inc/poche/Tools.class.php

   1 <?php
   2 /**
   3  * wallabag, self hostable application allowing you to not miss any content anymore
   4  *
   5  * @category   wallabag
   6  * @author     Nicolas Lœuillet <nicolas@loeuillet.org>
   7  * @copyright  2013
   8  * @license    http://opensource.org/licenses/MIT see COPYING file
   9  */
  10
  11 final class Tools
  12 {
  13     /**
  14      * Initialize PHP environment
  15      */
  16     public static function initPhp()
  17     {
  18         define('START_TIME', microtime(true));
  19
  20         function stripslashesDeep($value) {
  21             return is_array($value)
  22                 ? array_map('stripslashesDeep', $value)
  23                 : stripslashes($value);
  24         }
  25
  26         if (get_magic_quotes_gpc()) {
  27             $_POST = array_map('stripslashesDeep', $_POST);
  28             $_GET = array_map('stripslashesDeep', $_GET);
  29             $_COOKIE = array_map('stripslashesDeep', $_COOKIE);
  30         }
  31
  32         ob_start();
  33         register_shutdown_function('ob_end_flush');
  34     }
  35
  36     /**
  37      * Get wallabag instance URL
  38      *
  39      * @return string
  40      */
  41     public static function getPocheUrl()
  42     {
  43         $baseUrl = "";
  44
  45         $https = (!empty($_SERVER['HTTPS'])
  46                     && (strtolower($_SERVER['HTTPS']) == 'on'))
  47             || (isset($_SERVER["SERVER_PORT"])
  48                     && $_SERVER["SERVER_PORT"] == '443') // HTTPS detection.
  49             || (isset($_SERVER["SERVER_PORT"]) //Custom HTTPS port detection
  50                     && $_SERVER["SERVER_PORT"] == SSL_PORT)
  51              || (isset($_SERVER['HTTP_X_FORWARDED_PROTO'])
  52                     && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https');
  53
  54         $serverport = (!isset($_SERVER["SERVER_PORT"])
  55             || $_SERVER["SERVER_PORT"] == '80'
  56             || $_SERVER["SERVER_PORT"] == HTTP_PORT
  57             || ($https && $_SERVER["SERVER_PORT"] == '443')
  58             || ($https && $_SERVER["SERVER_PORT"]==SSL_PORT) //Custom HTTPS port detection
  59             ? '' : ':' . $_SERVER["SERVER_PORT"]);
  60
  61         if (isset($_SERVER["HTTP_X_FORWARDED_PORT"])) {
  62             $serverport = ':' . $_SERVER["HTTP_X_FORWARDED_PORT"];
  63         }
  64
  65         $scriptname = str_replace('/index.php', '/', $_SERVER["SCRIPT_NAME"]);
  66
  67         if (!isset($_SERVER["HTTP_HOST"])) {
  68             return $scriptname;
  69         }
  70
  71         $host = (isset($_SERVER['HTTP_X_FORWARDED_HOST']) ? $_SERVER['HTTP_X_FORWARDED_HOST'] : (isset($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : $_SERVER['SERVER_NAME']));
  72
  73         if (strpos($host, ':') !== false) {
  74             $serverport = '';
  75         }
  76
  77                 // check if BASE_URL is configured
  78                 if(BASE_URL) {
  79                         $baseUrl = BASE_URL;
  80                 } else {
  81                         $baseUrl = 'http' . ($https ? 's' : '') . '://' . $host . $serverport;
  82                 }
  83
  84     return $baseUrl . $scriptname;
  85
  86     }
  87
  88     /**
  89      * Redirects to a URL
  90      *
  91      * @param string $url
  92      */
  93     public static function redirect($url = '')
  94     {
  95         if ($url === '') {
  96             $url = (empty($_SERVER['HTTP_REFERER'])?'?':$_SERVER['HTTP_REFERER']);
  97             if (isset($_POST['returnurl'])) {
  98                 $url = $_POST['returnurl'];
  99             }
 100         }
 101
 102         # prevent loop
 103         if (empty($url) || parse_url($url, PHP_URL_QUERY) === $_SERVER['QUERY_STRING']) {
 104             $url = Tools::getPocheUrl();
 105         }
 106
 107         if (substr($url, 0, 1) !== '?') {
 108             $ref = Tools::getPocheUrl();
 109             if (substr($url, 0, strlen($ref)) !== $ref) {
 110                 $url = $ref;
 111             }
 112         }
 113
 114         self::logm('redirect to ' . $url);
 115         header('Location: '.$url);
 116         exit();
 117     }
 118
 119     /**
 120      * Returns name of the template file to display
 121      *
 122      * @param $view
 123      * @return string
 124      */
 125     public static function getTplFile($view)
 126     {
 127         $views = array(
 128             'install', 'import', 'export', 'config', 'tags',
 129             'edit-tags', 'view', 'login', 'error', 'about', 'register'
 130             );
 131
 132         return (in_array($view, $views) ? $view . '.twig' : 'home.twig');
 133     }
 134
 135     /**
 136      * Download a file (typically, for downloading pictures on web server)
 137      *
 138      * @param $url
 139      * @return bool|mixed|string
 140      */
 141     public static function getFile($url)
 142     {
 143         $timeout = 15;
 144         $useragent = "Mozilla/5.0 (Windows NT 5.1; rv:18.0) Gecko/20100101 Firefox/18.0";
 145
 146         if (in_array ('curl', get_loaded_extensions())) {
 147             # Fetch feed from URL
 148             $curl = curl_init();
 149             curl_setopt($curl, CURLOPT_URL, $url);
 150             curl_setopt($curl, CURLOPT_TIMEOUT, $timeout);
 151             if (!ini_get('open_basedir') && !ini_get('safe_mode')) {
 152                 curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true);
 153             }
 154             curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
 155             curl_setopt($curl, CURLOPT_HEADER, false);
 156
 157             # for ssl, do not verified certificate
 158             curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, FALSE);
 159             curl_setopt($curl, CURLOPT_AUTOREFERER, TRUE );
 160
 161             # FeedBurner requires a proper USER-AGENT...
 162             curl_setopt($curl, CURL_HTTP_VERSION_1_1, true);
 163             curl_setopt($curl, CURLOPT_ENCODING, "gzip, deflate");
 164             curl_setopt($curl, CURLOPT_USERAGENT, $useragent);
 165
 166             $data = curl_exec($curl);
 167             $httpcode = curl_getinfo($curl, CURLINFO_HTTP_CODE);
 168             $httpcodeOK = isset($httpcode) and ($httpcode == 200 or $httpcode == 301);
 169             curl_close($curl);
 170         } else {
 171             # create http context and add timeout and user-agent
 172             $context = stream_context_create(
 173                 array(
 174                     'http' => array(
 175                         'timeout' => $timeout,
 176                         'header' => "User-Agent: " . $useragent,
 177                         'follow_location' => true
 178                     ),
 179                     'ssl' => array(
 180                         'verify_peer' => false,
 181                         'allow_self_signed' => true
 182                     )
 183                 )
 184             );
 185
 186             # only download page lesser than 4MB
 187             $data = @file_get_contents($url, false, $context, -1, 4000000);
 188
 189             if (isset($http_response_header) and isset($http_response_header[0])) {
 190                 $httpcodeOK = isset($http_response_header) and isset($http_response_header[0]) and ((strpos($http_response_header[0], '200 OK') !== FALSE) or (strpos($http_response_header[0], '301 Moved Permanently') !== FALSE));
 191             }
 192         }
 193
 194         # if response is not empty and response is OK
 195         if (isset($data) and isset($httpcodeOK) and $httpcodeOK) {
 196
 197             # take charset of page and get it
 198             preg_match('#<meta .*charset=.*>#Usi', $data, $meta);
 199
 200             # if meta tag is found
 201             if (!empty($meta[0])) {
 202                 preg_match('#charset="?(.*)"#si', $meta[0], $encoding);
 203                 # if charset is found set it otherwise, set it to utf-8
 204                 $html_charset = (!empty($encoding[1])) ? strtolower($encoding[1]) : 'utf-8';
 205                 if (empty($encoding[1])) $encoding[1] = 'utf-8';
 206             } else {
 207                 $html_charset = 'utf-8';
 208                 $encoding[1] = '';
 209             }
 210
 211             # replace charset of url to charset of page
 212             $data = str_replace('charset=' . $encoding[1], 'charset=' . $html_charset, $data);
 213
 214             return $data;
 215         }
 216         else {
 217             return FALSE;
 218         }
 219     }
 220
 221     /**
 222      * Headers for JSON export
 223      *
 224      * @param $data
 225      */
 226     public static function renderJson($data)
 227     {
 228         header('Cache-Control: no-cache, must-revalidate');
 229         header('Expires: Sat, 26 Jul 1997 05:00:00 GMT');
 230         header('Content-type: application/json; charset=UTF-8');
 231         echo json_encode($data);
 232         exit();
 233     }
 234
 235     /**
 236      * Create new line in log file
 237      *
 238      * @param $message
 239      */
 240     public static function logm($message)
 241     {
 242         if (DEBUG_POCHE && php_sapi_name() != 'cli') {
 243             $t = strval(date('Y/m/d_H:i:s')) . ' - ' . $_SERVER["REMOTE_ADDR"] . ' - ' . strval($message) . "\n";
 244             file_put_contents(CACHE . '/log.txt', $t, FILE_APPEND);
 245             error_log('DEBUG POCHE : ' . $message);
 246         }
 247     }
 248
 249     /**
 250      * Encode a URL by using a salt
 251      *
 252      * @param $string
 253      * @return string
 254      */
 255     public static function encodeString($string)
 256     {
 257         return sha1($string . SALT);
 258     }
 259
 260     /**
 261      * Cleans a variable
 262      *
 263      * @param $var
 264      * @param string $default
 265      * @return string
 266      */
 267     public static function checkVar($var, $default = '')
 268     {
 269         return ((isset($_REQUEST["$var"])) ? htmlentities($_REQUEST["$var"]) : $default);
 270     }
 271
 272     /**
 273      * Returns the domain name for a URL
 274      *
 275      * @param $url
 276      * @return string
 277      */
 278     public static function getDomain($url)
 279     {
 280         return parse_url($url, PHP_URL_HOST);
 281     }
 282
 283     /**
 284      * For a given text, we calculate reading time for an article
 285      *
 286      * @param $text
 287      * @return float
 288      */
 289     public static function getReadingTime($text)
 290     {
 291         return floor(str_word_count(strip_tags($text)) / 200);
 292     }
 293
 294     /**
 295      * Returns the correct header for a status code
 296      *
 297      * @param $status_code
 298      */
 299     private static function _status($status_code)
 300     {
 301         if (strpos(php_sapi_name(), 'apache') !== false) {
 302
 303             header('HTTP/1.0 '.$status_code);
 304         }
 305         else {
 306
 307             header('Status: '.$status_code);
 308         }
 309     }
 310
 311     /**
 312      * Get the content for a given URL (by a call to FullTextFeed)
 313      *
 314      * @param Url $url
 315      * @return mixed
 316      */
 317     public static function getPageContent(Url $url)
 318     {
 319         // Saving and clearing context
 320         $REAL = array();
 321         foreach( $GLOBALS as $key => $value ) {
 322             if( $key != 'GLOBALS' && $key != '_SESSION' && $key != 'HTTP_SESSION_VARS' ) {
 323                 $GLOBALS[$key]  = array();
 324                 $REAL[$key]     = $value;
 325             }
 326         }
 327         // Saving and clearing session
 328         if (isset($_SESSION)) {
 329             $REAL_SESSION = array();
 330             foreach( $_SESSION as $key => $value ) {
 331                 $REAL_SESSION[$key] = $value;
 332                 unset($_SESSION[$key]);
 333             }
 334         }
 335
 336         // Running code in different context
 337         $scope = function() {
 338             extract( func_get_arg(1) );
 339             $_GET = $_REQUEST = array(
 340                 "url" => $url->getUrl(),
 341                 "max" => 5,
 342                 "links" => "preserve",
 343                 "exc" => "",
 344                 "format" => "json",
 345                 "submit" => "Create Feed"
 346             );
 347             ob_start();
 348             require func_get_arg(0);
 349             $json = ob_get_contents();
 350             ob_end_clean();
 351             return $json;
 352         };
 353
 354         // Silence $scope function to avoid
 355         // issues with FTRSS when error_reporting is to high
 356         // FTRSS generates PHP warnings which break output
 357         $json = @$scope("inc/3rdparty/makefulltextfeed.php", array("url" => $url));
 358
 359         // Clearing and restoring context
 360         foreach ($GLOBALS as $key => $value) {
 361             if($key != "GLOBALS" && $key != "_SESSION" ) {
 362                 unset($GLOBALS[$key]);
 363             }
 364         }
 365         foreach ($REAL as $key => $value) {
 366             $GLOBALS[$key] = $value;
 367         }
 368
 369         // Clearing and restoring session
 370         if (isset($REAL_SESSION)) {
 371             foreach($_SESSION as $key => $value) {
 372                 unset($_SESSION[$key]);
 373             }
 374
 375             foreach($REAL_SESSION as $key => $value) {
 376                 $_SESSION[$key] = $value;
 377             }
 378         }
 379
 380         return json_decode($json, true);
 381     }
 382
 383     /**
 384      * Returns whether we handle an AJAX (XMLHttpRequest) request.
 385      *
 386      * @return boolean whether we handle an AJAX (XMLHttpRequest) request.
 387      */
 388     public static function isAjaxRequest()
 389     {
 390         return isset($_SERVER['HTTP_X_REQUESTED_WITH']) && $_SERVER['HTTP_X_REQUESTED_WITH']==='XMLHttpRequest';
 391     }
 392
 393     /*
 394      * Empty cache folder
 395      */
 396     public static function emptyCache()
 397     {
 398         $files = new RecursiveIteratorIterator(
 399             new RecursiveDirectoryIterator(CACHE, RecursiveDirectoryIterator::SKIP_DOTS),
 400             RecursiveIteratorIterator::CHILD_FIRST
 401         );
 402
 403         foreach ($files as $fileInfo) {
 404             $filename = $fileInfo->getFilename();
 405             if (!$filename[0] == '.') {
 406                 $todo = ($fileInfo->isDir() ? 'rmdir' : 'unlink');
 407                 $todo($fileInfo->getRealPath());
 408             }
 409         }
 410
 411         Tools::logm('empty cache');
 412         Tools::redirect();
 413     }
 414
 415     public static function generateToken()
 416     {
 417         if (ini_get('open_basedir') === '') {
 418             if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
 419                 // alternative to /dev/urandom for Windows
 420                 $token = substr(base64_encode(uniqid(mt_rand(), true)), 0, 20);
 421             } else {
 422                 $token = substr(base64_encode(file_get_contents('/dev/urandom', false, null, 0, 20)), 0, 15);
 423             }
 424         }
 425         else {
 426             $token = substr(base64_encode(uniqid(mt_rand(), true)), 0, 20);
 427         }
 428
 429         return str_replace('+', '', $token);
 430     }
 431
 432     /**
 433     *
 434     * Returns the doctype for an HTML document (used for Mozilla Bookmarks)
 435     * @param simple_html_dom $doc
 436     * @return doctype $el
 437     *
 438     */
 439
 440     public static function get_doctype($doc)
 441     {
 442         $els = $doc->find('unknown');
 443
 444         foreach ($els as $e => $el)
 445             if ($el->parent()->tag == 'root')
 446                 return $el;
 447
 448         return NULL;
 449     }
 450
 451 }