Context Navigation

source: trunk/include/functions.inc.php @ 12954

Last change on this file since 12954 was 12954, checked in by rvelices, 12 years ago

feature 2548 multisize

added define_derivative template functiion for themes and plugins
code cleanup, new events ...

Property svn:eol-style set to LF

File size: 41.6 KB

Line
1	<?php
2	// +-----------------------------------------------------------------------+
3	// \| Piwigo - a PHP based photo gallery \|
4	// +-----------------------------------------------------------------------+
5	// \| Copyright(C) 2008-2012 Piwigo Team http://piwigo.org \|
6	// \| Copyright(C) 2003-2008 PhpWebGallery Team http://phpwebgallery.net \|
7	// \| Copyright(C) 2002-2003 Pierrick LE GALL http://le-gall.net/pierrick \|
8	// +-----------------------------------------------------------------------+
9	// \| This program is free software; you can redistribute it and/or modify \|
10	// \| it under the terms of the GNU General Public License as published by \|
11	// \| the Free Software Foundation \|
12	// \| \|
13	// \| This program is distributed in the hope that it will be useful, but \|
14	// \| WITHOUT ANY WARRANTY; without even the implied warranty of \|
15	// \| MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU \|
16	// \| General Public License for more details. \|
17	// \| \|
18	// \| You should have received a copy of the GNU General Public License \|
19	// \| along with this program; if not, write to the Free Software \|
20	// \| Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, \|
21	// \| USA. \|
22	// +-----------------------------------------------------------------------+
23
24	include_once( PHPWG_ROOT_PATH .'include/functions_user.inc.php' );
25	include_once( PHPWG_ROOT_PATH .'include/functions_cookie.inc.php' );
26	include_once( PHPWG_ROOT_PATH .'include/functions_session.inc.php' );
27	include_once( PHPWG_ROOT_PATH .'include/functions_category.inc.php' );
28	include_once( PHPWG_ROOT_PATH .'include/functions_xml.inc.php' );
29	include_once( PHPWG_ROOT_PATH .'include/functions_html.inc.php' );
30	include_once( PHPWG_ROOT_PATH .'include/functions_tag.inc.php' );
31	include_once( PHPWG_ROOT_PATH .'include/functions_url.inc.php' );
32	include_once( PHPWG_ROOT_PATH .'include/functions_plugins.inc.php' );
33	include_once( PHPWG_ROOT_PATH .'include/derivative_params.inc.php');
34	include_once( PHPWG_ROOT_PATH .'include/derivative_std_params.inc.php');
35	include_once( PHPWG_ROOT_PATH .'include/derivative.inc.php');
36	require_once( PHPWG_ROOT_PATH .'include/smarty/libs/Smarty.class.php');
37	include_once( PHPWG_ROOT_PATH .'include/template.class.php');
38
39	//----------------------------------------------------------- generic functions
40
41	/**
42	* stupidly returns the current microsecond since Unix epoch
43	*/
44	function micro_seconds()
45	{
46	$t1 = explode(' ', microtime());
47	$t2 = explode('.', $t1[0]);
48	$t2 = $t1[1].substr($t2[1], 0, 6);
49	return $t2;
50	}
51
52	// The function get_moment returns a float value coresponding to the number
53	// of seconds since the unix epoch (1st January 1970) and the microseconds
54	// are precised : e.g. 1052343429.89276600
55	function get_moment()
56	{
57	return microtime(true);
58	}
59
60	// The function get_elapsed_time returns the number of seconds (with 3
61	// decimals precision) between the start time and the end time given.
62	function get_elapsed_time( $start, $end )
63	{
64	return number_format( $end - $start, 3, '.', ' ').' s';
65	}
66
67	// - The replace_space function replaces space and '-' characters
68	// by their HTML equivalent &nbsb; and −
69	// - The function does not replace characters in HTML tags
70	// - This function was created because IE5 does not respect the
71	// CSS "white-space: nowrap;" property unless space and minus
72	// characters are replaced like this function does.
73	// - Example :
74	// <div class="foo">My friend</div>
75	// ( 01234567891111111111222222222233 )
76	// ( 0123456789012345678901 )
77	// becomes :
78	// <div class="foo">My friend</div>
79	function replace_space( $string )
80	{
81	//return $string;
82	$return_string = '';
83	// $remaining is the rest of the string where to replace spaces characters
84	$remaining = $string;
85	// $start represents the position of the next '<' character
86	// $end represents the position of the next '>' character
87	; // -> 0
88	$end = strpos ( $remaining, '>' ); // -> 16
89	// as long as a '<' and his friend '>' are found, we loop
90	while ( ($start=strpos( $remaining, '<' )) !==false
91	and ($end=strpos( $remaining, '>' )) !== false )
92	{
93	// $treatment is the part of the string to treat
94	// In the first loop of our example, this variable is empty, but in the
95	// second loop, it equals 'My friend'
96	$treatment = substr ( $remaining, 0, $start );
97	// Replacement of ' ' by his equivalent ' '
98	$treatment = str_replace( ' ', ' ', $treatment );
99	$treatment = str_replace( '-', '−', $treatment );
100	// composing the string to return by adding the treated string and the
101	// following HTML tag -> 'My friend</div>'
102	$return_string.= $treatment.substr( $remaining, $start, $end-$start+1 );
103	// the remaining string is deplaced to the part after the '>' of this
104	// loop
105	$remaining = substr ( $remaining, $end + 1, strlen( $remaining ) );
106	}
107	$treatment = str_replace( ' ', ' ', $remaining );
108	$treatment = str_replace( '-', '−', $treatment );
109	$return_string.= $treatment;
110
111	return $return_string;
112	}
113
114	// get_extension returns the part of the string after the last "."
115	function get_extension( $filename )
116	{
117	return substr( strrchr( $filename, '.' ), 1, strlen ( $filename ) );
118	}
119
120	// get_filename_wo_extension returns the part of the string before the last
121	// ".".
122	// get_filename_wo_extension( 'test.tar.gz' ) -> 'test.tar'
123	function get_filename_wo_extension( $filename )
124	{
125	$pos = strrpos( $filename, '.' );
126	return ($pos===false) ? $filename : substr( $filename, 0, $pos);
127	}
128
129	/**
130	* returns an array contening sub-directories, excluding ".svn"
131	*
132	* @param string $dir
133	* @return array
134	*/
135	function get_dirs($directory)
136	{
137	$sub_dirs = array();
138	if ($opendir = opendir($directory))
139	{
140	while ($file = readdir($opendir))
141	{
142	if ($file != '.'
143	and $file != '..'
144	and is_dir($directory.'/'.$file)
145	and $file != '.svn')
146	{
147	array_push($sub_dirs, $file);
148	}
149	}
150	closedir($opendir);
151	}
152	return $sub_dirs;
153	}
154
155	define('MKGETDIR_NONE', 0);
156	define('MKGETDIR_RECURSIVE', 1);
157	define('MKGETDIR_DIE_ON_ERROR', 2);
158	define('MKGETDIR_PROTECT_INDEX', 4);
159	define('MKGETDIR_PROTECT_HTACCESS', 8);
160	define('MKGETDIR_DEFAULT', 7);
161	/**
162	* creates directory if not exists; ensures that directory is writable
163	* @param:
164	* string $dir
165	* int $flags combination of MKGETDIR_xxx
166	* @return bool false on error else true
167	*/
168	function mkgetdir($dir, $flags=MKGETDIR_DEFAULT)
169	{
170	if ( !is_dir($dir) )
171	{
172	global $conf;
173	if (substr(PHP_OS, 0, 3) == 'WIN')
174	{
175	$dir = str_replace('/', DIRECTORY_SEPARATOR, $dir);
176	}
177	$umask = umask(0);
178	$mkd = @mkdir($dir, $conf['chmod_value'], ($flags&MKGETDIR_RECURSIVE) ? true:false );
179	umask($umask);
180	if ($mkd==false)
181	{
182	!($flags&MKGETDIR_DIE_ON_ERROR) or fatal_error( "$dir ".l10n('no write access'));
183	return false;
184	}
185	if( $flags&MKGETDIR_PROTECT_HTACCESS )
186	{
187	$file = $dir.'/.htaccess';
188	file_exists($file) or @file_put_contents( $file, 'deny from all' );
189	}
190	if( $flags&MKGETDIR_PROTECT_INDEX )
191	{
192	$file = $dir.'/index.htm';
193	file_exists($file) or @file_put_contents( $file, 'Not allowed!' );
194	}
195	}
196	if ( !is_writable($dir) )
197	{
198	!($flags&MKGETDIR_DIE_ON_ERROR) or fatal_error( "$dir ".l10n('no write access'));
199	return false;
200	}
201	return true;
202	}
203
204	/**
205	* returns thumbnail directory name of input diretoty name
206	* make thumbnail directory is necessary
207	* set error messages on array messages
208	*
209	* @param:
210	* string $dirname
211	* arrayy $errors
212	* @return bool false on error else string directory name
213	*/
214	function mkget_thumbnail_dir($dirname, &$errors)
215	{
216	global $conf;
217
218	$tndir = $dirname.'/'.$conf['dir_thumbnail'];
219	if (! mkgetdir($tndir, MKGETDIR_NONE) )
220	{
221	array_push($errors,
222	'['.$dirname.'] : '.l10n('no write access'));
223	return false;
224	}
225	return $tndir;
226	}
227
228	/* Returns true if the string appears to be encoded in UTF-8. (from wordpress)
229	* @param string Str
230	*/
231	function seems_utf8($Str) { # by bmorel at ssi dot fr
232	for ($i=0; $i<strlen($Str); $i++) {
233	if (ord($Str[$i]) < 0x80) continue; # 0bbbbbbb
234	elseif ((ord($Str[$i]) & 0xE0) == 0xC0) $n=1; # 110bbbbb
235	elseif ((ord($Str[$i]) & 0xF0) == 0xE0) $n=2; # 1110bbbb
236	elseif ((ord($Str[$i]) & 0xF8) == 0xF0) $n=3; # 11110bbb
237	elseif ((ord($Str[$i]) & 0xFC) == 0xF8) $n=4; # 111110bb
238	elseif ((ord($Str[$i]) & 0xFE) == 0xFC) $n=5; # 1111110b
239	else return false; # Does not match any model
240	for ($j=0; $j<$n; $j++) { # n bytes matching 10bbbbbb follow ?
241	if ((++$i == strlen($Str)) \|\| ((ord($Str[$i]) & 0xC0) != 0x80))
242	return false;
243	}
244	}
245	return true;
246	}
247
248	/* Remove accents from a UTF-8 or ISO-859-1 string (from wordpress)
249	* @param string sstring - an UTF-8 or ISO-8859-1 string
250	*/
251	function remove_accents($string)
252	{
253	if ( !preg_match('/[\x80-\xff]/', $string) )
254	return $string;
255
256	if (seems_utf8($string)) {
257	$chars = array(
258	// Decompositions for Latin-1 Supplement
259	"\xc3\x80"=>'A', "\xc3\x81"=>'A',
260	"\xc3\x82"=>'A', "\xc3\x83"=>'A',
261	"\xc3\x84"=>'A', "\xc3\x85"=>'A',
262	"\xc3\x87"=>'C', "\xc3\x88"=>'E',
263	"\xc3\x89"=>'E', "\xc3\x8a"=>'E',
264	"\xc3\x8b"=>'E', "\xc3\x8c"=>'I',
265	"\xc3\x8d"=>'I', "\xc3\x8e"=>'I',
266	"\xc3\x8f"=>'I', "\xc3\x91"=>'N',
267	"\xc3\x92"=>'O', "\xc3\x93"=>'O',
268	"\xc3\x94"=>'O', "\xc3\x95"=>'O',
269	"\xc3\x96"=>'O', "\xc3\x99"=>'U',
270	"\xc3\x9a"=>'U', "\xc3\x9b"=>'U',
271	"\xc3\x9c"=>'U', "\xc3\x9d"=>'Y',
272	"\xc3\x9f"=>'s', "\xc3\xa0"=>'a',
273	"\xc3\xa1"=>'a', "\xc3\xa2"=>'a',
274	"\xc3\xa3"=>'a', "\xc3\xa4"=>'a',
275	"\xc3\xa5"=>'a', "\xc3\xa7"=>'c',
276	"\xc3\xa8"=>'e', "\xc3\xa9"=>'e',
277	"\xc3\xaa"=>'e', "\xc3\xab"=>'e',
278	"\xc3\xac"=>'i', "\xc3\xad"=>'i',
279	"\xc3\xae"=>'i', "\xc3\xaf"=>'i',
280	"\xc3\xb1"=>'n', "\xc3\xb2"=>'o',
281	"\xc3\xb3"=>'o', "\xc3\xb4"=>'o',
282	"\xc3\xb5"=>'o', "\xc3\xb6"=>'o',
283	"\xc3\xb9"=>'u', "\xc3\xba"=>'u',
284	"\xc3\xbb"=>'u', "\xc3\xbc"=>'u',
285	"\xc3\xbd"=>'y', "\xc3\xbf"=>'y',
286	// Decompositions for Latin Extended-A
287	"\xc4\x80"=>'A', "\xc4\x81"=>'a',
288	"\xc4\x82"=>'A', "\xc4\x83"=>'a',
289	"\xc4\x84"=>'A', "\xc4\x85"=>'a',
290	"\xc4\x86"=>'C', "\xc4\x87"=>'c',
291	"\xc4\x88"=>'C', "\xc4\x89"=>'c',
292	"\xc4\x8a"=>'C', "\xc4\x8b"=>'c',
293	"\xc4\x8c"=>'C', "\xc4\x8d"=>'c',
294	"\xc4\x8e"=>'D', "\xc4\x8f"=>'d',
295	"\xc4\x90"=>'D', "\xc4\x91"=>'d',
296	"\xc4\x92"=>'E', "\xc4\x93"=>'e',
297	"\xc4\x94"=>'E', "\xc4\x95"=>'e',
298	"\xc4\x96"=>'E', "\xc4\x97"=>'e',
299	"\xc4\x98"=>'E', "\xc4\x99"=>'e',
300	"\xc4\x9a"=>'E', "\xc4\x9b"=>'e',
301	"\xc4\x9c"=>'G', "\xc4\x9d"=>'g',
302	"\xc4\x9e"=>'G', "\xc4\x9f"=>'g',
303	"\xc4\xa0"=>'G', "\xc4\xa1"=>'g',
304	"\xc4\xa2"=>'G', "\xc4\xa3"=>'g',
305	"\xc4\xa4"=>'H', "\xc4\xa5"=>'h',
306	"\xc4\xa6"=>'H', "\xc4\xa7"=>'h',
307	"\xc4\xa8"=>'I', "\xc4\xa9"=>'i',
308	"\xc4\xaa"=>'I', "\xc4\xab"=>'i',
309	"\xc4\xac"=>'I', "\xc4\xad"=>'i',
310	"\xc4\xae"=>'I', "\xc4\xaf"=>'i',
311	"\xc4\xb0"=>'I', "\xc4\xb1"=>'i',
312	"\xc4\xb2"=>'IJ', "\xc4\xb3"=>'ij',
313	"\xc4\xb4"=>'J', "\xc4\xb5"=>'j',
314	"\xc4\xb6"=>'K', "\xc4\xb7"=>'k',
315	"\xc4\xb8"=>'k', "\xc4\xb9"=>'L',
316	"\xc4\xba"=>'l', "\xc4\xbb"=>'L',
317	"\xc4\xbc"=>'l', "\xc4\xbd"=>'L',
318	"\xc4\xbe"=>'l', "\xc4\xbf"=>'L',
319	"\xc5\x80"=>'l', "\xc5\x81"=>'L',
320	"\xc5\x82"=>'l', "\xc5\x83"=>'N',
321	"\xc5\x84"=>'n', "\xc5\x85"=>'N',
322	"\xc5\x86"=>'n', "\xc5\x87"=>'N',
323	"\xc5\x88"=>'n', "\xc5\x89"=>'N',
324	"\xc5\x8a"=>'n', "\xc5\x8b"=>'N',
325	"\xc5\x8c"=>'O', "\xc5\x8d"=>'o',
326	"\xc5\x8e"=>'O', "\xc5\x8f"=>'o',
327	"\xc5\x90"=>'O', "\xc5\x91"=>'o',
328	"\xc5\x92"=>'OE', "\xc5\x93"=>'oe',
329	"\xc5\x94"=>'R', "\xc5\x95"=>'r',
330	"\xc5\x96"=>'R', "\xc5\x97"=>'r',
331	"\xc5\x98"=>'R', "\xc5\x99"=>'r',
332	"\xc5\x9a"=>'S', "\xc5\x9b"=>'s',
333	"\xc5\x9c"=>'S', "\xc5\x9d"=>'s',
334	"\xc5\x9e"=>'S', "\xc5\x9f"=>'s',
335	"\xc5\xa0"=>'S', "\xc5\xa1"=>'s',
336	"\xc5\xa2"=>'T', "\xc5\xa3"=>'t',
337	"\xc5\xa4"=>'T', "\xc5\xa5"=>'t',
338	"\xc5\xa6"=>'T', "\xc5\xa7"=>'t',
339	"\xc5\xa8"=>'U', "\xc5\xa9"=>'u',
340	"\xc5\xaa"=>'U', "\xc5\xab"=>'u',
341	"\xc5\xac"=>'U', "\xc5\xad"=>'u',
342	"\xc5\xae"=>'U', "\xc5\xaf"=>'u',
343	"\xc5\xb0"=>'U', "\xc5\xb1"=>'u',
344	"\xc5\xb2"=>'U', "\xc5\xb3"=>'u',
345	"\xc5\xb4"=>'W', "\xc5\xb5"=>'w',
346	"\xc5\xb6"=>'Y', "\xc5\xb7"=>'y',
347	"\xc5\xb8"=>'Y', "\xc5\xb9"=>'Z',
348	"\xc5\xba"=>'z', "\xc5\xbb"=>'Z',
349	"\xc5\xbc"=>'z', "\xc5\xbd"=>'Z',
350	"\xc5\xbe"=>'z', "\xc5\xbf"=>'s',
351	// Euro Sign
352	"\xe2\x82\xac"=>'E',
353	// GBP (Pound) Sign
354	"\xc2\xa3"=>'');
355
356	$string = strtr($string, $chars);
357	} else {
358	// Assume ISO-8859-1 if not UTF-8
359	$chars['in'] = chr(128).chr(131).chr(138).chr(142).chr(154).chr(158)
360	.chr(159).chr(162).chr(165).chr(181).chr(192).chr(193).chr(194)
361	.chr(195).chr(196).chr(197).chr(199).chr(200).chr(201).chr(202)
362	.chr(203).chr(204).chr(205).chr(206).chr(207).chr(209).chr(210)
363	.chr(211).chr(212).chr(213).chr(214).chr(216).chr(217).chr(218)
364	.chr(219).chr(220).chr(221).chr(224).chr(225).chr(226).chr(227)
365	.chr(228).chr(229).chr(231).chr(232).chr(233).chr(234).chr(235)
366	.chr(236).chr(237).chr(238).chr(239).chr(241).chr(242).chr(243)
367	.chr(244).chr(245).chr(246).chr(248).chr(249).chr(250).chr(251)
368	.chr(252).chr(253).chr(255);
369
370	$chars['out'] = "EfSZszYcYuAAAAAACEEEEIIIINOOOOOOUUUUYaaaaaaceeeeiiiinoooooouuuuyy";
371
372	$string = strtr($string, $chars['in'], $chars['out']);
373	$double_chars['in'] = array(chr(140), chr(156), chr(198), chr(208), chr(222), chr(223), chr(230), chr(240), chr(254));
374	$double_chars['out'] = array('OE', 'oe', 'AE', 'DH', 'TH', 'ss', 'ae', 'dh', 'th');
375	$string = str_replace($double_chars['in'], $double_chars['out'], $string);
376	}
377
378	return $string;
379	}
380
381	/**
382	* simplify a string to insert it into an URL
383	*
384	* @param string
385	* @return string
386	*/
387	function str2url($str)
388	{
389	$raw = $str;
390
391	$str = remove_accents($str);
392	$str = preg_replace('/[^a-z0-9_\s\'\:\/\[\],-]/','',strtolower($str));
393	$str = preg_replace('/[\s\'\:\/\[\],-]+/',' ',trim($str));
394	$res = str_replace(' ','_',$str);
395
396	if (empty($res))
397	{
398	$res = str_replace(' ','_', $raw);
399	}
400
401	return $res;
402	}
403
404	//-------------------------------------------- Piwigo specific functions
405
406	/**
407	* returns an array with a list of {language_code => language_name}
408	*
409	* @returns array
410	*/
411	function get_languages()
412	{
413	$query = '
414	SELECT id, name
415	FROM '.LANGUAGES_TABLE.'
416	ORDER BY name ASC
417	;';
418	$result = pwg_query($query);
419
420	$languages = array();
421	while ($row = pwg_db_fetch_assoc($result))
422	{
423	if (is_dir(PHPWG_ROOT_PATH.'language/'.$row['id']))
424	{
425	$languages[ $row['id'] ] = $row['name'];
426	}
427	}
428
429	return $languages;
430	}
431
432	function pwg_log($image_id = null, $image_type = null)
433	{
434	global $conf, $user, $page;
435
436	$do_log = $conf['log'];
437	if (is_admin())
438	{
439	$do_log = $conf['history_admin'];
440	}
441	if (is_a_guest())
442	{
443	$do_log = $conf['history_guest'];
444	}
445
446	$do_log = trigger_event('pwg_log_allowed', $do_log, $image_id, $image_type);
447
448	if (!$do_log)
449	{
450	return false;
451	}
452
453	$tags_string = null;
454	if ('tags'==@$page['section'])
455	{
456	$tags_string = implode(',', $page['tag_ids']);
457	}
458
459	$query = '
460	INSERT INTO '.HISTORY_TABLE.'
461	(
462	date,
463	time,
464	user_id,
465	IP,
466	section,
467	category_id,
468	image_id,
469	image_type,
470	tag_ids
471	)
472	VALUES
473	(
474	CURRENT_DATE,
475	CURRENT_TIME,
476	'.$user['id'].',
477	\''.$_SERVER['REMOTE_ADDR'].'\',
478	'.(isset($page['section']) ? "'".$page['section']."'" : 'NULL').',
479	'.(isset($page['category']['id']) ? $page['category']['id'] : 'NULL').',
480	'.(isset($image_id) ? $image_id : 'NULL').',
481	'.(isset($image_type) ? "'".$image_type."'" : 'NULL').',
482	'.(isset($tags_string) ? "'".$tags_string."'" : 'NULL').'
483	)
484	;';
485	pwg_query($query);
486
487	return true;
488	}
489
490	// format_date returns a formatted date for display. The date given in
491	// argument must be an american format (2003-09-15). By option, you can show the time.
492	// The output is internationalized.
493	//
494	// format_date( "2003-09-15", true ) -> "Monday 15 September 2003 21:52"
495	function format_date($date, $show_time = false)
496	{
497	global $lang;
498
499	if (strpos($date, '0') == 0)
500	{
501	return l10n('N/A');
502	}
503
504	$ymdhms = array();
505	$tok = strtok( $date, '- :');
506	while ($tok !== false)
507	{
508	$ymdhms[] = $tok;
509	$tok = strtok('- :');
510	}
511
512	if ( count($ymdhms)<3 )
513	{
514	return false;
515	}
516
517	$formated_date = '';
518	// before 1970, Microsoft Windows can't mktime
519	if ($ymdhms[0] >= 1970)
520	{
521	// we ask midday because Windows think it's prior to midnight with a
522	// zero and refuse to work
523	$formated_date.= $lang['day'][date('w', mktime(12,0,0,$ymdhms[1],$ymdhms[2],$ymdhms[0]))];
524	}
525	$formated_date.= ' '.$ymdhms[2];
526	$formated_date.= ' '.$lang['month'][(int)$ymdhms[1]];
527	$formated_date.= ' '.$ymdhms[0];
528	if ($show_time and count($ymdhms)>=5 )
529	{
530	$formated_date.= ' '.$ymdhms[3].':'.$ymdhms[4];
531	}
532	return $formated_date;
533	}
534
535	function pwg_debug( $string )
536	{
537	global $debug,$t2,$page;
538
539	$now = explode( ' ', microtime() );
540	$now2 = explode( '.', $now[0] );
541	$now2 = $now[1].'.'.$now2[1];
542	$time = number_format( $now2 - $t2, 3, '.', ' ').' s';
543	$debug .= '<p>';
544	$debug.= '['.$time.', ';
545	$debug.= $page['count_queries'].' queries] : '.$string;
546	$debug.= "</p>\n";
547	}
548
549	/**
550	* Redirects to the given URL (HTTP method)
551	*
552	* Note : once this function called, the execution doesn't go further
553	* (presence of an exit() instruction.
554	*
555	* @param string $url
556	* @return void
557	*/
558	function redirect_http( $url )
559	{
560	if (ob_get_length () !== FALSE)
561	{
562	ob_clean();
563	}
564	// default url is on html format
565	$url = html_entity_decode($url);
566	header('Request-URI: '.$url);
567	header('Content-Location: '.$url);
568	header('Location: '.$url);
569	exit();
570	}
571
572	/**
573	* Redirects to the given URL (HTML method)
574	*
575	* Note : once this function called, the execution doesn't go further
576	* (presence of an exit() instruction.
577	*
578	* @param string $url
579	* @param string $title_msg
580	* @param integer $refreh_time
581	* @return void
582	*/
583	function redirect_html( $url , $msg = '', $refresh_time = 0)
584	{
585	global $user, $template, $lang_info, $conf, $lang, $t2, $page, $debug;
586
587	if (!isset($lang_info) \|\| !isset($template) )
588	{
589	$user = build_user( $conf['guest_id'], true);
590	load_language('common.lang');
591	trigger_action('loading_lang');
592	load_language('lang', PHPWG_ROOT_PATH.PWG_LOCAL_DIR, array('no_fallback'=>true, 'local'=>true) );
593	$template = new Template(PHPWG_ROOT_PATH.'themes', get_default_theme());
594	}
595	elseif (defined('IN_ADMIN') and IN_ADMIN)
596	{
597	$template = new Template(PHPWG_ROOT_PATH.'themes', get_default_theme());
598	}
599
600	if (empty($msg))
601	{
602	$msg = nl2br(l10n('Redirection...'));
603	}
604
605	$refresh = $refresh_time;
606	$url_link = $url;
607	$title = 'redirection';
608
609	$template->set_filenames( array( 'redirect' => 'redirect.tpl' ) );
610
611	include( PHPWG_ROOT_PATH.'include/page_header.php' );
612
613	$template->set_filenames( array( 'redirect' => 'redirect.tpl' ) );
614	$template->assign('REDIRECT_MSG', $msg);
615
616	$template->parse('redirect');
617
618	include( PHPWG_ROOT_PATH.'include/page_tail.php' );
619
620	exit();
621	}
622
623	/**
624	* Redirects to the given URL (Switch to HTTP method or HTML method)
625	*
626	* Note : once this function called, the execution doesn't go further
627	* (presence of an exit() instruction.
628	*
629	* @param string $url
630	* @param string $title_msg
631	* @param integer $refreh_time
632	* @return void
633	*/
634	function redirect( $url , $msg = '', $refresh_time = 0)
635	{
636	global $conf;
637
638	// with RefeshTime <> 0, only html must be used
639	if ($conf['default_redirect_method']=='http'
640	and $refresh_time==0
641	and !headers_sent()
642	)
643	{
644	redirect_http($url);
645	}
646	else
647	{
648	redirect_html($url, $msg, $refresh_time);
649	}
650	}
651
652	/**
653	* returns $_SERVER['QUERY_STRING'] whitout keys given in parameters
654	*
655	* @param array $rejects
656	* @param boolean $escape - if true escape & to & (for html)
657	* @returns string
658	*/
659	function get_query_string_diff($rejects=array(), $escape=true)
660	{
661	if (empty($_SERVER['QUERY_STRING']))
662	{
663	return '';
664	}
665
666	$query_string = '';
667
668	$str = $_SERVER['QUERY_STRING'];
669	parse_str($str, $vars);
670
671	$is_first = true;
672	foreach ($vars as $key => $value)
673	{
674	if (!in_array($key, $rejects))
675	{
676	$query_string.= $is_first ? '?' : ($escape ? '&' : '&' );
677	$is_first = false;
678	$query_string.= $key.'='.$value;
679	}
680	}
681
682	return $query_string;
683	}
684
685	function url_is_remote($url)
686	{
687	if ( strncmp($url, 'http://', 7)==0
688	or strncmp($url, 'https://', 8)==0 )
689	{
690	return true;
691	}
692	return false;
693	}
694
695	/**
696	* returns available themes
697	*/
698	function get_pwg_themes()
699	{
700	global $conf;
701
702	$themes = array();
703
704	$query = '
705	SELECT
706	id,
707	name
708	FROM '.THEMES_TABLE.'
709	ORDER BY name ASC
710	;';
711	$result = pwg_query($query);
712	while ($row = pwg_db_fetch_assoc($result))
713	{
714	if (check_theme_installed($row['id']))
715	{
716	$themes[ $row['id'] ] = $row['name'];
717	}
718	}
719
720	// plugins want remove some themes based on user status maybe?
721	$themes = trigger_event('get_pwg_themes', $themes);
722
723	return $themes;
724	}
725
726	function check_theme_installed($theme_id)
727	{
728	global $conf;
729
730	return file_exists($conf['themes_dir'].'/'.$theme_id.'/'.'themeconf.inc.php');
731	}
732
733	/** Transforms an original path to its pwg representative */
734	function original_to_representative($path, $representative_ext)
735	{
736	$pos = strrpos($path, '/');
737	$path = substr_replace($path, 'pwg_representative/', $pos+1, 0);
738	$pos = strrpos($path, '.');
739	return substr_replace($path, $representative_ext, $pos+1);
740	}
741
742	/**
743	* @param element_info array containing element information from db;
744	* at least 'id', 'path' should be present
745	*/
746	function get_element_path($element_info)
747	{
748	$path = $element_info['path'];
749	if ( !url_is_remote($path) )
750	{
751	$path = PHPWG_ROOT_PATH.$path;
752	}
753	return $path;
754	}
755
756
757	/* Returns the PATH to the thumbnail to be displayed. If the element does not
758	* have a thumbnail, the default mime image path is returned. The PATH can be
759	* used in the php script, but not sent to the browser.
760	* @param array element_info assoc array containing element info from db
761	* at least 'path', 'tn_ext' and 'id' should be present
762	*/
763	function get_thumbnail_path($element_info)
764	{
765	$path = get_thumbnail_location($element_info);
766	if ( !url_is_remote($path) )
767	{
768	$path = PHPWG_ROOT_PATH.$path;
769	}
770	return $path;
771	}
772
773	/* Returns the URL of the thumbnail to be displayed. If the element does not
774	* have a thumbnail, the default mime image url is returned. The URL can be
775	* sent to the browser, but not used in the php script.
776	* @param array element_info assoc array containing element info from db
777	* at least 'path', 'tn_ext' and 'id' should be present
778	*/
779	function get_thumbnail_url($element_info)
780	{
781	return DerivativeImage::thumb_url($element_info);
782	}
783
784	/* returns the relative path of the thumnail with regards to to the root
785	of piwigo (not the current page!).This function is not intended to be
786	called directly from code.*/
787	function get_thumbnail_location($element_info)
788	{
789	global $conf;
790	if ( !empty( $element_info['tn_ext'] ) )
791	{
792	$path = substr_replace(
793	get_filename_wo_extension($element_info['path']),
794	'/'.$conf['dir_thumbnail'].'/'.$conf['prefix_thumbnail'],
795	strrpos($element_info['path'],'/'),
796	1
797	);
798	$path.= '.'.$element_info['tn_ext'];
799	}
800	else
801	{
802	$path = get_themeconf('mime_icon_dir')
803	.strtolower(get_extension($element_info['path'])).'.png';
804	// plugins want another location ?
805	$path = trigger_event( 'get_thumbnail_location', $path, $element_info);
806	}
807	return $path;
808	}
809
810	/**
811	* fill the current user caddie with given elements, if not already in
812	* caddie
813	*
814	* @param array elements_id
815	*/
816	function fill_caddie($elements_id)
817	{
818	global $user;
819
820	$query = '
821	SELECT element_id
822	FROM '.CADDIE_TABLE.'
823	WHERE user_id = '.$user['id'].'
824	;';
825	$in_caddie = array_from_query($query, 'element_id');
826
827	$caddiables = array_diff($elements_id, $in_caddie);
828
829	$datas = array();
830
831	foreach ($caddiables as $caddiable)
832	{
833	array_push($datas, array('element_id' => $caddiable,
834	'user_id' => $user['id']));
835	}
836
837	if (count($caddiables) > 0)
838	{
839	mass_inserts(CADDIE_TABLE, array('element_id','user_id'), $datas);
840	}
841	}
842
843	/**
844	* returns the element name from its filename
845	*
846	* @param string filename
847	* @return string name
848	*/
849	function get_name_from_file($filename)
850	{
851	return str_replace('_',' ',get_filename_wo_extension($filename));
852	}
853
854	/**
855	* returns the corresponding value from $lang if existing. Else, the key is
856	* returned
857	*
858	* @param string key
859	* @return string
860	*/
861	function l10n($key, $textdomain='messages')
862	{
863	global $lang, $conf;
864
865	if ($conf['debug_l10n'] and !isset($lang[$key]) and !empty($key))
866	{
867	trigger_error('[l10n] language key "'.$key.'" is not defined', E_USER_WARNING);
868	}
869
870	return isset($lang[$key]) ? $lang[$key] : $key;
871	}
872
873	/**
874	* returns the prinft value for strings including %d
875	* return is concorded with decimal value (singular, plural)
876	*
877	* @param singular string key
878	* @param plural string key
879	* @param decimal value
880	* @return string
881	*/
882	function l10n_dec($singular_fmt_key, $plural_fmt_key, $decimal)
883	{
884	global $lang_info;
885
886	return
887	sprintf(
888	l10n((
889	(($decimal > 1) or ($decimal == 0 and $lang_info['zero_plural']))
890	? $plural_fmt_key
891	: $singular_fmt_key
892	)), $decimal);
893	}
894
895	/*
896	* returns a single element to use with l10n_args
897	*
898	* @param string key: translation key
899	* @param array/string/../number args:
900	* arguments to use on sprintf($key, args)
901	* if args is a array, each values are used on sprintf
902	* @return string
903	*/
904	function get_l10n_args($key, $args)
905	{
906	if (is_array($args))
907	{
908	$key_arg = array_merge(array($key), $args);
909	}
910	else
911	{
912	$key_arg = array($key, $args);
913	}
914	return array('key_args' => $key_arg);
915	}
916
917	/*
918	* returns a string with formated with l10n_args elements
919	*
920	* @param element/array $key_args: element or array of l10n_args elements
921	* @param $sep: if $key_args is array,
922	* separator is used when translated l10n_args elements are concated
923	* @return string
924	*/
925	function l10n_args($key_args, $sep = "\n")
926	{
927	if (is_array($key_args))
928	{
929	foreach ($key_args as $key => $element)
930	{
931	if (isset($result))
932	{
933	$result .= $sep;
934	}
935	else
936	{
937	$result = '';
938	}
939
940	if ($key === 'key_args')
941	{
942	array_unshift($element, l10n(array_shift($element)));
943	$result .= call_user_func_array('sprintf', $element);
944	}
945	else
946	{
947	$result .= l10n_args($element, $sep);
948	}
949	}
950	}
951	else
952	{
953	fatal_error('l10n_args: Invalid arguments');
954	}
955
956	return $result;
957	}
958
959	/**
960	* returns the corresponding value from $themeconf if existing. Else, the
961	* key is returned
962	*
963	* @param string key
964	* @return string
965	*/
966	function get_themeconf($key)
967	{
968	global $template;
969
970	return $template->get_themeconf($key);
971	}
972
973	/**
974	* Returns webmaster mail address depending on $conf['webmaster_id']
975	*
976	* @return string
977	*/
978	function get_webmaster_mail_address()
979	{
980	global $conf;
981
982	$query = '
983	SELECT '.$conf['user_fields']['email'].'
984	FROM '.USERS_TABLE.'
985	WHERE '.$conf['user_fields']['id'].' = '.$conf['webmaster_id'].'
986	;';
987	list($email) = pwg_db_fetch_row(pwg_query($query));
988
989	return $email;
990	}
991
992	/**
993	* Add configuration parameters from database to global $conf array
994	*
995	* @return void
996	*/
997	function load_conf_from_db($condition = '')
998	{
999	global $conf;
1000
1001	$query = '
1002	SELECT param, value
1003	FROM '.CONFIG_TABLE.'
1004	'.(!empty($condition) ? 'WHERE '.$condition : '').'
1005	;';
1006	$result = pwg_query($query);
1007
1008	if ((pwg_db_num_rows($result) == 0) and !empty($condition))
1009	{
1010	fatal_error('No configuration data');
1011	}
1012
1013	while ($row = pwg_db_fetch_assoc($result))
1014	{
1015	$val = isset($row['value']) ? $row['value'] : '';
1016	// If the field is true or false, the variable is transformed into a boolean value.
1017	if ($val == 'true')
1018	{
1019	$val = true;
1020	}
1021	elseif ($val == 'false')
1022	{
1023	$val = false;
1024	}
1025	$conf[ $row['param'] ] = $val;
1026	}
1027	}
1028
1029	function conf_update_param($param, $value)
1030	{
1031	$query = '
1032	SELECT
1033	param,
1034	value
1035	FROM '.CONFIG_TABLE.'
1036	WHERE param = \''.$param.'\'
1037	;';
1038	$params = array_from_query($query, 'param');
1039
1040	if (count($params) == 0)
1041	{
1042	$query = '
1043	INSERT
1044	INTO '.CONFIG_TABLE.'
1045	(param, value)
1046	VALUES(\''.$param.'\', \''.$value.'\')
1047	;';
1048	pwg_query($query);
1049	}
1050	else
1051	{
1052	$query = '
1053	UPDATE '.CONFIG_TABLE.'
1054	SET value = \''.$value.'\'
1055	WHERE param = \''.$param.'\'
1056	;';
1057	pwg_query($query);
1058	}
1059	}
1060
1061	/**
1062	* Prepends and appends a string at each value of the given array.
1063	*
1064	* @param array
1065	* @param string prefix to each array values
1066	* @param string suffix to each array values
1067	*/
1068	function prepend_append_array_items($array, $prepend_str, $append_str)
1069	{
1070	array_walk(
1071	$array,
1072	create_function('&$s', '$s = "'.$prepend_str.'".$s."'.$append_str.'";')
1073	);
1074
1075	return $array;
1076	}
1077
1078	/**
1079	* creates an hashed based on a query, this function is a very common
1080	* pattern used here. Among the selected columns fetched, choose one to be
1081	* the key, another one to be the value.
1082	*
1083	* @param string $query
1084	* @param string $keyname
1085	* @param string $valuename
1086	* @return array
1087	*/
1088	function simple_hash_from_query($query, $keyname, $valuename)
1089	{
1090	$array = array();
1091
1092	$result = pwg_query($query);
1093	while ($row = pwg_db_fetch_assoc($result))
1094	{
1095	$array[ $row[$keyname] ] = $row[$valuename];
1096	}
1097
1098	return $array;
1099	}
1100
1101	/**
1102	* creates an hashed based on a query, this function is a very common
1103	* pattern used here. The key is given as parameter, the value is an associative
1104	* array.
1105	*
1106	* @param string $query
1107	* @param string $keyname
1108	* @return array
1109	*/
1110	function hash_from_query($query, $keyname)
1111	{
1112	$array = array();
1113	$result = pwg_query($query);
1114	while ($row = pwg_db_fetch_assoc($result))
1115	{
1116	$array[ $row[$keyname] ] = $row;
1117	}
1118	return $array;
1119	}
1120
1121	/**
1122	* Return basename of the current script
1123	* Lower case convertion is applied on return value
1124	* Return value is without file extention ".php"
1125	*
1126	* @param void
1127	*
1128	* @return script basename
1129	*/
1130	function script_basename()
1131	{
1132	global $conf;
1133
1134	foreach (array('SCRIPT_NAME', 'SCRIPT_FILENAME', 'PHP_SELF') as $value)
1135	{
1136	if (!empty($_SERVER[$value]))
1137	{
1138	$filename = strtolower($_SERVER[$value]);
1139	if ($conf['php_extension_in_urls'] and get_extension($filename)!=='php')
1140	continue;
1141	$basename = basename($filename, '.php');
1142	if (!empty($basename))
1143	{
1144	return $basename;
1145	}
1146	}
1147	}
1148	return '';
1149	}
1150
1151	/**
1152	* Return value for the current page define on $conf['filter_pages']
1153	* Îf value is not defined, default value are returned
1154	*
1155	* @param value name
1156	*
1157	* @return filter page value
1158	*/
1159	function get_filter_page_value($value_name)
1160	{
1161	global $conf;
1162
1163	$page_name = script_basename();
1164
1165	if (isset($conf['filter_pages'][$page_name][$value_name]))
1166	{
1167	return $conf['filter_pages'][$page_name][$value_name];
1168	}
1169	else if (isset($conf['filter_pages']['default'][$value_name]))
1170	{
1171	return $conf['filter_pages']['default'][$value_name];
1172	}
1173	else
1174	{
1175	return null;
1176	}
1177	}
1178
1179	/**
1180	* returns the character set of data sent to browsers / received from forms
1181	*/
1182	function get_pwg_charset()
1183	{
1184	$pwg_charset = 'utf-8';
1185	if (defined('PWG_CHARSET'))
1186	{
1187	$pwg_charset = PWG_CHARSET;
1188	}
1189	return $pwg_charset;
1190	}
1191
1192	/**
1193	* includes a language file or returns the content of a language file
1194	* availability of the file
1195	*
1196	* in descending order of preference:
1197	* param language, user language, default language
1198	* Piwigo default language.
1199	*
1200	* @param string filename
1201	* @param string dirname
1202	* @param mixed options can contain
1203	* language - language to load (if empty uses user language)
1204	* return - if true the file content is returned otherwise the file is evaluated as php
1205	* target_charset -
1206	* no_fallback - the language must be respected
1207	* local - if true, get local language file
1208	* @return boolean success status or a string if options['return'] is true
1209	*/
1210	function load_language($filename, $dirname = '',
1211	$options = array() )
1212	{
1213	global $user;
1214
1215	if (! @$options['return'] )
1216	{
1217	$filename .= '.php'; //MAYBE to do .. load .po and .mo localization files
1218	}
1219	if (empty($dirname))
1220	{
1221	$dirname = PHPWG_ROOT_PATH;
1222	}
1223	$dirname .= 'language/';
1224
1225	$languages = array();
1226	if ( !empty($options['language']) )
1227	{
1228	$languages[] = $options['language'];
1229	}
1230	if ( !empty($user['language']) )
1231	{
1232	$languages[] = $user['language'];
1233	}
1234	if ( ! @$options['no_fallback'] )
1235	{
1236	if ( defined('PHPWG_INSTALLED') )
1237	{
1238	$languages[] = get_default_language();
1239	}
1240	$languages[] = PHPWG_DEFAULT_LANGUAGE;
1241	}
1242
1243	$languages = array_unique($languages);
1244
1245	if ( empty($options['target_charset']) )
1246	{
1247	$target_charset = get_pwg_charset();
1248	}
1249	else
1250	{
1251	$target_charset = $options['target_charset'];
1252	}
1253	$target_charset = strtolower($target_charset);
1254	$source_file = '';
1255	foreach ($languages as $language)
1256	{
1257	$f = @$options['local'] ?
1258	$dirname.$language.'.'.$filename:
1259	$dirname.$language.'/'.$filename;
1260
1261	if (file_exists($f))
1262	{
1263	$source_file = $f;
1264	break;
1265	}
1266	}
1267
1268	if ( !empty($source_file) )
1269	{
1270	if (! @$options['return'] )
1271	{
1272	@include($source_file);
1273	$load_lang = @$lang;
1274	$load_lang_info = @$lang_info;
1275
1276	global $lang, $lang_info;
1277	if ( !isset($lang) ) $lang=array();
1278	if ( !isset($lang_info) ) $lang_info=array();
1279
1280	if ( 'utf-8'!=$target_charset)
1281	{
1282	if ( is_array($load_lang) )
1283	{
1284	foreach ($load_lang as $k => $v)
1285	{
1286	if ( is_array($v) )
1287	{
1288	$func = create_function('$v', 'return convert_charset($v, "utf-8", "'.$target_charset.'");' );
1289	$lang[$k] = array_map($func, $v);
1290	}
1291	else
1292	$lang[$k] = convert_charset($v, 'utf-8', $target_charset);
1293	}
1294	}
1295	if ( is_array($load_lang_info) )
1296	{
1297	foreach ($load_lang_info as $k => $v)
1298	{
1299	$lang_info[$k] = convert_charset($v, 'utf-8', $target_charset);
1300	}
1301	}
1302	}
1303	else
1304	{
1305	$lang = array_merge( $lang, (array)$load_lang );
1306	$lang_info = array_merge( $lang_info, (array)$load_lang_info );
1307	}
1308	return true;
1309	}
1310	else
1311	{
1312	$content = @file_get_contents($source_file);
1313	$content = convert_charset($content, 'utf-8', $target_charset);
1314	return $content;
1315	}
1316	}
1317	return false;
1318	}
1319
1320	/**
1321	* converts a string from a character set to another character set
1322	* @param string str the string to be converted
1323	* @param string source_charset the character set in which the string is encoded
1324	* @param string dest_charset the destination character set
1325	*/
1326	function convert_charset($str, $source_charset, $dest_charset)
1327	{
1328	if ($source_charset==$dest_charset)
1329	return $str;
1330	if ($source_charset=='iso-8859-1' and $dest_charset=='utf-8')
1331	{
1332	return utf8_encode($str);
1333	}
1334	if ($source_charset=='utf-8' and $dest_charset=='iso-8859-1')
1335	{
1336	return utf8_decode($str);
1337	}
1338	if (function_exists('iconv'))
1339	{
1340	return iconv($source_charset, $dest_charset, $str);
1341	}
1342	if (function_exists('mb_convert_encoding'))
1343	{
1344	return mb_convert_encoding( $str, $dest_charset, $source_charset );
1345	}
1346	return $str; //???
1347	}
1348
1349	/**
1350	* makes sure a index.htm protects the directory from browser file listing
1351	*
1352	* @param string dir directory
1353	*/
1354	function secure_directory($dir)
1355	{
1356	$file = $dir.'/index.htm';
1357	if (!file_exists($file))
1358	{
1359	@file_put_contents($file, 'Not allowed!');
1360	}
1361	}
1362
1363	/**
1364	* returns a "secret key" that is to be sent back when a user posts a form
1365	*
1366	* @param int valid_after_seconds - key validity start time from now
1367	*/
1368	function get_ephemeral_key($valid_after_seconds, $aditionnal_data_to_hash = '')
1369	{
1370	global $conf;
1371	$time = round(microtime(true), 1);
1372	return $time.':'.$valid_after_seconds.':'
1373	.hash_hmac(
1374	'md5',
1375	$time.substr($_SERVER['REMOTE_ADDR'],0,5).$valid_after_seconds.$aditionnal_data_to_hash,
1376	$conf['secret_key']);
1377	}
1378
1379	function verify_ephemeral_key($key, $aditionnal_data_to_hash = '')
1380	{
1381	global $conf;
1382	$time = microtime(true);
1383	$key = explode( ':', @$key );
1384	if ( count($key)!=3
1385	or $key[0]>$time-(float)$key[1] // page must have been retrieved more than X sec ago
1386	or $key[0]<$time-3600 // 60 minutes expiration
1387	or hash_hmac(
1388	'md5', $key[0].substr($_SERVER['REMOTE_ADDR'],0,5).$key[1].$aditionnal_data_to_hash, $conf['secret_key']
1389	) != $key[2]
1390	)
1391	{
1392	return false;
1393	}
1394	return true;
1395	}
1396
1397	/**
1398	* return an array which will be sent to template to display navigation bar
1399	*/
1400	function create_navigation_bar($url, $nb_element, $start, $nb_element_page, $clean_url = false)
1401	{
1402	global $conf;
1403
1404	$navbar = array();
1405	$pages_around = $conf['paginate_pages_around'];
1406	$start_str = $clean_url ? '/start-' : (strpos($url, '?')===false ? '?':'&').'start=';
1407
1408	if (!isset($start) or !is_numeric($start) or (is_numeric($start) and $start < 0))
1409	{
1410	$start = 0;
1411	}
1412
1413	// navigation bar useful only if more than one page to display !
1414	if ($nb_element > $nb_element_page)
1415	{
1416	$cur_page = ceil($start / $nb_element_page) + 1;
1417	$maximum = ceil($nb_element / $nb_element_page);
1418	$previous = $start - $nb_element_page;
1419	$next = $start + $nb_element_page;
1420	$last = ($maximum - 1) * $nb_element_page;
1421
1422	$navbar['CURRENT_PAGE'] = $cur_page;
1423
1424	// link to first page and previous page?
1425	if ($cur_page != 1)
1426	{
1427	$navbar['URL_FIRST'] = $url;
1428	$navbar['URL_PREV'] = $url.($previous > 0 ? $start_str.$previous : '');
1429	}
1430	// link on next page and last page?
1431	if ($cur_page != $maximum)
1432	{
1433	$navbar['URL_NEXT'] = $url.$start_str.$next;
1434	$navbar['URL_LAST'] = $url.$start_str.$last;
1435	}
1436
1437	// pages to display
1438	$navbar['pages'] = array();
1439	$navbar['pages'][1] = $url;
1440	$navbar['pages'][$maximum] = $url.$start_str.$last;
1441
1442	for ($i = max($cur_page - $pages_around , 2), $stop = min($cur_page + $pages_around + 1, $maximum);
1443	$i < $stop; $i++)
1444	{
1445	$navbar['pages'][$i] = $url.$start_str.(($i - 1) * $nb_element_page);
1446	}
1447	ksort($navbar['pages']);
1448	}
1449	return $navbar;
1450	}
1451
1452	/**
1453	* return an array which will be sent to template to display recent icon
1454	*/
1455	function get_icon($date, $is_child_date = false)
1456	{
1457	global $cache, $user;
1458
1459	if (empty($date))
1460	{
1461	return false;
1462	}
1463
1464	if (!isset($cache['get_icon']['title']))
1465	{
1466	$cache['get_icon']['title'] = sprintf(
1467	l10n('photos posted during the last %d days'),
1468	$user['recent_period']
1469	);
1470	}
1471
1472	$icon = array(
1473	'TITLE' => $cache['get_icon']['title'],
1474	'IS_CHILD_DATE' => $is_child_date,
1475	);
1476
1477	if (isset($cache['get_icon'][$date]))
1478	{
1479	return $cache['get_icon'][$date] ? $icon : array();
1480	}
1481
1482	if (!isset($cache['get_icon']['sql_recent_date']))
1483	{
1484	// Use MySql date in order to standardize all recent "actions/queries"
1485	$cache['get_icon']['sql_recent_date'] = pwg_db_get_recent_period($user['recent_period']);
1486	}
1487
1488	$cache['get_icon'][$date] = $date > $cache['get_icon']['sql_recent_date'];
1489
1490	return $cache['get_icon'][$date] ? $icon : array();
1491	}
1492
1493	/**
1494	* check token comming from form posted or get params to prevent csrf attacks
1495	* if pwg_token is empty action doesn't require token
1496	* else pwg_token is compare to server token
1497	*
1498	* @return void access denied if token given is not equal to server token
1499	*/
1500	function check_pwg_token()
1501	{
1502	if (!empty($_REQUEST['pwg_token']))
1503	{
1504	if (get_pwg_token() != $_REQUEST['pwg_token'])
1505	{
1506	access_denied();
1507	}
1508	}
1509	else
1510	bad_request('missing token');
1511	}
1512
1513	function get_pwg_token()
1514	{
1515	global $conf;
1516
1517	return hash_hmac('md5', session_id(), $conf['secret_key']);
1518	}
1519
1520	/*
1521	* breaks the script execution if the given value doesn't match the given
1522	* pattern. This should happen only during hacking attempts.
1523	*
1524	* @param string param_name
1525	* @param array param_array
1526	* @param boolean is_array
1527	* @param string pattern
1528	*
1529	* @return void
1530	*/
1531	function check_input_parameter($param_name, $param_array, $is_array, $pattern)
1532	{
1533	$param_value = null;
1534	if (isset($param_array[$param_name]))
1535	{
1536	$param_value = $param_array[$param_name];
1537	}
1538
1539	// it's ok if the input parameter is null
1540	if (empty($param_value))
1541	{
1542	return true;
1543	}
1544
1545	if ($is_array)
1546	{
1547	if (!is_array($param_value))
1548	{
1549	fatal_error('[Hacking attempt] the input parameter "'.$param_name.'" should be an array');
1550	}
1551
1552	foreach ($param_value as $item_to_check)
1553	{
1554	if (!preg_match($pattern, $item_to_check))
1555	{
1556	fatal_error('[Hacking attempt] an item is not valid in input parameter "'.$param_name.'"');
1557	}
1558	}
1559	}
1560	else
1561	{
1562	if (!preg_match($pattern, $param_value))
1563	{
1564	fatal_error('[Hacking attempt] the input parameter "'.$param_name.'" is not valid');
1565	}
1566	}
1567	}
1568
1569
1570	function get_privacy_level_options()
1571	{
1572	global $conf;
1573
1574	$options = array();
1575	foreach (array_reverse($conf['available_permission_levels']) as $level)
1576	{
1577	$label = null;
1578
1579	if (0 == $level)
1580	{
1581	$label = l10n('Everybody');
1582	}
1583	else
1584	{
1585	$labels = array();
1586	$sub_levels = array_reverse($conf['available_permission_levels']);
1587	foreach ($sub_levels as $sub_level)
1588	{
1589	if ($sub_level == 0 or $sub_level < $level)
1590	{
1591	break;
1592	}
1593	array_push(
1594	$labels,
1595	l10n(
1596	sprintf(
1597	'Level %d',
1598	$sub_level
1599	)
1600	)
1601	);
1602	}
1603
1604	$label = implode(', ', $labels);
1605	}
1606	$options[$level] = $label;
1607	}
1608	return $options;
1609	}
1610
1611
1612	/**
1613	* return the branch from the version. For example version 2.2.4 is for branch 2.2
1614	*/
1615	function get_branch_from_version($version)
1616	{
1617	return implode('.', array_slice(explode('.', $version), 0, 2));
1618	}
1619	?>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: