<?php
|
|
|
|
if(Config::$dbType == 'sqlite') {
|
|
ORM::configure('sqlite:' . Config::$dbFilePath);
|
|
} else {
|
|
ORM::configure('mysql:host=' . Config::$dbHost . ';dbname=' . Config::$dbName);
|
|
ORM::configure('username', Config::$dbUsername);
|
|
ORM::configure('password', Config::$dbPassword);
|
|
}
|
|
|
|
function render($page, $data) {
|
|
global $app;
|
|
return $app->render('layout.php', array_merge($data, array('page' => $page)));
|
|
};
|
|
|
|
function partial($template, $data=array(), $debug=false) {
|
|
global $app;
|
|
|
|
if($debug) {
|
|
$tpl = new Savant3(\Slim\Extras\Views\Savant::$savantOptions);
|
|
echo '<pre>' . $tpl->fetch($template . '.php') . '</pre>';
|
|
return '';
|
|
}
|
|
|
|
ob_start();
|
|
$tpl = new Savant3(\Slim\Extras\Views\Savant::$savantOptions);
|
|
foreach($data as $k=>$v) {
|
|
$tpl->{$k} = $v;
|
|
}
|
|
$tpl->display($template . '.php');
|
|
return ob_get_clean();
|
|
}
|
|
|
|
function js_bookmarklet($partial, $context) {
|
|
return str_replace('+','%20',urlencode(str_replace(array("\n"),array(''),partial($partial, $context))));
|
|
}
|
|
|
|
function session($key) {
|
|
if(array_key_exists($key, $_SESSION))
|
|
return $_SESSION[$key];
|
|
else
|
|
return null;
|
|
}
|
|
|
|
function k($a, $k, $default=null) {
|
|
if(is_array($k)) {
|
|
$result = true;
|
|
foreach($k as $key) {
|
|
$result = $result && array_key_exists($key, $a);
|
|
}
|
|
return $result;
|
|
} else {
|
|
if(is_array($a) && array_key_exists($k, $a) && $a[$k])
|
|
return $a[$k];
|
|
elseif(is_object($a) && property_exists($a, $k) && $a->$k)
|
|
return $a->$k;
|
|
else
|
|
return $default;
|
|
}
|
|
}
|
|
|
|
function get_timezone($lat, $lng) {
|
|
try {
|
|
$ch = curl_init();
|
|
curl_setopt($ch, CURLOPT_URL, 'http://atlas.p3k.io/api/timezone?latitude='.$lat.'&longitude='.$lng);
|
|
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
|
|
$response = curl_exec($ch);
|
|
$tz = @json_decode($response);
|
|
if($tz)
|
|
return new DateTimeZone($tz->timezone);
|
|
} catch(Exception $e) {
|
|
return null;
|
|
}
|
|
return null;
|
|
}
|
|
|
|
if(!function_exists('http_build_url')) {
|
|
function http_build_url($parsed_url) {
|
|
$scheme = isset($parsed_url['scheme']) ? $parsed_url['scheme'] . '://' : '';
|
|
$host = isset($parsed_url['host']) ? $parsed_url['host'] : '';
|
|
$port = isset($parsed_url['port']) ? ':' . $parsed_url['port'] : '';
|
|
$user = isset($parsed_url['user']) ? $parsed_url['user'] : '';
|
|
$pass = isset($parsed_url['pass']) ? ':' . $parsed_url['pass'] : '';
|
|
$pass = ($user || $pass) ? "$pass@" : '';
|
|
$path = isset($parsed_url['path']) ? $parsed_url['path'] : '';
|
|
$query = isset($parsed_url['query']) ? '?' . $parsed_url['query'] : '';
|
|
$fragment = isset($parsed_url['fragment']) ? '#' . $parsed_url['fragment'] : '';
|
|
return "$scheme$user$pass$host$port$path$query$fragment";
|
|
}
|
|
}
|
|
|
|
function micropub_post_for_user(&$user, $params, $file_path = NULL) {
|
|
// Now send to the micropub endpoint
|
|
$r = micropub_post($user->micropub_endpoint, $params, $user->micropub_access_token, $file_path);
|
|
|
|
$user->last_micropub_response = substr(json_encode($r), 0, 1024);
|
|
$user->last_micropub_response_date = date('Y-m-d H:i:s');
|
|
|
|
// Check the response and look for a "Location" header containing the URL
|
|
if($r['response'] && preg_match('/Location: (.+)/', $r['response'], $match)) {
|
|
$r['location'] = trim($match[1]);
|
|
$user->micropub_success = 1;
|
|
} else {
|
|
$r['location'] = false;
|
|
}
|
|
|
|
$user->save();
|
|
|
|
return $r;
|
|
}
|
|
|
|
function micropub_post($endpoint, $params, $access_token, $file_path = NULL) {
|
|
$ch = curl_init();
|
|
curl_setopt($ch, CURLOPT_URL, $endpoint);
|
|
curl_setopt($ch, CURLOPT_POST, true);
|
|
|
|
// Send the access token in both the header and post body to support more clients
|
|
// https://github.com/aaronpk/Quill/issues/4
|
|
// http://indiewebcamp.com/irc/2015-02-14#t1423955287064
|
|
$httpheaders = array('Authorization: Bearer ' . $access_token);
|
|
$params = array_merge(array(
|
|
'h' => 'entry',
|
|
'access_token' => $access_token
|
|
), $params);
|
|
|
|
if(!$file_path) {
|
|
$post = http_build_query($params);
|
|
$post = preg_replace('/%5B[0-9]+%5D/', '%5B%5D', $post); // change [0] to []
|
|
} else {
|
|
$finfo = finfo_open(FILEINFO_MIME_TYPE);
|
|
$mimetype = finfo_file($finfo, $file_path);
|
|
$multipart = new p3k\Multipart();
|
|
$multipart->addArray($params);
|
|
$multipart->addFile('photo', $file_path, $mimetype);
|
|
$post = $multipart->data();
|
|
array_push($httpheaders, 'Content-Type: ' . $multipart->contentType());
|
|
}
|
|
|
|
curl_setopt($ch, CURLOPT_HTTPHEADER, $httpheaders);
|
|
curl_setopt($ch, CURLOPT_POSTFIELDS, $post);
|
|
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
|
|
curl_setopt($ch, CURLOPT_HEADER, true);
|
|
curl_setopt($ch, CURLINFO_HEADER_OUT, true);
|
|
|
|
$response = curl_exec($ch);
|
|
$error = curl_error($ch);
|
|
$sent_headers = curl_getinfo($ch, CURLINFO_HEADER_OUT);
|
|
$request = $sent_headers . $post;
|
|
return array(
|
|
'request' => $request,
|
|
'response' => $response,
|
|
'error' => $error,
|
|
'curlinfo' => curl_getinfo($ch)
|
|
);
|
|
}
|
|
|
|
function micropub_get($endpoint, $params, $access_token) {
|
|
$url = parse_url($endpoint);
|
|
if(!k($url, 'query')) {
|
|
$url['query'] = http_build_query($params);
|
|
} else {
|
|
$url['query'] .= '&' . http_build_query($params);
|
|
}
|
|
$endpoint = http_build_url($url);
|
|
|
|
$ch = curl_init();
|
|
curl_setopt($ch, CURLOPT_URL, $endpoint);
|
|
curl_setopt($ch, CURLOPT_HTTPHEADER, array(
|
|
'Authorization: Bearer ' . $access_token
|
|
));
|
|
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
|
|
$response = curl_exec($ch);
|
|
$data = array();
|
|
if($response) {
|
|
parse_str($response, $data);
|
|
}
|
|
$error = curl_error($ch);
|
|
return array(
|
|
'response' => $response,
|
|
'data' => $data,
|
|
'error' => $error,
|
|
'curlinfo' => curl_getinfo($ch)
|
|
);
|
|
}
|
|
|
|
function get_syndication_targets(&$user) {
|
|
$targets = array();
|
|
|
|
$r = micropub_get($user->micropub_endpoint, array('q'=>'syndicate-to'), $user->micropub_access_token);
|
|
if($r['data'] && array_key_exists('syndicate-to', $r['data'])) {
|
|
if(is_array($r['data']['syndicate-to'])) {
|
|
$targetURLs = $r['data']['syndicate-to'];
|
|
} elseif(is_string($r['data']['syndicate-to'])) {
|
|
// support comma separated as a fallback
|
|
$targetURLs = preg_split('/, ?/', $r['data']['syndicate-to']);
|
|
} else {
|
|
$targetURLs = array();
|
|
}
|
|
|
|
foreach($targetURLs as $t) {
|
|
// If the syndication target doesn't have a scheme, add http
|
|
if(!preg_match('/^http/', $t))
|
|
$t2 = 'http://' . $t;
|
|
else
|
|
$t2 = $t;
|
|
|
|
// Parse the target expecting it to be a URL
|
|
$url = parse_url($t2);
|
|
|
|
// If there's a host, and the host contains a . then we can assume there's a favicon
|
|
// parse_url will parse strings like http://twitter into an array with a host of twitter, which is not resolvable
|
|
if($url && array_key_exists('host', $url) && strpos($url['host'], '.') !== false) {
|
|
$targets[] = array(
|
|
'target' => $t,
|
|
'favicon' => 'http://' . $url['host'] . '/favicon.ico'
|
|
);
|
|
} else {
|
|
$targets[] = array(
|
|
'target' => $t,
|
|
'favicon' => false
|
|
);
|
|
}
|
|
}
|
|
}
|
|
if(count($targets)) {
|
|
$user->syndication_targets = json_encode($targets);
|
|
$user->save();
|
|
}
|
|
|
|
return array(
|
|
'targets' => $targets,
|
|
'response' => $r
|
|
);
|
|
}
|
|
|
|
function static_map($latitude, $longitude, $height=180, $width=700, $zoom=14) {
|
|
return 'http://static-maps.pdx.esri.com/img.php?marker[]=lat:' . $latitude . ';lng:' . $longitude . ';icon:small-blue-cutout&basemap=gray&width=' . $width . '&height=' . $height . '&zoom=' . $zoom;
|
|
}
|
|
|
|
function relative_time($date) {
|
|
static $rel;
|
|
if(!isset($rel)) {
|
|
$config = array(
|
|
'language' => '\RelativeTime\Languages\English',
|
|
'separator' => ', ',
|
|
'suffix' => true,
|
|
'truncate' => 1,
|
|
);
|
|
$rel = new \RelativeTime\RelativeTime($config);
|
|
}
|
|
return $rel->timeAgo($date);
|
|
}
|
|
|
|
function instagram_client() {
|
|
return new Andreyco\Instagram\Client(array(
|
|
'apiKey' => Config::$instagramClientID,
|
|
'apiSecret' => Config::$instagramClientSecret,
|
|
'apiCallback' => Config::$base_url . 'auth/instagram/callback',
|
|
'scope' => array('basic','likes'),
|
|
));
|
|
}
|
|
|
|
function validate_photo(&$file) {
|
|
try {
|
|
|
|
if ($_SERVER['REQUEST_METHOD'] == 'POST' && count($_POST) < 1 ) {
|
|
throw new RuntimeException('File upload size exceeded.');
|
|
}
|
|
|
|
// Undefined | Multiple Files | $_FILES Corruption Attack
|
|
// If this request falls under any of them, treat it invalid.
|
|
if (
|
|
!isset($file['error']) ||
|
|
is_array($file['error'])
|
|
) {
|
|
throw new RuntimeException('Invalid parameters.');
|
|
}
|
|
|
|
// Check $file['error'] value.
|
|
switch ($file['error']) {
|
|
case UPLOAD_ERR_OK:
|
|
break;
|
|
case UPLOAD_ERR_NO_FILE:
|
|
throw new RuntimeException('No file sent.');
|
|
case UPLOAD_ERR_INI_SIZE:
|
|
case UPLOAD_ERR_FORM_SIZE:
|
|
throw new RuntimeException('Exceeded filesize limit.');
|
|
default:
|
|
throw new RuntimeException('Unknown errors.');
|
|
}
|
|
|
|
// You should also check filesize here.
|
|
if ($file['size'] > 4000000) {
|
|
throw new RuntimeException('Exceeded filesize limit.');
|
|
}
|
|
|
|
// DO NOT TRUST $file['mime'] VALUE !!
|
|
// Check MIME Type by yourself.
|
|
$finfo = new finfo(FILEINFO_MIME_TYPE);
|
|
if (false === $ext = array_search(
|
|
$finfo->file($file['tmp_name']),
|
|
array(
|
|
'jpg' => 'image/jpeg',
|
|
'png' => 'image/png',
|
|
'gif' => 'image/gif',
|
|
),
|
|
true
|
|
)) {
|
|
throw new RuntimeException('Invalid file format.');
|
|
}
|
|
|
|
} catch (RuntimeException $e) {
|
|
|
|
return $e->getMessage();
|
|
}
|
|
}
|