PageRenderTime 38ms CodeModel.GetById 0ms RepoModel.GetById 0ms app.codeStats 0ms

PHP | 411 lines | 400 code | 0 blank | 11 comment | 133 complexity | c9f82794a4f31079579ffca172213726 MD5 | raw file
  1. <?php
  2. /**************************************************************************/
  3. /* Quicky: smart and fast templates
  4. /* ver.
  5. /*
  6. /* ===========================
  7. /*
  8. /* Quicky_BBCode.class.php: BB-code class
  9. /**************************************************************************/
  10. class Quicky_BBcode
  11. {
  12. public $smiles = array(
  13. 'acute',
  14. 'angry',
  15. 'big_boss',
  16. 'glare',
  17. 'good',
  18. 'happy',
  19. 'hi',
  20. 'huh',
  21. 'lol',
  22. 'not_i',
  23. 'ohmy',
  24. 'read',
  25. 'smile',
  26. 'smile3',
  27. 'taunt',
  28. 'to_keep_order',
  29. 'wink',
  30. 'yahoo',
  31. 'yes',
  32. 'rose'/*,
  33. 'banned',
  34. 'tema',
  35. 'offtopic',
  36. 'funny_post'*/,
  37. );
  38. public $source;
  39. public $blocks = array();
  40. public $tags = array();
  41. public $left_delimiter = '[';
  42. public $right_delimiter = ']';
  43. public $errors = array();
  44. public $allow_html_tags = FALSE;
  45. public $smiles_dir;
  46. public $smiles_url;
  47. private $_builtin_blocks = '[gm]|email|link|url|code|php|list|plain|literal';
  48. public $cast_unrecognized_tags = FALSE;
  49. public $stat = array();
  50. public $use_stat = TRUE;
  51. public $block_stacks = array();
  52. public $block_stack_n = 0;
  53. public $autourl = TRUE;
  54. public $allow_smiles = TRUE;
  55. public function __construct() {}
  56. public function load($string)
  57. {
  58. $this->source = $string;
  59. }
  60. public function safe_uri($uri)
  61. {
  62. $uri = trim($uri);
  63. if (preg_match('~^(?:java|vb)script:~i',preg_replace('~\s+~','',$uri))) {return FALSE;}
  64. return TRUE;
  65. }
  66. private function _error($msg)
  67. {
  68. $this->errors[] = $msg;
  69. return FALSE;
  70. }
  71. public function register_block($name,$callback) {$this->blocks[strtolower($name)] = $callback;}
  72. public function register_tag($name,$callback) {$this->tags[strtolower($name)] = $callback;}
  73. private function _parse_params($p)
  74. {
  75. $params = array();
  76. preg_match_all('~\w+\s*=|(([\'"]).*?(?<!\\\\)\2|\S+)~s',$p,$m,PREG_SET_ORDER);
  77. $lastkey = '';
  78. foreach ($m as $v)
  79. {
  80. if (trim($v[0]) === '') {continue;}
  81. if (sizeof($v) == 1) {$lastkey = ltrim(rtrim($v[0]," =\t")); continue;}
  82. if ($lastkey === '') {$params[] = $v[0];}
  83. else {$params[$lastkey] = $v[0];}
  84. $lastkey = '';
  85. }
  86. if ($this->use_stat) {$this->stat['numparams'] += sizeof($params);}
  87. return $params;
  88. }
  89. private function _dequote($string)
  90. {
  91. if ((substr($string,0,1) == '"' and substr($string,-1) == '"')
  92. or (substr($string,0,1) == '\'' and substr($string,-1) == '\''))
  93. {return substr($string,1,-1);}
  94. return $string;
  95. }
  96. private function _tag_token($mixed)
  97. {
  98. if (is_array($mixed))
  99. {
  100. if (sizeof($mixed) == 1)
  101. {
  102. if ($mixed[0] == "\n") {return '<br />'."\n";}
  103. elseif ($mixed[0] == "\r") {return '';}
  104. return $this->allow_html_tags?$mixed[0]:htmlspecialchars($mixed[0]);
  105. }
  106. if (isset($mixed[7]) and $mixed[7] !== '')
  107. {
  108. if (!$this->allow_smiles) {return $mixed[0];}
  109. $smile = substr($mixed[7],1,-1);
  110. if (file_exists($this->smiles_dir.$smile.'.gif')) {return '<img src="'.htmlspecialchars($this->smiles_url.$smile).'.gif">';}
  111. else {return $mixed[0];}
  112. }
  113. if ($mixed[1] !== '')
  114. {
  115. if ($this->use_stat)
  116. {
  117. ++$this->stat['numblocks'];
  118. if (substr($mixed[2],0,1) == '=') {++$this->stat['numparams'];}
  119. }
  120. $block_type = strtolower($mixed[1]);
  121. $block_content = $mixed[4];
  122. if ($block_type == 'img')
  123. {
  124. if (!$this->safe_uri($block_content)) {return $this->_error('Unsafe uri "'.$block_content.'" in tag '.$block_type);}
  125. return '<img src="'.htmlspecialchars($block_content,ENT_QUOTES).'" />';
  126. }
  127. elseif ($block_type == 'link' or $block_type == 'url')
  128. {
  129. if (substr($mixed[2],0,1) == '=') {$url = substr($mixed[2],1);}
  130. else
  131. {
  132. $block_params = $this->_parse_params($mixed[2]);
  133. $url = isset($block_params['src'])?$block_params['src']:'';
  134. }
  135. $url = $this->_dequote($url);
  136. if ($url === '') {$url = $block_content;}
  137. if (!$this->safe_uri($url)) {return $this->_error('Unsafe uri "'.$url.'" in tag '.$block_type);}
  138. return '<a href="'.htmlspecialchars($url).'">'.$this->_tag_token($block_content).'</a>';
  139. }
  140. elseif ($block_type == 'php')
  141. {
  142. $s = trim($block_content,"\r\n");
  143. if (!preg_match('~<\?php~i',$s)) {$s = str_replace("\r",'','<?php'."\n".$s.' ?>');}
  144. else {$s = str_replace("\r",'','<?php'."\n".$s.' ?>');}
  145. $s = @highlight_string($s,TRUE);
  146. $s = substr_replace($s,'',strpos($s,'&lt;?php'),8);
  147. $s = substr_replace($s,'',strrpos($s,'?&gt;'),5);
  148. $from = 0;
  149. $x = 0;
  150. while ($i = strpos($s,'<br />',$from))
  151. {
  152. $s = substr($s,0,$x == 0?$i:$i+6)."\n".
  153. '<font style="color:#000000;background-color:#eeeeee;">&nbsp;'.sprintf('%03d',$x+1).
  154. '&nbsp;</font>&nbsp;'.substr($s,$i+6);
  155. $from = $i+5;
  156. $x++;
  157. }
  158. return '<div style="background-color:#cccccc">'.$s.'</div>';
  159. }
  160. elseif ($block_type == 'code')
  161. {
  162. $s = trim($block_content);
  163. $r = '';
  164. $x = 0;
  165. $e = explode("\n",$s);
  166. for ($i = 0, $s = sizeof($e); $i < $s; ++$i)
  167. {
  168. $line = $e[$i];
  169. if ($x != 0 or strlen(trim(str_replace('<br />','',$line))) > 0)
  170. {
  171. $r .= '<font style="color:#000000;background-color:#eeeeee;">&nbsp;'.sprintf('%03d',$x+1).
  172. '&nbsp;</font>&nbsp;'.$line."\n";
  173. $x++;
  174. }
  175. }
  176. return '<div style="background-color:#cccccc">'.$r.'</div>';
  177. }
  178. elseif (in_array($block_type,array('b','i','u','s','p'))) {return '<'.$block_type.'>'.$this->_tag_token($block_content).'</'.$block_type.'>';}
  179. elseif ($block_type == 'email')
  180. {
  181. if (substr($mixed[2],0,1) == '=') {$email = substr($mixed[2],1);}
  182. else
  183. {
  184. $block_params = $this->_parse_params($mixed[2]);
  185. $email = isset($block_params['address'])?$this->_dequote($block_params['address']):'';
  186. }
  187. if ($email === '') {$email = $block_content;}
  188. return '<a href="mailto:'.htmlspecialchars($email).'" />'.$this->_tag_token($block_content).'</a>';
  189. }
  190. elseif ($block_type == 'm') {return '<a href="'.urlencode($block_content).'">'.htmlspecialchars($block_content).'</a>';}
  191. elseif ($block_type == 'g') {return '<a href="'.urlencode($block_content).'">'.htmlspecialchars($block_content).'</a>';}
  192. elseif ($block_type == 'list')
  193. {
  194. if (substr($mixed[2],0,1) == '=') {$flag = substr($mixed[2],1);}
  195. else {$flag = '0';}
  196. return '<table border=0 width=100%><tr><td width=50></td><td width="95%">'
  197. .($flag == '0'?'<ol>':'<ul>')
  198. .$this->_tag_token($block_content)
  199. .($flag == '0'?'</ol>':'</ul>').'</td></tr></table>';
  200. }
  201. elseif ($block_type == 'plain' or $block_type == 'literal') {return htmlspecialchars($block_content);}
  202. elseif (isset($this->blocks[$block_type])) {return call_user_func($this->blocks[$block_type],$mixed[2],$block_content,$this);}
  203. else {return $this->cast_unrecognized_tags?$mixed[0]:$this->_error('Unrecognized block-type: \''.$block_type.'\'');}
  204. }
  205. elseif (isset($mixed[5]) && $mixed[5] !== '')
  206. {
  207. static $c_offsets = array();
  208. if (!isset($c_offsets[$this->block_stack_n])) {$c_offsets[$this->block_stack_n] = 0;}
  209. preg_match('~^\s*(/?)([^\s=]*)(.*?)$~s',$mixed[5],$m);
  210. if (!isset($m[0])) {$m[0] = '';}
  211. if (!isset($m[1])) {$m[1] = '';}
  212. if (!isset($m[2])) {$m[2] = '';}
  213. if (!isset($m[3])) {$m[3] = '';}
  214. $close = $m[1];
  215. $tag = strtolower($m[2]);
  216. $param = $m[3];
  217. if ($this->use_stat) {++$this->stat['numtags'];}
  218. $bs = &$this->block_stacks[$this->block_stack_n];
  219. if ($close and ($tag == ''))
  220. {
  221. $el = array_slice($bs,-$c_offsets[$this->block_stack_n],1);
  222. $tag = current($el);
  223. ++$c_offsets[$this->block_stack_n];
  224. if ($tag === FALSE or $tag[1]) {return '';}
  225. $tag = $tag[0];
  226. $bs[key($el)][1] = TRUE;
  227. }
  228. elseif ($close)
  229. {
  230. $found = FALSE;
  231. for ($i = sizeof($bs)-1; $i >= 0; --$i)
  232. {
  233. if ((!$bs[$i][1]) and ($bs[$i][0] == $tag))
  234. {
  235. $bs[$i][1] = TRUE;
  236. $found = TRUE; break;
  237. }
  238. }
  239. if (!$found) {return '';}
  240. }
  241. $return = $this->_exec_tag($close,$tag,$param);
  242. if (!$close and !in_array($tag,array('hr')) and ($return !== FALSE)) {$bs[] = array($tag,FALSE); $c_offsets[$this->block_stack_n] = 0;}
  243. return $return;
  244. }
  245. return;
  246. }
  247. ++$this->block_stack_n;
  248. if (!isset($this->block_stacks[$this->block_stack_n])) {$this->block_stacks[$this->block_stack_n] = array();}
  249. $bs = &$this->block_stacks[$this->block_stack_n];
  250. static $regexp;
  251. if ($regexp === NULL)
  252. {
  253. $ldelim = preg_quote($this->left_delimiter,'~');
  254. $rdelim = preg_quote($this->right_delimiter,'~');
  255. $blocks = array($this->_builtin_blocks);
  256. for ($i = 0,$s = sizeof($this->blocks),$v = array_keys($this->blocks); $i < $s; ++$i) {$blocks[] = preg_quote($v[$i],'~');}
  257. $regexp = '~'
  258. .$ldelim.'\s*('.implode('|',$blocks).')([\s=](?:[^'.$rdelim.'\'"]*([\'"]).*?(?<!\\\\)\3)*.*?)?'.$rdelim.'((?:(?R)|.)*?)'.$ldelim.'/\s*\1?\s*'.$rdelim
  259. .'|'.$ldelim.'(\\??(?:[^'.$rdelim.'\'"]*([\'"]).*?(?<!\\\\)\5)*.*?)'.$rdelim
  260. .'|(:\w+:)|[<>&\n\'"]'
  261. .'~si';
  262. }
  263. if ((strpos($mixed,$this->left_delimiter) !== FALSE) or (strpos($mixed,':') !== FALSE))
  264. {
  265. $return = preg_replace_callback($regexp,array($this,'_tag_token'),$mixed);
  266. for ($i = sizeof($bs)-1; $i >= 0; --$i) {if (!$bs[$i][1]) {$return .= $this->_exec_tag('/',$bs[$i][0]);}}
  267. return $return;
  268. }
  269. --$this->block_stack_n;
  270. return $mixed;
  271. }
  272. public function _exec_tag($close,$tag,$param = '')
  273. {
  274. $bs = &$this->block_stacks[$this->block_stack_n];
  275. if ($tag == 'li' or $tag == '*') {$return = $close?'':'<li>';}
  276. elseif (in_array($tag,array('b','i','u','s','p'))) {$return = '<'.$close.$tag.'>';}
  277. elseif ($tag == 'quote')
  278. {
  279. if ($close) {return '</td></tr><tr><td><hr size=1 nowhade></td></tr></table>';}
  280. if (substr($param,0,1) == '=') {$author = substr($param,1);}
  281. else {$author = '';}
  282. return '<table border=0 width=100%><tr><td width="10" rowspan=3>&nbsp;</td><td width=90%><hr size=1 noshade></td></tr><tr><td>'
  283. .($author != ''?'<i>Original by: '.htmlspecialchars($author).'</i><br />':'');
  284. }
  285. elseif ($tag == 'size')
  286. {
  287. if ($close) {return '</font>';}
  288. if (substr($param,0,1) == '=') {$size = substr($param,1);}
  289. else {$size = '10';}
  290. return '<font size="'.htmlspecialchars($this->_dequote($size)).'">';
  291. }
  292. elseif ($tag == 'color')
  293. {
  294. if (substr($param,0,1) == '=') {$color = substr($param,1);}
  295. else {$color = 'black';}
  296. if ($close) {return '</font>';}
  297. return '<font color="'.htmlspecialchars($this->_dequote($color)).'">';
  298. }
  299. elseif ($tag == 'sub')
  300. {
  301. if ($close) {return '</'.$tag.'>';}
  302. return '<'.$tag.'>';
  303. }
  304. elseif ($tag == 'hr')
  305. {
  306. return '<'.$tag.' />';
  307. }
  308. elseif ($tag == 'font')
  309. {
  310. if (substr($param,0,1) == '=') {$face = substr($param,1);}
  311. else {$face = 'Verdana';}
  312. if ($close) {return '</font>';}
  313. return '<font face="'.htmlspecialchars($this->_dequote($face)).'">';
  314. }
  315. elseif ($tag == 'table')
  316. {
  317. if ($close) {return '</table>';}
  318. return '<table border="1">';
  319. }
  320. elseif ($tag == 'row')
  321. {
  322. $found = FALSE;
  323. for ($i = sizeof($bs)-1; $i >= 0; --$i)
  324. {
  325. if ((!$bs[$i][1]) and ($bs[$i][0] == 'table'))
  326. {
  327. $found = TRUE; break;
  328. }
  329. }
  330. if (!$found) {$this->_error('Unexpected tag-type: \''.$tag.'\''); return FALSE;}
  331. if ($close) {return '</tr>';}
  332. return '<tr>';
  333. }
  334. elseif ($tag == 'col')
  335. {
  336. $found = FALSE;
  337. for ($i = sizeof($bs)-1; $i >= 0; --$i)
  338. {
  339. if ((!$bs[$i][1]) and ($bs[$i][0] == 'table'))
  340. {
  341. $found = TRUE; break;
  342. }
  343. }
  344. if (!$found) {return '';}
  345. if ($close) {return '</td>';}
  346. $p = $this->_parse_params($param);
  347. $s = '';
  348. static $col_params = array('width','height');
  349. foreach ($p as $k => $v)
  350. {
  351. if (in_array(strtolower($k),$col_params)) {$s .= ' '.$k.'="'.htmlspecialchars($this->_dequote($v)).'"';}
  352. }
  353. return '<td'.$s.'>';
  354. }
  355. elseif (isset($this->tags[$tag])) {$return = call_user_func($this->tags[$tag],$param,$close);}
  356. else {return $this->cast_unrecognized_tags?NULL:$this->_error('Unrecognized tag-type: \''.$tag.'\' ('.$close.')');}
  357. return $return;
  358. }
  359. public function build()
  360. {
  361. $this->source = &$this->text;
  362. return $this->result = $this->getHTML();
  363. }
  364. public function prepareblock_callback($m)
  365. {
  366. if (empty($m[1])) {return $m[0];}
  367. if (isset($m[7])) {return '[URL="'.$m[7].'"]'.$m[7].'[/URL]';}
  368. $blockname = $m[1];
  369. if ($blockname == 'url' or $blockname == 'php' or $blockname == 'code') {return $m[0];}
  370. else {return '['.$m[1].$m[2].']'.$this->prepareblock($m[4]).$m[5];}
  371. }
  372. public function prepareblock($source)
  373. {
  374. static $regexp = NULL;
  375. if ($regexp === NULL)
  376. {
  377. $ldelim = preg_quote($this->left_delimiter,'~');
  378. $rdelim = preg_quote($this->right_delimiter,'~');
  379. $blocks = array($this->_builtin_blocks);
  380. for ($i = 0,$s = sizeof($this->blocks),$v = array_keys($this->blocks); $i < $s; ++$i) {$blocks[] = preg_quote($v[$i],'~');}
  381. $regexp = '~'
  382. .$ldelim.'\s*('.implode('|',$blocks).')([\s=](?:[^'.$rdelim.'\'"]*([\'"]).*?(?<!\\\\)\3)*.*?)?'.$rdelim.'((?:(?R)|.)*?)('.$ldelim.'/\s*\1?\s*'.$rdelim.')'
  383. .'|'.$ldelim.'(\\??(?:[^'.$rdelim.'\'"]*([\'"]).*?(?<!\\\\)\6)*.*?)'.$rdelim.'\r?\n?'
  384. .'|([a-z\d]+://[^\s\]]+)'
  385. .'~si';
  386. }
  387. return preg_replace_callback($regexp,array($this,'prepareblock_callback'),$source);
  388. }
  389. public function getHTML()
  390. {
  391. $this->block_stacks = array();
  392. $this->errors = array();
  393. $this->block_stack_n = 0;
  394. $source = $this->source;
  395. $this->stat = array();
  396. if ($this->use_stat)
  397. {
  398. $this->stat = array(
  399. 'numblocks' => 0,
  400. 'numtags' => 0,
  401. 'numparams' => 0
  402. );
  403. }
  404. if ($this->autourl)
  405. {
  406. $source = $this->source = $this->prepareblock($source);
  407. }
  408. $source = $this->_tag_token($source);
  409. return $source;
  410. }
  411. }