diff options
Diffstat (limited to 'application/Utils.php')
| -rw-r--r-- | application/Utils.php | 47 |
1 files changed, 16 insertions, 31 deletions
diff --git a/application/Utils.php b/application/Utils.php index 4a2f5561..97b12fcf 100644 --- a/application/Utils.php +++ b/application/Utils.php | |||
| @@ -182,36 +182,6 @@ function generateLocation($referer, $host, $loopTerms = array()) | |||
| 182 | } | 182 | } |
| 183 | 183 | ||
| 184 | /** | 184 | /** |
| 185 | * Validate session ID to prevent Full Path Disclosure. | ||
| 186 | * | ||
| 187 | * See #298. | ||
| 188 | * The session ID's format depends on the hash algorithm set in PHP settings | ||
| 189 | * | ||
| 190 | * @param string $sessionId Session ID | ||
| 191 | * | ||
| 192 | * @return true if valid, false otherwise. | ||
| 193 | * | ||
| 194 | * @see http://php.net/manual/en/function.hash-algos.php | ||
| 195 | * @see http://php.net/manual/en/session.configuration.php | ||
| 196 | */ | ||
| 197 | function is_session_id_valid($sessionId) | ||
| 198 | { | ||
| 199 | if (empty($sessionId)) { | ||
| 200 | return false; | ||
| 201 | } | ||
| 202 | |||
| 203 | if (!$sessionId) { | ||
| 204 | return false; | ||
| 205 | } | ||
| 206 | |||
| 207 | if (!preg_match('/^[a-zA-Z0-9,-]{2,128}$/', $sessionId)) { | ||
| 208 | return false; | ||
| 209 | } | ||
| 210 | |||
| 211 | return true; | ||
| 212 | } | ||
| 213 | |||
| 214 | /** | ||
| 215 | * Sniff browser language to set the locale automatically. | 185 | * Sniff browser language to set the locale automatically. |
| 216 | * Note that is may not work on your server if the corresponding locale is not installed. | 186 | * Note that is may not work on your server if the corresponding locale is not installed. |
| 217 | * | 187 | * |
| @@ -452,7 +422,7 @@ function get_max_upload_size($limitPost, $limitUpload, $format = true) | |||
| 452 | */ | 422 | */ |
| 453 | function alphabetical_sort(&$data, $reverse = false, $byKeys = false) | 423 | function alphabetical_sort(&$data, $reverse = false, $byKeys = false) |
| 454 | { | 424 | { |
| 455 | $callback = function($a, $b) use ($reverse) { | 425 | $callback = function ($a, $b) use ($reverse) { |
| 456 | // Collator is part of PHP intl. | 426 | // Collator is part of PHP intl. |
| 457 | if (class_exists('Collator')) { | 427 | if (class_exists('Collator')) { |
| 458 | $collator = new Collator(setlocale(LC_COLLATE, 0)); | 428 | $collator = new Collator(setlocale(LC_COLLATE, 0)); |
| @@ -470,3 +440,18 @@ function alphabetical_sort(&$data, $reverse = false, $byKeys = false) | |||
| 470 | usort($data, $callback); | 440 | usort($data, $callback); |
| 471 | } | 441 | } |
| 472 | } | 442 | } |
| 443 | |||
| 444 | /** | ||
| 445 | * Wrapper function for translation which match the API | ||
| 446 | * of gettext()/_() and ngettext(). | ||
| 447 | * | ||
| 448 | * @param string $text Text to translate. | ||
| 449 | * @param string $nText The plural message ID. | ||
| 450 | * @param int $nb The number of items for plural forms. | ||
| 451 | * @param string $domain The domain where the translation is stored (default: shaarli). | ||
| 452 | * | ||
| 453 | * @return string Text translated. | ||
| 454 | */ | ||
| 455 | function t($text, $nText = '', $nb = 1, $domain = 'shaarli') { | ||
| 456 | return dn__($domain, $text, $nText, $nb); | ||
| 457 | } | ||