]>
git.immae.eu Git - github/shaarli/Shaarli.git/blob - application/Utils.php
aeaef9ff143a84e67f16bb99365fcdbd70680608
7 * Returns the small hash of a string, using RFC 4648 base64url format
10 * - are unique (well, as unique as crc32, at last)
11 * - are always 6 characters long.
12 * - only use the following characters: a-z A-Z 0-9 - _ @
13 * - are NOT cryptographically secure (they CAN be forged)
15 * In Shaarli, they are used as a tinyurl-like link to individual entries,
16 * e.g. smallHash('20111006_131924') --> yZH23w
18 function smallHash($text)
20 $t = rtrim(base64_encode(hash('crc32', $text, true)), '=');
21 return strtr($t, '+/', '-_');
25 * Tells if a string start with a substring
27 function startsWith($haystack, $needle, $case=true)
30 return (strcmp(substr($haystack, 0, strlen($needle)), $needle) === 0);
32 return (strcasecmp(substr($haystack, 0, strlen($needle)), $needle) === 0);
36 * Tells if a string ends with a substring
38 function endsWith($haystack, $needle, $case=true)
41 return (strcmp(substr($haystack, strlen($haystack) - strlen($needle)), $needle) === 0);
43 return (strcasecmp(substr($haystack, strlen($haystack) - strlen($needle)), $needle) === 0);
47 * Same as nl2br(), but escapes < and >
49 function nl2br_escaped($html)
51 return str_replace('>', '>', str_replace('<', '<', nl2br($html)));
55 * htmlspecialchars wrapper
59 return htmlspecialchars($str, ENT_COMPAT
, 'UTF-8', false);
63 * Link sanitization before templating
65 function sanitizeLink(&$link)
67 $link['url'] = escape($link['url']); // useful?
68 $link['title'] = escape($link['title']);
69 $link['description'] = escape($link['description']);
70 $link['tags'] = escape($link['tags']);
74 * Checks if a string represents a valid date
76 * @param string $format The expected DateTime format of the string
77 * @param string $string A string-formatted date
79 * @return bool whether the string is a valid date
81 * @see http://php.net/manual/en/class.datetime.php
82 * @see http://php.net/manual/en/datetime.createfromformat.php
84 function checkDateFormat($format, $string)
86 $date = DateTime
::createFromFormat($format, $string);
87 return $date && $date->format($string) == $string;
91 * Generate a header location from HTTP_REFERER.
92 * Make sure the referer is Shaarli itself and prevent redirection loop.
94 * @param string $referer - HTTP_REFERER.
95 * @param string $host - Server HOST.
96 * @param array $loopTerms - Contains list of term to prevent redirection loop.
98 * @return string $referer - final referer.
100 function generateLocation($referer, $host, $loopTerms = array())
104 // No referer if it contains any value in $loopCriteria.
105 foreach ($loopTerms as $value) {
106 if (strpos($referer, $value) !== false) {
107 return $finalReferer;
111 // Remove port from HTTP_HOST
112 if ($pos = strpos($host, ':')) {
113 $host = substr($host, 0, $pos);
116 $refererHost = parse_url($referer, PHP_URL_HOST
);
117 if (!empty($referer) && (strpos($refererHost, $host) !== false || startsWith('?', $refererHost))) {
118 $finalReferer = $referer;
121 return $finalReferer;
125 * Validate session ID to prevent Full Path Disclosure.
128 * The session ID's format depends on the hash algorithm set in PHP settings
130 * @param string $sessionId Session ID
132 * @return true if valid, false otherwise.
134 * @see http://php.net/manual/en/function.hash-algos.php
135 * @see http://php.net/manual/en/session.configuration.php
137 function is_session_id_valid($sessionId)
139 if (empty($sessionId)) {
147 if (!preg_match('/^[a-zA-Z0-9,-]{2,128}$/', $sessionId)) {
155 * In a string, converts URLs to clickable links.
157 * @param string $text input string.
158 * @param string $redirector if a redirector is set, use it to gerenate links.
160 * @return string returns $text with all links converted to HTML links.
162 * @see Function inspired from http://www.php.net/manual/en/function.preg-replace.php#85722
164 function text2clickable($text, $redirector)
166 $regex = '!(((?:https?|ftp|file)://|apt:|magnet:)\S+[[:alnum:]]/?)!si';
168 if (empty($redirector)) {
169 return preg_replace($regex, '<a href="$1">$1</a>', $text);
171 // Redirector is set, urlencode the final URL.
172 return preg_replace_callback(
174 function ($matches) use ($redirector) {
175 return '<a href="' . $redirector . urlencode($matches[1]) .'">'. $matches[1] .'</a>';
182 * This function inserts where relevant so that multiple spaces are properly displayed in HTML
183 * even in the absence of <pre> (This is used in description to keep text formatting).
185 * @param string $text input text.
187 * @return string formatted text.
189 function space2nbsp($text)
191 return preg_replace('/(^| ) /m', '$1 ', $text);
195 * Format Shaarli's description
196 * TODO: Move me to ApplicationUtils when it's ready.
198 * @param string $description shaare's description.
199 * @param string $redirector if a redirector is set, use it to gerenate links.
201 * @return string formatted description.
203 function format_description($description, $redirector) {
204 return nl2br(space2nbsp(text2clickable($description, $redirector)));