PageRenderTime 60ms CodeModel.GetById 23ms RepoModel.GetById 0ms app.codeStats 0ms

/administrator/components/com_zoo/libraries/mollom/mollom.php

https://bitbucket.org/organicdevelopment/joomla-2.5
PHP | 817 lines | 289 code | 156 blank | 372 comment | 81 complexity | 4f316f0b20f3ea087909e63992376d1a MD5 | raw file
Possible License(s): LGPL-3.0, GPL-2.0, MIT, BSD-3-Clause, LGPL-2.1 
    

  1. <?php

    2. 

  2. /**

    3. 

  3.  * Mollom class

    4. 

  4.  *

    5. 

  5.  * This source file can be used to communicate with mollom (http://mollom.com)

    6. 

  6.  *

    7. 

  7.  * The class is documented in the file itself, but you can find more documentation and examples on the docs-page (http://mollom.crsolutions.be/docs).

    8. 

  8.  * If you find any bugs help me out and report them. Reporting can be done by sending an email to php-mollom-bugs[at]verkoyen[dot]eu. If you report a bug, make sure you give me enough information (include your code).

    9. 

  9.  * If you have questions, try the Mollom-forum, don't send them by mail, I won't read them.

    10. 

  10.  *

    11. 

  11.  * Changelog since 1.0.1

    12. 

  12.  * - Fixed a nasty bug. Possible infinite loop in doCall().

    13. 

  13.  * - Fixed getServerList. I misinterpreted the documentation, so now the defaultserver is xmlrpc.mollom.com instead of the first fallback-server.

    14. 

  14.  * - Fixed the timeout-issue. With fsockopen the timeout on connect wasn't respected. Rewrote the doCall function to use CURL over sockets.

    15. 

  15.  *

    16. 

  16.  * Changelog since 1.1.0

    17. 

  17.  * - Fixed a problem with the IP-addresses. see http://blog.verkoyen.eu/2008/07/12/important-php-mollom-update/

    18. 

  18.  *

    19. 

  19.  * Changelog since 1.1.1

    20. 

  20.  * - PHPMollom was using HTTP 1.1, now HTTP 1.0.

    21. 

  21.  * - Fallbackserver are hardcoded, when no servers could be retrieved the fallbacks are used

    22. 

  22.  *

    23. 

  23.  * Changelog since 1.1.2

    24. 

  24.  * - Typo

    25. 

  25.  * - New Licence: BSD Modified

    26. 

  26.  *

    27. 

  27.  * License

    28. 

  28.  * Copyright (c) 2008, Tijs Verkoyen. All rights reserved.

    29. 

  29.  *

    30. 

  30.  * Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:

    31. 

  31.  *

    32. 

  32.  * 1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.

    33. 

  33.  * 2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.

    34. 

  34.  * 3. The name of the author may not be used to endorse or promote products derived from this software without specific prior written permission.

    35. 

  35.  *

    36. 

  36.  * This software is provided by the author ``as is'' and any express or implied warranties, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose are disclaimed. In no event shall the author be liable for any direct, indirect, incidental, special, exemplary, or consequential damages (including, but not limited to, procurement of substitute goods or services; loss of use, data, or profits; or business interruption) however caused and on any theory of liability, whether in contract, strict liability, or tort (including negligence or otherwise) arising in any way out of the use of this software, even if advised of the possibility of such damage.

    37. 

  37.  *

    38. 

  38.  * @author Tijs Verkoyen <mollom@verkoyen.eu>

    39. 

  39.  * @version 1.1.3

    40. 

  40.  *

    41. 

  41.  * @copyright Copyright (c) 2008, Tijs Verkoyen. All rights reserved.

    42. 

  42.  * @license http://mollom.local/license BSD License

    43. 

  43.  */

    44. 

  44. class Mollom

    45. 

  45. {

    46. 

  46. 	/**

    47. 

  47. 	 * The allowed reverse proxy addresses

    48. 

  48. 	 *

    49. 

  49. 	 * @var array

    50. 

  50. 	 */

    51. 

  51. 	private static $allowedReverseProxyAddresses = array();

    52. 

  52. 

    53. 

  53. 

    54. 

  54. 	/**

    55. 

  55. 	 * Your private key

    56. 

  56. 	 *

    57. 

  57. 	 * Set it by calling Mollom::setPrivateKey('<your-key>');

    58. 

  58. 	 *

    59. 

  59. 	 * @var string

    60. 

  60. 	 */

    61. 

  61. 	private static $privateKey;

    62. 

  62. 

    63. 

  63. 

    64. 

  64. 	/**

    65. 

  65. 	 * Your public key

    66. 

  66. 	 *

    67. 

  67. 	 * Set it by calling Mollom::setPublicKey('<your-key>');

    68. 

  68. 	 *

    69. 

  69. 	 * @var string

    70. 

  70. 	 */

    71. 

  71. 	private static $publicKey;

    72. 

  72. 

    73. 

  73. 

    74. 

  74. 	/**

    75. 

  75. 	 * Reverse proxy allowed?

    76. 

  76. 	 *

    77. 

  77. 	 * @var bool

    78. 

  78. 	 */

    79. 

  79. 	private static $reverseProxy = false;

    80. 

  80. 

    81. 

  81. 

    82. 

  82. 	/**

    83. 

  83. 	 * The default server

    84. 

  84. 	 *

    85. 

  85. 	 * No need to change

    86. 

  86. 	 *

    87. 

  87. 	 * @var string

    88. 

  88. 	 */

    89. 

  89. 	private static $serverHost = 'xmlrpc.mollom.com';

    90. 

  90. 

    91. 

  91. 

    92. 

  92. 	/**

    93. 

  93. 	 * The cache for the serverlist

    94. 

  94. 	 *

    95. 

  95. 	 * No need to change

    96. 

  96. 	 *

    97. 

  97. 	 * @var array

    98. 

  98. 	 */

    99. 

  99. 	private static $serverList = array();

    100. 

  100. 

    101. 

  101. 

    102. 

  102. 	/**

    103. 

  103. 	 * Default timeout

    104. 

  104. 	 *

    105. 

  105. 	 * @var int

    106. 

  106. 	 */

    107. 

  107. 	private static $timeout = 10;

    108. 

  108. 

    109. 

  109. 

    110. 

  110. 	/**

    111. 

  111. 	 * The default user-agent

    112. 

  112. 	 *

    113. 

  113. 	 * Change it by calling Mollom::setUserAgent('<your-user-agent>');

    114. 

  114. 	 *

    115. 

  115. 	 * @var string

    116. 

  116. 	 */

    117. 

  117. 	private static $userAgent = 'MollomPHP/1.1.3';

    118. 

  118. 

    119. 

  119. 

    120. 

  120. 	/**

    121. 

  121. 	 * The current Mollom-version

    122. 

  122. 	 *

    123. 

  123. 	 * No need to change

    124. 

  124. 	 *

    125. 

  125. 	 * @var string

    126. 

  126. 	 */

    127. 

  127. 	private static $version = '1.0';

    128. 

  128. 

    129. 

  129. 

    130. 

  130. 	/**

    131. 

  131. 	 * Build the value so we can use it in XML-RPC requests

    132. 

  132. 	 *

    133. 

  133. 	 * @return string

    134. 

  134. 	 * @param mixed $value

    135. 

  135. 	 */

    136. 

  136. 	private function buildValue($value)

    137. 

  137. 	{

    138. 

  138. 		// get type

    139. 

  139. 		$type = gettype($value);

    140. 

  140. 

    141. 

  141. 		// build value

    142. 

  142. 		switch ($type)

    143. 

  143. 		{

    144. 

  144. 			case 'string':

    145. 

  145. 				// escape it, cause Mollom can't handle CDATA (no pun intended)

    146. 

  146. 				$value = htmlspecialchars($value, ENT_QUOTES, 'ISO-8859-15');

    147. 

  147. 				return '<value><string>'. $value .'</string></value>'."\n";

    148. 

  148. 

    149. 

  149. 			case 'array':

    150. 

  150. 				// init struct

    151. 

  151. 				$struct = '<value>'."\n";

    152. 

  152. 				$struct .= '	<struct>'."\n";

    153. 

  153. 

    154. 

  154. 				// loop array

    155. 

  155. 				foreach ($value as $key => $value) $struct .= str_replace("\n", '', '<member>'. "\n" .'<name>'. $key .'</name>'. self::buildValue($value) .'</member>') . "\n";

    156. 

  156. 

    157. 

  157. 				$struct .= '	</struct>'."\n";

    158. 

  158. 				$struct .= '</value>'."\n";

    159. 

  159. 

    160. 

  160. 				// return

    161. 

  161. 				return $struct;

    162. 

  162. 

    163. 

  163. 			default:

    164. 

  164. 				return '<value>'. $value .'</value>'."\n";

    165. 

  165. 		}

    166. 

  166. 	}

    167. 

  167. 

    168. 

  168. 

    169. 

  169. 	/**

    170. 

  170. 	 * Validates the answer for a CAPTCHA

    171. 

  171. 	 *

    172. 

  172. 	 * When the answer is false, you should request a new image- or audio-CAPTCHA, make sure your provide the current Mollom-sessionid.

    173. 

  173. 	 * The sessionid will be used to track spambots that try to solve CAPTHCA's by brute force.

    174. 

  174. 	 *

    175. 

  175. 	 * @return bool

    176. 

  176. 	 * @param string $sessionId

    177. 

  177. 	 * @param string $solution

    178. 

  178. 	 */

    179. 

  179. 	public static function checkCaptcha($sessionId, $solution)

    180. 

  180. 	{

    181. 

  181. 		// redefine

    182. 

  182. 		$sessionId = (string) $sessionId;

    183. 

  183. 		$solution = (string) $solution;

    184. 

  184. 

    185. 

  185. 		// set autor ip

    186. 

  186. 		$authorIp = self::getIpAddress();

    187. 

  187. 

    188. 

  188. 		// set parameters

    189. 

  189. 		$parameters['session_id'] = $sessionId;

    190. 

  190. 		$parameters['solution'] = $solution;

    191. 

  191. 		if($authorIp != null) $parameters['author_ip'] = (string) $authorIp;

    192. 

  192. 

    193. 

  193. 		// do the call

    194. 

  194. 		$responseString = self::doCall('checkCaptcha', $parameters);

    195. 

  195. 		// validate

    196. 

  196. 		if(!isset($responseString->params->param->value->boolean)) throw new Exception('Invalid response in checkCapthca.');

    197. 

  197. 

    198. 

  198. 		// return

    199. 

  199. 		if((string) $responseString->params->param->value->boolean == '1') return true;

    200. 

  200. 

    201. 

  201. 		// fallback

    202. 

  202. 		return false;

    203. 

  203. 	}

    204. 

  204. 

    205. 

  205. 

    206. 

  206. 	/**

    207. 

  207. 	 * Check if the data is spam or not, and gets an assessment of the datas quality

    208. 

  208. 	 *

    209. 

  209. 	 * This function will be used most. The more data you submit the more accurate the claasification will be.

    210. 

  210. 	 * If the spamstatus is 'unsure', you could send the user an extra check (eg. a captcha).

    211. 

  211. 	 *

    212. 

  212. 	 * REMARK: the Mollom-sessionid is NOT related to HTTP-session, so don't send 'session_id'.

    213. 

  213. 	 *

    214. 

  214. 	 * The function will return an array with 3 elements:

    215. 

  215. 	 * - spam			the spam-status (unknown/ham/spam/unsure)

    216. 

  216. 	 * - quality		an assessment of the content's quality (between 0 and 1)

    217. 

  217. 	 * - session_id		Molloms session_id

    218. 

  218. 	 *

    219. 

  219. 	 * @return array

    220. 

  220. 	 * @param string[optional] $sessionId

    221. 

  221. 	 * @param string[optional] $postTitle

    222. 

  222. 	 * @param string[optional] $postBody

    223. 

  223. 	 * @param string[optional] $authorName

    224. 

  224. 	 * @param string[optional] $authorUrl

    225. 

  225. 	 * @param string[optional] $authorEmail

    226. 

  226. 	 * @param string[optional] $authorOpenId

    227. 

  227. 	 * @param string[optional] $authorId

    228. 

  228. 	 */

    229. 

  229. 	public static function checkContent($sessionId = null, $postTitle = null, $postBody = null, $authorName = null, $authorUrl = null, $authorEmail = null, $authorOpenId = null, $authorId = null)

    230. 

  230. 	{

    231. 

  231. 		// validate

    232. 

  232. 		if($sessionId === null && $postTitle === null && $postBody === null && $authorName === null && $authorUrl === null && $authorEmail === null && $authorOpenId === null && $authorId === null) throw new Exception('Specify at least on argument');

    233. 

  233. 

    234. 

  234. 		// init var

    235. 

  235. 		$parameters = array();

    236. 

  236. 		$aReturn = array();

    237. 

  237. 

    238. 

  238. 		// add parameters

    239. 

  239. 		if($sessionId !== null) $parameters['session_id'] = (string) $sessionId;

    240. 

  240. 		if($postTitle !== null) $parameters['post_title'] = (string) $postTitle;

    241. 

  241. 		if($postBody !== null) $parameters['post_body'] = (string) $postBody;

    242. 

  242. 		if($authorName !== null) $parameters['author_name'] = (string) $authorName;

    243. 

  243. 		if($authorUrl !== null) $parameters['author_url'] = (string) $authorUrl;

    244. 

  244. 		if($authorEmail !== null) $parameters['author_mail'] = (string) $authorEmail;

    245. 

  245. 		if($authorOpenId != null) $parameters['author_openid'] = (string) $authorOpenId;

    246. 

  246. 		if($authorId != null) $parameters['author_id'] = (string) $authorId;

    247. 

  247. 

    248. 

  248. 		// set autor ip

    249. 

  249. 		$authorIp = self::getIpAddress();

    250. 

  250. 		if($authorIp != null) $parameters['author_ip'] = (string) $authorIp;

    251. 

  251. 

    252. 

  252. 		// do the call

    253. 

  253. 		$responseString = self::doCall('checkContent', $parameters);

    254. 

  254. 

    255. 

  255. 		// validate

    256. 

  256. 		if(!isset($responseString->params->param->value->struct->member)) throw new Exception('Invalid response in checkContent.');

    257. 

  257. 

    258. 

  258. 		// loop parts

    259. 

  259. 		foreach ($responseString->params->param->value->struct->member as $part)

    260. 

  260. 		{

    261. 

  261. 			// get key

    262. 

  262. 			$key = $part->name;

    263. 

  263. 

    264. 

  264. 			// get value

    265. 

  265. 			switch ($part->name)

    266. 

  266. 			{

    267. 

  267. 				case 'spam':

    268. 

  268. 					$value = (string) $part->value->int;

    269. 

  269. 

    270. 

  270. 					switch($value)

    271. 

  271. 					{

    272. 

  272. 						case '0':

    273. 

  273. 							$aReturn['spam'] = 'unknown';

    274. 

  274. 						break;

    275. 

  275. 

    276. 

  276. 						case '1':

    277. 

  277. 							$aReturn['spam'] = 'ham';

    278. 

  278. 						break;

    279. 

  279. 

    280. 

  280. 						case '2':

    281. 

  281. 							$aReturn['spam'] = 'spam';

    282. 

  282. 						break;

    283. 

  283. 

    284. 

  284. 						case '3':

    285. 

  285. 							$aReturn['spam'] = 'unsure';

    286. 

  286. 						break;

    287. 

  287. 					}

    288. 

  288. 				break;

    289. 

  289. 

    290. 

  290. 				case 'quality':

    291. 

  291. 					$aReturn['quality'] = (float) $part->value->double;

    292. 

  292. 				break;

    293. 

  293. 

    294. 

  294. 				case 'session_id':

    295. 

  295. 					$aReturn['session_id'] = (string) $part->value->string;

    296. 

  296. 				break;

    297. 

  297. 			}

    298. 

  298. 		}

    299. 

  299. 

    300. 

  300. 		// return

    301. 

  301. 		return $aReturn;

    302. 

  302. 	}

    303. 

  303. 

    304. 

  304. 

    305. 

  305. 	/**

    306. 

  306. 	 * Make the call

    307. 

  307. 	 *

    308. 

  308. 	 * @return SimpleXMLElement

    309. 

  309. 	 * @param string $method

    310. 

  310. 	 * @param array[optional] $parameters

    311. 

  311. 	 */

    312. 

  312. 	private static function doCall($method, $parameters = array(), $server = null, $counter = 0)

    313. 

  313. 	{

    314. 

  314. 		// count available servers

    315. 

  315. 		$countServerList = count(self::$serverList);

    316. 

  316. 

    317. 

  317. 		if($server === null && $countServerList == 0) throw new Exception('No servers found, populate the serverlist. See setServerList().');

    318. 

  318. 

    319. 

  319. 		// redefine var

    320. 

  320. 		$method = (string) $method;

    321. 

  321. 		$parameters = (array) $parameters;

    322. 

  322. 

    323. 

  323. 		// possible methods

    324. 

  324. 		$aPossibleMethods = array('checkCaptcha', 'checkContent', 'getAudioCaptcha', 'getImageCaptcha', 'getServerList', 'getStatistics', 'sendFeedback', 'verifyKey');

    325. 

  325. 

    326. 

  326. 		// check if method is valid

    327. 

  327. 		if(!in_array($method, $aPossibleMethods)) throw new Exception('Invalid method. Only '. implode(', ', $aPossibleMethods) .' are possible methods.');

    328. 

  328. 

    329. 

  329. 		// check if public key is set

    330. 

  330. 		if(self::$publicKey === null) throw new Exception('Public key wasn\'t set.');

    331. 

  331. 

    332. 

  332. 		// check if private key is set

    333. 

  333. 		if(self::$privateKey === null) throw new Exception('Private key wasn\'t set.');

    334. 

  334. 

    335. 

  335. 		// still null

    336. 

  336. 		if($server === null) $server = self::$serverList[$counter];

    337. 

  337. 

    338. 

  338. 		// cleanup server string

    339. 

  339. 		$server = str_replace(array('http://', 'https://'), '', $server);

    340. 

  340. 

    341. 

  341. 		// create timestamp

    342. 

  342. 		$time = gmdate("Y-m-d\TH:i:s.\\0\\0\\0O", time());

    343. 

  343. 

    344. 

  344. 		// create nonce

    345. 

  345. 		$nonce = md5(time());

    346. 

  346. 

    347. 

  347. 		// create has

    348. 

  348. 		$hash = base64_encode(

    349. 

  349. 					pack("H*", sha1((str_pad(self::$privateKey, 64, chr(0x00)) ^ (str_repeat(chr(0x5c), 64))) .

    350. 

  350. 					pack("H*", sha1((str_pad(self::$privateKey, 64, chr(0x00)) ^ (str_repeat(chr(0x36), 64))) .

    351. 

  351. 					$time . ':'. $nonce .':'. self::$privateKey))))

    352. 

  352. 				);

    353. 

  353. 

    354. 

  354. 		// add parameters

    355. 

  355. 		$parameters['public_key'] = self::$publicKey;

    356. 

  356. 		$parameters['time'] = $time;

    357. 

  357. 		$parameters['hash'] = $hash;

    358. 

  358. 		$parameters['nonce'] = $nonce;

    359. 

  359. 

    360. 

  360. 		// build request

    361. 

  361. 		$requestBody = '<?xml version="1.0"?>' ."\n";

    362. 

  362. 		$requestBody .= '<methodCall>' ."\n";

    363. 

  363. 		$requestBody .= '	<methodName>mollom.'. $method .'</methodName>' ."\n";

    364. 

  364. 		$requestBody .= '	<params>' ."\n";

    365. 

  365. 		$requestBody .= '		<param>'."\n";

    366. 

  366. 		$requestBody .= '			'. self::buildValue($parameters) ."\n";

    367. 

  367. 		$requestBody .= '		</param>'."\n";

    368. 

  368. 		$requestBody .= '	</params>' ."\n";

    369. 

  369. 		$requestBody .= '</methodCall>' ."\n";

    370. 

  370. 

    371. 

  371. 		// create curl

    372. 

  372. 		$curl = @curl_init();

    373. 

  373. 

    374. 

  374. 		// set useragent

    375. 

  375. 		@curl_setopt($curl, CURLOPT_USERAGENT, self::$userAgent);

    376. 

  376. 

    377. 

  377. 		// set options

    378. 

  378. 		@curl_setopt($curl, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0);

    379. 

  379. 		@curl_setopt($curl, CURLOPT_POST, true);

    380. 

  380. 		@curl_setopt($curl, CURLOPT_FOLLOWLOCATION, true);

    381. 

  381. 		@curl_setopt($curl, CURLOPT_HEADER, true);

    382. 

  382. 		@curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);

    383. 

  383. 		@curl_setopt($curl, CURLOPT_CONNECTTIMEOUT, self::$timeout);

    384. 

  384. 		@curl_setopt($curl, CURLOPT_TIMEOUT, self::$timeout);

    385. 

  385. 

    386. 

  386. 		// set url

    387. 

  387. 		@curl_setopt($curl, CURLOPT_URL, $server .'/'. self::$version);

    388. 

  388. 

    389. 

  389. 		// set body

    390. 

  390. 		@curl_setopt($curl, CURLOPT_POSTFIELDS, $requestBody);

    391. 

  391. 

    392. 

  392. 		// get response

    393. 

  393. 		$response = @curl_exec($curl);

    394. 

  394. 

    395. 

  395. 		// get errors

    396. 

  396. 		$errorNumber = (int) @curl_errno($curl);

    397. 

  397. 		$errorString = @curl_error($curl);

    398. 

  398. 

    399. 

  399. 		// close

    400. 

  400. 		@curl_close($curl);

    401. 

  401. 

    402. 

  402. 		// validate response

    403. 

  403. 		if($response === false || $errorNumber != 0)

    404. 

  404. 		{

    405. 

  405. 			// increment counter

    406. 

  406. 			$counter++;

    407. 

  407. 

    408. 

  408. 			// no servers left

    409. 

  409. 			if($errorNumber == 28 && !isset(self::$serverList[$counter]) && $countServerList != 0) throw new Exception('No more servers available, try to increase the timeout.');

    410. 

  410. 

    411. 

  411. 			// timeout

    412. 

  412. 			elseif($errorNumber == 28 && isset(self::$serverList[$counter])) return self::doCall($method, $parameters, self::$serverList[$counter], $counter);

    413. 

  413. 

    414. 

  414. 			// other error

    415. 

  415. 			else throw new Exception('Something went wrong. Maybe the following message can be handy.<br />'. $errorString, $errorNumber);

    416. 

  416. 		}

    417. 

  417. 

    418. 

  418. 		// process response

    419. 

  419. 		$parts = explode("\r\n\r\n", $response);

    420. 

  420. 

    421. 

  421. 		// validate

    422. 

  422. 		if(!isset($parts[0]) || !isset($parts[1])) throw new Exception('Invalid response in doCall.');

    423. 

  423. 

    424. 

  424. 		// get headers

    425. 

  425. 		$headers = $parts[0];

    426. 

  426. 

    427. 

  427. 		// rebuild body

    428. 

  428. 		array_shift($parts);

    429. 

  429. 		$body = implode('', $parts);

    430. 

  430. 

    431. 

  431. 		// validate header

    432. 

  432. 		$aValidHeaders = array('HTTP/1.0 200', 'HTTP/1.1 200');

    433. 

  433. 		if(!in_array(substr($headers, 0, 12), $aValidHeaders)) throw new Exception('Invalid headers.');

    434. 

  434. 

    435. 

  435. 		// do some validation

    436. 

  436. 		$responseXML = @simplexml_load_string($body);

    437. 

  437. 		if($responseXML === false) throw new Exception('Invalid body.');

    438. 

  438. 

    439. 

  439. 		if(isset($responseXML->fault))

    440. 

  440. 		{

    441. 

  441. 			$code = (isset($responseXML->fault->value->struct->member[0]->value->int)) ? (int) $responseXML->fault->value->struct->member[0]->value->int : 'unknown';

    442. 

  442. 			$message = (isset($responseXML->fault->value->struct->member[1]->value->string)) ? (string) $responseXML->fault->value->struct->member[1]->value->string : 'unknown';

    443. 

  443. 

    444. 

  444. 			// handle errors

    445. 

  445. 			switch ($code)

    446. 

  446. 			{

    447. 

  447. 				// code 1000 (Parse error or internal problem)

    448. 

  448. 				case 1000:

    449. 

  449. 					throw new Exception('[error '.$code .'] '. $message, $code);

    450. 

  450. 

    451. 

  451. 				// code 1100 (Serverlist outdated)

    452. 

  452. 				case 1100:

    453. 

  453. 					throw new Exception('[error '.$code .'] '. $message, $code);

    454. 

  454. 

    455. 

  455. 				// code 1200 (Server too busy)

    456. 

  456. 				case 1200:

    457. 

  457. 					if(self::$serverList === null) self::getServerList();

    458. 

  458. 

    459. 

  459. 					// do call again

    460. 

  460. 					return self::doCall($method, $parameters, self::$serverList[$counter], $counter++);

    461. 

  461. 				break;

    462. 

  462. 

    463. 

  463. 				default:

    464. 

  464. 					throw new Exception('[error '.$code .'] '. $message, $code);

    465. 

  465. 			}

    466. 

  466. 		}

    467. 

  467. 

    468. 

  468. 		// return

    469. 

  469. 		return $responseXML;

    470. 

  470. 	}

    471. 

  471. 

    472. 

  472. 

    473. 

  473. 	/**

    474. 

  474. 	 * Get a CAPTCHA-mp3 generated by Mollom

    475. 

  475. 	 *

    476. 

  476. 	 * If your already called getAudioCaptcha make sure you provide at least the $sessionId. It will be used

    477. 

  477. 	 * to identify visitors that are trying to break a CAPTCHA with brute force.

    478. 

  478. 	 *

    479. 

  479. 	 * REMARK: the Mollom-sessionid is NOT related to HTTP-session, so don't send 'session_id'.

    480. 

  480. 	 *

    481. 

  481. 	 * The function will return an array with 3 elements:

    482. 

  482. 	 * - session_id		the session_id from Mollom

    483. 

  483. 	 * - url			the url to the mp3-file

    484. 

  484. 	 * - html			html that can be used on your website to display the CAPTCHA

    485. 

  485. 	 *

    486. 

  486. 	 * @return array

    487. 

  487. 	 * @param string[optional] $sessionId

    488. 

  488. 	 */

    489. 

  489. 	public static function getAudioCaptcha($sessionId = null)

    490. 

  490. 	{

    491. 

  491. 		// init vars

    492. 

  492. 		$aReturn = array();

    493. 

  493. 		$parameters = array();

    494. 

  494. 

    495. 

  495. 		// set autor ip

    496. 

  496. 		$authorIp = self::getIpAddress();

    497. 

  497. 

    498. 

  498. 		// set parameters

    499. 

  499. 		if($sessionId != null) $parameters['session_id'] = (string) $sessionId;

    500. 

  500. 		if($authorIp != null) $parameters['author_ip'] = (string) $authorIp;

    501. 

  501. 

    502. 

  502. 		// do the call

    503. 

  503. 		$responseString = self::doCall('getAudioCaptcha', $parameters);

    504. 

  504. 

    505. 

  505. 		// validate

    506. 

  506. 		if(!isset($responseString->params->param->value->struct->member)) throw new Exception('Invalid response in getAudioCaptcha.');

    507. 

  507. 

    508. 

  508. 		// loop elements

    509. 

  509. 		foreach ($responseString->params->param->value->struct->member as $part) $aReturn[(string) $part->name] = (string) $part->value->string;

    510. 

  510. 

    511. 

  511. 		// add image html

    512. 

  512. 		$aReturn['html'] = '<object type="audio/mpeg" data="'. $aReturn['url'] .'" width="50" height="16">'."\n"

    513. 

  513. 								."\t".'<param name="autoplay" value="false" />'."\n"

    514. 

  514. 								."\t".'<param name="controller" value="true" />'."\n"

    515. 

  515. 							.'</object>';

    516. 

  516. 

    517. 

  517. 		// return

    518. 

  518. 		return $aReturn;

    519. 

  519. 	}

    520. 

  520. 

    521. 

  521. 

    522. 

  522. 	/**

    523. 

  523. 	 * Get a CAPTCHA-image generated by Mollom

    524. 

  524. 	 *

    525. 

  525. 	 * If your already called getImageCaptcha make sure you provide at least the $sessionId. It will be used

    526. 

  526. 	 * to identify visitors that are trying to break a CAPTCHA with brute force.

    527. 

  527. 	 *

    528. 

  528. 	 * REMARK: the Mollom-sessionid is NOT related to HTTP-session, so don't send 'session_id'.

    529. 

  529. 	 *

    530. 

  530. 	 * The function will return an array with 3 elements:

    531. 

  531. 	 * - session_id		the session_id from Mollom

    532. 

  532. 	 * - url			the url to the image

    533. 

  533. 	 * - html			html that can be used on your website to display the CAPTCHA

    534. 

  534. 	 *

    535. 

  535. 	 * @return array

    536. 

  536. 	 * @param string[optional] $sessionId

    537. 

  537. 	 */

    538. 

  538. 	public static function getImageCaptcha($sessionId = null)

    539. 

  539. 	{

    540. 

  540. 		// init vars

    541. 

  541. 		$aReturn = array();

    542. 

  542. 		$parameters = array();

    543. 

  543. 

    544. 

  544. 		// set autor ip

    545. 

  545. 		$authorIp = self::getIpAddress();

    546. 

  546. 

    547. 

  547. 		// set parameters

    548. 

  548. 		if($sessionId !== null) $parameters['session_id'] = (string) $sessionId;

    549. 

  549. 		if($authorIp !== null) $parameters['author_ip'] = (string) $authorIp;

    550. 

  550. 

    551. 

  551. 		// do the call

    552. 

  552. 		$responseString = self::doCall('getImageCaptcha', $parameters);

    553. 

  553. 

    554. 

  554. 		// validate

    555. 

  555. 		if(!isset($responseString->params->param->value->struct->member)) throw new Exception('Invalid response in getImageCaptcha.');

    556. 

  556. 

    557. 

  557. 		// loop elements

    558. 

  558. 		foreach ($responseString->params->param->value->struct->member as $part) $aReturn[(string) $part->name] = (string) $part->value->string;

    559. 

  559. 

    560. 

  560. 		// add image html

    561. 

  561. 		$aReturn['html'] = '<img src="'. $aReturn['url'] .'" alt="Mollom CAPTCHA" />';

    562. 

  562. 

    563. 

  563. 		// return

    564. 

  564. 		return $aReturn;

    565. 

  565. 	}

    566. 

  566. 

    567. 

  567. 

    568. 

  568. 	/**

    569. 

  569. 	 * Get the real IP-address

    570. 

  570. 	 *

    571. 

  571. 	 * @return string

    572. 

  572. 	 */

    573. 

  573. 	public static function getIpAddress()

    574. 

  574. 	{

    575. 

  575. 		// pre check

    576. 

  576. 		if(!isset($_SERVER['REMOTE_ADDR'])) return null;

    577. 

  577. 

    578. 

  578. 		// get ip

    579. 

  579. 		$ipAddress = $_SERVER['REMOTE_ADDR'];

    580. 

  580. 

    581. 

  581. 		if(self::$reverseProxy)

    582. 

  582. 		{

    583. 

  583. 			if(isset($_SERVER['HTTP_X_FORWARDED_FOR']))

    584. 

  584. 			{

    585. 

  585. 				if(!empty(self::$allowedReverseProxyAddresses) && in_array($ipAddress, self::$allowedProxyAddresses, true))

    586. 

  586. 				{

    587. 

  587. 					return array_pop(explode(',', $_SERVER['HTTP_X_FORWARDED_FOR']));

    588. 

  588. 				}

    589. 

  589.    			}

    590. 

  590. 

    591. 

  591.    			// running in a cluster environment

    592. 

  592. 			if(isset($_SERVER['HTTP_X_CLUSTER_CLIENT_IP'])) return $_SERVER['HTTP_X_CLUSTER_CLIENT_IP'];

    593. 

  593. 		}

    594. 

  594. 

    595. 

  595. 		// fallback

    596. 

  596. 		return $ipAddress;

    597. 

  597. 	}

    598. 

  598. 

    599. 

  599. 

    600. 

  600. 	/**

    601. 

  601. 	 * Obtains a list of valid servers

    602. 

  602. 	 *

    603. 

  603. 	 * @return array

    604. 

  604. 	 */

    605. 

  605. 	public static function getServerList($counter = 0)

    606. 

  606. 	{

    607. 

  607. 		// do the call

    608. 

  608. 		$responseString = self::doCall('getServerList', array(), self::$serverHost, $counter);

    609. 

  609. 

    610. 

  610. 		// validate

    611. 

  611. 		if(!isset($responseString->params->param->value->array->data->value)) throw new Exception('Invalid response in getServerList.');

    612. 

  612. 

    613. 

  613. 		// loop servers and add them

    614. 

  614. 		foreach ($responseString->params->param->value->array->data->value as $server) self::$serverList[] = (string) $server->string;

    615. 

  615. 

    616. 

  616. 		if(count(self::$serverList) == 0) self::$serverList = array('http://xmlrpc3.mollom.com', 'http://xmlrpc2.mollom.com', 'http://xmlrpc1.mollom.com');

    617. 

  617. 

    618. 

  618. 		// return

    619. 

  619. 		return self::$serverList;

    620. 

  620. 	}

    621. 

  621. 

    622. 

  622. 

    623. 

  623. 	/**

    624. 

  624. 	 * Retrieve statistics from Mollom

    625. 

  625. 	 *

    626. 

  626. 	 * Allowed types are listed below:

    627. 

  627. 	 * - total_days				Number of days Mollom has been used

    628. 

  628. 	 * - total_accepted			Total of blocked spam

    629. 

  629. 	 * - total_rejected			Total accepted posts (not working?)

    630. 

  630. 	 * - yesterday_accepted		Amount of spam blocked yesterday

    631. 

  631. 	 * - yesterday_rejected		Number of posts accepted yesterday (not working?)

    632. 

  632. 	 * - today_accepted			Amount of spam blocked today

    633. 

  633. 	 * - today_rejected			Number of posts accepted today (not working?)

    634. 

  634. 	 *

    635. 

  635. 	 * @return int

    636. 

  636. 	 * @param string $type

    637. 

  637. 	 */

    638. 

  638. 	public static function getStatistics($type)

    639. 

  639. 	{

    640. 

  640. 		// possible types

    641. 

  641. 		$aPossibleTypes = array('total_days', 'total_accepted', 'total_rejected', 'yesterday_accepted', 'yesterday_rejected', 'today_accepted', 'today_rejected');

    642. 

  642. 

    643. 

  643. 		// redefine

    644. 

  644. 		$type = (string) $type;

    645. 

  645. 

    646. 

  646. 		// validate

    647. 

  647. 		if(!in_array($type, $aPossibleTypes)) throw new Exception('Invalid type. Only '. implode(', ', $aPossibleTypes) .' are possible types.');

    648. 

  648. 

    649. 

  649. 		// do the call

    650. 

  650. 		$responseString = self::doCall('getStatistics', array('type' => $type));

    651. 

  651. 

    652. 

  652. 		// validate

    653. 

  653. 		if(!isset($responseString->params->param->value->int)) throw new Exception('Invalid response in getStatistics.');

    654. 

  654. 

    655. 

  655. 		// return

    656. 

  656. 		return (int) $responseString->params->param->value->int;

    657. 

  657. 	}

    658. 

  658. 

    659. 

  659. 

    660. 

  660. 	/**

    661. 

  661. 	 * Send feedback to Mollom.

    662. 

  662. 	 *

    663. 

  663. 	 * With this method you can help train Mollom. Implement this method if possible. The more feedback is provided the more accurate

    664. 

  664. 	 * Mollom will be.

    665. 

  665. 	 *

    666. 

  666. 	 * Allowed feedback-strings are listed below:

    667. 

  667. 	 * - spam			Spam or unsolicited advertising

    668. 

  668. 	 * - profanity		Obscene, violent or profane content

    669. 

  669. 	 * - low-quality	Low-quality content or writing

    670. 

  670. 	 * - unwanted		Unwanted, taunting or off-topic content

    671. 

  671. 	 *

    672. 

  672. 	 * @return bool

    673. 

  673. 	 * @param string $sessionId

    674. 

  674. 	 * @param string $feedback

    675. 

  675. 	 */

    676. 

  676. 	public static function sendFeedback($sessionId, $feedback)

    677. 

  677. 	{

    678. 

  678. 		// possible feedback

    679. 

  679. 		$aPossibleFeedback = array('spam', 'profanity', 'low-quality', 'unwanted');

    680. 

  680. 

    681. 

  681. 		// redefine

    682. 

  682. 		$sessionId = (string) $sessionId;

    683. 

  683. 		$feedback = (string) $feedback;

    684. 

  684. 

    685. 

  685. 		// validate

    686. 

  686. 		if(!in_array($feedback, $aPossibleFeedback)) throw new Exception('Invalid feedback. Only '. implode(', ', $aPossibleFeedback) .' are possible feedback-strings.');

    687. 

  687. 

    688. 

  688. 		// build parameters

    689. 

  689. 		$parameters['session_id'] = $sessionId;

    690. 

  690. 		$parameters['feedback'] = $feedback;

    691. 

  691. 

    692. 

  692. 		// do the call

    693. 

  693. 		$responseString = self::doCall('sendFeedback', $parameters);

    694. 

  694. 

    695. 

  695. 		// validate

    696. 

  696. 		if(!isset($responseString->params->param->value->boolean)) throw new Exception('Invalid response in sendFeedback.');

    697. 

  697. 

    698. 

  698. 		// return

    699. 

  699. 		if((string) $responseString->params->param->value->boolean == 1) return true;

    700. 

  700. 

    701. 

  701. 		// fallback

    702. 

  702. 		return false;

    703. 

  703. 	}

    704. 

  704. 

    705. 

  705. 

    706. 

  706. 	/**

    707. 

  707. 	 * Set the allowed reverse proxy Addresses

    708. 

  708. 	 *

    709. 

  709. 	 * @return void

    710. 

  710. 	 * @param array $addresses

    711. 

  711. 	 */

    712. 

  712. 	public static function setAllowedReverseProxyAddresses($addresses)

    713. 

  713. 	{

    714. 

  714. 		// store allowed ip-addresses

    715. 

  715. 		self::$allowedReverseProxyAddresses = (array) $addresses;

    716. 

  716. 

    717. 

  717. 		// set reverse proxy

    718. 

  718. 		self::$reverseProxy = (!empty($addresses)) ? true : false;

    719. 

  719. 	}

    720. 

  720. 

    721. 

  721. 

    722. 

  722. 	/**

    723. 

  723. 	 * Set the private key

    724. 

  724. 	 *

    725. 

  725. 	 * @return void

    726. 

  726. 	 * @param string $key

    727. 

  727. 	 */

    728. 

  728. 	public static function setPrivateKey($key)

    729. 

  729. 	{

    730. 

  730. 		self::$privateKey = (string) $key;

    731. 

  731. 	}

    732. 

  732. 

    733. 

  733. 

    734. 

  734. 	/**

    735. 

  735. 	 * Set the public key

    736. 

  736. 	 *

    737. 

  737. 	 * @return void

    738. 

  738. 	 * @param string $key

    739. 

  739. 	 */

    740. 

  740. 	public static function setPublicKey($key)

    741. 

  741. 	{

    742. 

  742. 		self::$publicKey = (string) $key;

    743. 

  743. 	}

    744. 

  744. 

    745. 

  745. 

    746. 

  746. 	/**

    747. 

  747. 	 * Set the server list

    748. 

  748. 	 *

    749. 

  749. 	 * @return void

    750. 

  750. 	 * @param array $servers

    751. 

  751. 	 */

    752. 

  752. 	public static function setServerList($servers)

    753. 

  753. 	{

    754. 

  754. 		// redefine

    755. 

  755. 		$server = (array) $servers;

    756. 

  756. 

    757. 

  757. 		// loop servers

    758. 

  758. 		foreach ($servers as $server) self::$serverList[] = $server;

    759. 

  759. 	}

    760. 

  760. 

    761. 

  761. 

    762. 

  762. 	/**

    763. 

  763. 	 * Set timeout

    764. 

  764. 	 *

    765. 

  765. 	 * @return void

    766. 

  766. 	 * @param int $timeout

    767. 

  767. 	 */

    768. 

  768. 	public static function setTimeOut($timeout)

    769. 

  769. 	{

    770. 

  770. 		// redefine

    771. 

  771. 		$timeout = (int) $timeout;

    772. 

  772. 

    773. 

  773. 		// validate

    774. 

  774. 		if($timeout == 0) throw new Exception('Invalid timeout. Timeout shouldn\'t be 0.');

    775. 

  775. 

    776. 

  776. 		// set property

    777. 

  777. 		self::$timeout = $timeout;

    778. 

  778. 	}

    779. 

  779. 

    780. 

  780. 

    781. 

  781. 	/**

    782. 

  782. 	 * Set the user agent

    783. 

  783. 	 *

    784. 

  784. 	 * @return void

    785. 

  785. 	 * @param string $newUserAgent

    786. 

  786. 	 */

    787. 

  787. 	public static function setUserAgent($newUserAgent)

    788. 

  788. 	{

    789. 

  789. 		self::$userAgent .=  ' '. (string) $newUserAgent;

    790. 

  790. 	}

    791. 

  791. 

    792. 

  792. 

    793. 

  793. 	/**

    794. 

  794. 	 * Verifies your key

    795. 

  795. 	 *

    796. 

  796. 	 * Returns information about the status of your key. Mollom will respond with a boolean value (true/false).

    797. 

  797. 	 * False means that your keys is disabled or doesn't exists. True means the key is enabled and working properly.

    798. 

  798. 	 *

    799. 

  799. 	 * @return bool

    800. 

  800. 	 */

    801. 

  801. 	public static function verifyKey()

    802. 

  802. 	{

    803. 

  803. 		// do the call

    804. 

  804. 		$responseString = self::doCall('verifyKey');

    805. 

  805. 

    806. 

  806. 		// validate

    807. 

  807. 		if(!isset($responseString->params->param->value->boolean)) throw new Exception('Invalid response in verifyKey.');

    808. 

  808. 

    809. 

  809. 		// return

    810. 

  810. 		if((string) $responseString->params->param->value->boolean == '1') return true;

    811. 

  811. 

    812. 

  812. 		// fallback

    813. 

  813. 		return false;

    814. 

  814. 	}

    815. 

  815. 

    816. 

  816. }

    817. 

  817. 

    818. 

  818.