/xenforo/library/bdApi/Link.php

https://gitlab.com/billyprice1/bdApi · PHP · 183 lines · 128 code · 33 blank · 22 comment · 29 complexity · e8d8eb16f8f143ef3b00c3f365d6dfbe MD5 · raw file 

    

  1. <?php
    2. 

  2. 

  3. /* @var $app XenForo_Application */
    4. 

  4. $app = XenForo_Application::getInstance();
    5. 

  5. $xenforoLinkPath = $app->getRootDir() . '/library/XenForo/Link.php';
    6. 

  6. $xenforoLinkContents = file_get_contents($xenforoLinkPath);
    7. 

  7. 

  8. // remove <?php
    9. 

  9. $xenforoLinkContents = substr($xenforoLinkContents, 5);
    10. 

  10. 

  11. // rename class
    12. 

  12. $xenforoLinkContents = str_replace('class XenForo_Link', 'class _XenForo_Link', $xenforoLinkContents);
    13. 

  13. 

  14. // change self reference to XenForo, required to patch https issue
    15. 

  15. $xenforoLinkContents = str_replace('self::', 'XenForo_Link::', $xenforoLinkContents);
    16. 

  16. 

  17. eval($xenforoLinkContents);
    18. 

  18. 

  19. class bdApi_Link extends _XenForo_Link
    20. 

  20. {
    21. 

  21.     public function __construct($linkString, $canPrependFull = true)
    22. 

  22.     {
    23. 

  23.         if ($canPrependFull) {
    24. 

  24.             // we have to verify this because caller may not know that all relative urls are forced to absolute by us
    25. 

  25.             $canPrependFull = !Zend_Uri::check($linkString);
    26. 

  26.         }
    27. 

  27. 

  28.         parent::__construct($linkString, $canPrependFull);
    29. 

  29.     }
    30. 

  30. 

  31.     public static function buildPublicLink($type, $data = null, array $extraParams = array(), $skipPrepend = false)
    32. 

  32.     {
    33. 

  33.         // the type MUST BE canonical:$type
    34. 

  34.         // NOTE: this is the opposite with api links
    35. 

  35.         if (strpos($type, 'full:') === 0) {
    36. 

  36.             // replace full: with canonical:
    37. 

  37.             $type = str_replace('full:', 'canonical:', $type);
    38. 

  38.         } elseif (strpos($type, 'canonical:') === false) {
    39. 

  39.             // enforce canonical:
    40. 

  40.             $type = 'canonical:' . $type;
    41. 

  41.         }
    42. 

  42. 

  43.         $session = bdApi_Data_Helper_Core::safeGetSession();
    44. 

  44.         if (!empty($session)) {
    45. 

  45.             // auto appends locale param from session
    46. 

  46.             if (!isset($extraParams['locale'])) {
    47. 

  47.                 $locale = $session->get('requestLocale');
    48. 

  48.                 if (!empty($locale)) {
    49. 

  49.                     $timestamp = time() + 86400;
    50. 

  50.                     $extraParams['_apiLanguageId'] = sprintf('%s %s', $timestamp,
    51. 

  51.                         bdApi_Crypt::encryptTypeOne($session->get('languageId'), $timestamp)
    52. 

  52.                     );
    53. 

  53.                 }
    54. 

  54.             }
    55. 

  55.         }
    56. 

  56. 

  57.         return parent::buildPublicLink($type, $data, $extraParams, $skipPrepend);
    58. 

  58.     }
    59. 

  59. 

  60.     public static function buildApiLink($type, $data = null, array $extraParams = array(), $skipPrepend = false)
    61. 

  61.     {
    62. 

  62.         // the type MUST BE full:type
    63. 

  63.         // NOTE: this is the opposite with public links
    64. 

  64.         if (strpos($type, 'canonical:') === 0) {
    65. 

  65.             // replace canonical: with full:
    66. 

  66.             $type = str_replace('canonical:', 'full:', $type);
    67. 

  67.         } elseif (strpos($type, 'full:') === false) {
    68. 

  68.             // enforce full:
    69. 

  69.             $type = 'full:' . $type;
    70. 

  70.         }
    71. 

  71. 

  72.         $session = bdApi_Data_Helper_Core::safeGetSession();
    73. 

  73.         if (!empty($session)) {
    74. 

  74.             // auto appends oauth_token param from the session
    75. 

  75.             if (!isset($extraParams['oauth_token'])) {
    76. 

  76.                 $oauthToken = $session->getOAuthTokenText();
    77. 

  77.                 if (!empty($oauthToken)
    78. 

  78.                     && !empty($_REQUEST['oauth_token'])
    79. 

  79.                     && $_REQUEST['oauth_token'] === $oauthToken
    80. 

  80.                 ) {
    81. 

  81.                     // only append token to built link if the current request has token in query too
    82. 

  82.                     // this will prevent token in links if it's requested with OTT, token in Auth header
    83. 

  83.                     // or token in body (PUT/POST requests)
    84. 

  84.                     $extraParams['oauth_token'] = $oauthToken;
    85. 

  85.                 }
    86. 

  86.             }
    87. 

  87. 

  88.             // auto appends locale param from session
    89. 

  89.             if (!isset($extraParams['locale'])) {
    90. 

  90.                 $locale = $session->get('requestLocale');
    91. 

  91.                 if (!empty($locale)) {
    92. 

  92.                     $extraParams['locale'] = $locale;
    93. 

  93.                 }
    94. 

  94.             }
    95. 

  95.         }
    96. 

  96. 

  97.         $type = XenForo_Link::_checkForFullLink($type, $fullLink, $fullLinkPrefix);
    98. 

  98. 

  99.         $link = XenForo_Link::_buildLink('api', $type, $data, $extraParams);
    100. 

  100.         $queryString = XenForo_Link::buildQueryString($extraParams);
    101. 

  101. 

  102.         if ($link instanceof XenForo_Link) {
    103. 

  103.             $canPrependFull = $link->canPrependFull();
    104. 

  104.         } else {
    105. 

  105.             $canPrependFull = true;
    106. 

  106. 

  107.             if (strpos($link, '#') !== false) {
    108. 

  108.                 list($link, $hash) = explode('#', $link);
    109. 

  109.             }
    110. 

  110.         }
    111. 

  111. 

  112.         if ($queryString !== '' && $link !== '') {
    113. 

  113.             $append = "?$link&$queryString";
    114. 

  114.         } else {
    115. 

  115.             // 1 or neither of these has content
    116. 

  116.             $append = $link . $queryString;
    117. 

  117.             if ($append !== '') {
    118. 

  118.                 $append = "?$append";
    119. 

  119.             }
    120. 

  120.         }
    121. 

  121.         if ($skipPrepend) {
    122. 

  122.             $outputLink = $append;
    123. 

  123.         } else {
    124. 

  124.             $outputLink = 'index.php' . $append;
    125. 

  125.         }
    126. 

  126. 

  127.         if ($fullLink && $canPrependFull) {
    128. 

  128.             $outputLink = $fullLinkPrefix . $outputLink;
    129. 

  129.         }
    130. 

  130. 

  131.         // deal with a hash in the $type {xen:link prefix#hash..}
    132. 

  132.         if (($hashPos = strpos($type, '#')) !== false) {
    133. 

  133.             $hash = substr($type, $hashPos + 1);
    134. 

  134.         }
    135. 

  135. 

  136.         if ($outputLink === '') {
    137. 

  137.             $outputLink = '.';
    138. 

  138.         }
    139. 

  139. 

  140.         return $outputLink . (empty($hash) ? '' : '#' . $hash);
    141. 

  141.     }
    142. 

  142. 

  143.     public static function convertUriToAbsoluteUri($uri, $includeHost = false, array $paths = null)
    144. 

  144.     {
    145. 

  145.         if (!$paths) {
    146. 

  146.             $paths = XenForo_Application::get('requestPaths');
    147. 

  147.         }
    148. 

  148. 

  149.         $boardUrl = rtrim(XenForo_Application::getOptions()->get('boardUrl'), '/') . '/';
    150. 

  150.         $boardUrlParsed = parse_url($boardUrl);
    151. 

  151. 

  152.         $paths['protocol'] = $boardUrlParsed['scheme'];
    153. 

  153.         $paths['host'] = $boardUrlParsed['host'] . (isset($boardUrlParsed['port']) ? (':' . $boardUrlParsed) : '');
    154. 

  154.         $paths['fullBasePath'] = $boardUrl;
    155. 

  155.         $paths['basePath'] = $boardUrlParsed['path'];
    156. 

  156. 

  157.         return parent::convertUriToAbsoluteUri($uri, true, $paths);
    158. 

  158.     }
    159. 

  159. 

  160.     public static function convertApiUriToAbsoluteUri($uri, $includeHost = false, array $paths = null)
    161. 

  161.     {
    162. 

  162.         return parent::convertUriToAbsoluteUri($uri, true, $paths);
    163. 

  163.     }
    164. 

  164. 

  165.     protected static function _checkForFullLink($type, &$fullLink, &$fullLinkPrefix)
    166. 

  166.     {
    167. 

  167.         $type = parent::_checkForFullLink($type, $fullLink, $fullLinkPrefix);
    168. 

  168. 

  169.         if (!empty($fullLinkPrefix)) {
    170. 

  170.             // fix issue with HTTPS requests
    171. 

  171.             $paths = XenForo_Application::get('requestPaths');
    172. 

  172. 

  173.             if ($paths['protocol'] === 'https' AND parse_url($fullLinkPrefix, PHP_URL_SCHEME) === 'http') {
    174. 

  174.                 $fullLinkPrefix = str_replace('http://', 'https://', $fullLinkPrefix);
    175. 

  175.             }
    176. 

  176.         }
    177. 

  177. 

  178.         return $type;
    179. 

  179.     }
    180. 

  180. 

  181. }
    182. 

  182. 

  183. eval('class XenForo_Link extends bdApi_Link {}');
    184.