2013-04-04 21:09:34 +02:00
< ? php
2013-04-12 13:13:21 +02:00
/**
* Permet de générer l ' URL de poche pour le bookmarklet
*/
2013-04-15 09:38:41 +02:00
function get_poche_url ()
2013-04-12 13:13:21 +02:00
{
$protocol = " http " ;
if ( isset ( $_SERVER [ 'HTTPS' ])) {
2013-04-18 08:15:34 +02:00
if ( $_SERVER [ 'HTTPS' ] != " off " && $_SERVER [ 'HTTPS' ] != " " ) {
2013-04-12 13:13:21 +02:00
$protocol = " https " ;
}
}
2013-04-04 21:09:34 +02:00
2013-04-12 13:13:21 +02:00
return $protocol . " :// " . $_SERVER [ 'HTTP_HOST' ] . $_SERVER [ 'REQUEST_URI' ];
2013-04-04 21:09:34 +02:00
}
// function define to retrieve url content
2013-04-17 15:11:57 +02:00
function get_external_file ( $url )
2013-04-12 13:13:21 +02:00
{
2013-04-17 15:11:57 +02:00
$timeout = 15 ;
2013-04-04 21:09:34 +02:00
// spoofing FireFox 18.0
$useragent = " Mozilla/5.0 (Windows NT 5.1; rv:18.0) Gecko/20100101 Firefox/18.0 " ;
if ( in_array ( 'curl' , get_loaded_extensions ())) {
// Fetch feed from URL
$curl = curl_init ();
curl_setopt ( $curl , CURLOPT_URL , $url );
curl_setopt ( $curl , CURLOPT_TIMEOUT , $timeout );
curl_setopt ( $curl , CURLOPT_FOLLOWLOCATION , true );
curl_setopt ( $curl , CURLOPT_RETURNTRANSFER , true );
curl_setopt ( $curl , CURLOPT_HEADER , false );
// FeedBurner requires a proper USER-AGENT...
curl_setopt ( $curl , CURL_HTTP_VERSION_1_1 , true );
curl_setopt ( $curl , CURLOPT_ENCODING , " gzip, deflate " );
curl_setopt ( $curl , CURLOPT_USERAGENT , $useragent );
$data = curl_exec ( $curl );
$httpcode = curl_getinfo ( $curl , CURLINFO_HTTP_CODE );
$httpcodeOK = isset ( $httpcode ) and ( $httpcode == 200 or $httpcode == 301 );
curl_close ( $curl );
} else {
// create http context and add timeout and user-agent
2013-04-17 15:11:57 +02:00
$context = stream_context_create ( array ( 'http' => array ( 'timeout' => $timeout , 'header' => " User-Agent: " . $useragent , /*spoot Mozilla Firefox*/ 'follow_location' => true )));
2013-04-04 21:09:34 +02:00
// only download page lesser than 4MB
$data = @ file_get_contents ( $url , false , $context , - 1 , 4000000 ); // We download at most 4 MB from source.
if ( isset ( $http_response_header ) and isset ( $http_response_header [ 0 ])) {
$httpcodeOK = isset ( $http_response_header ) and isset ( $http_response_header [ 0 ]) and (( strpos ( $http_response_header [ 0 ], '200 OK' ) !== FALSE ) or ( strpos ( $http_response_header [ 0 ], '301 Moved Permanently' ) !== FALSE ));
}
}
// if response is not empty and response is OK
if ( isset ( $data ) and isset ( $httpcodeOK ) and $httpcodeOK ) {
// take charset of page and get it
preg_match ( '#<meta .*charset=.*>#Usi' , $data , $meta );
// if meta tag is found
if ( ! empty ( $meta [ 0 ])) {
// retrieve encoding in $enc
preg_match ( '#charset="?(.*)"#si' , $meta [ 0 ], $enc );
// if charset is found set it otherwise, set it to utf-8
$html_charset = ( ! empty ( $enc [ 1 ])) ? strtolower ( $enc [ 1 ]) : 'utf-8' ;
} else {
$html_charset = 'utf-8' ;
$enc [ 1 ] = '' ;
}
// replace charset of url to charset of page
$data = str_replace ( 'charset=' . $enc [ 1 ], 'charset=' . $html_charset , $data );
return $data ;
}
else {
return FALSE ;
}
2013-04-15 09:04:23 +02:00
}
2013-04-15 09:38:41 +02:00
/**
* Préparation de l ' URL avec récupération du contenu avant insertion en base
*/
2013-04-17 15:11:57 +02:00
function prepare_url ( $url , $id )
2013-04-15 09:04:23 +02:00
{
$parametres = array ();
$url = html_entity_decode ( trim ( $url ));
// We remove the annoying parameters added by FeedBurner and GoogleFeedProxy (?utm_source=...)
// from shaarli, by sebsauvage
$i = strpos ( $url , '&utm_source=' ); if ( $i !== false ) $url = substr ( $url , 0 , $i );
$i = strpos ( $url , '?utm_source=' ); if ( $i !== false ) $url = substr ( $url , 0 , $i );
$i = strpos ( $url , '#xtor=RSS-' ); if ( $i !== false ) $url = substr ( $url , 0 , $i );
$title = $url ;
if ( ! preg_match ( '!^https?://!i' , $url ))
$url = 'http://' . $url ;
$html = Encoding :: toUTF8 ( get_external_file ( $url , 15 ));
if ( isset ( $html ) and strlen ( $html ) > 0 )
{
$r = new Readability ( $html , $url );
2013-04-17 14:12:54 +02:00
$r -> convertLinksToFootnotes = TRUE ;
2013-04-15 09:04:23 +02:00
if ( $r -> init ())
{
2013-04-17 15:11:57 +02:00
$content = $r -> articleContent -> innerHTML ;
$parametres [ 'title' ] = $r -> articleTitle -> innerHTML ;
$parametres [ 'content' ] = filtre_picture ( $content , $url , $id );
return $parametres ;
2013-04-15 09:04:23 +02:00
}
}
2013-04-17 15:11:57 +02:00
logm ( 'error during url preparation' );
return FALSE ;
}
/**
* On modifie les URLS des images dans le corps de l ' article
*/
function filtre_picture ( $content , $url , $id )
{
$matches = array ();
preg_match_all ( '#<\s*(img)[^>]+src="([^"]*)"[^>]*>#Si' , $content , $matches , PREG_SET_ORDER );
foreach ( $matches as $i => $link )
{
$link [ 1 ] = trim ( $link [ 1 ]);
if ( ! preg_match ( '#^(([a-z]+://)|(\#))#' , $link [ 1 ]) )
{
$absolute_path = get_absolute_link ( $link [ 2 ], $url );
$filename = basename ( parse_url ( $absolute_path , PHP_URL_PATH ));
$directory = create_assets_directory ( $id );
$fullpath = $directory . '/' . $filename ;
download_pictures ( $absolute_path , $fullpath );
$content = str_replace ( $matches [ $i ][ 2 ], $fullpath , $content );
}
}
return $content ;
}
/**
* Retourne le lien absolu
*/
function get_absolute_link ( $relative_link , $url )
{
/* return if already absolute URL */
if ( parse_url ( $relative_link , PHP_URL_SCHEME ) != '' ) return $relative_link ;
/* queries and anchors */
if ( $relative_link [ 0 ] == '#' || $relative_link [ 0 ] == '?' ) return $url . $relative_link ;
/* parse base URL and convert to local variables :
$scheme , $host , $path */
extract ( parse_url ( $url ));
/* remove non-directory element from path */
$path = preg_replace ( '#/[^/]*$#' , '' , $path );
/* destroy path if relative url points to root */
if ( $relative_link [ 0 ] == '/' ) $path = '' ;
/* dirty absolute URL */
$abs = $host . $path . '/' . $relative_link ;
/* replace '//' or '/./' or '/foo/../' with '/' */
$re = array ( '#(/\.?/)#' , '#/(?!\.\.)[^/]+/\.\./#' );
for ( $n = 1 ; $n > 0 ; $abs = preg_replace ( $re , '/' , $abs , - 1 , $n )) {}
/* absolute URL is ready! */
return $scheme . '://' . $abs ;
}
/**
* Téléchargement des images
*/
function download_pictures ( $absolute_path , $fullpath )
{
$rawdata = get_external_file ( $absolute_path );
2013-04-15 09:04:23 +02:00
2013-04-17 15:11:57 +02:00
if ( file_exists ( $fullpath )) {
unlink ( $fullpath );
}
$fp = fopen ( $fullpath , 'x' );
fwrite ( $fp , $rawdata );
fclose ( $fp );
}
/**
* Crée un répertoire de médias pour l ' article
*/
function create_assets_directory ( $id )
{
$assets_path = ABS_PATH ;
if ( ! is_dir ( $assets_path )) {
mkdir ( $assets_path , 0705 );
}
$article_directory = $assets_path . $id ;
if ( ! is_dir ( $article_directory )) {
mkdir ( $article_directory , 0705 );
}
return $article_directory ;
}
/**
* Suppression du répertoire d ' images
*/
function remove_directory ( $directory )
{
if ( is_dir ( $directory )) {
$files = array_diff ( scandir ( $directory ), array ( '.' , '..' ));
foreach ( $files as $file ) {
2013-04-18 08:13:11 +02:00
( is_dir ( " $directory / $file " )) ? remove_directory ( " $directory / $file " ) : unlink ( " $directory / $file " );
2013-04-17 15:11:57 +02:00
}
return rmdir ( $directory );
}
2013-04-15 09:58:34 +02:00
}
/**
* Appel d ' une action ( mark as fav , archive , delete )
*/
2013-04-17 15:11:57 +02:00
2013-04-15 14:09:58 +02:00
function action_to_do ( $action , $id , $url , $token )
2013-04-15 09:58:34 +02:00
{
global $db ;
switch ( $action )
{
case 'add' :
if ( $url == '' )
continue ;
2013-04-17 15:11:57 +02:00
$req = $db -> getHandle () -> query ( " SELECT id FROM entries ORDER BY id DESC " );
$id = $req -> fetchColumn () + 1 ;
if ( $parametres_url = prepare_url ( $url , $id )) {
$sql_action = 'INSERT INTO entries ( id, url, title, content ) VALUES (?,?, ?, ?)' ;
$params_action = array ( $id , $url , $parametres_url [ 'title' ], $parametres_url [ 'content' ]);
}
2013-04-17 14:01:37 +02:00
logm ( 'add link ' . $url );
2013-04-15 09:58:34 +02:00
break ;
case 'delete' :
2013-04-15 14:09:58 +02:00
if ( verif_token ( $token )) {
2013-04-17 15:11:57 +02:00
remove_directory ( ABS_PATH . $id );
2013-04-15 14:09:58 +02:00
$sql_action = " DELETE FROM entries WHERE id=? " ;
$params_action = array ( $id );
2013-04-17 14:01:37 +02:00
logm ( 'delete link #' . $id );
2013-04-15 14:09:58 +02:00
}
2013-04-17 13:38:12 +02:00
else logm ( 'csrf problem while deleting entry' );
2013-04-15 09:58:34 +02:00
break ;
2013-04-16 11:52:25 +02:00
case 'toggle_fav' :
if ( verif_token ( $token )) {
$sql_action = " UPDATE entries SET is_fav=~is_fav WHERE id=? " ;
$params_action = array ( $id );
2013-04-17 14:01:37 +02:00
logm ( 'mark as favorite link #' . $id );
2013-04-16 11:52:25 +02:00
}
2013-04-17 13:38:12 +02:00
else logm ( 'csrf problem while fav entry' );
2013-04-16 11:52:25 +02:00
break ;
case 'toggle_archive' :
if ( verif_token ( $token )) {
$sql_action = " UPDATE entries SET is_read=~is_read WHERE id=? " ;
$params_action = array ( $id );
2013-04-17 14:01:37 +02:00
logm ( 'archive link #' . $id );
2013-04-16 11:52:25 +02:00
}
2013-04-17 13:38:12 +02:00
else logm ( 'csrf problem while archive entry' );
2013-04-16 11:52:25 +02:00
break ;
2013-04-15 09:58:34 +02:00
default :
break ;
}
try
{
# action query
if ( isset ( $sql_action ))
{
$query = $db -> getHandle () -> prepare ( $sql_action );
$query -> execute ( $params_action );
}
}
catch ( Exception $e )
{
2013-04-17 13:38:12 +02:00
logm ( 'action query error : ' . $e -> getMessage ());
2013-04-15 09:58:34 +02:00
}
}
/**
* Détermine quels liens afficher : home , fav ou archives
*/
2013-04-16 12:58:03 +02:00
function display_view ( $view )
2013-04-15 09:58:34 +02:00
{
global $db ;
2013-04-16 11:52:25 +02:00
switch ( $_SESSION [ 'sort' ])
{
case 'ia' :
$order = 'ORDER BY id' ;
break ;
case 'id' :
$order = 'ORDER BY id DESC' ;
break ;
case 'ta' :
$order = 'ORDER BY lower(title)' ;
break ;
case 'td' :
$order = 'ORDER BY lower(title) DESC' ;
break ;
default :
$order = 'ORDER BY id' ;
break ;
}
2013-04-16 12:58:03 +02:00
switch ( $view )
2013-04-15 09:58:34 +02:00
{
case 'archive' :
2013-04-16 11:52:25 +02:00
$sql = " SELECT * FROM entries WHERE is_read=? " . $order ;
2013-04-15 09:58:34 +02:00
$params = array ( - 1 );
break ;
case 'fav' :
2013-04-16 11:52:25 +02:00
$sql = " SELECT * FROM entries WHERE is_fav=? " . $order ;
2013-04-15 09:58:34 +02:00
$params = array ( - 1 );
break ;
default :
2013-04-16 11:52:25 +02:00
$sql = " SELECT * FROM entries WHERE is_read=? " . $order ;
2013-04-15 09:58:34 +02:00
$params = array ( 0 );
break ;
}
# view query
try
{
$query = $db -> getHandle () -> prepare ( $sql );
$query -> execute ( $params );
$entries = $query -> fetchAll ();
}
catch ( Exception $e )
{
2013-04-17 13:38:12 +02:00
logm ( 'view query error : ' . $e -> getMessage ());
2013-04-15 09:58:34 +02:00
}
return $entries ;
}
/**
* Récupère un article en fonction d ' un ID
*/
function get_article ( $id )
{
global $db ;
$entry = NULL ;
$sql = " SELECT * FROM entries WHERE id=? " ;
$params = array ( intval ( $id ));
# view article query
try
{
$query = $db -> getHandle () -> prepare ( $sql );
$query -> execute ( $params );
$entry = $query -> fetchAll ();
}
catch ( Exception $e )
{
2013-04-17 13:38:12 +02:00
logm ( 'get article query error : ' . $e -> getMessage ());
2013-04-15 09:58:34 +02:00
}
return $entry ;
2013-04-15 14:09:58 +02:00
}
/**
* Vérifie si le jeton passé en $_POST correspond à celui en session
*/
function verif_token ( $token )
{
if ( isset ( $_SESSION [ 'token_poche' ]) && isset ( $_SESSION [ 'token_time_poche' ]) && isset ( $token ))
{
if ( $_SESSION [ 'token_poche' ] == $token )
{
$old_timestamp = time () - ( 15 * 60 );
if ( $_SESSION [ 'token_time_poche' ] >= $old_timestamp )
{
return TRUE ;
}
2013-04-15 15:23:20 +02:00
else {
session_destroy ();
2013-04-17 13:38:12 +02:00
logm ( 'session expired' );
2013-04-15 15:23:20 +02:00
}
2013-04-15 14:09:58 +02:00
}
2013-04-17 13:38:12 +02:00
else {
logm ( 'token error : the token is different' );
return FALSE ;
}
}
else {
logm ( 'token error : the token is not here' );
return FALSE ;
2013-04-15 14:09:58 +02:00
}
2013-04-17 13:38:12 +02:00
}
function logm ( $message )
{
$t = strval ( date ( 'Y/m/d_H:i:s' )) . ' - ' . $_SERVER [ " REMOTE_ADDR " ] . ' - ' . strval ( $message ) . " \n " ;
2013-04-17 14:01:37 +02:00
file_put_contents ( './log.txt' , $t , FILE_APPEND );
2013-04-12 13:13:21 +02:00
}