]> git.immae.eu Git - github/wallabag/wallabag.git/blob - inc/poche/Poche.class.php
projects / github / wallabag / wallabag.git / blob
? search:


7b13c97e4b2d4dd0780a89c9bf679c91388a3cb1
[github/wallabag/wallabag.git] / inc / poche / Poche.class.php
1 <?php
2 /**
3 * wallabag, self hostable application allowing you to not miss any content anymore
4 *
5 * @category wallabag
6 * @author Nicolas Lœuillet <nicolas@loeuillet.org>
7 * @copyright 2013
8 * @license http://opensource.org/licenses/MIT see COPYING file
9 */
10
11 class Poche
12 {
13 /**
14 * @var User
15 */
16 public $user;
17 /**
18 * @var Database
19 */
20 public $store;
21 /**
22 * @var Template
23 */
24 public $tpl;
25 /**
26 * @var Language
27 */
28 public $language;
29 /**
30 * @var Routing
31 */
32 public $routing;
33 /**
34 * @var Messages
35 */
36 public $messages;
37 /**
38 * @var Paginator
39 */
40 public $pagination;
41
42 public function __construct()
43 {
44 $this->init();
45 }
46
47 private function init()
48 {
49 Tools::initPhp();
50
51 $pocheUser = Session::getParam('poche_user');
52
53 if ($pocheUser && $pocheUser != array()) {
54 $this->user = $pocheUser;
55 } else {
56 // fake user, just for install & login screens
57 $this->user = new User();
58 $this->user->setConfig($this->getDefaultConfig());
59 }
60
61 $this->pagination = new Paginator($this->user->getConfigValue('pager'), 'p');
62 $this->language = new Language($this);
63 $this->tpl = new Template($this);
64 $this->store = new Database();
65 $this->messages = new Messages();
66 $this->routing = new Routing($this);
67 }
68
69 public function run()
70 {
71 $this->routing->run();
72 }
73
74 /**
75 * Creates a new user
76 */
77 public function createNewUser($username, $password, $email = "", $internalRegistration = false)
78 {
79 Tools::logm('Trying to create a new user...');
80 if (!empty($username) && !empty($password)){
81 $newUsername = filter_var($username, FILTER_SANITIZE_STRING);
82 $email = filter_var($email, FILTER_SANITIZE_STRING);
83 if (!$this->store->userExists($newUsername)){
84 if ($this->store->install($newUsername, Tools::encodeString($password . $newUsername), $email)) {
85 if ($email != "") { // if email is filled
86 if (SEND_CONFIRMATION_EMAIL && function_exists('mail')) {
87
88 // if internal registration from config screen
89 $body_internal = _('Hi,') . "\r\n\r\n" . sprintf(_('Someone just created a wallabag account for you on %1$s.'), Tools::getPocheUrl()) .
90 "\r\n\r\n" . sprintf(_('Your login is %1$s.'), $newUsername) ."\r\n\r\n" .
91 _('Note : The password has been chosen by the person who created your account. Get in touch with that person to know your password and change it as soon as possible') . "\r\n\r\n" .
92 _('Have fun with it !') . "\r\n\r\n" .
93 _('This is an automatically generated message, no one will answer if you respond to it.');
94
95 // if external (public) registration
96 $body = sprintf(_('Hi, %1$s'), $newUsername) . "\r\n\r\n" .
97 sprintf(_('You\'ve just created a wallabag account on %1$s.'), Tools::getPocheUrl()) .
98 "\r\n\r\n" . _("Have fun with it !");
99
100 $body = $internalRegistration ? $body_internal : $body;
101
102 $body = wordwrap($body, 70, "\r\n"); // cut lines with more than 70 caracters (MIME standard)
103 if (mail($email, sprintf(_('Your new wallabag account on %1$s'), Tools::getPocheUrl()), $body,
104 'X-Mailer: PHP/' . phpversion() . "\r\n" .
105 'Content-type: text/plain; charset=UTF-8' . "\r\n" .
106 "From: " . $newUsername . "@" . gethostname() . "\r\n")) {
107 Tools::logm('The user ' . $newUsername . ' has been emailed');
108 $this->messages->add('i', sprintf(_('The new user %1$s has been sent an email at %2$s. You may have to check spam folder.'), $newUsername, $email));
109 Tools::redirect('?');
110
111 } else {
112 Tools::logm('A problem has been encountered while sending an email');
113 $this->messages->add('e', _('A problem has been encountered while sending an email'));
114 }
115 } else {
116 Tools::logm('The user has been created, but the server did not authorize sending emails');
117 $this->messages->add('i', _('The server did not authorize sending a confirmation email, but the user was created.'));
118 }
119 } else {
120 Tools::logm('The user has been created, but no email was saved, so no confimation email was sent');
121 $this->messages->add('i', _('The user was created, but no email was sent because email was not filled in'));
122 }
123 Tools::logm('The new user ' . $newUsername . ' has been installed');
124 if (\Session::isLogged()) {
125 $this->messages->add('s', sprintf(_('The new user %s has been installed. Do you want to <a href="?logout">logout ?</a>'), $newUsername));
126 }
127 Tools::redirect();
128 }
129 else {
130 Tools::logm('error during adding new user');
131 Tools::redirect();
132 }
133 }
134 else {
135 $this->messages->add('e', sprintf(_('Error : An user with the name %s already exists !'), $newUsername));
136 Tools::logm('An user with the name ' . $newUsername . ' already exists !');
137 Tools::redirect();
138 }
139 }
140 else {
141 Tools::logm('Password or username were empty');
142 }
143 }
144
145 /**
146 * Delete an existing user
147 */
148 public function deleteUser($password)
149 {
150 if ($this->store->listUsers() > 1) {
151 if (Tools::encodeString($password . $this->user->getUsername()) == $this->store->getUserPassword($this->user->getId())) {
152 $username = $this->user->getUsername();
153 $this->store->deleteUserConfig($this->user->getId());
154 Tools::logm('The configuration for user '. $username .' has been deleted !');
155 $this->store->deleteTagsEntriesAndEntries($this->user->getId());
156 Tools::logm('The entries for user '. $username .' has been deleted !');
157 $this->store->deleteUser($this->user->getId());
158 Tools::logm('User '. $username .' has been completely deleted !');
159 Session::logout();
160 Tools::logm('logout');
161 Tools::redirect();
162 $this->messages->add('s', sprintf(_('User %s has been successfully deleted !'), $username));
163 }
164 else {
165 Tools::logm('Bad password !');
166 $this->messages->add('e', _('Error : The password is wrong !'));
167 }
168 }
169 else {
170 Tools::logm('Only user !');
171 $this->messages->add('e', _('Error : You are the only user, you cannot delete your account !'));
172 }
173 }
174
175 public function getDefaultConfig()
176 {
177 return array(
178 'pager' => PAGINATION,
179 'language' => LANG,
180 'theme' => DEFAULT_THEME
181 );
182 }
183
184 /**
185 * Call action (mark as fav, archive, delete, etc.)
186 */
187 public function action($action, Url $url, $id = 0, $import = FALSE, $autoclose = FALSE, $tags = null)
188 {
189 switch ($action)
190 {
191 case 'add':
192 $content = Tools::getPageContent($url);
193 $title = ($content['rss']['channel']['item']['title'] != '') ? $content['rss']['channel']['item']['title'] : _('Untitled');
194 $body = $content['rss']['channel']['item']['description'];
195
196 // clean content from prevent xss attack
197 $purifier = $this->_getPurifier();
198 $title = $purifier->purify($title);
199 $body = $purifier->purify($body);
200
201 //search for possible duplicate
202 $duplicate = NULL;
203 $clean_url = $url->getUrl();
204
205 // Clean URL to remove parameters from feedburner and all this stuff. Taken from Shaarli.
206 $i=strpos($clean_url,'&utm_source='); if ($i!==false) $clean_url=substr($clean_url,0,$i);
207 $i=strpos($clean_url,'?utm_source='); if ($i!==false) $clean_url=substr($clean_url,0,$i);
208 $i=strpos($clean_url,'#xtor=RSS-'); if ($i!==false) $clean_url=substr($clean_url,0,$i);
209
210 $duplicate = $this->store->retrieveOneByURL($clean_url, $this->user->getId());
211
212 $last_id = $this->store->add($clean_url, $title, $body, $this->user->getId());
213 if ( $last_id ) {
214 Tools::logm('add link ' . $clean_url);
215 if (DOWNLOAD_PICTURES) {
216 $content = Picture::filterPicture($body, $clean_url, $last_id);
217 Tools::logm('updating content article');
218 $this->store->updateContent($last_id, $content, $this->user->getId());
219 }
220
221 if ($duplicate != NULL) {
222 // duplicate exists, so, older entry needs to be deleted (as new entry should go to the top of list), BUT favorite mark and tags should be preserved
223 Tools::logm('link ' . $clean_url . ' is a duplicate');
224 // 1) - preserve tags and favorite, then drop old entry
225 $this->store->reassignTags($duplicate['id'], $last_id);
226 if ($duplicate['is_fav']) {
227 $this->store->favoriteById($last_id, $this->user->getId());
228 }
229 if ($this->store->deleteById($duplicate['id'], $this->user->getId())) {
230 Tools::logm('previous link ' . $clean_url .' entry deleted');
231 }
232 }
233
234 // if there are tags, add them to the new article
235 if (isset($_GET['tags'])) {
236 $_POST['value'] = $_GET['tags'];
237 $_POST['entry_id'] = $last_id;
238 $this->action('add_tag', $url);
239 }
240
241 $this->messages->add('s', _('the link has been added successfully'));
242 }
243 else {
244 $this->messages->add('e', _('error during insertion : the link wasn\'t added'));
245 Tools::logm('error during insertion : the link wasn\'t added ' . $clean_url);
246 }
247
248 if ($autoclose == TRUE) {
249 Tools::redirect('?view=home&closewin=true');
250 } else {
251 Tools::redirect('?view=home');
252 }
253 return $last_id;
254 break;
255 case 'delete':
256 if (isset($_GET['search'])) {
257 //when we want to apply a delete to a search
258 $tags = array($_GET['search']);
259 $allentry_ids = $this->store->search($tags[0], $this->user->getId());
260 $entry_ids = array();
261 foreach ($allentry_ids as $eachentry) {
262 $entry_ids[] = $eachentry[0];
263 }
264 } else { // delete a single article
265 $entry_ids = array($id);
266 }
267 foreach($entry_ids as $id) {
268 $msg = 'delete link #' . $id;
269 if ($this->store->deleteById($id, $this->user->getId())) {
270 if (DOWNLOAD_PICTURES) {
271 Picture::removeDirectory(ABS_PATH . $id);
272 }
273 $this->messages->add('s', _('the link has been deleted successfully'));
274 }
275 else {
276 $this->messages->add('e', _('the link wasn\'t deleted'));
277 $msg = 'error : can\'t delete link #' . $id;
278 }
279 Tools::logm($msg);
280 }
281 Tools::redirect('?');
282 break;
283 case 'toggle_fav' :
284 $this->store->favoriteById($id, $this->user->getId());
285 Tools::logm('mark as favorite link #' . $id);
286 if ( Tools::isAjaxRequest() ) {
287 echo 1;
288 exit;
289 }
290 else {
291 Tools::redirect();
292 }
293 break;
294 case 'toggle_archive' :
295 if (isset($_GET['tag_id'])) {
296 //when we want to archive a whole tag
297 $tag_id = $_GET['tag_id'];
298 $allentry_ids = $this->store->retrieveEntriesByTag($tag_id, $this->user->getId());
299 $entry_ids = array();
300 foreach ($allentry_ids as $eachentry) {
301 $entry_ids[] = $eachentry[0];
302 }
303 } else { //archive a single article
304 $entry_ids = array($id);
305 }
306 foreach($entry_ids as $id) {
307 $this->store->archiveById($id, $this->user->getId());
308 Tools::logm('archive link #' . $id);
309 }
310 if ( Tools::isAjaxRequest() ) {
311 echo 1;
312 exit;
313 } else {
314 Tools::redirect();
315 }
316 break;
317 case 'archive_and_next' :
318 $nextid = $this->store->getPreviousArticle($id, $this->user->getId());
319 $this->store->archiveById($id, $this->user->getId());
320 Tools::logm('archive link #' . $id);
321 Tools::redirect('?view=view&id=' . $nextid);
322 break;
323 case 'archive_all' :
324 $this->store->archiveAll($this->user->getId());
325 Tools::logm('archive all links');
326 Tools::redirect();
327 break;
328 case 'add_tag' :
329 if (isset($_GET['search'])) {
330 //when we want to apply a tag to a search
331 $tags = array($_GET['search']);
332 $allentry_ids = $this->store->search($tags[0], $this->user->getId());
333 $entry_ids = array();
334 foreach ($allentry_ids as $eachentry) {
335 $entry_ids[] = $eachentry[0];
336 }
337 } else { //add a tag to a single article
338 $tags = explode(',', $_POST['value']);
339 $entry_ids = array($_POST['entry_id']);
340 }
341 foreach($entry_ids as $entry_id) {
342 $entry = $this->store->retrieveOneById($entry_id, $this->user->getId());
343 if (!$entry) {
344 $this->messages->add('e', _('Article not found!'));
345 Tools::logm('error : article not found');
346 Tools::redirect();
347 }
348 //get all already set tags to preven duplicates
349 $already_set_tags = array();
350 $entry_tags = $this->store->retrieveTagsByEntry($entry_id);
351 foreach ($entry_tags as $tag) {
352 $already_set_tags[] = $tag['value'];
353 }
354 foreach($tags as $key => $tag_value) {
355 $value = trim($tag_value);
356 if ($value && !in_array($value, $already_set_tags)) {
357 $tag = $this->store->retrieveTagByValue($value);
358 if (is_null($tag)) {
359 # we create the tag
360 $tag = $this->store->createTag($value);
361 $sequence = '';
362 if (STORAGE == 'postgres') {
363 $sequence = 'tags_id_seq';
364 }
365 $tag_id = $this->store->getLastId($sequence);
366 }
367 else {
368 $tag_id = $tag['id'];
369 }
370
371 # we assign the tag to the article
372 $this->store->setTagToEntry($tag_id, $entry_id);
373 }
374 }
375 }
376 $this->messages->add('s', _('The tag has been applied successfully'));
377 Tools::logm('The tag has been applied successfully');
378 Tools::redirect();
379 break;
380 case 'remove_tag' :
381 $tag_id = $_GET['tag_id'];
382 $entry = $this->store->retrieveOneById($id, $this->user->getId());
383 if (!$entry) {
384 $this->messages->add('e', _('Article not found!'));
385 Tools::logm('error : article not found');
386 Tools::redirect();
387 }
388 $this->store->removeTagForEntry($id, $tag_id);
389 Tools::logm('tag entry deleted');
390 if ($this->store->cleanUnusedTag($tag_id)) {
391 Tools::logm('tag deleted');
392 }
393 $this->messages->add('s', _('The tag has been successfully deleted'));
394 Tools::redirect();
395 break;
396
397 case 'reload_article' :
398 Tools::logm('reload article');
399 $id = $_GET['id'];
400 $entry = $this->store->retrieveOneById($id, $this->user->getId());
401 Tools::logm('reload url ' . $entry['url']);
402 $url = new Url(base64_encode($entry['url']));
403 $this->action('add', $url);
404 break;
405
406 /* For some unknown reason I can't get displayView() to work here (it redirects to home view afterwards). So here's a dirty fix which redirects directly to URL */
407 case 'random':
408 Tools::logm('get a random article');
409 $view = $_GET['view'];
410 if ($this->store->getRandomId($this->user->getId(),$view)) {
411 $id_array = $this->store->getRandomId($this->user->getId(),$view);
412 $id = $id_array[0];
413 Tools::redirect('?view=view&id=' . $id[0]);
414 Tools::logm('got the article with id ' . $id[0]);
415 }
416 break;
417 default:
418 break;
419 }
420 }
421
422 function displayView($view, $id = 0)
423 {
424 $tpl_vars = array();
425
426 switch ($view)
427 {
428 case 'about':
429 break;
430 case 'config':
431 $dev_infos = $this->_getPocheVersion('dev');
432 $dev = trim($dev_infos[0]);
433 $check_time_dev = date('d-M-Y H:i', $dev_infos[1]);
434 $prod_infos = $this->_getPocheVersion('prod');
435 $prod = trim($prod_infos[0]);
436 $check_time_prod = date('d-M-Y H:i', $prod_infos[1]);
437 $compare_dev = version_compare(POCHE, $dev);
438 $compare_prod = version_compare(POCHE, $prod);
439 $themes = $this->tpl->getInstalledThemes();
440 $languages = $this->language->getInstalledLanguages();
441 $token = $this->user->getConfigValue('token');
442 $http_auth = (isset($_SERVER['PHP_AUTH_USER']) || isset($_SERVER['REMOTE_USER'])) ? true : false;
443 $only_user = ($this->store->listUsers() > 1) ? false : true;
444 $tpl_vars = array(
445 'themes' => $themes,
446 'languages' => $languages,
447 'dev' => $dev,
448 'prod' => $prod,
449 'check_time_dev' => $check_time_dev,
450 'check_time_prod' => $check_time_prod,
451 'compare_dev' => $compare_dev,
452 'compare_prod' => $compare_prod,
453 'token' => $token,
454 'user_id' => $this->user->getId(),
455 'http_auth' => $http_auth,
456 'only_user' => $only_user
457 );
458 Tools::logm('config view');
459 break;
460 case 'edit-tags':
461 # tags
462 $entry = $this->store->retrieveOneById($id, $this->user->getId());
463 if (!$entry) {
464 $this->messages->add('e', _('Article not found!'));
465 Tools::logm('error : article not found');
466 Tools::redirect();
467 }
468 $tags = $this->store->retrieveTagsByEntry($id);
469 $all_tags = $this->store->retrieveAllTags($this->user->getId());
470 $maximus = 0;
471 foreach ($all_tags as $eachtag) { // search for the most times a tag is present
472 if ($eachtag["entriescount"] > $maximus) $maximus = $eachtag["entriescount"];
473 }
474 foreach ($all_tags as $key => $eachtag) { // get the percentage of presence of each tag
475 $percent = floor(($eachtag["entriescount"] / $maximus) * 100);
476
477 if ($percent < 20): // assign a css class, depending on the number of entries count
478 $cssclass = 'smallesttag';
479 elseif ($percent >= 20 and $percent < 40):
480 $cssclass = 'smalltag';
481 elseif ($percent >= 40 and $percent < 60):
482 $cssclass = 'mediumtag';
483 elseif ($percent >= 60 and $percent < 80):
484 $cssclass = 'largetag';
485 else:
486 $cssclass = 'largesttag';
487 endif;
488 $all_tags[$key]['cssclass'] = $cssclass;
489 }
490 $tpl_vars = array(
491 'entry_id' => $id,
492 'tags' => $tags,
493 'alltags' => $all_tags,
494 'entry' => $entry,
495 );
496 break;
497 case 'tags':
498 $token = $this->user->getConfigValue('token');
499 //if term is set - search tags for this term
500 $term = Tools::checkVar('term');
501 $tags = $this->store->retrieveAllTags($this->user->getId(), $term);
502 if (Tools::isAjaxRequest()) {
503 $result = array();
504 foreach ($tags as $tag) {
505 $result[] = $tag['value'];
506 }
507 echo json_encode($result);
508 exit;
509 }
510 $tpl_vars = array(
511 'token' => $token,
512 'user_id' => $this->user->getId(),
513 'tags' => $tags,
514 );
515 break;
516 case 'search':
517 if (isset($_GET['search'])) {
518 $search = filter_var($_GET['search'], FILTER_SANITIZE_STRING);
519 $tpl_vars['entries'] = $this->store->search($search, $this->user->getId());
520 $count = count($tpl_vars['entries']);
521 $this->pagination->set_total($count);
522 $page_links = str_replace(array('previous', 'next'), array(_('previous'), _('next')),
523 $this->pagination->page_links('?view=' . $view . '?search=' . $search . '&sort=' . $_SESSION['sort'] . '&' ));
524 $tpl_vars['page_links'] = $page_links;
525 $tpl_vars['nb_results'] = $count;
526 $tpl_vars['searchterm'] = $search;
527 }
528 break;
529 case 'view':
530 $entry = $this->store->retrieveOneById($id, $this->user->getId());
531 if ($entry != NULL) {
532 Tools::logm('view link #' . $id);
533 $content = $entry['content'];
534 if (function_exists('tidy_parse_string')) {
535 $tidy = tidy_parse_string($content, array('indent'=>true, 'show-body-only' => true), 'UTF8');
536 $tidy->cleanRepair();
537 $content = $tidy->value;
538 }
539
540 # flattr checking
541 $flattr = NULL;
542 if (FLATTR) {
543 $flattr = new FlattrItem();
544 $flattr->checkItem($entry['url'], $entry['id']);
545 }
546
547 # previous and next
548 $previous = FALSE;
549 $previous_id = $this->store->getPreviousArticle($id, $this->user->getId());
550 $next = FALSE;
551 $next_id = $this->store->getNextArticle($id, $this->user->getId());
552
553 if ($this->store->retrieveOneById($previous_id, $this->user->getId())) {
554 $previous = TRUE;
555 }
556 if ($this->store->retrieveOneById($next_id, $this->user->getId())) {
557 $next = TRUE;
558 }
559 $navigate = array('previous' => $previous, 'previousid' => $previous_id, 'next' => $next, 'nextid' => $next_id);
560
561 # tags
562 $tags = $this->store->retrieveTagsByEntry($entry['id']);
563
564 $tpl_vars = array(
565 'entry' => $entry,
566 'content' => $content,
567 'flattr' => $flattr,
568 'tags' => $tags,
569 'navigate' => $navigate
570 );
571 }
572 else {
573 Tools::logm('error in view call : entry is null');
574 }
575 break;
576 default: # home, favorites, archive and tag views
577 $tpl_vars = array(
578 'entries' => '',
579 'page_links' => '',
580 'nb_results' => '',
581 'listmode' => (isset($_COOKIE['listmode']) ? true : false),
582 'view' => $view,
583 );
584
585 //if id is given - we retrieve entries by tag: id is tag id
586 if ($id) {
587 $tpl_vars['tag'] = $this->store->retrieveTag($id, $this->user->getId());
588 $tpl_vars['id'] = intval($id);
589 }
590
591 $count = $this->store->getEntriesByViewCount($view, $this->user->getId(), $id);
592
593 if ($count > 0) {
594 $this->pagination->set_total($count);
595 $page_links = str_replace(array('previous', 'next'), array(_('previous'), _('next')),
596 $this->pagination->page_links('?view=' . $view . '&sort=' . $_SESSION['sort'] . (($id)?'&id='.$id:'') . '&' ));
597 $tpl_vars['entries'] = $this->store->getEntriesByView($view, $this->user->getId(), $this->pagination->get_limit(), $id);
598 $tpl_vars['page_links'] = $page_links;
599 $tpl_vars['nb_results'] = $count;
600 }
601 Tools::logm('display ' . $view . ' view');
602 break;
603 }
604
605 return $tpl_vars;
606 }
607
608 /**
609 * update the password of the current user.
610 * if MODE_DEMO is TRUE, the password can't be updated.
611 * @todo add the return value
612 * @todo set the new password in function header like this updatePassword($newPassword)
613 * @return boolean
614 */
615 public function updatePassword($password, $confirmPassword)
616 {
617 if (MODE_DEMO) {
618 $this->messages->add('i', _('in demo mode, you can\'t update your password'));
619 Tools::logm('in demo mode, you can\'t do this');
620 Tools::redirect('?view=config');
621 }
622 else {
623 if (isset($password) && isset($confirmPassword)) {
624 if ($password == $confirmPassword && !empty($password)) {
625 $this->messages->add('s', _('your password has been updated'));
626 $this->store->updatePassword($this->user->getId(), Tools::encodeString($password . $this->user->getUsername()));
627 Session::logout();
628 Tools::logm('password updated');
629 Tools::redirect();
630 }
631 else {
632 $this->messages->add('e', _('the two fields have to be filled & the password must be the same in the two fields'));
633 Tools::redirect('?view=config');
634 }
635 }
636 }
637 }
638
639 /**
640 * Get credentials from differents sources
641 * It redirects the user to the $referer link
642 *
643 * @return array
644 */
645 private function credentials()
646 {
647 if (isset($_SERVER['PHP_AUTH_USER'])) {
648 return array($_SERVER['PHP_AUTH_USER'], 'php_auth', true);
649 }
650 if (!empty($_POST['login']) && !empty($_POST['password'])) {
651 return array($_POST['login'], $_POST['password'], false);
652 }
653 if (isset($_SERVER['REMOTE_USER'])) {
654 return array($_SERVER['REMOTE_USER'], 'http_auth', true);
655 }
656
657 return array(false, false, false);
658 }
659
660 /**
661 * checks if login & password are correct and save the user in session.
662 * it redirects the user to the $referer link
663 * @param string $referer the url to redirect after login
664 * @todo add the return value
665 * @return boolean
666 */
667 public function login($referer)
668 {
669 list($login,$password,$isauthenticated)=$this->credentials();
670 if($login === false || $password === false) {
671 $this->messages->add('e', _('login failed: you have to fill all fields'));
672 Tools::logm('login failed');
673 Tools::redirect();
674 }
675 if (!empty($login) && !empty($password)) {
676 $user = $this->store->login($login, Tools::encodeString($password . $login), $isauthenticated);
677 if ($user != array()) {
678 # Save login into Session
679 $longlastingsession = isset($_POST['longlastingsession']);
680 $passwordTest = ($isauthenticated) ? $user['password'] : Tools::encodeString($password . $login);
681 Session::login($user['username'], $user['password'], $login, $passwordTest, $longlastingsession, array('poche_user' => new User($user)));
682
683 # reload l10n
684 $language = $user['config']['language'];
685 @putenv('LC_ALL=' . $language);
686 setlocale(LC_ALL, $language);
687 bindtextdomain($language, LOCALE);
688 textdomain($language);
689
690 $this->messages->add('s', _('welcome to your wallabag'));
691 Tools::logm('login successful');
692 Tools::redirect($referer);
693 }
694 $this->messages->add('e', _('login failed: bad login or password'));
695 // log login failure in web server log to allow fail2ban usage
696 error_log('user '.$login.' authentication failure');
697 Tools::logm('login failed');
698 Tools::redirect();
699 }
700 }
701
702 /**
703 * log out the poche user. It cleans the session.
704 * @todo add the return value
705 * @return boolean
706 */
707 public function logout()
708 {
709 $this->user = array();
710 Session::logout();
711 Tools::logm('logout');
712 Tools::redirect();
713 }
714
715 /**
716 * import datas into your wallabag
717 * @return boolean
718 */
719
720 public function import() {
721
722 if ( isset($_FILES['file']) && $_FILES['file']['tmp_name'] ) {
723 Tools::logm('Import stated: parsing file');
724
725 // assume, that file is in json format
726 $str_data = file_get_contents($_FILES['file']['tmp_name']);
727 $data = json_decode($str_data, true);
728
729 if ( $data === null ) {
730 //not json - assume html
731 $html = new simple_html_dom();
732 $html->load_file($_FILES['file']['tmp_name']);
733 $data = array();
734 $read = 0;
735
736 if (Tools:: get_doctype($html)) {
737 // Firefox-bookmarks HTML
738 foreach (array('DL','ul') as $list) {
739 foreach ($html->find($list) as $ul) {
740 foreach ($ul->find('DT') as $li) {
741 $tmpEntry = array();
742 $a = $li->find('A');
743 $tmpEntry['url'] = $a[0]->href;
744 $tmpEntry['tags'] = $a[0]->tags;
745 $tmpEntry['is_read'] = $read;
746 if ($tmpEntry['url']) {
747 $data[] = $tmpEntry;
748 }
749 }
750 # the second <ol/ul> is for read links
751 $read = ((sizeof($data) && $read)?0:1);
752 }
753 }
754 } else {
755 // regular HTML
756 foreach (array('ol','ul') as $list) {
757 foreach ($html->find($list) as $ul) {
758 foreach ($ul->find('li') as $li) {
759 $tmpEntry = array();
760 $a = $li->find('a');
761 $tmpEntry['url'] = $a[0]->href;
762 $tmpEntry['tags'] = $a[0]->tags;
763 $tmpEntry['is_read'] = $read;
764 if ($tmpEntry['url']) {
765 $data[] = $tmpEntry;
766 }
767 }
768 # the second <ol/ul> is for read links
769 $read = ((sizeof($data) && $read)?0:1);
770 }
771 }
772 }
773 }
774
775 // for readability structure
776
777 foreach($data as $record) {
778 if (is_array($record)) {
779 $data[] = $record;
780 foreach($record as $record2) {
781 if (is_array($record2)) {
782 $data[] = $record2;
783 }
784 }
785 }
786 }
787
788 $urlsInserted = array(); //urls of articles inserted
789 foreach($data as $record) {
790 $url = trim(isset($record['article__url']) ? $record['article__url'] : (isset($record['url']) ? $record['url'] : ''));
791 if ($url and !in_array($url, $urlsInserted)) {
792 $title = (isset($record['title']) ? $record['title'] : _('Untitled - Import - ') . '</a> <a href="./?import">' . _('click to finish import') . '</a><a>');
793 $body = (isset($record['content']) ? $record['content'] : '');
794 $isRead = (isset($record['is_read']) ? intval($record['is_read']) : (isset($record['archive']) ? intval($record['archive']) : 0));
795 $isFavorite = (isset($record['is_fav']) ? intval($record['is_fav']) : (isset($record['favorite']) ? intval($record['favorite']) : 0));
796
797 // insert new record
798
799 $id = $this->store->add($url, $title, $body, $this->user->getId() , $isFavorite, $isRead);
800 if ($id) {
801 $urlsInserted[] = $url; //add
802 if (isset($record['tags']) && trim($record['tags'])) {
803
804 $tags = explode(',', $record['tags']);
805 foreach($tags as $tag) {
806 $entry_id = $id;
807 $tag_id = $this->store->retrieveTagByValue($tag);
808 if ($tag_id) {
809 $this->store->setTagToEntry($tag_id['id'], $entry_id);
810 } else {
811 $this->store->createTag($tag);
812 $tag_id = $this->store->retrieveTagByValue($tag);
813 $this->store->setTagToEntry($tag_id['id'], $entry_id);
814 }
815 }
816
817 }
818 }
819 }
820 }
821
822 $i = sizeof($urlsInserted);
823 if ($i > 0) {
824 $this->messages->add('s', _('Articles inserted: ') . $i . _('. Please note, that some may be marked as "read".'));
825 }
826
827 Tools::logm('Import of articles finished: '.$i.' articles added (w/o content if not provided).');
828 }
829 else {
830 $this->messages->add('e', _('Did you forget to select a file?'));
831 }
832 // file parsing finished here
833 // now download article contents if any
834 // check if we need to download any content
835
836 $recordsDownloadRequired = $this->store->retrieveUnfetchedEntriesCount($this->user->getId());
837
838 if ($recordsDownloadRequired == 0) {
839
840 // nothing to download
841
842 $this->messages->add('s', _('Import finished.'));
843 Tools::logm('Import finished completely');
844 Tools::redirect();
845 }
846 else {
847
848 // if just inserted - don't download anything, download will start in next reload
849
850 if (!isset($_FILES['file'])) {
851
852 // download next batch
853
854 Tools::logm('Fetching next batch of articles...');
855 $items = $this->store->retrieveUnfetchedEntries($this->user->getId() , IMPORT_LIMIT);
856 $purifier = $this->_getPurifier();
857 foreach($items as $item) {
858 $url = new Url(base64_encode($item['url']));
859 if( $url->isCorrect() )
860 {
861 Tools::logm('Fetching article ' . $item['id']);
862 $content = Tools::getPageContent($url);
863 $title = (($content['rss']['channel']['item']['title'] != '') ? $content['rss']['channel']['item']['title'] : _('Untitled'));
864 $body = (($content['rss']['channel']['item']['description'] != '') ? $content['rss']['channel']['item']['description'] : _('Undefined'));
865
866 // clean content to prevent xss attack
867
868 $title = $purifier->purify($title);
869 $body = $purifier->purify($body);
870 $this->store->updateContentAndTitle($item['id'], $title, $body, $this->user->getId());
871 Tools::logm('Article ' . $item['id'] . ' updated.');
872 } else
873 {
874 Tools::logm('Unvalid URL (' . $item['url'] .') to fetch for article ' . $item['id']);
875 }
876 }
877 }
878 }
879
880 return array(
881 'includeImport' => true,
882 'import' => array(
883 'recordsDownloadRequired' => $recordsDownloadRequired,
884 'recordsUnderDownload' => IMPORT_LIMIT,
885 'delay' => IMPORT_DELAY * 1000
886 )
887 );
888 }
889
890 /**
891 * export poche entries in json
892 * @return json all poche entries
893 */
894 public function export()
895 {
896 $filename = "wallabag-export-".$this->user->getId()."-".date("Y-m-d").".json";
897 header('Content-Disposition: attachment; filename='.$filename);
898
899 $entries = $this->store->retrieveAll($this->user->getId());
900 echo $this->tpl->render('export.twig', array(
901 'export' => Tools::renderJson($entries),
902 ));
903 Tools::logm('export view');
904 }
905
906 /**
907 * Checks online the latest version of poche and cache it
908 * @param string $which 'prod' or 'dev'
909 * @return string latest $which version
910 */
911 private function _getPocheVersion($which = 'prod') {
912 $cache_file = CACHE . '/' . $which;
913 $check_time = time();
914
915 # checks if the cached version file exists
916 if (file_exists($cache_file) && (filemtime($cache_file) > (time() - 86400 ))) {
917 $version = file_get_contents($cache_file);
918 $check_time = filemtime($cache_file);
919 } else {
920 $version = file_get_contents('http://static.wallabag.org/versions/' . $which);
921 file_put_contents($cache_file, $version, LOCK_EX);
922 }
923 return array($version, $check_time);
924 }
925
926 /**
927 * Update token for current user
928 */
929 public function updateToken()
930 {
931 $token = Tools::generateToken();
932 $this->store->updateUserConfig($this->user->getId(), 'token', $token);
933 $currentConfig = $_SESSION['poche_user']->config;
934 $currentConfig['token'] = $token;
935 $_SESSION['poche_user']->setConfig($currentConfig);
936 Tools::redirect();
937 }
938
939 /**
940 * Generate RSS feeds for current user
941 *
942 * @param $token
943 * @param $user_id
944 * @param $tag_id if $type is 'tag', the id of the tag to generate feed for
945 * @param string $type the type of feed to generate
946 * @param int $limit the maximum number of items (0 means all)
947 */
948 public function generateFeeds($token, $user_id, $tag_id, $type = 'home', $limit = 0)
949 {
950 $allowed_types = array('home', 'fav', 'archive', 'tag');
951 $config = $this->store->getConfigUser($user_id);
952
953 if ($config == null) {
954 die(sprintf(_('User with this id (%d) does not exist.'), $user_id));
955 }
956
957 if (!in_array($type, $allowed_types) || !isset($config['token']) || $token != $config['token']) {
958 die(_('Uh, there is a problem while generating feed. Wrong token used?'));
959 }
960
961 $feed = new FeedWriter(RSS2);
962 $feed->setTitle('wallabag — ' . $type . ' feed');
963 $feed->setLink(Tools::getPocheUrl());
964 $feed->setChannelElement('pubDate', date(DATE_RSS , time()));
965 $feed->setChannelElement('generator', 'wallabag');
966 $feed->setDescription('wallabag ' . $type . ' elements');
967
968 if ($type == 'tag') {
969 $entries = $this->store->retrieveEntriesByTag($tag_id, $user_id);
970 }
971 else {
972 $entries = $this->store->getEntriesByView($type, $user_id);
973 }
974
975 // if $limit is set to zero, use all entries
976 if (0 == $limit) {
977 $limit = count($entries);
978 }
979 if (count($entries) > 0) {
980 for ($i = 0; $i < min(count($entries), $limit); $i++) {
981 $entry = $entries[$i];
982 $newItem = $feed->createNewItem();
983 $newItem->setTitle($entry['title']);
984 $newItem->setSource(Tools::getPocheUrl() . '?view=view&amp;id=' . $entry['id']);
985 $newItem->setLink($entry['url']);
986 $newItem->setDate(time());
987 $newItem->setDescription($entry['content']);
988 $feed->addItem($newItem);
989 }
990 }
991
992 $feed->genarateFeed();
993 exit;
994 }
995
996
997
998 /**
999 * Returns new purifier object with actual config
1000 */
1001 private function _getPurifier()
1002 {
1003 $config = HTMLPurifier_Config::createDefault();
1004 $config->set('Cache.SerializerPath', CACHE);
1005 $config->set('HTML.SafeIframe', true);
1006
1007 //allow YouTube, Vimeo and dailymotion videos
1008 $config->set('URI.SafeIframeRegexp', '%^(https?:)?//(www\.youtube(?:-nocookie)?\.com/embed/|player\.vimeo\.com/video/|www\.dailymotion\.com/embed/video/)%');
1009
1010 return new HTMLPurifier($config);
1011 }
1012
1013
1014 }
A self hostable application for saving web pages: Save and classify articles. Read them later. Freely.