]> git.wh0rd.org - tt-rss.git/blobdiff - include/functions.php
git.wh0rd.org / tt-rss.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Merge branch 'master' of git://github.com/richbeales/Tiny-Tiny-RSS into richbeales...
[tt-rss.git] / include / functions.php
diff --git a/include/functions.php b/include/functions.php
index e66ec0737172272669f5cbe1515dae55f6e1dba3..0e2a922ba1239870bcbbe38cccdef5ad7f58979b 100644 (file)
--- a/include/functions.php
+++ b/include/functions.php
@@ -44,6 +44,7 @@
                $tr = array(
                                        "auto"  => "Detect automatically",
                                        "ca_CA" => "Català",
+                                       "cs_CZ" => "Česky",
                                        "en_US" => "English",
                                        "es_ES" => "Español",
                                        "de_DE" => "Deutsch",
@@ -74,10 +75,7 @@
                        $lang = _TRANSLATION_OVERRIDE_DEFAULT;
                }
 
-               /* In login action of mobile version */
-               if ($_POST["language"] && defined('MOBILE_VERSION')) {
-                       $lang = $_POST["language"];
-               } else if ($_SESSION["language"] && $_SESSION["language"] != "auto") {
+               if ($_SESSION["language"] && $_SESSION["language"] != "auto") {
                        $lang = $_SESSION["language"];
                }
 
@@ -88,11 +86,7 @@
                                _setlocale(LC_ALL, $lang);
                        }
 
-                       if (defined('MOBILE_VERSION')) {
-                               _bindtextdomain("messages", "../locale");
-                       } else {
-                               _bindtextdomain("messages", "locale");
-                       }
+                       _bindtextdomain("messages", "locale");
 
                        _textdomain("messages");
                        _bind_textdomain_codeset("messages", "UTF-8");
@@ -122,14 +116,24 @@
         * @return void
         */
        function _debug($msg) {
-               if (defined('QUIET') && QUIET) {
-                       return;
-               }
                $ts = strftime("%H:%M:%S", time());
                if (function_exists('posix_getpid')) {
                        $ts = "$ts/" . posix_getpid();
                }
-               print "[$ts] $msg\n";
+
+               if (!(defined('QUIET') && QUIET)) {
+                       print "[$ts] $msg\n";
+               }
+
+               if (defined('LOGFILE'))  {
+                       $fp = fopen(LOGFILE, 'a+');
+
+                       if ($fp) {
+                               fputs($fp, "[$ts] $msg\n");
+                               fclose($fp);
+                       }
+               }
+
        } // function _debug
 
        /**
@@ -286,12 +290,16 @@
                global $fetch_last_error;
 
                if (function_exists('curl_init') && !ini_get("open_basedir")) {
-                       //$ch = curl_init($url);
-                       $ch = curl_init(geturl($url));
+
+                       if (ini_get("safe_mode")) {
+                               $ch = curl_init(geturl($url));
+                       } else {
+                               $ch = curl_init($url);
+                       }
 
                        curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, $timeout ? $timeout : 15);
                        curl_setopt($ch, CURLOPT_TIMEOUT, $timeout ? $timeout : 45);
-                       //curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
+                       curl_setopt($ch, CURLOPT_FOLLOWLOCATION, !ini_get("safe_mode"));
                        curl_setopt($ch, CURLOPT_MAXREDIRS, 20);
                        curl_setopt($ch, CURLOPT_BINARYTRANSFER, true);
                        curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
@@ -508,7 +516,7 @@
 
        function initialize_user_prefs($link, $uid, $profile = false) {
 
-               $uid = db_escape_string($uid);
+               $uid = db_escape_string($link, $uid);
 
                if (!$profile) {
                        $profile = "NULL";
@@ -738,7 +746,7 @@
                }
        }
 
-       function login_sequence($link, $login_form = 0) {
+       function login_sequence($link) {
                $_SESSION["prefs_cache"] = false;
 
                if (SINGLE_USER_MODE) {
@@ -754,7 +762,7 @@
                                         authenticate_user($link, null, null, true);
                                }
 
-                               if (!$_SESSION["uid"]) render_login_form($link, $login_form);
+                               if (!$_SESSION["uid"]) render_login_form($link);
 
                        } else {
                                /* bump login timestamp */
@@ -782,11 +790,6 @@
                }
        }
 
-       // Deprecated, TODO: remove
-       function theme_image($link, $filename) {
-               return $filename;
-       }
-
        function convert_timestamp($timestamp, $source_tz, $dest_tz) {
 
                try {
@@ -908,7 +911,7 @@
                        }
                }
 
-               if (db_escape_string("testTEST") != "testTEST") {
+               if (db_escape_string($link, "testTEST") != "testTEST") {
                        $error_code = 12;
                }
 
@@ -1083,7 +1086,7 @@
                        } else { // tag
                                db_query($link, "BEGIN");
 
-                               $tag_name = db_escape_string($feed);
+                               $tag_name = db_escape_string($link, $feed);
 
                                $result = db_query($link, "SELECT post_int_id FROM ttrss_tags
                                        WHERE tag_name = '$tag_name' AND owner_uid = $owner_uid");
@@ -1280,7 +1283,7 @@
                        return 0;
                } else if ($feed != "0" && $n_feed == 0) {
 
-                       $feed = db_escape_string($feed);
+                       $feed = db_escape_string($link, $feed);
 
                        $result = db_query($link, "SELECT SUM((SELECT COUNT(int_id)
                                FROM ttrss_user_entries,ttrss_entries WHERE int_id = post_int_id
@@ -1821,11 +1824,6 @@
        function make_init_params($link) {
                $params = array();
 
-               $params["sign_progress"] = theme_image($link, "images/indicator_white.gif");
-               $params["sign_progress_tiny"] = theme_image($link, "images/indicator_tiny.gif");
-               $params["sign_excl"] = theme_image($link, "images/sign_excl.svg");
-               $params["sign_info"] = theme_image($link, "images/sign_info.svg");
-
                foreach (array("ON_CATCHUP_SHOW_NEXT_FEED", "HIDE_READ_FEEDS",
                        "ENABLE_FEED_CATS", "FEEDS_SORT_BY_UNREAD", "CONFIRM_FEED_CATCHUP",
                        "CDM_AUTO_CATCHUP", "FRESH_ARTICLE_MAX_AGE", "DEFAULT_ARTICLE_LIMIT",
@@ -1885,8 +1883,9 @@
                                "article_scroll_up" => __("Scroll up"),
                                "select_article_cursor" => __("Select article under cursor"),
                                "email_article" => __("Email article"),
-                               "close_article" => __("Close article"),
-                               "toggle_widescreen" => __("Toggle widescreen mode")),
+                               "close_article" => __("Close/collapse article"),
+                               "toggle_widescreen" => __("Toggle widescreen mode"),
+                               "toggle_embed_original" => __("Toggle embed original")),
                        __("Article selection") => array(
                                "select_all" => __("Select all articles"),
                                "select_unread" => __("Select unread"),
@@ -1949,6 +1948,7 @@
                                "*(38)|Shift+up" => "article_scroll_up",
                                "*(40)|Shift+down" => "article_scroll_down",
                                "a *w" => "toggle_widescreen",
+                               "a e" => "toggle_embed_original",
                                "e" => "email_article",
                                "a q" => "close_article",
 //                     "article_selection" => array(
@@ -2022,6 +2022,8 @@
                $data['last_article_id'] = getLastArticleId($link);
                $data['cdm_expanded'] = get_pref($link, 'CDM_EXPANDED');
 
+               $data['dep_ts'] = calculate_dep_timestamp();
+
                if (file_exists(LOCK_DIRECTORY . "/update_daemon.lock")) {
 
                        $data['daemon_is_running'] = (int) file_is_locked("update_daemon.lock");
@@ -2061,7 +2063,7 @@
                return $data;
        }
 
-       function search_to_sql($link, $search, $match_on) {
+       function search_to_sql($link, $search) {
 
                $search_query_part = "";
 
@@ -2108,13 +2110,9 @@
                                //$k = date("Y-m-d", strtotime(substr($k, 1)));
 
                                array_push($query_keywords, "(".SUBSTRING_FOR_DATE."(updated,1,LENGTH('$k')) $not = '$k')");
-                       } else if ($match_on == "both") {
+                       } else {
                                array_push($query_keywords, "(UPPER(ttrss_entries.title) $not LIKE UPPER('%$k%')
                                                OR UPPER(ttrss_entries.content) $not LIKE UPPER('%$k%'))");
-                       } else if ($match_on == "title") {
-                               array_push($query_keywords, "(UPPER(ttrss_entries.title) $not LIKE UPPER('%$k%'))");
-                       } else if ($match_on == "content") {
-                               array_push($query_keywords, "(UPPER(ttrss_entries.content) $not LIKE UPPER('%$k%'))");
                        }
                }
 
@@ -2151,7 +2149,7 @@
                return $rv;
        }
 
-       function queryFeedHeadlines($link, $feed, $limit, $view_mode, $cat_view, $search, $search_mode, $match_on, $override_order = false, $offset = 0, $owner_uid = 0, $filter = false, $since_id = 0, $include_children = false, $ignore_vfeed_group = false) {
+       function queryFeedHeadlines($link, $feed, $limit, $view_mode, $cat_view, $search, $search_mode, $override_order = false, $offset = 0, $owner_uid = 0, $filter = false, $since_id = 0, $include_children = false, $ignore_vfeed_group = false) {
 
                if (!$owner_uid) $owner_uid = $_SESSION["uid"];
 
@@ -2168,7 +2166,7 @@
                                                $search_query_part = "ref_id = -1 AND ";
 
                                } else {
-                                       $search_query_part = search_to_sql($link, $search, $match_on);
+                                       $search_query_part = search_to_sql($link, $search);
                                        $search_query_part .= " AND ";
                                }
 
@@ -2506,7 +2504,7 @@
                                                                "label_cache," .
                                                                "link," .
                                                                "last_read," .
-                                                               "hide_images," .
+                                                               "(SELECT hide_images FROM ttrss_feeds WHERE id = feed_id) AS hide_images," .
                                                                "last_marked, last_published, " .
                                                                SUBSTRING_FOR_DATE . "(last_read,1,19) as last_read_noms," .
                                                                $since_id_part .
@@ -2605,7 +2603,8 @@
                                }
 
                                if ($entry->nodeName == 'img') {
-                                       if (get_pref($link, "STRIP_IMAGES", $owner) || $force_remove_images) {
+                                       if (($owner && get_pref($link, "STRIP_IMAGES", $owner)) ||
+                                                       $force_remove_images) {
 
                                                $p = $doc->createElement('p');
 
@@ -2629,7 +2628,8 @@
 
                $entries = $xpath->query('//iframe');
                foreach ($entries as $entry) {
-                       $entry->setAttribute('sandbox', true);
+                       $entry->setAttribute('sandbox', 'allow-scripts');
+
                }
 
                global $pluginhost;
@@ -2651,7 +2651,7 @@
 
                $allowed_elements = array('a', 'address', 'audio', 'article',
                        'b', 'big', 'blockquote', 'body', 'br', 'cite',
-                       'code', 'dd', 'del', 'details', 'div', 'dl',
+                       'code', 'dd', 'del', 'details', 'div', 'dl', 'font',
                        'dt', 'em', 'footer', 'h1', 'h2', 'h3', 'h4', 'h5', 'h6',
                        'header', 'html', 'i', 'img', 'ins', 'kbd',
                        'li', 'nav', 'ol', 'p', 'pre', 'q', 's','small',
@@ -2744,7 +2744,7 @@
 
        function get_article_tags($link, $id, $owner_uid = 0, $tag_cache = false) {
 
-               $a_id = db_escape_string($id);
+               $a_id = db_escape_string($link, $id);
 
                if (!$owner_uid) $owner_uid = $_SESSION["uid"];
 
@@ -2779,7 +2779,7 @@
 
                        /* update the cache */
 
-                       $tags_str = db_escape_string(join(",", $tags));
+                       $tags_str = db_escape_string($link, join(",", $tags));
 
                        db_query($link, "UPDATE ttrss_user_entries
                                SET tag_cache = '$tags_str' WHERE ref_id = '$id'
@@ -2809,15 +2809,8 @@
                return true;
        }
 
-       function render_login_form($link, $form_id = 0) {
-               switch ($form_id) {
-               case 0:
-                       require_once "login_form.php";
-                       break;
-               case 1:
-                       require_once "mobile/login_form.php";
-                       break;
-               }
+       function render_login_form($link) {
+               require_once "login_form.php";
                exit;
        }
 
@@ -2833,19 +2826,19 @@
        function format_warning($msg, $id = "") {
                global $link;
                return "<div class=\"warning\" id=\"$id\">
-                       <img src=\"".theme_image($link, "images/sign_excl.svg")."\">$msg</div>";
+                       <img src=\"images/sign_excl.svg\">$msg</div>";
        }
 
        function format_notice($msg, $id = "") {
                global $link;
                return "<div class=\"notice\" id=\"$id\">
-                       <img src=\"".theme_image($link, "images/sign_info.svg")."\">$msg</div>";
+                       <img src=\"images/sign_info.svg\">$msg</div>";
        }
 
        function format_error($msg, $id = "") {
                global $link;
                return "<div class=\"error\" id=\"$id\">
-                       <img src=\"".theme_image($link, "images/sign_excl.svg")."\">$msg</div>";
+                       <img src=\"images/sign_excl.svg\">$msg</div>";
        }
 
        function print_notice($msg) {
@@ -2944,6 +2937,7 @@
                $result = db_query($link, "SELECT id,title,link,content,feed_id,comments,int_id,
                        ".SUBSTRING_FOR_DATE."(updated,1,16) as updated,
                        (SELECT site_url FROM ttrss_feeds WHERE id = feed_id) as site_url,
+                       (SELECT hide_images FROM ttrss_feeds WHERE id = feed_id) as hide_images,
                        num_comments,
                        tag_cache,
                        author,
@@ -3034,7 +3028,7 @@
                        if (!$entry_comments) $entry_comments = "&nbsp;"; # placeholder
 
                        $rv['content'] .= "<div class='postTags' style='float : right'>
-                               <img src='".theme_image($link, 'images/tag.png')."'
+                               <img src='images/tag.png'
                                class='tagsPic' alt='Tags' title='Tags'>&nbsp;";
 
                        if (!$zoom_mode) {
@@ -3125,7 +3119,7 @@
                        $rv['content'] .= $line["content"];
 
                        $rv['content'] .= format_article_enclosures($link, $id,
-                               $always_display_enclosures, $line["content"]);
+                               $always_display_enclosures, $line["content"], $line["hide_images"]);
 
                        $rv['content'] .= "</div>";
 
@@ -3517,7 +3511,7 @@
                if (db_num_rows($result) == 1) {
                        return db_fetch_result($result, 0, "access_key");
                } else {
-                       $key = db_escape_string(sha1(uniqid(rand(), true)));
+                       $key = db_escape_string($link, sha1(uniqid(rand(), true)));
 
                        $result = db_query($link, "INSERT INTO ttrss_access_keys
                                (access_key, feed_id, is_cat, owner_uid)
@@ -3588,7 +3582,7 @@
        }
 
        function format_article_enclosures($link, $id, $always_display_enclosures,
-                                       $article_content) {
+                                       $article_content, $hide_images = false) {
 
                $result = get_article_enclosures($link, $id);
                $rv = '';
@@ -3629,7 +3623,7 @@
                                array_push($entries, $entry);
                        }
 
-                       if (!get_pref($link, "STRIP_IMAGES")) {
+                       if ($_SESSION['uid'] && !get_pref($link, "STRIP_IMAGES")) {
                                if ($always_display_enclosures ||
                                                        !preg_match("/<img/i", $article_content)) {
 
@@ -3638,10 +3632,16 @@
                                                if (preg_match("/image/", $entry["type"]) ||
                                                                preg_match("/\.(jpg|png|gif|bmp)/i", $entry["filename"])) {
 
-                                                               $rv .= "<p><img
-                                                               alt=\"".htmlspecialchars($entry["filename"])."\"
-                                                               src=\"" .htmlspecialchars($entry["url"]) . "\"/></p>";
+                                                               if (!$hide_images) {
+                                                                       $rv .= "<p><img
+                                                                       alt=\"".htmlspecialchars($entry["filename"])."\"
+                                                                       src=\"" .htmlspecialchars($entry["url"]) . "\"/></p>";
+                                                               } else {
+                                                                       $rv .= "<p><a target=\"_blank\"
+                                                                       href=\"".htmlspecialchars($entry["url"])."\"
+                                                                       >" .htmlspecialchars($entry["url"]) . "</a></p>";
 
+                                                               }
                                                }
                                        }
                                }
@@ -3865,7 +3865,7 @@
 
                        if ($regexp_valid) {
 
-                               $rule['reg_exp'] = db_escape_string($rule['reg_exp']);
+                               $rule['reg_exp'] = db_escape_string($link, $rule['reg_exp']);
 
                                switch ($rule["type"]) {
                                        case "title":
@@ -3896,7 +3896,7 @@
                                }
 
                                if (isset($rule["feed_id"]) && $rule["feed_id"] > 0) {
-                                       $qpart .= " AND feed_id = " . db_escape_string($rule["feed_id"]);
+                                       $qpart .= " AND feed_id = " . db_escape_string($link, $rule["feed_id"]);
                                }
 
                                if (isset($rule["cat_id"])) {
@@ -4065,4 +4065,44 @@
                return $rv;
        }
 
+       function stylesheet_tag($filename) {
+               $timestamp = filemtime($filename);
+
+               echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"$filename?$timestamp\"/>\n";
+       }
+
+       function javascript_tag($filename) {
+               $query = "";
+
+               if (!(strpos($filename, "?") === FALSE)) {
+                       $query = substr($filename, strpos($filename, "?")+1);
+                       $filename = substr($filename, 0, strpos($filename, "?"));
+               }
+
+               $timestamp = filemtime($filename);
+
+               if ($query) $timestamp .= "&$query";
+
+               echo "<script type=\"text/javascript\" charset=\"utf-8\" src=\"$filename?$timestamp\"></script>\n";
+       }
+
+       function calculate_dep_timestamp() {
+               $files = array_merge(glob("js/*.js"), glob("*.css"));
+
+               $max_ts = -1;
+
+               foreach ($files as $file) {
+                       if (filemtime($file) > $max_ts) $max_ts = filemtime($file);
+               }
+
+               return $max_ts;
+       }
+
+    function get_site_title() {
+        $original_title = "Tiny Tiny RSS";
+        if (defined("SITE_TITLE")) {
+            return SITE_TITLE;
+        }
+        return $original_title;
+    }
 ?>
web-based news feed (RSS/Atom) reader and aggregator; see https://tt-rss.org/