PageRenderTime 76ms CodeModel.GetById 23ms RepoModel.GetById 1ms app.codeStats 0ms

/system/libraries/Validation.php

https://github.com/lmorchard/friendfeedarchiver
PHP | 1188 lines | 962 code | 71 blank | 155 comment | 47 complexity | b486edb8561af2586965c8a3fd47e82c MD5 | raw file
    

  1. <?php defined('SYSPATH') or die('No direct script access.');
    2. 

  2. /**
    3. 

  3.  * Validation library.
    4. 

  4.  *
    5. 

  5.  * $Id: Validation.php 2111 2008-02-22 01:18:59Z Shadowhand $
    6. 

  6.  *
    7. 

  7.  * @package    Validation
    8. 

  8.  * @author     Kohana Team
    9. 

  9.  * @copyright  (c) 2007-2008 Kohana Team
    10. 

  10.  * @license    http://kohanaphp.com/license.html
    11. 

  11.  */
    12. 

  12. class Validation_Core {
    13. 

  13. 

  14. 	// Instance count
    15. 

  15. 	private static $instances = 0;
    16. 

  16. 

  17. 	// Currently validating field
    18. 

  18. 	public $current_field = '';
    19. 

  19. 

  20. 	// Enable or disable safe form errors
    21. 

  21. 	public $form_safe = FALSE;
    22. 

  22. 

  23. 	// Error message format
    24. 

  24. 	public $error_format = '<p class="error">{message}</p>';
    25. 

  25. 	public $newline_char = "\n";
    26. 

  26. 

  27. 	// Error messages
    28. 

  28. 	public $messages = array();
    29. 

  29. 

  30. 	// Field names, rules, and errors
    31. 

  31. 	protected $fields = array();
    32. 

  32. 	protected $rules  = array();
    33. 

  33. 	protected $errors = array();
    34. 

  34. 

  35. 	// Data to validate
    36. 

  36. 	protected $data = array();
    37. 

  37. 

  38. 	// Result from validation rules
    39. 

  39. 	protected $result;
    40. 

  40. 

  41. 	/**
    42. 

  42. 	 * @param array  array to validate
    43. 

  43. 	 */
    44. 

  44. 	public function __construct( & $data = array())
    45. 

  45. 	{
    46. 

  46. 		$this->set_data($data);
    47. 

  47. 

  48. 		// Load the default error messages
    49. 

  49. 		$this->messages = Kohana::lang('validation');
    50. 

  50. 

  51. 		// Add one more instance to the count
    52. 

  52. 		self::$instances++;
    53. 

  53. 

  54. 		Log::add('debug', 'Validation Library Initialized, instance '.self::$instances);
    55. 

  55. 	}
    56. 

  56. 

  57. 	/**
    58. 

  58. 	 * Magically gets a validation variable. This can be an error string or a
    59. 

  59. 	 * data field, or an array of all field data.
    60. 

  60. 	 *
    61. 

  61. 	 * @param   string        Variable name
    62. 

  62. 	 * @return  string|array  The variable contents or NULL if the variable does not exist
    63. 

  63. 	 */
    64. 

  64. 	public function __get($key)
    65. 

  65. 	{
    66. 

  66. 		if ( ! isset($this->$key))
    67. 

  67. 		{
    68. 

  68. 			if ($key === 'error_string')
    69. 

  69. 			{
    70. 

  70. 				// Complete error message string
    71. 

  71. 				$messages = FALSE;
    72. 

  72. 				foreach(array_keys($this->errors) as $field)
    73. 

  73. 				{
    74. 

  74. 					$messages .= $this->__get($field.'_error');
    75. 

  75. 				}
    76. 

  76. 				return $messages;
    77. 

  77. 			}
    78. 

  78. 			elseif (substr($key, -6) === '_error')
    79. 

  79. 			{
    80. 

  80. 				// Get the field name
    81. 

  81. 				$field = substr($key, 0, -6);
    82. 

  82. 

  83. 				// Return the error messages for this field
    84. 

  84. 				$messages = FALSE;
    85. 

  85. 				if (isset($this->errors[$field]) AND ! empty($this->errors[$field]))
    86. 

  86. 				{
    87. 

  87. 					foreach($this->errors[$field] as $error)
    88. 

  88. 					{
    89. 

  89. 						// Replace the message with the error in the html error string
    90. 

  90. 						$messages .= str_replace('{message}', $error, $this->error_format).$this->newline_char;
    91. 

  91. 					}
    92. 

  92. 				}
    93. 

  93. 				return $messages;
    94. 

  94. 			}
    95. 

  95. 			elseif (isset($this->data[$key]))
    96. 

  96. 			{
    97. 

  97. 				return $this->data[$key];
    98. 

  98. 			}
    99. 

  99. 			elseif ($key === 'data_array')
    100. 

  100. 			{
    101. 

  101. 				$data = array();
    102. 

  102. 				foreach (array_keys($this->rules) as $key)
    103. 

  103. 				{
    104. 

  104. 					if (isset($this->data[$key]))
    105. 

  105. 					{
    106. 

  106. 						$data[$key] = $this->data[$key];
    107. 

  107. 					}
    108. 

  108. 				}
    109. 

  109. 				return $data;
    110. 

  110. 			}
    111. 

  111. 		}
    112. 

  112. 	}
    113. 

  113. 

  114. 	/**
    115. 

  115. 	 * This function takes an array of key names, rules, and field names as
    116. 

  116. 	 * input and sets internal field information.
    117. 

  117. 	 *
    118. 

  118. 	 * @param   string|array Key names
    119. 

  119. 	 * @param   string       Rules
    120. 

  120. 	 * @param   string       Field name
    121. 

  121. 	 * @return  void
    122. 

  122. 	 */
    123. 

  123. 	public function set_rules($data, $rules = '', $field = FALSE)
    124. 

  124. 	{
    125. 

  125. 		// Normalize rules to an array
    126. 

  126. 		if ( ! is_array($data))
    127. 

  127. 		{
    128. 

  128. 			if ($rules == '') return FALSE;
    129. 

  129. 

  130. 			// Make data into an array
    131. 

  131. 			$data = array($data => array($field, $rules));
    132. 

  132. 		}
    133. 

  133. 

  134. 		// Set the field information
    135. 

  135. 		foreach ($data as $name => $rules)
    136. 

  136. 		{
    137. 

  137. 			if (is_array($rules))
    138. 

  138. 			{
    139. 

  139. 				if (count($rules) > 1)
    140. 

  140. 				{
    141. 

  141. 					$field = current($rules);
    142. 

  142. 					$rules = next($rules);
    143. 

  143. 				}
    144. 

  144. 				else
    145. 

  145. 				{
    146. 

  146. 					$rules = current($rules);
    147. 

  147. 				}
    148. 

  148. 			}
    149. 

  149. 

  150. 			// Empty field names default to the name of the element
    151. 

  151. 			$this->fields[$name] = empty($field) ? $name : $field;
    152. 

  152. 			$this->rules[$name]  = $rules;
    153. 

  153. 

  154. 			// Prevent fields from getting the wrong name
    155. 

  155. 			unset($field);
    156. 

  156. 		}
    157. 

  157. 	}
    158. 

  158. 

  159. 	/**
    160. 

  160. 	 * Lets users set their own error messages on the fly.
    161. 

  161. 	 * Note - The key name has to match the function name that it corresponds to.
    162. 

  162. 	 *
    163. 

  163. 	 * @param   string  Function name
    164. 

  164. 	 * @param   string  Error message
    165. 

  165. 	 * @return  void
    166. 

  166. 	 */
    167. 

  167. 	public function set_message($func, $message = '')
    168. 

  168. 	{
    169. 

  169. 		if ( ! is_array($func))
    170. 

  170. 		{
    171. 

  171. 			$func = array($func => $message);
    172. 

  172. 		}
    173. 

  173. 

  174. 		foreach($func as $name => $message)
    175. 

  175. 		{
    176. 

  176. 			$this->messages[$name] = $message;
    177. 

  177. 		}
    178. 

  178. 	}
    179. 

  179. 

  180. 	/**
    181. 

  181. 	 * @param   array  Data to validate
    182. 

  182. 	 * @return  void
    183. 

  183. 	 */
    184. 

  184. 	public function set_data( & $data)
    185. 

  185. 	{
    186. 

  186. 		if ( ! empty($data) AND is_array($data))
    187. 

  187. 		{
    188. 

  188. 			$this->data =& $data;
    189. 

  189. 		}
    190. 

  190. 		else
    191. 

  191. 		{
    192. 

  192. 			$this->data =& $_POST;
    193. 

  193. 		}
    194. 

  194. 	}
    195. 

  195. 

  196. 	/**
    197. 

  197. 	 * Allows the user to change the error message format. Error formats must
    198. 

  198. 	 * contain the string "{message}" or Kohana_Exception will be triggered.
    199. 

  199. 	 *
    200. 

  200. 	 * @param   string  Error message format  
    201. 

  201. 	 * @return  void
    202. 

  202. 	 */
    203. 

  203. 	public function error_format($string = '')
    204. 

  204. 	{
    205. 

  205. 		if (strpos((string) $string, '{message}') === FALSE)
    206. 

  206. 			throw new Kohana_Exception('validation.error_format');
    207. 

  207. 

  208. 		$this->error_format = $string;
    209. 

  209. 	}
    210. 

  210. 

  211. 	/**
    212. 

  212. 	 * @param   string  Function name
    213. 

  213. 	 * @param   string  field name
    214. 

  214. 	 * @return  void
    215. 

  215. 	 */
    216. 

  216. 	public function add_error($func, $field)
    217. 

  217. 	{
    218. 

  218. 		// Set the friendly field name
    219. 

  219. 		$friendly = isset($this->fields[$field]) ? $this->fields[$field] : $field;
    220. 

  220. 

  221. 		// Fetch the message
    222. 

  222. 		$message = isset($this->messages[$func]) ? $this->messages[$func] : $this->messages['unknown_error'];
    223. 

  223. 

  224. 		// Replacements in strings
    225. 

  225. 		$replace = array_slice(func_get_args(), 1);
    226. 

  226. 

  227. 		if ( ! empty($replace) AND $replace[0] === $field)
    228. 

  228. 		{
    229. 

  229. 			// Add the friendly name instead of the field name
    230. 

  230. 			$replace[0] = $friendly;
    231. 

  231. 		}
    232. 

  232. 

  233. 		// Add the field name into the message, if there is a place for it
    234. 

  234. 		$message = (strpos($message, '%s') !== FALSE) ? vsprintf($message, $replace) : $message;
    235. 

  235. 

  236. 		$this->errors[$field][] = $message;
    237. 

  237. 	}
    238. 

  238. 

  239. 	/**
    240. 

  240. 	 * This function does all the work.
    241. 

  241. 	 *
    242. 

  242. 	 * @return  boolean  The validation result
    243. 

  243. 	 */
    244. 

  244. 	public function run()
    245. 

  245. 	{
    246. 

  246. 		// Do we even have any data to process?  Mm?
    247. 

  247. 		if (count($this->data) == 0 OR count($this->rules) == 0)
    248. 

  248. 		{
    249. 

  249. 			return FALSE;
    250. 

  250. 		}
    251. 

  251. 

  252. 		// Cycle through the rules and test for errors
    253. 

  253. 		foreach ($this->rules as $field => $rules)
    254. 

  254. 		{
    255. 

  255. 			// Set the current field, for other functions to use
    256. 

  256. 			$this->current_field = $field;
    257. 

  257. 

  258. 			// Insert uploads into the data
    259. 

  259. 			if (strpos($rules, 'upload') !== FALSE AND isset($_FILES[$field]))
    260. 

  260. 			{
    261. 

  261. 				if (is_array($_FILES[$field]['error']))
    262. 

  262. 				{
    263. 

  263. 					foreach($_FILES[$field]['error'] as $error)
    264. 

  264. 					{
    265. 

  265. 						if ($error !== UPLOAD_ERR_NO_FILE)
    266. 

  266. 						{
    267. 

  267. 							$this->data[$field] = $_FILES[$field];
    268. 

  268. 							break;
    269. 

  269. 						}
    270. 

  270. 					}
    271. 

  271. 				}
    272. 

  272. 				elseif ($_FILES[$field]['error'] !== UPLOAD_ERR_NO_FILE)
    273. 

  273. 				{
    274. 

  274. 					$this->data[$field] = $_FILES[$field];
    275. 

  275. 				}
    276. 

  276. 			}
    277. 

  277. 

  278. 			// Process empty fields
    279. 

  279. 			if ( ! isset($this->data[$field]) OR $this->data[$field] == NULL)
    280. 

  280. 			{
    281. 

  281. 				// This field is required
    282. 

  282. 				if (strpos($rules, 'required') !== FALSE)
    283. 

  283. 				{
    284. 

  284. 					$this->add_error('required', $field);
    285. 

  285. 					continue;
    286. 

  286. 				}
    287. 

  287. 			}
    288. 

  288. 

  289. 			// Loop through the rules and process each one
    290. 

  290. 			foreach(explode('|', $rules) as $rule)
    291. 

  291. 			{
    292. 

  292. 				// To properly handle recursion
    293. 

  293. 				$this->run_rule($rule, $field);
    294. 

  294. 

  295. 				// Stop validating when there is an error
    296. 

  296. 				if ($this->result === FALSE)
    297. 

  297. 					break;
    298. 

  298. 			}
    299. 

  299. 		}
    300. 

  300. 

  301. 		// Run validation finished Event and return
    302. 

  302. 		if (count($this->errors) == 0)
    303. 

  303. 		{
    304. 

  304. 			Event::run('validation.success', $this->data);
    305. 

  305. 			return TRUE;
    306. 

  306. 		}
    307. 

  307. 		else
    308. 

  308. 		{
    309. 

  309. 			Event::run('validation.failure', $this->data);
    310. 

  310. 			return FALSE;
    311. 

  311. 		}
    312. 

  312. 	}
    313. 

  313. 

  314. 	/**
    315. 

  315. 	 * Handles recursively calling rules on arrays of data.
    316. 

  316. 	 *
    317. 

  317. 	 * @param   string  Validation rule to be run on the data
    318. 

  318. 	 * @param   string  Name of field
    319. 

  319. 	 * @return  void
    320. 

  320. 	 */
    321. 

  321. 	protected function run_rule($rule, $field)
    322. 

  322. 	{
    323. 

  323. 		// Use key_string to extract the field data
    324. 

  324. 		$data = Kohana::key_string($field, $this->data);
    325. 

  325. 

  326. 		// Make sure that data input is not upload data
    327. 

  327. 		if (is_array($data) AND ! (isset($data['tmp_name']) AND isset($data['error'])))
    328. 

  328. 		{
    329. 

  329. 			foreach($data as $key => $value)
    330. 

  330. 			{
    331. 

  331. 				// Recursion is fun!
    332. 

  332. 				$this->run_rule($rule, $field.'.'.$key);
    333. 

  333. 

  334. 				if ($this->result === FALSE)
    335. 

  335. 					break;
    336. 

  336. 			}
    337. 

  337. 		}
    338. 

  338. 		else
    339. 

  339. 		{
    340. 

  340. 			if (strpos($rule, '=') === 0)
    341. 

  341. 			{
    342. 

  342. 				$rule               = substr($rule, 1);
    343. 

  343. 				$this->data[$field] = $rule($data);
    344. 

  344. 				return;
    345. 

  345. 			}
    346. 

  346. 

  347. 			// Handle callback rules
    348. 

  348. 			$callback = FALSE;
    349. 

  349. 			if (preg_match('/callback_(.+)/', $rule, $match))
    350. 

  350. 			{
    351. 

  351. 				$callback = $match[1];
    352. 

  352. 			}
    353. 

  353. 

  354. 			// Handle params
    355. 

  355. 			$params = FALSE;
    356. 

  356. 			if (preg_match('/([^\[]*+)\[(.+)\]/', $rule, $match))
    357. 

  357. 			{
    358. 

  358. 				$rule   = $match[1];
    359. 

  359. 				$params = preg_split('/(?<!\\\\),/', $match[2]);
    360. 

  360. 				$params = str_replace('\,', ',', $params);
    361. 

  361. 			}
    362. 

  362. 

  363. 			// Process this field with the rule
    364. 

  364. 			if ($callback !== FALSE)
    365. 

  365. 			{
    366. 

  366. 				if ( ! method_exists(Kohana::instance(), $callback))
    367. 

  367. 					throw new Kohana_Exception('validation.invalid_rule', $callback);
    368. 

  368. 

  369. 				$this->result = Kohana::instance()->$callback($data, $params);
    370. 

  370. 			}
    371. 

  371. 			elseif ($rule === 'matches' OR $rule === 'depends_on')
    372. 

  372. 			{
    373. 

  373. 				$this->result = $this->$rule($field, $params);
    374. 

  374. 			}
    375. 

  375. 			elseif (method_exists($this, $rule))
    376. 

  376. 			{
    377. 

  377. 				$this->result = $this->$rule($data, $params);
    378. 

  378. 			}
    379. 

  379. 			elseif (is_callable($rule))
    380. 

  380. 			{
    381. 

  381. 				if (strpos($rule, '::') !== FALSE)
    382. 

  382. 				{
    383. 

  383. 					$this->result = call_user_func(explode('::', $rule), $data);
    384. 

  384. 				}
    385. 

  385. 				else
    386. 

  386. 				{
    387. 

  387. 					$this->result = $rule($data);
    388. 

  388. 				}
    389. 

  389. 			}
    390. 

  390. 			else
    391. 

  391. 			{
    392. 

  392. 				// Trying to validate with a rule that does not exist? No way!
    393. 

  393. 				throw new Kohana_Exception('validation.invalid_rule', $rule);
    394. 

  394. 			}
    395. 

  395. 		}
    396. 

  396. 	}
    397. 

  397. 

  398. 	/**
    399. 

  399. 	 * @param   mixed
    400. 

  400. 	 * @param   array
    401. 

  401. 	 * @return  boolean
    402. 

  402. 	 */
    403. 

  403. 	public function in_array($data, $array = FALSE)
    404. 

  404. 	{
    405. 

  405. 		if (empty($array) OR ! is_array($array) OR ! in_array($data, $array))
    406. 

  406. 		{
    407. 

  407. 			$this->add_error('in_array', $this->current_field);
    408. 

  408. 			return FALSE;
    409. 

  409. 		}
    410. 

  410. 

  411. 		return TRUE;
    412. 

  412. 	}
    413. 

  413. 

  414. 	/**
    415. 

  415. 	 * @param   mixed         Data to pass to the event
    416. 

  416. 	 * @param   array         Events name
    417. 

  417. 	 * @return  boolean|void
    418. 

  418. 	 */
    419. 

  419. 	public function event($data, $events = FALSE)
    420. 

  420. 	{
    421. 

  421. 		// Validate the events
    422. 

  422. 		if (empty($events) OR ! is_array($events))
    423. 

  423. 		{
    424. 

  424. 			$this->add_error('event', $this->current_field);
    425. 

  425. 			return FALSE;
    426. 

  426. 		}
    427. 

  427. 

  428. 		// Run the requested events
    429. 

  429. 		foreach($events as $event)
    430. 

  430. 		{
    431. 

  431. 			Event::run('validation.'.$event, $data);
    432. 

  432. 		}
    433. 

  433. 	}
    434. 

  434. 

  435. 	/**
    436. 

  436. 	 * @param   array
    437. 

  437. 	 * @param   array
    438. 

  438. 	 * @return  boolean|void
    439. 

  439. 	 */
    440. 

  440. 	public function upload($data, $params = FALSE)
    441. 

  441. 	{
    442. 

  442. 		// By default, nothing is allowed
    443. 

  443. 		$allowed = FALSE;
    444. 

  444. 

  445. 		// Maximum sizes of various attributes
    446. 

  446. 		$fileinfo = array
    447. 

  447. 		(
    448. 

  448. 			'file'   => FALSE,
    449. 

  449. 			'human'  => FALSE,
    450. 

  450. 			'max_width'  => FALSE,
    451. 

  451. 			'max_height' => FALSE,
    452. 

  452. 			'min_width' => FALSE,
    453. 

  453. 			'min_height' => FALSE
    454. 

  454. 		);
    455. 

  455. 

  456. 		if ($data === $this->data[$this->current_field])
    457. 

  457. 		{
    458. 

  458. 			// Clear the raw upload data, it's internal now
    459. 

  459. 			$this->data[$this->current_field] = NULL;
    460. 

  460. 		}
    461. 

  461. 

  462. 		if (is_array($data['name']))
    463. 

  463. 		{
    464. 

  464. 			// Handle an array of inputs
    465. 

  465. 			$files = $data;
    466. 

  466. 			$total = count($files['name']);
    467. 

  467. 

  468. 			for ($i = 0; $i < $total; $i++)
    469. 

  469. 			{
    470. 

  470. 				if (empty($files['name'][$i]))
    471. 

  471. 					continue;
    472. 

  472. 

  473. 				// Fake a single upload input
    474. 

  474. 				$data = array
    475. 

  475. 				(
    476. 

  476. 					'name'     => $files['name'][$i],
    477. 

  477. 					'type'     => $files['type'][$i],
    478. 

  478. 					'size'     => $files['size'][$i],
    479. 

  479. 					'tmp_name' => $files['tmp_name'][$i],
    480. 

  480. 					'error'    => $files['error'][$i]
    481. 

  481. 				);
    482. 

  482. 

  483. 				// Recursion
    484. 

  484. 				if ( ! $this->upload($data, $params))
    485. 

  485. 					return FALSE;
    486. 

  486. 			}
    487. 

  487. 

  488. 			// All files uploaded successfully
    489. 

  489. 			return empty($this->errors);
    490. 

  490. 		}
    491. 

  491. 

  492. 		// Parse addition parameters
    493. 

  493. 		if (is_array($params) AND ! empty($params))
    494. 

  494. 		{
    495. 

  495. 			// Creates a mirrored array: foo=foo,bar=bar
    496. 

  496. 			$params = array_combine($params, $params);
    497. 

  497. 

  498. 			foreach($params as $param)
    499. 

  499. 			{
    500. 

  500. 				if (preg_match('/[0-9]+x[0-9]+(?:-[0-9]+x[0-9]+)?/', $param))
    501. 

  501. 				{
    502. 

  502.  					// Image size, eg: 200x100, 20x10-200x100
    503. 

  503. 					$param = (strpos($param, '-') === FALSE) ? $param.'-'.$param : $param;
    504. 

  504. 

  505. 					list($min, $max) = explode('-', $param);
    506. 

  506. 

  507. 					list($fileinfo['max_width'], $fileinfo['max_height']) = explode('x', $max);
    508. 

  508. 					list($fileinfo['min_width'], $fileinfo['min_height']) = explode('x', $min);
    509. 

  509. 				}
    510. 

  510. 				elseif (preg_match('/[0-9]+[BKMG]/i', $param))
    511. 

  511. 				{
    512. 

  512. 					// Maximum file size, eg: 1M
    513. 

  513. 					$fileinfo['human'] = strtoupper($param);
    514. 

  514. 

  515. 					switch(strtoupper(substr($param, -1)))
    516. 

  516. 					{
    517. 

  517. 						case 'G': $param = intval($param) * pow(1024, 3); break;
    518. 

  518. 						case 'M': $param = intval($param) * pow(1024, 2); break;
    519. 

  519. 						case 'K': $param = intval($param) * pow(1024, 1); break;
    520. 

  520. 						default:  $param = intval($param);                break;
    521. 

  521. 					}
    522. 

  522. 

  523. 					$fileinfo['file'] = $param;
    524. 

  524. 				}
    525. 

  525. 				else
    526. 

  526. 				{
    527. 

  527. 					$allowed[strtolower($param)] = strtolower($param);
    528. 

  528. 				}
    529. 

  529. 			}
    530. 

  530. 		}
    531. 

  531. 

  532. 		// Uploads must use a white-list of allowed file types
    533. 

  533. 		if (empty($allowed))
    534. 

  534. 			throw new Kohana_Exception('upload.set_allowed');
    535. 

  535. 

  536. 		// Make sure that UPLOAD_ERR_EXTENSION is defined
    537. 

  537. 		defined('UPLOAD_ERR_EXTENSION') or define('UPLOAD_ERR_EXTENSION', 8);
    538. 

  538. 

  539. 		// Fetch the real upload path
    540. 

  540. 		if (($upload_path = str_replace('\\', '/', realpath(Config::item('upload.upload_directory')))) == FALSE)
    541. 

  541. 		{
    542. 

  542. 			$data['error'] = UPLOAD_ERR_NO_TMP_DIR;
    543. 

  543. 		}
    544. 

  544. 

  545. 		// Validate the upload path
    546. 

  546. 		if ( ! is_dir($upload_path) OR ! is_writable($upload_path))
    547. 

  547. 		{
    548. 

  548. 			$data['error'] = UPLOAD_ERR_CANT_WRITE;
    549. 

  549. 		}
    550. 

  550. 

  551. 		// Error code definitions available at:
    552. 

  552. 		// http://us.php.net/manual/en/features.file-upload.errors.php
    553. 

  553. 		switch($data['error'])
    554. 

  554. 		{
    555. 

  555. 			// Valid upload
    556. 

  556. 			case UPLOAD_ERR_OK:
    557. 

  557. 			break;
    558. 

  558. 			// Upload to large, based on php.ini settings
    559. 

  559. 			case UPLOAD_ERR_INI_SIZE:
    560. 

  560. 				if ($fileinfo['human'] == FALSE)
    561. 

  561. 				{
    562. 

  562. 					$fileinfo['human'] = ini_get('upload_max_filesize');
    563. 

  563. 				}
    564. 

  564. 				$this->add_error('max_size', $this->current_field, $fileinfo['human']);
    565. 

  565. 				return FALSE;
    566. 

  566. 			break;
    567. 

  567. 			// Kohana does not allow the MAX_FILE_SIZE input to control filesize
    568. 

  568. 			case UPLOAD_ERR_FORM_SIZE:
    569. 

  569. 				throw new Kohana_Exception('upload.max_file_size');
    570. 

  570. 			break;
    571. 

  571. 			// User aborted the upload, or a connection error occurred
    572. 

  572. 			case UPLOAD_ERR_PARTIAL:
    573. 

  573. 				$this->add_error('user_aborted', $this->current_field);
    574. 

  574. 				return FALSE;
    575. 

  575. 			break;
    576. 

  576. 			// No file was uploaded, or an extension blocked the upload
    577. 

  577. 			case UPLOAD_ERR_NO_FILE:
    578. 

  578. 			case UPLOAD_ERR_EXTENSION:
    579. 

  579. 				return FALSE;
    580. 

  580. 			break;
    581. 

  581. 			// No temporary directory set in php.ini
    582. 

  582. 			case UPLOAD_ERR_NO_TMP_DIR:
    583. 

  583. 				throw new Kohana_Exception('upload.no_tmp_dir');
    584. 

  584. 			break;
    585. 

  585. 			// Could not write to the temporary directory
    586. 

  586. 			case UPLOAD_ERR_CANT_WRITE:
    587. 

  587. 				throw new Kohana_Exception('upload.tmp_unwritable', $upload_path);
    588. 

  588. 			break;
    589. 

  589. 		}
    590. 

  590. 

  591. 		// Validate the uploaded file
    592. 

  592. 		if ( ! isset($data['tmp_name']) OR ! is_uploaded_file($data['tmp_name']))
    593. 

  593. 			return FALSE;
    594. 

  594. 

  595. 		if ($fileinfo['file'] AND $data['size'] > $fileinfo['file'])
    596. 

  596. 		{
    597. 

  597. 			$this->add_error('max_size', $this->current_field, $fileinfo['human']);
    598. 

  598. 			return FALSE;
    599. 

  599. 		}
    600. 

  600. 

  601. 		// Find the MIME type of the file. Although the mime type is available
    602. 

  602. 		// in the upload data, it can easily be faked. Instead, we use the
    603. 

  603. 		// server filesystem functions (if possible) to determine the MIME type.
    604. 

  604. 

  605. 		if (preg_match('/jpe?g|png|[gt]if|bmp/', implode(' ', $allowed)))
    606. 

  606. 		{
    607. 

  607. 			// Use getimagesize() to find the mime type on images
    608. 

  608. 			$mime = @getimagesize($data['tmp_name']);
    609. 

  609. 

  610. 			// Validate height and width
    611. 

  611. 			if ($fileinfo['max_width'] AND $mime[0] > $fileinfo['max_width'])
    612. 

  612. 			{
    613. 

  613. 				$this->add_error('max_width', $this->current_field, $fileinfo['max_width']);
    614. 

  614. 				return FALSE;
    615. 

  615. 			}
    616. 

  616. 			elseif ($fileinfo['min_width'] AND $mime[0] < $fileinfo['min_width'])
    617. 

  617. 			{
    618. 

  618. 				$this->add_error('min_width', $this->current_field, $fileinfo['min_width']);
    619. 

  619. 				return FALSE;
    620. 

  620. 			}
    621. 

  621. 			elseif ($fileinfo['max_height'] AND $mime[1] > $fileinfo['max_height'])
    622. 

  622. 			{
    623. 

  623. 				$this->add_error('max_height', $this->current_field, $fileinfo['max_height']);
    624. 

  624. 				return FALSE;
    625. 

  625. 			}
    626. 

  626. 			elseif ($fileinfo['min_height'] AND $mime[1] < $fileinfo['min_height'])
    627. 

  627. 			{
    628. 

  628. 				$this->add_error('min_height', $this->current_field, $fileinfo['min_height']);
    629. 

  629. 				return FALSE;
    630. 

  630. 			}
    631. 

  631. 

  632. 			// Set mime type
    633. 

  633. 			$mime = isset($mime['mime']) ? $mime['mime'] : FALSE;
    634. 

  634. 		}
    635. 

  635. 		elseif (function_exists('finfo_open'))
    636. 

  636. 		{
    637. 

  637. 			// Try using the fileinfo extension
    638. 

  638. 			$finfo = finfo_open(FILEINFO_MIME);
    639. 

  639. 			$mime  = finfo_file($finfo, $data['tmp_name']);
    640. 

  640. 			finfo_close($finfo);
    641. 

  641. 		}
    642. 

  642. 		elseif (ini_get('mime_magic.magicfile') AND function_exists('mime_content_type'))
    643. 

  643. 		{
    644. 

  644. 			// Use mime_content_type(), deprecated by PHP
    645. 

  645. 			$mime = mime_content_type($data['tmp_name']);
    646. 

  646. 		}
    647. 

  647. 		elseif (file_exists($cmd = trim(exec('which file'))))
    648. 

  648. 		{
    649. 

  649. 			// Use the UNIX 'file' command
    650. 

  650. 			$mime = escapeshellarg($data['tmp_name']);
    651. 

  651. 			$mime = trim(exec($cmd.' -bi '.$mime));
    652. 

  652. 		}
    653. 

  653. 		else
    654. 

  654. 		{
    655. 

  655. 			// Trust the browser, as a last resort
    656. 

  656. 			$mime = $data['type'];
    657. 

  657. 		}
    658. 

  658. 

  659. 		// Find the list of valid mime types by the extension of the file
    660. 

  660. 		$ext = strtolower(end(explode('.', $data['name'])));
    661. 

  661. 

  662. 		// Validate file mime type based on the extension. Because the mime type
    663. 

  663. 		// is trusted (validated by the server), we check if the mime is in the
    664. 

  664. 		// list of known mime types for the current extension.
    665. 

  665. 

  666. 		if ($ext == FALSE OR ! in_array($ext, $allowed) OR array_search($mime, Config::item('mimes.'.$ext)) === NULL)
    667. 

  667. 		{
    668. 

  668. 			$this->add_error('invalid_type', $this->current_field);
    669. 

  669. 			return FALSE;
    670. 

  670. 		}
    671. 

  671. 

  672. 		// Removes spaces from the filename if configured to do so
    673. 

  673. 		$filename = Config::item('upload.remove_spaces') ? preg_replace('/\s+/', '_', $data['name']) : $data['name'];
    674. 

  674. 

  675. 		// Change the filename to a full path name
    676. 

  676. 		$filename = $upload_path.'/'.$filename;
    677. 

  677. 

  678. 		// Move the upload file to the new location
    679. 

  679. 		move_uploaded_file($data['tmp_name'], $filename);
    680. 

  680. 

  681. 		if ( ! empty($this->data[$this->current_field]))
    682. 

  682. 		{
    683. 

  683. 			// Conver the returned data into an array
    684. 

  684. 			$this->data[$this->current_field] = array($this->data[$this->current_field]);
    685. 

  685. 		}
    686. 

  686. 

  687. 		// Set the data to the current field name
    688. 

  688. 		if (is_array($this->data[$this->current_field]))
    689. 

  689. 		{
    690. 

  690. 			$this->data[$this->current_field][] = $filename;
    691. 

  691. 		}
    692. 

  692. 		else
    693. 

  693. 		{
    694. 

  694. 			$this->data[$this->current_field] = $filename;
    695. 

  695. 		}
    696. 

  696. 

  697. 		return TRUE;
    698. 

  698. 	}
    699. 

  699. 

  700. 	/**
    701. 

  701. 	 * @param   string  String to check
    702. 

  702. 	 * @param   array   Length
    703. 

  703. 	 * @return  boolean
    704. 

  704. 	 */
    705. 

  705. 	public function required($str, $length = FALSE)
    706. 

  706. 	{
    707. 

  707. 		if ($str === '' OR $str === FALSE OR (is_array($str) AND empty($str)))
    708. 

  708. 		{
    709. 

  709. 			$this->add_error('required', $this->current_field);
    710. 

  710. 			return FALSE;
    711. 

  711. 		}
    712. 

  712. 		elseif ($length != FALSE AND is_array($length))
    713. 

  713. 		{
    714. 

  714. 			if (count($length) > 1)
    715. 

  715. 			{
    716. 

  716. 				// Get the min and max length
    717. 

  717. 				list ($min, $max) = $length;
    718. 

  718. 

  719. 				// Change length to the length of the string
    720. 

  720. 				$length = utf8::strlen($str);
    721. 

  721. 

  722. 				// Test min length
    723. 

  723. 				if ($length < $min)
    724. 

  724. 				{
    725. 

  725. 					$this->add_error('min_length', $this->current_field, (int) $min);
    726. 

  726. 					return FALSE;
    727. 

  727. 				}
    728. 

  728. 				// Test max length
    729. 

  729. 				elseif ($length > $max)
    730. 

  730. 				{
    731. 

  731. 					$this->add_error('max_length', $this->current_field, (int) $max);
    732. 

  732. 					return FALSE;
    733. 

  733. 				}
    734. 

  734. 			}
    735. 

  735. 			elseif (strlen($str) !== (int) current($length))
    736. 

  736. 			{
    737. 

  737. 				// Test exact length
    738. 

  738. 				$this->add_error('exact_length', $this->current_field, (int) current($length));
    739. 

  739. 				return FALSE;
    740. 

  740. 			}
    741. 

  741. 		}
    742. 

  742. 		else
    743. 

  743. 		{
    744. 

  744. 			return TRUE;
    745. 

  745. 		}
    746. 

  746. 	}
    747. 

  747. 

  748. 	/**
    749. 

  749. 	 * Match one field to another.
    750. 

  750. 	 *
    751. 

  751. 	 * @param   string  First field
    752. 

  752. 	 * @param   string  Field to match to first
    753. 

  753. 	 * @return  boolean
    754. 

  754. 	 */
    755. 

  755. 	public function matches($field, $match)
    756. 

  756. 	{
    757. 

  757. 		$match = trim(current($match));
    758. 

  758. 

  759. 		if ((isset($this->data[$field]) AND $this->data[$field] === $this->data[$match])
    760. 

  760. 		OR ( ! isset($this->data[$field]) AND ! isset($this->data[$match])))
    761. 

  761. 		{
    762. 

  762. 			return TRUE;
    763. 

  763. 		}
    764. 

  764. 		else
    765. 

  765. 		{
    766. 

  766. 			$this->add_error('matches', $field, $match);
    767. 

  767. 			return FALSE;
    768. 

  768. 		}
    769. 

  769. 	}
    770. 

  770. 

  771. 	/**
    772. 

  772. 	 * Check a string for a minimum length.
    773. 

  773. 	 *
    774. 

  774. 	 * @param   string   String to validate
    775. 

  775. 	 * @param   integer  Minimum length
    776. 

  776. 	 * @return  boolean
    777. 

  777. 	 */
    778. 

  778. 	public function min_length($str, $val)
    779. 

  779. 	{
    780. 

  780. 		$val = is_array($val) ? (string) current($val) : FALSE;
    781. 

  781. 

  782. 		if (ctype_digit($val))
    783. 

  783. 		{
    784. 

  784. 			if (utf8::strlen($str) >= $val)
    785. 

  785. 				return TRUE;
    786. 

  786. 		}
    787. 

  787. 

  788. 		$this->add_error('min_length', $this->current_field, (int) $val);
    789. 

  789. 		return FALSE;
    790. 

  790. 	}
    791. 

  791. 

  792. 	/**
    793. 

  793. 	 * Check a string for a maximum length.
    794. 

  794. 	 *
    795. 

  795. 	 * @param   string   String to validate
    796. 

  796. 	 * @param   integer  Maximum length
    797. 

  797. 	 * @return  boolean
    798. 

  798. 	 */
    799. 

  799. 	public function max_length($str, $val)
    800. 

  800. 	{
    801. 

  801. 		$val = is_array($val) ? (string) current($val) : FALSE;
    802. 

  802. 

  803. 		if (ctype_digit($val))
    804. 

  804. 		{
    805. 

  805. 			if (utf8::strlen($str) <= $val)
    806. 

  806. 				return TRUE;
    807. 

  807. 		}
    808. 

  808. 

  809. 		$this->add_error('max_length', $this->current_field, (int) $val);
    810. 

  810. 		return FALSE;
    811. 

  811. 	}
    812. 

  812. 

  813. 	/**
    814. 

  814. 	 * Check a string for an exact length.
    815. 

  815. 	 *
    816. 

  816. 	 * @param   string   String to validate
    817. 

  817. 	 * @param   integer  Length
    818. 

  818. 	 * @return  boolean
    819. 

  819. 	 */
    820. 

  820. 	public function exact_length($str, $val)
    821. 

  821. 	{
    822. 

  822. 		$val = is_array($val) ? (string) current($val) : FALSE;
    823. 

  823. 

  824. 		if (ctype_digit($val))
    825. 

  825. 		{
    826. 

  826. 			if (utf8::strlen($str) == $val)
    827. 

  827. 				return TRUE;
    828. 

  828. 		}
    829. 

  829. 

  830. 		$this->add_error('exact_length', $this->current_field, (int) $val);
    831. 

  831. 		return FALSE;
    832. 

  832. 	}
    833. 

  833. 

  834. 	/**
    835. 

  835. 	 * Validate URL.
    836. 

  836. 	 *
    837. 

  837. 	 * @param   string  URL
    838. 

  838. 	 * @param   string  Scheme
    839. 

  839. 	 * @return  boolean
    840. 

  840. 	 */
    841. 

  841. 	public function valid_url($url, $scheme = '')
    842. 

  842. 	{
    843. 

  843. 		if (empty($scheme))
    844. 

  844. 		{
    845. 

  845. 			$scheme = 'http';
    846. 

  846. 		}
    847. 

  847. 

  848. 		if (is_array($scheme))
    849. 

  849. 		{
    850. 

  850. 			$scheme = current($scheme);
    851. 

  851. 		}
    852. 

  852. 

  853. 		if (valid::url($url, $scheme))
    854. 

  854. 			return TRUE;
    855. 

  855. 

  856. 		$this->add_error('valid_url', $this->current_field, $url);
    857. 

  857. 		return FALSE;
    858. 

  858. 	}
    859. 

  859. 

  860. 	/**
    861. 

  861. 	 * Valid Email, Commonly used characters only.
    862. 

  862. 	 *
    863. 

  863. 	 * @param   string  Email address
    864. 

  864. 	 * @return  boolean
    865. 

  865. 	 */
    866. 

  866. 	public function valid_email($email)
    867. 

  867. 	{
    868. 

  868. 		if (valid::email($email))
    869. 

  869. 			return TRUE;
    870. 

  870. 

  871. 		$this->add_error('valid_email', $this->current_field);
    872. 

  872. 		return FALSE;
    873. 

  873. 	}
    874. 

  874. 

  875. 	/**
    876. 

  876. 	 * Valid Email, RFC compliant version
    877. 

  877. 	 *
    878. 

  878. 	 * @param   string  Email address
    879. 

  879. 	 * @return  boolean
    880. 

  880. 	 */
    881. 

  881. 	public function valid_email_rfc($email)
    882. 

  882. 	{
    883. 

  883. 		if (valid::email_rfc($email))
    884. 

  884. 			return TRUE;
    885. 

  885. 

  886. 		$this->add_error('valid_email', $this->current_field);
    887. 

  887. 		return FALSE;
    888. 

  888. 	}
    889. 

  889. 

  890. 	/**
    891. 

  891. 	 * Validate IP Address.
    892. 

  892. 	 *
    893. 

  893. 	 * @param   string  IP address
    894. 

  894. 	 * @return  boolean
    895. 

  895. 	 */
    896. 

  896. 	public function valid_ip($ip)
    897. 

  897. 	{
    898. 

  898. 		if (valid::ip($ip))
    899. 

  899. 			return TRUE;
    900. 

  900. 

  901. 		$this->add_error('valid_ip', $this->current_field);
    902. 

  902. 		return FALSE;
    903. 

  903. 	}
    904. 

  904. 

  905. 	/**
    906. 

  906. 	 * Alphabetic characters only.
    907. 

  907. 	 *
    908. 

  908. 	 * @param   string  String to validate
    909. 

  909. 	 * @return  boolean
    910. 

  910. 	 */
    911. 

  911. 	public function alpha($str)
    912. 

  912. 	{
    913. 

  913. 		if (valid::alpha($str))
    914. 

  914. 			return TRUE;
    915. 

  915. 

  916. 		$this->add_error('valid_type', $this->current_field, Kohana::lang('validation.alpha'));
    917. 

  917. 		return FALSE;
    918. 

  918. 	}
    919. 

  919. 

  920. 	/**
    921. 

  921. 	 * Alphabetic characters only (UTF-8 compatible).
    922. 

  922. 	 *
    923. 

  923. 	 * @param   string  String to validate
    924. 

  924. 	 * @return  boolean
    925. 

  925. 	 */
    926. 

  926. 	public function utf8_alpha($str)
    927. 

  927. 	{
    928. 

  928. 		if (valid::alpha($str, TRUE))
    929. 

  929. 			return TRUE;
    930. 

  930. 

  931. 		$this->add_error('valid_type', $this->current_field, Kohana::lang('validation.alpha'));
    932. 

  932. 		return FALSE;
    933. 

  933. 	}
    934. 

  934. 

  935. 	/**
    936. 

  936. 	 * Alphabetic and numeric characters only.
    937. 

  937. 	 *
    938. 

  938. 	 * @param   string  String to validate
    939. 

  939. 	 * @return  boolean
    940. 

  940. 	 */
    941. 

  941. 	public function alpha_numeric($str)
    942. 

  942. 	{
    943. 

  943. 		if (valid::alpha_numeric($str))
    944. 

  944. 			return TRUE;
    945. 

  945. 

  946. 		$this->add_error('valid_type', $this->current_field, Kohana::lang('validation.alpha_numeric'));
    947. 

  947. 		return FALSE;
    948. 

  948. 	}
    949. 

  949. 

  950. 	/**
    951. 

  951. 	 * Alphabetic and numeric characters only (UTF-8 compatible).
    952. 

  952. 	 *
    953. 

  953. 	 * @param   string  String to validate
    954. 

  954. 	 * @return  boolean
    955. 

  955. 	 */
    956. 

  956. 	public function utf8_alpha_numeric($str)
    957. 

  957. 	{
    958. 

  958. 		if (valid::alpha_numeric($str, TRUE))
    959. 

  959. 			return TRUE;
    960. 

  960. 

  961. 		$this->add_error('valid_type', $this->current_field, Kohana::lang('validation.alpha_numeric'));
    962. 

  962. 		return FALSE;
    963. 

  963. 	}
    964. 

  964. 

  965. 	/**
    966. 

  966. 	 * Alpha-numeric with underscores and dashes.
    967. 

  967. 	 *
    968. 

  968. 	 * @param   string  String to validate
    969. 

  969. 	 * @return  boolean
    970. 

  970. 	 */
    971. 

  971. 	public function alpha_dash($str)
    972. 

  972. 	{
    973. 

  973. 		if (valid::alpha_dash($str))
    974. 

  974. 			return TRUE;
    975. 

  975. 

  976. 		$this->add_error('valid_type', $this->current_field, Kohana::lang('validation.alpha_dash'));
    977. 

  977. 		return FALSE;
    978. 

  978. 	}
    979. 

  979. 

  980. 	/**
    981. 

  981. 	 * Alpha-numeric with underscores and dashes (UTF-8 compatible).
    982. 

  982. 	 *
    983. 

  983. 	 * @param   string  String to validate
    984. 

  984. 	 * @return  boolean
    985. 

  985. 	 */
    986. 

  986. 	public function utf8_alpha_dash($str)
    987. 

  987. 	{
    988. 

  988. 		if (valid::alpha_dash($str, TRUE))
    989. 

  989. 			return TRUE;
    990. 

  990. 

  991. 		$this->add_error('valid_type', $this->current_field, Kohana::lang('validation.alpha_dash'));
    992. 

  992. 		return FALSE;
    993. 

  993. 	}
    994. 

  994. 

  995. 	/**
    996. 

  996. 	 * Digits 0-9, no dots or dashes.
    997. 

  997. 	 *
    998. 

  998. 	 * @param   string  String to validate
    999. 

  999. 	 * @return  boolean
    1000. 

  1000. 	 */
    1001. 

  1001. 	public function digit($str)
    1002. 

  1002. 	{
    1003. 

  1003. 		if (valid::digit($str))
    1004. 

  1004. 			return TRUE;
    1005. 

  1005. 

  1006. 		$this->add_error('valid_type', $this->current_field, Kohana::lang('validation.digit'));
    1007. 

  1007. 		return FALSE;
    1008. 

  1008. 	}
    1009. 

  1009. 

  1010. 	/**
    1011. 

  1011. 	 * Digits 0-9, no dots or dashes (UTF-8 compatible).
    1012. 

  1012. 	 *
    1013. 

  1013. 	 * @param   string  String to validate
    1014. 

  1014. 	 * @return  boolean
    1015. 

  1015. 	 */
    1016. 

  1016. 	public function utf8_digit($str)
    1017. 

  1017. 	{
    1018. 

  1018. 		if (valid::digit($str, TRUE))
    1019. 

  1019. 			return TRUE;
    1020. 

  1020. 

  1021. 		$this->add_error('valid_type', $this->current_field, Kohana::lang('validation.digit'));
    1022. 

  1022. 		return FALSE;
    1023. 

  1023. 	}
    1024. 

  1024. 

  1025. 	/**
    1026. 

  1026. 	 * Digits 0-9 (negative and decimal numbers allowed).
    1027. 

  1027. 	 *
    1028. 

  1028. 	 * @param   string  String to validate
    1029. 

  1029. 	 * @return  boolean
    1030. 

  1030. 	 */
    1031. 

  1031. 	public function numeric($str)
    1032. 

  1032. 	{
    1033. 

  1033. 		if (valid::numeric($str))
    1034. 

  1034. 		    return TRUE;
    1035. 

  1035. 

  1036. 		$this->add_error('valid_type', $this->current_field, Kohana::lang('validation.numeric'));
    1037. 

  1037. 		return FALSE;
    1038. 

  1038. 	}
    1039. 

  1039. 

  1040. 	/**
    1041. 

  1041. 	 * Test that a field is between a range.
    1042. 

  1042. 	 *
    1043. 

  1043. 	 * @param   integer  Number to validate
    1044. 

  1044. 	 * @param   array    Renges
    1045. 

  1045. 	 * @return  boolean
    1046. 

  1046. 	 */
    1047. 

  1047. 	public function range($num, $ranges)
    1048. 

  1048. 	{
    1049. 

  1049. 		if (is_array($ranges) AND ! empty($ranges))
    1050. 

  1050. 		{
    1051. 

  1051. 			// Number is always an integer
    1052. 

  1052. 			$num = (float) $num;
    1053. 

  1053. 

  1054. 			foreach($ranges as $range)
    1055. 

  1055. 			{
    1056. 

  1056. 				list($low, $high) = explode(':', $range, 2);
    1057. 

  1057. 

  1058. 				if ($low == 'FALSE' AND $num <= (float) $high)
    1059. 

  1059. 					return TRUE;
    1060. 

  1060. 

  1061. 				if ($high == 'FALSE' AND $num >= (float) $low)
    1062. 

  1062. 					return TRUE;
    1063. 

  1063. 

  1064. 				if ($num >= (float) $low AND $num <= (float) $high)
    1065. 

  1065. 					return TRUE;
    1066. 

  1066. 			}
    1067. 

  1067. 		}
    1068. 

  1068. 

  1069. 		$this->add_error('range', $this->current_field);
    1070. 

  1070. 		return FALSE;
    1071. 

  1071. 	}
    1072. 

  1072. 

  1073. 	/**
    1074. 

  1074. 	 * Check dependency between fields.
    1075. 

  1075. 	 * 
    1076. 

  1076. 	 * @param   string  First field
    1077. 

  1077. 	 * @param   string  Field which the first field is depend on it
    1078. 

  1078. 	 * @return  boolean
    1079. 

  1079. 	 */
    1080. 

  1080. 	public function depends_on($field, $depends_on)
    1081. 

  1081. 	{
    1082. 

  1082. 		$depends_on = trim(current($depends_on));
    1083. 

  1083. 

  1084. 		if ($depends_on != NULL AND isset($this->data[$field]) AND isset($this->data[$depends_on]))
    1085. 

  1085. 		{
    1086. 

  1086. 			return TRUE;
    1087. 

  1087. 		}
    1088. 

  1088. 

  1089. 		$depends_on = isset($this->fields[$depends_on]) ? $this->fields[$depends_on] : $depends_on;
    1090. 

  1090. 

  1091. 		$this->add_error('depends_on', $field, $depends_on);
    1092. 

  1092. 		return FALSE;
    1093. 

  1093. 	}
    1094. 

  1094. 

  1095. 	/**
    1096. 

  1096. 	 * Test a field against a regex rule
    1097. 

  1097. 	 *
    1098. 

  1098. 	 * @param   string  String to test
    1099. 

  1099. 	 * @param   string  Regular expression to run
    1100. 

  1100. 	 * @return  boolean
    1101. 

  1101. 	 */
    1102. 

  1102. 	public function regex($str, $regex)
    1103. 

  1103. 	{
    1104. 

  1104. 		if ( ! empty($regex))
    1105. 

  1105. 		{
    1106. 

  1106. 			// Only one regex validation per field
    1107. 

  1107. 			$regex = current($regex);
    1108. 

  1108. 

  1109. 			if (preg_match($regex, $str))
    1110. 

  1110. 			{
    1111. 

  1111. 				// Regex matches, return
    1112. 

  1112. 				return TRUE;
    1113. 

  1113. 			}
    1114. 

  1114. 		}
    1115. 

  1115. 

  1116. 		$this->add_error('regex', $this->current_field);
    1117. 

  1117. 		return FALSE;
    1118. 

  1118. 	}
    1119. 

  1119. 

  1120. 	/**
    1121. 

  1121. 	 * This function allows HTML to be safely shown in a form.
    1122. 

  1122. 	 * Special characters are converted.
    1123. 

  1123. 	 *
    1124. 

  1124. 	 * @param   string  HTML
    1125. 

  1125. 	 * @return  string  Prepped HTML
    1126. 

  1126. 	 */
    1127. 

  1127. 	public function prep_for_form($str = '')
    1128. 

  1128. 	{
    1129. 

  1129. 		if ($this->form_safe == FALSE OR $str == '')
    1130. 

  1130. 			return $str;
    1131. 

  1131. 

  1132. 		return html::specialchars($str);
    1133. 

  1133. 	}
    1134. 

  1134. 

  1135. 	/**
    1136. 

  1136. 	 * @param   string  URL
    1137. 

  1137. 	 * @return  void
    1138. 

  1138. 	 */
    1139. 

  1139. 	public function prep_url($str = '')
    1140. 

  1140. 	{
    1141. 

  1141. 		if ($str == 'http://' OR $str == '')
    1142. 

  1142. 		{
    1143. 

  1143. 			$this->data[$this->current_field] = '';
    1144. 

  1144. 			return;
    1145. 

  1145. 		}
    1146. 

  1146. 

  1147. 		if (substr($str, 0, 7) != 'http://' AND substr($str, 0, 8) != 'https://')
    1148. 

  1148. 		{
    1149. 

  1149. 			$str = 'http://'.$str;
    1150. 

  1150. 		}
    1151. 

  1151. 

  1152. 		$this->data[$this->current_field] = $str;
    1153. 

  1153. 	}
    1154. 

  1154. 

  1155. 	/**
    1156. 

  1156. 	 * Strip image tags from string.
    1157. 

  1157. 	 *
    1158. 

  1158. 	 * @param   string  HTML
    1159. 

  1159. 	 * @return  void
    1160. 

  1160. 	 */
    1161. 

  1161. 	public function strip_image_tags($str)
    1162. 

  1162. 	{
    1163. 

  1163. 		$this->data[$this->current_field] = security::strip_image_tags($str);
    1164. 

  1164. 	}
    1165. 

  1165. 

  1166. 	/**
    1167. 

  1167. 	 * XSS clean string.
    1168. 

  1168. 	 *
    1169. 

  1169. 	 * @param   string  String to be clean
    1170. 

  1170. 	 * @return  void
    1171. 

  1171. 	 */
    1172. 

  1172. 	public function xss_clean($str)
    1173. 

  1173. 	{
    1174. 

  1174. 		$this->data[$this->current_field] = Kohana::instance()->input->xss_clean($str);
    1175. 

  1175. 	}
    1176. 

  1176. 

  1177. 	/**
    1178. 

  1178. 	 * Convert PHP tags to entities.
    1179. 

  1179. 	 *
    1180. 

  1180. 	 * @param   string
    1181. 

  1181. 	 * @return  void
    1182. 

  1182. 	 */
    1183. 

  1183. 	public function encode_php_tags($str)
    1184. 

  1184. 	{
    1185. 

  1185. 		$this->data[$this->current_field] = security::encode_php_tags($str);
    1186. 

  1186. 	}
    1187. 

  1187. 

  1188. } // End Validation Class
    1189. 

  1189.