Context Navigation

source: trunk/include/functions.inc.php @ 25018

Last change on this file since 25018 was 25018, checked in by mistic100, 11 years ago
remove all array_push (50% slower than []) + some changes missing for feature:2978
Property svn:eol-style set to `LF`
File size: 46.3 KB

Line
1	<?php
2	// +-----------------------------------------------------------------------+
3	// \| Piwigo - a PHP based photo gallery \|
4	// +-----------------------------------------------------------------------+
5	// \| Copyright(C) 2008-2013 Piwigo Team http://piwigo.org \|
6	// \| Copyright(C) 2003-2008 PhpWebGallery Team http://phpwebgallery.net \|
7	// \| Copyright(C) 2002-2003 Pierrick LE GALL http://le-gall.net/pierrick \|
8	// +-----------------------------------------------------------------------+
9	// \| This program is free software; you can redistribute it and/or modify \|
10	// \| it under the terms of the GNU General Public License as published by \|
11	// \| the Free Software Foundation \|
12	// \| \|
13	// \| This program is distributed in the hope that it will be useful, but \|
14	// \| WITHOUT ANY WARRANTY; without even the implied warranty of \|
15	// \| MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU \|
16	// \| General Public License for more details. \|
17	// \| \|
18	// \| You should have received a copy of the GNU General Public License \|
19	// \| along with this program; if not, write to the Free Software \|
20	// \| Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, \|
21	// \| USA. \|
22	// +-----------------------------------------------------------------------+
23
24	include_once( PHPWG_ROOT_PATH .'include/functions_plugins.inc.php' );
25	include_once( PHPWG_ROOT_PATH .'include/functions_user.inc.php' );
26	include_once( PHPWG_ROOT_PATH .'include/functions_cookie.inc.php' );
27	include_once( PHPWG_ROOT_PATH .'include/functions_session.inc.php' );
28	include_once( PHPWG_ROOT_PATH .'include/functions_category.inc.php' );
29	include_once( PHPWG_ROOT_PATH .'include/functions_html.inc.php' );
30	include_once( PHPWG_ROOT_PATH .'include/functions_tag.inc.php' );
31	include_once( PHPWG_ROOT_PATH .'include/functions_url.inc.php' );
32	include_once( PHPWG_ROOT_PATH .'include/derivative_params.inc.php');
33	include_once( PHPWG_ROOT_PATH .'include/derivative_std_params.inc.php');
34	include_once( PHPWG_ROOT_PATH .'include/derivative.inc.php');
35	//require_once( PHPWG_ROOT_PATH .'include/smarty/libs/Smarty.class.php');
36	require_once( PHPWG_ROOT_PATH .'include/smarty/libs/SmartyBC.class.php');
37	include_once( PHPWG_ROOT_PATH .'include/template.class.php');
38
39	//----------------------------------------------------------- generic functions
40
41	/**
42	* stupidly returns the current microsecond since Unix epoch
43	*/
44	function micro_seconds()
45	{
46	$t1 = explode(' ', microtime());
47	$t2 = explode('.', $t1[0]);
48	$t2 = $t1[1].substr($t2[1], 0, 6);
49	return $t2;
50	}
51
52	// The function get_moment returns a float value coresponding to the number
53	// of seconds since the unix epoch (1st January 1970) and the microseconds
54	// are precised : e.g. 1052343429.89276600
55	function get_moment()
56	{
57	return microtime(true);
58	}
59
60	// The function get_elapsed_time returns the number of seconds (with 3
61	// decimals precision) between the start time and the end time given.
62	function get_elapsed_time( $start, $end )
63	{
64	return number_format( $end - $start, 3, '.', ' ').' s';
65	}
66
67	// - The replace_space function replaces space and '-' characters
68	// by their HTML equivalent &nbsb; and −
69	// - The function does not replace characters in HTML tags
70	// - This function was created because IE5 does not respect the
71	// CSS "white-space: nowrap;" property unless space and minus
72	// characters are replaced like this function does.
73	// - Example :
74	// <div class="foo">My friend</div>
75	// ( 01234567891111111111222222222233 )
76	// ( 0123456789012345678901 )
77	// becomes :
78	// <div class="foo">My friend</div>
79	function replace_space( $string )
80	{
81	//return $string;
82	$return_string = '';
83	// $remaining is the rest of the string where to replace spaces characters
84	$remaining = $string;
85	// $start represents the position of the next '<' character
86	// $end represents the position of the next '>' character
87	; // -> 0
88	$end = strpos ( $remaining, '>' ); // -> 16
89	// as long as a '<' and his friend '>' are found, we loop
90	while ( ($start=strpos( $remaining, '<' )) !==false
91	and ($end=strpos( $remaining, '>' )) !== false )
92	{
93	// $treatment is the part of the string to treat
94	// In the first loop of our example, this variable is empty, but in the
95	// second loop, it equals 'My friend'
96	$treatment = substr ( $remaining, 0, $start );
97	// Replacement of ' ' by his equivalent ' '
98	$treatment = str_replace( ' ', ' ', $treatment );
99	$treatment = str_replace( '-', '−', $treatment );
100	// composing the string to return by adding the treated string and the
101	// following HTML tag -> 'My friend</div>'
102	$return_string.= $treatment.substr( $remaining, $start, $end-$start+1 );
103	// the remaining string is deplaced to the part after the '>' of this
104	// loop
105	$remaining = substr ( $remaining, $end + 1, strlen( $remaining ) );
106	}
107	$treatment = str_replace( ' ', ' ', $remaining );
108	$treatment = str_replace( '-', '−', $treatment );
109	$return_string.= $treatment;
110
111	return $return_string;
112	}
113
114	// get_extension returns the part of the string after the last "."
115	function get_extension( $filename )
116	{
117	return substr( strrchr( $filename, '.' ), 1, strlen ( $filename ) );
118	}
119
120	// get_filename_wo_extension returns the part of the string before the last
121	// ".".
122	// get_filename_wo_extension( 'test.tar.gz' ) -> 'test.tar'
123	function get_filename_wo_extension( $filename )
124	{
125	$pos = strrpos( $filename, '.' );
126	return ($pos===false) ? $filename : substr( $filename, 0, $pos);
127	}
128
129	define('MKGETDIR_NONE', 0);
130	define('MKGETDIR_RECURSIVE', 1);
131	define('MKGETDIR_DIE_ON_ERROR', 2);
132	define('MKGETDIR_PROTECT_INDEX', 4);
133	define('MKGETDIR_PROTECT_HTACCESS', 8);
134	define('MKGETDIR_DEFAULT', 7);
135	/**
136	* creates directory if not exists; ensures that directory is writable
137	* @param:
138	* string $dir
139	* int $flags combination of MKGETDIR_xxx
140	* @return bool false on error else true
141	*/
142	function mkgetdir($dir, $flags=MKGETDIR_DEFAULT)
143	{
144	if ( !is_dir($dir) )
145	{
146	global $conf;
147	if (substr(PHP_OS, 0, 3) == 'WIN')
148	{
149	$dir = str_replace('/', DIRECTORY_SEPARATOR, $dir);
150	}
151	$umask = umask(0);
152	$mkd = @mkdir($dir, $conf['chmod_value'], ($flags&MKGETDIR_RECURSIVE) ? true:false );
153	umask($umask);
154	if ($mkd==false)
155	{
156	!($flags&MKGETDIR_DIE_ON_ERROR) or fatal_error( "$dir ".l10n('no write access'));
157	return false;
158	}
159	if( $flags&MKGETDIR_PROTECT_HTACCESS )
160	{
161	$file = $dir.'/.htaccess';
162	file_exists($file) or @file_put_contents( $file, 'deny from all' );
163	}
164	if( $flags&MKGETDIR_PROTECT_INDEX )
165	{
166	$file = $dir.'/index.htm';
167	file_exists($file) or @file_put_contents( $file, 'Not allowed!' );
168	}
169	}
170	if ( !is_writable($dir) )
171	{
172	!($flags&MKGETDIR_DIE_ON_ERROR) or fatal_error( "$dir ".l10n('no write access'));
173	return false;
174	}
175	return true;
176	}
177
178	/* returns 0 if $str is Ascii, 1 if utf-8, -1 otherwise */
179	function qualify_utf8($Str)
180	{
181	$ret = 0;
182	for ($i=0; $i<strlen($Str); $i++) {
183	if (ord($Str[$i]) < 0x80) continue; # 0bbbbbbb
184	$ret = 1;
185	if ((ord($Str[$i]) & 0xE0) == 0xC0) $n=1; # 110bbbbb
186	elseif ((ord($Str[$i]) & 0xF0) == 0xE0) $n=2; # 1110bbbb
187	elseif ((ord($Str[$i]) & 0xF8) == 0xF0) $n=3; # 11110bbb
188	elseif ((ord($Str[$i]) & 0xFC) == 0xF8) $n=4; # 111110bb
189	elseif ((ord($Str[$i]) & 0xFE) == 0xFC) $n=5; # 1111110b
190	else return -1; # Does not match any model
191	for ($j=0; $j<$n; $j++) { # n bytes matching 10bbbbbb follow ?
192	if ((++$i == strlen($Str)) \|\| ((ord($Str[$i]) & 0xC0) != 0x80))
193	return -1;
194	}
195	}
196	return $ret;
197	}
198
199	/* Remove accents from a UTF-8 or ISO-859-1 string (from wordpress)
200	* @param string sstring - an UTF-8 or ISO-8859-1 string
201	*/
202	function remove_accents($string)
203	{
204	$utf = qualify_utf8($string);
205	if ( $utf == 0 )
206	return $string; // ascii
207
208	if ( $utf > 0 ) {
209	$chars = array(
210	// Decompositions for Latin-1 Supplement
211	"\xc3\x80"=>'A', "\xc3\x81"=>'A',
212	"\xc3\x82"=>'A', "\xc3\x83"=>'A',
213	"\xc3\x84"=>'A', "\xc3\x85"=>'A',
214	"\xc3\x87"=>'C', "\xc3\x88"=>'E',
215	"\xc3\x89"=>'E', "\xc3\x8a"=>'E',
216	"\xc3\x8b"=>'E', "\xc3\x8c"=>'I',
217	"\xc3\x8d"=>'I', "\xc3\x8e"=>'I',
218	"\xc3\x8f"=>'I', "\xc3\x91"=>'N',
219	"\xc3\x92"=>'O', "\xc3\x93"=>'O',
220	"\xc3\x94"=>'O', "\xc3\x95"=>'O',
221	"\xc3\x96"=>'O', "\xc3\x99"=>'U',
222	"\xc3\x9a"=>'U', "\xc3\x9b"=>'U',
223	"\xc3\x9c"=>'U', "\xc3\x9d"=>'Y',
224	"\xc3\x9f"=>'s', "\xc3\xa0"=>'a',
225	"\xc3\xa1"=>'a', "\xc3\xa2"=>'a',
226	"\xc3\xa3"=>'a', "\xc3\xa4"=>'a',
227	"\xc3\xa5"=>'a', "\xc3\xa7"=>'c',
228	"\xc3\xa8"=>'e', "\xc3\xa9"=>'e',
229	"\xc3\xaa"=>'e', "\xc3\xab"=>'e',
230	"\xc3\xac"=>'i', "\xc3\xad"=>'i',
231	"\xc3\xae"=>'i', "\xc3\xaf"=>'i',
232	"\xc3\xb1"=>'n', "\xc3\xb2"=>'o',
233	"\xc3\xb3"=>'o', "\xc3\xb4"=>'o',
234	"\xc3\xb5"=>'o', "\xc3\xb6"=>'o',
235	"\xc3\xb9"=>'u', "\xc3\xba"=>'u',
236	"\xc3\xbb"=>'u', "\xc3\xbc"=>'u',
237	"\xc3\xbd"=>'y', "\xc3\xbf"=>'y',
238	// Decompositions for Latin Extended-A
239	"\xc4\x80"=>'A', "\xc4\x81"=>'a',
240	"\xc4\x82"=>'A', "\xc4\x83"=>'a',
241	"\xc4\x84"=>'A', "\xc4\x85"=>'a',
242	"\xc4\x86"=>'C', "\xc4\x87"=>'c',
243	"\xc4\x88"=>'C', "\xc4\x89"=>'c',
244	"\xc4\x8a"=>'C', "\xc4\x8b"=>'c',
245	"\xc4\x8c"=>'C', "\xc4\x8d"=>'c',
246	"\xc4\x8e"=>'D', "\xc4\x8f"=>'d',
247	"\xc4\x90"=>'D', "\xc4\x91"=>'d',
248	"\xc4\x92"=>'E', "\xc4\x93"=>'e',
249	"\xc4\x94"=>'E', "\xc4\x95"=>'e',
250	"\xc4\x96"=>'E', "\xc4\x97"=>'e',
251	"\xc4\x98"=>'E', "\xc4\x99"=>'e',
252	"\xc4\x9a"=>'E', "\xc4\x9b"=>'e',
253	"\xc4\x9c"=>'G', "\xc4\x9d"=>'g',
254	"\xc4\x9e"=>'G', "\xc4\x9f"=>'g',
255	"\xc4\xa0"=>'G', "\xc4\xa1"=>'g',
256	"\xc4\xa2"=>'G', "\xc4\xa3"=>'g',
257	"\xc4\xa4"=>'H', "\xc4\xa5"=>'h',
258	"\xc4\xa6"=>'H', "\xc4\xa7"=>'h',
259	"\xc4\xa8"=>'I', "\xc4\xa9"=>'i',
260	"\xc4\xaa"=>'I', "\xc4\xab"=>'i',
261	"\xc4\xac"=>'I', "\xc4\xad"=>'i',
262	"\xc4\xae"=>'I', "\xc4\xaf"=>'i',
263	"\xc4\xb0"=>'I', "\xc4\xb1"=>'i',
264	"\xc4\xb2"=>'IJ', "\xc4\xb3"=>'ij',
265	"\xc4\xb4"=>'J', "\xc4\xb5"=>'j',
266	"\xc4\xb6"=>'K', "\xc4\xb7"=>'k',
267	"\xc4\xb8"=>'k', "\xc4\xb9"=>'L',
268	"\xc4\xba"=>'l', "\xc4\xbb"=>'L',
269	"\xc4\xbc"=>'l', "\xc4\xbd"=>'L',
270	"\xc4\xbe"=>'l', "\xc4\xbf"=>'L',
271	"\xc5\x80"=>'l', "\xc5\x81"=>'L',
272	"\xc5\x82"=>'l', "\xc5\x83"=>'N',
273	"\xc5\x84"=>'n', "\xc5\x85"=>'N',
274	"\xc5\x86"=>'n', "\xc5\x87"=>'N',
275	"\xc5\x88"=>'n', "\xc5\x89"=>'N',
276	"\xc5\x8a"=>'n', "\xc5\x8b"=>'N',
277	"\xc5\x8c"=>'O', "\xc5\x8d"=>'o',
278	"\xc5\x8e"=>'O', "\xc5\x8f"=>'o',
279	"\xc5\x90"=>'O', "\xc5\x91"=>'o',
280	"\xc5\x92"=>'OE', "\xc5\x93"=>'oe',
281	"\xc5\x94"=>'R', "\xc5\x95"=>'r',
282	"\xc5\x96"=>'R', "\xc5\x97"=>'r',
283	"\xc5\x98"=>'R', "\xc5\x99"=>'r',
284	"\xc5\x9a"=>'S', "\xc5\x9b"=>'s',
285	"\xc5\x9c"=>'S', "\xc5\x9d"=>'s',
286	"\xc5\x9e"=>'S', "\xc5\x9f"=>'s',
287	"\xc5\xa0"=>'S', "\xc5\xa1"=>'s',
288	"\xc5\xa2"=>'T', "\xc5\xa3"=>'t',
289	"\xc5\xa4"=>'T', "\xc5\xa5"=>'t',
290	"\xc5\xa6"=>'T', "\xc5\xa7"=>'t',
291	"\xc5\xa8"=>'U', "\xc5\xa9"=>'u',
292	"\xc5\xaa"=>'U', "\xc5\xab"=>'u',
293	"\xc5\xac"=>'U', "\xc5\xad"=>'u',
294	"\xc5\xae"=>'U', "\xc5\xaf"=>'u',
295	"\xc5\xb0"=>'U', "\xc5\xb1"=>'u',
296	"\xc5\xb2"=>'U', "\xc5\xb3"=>'u',
297	"\xc5\xb4"=>'W', "\xc5\xb5"=>'w',
298	"\xc5\xb6"=>'Y', "\xc5\xb7"=>'y',
299	"\xc5\xb8"=>'Y', "\xc5\xb9"=>'Z',
300	"\xc5\xba"=>'z', "\xc5\xbb"=>'Z',
301	"\xc5\xbc"=>'z', "\xc5\xbd"=>'Z',
302	"\xc5\xbe"=>'z', "\xc5\xbf"=>'s',
303	// Decompositions for Latin Extended-B
304	"\xc8\x98"=>'S', "\xc8\x99"=>'s',
305	"\xc8\x9a"=>'T', "\xc8\x9b"=>'t',
306	// Euro Sign
307	"\xe2\x82\xac"=>'E',
308	// GBP (Pound) Sign
309	"\xc2\xa3"=>'');
310
311	$string = strtr($string, $chars);
312	} else {
313	// Assume ISO-8859-1 if not UTF-8
314	$chars['in'] = chr(128).chr(131).chr(138).chr(142).chr(154).chr(158)
315	.chr(159).chr(162).chr(165).chr(181).chr(192).chr(193).chr(194)
316	.chr(195).chr(196).chr(197).chr(199).chr(200).chr(201).chr(202)
317	.chr(203).chr(204).chr(205).chr(206).chr(207).chr(209).chr(210)
318	.chr(211).chr(212).chr(213).chr(214).chr(216).chr(217).chr(218)
319	.chr(219).chr(220).chr(221).chr(224).chr(225).chr(226).chr(227)
320	.chr(228).chr(229).chr(231).chr(232).chr(233).chr(234).chr(235)
321	.chr(236).chr(237).chr(238).chr(239).chr(241).chr(242).chr(243)
322	.chr(244).chr(245).chr(246).chr(248).chr(249).chr(250).chr(251)
323	.chr(252).chr(253).chr(255);
324
325	$chars['out'] = "EfSZszYcYuAAAAAACEEEEIIIINOOOOOOUUUUYaaaaaaceeeeiiiinoooooouuuuyy";
326
327	$string = strtr($string, $chars['in'], $chars['out']);
328	$double_chars['in'] = array(chr(140), chr(156), chr(198), chr(208), chr(222), chr(223), chr(230), chr(240), chr(254));
329	$double_chars['out'] = array('OE', 'oe', 'AE', 'DH', 'TH', 'ss', 'ae', 'dh', 'th');
330	$string = str_replace($double_chars['in'], $double_chars['out'], $string);
331	}
332
333	return $string;
334	}
335
336	if (function_exists('mb_strtolower') && defined('PWG_CHARSET'))
337	{
338	function transliterate($term)
339	{
340	return remove_accents( mb_strtolower($term, PWG_CHARSET) );
341	}
342	}
343	else
344	{
345	function transliterate($term)
346	{
347	return remove_accents( strtolower($term) );
348	}
349	}
350
351
352
353	/**
354	* simplify a string to insert it into an URL
355	*
356	* @param string
357	* @return string
358	*/
359	function str2url($str)
360	{
361	$str = $safe = transliterate($str);
362	$str = preg_replace('/[^\x80-\xffa-z0-9_\s\'\:\/\[\],-]/','',$str);
363	$str = preg_replace('/[\s\'\:\/\[\],-]+/',' ',trim($str));
364	$res = str_replace(' ','_',$str);
365
366	if (empty($res))
367	{
368	$res = str_replace(' ','_', $safe);
369	}
370
371	return $res;
372	}
373
374	//-------------------------------------------- Piwigo specific functions
375
376	/**
377	* returns an array with a list of {language_code => language_name}
378	*
379	* @returns array
380	*/
381	function get_languages()
382	{
383	$query = '
384	SELECT id, name
385	FROM '.LANGUAGES_TABLE.'
386	ORDER BY name ASC
387	;';
388	$result = pwg_query($query);
389
390	$languages = array();
391	while ($row = pwg_db_fetch_assoc($result))
392	{
393	if (is_dir(PHPWG_ROOT_PATH.'language/'.$row['id']))
394	{
395	$languages[ $row['id'] ] = $row['name'];
396	}
397	}
398
399	return $languages;
400	}
401
402	function pwg_log($image_id = null, $image_type = null)
403	{
404	global $conf, $user, $page;
405
406	$do_log = $conf['log'];
407	if (is_admin())
408	{
409	$do_log = $conf['history_admin'];
410	}
411	if (is_a_guest())
412	{
413	$do_log = $conf['history_guest'];
414	}
415
416	$do_log = trigger_event('pwg_log_allowed', $do_log, $image_id, $image_type);
417
418	if (!$do_log)
419	{
420	return false;
421	}
422
423	$tags_string = null;
424	if ('tags'==@$page['section'])
425	{
426	$tags_string = implode(',', $page['tag_ids']);
427	}
428
429	$query = '
430	INSERT INTO '.HISTORY_TABLE.'
431	(
432	date,
433	time,
434	user_id,
435	IP,
436	section,
437	category_id,
438	image_id,
439	image_type,
440	tag_ids
441	)
442	VALUES
443	(
444	CURRENT_DATE,
445	CURRENT_TIME,
446	'.$user['id'].',
447	\''.$_SERVER['REMOTE_ADDR'].'\',
448	'.(isset($page['section']) ? "'".$page['section']."'" : 'NULL').',
449	'.(isset($page['category']['id']) ? $page['category']['id'] : 'NULL').',
450	'.(isset($image_id) ? $image_id : 'NULL').',
451	'.(isset($image_type) ? "'".$image_type."'" : 'NULL').',
452	'.(isset($tags_string) ? "'".$tags_string."'" : 'NULL').'
453	)
454	;';
455	pwg_query($query);
456
457	return true;
458	}
459
460	/**
461	* converts a string into a DateTime object
462	* @param: mixed, datetime string or timestamp int
463	* @param: string, input format
464	* @return: DateTime or false
465	*/
466	function str2DateTime($original, $format=null)
467	{
468	if (!empty($format))// from known date format
469	{
470	return DateTime::createFromFormat('!'.$format, $original); // ! char to reset fields to UNIX epoch
471	}
472	else
473	{
474	$date = new DateTime();
475
476	$t = trim($original, '0123456789');
477	if (empty($t)) // from timestamp
478	{
479	$date->setTimestamp($original);
480	}
481	else // from unknown date format (assuming something like Y-m-d H:i:s)
482	{
483	$ymdhms = array();
484	$tok = strtok($original, '- :/');
485	while ($tok !== false)
486	{
487	$ymdhms[] = $tok;
488	$tok = strtok('- :/');
489	}
490
491	if (count($ymdhms)<3) return false;
492	if (!isset($ymdhms[3])) $ymdhms[3] = 0;
493	if (!isset($ymdhms[4])) $ymdhms[4] = 0;
494	if (!isset($ymdhms[5])) $ymdhms[5] = 0;
495
496	$date->setDate($ymdhms[0], $ymdhms[1], $ymdhms[2]);
497	$date->setTime($ymdhms[3], $ymdhms[4], $ymdhms[5]);
498	}
499
500	return $date;
501	}
502	}
503
504	/**
505	* returns a formatted date for display
506	* @param: mixed, datetime string or timestamp int
507	* @param: bool, show time
508	* @param: bool, show day name
509	* @param: string, input format
510	* @return: string
511	*/
512	function format_date($original, $show_time=false, $show_day_name=true, $format=null)
513	{
514	global $lang;
515
516	$date = str2DateTime($original, $format);
517
518	if (!$date)
519	{
520	return l10n('N/A');
521	}
522
523	$print = '';
524	if ($show_day_name)
525	{
526	$print.= $lang['day'][ $date->format('w') ];
527	}
528
529	$print.= ' '.$date->format('d');
530	$print.= ' '.$lang['month'][ $date->format('n') ];
531	$print.= ' '.$date->format('Y');
532
533	if ($show_time)
534	{
535	$temp = $date->format('H:i');
536	if ($temp != '00:00')
537	{
538	$print.= ' '.$temp;
539	}
540	}
541
542	return trim($print);
543	}
544
545	/**
546	* Works out the time since the given date
547	* @param: mixed, datetime string or timestamp int
548	* @param: string, stop (year,month,week,day,hour,minute,second)
549	* @param: string, input format
550	* @param: bool, append text ("ago" or "in the future")
551	* @param: bool, display weeks
552	* @return: string
553	*/
554	function time_since($original, $stop='minute', $format=null, $with_text=true, $with_week=true)
555	{
556	$date = str2DateTime($original, $format);
557
558	if (!$date)
559	{
560	return l10n('N/A');
561	}
562
563	$now = new DateTime();
564	$diff = $now->diff($date);
565
566	if ($with_week)
567	{
568	// DateInterval does not compute the number of weeks
569	$diff->w = (int)floor($diff->d/7);
570	$diff->d = $diff->d - $diff->w*7;
571	}
572	else
573	{
574	$diff->w = 0;
575	}
576
577	$chunks = array(
578	'year' => 'y',
579	'month' => 'm',
580	'week' => 'w',
581	'day' => 'd',
582	'hour' => 'h',
583	'minute' => 'i',
584	'second' => 's',
585	);
586
587	$j = array_search($stop, array_keys($chunks));
588
589	$print = ''; $i=0;
590	foreach ($chunks as $name => $var)
591	{
592	if ($diff->{$var} != 0)
593	{
594	$print.= ' '.l10n_dec('%d '.$name, '%d '.$name.'s', $diff->{$var});
595	}
596	if (!empty($print) && $i >= $j)
597	{
598	break;
599	}
600	$i++;
601	}
602
603	$print = trim($print);
604
605	if ($with_text)
606	{
607	if ($diff->invert)
608	{
609	$print = l10n('%s ago', $print);
610	}
611	else
612	{
613	$print = l10n('%s in the future', $print);
614	}
615	}
616
617	return $print;
618	}
619
620	/**
621	* transform a date string from a format to another (MySQL to d/M/Y for instance)
622	* @param: string, date
623	* @param: string, input format
624	* @param: string, output format
625	* @param: string, default value if inout is empty
626	* @return: string
627	*/
628	function transform_date($original, $format_in, $format_out, $default=null)
629	{
630	if (empty($original)) return $default;
631	$date = str2DateTime($original, $format_in);
632	return $date->format($format_out);
633	}
634
635	function pwg_debug( $string )
636	{
637	global $debug,$t2,$page;
638
639	$now = explode( ' ', microtime() );
640	$now2 = explode( '.', $now[0] );
641	$now2 = $now[1].'.'.$now2[1];
642	$time = number_format( $now2 - $t2, 3, '.', ' ').' s';
643	$debug .= '<p>';
644	$debug.= '['.$time.', ';
645	$debug.= $page['count_queries'].' queries] : '.$string;
646	$debug.= "</p>\n";
647	}
648
649	/**
650	* Redirects to the given URL (HTTP method)
651	*
652	* Note : once this function called, the execution doesn't go further
653	* (presence of an exit() instruction.
654	*
655	* @param string $url
656	* @return void
657	*/
658	function redirect_http( $url )
659	{
660	if (ob_get_length () !== FALSE)
661	{
662	ob_clean();
663	}
664	// default url is on html format
665	$url = html_entity_decode($url);
666	header('Request-URI: '.$url);
667	header('Content-Location: '.$url);
668	header('Location: '.$url);
669	exit();
670	}
671
672	/**
673	* Redirects to the given URL (HTML method)
674	*
675	* Note : once this function called, the execution doesn't go further
676	* (presence of an exit() instruction.
677	*
678	* @param string $url
679	* @param string $title_msg
680	* @param integer $refreh_time
681	* @return void
682	*/
683	function redirect_html( $url , $msg = '', $refresh_time = 0)
684	{
685	global $user, $template, $lang_info, $conf, $lang, $t2, $page, $debug;
686
687	if (!isset($lang_info) \|\| !isset($template) )
688	{
689	$user = build_user( $conf['guest_id'], true);
690	load_language('common.lang');
691	trigger_action('loading_lang');
692	load_language('lang', PHPWG_ROOT_PATH.PWG_LOCAL_DIR, array('no_fallback'=>true, 'local'=>true) );
693	$template = new Template(PHPWG_ROOT_PATH.'themes', get_default_theme());
694	}
695	elseif (defined('IN_ADMIN') and IN_ADMIN)
696	{
697	$template = new Template(PHPWG_ROOT_PATH.'themes', get_default_theme());
698	}
699
700	if (empty($msg))
701	{
702	$msg = nl2br(l10n('Redirection...'));
703	}
704
705	$refresh = $refresh_time;
706	$url_link = $url;
707	$title = 'redirection';
708
709	$template->set_filenames( array( 'redirect' => 'redirect.tpl' ) );
710
711	include( PHPWG_ROOT_PATH.'include/page_header.php' );
712
713	$template->set_filenames( array( 'redirect' => 'redirect.tpl' ) );
714	$template->assign('REDIRECT_MSG', $msg);
715
716	$template->parse('redirect');
717
718	include( PHPWG_ROOT_PATH.'include/page_tail.php' );
719
720	exit();
721	}
722
723	/**
724	* Redirects to the given URL (Switch to HTTP method or HTML method)
725	*
726	* Note : once this function called, the execution doesn't go further
727	* (presence of an exit() instruction.
728	*
729	* @param string $url
730	* @param string $title_msg
731	* @param integer $refreh_time
732	* @return void
733	*/
734	function redirect( $url , $msg = '', $refresh_time = 0)
735	{
736	global $conf;
737
738	// with RefeshTime <> 0, only html must be used
739	if ($conf['default_redirect_method']=='http'
740	and $refresh_time==0
741	and !headers_sent()
742	)
743	{
744	redirect_http($url);
745	}
746	else
747	{
748	redirect_html($url, $msg, $refresh_time);
749	}
750	}
751
752	/**
753	* returns $_SERVER['QUERY_STRING'] whitout keys given in parameters
754	*
755	* @param array $rejects
756	* @param boolean $escape - if true escape & to & (for html)
757	* @returns string
758	*/
759	function get_query_string_diff($rejects=array(), $escape=true)
760	{
761	if (empty($_SERVER['QUERY_STRING']))
762	{
763	return '';
764	}
765
766	parse_str($_SERVER['QUERY_STRING'], $vars);
767
768	$vars = array_diff_key($vars, array_flip($rejects));
769
770	return '?' . http_build_query($vars, '', $escape ? '&' : '&');
771	}
772
773	/**
774	* returns true if the url is absolute (begins with http)
775	* @param string $url
776	* @returns boolean
777	*/
778	function url_is_remote($url)
779	{
780	if ( strncmp($url, 'http://', 7)==0
781	or strncmp($url, 'https://', 8)==0 )
782	{
783	return true;
784	}
785	return false;
786	}
787
788	/**
789	* returns available themes
790	*/
791	function get_pwg_themes($show_mobile=false)
792	{
793	global $conf;
794
795	$themes = array();
796
797	$query = '
798	SELECT
799	id,
800	name
801	FROM '.THEMES_TABLE.'
802	ORDER BY name ASC
803	;';
804	$result = pwg_query($query);
805	while ($row = pwg_db_fetch_assoc($result))
806	{
807	if ($row['id'] == $conf['mobile_theme'])
808	{
809	if (!$show_mobile)
810	{
811	continue;
812	}
813	$row['name'] .= ' ('.l10n('Mobile').')';
814	}
815	if (check_theme_installed($row['id']))
816	{
817	$themes[ $row['id'] ] = $row['name'];
818	}
819	}
820
821	// plugins want remove some themes based on user status maybe?
822	$themes = trigger_event('get_pwg_themes', $themes);
823
824	return $themes;
825	}
826
827	function check_theme_installed($theme_id)
828	{
829	global $conf;
830
831	return file_exists($conf['themes_dir'].'/'.$theme_id.'/'.'themeconf.inc.php');
832	}
833
834	/** Transforms an original path to its pwg representative */
835	function original_to_representative($path, $representative_ext)
836	{
837	$pos = strrpos($path, '/');
838	$path = substr_replace($path, 'pwg_representative/', $pos+1, 0);
839	$pos = strrpos($path, '.');
840	return substr_replace($path, $representative_ext, $pos+1);
841	}
842
843	/**
844	* @param element_info array containing element information from db;
845	* at least 'id', 'path' should be present
846	*/
847	function get_element_path($element_info)
848	{
849	$path = $element_info['path'];
850	if ( !url_is_remote($path) )
851	{
852	$path = PHPWG_ROOT_PATH.$path;
853	}
854	return $path;
855	}
856
857
858	/**
859	* fill the current user caddie with given elements, if not already in
860	* caddie
861	*
862	* @param array elements_id
863	*/
864	function fill_caddie($elements_id)
865	{
866	global $user;
867
868	$query = '
869	SELECT element_id
870	FROM '.CADDIE_TABLE.'
871	WHERE user_id = '.$user['id'].'
872	;';
873	$in_caddie = array_from_query($query, 'element_id');
874
875	$caddiables = array_diff($elements_id, $in_caddie);
876
877	$datas = array();
878
879	foreach ($caddiables as $caddiable)
880	{
881	$datas[] = array(
882	'element_id' => $caddiable,
883	'user_id' => $user['id'],
884	);
885	}
886
887	if (count($caddiables) > 0)
888	{
889	mass_inserts(CADDIE_TABLE, array('element_id','user_id'), $datas);
890	}
891	}
892
893	/**
894	* returns the element name from its filename
895	*
896	* @param string filename
897	* @return string name
898	*/
899	function get_name_from_file($filename)
900	{
901	return str_replace('_',' ',get_filename_wo_extension($filename));
902	}
903
904	/**
905	* translation function
906	* returns the corresponding value from $lang if existing, else the key is returned
907	* if more than one parameter is provided sprintf is applied
908	* @param string $key
909	* @param mixed $args,... optional arguments
910	* @return string
911	*/
912	function l10n($key)
913	{
914	global $lang, $conf;
915
916	if ( ($val=@$lang[$key]) == null)
917	{
918	if ($conf['debug_l10n'] and !isset($lang[$key]) and !empty($key))
919	{
920	trigger_error('[l10n] language key "'. $key .'" not defined', E_USER_WARNING);
921	}
922	$val = $key;
923	}
924
925	if (func_num_args() > 1)
926	{
927	$val = vsprintf($val, array_slice(func_get_args(), 1));
928	}
929
930	return $val;
931	}
932
933	/**
934	* returns the printf value for strings including %d
935	* return is concorded with decimal value (singular, plural)
936	*
937	* @param singular string key
938	* @param plural string key
939	* @param decimal value
940	* @return string
941	*/
942	function l10n_dec($singular_fmt_key, $plural_fmt_key, $decimal)
943	{
944	global $lang_info;
945
946	return
947	sprintf(
948	l10n((
949	(($decimal > 1) or ($decimal == 0 and $lang_info['zero_plural']))
950	? $plural_fmt_key
951	: $singular_fmt_key
952	)), $decimal);
953	}
954
955	/*
956	* returns a single element to use with l10n_args
957	*
958	* @param string key: translation key
959	* @param mixed args: arguments to use on sprintf($key, args)
960	* if args is a array, each values are used on sprintf
961	* @return string
962	*/
963	function get_l10n_args($key, $args)
964	{
965	if (is_array($args))
966	{
967	$key_arg = array_merge(array($key), $args);
968	}
969	else
970	{
971	$key_arg = array($key, $args);
972	}
973	return array('key_args' => $key_arg);
974	}
975
976	/*
977	* returns a string formated with l10n elements
978	*
979	* @param array $key_args: l10n_args element or array of l10n_args elements
980	* @param string $sep: used when translated elements are concatened
981	* @return string
982	*/
983	function l10n_args($key_args, $sep = "\n")
984	{
985	if (is_array($key_args))
986	{
987	foreach ($key_args as $key => $element)
988	{
989	if (isset($result))
990	{
991	$result .= $sep;
992	}
993	else
994	{
995	$result = '';
996	}
997
998	if ($key === 'key_args')
999	{
1000	array_unshift($element, l10n(array_shift($element))); // translate the key
1001	$result .= call_user_func_array('sprintf', $element);
1002	}
1003	else
1004	{
1005	$result .= l10n_args($element, $sep);
1006	}
1007	}
1008	}
1009	else
1010	{
1011	fatal_error('l10n_args: Invalid arguments');
1012	}
1013
1014	return $result;
1015	}
1016
1017	/**
1018	* returns the corresponding value from $themeconf if existing. Else, the
1019	* key is returned
1020	*
1021	* @param string key
1022	* @return string
1023	*/
1024	function get_themeconf($key)
1025	{
1026	global $template;
1027
1028	return $template->get_themeconf($key);
1029	}
1030
1031	/**
1032	* Returns webmaster mail address depending on $conf['webmaster_id']
1033	*
1034	* @return string
1035	*/
1036	function get_webmaster_mail_address()
1037	{
1038	global $conf;
1039
1040	$query = '
1041	SELECT '.$conf['user_fields']['email'].'
1042	FROM '.USERS_TABLE.'
1043	WHERE '.$conf['user_fields']['id'].' = '.$conf['webmaster_id'].'
1044	;';
1045	list($email) = pwg_db_fetch_row(pwg_query($query));
1046
1047	$email = trigger_event('get_webmaster_mail_address', $email);
1048
1049	return $email;
1050	}
1051
1052	/**
1053	* Add configuration parameters from database to global $conf array
1054	*
1055	* @return void
1056	*/
1057	function load_conf_from_db($condition = '')
1058	{
1059	global $conf;
1060
1061	$query = '
1062	SELECT param, value
1063	FROM '.CONFIG_TABLE.'
1064	'.(!empty($condition) ? 'WHERE '.$condition : '').'
1065	;';
1066	$result = pwg_query($query);
1067
1068	if ((pwg_db_num_rows($result) == 0) and !empty($condition))
1069	{
1070	fatal_error('No configuration data');
1071	}
1072
1073	while ($row = pwg_db_fetch_assoc($result))
1074	{
1075	$val = isset($row['value']) ? $row['value'] : '';
1076	// If the field is true or false, the variable is transformed into a boolean value.
1077	if ($val == 'true')
1078	{
1079	$val = true;
1080	}
1081	elseif ($val == 'false')
1082	{
1083	$val = false;
1084	}
1085	$conf[ $row['param'] ] = $val;
1086	}
1087
1088	trigger_action('load_conf', $condition);
1089	}
1090
1091	/**
1092	* Add or update a config parameter
1093	* @param string $param
1094	* @param string $value
1095	*/
1096	function conf_update_param($param, $value)
1097	{
1098	$query = '
1099	SELECT
1100	param,
1101	value
1102	FROM '.CONFIG_TABLE.'
1103	WHERE param = \''.$param.'\'
1104	;';
1105	$params = array_from_query($query, 'param');
1106
1107	if (count($params) == 0)
1108	{
1109	$query = '
1110	INSERT
1111	INTO '.CONFIG_TABLE.'
1112	(param, value)
1113	VALUES(\''.$param.'\', \''.$value.'\')
1114	;';
1115	pwg_query($query);
1116	}
1117	else
1118	{
1119	$query = '
1120	UPDATE '.CONFIG_TABLE.'
1121	SET value = \''.$value.'\'
1122	WHERE param = \''.$param.'\'
1123	;';
1124	pwg_query($query);
1125	}
1126	}
1127
1128	/**
1129	* Delete on or more config parameters
1130	* @since 2.6
1131	* @param string\|string[] $params
1132	*/
1133	function conf_delete_param($params)
1134	{
1135	global $conf;
1136
1137	if (!is_array($params))
1138	{
1139	$params = array($params);
1140	}
1141	if (empty($params))
1142	{
1143	return;
1144	}
1145
1146	$query = '
1147	DELETE FROM '.CONFIG_TABLE.'
1148	WHERE param IN(\''. implode('\',\'', $params) .'\')
1149	;';
1150	pwg_query($query);
1151
1152	foreach ($params as $param)
1153	{
1154	unset($conf[$param]);
1155	}
1156	}
1157
1158	/**
1159	* Prepends and appends a string at each value of the given array.
1160	*
1161	* @param array
1162	* @param string prefix to each array values
1163	* @param string suffix to each array values
1164	*/
1165	function prepend_append_array_items($array, $prepend_str, $append_str)
1166	{
1167	array_walk(
1168	$array,
1169	create_function('&$s', '$s = "'.$prepend_str.'".$s."'.$append_str.'";')
1170	);
1171
1172	return $array;
1173	}
1174
1175	/**
1176	* creates an hashed based on a query, this function is a very common
1177	* pattern used here. Among the selected columns fetched, choose one to be
1178	* the key, another one to be the value.
1179	*
1180	* @param string $query
1181	* @param string $keyname
1182	* @param string $valuename
1183	* @return array
1184	*/
1185	function simple_hash_from_query($query, $keyname, $valuename)
1186	{
1187	$array = array();
1188
1189	$result = pwg_query($query);
1190	while ($row = pwg_db_fetch_assoc($result))
1191	{
1192	$array[ $row[$keyname] ] = $row[$valuename];
1193	}
1194
1195	return $array;
1196	}
1197
1198	/**
1199	* creates an hashed based on a query, this function is a very common
1200	* pattern used here. The key is given as parameter, the value is an associative
1201	* array.
1202	*
1203	* @param string $query
1204	* @param string $keyname
1205	* @return array
1206	*/
1207	function hash_from_query($query, $keyname)
1208	{
1209	$array = array();
1210	$result = pwg_query($query);
1211	while ($row = pwg_db_fetch_assoc($result))
1212	{
1213	$array[ $row[$keyname] ] = $row;
1214	}
1215	return $array;
1216	}
1217
1218	/**
1219	* Return basename of the current script
1220	* Lower case convertion is applied on return value
1221	* Return value is without file extention ".php"
1222	*
1223	* @param void
1224	*
1225	* @return script basename
1226	*/
1227	function script_basename()
1228	{
1229	global $conf;
1230
1231	foreach (array('SCRIPT_NAME', 'SCRIPT_FILENAME', 'PHP_SELF') as $value)
1232	{
1233	if (!empty($_SERVER[$value]))
1234	{
1235	$filename = strtolower($_SERVER[$value]);
1236	if ($conf['php_extension_in_urls'] and get_extension($filename)!=='php')
1237	continue;
1238	$basename = basename($filename, '.php');
1239	if (!empty($basename))
1240	{
1241	return $basename;
1242	}
1243	}
1244	}
1245	return '';
1246	}
1247
1248	/**
1249	* Return value for the current page define on $conf['filter_pages']
1250	* Îf value is not defined, default value are returned
1251	*
1252	* @param value name
1253	*
1254	* @return filter page value
1255	*/
1256	function get_filter_page_value($value_name)
1257	{
1258	global $conf;
1259
1260	$page_name = script_basename();
1261
1262	if (isset($conf['filter_pages'][$page_name][$value_name]))
1263	{
1264	return $conf['filter_pages'][$page_name][$value_name];
1265	}
1266	else if (isset($conf['filter_pages']['default'][$value_name]))
1267	{
1268	return $conf['filter_pages']['default'][$value_name];
1269	}
1270	else
1271	{
1272	return null;
1273	}
1274	}
1275
1276	/**
1277	* returns the character set of data sent to browsers / received from forms
1278	*/
1279	function get_pwg_charset()
1280	{
1281	$pwg_charset = 'utf-8';
1282	if (defined('PWG_CHARSET'))
1283	{
1284	$pwg_charset = PWG_CHARSET;
1285	}
1286	return $pwg_charset;
1287	}
1288
1289	/**
1290	* includes a language file or returns the content of a language file
1291	* availability of the file
1292	*
1293	* in descending order of preference:
1294	* param language, user language, default language
1295	* Piwigo default language.
1296	*
1297	* @param string filename
1298	* @param string dirname
1299	* @param mixed options can contain
1300	* language - language to load (if empty uses user language)
1301	* return - if true the file content is returned otherwise the file is evaluated as php
1302	* target_charset -
1303	* no_fallback - the language must be respected
1304	* local - if true, get local language file
1305	* @return boolean success status or a string if options['return'] is true
1306	*/
1307	function load_language($filename, $dirname = '',
1308	$options = array() )
1309	{
1310	global $user, $language_files;
1311
1312	if ( !empty($dirname) and !empty($filename) )
1313	{
1314	if ( empty($language_files[$dirname]) or !in_array($filename,$language_files[$dirname]) )
1315	{
1316	$language_files[$dirname][] = $filename;
1317	}
1318	}
1319
1320	if (! @$options['return'] )
1321	{
1322	$filename .= '.php'; //MAYBE to do .. load .po and .mo localization files
1323	}
1324	if (empty($dirname))
1325	{
1326	$dirname = PHPWG_ROOT_PATH;
1327	}
1328	$dirname .= 'language/';
1329
1330	$languages = array();
1331	if ( !empty($options['language']) )
1332	{
1333	$languages[] = $options['language'];
1334	}
1335	if ( !empty($user['language']) )
1336	{
1337	$languages[] = $user['language'];
1338	}
1339	if ( ! @$options['no_fallback'] )
1340	{
1341	if ( defined('PHPWG_INSTALLED') )
1342	{
1343	$languages[] = get_default_language();
1344	}
1345	$languages[] = PHPWG_DEFAULT_LANGUAGE;
1346	}
1347
1348	$languages = array_unique($languages);
1349
1350	/*Note: target charset is always utf-8
1351	if ( empty($options['target_charset']) )
1352	{
1353	$target_charset = get_pwg_charset();
1354	}
1355	else
1356	{
1357	$target_charset = $options['target_charset'];
1358	}
1359	$target_charset = strtolower($target_charset);*/
1360	$source_file = '';
1361	$selected_language = '';
1362	foreach ($languages as $language)
1363	{
1364	$f = @$options['local'] ?
1365	$dirname.$language.'.'.$filename:
1366	$dirname.$language.'/'.$filename;
1367
1368	if (file_exists($f))
1369	{
1370	$selected_language = $language;
1371	$source_file = $f;
1372	break;
1373	}
1374	}
1375
1376	if ( !empty($source_file) )
1377	{
1378	if (! @$options['return'] )
1379	{
1380	@include($source_file);
1381	$load_lang = @$lang;
1382	$load_lang_info = @$lang_info;
1383
1384	global $lang, $lang_info;
1385	if ( !isset($lang) ) $lang=array();
1386	if ( !isset($lang_info) ) $lang_info=array();
1387
1388	$parent_language = !empty($load_lang_info['parent']) ? $load_lang_info['parent'] : (
1389	!empty($lang_info['parent']) ? $lang_info['parent'] : null );
1390	if (!empty($parent_language))
1391	{
1392	@include(str_replace($selected_language, $parent_language, $source_file));
1393	}
1394
1395	/* Note: target charset is always utf-8
1396	if ( 'utf-8'!=$target_charset)
1397	{
1398	if ( is_array($load_lang) )
1399	{
1400	foreach ($load_lang as $k => $v)
1401	{
1402	if ( is_array($v) )
1403	{
1404	$func = create_function('$v', 'return convert_charset($v, "utf-8", "'.$target_charset.'");' );
1405	$lang[$k] = array_map($func, $v);
1406	}
1407	else
1408	$lang[$k] = convert_charset($v, 'utf-8', $target_charset);
1409	}
1410	}
1411	if ( is_array($load_lang_info) )
1412	{
1413	foreach ($load_lang_info as $k => $v)
1414	{
1415	$lang_info[$k] = convert_charset($v, 'utf-8', $target_charset);
1416	}
1417	}
1418	}
1419	else
1420	{*/
1421	$lang = array_merge( $lang, (array)$load_lang );
1422	$lang_info = array_merge( $lang_info, (array)$load_lang_info );
1423	//}
1424	return true;
1425	}
1426	else
1427	{
1428	$content = @file_get_contents($source_file);
1429	//Note: target charset is always utf-8 $content = convert_charset($content, 'utf-8', $target_charset);
1430	return $content;
1431	}
1432	}
1433	return false;
1434	}
1435
1436	/**
1437	* converts a string from a character set to another character set
1438	* @param string str the string to be converted
1439	* @param string source_charset the character set in which the string is encoded
1440	* @param string dest_charset the destination character set
1441	*/
1442	function convert_charset($str, $source_charset, $dest_charset)
1443	{
1444	if ($source_charset==$dest_charset)
1445	return $str;
1446	if ($source_charset=='iso-8859-1' and $dest_charset=='utf-8')
1447	{
1448	return utf8_encode($str);
1449	}
1450	if ($source_charset=='utf-8' and $dest_charset=='iso-8859-1')
1451	{
1452	return utf8_decode($str);
1453	}
1454	if (function_exists('iconv'))
1455	{
1456	return iconv($source_charset, $dest_charset, $str);
1457	}
1458	if (function_exists('mb_convert_encoding'))
1459	{
1460	return mb_convert_encoding( $str, $dest_charset, $source_charset );
1461	}
1462	return $str; //???
1463	}
1464
1465	/**
1466	* makes sure a index.htm protects the directory from browser file listing
1467	*
1468	* @param string dir directory
1469	*/
1470	function secure_directory($dir)
1471	{
1472	$file = $dir.'/index.htm';
1473	if (!file_exists($file))
1474	{
1475	@file_put_contents($file, 'Not allowed!');
1476	}
1477	}
1478
1479	/**
1480	* returns a "secret key" that is to be sent back when a user posts a form
1481	*
1482	* @param int valid_after_seconds - key validity start time from now
1483	*/
1484	function get_ephemeral_key($valid_after_seconds, $aditionnal_data_to_hash = '')
1485	{
1486	global $conf;
1487	$time = round(microtime(true), 1);
1488	return $time.':'.$valid_after_seconds.':'
1489	.hash_hmac(
1490	'md5',
1491	$time.substr($_SERVER['REMOTE_ADDR'],0,5).$valid_after_seconds.$aditionnal_data_to_hash,
1492	$conf['secret_key']);
1493	}
1494
1495	function verify_ephemeral_key($key, $aditionnal_data_to_hash = '')
1496	{
1497	global $conf;
1498	$time = microtime(true);
1499	$key = explode( ':', @$key );
1500	if ( count($key)!=3
1501	or $key[0]>$time-(float)$key[1] // page must have been retrieved more than X sec ago
1502	or $key[0]<$time-3600 // 60 minutes expiration
1503	or hash_hmac(
1504	'md5', $key[0].substr($_SERVER['REMOTE_ADDR'],0,5).$key[1].$aditionnal_data_to_hash, $conf['secret_key']
1505	) != $key[2]
1506	)
1507	{
1508	return false;
1509	}
1510	return true;
1511	}
1512
1513	/**
1514	* return an array which will be sent to template to display navigation bar
1515	*/
1516	function create_navigation_bar($url, $nb_element, $start, $nb_element_page, $clean_url = false, $param_name='start')
1517	{
1518	global $conf;
1519
1520	$navbar = array();
1521	$pages_around = $conf['paginate_pages_around'];
1522	$start_str = $clean_url ? '/'.$param_name.'-' : (strpos($url, '?')===false ? '?':'&').$param_name.'=';
1523
1524	if (!isset($start) or !is_numeric($start) or (is_numeric($start) and $start < 0))
1525	{
1526	$start = 0;
1527	}
1528
1529	// navigation bar useful only if more than one page to display !
1530	if ($nb_element > $nb_element_page)
1531	{
1532	$url_start = $url.$start_str;
1533
1534	$cur_page = $navbar['CURRENT_PAGE'] = $start / $nb_element_page + 1;
1535	$maximum = ceil($nb_element / $nb_element_page);
1536
1537	$start = $nb_element_page * round( $start / $nb_element_page );
1538	$previous = $start - $nb_element_page;
1539	$next = $start + $nb_element_page;
1540	$last = ($maximum - 1) * $nb_element_page;
1541
1542	// link to first page and previous page?
1543	if ($cur_page != 1)
1544	{
1545	$navbar['URL_FIRST'] = $url;
1546	$navbar['URL_PREV'] = $previous > 0 ? $url_start.$previous : $url;
1547	}
1548	// link on next page and last page?
1549	if ($cur_page != $maximum)
1550	{
1551	$navbar['URL_NEXT'] = $url_start.($next < $last ? $next : $last);
1552	$navbar['URL_LAST'] = $url_start.$last;
1553	}
1554
1555	// pages to display
1556	$navbar['pages'] = array();
1557	$navbar['pages'][1] = $url;
1558	for ($i = max( floor($cur_page) - $pages_around , 2), $stop = min( ceil($cur_page) + $pages_around + 1, $maximum);
1559	$i < $stop; $i++)
1560	{
1561	$navbar['pages'][$i] = $url.$start_str.(($i - 1) * $nb_element_page);
1562	}
1563	$navbar['pages'][$maximum] = $url_start.$last;
1564	$navbar['NB_PAGE']=$maximum;
1565	}
1566	return $navbar;
1567	}
1568
1569	/**
1570	* return an array which will be sent to template to display recent icon
1571	*/
1572	function get_icon($date, $is_child_date = false)
1573	{
1574	global $cache, $user;
1575
1576	if (empty($date))
1577	{
1578	return false;
1579	}
1580
1581	if (!isset($cache['get_icon']['title']))
1582	{
1583	$cache['get_icon']['title'] = l10n(
1584	'photos posted during the last %d days',
1585	$user['recent_period']
1586	);
1587	}
1588
1589	$icon = array(
1590	'TITLE' => $cache['get_icon']['title'],
1591	'IS_CHILD_DATE' => $is_child_date,
1592	);
1593
1594	if (isset($cache['get_icon'][$date]))
1595	{
1596	return $cache['get_icon'][$date] ? $icon : array();
1597	}
1598
1599	if (!isset($cache['get_icon']['sql_recent_date']))
1600	{
1601	// Use MySql date in order to standardize all recent "actions/queries"
1602	$cache['get_icon']['sql_recent_date'] = pwg_db_get_recent_period($user['recent_period']);
1603	}
1604
1605	$cache['get_icon'][$date] = $date > $cache['get_icon']['sql_recent_date'];
1606
1607	return $cache['get_icon'][$date] ? $icon : array();
1608	}
1609
1610	/**
1611	* check token comming from form posted or get params to prevent csrf attacks
1612	* if pwg_token is empty action doesn't require token
1613	* else pwg_token is compare to server token
1614	*
1615	* @return void access denied if token given is not equal to server token
1616	*/
1617	function check_pwg_token()
1618	{
1619	if (!empty($_REQUEST['pwg_token']))
1620	{
1621	if (get_pwg_token() != $_REQUEST['pwg_token'])
1622	{
1623	access_denied();
1624	}
1625	}
1626	else
1627	bad_request('missing token');
1628	}
1629
1630	function get_pwg_token()
1631	{
1632	global $conf;
1633
1634	return hash_hmac('md5', session_id(), $conf['secret_key']);
1635	}
1636
1637	/*
1638	* breaks the script execution if the given value doesn't match the given
1639	* pattern. This should happen only during hacking attempts.
1640	*
1641	* @param string param_name
1642	* @param array param_array
1643	* @param boolean is_array
1644	* @param string pattern
1645	* @param boolean mandatory
1646	*
1647	* @return void
1648	*/
1649	function check_input_parameter($param_name, $param_array, $is_array, $pattern, $mandatory=false)
1650	{
1651	$param_value = null;
1652	if (isset($param_array[$param_name]))
1653	{
1654	$param_value = $param_array[$param_name];
1655	}
1656
1657	// it's ok if the input parameter is null
1658	if (empty($param_value))
1659	{
1660	if ($mandatory)
1661	{
1662	fatal_error('[Hacking attempt] the input parameter "'.$param_name.'" is not valid');
1663	}
1664	return true;
1665	}
1666
1667	if ($is_array)
1668	{
1669	if (!is_array($param_value))
1670	{
1671	fatal_error('[Hacking attempt] the input parameter "'.$param_name.'" should be an array');
1672	}
1673
1674	foreach ($param_value as $item_to_check)
1675	{
1676	if (!preg_match($pattern, $item_to_check))
1677	{
1678	fatal_error('[Hacking attempt] an item is not valid in input parameter "'.$param_name.'"');
1679	}
1680	}
1681	}
1682	else
1683	{
1684	if (!preg_match($pattern, $param_value))
1685	{
1686	fatal_error('[Hacking attempt] the input parameter "'.$param_name.'" is not valid');
1687	}
1688	}
1689	}
1690
1691
1692	function get_privacy_level_options()
1693	{
1694	global $conf;
1695
1696	$options = array();
1697	$label = '';
1698	foreach (array_reverse($conf['available_permission_levels']) as $level)
1699	{
1700	if (0 == $level)
1701	{
1702	$label = l10n('Everybody');
1703	}
1704	else
1705	{
1706	if (strlen($label))
1707	{
1708	$label .= ', ';
1709	}
1710	$label .= l10n( sprintf('Level %d', $level) );
1711	}
1712	$options[$level] = $label;
1713	}
1714	return $options;
1715	}
1716
1717
1718	/**
1719	* return the branch from the version. For example version 2.2.4 is for branch 2.2
1720	*/
1721	function get_branch_from_version($version)
1722	{
1723	return implode('.', array_slice(explode('.', $version), 0, 2));
1724	}
1725
1726	/**
1727	* return the device type: mobile, tablet or desktop
1728	*/
1729	function get_device()
1730	{
1731	$device = pwg_get_session_var('device');
1732
1733	if (is_null($device))
1734	{
1735	include_once(PHPWG_ROOT_PATH.'include/mdetect.php');
1736	$uagent_obj = new uagent_info();
1737	if ($uagent_obj->DetectSmartphone())
1738	{
1739	$device = 'mobile';
1740	}
1741	elseif ($uagent_obj->DetectTierTablet())
1742	{
1743	$device = 'tablet';
1744	}
1745	else
1746	{
1747	$device = 'desktop';
1748	}
1749	pwg_set_session_var('device', $device);
1750	}
1751
1752	return $device;
1753	}
1754
1755	/**
1756	* return true if mobile theme should be loaded
1757	*/
1758	function mobile_theme()
1759	{
1760	global $conf;
1761
1762	if (empty($conf['mobile_theme']))
1763	{
1764	return false;
1765	}
1766
1767	if (isset($_GET['mobile']))
1768	{
1769	$is_mobile_theme = get_boolean($_GET['mobile']);
1770	pwg_set_session_var('mobile_theme', $is_mobile_theme);
1771	}
1772	else
1773	{
1774	$is_mobile_theme = pwg_get_session_var('mobile_theme');
1775	}
1776
1777	if (is_null($is_mobile_theme))
1778	{
1779	$is_mobile_theme = (get_device() == 'mobile');
1780	pwg_set_session_var('mobile_theme', $is_mobile_theme);
1781	}
1782
1783	return $is_mobile_theme;
1784	}
1785
1786	/**
1787	* check url format
1788	*/
1789	function url_check_format($url)
1790	{
1791	if (version_compare(PHP_VERSION, '5.2.0') >= 0)
1792	{
1793	return filter_var($url, FILTER_VALIDATE_URL, FILTER_FLAG_SCHEME_REQUIRED \| FILTER_FLAG_HOST_REQUIRED)!==false;
1794	}
1795	else
1796	{
1797	// http://mathiasbynens.be/demo/url-regex @imme_emosol
1798	return (bool)preg_match('@^https?://(-\.)?([^\s/?\.#-]+\.?)+(/[^\s]*)?$@iS', $url);
1799	}
1800	}
1801
1802	/**
1803	* check email format
1804	*/
1805	function email_check_format($mail_address)
1806	{
1807	if (version_compare(PHP_VERSION, '5.2.0') >= 0)
1808	{
1809	return filter_var($mail_address, FILTER_VALIDATE_EMAIL)!==false;
1810	}
1811	else
1812	{
1813	$atom = '[-a-z0-9!#$%&\'*+\\/=?^_`{\|}~]'; // before arobase
1814	$domain = '([a-z0-9]([-a-z0-9]*[a-z0-9]+)?)'; // domain name
1815	$regex = '/^' . $atom . '+' . '(\.' . $atom . '+)*' . '@' . '(' . $domain . '{1,63}\.)+' . $domain . '{2,63}$/i';
1816
1817	return (bool)preg_match($regex, $mail_address);
1818	}
1819	}
1820
1821	/** returns the number of available comments for the connected user */
1822	function get_nb_available_comments()
1823	{
1824	global $user;
1825	if (!isset($user['nb_available_comments']))
1826	{
1827	$where = array();
1828	if ( !is_admin() )
1829	$where[] = 'validated=\'true\'';
1830	$where[] = get_sql_condition_FandF
1831	(
1832	array
1833	(
1834	'forbidden_categories' => 'category_id',
1835	'visible_categories' => 'category_id',
1836	'visible_images' => 'ic.image_id'
1837	),
1838	'', true
1839	);
1840
1841	$query = '
1842	SELECT COUNT(DISTINCT(com.id))
1843	FROM '.IMAGE_CATEGORY_TABLE.' AS ic
1844	INNER JOIN '.COMMENTS_TABLE.' AS com
1845	ON ic.image_id = com.image_id
1846	WHERE '.implode('
1847	AND ', $where);
1848	list($user['nb_available_comments']) = pwg_db_fetch_row(pwg_query($query));
1849
1850	single_update(USER_CACHE_TABLE,
1851	array('nb_available_comments'=>$user['nb_available_comments']),
1852	array('user_id'=>$user['id'])
1853	);
1854	}
1855	return $user['nb_available_comments'];
1856	}
1857
1858	?>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: