PageRenderTime 27ms CodeModel.GetById 19ms RepoModel.GetById 1ms app.codeStats 0ms

/trunk/h-source/Library/Functions.php

https://gitlab.com/7slayer/h-node
PHP | 479 lines | 346 code | 71 blank | 62 comment | 36 complexity | dd0b54514eedfddac843488e8277b7ce MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. // EasyGiant is a PHP framework for creating and managing dynamic content
    4. 

  4. //
    5. 

  5. // Copyright (C) 2009 - 2014  Antonio Gallo (info@laboratoriolibero.com)
    6. 

  6. // See COPYRIGHT.txt and LICENSE.txt.
    7. 

  7. //
    8. 

  8. // This file is part of EasyGiant
    9. 

  9. //
    10. 

  10. // EasyGiant is free software: you can redistribute it and/or modify
    11. 

  11. // it under the terms of the GNU General Public License as published by
    12. 

  12. // the Free Software Foundation, either version 3 of the License, or
    13. 

  13. // (at your option) any later version.
    14. 

  14. //
    15. 

  15. // EasyGiant is distributed in the hope that it will be useful,
    16. 

  16. // but WITHOUT ANY WARRANTY; without even the implied warranty of
    17. 

  17. // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    18. 

  18. // GNU General Public License for more details.
    19. 

  19. //
    20. 

  20. // You should have received a copy of the GNU General Public License
    21. 

  21. // along with EasyGiant.  If not, see <http://www.gnu.org/licenses/>.
    22. 

  22. 

  23. if (!defined('EG')) die('Direct access not allowed!');
    24. 

  24. 

  25. 

  26. /*
    27. 

  27. 	SANITIZE FUNCTIONS
    28. 

  28. */
    29. 

  29. 

  30. function none($string) {
    31. 

  31. 	return $string;
    32. 

  32. }
    33. 

  33. 

  34. function forceInt($string) {
    35. 

  35. 	return (int)$string;
    36. 

  36. }
    37. 

  37. 

  38. function forceNat($string)
    39. 

  39. {
    40. 

  40. 	$string = (int)$string;
    41. 

  41. 	if ($string <= 0) return 1;
    42. 

  42. 	return $string;
    43. 

  43. }
    44. 

  44. 

  45. function sanitizeDb($stringa) {
    46. 

  46. 

  47. 	if (DATABASE_TYPE === 'Mysql')
    48. 

  48. 	{
    49. 

  49. 		$stringa = mysql_real_escape_string($stringa);
    50. 

  50. 		return $stringa;
    51. 

  51. 	}
    52. 

  52. 

  53. 	if (DATABASE_TYPE === 'Mysqli')
    54. 

  54. 	{
    55. 

  55. 		$mysqli = Db_Mysqli::getInstance();
    56. 

  56. 		$db = $mysqli->getDb();
    57. 

  57. 		$stringa = $db->real_escape_string($stringa);
    58. 

  58. 		return $stringa;
    59. 

  59. 	}
    60. 

  60. 

  61. 	return $stringa;
    62. 

  62. }
    63. 

  63. 

  64. function sanitizeAll($stringa) {
    65. 

  65. 

  66. 	$stringa=sanitizeHtml($stringa);
    67. 

  67. 	$stringa=sanitizeDb($stringa);
    68. 

  68. 	return $stringa;
    69. 

  69. 

  70. }
    71. 

  71. 

  72. function sanitizeHtml($stringa) {
    73. 

  73. 

  74. 	$charset = Params::$htmlentititiesCharset;
    75. 

  75. 	$stringa=htmlentities($stringa,ENT_QUOTES,$charset);
    76. 

  76. 	return $stringa;
    77. 

  77. 

  78. }
    79. 

  79. 

  80. //check if only alphabetic + optional characters are present in the string $string. Set $string to $altString if other characters are found
    81. 

  81. //$optChar: allowed characters divided by '|'  Ex: '+|-|;'
    82. 

  82. function sanitizeCustom($string,$optChar,$altString = 'EasyGiant')
    83. 

  83. {
    84. 

  84. 	
    85. 

  85. 	$optChar = html_entity_decode($optChar,ENT_QUOTES);
    86. 

  86. 	$optCharArray = explode('|',$optChar);
    87. 

  87. 	$temp = $string;
    88. 

  88. 	foreach($optCharArray as $char)
    89. 

  89. 	{
    90. 

  90. 		$temp = str_replace($char,null,$temp);
    91. 

  91. 	}
    92. 

  92. 	if (ctype_alnum($temp))
    93. 

  93. 	{
    94. 

  94. 		return $string;
    95. 

  95. 	}
    96. 

  96. 	else
    97. 

  97. 	{
    98. 

  98. 		return $altString;
    99. 

  99. 	}
    100. 

  100. }
    101. 

  101. 

  102. 

  103. 

  104. 

  105. /*
    106. 

  106. SANITIZE DEEP
    107. 

  107. */
    108. 

  108. 

  109. function stripslashesDeep($value) {
    110. 

  110. 	if(get_magic_quotes_gpc()) {#if stripslashes
    111. 

  111. 		return array_map_recursive('stripslashes', $value);
    112. 

  112. 	}
    113. 

  113. 	return $value;
    114. 

  114. }
    115. 

  115. 

  116. //from http://www.php.net/array_map#112857
    117. 

  117. function array_map_recursive($callback, $array) {
    118. 

  118. 	foreach ($array as $key => $value) {
    119. 

  119. 		if (is_array($array[$key])) {
    120. 

  120. 			$array[$key] = array_map_recursive($callback, $array[$key]);
    121. 

  121. 		}
    122. 

  122. 		else {
    123. 

  123. 			$array[$key] = call_user_func($callback, $array[$key]);
    124. 

  124. 		}
    125. 

  125. 	}
    126. 

  126. 	return $array;
    127. 

  127. }
    128. 

  128.     
    129. 

  129. function sanitizeHtmlDeep($value) {
    130. 

  130. 	return array_map('sanitizeHtml', $value);
    131. 

  131. }
    132. 

  132. 

  133. 

  134. function sanitizeDbDeep($value) {
    135. 

  135. 	return array_map('sanitizeDb', $value);
    136. 

  136. }
    137. 

  137. 

  138. 

  139. function sanitizeCustomDeep($stringArray,$optChar,$altString = 'EasyGiant')
    140. 

  140. {
    141. 

  141. 	$result = array();
    142. 

  142. 	foreach ($stringArray as $key => $value)
    143. 

  143. 	{
    144. 

  144. 		$result[$key] = sanitizeCustom($value,$optChar,$altString);
    145. 

  145. 	}
    146. 

  146. 	return $result;
    147. 

  147. }
    148. 

  148. 

  149. 

  150. function sanitizeAllDeep($value) {
    151. 

  151. 	return array_map('sanitizeAll', $value);
    152. 

  152. }
    153. 

  153. 

  154. 

  155. function forceIntDeep($value) {
    156. 

  156. 	return array_map('forceInt', $value);
    157. 

  157. }
    158. 

  158. 

  159. function forceNatDeep($value) {
    160. 

  160. 	return array_map('forceNat', $value);
    161. 

  161. }
    162. 

  162. 

  163. function noneDeep($value) {
    164. 

  164. 	return array_map('none', $value);
    165. 

  165. }
    166. 

  166. 

  167. 

  168. function md5Deep($value) 
    169. 

  169. {
    170. 

  170. 	return array_map('md5', $value);
    171. 

  171. }
    172. 

  172. 

  173. function sha1Deep($value)
    174. 

  174. {
    175. 

  175. 	return array_map('sha1', $value);
    176. 

  176. }
    177. 

  177. 

  178. function strip_tagsDeep($value) {
    179. 

  179. 	return array_map('strip_tags', $value);
    180. 

  180. }
    181. 

  181. 

  182. 

  183. 

  184. 

  185. 

  186. function sanitizeAlnum($string)
    187. 

  187. {
    188. 

  188. 	return ctype_alnum($string) ? sanitizeAll($string) : '';
    189. 

  189. }
    190. 

  190. 

  191. 

  192. function sanitizeIp($ip)
    193. 

  193. {
    194. 

  194. 	return preg_match('/^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}$/',$ip) ? sanitizeAll($ip) : '';
    195. 

  195. }
    196. 

  196. 

  197. 

  198. /*
    199. 

  199. 	CHECK FUNCTIONS
    200. 

  200. */
    201. 

  201. 

  202. //check if a string has the mail format (abc.efg@hij.klm.on)
    203. 

  203. //modification of the rule found at http://www.sastgroup.com/tutorials/8-espressioni-regolari-per-validare-un-po-di-tutto
    204. 

  204. //original rule: /^[^0-9][a-zA-Z0-9_]+([.][a-zA-Z0-9_]+)*[@][a-zA-Z0-9_]+([.][a-zA-Z0-9_]+)*[.][a-zA-Z]{2,4}$/
    205. 

  205. function checkMail($string)
    206. 

  206. {
    207. 

  207. 	if (preg_match('/^[a-zA-Z0-9_\-]+([.][a-zA-Z0-9_\-]+){0,2}[@][a-zA-Z0-9_\-]+([.][a-zA-Z0-9_\-]+){0,2}[.][a-zA-Z]{2,4}$/',$string))
    208. 

  208. 	{
    209. 

  209. 		return true;
    210. 

  210. 	}
    211. 

  211. 	else
    212. 

  212. 	{
    213. 

  213. 		return false;
    214. 

  214. 	}
    215. 

  215. }
    216. 

  216. 

  217. 

  218. 

  219. function wrap($string,$tag_class) {#wrap the string with the tag and its class
    220. 

  220. 	#$tag_class has to be an associative array (tag1=>class1,$tag2=>class2,.. )!!
    221. 

  221. 	$str_front=null;
    222. 

  222. 	$str_rear=null;
    223. 

  223. 	if (is_array($tag_class)) {
    224. 

  224. 		foreach ($tag_class as $tag => $class) {
    225. 

  225. 				$tag = str_replace('+','',$tag);
    226. 

  226. 				if (!is_array($class))
    227. 

  227. 				{
    228. 

  228. 					$str_class=isset($class) ? " class=\"".$class."\"" : null;
    229. 

  229. 				}
    230. 

  230. 				else
    231. 

  231. 				{
    232. 

  232. 					$str_class = null;
    233. 

  233. 					foreach ($class as $attr => $val)
    234. 

  234. 					{
    235. 

  235. 						$str_class .= " ".$attr."='".$val."' ";
    236. 

  236. 					}
    237. 

  237. 				}
    238. 

  238. 				$str_front.="<".$tag.$str_class.">\n";
    239. 

  239. 				$str_rear.="</".$tag.">\n";
    240. 

  240. 		}
    241. 

  241. 	}
    242. 

  242. 	return $str_front.$string.$str_rear;
    243. 

  243. }
    244. 

  244. 

  245. //check that $date is a ISO date (YYYY-MM-DD)
    246. 

  246. function checkIsoDate($date)
    247. 

  247. {
    248. 

  248. 	if (preg_match('/^[0-9]{4}\-[0-9]{2}\-[0-9]{2}$/',$date))
    249. 

  249. 	{
    250. 

  250. 		$dateArray = explode('-',$date);
    251. 

  251. 		if ((int)$dateArray[1] <= 12 and (int)$dateArray[1] >= 1 )
    252. 

  252. 		{
    253. 

  253. 			if ((int)$dateArray[2] >= 1 and (int)$dateArray[2] <= 31)
    254. 

  254. 			{
    255. 

  255. 				return checkdate((int)$dateArray[1],(int)$dateArray[2],(int)$dateArray[0]);
    256. 

  256. 			}
    257. 

  257. 		}
    258. 

  258. 	}
    259. 

  259. 	return false;
    260. 

  260. }
    261. 

  261. 

  262. //check if $string is an integer string
    263. 

  263. function checkInteger($string)
    264. 

  264. {
    265. 

  265. 	if (preg_match('/^\-?[0-9]{1,}$/',$string))
    266. 

  266. 	{
    267. 

  267. 		return true;
    268. 

  268. 	}
    269. 

  269. 	return false;
    270. 

  270. }
    271. 

  271. 

  272. //check if $string is decimal with the format indicated in $format
    273. 

  273. //$format: M,D M is the maximum number of digits, D is the number of digits to the right of the decimal point
    274. 

  274. function checkDecimal($string, $format)
    275. 

  275. {
    276. 

  276. 	$t = explode(",",$format);
    277. 

  277. 	$M = (int)$t[0];
    278. 

  278. 	$D = (int)$t[1];
    279. 

  279. 	$I = $M - $D;
    280. 

  280. 	
    281. 

  281. 	if (preg_match("/^[0-9]{1,$I}(\.[0-9]{1,$D})?$/",$string))
    282. 

  282. 	{
    283. 

  283. 		return true;
    284. 

  284. 	}
    285. 

  285. 	return false;
    286. 

  286. }
    287. 

  287. 

  288. //get label name from field name
    289. 

  289. function getFieldLabel($fieldName)
    290. 

  290. {
    291. 

  291. 	if (class_exists("Lang_".Params::$language."_Formats_Fields"))
    292. 

  292. 	{
    293. 

  293. 		return call_user_func(array("Lang_".Params::$language."_Formats_Fields", "getLabel"), $fieldName);
    294. 

  294. 	}
    295. 

  295. 	
    296. 

  296. 	return call_user_func(array("Lang_En_Formats_Fields", "getLabel"), $fieldName);
    297. 

  297. 	
    298. 

  298. // 	if (strstr($fieldName,","))
    299. 

  299. // 	{
    300. 

  300. // 		$temp = explode(",",$fieldName);
    301. 

  301. // 		for ($i=0; $i< count($temp); $i++)
    302. 

  302. // 		{
    303. 

  303. // 			$temp[$i] = getFieldLabel($temp[$i]);
    304. 

  304. // 		}
    305. 

  305. // 		return implode (" and ",$temp);
    306. 

  306. // 	}
    307. 

  307. // 	else
    308. 

  308. // 	{
    309. 

  309. // 		$fieldName = str_replace("_"," ", $fieldName);
    310. 

  310. // 		return ucfirst($fieldName);
    311. 

  311. // 	}
    312. 

  312. }
    313. 

  313. 

  314. //generate a random password
    315. 

  315. //$start: start number of mt_rand
    316. 

  316. //$end: end number of mt_rand
    317. 

  317. function randString($length,$start = 33, $end = 126)
    318. 

  318. {
    319. 

  319. 	$random = '';
    320. 

  320. 	for ($i = 0; $i < $length; $i++)
    321. 

  321. 	{
    322. 

  322. 		$random .= chr(mt_rand($start, $end));
    323. 

  323. 	}
    324. 

  324. 	return $random;
    325. 

  325. }
    326. 

  326. 

  327. //generate a random string
    328. 

  328. //$charNumb:number of characters of the final string
    329. 

  329. //$allowedChars: allowed characters
    330. 

  330. function generateString($charNumb = 8,$allowedChars = '0123456789abcdefghijklmnopqrstuvwxyz')
    331. 

  331. {
    332. 

  332. 	$str = null;
    333. 

  333. 	for ($i = 0; $i < $charNumb; $i++)
    334. 

  334. 	{
    335. 

  335. 		$str .= substr($allowedChars, mt_rand(0, strlen($allowedChars)-1), 1);
    336. 

  336. 	}
    337. 

  337. 	return $str;
    338. 

  338. }
    339. 

  339. 

  340. 

  341. function getIp()
    342. 

  342. {
    343. 

  343.     $ip = "";
    344. 

  344. 

  345.     if (isset($_SERVER))
    346. 

  346.     {
    347. 

  347.         if (!empty($_SERVER["HTTP_X_FORWARDED_FOR"]))
    348. 

  348.         {
    349. 

  349.             $ip = sanitizeIp($_SERVER["HTTP_X_FORWARDED_FOR"]);
    350. 

  350.         } else if (!empty($_SERVER["HTTP_CLIENT_IP"])) {
    351. 

  351.             $ip = sanitizeIp($_SERVER["HTTP_CLIENT_IP"]);
    352. 

  352.         } else if (!empty($_SERVER["REMOTE_ADDR"])) {
    353. 

  353.             $ip = sanitizeIp($_SERVER["REMOTE_ADDR"]);
    354. 

  354.         }
    355. 

  355.     } else {
    356. 

  356.         if ( getenv( 'HTTP_X_FORWARDED_FOR' ) !== false ) {
    357. 

  357.             $ip = sanitizeIp(getenv( 'HTTP_X_FORWARDED_FOR' ));
    358. 

  358.         } else if ( getenv( 'HTTP_CLIENT_IP' ) !== false ) {
    359. 

  359.             $ip = sanitizeIp(getenv( 'HTTP_CLIENT_IP' ));
    360. 

  360.         } else if ( getenv( 'REMOTE_ADDR' ) !== false ) {
    361. 

  361.             $ip = sanitizeIp(getenv( 'REMOTE_ADDR' ));
    362. 

  362.         }
    363. 

  363.     }
    364. 

  364.     return $ip;
    365. 

  365. }
    366. 

  366. 

  367. 

  368. 

  369. function getUserAgent() {
    370. 

  370. 	if (isset($_SERVER['HTTP_USER_AGENT']))
    371. 

  371. 	{
    372. 

  372. 		return md5($_SERVER['HTTP_USER_AGENT']);
    373. 

  373. 	} 
    374. 

  374. 	else
    375. 

  375. 	{
    376. 

  376. 		return md5('firefox');
    377. 

  377. 	}
    378. 

  378. }
    379. 

  379. 

  380. //encode a string to drop ugly characters
    381. 

  381. function encode($url)
    382. 

  382. {
    383. 

  383. 	$url = utf8_decode(html_entity_decode($url,ENT_QUOTES,'UTF-8'));
    384. 

  384. 	
    385. 

  385. 	$temp = null;
    386. 

  386. 	
    387. 

  387. 	for ($i=0;$i<eg_strlen($url); $i++)
    388. 

  388. 	{
    389. 

  389. // 		echo substr($url,$i,1)."<br />";
    390. 

  390. 		if (strcmp(substr($url,$i,1),' ') === 0)
    391. 

  391. 		{
    392. 

  392. 			$temp .= '_';
    393. 

  393. 		}
    394. 

  394. 		else if (strcmp(substr($url,$i,1),"'") === 0)
    395. 

  395. 		{
    396. 

  396. 			$temp .= '';
    397. 

  397. 		}
    398. 

  398. 		else
    399. 

  399. 		{
    400. 

  400. 			if (preg_match('/^[a-zA-Z\_0-9]$/',substr($url,$i,1)))
    401. 

  401. 			{
    402. 

  402. 				$temp .= substr($url,$i,1);
    403. 

  403. 			}
    404. 

  404. 			else
    405. 

  405. 			{
    406. 

  406. 				$temp .= '_';
    407. 

  407. 			}
    408. 

  408. 		}
    409. 

  409. 	}
    410. 

  410. 

  411. 	$temp = urlencode($temp);
    412. 

  412. 	return $temp;
    413. 

  413. }
    414. 

  414. 

  415. function callFunction($function, $string, $caller = "CallFunction")
    416. 

  416. {
    417. 

  417. 	if (strstr($function,'::')) //static method
    418. 

  418. 	{
    419. 

  419. 		$temp = explode('::',$function);
    420. 

  420. 		
    421. 

  421. 		if (!method_exists($temp[0],$temp[1]))
    422. 

  422. 		{
    423. 

  423. 			throw new Exception('Error in <b>'.$caller.'</b>: method <b>'.$temp[1].'</b> of class <b>'.$temp[0].'</b> does not exists.');
    424. 

  424. 		}
    425. 

  425. 		
    426. 

  426. 		return call_user_func(array($temp[0], $temp[1]),$string);
    427. 

  427. 	}
    428. 

  428. 	else if (strstr($function,'.')) //method
    429. 

  429. 	{
    430. 

  430. 		$temp = explode('.',$function);
    431. 

  431. 		
    432. 

  432. 		$obj = new $temp[0]; //new instance of the object
    433. 

  433. 		
    434. 

  434. 		if (!method_exists($obj,$temp[1]))
    435. 

  435. 		{
    436. 

  436. 			throw new Exception('Error in <b>'.$caller.'</b>: method <b>'.$temp[1].'</b> of class <b>'.$temp[0].'</b> does not exists.');
    437. 

  437. 		}
    438. 

  438. 		
    439. 

  439. 		return call_user_func(array($obj, $temp[1]),$string);
    440. 

  440. 	}
    441. 

  441. 	else //function
    442. 

  442. 	{
    443. 

  443. 		if (!function_exists($function)) {
    444. 

  444. 			throw new Exception('Error in <b>'.$caller.'</b>: function <b>'.$function.'</b> does not exists.');
    445. 

  445. 		}
    446. 

  446. 		//apply the function
    447. 

  447. 		return call_user_func($function,$string);
    448. 

  448. 	}
    449. 

  449. }
    450. 

  450. 

  451. function xml_encode($string)
    452. 

  452. {
    453. 

  453. 	$trans = get_html_translation_table(HTML_ENTITIES, ENT_QUOTES);
    454. 

  454. 	foreach ($trans as $k=>$v)
    455. 

  455. 	{
    456. 

  456. 		$trans[$k]= "&#".ord($k).";";
    457. 

  457. 	}
    458. 

  458. 	
    459. 

  459. 	return strtr($string, $trans);
    460. 

  460. }
    461. 

  461. 

  462. //Convert Hex Color to RGB
    463. 

  463. //http://bavotasan.com/2011/convert-hex-color-to-rgb-using-php/
    464. 

  464. function hex2rgb($hex) {
    465. 

  465.    $hex = str_replace("#", "", $hex);
    466. 

  466. 

  467.    if(strlen($hex) == 3) {
    468. 

  468.       $r = hexdec(substr($hex,0,1).substr($hex,0,1));
    469. 

  469.       $g = hexdec(substr($hex,1,1).substr($hex,1,1));
    470. 

  470.       $b = hexdec(substr($hex,2,1).substr($hex,2,1));
    471. 

  471.    } else {
    472. 

  472.       $r = hexdec(substr($hex,0,2));
    473. 

  473.       $g = hexdec(substr($hex,2,2));
    474. 

  474.       $b = hexdec(substr($hex,4,2));
    475. 

  475.    }
    476. 

  476.    $rgb = array($r, $g, $b);
    477. 

  477.    //return implode(",", $rgb); // returns the rgb values separated by commas
    478. 

  478.    return $rgb; // returns an array with the rgb values
    479. 

  479. }
    480. 

  480.