|
1 <?php |
|
2 /* |
|
3 * Enano - an open-source CMS capable of wiki functions, Drupal-like sidebar blocks, and everything in between |
|
4 * Version 1.0 (Banshee) |
|
5 * render.php - handles fetching pages and parsing them into HTML |
|
6 * Copyright (C) 2006-2007 Dan Fuhry |
|
7 * |
|
8 * This program is Free Software; you can redistribute and/or modify it under the terms of the GNU General Public License |
|
9 * as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. |
|
10 * |
|
11 * This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied |
|
12 * warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for details. |
|
13 */ |
|
14 |
|
15 class RenderMan { |
|
16 |
|
17 function strToPageID($string) |
|
18 { |
|
19 global $db, $session, $paths, $template, $plugins; // Common objects |
|
20 $k = array_keys($paths->nslist); |
|
21 for($i=0;$i<sizeof($paths->nslist);$i++) |
|
22 { |
|
23 $ln = strlen($paths->nslist[$k[$i]]); |
|
24 if(substr($string, 0, $ln) == $paths->nslist[$k[$i]]) |
|
25 { |
|
26 $ns = $k[$i]; |
|
27 $pg = substr($string, strlen($paths->nslist[$ns]), strlen($string)); |
|
28 } |
|
29 } |
|
30 return Array($pg, $ns); |
|
31 } |
|
32 |
|
33 function getPage($page_id, $namespace, $wiki = 1, $smilies = true, $filter_links = true, $redir = true, $render = true) |
|
34 { |
|
35 global $db, $session, $paths, $template, $plugins; // Common objects |
|
36 dc_here('render: page requested<br />ID/namespace: '."$page_id, $namespace<br />Wiki mode: $wiki<br />Smilies: ".(string)$smilies."<br />Allow redirects: ".(string)$redir); |
|
37 |
|
38 $perms =& $session; |
|
39 |
|
40 if ( $page_id != $paths->cpage['urlname_nons'] || $namespace != $paths->namespace ) |
|
41 { |
|
42 unset($perms); |
|
43 unset($perms); // PHP <5.1.5 Zend bug |
|
44 $perms = $session->fetch_page_acl($page_id, $namespace); |
|
45 } |
|
46 |
|
47 if(!$perms->get_permissions('read')) |
|
48 return 'Access denied ('.$paths->nslist[$namespace].$page_id.')'; |
|
49 |
|
50 if($wiki == 0 || $render == false) |
|
51 { |
|
52 if(!$perms->get_permissions('view_source')) |
|
53 { |
|
54 return 'Access denied ('.$paths->nslist[$namespace].$page_id.')'; |
|
55 } |
|
56 } |
|
57 |
|
58 $q = $db->sql_query('SELECT page_text,char_tag FROM '.table_prefix.'page_text WHERE page_id=\''.$db->escape($page_id).'\' AND namespace=\''.$db->escape($namespace).'\';'); |
|
59 if ( !$q ) |
|
60 { |
|
61 $db->_die('Method called was: RenderMan::getPage(\''.$page_id.'\', \''.$namespace.'\');.'); |
|
62 } |
|
63 if ( $db->numrows() < 1 ) |
|
64 { |
|
65 return false; |
|
66 } |
|
67 $row = $db->fetchrow(); |
|
68 $db->free_result(); |
|
69 |
|
70 $message = $row['page_text']; |
|
71 $chartag = $row['char_tag']; |
|
72 unset($row); // Free some memory |
|
73 |
|
74 if ( preg_match('#^\#redirect \[\[(.+?)\]\]#', $message, $m) && $redir && !isset($_GET['redirect']) || ( isset($_GET['redirect']) && $_GET['redirect'] != 'no' ) ) |
|
75 { |
|
76 dc_here('render: looks like a redirect page to me...'); |
|
77 $old = $paths->cpage; |
|
78 $a = RenderMan::strToPageID($m[1]); |
|
79 $a[0] = str_replace(' ', '_', $a[0]); |
|
80 |
|
81 $pageid = str_replace(' ', '_', $paths->nslist[$a[1]] . $a[0]); |
|
82 $paths->page = $pageid; |
|
83 $paths->cpage = $paths->pages[$pageid]; |
|
84 //die('<pre>'.print_r($paths->cpage,true).'</pre>'); |
|
85 |
|
86 dc_here('render: wreckin\' $template, and reloading the theme vars to match the new page<br />This might get messy!'); |
|
87 |
|
88 unset($template); |
|
89 unset($GLOBALS['template']); |
|
90 |
|
91 $GLOBALS['template'] = new template(); |
|
92 global $template; |
|
93 |
|
94 $template->template(); // Tear down and rebuild the template parser |
|
95 $template->load_theme($session->theme, $session->style); |
|
96 |
|
97 $data = '<div><small>(Redirected from <a href="'.makeUrlNS($old['namespace'], $old['urlname_nons'], 'redirect=no', true).'">'.$old['name'].'</a>)</small></div>'.RenderMan::getPage($a[0], $a[1], $wiki, $smilies, $filter_links, false /* Enforces a maximum of one redirect */); |
|
98 |
|
99 return $data; |
|
100 } |
|
101 else if(preg_match('#^\#redirect \[\[(.+?)\]\]#', $message, $m) && isset($_GET['redirect']) && $_GET['redirect'] == 'no') |
|
102 { |
|
103 dc_here('render: looks like a redirect page to me...'); |
|
104 dc_here('render: skipping redirect as requested on URI'); |
|
105 preg_match('#^\#redirect \[\[(.+)\]\]#', $message, $m); |
|
106 $m[1] = str_replace(' ', '_', $m[1]); |
|
107 $message = preg_replace('#\#redirect \[\[(.+)\]\]#', '<nowiki><div class="mdg-infobox"><table border="0" width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><img alt="Cute wet-floor icon" src="'.scriptPath.'/images/redirector.png" /></td><td valign="top" style="padding-left: 10px;"><b>This page is a <i>redirector</i>.</b><br />This means that this page will not show its own content by default. Instead it will display the contents of the page it redirects to.<br /><br />To create a redirect page, make the <i>first characters</i> in the page content <tt>#redirect [[Page_ID]]</tt>. For more information, see the Enano <a href="http://enanocms.org/Help:Wiki_formatting">Wiki formatting guide</a>.<br /><br />This page redirects to <a href="'.makeUrl($m[1]).'">'.$paths->pages[$m[1]]['name'].'</a>.</td></tr></table></div><br /><hr style="margin-left: 1em; width: 200px;" /></nowiki>', $message); |
|
108 } |
|
109 $session->disallow_password_grab(); |
|
110 dc_here('render: alright, got the text, formatting...'); |
|
111 return ($render) ? RenderMan::render($message, $wiki, $smilies, $filter_links) : $message; |
|
112 } |
|
113 |
|
114 function getTemplate($id, $parms) |
|
115 { |
|
116 global $db, $session, $paths, $template, $plugins; // Common objects |
|
117 dc_here('render: template requested: '.$id); |
|
118 if(!isset($paths->pages[$paths->nslist['Template'].$id])) |
|
119 { |
|
120 return '[['.$paths->nslist['Template'].$id.']]'; |
|
121 } |
|
122 if(isset($paths->template_cache[$id])) |
|
123 { |
|
124 $text = $paths->template_cache[$id]; |
|
125 } |
|
126 else |
|
127 { |
|
128 $text = RenderMan::getPage($id, 'Template', 0, true, true, 0); |
|
129 $paths->template_cache[$id] = $text; |
|
130 } |
|
131 |
|
132 $text = preg_replace('/<noinclude>(.*?)<\/noinclude>/is', '', $text); |
|
133 $text = preg_replace('/<nodisplay>(.*?)<\/nodisplay>/is', '\\1', $text); |
|
134 |
|
135 preg_match_all('#\(_([0-9]+)_\)#', $text, $matchlist); |
|
136 |
|
137 foreach($matchlist[1] as $m) |
|
138 { |
|
139 if(isset($parms[((int)$m)+1])) |
|
140 { |
|
141 $p = $parms[((int)$m)+1]; |
|
142 } |
|
143 else |
|
144 { |
|
145 $p = '<b>Notice:</b> RenderMan::getTemplate(): Parameter '.$m.' is not set'; |
|
146 } |
|
147 $text = str_replace('(_'.$m.'_)', $p, $text); |
|
148 } |
|
149 $text = RenderMan::include_templates($text); |
|
150 return $text; |
|
151 } |
|
152 |
|
153 function fetch_template_text($id) |
|
154 { |
|
155 global $db, $session, $paths, $template, $plugins; // Common objects |
|
156 dc_here('render: template raw data requested: '.$id); |
|
157 if(!isset($paths->pages[$paths->nslist['Template'].$id])) |
|
158 { |
|
159 return '[['.$paths->nslist['Template'].$id.']]'; |
|
160 } |
|
161 if(isset($paths->template_cache[$id])) |
|
162 { |
|
163 $text = $paths->template_cache[$id]; |
|
164 } |
|
165 else |
|
166 { |
|
167 $text = RenderMan::getPage($id, 'Template', 0, false, false, false, false); |
|
168 $paths->template_cache[$id] = $text; |
|
169 } |
|
170 |
|
171 if ( is_string($text) ) |
|
172 { |
|
173 $text = preg_replace('/<noinclude>(.*?)<\/noinclude>/is', '', $text); |
|
174 $text = preg_replace('/<nodisplay>(.*?)<\/nodisplay>/is', '\\1', $text); |
|
175 } |
|
176 |
|
177 return $text; |
|
178 } |
|
179 |
|
180 function render($text, $wiki = 1, $smilies = true, $filter_links = true) |
|
181 { |
|
182 global $db, $session, $paths, $template, $plugins; // Common objects |
|
183 if($smilies) |
|
184 { |
|
185 $text = RenderMan::smilieyize($text); |
|
186 } |
|
187 if($wiki == 1) |
|
188 { |
|
189 $text = RenderMan::next_gen_wiki_format($text); |
|
190 } |
|
191 elseif($wiki == 2) |
|
192 { |
|
193 $text = $template->tplWikiFormat($text); |
|
194 } |
|
195 return $text; |
|
196 } |
|
197 |
|
198 function PlainTextRender($text, $wiki = 1, $smilies = false, $filter_links = true) |
|
199 { |
|
200 global $db, $session, $paths, $template, $plugins; // Common objects |
|
201 if($smilies) |
|
202 { |
|
203 $text = RenderMan::smilieyize($text); |
|
204 } |
|
205 if($wiki == 1) |
|
206 { |
|
207 $text = RenderMan::next_gen_wiki_format($text, true); |
|
208 } |
|
209 elseif($wiki == 2) |
|
210 { |
|
211 $text = $template->tplWikiFormat($text); |
|
212 } |
|
213 return $text; |
|
214 } |
|
215 |
|
216 function next_gen_wiki_format($text, $plaintext = false, $filter_links = true, $do_params = false) |
|
217 { |
|
218 global $db, $session, $paths, $template, $plugins; // Common objects |
|
219 $random_id = md5( time() . mt_rand() ); |
|
220 |
|
221 // Strip out <nowiki> sections and PHP code |
|
222 |
|
223 $php = preg_match_all('#<\?php(.*?)\?>#is', $text, $phpsec); |
|
224 |
|
225 for($i=0;$i<sizeof($phpsec[1]);$i++) |
|
226 { |
|
227 $text = str_replace('<?php'.$phpsec[1][$i].'?>', '{PHP:'.$random_id.':'.$i.'}', $text); |
|
228 } |
|
229 |
|
230 $nw = preg_match_all('#<nowiki>(.*?)<\/nowiki>#is', $text, $nowiki); |
|
231 |
|
232 for($i=0;$i<sizeof($nowiki[1]);$i++) |
|
233 { |
|
234 $text = str_replace('<nowiki>'.$nowiki[1][$i].'</nowiki>', '{NOWIKI:'.$random_id.':'.$i.'}', $text); |
|
235 } |
|
236 |
|
237 $text = preg_replace('/<noinclude>(.*?)<\/noinclude>/is', '\\1', $text); |
|
238 if ( $paths->namespace == 'Template' ) |
|
239 { |
|
240 $text = preg_replace('/<nodisplay>(.*?)<\/nodisplay>/is', '', $text); |
|
241 } |
|
242 |
|
243 if ( !$plaintext ) |
|
244 { |
|
245 // Process images |
|
246 |
|
247 $j = preg_match_all('#\[\[:'.$paths->nslist['File'].'([\w\s0-9_\(\)!@%\^\+\|\.-]+?)\|([0-9]+)\|([0-9]+)\]\]#is', $text, $matchlist); |
|
248 $matches = Array(); |
|
249 $matches['images'] =& $matchlist[1]; |
|
250 $matches['widths'] =& $matchlist[2]; |
|
251 $matches['heights'] =& $matchlist[3]; |
|
252 for($i=0;$i<sizeof($matchlist[1]);$i++) |
|
253 { |
|
254 if(isPage($paths->nslist['File'].$matches['images'][$i])) $text = str_replace('[[:'.$paths->nslist['File'].$matches['images'][$i].'|'.$matches['widths'][$i].'|'.$matches['heights'][$i].']]', |
|
255 '<nowiki><a href="'.makeUrlNS('File', $matches['images'][$i]).'"><img alt="'.$matches['images'][$i].'" style="border: 0" src="'.makeUrlNS('Special', 'DownloadFile/'.$matches['images'][$i], 'preview&width='.$matches['widths'][$i].'&height='.$matches['heights'][$i]).'" /></a></nowiki>', |
|
256 $text); |
|
257 } |
|
258 |
|
259 $j = preg_match_all('#\[\[:'.$paths->nslist['File'].'([\w\s0-9_\(\)!@%\^\+\|\.-]+?)\]\]#is', $text, $matchlist); |
|
260 $matches = Array(); |
|
261 $matches['images'] = $matchlist[1]; |
|
262 for($i=0;$i<sizeof($matchlist[1]);$i++) |
|
263 { |
|
264 if(isPage($paths->nslist['File'].$matches['images'][$i])) $text = str_replace('[[:'.$paths->nslist['File'].$matches['images'][$i].']]', |
|
265 '<nowiki><a href="'.makeUrlNS('File', $matches['images'][$i]).'"><img alt="'.$matches['images'][$i].'" style="border: 0" src="'.makeUrlNS('Special', 'DownloadFile/'.$matches['images'][$i]).'" /></a></nowiki>', |
|
266 $text); |
|
267 } |
|
268 |
|
269 } |
|
270 |
|
271 if($do_params) |
|
272 { |
|
273 preg_match_all('#\(_([0-9]+)_\)#', $text, $matchlist); |
|
274 foreach($matchlist[1] as $m) |
|
275 { |
|
276 $text = str_replace('(_'.$m.'_)', $paths->getParam((int)$m), $text); |
|
277 } |
|
278 } |
|
279 |
|
280 $text = RenderMan::include_templates($text); |
|
281 |
|
282 $text = process_tables($text); |
|
283 |
|
284 $wiki =& Text_Wiki::singleton('Mediawiki'); |
|
285 if($plaintext) |
|
286 { |
|
287 $wiki->setRenderConf('Plain', 'wikilink', 'view_url', contentPath); |
|
288 $result = $wiki->transform($text, 'Plain'); |
|
289 } |
|
290 else |
|
291 { |
|
292 $wiki->setRenderConf('Xhtml', 'wikilink', 'view_url', contentPath); |
|
293 $wiki->setRenderConf('Xhtml', 'Url', 'css_descr', 'external'); |
|
294 $result = $wiki->transform($text, 'Xhtml'); |
|
295 } |
|
296 |
|
297 // Reinsert <nowiki> sections |
|
298 for($i=0;$i<$nw;$i++) |
|
299 { |
|
300 $result = str_replace('{NOWIKI:'.$random_id.':'.$i.'}', $nowiki[1][$i], $result); |
|
301 } |
|
302 |
|
303 // Reinsert PHP |
|
304 for($i=0;$i<$php;$i++) |
|
305 { |
|
306 $result = str_replace('{PHP:'.$random_id.':'.$i.'}', '<?php'.$phpsec[1][$i].'?>', $result); |
|
307 } |
|
308 |
|
309 return $result; |
|
310 |
|
311 } |
|
312 |
|
313 function wikiFormat($message, $filter_links = true, $do_params = false, $plaintext = false) { |
|
314 global $db, $session, $paths, $template, $plugins; // Common objects |
|
315 |
|
316 return RenderMan::next_gen_wiki_format($message, $plaintext, $filter_links, $do_params); |
|
317 |
|
318 $random_id = md5( time() . mt_rand() ); |
|
319 |
|
320 // Strip out <nowiki> sections |
|
321 $nw = preg_match_all('#<nowiki>(.*?)<\/nowiki>#is', $message, $nowiki); |
|
322 |
|
323 if(!$plaintext) |
|
324 { |
|
325 |
|
326 //return '<pre>'.print_r($nowiki,true).'</pre>'; |
|
327 |
|
328 for($i=0;$i<sizeof($nowiki[1]);$i++) |
|
329 { |
|
330 $message = str_replace('<nowiki>'.$nowiki[1][$i].'</nowiki>', '{NOWIKI:'.$random_id.':'.$i.'}', $message); |
|
331 } |
|
332 |
|
333 $message = preg_replace('/<noinclude>(.*?)<\/noinclude>/is', '\\1', $message); |
|
334 |
|
335 //return '<pre>'.htmlspecialchars($message).'</pre>'; |
|
336 |
|
337 $j = preg_match_all('#\[\[:'.$paths->nslist['File'].'([\w\s0-9_\(\)!@%\^\+\|\.-]+?)\|([0-9]+)\|([0-9]+)\]\]#is', $message, $matchlist); |
|
338 $matches = Array(); |
|
339 $matches['images'] = $matchlist[1]; |
|
340 $matches['widths'] = $matchlist[2]; |
|
341 $matches['heights'] = $matchlist[3]; |
|
342 for($i=0;$i<sizeof($matchlist[1]);$i++) |
|
343 { |
|
344 if(isPage($paths->nslist['File'].$matches['images'][$i])) $message = str_replace('[[:'.$paths->nslist['File'].$matches['images'][$i].'|'.$matches['widths'][$i].'|'.$matches['heights'][$i].']]', |
|
345 '<nowiki><a href="'.makeUrlNS('File', $matches['images'][$i]).'"><img alt="'.$matches['images'][$i].'" style="border: 0" src="'.makeUrlNS('Special', 'DownloadFile/'.$matches['images'][$i], 'preview&width='.$matches['widths'][$i].'&height='.$matches['heights'][$i]).'" /></a></nowiki>', |
|
346 $message); |
|
347 } |
|
348 |
|
349 $j = preg_match_all('#\[\[:'.$paths->nslist['File'].'([\w\s0-9_\(\)!@%\^\+\|\.-]+?)\]\]#is', $message, $matchlist); |
|
350 $matches = Array(); |
|
351 $matches['images'] = $matchlist[1]; |
|
352 for($i=0;$i<sizeof($matchlist[1]);$i++) |
|
353 { |
|
354 if(isPage($paths->nslist['File'].$matches['images'][$i])) $message = str_replace('[[:'.$paths->nslist['File'].$matches['images'][$i].']]', |
|
355 '<nowiki><a href="'.makeUrlNS('File', $matches['images'][$i]).'"><img alt="'.$matches['images'][$i].'" style="border: 0" src="'.makeUrlNS('Special', 'DownloadFile/'.$matches['images'][$i]).'" /></a></nowiki>', |
|
356 $message); |
|
357 } |
|
358 |
|
359 } |
|
360 |
|
361 if($do_params) |
|
362 { |
|
363 preg_match_all('#\(_([0-9]+)_\)#', $message, $matchlist); |
|
364 foreach($matchlist[1] as $m) |
|
365 { |
|
366 $message = str_replace('(_'.$m.'_)', $paths->getParam((int)$m), $message); |
|
367 } |
|
368 } |
|
369 |
|
370 $message = RenderMan::include_templates($message); |
|
371 |
|
372 // Reinsert <nowiki> sections |
|
373 for($i=0;$i<$nw;$i++) |
|
374 { |
|
375 $message = str_replace('{NOWIKI:'.$random_id.':'.$i.'}', '<nowiki>'.$nowiki[1][$i].'</nowiki>', $message); |
|
376 } |
|
377 |
|
378 $message = process_tables($message); |
|
379 //if($message2 != $message) return '<pre>'.htmlspecialchars($message2).'</pre>'; |
|
380 //$message = str_replace(array('<table>', '</table>'), array('<nowiki><table>', '</table></nowiki>'), $message); |
|
381 |
|
382 $wiki =& Text_Wiki::singleton('Mediawiki'); |
|
383 if($plaintext) |
|
384 { |
|
385 $wiki->setRenderConf('Plain', 'wikilink', 'view_url', contentPath); |
|
386 $result = $wiki->transform($message, 'Plain'); |
|
387 } else { |
|
388 $wiki->setRenderConf('Xhtml', 'wikilink', 'view_url', contentPath); |
|
389 $wiki->setRenderConf('Xhtml', 'Url', 'css_descr', 'external'); |
|
390 $result = $wiki->transform($message, 'Xhtml'); |
|
391 } |
|
392 |
|
393 // HTML fixes |
|
394 $result = preg_replace('#<tr>([\s]*?)<\/tr>#is', '', $result); |
|
395 $result = preg_replace('#<p>([\s]*?)<\/p>#is', '', $result); |
|
396 $result = preg_replace('#<br />([\s]*?)<table#is', '<table', $result); |
|
397 $result = str_replace("<pre><code>\n", "<pre><code>", $result); |
|
398 $result = preg_replace("/<p><table([^>]*?)><\/p>/", "<table\\1>", $result); |
|
399 $result = str_replace("<br />\n</td>", "\n</td>", $result); |
|
400 $result = str_replace("<p><tr>", "<tr>", $result); |
|
401 $result = str_replace("<tr><br />", "<tr>", $result); |
|
402 $result = str_replace("</tr><br />", "</tr>", $result); |
|
403 $result = str_replace("</table></p>", "</table>", $result); |
|
404 $result = str_replace("</table><br />", "</table>", $result); |
|
405 $result = preg_replace('/<\/table>$/', "</table><br /><br />", $result); |
|
406 |
|
407 $result = str_replace('<nowiki>', '<nowiki>', $result); |
|
408 $result = str_replace('</nowiki>', '</nowiki>', $result); |
|
409 |
|
410 return $result; |
|
411 } |
|
412 |
|
413 function destroy_javascript($message, $_php = false) |
|
414 { |
|
415 $message = preg_replace('#<(script|object|applet|embed|iframe|frame|form|input|select)(.*?)>#is', '<\\1\\2>', $message); |
|
416 $message = preg_replace('#</(script|object|applet|embed|iframe|frame|form|input|select)(.*?)>#is', '</\\1\\2>', $message); |
|
417 $message = preg_replace('#(javascript|script|activex|chrome|about|applet):#is', '\\1:', $message); |
|
418 if ( $_php ) |
|
419 { |
|
420 // Left in only for compatibility |
|
421 $message = preg_replace('#<(.*?)>#is', '<\\1>', $message); |
|
422 $message = preg_replace('#<(.*?)>#is', '<\\1>', $message); |
|
423 $message = preg_replace('#<(\?|\?php|%)(.*?)(\?|%)>#is', '<\\1\\2\\3>', $message); |
|
424 // strip <a href="foo" onclick="bar();">-type attacks |
|
425 $message = preg_replace('#<([a-zA-Z:\-]+) (.*?)on([A-Za-z]*)=(.*?)>#is', '<\\1\\2on\\3=\\4>', $message); |
|
426 } |
|
427 return $message; |
|
428 } |
|
429 |
|
430 function strip_php($message) |
|
431 { |
|
432 return RenderMan::destroy_javascript($message, true); |
|
433 } |
|
434 |
|
435 function sanitize_html($text) |
|
436 { |
|
437 $text = htmlspecialchars($text); |
|
438 $allowed_tags = Array('b', 'i', 'u', 'pre', 'code', 'tt', 'br', 'p', 'nowiki', '!--([^.]+)--'); |
|
439 foreach($allowed_tags as $t) |
|
440 { |
|
441 $text = preg_replace('#<'.$t.'>(.*?)</'.$t.'>#is', '<'.$t.'>\\1</'.$t.'>', $text); |
|
442 $text = preg_replace('#<'.$t.' />#is', '<'.$t.' />', $text); |
|
443 $text = preg_replace('#<'.$t.'>#is', '<'.$t.'>', $text); |
|
444 } |
|
445 return $text; |
|
446 } |
|
447 |
|
448 /* * |
|
449 * Replaces template inclusions with the templates |
|
450 * @param string $message The text to format |
|
451 * @return string |
|
452 * / |
|
453 |
|
454 function old_include_templates($message) |
|
455 { |
|
456 $random_id = md5( time() . mt_rand() ); |
|
457 preg_match_all('#\{\{(.+?)\}\}#s', $message, $matchlist); |
|
458 foreach($matchlist[1] as $m) |
|
459 { |
|
460 $mn = $m; |
|
461 // Strip out wikilinks and re-add them after the explosion (because of the "|") |
|
462 preg_match_all('#\[\[(.+?)\]\]#i', $m, $linklist); |
|
463 //echo '<pre>'.print_r($linklist, true).'</pre>'; |
|
464 for($i=0;$i<sizeof($linklist[1]);$i++) |
|
465 { |
|
466 $mn = str_replace('[['.$linklist[1][$i].']]', '{WIKILINK:'.$random_id.':'.$i.'}', $mn); |
|
467 } |
|
468 |
|
469 $ar = explode('|', $mn); |
|
470 |
|
471 for($j=0;$j<sizeof($ar);$j++) |
|
472 { |
|
473 for($i=0;$i<sizeof($linklist[1]);$i++) |
|
474 { |
|
475 $ar[$j] = str_replace('{WIKILINK:'.$random_id.':'.$i.'}', '[['.$linklist[1][$i].']]', $ar[$j]); |
|
476 } |
|
477 } |
|
478 |
|
479 $tp = $ar[0]; |
|
480 unset($ar[0]); |
|
481 $tp = str_replace(' ', '_', $tp); |
|
482 $message = str_replace('{{'.$m.'}}', RenderMan::getTemplate($tp, $ar), $message); |
|
483 } |
|
484 return $message; |
|
485 } |
|
486 */ |
|
487 |
|
488 /** |
|
489 * Parses a partial template tag in wikitext, and return an array with the parameters. |
|
490 * @param string The portion of the template tag that contains the parameters. Example: |
|
491 * <code> |
|
492 * foo = lorem ipsum |
|
493 * bar = dolor sit amet |
|
494 * </code> |
|
495 * @return array Example: |
|
496 * [foo] => lorem ipsum |
|
497 * [bar] => dolor sit amet |
|
498 */ |
|
499 |
|
500 function parse_template_vars($input) |
|
501 { |
|
502 $input = explode("\n", trim( $input )); |
|
503 $parms = Array(); |
|
504 $current_line = ''; |
|
505 $current_parm = ''; |
|
506 foreach ( $input as $num => $line ) |
|
507 { |
|
508 if ( preg_match('/^([ ]*?)([A-z0-9_]+?)([ ]*?)=([ ]*?)(.+?)$/i', $line, $matches) ) |
|
509 { |
|
510 $parm =& $matches[2]; |
|
511 $text =& $matches[5]; |
|
512 if ( $parm == $current_parm ) |
|
513 { |
|
514 $current_line .= $text; |
|
515 } |
|
516 else |
|
517 { |
|
518 // New parameter |
|
519 if ( $current_parm != '' ) |
|
520 $parms[$current_parm] = $current_line; |
|
521 $current_line = $text; |
|
522 $current_parm = $parm; |
|
523 } |
|
524 } |
|
525 else if ( $num == 0 ) |
|
526 { |
|
527 // Syntax error |
|
528 return false; |
|
529 } |
|
530 else |
|
531 { |
|
532 $current_line .= "\n$line"; |
|
533 } |
|
534 } |
|
535 if ( !empty($current_parm) && !empty($current_line) ) |
|
536 { |
|
537 $parms[$current_parm] = $current_line; |
|
538 } |
|
539 return $parms; |
|
540 } |
|
541 |
|
542 /** |
|
543 * Processes all template tags within a block of wikitext. |
|
544 * @param string The text to process |
|
545 * @return string Formatted text |
|
546 * @example |
|
547 * <code> |
|
548 $text = '{{Template |
|
549 parm1 = Foo |
|
550 parm2 = Bar |
|
551 }}'; |
|
552 $text = include_templates($text); |
|
553 * </code> |
|
554 */ |
|
555 |
|
556 function include_templates($text) |
|
557 { |
|
558 global $db, $session, $paths, $template, $plugins; // Common objects |
|
559 $template_regex = "/\{\{([A-z0-9_-]+?)((\n([ ]*?)[A-z0-9]+([ ]*?)=([ ]*?)(.+?))*)\}\}/is"; |
|
560 if ( $count = preg_match_all($template_regex, $text, $matches) ) |
|
561 { |
|
562 for ( $i = 0; $i < $count; $i++ ) |
|
563 { |
|
564 $parmsection = trim($matches[2][$i]); |
|
565 if ( !empty($parmsection) ) |
|
566 { |
|
567 $parms = parse_template_vars($parmsection); |
|
568 foreach ( $parms as $j => $parm ) |
|
569 { |
|
570 $parms[$j] = $parm; |
|
571 } |
|
572 } |
|
573 else |
|
574 { |
|
575 $parms = Array(); |
|
576 } |
|
577 if ( $tpl_code = RenderMan::fetch_template_text($matches[1][$i]) ) |
|
578 { |
|
579 $parser = $template->makeParserText($tpl_code); |
|
580 $parser->assign_vars($parms); |
|
581 $text = str_replace($matches[0][$i], $parser->run(), $text); |
|
582 } |
|
583 } |
|
584 } |
|
585 return $text; |
|
586 } |
|
587 |
|
588 /** |
|
589 * Preprocesses an HTML text string prior to being sent to MySQL. |
|
590 * @param string $text |
|
591 * @param bool $strip_all_php - if true, strips all PHP regardless of user permissions. Else, strips PHP only if user level < USER_LEVEL_ADMIN. |
|
592 */ |
|
593 function preprocess_text($text, $strip_all_php = true, $sqlescape = true) |
|
594 { |
|
595 global $db, $session, $paths, $template, $plugins; // Common objects |
|
596 $random_id = md5( time() . mt_rand() ); |
|
597 |
|
598 $can_do_php = ( $session->get_permissions('php_in_pages') && !$strip_all_php ); |
|
599 |
|
600 $text = sanitize_html($text, ( !$can_do_php )); |
|
601 |
|
602 if ( !$can_do_php ) |
|
603 { |
|
604 // If we can't do PHP, we can't do Javascript either. |
|
605 $text = RenderMan::destroy_javascript($text); |
|
606 } |
|
607 |
|
608 // Strip out <nowiki> sections and PHP code |
|
609 |
|
610 $php = preg_match_all('#(<|<)\?php(.*?)\?(>|>)#is', $text, $phpsec); |
|
611 |
|
612 //die('<pre>'.htmlspecialchars(print_r($phpsec, true))."\n".htmlspecialchars(print_r($text, true)).'</pre>'); |
|
613 |
|
614 for($i=0;$i<sizeof($phpsec[1]);$i++) |
|
615 { |
|
616 $text = str_replace($phpsec[0][$i], '{PHP:'.$random_id.':'.$i.'}', $text); |
|
617 } |
|
618 |
|
619 $nw = preg_match_all('#<nowiki>(.*?)<\/nowiki>#is', $text, $nowiki); |
|
620 |
|
621 for($i=0;$i<sizeof($nowiki[1]);$i++) |
|
622 { |
|
623 $text = str_replace('<nowiki>'.$nowiki[1][$i].'</nowiki>', '{NOWIKI:'.$random_id.':'.$i.'}', $text); |
|
624 } |
|
625 |
|
626 $text = str_replace('~~~~~', date('G:i, j F Y (T)'), $text); |
|
627 $text = str_replace('~~~~', "[[User:$session->username|$session->username]] ".date('G:i, j F Y (T)'), $text); |
|
628 $text = str_replace('~~~', "[[User:$session->username|$session->username]] ", $text); |
|
629 |
|
630 // Reinsert <nowiki> sections |
|
631 for($i=0;$i<$nw;$i++) |
|
632 { |
|
633 $text = str_replace('{NOWIKI:'.$random_id.':'.$i.'}', '<nowiki>'.$nowiki[1][$i].'</nowiki>', $text); |
|
634 } |
|
635 // Reinsert PHP |
|
636 for($i=0;$i<$php;$i++) |
|
637 { |
|
638 $phsec = ''.$phpsec[1][$i].'?php'.$phpsec[2][$i].'?'.$phpsec[3][$i].''; |
|
639 if ( $strip_all_php ) |
|
640 $phsec = htmlspecialchars($phsec); |
|
641 $text = str_replace('{PHP:'.$random_id.':'.$i.'}', $phsec, $text); |
|
642 } |
|
643 |
|
644 $text = ( $sqlescape ) ? $db->escape($text) : $text; |
|
645 |
|
646 return $text; |
|
647 } |
|
648 |
|
649 function smilieyize($text, $complete_urls = false) |
|
650 { |
|
651 |
|
652 $random_id = md5( time() . mt_rand() ); |
|
653 |
|
654 // Smileys array - eventually this will be fetched from the database by |
|
655 // RenderMan::initSmileys during initialization, but it will all be hardcoded for beta 2 |
|
656 |
|
657 $smileys = Array( |
|
658 'O:-)' => 'face-angel.png', |
|
659 'O:)' => 'face-angel.png', |
|
660 'O=)' => 'face-angel.png', |
|
661 ':-)' => 'face-smile.png', |
|
662 ':)' => 'face-smile.png', |
|
663 '=)' => 'face-smile-big.png', |
|
664 ':-(' => 'face-sad.png', |
|
665 ':(' => 'face-sad.png', |
|
666 ';(' => 'face-sad.png', |
|
667 ':-O' => 'face-surprise.png', |
|
668 ';-)' => 'face-wink.png', |
|
669 ';)' => 'face-wink.png', |
|
670 '8-)' => 'face-glasses.png', |
|
671 '8)' => 'face-glasses.png', |
|
672 ':-D' => 'face-grin.png', |
|
673 ':D' => 'face-grin.png', |
|
674 '=D' => 'face-grin.png', |
|
675 ':-*' => 'face-kiss.png', |
|
676 ':*' => 'face-kiss.png', |
|
677 '=*' => 'face-kiss.png', |
|
678 ':\'(' => 'face-crying.png', |
|
679 ':-|' => 'face-plain.png', |
|
680 ':-\\' => 'face-plain.png', |
|
681 ':-/' => 'face-plain.png', |
|
682 ':joke:' => 'face-plain.png', |
|
683 ']:->' => 'face-devil-grin.png', |
|
684 ':kiss:' => 'face-kiss.png', |
|
685 ':-P' => 'face-tongue-out.png', |
|
686 ':P' => 'face-tongue-out.png', |
|
687 ':-p' => 'face-tongue-out.png', |
|
688 ':p' => 'face-tongue-out.png', |
|
689 ':-X' => 'face-sick.png', |
|
690 ':X' => 'face-sick.png', |
|
691 ':sick:' => 'face-sick.png', |
|
692 ':-]' => 'face-oops.png', |
|
693 ':]' => 'face-oops.png', |
|
694 ':oops:' => 'face-oops.png', |
|
695 ':-[' => 'face-embarassed.png', |
|
696 ':[' => 'face-embarassed.png' |
|
697 ); |
|
698 /* |
|
699 $keys = array_keys($smileys); |
|
700 foreach($keys as $k) |
|
701 { |
|
702 $regex1 = '#([\W]+)'.preg_quote($k).'([\s\n\r\.]+)#s'; |
|
703 $regex2 = '\\1<img alt="'.$k.'" title="'.$k.'" src="'.scriptPath.'/images/smilies/'.$smileys[$k].'" style="border: 0;" />\\2'; |
|
704 $text = preg_replace($regex1, $regex2, $text); |
|
705 } |
|
706 */ |
|
707 |
|
708 // Strip out <nowiki> sections |
|
709 //return '<pre>'.htmlspecialchars($text).'</pre>'; |
|
710 $nw = preg_match_all('#<nowiki>(.*?)<\/nowiki>#is', $text, $nowiki); |
|
711 |
|
712 for($i=0;$i<sizeof($nowiki[1]);$i++) |
|
713 { |
|
714 $text = str_replace('<nowiki>'.$nowiki[1][$i].'</nowiki>', '{NOWIKI:'.$random_id.':'.$i.'}', $text); |
|
715 } |
|
716 |
|
717 $keys = array_keys($smileys); |
|
718 foreach($keys as $k) |
|
719 { |
|
720 $t = str_hex($k); |
|
721 $t = explode(' ', $t); |
|
722 $s = ''; |
|
723 foreach($t as $b) |
|
724 { |
|
725 $s.='&#x'.$b.';'; |
|
726 } |
|
727 $pfx = ( $complete_urls ) ? 'http' . ( isset($_SERVER['HTTPS']) ? 's' : '' ) . '://'.$_SERVER['HTTP_HOST'] : ''; |
|
728 $text = str_replace(' '.$k, ' <nowiki><img title="'.$s.'" alt="'.$s.'" src="'.$pfx.scriptPath.'/images/smilies/'.$smileys[$k].'" style="border: 0;" /></nowiki>', $text); |
|
729 } |
|
730 //*/ |
|
731 |
|
732 // Reinsert <nowiki> sections |
|
733 for($i=0;$i<$nw;$i++) |
|
734 { |
|
735 $text = str_replace('{NOWIKI:'.$random_id.':'.$i.'}', '<nowiki>'.$nowiki[1][$i].'</nowiki>', $text); |
|
736 } |
|
737 |
|
738 return $text; |
|
739 } |
|
740 |
|
741 /* |
|
742 * **** DEPRECATED **** |
|
743 * Replaces some critical characters in a string with MySQL-safe equivalents |
|
744 * @param $text string the text to escape |
|
745 * @return array key 0 is the escaped text, key 1 is the character tag |
|
746 * / |
|
747 |
|
748 function escape_page_text($text) |
|
749 { |
|
750 $char_tag = md5(microtime() . mt_rand()); |
|
751 $text = str_replace("'", "{APOS:$char_tag}", $text); |
|
752 $text = str_replace('"', "{QUOT:$char_tag}", $text); |
|
753 $text = str_replace("\\", "{SLASH:$char_tag}", $text); |
|
754 return Array($text, $char_tag); |
|
755 } |
|
756 */ |
|
757 |
|
758 /* **** DEPRECATED **** |
|
759 * Reverses the result of RenderMan::escape_page_text(). |
|
760 * @param $text string the text to unescape |
|
761 * @param $char_tag string the character tag |
|
762 * @return string |
|
763 * / |
|
764 |
|
765 function unescape_page_text($text, $char_tag) |
|
766 { |
|
767 $text = str_replace("{APOS:$char_tag}", "'", $text); |
|
768 $text = str_replace("{QUOT:$char_tag}", '"', $text); |
|
769 $text = str_replace("{SLASH:$char_tag}", "\\", $text); |
|
770 return $text; |
|
771 } |
|
772 */ |
|
773 |
|
774 /** |
|
775 * Generates a summary of the differences between two texts, and formats it as XHTML. |
|
776 * @param $str1 string the first block of text |
|
777 * @param $str2 string the second block of text |
|
778 * @return string |
|
779 */ |
|
780 function diff($str1, $str2) |
|
781 { |
|
782 global $db, $session, $paths, $template, $plugins; // Common objects |
|
783 $str1 = explode("\n", $str1); |
|
784 $str2 = explode("\n", $str2); |
|
785 $diff = new Diff($str1, $str2); |
|
786 $renderer = new TableDiffFormatter(); |
|
787 return '<table class="diff">'.$renderer->format($diff).'</table>'; |
|
788 } |
|
789 |
|
790 } |
|
791 |
|
792 ?> |