admin_libs.php | searchcode

/ww.admin/admin_libs.php

http://kv-webme.googlecode.com/
PHP | 654 lines | 516 code | 18 blank | 120 comment | 35 complexity | 2537544a8a98572a54e436212971bccb MD5 | raw file
Possible License(s): LGPL-3.0, GPL-2.0, BSD-3-Clause, BSD-2-Clause, Apache-2.0, MIT, LGPL-2.1

<?php
/**
	* admin libs
	*
	* PHP version 5.2
	*
	* @category None
	* @package  None
	* @author   Kae Verens <kae@kvsites.ie>
	* @license  GPL 2.0
	* @link     http://kvsites.ie/
	*/

$scripts=array();
$scripts_inline=array();
// { built-in page types
$pagetypes=array(
	array(0, 'normal'),
	array(1, 'redirect'),
	array(9, 'table of contents'),
	array(5, 'search results'),
	array(4, 'page summaries')
);
// }

// { function Core_adminSideMenu

/**
  * generate HTML for a menu
  *
  * @param array  $list the list of pages to link to
  * @param string $this the current page
  *
  * @return null
  */
function Core_adminSideMenu($list, $this='') {
	$arr=array();
	foreach ($list as $key=>$val) {
		if ($val==$this) {
			$arr[]='<a href="'.$val.'" class="thispage">'.__($key, 'menu').'</a>';
		}
		else {
			$arr[]='<a href="'.$val.'">'.__($key, 'menu').'</a>';
		}
	}
	return '<div class="sub-nav">'.join('', $arr).'</div>';
}

// }
// { Core_fixImageResizes

/**
  * check images to see if they are really as large as the HTML says
  *
  * @param string $src the HTML source to check
  *
  * @return string the "fixed" source
  */
function Core_fixImageResizes($src) {
	// checks for image resizes done with HTML parameters or inline CSS
	//   and redirects those images to pre-resized versions held elsewhere
	preg_match_all('/<img [^>]*>/im', $src, $matches);
	if (!count($matches)) {
		return $src;
	}
	foreach ($matches[0] as $match) {
		$width=0;
		$height=0;
		if (preg_match('#width="[0-9]*"#i', $match)
			&& preg_match('/height="[0-9]*"/i', $match)
		) {
			$width=preg_replace('#.*width="([0-9]*)".*#i', '\1', $match);
			$height=preg_replace('#.*height="([0-9]*)".*#i', '\1', $match);
		}
		else if (preg_match('/style="[^"]*width: *[0-9]*px/i', $match)
			&& preg_match('/style="[^"]*height: *[0-9]*px/i', $match)
		) {
			$width= preg_replace(
				'#.*style="([^"]*[^-]width|width): *([0-9]*)px.*#i',
				'\2',
				$match
			);
			$height=preg_replace(
				'#.*style="([^"]*[^-]height|height): *([0-9]*)px.*#i',
				'\2',
				$match
			);
		}
		if (!$width || !$height) {
			continue;
		}
		$imgsrc=preg_replace('#.*src="([^"]*)".*#i', '\1', $match);
		$dir=str_replace('/', '@_@', $imgsrc);
		// get absolute address of img (naive, but will work for most cases)
		if (!preg_match('/^http/i', $imgsrc)) {
			$imgsrc=USERBASE.'/'.$imgsrc;
		}
		if (!file_exists($imgsrc)) {
			continue;
		}
		list($x, $y)=getimagesize($imgsrc);
		if (!$x || !$y || ($x==$width && $y==$height)) {
			continue;
		}
		// create address of resized image and update HTML
		$ext=strtolower(preg_replace('/.*\./', '', $imgsrc));
		$newURL=WORKURL_IMAGERESIZES.$dir.'/'.$width.'x'.$height
			.($ext=='png'||$ext=='gif'?'.png':'.jpg');
		$newImgHTML=preg_replace('/(.*src=")[^"]*(".*)/i', "$1$newURL$2", $match);
		$src=str_replace($match, $newImgHTML, $src);
		// create cached image
		$imgdir=WORKDIR_IMAGERESIZES.$dir;
		if (!file_exists(WORKDIR_IMAGERESIZES)) {
			mkdir(WORKDIR_IMAGERESIZES);
		}
		if (!file_exists($imgdir)) {
			mkdir($imgdir);
		}
		$imgfile=$imgdir.'/'.$width.'x'.$height
			.($ext=='png'||$ext=='gif'?'.png':'.jpg');
		if (file_exists($imgfile)) {
			continue;
		}
		$str='convert "'.addslashes($imgsrc).'" -geometry '.$width.'x'.$height
			.' "'.$imgfile.'"';
		exec($str);
	}
	return $src;
}

// }
// { Core_unfixImageResizes

/**
  * replace any "fixed" images with the original image's src
  *
  * @param string $src the HTML to check
  *
  * @return string "unfixed" HTML
  */
function Core_unfixImageResizes($src) {
	// replace resized images with their originals
	$count=preg_match_all(
		'#/f/.files/image_resizes/(@_@[^"]*)(/[^"]*)"#',
		$src,
		$matches
	);
	if (!$count) {
		return $src;
	}
	foreach ($matches[1] as $key=>$match) {
		$src=str_replace(
			'/f/.files/image_resizes/'.$match.$matches[2][$key],
			str_replace('@_@', '/', $match),
			$src
		);
	}
	return $src;
}

// }
// { WW_getCSS

/**
  * generate a list of external CSS scripts and build a <style> tag
  *
  * @return string the HTML
  */
function WW_getCSS() {
	global $css_urls;
	$url='/css/';
	foreach ($css_urls as $s) {
		$url.='|'.$s;
	}
	$css_urls=array();
	return '<link rel="stylesheet" href="'.htmlspecialchars($url).'" />';
}

// }
// { WW_getScripts

/**
  * generate a list of external JS scripts and build a <script> tag
  *
  * @return string the HTML
  */
function WW_getScripts() {
	global $scripts, $scripts_inline;
	if (!count($scripts)) {
		return '';
	}
	// { set up inline scripts
	// { set up admin vars
	$adminVars=(object)null;
	$rs=dbAll(
		'select * from admin_vars where admin_id='.((int)$_SESSION['userdata']['id'])
	);
	if ($rs) {
		foreach ($rs as $r) {
			$adminVars->{$r['varname']}=$r['varvalue'];
		}
	}
	$scripts_inline[]='this.adminVars='.json_encode(
		$adminVars
	);
	// }
	// { list plugins
	$scripts_inline[]='this.webmePlugins='.json_encode(array_keys($GLOBALS['PLUGINS']));
	// }
	$scripts_inline[]='userdata={wasAdmin:1}'; // for translations
	$inline='<script>'.join(';', $scripts_inline).';</script>';
	// }
	// { set up external scripts
	$external=array();
	$local=array();
	$latest=0;
	foreach ($scripts as $script) {
		if (strpos($script, '//')!==false) {
			$external[]=$script;
		}
		else {
			if (strpos($script, '/')===false) {
				$script='/ww.plugins/'.$script.'/js.js';
			}
			elseif ($script{0}!='/') { // {
				$script='/ww.plugins/'.$script;
			}
			$local[]=$script;
			if (filemtime($_SERVER['DOCUMENT_ROOT'].$script)>$latest) {
				$latest=filemtime($_SERVER['DOCUMENT_ROOT'].$script);
			}
		}
	}
	$md5=md5(join('|', $local).'|'.$latest);
	if (!file_exists(USERBASE.'/ww.cache/admin/'.$md5)) {
		@mkdir(USERBASE.'/ww.cache/admin');
		foreach ($local as $file) {
			file_put_contents(
				USERBASE.'/ww.cache/admin/'.$md5,
				file_get_contents($_SERVER['DOCUMENT_ROOT'].$file).';',
				FILE_APPEND
			);
		}
	}
	$external=count($external)
		?'<script src="'
		.join('"></script><script src="', $external).'"></script>'
		:'';
	// }
	return $external
		.'<script src="/ww.admin/js.php/'.$md5.'"></script>'
		.$inline;
}

// }
// { ckeditor

/**
  * output an RTE's HTML
  *
  * @param string $name         name of the textarea to replace
  * @param string $value        prefill the textarea with this value
  * @param int    $height       the height of the RTE to show
	* @param int    $translatable is this editor a multi-lingual one
  *
  * @return string the HTML of the RTE
  */
function ckeditor($name, $value='', $height=250, $translatable=0) {
	if (!$translatable) {
		return '<textarea style="width:100%;height:'.$height.'px" name="'
			.addslashes($name).'">'.htmlspecialchars($value).'</textarea>'
			."<script>//<![CDATA[\n"
			.'$(function(){window.ckeditor_'.preg_replace('/[^a-zA-Z_]/', '', $name)
			.'=CKEDITOR.replace("'
			.str_replace(array('[',']'), array('\[','\]'), addslashes($name))
			.'",CKEditor_config);});'
			."//]]></script>";
	}
	global $langs, $tabindex;
	if (count($langs)<2) {
		$lang=$langs[0];
		$v2=__FromJson($value, true, $lang['code']);
		return '<textarea style="width:100%;height:'.$height.'px" name="'
			.addslashes($name).'['.$lang['code'].']">'
			.htmlspecialchars($v2).'</textarea>'
			."<script>//<![CDATA[\n".'$(function(){window.ckeditor_'
			.preg_replace('/[^a-zA-Z_]/', '', $name.'_'.$lang['code'])
			.'=CKEDITOR.replace("'
			.str_replace(
				array('[',']'),
				array('\[','\]'),
				addslashes($name.'['.$lang['code'].']')
			)
			.'",CKEditor_config);});'
			."//]]></script>";
	}
	if (!$tabindex) {
		$tabindex=time();
	}
	$html='<div class="tabs mini-tabs"><ul>';
	foreach ($langs as $lang) {
		$html.='<li><a href="#tab-'.$tabindex.'-'.$lang['code'].'">'
			.$lang['name'].'</a></li>';
	}
	$html.='</ul>';
	foreach ($langs as $lang) {
		$v2=__FromJson($value, true, $lang['code']);
		$html.='<div id="tab-'.$tabindex.'-'.$lang['code'].'">'
			.'<textarea style="width:100%;height:'.$height.'px" name="'
			.addslashes($name).'['.$lang['code'].']">'.htmlspecialchars($v2).'</textarea>'
			."<script>//<![CDATA[\n"
			.'$(function(){window.ckeditor_'
			.preg_replace('/[^a-zA-Z_]/', '', $name.'_'.$lang['code'])
			.'=CKEDITOR.replace("'
			.str_replace(
				array('[',']'),
				array('\[','\]'),
				addslashes($name.'['.$lang['code'].']')
			)
			.'",CKEditor_config);});'
			."//]]></script>"
			.'</div>';
	}
	$html.='</div>';
	$tabindex++;
	return $html;
}

// }
// { Core_sanitiseHtmlEssential

/**
  * basically clean up HTML
  *
  * @param string $original_html the original HTML
  *
  * @return string sanitised HTML
  */
function Core_sanitiseHtmlEssential($original_html) {
	$original_html = str_replace("\n", '{{N}}', $original_html);
	$original_html = str_replace("\r", '{{R}}', $original_html);
	do {
		$html = $original_html;
		// { clean old fckeditor stuff
		$html = preg_replace(
			'#<link href="[^"]*editor/css/fck_editorarea.css" rel="stylesheet" ty'
			.'pe="text/css" />#',
			'',
			$html
		);
		$html = preg_replace(
			'#<style _fcktemp="true" type="text/css">[^<]*</style>#',
			'',
			$html
		);
		$html = preg_replace(
			'#<link _fcktemp="true" href="[^"]*editor/editor/css/fck_internal.css'
			.'" rel="stylesheet" type="text/css" />#',
			'',
			$html
		);
		$html = preg_replace('#_fcksavedurl="[^"]*"#', '', $html);
		$html = str_replace('class="FCK__ShowTableBorders"', '', $html);
		// }
		// { clean skype crap from page
		$html = str_replace(
			'<span class="skype_pnh_left_span" skypeaction="skype_dropdown">&nbsp'
			.';&nbsp;</span>',
			'',
			$html
		);
		$html = str_replace(
			'<span class="skype_pnh_dropart_flag_span" skypeaction="skype_dropdow'
			.'n" style="background-position: -1999px 1px ! important;">&nbsp;&nbs'
			.'p;&nbsp;&nbsp;&nbsp;&nbsp;</span>',
			'',
			$html
		);
		$html = str_replace(
			'<span class="skype_pnh_dropart_span" skypeaction="skype_dropdown" '
			.'title="Skype actions">&nbsp;&nbsp;&nbsp;</span>',
			'',
			$html
		);
		$html = str_replace(
			'<span class="skype_pnh_right_span">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'
			.'</span>',
			'',
			$html
		);
		$html = preg_replace(
			'#<span class="skype_pnh_print_container">([^<]*)</span>#',
			'\1',
			$html
		);
		$html = preg_replace(
			'#<span class="skype_pnh_text_span">([^<]*)</span>#',
			'\1',
			$html
		);
		$html = preg_replace(
			'#<span class="skype_pnh_mark">[^<]*</span>#',
			'',
			$html
		);
		$html = preg_replace(
			'#<span class="skype_pnh_textarea_span">([^<]*)</span>#',
			'\1',
			$html
		);
		$html = preg_replace(
			'#<span class="skype_pnh_highlighting_inactive_common" dir="ltr"[^>'
			.']*>([^<]*)</span>#',
			'\1',
			$html
		);
		$html = preg_replace(
			'#<span class="skype_pnh_container"[^>]*>([^<]*)</span>#',
			'\1',
			$html
		);
		$html = preg_replace(
			'#<span class="skype_pnh_text_span">([^<]*)</span>#',
			'\1',
			$html
		);
		$html = preg_replace(
			'#<span class="skype_pnh_print_container">([^<]*)</span>#',
			'\1',
			$html
		);
		// }
		// { remove empty elements and parameters
		$html = preg_replace('#<style[^>]*>\s*</style>#', '', $html);
		$html = preg_replace('#<span>\s*</span>#', '', $html);
		$html = preg_replace('#<meta[^>]*>\s*</meta>#', '', $html);
		$html = str_replace(' alt=""', '', $html);
		// }
		// { clean up Word crap
		$html = preg_replace('#<link [^>]*href="file[^>]*>#', '', $html);
		$html = preg_replace('#<m:[^>]*/>#', '', $html);
		$html = preg_replace('#<m:mathPr>\s*</m:mathPr>#', '', $html);
		$html = preg_replace('#<xml>.*?</xml>#', '', $html);
		$html = preg_replace('#<!--\[if gte mso 10\].*?<!\[endif\]-->#', '', $html);
		$html = preg_replace('#<!--\[if gte mso 9\].*?<!\[endif\]-->#', '', $html);
		$html = preg_replace('#<!--\[if gte vml 1\]>.*?<!\[endif\]-->#', '', $html);
		$html = preg_replace(
			'#<object classid="clsid:38481807-CA0E-42D2-BF39-B33AF135CC4D" id=[^>'
			.']*></object>#',
			'',
			$html
		);
		$html = preg_replace('#<style>\s[a-z0-9]*.:[^<]*</style>#', '', $html);
		$html = preg_replace('#<!--\[if !mso\][^<]*<!\[endif\]-->#', '', $html);
		// }
		if (strpos($html, '{')===0) {
			$html=str_replace('&quot;', '\\"', $html);
		} // }
		else {
			$html=str_replace('&quot;', '"', $html);
		}
		$html=str_replace('&#39;', "'", $html);
		$has_changed=$html!=$original_html;
		$original_html=$html;
	} while ($has_changed);
	$html = str_replace('{{N}}', "\n", $html);
	$html = str_replace('{{R}}', "\r", $html);
	return $html;
}

// }
// { Core_sanitiseHtml

/**
  * thoroughly clean up HTML
  *
  * @param string $original_html the original HTML
  *
  * @return string sanitised HTML
  */
function Core_sanitiseHtml($original_html) {
	$original_html = Core_sanitiseHtmlEssential($original_html);
	$original_html = Core_fixImageResizes($original_html);
	$original_html = str_replace("\n", '{{N}}', $original_html);
	$original_html = str_replace("\r", '{{R}}', $original_html);
	do {
		$html = $original_html;
		// { clean white-space
		$html = str_replace(
			'{{R}}{{N}}',
			"{{N}}",
			$html
		);
		$html = str_replace('>{{N}}', '>', $html);
		$html = str_replace(
			'{{N}}{{N}}',
			'{{N}}',
			$html
		);
		$html = preg_replace("/<p>\s*/", '<p>', $html);
		$html = preg_replace("#\s*<br( ?/)?>\s*#", '<br />', $html);
		$html = preg_replace("#\s*<li>\s*#", '<li>', $html);
		$html = str_replace(">\t", '>', $html);
		$html = preg_replace('#<p([^>]*)>\s*\&nbsp;\s*</p>#', '<p\1></p>', $html);
		// }
		// { remove empty elements and parameters
		$html = preg_replace('/<!--[^>]*-->/', '', $html);
		// }
		// { combine nested elements
		$html = preg_replace(
			'#<span style="([^"]*?);?">(\s*)<span style="([^"]*)">([^<]*|<img[^>]'
			.'*>)</span>(\s*)</span>#',
			'\2<span style="\1;\3">\4</span>\5',
			$html
		);
		$html = preg_replace(
			'#<a href="([^"]*)">(\s*)<span style="([^"]*)">([^<]*|<img[^>]*>)</sp'
			.'an>(\s*)</a>#',
			'\2<a href="\1" style="\3">\4</a>\5',
			$html
		);
		$html = preg_replace(
			'#<strong>(\s*)<span style="([^"]*)">([^<]*)</span>(\s*)</strong>#',
			'<strong style="\2">\1\3\4</strong>',
			$html
		);
		$html = preg_replace(
			'#<b>(\s*)<span style="([^"]*)">([^<]*)</span>(\s*)</b>#',
			'<b style="\2">\1\3\4</b>',
			$html
		);
		$html = preg_replace(
			'#<li>(\s*)<span style="([^"]*)">([^<]*)</span>(\s*)</li>#',
			'<li style="\2">\1\3\4</li>',
			$html
		);
		$html = preg_replace(
			'#<p>(\s*)<span style="([^"]*)">([^<]*)</span>(\s*)</p>#',
			'<p style="\2">\1\3\4</p>',
			$html
		);
		$html = preg_replace(
			'#<span style="([^"]*)">(\s*)<strong>([^<]*)</strong>(\s*)</span>#',
			'\2<strong style="\1">\3</strong>\4',
			$html
		);
		$html = preg_replace(
			'#<span style="([^"]*?);?">(\s*)<strong style="([^"]*)">([^<]*)</stro'
			.'ng>(\s*)</span>#',
			'\2<strong style="\1;\3">\4</strong>\5',
			$html
		);
		$html = preg_replace("/<p>\s*(<img[^>]*>)\s*<\/p>/", '\1', $html);
		$html = preg_replace(
			'/<span( style="font-[^:]*:[^"]*")?>\s*(<img[^>]*>)\s*<\/span>/',
			'\2',
			$html
		);
		$html = preg_replace("/<strong>\s*(<img[^>]*>)\s*<\/strong>/", '\1', $html);
		// }
		// { remove unnecessary elements
		$html = preg_replace('#<meta [^>]*>(.*?)</meta>#', '\1', $html);
		// }
		// { strip repeated CSS inline elements (TODO: make this more efficient...)
		$html=str_replace(
			'font-size: large;font-size: large',
			'font-size: large',
			$html
		);
		// }
		// { strip useless CSS
		$sillystuff=' style="([^"]*)(color:[^;"]*|font-size:[^;"]*|font-family:'
			.'[^;"]*|line-height:[^;"]*);([^"]*)"';
		$html=preg_replace(
			'#\s*<span'.$sillystuff.'>\s*</span>\s*#',
			'<span style="\1\3"></span>',
			$html
		);
		$html=str_replace(
			'<span style=""></span>',
			'<span></span>',
			$html
		);
		$html=preg_replace(
			'#\s*<p'.$sillystuff.'>\s*</p>\s*#',
			'<p style="\1\3"></p>',
			$html
		);
		$html=str_replace('<p style=""></p>', '<p></p>', $html);
		// }
		$has_changed=$html!=$original_html;
		$original_html=$html;
	} while ($has_changed);
	// { old-style tabs
	if (strpos($html, '%TABPAGE%')) {
		$rand=md5(mt_rand());
		$test=preg_replace('/<p>[^<]*(%TAB[^%]*%)[^<]*<\/p>/', '\1', $html);
		$test=str_replace(
			'%TABEND%',
			'</div></div><script>$(function(){$("#'.$rand.'").tabs();});</script>',
			$test
		);
		$parts=preg_split('/%TAB[^%]*%/', $test);
		$headings=array();
		for ($i=1; $i<count($parts); ++$i) {
			$headings[]=preg_replace(
				'/<[^>]*>/',
				'',
				preg_replace('/^[^<]*<h2[^>]*>(.*?)<\/h2>.*/', '\1', $parts[$i])
			);
			$replacement=($i>1?'</div>':'').'<div id="'.$rand.'-'.strtolower(
				preg_replace('/[^a-zA-Z0-9]/', '', $headings[$i-1])
			).'">';
			$parts[$i]=preg_replace(
				'/^[^<]*<h2[^>]*>(.*?)<\/h2>/',
				$replacement,
				$parts[$i]
			);
		}
		$menu='<div id="'.$rand.'" class="tabs"><ul>';
		foreach ($headings as $h) {
			$menu.='<li><a href="#'.$rand.'-'.strtolower(
				preg_replace('/[^a-zA-Z0-9]/', '', $h)
			).'">'.htmlspecialchars($h).'</a></li>';
		}
		$parts[0].=$menu.'</ul>';
		$html=join('', $parts);
	}
	// }
	$html = str_replace('{{N}}', "\n", $html);
	$html = str_replace('{{R}}', "\r", $html);
	return $html;
}

// }
// { Core_getExternalFile

/**
  * retrieve an external file and return its contents
  *
  * @param string $url URL of the external file
  *
  * @return string contents of the file
  */
function Core_getExternalFile($url) {
	$ch = curl_init();
	curl_setopt($ch, CURLOPT_URL, $url);
	curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
	$response = curl_exec($ch);
	curl_close($ch);
	return $response;
}

// }