2013-08-04 18:58:31 +00:00
< ? php
/**
2014-01-28 09:36:04 +00:00
* wallabag , self hostable application allowing you to not miss any content anymore
2013-08-04 18:58:31 +00:00
*
2014-01-28 09:36:04 +00:00
* @ category wallabag
* @ author Nicolas Lœuillet < nicolas @ loeuillet . org >
2013-08-04 18:58:31 +00:00
* @ copyright 2013
2014-07-11 14:03:59 +00:00
* @ license http :// opensource . org / licenses / MIT see COPYING file
2013-08-04 18:58:31 +00:00
*/
class Poche
{
2014-07-11 14:03:59 +00:00
/**
* @ var User
*/
2013-08-06 12:18:03 +00:00
public $user ;
2014-07-11 14:03:59 +00:00
/**
* @ var Database
*/
2013-08-04 18:58:31 +00:00
public $store ;
2014-07-11 14:03:59 +00:00
/**
* @ var Template
*/
2013-08-04 18:58:31 +00:00
public $tpl ;
2014-07-11 14:03:59 +00:00
/**
* @ var Language
*/
public $language ;
/**
* @ var Routing
*/
public $routing ;
/**
* @ var Messages
*/
2013-08-05 13:54:37 +00:00
public $messages ;
2014-07-11 14:03:59 +00:00
/**
* @ var Paginator
*/
2013-08-05 19:56:32 +00:00
public $pagination ;
2014-04-02 17:55:19 +00:00
2013-09-20 08:21:39 +00:00
public function __construct ()
2013-08-04 18:58:31 +00:00
{
2014-07-11 14:03:59 +00:00
$this -> init ();
2013-08-04 18:58:31 +00:00
}
2014-04-02 17:55:19 +00:00
private function init ()
2013-09-20 08:21:39 +00:00
{
Tools :: initPhp ();
2013-08-04 18:58:31 +00:00
2014-07-11 14:03:59 +00:00
$pocheUser = Session :: getParam ( 'poche_user' );
if ( $pocheUser && $pocheUser != array ()) {
$this -> user = $pocheUser ;
2013-09-20 08:21:39 +00:00
} else {
2014-07-11 14:03:59 +00:00
// fake user, just for install & login screens
2013-09-20 08:21:39 +00:00
$this -> user = new User ();
$this -> user -> setConfig ( $this -> getDefaultConfig ());
}
2014-07-11 14:03:59 +00:00
$this -> pagination = new Paginator ( $this -> user -> getConfigValue ( 'pager' ), 'p' );
$this -> language = new Language ( $this );
$this -> tpl = new Template ( $this );
$this -> store = new Database ();
$this -> messages = new Messages ();
$this -> routing = new Routing ( $this );
2013-09-20 08:21:39 +00:00
}
2014-04-02 17:55:19 +00:00
2014-07-11 14:03:59 +00:00
public function run ()
{
$this -> routing -> run ();
2013-09-20 08:21:39 +00:00
}
2014-04-02 17:55:19 +00:00
2013-08-15 08:54:14 +00:00
/**
2014-07-11 14:03:59 +00:00
* Creates a new user
2013-08-15 08:54:14 +00:00
*/
2014-07-25 06:42:03 +00:00
public function createNewUser ( $username , $password , $email = " " )
2013-08-04 18:58:31 +00:00
{
2014-07-12 17:01:11 +00:00
if ( ! empty ( $username ) && ! empty ( $password )){
$newUsername = filter_var ( $username , FILTER_SANITIZE_STRING );
2014-07-25 06:42:03 +00:00
$email = filter_var ( $email , FILTER_SANITIZE_STRING );
2014-07-12 17:01:11 +00:00
if ( ! $this -> store -> userExists ( $newUsername )){
2014-07-25 06:42:03 +00:00
if ( $this -> store -> install ( $newUsername , Tools :: encodeString ( $password . $newUsername ), $email )) {
2014-07-12 17:01:11 +00:00
Tools :: logm ( 'The new user ' . $newUsername . ' has been installed' );
$this -> messages -> add ( 's' , sprintf ( _ ( 'The new user %s has been installed. Do you want to <a href="?logout">logout ?</a>' ), $newUsername ));
Tools :: redirect ();
2014-04-23 08:29:53 +00:00
}
else {
2014-07-12 17:01:11 +00:00
Tools :: logm ( 'error during adding new user' );
2014-04-23 08:29:53 +00:00
Tools :: redirect ();
}
}
2014-07-12 17:01:11 +00:00
else {
$this -> messages -> add ( 'e' , sprintf ( _ ( 'Error : An user with the name %s already exists !' ), $newUsername ));
Tools :: logm ( 'An user with the name ' . $newUsername . ' already exists !' );
Tools :: redirect ();
}
2014-04-23 08:29:53 +00:00
}
}
2014-04-25 10:25:03 +00:00
2014-07-11 14:03:59 +00:00
/**
* Delete an existing user
*/
2014-07-12 17:01:11 +00:00
public function deleteUser ( $password )
2014-07-11 14:03:59 +00:00
{
2014-07-12 17:01:11 +00:00
if ( $this -> store -> listUsers () > 1 ) {
if ( Tools :: encodeString ( $password . $this -> user -> getUsername ()) == $this -> store -> getUserPassword ( $this -> user -> getId ())) {
$username = $this -> user -> getUsername ();
$this -> store -> deleteUserConfig ( $this -> user -> getId ());
Tools :: logm ( 'The configuration for user ' . $username . ' has been deleted !' );
$this -> store -> deleteTagsEntriesAndEntries ( $this -> user -> getId ());
Tools :: logm ( 'The entries for user ' . $username . ' has been deleted !' );
$this -> store -> deleteUser ( $this -> user -> getId ());
Tools :: logm ( 'User ' . $username . ' has been completely deleted !' );
Session :: logout ();
Tools :: logm ( 'logout' );
Tools :: redirect ();
$this -> messages -> add ( 's' , sprintf ( _ ( 'User %s has been successfully deleted !' ), $username ));
2014-04-23 08:29:53 +00:00
}
else {
2014-07-12 17:01:11 +00:00
Tools :: logm ( 'Bad password !' );
$this -> messages -> add ( 'e' , _ ( 'Error : The password is wrong !' ));
2014-04-23 08:29:53 +00:00
}
}
2014-07-12 17:01:11 +00:00
else {
Tools :: logm ( 'Only user !' );
$this -> messages -> add ( 'e' , _ ( 'Error : You are the only user, you cannot delete your account !' ));
}
2014-04-23 08:29:53 +00:00
}
2013-08-04 18:58:31 +00:00
2013-08-06 13:51:48 +00:00
public function getDefaultConfig ()
2014-04-02 17:55:19 +00:00
{
2013-08-06 13:51:48 +00:00
return array (
'pager' => PAGINATION ,
'language' => LANG ,
2013-09-20 08:21:39 +00:00
'theme' => DEFAULT_THEME
);
2013-08-06 13:51:48 +00:00
}
2013-08-04 18:58:31 +00:00
/**
* Call action ( mark as fav , archive , delete , etc . )
*/
2014-02-14 12:59:27 +00:00
public function action ( $action , Url $url , $id = 0 , $import = FALSE , $autoclose = FALSE , $tags = null )
2013-08-04 18:58:31 +00:00
{
switch ( $action )
{
case 'add' :
2014-04-03 09:18:49 +00:00
$content = Tools :: getPageContent ( $url );
$title = ( $content [ 'rss' ][ 'channel' ][ 'item' ][ 'title' ] != '' ) ? $content [ 'rss' ][ 'channel' ][ 'item' ][ 'title' ] : _ ( 'Untitled' );
$body = $content [ 'rss' ][ 'channel' ][ 'item' ][ 'description' ];
// clean content from prevent xss attack
2014-07-12 17:01:11 +00:00
$purifier = $this -> _getPurifier ();
2014-04-03 09:18:49 +00:00
$title = $purifier -> purify ( $title );
$body = $purifier -> purify ( $body );
2014-02-21 14:44:13 +00:00
2014-04-02 17:55:19 +00:00
//search for possible duplicate
2014-03-14 07:54:44 +00:00
$duplicate = NULL ;
2014-04-03 09:18:49 +00:00
$duplicate = $this -> store -> retrieveOneByURL ( $url -> getUrl (), $this -> user -> getId ());
2014-02-14 15:27:22 +00:00
2014-04-02 17:55:19 +00:00
$last_id = $this -> store -> add ( $url -> getUrl (), $title , $body , $this -> user -> getId ());
2014-04-03 09:18:49 +00:00
if ( $last_id ) {
2013-08-25 18:10:23 +00:00
Tools :: logm ( 'add link ' . $url -> getUrl ());
if ( DOWNLOAD_PICTURES ) {
2014-07-11 14:03:59 +00:00
$content = Picture :: filterPicture ( $body , $url -> getUrl (), $last_id );
2013-08-25 18:10:23 +00:00
Tools :: logm ( 'updating content article' );
$this -> store -> updateContent ( $last_id , $content , $this -> user -> getId ());
}
2014-02-14 15:27:22 +00:00
if ( $duplicate != NULL ) {
// duplicate exists, so, older entry needs to be deleted (as new entry should go to the top of list), BUT favorite mark and tags should be preserved
Tools :: logm ( 'link ' . $url -> getUrl () . ' is a duplicate' );
// 1) - preserve tags and favorite, then drop old entry
$this -> store -> reassignTags ( $duplicate [ 'id' ], $last_id );
if ( $duplicate [ 'is_fav' ]) {
$this -> store -> favoriteById ( $last_id , $this -> user -> getId ());
}
if ( $this -> store -> deleteById ( $duplicate [ 'id' ], $this -> user -> getId ())) {
Tools :: logm ( 'previous link ' . $url -> getUrl () . ' entry deleted' );
}
}
2015-01-12 23:49:05 +00:00
// if there are tags, add them to the new article
if ( isset ( $_GET [ 'tags' ])) {
$_POST [ 'value' ] = $_GET [ 'tags' ];
$_POST [ 'entry_id' ] = $last_id ;
$this -> action ( 'add_tag' , $url );
}
2014-04-02 17:55:19 +00:00
$this -> messages -> add ( 's' , _ ( 'the link has been added successfully' ));
2013-08-04 18:58:31 +00:00
}
else {
2014-04-03 09:18:49 +00:00
$this -> messages -> add ( 'e' , _ ( 'error during insertion : the link wasn\'t added' ));
Tools :: logm ( 'error during insertion : the link wasn\'t added ' . $url -> getUrl ());
2013-08-07 17:14:28 +00:00
}
2013-08-25 18:10:23 +00:00
2014-04-03 09:18:49 +00:00
if ( $autoclose == TRUE ) {
Tools :: redirect ( '?view=home' );
} else {
Tools :: redirect ( '?view=home&closewin=true' );
2013-08-04 18:58:31 +00:00
}
2015-01-18 20:49:05 +00:00
return $last_id ;
2013-08-04 18:58:31 +00:00
break ;
case 'delete' :
2015-01-13 00:11:45 +00:00
if ( isset ( $_GET [ 'search' ])) {
//when we want to apply a delete to a search
$tags = array ( $_GET [ 'search' ]);
$allentry_ids = $this -> store -> search ( $tags [ 0 ], $this -> user -> getId ());
$entry_ids = array ();
foreach ( $allentry_ids as $eachentry ) {
$entry_ids [] = $eachentry [ 0 ];
2013-08-04 18:58:31 +00:00
}
2015-01-13 00:11:45 +00:00
} else { // delete a single article
$entry_ids = array ( $id );
2013-08-04 18:58:31 +00:00
}
2015-01-13 00:11:45 +00:00
foreach ( $entry_ids as $id ) {
$msg = 'delete link #' . $id ;
if ( $this -> store -> deleteById ( $id , $this -> user -> getId ())) {
if ( DOWNLOAD_PICTURES ) {
Picture :: removeDirectory ( ABS_PATH . $id );
}
$this -> messages -> add ( 's' , _ ( 'the link has been deleted successfully' ));
}
else {
$this -> messages -> add ( 'e' , _ ( 'the link wasn\'t deleted' ));
$msg = 'error : can\'t delete link #' . $id ;
}
Tools :: logm ( $msg );
2013-08-04 18:58:31 +00:00
}
2013-10-25 12:25:37 +00:00
Tools :: redirect ( '?' );
2013-08-04 18:58:31 +00:00
break ;
case 'toggle_fav' :
2013-08-06 13:51:48 +00:00
$this -> store -> favoriteById ( $id , $this -> user -> getId ());
2013-08-04 18:58:31 +00:00
Tools :: logm ( 'mark as favorite link #' . $id );
2014-04-22 07:45:09 +00:00
if ( Tools :: isAjaxRequest () ) {
echo 1 ;
exit ;
}
else {
Tools :: redirect ();
}
2013-08-04 18:58:31 +00:00
break ;
case 'toggle_archive' :
2015-01-13 00:52:41 +00:00
if ( isset ( $_GET [ 'tag_id' ])) {
//when we want to archive a whole tag
$tag_id = $_GET [ 'tag_id' ];
$allentry_ids = $this -> store -> retrieveEntriesByTag ( $tag_id , $this -> user -> getId ());
$entry_ids = array ();
foreach ( $allentry_ids as $eachentry ) {
$entry_ids [] = $eachentry [ 0 ];
}
} else { //archive a single article
$entry_ids = array ( $id );
}
foreach ( $entry_ids as $id ) {
$this -> store -> archiveById ( $id , $this -> user -> getId ());
Tools :: logm ( 'archive link #' . $id );
}
2014-04-22 07:45:09 +00:00
if ( Tools :: isAjaxRequest () ) {
echo 1 ;
exit ;
}
else {
Tools :: redirect ();
}
2013-08-04 18:58:31 +00:00
break ;
2014-02-12 20:52:01 +00:00
case 'archive_all' :
$this -> store -> archiveAll ( $this -> user -> getId ());
Tools :: logm ( 'archive all links' );
2014-04-03 09:18:49 +00:00
Tools :: redirect ();
2014-02-12 20:52:01 +00:00
break ;
2013-12-06 14:07:51 +00:00
case 'add_tag' :
2014-04-30 09:25:03 +00:00
if ( isset ( $_GET [ 'search' ])) {
//when we want to apply a tag to a search
$tags = array ( $_GET [ 'search' ]);
$allentry_ids = $this -> store -> search ( $tags [ 0 ], $this -> user -> getId ());
$entry_ids = array ();
foreach ( $allentry_ids as $eachentry ) {
$entry_ids [] = $eachentry [ 0 ];
}
} else { //add a tag to a single article
$tags = explode ( ',' , $_POST [ 'value' ]);
$entry_ids = array ( $_POST [ 'entry_id' ]);
2014-03-10 14:28:47 +00:00
}
2014-04-30 09:25:03 +00:00
foreach ( $entry_ids as $entry_id ) {
$entry = $this -> store -> retrieveOneById ( $entry_id , $this -> user -> getId ());
if ( ! $entry ) {
$this -> messages -> add ( 'e' , _ ( 'Article not found!' ));
Tools :: logm ( 'error : article not found' );
Tools :: redirect ();
}
//get all already set tags to preven duplicates
$already_set_tags = array ();
$entry_tags = $this -> store -> retrieveTagsByEntry ( $entry_id );
foreach ( $entry_tags as $tag ) {
$already_set_tags [] = $tag [ 'value' ];
}
foreach ( $tags as $key => $tag_value ) {
$value = trim ( $tag_value );
if ( $value && ! in_array ( $value , $already_set_tags )) {
$tag = $this -> store -> retrieveTagByValue ( $value );
if ( is_null ( $tag )) {
# we create the tag
$tag = $this -> store -> createTag ( $value );
$sequence = '' ;
if ( STORAGE == 'postgres' ) {
$sequence = 'tags_id_seq' ;
}
$tag_id = $this -> store -> getLastId ( $sequence );
2014-03-10 14:28:47 +00:00
}
2014-04-30 09:25:03 +00:00
else {
$tag_id = $tag [ 'id' ];
}
# we assign the tag to the article
$this -> store -> setTagToEntry ( $tag_id , $entry_id );
}
2013-12-06 14:07:51 +00:00
}
}
2014-04-30 10:14:20 +00:00
$this -> messages -> add ( 's' , _ ( 'The tag has been applied successfully' ));
2014-05-14 16:51:02 +00:00
Tools :: logm ( 'The tag has been applied successfully' );
2014-04-03 09:18:49 +00:00
Tools :: redirect ();
2013-12-06 14:07:51 +00:00
break ;
case 'remove_tag' :
$tag_id = $_GET [ 'tag_id' ];
2014-02-19 12:25:28 +00:00
$entry = $this -> store -> retrieveOneById ( $id , $this -> user -> getId ());
if ( ! $entry ) {
$this -> messages -> add ( 'e' , _ ( 'Article not found!' ));
Tools :: logm ( 'error : article not found' );
Tools :: redirect ();
}
2013-12-06 14:07:51 +00:00
$this -> store -> removeTagForEntry ( $id , $tag_id );
2014-04-30 10:14:20 +00:00
Tools :: logm ( 'tag entry deleted' );
2014-05-14 16:51:02 +00:00
if ( $this -> store -> cleanUnusedTag ( $tag_id )) {
Tools :: logm ( 'tag deleted' );
}
2014-04-30 10:14:20 +00:00
$this -> messages -> add ( 's' , _ ( 'The tag has been successfully deleted' ));
2013-12-06 14:07:51 +00:00
Tools :: redirect ();
break ;
2015-02-01 11:05:10 +00:00
2014-12-13 21:56:30 +00:00
case 'reload_article' :
Tools :: logm ( 'reload article' );
$id = $_GET [ 'id' ];
$entry = $this -> store -> retrieveOneById ( $id , $this -> user -> getId ());
Tools :: logm ( 'reload url ' . $entry [ 'url' ]);
$url = new Url ( base64_encode ( $entry [ 'url' ]));
$this -> action ( 'add' , $url );
break ;
2014-12-22 15:19:29 +00:00
/* For some unknown reason I can't get displayView() to work here (it redirects to home view afterwards). So here's a dirty fix which redirects directly to URL */
case 'random' :
$count = $this -> store -> getEntriesByViewCount ( $view , $this -> user -> getId ());
$id = rand ( 1 , $count );
Tools :: logm ( 'get a random article' );
Tools :: redirect ( '?view=view&id=' . $id );
//$this->displayView('view', $id);
break ;
2013-08-04 18:58:31 +00:00
default :
break ;
}
}
function displayView ( $view , $id = 0 )
{
$tpl_vars = array ();
switch ( $view )
{
2014-11-03 06:44:56 +00:00
case 'about' :
break ;
2013-08-04 18:58:31 +00:00
case 'config' :
2014-07-12 17:01:11 +00:00
$dev_infos = $this -> _getPocheVersion ( 'dev' );
2014-03-01 18:10:17 +00:00
$dev = trim ( $dev_infos [ 0 ]);
$check_time_dev = date ( 'd-M-Y H:i' , $dev_infos [ 1 ]);
2014-07-12 17:01:11 +00:00
$prod_infos = $this -> _getPocheVersion ( 'prod' );
2014-03-01 18:10:17 +00:00
$prod = trim ( $prod_infos [ 0 ]);
$check_time_prod = date ( 'd-M-Y H:i' , $prod_infos [ 1 ]);
2013-10-07 11:19:34 +00:00
$compare_dev = version_compare ( POCHE , $dev );
$compare_prod = version_compare ( POCHE , $prod );
2014-07-11 14:03:59 +00:00
$themes = $this -> tpl -> getInstalledThemes ();
$languages = $this -> language -> getInstalledLanguages ();
2013-12-03 09:40:27 +00:00
$token = $this -> user -> getConfigValue ( 'token' );
2013-12-23 08:09:10 +00:00
$http_auth = ( isset ( $_SERVER [ 'PHP_AUTH_USER' ]) || isset ( $_SERVER [ 'REMOTE_USER' ])) ? true : false ;
2014-04-23 08:29:53 +00:00
$only_user = ( $this -> store -> listUsers () > 1 ) ? false : true ;
2013-08-05 10:34:16 +00:00
$tpl_vars = array (
2013-09-20 08:21:39 +00:00
'themes' => $themes ,
2013-10-07 12:26:25 +00:00
'languages' => $languages ,
2013-08-05 10:34:16 +00:00
'dev' => $dev ,
'prod' => $prod ,
2014-03-01 18:10:17 +00:00
'check_time_dev' => $check_time_dev ,
'check_time_prod' => $check_time_prod ,
2013-08-05 10:34:16 +00:00
'compare_dev' => $compare_dev ,
'compare_prod' => $compare_prod ,
2013-12-03 09:40:27 +00:00
'token' => $token ,
'user_id' => $this -> user -> getId (),
2013-10-20 14:53:54 +00:00
'http_auth' => $http_auth ,
2014-04-23 08:29:53 +00:00
'only_user' => $only_user
2013-08-05 10:34:16 +00:00
);
2013-08-04 18:58:31 +00:00
Tools :: logm ( 'config view' );
break ;
2013-12-06 13:03:14 +00:00
case 'edit-tags' :
# tags
2014-02-19 12:25:28 +00:00
$entry = $this -> store -> retrieveOneById ( $id , $this -> user -> getId ());
if ( ! $entry ) {
$this -> messages -> add ( 'e' , _ ( 'Article not found!' ));
Tools :: logm ( 'error : article not found' );
Tools :: redirect ();
}
2013-12-06 13:03:14 +00:00
$tags = $this -> store -> retrieveTagsByEntry ( $id );
$tpl_vars = array (
2013-12-06 14:07:51 +00:00
'entry_id' => $id ,
2013-12-06 13:03:14 +00:00
'tags' => $tags ,
2014-02-20 17:28:39 +00:00
'entry' => $entry ,
2013-12-06 13:22:29 +00:00
);
break ;
2013-12-06 12:15:06 +00:00
case 'tags' :
2013-12-06 13:37:42 +00:00
$token = $this -> user -> getConfigValue ( 'token' );
2014-03-10 14:28:47 +00:00
//if term is set - search tags for this term
$term = Tools :: checkVar ( 'term' );
$tags = $this -> store -> retrieveAllTags ( $this -> user -> getId (), $term );
if ( Tools :: isAjaxRequest ()) {
$result = array ();
foreach ( $tags as $tag ) {
$result [] = $tag [ 'value' ];
}
echo json_encode ( $result );
exit ;
}
2013-12-06 12:15:06 +00:00
$tpl_vars = array (
2013-12-06 13:37:42 +00:00
'token' => $token ,
'user_id' => $this -> user -> getId (),
2013-12-06 12:15:06 +00:00
'tags' => $tags ,
);
break ;
2014-04-02 19:33:06 +00:00
case 'search' :
if ( isset ( $_GET [ 'search' ])) {
$search = filter_var ( $_GET [ 'search' ], FILTER_SANITIZE_STRING );
$tpl_vars [ 'entries' ] = $this -> store -> search ( $search , $this -> user -> getId ());
$count = count ( $tpl_vars [ 'entries' ]);
$this -> pagination -> set_total ( $count );
$page_links = str_replace ( array ( 'previous' , 'next' ), array ( _ ( 'previous' ), _ ( 'next' )),
$this -> pagination -> page_links ( '?view=' . $view . '?search=' . $search . '&sort=' . $_SESSION [ 'sort' ] . '&' ));
$tpl_vars [ 'page_links' ] = $page_links ;
$tpl_vars [ 'nb_results' ] = $count ;
2014-10-27 14:12:46 +00:00
$tpl_vars [ 'searchterm' ] = $search ;
2014-04-02 19:33:06 +00:00
}
break ;
2013-08-04 18:58:31 +00:00
case 'view' :
2013-08-06 13:51:48 +00:00
$entry = $this -> store -> retrieveOneById ( $id , $this -> user -> getId ());
2013-08-04 18:58:31 +00:00
if ( $entry != NULL ) {
Tools :: logm ( 'view link #' . $id );
$content = $entry [ 'content' ];
if ( function_exists ( 'tidy_parse_string' )) {
$tidy = tidy_parse_string ( $content , array ( 'indent' => true , 'show-body-only' => true ), 'UTF8' );
$tidy -> cleanRepair ();
$content = $tidy -> value ;
2013-09-20 12:09:26 +00:00
}
2013-09-08 18:54:11 +00:00
2013-09-20 12:09:26 +00:00
# flattr checking
2014-12-22 15:26:23 +00:00
$flattr = NULL ;
if ( FLATTR ) {
$flattr = new FlattrItem ();
$flattr -> checkItem ( $entry [ 'url' ], $entry [ 'id' ]);
}
2013-12-06 12:02:38 +00:00
# tags
$tags = $this -> store -> retrieveTagsByEntry ( $entry [ 'id' ]);
2013-09-08 18:54:11 +00:00
2013-09-20 12:09:26 +00:00
$tpl_vars = array (
2013-12-06 12:02:38 +00:00
'entry' => $entry ,
'content' => $content ,
'flattr' => $flattr ,
'tags' => $tags
2013-09-20 12:09:26 +00:00
);
2013-08-04 18:58:31 +00:00
}
else {
2013-08-09 20:15:40 +00:00
Tools :: logm ( 'error in view call : entry is null' );
2013-08-04 18:58:31 +00:00
}
break ;
2014-02-20 17:28:39 +00:00
default : # home, favorites, archive and tag views
2013-08-04 18:58:31 +00:00
$tpl_vars = array (
2013-08-27 14:02:25 +00:00
'entries' => '' ,
'page_links' => '' ,
2013-08-28 17:12:11 +00:00
'nb_results' => '' ,
2014-02-28 11:08:11 +00:00
'listmode' => ( isset ( $_COOKIE [ 'listmode' ]) ? true : false ),
2013-08-04 18:58:31 +00:00
);
2014-04-02 17:55:19 +00:00
2014-07-11 14:03:59 +00:00
//if id is given - we retrieve entries by tag: id is tag id
2014-02-20 17:28:39 +00:00
if ( $id ) {
$tpl_vars [ 'tag' ] = $this -> store -> retrieveTag ( $id , $this -> user -> getId ());
$tpl_vars [ 'id' ] = intval ( $id );
}
$count = $this -> store -> getEntriesByViewCount ( $view , $this -> user -> getId (), $id );
if ( $count > 0 ) {
$this -> pagination -> set_total ( $count );
2014-02-07 15:49:27 +00:00
$page_links = str_replace ( array ( 'previous' , 'next' ), array ( _ ( 'previous' ), _ ( 'next' )),
2014-02-20 17:28:39 +00:00
$this -> pagination -> page_links ( '?view=' . $view . '&sort=' . $_SESSION [ 'sort' ] . (( $id ) ? '&id=' . $id : '' ) . '&' ));
$tpl_vars [ 'entries' ] = $this -> store -> getEntriesByView ( $view , $this -> user -> getId (), $this -> pagination -> get_limit (), $id );
2013-08-27 14:02:25 +00:00
$tpl_vars [ 'page_links' ] = $page_links ;
2014-02-20 17:28:39 +00:00
$tpl_vars [ 'nb_results' ] = $count ;
2013-08-27 14:02:25 +00:00
}
2013-08-05 19:56:32 +00:00
Tools :: logm ( 'display ' . $view . ' view' );
2013-08-04 18:58:31 +00:00
break ;
}
return $tpl_vars ;
}
2013-08-04 19:42:46 +00:00
2013-08-08 10:33:02 +00:00
/**
2014-04-02 17:55:19 +00:00
* update the password of the current user .
* if MODE_DEMO is TRUE , the password can ' t be updated .
2013-08-08 10:33:02 +00:00
* @ todo add the return value
* @ todo set the new password in function header like this updatePassword ( $newPassword )
* @ return boolean
*/
2014-07-12 17:01:11 +00:00
public function updatePassword ( $password , $confirmPassword )
2013-08-04 19:42:46 +00:00
{
2013-08-05 13:54:37 +00:00
if ( MODE_DEMO ) {
2013-08-06 13:51:48 +00:00
$this -> messages -> add ( 'i' , _ ( 'in demo mode, you can\'t update your password' ));
2013-08-05 13:54:37 +00:00
Tools :: logm ( 'in demo mode, you can\'t do this' );
2013-08-05 19:56:32 +00:00
Tools :: redirect ( '?view=config' );
2013-08-05 13:54:37 +00:00
}
else {
2014-07-12 17:01:11 +00:00
if ( isset ( $password ) && isset ( $confirmPassword )) {
if ( $password == $confirmPassword && ! empty ( $password )) {
2013-08-06 13:51:48 +00:00
$this -> messages -> add ( 's' , _ ( 'your password has been updated' ));
2014-07-12 17:01:11 +00:00
$this -> store -> updatePassword ( $this -> user -> getId (), Tools :: encodeString ( $password . $this -> user -> getUsername ()));
2013-08-04 19:42:46 +00:00
Session :: logout ();
2013-08-06 13:51:48 +00:00
Tools :: logm ( 'password updated' );
2013-08-04 19:42:46 +00:00
Tools :: redirect ();
}
else {
2013-08-06 13:51:48 +00:00
$this -> messages -> add ( 'e' , _ ( 'the two fields have to be filled & the password must be the same in the two fields' ));
2013-08-05 19:56:32 +00:00
Tools :: redirect ( '?view=config' );
2013-08-04 19:42:46 +00:00
}
}
}
}
2014-04-02 17:55:19 +00:00
2013-10-20 14:53:54 +00:00
/**
2014-07-12 17:01:11 +00:00
* Get credentials from differents sources
* It redirects the user to the $referer link
*
2013-10-20 14:53:54 +00:00
* @ return array
*/
2014-07-12 17:01:11 +00:00
private function credentials ()
{
if ( isset ( $_SERVER [ 'PHP_AUTH_USER' ])) {
return array ( $_SERVER [ 'PHP_AUTH_USER' ], 'php_auth' , true );
2013-12-23 08:09:10 +00:00
}
2014-07-12 17:01:11 +00:00
if ( ! empty ( $_POST [ 'login' ]) && ! empty ( $_POST [ 'password' ])) {
return array ( $_POST [ 'login' ], $_POST [ 'password' ], false );
2013-12-23 08:09:10 +00:00
}
2014-07-12 17:01:11 +00:00
if ( isset ( $_SERVER [ 'REMOTE_USER' ])) {
return array ( $_SERVER [ 'REMOTE_USER' ], 'http_auth' , true );
2013-12-23 08:09:10 +00:00
}
2013-12-23 09:35:09 +00:00
2014-07-12 17:01:11 +00:00
return array ( false , false , false );
2014-01-30 14:35:31 +00:00
}
2013-10-20 14:53:54 +00:00
2013-08-08 10:33:02 +00:00
/**
* checks if login & password are correct and save the user in session .
* it redirects the user to the $referer link
* @ param string $referer the url to redirect after login
* @ todo add the return value
* @ return boolean
*/
2013-08-04 19:42:46 +00:00
public function login ( $referer )
{
2014-01-30 14:35:31 +00:00
list ( $login , $password , $isauthenticated ) = $this -> credentials ();
2013-10-20 14:53:54 +00:00
if ( $login === false || $password === false ) {
$this -> messages -> add ( 'e' , _ ( 'login failed: you have to fill all fields' ));
Tools :: logm ( 'login failed' );
Tools :: redirect ();
}
if ( ! empty ( $login ) && ! empty ( $password )) {
2014-01-30 14:35:31 +00:00
$user = $this -> store -> login ( $login , Tools :: encodeString ( $password . $login ), $isauthenticated );
2013-08-06 12:18:03 +00:00
if ( $user != array ()) {
# Save login into Session
2014-01-30 14:35:31 +00:00
$longlastingsession = isset ( $_POST [ 'longlastingsession' ]);
$passwordTest = ( $isauthenticated ) ? $user [ 'password' ] : Tools :: encodeString ( $password . $login );
Session :: login ( $user [ 'username' ], $user [ 'password' ], $login , $passwordTest , $longlastingsession , array ( 'poche_user' => new User ( $user )));
2014-07-22 16:01:27 +00:00
# reload l10n
$language = $user [ 'config' ][ 'language' ];
@ putenv ( 'LC_ALL=' . $language );
setlocale ( LC_ALL , $language );
bindtextdomain ( $language , LOCALE );
textdomain ( $language );
2014-02-12 19:04:47 +00:00
$this -> messages -> add ( 's' , _ ( 'welcome to your wallabag' ));
2013-08-06 13:51:48 +00:00
Tools :: logm ( 'login successful' );
2013-08-04 19:42:46 +00:00
Tools :: redirect ( $referer );
}
2013-08-06 13:51:48 +00:00
$this -> messages -> add ( 'e' , _ ( 'login failed: bad login or password' ));
2014-05-14 13:45:52 +00:00
// log login failure in web server log to allow fail2ban usage
error_log ( 'user ' . $login . ' authentication failure' );
2013-08-04 19:42:46 +00:00
Tools :: logm ( 'login failed' );
Tools :: redirect ();
}
}
2013-08-08 10:33:02 +00:00
/**
* log out the poche user . It cleans the session .
* @ todo add the return value
2014-04-02 17:55:19 +00:00
* @ return boolean
2013-08-08 10:33:02 +00:00
*/
2013-08-04 19:42:46 +00:00
public function logout ()
{
2013-08-06 12:18:03 +00:00
$this -> user = array ();
2013-08-04 19:42:46 +00:00
Session :: logout ();
2013-08-07 17:14:28 +00:00
Tools :: logm ( 'logout' );
2013-08-04 19:42:46 +00:00
Tools :: redirect ();
}
2013-08-08 10:33:02 +00:00
/**
2014-07-12 17:01:11 +00:00
* import datas into your wallabag
2014-04-02 17:55:19 +00:00
* @ return boolean
2013-08-08 10:33:02 +00:00
*/
2014-07-12 17:01:11 +00:00
2014-04-02 17:55:19 +00:00
public function import () {
2014-08-15 16:22:55 +00:00
if ( isset ( $_FILES [ 'file' ]) && $_FILES [ 'file' ][ 'tmp_name' ] ) {
2014-04-11 11:43:17 +00:00
Tools :: logm ( 'Import stated: parsing file' );
2014-04-02 17:55:19 +00:00
// assume, that file is in json format
$str_data = file_get_contents ( $_FILES [ 'file' ][ 'tmp_name' ]);
$data = json_decode ( $str_data , true );
if ( $data === null ) {
//not json - assume html
$html = new simple_html_dom ();
$html -> load_file ( $_FILES [ 'file' ][ 'tmp_name' ]);
$data = array ();
$read = 0 ;
foreach ( array ( 'ol' , 'ul' ) as $list ) {
foreach ( $html -> find ( $list ) as $ul ) {
2014-04-08 08:41:06 +00:00
foreach ( $ul -> find ( 'li' ) as $li ) {
$tmpEntry = array ();
2014-04-08 08:49:41 +00:00
$a = $li -> find ( 'a' );
$tmpEntry [ 'url' ] = $a [ 0 ] -> href ;
$tmpEntry [ 'tags' ] = $a [ 0 ] -> tags ;
$tmpEntry [ 'is_read' ] = $read ;
if ( $tmpEntry [ 'url' ]) {
$data [] = $tmpEntry ;
}
2014-04-08 08:41:06 +00:00
}
# the second <ol/ul> is for read links
$read = (( sizeof ( $data ) && $read ) ? 0 : 1 );
2014-04-02 17:55:19 +00:00
}
}
2014-08-15 22:54:46 +00:00
}
2014-04-02 17:55:19 +00:00
2014-07-12 17:01:11 +00:00
// for readability structure
foreach ( $data as $record ) {
if ( is_array ( $record )) {
$data [] = $record ;
foreach ( $record as $record2 ) {
if ( is_array ( $record2 )) {
$data [] = $record2 ;
}
}
}
2014-04-03 09:18:49 +00:00
}
2014-07-12 17:01:11 +00:00
$urlsInserted = array (); //urls of articles inserted
foreach ( $data as $record ) {
$url = trim ( isset ( $record [ 'article__url' ]) ? $record [ 'article__url' ] : ( isset ( $record [ 'url' ]) ? $record [ 'url' ] : '' ));
if ( $url and ! in_array ( $url , $urlsInserted )) {
$title = ( isset ( $record [ 'title' ]) ? $record [ 'title' ] : _ ( 'Untitled - Import - ' ) . '</a> <a href="./?import">' . _ ( 'click to finish import' ) . '</a><a>' );
$body = ( isset ( $record [ 'content' ]) ? $record [ 'content' ] : '' );
$isRead = ( isset ( $record [ 'is_read' ]) ? intval ( $record [ 'is_read' ]) : ( isset ( $record [ 'archive' ]) ? intval ( $record [ 'archive' ]) : 0 ));
$isFavorite = ( isset ( $record [ 'is_fav' ]) ? intval ( $record [ 'is_fav' ]) : ( isset ( $record [ 'favorite' ]) ? intval ( $record [ 'favorite' ]) : 0 ));
// insert new record
$id = $this -> store -> add ( $url , $title , $body , $this -> user -> getId () , $isFavorite , $isRead );
if ( $id ) {
$urlsInserted [] = $url ; //add
if ( isset ( $record [ 'tags' ]) && trim ( $record [ 'tags' ])) {
2015-01-19 23:02:21 +00:00
$tags = explode ( ',' , $record [ 'tags' ]);
2015-01-18 20:49:05 +00:00
foreach ( $tags as $tag ) {
$entry_id = $id ;
$tag_id = $this -> store -> retrieveTagByValue ( $tag );
if ( $tag_id ) {
$this -> store -> setTagToEntry ( $tag_id [ 'id' ], $entry_id );
} else {
$this -> store -> createTag ( $tag );
$tag_id = $this -> store -> retrieveTagByValue ( $tag );
$this -> store -> setTagToEntry ( $tag_id [ 'id' ], $entry_id );
}
}
2014-07-12 17:01:11 +00:00
}
}
}
2014-04-02 17:55:19 +00:00
}
2014-07-12 17:01:11 +00:00
$i = sizeof ( $urlsInserted );
if ( $i > 0 ) {
$this -> messages -> add ( 's' , _ ( 'Articles inserted: ' ) . $i . _ ( '. Please note, that some may be marked as "read".' ));
}
2014-04-11 11:43:17 +00:00
Tools :: logm ( 'Import of articles finished: ' . $i . ' articles added (w/o content if not provided).' );
2014-04-02 17:55:19 +00:00
}
2014-08-15 16:22:55 +00:00
else {
$this -> messages -> add ( 's' , _ ( 'Did you forget to select a file?' ));
}
2014-07-12 17:01:11 +00:00
// file parsing finished here
// now download article contents if any
// check if we need to download any content
2014-04-02 17:55:19 +00:00
2014-07-12 17:01:11 +00:00
$recordsDownloadRequired = $this -> store -> retrieveUnfetchedEntriesCount ( $this -> user -> getId ());
if ( $recordsDownloadRequired == 0 ) {
2014-04-02 17:55:19 +00:00
2014-07-12 17:01:11 +00:00
// nothing to download
2014-04-02 17:55:19 +00:00
2014-07-12 17:01:11 +00:00
$this -> messages -> add ( 's' , _ ( 'Import finished.' ));
Tools :: logm ( 'Import finished completely' );
Tools :: redirect ();
}
else {
2014-04-02 17:55:19 +00:00
2014-07-12 17:01:11 +00:00
// if just inserted - don't download anything, download will start in next reload
2014-04-02 17:55:19 +00:00
2014-07-12 17:01:11 +00:00
if ( ! isset ( $_FILES [ 'file' ])) {
2014-04-02 17:55:19 +00:00
2014-07-12 17:01:11 +00:00
// download next batch
2014-04-02 17:55:19 +00:00
2014-07-12 17:01:11 +00:00
Tools :: logm ( 'Fetching next batch of articles...' );
$items = $this -> store -> retrieveUnfetchedEntries ( $this -> user -> getId () , IMPORT_LIMIT );
$purifier = $this -> _getPurifier ();
foreach ( $items as $item ) {
$url = new Url ( base64_encode ( $item [ 'url' ]));
Tools :: logm ( 'Fetching article ' . $item [ 'id' ]);
$content = Tools :: getPageContent ( $url );
$title = (( $content [ 'rss' ][ 'channel' ][ 'item' ][ 'title' ] != '' ) ? $content [ 'rss' ][ 'channel' ][ 'item' ][ 'title' ] : _ ( 'Untitled' ));
$body = (( $content [ 'rss' ][ 'channel' ][ 'item' ][ 'description' ] != '' ) ? $content [ 'rss' ][ 'channel' ][ 'item' ][ 'description' ] : _ ( 'Undefined' ));
// clean content to prevent xss attack
$title = $purifier -> purify ( $title );
$body = $purifier -> purify ( $body );
$this -> store -> updateContentAndTitle ( $item [ 'id' ], $title , $body , $this -> user -> getId ());
Tools :: logm ( 'Article ' . $item [ 'id' ] . ' updated.' );
}
}
2013-08-04 20:35:08 +00:00
}
2014-04-02 17:55:19 +00:00
2014-07-12 17:01:11 +00:00
return array (
'includeImport' => true ,
'import' => array (
'recordsDownloadRequired' => $recordsDownloadRequired ,
'recordsUnderDownload' => IMPORT_LIMIT ,
'delay' => IMPORT_DELAY * 1000
)
);
2013-08-04 20:35:08 +00:00
}
2013-08-04 19:42:46 +00:00
2013-08-08 10:33:02 +00:00
/**
* export poche entries in json
* @ return json all poche entries
*/
2014-07-12 17:01:11 +00:00
public function export ()
{
2014-04-08 08:49:41 +00:00
$filename = " wallabag-export- " . $this -> user -> getId () . " - " . date ( " Y-m-d " ) . " .json " ;
header ( 'Content-Disposition: attachment; filename=' . $filename );
$entries = $this -> store -> retrieveAll ( $this -> user -> getId ());
echo $this -> tpl -> render ( 'export.twig' , array (
'export' => Tools :: renderJson ( $entries ),
));
Tools :: logm ( 'export view' );
2013-08-04 19:42:46 +00:00
}
2013-08-05 10:34:16 +00:00
2013-08-08 10:33:02 +00:00
/**
2013-08-08 11:49:57 +00:00
* Checks online the latest version of poche and cache it
2013-08-08 10:33:02 +00:00
* @ param string $which 'prod' or 'dev'
* @ return string latest $which version
*/
2014-07-12 17:01:11 +00:00
private function _getPocheVersion ( $which = 'prod' ) {
2014-04-08 08:49:41 +00:00
$cache_file = CACHE . '/' . $which ;
$check_time = time ();
# checks if the cached version file exists
if ( file_exists ( $cache_file ) && ( filemtime ( $cache_file ) > ( time () - 86400 ))) {
$version = file_get_contents ( $cache_file );
$check_time = filemtime ( $cache_file );
} else {
$version = file_get_contents ( 'http://static.wallabag.org/versions/' . $which );
file_put_contents ( $cache_file , $version , LOCK_EX );
}
return array ( $version , $check_time );
2013-08-05 10:34:16 +00:00
}
2013-12-03 09:40:27 +00:00
2014-07-12 17:01:11 +00:00
/**
* Update token for current user
*/
public function updateToken ()
2013-12-03 09:40:27 +00:00
{
2014-07-12 17:01:11 +00:00
$token = Tools :: generateToken ();
$this -> store -> updateUserConfig ( $this -> user -> getId (), 'token' , $token );
$currentConfig = $_SESSION [ 'poche_user' ] -> config ;
$currentConfig [ 'token' ] = $token ;
$_SESSION [ 'poche_user' ] -> setConfig ( $currentConfig );
Tools :: redirect ();
2013-12-03 09:40:27 +00:00
}
2014-07-12 17:01:11 +00:00
/**
* Generate RSS feeds for current user
*
* @ param $token
* @ param $user_id
2015-01-16 16:42:39 +00:00
* @ param $tag_id if $type is 'tag' , the id of the tag to generate feed for
* @ param string $type the type of feed to generate
* @ param int $limit the maximum number of items ( 0 means all )
2014-07-12 17:01:11 +00:00
*/
2015-01-16 16:42:39 +00:00
public function generateFeeds ( $token , $user_id , $tag_id , $type = 'home' , $limit = 0 )
2013-12-03 09:40:27 +00:00
{
2013-12-06 13:37:42 +00:00
$allowed_types = array ( 'home' , 'fav' , 'archive' , 'tag' );
2013-12-03 09:40:27 +00:00
$config = $this -> store -> getConfigUser ( $user_id );
2014-03-10 07:10:03 +00:00
if ( $config == null ) {
2014-05-30 14:17:34 +00:00
die ( sprintf ( _ ( 'User with this id (%d) does not exist.' ), $user_id ));
2014-03-10 07:10:03 +00:00
}
2014-07-24 13:48:41 +00:00
if ( ! in_array ( $type , $allowed_types ) || ! isset ( $config [ 'token' ]) || $token != $config [ 'token' ]) {
die ( _ ( 'Uh, there is a problem while generating feed. Wrong token used?' ));
2013-12-03 09:40:27 +00:00
}
2013-12-06 09:14:59 +00:00
$feed = new FeedWriter ( RSS2 );
2014-02-13 07:57:44 +00:00
$feed -> setTitle ( 'wallabag — ' . $type . ' feed' );
2013-12-03 09:40:27 +00:00
$feed -> setLink ( Tools :: getPocheUrl ());
2014-03-01 12:09:37 +00:00
$feed -> setChannelElement ( 'pubDate' , date ( DATE_RSS , time ()));
$feed -> setChannelElement ( 'generator' , 'wallabag' );
$feed -> setDescription ( 'wallabag ' . $type . ' elements' );
2013-12-03 09:40:27 +00:00
2013-12-06 13:37:42 +00:00
if ( $type == 'tag' ) {
2014-02-19 12:25:28 +00:00
$entries = $this -> store -> retrieveEntriesByTag ( $tag_id , $user_id );
2013-12-06 13:37:42 +00:00
}
else {
$entries = $this -> store -> getEntriesByView ( $type , $user_id );
}
2015-01-16 16:42:39 +00:00
// if $limit is set to zero, use all entries
if ( 0 == $limit ) {
$limit = count ( $entries );
}
2013-12-03 09:40:27 +00:00
if ( count ( $entries ) > 0 ) {
2015-01-16 16:42:39 +00:00
for ( $i = 0 ; $i < min ( count ( $entries ), $limit ); $i ++ ) {
$entry = $entries [ $i ];
2013-12-03 09:40:27 +00:00
$newItem = $feed -> createNewItem ();
2014-01-03 09:15:05 +00:00
$newItem -> setTitle ( $entry [ 'title' ]);
2014-04-06 14:39:11 +00:00
$newItem -> setSource ( Tools :: getPocheUrl () . '?view=view&id=' . $entry [ 'id' ]);
2014-03-14 08:35:48 +00:00
$newItem -> setLink ( $entry [ 'url' ]);
2013-12-03 09:40:27 +00:00
$newItem -> setDate ( time ());
$newItem -> setDescription ( $entry [ 'content' ]);
$feed -> addItem ( $newItem );
}
}
$feed -> genarateFeed ();
exit ;
}
2014-02-14 14:11:57 +00:00
2014-04-11 14:21:54 +00:00
/**
2014-07-12 17:01:11 +00:00
* Returns new purifier object with actual config
2014-04-11 14:21:54 +00:00
*/
2014-07-12 17:01:11 +00:00
private function _getPurifier ()
{
$config = HTMLPurifier_Config :: createDefault ();
$config -> set ( 'Cache.SerializerPath' , CACHE );
$config -> set ( 'HTML.SafeIframe' , true );
2014-06-07 14:36:57 +00:00
2014-07-12 17:01:11 +00:00
//allow YouTube, Vimeo and dailymotion videos
$config -> set ( 'URI.SafeIframeRegexp' , '%^(https?:)?//(www\.youtube(?:-nocookie)?\.com/embed/|player\.vimeo\.com/video/|www\.dailymotion\.com/embed/video/)%' );
2014-06-07 13:53:39 +00:00
2014-07-12 17:01:11 +00:00
return new HTMLPurifier ( $config );
2014-04-11 14:21:54 +00:00
}
2014-05-30 14:14:53 +00:00
2014-12-13 21:56:30 +00:00
}