mirror of
https://github.com/e107inc/e107.git
synced 2025-01-17 20:58:30 +01:00
265 lines
7.0 KiB
PHP
265 lines
7.0 KiB
PHP
<?php
|
|
/*
|
|
+ ----------------------------------------------------------------------------+
|
|
| e107 website system
|
|
|
|
|
| Copyright (C) 2001-2002 Steve Dunstan (jalist@e107.org)
|
|
| Copyright (C) 2008-2010 e107 Inc (e107.org)
|
|
|
|
|
|
|
|
| Released under the terms and conditions of the
|
|
| GNU General Public License (http://gnu.org).
|
|
|
|
|
| $URL: https://e107.svn.sourceforge.net/svnroot/e107/trunk/e107_0.7/e107_handlers/emote.php $
|
|
| $Revision: 11678 $
|
|
| $Id: emote.php 11678 2010-08-22 00:43:45Z e107coders $
|
|
| $Author: e107coders $
|
|
+----------------------------------------------------------------------------+
|
|
*/
|
|
|
|
if (!defined('e107_INIT')) { exit; }
|
|
|
|
/**
|
|
* Youtube handling
|
|
*
|
|
* [youtube=tiny|small|medium|big|huge or width,height|nofull&norel&border&privacy&hd]ID[/youtube]
|
|
* Youtube ID is the only required data!
|
|
* TODO - use swfobject JS - XHTML validation
|
|
*/
|
|
|
|
/**
|
|
* Class-based bbcode validation
|
|
*
|
|
* Class name must be 'bb_'.bbname - where bbname is the name of the bbcode. (Note some bbcodes begin '_', and this is retained)
|
|
*
|
|
* This class must contain exactly two public methods:
|
|
* toDB($code_text, $parm) - called prior to text being saved
|
|
* toHTML($code_text, $parm) - called prior to text being displayed
|
|
*/
|
|
|
|
class bb_youtube extends e_bb_base
|
|
{
|
|
|
|
/**
|
|
* Called prior to save
|
|
*
|
|
* If user has posted the complete youtube 'copy and paste' text between the tags, parse it and generate the relevant bbcode
|
|
*/
|
|
function toDB($code_text, $parm)
|
|
{
|
|
$bbpars = array();
|
|
$widthString = '';
|
|
$parm = trim($parm);
|
|
if ($parm)
|
|
{
|
|
if (strpos($parm, '|') !== FALSE)
|
|
{
|
|
list($widthString, $parm) = explode('|', $parm);
|
|
}
|
|
elseif (in_array($parm, array('tiny', 'small', 'medium', 'big', 'huge')) || (strpos($parm, ',') !== FALSE))
|
|
{ // Assume we're just setting a width
|
|
$widthString = $parm;
|
|
$parm = '';
|
|
}
|
|
if ($parm)
|
|
{
|
|
$bbpars = explode('&', $parm);
|
|
}
|
|
}
|
|
$params = array(); // Accumulator for parameters from youtube code
|
|
$ok = 0;
|
|
if (strpos($code_text, '<') === FALSE)
|
|
{ // 'Properly defined' bbcode (we hope)
|
|
$picRef = $code_text;
|
|
}
|
|
else
|
|
{
|
|
//libxml_use_internal_errors(TRUE);
|
|
if (FALSE === ($info = simplexml_load_string($code_text)))
|
|
{
|
|
//print_a($matches);
|
|
//$xmlErrs = libxml_get_errors();
|
|
//print_a($xmlErrs);
|
|
$ok = 1;
|
|
}
|
|
else
|
|
{
|
|
$info1 = (array)$info;
|
|
if (!isset($info1['embed']))
|
|
{
|
|
$ok = 2;
|
|
}
|
|
else
|
|
{
|
|
$info2 = (array)$info1['embed'];
|
|
if (!isset($info2['@attributes']))
|
|
{
|
|
$ok = 3;
|
|
}
|
|
}
|
|
}
|
|
if ($ok != 0)
|
|
{
|
|
print_a($info);
|
|
return '[sanitised]'.$ok.'B'.htmlspecialchars($matches[0]).'B[/sanitised]';
|
|
}
|
|
$target = (array)$info2['@attributes'];
|
|
unset($info);
|
|
$ws = varset($target['width'], 0);
|
|
$hs = varset($target['height'], 0);
|
|
if (($ws == 0) || ($hs == 0) || !isset($target['src'])) return '[sanitised]A'.htmlspecialchars($matches[0]).'A[/sanitised]';
|
|
if (!$widthString)
|
|
{
|
|
$widthString = $ws.','.$hs; // Set size of window
|
|
}
|
|
list($url, $query) = explode('?', $target['src']);
|
|
if (strpos($url, 'youtube-nocookie.com') !== FALSE)
|
|
{
|
|
$params[] = 'privacy';
|
|
}
|
|
parse_str($query, $vals); // Various options set here
|
|
if (varset($vals['allowfullscreen'], 'true') != 'true')
|
|
{
|
|
$params[] = 'nofull';
|
|
}
|
|
if (varset($vals['border'], 0) != 0)
|
|
{
|
|
$params[] = 'border';
|
|
}
|
|
if (varset($vals['rel'], 1) == 0)
|
|
{
|
|
$params[] = 'norel';
|
|
}
|
|
if (varset($vals['hd'], 1) != 0)
|
|
{
|
|
$params[] = 'hd';
|
|
}
|
|
if (varset($vals['hl'], 1) != 0)
|
|
{
|
|
$params[] = 'hl='.$vals['hl'];
|
|
}
|
|
if (varset($vals['color1'], 1) != 0)
|
|
{
|
|
$params[] = 'color1='.$vals['color1'];
|
|
}
|
|
if (varset($vals['color2'], 1) != 0)
|
|
{
|
|
$params[] = 'color2='.$vals['color2'];
|
|
}
|
|
$picRef = substr($url, strrpos($url, '/') + 1);
|
|
}
|
|
|
|
|
|
$yID = preg_replace('/[^0-9a-z]/i', '', $picRef);
|
|
if (($yID != $picRef) || (strlen($yID) > 20))
|
|
{ // Possible hack attempt
|
|
}
|
|
$params = array_merge($params, $bbpars); // Any parameters set in bbcode override those in HTML
|
|
// Could check for valid array indices here
|
|
$paramString = implode('&', $params);
|
|
if ($paramString) $widthString .= '|'.$paramString;
|
|
$ans = '[youtube='.$widthString.']'.$picRef.'[/youtube]';
|
|
return $ans;
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
* Translate youtube bbcode into the appropriate <EMBED> object
|
|
*/
|
|
function toHTML($code_text, $parm)
|
|
{
|
|
if(empty($code_text)) return '';
|
|
|
|
$parms = explode('|', $parm, 2);
|
|
parse_str(varset($parms[1], ''), $params);
|
|
|
|
if(empty($parms[0])) $parms[0] = 'small';
|
|
|
|
switch ($parms[0])
|
|
{
|
|
case 'tiny':
|
|
$params['w'] = 200;
|
|
$params['h'] = 180;
|
|
break;
|
|
|
|
case 'small':
|
|
$params['w'] = 445;
|
|
$params['h'] = 364;
|
|
break;
|
|
|
|
case 'medium':
|
|
$params['w'] = 500;
|
|
$params['h'] = 405;
|
|
break;
|
|
|
|
case 'big':
|
|
$params['w'] = 660;
|
|
$params['h'] = 525;
|
|
break;
|
|
|
|
case 'huge':
|
|
$params['w'] = 980;
|
|
$params['h'] = 765;
|
|
break;
|
|
|
|
default:
|
|
$dim = explode(',', $parms[0], 2);
|
|
$params['w'] = (integer) varset($dim[0], 445);
|
|
if($params['w'] > 980 || $params['w'] < 200) $params['w'] = 445;
|
|
|
|
$params['h'] = (integer) varset($dim[1], 364);
|
|
if($params['h'] > 765 || $params['h'] < 180) $params['h'] = 364;
|
|
break;
|
|
}
|
|
|
|
$yID = preg_replace('/[^0-9a-z\-_\&]/i', '', $code_text);
|
|
|
|
$url = isset($params['privacy']) ? 'http://www.youtube-nocookie.com/v/' : 'http://www.youtube.com/v/';
|
|
$url .= $yID.'?';
|
|
|
|
if(isset($params['nofull']))
|
|
{
|
|
$fscr = 'false';
|
|
$url = $url.'fs=0';
|
|
}
|
|
else
|
|
{
|
|
$fscr = 'true';
|
|
$url = $url.'fs=1';
|
|
}
|
|
if(isset($params['border'])) $url = $url.'&border=1';
|
|
if(isset($params['norel'])) $url = $url.'&rel=0';
|
|
if(isset($params['hd'])) $url = $url.'&hd=1';
|
|
$hl = 'en_US';
|
|
if(isset($params['hl'])) {
|
|
$params['hl'] = preg_replace('/[^0-9a-z\-_]/i', '', $params['hl']);
|
|
if(strlen($params['hl']) == 5) {
|
|
$hl = $params['hl'];
|
|
}
|
|
}
|
|
$url = $url.'&hl='.$hl;
|
|
if(isset($params['color1'])) $color[1] = $params['color1'];
|
|
if(isset($params['color2'])) $color[2] = $params['color2'];
|
|
foreach ($color as $key => $value) {
|
|
if (ctype_xdigit($value) && strlen($value) == 6) {
|
|
$url = $url.'&color'.$key.'='.$value;
|
|
}
|
|
}
|
|
|
|
$ret = '
|
|
<object width="'.$params['w'].'" height="'.$params['h'].'">
|
|
<param name="movie" value="'.$url.'"></param>
|
|
<param name="allowFullScreen" value="'.$fscr.'"></param>
|
|
<param name="allowscriptaccess" value="always"></param>
|
|
<param name="wmode" value="transparent"></param>
|
|
<embed src="'.$url.'" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="'.$fscr.'" wmode="transparent" width="'.$params['w'].'" height="'.$params['h'].'"></embed>
|
|
</object>
|
|
';
|
|
|
|
return $ret;
|
|
}
|
|
}
|
|
|
|
?>
|