php'))
							{	// Its a bbcode class file
								require_once($bbPath.'bb_'.$bbFile.'.php');
								$className = 'bb_'.$last_bbcode;
								$this->bbList[$last_bbcode] = new $className();
							}
							elseif(file_exists($bbPath.$bbFile.'.bb'))
							{
								$bbcode = file_get_contents($bbPath.$bbFile.'.bb');
							}
					}   // end - switch ($matches[2])

					if ($className)
					{
						$tempCode = new $className();
						$full_text = $tempCode->bbPreDisplay($matches[4], $parm);
					}
					elseif ($bbcode)
					{	// Execute the file
						$full_text = eval($bbcode);			// Require output of bbcode to be returned
						// added to remove possibility of nested bbcode exploits ...
						//   (same as in bbcode_handler - is it right that it just operates on $bbcode_return and not on $bbcode_output? - QUERY XXX-02
					}
					if(strpos($full_text, '[') !== FALSE)
					{
						$exp_search = array('eval', 'expression');
						$exp_replace = array('ev<b></b>al', 'expres<b></b>sion');
						$bbcode_return = str_replace($exp_search, $exp_replace, $full_text);
					}
				}
			}


			// Do the 'normal' processing - in principle, as previously - but think about the order.
			if ($proc_funcs && !empty($full_text)) // some more speed
			{

				// Split out and ignore any scripts and style blocks. With just two choices we can match the closing tag in the regex
				$subcon = preg_split('#((?:<s)(?:cript[^>]+>.*?</script>|tyle[^>]+>.*?</style>))#mis', $full_text, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
				foreach ($subcon as $sub_blk)
				{
					if(substr($sub_blk, 0, 7) == '<script')
					{
						if($opts['scripts'])
						{
							// Strip scripts unless permitted
							$ret_parser .= $sub_blk;
						}
					}
					elseif(substr($sub_blk, 0, 6) == '<style')
					{
						// Its a style block - just pass it through unaltered - except, do we need the line break stuff? - QUERY XXX-01
						if(defined('DB_INF_SHOW'))
						{
							echo "Processing stylesheet: {$sub_blk}<br />";
						}

						$ret_parser .= $sub_blk;
					}
					else
					{
						// Do 'normal' processing on a chunk


						// Could put tag stripping in here
					
/*
						//	Line break compression - filter white space after HTML tags - among other things, ensures HTML tables display properly
						// Hopefully now achieved by other means
						if ($convertNL && !$opts['nobreak'])
						{
							$sub_blk = preg_replace("#>\s*[\r]*\n[\r]*#", ">", $sub_blk);
						}
*/

						//	Link substitution
						// Convert URL's to clickable links, unless modifiers or prefs override
						if ($opts['link_click'])
						{
							if ($opts['link_replace'] && ADMIN_AREA !== true)
							{
								$_ext = ($pref['links_new_window'] ? " rel=\"external\"" : "");
								$link_text = $pref['link_text'];
								
								if(substr($link_text,-6) == '.glyph')
								{
									$link_text = $this->toGlyph($link_text,'');	
								}
								
//								$sub_blk = preg_replace("#(^|[\s])([\w]+?://(?:[\w-%]+?)(?:\.[\w-%]+?)+.*?)(?=$|[\s()[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"\\2\" {$_ext}>".$pref['link_text']."</a>", $sub_blk);
//								$sub_blk = preg_replace("#(^|[\s])((?:www|ftp)(?:\.[\w-%]+?){2}.*?)(?=$|[\s()[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"http://\\2\" {$_ext}>".$pref['link_text']."</a>", $sub_blk);
								$sub_blk = preg_replace("#(^|[\s])([\w]+?://(?:[\w-%]+?)(?:\.[\w-%]+?)+.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"\\2\" {$_ext}>".$link_text."</a>", $sub_blk);
								$sub_blk = preg_replace("#(^|[\s])((?:www|ftp)(?:\.[\w-%]+?){2}.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"http://\\2\" {$_ext}>".$link_text."</a>", $sub_blk);
								$email_text = ($pref['email_text']) ? $this->replaceConstants($pref['email_text']) : LAN_EMAIL_SUBS;
								$sub_blk = preg_replace("#([\n ])([a-z0-9\-_.]+?)@([\w\-]+\.([\w\-\.]+\.)*[\w]+)#i", "\\1<a rel='external' href='javascript:window.location=\"mai\"+\"lto:\"+\"\\2\"+\"@\"+\"\\3\";self.close();' onmouseover='window.status=\"mai\"+\"lto:\"+\"\\2\"+\"@\"+\"\\3\"; return true;' onmouseout='window.status=\"\";return true;'>".$email_text."</a>", $sub_blk);
							}
							else
							{
								$email_text = '$1$2©$3';

//								$sub_blk = preg_replace("#(^|[\s])([\w]+?://(?:[\w-%]+?)(?:\.[\w-%]+?)+.*?)(?=$|[\s()[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"\\2\" rel=\"external\">\\2</a>", $sub_blk);
//								$sub_blk = preg_replace("#(^|[\s])((?:www|ftp)(?:\.[\w-%]+?){2}.*?)(?=$|[\s()[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"http://\\2\" rel=\"external\">\\2</a>", $sub_blk);
								$sub_blk = preg_replace("#(^|[\s])([\w]+?://(?:[\w-%]+?)(?:\.[\w-%]+?)+.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"\\2\" rel=\"external\">\\2</a>", $sub_blk);
								$sub_blk = preg_replace("#(^|[\s])((?:www|ftp)(?:\.[\w-%]+?){2}.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"http://\\2\" rel=\"external\">\\2</a>", $sub_blk);
								$sub_blk = preg_replace("#([\n ])([a-z0-9\-_.]+?)@([\w\-]+\.([\w\-\.]+\.)*[\w]+)#i", "\\1<a rel='external' href='javascript:window.location=\"mai\"+\"lto:\"+\"\\2\"+\"@\"+\"\\3\";self.close();' onmouseover='window.status=\"mai\"+\"lto:\"+\"\\2\"+\"@\"+\"\\3\"; return true;' onmouseout='window.status=\"\";return true;'>".$email_text."</a>", $sub_blk);
							}
						}


						// Convert emoticons to graphical icons, if enabled
						if ($opts['emotes'])
						{
							if (!is_object($this->e_emote))
							{
							//	require_once(e_HANDLER.'emote_filter.php');
								$this->e_emote = new e_emoteFilter;
							}
							$sub_blk = $this->e_emote->filterEmotes($sub_blk);
						}


						// Reduce newlines in all forms to a single newline character (finds '\n', '\r\n', '\n\r')
						if (!$opts['nobreak'])
						{
							if ($convertNL && substr($sub_blk,0,6) != '[html]') //XXX Quick Fix, find a cleaner way. 
							{
								// We may need to convert to <br /> later
							
								$sub_blk = preg_replace("#[\r]*\n[\r]*#", E_NL, $sub_blk);
							}
							else
							{
								// Not doing any more - its HTML so keep \n so HTML is formatted
								$sub_blk = preg_replace("#[\r]*\n[\r]*#", "\n", $sub_blk);
							}
						}


						//	Entity conversion
						// Restore entity form of quotes and such to single characters, except for text destined for tag attributes or JS.
						if($opts['value'])
						{
							// output used for attribute values.
							$sub_blk = str_replace($this->replace, $this->search, $sub_blk);
						}
						else
						{
							// output not used for attribute values.
							$sub_blk = str_replace($this->search, $this->replace, $sub_blk);
						}


						//   BBCode processing (other than the four already done, which shouldn't appear at all in the text)
						if ($parseBB !== FALSE)
						{
							if (!is_object($this->e_bb))
							{
								require_once(e_HANDLER.'bbcode_handler.php');
								$this->e_bb = new e_bbcode;
							}
							if ($parseBB === TRUE)
							{
								// 'Normal' or 'legacy' processing
								if($modifiers == "WYSIWYG")
								{
									$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'wysiwyg');	
								}
								else 
								{
									$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID);	
								}
								
							}
							elseif ($parseBB === 'STRIP')
							{
								// Need to strip all BBCodes
								$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'default', TRUE);
							}
							else
							{
								// Need to strip just some BBCodes
								$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'default', $parseBB);
							}
						}


						// replace all {e_XXX} constants with their e107 value. modifier determines relative/absolute conversion
						// (Moved to after bbcode processing by Cameron)
						if ($opts['constants'])
						{
							$sub_blk = $this->replaceConstants($sub_blk, $opts['constants']);		// Now decodes text values
						}


						// profanity filter
						if ($pref['profanity_filter'])
						{
							if (!is_object($this->e_pf))
							{
							//	require_once(e_HANDLER."profanity_filter.php");
								$this->e_pf = new e_profanityFilter;
							}
							$sub_blk = $this->e_pf->filterProfanities($sub_blk);
						}


						//	Shortcodes
						// Optional short-code conversion
						if ($opts['parse_sc'])
						{
							$sub_blk = $this->parseTemplate($sub_blk, TRUE);
						}


						//Run any hooked in parsers
						if ($opts['hook'])
						{
							if ( varset($pref['tohtml_hook']))
							{
								//Process the older tohtml_hook pref (deprecated)
								foreach(explode(",", $pref['tohtml_hook']) as $hook)
								{
									if (!is_object($this->e_hook[$hook]))
									{
										if(is_readable(e_PLUGIN.$hook."/".$hook.".php"))
										{
											require_once(e_PLUGIN.$hook."/".$hook.".php");
											$hook_class = "e_".$hook;
											$this->e_hook[$hook] = new $hook_class;
										}

									}
									$sub_blk = $this->e_hook[$hook]->$hook($sub_blk,$opts['context']);
								}
							}

							if(isset($pref['e_tohtml_list']) && is_array($pref['e_tohtml_list']))
							{
								foreach($pref['e_tohtml_list'] as $hook)
								{
									if (!is_object($this->e_hook[$hook]))
									{
										if(is_readable(e_PLUGIN.$hook."/e_tohtml.php"))
										{
											require_once(e_PLUGIN.$hook."/e_tohtml.php");
											$hook_class = "e_tohtml_".$hook;
											$this->e_hook[$hook] = new $hook_class;
										}
									}
									$sub_blk = $this->e_hook[$hook]->to_html($sub_blk, $opts['context']);
								}
							}
						}


						// 	Word wrap
						if ($wrap && !$opts['nobreak'])
						{
							$sub_blk = $this->textclean($sub_blk, $wrap);
						}


						//	Search highlighting
						if ($opts['emotes'])			// Why??
						{
							if ($this->checkHighlighting())
							{
								$sub_blk = $this->e_highlight($sub_blk, $this->e_query);
							}
						}

						
						if($convertNL == true)
						{
							// Default replaces all \n with <br /> for HTML display
							$nl_replace = '<br />';
							if ($opts['nobreak'])
							{
								$nl_replace = '';
							}
							elseif ($opts['retain_nl'])
							{
								$nl_replace = "\n";
							}
							
							$sub_blk = str_replace(E_NL, $nl_replace, $sub_blk);
						}

						$ret_parser .= $sub_blk;
					}	// End of 'normal' processing for a block of text

				}		// End of 'foreach() on each block of non-script text

			}		// End of 'normal' parsing (non-script text)
			else
			{
				// Text block that needed no processing at all
				$ret_parser .= $full_text;
			}
		}

		// Quick Fix - Remove trailing <br /> on block-level elements (eg. div, pre, table, etc. )
		$srch = array();
		$repl = array();
		
		foreach($this->blockTags as $val)
		{
			$srch[] = "</".$val."><br />";	
			$repl[]	= "</".$val.">";
		}
		
		$ret_parser = str_replace($srch, $repl, $ret_parser);

		return trim($ret_parser);
	}

	/**
	 * Use it on html attributes to avoid breaking markup . 
	 * @example echo "<a href='#' title='".$tp->toAttribute($text)."'>Hello</a>"; 
	 */
	function toAttribute($text)
	{
		// URLs posted without HTML access may have an &amp; in them.
		$text = str_replace('&amp;', '&', $text);
		// Xhtml compliance.
		$text = htmlspecialchars($text, ENT_QUOTES, 'UTF-8');
		if(!preg_match('/&#|\'|"|<|>/s', $text))
		{
			$text = $this->replaceConstants($text);
			return $text;
		}
		else
		{
			return '';
		}
	}


	/**
	 * Convert text blocks which are to be embedded within JS
	 *
	 * @param string|array $stringarray
	 * @return string
	 */
	public function toJS($stringarray)
	{
		$search = array("\r\n", "\r", "<br />", "'");
		$replace = array("\\n", "", "\\n", "\'");
		$stringarray = str_replace($search, $replace, $stringarray);
		$stringarray = strip_tags($stringarray);

		$trans_tbl = get_html_translation_table(HTML_ENTITIES);
		$trans_tbl = array_flip($trans_tbl);

		return strtr($stringarray, $trans_tbl);
	}


	/**
	 * Convert Text for RSS/XML use.
	 *
	 * @param string $text
	 * @param boolean $tags [optional]
	 * @return string
	 */
	function toRss($text, $tags = FALSE)
	{
		if($tags != TRUE)
		{
			$text = $this -> toHTML($text, TRUE);
			$text = strip_tags($text);
		}

		$text = $this->toEmail($text);
		$search = array("&amp;#039;", "&amp;#036;", "&#039;", "&#036;"," & ", e_BASE, "href='request.php");
		$replace = array("'", '$', "'", '$',' &amp; ', SITEURL, "href='".SITEURL."request.php" );
		$text = str_replace($search, $replace, $text);

		if($tags == TRUE && ($text))
		{
			$text = "<![CDATA[".$text."]]>";
		}

		return $text;
	}

	//Convert specific characters back to original form, for use in storing code (or regex) values in the db.
	function toText($text)
	{
		$search = array("&amp;#039;", "&amp;#036;", "&#039;", "&#036;", "&#092;", "&amp;#092;");
		$replace = array("'", '$', "'", '$', "\\", "\\");
		$text = str_replace($search, $replace, $text);
		return $text;
	}


	/**
	 * Set the dimensions of a thumbNail (generated by thumbUrl)
	 */
	public function setThumbSize($w=null,$h=null,$crop=null)
	{
		if($w)
		{
			$this->thumbWidth = intval($w);	
		}
		
		if($h)
		{
			$this->thumbHeight = intval($h);	
		}	
		
		if($crop)
		{
			$this->thumbCrop = intval($crop);	
		}				
		
	}


	/**
	 * Set or Get the value of the thumbNail Width. 
	 * @param $width (optional)
	 */
	public function thumbWidth($width=null)
	{
		if($height !== null)
		{
			$this->thumbWidth = intval($width);
		}
		
		return $this->thumbWidth;		
	}


	/**
	 * Set or Get the value of the thumbNail height. 
	 * @param $height (optional)
	 */
	public function thumbHeight($height= null)
	{
		if($height !== null)
		{
			$this->thumbHeight = intval($height);
		}
		
		return $this->thumbHeight;	
		
	}
	
	
	/**
	 * Generate an auto-sized Image URL. 
	 * @param $url - path to image or leave blank for a placeholder. 
	 * @param $options  - width and height, but leaving this empty and using $this->thumbWidth() and $this->thumbHeight() is preferred. ie. {SETWIDTH: w=x&y=x}
	 * @param $raw ??
	 * @param $full
	 */
	public function thumbUrl($url=null, $options = array(), $raw = false, $full = false)
	{
		if(substr($url,0,3)=="{e_") // Fix for broken links that use {e_MEDIA} etc.
		{
			//$url = $this->replaceConstants($url,'abs');	
			// always switch to 'nice' urls when SC is used	
			$url = str_replace($this->getUrlConstants('sc'), $this->getUrlConstants('raw'), $url);	
		}
				
		if(!is_array($options))
		{
			parse_str($options, $options);
		}
		
		if(strstr($url,e_MEDIA) || strstr($url,e_SYSTEM)) // prevent disclosure of 'hashed' path. 
		{
			$raw = true; 	
		}

		if($raw) $url = $this->createConstants($url, 'mix');
		
		$baseurl = ($full ? SITEURL : e_HTTP).'thumb.php?';
        
		$thurl = 'src='.urlencode($url).'&amp;';
				
		if(vartrue($options['aw']) || vartrue($options['ah']) || $this->thumbCrop == 1)
		{
			if($this->thumbCrop == 1 && !vartrue($options['aw']) && !vartrue($options['ah'])) // Allow templates to determine dimensions. See {SETIMAGE}
			{
				$options['aw']	= $this->thumbWidth;
				$options['ah']	 = $this->thumbHeight;
			}
			
			$thurl .= 'aw='.((integer) vartrue($options['aw'], 0)).'&amp;ah='.((integer) vartrue($options['ah'], 0));
		}
		else
		{
			if(!vartrue($options['w']) && !vartrue($options['h'])) // Allow templates to determine dimensions. See {SETIMAGE}
			{
				 $options['w'] = $this->thumbWidth;
				 $options['h'] = $this->thumbHeight;
			}
			$thurl .= 'w='.((integer) vartrue($options['w'], 0)).'&amp;h='.((integer) vartrue($options['h'], 0));
		}
		
		
		if(vartrue($options['x']))//base64 encode url
		{
			$thurl = 'id='.base64_encode($thurl);
		}

	//	echo "<br /><br />".$thurl; 
		
		return $baseurl.$thurl;
	}

	/**
	 * Help for converting to more safe URLs
	 * e.g. {e_MEDIA_FILE}path/to/video.flv => e_MEDIA_FILE/path/to/video.flv
	 *
	 * @todo support for ALL URL shortcodes (replacement methods)
	 * @param string $type sc|raw|rev|all
	 * @return array
	 */
	public function getUrlConstants($type = 'sc')
	{
		// sub-folders first!
		static $array = array(
			'e_MEDIA_FILE/' 	=> '{e_MEDIA_FILE}',
			'e_MEDIA_VIDEO/' 	=> '{e_MEDIA_VIDEO}',
			'e_MEDIA_IMAGE/' 	=> '{e_MEDIA_IMAGE}',
			'e_MEDIA_ICON/' 	=> '{e_MEDIA_ICON}',
			'e_AVATAR/' 		=> '{e_AVATAR}',
			'e_AVATAR_DEFAULT/' => '{e_AVATAR_DEFAULT}',
			'e_AVATAR_UPLOAD/' => '{e_AVATAR_UPLOAD}',
			'e_WEB_JS/' 		=> '{e_WEB_JS}',
			'e_WEB_CSS/' 		=> '{e_WEB_CSS}',
			'e_WEB_IMAGE/' 		=> '{e_WEB_IMAGE}',
			'e_IMPORT/' 		=> '{e_IMPORT}',
		//	'e_WEB_PACK/' 		=> '{e_WEB_PACK}',

			'e_BASE/' 			=> '{e_BASE}',
			'e_ADMIN/' 			=> '{e_ADMIN}',
			'e_IMAGE/' 			=> '{e_IMAGE}',
			'e_THEME/' 			=> '{e_THEME}',
			'e_PLUGIN/' 		=> '{e_PLUGIN}',
			'e_HANDLER/' 		=> '{e_HANDLER}', // BC
			'e_MEDIA/' 			=> '{e_MEDIA}',
			'e_WEB/' 			=> '{e_ADMIN}',
	//		'THEME/'			=> '{THEME}',
		);
		
		
		switch ($type)
		{
			case 'sc':
				return array_values($array);
			break;

			case 'raw':
				return array_keys($array);
			break;

			case 'rev':
				return array_reverse($array, true);
			break;

			case 'all':
				return $array;
			break;
		}
		return array();
	}


	function getEmotes()
	{
		return $this->e_emote->emotes;		
	}


	/**
	 * Replace e107 path constants
	 * Note: only an ADMIN user can convert {e_ADMIN}
	 * TODO - runtime cache of search/replace arrays (object property) when $mode !== ''
	 * @param string $text
	 * @param string $mode [optional]	abs|full "full" = produce absolute URL path, e.g. http://sitename.com/e107_plugins/etc
	 * 									'abs' = produce truncated URL path, e.g. e107plugins/etc
	 * 									"" (default) = URL's get relative path e.g. ../e107_plugins/etc
	 * @param mixed $all [optional] 	if TRUE, then when $mode is "full" or TRUE, USERID is also replaced...
	 * 									when $mode is "" (default), ALL other e107 constants are replaced
	 * @return string
	 */
	public function replaceConstants($text, $mode = '', $all = FALSE)
	{

		if($mode != "")
		{
			$e107 = e107::getInstance();

			$replace_relative = array(
				$e107->getFolder('media_files'),
				$e107->getFolder('media_video'),
				$e107->getFolder('media_image'),
				$e107->getFolder('media_icon'),
				$e107->getFolder('avatars'),
				$e107->getFolder('web_js'),
				$e107->getFolder('web_css'),
				$e107->getFolder('web_image'),
				//$e107->getFolder('web_pack'),
				e_IMAGE_ABS,
				e_THEME_ABS,
				$e107->getFolder('images'),
				$e107->getFolder('plugins'),
				$e107->getFolder('files'),
				$e107->getFolder('themes'),
			//	$e107->getFolder('downloads'),
				$e107->getFolder('handlers'),
				$e107->getFolder('media'),
				$e107->getFolder('web'),
				$e107->site_theme ? $e107->getFolder('themes').$e107->site_theme.'/' : '',
				defset('THEME_ABS'),
				(ADMIN ? $e107->getFolder('admin') : ''),
				'',
				$e107->getFolder('core'),
				$e107->getFolder('system'),
			);

			switch ($mode)
			{
				case 'abs':
					$replace_absolute = array(
						e_MEDIA_FILE_ABS,
						e_MEDIA_VIDEO_ABS,
						e_MEDIA_IMAGE_ABS,
						e_MEDIA_ICON_ABS,
						e_AVATAR_ABS,
						e_JS_ABS,
						e_CSS_ABS,
						e_WEB_IMAGE_ABS,
				//		e_PACK_ABS,
						e_IMAGE_ABS,
						e_THEME_ABS,
						e_IMAGE_ABS,
						e_PLUGIN_ABS,
						e_FILE_ABS,
						e_THEME_ABS,
				//		e_DOWNLOAD_ABS, //impossible when download is done via php.
						'', // handlers - no ABS path available
						e_MEDIA_ABS,
						e_WEB_ABS,
						defset('THEME_ABS'),
						defset('THEME_ABS'),
						(ADMIN ? e_ADMIN_ABS : ''),
						$e107->server_path,
						'', // no e_CORE absolute path
						'', // no e_SYSTEM absolute path
					);
				break;

				case 'full':
					$replace_absolute = array(
						SITEURLBASE.e_MEDIA_FILE_ABS,
						SITEURLBASE.e_MEDIA_VIDEO_ABS,
						SITEURLBASE.e_MEDIA_IMAGE_ABS,
						SITEURLBASE.e_MEDIA_ICON_ABS,
						SITEURLBASE.e_AVATAR_ABS,
						SITEURLBASE.e_JS_ABS,
						SITEURLBASE.e_CSS_ABS,
						SITEURLBASE.e_WEB_IMAGE_ABS,
				//		SITEURLBASE.e_PACK_ABS,
						SITEURLBASE.e_IMAGE_ABS,
						SITEURLBASE.e_THEME_ABS,
						SITEURLBASE.e_IMAGE_ABS,
						SITEURLBASE.e_PLUGIN_ABS,
						SITEURLBASE.e_FILE_ABS, // deprecated
						SITEURLBASE.e_THEME_ABS,
						//SITEURL.$e107->getFolder('downloads'),
						'', //  handlers - no ABS path available
						SITEURLBASE.e_MEDIA_ABS,
						SITEURLBASE.e_WEB_ABS,
						defset('THEME_ABS') ? SITEURLBASE.THEME_ABS : '',
						defset('THEME_ABS') ? SITEURLBASE.THEME_ABS : '',
						(ADMIN ? SITEURLBASE.e_ADMIN_ABS : ''),
						SITEURL,
						'', // no e_CORE absolute path
						'', // no e_SYSTEM absolute path
					);
				break;
			}
			// sub-folders first!
			$search = array(
				'{e_MEDIA_FILE}',
				'{e_MEDIA_VIDEO}',
				'{e_MEDIA_IMAGE}',
				'{e_MEDIA_ICON}',
				'{e_AVATAR}',
				'{e_WEB_JS}',
				'{e_WEB_CSS}',
				'{e_WEB_IMAGE}',
		//		'{e_WEB_PACK}',
				"{e_IMAGE_ABS}",
				"{e_THEME_ABS}",
				"{e_IMAGE}",
				"{e_PLUGIN}",
				"{e_FILE}",
				"{e_THEME}",
				//,"{e_DOWNLOAD}"
				"{e_HANDLER}",
				"{e_MEDIA}",
				"{e_WEB}",
				"{THEME}",
				"{THEME_ABS}",
				"{e_ADMIN}",
				"{e_BASE}",
				"{e_CORE}",
				"{e_SYSTEM}",
			);

			/*if (ADMIN)
			{
				$replace_relative[] = $e107->getFolder('admin');
				$replace_absolute[] = SITEURL.$e107->getFolder('admin');
				$search[] = "{e_ADMIN}";
			}*/

			if ($all)
			{
				if (USER)
				{  // Can only replace with valid number for logged in users
					$replace_relative[] = USERID;
					$replace_absolute[] = USERID;
				}
				else
				{
					$replace_relative[] = '';
					$replace_absolute[] = '';
				}
				$search[] = "{USERID}";
			}

			// current THEME
			/*if(!defined('THEME'))
			{
				//if not already parsed by doReplace
				$text = str_replace(array('{THEME}', '{THEME_ABS}'), '', $text);
			}
			else
			{
				$replace_relative[] = THEME;
				$replace_absolute[] = THEME_ABS;
				$search[] = "{THEME}";
				$replace_relative[] = THEME;
				$replace_absolute[] = THEME_ABS;
				$search[] = "{THEME_ABS}";
			}*/

			$replace = ((string)$mode == "full" || (string)$mode=='abs' ) ? $replace_absolute : $replace_relative;
			return str_replace($search,$replace,$text);
		}

//		$pattern = ($all ? "#\{([A-Za-z_0-9]*)\}#s" : "#\{(e_[A-Z]*)\}#s");
		$pattern = ($all ? '#\{([A-Za-z_0-9]*)\}#s' : '#\{(e_[A-Z]*(?:_IMAGE|_VIDEO|_FILE|_CONTENT|_ICON|_AVATAR|_JS|_CSS|_PACK|_DB|_ABS){0,1})\}#s');
		$text = preg_replace_callback($pattern, array($this, 'doReplace'), $text);

		if(!defined('THEME'))
		{
			//if not already parsed by doReplace
			$text = str_replace(array('{THEME}', '{THEME_ABS}'), '', $text);
		}
		else
		{
			$srch = array('{THEME}', '{THEME_ABS}');
			$repl = array(THEME, THEME_ABS);
			$text = str_replace($srch, $repl, $text);
		}

		return $text;
	}


	function doReplace($matches)
	{
		if(defined($matches[1]) && (deftrue('ADMIN') || strpos($matches[1], 'ADMIN') === FALSE))
		{
			return constant($matches[1]);
		}
		return $matches[1];
	}

	/**
	 * Create and substitute e107 constants in passed URL
	 *
	 * @param string $url
	 * @param integer $mode 0-folders, 1-relative ('rel'), 2-absolute ('abs'), 3-full ('full') (with domain), 4-absolute & relative ('mix') (combination of 1,2,3)
	 * @return string
	 */
	public function createConstants($url, $mode = 0)
	{
		
		//FIXME - create constants for absolute paths and site URL's
		if (!is_numeric($mode))
		{
			switch ($mode)
			{
				case 'rel' : $mode = 1; break;
				case 'abs' : $mode = 2; break;
				case 'full' : $mode = 3; break;
				case 'mix' : $mode = 4; break;
				case 'nice': $mode = 5; break;
			}
		}
		$e107 = e107::getInstance();
		switch($mode)
		{
			case 0: // folder name only.
				$tmp = array(
					'{e_MEDIA_FILE}'	=> $e107->getFolder('media_files'),
					'{e_MEDIA_VIDEO}'	=> $e107->getFolder('media_videos'),
					'{e_MEDIA_IMAGE}'	=> $e107->getFolder('media_images'),
					'{e_MEDIA_ICON}'	=> $e107->getFolder('media_icons'),
					'{e_AVATAR}'		=> $e107->getFolder('avatars'),
					'{e_WEB_JS}'		=> $e107->getFolder('web_js'),
					'{e_WEB_CSS}'		=> $e107->getFolder('web_css'),
					'{e_WEB_IMAGE}'		=> $e107->getFolder('web_images'),
			//		'{e_WEB_PACK}'		=> $e107->getFolder('web_packs'),

					'{e_IMAGE}' 	=> $e107->getFolder('images'),
					'{e_PLUGIN}'	=> $e107->getFolder('plugins'),
					'{e_FILE}'		=> $e107->getFolder('files'),
					'{e_THEME}'		=> $e107->getFolder('themes'),
					'{e_DOWNLOAD}'	=> $e107->getFolder('downloads'),
					'{e_ADMIN}'		=> $e107->getFolder('admin'),
					'{e_HANDLER}'	=> $e107->getFolder('handlers'),
					'{e_MEDIA}'		=> $e107->getFolder('media'),
					'{e_WEB}'		=> $e107->getFolder('web'),
					'{e_UPLOAD}'	=> $e107->getFolder('uploads'),
					);
					
			break;


			case 1: // relative path only
				$tmp = array(
					'{e_MEDIA_FILE}'	=> e_MEDIA_FILE,
					'{e_MEDIA_VIDEO}'	=> e_MEDIA_VIDEO,
					'{e_MEDIA_IMAGE}'	=> e_MEDIA_IMAGE,
					'{e_MEDIA_ICON}'	=> e_MEDIA_ICON,
					'{e_AVATAR}'		=> e_AVATAR,
					'{e_IMPORT}'		=> e_IMPORT,
					'{e_WEB_JS}'		=> e_WEB_JS,
					'{e_WEB_CSS}'		=> e_WEB_CSS,
					'{e_WEB_IMAGE}'		=> e_WEB_IMAGE,
				//	'{e_WEB_PACK}'		=> e_WEB_PACK,

					'{e_IMAGE}'		=> e_IMAGE,
					'{e_PLUGIN}'	=> e_PLUGIN,
					'{e_FILE}'		=> e_FILE,
					'{e_THEME}'		=> e_THEME,
					'{e_DOWNLOAD}'	=> e_DOWNLOAD,
					'{e_ADMIN}'		=> e_ADMIN,
					'{e_HANDLER}'	=> e_HANDLER,
					'{e_MEDIA}'		=> e_MEDIA,
					'{e_WEB}'		=> e_WEB,
					'{e_UPLOAD}'	=> e_UPLOAD,
				);
			break;

			case 2: // absolute path only
				$tmp = array(
					'{e_MEDIA_FILE}'	=> e_MEDIA_FILE_ABS,
					'{e_MEDIA_VIDEO}'	=> e_MEDIA_VIDEO_ABS,
					'{e_MEDIA_IMAGE}'	=> e_MEDIA_IMAGE_ABS,
					'{e_MEDIA_ICON}'	=> e_MEDIA_ICON_ABS,
					'{e_AVATAR}'		=> e_AVATAR_ABS,
					'{e_WEB_JS}'		=> e_JS_ABS,
					'{e_WEB_CSS}'		=> e_CSS_ABS,
					'{e_WEB_IMAGE}'		=> e_WEB_IMAGE_ABS,
			//		'{e_WEB_PACK}'		=> e_PACK_ABS,

					'{e_IMAGE}'		=> e_IMAGE_ABS,
					'{e_PLUGIN}'	=> e_PLUGIN_ABS,
					'{e_FILE}'		=> e_FILE_ABS, // deprecated
					'{e_THEME}'		=> e_THEME_ABS,
					'{e_DOWNLOAD}'	=> e_HTTP.'request.php?',// FIXME - we need solution!
					'{e_ADMIN}'		=> e_ADMIN_ABS,
					//'{e_HANDLER}'	=> e_HANDLER_ABS, - no ABS path available
					'{e_MEDIA}'		=> e_MEDIA_ABS,
					'{e_WEB}'		=> e_WEB_ABS,
					'{e_BASE}'		=> e_HTTP,
				);
			break;

			case 3: // full path (e.g http://domain.com/e107_images/)
				$tmp = array(
					'{e_MEDIA_FILE}'	=> SITEURLBASE.e_MEDIA_FILE_ABS,
					'{e_MEDIA_VIDEO}'	=> SITEURLBASE.e_MEDIA_VIDEO_ABS,
					'{e_MEDIA_IMAGE}'	=> SITEURLBASE.e_MEDIA_IMAGE_ABS,
					'{e_MEDIA_ICON}'	=> SITEURLBASE.e_MEDIA_ICON_ABS,
					'{e_AVATAR}'		=> SITEURLBASE.e_AVATAR_ABS,
					'{e_WEB_JS}'		=> SITEURLBASE.e_JS_ABS,
					'{e_WEB_CSS}'		=> SITEURLBASE.e_CSS_ABS,
					'{e_WEB_IMAGE}'		=> SITEURLBASE.e_WEB_IMAGE_ABS,
			//		'{e_WEB_PACK}'		=> SITEURLBASE.e_PACK_ABS,

					'{e_IMAGE}'		=> SITEURLBASE.e_IMAGE_ABS,
					'{e_PLUGIN}'	=> SITEURLBASE.e_PLUGIN_ABS,
					'{e_FILE}'		=> SITEURLBASE.e_FILE_ABS, // deprecated
					'{e_THEME}'		=> SITEURLBASE.e_THEME_ABS,
					'{e_DOWNLOAD}'	=> SITEURLBASE.e_HTTP.'request.php?',// FIXME - we need solution!
					'{e_ADMIN}'		=> SITEURLBASE.e_ADMIN_ABS,
					//'{e_HANDLER}'	=> e_HANDLER_ABS, - no ABS path available
					'{e_MEDIA}'		=> SITEURLBASE.e_MEDIA_ABS,
					'{e_WEB}'		=> SITEURLBASE.e_WEB_ABS,
					'{e_BASE}'		=> SITEURL,
				);
			break;

			case 4: // absolute & relative paths
				$url = $this->createConstants($url, 3);
				$url = $this->createConstants($url, 2);
				$url = $this->createConstants($url, 1);
				return $url;
			break;

			case 5: // nice urls - e.g. e_MEDIA_VIDEO/mystream.flv
				$url = $this->createConstants($url, 4);
				return str_replace($this->getUrlConstants('sc'), $this->getUrlConstants('raw'), $url);
			break;

			default:
				$tmp = array();
			break;
		}

		foreach($tmp as $key=>$val)
		{
			$len = strlen($val);
			if(substr($url, 0, $len) == $val)
			{
				// replace the first instance only
				return substr_replace($url, $key, 0, $len);
			}
		}

		return $url;
	}


	//FIXME - $match not used?
	function e_highlight($text, $match)
	{
		$tags = array();
		preg_match_all('#<[^>]+>#', $text, $tags);
		$text = preg_replace('#<[^>]+>#', '<|>', $text);
		$text = preg_replace('#(\b".$match."\b)#i', '<span class="searchhighlight">\\1</span>', $text);
		foreach ($tags[0] as $tag)
		{
			$text = preg_replace('#<\|>#', $tag, $text, 1);
		}
		return $text;
	}

	
	/**
	 * Convert Text to a suitable format for use in emails. eg. relative links will be replaced with full links etc. 
	 * @param string $text
	 * @param boolean $posted - if the text has been posted. (uses stripslashes etc)
	 * @param string $mods - flags for text transformation. 
	 */
	public function toEmail($text, $posted = "", $mods = "parse_sc, no_make_clickable")
	{
		if ($posted === TRUE)
		{
			if (MAGIC_QUOTES_GPC)
			{
				$text = stripslashes($text);
			}
			$text = preg_replace('#\[(php)#i', '&#91;\\1', $text);
		}

		$text = (strtolower($mods) != "rawtext") ? $this->replaceConstants($text, "full") : $text;
		$text = $this->toHTML($text, TRUE, $mods);
		return $text;
	}


	/**
	 * Given an email address, returns a link including js-based obfuscation
	 */
	function emailObfuscate($email, $words = '', $subject = '')
	{
		if(strpos($email, '@') === FALSE)
		{
			return '';
		}
		if ($subject)
		{
			$subject = '?subject='.$subject;
		}
		list($name, $address) = explode('@', $email, 2);
		$reassembled = '"'.$name.'"+"@"+"'.$address.'"';
		return "<a rel='external' href='javascript:window.location=\"mai\"+\"lto:\"+".$reassembled.$subject.";self.close();' onmouseover='window.status=\"mai\"+\"lto:\"+".$reassembled."; return true;' onmouseout='window.status=\"\";return true;'>".$words.'</a>';
	}

	
	public function __get($name)
	{
		switch($name)
		{
			case 'e_sc':
				$ret = e107::getScParser();
			break;


			default:
				trigger_error('$e107->$'.$name.' not defined', E_USER_WARNING);
				return NULL;
			break;
		}


		$this->$name = $ret;
		return $ret;
	}
}


/**
 * New v2 Parser 
 * Start Fresh and Build on it over time to become eventual replacement to e_parse. 
 * Cameron's DOM-based parser. 
 */
class e_parser
{
    /**
     * @var DOMDocument
     */
    public $domObj                = null;
    protected $removedList        = array();
    protected $nodesToDelete      = array();
    protected $nodesToConvert     = array();
    protected $pathList           = array();
    protected $allowedAttributes  = array(
                                    'default'   => array('id', 'style', 'class'),
                                    'img'       => array('id', 'src', 'style', 'class', 'alt', 'title', 'width', 'height'),
                                    'a'         => array('id', 'href', 'style', 'class', 'title', 'target'),
                                    'script'	=> array('type', 'src', 'language'),
                                    'iframe'	=> array('id', 'src', 'frameborder', 'class', 'width', 'height', 'style')
                                  );

    protected $badAttrValues     = array('javascript[\s]*?:','alert\(','vbscript[\s]*?:','data:text\/html', 'mhtml[\s]*?:', 'data:[\s]*?image');

    protected $replaceAttrValues = array(
        'default' => array()
    );

    protected $allowedTags        = array('html', 'body','div','a','img','table','tr', 'td', 'th', 'tbody', 'thead', 'colgroup', 'b',
                                        'i', 'pre','code', 'strong', 'u', 'em','ul', 'ol', 'li','img','h1','h2','h3','h4','h5','h6','p',
                                        'div','pre','section','article', 'blockquote','hgroup','aside','figure','span', 'video', 'br',
                                        'small', 'caption', 'noscript'
                                   );
    protected $scriptTags 		= array('script','applet','iframe'); //allowed when $pref['post_script'] is enabled.
	
	protected $blockTags		= array('pre','div','h1','h2','h3','h4','h5','h6','blockquote'); // element includes its own line-break. 
        
    public function __construct()
    {
		$this->init();
         /*
        $meths = get_class_methods('DomDocument');
        sort($meths);
        print_a($meths);
        */        
    }  

    /**
     * Used by e_parse to start
     */
    function init()
    {
        $this->domObj = new DOMDocument();    
    }
    
    /**
     * Set Allowed Tags. 
     * @param $array 
     */
    public function setAllowedTags($array=array())
    {
        $this->allowedTags = $array;    
    } 

     /**
     * Set Allowed Attributes. 
     * @param $array 
     */
    public function setAllowedAttributes($array=array())
    {
        $this->allowedAttributes = $array;    
    } 

     /**
     * Set Script Tags.
     * @param $array
     */
    public function setScriptTags($array=array())
    {
        $this->scriptTags = $array;
    }

	/**
	 * Add leading zeros to a number. eg. 3 might become 000003
	 * @param $num integer 
	 * @param $numDigits - total number of digits
	 * @return number with leading zeros. 
	 */
	public function leadingZeros($num,$numDigits)
	{
		return sprintf("%0".$numDigits."d",$num);
	}

	/**
	 * Generic variable translator for LAN definitions. 
	 * @param $lan - string LAN
	 * @param $vals - either a single value, which will replace '[x]' or an array with key=>value pairs. 
	 * @example $tp->lanVars("My name is [x] and I own a [y]", array('x'=>"John", 'y'=>"Cat")); 
	 */
	function lanVars($lan, $vals, $bold=false)
	{
		
		$array = (!is_array($vals)) ? array('x'=>$vals) : $vals;
		
		foreach($array as $k=>$v)
		{
			$search[] = "[".$k."]";
			$replace[] = ($bold===true) ? "<strong>".$v."</strong>" : $v;
		}
		
		return str_replace($search, $replace, $lan);
	}
    
	/**
	 * Return an Array of all specific tags found in an HTML document and their attributes.  
	 * @param $html - raw html code
	 * @param $taglist - comma separated list of tags to search or '*' for all. 
	 * @param $header - if the $html includes the html head or body tags - it should be set to true. 
	 */
	public function getTags($html, $taglist='*', $header = false)
	{
		
		if($header == false)
		{
			$html = "<html><body>".$html."</body></html>";	
		}	
		
		$doc = $this->domObj;   
		       
		$doc->preserveWhiteSpace = true;
		libxml_use_internal_errors(true);
        $doc->loadHTML($html); 	
	
		$tg = explode(",", $taglist);
		$ret = array();
		
		foreach($tg as $find)
		{
	        $tmp = $doc->getElementsByTagName($find);
			
			 
			foreach($tmp as $k=>$node)
			{
				$tag = $node->nodeName;
				$inner = $node->C14N();
				 $inner = str_replace("&#xD;","",$inner);
				
				foreach ($node->attributes as $attr)
	            {
					$name = $attr->nodeName;
	           		$value = $attr->nodeValue; 
					$ret[$tag][$k][$name] = $value; 
				}
				
				$ret[$tag][$k]['@value'] = $inner; 
				
					
			}
		}
		
		if($header == false)
		{
			unset($ret['html'],$ret['body']);
		}	
		
		
		return $ret;
	}
	
	
	/**
	 * Parse xxxxx.glyph file to bootstrap glyph format. 
	 * @param string $text 
	 * @param array of $parms
	 */ 
	public function toGlyph($text, $space=" ")
	{
		if(!deftrue('BOOTSTRAP') || empty($text))
		{
			return false;	
		}
		
		
		if(is_array($space)) 
		{
			$parm = $space;
			$space = varset($parm['space'],'');
		}
		elseif(strpos($space,'='))
		{
			parse_str($space,$parm);
			$space = varset($parm['space'],'');	
		}
		else 
		{
			$parm = array();
		}

		if(substr($text,0,2) == 'e-') 	// e107 admin icon. 
		{
			$size = (substr($text,-3) == '-32') ? 'S32' : 'S16';	
			return "<i class='".$size." ".$text."'></i>";		
		}

		// Get Glyph names. 
		$bs3 = e107::getMedia()->getGlyphs('bs3','');
		$fa4 = e107::getMedia()->getGlyphs('fa4','');
		
		
		list($cls) = explode('.glyph',$text,2);
	//	list($type, $tmp2) = explode("-",$text,2);
		
	//	return $cls;
		
		$removePrefix = array('glyphicon-','icon-','fa-');
		
		$id = str_replace($removePrefix, "", $cls);
		
		
	//	return print_r($fa4,true);
		
		if(deftrue('FONTAWESOME') &&  in_array($id ,$fa4)) // Contains FontAwesome 3 set also. 
		{
			$prefix = 'fa fa-';
			$size 	= (vartrue($parm['size'])) ?  ' fa-'.$parm['size'] : '';	
			$tag 	= 'i';
		}
		elseif(deftrue("BOOTSTRAP")) 
		{
			if(BOOTSTRAP === 3 && in_array($id ,$bs3))
			{
				$prefix = 'glyphicon glyphicon-';
				$tag = 'span';
			}
			else
			{
				$prefix = 'icon-';	
				$tag = 'i';
			}
			
			$size = '';
			
		}
		
		$text = "<".$tag." class='".$prefix.$id.$size."'></".$tag.">" ;
		$text .= ($space !== false) ? $space : "";
		
		return $text;

		
		//$text = preg_replace('/\[(i_[\w]*)\]/',"<i class='$1'></i>", $text); 		
		// return $text;	
	}
	

	/**
	 * Render an avatar based on supplied user data or current user when missing. 
	 * @param @array  - user data from e107_user. 
	 * @return <img> tag of avatar.  
	 */
	public function toAvatar($userData=null)
	{
		$tp 		= e107::getParser();
		$width 		= $tp->thumbWidth;
		$height 	= ($tp->thumbHeight !== 0) ? $tp->thumbHeight : "";		
		
		
		if(!isset($userData['user_image']) && USERID)
		{
			$userData['user_image']	= USERIMAGE;
			$userData['user_name']	= USERNAME; 
		}
		
		
		$image = varset($userData['user_image']); 
		
		$genericImg = $tp->thumbUrl(e_IMAGE."generic/blank_avatar.jpg","w=".$width."&h=".$height,true);	
		
		if (!empty($image)) 
		{
			
			if(strpos($image,"://")!==false) // Remove Image
			{
				$img = $image;	
			}
			elseif(substr($image,0,8) == "-upload-")
			{
				
				$image = substr($image,8); // strip the -upload- from the beginning. 
				$img = (file_exists(e_AVATAR_UPLOAD.$image))  ? $tp->thumbUrl(e_AVATAR_UPLOAD.$image,"w=".$width."&h=".$height) : $genericImg;
			}
			elseif(file_exists(e_AVATAR_DEFAULT.$image))  // User-Uplaoded Image
			{
				$img =	$tp->thumbUrl(e_AVATAR_DEFAULT.$image,"w=".$width."&h=".$height);		
			}
			else // Image Missing. 
			{
				
				$img = $genericImg;
			}
		}
		else // No image provided - so send generic. 
		{
			$img = $genericImg;
		}
		
		$title = (ADMIN) ? $image : $tp->toAttribute($userData['user_name']);
		
		$text = "<img class='img-rounded img-responsive user-avatar e-tip' title=\"".$title."\" src='".$img."' alt='' style='width:".$width."px; height:".$height."px' />";
	//	return $img;
		return $text;
		
	}


	/**
	 * Display an icon. 
	 * @param string $icon 
	 * @example $tp->toIcon("{e_IMAGES}icons/something.png"); 
	 */
	public function toIcon($icon='',$parm = array())
	{
		
		if(!vartrue($icon))
		{
			return;
		}
				
		$ext = pathinfo($icon, PATHINFO_EXTENSION);
		
		if(!$ext || $ext == 'glyph') // Bootstrap or Font-Awesome. 
		{
			return $this->toGlyph($icon,$parm);
		}
		
		if(strpos($icon,'e_MEDIA')!==FALSE)
		{
			$path = $this->thumbUrl($icon);
		}
		elseif($icon[0] == '{')
		{
			$path = $this->replaceConstants($icon,'full');		
		}
		elseif(vartrue($parm['legacy']))
		{
			
			$legacyPath = $parm['legacy'].$icon;
			$filePath = $this->replaceConstants($legacyPath,'rel');
			
			if(is_readable($filePath))
			{
				$path = $this->replaceConstants($legacyPath,'full');	
			}
			else
			{
				$log = e107::getAdminLog();
				$log->addDebug('Broken Icon Path: '.$legacyPath."\n".print_r(debug_backtrace(null,2), true), false)->save('IMALAN_00');
			}
			
		}
		else 
		{
			$path = $icon;
		}
	
		
		return "<img class='icon' src='".$path."' alt='".basename($path)."'  />";	
	}	


	/**
	 * Check if a file is an video or not. 
	 * @param $file string
	 * @return boolean
	 */
	function isVideo($file)
	{
		$ext = pathinfo($file,PATHINFO_EXTENSION);
			
		return ($ext == 'youtube' || $ext == 'youtubepl') ? true : false;
		
	}

	
	/**
	 * Display a Video file. 
	 * @param string $file - format: id.type eg. x123dkax.youtube 
	 * @param boolean $thumbnail  - set to 'tag' to return an image thumbnail and 'src' to return the src url or 'video' for a small video thumbnail. 
	 */
	function toVideo($file, $parm=array())
	{
		list($id,$type) = explode(".",$file,2);
		
		$thumb = vartrue($parm['thumb']);
		
		
		$pref = e107::getPref();
		$ytpref = array();
		foreach($pref as $k=>$v) // Find all Youtube Prefs. 
		{
			if(substr($k,0,8) == 'youtube_')
			{
				$key = substr($k,8);
				$ytpref[$key] = $v;
			}	
		} 
		
		$ytqry = http_build_query($ytpref);
		
		if($type == 'youtube')
		{		
			
			$video =  '<iframe width="560" height="315" src="//www.youtube.com/embed/'.$id.'?'.$ytqry.'" style="border:0px" allowfullscreen></iframe>';
			$thumbSrc = "https://i1.ytimg.com/vi/".$id."/0.jpg";
		
			if($thumb == 'tag')
			{
				return "<img class='img-responsive' src='".$thumbSrc."' alt='Youtube Video' style='width:".vartrue($parm['w'],'80')."px'/>";	
			}
			
			if($thumb == 'email')
			{
				$thumbSrc = "http://i1.ytimg.com/vi/".$id."/maxresdefault.jpg"; // 640 x 480
				$filename = 'temp/yt-thumb-'.md5($id).".jpg";
				$filepath = e_MEDIA.$filename;
				$url 	= 'http://youtu.be/'.$id;
				
				if(!file_exists($filepath))
				{
					e107::getFile()->getRemoteFile($thumbSrc, $filename,'media');	
				}
								
				return "<a href='".$url."'><img class='video-responsive video-thumbnail' src='{e_MEDIA}".$filename."' alt='Youtube Video' title='Click to view on Youtube' />
				<div class='video-thumbnail-caption'><small>Click to watch video</small></div></a>";	
			}
			
			if($thumb == 'src')
			{
				return $thumbSrc;
			}
			
			if($thumb == 'video')
			{
				return '<div class="video-responsive video-thumbnail thumbnail">'.$video.'</div>';	
			}
			
			return '<div class="video-responsive '.vartrue($parm['class']).'">'.$video.'</div>';
		}


		if($type =='youtubepl')
		{

			if($thumb == 'tag')
			{
				$thumbSrc =  e107::getMedia()->getThumb($id);
				return "<img class='img-responsive' src='".$thumbSrc."' alt='Youtube Video Playlist' style='width:".vartrue($parm['w'],'80')."px'/>";

			}

			if($thumb == 'src')
			{
				return e107::getMedia()->getThumb($id);
			}

			$video = '<iframe width="560" height="315" src="https://www.youtube.com/embed/videoseries?list='.$id.'" frameborder="0" allowfullscreen></iframe>';
			return '<div class="video-responsive '.vartrue($parm['class']).'">'.$video.'</div>';
		}
				
		if($type == 'mp4') //TODO FIXME 
		{
			return '
			<div class="video-responsive">
			<video width="320" height="240" controls>
			  <source src="movie.mp4" type="video/mp4">
		
			  Your browser does not support the video tag.
			</video>
			</div>';	
		}
		
		
		return false;
	}
	
	
	/**
	 * Display a Date in the browser. 
	 * Includes support for 'livestamp' (http://mattbradley.github.io/livestampjs/)
	 * @param integer $datestamp - unix timestamp
	 * @param string $format - short | long | relative 
	 * @return HTML with converted date. 
	 */
	public function toDate($datestamp = null, $format='short')
	{
		if(!is_numeric($datestamp)){ return; }

		return '<span data-livestamp="'.$datestamp.'">'.e107::getDate()->convert($datestamp, $format).'</span>';	
	}
	

	/** 
	 * Parse new <bbcode> tags into bbcode output. 
	 * @param $retainTags : when you want to replace html and retain the <bbcode> tags wrapping it. 
	 * @return html 
	 */
	function parseBBTags($text,$retainTags = false)
	{
		$bbcodes = $this->getTags($text, 'bbcode');
			
		foreach($bbcodes as $v)
		{
			foreach($v as $val)
			{
				$tag = urldecode($val['alt']);
				$repl = ($retainTags == true) ? '$1'.$tag.'$2' : $tag;
				$text = preg_replace('/(<bbcode[^>]*>).*(<\/bbcode>)/s',$repl, $text); //FIXME - handle multiple instances of bbcodes. 
			}	
		}
		return $text;
	}


    /**
     * Perform and render XSS Test Comparison
     */
    public function test()
    {
      //  $tp = e107::getParser();
        $sql = e107::getDb();
        $tp = e107::getParser();
        
        $html = $this->getXss();
                   
        echo "<h2>Unprocessed XSS</h2>";
        // echo $html; // Remove Comment for a real mess! 
        print_a($html);
 
        echo "<h2>Standard v2 Parser</h2>";
        echo "<h3>\$tp->dataFilter()</h3>";
        // echo $tp->dataFilter($html); // Remove Comment for a real mess! 
        $sql->db_Mark_Time('------ Start Parser Test -------');
        print_a($tp->dataFilter($html));
        $sql->db_Mark_Time('tp->dataFilter');
         
        echo "<h3>\$tp->toHtml()</h3>";
        // echo $tp->dataFilter($html); // Remove Comment for a real mess! 
        print_a($tp->toHTML($html));
        $sql->db_Mark_Time('tp->toHtml');     
        
        echo "<h3>\$tp->toDB()</h3>";
        // echo $tp->dataFilter($html); // Remove Comment for a real mess! 
        print_a($tp->toDB($html));
        $sql->db_Mark_Time('tp->toDB');             
        
        
        echo "<h2>New Parser</h2>"; 
        echo "<h3>Processed</h3>";
        $cleaned = $this->cleanHtml($html);  
        print_a($cleaned);
        $sql->db_Mark_Time('new Parser');    
      //  $sql->db_Mark_Time('------ End Parser Test -------');
        echo "<h3>Processed &amp; Rendered</h3>";
        echo $cleaned;
        
        echo "<h2>New Parser - Data</h2>"; 
        echo "<h3>Converted Paths</h3>";
        print_a($this->pathList);
                   
        echo "<h3>Removed Tags and Attributes</h3>";
        print_a($this->removedList);
        
         //   print_a($p); 
    }
 
    
    /**
     * Process and clean HTML from user input.
     * TODO Html5 tag support.
     * @param string $html raw HTML
     * @param boolean $checkPref
     * @return string
     */
    public function cleanHtml($html='', $checkPref = true)
    {
        if(empty($html)){ return ''; }
        
   //     $html = mb_convert_encoding($html, 'UTF-8');     
        
        if(preg_match("/<body/i",$html)!==true) // HTML Fragment
		{
       		$html = '<?xml version="1.0" encoding="utf-8"?><!DOCTYPE html><html><head><meta charset="utf-8"></head><body>'.$html.'</body></html>'; 
		}
		else  // Full HTML page. 
		{
		//	$this->allowedTags[] = 'head';
		//	$this->allowedTags[] = 'body';
		//	$this->allowedTags[] = 'title';
			//$this->allowedTags[] = 'meta';
		}
         
		if(!is_object($this->domObj))
		{
			$this->init();	
		}

        if($checkPref)
        {
            $post_scripts = e107::getConfig()->get('post_script', e_UC_MAINADMIN); // Pref to Allow <script> tags
            if(check_class($post_scripts))
            {
                $this->allowedTags = array_merge($this->allowedTags,$this->scriptTags);
            }
        }

		
        // Set it up for processing. 
        $doc  = $this->domObj;   

        @$doc->loadHTML($html); 
        $doc->encoding = 'UTF-8'; //FIXME 
     //   $doc->resolveExternals = true;
        
    //    $tmp = $doc->getElementsByTagName('*');   
    
       	$this->nodesToConvert 	= array(); // required. 
		$this->nodesToDelete 	= array(); // required. 
		$this->removedList		= array();

		$tmp = $doc->getElementsByTagName('*');

        /** @var DOMElement $node */
        foreach($tmp as $node)
        {
            $path = $node->getNodePath();

		//	echo "<br />Path = ".$path;
         //   $tag = strval(basename($path));
            
            $tag = preg_replace('/([a-z0-9\[\]\/]*)?\/([\w]*)(\[(\d)*\])?$/i', "$2", $path);
            if(!in_array($tag, $this->allowedTags))
            {
                 if(strpos($path,'/code/') !== false || strpos($path,'/pre/') !== false) //  treat as html.
                 {
                    $this->pathList[] = $path; 
                    $this->nodesToConvert[] =  $node->parentNode; // $node; 
                    continue;
                 }
                
                $this->removedList['tags'][] = $tag;
                $this->nodesToDelete[] = $node; 
                continue;
            }

            foreach ($node->attributes as $attr)
            {
                $name = $attr->nodeName;
                $value = $attr->nodeValue;

                $allow = varset($this->allowedAttributes[$tag], $this->allowedAttributes['default']);
                $removeAttributes = array();

                if(!in_array($name, $allow))
                {
                    $removeAttributes[] = $name;
                    //$node->removeAttribute($name);
                    $this->removedList['attributes'][] = $name. " from <".$tag.">";
                    continue;
                }

                if($this->invalidAttributeValue($value)) // Check value against blacklisted values.
                {
					//$node->removeAttribute($name);
                    $node->setAttribute($name, '#---sanitized---#');
					$this->removedList['sanitized'][] = $tag.'['.$name.']';    
                }
                else
                {
                    $_value = $this->secureAttributeValue($name, $value);

                    $node->setAttribute($name, $_value);
                    if($_value !== $value)
                    {
                        $this->removedList['sanitized'][] = $tag.'['.$name.'] converted "'.$value.'" -> "'.$_value.'"';
                    }
                }
            }

            // required - removing attributes in a loop breaks the loop
            if(!empty($removeAttributes))
            {
	            foreach ($removeAttributes as $name)
	            {
	                $node->removeAttribute($name);
	            }
            }


        }
        
        // Remove some stuff. 
        foreach($this->nodesToDelete as $node)
        {
            $node->parentNode->removeChild($node);
        }  
        
        // Convert <code> and <pre> Tags to Htmlentities. 
        foreach($this->nodesToConvert as $node)  
        {
            $value = $node->C14N();

            $value = str_replace("&#xD;","",$value);
            
            if($node->nodeName == 'pre')
            {
                $value = substr($value,5);
                $end = strrpos($value,"</pre>");
                $value = substr($value,0,$end);
            }
            
            if($node->nodeName == 'code')
            {
                $value = substr($value,6);
                $end = strrpos($value,"</code>");
                $value = substr($value,0,$end);
            }
            
            $value = htmlentities(htmlentities($value)); // Needed 
            $node->nodeValue = $value;
        }

        $cleaned = $doc->saveHTML();

        $cleaned = str_replace(array('<body>','</body>','<html>','</html>','<!DOCTYPE html>','<meta charset="UTF-8">','<?xml version="1.0" encoding="utf-8"?>'),'',$cleaned); // filter out tags. 
    
        $cleaned = html_entity_decode($cleaned, ENT_QUOTES, 'UTF-8');
        
        return trim($cleaned);
    }

    public function secureAttributeValue($attribute, $value)
    {
        $search = isset($this->replaceAttrValues[$attribute]) ? $this->replaceAttrValues[$attribute] : $this->replaceAttrValues['default'];
        if(!empty($search))
        {
            $value = str_replace($search, '', $value);
        }
        return $value;
    }
 
 
    /**
     * Check for Invalid Attribute Values
     * @param $value string
     * @return true/false
     */   
    function invalidAttributeValue($value)
    {
    	
    	
        foreach($this->badAttrValues as $v) // global list because a bad value is bad regardless of the attribute it's in. ;-)
        {
            if(preg_match('/'.$v.'/i',$value)==true)
            {
				$this->removedList['blacklist'][]	= "Match found for '{$v}' in '{$value}'";
            	
                return true;    
            }   
            
        }
        
        return false;    
    }   
    
       
    /**
     * XSS HTML code to test against
     */
    private function getXss()
    {

$html = <<<EOF
Internationalization Test: 
ภาษาไทย <br />
日本語 <br />
简体中文 <br />
<a href='somewhere.html' src='invalidatrribute' >Test</a>
A GOOD LINK: <a href='http://mylink.php'>Some Link</a>
<a href='javascript: something' src='invalidatrribute' >Test regex</a>
<img href='invalidattribute' src='myimage.jpg' />
<frameset onload=alert(1) data-something=where>
<table background="javascript:alert(1)"><tr><td><a href="something.php" onclick="alert(1)">Hi there</a></td></tr></table>
<div>
<!--<img src="--><img src=x onerror=alert(1)//">
<comment><img src="</comment><img src=x onerror=alert(1)//">
<ul>
<li style=list-style:url() onerror=alert(1)></li> <div style=content:url(data:image/svg+xml,%3Csvg/%3E);visibility:hidden onload=alert(1)></div>
</ul>
</div>
</frameset>
<head><base href="javascript://"/></head><body><a href="/. /,alert(1)//#">XXX</a></body>
<SCRIPT FOR=document EVENT=onreadystatechange>alert(1)</SCRIPT>
<OBJECT CLASSID="clsid:333C7BC4-460F-11D0-BC04-0080C7055A83"><PARAM NAME="DataURL" VALUE="javascript:alert(1)"></OBJECT>
<b <script>alert(1)//</script>0</script></b>
<div id="div1"><input value="``onmouseover=alert(1)"></div> <div id="div2"></div><
script>document.getElementById("div2").innerHTML = document.getElementById("div1").innerHTML;</script>
Some example text<br />
<b>This is bold</b><br />
<i>This is italic</i><br />
<small>Some small text</small>
<pre>This is pre-formatted
        <script>alert('something')</script>
        <b>Bold Stuff</b>
        <pre>something</pre>
        <code>code</code>
        <b>BOLD</b>
        function myfunction()
        {
            
        }
 </pre>
<code>
        function myfunction()
        {
            
        }

<script>alert('something')</script>
</code>
<svg><![CDATA[><image xlink:href="]]><img src=xx:x onerror=alert(2)//"></svg>
<style><img src="</style><img src=x onerror=alert(1)//">
<x '="foo"><x foo='><img src=x onerror=alert(1)//'> <!-- IE 6-9 --> <! '="foo"><x foo='><img src=x onerror=alert(2)//'> <? '="foo"><x foo='><img src=x onerror=alert(3)//'>
<embed src="javascript:alert(1)"></embed> // O10.10↓, OM10.0↓, GC6↓, FF <img src="javascript:alert(2)"> <image src="javascript:alert(2)"> // IE6, O10.10↓, OM10.0↓ <script src="javascript:alert(3)"></script> // IE6, O11.01↓, OM10.1↓
<div style=width:1px;filter:glow onfilterchange=alert(1)>x</div>
<object allowscriptaccess="always" data="test.swf"></object>
[A] <? foo="><script>alert(1)</script>"> <! foo="><script>alert(1)</script>"> </ foo="><script>alert(1)</script>"> [B] <? foo="><x foo='?><script>alert(1)</script>'>"> [C] <! foo="[[[x]]"><x foo="]foo><script>alert(1)</script>"> [D] <% foo><x foo="%><script>alert(1)</script>">
<iframe src=mhtml:http://html5sec.org/test.html!xss.html></iframe> <iframe src=mhtml:http://html5sec.org/test.gif!xss.html></iframe>
<html> <body> <b>some content without two new line \n\n</b> Content-Type: multipart/related; boundary="******"<b>some content without two new line</b> --****** Content-Location: xss.html Content-Transfer-Encoding: base64 PGlmcmFtZSBuYW1lPWxvIHN0eWxlPWRpc3BsYXk6bm9uZT48L2lmcmFtZT4NCjxzY3JpcHQ+DQp1 cmw9bG9jYXRpb24uaHJlZjtkb2N1bWVudC5nZXRFbGVtZW50c0J5TmFtZSgnbG8nKVswXS5zcmM9 dXJsLnN1YnN0cmluZyg2LHVybC5pbmRleE9mKCcvJywxNSkpO3NldFRpbWVvdXQoImFsZXJ0KGZy YW1lc1snbG8nXS5kb2N1bWVudC5jb29raWUpIiwyMDAwKTsNCjwvc2NyaXB0PiAgICAg --******-- </body> </html>
<!-- IE 5-9 --> <div id=d><x xmlns="><iframe onload=alert(1)"></div> <script>d.innerHTML+='';</script> <!-- IE 10 in IE5-9 Standards mode --> <div id=d><x xmlns='"><iframe onload=alert(2)//'></div> <script>d.innerHTML+='';</script>
<img[a][b]src=x[d]onerror[c]=[e]"alert(1)">
<a href="[a]java[b]script[c]:alert(1)">XXX</a>
<img src="x` `<script>alert(1)</script>"` `>
<img src onerror /" '"= alt=alert(1)//">
<title onpropertychange=alert(1)></title><title title=></title>
<!-- IE 5-8 standards mode --> <a href=http://foo.bar/#x=`y></a><img alt="`><img src=xx:x onerror=alert(1)></a>"> <!-- IE 5-9 standards mode --> <!a foo=x=`y><img alt="`><img src=xx:x onerror=alert(2)//"> <?a foo=x=`y><img alt="`><img src=xx:x onerror=alert(3)//">
<!--[if]><script>alert(1)</script --> <!--[if<img src=x onerror=alert(2)//]> -->
<script> Blabla </script>
<script src="/\example.com\foo.js"></script> // Safari 5.0, Chrome 9, 10 <script src="\\example.com\foo.js"></script> // Safari 5.0
<object id="x" classid="clsid:CB927D12-4FF7-4a9e-A169-56E4B8A75598"></object> <object classid="clsid:02BF25D5-8C17-4B23-BC80-D3488ABDDC6B" onqt_error="alert(1)" style="behavior:url(#x);"><param name=postdomevents /></object>
<!-- `<img/src=xx:xx onerror=alert(1)//--!>
<xmp> <% </xmp> <img alt='%></xmp><img src=xx:x onerror=alert(1)//'> <script> x='<%' </script> %>/ alert(2) </script> XXX <style> *['<!--']{} </style> -->{} *{color:red}</style>
<a style="-o-link:'javascript:alert(1)';-o-link-source:current">X</a>
<style>p[foo=bar{}*{-o-link:'javascript:alert(1)'}{}*{-o-link-source:current}*{background:red}]{background:green};</style>
<div style="font-family:'foo[a];color:red;';">XXX</div>
<form id="test"></form><button form="test" formaction="javascript:alert(1)">X</button>
<input onfocus=write(1) autofocus>
<video poster=javascript:alert(1)//></video>
<video>somemovei.mp4</video>
<body onscroll=alert(1)><br><br><br><br><br><br>...<br><br><br><br><input autofocus>

<article id="something">Some text goes here</article>


EOF;

return $html;            
            
    }
        
    
}


class e_emotefilter {
	var $search;
	var $replace;
	var $emotes;
	 
	function e_emotefilter() /* constructor */
	{		
		$pref = e107::getPref();
		
		if(!$pref['emotepack'])	
		{	
			$pref['emotepack'] = "default";
			save_prefs();
		}
			
		$this->emotes = e107::getConfig("emote")->getPref();
		
		if(!vartrue($this->emotes))
		{
			return;
		}

		foreach($this->emotes as $key => $value)
		{
		  $value = trim($value);

		  if ($value)
		  {	// Only 'activate' emote if there's a substitution string set
			$key = preg_replace("#!(\w{3,}?)$#si", ".\\1", $key);
			// Next two probably to sort out legacy issues - may not be required any more
			$key = preg_replace("#_(\w{3})$#", ".\\1", $key);
			$key = str_replace("!", "_", $key);

			  $filename = e_IMAGE."emotes/" . $pref['emotepack'] . "/" . $key;
			  
			  $fileloc = SITEURLBASE.e_IMAGE_ABS."emotes/" . $pref['emotepack'] . "/" . $key;

			  if(file_exists($filename))
			  {
				if(strstr($value, " "))
				{
					$tmp = explode(" ", $value);
					foreach($tmp as $code)
					{
						$this->search[] = " ".$code;
						$this->search[] = "\n".$code;
						//TODO CSS class?
						$this->replace[] = " <img src='".$fileloc."' alt='' style='vertical-align:middle; border:0' /> ";
						$this->replace[] = "\n <img src='".$fileloc."' alt='' style='vertical-align:middle; border:0' /> ";
					}
					unset($tmp);
				}
				else
				{
					if($value)
					{
						$this->search[] = " ".$value;
						$this->search[] = "\n".$value;
						//TODO CSS class?
						$this->replace[] = " <img src='".$fileloc."' alt='' style='vertical-align:middle; border:0' /> ";
						$this->replace[] = "\n <img src='".$fileloc."' alt='' style='vertical-align:middle; border:0' /> ";
					}
				}
			  }
		  }
		  else
		  {
			unset($this->emotes[$key]);
		  }
		}
	}
	 
	function filterEmotes($text)
	{	 
		$text = str_replace($this->search, $this->replace, $text);
		return $text;
	}
	 
	function filterEmotesRev($text)
	{
		$text = str_replace($this->replace, $this->search, $text);
		return $text;
	}
}


class e_profanityFilter 
{
	var $profanityList;

	function e_profanityFilter() 
	{
		global $pref;

		$words = explode(",", $pref['profanity_words']);
        $word_array = array();
		foreach($words as $word) 
		{
			$word = trim($word);
			if($word != "")
			{
				$word_array[] = $word;
				if (strpos($word, '&#036;') !== FALSE)
				{
					$word_array[] = str_replace('&#036;', '\$', $word);		// Special case - '$' may be 'in clear' or as entity
				}
			}
		}
		if(count($word_array))
		{
			$this->profanityList = str_replace('#','\#',implode("\b|\b", $word_array));		// We can get entities in the string - confuse the regex delimiters
		}
		unset($words);
		return TRUE;
	}

	function filterProfanities($text) 
	{
		global $pref;
		if (!$this->profanityList) 
		{
			return $text;
		}
		if ($pref['profanity_replace']) 
		{
			return preg_replace("#\b".$this->profanityList."\b#is", $pref['profanity_replace'], $text);
		} 
		else 
		{
			return preg_replace_callback("#\b".$this->profanityList."\b#is", array($this, 'replaceProfanities'), $text);
		}
	}

	function replaceProfanities($matches) 
	{
		/*!
		@function replaceProfanities callback
		@abstract replaces vowels in profanity words with stars
		@param text string - text string to be filtered
		@result filtered text
		*/

		return preg_replace("#a|e|i|o|u#i", "*" , $matches[0]);
	}
}
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+								<?php
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+								/*
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+								* e107 website system
 								*
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+								* Copyright (C) 2008-2011 e107 Inc (e107.org)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+								* Released under the terms and conditions of the
 								* GNU General Public License (http://www.gnu.org/licenses/gpl.txt)
 								*
 								* Text processing and parsing functions
 								*
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+								* $URL$
 								* $Id$
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+								*
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+								*/
-												e_parse: phpDoc header added, e_vars class modifications (improvements and fixes) and phpDoc


											
										
										
											2010-01-24 12:05:53 +00:00
 								/**
 								 * @package e107
-												Doc - Update subpackage to be consistent

											
										
										
											2010-11-15 21:45:02 +00:00
+								 * @subpackage e107_handlers
-												svn keywords added (v0.8)

											
										
										
											2010-02-10 18:18:01 +00:00
+								 * @version $Id$
-												Simple parse via parseTemplate added, small improvements

											
										
										
											2010-02-19 15:10:40 +00:00
+								 *
 								 * Text processing and parsing functions.
-												e_parse: phpDoc header added, e_vars class modifications (improvements and fixes) and phpDoc


											
										
										
											2010-01-24 12:05:53 +00:00
+								 * Simple parse data model.
 								 */
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+								if (!defined('e107_INIT')) { exit(); }
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+								// Directory for the hard-coded utf-8 handling routines
 								define('E_UTF8_PACK', e_HANDLER.'utf8/');
 								define("E_NL", chr(2));
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								class e_parse extends e_parser
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+								{
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									/**
 									 * Determine how to handle utf-8.
 									 *    0 = 'do nothing'
 									 *    1 = 'use mb_string'
 									 *    2 = emulation
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @var integer
 									 */
 									protected $utfAction;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+									// Shortcode processor - see __get()
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									//var $e_sc;
 									// BBCode processor
 									var $e_bb;
 									// Profanity filter
 									var $e_pf;
 									// Emote filter
 									var $e_emote;
 									// 'Hooked' parsers (array)
 									var $e_hook;
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+									var $search = array('&amp;#039;', '&#039;', '&#39;', '&quot;', 'onerror', '&gt;', '&amp;quot;', ' & ');
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+									var $replace = array("'", "'", "'", '"', 'one<i></i>rror', '>', '"', ' &amp; ');
-												remove incompatible hook= code; replace w/ new support for "SuperModifiers" as designed
 by team


											
										
										
											2007-01-20 16:19:43 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									// Set to TRUE or FALSE once it has been calculated
 									var $e_highlighting;
 									// Highlight query
 									var $e_query;
-												New {SETIMAGE} shortcode for theme developers. Using this prior to a media-manager image being called will allow one to set the default size for the image (ie. when not specified otherwise). eg. {SETIMAGE|w=293} will set the width of the images to 293px.

											
										
										
											2013-03-08 20:16:49 -08:00
 									public $thumbWidth = 100;
-												{SETIMAGE} can now set Height and also crop the image. eg. {SETIMAGE: w=300&h=200&crop=1}

											
										
										
											2013-03-24 03:03:31 -07:00
 									public $thumbHeight = 0;
-												Fix for google-plus icon on Social plugin. {EXTENDED} may now have a class added. Debug info added when Featurebox returns nothing.

											
										
										
											2014-01-29 11:10:05 -08:00
 									public $thumbCrop = 0;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
 									// Set up the defaults
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									var $e_optDefault = array(
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// default context: reflects legacy settings (many items enabled)
 										'context' 		=> 'OLDDEFAULT',
 										//
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										'fromadmin' 	=> FALSE,
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
 										// Enable emote display
 										'emotes'		=> TRUE,
 										// Convert defines(constants) within text.
 										'defs' 			=> FALSE,
 										// replace all {e_XXX} constants with their e107 value - 'rel' or 'abs'
 										'constants' 	=> FALSE,
 										// Enable hooked parsers
 										'hook'			=> TRUE,
 										// Allow scripts through (new for 0.8)
 										'scripts'		=> TRUE,
 										// Make links clickable
 										'link_click'	=> TRUE,
 										// Substitute on clickable links (only if link_click == TRUE)
 										'link_replace'	=> TRUE,
 										// Parse shortcodes - TRUE enables parsing
 										'parse_sc' 		=> FALSE,
 										// remove HTML tags.
 										'no_tags' 		=> FALSE,
 										// Restore entity form of quotes and such to single characters - TRUE disables
 										'value'			=> FALSE,
 										// Line break compression - TRUE removes newline characters
 										'nobreak' 		=> FALSE,
 										// Retain newlines - wraps to \n instead of <br /> if TRUE (for non-HTML email text etc)
 										'retain_nl' 	=> FALSE
-												remove incompatible hook= code; replace w/ new support for "SuperModifiers" as designed
 by team


											
										
										
											2007-01-20 16:19:43 +00:00
+										);
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									// Super modifiers override default option values
-												remove incompatible hook= code; replace w/ new support for "SuperModifiers" as designed
 by team


											
										
										
											2007-01-20 16:19:43 +00:00
+									var	$e_SuperMods = array(
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												//text is part of a title (e.g. news title)
 												'TITLE' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE
 														),
-												More BC Fixes. Search, and News Category titles.

											
										
										
											2014-01-20 10:21:44 -08:00
+												'TITLE_PLAIN' =>
 													array(
 														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE, 'no_tags' => TRUE
 														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												//text is user-entered (i.e. untrusted) and part of a title (e.g. forum title)
 												'USER_TITLE' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'scripts' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE
 														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is 'body' of email or similar - being sent 'off-site' so don't rely on server availability
 												'E_TITLE' =>
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													array(
 														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'defs'=>TRUE, 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is part of the summary of a longer item (e.g. content summary)
 												'SUMMARY' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+														'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is the description of an item (e.g. download, link)
 												'DESCRIPTION' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+														'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is 'body' or 'bulk' text (e.g. custom page body, content body)
 												'BODY' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+														'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														),
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
+												'WYSIWYG' =>
 													array(
 														'defs'=>FALSE, 'constants'=>'full', 'parse_sc'=>FALSE, 'wysiwyg'=>TRUE
 														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is user-entered (i.e. untrusted)'body' or 'bulk' text (e.g. custom page body, content body)
 												'USER_BODY' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Issue #258 - Should help back-slashes issue

											
										
										
											2013-05-07 03:44:12 -07:00
+														'constants'=>'full', 'scripts' => FALSE, 'nostrip'=>FALSE
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is 'body' of email or similar - being sent 'off-site' so don't rely on server availability
 												'E_BODY' =>
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													array(
-												Next mailer update


											
										
										
											2009-11-16 20:40:39 +00:00
+														'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE
 														),
 												// text is text-only 'body' of email or similar - being sent 'off-site' so don't rely on server availability
 												'E_BODY_PLAIN' =>
 													array(
 														'defs'=>TRUE, 'constants'=>'full', 'parse_sc'=>TRUE, 'emotes'=>FALSE, 'scripts' => FALSE, 'link_click' => FALSE, 'retain_nl' => TRUE, 'no_tags' => TRUE
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is the 'content' of a link (A tag, etc)
 												'LINKTEXT' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE, 'defs'=>TRUE, 'parse_sc'=>TRUE
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// text is used (for admin edit) without fancy conversions or html.
 												'RAWTEXT' =>
-												Change display options in forum thread and chatbox


											
										
										
											2007-04-30 20:17:05 +00:00
+													array(
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														'nobreak'=>TRUE, 'retain_nl'=>TRUE, 'link_click' => FALSE, 'emotes'=>FALSE, 'hook'=>FALSE, 'no_tags'=>TRUE
-												remove incompatible hook= code; replace w/ new support for "SuperModifiers" as designed
 by team


											
										
										
											2007-01-20 16:19:43 +00:00
+														)
 										);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									// Individual modifiers change the current context
 									var $e_Modifiers = array(
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+												'emotes_off'	=> array('emotes' => FALSE),
 												'emotes_on'		=> array('emotes' => TRUE),
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+												'no_hook'		=> array('hook' => FALSE),
 												'do_hook'		=> array('hook' => TRUE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// New for 0.8
 												'scripts_off'	=> array('scripts' => FALSE),
 												// New for 0.8
 												'scripts_on'	=> array('scripts' => TRUE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												'no_make_clickable' => array('link_click' => FALSE),
 												'make_clickable' => array('link_click' => TRUE),
 												'no_replace' 	=> array('link_replace' => FALSE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Replace text of clickable links (only if make_clickable option set)
 												'replace' 		=> array('link_replace' => TRUE),
 												// No path replacement
 												'consts_off'	=> array('constants' => FALSE),
 												// Relative path replacement
 												'consts_rel'	=> array('constants' => 'rel'),
 												// Absolute path replacement
 												'consts_abs'	=> array('constants' => 'abs'),
-												Mailer next update - inline files should work


											
										
										
											2009-11-17 20:34:50 +00:00
+												// Full path replacement
 												'consts_full'	=> array('constants' => 'full'),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// No shortcode parsing
 												'scparse_off'	=> array('parse_sc'	=> FALSE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												'scparse_on'	=> array('parse_sc'	=> TRUE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Strip tags
 												'no_tags' 		=> array('no_tags' 	=> TRUE),
 												// Leave tags
 												'do_tags' 		=> array('no_tags' 	=> FALSE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												'fromadmin'		=> array('fromadmin' => TRUE),
 												'notadmin'		=> array('fromadmin' => FALSE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// entity replacement
 												'er_off'		=> array('value' => FALSE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												'er_on'			=> array('value' => TRUE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Decode constant if exists
 												'defs_off'		=> array('defs' => FALSE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												'defs_on'		=> array('defs' => TRUE),
-												EONE-73 (bug): Sense of nobreak wrong

											
										
										
											2010-04-07 19:08:02 +00:00
+												'dobreak'		=> array('nobreak' => FALSE),
 												'nobreak'		=> array('nobreak' => TRUE),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Line break using \n
 												'lb_nl'			=> array('retain_nl' => TRUE),
 												// Line break using <br />
 												'lb_br'			=> array('retain_nl' => FALSE),
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
 												// Legacy option names below here - discontinue later
 												'retain_nl'		=> array('retain_nl' => TRUE),
 												'defs'			=> array('defs' => TRUE),
 												'parse_sc'		=> array('parse_sc'	=> TRUE),
 												'constants'		=> array('constants' => 'rel'),
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
+												'value'			=> array('value' => TRUE),
 												'wysiwyg'		=> array('wysiwyg'=>TRUE)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										);
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+									/**
 									 * Constructor - keep it public for backward compatibility
 									 still some new e_parse() in the core
 									 *
 									 * @return void
 									 */
 									public function __construct()
-												remove incompatible hook= code; replace w/ new support for "SuperModifiers" as designed
 by team


											
										
										
											2007-01-20 16:19:43 +00:00
+									{
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+										// initialise the type of UTF-8 processing methods depending on PHP version and mb string extension
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+										$this->init();
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+										$this->initCharset();
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Preprocess the supermods to be useful default arrays with all values
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+										foreach ($this->e_SuperMods as $key => $val)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											// precalculate super defaults
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+											$this->e_SuperMods[$key] = array_merge($this->e_optDefault , $this->e_SuperMods[$key]);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$this->e_SuperMods[$key]['context'] = $key;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										}
-												Initialise shortcode handler later than main parser - requires that $pref is valid, otherwise shortcodes from plugins not loaded. Needs review of best way to do it


											
										
										
											2007-12-30 16:54:31 +00:00
+									}
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+									/**
 									 * Initialise the type of UTF-8 processing methods depending on PHP version and mb string extension.
 									 *
 									 * NOTE: can't be called until CHARSET is known
 									 but we all know that it is UTF-8 now
 									 *
 									 * @return void
 									 */
 									private function initCharset()
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
 										// Start by working out what, if anything, we do about utf-8 handling.
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// 'Do nothing' is the simple option
 										$this->utfAction = 0;
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+								// CHARSET is utf-8
 								//		if(strtolower(CHARSET) == 'utf-8')
 								//		{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											if(version_compare(PHP_VERSION, '6.0.0') < 1)
 											{
 												// Need to do something here
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												if(extension_loaded('mbstring'))
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+												{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// Check for function overloading
 													$temp = ini_get('mbstring.func_overload');
 													// Just check the string functions - will be non-zero if overloaded
 													if(($temp & MB_OVERLOAD_STRING) == 0)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														// Can use the mb_string routines
 														$this->utfAction = 1;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// Set the default encoding, so we don't have to specify every time
 													mb_internal_encoding('UTF-8');
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												}
 												else
 												{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// Must use emulation - will probably be slow!
 													$this->utfAction = 2;
-												Fixes #882 - White screen caused by "PHP Fatal error: Cannot redeclare utf8_to_unicode() "

											
										
										
											2015-02-11 22:46:20 -08:00
+													require_once(E_UTF8_PACK.'utils/unicode.php');
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// Always load the core routines - bound to need some of them!
-												Fixes #882 - White screen caused by "PHP Fatal error: Cannot redeclare utf8_to_unicode() "

											
										
										
											2015-02-11 22:46:20 -08:00
+													require_once(E_UTF8_PACK.'native/core.php');
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+												}
 											}
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+								//		}
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									}
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/strlen strlen PHP function.
 									 * Returns the length of the given string.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $str The UTF-8 encoded string being measured for length.
 									 * @return integer The length (amount of UTF-8 characters) of the string on success, and 0 if the string is empty.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function ustrlen($str)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											case 0:
 												return strlen($str);
 											case 1:
 												return mb_strlen($str);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										}
 										// Default case shouldn't happen often
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// Save a call - invoke the function directly
 										return strlen(utf8_decode($str));
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									}
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/strtolower strtolower PHP function.
 									 * Make a string lowercase.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $str The UTF-8 encoded string to be lowercased.
 									 * @return string Specified string with all alphabetic characters converted to lowercase.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function ustrtolower($str)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											case 0:
 												return strtolower($str);
 											case 1:
 												return mb_strtolower($str);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										}
 										// Default case shouldn't happen often
 										return utf8_strtolower($str);
 									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/strtoupper strtoupper PHP function.
 									 * Make a string uppercase.
 									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $str The UTF-8 encoded string to be uppercased.
 									 * @return string Specified string with all alphabetic characters converted to uppercase.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function ustrtoupper($str)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											case 0:
 												return strtoupper($str);
 											case 1:
 												return mb_strtoupper($str);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										}
 										// Default case shouldn't happen often
 										return utf8_strtoupper($str);
 									}
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/strpos strpos PHP function.
 									 * Find the position of the first occurrence of a case-sensitive UTF-8 encoded string.
 									 * Returns the numeric position (offset in amount of UTF-8 characters)
 									 *  of the first occurrence of needle in the haystack string.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $haystack The UTF-8 encoded string being searched in.
 									 * @param integer $needle The UTF-8 encoded string being searched for.
 									 * @param integer $offset [optional] The optional offset parameter allows you to specify which character in haystack to start searching.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 * 				 The position returned is still relative to the beginning of haystack.
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @return integer|boolean Returns the position as an integer. If needle is not found, the function will return boolean FALSE.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function ustrpos($haystack, $needle, $offset = 0)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											case 0:
 												return strpos($haystack, $needle, $offset);
 											case 1:
 												return mb_strpos($haystack, $needle, $offset);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										}
-												Missing returns


											
										
										
											2009-10-30 23:38:14 +00:00
+										return utf8_strpos($haystack, $needle, $offset);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/strrpos strrpos PHP function.
 									 * Find the position of the last  occurrence of a case-sensitive UTF-8 encoded string.
 									 * Returns the numeric position (offset in amount of UTF-8 characters)
 									 *  of the last occurrence of needle in the haystack string.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $haystack The UTF-8 encoded string being searched in.
 									 * @param integer $needle The UTF-8 encoded string being searched for.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 * @param integer $offset [optional] - The optional offset parameter allows you to specify which character in haystack to start searching.
 									 * 				 The position returned is still relative to the beginning of haystack.
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @return integer|boolean Returns the position as an integer. If needle is not found, the function will return boolean FALSE.
-												add some PHPdoc to utf-8 functions


											
										
										
											2009-10-30 22:19:56 +00:00
+									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function ustrrpos($haystack, $needle, $offset = 0)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											case 0:
 												return strrpos($haystack, $needle, $offset);
 											case 1:
 												return mb_strrpos($haystack, $needle, $offset);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										}
-												Missing returns


											
										
										
											2009-10-30 23:38:14 +00:00
+										return utf8_strrpos($haystack, $needle, $offset);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									}
-												UTF-8 aware search rendering
Search view supports glyph (former bullet)
Some old paths corrected
											
										
										
											2013-10-24 04:15:25 +03:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/stristr stristr PHP function.
 									 * Returns all of haystack starting from and including the first occurrence of needle to the end.
 									 *
 									 * @param string $haystack The UTF-8 encoded string to search in.
 									 * @param mixed $needle If needle is not a string, it is converted to an integer and applied as the ordinal value of a character.
 									 * @param integer $length [optional] (PHP 5.3+) If TRUE, returns the part of the haystack before the first occurrence of the needle (excluding needle).
 									 * @return string Returns the matched substring. If needle is not found, returns FALSE.
 									 */
 									public function ustristr($haystack, $needle, $before_needle = false)
 									{
 										switch($this->utfAction)
 										{
 											case 0:
 												return stristr($haystack, $needle, $before_needle);
 											case 1:
 												return mb_substr($haystack, $needle, $before_needle);
 										}
 										// No utf8 pack backup
-												Broken stristr utf8 support

											
										
										
											2014-08-17 15:15:40 +03:00
+										return stristr($haystack, $needle, $before_needle);
-												UTF-8 aware search rendering
Search view supports glyph (former bullet)
Some old paths corrected
											
										
										
											2013-10-24 04:15:25 +03:00
+									}
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									/**
 									 * Unicode (UTF-8) analogue of standard @link http://php.net/substr substr PHP function.
 									 * Returns the portion of string specified by the start and length parameters.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * NOTE: May be subtle differences in return values dependent on which routine is used.
 									 *  Native substr() routine can return FALSE. mb_substr() and utf8_substr() just return an empty string.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $str The UTF-8 encoded string.
 									 * @param integer $start Start of portion to be returned. Position is counted in amount of UTF-8 characters from the beginning of str.
 									 * 				First character's position is 0. Second character position is 1, and so on.
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 * @param integer $length [optional] If length is given, the string returned will contain at most length characters beginning from start
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * 				(depending on the length of string). If length is omitted, the rest of string from start will be returned.
 									 * @return string The extracted UTF-8 encoded part of input string.
 									 */
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									public function usubstr($str, $start, $length = NULL)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									{
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+										switch($this->utfAction)
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+										{
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+											case 0:
 												return substr($str, $start, $length);
 											case 1:
 												if(is_null($length))
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+												{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+													return mb_substr($str, $start);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+												}
 												else
 												{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+													return mb_substr($str, $start, $length);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+												}
 										}
-												Missing returns


											
										
										
											2009-10-30 23:38:14 +00:00
+										return utf8_substr($str, $start, $length);
-												Start of utf-8 aware functions and handlers


											
										
										
											2008-11-13 20:41:20 +00:00
+									}
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									/**
 									 * Converts the supplied text (presumed to be from user input) to a format suitable for storing in a database table.
 									 *
 									 * @param string $data
 									 * @param boolean $nostrip [optional] Assumes all data is GPC ($_GET, $_POST, $_COOKIE) unless indicate otherwise by setting this var to TRUE.
 									 * 				If magic quotes is enabled on the server and you do not tell toDB() that the data is non GPC then slashes will be stripped when they should not be.
 									 * @param boolean $no_encode [optional] This parameter should nearly always be FALSE. It is used by the save_prefs() function to preserve HTML content within prefs even when
 									 * 				the save_prefs() function has been called by a non admin user / user without html posting permissions.
 									 * @param boolean $mod [optional] The 'no_html' and 'no_php' modifiers blanket prevent HTML and PHP posting regardless of posting permissions. (used in logging)
-												Bugtracker #5013 - stop prefs getting sanitised on save

											
										
										
											2010-09-06 21:35:04 +00:00
+									 *		The 'pReFs' value is for internal use only, when saving prefs, to prevent sanitisation of HTML.
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param boolean $original_author [optional]
 									 * @return string
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+									 * @todo complete the documentation of this essential method
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 */
 									public function toDB($data, $nostrip = FALSE, $no_encode = FALSE, $mod = FALSE, $original_author = FALSE)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												Fix for <?php inside [code][/code]

											
										
										
											2013-06-11 18:29:59 -07:00
-												notice removal (not sure if casued by obsolete preference - see the commment)

											
										
										
											2010-10-27 11:23:54 +00:00
+										$core_pref = e107::getConfig();
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+										if (is_array($data))
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+											foreach ($data as $key => $var)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											{
-												e_parser: post_toForm supports array input now, added key sanitize when array passed toDB, createConstants bug


											
										
										
											2009-10-20 14:47:05 +00:00
+												//Fix - sanitize keys as well
 												$ret[$this->toDB($key, $nostrip, $no_encode, $mod, $original_author)] = $this->toDB($var, $nostrip, $no_encode, $mod, $original_author);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											}
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+											return $ret;
 										}
-												Debug info cleanup

											
										
										
											2015-03-29 20:26:35 -07:00
-												Fix for <?php inside [code][/code]

											
										
										
											2013-06-11 18:29:59 -07:00
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										if (MAGIC_QUOTES_GPC == TRUE && $nostrip == FALSE)
 										{
 											$data = stripslashes($data);
 										}
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+										if ($mod != 'pReFs') //XXX We're not saving prefs.
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										{
-												More [code] parsing work.

											
										
										
											2013-06-15 03:58:47 -07:00
+											$data = $this->preFilter($data); // used by bb_xxx.php toDB() functions. bb_code.php toDB() allows us to properly bypass HTML cleaning below.
-												Debug info cleanup

											
										
										
											2015-03-29 20:26:35 -07:00
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+											if (strip_tags($data) != $data) // html tags present.
 											{
-												Fix for <?php inside [code][/code]

											
										
										
											2013-06-11 18:29:59 -07:00
+											//	return $data;
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+												$data = $this->cleanHtml($data); // sanitize all html.
-												Fix for <?php inside [code][/code]

											
										
										
											2013-06-11 18:29:59 -07:00
-												cleanHtml() was urlencoding {e_XXXX} paths in html.

											
										
										
											2013-05-01 03:13:29 -07:00
+												$data = urldecode($data); // symptom of cleaning the HTML - urlencodes src attributes containing { and } .eg. {e_BASE}
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+											}
-												Fix for <?php inside [code][/code]

											
										
										
											2013-06-11 18:29:59 -07:00
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+											if (!check_class($core_pref->get('post_html', e_UC_MAINADMIN)))
-												Bugtracker #5013 - stop prefs getting sanitised on save

											
										
										
											2010-09-06 21:35:04 +00:00
+											{
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+												$data = strip_tags($data); // remove tags from cleaned html.
 												$data = str_replace(array('[html]','[/html]'),'',$data);
 											//	$data = $this->dataFilter($data);
-												Bugtracker #5013 - stop prefs getting sanitised on save

											
										
										
											2010-09-06 21:35:04 +00:00
+											}
-												More [code] parsing work.

											
										
										
											2013-06-15 03:58:47 -07:00
 											$data = html_entity_decode($data, ENT_QUOTES, 'utf-8');	// Prevent double-entities. Fix for [code]  - see bb_code.php toDB();
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										}
-												Fix for <?php inside [code][/code]

											
										
										
											2013-06-11 18:29:59 -07:00
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+										if (check_class($core_pref->get('post_html'))) /*$core_pref->is('post_html') && */
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										{
 											$no_encode = TRUE;
 										}
-												cleanHtml() was urlencoding {e_XXXX} paths in html.

											
										
										
											2013-05-01 03:13:29 -07:00
-												notice removal (not sure if casued by obsolete preference - see the commment)

											
										
										
											2010-10-27 11:23:54 +00:00
+										if (is_numeric($original_author) && !check_class($core_pref->get('post_html'), '', $original_author))
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										{
 											$no_encode = FALSE;
 										}
 										if ($no_encode === TRUE && strpos($mod, 'no_html') === FALSE)
 										{
 											$search = array('$', '"', "'", '\\', '<?');
 											$replace = array('&#036;', '&quot;', '&#039;', '&#092;', '&lt;?');
 											$ret = str_replace($search, $replace, $data);
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+										}
 										else
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+											$data = htmlspecialchars($data, ENT_QUOTES, 'UTF-8');
 											$data = str_replace('\\', '&#092;', $data);
 											$ret = preg_replace("/&amp;#(\d*?);/", "&#\\1;", $data);
 										}
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
 										// XXX - php_bbcode has been deprecated.
-												notice removal (not sure if casued by obsolete preference - see the commment)

											
										
										
											2010-10-27 11:23:54 +00:00
+										if ((strpos($mod, 'no_php') !== FALSE) || !check_class($core_pref->get('php_bbcode')))
-												e_parse small corrections, header keywords updated

											
										
										
											2010-02-12 16:37:42 +00:00
+										{
-												Bugtracker #5013 - stop prefs getting sanitised on save

											
										
										
											2010-09-06 21:35:04 +00:00
+											$ret = preg_replace("#\[(php)#i", "&#91;\\1", $ret);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
-												Simple parse via parseTemplate added, small improvements

											
										
										
											2010-02-19 15:10:40 +00:00
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										return $ret;
 									}
-												Parser stability, security updates and clean up


											
										
										
											2007-01-12 21:05:20 +00:00
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+									/**
-												Keep HTML abuse filter in line with 1.x.
Remove isutf8 flag - no longer relevant.

											
										
										
											2013-01-05 09:42:34 +00:00
+									 *	Check for umatched 'dangerous' HTML tags
 									 *		(these can destroy page layout where users are able to post HTML)
-												Issue #258 - Should help back-slashes issue

											
										
										
											2013-05-07 03:44:12 -07:00
+									 * @DEPRECATED
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+									 *	@param string $data
 									 *	@param string $tagList - if empty, uses default list of input tags. Otherwise a CSV list of tags to check (any type)
 									 *
 									 *	@return boolean TRUE if an unopened closing tag found
 									 *					FALSE if nothing found
 									 */
 									function htmlAbuseFilter($data, $tagList = '')
 									{
-												Emoticon BBcode Fix

											
										
										
											2013-04-22 20:46:06 -07:00
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+										if ($tagList == '')
 										{
 											$checkTags = array('textarea', 'input', 'td', 'tr', 'table');
 										}
 										else
 										{
 											$checkTags = explode(',', $tagList);
 										}
-												Keep HTML abuse filter in line with 1.x.
Remove isutf8 flag - no longer relevant.

											
										
										
											2013-01-05 09:42:34 +00:00
+										$tagArray = array_flip($checkTags);
 										foreach ($tagArray as &$v) { $v = 0; };		// Data fields become zero; keys are tag names.
 										$data = strtolower(preg_replace('#\[code\].*?\[\/code\]#i', '', $data));            // Ignore code blocks. All lower case simplifies the rest
 										$matches = array();
 										if (!preg_match_all('#<(\/|)([^<>]*?[^\/])>#', $data, $matches, PREG_SET_ORDER))
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+										{
-												Keep HTML abuse filter in line with 1.x.
Remove isutf8 flag - no longer relevant.

											
										
										
											2013-01-05 09:42:34 +00:00
+											//echo "No tags found<br />";
 											return TRUE;				// No tags found; so all OK
 										}
 										//print_a($matches);
 										foreach ($matches as $m)
 										{
 											// $m[0] is the complete tag; $m[1] is '/' or empty; $m[2] is the tag and any attributes
 											list ($tag) = explode(' ', $m[2], 2);
 											if (!isset($tagArray[$tag])) continue;			// Not a tag of interest
 											if ($m[1] == '/')
 											{	// Closing tag
 												if ($tagArray[$tag] == 0)
 												{
 													//echo "Close before open: {$tag}<br />";
 													return TRUE;		// Closing tag before we've had an opening tag
 												}
 												$tagArray[$tag]--;		// Obviously had at least one opening tag
 											}
 											else
 											{	// Opening tag
 												$tagArray[$tag]++;
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+											}
 										}
-												Keep HTML abuse filter in line with 1.x.
Remove isutf8 flag - no longer relevant.

											
										
										
											2013-01-05 09:42:34 +00:00
+										//print_a($tagArray);
 										foreach ($tagArray as $t)
 										{
 											if ($t > 0) return TRUE;		// More opening tags than closing tags
 										}
 										return FALSE;						// OK now
-												Add HTML abuse blocker

											
										
										
											2010-12-18 22:55:27 +00:00
+									}
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
 									/**
-												Issue #258 - Should help back-slashes issue

											
										
										
											2013-05-07 03:44:12 -07:00
+									 * @DEPRECATED XXX TODO Remove this horrible thing which adds junk to a db.
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+									 *	Checks a string for potentially dangerous HTML tags, including malformed tags
 									 *
 									 */
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+									public function dataFilter($data, $mode='bbcode')
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+									{
-												Emoticon BBcode Fix

											
										
										
											2013-04-22 20:46:06 -07:00
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										$ans = '';
-												User filter fixes

											
										
										
											2011-11-29 23:37:44 +00:00
+										$vetWords = array('<applet', '<body', '<embed', '<frame', '<script','%3Cscript',
 														 '<frameset', '<html', '<iframe', '<style', '<layer', '<link',
 														 '<ilayer', '<meta', '<object', '<plaintext', 'javascript:',
 														 'vbscript:','data:text/html');
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										$ret = preg_split('#(\[code.*?\[/code.*?])#mis', $data, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
 										foreach ($ret as $s)
 										{
 											if (substr($s, 0, 5) != '[code')
 											{
 												$vl = array();
 												$t = html_entity_decode(rawurldecode($s), ENT_QUOTES, CHARSET);
 												$t = str_replace(array("\r", "\n", "\t", "\v", "\f", "\0"), '', $t);
 												$t1 = strtolower($t);
 												foreach ($vetWords as $vw)
 												{
 													if (strpos($t1, $vw) !== FALSE)
 													{
 														$vl[] = $vw;		// Add to list of words found
 													}
 													if (substr($vw, 0, 1) == '<')
 													{
 														$vw = '</'.substr($vw, 1);
 														if (strpos($t1, $vw) !== FALSE)
 														{
 															$vl[] = $vw;		// Add to list of words found
 														}
 													}
 												}
 												// More checks here
 												if (count($vl))
 												{	// Do something
 													$s = preg_replace_callback('#('.implode('|', $vl).')#mis', array($this, 'modtag'), $t);
 												}
 											}
-												Additional check


											
										
										
											2011-06-02 20:03:14 +00:00
+											$s = preg_replace('#(?:onmouse.+?|onclick|onfocus)\s*?\=#', '[sanitised]$0[/sanitised]', $s);
-												Additional checking

											
										
										
											2011-05-28 16:23:40 +00:00
+											$s = preg_replace_callback('#base64([,\(])(.+?)([\)\'\"])#mis', array($this, 'proc64'), $s);
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+											$ans .= $s;
 										}
-												User filter fixes

											
										
										
											2011-11-29 23:37:44 +00:00
 										if($mode == 'link' && count($vl))
 										{
 											return "#sanitized";
 										}
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										return $ans;
 									}
-												Additional checking

											
										
										
											2011-05-28 16:23:40 +00:00
+									/**
 									 * Check base-64 encoded code
 									 */
 									private function proc64($match)
 									{
 										$decode = base64_decode($match[2]);
 										return 'base64'.$match[1].base64_encode($this->dataFilter($decode)).$match[3];
 									}
-												Issue #258 - Should help back-slashes issue

											
										
										
											2013-05-07 03:44:12 -07:00
+									// XXX REmove ME.
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+									private function modTag($match)
 									{
 										$ans = '';
 										if (isset($match[1]))
 										{
 											$chop = intval(strlen($match[1]) / 2);
 											$ans = substr($match[1], 0, $chop).'##xss##'.substr($match[1], $chop);
 										}
 										else
 										{
 											$ans = '?????';
 										}
 										return '[sanitised]'.$ans.'[/sanitised]';
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+									}
 									/**
 									 *	Processes data as needed before its written to the DB.
 									 *	Currently gives bbcodes the opportunity to do something
 									 *
 									 *	@param $data string - data about to be written to DB
 									 *	@return string - modified data
 									 */
 									public function preFilter($data)
 									{
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+										if (!is_object($this->e_bb))
-												Add in security code, youtube bbcode from 0.7

											
										
										
											2010-09-06 12:34:06 +00:00
+										{
 											require_once(e_HANDLER.'bbcode_handler.php');
 											$this->e_bb = new e_bbcode;
 										}
 										$ret = $this->e_bb->parseBBCodes($data, USERID, 'default', 'PRE');			// $postID = logged in user here
 										return $ret;
 									}
-												Parser stability, security updates and clean up


											
										
										
											2007-01-12 21:05:20 +00:00
+									function toForm($text)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												Admin UI minor improvements; cleanup - warnings removal; various minor bugfixes

											
										
										
											2010-10-30 15:34:48 +00:00
+										if(empty($text)) // fix - handle proper 0, Space etc values.
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										{
-												Admin UI minor improvements; cleanup - warnings removal; various minor bugfixes

											
										
										
											2010-10-30 15:34:48 +00:00
+											return $text;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										}
-												Parser stability, security updates and clean up


											
										
										
											2007-01-12 21:05:20 +00:00
+										$search = array('&#036;', '&quot;', '<', '>');
 										$replace = array('$', '"', '&lt;', '&gt;');
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										$text = str_replace($search, $replace, $text);
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
+										if (e107::wysiwyg() !== true)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											// fix for utf-8 issue with html_entity_decode(); ???
 											$text = str_replace("&nbsp;", " ", $text);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
 										return $text;
 									}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+									function post_toForm($text)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												e_parser: post_toForm supports array input now, added key sanitize when array passed toDB, createConstants bug


											
										
										
											2009-10-20 14:47:05 +00:00
+										if(is_array($text))
 										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											foreach ($text as $key=>$value)
-												e_parser: post_toForm supports array input now, added key sanitize when array passed toDB, createConstants bug


											
										
										
											2009-10-20 14:47:05 +00:00
+											{
 												$text[$this->post_toForm($key)] = $this->post_toForm($value);
 											}
 											return $text;
 										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										if(MAGIC_QUOTES_GPC == TRUE)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											$text = stripslashes($text);
 										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										return str_replace(array("'", '"', "<", ">"), array("&#039;", "&quot;", "&lt;", "&gt;"), $text);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									function post_toHTML($text, $original_author = FALSE, $extra = '', $mod = FALSE)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$text = $this->toDB($text, FALSE, FALSE, $mod, $original_author);
 										return $this->toHTML($text, TRUE, $extra);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
+									/**
-												Code cleanup

											
										
										
											2015-02-15 02:37:36 -08:00
+									 * @param $text - template to parse.
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
+									 * @param boolean $parseSCFiles - parse core 'single' shortcodes
-												Code cleanup

											
										
										
											2015-02-15 02:37:36 -08:00
+									 * @param array $extraCodes - support legacy shortcode content (eg. content within .sc) as well as simpleParse array format.
 									 * @param object $eVars - XXX more info needed.
 									 * @return string
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
+									 */
-												Shortcode parser: variable/methods name fix, news event trigger mentioned by the recent commit

											
										
										
											2010-04-25 15:04:53 +00:00
+									function parseTemplate($text, $parseSCFiles = TRUE, $extraCodes = null, $eVars = null)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
+										if(!empty($extraCodes) && $this->isSimpleParse($extraCodes)) // support for a combined simple and standard template parse. - (eg. used by signup email template.)
 										{
 											$text = $this->simpleParse($text, $extraCodes, false);
 										}
-												Fixes problem where {e_PLUGIN}, {THEME} etc. are replaced with empty values when using parseTemplate(). Now retains theme for use by replaceConstants() etc.

											
										
										
											2014-08-18 22:57:18 -07:00
-												Shortcode parser: variable/methods name fix, news event trigger mentioned by the recent commit

											
										
										
											2010-04-25 15:04:53 +00:00
+										return e107::getScParser()->parseCodes($text, $parseSCFiles, $extraCodes, $eVars);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												More email templates cleanup. /signup.php?preview working again.

											
										
										
											2014-08-17 20:53:44 -07:00
 									/**
 									 * Check if we are using the simple-Parse array format, or a legacy .sc format which contains 'return '
 									 * @param array $extraCodes
 									 */
 									private function isSimpleParse($extraCodes)
 									{
 										if(!is_array($extraCodes))
 										{
 											return false;
 										}
 										foreach ($extraCodes as $sc => $code)
 										{
 											if(!strpos($code, 'return '))
 											{
 												return true;
 											}
 											else
 											{
 												return false;
 											}
 										}
 									}
-												simple parser details

											
										
										
											2010-02-27 18:59:57 +00:00
+									/**
 									 * Simple parser
 									 *
 									 * @param string $template
-												Simple parser supports arrays in a proper way

											
										
										
											2014-07-09 16:32:17 +03:00
+									 * @param e_vars|array $vars
-												simple parser details

											
										
										
											2010-02-27 18:59:57 +00:00
+									 * @param string $replaceUnset string to be used if replace variable is not set, false - don't replace
 									 * @return string parsed content
 									 */
-												Simple parser supports arrays in a proper way

											
										
										
											2014-07-09 16:32:17 +03:00
+									function simpleParse($template, $vars, $replaceUnset='')
-												Added the new simpleParse method from 0.7, changed it up a bit for 0.8 though.


											
										
										
											2010-01-23 03:25:31 +00:00
+									{
 										$this->replaceVars = $vars;
 										$this->replaceUnset = $replaceUnset;
 										return preg_replace_callback("#\{([a-zA-Z0-9_]+)\}#", array($this, 'simpleReplace'), $template);
 									}
-												Simple parse via parseTemplate added, small improvements

											
										
										
											2010-02-19 15:10:40 +00:00
-												SimplerParse() fix. Db-verify fix for MPREFIX inclusion in xxxx_sql.php files.

											
										
										
											2012-12-02 17:30:41 -08:00
+									protected function simpleReplace($tmp)
 									{
-												e_parse - simple Parse default replace string option added; e_vars - empty check added


											
										
										
											2010-02-03 11:06:31 +00:00
+										$unset = ($this->replaceUnset !== false ? $this->replaceUnset : $tmp[0]);
-												SimplerParse() fix. Db-verify fix for MPREFIX inclusion in xxxx_sql.php files.

											
										
										
											2012-12-02 17:30:41 -08:00
+										$key = $tmp[1];
-												SimpleParse Fix

											
										
										
											2012-12-02 19:10:07 -08:00
+										if(is_array($this->replaceVars))
 										{
-												Simple parser supports arrays in a proper way

											
										
										
											2014-07-09 16:32:17 +03:00
+								            $this->replaceVars = new e_vars($this->replaceVars);
 											//return ($this->replaceVars[$key] !== null ? $this->replaceVars[$key]: $unset);
 										}
-												SimpleParse Fix

											
										
										
											2012-12-02 19:10:07 -08:00
+									//
 										return ($this->replaceVars->$tmp[1] !== null ? $this->replaceVars->$tmp[1] : $unset); // Doesn't work.
-												Added the new simpleParse method from 0.7, changed it up a bit for 0.8 though.


											
										
										
											2010-01-23 03:25:31 +00:00
+									}
-												Simple parse via parseTemplate added, small improvements

											
										
										
											2010-02-19 15:10:40 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									function htmlwrap($str, $width, $break = "\n", $nobreak = "a", $nobr = "pre", $utf = FALSE)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
 										/*
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+										Pretty well complete rewrite to try and handle utf-8 properly.
-												Bugtracker #4492 - eliminate word wrap lockup on badly formed utf-8


											
										
										
											2008-09-04 19:50:18 +00:00
+										Breaks each utf-8 'word' every $width characters max. If possible, breaks after 'safe' characters.
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+										$break is the character inserted to flag the break.
-												Bugtracker #4492 - eliminate word wrap lockup on badly formed utf-8


											
										
										
											2008-09-04 19:50:18 +00:00
+										$nobreak is a list of tags within which word wrap is to be inactive
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										*/
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+										//TODO handle htmlwrap somehow
-												re-enable e_parse html wrap method, UI wrap option for text fields added

											
										
										
											2010-11-15 09:03:54 +00:00
+										//return $str;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+										// Don't wrap if non-numeric width
 										$width = intval($width);
 										// And trap stupid wrap counts
 										if ($width < 6)
 											return $str;
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Transform protected element lists into arrays
 										$nobreak = explode(" ", strtolower($nobreak));
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Variable setup
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$intag = FALSE;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										$innbk = array();
 										$drain = "";
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// List of characters it is "safe" to insert line-breaks at
 										// It is not necessary to add < and > as they are automatically implied
 										$lbrks = "/?!%)-}]\\\"':;&";
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Is $str a UTF8 string?
 										if ($utf || strtolower(CHARSET) == 'utf-8')
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+										{
 											// 0x1680, 0x180e, 0x2000-0x200a, 0x2028, 0x205f, 0x3000 are 'non-ASCII' Unicode UCS-4 codepoints - see http://www.unicode.org/Public/UNIDATA/UnicodeData.txt
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											// All convert to 3-byte utf-8 sequences:
 											// 0x1680	0xe1	0x9a	0x80
 											// 0x180e	0xe1	0xa0	0x8e
 											// 0x2000	0xe2	0x80	0x80
 											//   -
 											// 0x200a	0xe2	0x80	0x8a
 											// 0x2028	0xe2	0x80	0xa8
 											// 0x205f	0xe2	0x81	0x9f
 											// 0x3000	0xe3	0x80	0x80
 											$utf8 = 'u';
 											$whiteSpace = '#([\x20|\x0c]|[\xe1][\x9a][\x80]|[\xe1][\xa0][\x8e]|[\xe2][\x80][\x80-\x8a,\xa8]|[\xe2][\x81][\x9f]|[\xe3][\x80][\x80]+)#';
 											// Have to explicitly enumerate the whitespace chars, and use non-utf-8 mode, otherwise regex fails on badly formed utf-8
 										}
 										else
 										{
 											$utf8 = '';
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+											// For non-utf-8, can use a simple match string
 											$whiteSpace = '#(\s+)#';
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Start of the serious stuff - split into HTML tags and text between
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+										$content = preg_split('#(<.*?'.'>)#mis', $str, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										foreach($content as $value)
 										{
 											if ($value[0] == "<")
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+											{
 												// We are within an HTML tag
 												// Create a lowercase copy of this tag's contents
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+												$lvalue = strtolower(substr($value, 1, -1));
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+												if ($lvalue)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												{
 													// Tag of non-zero length
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+													// If the first character is not a / then this is an opening tag
 													if ($lvalue[0] != "/")
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+													{
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+														// Collect the tag name
 														preg_match("/^(\w*?)(\s|$)/", $lvalue, $t);
 														// If this is a protected element, activate the associated protection flag
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														if(in_array($t[1], $nobreak))
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+															array_unshift($innbk, $t[1]);
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+													}
 													else
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													{
 														// Otherwise this is a closing tag
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+														// If this is a closing tag for a protected element, unset the flag
 														if (in_array(substr($lvalue, 1), $nobreak))
 														{
 															reset($innbk);
 															while (list($key, $tag) = each($innbk))
 															{
 																if (substr($lvalue, 1) == $tag)
 																{
 																	unset($innbk[$key]);
 																	break;
 																}
 															}
 															$innbk = array_values($innbk);
 														}
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+													}
 												}
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+												else
 												{
 													// Eliminate any empty tags altogether
 													$value = '';
 												}
 												// Else if we're outside any tags, and with non-zero length string...
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											}
 											elseif ($value)
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+											{
 												// If unprotected...
 												if (!count($innbk))
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+												{
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+													// Use the ACK (006) ASCII symbol to replace all HTML entities temporarily
 													$value = str_replace("\x06", "", $value);
 													preg_match_all("/&([a-z\d]{2,7}|#\d{2,5});/i", $value, $ents);
 													$value = preg_replace("/&([a-z\d]{2,7}|#\d{2,5});/i", "\x06", $value);
 													//			echo "Found block length ".strlen($value).': '.substr($value,20).'<br />';
 													// Split at spaces - note that this will fail if presented with invalid utf-8 when doing the regex whitespace search
 													//			$split = preg_split('#(\s)#'.$utf8, $value, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
 													$split = preg_split($whiteSpace, $value, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
 													$value = '';
 													foreach ($split as $sp)
 													{
 														//			echo "Split length ".strlen($sp).': '.substr($sp,20).'<br />';
 														$loopCount = 0;
 														while (strlen($sp) > $width)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														{
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+															// Enough characters that we may need to do something.
 															$pulled = '';
 															if ($utf8)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															{
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																// Pull out a piece of the maximum permissible length
 																if (preg_match('#^((?:[\x00-\x7F]|[\xC0-\xFF][\x80-\xBF]+){0,'.$width.'})(.{0,1}).*#s',$sp,$matches) == 0)
 																{
 																	// Make any problems obvious for now
 																	$value .= '[!<b>invalid utf-8: '.$sp.'<b>!]';
 																	$sp = '';
 																}
 																elseif (empty($matches[2]))
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																{
 																	// utf-8 length is less than specified - treat as a special case
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																	$value .= $sp;
 																	$sp = '';
 																}
 																else
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																{
 																	// Need to find somewhere to break the string
 																	for($i = strlen($matches[1]) - 1; $i >= 0; $i--)
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																	{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																		if(strpos($lbrks, $matches[1][$i]) !== FALSE)
 																			break;
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																	}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																	if($i < 0)
 																	{
 																		// No 'special' break character found - break at the word boundary
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																		$pulled = $matches[1];
 																	}
 																	else
 																	{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																		$pulled = substr($sp, 0, $i + 1);
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																	}
 																}
 																$loopCount++;
 																if ($loopCount > 20)
 																{
 																	// Make any problems obvious for now
 																	$value .= '[!<b>loop count exceeded: '.$sp.'</b>!]';
 																	$sp = '';
 																}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 															else
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																for ($i = min($width, strlen($sp)); $i > 0; $i--)
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																{
 																	// No speed advantage to defining match character
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																	if (strpos($lbrks, $sp[$i-1]) !== FALSE)
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																		break;
 																}
 																if ($i == 0)
 																{
 																	// No 'special' break boundary character found - break at the word boundary
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																	$pulled = substr($sp, 0, $width);
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																}
 																else
 																{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																	$pulled = substr($sp, 0, $i);
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+															if ($pulled)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															{
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+																$value .= $pulled.$break;
 																// Shorten $sp by whatever we've processed (will work even for utf-8)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																$sp = substr($sp, strlen($pulled));
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 														}
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+														// Add in any residue
 														$value .= $sp;
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+													}
-												ctype_digit() replacement
work in progress


											
										
										
											2009-08-08 14:14:39 +00:00
+													// Put captured HTML entities back into the string
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+													foreach ($ents[0] as $ent)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														$value = preg_replace("/\x06/", $ent, $value, 1);
-												Bugtracker #4301 - rewrite htmlwrap() so it works - thanks marj for testing


											
										
										
											2008-02-25 22:15:24 +00:00
+												}
 											}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											// Send the modified segment down the drain
 											$drain .= $value;
 										}
 										// Return contents of the drain
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+										return $drain;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+									/**
 									 * CakePHP(tm) :  Rapid Development Framework (http://www.cakephp.org)
 									 * Copyright 2005-2008, Cake Software Foundation, Inc. (http://www.cakefoundation.org)
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									 *
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+									 * Truncate a HTML string
 									 *
 									 * Cuts a string to the length of $length and adds the value of $ending if the text is longer than length.
 									 *
 									 * @param string  $text String to truncate.
 									 * @param integer $length Length of returned string, including ellipsis.
 									 * @param string $ending It will be used as Ending and appended to the trimmed string.
 									 * @param boolean $exact If false, $text will not be cut mid-word
 									 * @return string Trimmed string.
 									 */
 									function html_truncate($text, $length = 100, $ending = '...', $exact = true)
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+									{
 										if($this->ustrlen(preg_replace('/<.*?>/', '', $text)) <= $length)
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+										{
 											return $text;
 										}
 										$totalLength = 0;
 										$openTags = array();
 										$truncate = '';
 										preg_match_all('/(<\/?([\w+]+)[^>]*>)?([^<>]*)/', $text, $tags, PREG_SET_ORDER);
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+										foreach($tags as $tag)
 										{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+											if(!$tag[2] || !preg_match('/img|br|input|hr|area|base|basefont|col|frame|isindex|link|meta|param/si', $tag[2]))
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+											{
 												if(preg_match('/<[\w]+[^>]*>/s', $tag[0]))
 												{
 													array_unshift($openTags, $tag[2]);
 												}
 												else if(preg_match('/<\/([\w]+)[^>]*>/s', $tag[0], $closeTag))
 												{
 													$pos = array_search($closeTag[1], $openTags);
 													if($pos !== false)
 													{
 														array_splice($openTags, $pos, 1);
 													}
 												}
 											}
 											$truncate .= $tag[1];
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+											$contentLength = $this->ustrlen(preg_replace('/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i', ' ', $tag[3]));
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+											if($contentLength + $totalLength > $length)
 											{
 												$left = $length - $totalLength;
 												$entitiesLength = 0;
 												if(preg_match_all('/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i', $tag[3], $entities, PREG_OFFSET_CAPTURE))
 												{
 													foreach($entities[0] as $entity)
 													{
 														if($entity[1] + 1 - $entitiesLength <= $left)
 														{
 															$left--;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+															$entitiesLength += $this->ustrlen($entity[0]);
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+														}
 														else
 														{
 															break;
 														}
 													}
 												}
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
 												$truncate .= $this->usubstr($tag[3], 0, $left + $entitiesLength);
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+												break;
 											}
 											else
 											{
 												$truncate .= $tag[3];
 												$totalLength += $contentLength;
 											}
 											if($totalLength >= $length)
 											{
 												break;
 											}
 										}
 										if(!$exact)
 										{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+											$spacepos = $this->ustrrpos($truncate, ' ');
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+											if(isset($spacepos))
 											{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+												$bits = $this->usubstr($truncate, $spacepos);
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+												preg_match_all('/<\/([a-z]+)>/i', $bits, $droppedTags, PREG_SET_ORDER);
 												if(!empty($droppedTags))
 												{
 													foreach($droppedTags as $closingTag)
 													{
 														if(!in_array($closingTag[1], $openTags))
 														{
 															array_unshift($openTags, $closingTag[1]);
 														}
 													}
 												}
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+												$truncate = $this->usubstr($truncate, 0, $spacepos);
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+											}
 										}
 										$truncate .= $ending;
 										foreach($openTags as $tag)
 										{
 											$truncate .= '</' . $tag . '>';
 										}
 										return $truncate;
 									}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												html_truncate doc
make [more] more multilanguage


											
										
										
											2009-10-30 21:32:18 +00:00
+									/**
 									 * Truncate a HTML string to a maximum length $len  append the string $more if it was truncated
 									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $text String to process
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+									 * @param integer $len [optional] Length of characters to be truncated - default 200
 									 * @param string $more [optional] String which will be added if truncation - default ' ... '
-												html_truncate doc
make [more] more multilanguage


											
										
										
											2009-10-30 21:32:18 +00:00
+									 * @return string
 									 */
-												new faster, smarter, utf-8 aware html_truncate()


											
										
										
											2010-01-09 13:17:45 +00:00
+									public function html_truncate_old ($text, $len = 200, $more = ' ... ')
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
 										$pos = 0;
 										$curlen = 0;
 										$tmp_pos = 0;
-												Sitelinks for plugins using {e_XXX} weren't always decoded properly. Notice removal.


											
										
										
											2007-05-16 20:24:44 +00:00
+										$intag = FALSE;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										while($curlen < $len && $curlen < strlen($text))
 										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											switch($text {$pos} )
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												case "<":
 													if($text {$pos + 1} == "/")
 													{
 														$closing_tag = TRUE;
 													}
 													$intag = TRUE;
 													$tmp_pos = $pos - 1;
 													$pos++;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												break;
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												case ">":
 													if($text {$pos - 1} == "/")
 													{
 														$closing_tag = TRUE;
 													}
 													if($closing_tag == TRUE)
 													{
 														$tmp_pos = 0;
 														$closing_tag = FALSE;
 													}
 													$intag = FALSE;
 													$pos++;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												break;
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												case "&":
 													if($text {$pos + 1} == "#")
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+													{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														$end = strpos(substr($text, $pos, 7), ";");
 														if($end !== FALSE)
 														{
 															$pos += ($end + 1);
 															if(!$intag)
 															{
 																$curlen++;
 															}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+														break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+													}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													else
 													{
 														$pos++;
 														if(!$intag)
 														{
 															$curlen++;
 														}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+													break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												default:
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													$pos++;
 													if(!$intag)
 													{
 														$curlen++;
 													}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												break;
 											}
 										}
-												Bugtracker #4799 - html_truncate() sometimes left incomplete tag - thanks victorcastelan


											
										
										
											2009-09-03 19:29:11 +00:00
+										$ret = ($tmp_pos > 0 ? substr($text, 0, $tmp_pos+1) : substr($text, 0, $pos));
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										if($pos < strlen($text))
 										{
 											$ret = $ret.$more;
 										}
 										return $ret;
 									}
-												Bugtracker #3963 - proper utf-8 truncate - thanks verant


											
										
										
											2007-06-06 19:28:25 +00:00
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+									/**
-												html_truncate doc
make [more] more multilanguage


											
										
										
											2009-10-30 21:32:18 +00:00
+									 * Truncate a string of text to a maximum length $len  append the string $more if it was truncated
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+									 * Uses current CHARSET  for utf-8, returns $len characters rather than $len bytes
 									 *
 									 * @param string $text  string to process
 									 * @param integer $len  length of characters to be truncated
 									 * @param string $more  string which will be added if truncation
 									 * @return string
 									 */
-												make [more] more multilanguage


											
										
										
											2009-10-30 21:01:13 +00:00
+									public function text_truncate($text, $len = 200, $more = ' ... ')
-												Bugtracker #3963 - proper utf-8 truncate - thanks verant


											
										
										
											2007-06-06 19:28:25 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// Always valid
-												simple parse simplified

											
										
										
											2012-12-13 15:08:00 +02:00
+										if($this->ustrlen($text) <= $len)
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											return $text;
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										}
-												simple parse simplified

											
										
										
											2012-12-13 15:08:00 +02:00
-												Site links data retrieving/rendering draft (work in progress);
Text truncate typo

											
										
										
											2012-12-14 12:19:13 +02:00
+										$ret = $this->usubstr($text, 0, $len);
-												simple parse simplified

											
										
										
											2012-12-13 15:08:00 +02:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// search for possible broken html entities
 										// - if an & is in the last 8 chars, removing it and whatever follows shouldn't hurt
 										// it should work for any characters encoding
-												simple parse simplified

											
										
										
											2012-12-13 15:08:00 +02:00
 										// FIXME - INVESTIGATE this one, switch to utf8 aware methods
-												Applying missing commits

											
										
										
											2013-10-16 18:13:21 +03:00
+										$leftAmp = $this->ustrrpos($this->usubstr($ret, -8), '&');
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										if($leftAmp)
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												Applying missing commits

											
										
										
											2013-10-16 18:13:21 +03:00
+											$ret = $this->usubstr($ret, 0, $this->ustrlen($ret) - 8 + $leftAmp);
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										return $ret.$more;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												Bugtracker #3963 - proper utf-8 truncate - thanks verant


											
										
										
											2007-06-06 19:28:25 +00:00
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+									function textclean ($text, $wrap = 100)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$text = str_replace("\n\n\n", "\n\n", $text);
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
+										$text = $this->htmlwrap($text, $wrap);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$text = str_replace(array('<br /> ', ' <br />', ' <br /> '), '<br />', $text);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										/* we can remove any linebreaks added by htmlwrap function as any \n's will be converted later anyway */
 										return $text;
 									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									// Test for text highlighting, and determine the text highlighting transformation
 									// Returns TRUE if highlighting is active for this page display
 									function checkHighlighting()
 									{
 										global $pref;
 										if (!defined('e_SELF'))
 										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											// Still in startup, so can't calculate highlighting
 											return FALSE;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										if(!isset($this->e_highlighting))
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										{
 											$this->e_highlighting = FALSE;
 											$shr = (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : "");
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											if($pref['search_highlight'] && (strpos(e_SELF, 'search.php') === FALSE) && ((strpos($shr, 'q=') !== FALSE) || (strpos($shr, 'p=') !== FALSE)))
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											{
 												$this->e_highlighting = TRUE;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												if(!isset($this->e_query))
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												{
 													$query = preg_match('#(q|p)=(.*?)(&|$)#', $shr, $matches);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													$this->e_query = str_replace(array('+', '*', '"', ' '), array('', '.*?', '', '\b|\b'), trim(urldecode($matches[2])));
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												}
 											}
 										}
 										return $this->e_highlighting;
 									}
-												Bugtracker #3592, #3835 - modify matching on clickable www links


											
										
										
											2007-03-11 20:52:47 +00:00
-												uninstall_options() now included in the _setup.php file. Allowing plugin developers to add their own 'uninstall' options.


											
										
										
											2009-10-30 09:13:37 +00:00
+									/**
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * Converts the text (presumably retrieved from the database) for HTML output.
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									 *
-												uninstall_options() now included in the _setup.php file. Allowing plugin developers to add their own 'uninstall' options.


											
										
										
											2009-10-30 09:13:37 +00:00
+									 * @param string $text
 									 * @param boolean $parseBB [optional]
 									 * @param string $modifiers [optional] TITLE|SUMMARY|DESCRIPTION|BODY|RAW|LINKTEXT etc.
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+									 *		Comma-separated list, no spaces allowed
 									 *		first modifier must be a CONTEXT modifier, in UPPER CASE.
 									 *		subsequent modifiers are lower case - see $this->e_Modifiers for possible values
-												uninstall_options() now included in the _setup.php file. Allowing plugin developers to add their own 'uninstall' options.


											
										
										
											2009-10-30 09:13:37 +00:00
+									 * @param mixed $postID [optional]
 									 * @param boolean $wrap [optional]
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 * @return string
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+									 * @todo complete the documentation of this essential method
-												uninstall_options() now included in the _setup.php file. Allowing plugin developers to add their own 'uninstall' options.


											
										
										
											2009-10-30 09:13:37 +00:00
+									 */
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+									public function toHTML($text, $parseBB = FALSE, $modifiers = '', $postID = '', $wrap = FALSE)
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										if($text == '')
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											return $text;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+										}
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
 										$pref = e107::getPref();
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+										global $fromadmin;
-												Committed wrong version of file earlier


											
										
										
											2007-12-30 23:31:18 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Set default modifiers to start
 										$opts = $this->e_optDefault;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Database Utilities administration ready;
Database Verification administration ready;
minor admin improvements


											
										
										
											2008-12-30 13:51:41 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Now process any modifiers that are specified
 										if ($modifiers)
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$aMods = explode(',', $modifiers);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
 											// If there's a supermodifier, it must be first, and in uppercase
 											$psm = trim($aMods[0]);
 											if (isset($this->e_SuperMods[$psm]))
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											{
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+												// Supermodifier found - override default values where necessary
 												$opts = array_merge($opts,$this->e_SuperMods[$psm]);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												$opts['context'] = $psm;
 												unset($aMods[0]);
 											}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											// Now find any regular modifiers; use them to modify the context
 											// (there should only be one or two out of the list of possibles)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											foreach ($aMods as $mod)
 											{
-												Bugtracker #4669 - apostrophe in Site Name


											
										
										
											2010-01-02 21:42:51 +00:00
+												// Slight concession to varying coding styles - stripping spaces is a waste of CPU cycles!
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												$mod = trim($mod);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												if (isset($this->e_Modifiers[$mod]))
 												{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// This is probably quicker than array_merge
 													// - especially as usually only one or two loops
 													foreach ($this->e_Modifiers[$mod] as $k => $v)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														// Update our context-specific options
 														$opts[$k] = $v;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													}
 												}
 											}
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
+										}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Turn off a few things if not enabled in options
-												Remove some references to deprecated functions/methods.

											
										
										
											2015-02-14 23:34:15 -08:00
+										if(!vartrue($pref['smiley_activate']))
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$opts['emotes'] = FALSE;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+										}
-												Remove some references to deprecated functions/methods.

											
										
										
											2015-02-14 23:34:15 -08:00
+										if(!vartrue($pref['make_clickable']))
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$opts['link_click'] = FALSE;
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										}
-												Remove some references to deprecated functions/methods.

											
										
										
											2015-02-14 23:34:15 -08:00
+										if(!vartrue($pref['link_replace']))
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$opts['link_replace'] = FALSE;
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+										}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
 										$fromadmin = $opts['fromadmin'];
 										// Convert defines(constants) within text. eg. Lan_XXXX - must be the entire text string (i.e. not embedded)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// The check for '::' is a workaround for a bug in the Zend Optimiser 3.3.0 and PHP 5.2.4 combination
 										// - causes crashes if '::' in site name
-												More BC Fixes. Search, and News Category titles.

											
										
										
											2014-01-20 10:21:44 -08:00
-												New language file types: English_global.php (for plugin.xml terms) and English_log.php (for admin-log terms). Auto-detected when present and loaded automatically when needed.

											
										
										
											2012-12-12 18:46:34 -08:00
+										if($opts['defs'] && (strlen($text) < 35) && ((strpos($text, '::') === FALSE) && defined(trim($text))))
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
+										{
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											return constant(trim($text));
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										if ($opts['no_tags'])
 										{
 											$text = strip_tags($text);
 										}
-												Issue #258 - Should help back-slashes issue

											
										
										
											2013-05-07 03:44:12 -07:00
 										if (MAGIC_QUOTES_GPC == TRUE) // precaution for badly saved data.
 										{
 											$text = stripslashes($text);
 										}
-												bugfix: contact page - cleaned user input


											
										
										
											2007-09-09 07:05:06 +00:00
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Make sure we have a valid count for word wrapping
 										if (!$wrap && $pref['main_wordwrap'])
 										{
 											$wrap = $pref['main_wordwrap'];
 										}
 								//		$text = " ".$text;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// Now get on with the parsing
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										$ret_parser = '';
 										$last_bbcode = '';
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// So we can change them on each loop
 										$saveOpts = $opts;
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										if ($parseBB == FALSE)
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										{
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											$content = array($text);
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										}
 										else
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
+										{
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											// Split each text block into bits which are either within one of the 'key' bbcodes, or outside them
 											// (Because we have to match end words, the 'extra' capturing subpattern gets added to output array. We strip it later)
-												table bbcodes

											
										
										
											2012-06-09 12:01:24 +00:00
+											$content = preg_split('#(\[(table|html|php|code|scode|hide).*?\[/(?:\\2)\])#mis', $text, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										// Use $full_text variable so its available to special bbcodes if required
 										foreach ($content as $full_text)
 										{
 											$proc_funcs = TRUE;
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+											$convertNL = TRUE;
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											// We may have 'captured' a bbcode word - strip it if so
 											if ($last_bbcode == $full_text)
 											{
 												$last_bbcode = '';
 												$proc_funcs = FALSE;
 												$full_text = '';
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+											}
 											else
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
+											{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Set the options for this pass
 												$opts = $saveOpts;
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Have to have a good test in case a 'non-key' bbcode starts the block
 												// - so pull out the bbcode parameters while we're there
-												table bbcodes

											
										
										
											2012-06-09 12:01:24 +00:00
+												if (($parseBB !== FALSE) && preg_match('#(^\[(table|html|php|code|scode|hide)(.*?)\])(.*?)(\[/\\2\]$)#is', $full_text, $matches ))
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												{
 													// It's one of the 'key' bbcodes
 													// Usually don't want 'normal' processing if its a 'special' bbcode
 													$proc_funcs = FALSE;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													// $matches[0] - complete block from opening bracket of opening tag to closing bracket of closing tag
 													// $matches[1] - complete opening tag (inclusive of brackets)
 													// $matches[2] - bbcode word
 													// $matches[3] - parameter, including '='
 													// $matches[4] - bit between the tags (i.e. text to process)
 													// $matches[5] - closing tag
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													// In case we decide to load a file
-												More [code] bbcode work.

											
										
										
											2013-06-15 02:18:15 -07:00
 													$bbPath 		= e_CORE.'bbcodes/';
 													$bbFile 		= strtolower(str_replace('_', '', $matches[2]));
 													$bbcode 		= '';
 													$className 		= '';
 													$full_text 		= '';
 													$code_text 		= $matches[4];
 													$parm 			= $matches[3] ? substr($matches[3],1) : '';
 													$last_bbcode 	= $matches[2];
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													switch ($matches[2])
 													{
 														case 'php' :
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															// Probably run the output through the normal processing functions - but put here so the PHP code can disable if desired
 															$proc_funcs = TRUE;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															// This is just the contents of the php.bb file pulled in - its short, so will be quicker
 											//				$search = array("&quot;", "&#039;", "&#036;", '<br />', E_NL, "-&gt;", "&lt;br /&gt;");
 											//				$replace = array('"', "'", "$", "\n", "\n", "->", "<br />");
 															// Shouldn't have any parameter on this bbcode
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															// Not sure whether checks are necessary now we've reorganised
 											//				if (!$matches[3]) $bbcode = str_replace($search, $replace, $matches[4]);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															// Because we're bypassing most of the initial parser processing, we should be able to just reverse the effects of toDB() and execute the code
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+															// [SecretR] - avoid php code injections, missing php.bb will completely disable user posted php blocks
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+															$bbcode = file_get_contents($bbPath.$bbFile.'.bb');
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+															if (!$matches[3])
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+															{
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+																$code_text = html_entity_decode($matches[4], ENT_QUOTES, 'UTF-8');
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+															}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															break;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Blogger Import added. TinyMce Image fixes. Custom-pages fixes. Moved Upload-js out of admin header and into media-manager page only. Parser fixes for [html] bbcode. XML parser fix for <content:encoded> rss tags.   

											
										
										
											2012-07-23 02:25:17 +00:00
+														case 'html' : // This overrides and deprecates html.bb
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															$proc_funcs = TRUE;
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+															$noBreak = TRUE;
 														//	$code_text = str_replace("\r\n", " ", $code_text);
-												Blogger Import added. TinyMce Image fixes. Custom-pages fixes. Moved Upload-js out of admin header and into media-manager page only. Parser fixes for [html] bbcode. XML parser fix for <content:encoded> rss tags.   

											
										
										
											2012-07-23 02:25:17 +00:00
+															$code_text = html_entity_decode($code_text, ENT_QUOTES, CHARSET);
 															$html_start = "<!-- bbcode-html-start -->"; // markers for html-to-bbcode replacement.
 															$html_end	= "<!-- bbcode-html-end -->";
 															$full_text = str_replace(array("[html]","[/html]"), "",$code_text); // quick fix.. security issue?
 															$full_text =$this->replaceConstants($full_text,'abs');
 															$full_text = $html_start.$full_text.$html_end;
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+															$full_text = $this->parseBBTags($full_text); // strip <bbcode> tags.
-												No line-breaks added when parsing HTML (between [html] bbcodes)

											
										
										
											2013-03-23 03:49:49 -07:00
+															$opts['nobreak'] = true;
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															break;
-												Quick fix for trailing line-breaks on block-level elements.

											
										
										
											2013-06-14 16:26:56 -07:00
 														case 'table' : // strip <br /> from inside of <table>
-												table bbcodes

											
										
										
											2012-06-09 12:01:24 +00:00
+															$convertNL = FALSE;
 														//	break;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														case 'hide' :
 															$proc_funcs = TRUE;
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														default :		// Most bbcodes will just execute their normal file
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+															// @todo should we cache these bbcodes? require_once should make class-related codes quite efficient
 															if (file_exists($bbPath.'bb_'.$bbFile.'.php'))
 															{	// Its a bbcode class file
 																require_once($bbPath.'bb_'.$bbFile.'.php');
-												More [code] bbcode work.

											
										
										
											2013-06-15 02:18:15 -07:00
+																$className = 'bb_'.$last_bbcode;
 																$this->bbList[$last_bbcode] = new $className();
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+															}
-												More [code] bbcode work.

											
										
										
											2013-06-15 02:18:15 -07:00
+															elseif(file_exists($bbPath.$bbFile.'.bb'))
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+															{
 																$bbcode = file_get_contents($bbPath.$bbFile.'.bb');
 															}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													}   // end - switch ($matches[2])
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+													if ($className)
 													{
 														$tempCode = new $className();
-												Blogger Import added. TinyMce Image fixes. Custom-pages fixes. Moved Upload-js out of admin header and into media-manager page only. Parser fixes for [html] bbcode. XML parser fix for <content:encoded> rss tags.   

											
										
										
											2012-07-23 02:25:17 +00:00
+														$full_text = $tempCode->bbPreDisplay($matches[4], $parm);
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+													}
 													elseif ($bbcode)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													{	// Execute the file
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+														$full_text = eval($bbcode);			// Require output of bbcode to be returned
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// added to remove possibility of nested bbcode exploits ...
 														//   (same as in bbcode_handler - is it right that it just operates on $bbcode_return and not on $bbcode_output? - QUERY XXX-02
-												Improve html abuse filter, support class bbcodes (non-nestable) in main parser loop

											
										
										
											2012-03-31 21:10:26 +00:00
+													}
 													if(strpos($full_text, '[') !== FALSE)
 													{
 														$exp_search = array('eval', 'expression');
 														$exp_replace = array('ev<b></b>al', 'expres<b></b>sion');
 														$bbcode_return = str_replace($exp_search, $exp_replace, $full_text);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													}
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+												}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											// Do the 'normal' processing - in principle, as previously - but think about the order.
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+											if ($proc_funcs && !empty($full_text)) // some more speed
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											{
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												// Split out and ignore any scripts and style blocks. With just two choices we can match the closing tag in the regex
 												$subcon = preg_split('#((?:<s)(?:cript[^>]+>.*?</script>|tyle[^>]+>.*?</style>))#mis', $full_text, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE );
 												foreach ($subcon as $sub_blk)
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+												{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													if(substr($sub_blk, 0, 7) == '<script')
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+													{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														if($opts['scripts'])
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															// Strip scripts unless permitted
 															$ret_parser .= $sub_blk;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
 													}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													elseif(substr($sub_blk, 0, 6) == '<style')
 													{
 														// Its a style block - just pass it through unaltered - except, do we need the line break stuff? - QUERY XXX-01
-												Debug info cleanup

											
										
										
											2015-03-29 20:26:35 -07:00
+														if(defined('DB_INF_SHOW'))
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+														{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															echo "Processing stylesheet: {$sub_blk}<br />";
-												add a few comments


											
										
										
											2009-11-12 21:41:34 +00:00
+														}
-												Debug info cleanup

											
										
										
											2015-03-29 20:26:35 -07:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														$ret_parser .= $sub_blk;
 													}
 													else
 													{
 														// Do 'normal' processing on a chunk
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// Could put tag stripping in here
-												table bbcodes

											
										
										
											2012-06-09 12:01:24 +00:00
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+								/*
-												Restore some of the line break handling - ensures tables display properly


											
										
										
											2009-01-23 21:18:37 +00:00
+														//	Line break compression - filter white space after HTML tags - among other things, ensures HTML tables display properly
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+														// Hopefully now achieved by other means
 														if ($convertNL && !$opts['nobreak'])
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														{
 															$sub_blk = preg_replace("#>\s*[\r]*\n[\r]*#", ">", $sub_blk);
 														}
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+								*/
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														//	Link substitution
 														// Convert URL's to clickable links, unless modifiers or prefs override
 														if ($opts['link_click'])
 														{
-												Admin-UI: fix for boolean inline editing style. Disabled link-image replacement while in the admin area.

											
										
										
											2014-11-15 13:30:55 -08:00
+															if ($opts['link_replace'] && ADMIN_AREA !== true)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															{
 																$_ext = ($pref['links_new_window'] ? " rel=\"external\"" : "");
-												Automated clickable links can now be glyphs. eg. enter the following replacement text: 'fa-external-link.glyph'

											
										
										
											2014-07-05 20:51:22 -07:00
+																$link_text = $pref['link_text'];
 																if(substr($link_text,-6) == '.glyph')
 																{
 																	$link_text = $this->toGlyph($link_text,'');
 																}
-												Bugtracker #5188 - allow brackets in URLs (they're valid characters)

											
										
										
											2011-05-29 10:05:33 +00:00
+								//								$sub_blk = preg_replace("#(^|[\s])([\w]+?://(?:[\w-%]+?)(?:\.[\w-%]+?)+.*?)(?=$|[\s()[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"\\2\" {$_ext}>".$pref['link_text']."</a>", $sub_blk);
 								//								$sub_blk = preg_replace("#(^|[\s])((?:www|ftp)(?:\.[\w-%]+?){2}.*?)(?=$|[\s()[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"http://\\2\" {$_ext}>".$pref['link_text']."</a>", $sub_blk);
-												Automated clickable links can now be glyphs. eg. enter the following replacement text: 'fa-external-link.glyph'

											
										
										
											2014-07-05 20:51:22 -07:00
+																$sub_blk = preg_replace("#(^|[\s])([\w]+?://(?:[\w-%]+?)(?:\.[\w-%]+?)+.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"\\2\" {$_ext}>".$link_text."</a>", $sub_blk);
 																$sub_blk = preg_replace("#(^|[\s])((?:www|ftp)(?:\.[\w-%]+?){2}.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"http://\\2\" {$_ext}>".$link_text."</a>", $sub_blk);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																$email_text = ($pref['email_text']) ? $this->replaceConstants($pref['email_text']) : LAN_EMAIL_SUBS;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																$sub_blk = preg_replace("#([\n ])([a-z0-9\-_.]+?)@([\w\-]+\.([\w\-\.]+\.)*[\w]+)#i", "\\1<a rel='external' href='javascript:window.location=\"mai\"+\"lto:\"+\"\\2\"+\"@\"+\"\\3\";self.close();' onmouseover='window.status=\"mai\"+\"lto:\"+\"\\2\"+\"@\"+\"\\3\"; return true;' onmouseout='window.status=\"\";return true;'>".$email_text."</a>", $sub_blk);
 															}
 															else
 															{
-												more work on charset and badchars


											
										
										
											2009-11-17 11:00:40 +00:00
+																$email_text = '$1$2©$3';
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Bugtracker #5188 - allow brackets in URLs (they're valid characters)

											
										
										
											2011-05-29 10:05:33 +00:00
+								//								$sub_blk = preg_replace("#(^|[\s])([\w]+?://(?:[\w-%]+?)(?:\.[\w-%]+?)+.*?)(?=$|[\s()[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"\\2\" rel=\"external\">\\2</a>", $sub_blk);
 								//								$sub_blk = preg_replace("#(^|[\s])((?:www|ftp)(?:\.[\w-%]+?){2}.*?)(?=$|[\s()[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"http://\\2\" rel=\"external\">\\2</a>", $sub_blk);
 																$sub_blk = preg_replace("#(^|[\s])([\w]+?://(?:[\w-%]+?)(?:\.[\w-%]+?)+.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"\\2\" rel=\"external\">\\2</a>", $sub_blk);
 																$sub_blk = preg_replace("#(^|[\s])((?:www|ftp)(?:\.[\w-%]+?){2}.*?)(?=$|[\s[\]<]|\.\s|\.$|,\s|,$)#is", "\\1<a href=\"http://\\2\" rel=\"external\">\\2</a>", $sub_blk);
-												Bugfix: Corrected a bug which occurred when "Make URLs Clickable" was active and "Replace clickable URLs" was inactive.. email addresses were still being replaced with the default "-email-" or the replace-text preference value.


											
										
										
											2009-03-08 18:48:12 +00:00
+																$sub_blk = preg_replace("#([\n ])([a-z0-9\-_.]+?)@([\w\-]+\.([\w\-\.]+\.)*[\w]+)#i", "\\1<a rel='external' href='javascript:window.location=\"mai\"+\"lto:\"+\"\\2\"+\"@\"+\"\\3\";self.close();' onmouseover='window.status=\"mai\"+\"lto:\"+\"\\2\"+\"@\"+\"\\3\"; return true;' onmouseout='window.status=\"\";return true;'>".$email_text."</a>", $sub_blk);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// Convert emoticons to graphical icons, if enabled
 														if ($opts['emotes'])
 														{
 															if (!is_object($this->e_emote))
 															{
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+															//	require_once(e_HANDLER.'emote_filter.php');
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																$this->e_emote = new e_emoteFilter;
 															}
 															$sub_blk = $this->e_emote->filterEmotes($sub_blk);
 														}
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// Reduce newlines in all forms to a single newline character (finds '\n', '\r\n', '\n\r')
 														if (!$opts['nobreak'])
 														{
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+															if ($convertNL && substr($sub_blk,0,6) != '[html]') //XXX Quick Fix, find a cleaner way.
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																// We may need to convert to <br /> later
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																$sub_blk = preg_replace("#[\r]*\n[\r]*#", E_NL, $sub_blk);
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															}
 															else
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																// Not doing any more - its HTML so keep \n so HTML is formatted
 																$sub_blk = preg_replace("#[\r]*\n[\r]*#", "\n", $sub_blk);
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														//	Entity conversion
 														// Restore entity form of quotes and such to single characters, except for text destined for tag attributes or JS.
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														if($opts['value'])
 														{
 															// output used for attribute values.
 															$sub_blk = str_replace($this->replace, $this->search, $sub_blk);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
 														else
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														{
 															// output not used for attribute values.
 															$sub_blk = str_replace($this->search, $this->replace, $sub_blk);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														//   BBCode processing (other than the four already done, which shouldn't appear at all in the text)
 														if ($parseBB !== FALSE)
-												Correct parser hooking logic


											
										
										
											2008-08-17 15:04:20 +00:00
+														{
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															if (!is_object($this->e_bb))
 															{
 																require_once(e_HANDLER.'bbcode_handler.php');
 																$this->e_bb = new e_bbcode;
 															}
 															if ($parseBB === TRUE)
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																// 'Normal' or 'legacy' processing
-												Import routines and quick [html] bbcode fix. 

											
										
										
											2012-07-22 10:03:00 +00:00
+																if($modifiers == "WYSIWYG")
 																{
 																	$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'wysiwyg');
 																}
 																else
 																{
 																	$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID);
 																}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 															elseif ($parseBB === 'STRIP')
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																// Need to strip all BBCodes
 																$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'default', TRUE);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 															else
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																// Need to strip just some BBCodes
 																$sub_blk = $this->e_bb->parseBBCodes($sub_blk, $postID, 'default', $parseBB);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
-												Correct parser hooking logic


											
										
										
											2008-08-17 15:04:20 +00:00
+														}
-												Bugtracker #2827, #3576, #3577 - stop linkwords appearing in places they shouldn't (code now has to explicitly enable them in various areas), match complete word/phrase only (no partials), fully case-insensitive match and display case exactly as found, don't process on admin pages


											
										
										
											2007-01-17 21:29:28 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// replace all {e_XXX} constants with their e107 value. modifier determines relative/absolute conversion
 														// (Moved to after bbcode processing by Cameron)
 														if ($opts['constants'])
 														{
-												Next mailer update


											
										
										
											2009-11-16 20:40:39 +00:00
+															$sub_blk = $this->replaceConstants($sub_blk, $opts['constants']);		// Now decodes text values
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// profanity filter
 														if ($pref['profanity_filter'])
 														{
 															if (!is_object($this->e_pf))
 															{
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+															//	require_once(e_HANDLER."profanity_filter.php");
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																$this->e_pf = new e_profanityFilter;
 															}
 															$sub_blk = $this->e_pf->filterProfanities($sub_blk);
 														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														//	Shortcodes
 														// Optional short-code conversion
 														if ($opts['parse_sc'])
 														{
 															$sub_blk = $this->parseTemplate($sub_blk, TRUE);
 														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+														//Run any hooked in parsers
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														if ($opts['hook'])
 														{
 															if ( varset($pref['tohtml_hook']))
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															{
 																//Process the older tohtml_hook pref (deprecated)
 																foreach(explode(",", $pref['tohtml_hook']) as $hook)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																{
 																	if (!is_object($this->e_hook[$hook]))
 																	{
-												Fix for multiple 0.7 -> 0.8 upgrade issues.


											
										
										
											2009-10-22 13:00:37 +00:00
+																		if(is_readable(e_PLUGIN.$hook."/".$hook.".php"))
 																		{
 																			require_once(e_PLUGIN.$hook."/".$hook.".php");
 																			$hook_class = "e_".$hook;
 																			$this->e_hook[$hook] = new $hook_class;
 																		}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																	}
 																	$sub_blk = $this->e_hook[$hook]->$hook($sub_blk,$opts['context']);
 																}
 															}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															if(isset($pref['e_tohtml_list']) && is_array($pref['e_tohtml_list']))
 															{
 																foreach($pref['e_tohtml_list'] as $hook)
 																{
 																	if (!is_object($this->e_hook[$hook]))
 																	{
-												Fix for multiple 0.7 -> 0.8 upgrade issues.


											
										
										
											2009-10-22 13:00:37 +00:00
+																		if(is_readable(e_PLUGIN.$hook."/e_tohtml.php"))
 																		{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																			require_once(e_PLUGIN.$hook."/e_tohtml.php");
-												Fix for multiple 0.7 -> 0.8 upgrade issues.


											
										
										
											2009-10-22 13:00:37 +00:00
+																			$hook_class = "e_tohtml_".$hook;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																			$this->e_hook[$hook] = new $hook_class;
-												Fix for multiple 0.7 -> 0.8 upgrade issues.


											
										
										
											2009-10-22 13:00:37 +00:00
+																		}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+																	}
 																	$sub_blk = $this->e_hook[$hook]->to_html($sub_blk, $opts['context']);
 																}
 															}
 														}
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														// 	Word wrap
 														if ($wrap && !$opts['nobreak'])
 														{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															$sub_blk = $this->textclean($sub_blk, $wrap);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														//	Search highlighting
 														if ($opts['emotes'])			// Why??
 														{
 															if ($this->checkHighlighting())
 															{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+																$sub_blk = $this->e_highlight($sub_blk, $this->e_query);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+															}
 														}
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
-												Quick fix for trailing line-breaks on block-level elements.

											
										
										
											2013-06-14 16:26:56 -07:00
 														if($convertNL == true)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+															// Default replaces all \n with <br /> for HTML display
 															$nl_replace = '<br />';
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															if ($opts['nobreak'])
 															{
 																$nl_replace = '';
 															}
 															elseif ($opts['retain_nl'])
 															{
 																$nl_replace = "\n";
 															}
-												Quick fix for trailing line-breaks on block-level elements.

											
										
										
											2013-06-14 16:26:56 -07:00
-												Parser tweaks - hopefully speed up, simplify HTML rendering


											
										
										
											2009-01-30 20:39:03 +00:00
+															$sub_blk = str_replace(E_NL, $nl_replace, $sub_blk);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														}
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+														$ret_parser .= $sub_blk;
 													}	// End of 'normal' processing for a block of text
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+												}		// End of 'foreach() on each block of non-script text
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											}		// End of 'normal' parsing (non-script text)
 											else
 											{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// Text block that needed no processing at all
 												$ret_parser .= $full_text;
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											}
-												Bugtracker #4403, #4080, #3626, #4332, possibly #4190 and probably #3808 and #3625 - restructure parser to resolve various bbcode decoding problems


											
										
										
											2008-06-14 21:01:04 +00:00
+										}
-												Quick fix for trailing line-breaks on block-level elements.

											
										
										
											2013-06-14 16:26:56 -07:00
 										// Quick Fix - Remove trailing <br /> on block-level elements (eg. div, pre, table, etc. )
 										$srch = array();
 										$repl = array();
 										foreach($this->blockTags as $val)
 										{
 											$srch[] = "</".$val."><br />";
 											$repl[]	= "</".$val.">";
 										}
 										$ret_parser = str_replace($srch, $repl, $ret_parser);
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										return trim($ret_parser);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												Fixes #850 - Gallery missing description when using simple brackets. Fixes #607 - embedded English text.

											
										
										
											2015-02-01 17:27:05 -08:00
+									/**
 									 * Use it on html attributes to avoid breaking markup .
 									 * @example echo "<a href='#' title='".$tp->toAttribute($text)."'>Hello</a>";
 									 */
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+									function toAttribute($text)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										// URLs posted without HTML access may have an &amp; in them.
 										$text = str_replace('&amp;', '&', $text);
 										// Xhtml compliance.
-												work on CHARSET


											
										
										
											2009-10-30 20:58:52 +00:00
+										$text = htmlspecialchars($text, ENT_QUOTES, 'UTF-8');
-												Fixes #850 - Gallery missing description when using simple brackets. Fixes #607 - embedded English text.

											
										
										
											2015-02-01 17:27:05 -08:00
+										if(!preg_match('/&#|\'|"|<|>/s', $text))
-												Committed wrong version of file earlier


											
										
										
											2007-12-30 23:31:18 +00:00
+										{
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											$text = $this->replaceConstants($text);
 											return $text;
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+										}
 										else
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											return '';
 										}
 									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									/**
 									 * Convert text blocks which are to be embedded within JS
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string|array $stringarray
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 * @return string
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									 */
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									public function toJS($stringarray)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$search = array("\r\n", "\r", "<br />", "'");
 										$replace = array("\\n", "", "\\n", "\'");
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										$stringarray = str_replace($search, $replace, $stringarray);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$stringarray = strip_tags($stringarray);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$trans_tbl = get_html_translation_table(HTML_ENTITIES);
 										$trans_tbl = array_flip($trans_tbl);
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										return strtr($stringarray, $trans_tbl);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									/**
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									 * Convert Text for RSS/XML use.
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 *
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									 * @param string $text
 									 * @param boolean $tags [optional]
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 * @return string
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									 */
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									function toRss($text, $tags = FALSE)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
 										if($tags != TRUE)
 										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$text = $this -> toHTML($text, TRUE);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											$text = strip_tags($text);
 										}
 										$text = $this->toEmail($text);
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+										$search = array("&amp;#039;", "&amp;#036;", "&#039;", "&#036;"," & ", e_BASE, "href='request.php");
 										$replace = array("'", '$', "'", '$',' &amp; ', SITEURL, "href='".SITEURL."request.php" );
 										$text = str_replace($search, $replace, $text);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
 										if($tags == TRUE && ($text))
 										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$text = "<![CDATA[".$text."]]>";
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
 										return $text;
 									}
 									//Convert specific characters back to original form, for use in storing code (or regex) values in the db.
 									function toText($text)
 									{
 										$search = array("&amp;#039;", "&amp;#036;", "&#039;", "&#036;", "&#092;", "&amp;#092;");
 										$replace = array("'", '$', "'", '$', "\\", "\\");
 										$text = str_replace($search, $replace, $text);
 										return $text;
 									}
-												Blurry avatar fix and usersettings template fix. Also added $tp->setThumbSize($w,$h,$crop);

											
										
										
											2013-05-07 18:32:38 -07:00
-												Issue #372 - I have added toDate() to the text-parser - for returning dates formatted for HTML. It should be backwards compatible and currently supports Livestamp.js . Example usage: echo $tp->toDate(1370234650);

											
										
										
											2013-06-02 21:46:53 -07:00
+									/**
 									 * Set the dimensions of a thumbNail (generated by thumbUrl)
 									 */
-												Blurry avatar fix and usersettings template fix. Also added $tp->setThumbSize($w,$h,$crop);

											
										
										
											2013-05-07 18:32:38 -07:00
+									public function setThumbSize($w=null,$h=null,$crop=null)
 									{
 										if($w)
 										{
 											$this->thumbWidth = intval($w);
 										}
 										if($h)
 										{
 											$this->thumbHeight = intval($h);
 										}
 										if($crop)
 										{
 											$this->thumbCrop = intval($crop);
 										}
 									}
-												Gallery Portfolio Thumbnails added.

											
										
										
											2014-01-14 08:16:12 -08:00
 									/**
 									 * Set or Get the value of the thumbNail Width.
 									 * @param $width (optional)
 									 */
 									public function thumbWidth($width=null)
 									{
-												Typo fix

											
										
										
											2014-11-18 21:11:26 +02:00
+										if($height !== null)
-												Gallery Portfolio Thumbnails added.

											
										
										
											2014-01-14 08:16:12 -08:00
+										{
 											$this->thumbWidth = intval($width);
 										}
 										return $this->thumbWidth;
 									}
 									/**
 									 * Set or Get the value of the thumbNail height.
 									 * @param $height (optional)
 									 */
 									public function thumbHeight($height= null)
 									{
-												Typo fix

											
										
										
											2014-11-18 21:11:26 +02:00
+										if($height !== null)
-												Gallery Portfolio Thumbnails added.

											
										
										
											2014-01-14 08:16:12 -08:00
+										{
 											$this->thumbHeight = intval($height);
 										}
 										return $this->thumbHeight;
 									}
-												Forum upgrade fixes. Forum-attachments now converted in batches.

											
										
										
											2013-03-31 00:06:21 -07:00
+									/**
-												Bootstrap3 news and search-menu template fixes.
New thumb.php placeholder feature added.
New {GLYPH} shortcode added. Usage: {GLYPH=time}

											
										
										
											2013-12-31 09:59:19 -08:00
+									 * Generate an auto-sized Image URL.
 									 * @param $url - path to image or leave blank for a placeholder.
 									 * @param $options  - width and height, but leaving this empty and using $this->thumbWidth() and $this->thumbHeight() is preferred. ie. {SETWIDTH: w=x&y=x}
-												Forum upgrade fixes. Forum-attachments now converted in batches.

											
										
										
											2013-03-31 00:06:21 -07:00
+									 * @param $raw ??
 									 * @param $full
 									 */
-												Bootstrap3 news and search-menu template fixes.
New thumb.php placeholder feature added.
New {GLYPH} shortcode added. Usage: {GLYPH=time}

											
										
										
											2013-12-31 09:59:19 -08:00
+									public function thumbUrl($url=null, $options = array(), $raw = false, $full = false)
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+									{
-												thumbUrl method now converts shortcode paths (testing required)

											
										
										
											2013-03-18 12:26:55 +02:00
+										if(substr($url,0,3)=="{e_") // Fix for broken links that use {e_MEDIA} etc.
-												Fix for broken thumbnails while using {e_xxxx}

											
										
										
											2011-08-19 23:39:44 +00:00
+										{
-												thumbUrl method now converts shortcode paths (testing required)

											
										
										
											2013-03-18 12:26:55 +02:00
+											//$url = $this->replaceConstants($url,'abs');
 											// always switch to 'nice' urls when SC is used
-												Fix for thumbUrl() error.

											
										
										
											2013-03-18 03:41:05 -07:00
+											$url = str_replace($this->getUrlConstants('sc'), $this->getUrlConstants('raw'), $url);
-												Fix for broken thumbnails while using {e_xxxx}

											
										
										
											2011-08-19 23:39:44 +00:00
+										}
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+										if(!is_array($options))
 										{
 											parse_str($options, $options);
 										}
-												Prevent hash disclosure.

											
										
										
											2013-04-27 13:15:04 -07:00
 										if(strstr($url,e_MEDIA) || strstr($url,e_SYSTEM)) // prevent disclosure of 'hashed' path.
 										{
 											$raw = true;
 										}
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
 										if($raw) $url = $this->createConstants($url, 'mix');
-												Image-preview path fix. Resize-on-Import added to Media-manager. 

											
										
										
											2011-08-22 23:52:45 +00:00
-												Fixes related to Gallery image import, watermarks and thumbnails. 

											
										
										
											2012-07-14 10:40:40 +00:00
+										$baseurl = ($full ? SITEURL : e_HTTP).'thumb.php?';
-												TinyMce fixes and support for raw html or bbcodes. (depending on Html posting preference)

											
										
										
											2013-02-28 03:38:50 -08:00
-												Media-Manager fixes and enhancements. Glyphs are now searchable.

											
										
										
											2014-01-09 04:42:13 -08:00
+										$thurl = 'src='.urlencode($url).'&amp;';
-												Fix for broken thumbnails while using {e_xxxx}

											
										
										
											2011-08-19 23:39:44 +00:00
-												{SETIMAGE} can now set Height and also crop the image. eg. {SETIMAGE: w=300&h=200&crop=1}

											
										
										
											2013-03-24 03:03:31 -07:00
+										if(vartrue($options['aw']) || vartrue($options['ah']) || $this->thumbCrop == 1)
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+										{
-												{SETIMAGE} can now set Height and also crop the image. eg. {SETIMAGE: w=300&h=200&crop=1}

											
										
										
											2013-03-24 03:03:31 -07:00
+											if($this->thumbCrop == 1 && !vartrue($options['aw']) && !vartrue($options['ah'])) // Allow templates to determine dimensions. See {SETIMAGE}
 											{
 												$options['aw']	= $this->thumbWidth;
 												$options['ah']	 = $this->thumbHeight;
 											}
-												IN PROGRESS - task EONE-10: System thumbnails - thumb url options fixes and improvements

											
										
										
											2010-03-10 10:05:39 +00:00
+											$thurl .= 'aw='.((integer) vartrue($options['aw'], 0)).'&amp;ah='.((integer) vartrue($options['ah'], 0));
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+										}
 										else
 										{
-												{SETIMAGE} can now set Height and also crop the image. eg. {SETIMAGE: w=300&h=200&crop=1}

											
										
										
											2013-03-24 03:03:31 -07:00
+											if(!vartrue($options['w']) && !vartrue($options['h'])) // Allow templates to determine dimensions. See {SETIMAGE}
 											{
 												 $options['w'] = $this->thumbWidth;
 												 $options['h'] = $this->thumbHeight;
 											}
-												IN PROGRESS - task EONE-10: System thumbnails - thumb url options fixes and improvements

											
										
										
											2010-03-10 10:05:39 +00:00
+											$thurl .= 'w='.((integer) vartrue($options['w'], 0)).'&amp;h='.((integer) vartrue($options['h'], 0));
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+										}
-												Upgrade PHP thumb and watermarks for images added

											
										
										
											2012-07-02 01:32:56 +00:00
-												Fixes related to Gallery image import, watermarks and thumbnails. 

											
										
										
											2012-07-14 10:40:40 +00:00
 										if(vartrue($options['x']))//base64 encode url
-												Upgrade PHP thumb and watermarks for images added

											
										
										
											2012-07-02 01:32:56 +00:00
+										{
-												Fixes related to Gallery image import, watermarks and thumbnails. 

											
										
										
											2012-07-14 10:40:40 +00:00
+											$thurl = 'id='.base64_encode($thurl);
-												Upgrade PHP thumb and watermarks for images added

											
										
										
											2012-07-02 01:32:56 +00:00
+										}
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
-												Upgrade PHP thumb and watermarks for images added

											
										
										
											2012-07-02 01:32:56 +00:00
+									//	echo "<br /><br />".$thurl;
-												Fixes related to Gallery image import, watermarks and thumbnails. 

											
										
										
											2012-07-14 10:40:40 +00:00
+										return $baseurl.$thurl;
-												IN PROGRESS - task EONE-10: System thumbnails 
- media manager now uses thumb.php
- form handler uses thumb.php (UI) when type is image and parameter thumb is passed 
- minor issues fixed
- thumbUrl() method added (Parser, for now)

											
										
										
											2010-03-09 16:05:41 +00:00
+									}
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+									/**
 									 * Help for converting to more safe URLs
 									 * e.g. {e_MEDIA_FILE}path/to/video.flv => e_MEDIA_FILE/path/to/video.flv
 									 *
 									 * @todo support for ALL URL shortcodes (replacement methods)
 									 * @param string $type sc|raw|rev|all
 									 * @return array
 									 */
 									public function getUrlConstants($type = 'sc')
 									{
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+										// sub-folders first!
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+										static $array = array(
 											'e_MEDIA_FILE/' 	=> '{e_MEDIA_FILE}',
 											'e_MEDIA_VIDEO/' 	=> '{e_MEDIA_VIDEO}',
 											'e_MEDIA_IMAGE/' 	=> '{e_MEDIA_IMAGE}',
 											'e_MEDIA_ICON/' 	=> '{e_MEDIA_ICON}',
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+											'e_AVATAR/' 		=> '{e_AVATAR}',
-												Issue #257 , Issue #64, Issue #236 - usersettings and avatar upload issues.

											
										
										
											2013-05-07 20:30:20 -07:00
+											'e_AVATAR_DEFAULT/' => '{e_AVATAR_DEFAULT}',
 											'e_AVATAR_UPLOAD/' => '{e_AVATAR_UPLOAD}',
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+											'e_WEB_JS/' 		=> '{e_WEB_JS}',
 											'e_WEB_CSS/' 		=> '{e_WEB_CSS}',
 											'e_WEB_IMAGE/' 		=> '{e_WEB_IMAGE}',
-												Issue #317 - specific path has been added for importing into media-manager. e_IMPORT.

											
										
										
											2013-05-17 18:17:04 -07:00
+											'e_IMPORT/' 		=> '{e_IMPORT}',
-												Issue #57 - fixes the error but doesn't correct a general issue with the way the mailout section is coded. Admin navigation is  currently broken on some pages. Perhaps @e107steved has some answers.

											
										
										
											2012-12-16 13:19:52 -08:00
+										//	'e_WEB_PACK/' 		=> '{e_WEB_PACK}',
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
 											'e_BASE/' 			=> '{e_BASE}',
 											'e_ADMIN/' 			=> '{e_ADMIN}',
 											'e_IMAGE/' 			=> '{e_IMAGE}',
 											'e_THEME/' 			=> '{e_THEME}',
 											'e_PLUGIN/' 		=> '{e_PLUGIN}',
-												Issue #57 - fixes the error but doesn't correct a general issue with the way the mailout section is coded. Admin navigation is  currently broken on some pages. Perhaps @e107steved has some answers.

											
										
										
											2012-12-16 13:19:52 -08:00
+											'e_HANDLER/' 		=> '{e_HANDLER}', // BC
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+											'e_MEDIA/' 			=> '{e_MEDIA}',
 											'e_WEB/' 			=> '{e_ADMIN}',
-												Mailing now considered to be 'frontend' when loading templates. Fixes consistency issues. (eg. login notifications etc.)

											
										
										
											2014-09-03 14:09:10 -07:00
+									//		'THEME/'			=> '{THEME}',
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+										);
-												Fixes problem where {e_PLUGIN}, {THEME} etc. are replaced with empty values when using parseTemplate(). Now retains theme for use by replaceConstants() etc.

											
										
										
											2014-08-18 22:57:18 -07:00
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+										switch ($type)
 										{
 											case 'sc':
 												return array_values($array);
 											break;
 											case 'raw':
 												return array_keys($array);
 											break;
 											case 'rev':
 												return array_reverse($array, true);
 											break;
 											case 'all':
 												return $array;
 											break;
 										}
 										return array();
 									}
-												Emoticon BBcode Fix

											
										
										
											2013-04-22 20:46:06 -07:00
 									function getEmotes()
 									{
 										return $this->e_emote->emotes;
 									}
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									/**
 									 * Replace e107 path constants
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									 * Note: only an ADMIN user can convert {e_ADMIN}
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+									 * TODO - runtime cache of search/replace arrays (object property) when $mode !== ''
-												phpDoc corrections


											
										
										
											2009-09-12 18:20:23 +00:00
+									 * @param string $text
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									 * @param string $mode [optional]	abs|full "full" = produce absolute URL path, e.g. http://sitename.com/e107_plugins/etc
-												Fix errors in path decoding for sitelinks (e_PLUGIN substituted as e_IMAGE)

											
										
										
											2012-12-16 19:23:11 +00:00
+									 * 									'abs' = produce truncated URL path, e.g. e107plugins/etc
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									 * 									"" (default) = URL's get relative path e.g. ../e107_plugins/etc
-												phpDoc corrections


											
										
										
											2009-09-12 18:20:23 +00:00
+									 * @param mixed $all [optional] 	if TRUE, then when $mode is "full" or TRUE, USERID is also replaced...
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									 * 									when $mode is "" (default), ALL other e107 constants are replaced
-												JS Manager handler - almost ready, awaiting for theme.xml & plugin.xml required additions, admin header.php synchronized with the changes, e107::getJs() proxy method added, new js related preferences - Work in progress


											
										
										
											2009-09-29 17:40:56 +00:00
+									 * @return string
-												CSS fixes and some comments


											
										
										
											2009-09-02 16:39:32 +00:00
+									 */
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									public function replaceConstants($text, $mode = '', $all = FALSE)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
+										if($mode != "")
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										{
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+											$e107 = e107::getInstance();
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+											$replace_relative = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												$e107->getFolder('media_files'),
 												$e107->getFolder('media_video'),
 												$e107->getFolder('media_image'),
 												$e107->getFolder('media_icon'),
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+												$e107->getFolder('avatars'),
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												$e107->getFolder('web_js'),
 												$e107->getFolder('web_css'),
 												$e107->getFolder('web_image'),
-												Fix errors in path decoding for sitelinks (e_PLUGIN substituted as e_IMAGE)

											
										
										
											2012-12-16 19:23:11 +00:00
+												//$e107->getFolder('web_pack'),
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+												e_IMAGE_ABS,
 												e_THEME_ABS,
-												e_parse: global removal (getFolder in action), e107 coding standards related changes, minor code improvements, some problems pointed (see FIXME, XXX comments)


											
										
										
											2009-08-20 12:27:26 +00:00
+												$e107->getFolder('images'),
 												$e107->getFolder('plugins'),
 												$e107->getFolder('files'),
 												$e107->getFolder('themes'),
-												Notice removal


											
										
										
											2009-09-04 15:24:41 +00:00
+											//	$e107->getFolder('downloads'),
-												Media Manager work..


											
										
										
											2009-11-14 04:13:11 +00:00
+												$e107->getFolder('handlers'),
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												$e107->getFolder('media'),
 												$e107->getFolder('web'),
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+												$e107->site_theme ? $e107->getFolder('themes').$e107->site_theme.'/' : '',
 												defset('THEME_ABS'),
 												(ADMIN ? $e107->getFolder('admin') : ''),
-												Minor fixes and improvements

											
										
										
											2011-11-25 17:36:40 +00:00
+												'',
 												$e107->getFolder('core'),
 												$e107->getFolder('system'),
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+											);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											switch ($mode)
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
+											{
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+												case 'abs':
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													$replace_absolute = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														e_MEDIA_FILE_ABS,
 														e_MEDIA_VIDEO_ABS,
 														e_MEDIA_IMAGE_ABS,
 														e_MEDIA_ICON_ABS,
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+														e_AVATAR_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														e_JS_ABS,
 														e_CSS_ABS,
 														e_WEB_IMAGE_ABS,
-												Improved DEBUG info for PATHs etc.

											
										
										
											2012-12-14 22:25:14 -08:00
+												//		e_PACK_ABS,
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+														e_IMAGE_ABS,
 														e_THEME_ABS,
 														e_IMAGE_ABS,
 														e_PLUGIN_ABS,
 														e_FILE_ABS,
 														e_THEME_ABS,
-												Notice removal


											
										
										
											2009-09-04 15:24:41 +00:00
+												//		e_DOWNLOAD_ABS, //impossible when download is done via php.
-												Fix errors in path decoding for sitelinks (e_PLUGIN substituted as e_IMAGE)

											
										
										
											2012-12-16 19:23:11 +00:00
+														'', // handlers - no ABS path available
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														e_MEDIA_ABS,
 														e_WEB_ABS,
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+														defset('THEME_ABS'),
 														defset('THEME_ABS'),
 														(ADMIN ? e_ADMIN_ABS : ''),
-												Minor fixes and improvements

											
										
										
											2011-11-25 17:36:40 +00:00
+														$e107->server_path,
 														'', // no e_CORE absolute path
 														'', // no e_SYSTEM absolute path
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+													);
 												break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+												case 'full':
 													$replace_absolute = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														SITEURLBASE.e_MEDIA_FILE_ABS,
 														SITEURLBASE.e_MEDIA_VIDEO_ABS,
 														SITEURLBASE.e_MEDIA_IMAGE_ABS,
 														SITEURLBASE.e_MEDIA_ICON_ABS,
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+														SITEURLBASE.e_AVATAR_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														SITEURLBASE.e_JS_ABS,
 														SITEURLBASE.e_CSS_ABS,
 														SITEURLBASE.e_WEB_IMAGE_ABS,
-												Improved DEBUG info for PATHs etc.

											
										
										
											2012-12-14 22:25:14 -08:00
+												//		SITEURLBASE.e_PACK_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														SITEURLBASE.e_IMAGE_ABS,
 														SITEURLBASE.e_THEME_ABS,
 														SITEURLBASE.e_IMAGE_ABS,
 														SITEURLBASE.e_PLUGIN_ABS,
 														SITEURLBASE.e_FILE_ABS, // deprecated
 														SITEURLBASE.e_THEME_ABS,
 														//SITEURL.$e107->getFolder('downloads'),
-												Fix errors in path decoding for sitelinks (e_PLUGIN substituted as e_IMAGE)

											
										
										
											2012-12-16 19:23:11 +00:00
+														'', //  handlers - no ABS path available
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+														SITEURLBASE.e_MEDIA_ABS,
 														SITEURLBASE.e_WEB_ABS,
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+														defset('THEME_ABS') ? SITEURLBASE.THEME_ABS : '',
 														defset('THEME_ABS') ? SITEURLBASE.THEME_ABS : '',
 														(ADMIN ? SITEURLBASE.e_ADMIN_ABS : ''),
-												Minor fixes and improvements

											
										
										
											2011-11-25 17:36:40 +00:00
+														SITEURL,
 														'', // no e_CORE absolute path
 														'', // no e_SYSTEM absolute path
-												Introducing e_IFRAME mod; NOHEADER changed to e_NOHEADER; overall menu.php url checks cleaned (API, header, footer); menu related code cleanup and fixes, e_parse improvements (more work is needed); smarter getSingleton() and getObject() (in progress)


											
										
										
											2009-08-19 14:39:57 +00:00
+													);
 												break;
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
+											}
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+											// sub-folders first!
 											$search = array(
 												'{e_MEDIA_FILE}',
 												'{e_MEDIA_VIDEO}',
 												'{e_MEDIA_IMAGE}',
 												'{e_MEDIA_ICON}',
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+												'{e_AVATAR}',
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												'{e_WEB_JS}',
 												'{e_WEB_CSS}',
 												'{e_WEB_IMAGE}',
-												Improved DEBUG info for PATHs etc.

											
										
										
											2012-12-14 22:25:14 -08:00
+										//		'{e_WEB_PACK}',
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												"{e_IMAGE_ABS}",
 												"{e_THEME_ABS}",
 												"{e_IMAGE}",
 												"{e_PLUGIN}",
 												"{e_FILE}",
 												"{e_THEME}",
 												//,"{e_DOWNLOAD}"
 												"{e_HANDLER}",
 												"{e_MEDIA}",
 												"{e_WEB}",
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+												"{THEME}",
 												"{THEME_ABS}",
 												"{e_ADMIN}",
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+												"{e_BASE}",
-												Minor fixes and improvements

											
										
										
											2011-11-25 17:36:40 +00:00
+												"{e_CORE}",
 												"{e_SYSTEM}",
-												Media Manager work..


											
										
										
											2009-11-14 04:13:11 +00:00
+											);
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+											/*if (ADMIN)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											{
-												e_parse: global removal (getFolder in action), e107 coding standards related changes, minor code improvements, some problems pointed (see FIXME, XXX comments)


											
										
										
											2009-08-20 12:27:26 +00:00
+												$replace_relative[] = $e107->getFolder('admin');
 												$replace_absolute[] = SITEURL.$e107->getFolder('admin');
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+												$search[] = "{e_ADMIN}";
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+											}*/
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+											if ($all)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+											{
 												if (USER)
 												{  // Can only replace with valid number for logged in users
 													$replace_relative[] = USERID;
 													$replace_absolute[] = USERID;
 												}
 												else
 												{
 													$replace_relative[] = '';
 													$replace_absolute[] = '';
 												}
 												$search[] = "{USERID}";
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+											}
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
-												e_parse replaceConstants refined - need speed test and eventually more work; generic checkvalidtheme() minor cleanup

											
										
										
											2011-01-03 10:54:08 +00:00
+											// current THEME
 											/*if(!defined('THEME'))
 											{
 												//if not already parsed by doReplace
 												$text = str_replace(array('{THEME}', '{THEME_ABS}'), '', $text);
 											}
 											else
 											{
 												$replace_relative[] = THEME;
 												$replace_absolute[] = THEME_ABS;
 												$search[] = "{THEME}";
 												$replace_relative[] = THEME;
 												$replace_absolute[] = THEME_ABS;
 												$search[] = "{THEME_ABS}";
 											}*/
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
 											$replace = ((string)$mode == "full" || (string)$mode=='abs' ) ? $replace_absolute : $replace_relative;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											return str_replace($search,$replace,$text);
 										}
-												Added new iconpicker where appropriate. Some fixes in replaceConstant() and css/layout tweaks in admin->downloads


											
										
										
											2009-07-17 02:28:49 +00:00
-												Committed wrong version of file earlier


											
										
										
											2007-12-30 23:31:18 +00:00
+								//		$pattern = ($all ? "#\{([A-Za-z_0-9]*)\}#s" : "#\{(e_[A-Z]*)\}#s");
-												EONE-11 (Task): fixing relative path shortcode replacement (sync with new e107 paths)

											
										
										
											2010-03-16 18:41:35 +00:00
+										$pattern = ($all ? '#\{([A-Za-z_0-9]*)\}#s' : '#\{(e_[A-Z]*(?:_IMAGE|_VIDEO|_FILE|_CONTENT|_ICON|_AVATAR|_JS|_CSS|_PACK|_DB|_ABS){0,1})\}#s');
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$text = preg_replace_callback($pattern, array($this, 'doReplace'), $text);
 										if(!defined('THEME'))
 										{
 											//if not already parsed by doReplace
 											$text = str_replace(array('{THEME}', '{THEME_ABS}'), '', $text);
 										}
-.7 -> 0.8 upgrade fixes


											
										
										
											2009-11-19 13:46:29 +00:00
+										else
 										{
 											$srch = array('{THEME}', '{THEME_ABS}');
 											$repl = array(THEME, THEME_ABS);
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
+											$text = str_replace($srch, $repl, $text);
-.7 -> 0.8 upgrade fixes


											
										
										
											2009-11-19 13:46:29 +00:00
+										}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
 										return $text;
 									}
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									function doReplace($matches)
 									{
-												e_parse notice (installation routine)

											
										
										
											2011-01-15 11:53:31 +00:00
+										if(defined($matches[1]) && (deftrue('ADMIN') || strpos($matches[1], 'ADMIN') === FALSE))
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										{
 											return constant($matches[1]);
 										}
 										return $matches[1];
 									}
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+									/**
 									 * Create and substitute e107 constants in passed URL
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									 *
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+									 * @param string $url
-												Next mailer update


											
										
										
											2009-11-16 20:40:39 +00:00
+									 * @param integer $mode 0-folders, 1-relative ('rel'), 2-absolute ('abs'), 3-full ('full') (with domain), 4-absolute & relative ('mix') (combination of 1,2,3)
-												PHPdoc -
add returned type


											
										
										
											2009-10-30 20:05:17 +00:00
+									 * @return string
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+									 */
-												more doc


											
										
										
											2009-10-30 23:31:08 +00:00
+									public function createConstants($url, $mode = 0)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									{
-												Corrected path issue in createConstants()

											
										
										
											2011-05-10 12:36:11 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										//FIXME - create constants for absolute paths and site URL's
-												Next mailer update


											
										
										
											2009-11-16 20:40:39 +00:00
+										if (!is_numeric($mode))
 										{
 											switch ($mode)
 											{
 												case 'rel' : $mode = 1; break;
 												case 'abs' : $mode = 2; break;
 												case 'full' : $mode = 3; break;
 												case 'mix' : $mode = 4; break;
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+												case 'nice': $mode = 5; break;
-												Next mailer update


											
										
										
											2009-11-16 20:40:39 +00:00
+											}
 										}
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+										$e107 = e107::getInstance();
 										switch($mode)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										{
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											case 0: // folder name only.
 												$tmp = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_MEDIA_FILE}'	=> $e107->getFolder('media_files'),
-												Corrected path issue in createConstants()

											
										
										
											2011-05-10 12:36:11 +00:00
+													'{e_MEDIA_VIDEO}'	=> $e107->getFolder('media_videos'),
 													'{e_MEDIA_IMAGE}'	=> $e107->getFolder('media_images'),
 													'{e_MEDIA_ICON}'	=> $e107->getFolder('media_icons'),
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+													'{e_AVATAR}'		=> $e107->getFolder('avatars'),
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_WEB_JS}'		=> $e107->getFolder('web_js'),
 													'{e_WEB_CSS}'		=> $e107->getFolder('web_css'),
-												Corrected path issue in createConstants()

											
										
										
											2011-05-10 12:36:11 +00:00
+													'{e_WEB_IMAGE}'		=> $e107->getFolder('web_images'),
-												Files directory no longer created during install. ( Issue #45 )

											
										
										
											2012-12-16 13:02:19 -08:00
+											//		'{e_WEB_PACK}'		=> $e107->getFolder('web_packs'),
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+													'{e_IMAGE}' 	=> $e107->getFolder('images'),
 													'{e_PLUGIN}'	=> $e107->getFolder('plugins'),
 													'{e_FILE}'		=> $e107->getFolder('files'),
 													'{e_THEME}'		=> $e107->getFolder('themes'),
 													'{e_DOWNLOAD}'	=> $e107->getFolder('downloads'),
 													'{e_ADMIN}'		=> $e107->getFolder('admin'),
-												create constants were missing e_MEDIA

											
										
										
											2010-03-01 14:29:49 +00:00
+													'{e_HANDLER}'	=> $e107->getFolder('handlers'),
 													'{e_MEDIA}'		=> $e107->getFolder('media'),
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													'{e_WEB}'		=> $e107->getFolder('web'),
-												Issue #81 - fix for {e_UPLOAD} appearing in generated plugin site-links.

											
										
										
											2013-01-17 21:35:43 -08:00
+													'{e_UPLOAD}'	=> $e107->getFolder('uploads'),
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+													);
-												Corrected path issue in createConstants()

											
										
										
											2011-05-10 12:36:11 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Corrected path issue in createConstants()

											
										
										
											2011-05-10 12:36:11 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											case 1: // relative path only
 												$tmp = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_MEDIA_FILE}'	=> e_MEDIA_FILE,
 													'{e_MEDIA_VIDEO}'	=> e_MEDIA_VIDEO,
 													'{e_MEDIA_IMAGE}'	=> e_MEDIA_IMAGE,
 													'{e_MEDIA_ICON}'	=> e_MEDIA_ICON,
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+													'{e_AVATAR}'		=> e_AVATAR,
-												Issue #317 - specific path has been added for importing into media-manager. e_IMPORT.

											
										
										
											2013-05-17 18:17:04 -07:00
+													'{e_IMPORT}'		=> e_IMPORT,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_WEB_JS}'		=> e_WEB_JS,
 													'{e_WEB_CSS}'		=> e_WEB_CSS,
 													'{e_WEB_IMAGE}'		=> e_WEB_IMAGE,
-												Issue #57 - fixes the error but doesn't correct a general issue with the way the mailout section is coded. Admin navigation is  currently broken on some pages. Perhaps @e107steved has some answers.

											
										
										
											2012-12-16 13:19:52 -08:00
+												//	'{e_WEB_PACK}'		=> e_WEB_PACK,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+													'{e_IMAGE}'		=> e_IMAGE,
 													'{e_PLUGIN}'	=> e_PLUGIN,
 													'{e_FILE}'		=> e_FILE,
 													'{e_THEME}'		=> e_THEME,
 													'{e_DOWNLOAD}'	=> e_DOWNLOAD,
 													'{e_ADMIN}'		=> e_ADMIN,
-												create constants were missing e_MEDIA

											
										
										
											2010-03-01 14:29:49 +00:00
+													'{e_HANDLER}'	=> e_HANDLER,
 													'{e_MEDIA}'		=> e_MEDIA,
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													'{e_WEB}'		=> e_WEB,
-												Fix for Image Import previews.

											
										
										
											2012-12-22 02:11:03 -08:00
+													'{e_UPLOAD}'	=> e_UPLOAD,
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+												);
 											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											case 2: // absolute path only
 												$tmp = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_MEDIA_FILE}'	=> e_MEDIA_FILE_ABS,
 													'{e_MEDIA_VIDEO}'	=> e_MEDIA_VIDEO_ABS,
 													'{e_MEDIA_IMAGE}'	=> e_MEDIA_IMAGE_ABS,
 													'{e_MEDIA_ICON}'	=> e_MEDIA_ICON_ABS,
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+													'{e_AVATAR}'		=> e_AVATAR_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_WEB_JS}'		=> e_JS_ABS,
 													'{e_WEB_CSS}'		=> e_CSS_ABS,
 													'{e_WEB_IMAGE}'		=> e_WEB_IMAGE_ABS,
-												Improved DEBUG info for PATHs etc.

											
										
										
											2012-12-14 22:25:14 -08:00
+											//		'{e_WEB_PACK}'		=> e_PACK_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+													'{e_IMAGE}'		=> e_IMAGE_ABS,
 													'{e_PLUGIN}'	=> e_PLUGIN_ABS,
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													'{e_FILE}'		=> e_FILE_ABS, // deprecated
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+													'{e_THEME}'		=> e_THEME_ABS,
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													'{e_DOWNLOAD}'	=> e_HTTP.'request.php?',// FIXME - we need solution!
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+													'{e_ADMIN}'		=> e_ADMIN_ABS,
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													//'{e_HANDLER}'	=> e_HANDLER_ABS, - no ABS path available
-												create constants were missing e_MEDIA

											
										
										
											2010-03-01 14:29:49 +00:00
+													'{e_MEDIA}'		=> e_MEDIA_ABS,
-												Taks EONE-11: createConstants method quick fixes

											
										
										
											2010-03-08 16:00:36 +00:00
+													'{e_WEB}'		=> e_WEB_ABS,
-												- Custom Pages front-end almost completely rewritten, backend fixes, SEF URL support, introducing page batch shortcodes and templates (available per page), compatibility stylesheet added (core css and jayya theme), tagwords plugin links proper to new pages URLs;
- Large number of system stability fixes and obsolete code replacement

											
										
										
											2011-12-07 21:07:21 +00:00
+													'{e_BASE}'		=> e_HTTP,
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+												);
 											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											case 3: // full path (e.g http://domain.com/e107_images/)
 												$tmp = array(
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_MEDIA_FILE}'	=> SITEURLBASE.e_MEDIA_FILE_ABS,
 													'{e_MEDIA_VIDEO}'	=> SITEURLBASE.e_MEDIA_VIDEO_ABS,
 													'{e_MEDIA_IMAGE}'	=> SITEURLBASE.e_MEDIA_IMAGE_ABS,
 													'{e_MEDIA_ICON}'	=> SITEURLBASE.e_MEDIA_ICON_ABS,
-												Avatar path corrections.

											
										
										
											2013-04-19 22:50:41 -07:00
+													'{e_AVATAR}'		=> SITEURLBASE.e_AVATAR_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
+													'{e_WEB_JS}'		=> SITEURLBASE.e_JS_ABS,
 													'{e_WEB_CSS}'		=> SITEURLBASE.e_CSS_ABS,
 													'{e_WEB_IMAGE}'		=> SITEURLBASE.e_WEB_IMAGE_ABS,
-												Improved DEBUG info for PATHs etc.

											
										
										
											2012-12-14 22:25:14 -08:00
+											//		'{e_WEB_PACK}'		=> SITEURLBASE.e_PACK_ABS,
-												EONE-11 (Task): more shortcode paths added to replacing routines

											
										
										
											2010-03-10 15:43:42 +00:00
 													'{e_IMAGE}'		=> SITEURLBASE.e_IMAGE_ABS,
 													'{e_PLUGIN}'	=> SITEURLBASE.e_PLUGIN_ABS,
 													'{e_FILE}'		=> SITEURLBASE.e_FILE_ABS, // deprecated
 													'{e_THEME}'		=> SITEURLBASE.e_THEME_ABS,
 													'{e_DOWNLOAD}'	=> SITEURLBASE.e_HTTP.'request.php?',// FIXME - we need solution!
 													'{e_ADMIN}'		=> SITEURLBASE.e_ADMIN_ABS,
 													//'{e_HANDLER}'	=> e_HANDLER_ABS, - no ABS path available
 													'{e_MEDIA}'		=> SITEURLBASE.e_MEDIA_ABS,
 													'{e_WEB}'		=> SITEURLBASE.e_WEB_ABS,
-												- Custom Pages front-end almost completely rewritten, backend fixes, SEF URL support, introducing page batch shortcodes and templates (available per page), compatibility stylesheet added (core css and jayya theme), tagwords plugin links proper to new pages URLs;
- Large number of system stability fixes and obsolete code replacement

											
										
										
											2011-12-07 21:07:21 +00:00
+													'{e_BASE}'		=> SITEURL,
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+												);
 											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											case 4: // absolute & relative paths
-												e107 createConstants typo


											
										
										
											2009-09-29 11:32:09 +00:00
+												$url = $this->createConstants($url, 3);
 												$url = $this->createConstants($url, 2);
 												$url = $this->createConstants($url, 1);
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+												return $url;
 											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												IN PROGRESS - Tasks EONE-10, EONE-11: more paths added, 'nice' urls are supported now (see thumb.php)

											
										
										
											2010-03-10 12:48:05 +00:00
+											case 5: // nice urls - e.g. e_MEDIA_VIDEO/mystream.flv
 												$url = $this->createConstants($url, 4);
 												return str_replace($this->getUrlConstants('sc'), $this->getUrlConstants('raw'), $url);
 											break;
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
+											default:
 												$tmp = array();
 											break;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
-												introducing JS Manager handler - work in progress


											
										
										
											2009-09-28 19:17:59 +00:00
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										foreach($tmp as $key=>$val)
 										{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+											$len = strlen($val);
 											if(substr($url, 0, $len) == $val)
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												// replace the first instance only
 												return substr_replace($url, $key, 0, $len);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+											}
 										}
 										return $url;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									//FIXME - $match not used?
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+									function e_highlight($text, $match)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+									{
-												e_parse: global removal (getFolder in action), e107 coding standards related changes, minor code improvements, some problems pointed (see FIXME, XXX comments)


											
										
										
											2009-08-20 12:27:26 +00:00
+										$tags = array();
 										preg_match_all('#<[^>]+>#', $text, $tags);
 										$text = preg_replace('#<[^>]+>#', '<|>', $text);
 										$text = preg_replace('#(\b".$match."\b)#i', '<span class="searchhighlight">\\1</span>', $text);
-												Converting related core shortcodes to use batch class->method functionality.


											
										
										
											2009-01-08 21:47:44 +00:00
+										foreach ($tags[0] as $tag)
-												Parser - first cut of restructuring of control logic


											
										
										
											2009-01-03 22:32:54 +00:00
+										{
-												e_parse: global removal (getFolder in action), e107 coding standards related changes, minor code improvements, some problems pointed (see FIXME, XXX comments)


											
										
										
											2009-08-20 12:27:26 +00:00
+											$text = preg_replace('#<\|>#', $tag, $text, 1);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
 										return $text;
 									}
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
-												Issue #372 - I have added toDate() to the text-parser - for returning dates formatted for HTML. It should be backwards compatible and currently supports Livestamp.js . Example usage: echo $tp->toDate(1370234650);

											
										
										
											2013-06-02 21:46:53 -07:00
+									/**
 									 * Convert Text to a suitable format for use in emails. eg. relative links will be replaced with full links etc.
 									 * @param string $text
 									 * @param boolean $posted - if the text has been posted. (uses stripslashes etc)
 									 * @param string $mods - flags for text transformation.
 									 */
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									public function toEmail($text, $posted = "", $mods = "parse_sc, no_make_clickable")
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									{
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+										if ($posted === TRUE)
-												Committed wrong version of file earlier


											
										
										
											2007-12-30 23:31:18 +00:00
+										{
-												Security - protect from php injections in the (almost same) way 0.7 does it

											
										
										
											2011-03-19 11:54:12 +00:00
+											if (MAGIC_QUOTES_GPC)
 											{
 												$text = stripslashes($text);
 											}
 											$text = preg_replace('#\[(php)#i', '&#91;\\1', $text);
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										$text = (strtolower($mods) != "rawtext") ? $this->replaceConstants($text, "full") : $text;
 										$text = $this->toHTML($text, TRUE, $mods);
 										return $text;
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+									}
-												Move email obfuscation function somewhere sensible


											
										
										
											2008-10-30 22:42:41 +00:00
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
-												Issue #372 - I have added toDate() to the text-parser - for returning dates formatted for HTML. It should be backwards compatible and currently supports Livestamp.js . Example usage: echo $tp->toDate(1370234650);

											
										
										
											2013-06-02 21:46:53 -07:00
+									/**
 									 * Given an email address, returns a link including js-based obfuscation
 									 */
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									function emailObfuscate($email, $words = '', $subject = '')
-												Move email obfuscation function somewhere sensible


											
										
										
											2008-10-30 22:42:41 +00:00
+									{
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										if(strpos($email, '@') === FALSE)
-												Move email obfuscation function somewhere sensible


											
										
										
											2008-10-30 22:42:41 +00:00
+										{
 											return '';
 										}
 										if ($subject)
 										{
 											$subject = '?subject='.$subject;
 										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+										list($name, $address) = explode('@', $email, 2);
-												Move email obfuscation function somewhere sensible


											
										
										
											2008-10-30 22:42:41 +00:00
+										$reassembled = '"'.$name.'"+"@"+"'.$address.'"';
 										return "<a rel='external' href='javascript:window.location=\"mai\"+\"lto:\"+".$reassembled.$subject.";self.close();' onmouseover='window.status=\"mai\"+\"lto:\"+".$reassembled."; return true;' onmouseout='window.status=\"\";return true;'>".$words.'</a>';
 									}
-												Issue #372 - I have added toDate() to the text-parser - for returning dates formatted for HTML. It should be backwards compatible and currently supports Livestamp.js . Example usage: echo $tp->toDate(1370234650);

											
										
										
											2013-06-02 21:46:53 -07:00
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+									public function __get($name)
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+									{
 										switch($name)
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+										{
 											case 'e_sc':
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												$ret = e107::getScParser();
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+											break;
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+											default:
 												trigger_error('$e107->$'.$name.' not defined', E_USER_WARNING);
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
+												return NULL;
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+											break;
 										}
-												nothing more than a bit of  formatting


											
										
										
											2009-10-30 19:57:28 +00:00
-												Text parser - usubstr() method fix (always returned empty string), utf8 parser methods lowercased


											
										
										
											2010-01-12 13:11:48 +00:00
-												more e107 class & API cahnges:
- magic __get() added to e107 and e_parse classes;
- resolved sch_load() related issues;
- more object getter;


											
										
										
											2009-07-23 15:29:07 +00:00
+										$this->$name = $ret;
 										return $ret;
 									}
-												new module creation


											
										
										
											2006-12-02 04:36:16 +00:00
+								}
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
 								/**
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+								 * New v2 Parser
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								 * Start Fresh and Build on it over time to become eventual replacement to e_parse.
 								 * Cameron's DOM-based parser.
 								 */
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								class e_parser
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								{
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								    /**
 								     * @var DOMDocument
 								     */
 								    public $domObj                = null;
 								    protected $removedList        = array();
 								    protected $nodesToDelete      = array();
 								    protected $nodesToConvert     = array();
 								    protected $pathList           = array();
 								    protected $allowedAttributes  = array(
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                                    'default'   => array('id', 'style', 'class'),
 								                                    'img'       => array('id', 'src', 'style', 'class', 'alt', 'title', 'width', 'height'),
-												Issue #283 target attribute is valid in html5

											
										
										
											2013-05-12 04:48:26 -07:00
+								                                    'a'         => array('id', 'href', 'style', 'class', 'title', 'target'),
-												Issue #450 - YouTube iframe arc attribute fix.

											
										
										
											2013-10-04 14:12:38 -07:00
+								                                    'script'	=> array('type', 'src', 'language'),
 								                                    'iframe'	=> array('id', 'src', 'frameborder', 'class', 'width', 'height', 'style')
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                                  );
 								    protected $badAttrValues     = array('javascript[\s]*?:','alert\(','vbscript[\s]*?:','data:text\/html', 'mhtml[\s]*?:', 'data:[\s]*?image');
 								    protected $replaceAttrValues = array(
 								        'default' => array()
 								    );
 								    protected $allowedTags        = array('html', 'body','div','a','img','table','tr', 'td', 'th', 'tbody', 'thead', 'colgroup', 'b',
-												added numbered list 'ol' to allowed tags.

											
										
										
											2014-06-27 23:11:51 -07:00
+								                                        'i', 'pre','code', 'strong', 'u', 'em','ul', 'ol', 'li','img','h1','h2','h3','h4','h5','h6','p',
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								                                        'div','pre','section','article', 'blockquote','hgroup','aside','figure','span', 'video', 'br',
-												Closes #283 whitelist <script> attributes and noscript tag (when script posting is enabled)

											
										
										
											2013-05-12 04:13:57 -07:00
+								                                        'small', 'caption', 'noscript'
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+								                                   );
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								    protected $scriptTags 		= array('script','applet','iframe'); //allowed when $pref['post_script'] is enabled.
-												Quick fix for trailing line-breaks on block-level elements.

											
										
										
											2013-06-14 16:26:56 -07:00
 									protected $blockTags		= array('pre','div','h1','h2','h3','h4','h5','h6','blockquote'); // element includes its own line-break.
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
 								    public function __construct()
 								    {
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
+										$this->init();
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								         /*
 								        $meths = get_class_methods('DomDocument');
 								        sort($meths);
 								        print_a($meths);
 								        */
 								    }
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
 								    /**
 								     * Used by e_parse to start
 								     */
 								    function init()
 								    {
 								        $this->domObj = new DOMDocument();
 								    }
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
 								    /**
 								     * Set Allowed Tags.
 								     * @param $array
 								     */
 								    public function setAllowedTags($array=array())
 								    {
 								        $this->allowedTags = $array;
 								    }
 								     /**
 								     * Set Allowed Attributes.
 								     * @param $array
 								     */
 								    public function setAllowedAttributes($array=array())
 								    {
 								        $this->allowedAttributes = $array;
 								    }
-												Forum upgrade fixes. Forum-attachments now converted in batches.

											
										
										
											2013-03-31 00:06:21 -07:00
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								     /**
 								     * Set Script Tags.
 								     * @param $array
 								     */
 								    public function setScriptTags($array=array())
 								    {
 								        $this->scriptTags = $array;
 								    }
-												Forum upgrade fixes. Forum-attachments now converted in batches.

											
										
										
											2013-03-31 00:06:21 -07:00
 									/**
 									 * Add leading zeros to a number. eg. 3 might become 000003
 									 * @param $num integer
 									 * @param $numDigits - total number of digits
 									 * @return number with leading zeros.
 									 */
 									public function leadingZeros($num,$numDigits)
 									{
 										return sprintf("%0".$numDigits."d",$num);
 									}
-												More language-file cleanup (sprintf removal)

											
										
										
											2013-10-29 18:41:02 -07:00
+									/**
-												Language file cleanup

											
										
										
											2013-10-29 12:20:23 -07:00
+									 * Generic variable translator for LAN definitions.
-												More language-file cleanup (sprintf removal)

											
										
										
											2013-10-29 18:41:02 -07:00
+									 * @param $lan - string LAN
 									 * @param $vals - either a single value, which will replace '[x]' or an array with key=>value pairs.
-												Language file cleanup

											
										
										
											2013-10-29 12:20:23 -07:00
+									 * @example $tp->lanVars("My name is [x] and I own a [y]", array('x'=>"John", 'y'=>"Cat"));
 									 */
-												More language-file cleanup (sprintf removal)

											
										
										
											2013-10-29 18:41:02 -07:00
+									function lanVars($lan, $vals, $bold=false)
-												Language file cleanup

											
										
										
											2013-10-29 12:20:23 -07:00
+									{
-												More language-file cleanup (sprintf removal)

											
										
										
											2013-10-29 18:41:02 -07:00
 										$array = (!is_array($vals)) ? array('x'=>$vals) : $vals;
-												Language file cleanup

											
										
										
											2013-10-29 12:20:23 -07:00
+										foreach($array as $k=>$v)
 										{
 											$search[] = "[".$k."]";
 											$replace[] = ($bold===true) ? "<strong>".$v."</strong>" : $v;
 										}
 										return str_replace($search, $replace, $lan);
 									}
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+									/**
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+									 * Return an Array of all specific tags found in an HTML document and their attributes.
 									 * @param $html - raw html code
 									 * @param $taglist - comma separated list of tags to search or '*' for all.
-												Modal styling and size fixes.

											
										
										
											2013-03-17 05:39:08 -07:00
+									 * @param $header - if the $html includes the html head or body tags - it should be set to true.
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+									 */
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+									public function getTags($html, $taglist='*', $header = false)
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+									{
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
 										if($header == false)
 										{
 											$html = "<html><body>".$html."</body></html>";
 										}
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										$doc = $this->domObj;
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
-												Better bootstrap detection.

											
										
										
											2013-03-19 19:05:58 -07:00
+										$doc->preserveWhiteSpace = true;
-												Warning removal

											
										
										
											2013-04-29 16:21:46 -07:00
+										libxml_use_internal_errors(true);
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+								        $doc->loadHTML($html);
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
 										$tg = explode(",", $taglist);
 										$ret = array();
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+										foreach($tg as $find)
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										{
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+									        $tmp = $doc->getElementsByTagName($find);
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+											foreach($tmp as $k=>$node)
 											{
 												$tag = $node->nodeName;
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+												$inner = $node->C14N();
 												 $inner = str_replace("&#xD;","",$inner);
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
 												foreach ($node->attributes as $attr)
 									            {
 													$name = $attr->nodeName;
 									           		$value = $attr->nodeValue;
 													$ret[$tag][$k][$name] = $value;
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+												}
 												$ret[$tag][$k]['@value'] = $inner;
-												parser and file-class fixes

											
										
										
											2013-03-06 01:24:04 -08:00
+											}
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										}
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+										if($header == false)
 										{
 											unset($ret['html'],$ret['body']);
 										}
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										return $ret;
 									}
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
+									/**
 									 * Parse xxxxx.glyph file to bootstrap glyph format.
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+									 * @param string $text
-												Corrected .glyph detection in toIcon() function.

											
										
										
											2014-01-22 06:12:54 -08:00
+									 * @param array of $parms
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
+									 */
-												Issue #435 - start of Bootstrap 3 core support. Enable by adding the following to your theme.php file:

define("BOOTSTRAP", 3);
define("FONTAWESOME", 4); // optional

e107::js("url", "//netdna.bootstrapcdn.com/bootstrap/3.0.3/js/bootstrap.min.js");
e107::css('url', '//netdna.bootstrapcdn.com/bootstrap/3.0.3/css/bootstrap.min.css');
e107::css('url', "//netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.min.css"); // optional

											
										
										
											2013-12-17 11:12:42 -08:00
+									public function toGlyph($text, $space=" ")
-												New {SETIMAGE} shortcode for theme developers. Using this prior to a media-manager image being called will allow one to set the default size for the image (ie. when not specified otherwise). eg. {SETIMAGE|w=293} will set the width of the images to 293px.

											
										
										
											2013-03-08 20:16:49 -08:00
+									{
-												PHP Notice removal

											
										
										
											2014-02-07 07:03:23 -08:00
+										if(!deftrue('BOOTSTRAP') || empty($text))
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
+										{
 											return false;
 										}
-												Issue #619 - media-manager icon issue on non-image files.

											
										
										
											2014-07-05 20:27:03 -07:00
-												GUI Glyph fixes and Bbcode button styling fixes.

											
										
										
											2014-01-17 06:49:55 -08:00
+										if(is_array($space))
 										{
 											$parm = $space;
 											$space = varset($parm['space'],'');
 										}
-												Issue #619 - media-manager icon issue on non-image files.

											
										
										
											2014-07-05 20:27:03 -07:00
+										elseif(strpos($space,'='))
 										{
 											parse_str($space,$parm);
 											$space = varset($parm['space'],'');
 										}
-												GUI Glyph fixes and Bbcode button styling fixes.

											
										
										
											2014-01-17 06:49:55 -08:00
+										else
 										{
 											$parm = array();
 										}
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										if(substr($text,0,2) == 'e-') 	// e107 admin icon.
 										{
 											$size = (substr($text,-3) == '-32') ? 'S32' : 'S16';
 											return "<i class='".$size." ".$text."'></i>";
 										}
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										// Get Glyph names.
-												Media-Manager fixes and enhancements. Glyphs are now searchable.

											
										
										
											2014-01-09 04:42:13 -08:00
+										$bs3 = e107::getMedia()->getGlyphs('bs3','');
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										$fa4 = e107::getMedia()->getGlyphs('fa4','');
-												PHP Notice removal

											
										
										
											2014-02-07 07:03:23 -08:00
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
-												PHP Notice removal

											
										
										
											2014-02-07 07:03:23 -08:00
+										list($cls) = explode('.glyph',$text,2);
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+									//	list($type, $tmp2) = explode("-",$text,2);
-												Bootstrap3 news and search-menu template fixes.
New thumb.php placeholder feature added.
New {GLYPH} shortcode added. Usage: {GLYPH=time}

											
										
										
											2013-12-31 09:59:19 -08:00
-												PHP Notice removal

											
										
										
											2014-02-07 07:03:23 -08:00
+									//	return $cls;
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										$removePrefix = array('glyphicon-','icon-','fa-');
-												Bootstrap3 news and search-menu template fixes.
New thumb.php placeholder feature added.
New {GLYPH} shortcode added. Usage: {GLYPH=time}

											
										
										
											2013-12-31 09:59:19 -08:00
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										$id = str_replace($removePrefix, "", $cls);
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
-												Fix for "Change theme" hover icons.

											
										
										
											2014-01-31 04:13:30 -08:00
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+									//	return print_r($fa4,true);
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										if(deftrue('FONTAWESOME') &&  in_array($id ,$fa4)) // Contains FontAwesome 3 set also.
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
+										{
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+											$prefix = 'fa fa-';
-												Fix for "Change theme" hover icons.

											
										
										
											2014-01-31 04:13:30 -08:00
+											$size 	= (vartrue($parm['size'])) ?  ' fa-'.$parm['size'] : '';
-												Fixes #558 - Font Awesome tag corrected.

											
										
										
											2014-05-13 19:45:01 -07:00
+											$tag 	= 'i';
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										}
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+										elseif(deftrue("BOOTSTRAP"))
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										{
-												Corrected processing of Glyph-types.

											
										
										
											2014-01-28 05:59:40 -08:00
+											if(BOOTSTRAP === 3 && in_array($id ,$bs3))
 											{
 												$prefix = 'glyphicon glyphicon-';
 												$tag = 'span';
 											}
 											else
 											{
 												$prefix = 'icon-';
 												$tag = 'i';
 											}
-												Issue #435 - start of Bootstrap 3 core support. Enable by adding the following to your theme.php file:

define("BOOTSTRAP", 3);
define("FONTAWESOME", 4); // optional

e107::js("url", "//netdna.bootstrapcdn.com/bootstrap/3.0.3/js/bootstrap.min.js");
e107::css('url', '//netdna.bootstrapcdn.com/bootstrap/3.0.3/css/bootstrap.min.css');
e107::css('url', "//netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.min.css"); // optional

											
										
										
											2013-12-17 11:12:42 -08:00
-												PHP Notice removal

											
										
										
											2014-02-07 07:03:23 -08:00
+											$size = '';
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
+										}
-												Fix for "Change theme" hover icons.

											
										
										
											2014-01-31 04:13:30 -08:00
+										$text = "<".$tag." class='".$prefix.$id.$size."'></".$tag.">" ;
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										$text .= ($space !== false) ? $space : "";
 										return $text;
-												Added support for bootstrap glyphs (see admin-> Site-links icon for example)

											
										
										
											2013-07-12 07:13:10 -07:00
 										//$text = preg_replace('/\[(i_[\w]*)\]/',"<i class='$1'></i>", $text);
 										// return $text;
-												New {SETIMAGE} shortcode for theme developers. Using this prior to a media-manager image being called will allow one to set the default size for the image (ie. when not specified otherwise). eg. {SETIMAGE|w=293} will set the width of the images to 293px.

											
										
										
											2013-03-08 20:16:49 -08:00
+									}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
 									/**
 									 * Render an avatar based on supplied user data or current user when missing.
 									 * @param @array  - user data from e107_user.
 									 * @return <img> tag of avatar.
 									 */
 									public function toAvatar($userData=null)
 									{
 										$tp 		= e107::getParser();
 										$width 		= $tp->thumbWidth;
 										$height 	= ($tp->thumbHeight !== 0) ? $tp->thumbHeight : "";
 										if(!isset($userData['user_image']) && USERID)
 										{
 											$userData['user_image']	= USERIMAGE;
 											$userData['user_name']	= USERNAME;
 										}
 										$image = varset($userData['user_image']);
 										$genericImg = $tp->thumbUrl(e_IMAGE."generic/blank_avatar.jpg","w=".$width."&h=".$height,true);
 										if (!empty($image))
 										{
 											if(strpos($image,"://")!==false) // Remove Image
 											{
 												$img = $image;
 											}
 											elseif(substr($image,0,8) == "-upload-")
 											{
 												$image = substr($image,8); // strip the -upload- from the beginning.
 												$img = (file_exists(e_AVATAR_UPLOAD.$image))  ? $tp->thumbUrl(e_AVATAR_UPLOAD.$image,"w=".$width."&h=".$height) : $genericImg;
 											}
 											elseif(file_exists(e_AVATAR_DEFAULT.$image))  // User-Uplaoded Image
 											{
 												$img =	$tp->thumbUrl(e_AVATAR_DEFAULT.$image,"w=".$width."&h=".$height);
 											}
 											else // Image Missing.
 											{
 												$img = $genericImg;
 											}
 										}
 										else // No image provided - so send generic.
 										{
 											$img = $genericImg;
 										}
 										$title = (ADMIN) ? $image : $tp->toAttribute($userData['user_name']);
-												Issue #408 Forum now uses font-awesome glyphs when using Bootstrap3 theme. Default Bootstrap template is now responsive for mobile devices etc.

											
										
										
											2015-03-28 14:10:28 -07:00
+										$text = "<img class='img-rounded img-responsive user-avatar e-tip' title=\"".$title."\" src='".$img."' alt='' style='width:".$width."px; height:".$height."px' />";
-												Issue #682 and other 'wrong avatar' issues in chatbox, online-menu etc. New $tp->toAvatar() method introduced.

											
										
										
											2015-02-04 20:36:56 -08:00
+									//	return $img;
 										return $text;
 									}
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
 									/**
 									 * Display an icon.
 									 * @param string $icon
 									 * @example $tp->toIcon("{e_IMAGES}icons/something.png");
 									 */
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+									public function toIcon($icon='',$parm = array())
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
+									{
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
+										if(!vartrue($icon))
 										{
 											return;
 										}
-												Better BC fix for sitelink images.

											
										
										
											2014-05-31 16:10:54 -07:00
-												Corrected outdated icon paths

											
										
										
											2014-01-22 06:10:44 -08:00
+										$ext = pathinfo($icon, PATHINFO_EXTENSION);
-												Better BC fix for sitelink images.

											
										
										
											2014-05-31 16:10:54 -07:00
-												Corrected .glyph detection in toIcon() function.

											
										
										
											2014-01-22 06:12:54 -08:00
+										if(!$ext || $ext == 'glyph') // Bootstrap or Font-Awesome.
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+										{
-												GUI Glyph fixes and Bbcode button styling fixes.

											
										
										
											2014-01-17 06:49:55 -08:00
+											return $this->toGlyph($icon,$parm);
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+										}
-												Book and Chapter SEF Url support added.

											
										
										
											2014-01-04 10:14:38 -08:00
 										if(strpos($icon,'e_MEDIA')!==FALSE)
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+										{
-												Allow Custom Menu-Images to be used in page-navigation template.

											
										
										
											2014-01-04 06:02:24 -08:00
+											$path = $this->thumbUrl($icon);
-												Book and Chapter SEF Url support added.

											
										
										
											2014-01-04 10:14:38 -08:00
+										}
 										elseif($icon[0] == '{')
 										{
 											$path = $this->replaceConstants($icon,'full');
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+										}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+										elseif(vartrue($parm['legacy']))
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+										{
-												Better BC fix for sitelink images.

											
										
										
											2014-05-31 16:10:54 -07:00
 											$legacyPath = $parm['legacy'].$icon;
 											$filePath = $this->replaceConstants($legacyPath,'rel');
 											if(is_readable($filePath))
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+											{
-												Better BC fix for sitelink images.

											
										
										
											2014-05-31 16:10:54 -07:00
+												$path = $this->replaceConstants($legacyPath,'full');
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+											}
-												Log missing legacy icons

											
										
										
											2014-01-15 04:06:14 -08:00
+											else
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+											{
-												Log missing legacy icons

											
										
										
											2014-01-15 04:06:14 -08:00
+												$log = e107::getAdminLog();
-												Replaced deprecated get_user_data() with e107::user()

											
										
										
											2015-01-26 18:03:14 -08:00
+												$log->addDebug('Broken Icon Path: '.$legacyPath."\n".print_r(debug_backtrace(null,2), true), false)->save('IMALAN_00');
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
+											}
 										}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+										else
 										{
 											$path = $icon;
 										}
-												Better BC fix for sitelink images.

											
										
										
											2014-05-31 16:10:54 -07:00
-												Fixes #466 Download Category Icons path.

											
										
										
											2013-12-30 03:56:27 -08:00
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
+										return "<img class='icon' src='".$path."' alt='".basename($path)."'  />";
 									}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
-												Improved control over news images and video. Separate css classes added for each. eg. news-image-1 , news-video-3

											
										
										
											2014-02-04 06:21:05 -08:00
+									/**
 									 * Check if a file is an video or not.
 									 * @param $file string
 									 * @return boolean
 									 */
 									function isVideo($file)
 									{
 										$ext = pathinfo($file,PATHINFO_EXTENSION);
-												Youtube browser now supports searching by video and playlist ids. eg. video:_j0b9syAuIk

											
										
										
											2015-03-31 14:48:07 -07:00
+										return ($ext == 'youtube' || $ext == 'youtubepl') ? true : false;
-												Improved control over news images and video. Separate css classes added for each. eg. news-image-1 , news-video-3

											
										
										
											2014-02-04 06:21:05 -08:00
 									}
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+									/**
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+									 * Display a Video file.
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+									 * @param string $file - format: id.type eg. x123dkax.youtube
 									 * @param boolean $thumbnail  - set to 'tag' to return an image thumbnail and 'src' to return the src url or 'video' for a small video thumbnail.
 									 */
 									function toVideo($file, $parm=array())
 									{
 										list($id,$type) = explode(".",$file,2);
 										$thumb = vartrue($parm['thumb']);
-												Media-Manager Youtube video default prefs added.

											
										
										
											2014-03-12 14:09:48 -07:00
 										$pref = e107::getPref();
 										$ytpref = array();
 										foreach($pref as $k=>$v) // Find all Youtube Prefs.
 										{
 											if(substr($k,0,8) == 'youtube_')
 											{
 												$key = substr($k,8);
 												$ytpref[$key] = $v;
 											}
 										}
 										$ytqry = http_build_query($ytpref);
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+										if($type == 'youtube')
-												Improved control over news images and video. Separate css classes added for each. eg. news-image-1 , news-video-3

											
										
										
											2014-02-04 06:21:05 -08:00
+										{
-												Media-Manager Youtube video default prefs added.

											
										
										
											2014-03-12 14:09:48 -07:00
+											$video =  '<iframe width="560" height="315" src="//www.youtube.com/embed/'.$id.'?'.$ytqry.'" style="border:0px" allowfullscreen></iframe>';
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+											$thumbSrc = "https://i1.ytimg.com/vi/".$id."/0.jpg";
 											if($thumb == 'tag')
 											{
-												Multiple Image/Video fix for news_carousel_menu.php

											
										
										
											2014-01-31 07:09:34 -08:00
+												return "<img class='img-responsive' src='".$thumbSrc."' alt='Youtube Video' style='width:".vartrue($parm['w'],'80')."px'/>";
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+											}
-												Added support for embedded mail media in mailouts.

											
										
										
											2014-10-18 15:00:40 -07:00
+											if($thumb == 'email')
 											{
 												$thumbSrc = "http://i1.ytimg.com/vi/".$id."/maxresdefault.jpg"; // 640 x 480
 												$filename = 'temp/yt-thumb-'.md5($id).".jpg";
 												$filepath = e_MEDIA.$filename;
 												$url 	= 'http://youtu.be/'.$id;
 												if(!file_exists($filepath))
 												{
 													e107::getFile()->getRemoteFile($thumbSrc, $filename,'media');
 												}
-												Mailout bounce handling fixes.

											
										
										
											2014-10-22 17:58:20 -07:00
+												return "<a href='".$url."'><img class='video-responsive video-thumbnail' src='{e_MEDIA}".$filename."' alt='Youtube Video' title='Click to view on Youtube' />
-												Admin->mailout embedded video thumbnail styling.

											
										
										
											2014-10-19 14:44:41 -07:00
+												<div class='video-thumbnail-caption'><small>Click to watch video</small></div></a>";
-												Added support for embedded mail media in mailouts.

											
										
										
											2014-10-18 15:00:40 -07:00
+											}
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+											if($thumb == 'src')
 											{
 												return $thumbSrc;
 											}
 											if($thumb == 'video')
 											{
 												return '<div class="video-responsive video-thumbnail thumbnail">'.$video.'</div>';
 											}
-												Improved control over news images and video. Separate css classes added for each. eg. news-image-1 , news-video-3

											
										
										
											2014-02-04 06:21:05 -08:00
+											return '<div class="video-responsive '.vartrue($parm['class']).'">'.$video.'</div>';
-												Youtube browser now supports searching by video and playlist ids. eg. video:_j0b9syAuIk

											
										
										
											2015-03-31 14:48:07 -07:00
+										}
 										if($type =='youtubepl')
 										{
 											if($thumb == 'tag')
 											{
 												$thumbSrc =  e107::getMedia()->getThumb($id);
 												return "<img class='img-responsive' src='".$thumbSrc."' alt='Youtube Video Playlist' style='width:".vartrue($parm['w'],'80')."px'/>";
 											}
 											if($thumb == 'src')
 											{
 												return e107::getMedia()->getThumb($id);
 											}
 											$video = '<iframe width="560" height="315" src="https://www.youtube.com/embed/videoseries?list='.$id.'" frameborder="0" allowfullscreen></iframe>';
 											return '<div class="video-responsive '.vartrue($parm['class']).'">'.$video.'</div>';
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+										}
-												Improved control over news images and video. Separate css classes added for each. eg. news-image-1 , news-video-3

											
										
										
											2014-02-04 06:21:05 -08:00
-												New SEF-URL for book/chapter/page (a few bugs remain)

											
										
										
											2014-01-10 18:27:42 -08:00
+										if($type == 'mp4') //TODO FIXME
 										{
 											return '
 											<div class="video-responsive">
 											<video width="320" height="240" controls>
 											  <source src="movie.mp4" type="video/mp4">
 											  Your browser does not support the video tag.
 											</video>
 											</div>';
 										}
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
+										return false;
 									}
-												Fix for Icon paths.

											
										
										
											2014-01-15 04:02:05 -08:00
+									/**
 									 * Display a Date in the browser.
 									 * Includes support for 'livestamp' (http://mattbradley.github.io/livestampjs/)
 									 * @param integer $datestamp - unix timestamp
 									 * @param string $format - short | long | relative
 									 * @return HTML with converted date.
 									 */
 									public function toDate($datestamp = null, $format='short')
 									{
 										if(!is_numeric($datestamp)){ return; }
 										return '<span data-livestamp="'.$datestamp.'">'.e107::getDate()->convert($datestamp, $format).'</span>';
 									}
-												Media-Manager Youtube browser added.

											
										
										
											2014-01-08 15:51:14 -08:00
-												Fix for font-awesome overlay issue. Renamed glyph() as toGlyph() for consistency.

											
										
										
											2013-07-12 13:52:39 -07:00
-												Wysiwyg bbcode-selection and introduction of <bbcode> tag for conversion of bbcodes within html.

											
										
										
											2013-03-18 22:14:05 -07:00
+									/**
 									 * Parse new <bbcode> tags into bbcode output.
 									 * @param $retainTags : when you want to replace html and retain the <bbcode> tags wrapping it.
 									 * @return html
 									 */
 									function parseBBTags($text,$retainTags = false)
 									{
 										$bbcodes = $this->getTags($text, 'bbcode');
 										foreach($bbcodes as $v)
 										{
 											foreach($v as $val)
 											{
 												$tag = urldecode($val['alt']);
 												$repl = ($retainTags == true) ? '$1'.$tag.'$2' : $tag;
 												$text = preg_replace('/(<bbcode[^>]*>).*(<\/bbcode>)/s',$repl, $text); //FIXME - handle multiple instances of bbcodes.
 											}
 										}
 										return $text;
 									}
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    /**
 								     * Perform and render XSS Test Comparison
 								     */
 								    public function test()
 								    {
-												New parser extends existing one.

											
										
										
											2013-03-01 03:46:15 -08:00
+								      //  $tp = e107::getParser();
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        $sql = e107::getDb();
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        $tp = e107::getParser();
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
 								        $html = $this->getXss();
 								        echo "<h2>Unprocessed XSS</h2>";
 								        // echo $html; // Remove Comment for a real mess!
 								        print_a($html);
 								        echo "<h2>Standard v2 Parser</h2>";
 								        echo "<h3>\$tp->dataFilter()</h3>";
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								        // echo $tp->dataFilter($html); // Remove Comment for a real mess!
 								        $sql->db_Mark_Time('------ Start Parser Test -------');
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        print_a($tp->dataFilter($html));
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        $sql->db_Mark_Time('tp->dataFilter');
 								        echo "<h3>\$tp->toHtml()</h3>";
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								        // echo $tp->dataFilter($html); // Remove Comment for a real mess!
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        print_a($tp->toHTML($html));
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        $sql->db_Mark_Time('tp->toHtml');
 								        echo "<h3>\$tp->toDB()</h3>";
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								        // echo $tp->dataFilter($html); // Remove Comment for a real mess!
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        print_a($tp->toDB($html));
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        $sql->db_Mark_Time('tp->toDB');
 								        echo "<h2>New Parser</h2>";
 								        echo "<h3>Processed</h3>";
 								        $cleaned = $this->cleanHtml($html);
 								        print_a($cleaned);
 								        $sql->db_Mark_Time('new Parser');
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								      //  $sql->db_Mark_Time('------ End Parser Test -------');
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        echo "<h3>Processed &amp; Rendered</h3>";
 								        echo $cleaned;
 								        echo "<h2>New Parser - Data</h2>";
 								        echo "<h3>Converted Paths</h3>";
 								        print_a($this->pathList);
 								        echo "<h3>Removed Tags and Attributes</h3>";
 								        print_a($this->removedList);
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								         //   print_a($p);
 								    }
 								    /**
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								     * Process and clean HTML from user input.
 								     * TODO Html5 tag support.
 								     * @param string $html raw HTML
 								     * @param boolean $checkPref
 								     * @return string
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								     */
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								    public function cleanHtml($html='', $checkPref = true)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    {
-												PHP Notice removal

											
										
										
											2015-03-07 16:31:13 -08:00
+								        if(empty($html)){ return ''; }
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
 								   //     $html = mb_convert_encoding($html, 'UTF-8');
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+								        if(preg_match("/<body/i",$html)!==true) // HTML Fragment
 										{
 								       		$html = '<?xml version="1.0" encoding="utf-8"?><!DOCTYPE html><html><head><meta charset="utf-8"></head><body>'.$html.'</body></html>';
 										}
 										else  // Full HTML page.
 										{
 										//	$this->allowedTags[] = 'head';
 										//	$this->allowedTags[] = 'body';
 										//	$this->allowedTags[] = 'title';
 											//$this->allowedTags[] = 'meta';
 										}
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										if(!is_object($this->domObj))
 										{
 											$this->init();
 										}
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
 								        if($checkPref)
 								        {
 								            $post_scripts = e107::getConfig()->get('post_script', e_UC_MAINADMIN); // Pref to Allow <script> tags
 								            if(check_class($post_scripts))
 								            {
 								                $this->allowedTags = array_merge($this->allowedTags,$this->scriptTags);
 								            }
 								        }
-												Clean toDB() handling of post_html and post_script preferences and abuse filtering.

											
										
										
											2013-04-30 02:57:33 -07:00
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
+								        // Set it up for processing.
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        $doc  = $this->domObj;
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+								        @$doc->loadHTML($html);
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								        $doc->encoding = 'UTF-8'; //FIXME
 								     //   $doc->resolveExternals = true;
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
+								    //    $tmp = $doc->getElementsByTagName('*');
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
 								       	$this->nodesToConvert 	= array(); // required.
 										$this->nodesToDelete 	= array(); // required.
 										$this->removedList		= array();
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+										$tmp = $doc->getElementsByTagName('*');
 								        /** @var DOMElement $node */
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        foreach($tmp as $node)
 								        {
 								            $path = $node->getNodePath();
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
-												Parser improvements.

											
										
										
											2013-03-05 23:46:51 -08:00
+										//	echo "<br />Path = ".$path;
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								         //   $tag = strval(basename($path));
 								            $tag = preg_replace('/([a-z0-9\[\]\/]*)?\/([\w]*)(\[(\d)*\])?$/i', "$2", $path);
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								            if(!in_array($tag, $this->allowedTags))
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            {
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                 if(strpos($path,'/code/') !== false || strpos($path,'/pre/') !== false) //  treat as html.
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								                 {
 								                    $this->pathList[] = $path;
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                    $this->nodesToConvert[] =  $node->parentNode; // $node;
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								                    continue;
 								                 }
 								                $this->removedList['tags'][] = $tag;
 								                $this->nodesToDelete[] = $node;
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                continue;
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            }
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            foreach ($node->attributes as $attr)
 								            {
 								                $name = $attr->nodeName;
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                $value = $attr->nodeValue;
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                $allow = varset($this->allowedAttributes[$tag], $this->allowedAttributes['default']);
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                $removeAttributes = array();
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                if(!in_array($name, $allow))
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								                {
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                    $removeAttributes[] = $name;
 								                    //$node->removeAttribute($name);
 								                    $this->removedList['attributes'][] = $name. " from <".$tag.">";
 								                    continue;
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								                }
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
 								                if($this->invalidAttributeValue($value)) // Check value against blacklisted values.
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                {
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+													//$node->removeAttribute($name);
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								                    $node->setAttribute($name, '#---sanitized---#');
 													$this->removedList['sanitized'][] = $tag.'['.$name.']';
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								                }
 								                else
 								                {
 								                    $_value = $this->secureAttributeValue($name, $value);
 								                    $node->setAttribute($name, $_value);
 								                    if($_value !== $value)
 								                    {
 								                        $this->removedList['sanitized'][] = $tag.'['.$name.'] converted "'.$value.'" -> "'.$_value.'"';
 								                    }
 								                }
 								            }
 								            // required - removing attributes in a loop breaks the loop
-												PHP Notice removal

											
										
										
											2015-03-07 16:31:13 -08:00
+								            if(!empty($removeAttributes))
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								            {
-												PHP Notice removal

											
										
										
											2015-03-07 16:31:13 -08:00
+									            foreach ($removeAttributes as $name)
 									            {
 									                $node->removeAttribute($name);
 									            }
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								            }
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        }
 								        // Remove some stuff.
 								        foreach($this->nodesToDelete as $node)
 								        {
 								            $node->parentNode->removeChild($node);
 								        }
 								        // Convert <code> and <pre> Tags to Htmlentities.
-												Tiny syntax fix

											
										
										
											2013-03-01 18:22:27 -08:00
+								        foreach($this->nodesToConvert as $node)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        {
 								            $value = $node->C14N();
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            $value = str_replace("&#xD;","",$value);
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
 								            if($node->nodeName == 'pre')
 								            {
 								                $value = substr($value,5);
 								                $end = strrpos($value,"</pre>");
 								                $value = substr($value,0,$end);
 								            }
 								            if($node->nodeName == 'code')
 								            {
 								                $value = substr($value,6);
 								                $end = strrpos($value,"</code>");
 								                $value = substr($value,0,$end);
 								            }
 								            $value = htmlentities(htmlentities($value)); // Needed
 								            $node->nodeValue = $value;
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								        }
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        $cleaned = $doc->saveHTML();
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								        $cleaned = str_replace(array('<body>','</body>','<html>','</html>','<!DOCTYPE html>','<meta charset="UTF-8">','<?xml version="1.0" encoding="utf-8"?>'),'',$cleaned); // filter out tags.
 								        $cleaned = html_entity_decode($cleaned, ENT_QUOTES, 'UTF-8');
-												FIX #411 - Sitedisclaimer issue

Sitedisclaimer issue #411

											
										
										
											2014-03-13 00:31:54 +01:00
+								        return trim($cleaned);
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    }
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
 								    public function secureAttributeValue($attribute, $value)
 								    {
 								        $search = isset($this->replaceAttrValues[$attribute]) ? $this->replaceAttrValues[$attribute] : $this->replaceAttrValues['default'];
 								        if(!empty($search))
 								        {
 								            $value = str_replace($search, '', $value);
 								        }
 								        return $value;
 								    }
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
 								    /**
 								     * Check for Invalid Attribute Values
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								     * @param $value string
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								     * @return true/false
 								     */
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								    function invalidAttributeValue($value)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								    {
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								        foreach($this->badAttrValues as $v) // global list because a bad value is bad regardless of the attribute it's in. ;-)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								        {
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+								            if(preg_match('/'.$v.'/i',$value)==true)
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								            {
-												New parser is able to secure attribute values, attributes loop bugfix; e_parser made available for auto-loading

											
										
										
											2014-06-09 21:45:40 +03:00
+												$this->removedList['blacklist'][]	= "Match found for '{$v}' in '{$value}'";
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								                return true;
 								            }
 								        }
 								        return false;
 								    }
 								    /**
 								     * XSS HTML code to test against
 								     */
 								    private function getXss()
 								    {
 								$html = <<<EOF
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								Internationalization Test:
 								ภาษาไทย <br />
 								日本語 <br />
 								简体中文 <br />
 								<a href='somewhere.html' src='invalidatrribute' >Test</a>
-												Fixes for the new parser.

											
										
										
											2013-03-05 15:13:16 -08:00
+								A GOOD LINK: <a href='http://mylink.php'>Some Link</a>
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
+								<a href='javascript: something' src='invalidatrribute' >Test regex</a>
 								<img href='invalidattribute' src='myimage.jpg' />
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								<frameset onload=alert(1) data-something=where>
 								<table background="javascript:alert(1)"><tr><td><a href="something.php" onclick="alert(1)">Hi there</a></td></tr></table>
 								<div>
 								<!--<img src="--><img src=x onerror=alert(1)//">
 								<comment><img src="</comment><img src=x onerror=alert(1)//">
 								<ul>
 								<li style=list-style:url() onerror=alert(1)></li> <div style=content:url(data:image/svg+xml,%3Csvg/%3E);visibility:hidden onload=alert(1)></div>
 								</ul>
 								</div>
 								</frameset>
 								<head><base href="javascript://"/></head><body><a href="/. /,alert(1)//#">XXX</a></body>
 								<SCRIPT FOR=document EVENT=onreadystatechange>alert(1)</SCRIPT>
 								<OBJECT CLASSID="clsid:333C7BC4-460F-11D0-BC04-0080C7055A83"><PARAM NAME="DataURL" VALUE="javascript:alert(1)"></OBJECT>
 								<b <script>alert(1)//</script>0</script></b>
 								<div id="div1"><input value="``onmouseover=alert(1)"></div> <div id="div2"></div><
 								script>document.getElementById("div2").innerHTML = document.getElementById("div1").innerHTML;</script>
 								Some example text<br />
 								<b>This is bold</b><br />
 								<i>This is italic</i><br />
 								<small>Some small text</small>
 								<pre>This is pre-formatted
 								        <script>alert('something')</script>
 								        <b>Bold Stuff</b>
 								        <pre>something</pre>
 								        <code>code</code>
 								        <b>BOLD</b>
 								        function myfunction()
 								        {
 								        }
 								 </pre>
 								<code>
 								        function myfunction()
 								        {
 								        }
 								<script>alert('something')</script>
 								</code>
-												Performance improvements of output parser, few test cases added
											
										
										
											2013-03-01 17:24:33 +02:00
+								<svg><![CDATA[><image xlink:href="]]><img src=xx:x onerror=alert(2)//"></svg>
 								<style><img src="</style><img src=x onerror=alert(1)//">
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								<x '="foo"><x foo='><img src=x onerror=alert(1)//'> <!-- IE 6-9 --> <! '="foo"><x foo='><img src=x onerror=alert(2)//'> <? '="foo"><x foo='><img src=x onerror=alert(3)//'>
 								<embed src="javascript:alert(1)"></embed> // O10.10↓, OM10.0↓, GC6↓, FF <img src="javascript:alert(2)"> <image src="javascript:alert(2)"> // IE6, O10.10↓, OM10.0↓ <script src="javascript:alert(3)"></script> // IE6, O11.01↓, OM10.1↓
 								<div style=width:1px;filter:glow onfilterchange=alert(1)>x</div>
 								<object allowscriptaccess="always" data="test.swf"></object>
 								[A] <? foo="><script>alert(1)</script>"> <! foo="><script>alert(1)</script>"> </ foo="><script>alert(1)</script>"> [B] <? foo="><x foo='?><script>alert(1)</script>'>"> [C] <! foo="[[[x]]"><x foo="]foo><script>alert(1)</script>"> [D] <% foo><x foo="%><script>alert(1)</script>">
 								<iframe src=mhtml:http://html5sec.org/test.html!xss.html></iframe> <iframe src=mhtml:http://html5sec.org/test.gif!xss.html></iframe>
 								<html> <body> <b>some content without two new line \n\n</b> Content-Type: multipart/related; boundary="******"<b>some content without two new line</b> --****** Content-Location: xss.html Content-Transfer-Encoding: base64 PGlmcmFtZSBuYW1lPWxvIHN0eWxlPWRpc3BsYXk6bm9uZT48L2lmcmFtZT4NCjxzY3JpcHQ+DQp1 cmw9bG9jYXRpb24uaHJlZjtkb2N1bWVudC5nZXRFbGVtZW50c0J5TmFtZSgnbG8nKVswXS5zcmM9 dXJsLnN1YnN0cmluZyg2LHVybC5pbmRleE9mKCcvJywxNSkpO3NldFRpbWVvdXQoImFsZXJ0KGZy YW1lc1snbG8nXS5kb2N1bWVudC5jb29raWUpIiwyMDAwKTsNCjwvc2NyaXB0PiAgICAg --******-- </body> </html>
 								<!-- IE 5-9 --> <div id=d><x xmlns="><iframe onload=alert(1)"></div> <script>d.innerHTML+='';</script> <!-- IE 10 in IE5-9 Standards mode --> <div id=d><x xmlns='"><iframe onload=alert(2)//'></div> <script>d.innerHTML+='';</script>
 								<img[a][b]src=x[d]onerror[c]=[e]"alert(1)">
 								<a href="[a]java[b]script[c]:alert(1)">XXX</a>
 								<img src="x` `<script>alert(1)</script>"` `>
 								<img src onerror /" '"= alt=alert(1)//">
 								<title onpropertychange=alert(1)></title><title title=></title>
 								<!-- IE 5-8 standards mode --> <a href=http://foo.bar/#x=`y></a><img alt="`><img src=xx:x onerror=alert(1)></a>"> <!-- IE 5-9 standards mode --> <!a foo=x=`y><img alt="`><img src=xx:x onerror=alert(2)//"> <?a foo=x=`y><img alt="`><img src=xx:x onerror=alert(3)//">
 								<!--[if]><script>alert(1)</script --> <!--[if<img src=x onerror=alert(2)//]> -->
 								<script> Blabla </script>
 								<script src="/\example.com\foo.js"></script> // Safari 5.0, Chrome 9, 10 <script src="\\example.com\foo.js"></script> // Safari 5.0
 								<object id="x" classid="clsid:CB927D12-4FF7-4a9e-A169-56E4B8A75598"></object> <object classid="clsid:02BF25D5-8C17-4B23-BC80-D3488ABDDC6B" onqt_error="alert(1)" style="behavior:url(#x);"><param name=postdomevents /></object>
 								<!-- `<img/src=xx:xx onerror=alert(1)//--!>
 								<xmp> <% </xmp> <img alt='%></xmp><img src=xx:x onerror=alert(1)//'> <script> x='<%' </script> %>/ alert(2) </script> XXX <style> *['<!--']{} </style> -->{} *{color:red}</style>
 								<a style="-o-link:'javascript:alert(1)';-o-link-source:current">X</a>
 								<style>p[foo=bar{}*{-o-link:'javascript:alert(1)'}{}*{-o-link-source:current}*{background:red}]{background:green};</style>
 								<div style="font-family:'foo[a];color:red;';">XXX</div>
 								<form id="test"></form><button form="test" formaction="javascript:alert(1)">X</button>
 								<input onfocus=write(1) autofocus>
 								<video poster=javascript:alert(1)//></video>
-												New parser extends existing one.

											
										
										
											2013-03-01 03:46:15 -08:00
+								<video>somemovei.mp4</video>
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								<body onscroll=alert(1)><br><br><br><br><br><br>...<br><br><br><br><input autofocus>
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												New parser extends existing one.

											
										
										
											2013-03-01 03:46:15 -08:00
+								<article id="something">Some text goes here</article>
-												Corrected <code> and <pre> handling. Added utf-8 support. Added attribute white-list per tag.

											
										
										
											2013-03-01 18:17:03 -08:00
-												First draft of new text/html parser

											
										
										
											2013-03-01 00:19:53 -08:00
+								EOF;
 								return $html;
 								    }
 								}
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
 								class e_emotefilter {
 									var $search;
 									var $replace;
 									var $emotes;
 									function e_emotefilter() /* constructor */
 									{
 										$pref = e107::getPref();
 										if(!$pref['emotepack'])
 										{
 											$pref['emotepack'] = "default";
 											save_prefs();
 										}
 										$this->emotes = e107::getConfig("emote")->getPref();
 										if(!vartrue($this->emotes))
 										{
 											return;
 										}
 										foreach($this->emotes as $key => $value)
 										{
 										  $value = trim($value);
 										  if ($value)
 										  {	// Only 'activate' emote if there's a substitution string set
 											$key = preg_replace("#!(\w{3,}?)$#si", ".\\1", $key);
 											// Next two probably to sort out legacy issues - may not be required any more
 											$key = preg_replace("#_(\w{3})$#", ".\\1", $key);
 											$key = str_replace("!", "_", $key);
 											  $filename = e_IMAGE."emotes/" . $pref['emotepack'] . "/" . $key;
 											  $fileloc = SITEURLBASE.e_IMAGE_ABS."emotes/" . $pref['emotepack'] . "/" . $key;
 											  if(file_exists($filename))
 											  {
 												if(strstr($value, " "))
 												{
 													$tmp = explode(" ", $value);
 													foreach($tmp as $code)
 													{
 														$this->search[] = " ".$code;
 														$this->search[] = "\n".$code;
 														//TODO CSS class?
 														$this->replace[] = " <img src='".$fileloc."' alt='' style='vertical-align:middle; border:0' /> ";
 														$this->replace[] = "\n <img src='".$fileloc."' alt='' style='vertical-align:middle; border:0' /> ";
 													}
 													unset($tmp);
 												}
 												else
 												{
 													if($value)
 													{
 														$this->search[] = " ".$value;
 														$this->search[] = "\n".$value;
 														//TODO CSS class?
-												Issue #899 - path fix for emoticons.

											
										
										
											2015-02-21 13:20:41 -08:00
+														$this->replace[] = " <img src='".$fileloc."' alt='' style='vertical-align:middle; border:0' /> ";
 														$this->replace[] = "\n <img src='".$fileloc."' alt='' style='vertical-align:middle; border:0' /> ";
-												Consolidate parsing classes into single file.

											
										
										
											2013-05-20 17:10:38 -07:00
+													}
 												}
 											  }
 										  }
 										  else
 										  {
 											unset($this->emotes[$key]);
 										  }
 										}
 									}
 									function filterEmotes($text)
 									{
 										$text = str_replace($this->search, $this->replace, $text);
 										return $text;
 									}
 									function filterEmotesRev($text)
 									{
 										$text = str_replace($this->replace, $this->search, $text);
 										return $text;
 									}
 								}
 								class e_profanityFilter
 								{
 									var $profanityList;
 									function e_profanityFilter()
 									{
 										global $pref;
 										$words = explode(",", $pref['profanity_words']);
 								        $word_array = array();
 										foreach($words as $word)
 										{
 											$word = trim($word);
 											if($word != "")
 											{
 												$word_array[] = $word;
 												if (strpos($word, '&#036;') !== FALSE)
 												{
 													$word_array[] = str_replace('&#036;', '\$', $word);		// Special case - '$' may be 'in clear' or as entity
 												}
 											}
 										}
 										if(count($word_array))
 										{
 											$this->profanityList = str_replace('#','\#',implode("\b|\b", $word_array));		// We can get entities in the string - confuse the regex delimiters
 										}
 										unset($words);
 										return TRUE;
 									}
 									function filterProfanities($text)
 									{
 										global $pref;
 										if (!$this->profanityList)
 										{
 											return $text;
 										}
 										if ($pref['profanity_replace'])
 										{
 											return preg_replace("#\b".$this->profanityList."\b#is", $pref['profanity_replace'], $text);
 										}
 										else
 										{
 											return preg_replace_callback("#\b".$this->profanityList."\b#is", array($this, 'replaceProfanities'), $text);
 										}
 									}
 									function replaceProfanities($matches)
 									{
 										/*!
 										@function replaceProfanities callback
 										@abstract replaces vowels in profanity words with stars
 										@param text string - text string to be filtered
 										@result filtered text
 										*/
 										return preg_replace("#a|e|i|o|u#i", "*" , $matches[0]);
 									}
 								}