PageRenderTime 26ms CodeModel.GetById 17ms RepoModel.GetById 1ms app.codeStats 0ms

/includes/functions/general.php

https://github.com/Jon86/oscommerce
PHP | 520 lines | 282 code | 86 blank | 152 comment | 93 complexity | ea3b9b4f485464f7c9bdfb9028daf2b4 MD5 | raw file
    

  1. <?php
    2. 

  2. /*
    3. 

  3.   osCommerce Online Merchant $osCommerce-SIG$
    4. 

  4.   Copyright (c) 2009 osCommerce (http://www.oscommerce.com)
    5. 

    6. 

  6.   This program is free software; you can redistribute it and/or modify
    7. 

  7.   it under the terms of the GNU General Public License v2 (1991)
    8. 

  8.   as published by the Free Software Foundation.
    9. 

  9. */
    10. 

  10. 

  11. /**
    12. 

  12.  * Redirect to a URL address
    13. 

  13.  *
    14. 

  14.  * @param string $url The URL address to redirect to
    15. 

  15.  * @access public
    16. 

  16.  */
    17. 

  17. 

  18.   function osc_redirect($url) {
    19. 

  19.     global $osC_Services;
    20. 

  20. 

  21.     if ( ( strpos($url, "\n") !== false ) || ( strpos($url, "\r") !== false ) ) {
    22. 

  22.       $url = osc_href_link(FILENAME_DEFAULT, null, 'NONSSL', false);
    23. 

  23.     }
    24. 

  24. 

  25.     if ( strpos($url, '&amp;') !== false ) {
    26. 

  26.       $url = str_replace('&amp;', '&', $url);
    27. 

  27.     }
    28. 

  28. 

  29.     header('Location: ' . $url);
    30. 

  30. 

  31.     if ( isset($osC_Services) && is_a($osC_Services, 'osC_Services') ) {
    32. 

  32.       $osC_Services->stopServices();
    33. 

  33.     }
    34. 

  34. 

  35.     exit;
    36. 

  36.   }
    37. 

  37. 

  38. /**
    39. 

  39.  * Parse and output a user submited value
    40. 

  40.  *
    41. 

  41.  * @param string $string The string to parse and output
    42. 

  42.  * @param array $translate An array containing the characters to parse
    43. 

  43.  * @access public
    44. 

  44.  */
    45. 

  45. 

  46.   function osc_output_string($string, $translate = null) {
    47. 

  47.     if (empty($translate)) {
    48. 

  48.       $translate = array('"' => '&quot;');
    49. 

  49.     }
    50. 

  50. 

  51.     return strtr(trim($string), $translate);
    52. 

  52.   }
    53. 

  53. 

  54. /**
    55. 

  55.  * Strictly parse and output a user submited value
    56. 

  56.  *
    57. 

  57.  * @param string $string The string to strictly parse and output
    58. 

  58.  * @access public
    59. 

  59.  */
    60. 

  60. 

  61.   function osc_output_string_protected($string) {
    62. 

  62.     return htmlspecialchars(trim($string));
    63. 

  63.   }
    64. 

  64. 

  65. /**
    66. 

  66.  * Sanitize a user submited value
    67. 

  67.  *
    68. 

  68.  * @param string $string The string to sanitize
    69. 

  69.  * @access public
    70. 

  70.  */
    71. 

  71. 

  72.   function osc_sanitize_string($string) {
    73. 

  73. 

  74.     $patterns = array('/ +/', '/[<>]/');
    75. 

  75.     $replace = array(' ', '_');
    76. 

  76. 

  77.     return preg_replace($patterns, $replace, trim($string));
    78. 

  78.   }
    79. 

  79. 

  80. /**
    81. 

  81.  * Get all parameters in the GET scope
    82. 

  82.  *
    83. 

  83.  * @param array $exclude A list of parameters to exclude
    84. 

  84.  * @access public
    85. 

  85.  */
    86. 

  86. 

  87.   function osc_get_all_get_params($exclude = null) {
    88. 

  88.     global $osC_Session;
    89. 

  89. 

  90.     $params = '';
    91. 

  91. 

  92.     $array = array($osC_Session->getName(),
    93. 

  93.                    'error',
    94. 

  94.                    'x',
    95. 

  95.                    'y');
    96. 

  96. 

  97.     if (is_array($exclude)) {
    98. 

  98.       foreach ($exclude as $key) {
    99. 

  99.         if (!in_array($key, $array)) {
    100. 

  100.           $array[] = $key;
    101. 

  101.         }
    102. 

  102.       }
    103. 

  103.     }
    104. 

  104. 

  105.     if (isset($_GET) && !empty($_GET)) {
    106. 

  106.       foreach ($_GET as $key => $value) {
    107. 

  107.         if (!in_array($key, $array)) {
    108. 

  108.           $params .= $key . (!empty($value) ? '=' . $value : '') . '&';
    109. 

  109.         }
    110. 

  110.       }
    111. 

  111. 

  112.       $params = substr($params, 0, -1);
    113. 

  113.     }
    114. 

  114. 

  115.     return $params;
    116. 

  116.   }
    117. 

  117. 

  118. /**
    119. 

  119.  * Return a language definition
    120. 

  120.  *
    121. 

  121.  * @param string $key The language definition to return
    122. 

  122.  * @param int $precision The precision to use for the rounding
    123. 

  123.  * @return string The language definition
    124. 

  124.  * @access public
    125. 

  125.  */
    126. 

  126. 

  127.   function __($key) {
    128. 

  128.     global $osC_Language;
    129. 

  129. 

  130.     return $osC_Language->get($key);
    131. 

  131.   }
    132. 

  132. 

  133. /**
    134. 

  134.  * Round a number with the wanted precision
    135. 

  135.  *
    136. 

  136.  * @param float $number The number to round
    137. 

  137.  * @param int $precision The precision to use for the rounding
    138. 

  138.  * @access public
    139. 

  139.  */
    140. 

  140. 

  141.   function osc_round($number, $precision) {
    142. 

  142.     if ( (strpos($number, '.') !== false) && (strlen(substr($number, strpos($number, '.')+1)) > $precision) ) {
    143. 

  143.       $number = substr($number, 0, strpos($number, '.') + 1 + $precision + 1);
    144. 

  144. 

  145.       if (substr($number, -1) >= 5) {
    146. 

  146.         if ($precision > 1) {
    147. 

  147.           $number = substr($number, 0, -1) + ('0.' . str_repeat(0, $precision-1) . '1');
    148. 

  148.         } elseif ($precision == 1) {
    149. 

  149.           $number = substr($number, 0, -1) + 0.1;
    150. 

  150.         } else {
    151. 

  151.           $number = substr($number, 0, -1) + 1;
    152. 

  152.         }
    153. 

  153.       } else {
    154. 

  154.         $number = substr($number, 0, -1);
    155. 

  155.       }
    156. 

  156.     }
    157. 

  157. 

  158.     return $number;
    159. 

  159.   }
    160. 

  160. 

  161. /**
    162. 

  162.  * Create a sort heading with appropriate sort link
    163. 

  163.  *
    164. 

  164.  * @param string $key The key used for sorting
    165. 

  165.  * @param string $heading The heading to use the link on
    166. 

  166.  * @access public
    167. 

  167.  */
    168. 

  168. 

  169.   function osc_create_sort_heading($key, $heading) {
    170. 

  170.     global $osC_Language;
    171. 

  171. 

  172.     $current = false;
    173. 

  173.     $direction = false;
    174. 

  174. 

  175.     if (!isset($_GET['sort'])) {
    176. 

  176.       $current = 'name';
    177. 

  177.     } elseif (($_GET['sort'] == $key) || ($_GET['sort'] == $key . '|d')) {
    178. 

  178.       $current = $key;
    179. 

  179.     }
    180. 

  180. 

  181.     if ($key == $current) {
    182. 

  182.       if (isset($_GET['sort'])) {
    183. 

  183.         $direction = ($_GET['sort'] == $key) ? '+' : '-';
    184. 

  184.       } else {
    185. 

  185.         $direction = '+';
    186. 

  186.       }
    187. 

  187.     }
    188. 

  188. 

  189.     return osc_link_object(osc_href_link(basename($_SERVER['SCRIPT_FILENAME']), osc_get_all_get_params(array('page', 'sort')) . '&sort=' . $key . ($direction == '+' ? '|d' : '')), $heading . (($key == $current) ? $direction : ''), 'title="' . (isset($_GET['sort']) && ($_GET['sort'] == $key) ? sprintf($osC_Language->get('listing_sort_ascendingly'), $heading) : sprintf($osC_Language->get('listing_sort_descendingly'), $heading)) . '" class="productListing-heading"');
    190. 

  190.   }
    191. 

  191. 

  192. /**
    193. 

  193.  * Generate a product ID string value containing its product attributes combinations
    194. 

  194.  *
    195. 

  195.  * @param string $id The product ID
    196. 

  196.  * @param array $params An array of product attributes
    197. 

  197.  * @access public
    198. 

  198.  */
    199. 

  199. 

  200.   function osc_get_product_id_string($id, $params) {
    201. 

  201.     $string = (int)$id;
    202. 

  202. 

  203.     if (is_array($params) && !empty($params)) {
    204. 

  204.       $attributes_check = true;
    205. 

  205.       $attributes_ids = array();
    206. 

  206. 

  207.       foreach ($params as $option => $value) {
    208. 

  208.         if (is_numeric($option) && is_numeric($value)) {
    209. 

  209.           $attributes_ids[] = (int)$option . ':' . (int)$value;
    210. 

  210.         } else {
    211. 

  211.           $attributes_check = false;
    212. 

  212.           break;
    213. 

  213.         }
    214. 

  214.       }
    215. 

  215. 

  216.       if ($attributes_check === true) {
    217. 

  217.         $string .= '#' . implode(';', $attributes_ids);
    218. 

  218.       }
    219. 

  219.     }
    220. 

  220. 

  221.     return $string;
    222. 

  222.   }
    223. 

  223. 

  224. /**
    225. 

  225.  * Generate a numeric product ID without product attribute combinations
    226. 

  226.  *
    227. 

  227.  * @param string $id The product ID
    228. 

  228.  * @access public
    229. 

  229.  */
    230. 

  230. 

  231.   function osc_get_product_id($id) {
    232. 

  232.     if (is_numeric($id)) {
    233. 

  233.       return $id;
    234. 

  234.     }
    235. 

  235. 

  236.     $product = explode('#', $id, 2);
    237. 

  237. 

  238.     return (int)$product[0];
    239. 

  239.   }
    240. 

  240. 

  241. /**
    242. 

  242.  * Send an email
    243. 

  243.  *
    244. 

  244.  * @param string $to_name The name of the recipient
    245. 

  245.  * @param string $to_email_address The email address of the recipient
    246. 

  246.  * @param string $subject The subject of the email
    247. 

  247.  * @param string $body The body text of the email
    248. 

  248.  * @param string $from_name The name of the sender
    249. 

  249.  * @param string $from_email_address The email address of the sender
    250. 

  250.  * @access public
    251. 

  251.  */
    252. 

  252. 

  253.   function osc_email($to_name, $to_email_address, $subject, $body, $from_name, $from_email_address) {
    254. 

  254.     if (SEND_EMAILS == '-1') {
    255. 

  255.       return false;
    256. 

  256.     }
    257. 

  257. 

  258.     $osC_Mail = new osC_Mail($to_name, $to_email_address, $from_name, $from_email_address, $subject);
    259. 

  259.     $osC_Mail->setBodyPlain($body);
    260. 

  260.     $osC_Mail->send();
    261. 

  261.   }
    262. 

  262. 

  263. /**
    264. 

  264.  * Create a random string
    265. 

  265.  *
    266. 

  266.  * @param int $length The length of the random string to create
    267. 

  267.  * @param string $type The type of random string to create (mixed, chars, digits)
    268. 

  268.  * @access public
    269. 

  269.  */
    270. 

  270. 

  271.   function osc_create_random_string($length, $type = 'mixed') {
    272. 

  272.     if (!in_array($type, array('mixed', 'chars', 'digits'))) {
    273. 

  273.       return false;
    274. 

  274.     }
    275. 

  275. 

  276.     $chars_pattern = 'abcdefghijklmnopqrstuvwxyz';
    277. 

  277.     $mixed_pattern = '1234567890' . $chars_pattern;
    278. 

  278. 

  279.     $rand_value = '';
    280. 

  280. 

  281.     while (strlen($rand_value) < $length) {
    282. 

  282.       if ($type == 'digits') {
    283. 

  283.         $rand_value .= osc_rand(0,9);
    284. 

  284.       } elseif ($type == 'chars') {
    285. 

  285.         $rand_value .= substr($chars_pattern, osc_rand(0, 25), 1);
    286. 

  286.       } else {
    287. 

  287.         $rand_value .= substr($mixed_pattern, osc_rand(0, 35), 1);
    288. 

  288.       }
    289. 

  289.     }
    290. 

  290. 

  291.     return $rand_value;
    292. 

  292.   }
    293. 

  293. 

  294. /**
    295. 

  295.  * Alias function for empty()
    296. 

  296.  *
    297. 

  297.  * @param mixed $value The object to check if it is empty or not
    298. 

  298.  * @access public
    299. 

  299.  */
    300. 

  300. 

  301.   function osc_empty($value) {
    302. 

  302.     return empty($value);
    303. 

  303.   }
    304. 

  304. 

  305. /**
    306. 

  306.  * Generate a random number
    307. 

  307.  *
    308. 

  308.  * @param int $min The minimum number to return
    309. 

  309.  * @param int $max The maxmimum number to return
    310. 

  310.  * @access public
    311. 

  311.  */
    312. 

  312. 

  313.   function osc_rand($min = null, $max = null) {
    314. 

  314.     static $seeded;
    315. 

  315. 

  316.     if (!isset($seeded)) {
    317. 

  317.       if (version_compare(PHP_VERSION, '4.2', '<')) {
    318. 

  318.         mt_srand((double)microtime()*1000000);
    319. 

  319.       }
    320. 

  320. 

  321.       $seeded = true;
    322. 

  322.     }
    323. 

  323. 

  324.     if (is_numeric($min) && is_numeric($max)) {
    325. 

  325.       if ($min >= $max) {
    326. 

  326.         return $min;
    327. 

  327.       } else {
    328. 

  328.         return mt_rand($min, $max);
    329. 

  329.       }
    330. 

  330.     } else {
    331. 

  331.       return mt_rand();
    332. 

  332.     }
    333. 

  333.   }
    334. 

  334. 

  335. /**
    336. 

  336.  * Set a cookie
    337. 

  337.  *
    338. 

  338.  * @param string $name The name of the cookie
    339. 

  339.  * @param string $value The value of the cookie
    340. 

  340.  * @param int $expire Unix timestamp of when the cookie should expire
    341. 

  341.  * @param string $path The path on the server for which the cookie will be available on
    342. 

  342.  * @param string $domain The The domain that the cookie is available on
    343. 

  343.  * @param boolean $secure Indicates whether the cookie should only be sent over a secure HTTPS connection
    344. 

  344.  * @param boolean $httpOnly Indicates whether the cookie should only accessible over the HTTP protocol
    345. 

  345.  * @access public
    346. 

  346.  */
    347. 

  347. 

  348.   function osc_setcookie($name, $value = null, $expires = 0, $path = null, $domain = null, $secure = false, $httpOnly = false) {
    349. 

  349.     global $request_type;
    350. 

  350. 

  351.     if (empty($path)) {
    352. 

  352.       $path = ($request_type == 'NONSSL') ? HTTP_COOKIE_PATH : HTTPS_COOKIE_PATH;
    353. 

  353.     }
    354. 

  354. 

  355.     if (empty($domain)) {
    356. 

  356.       $domain = ($request_type == 'NONSSL') ? HTTP_COOKIE_DOMAIN : HTTPS_COOKIE_DOMAIN;
    357. 

  357.     }
    358. 

  358. 

  359.     header('Set-Cookie: ' . $name . '=' . urlencode($value) . '; expires=' . date('D, d-M-Y H:i:s T', $expires) . '; path=' . $path . '; domain=' . $domain . (($secure === true) ? ' secure;' : '') . (($httpOnly === true) ? ' httponly;' : ''));
    360. 

  360.   }
    361. 

  361. 

  362. /**
    363. 

  363.  * Get the IP address of the client
    364. 

  364.  *
    365. 

  365.  * @access public
    366. 

  366.  */
    367. 

  367. 

  368.   function osc_get_ip_address() {
    369. 

  369.     if (isset($_SERVER)) {
    370. 

  370.       if (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) {
    371. 

  371.         $ip = $_SERVER['HTTP_X_FORWARDED_FOR'];
    372. 

  372.       } elseif (isset($_SERVER['HTTP_CLIENT_IP'])) {
    373. 

  373.         $ip = $_SERVER['HTTP_CLIENT_IP'];
    374. 

  374.       } else {
    375. 

  375.         $ip = $_SERVER['REMOTE_ADDR'];
    376. 

  376.       }
    377. 

  377.     } else {
    378. 

  378.       if (getenv('HTTP_X_FORWARDED_FOR')) {
    379. 

  379.         $ip = getenv('HTTP_X_FORWARDED_FOR');
    380. 

  380.       } elseif (getenv('HTTP_CLIENT_IP')) {
    381. 

  381.         $ip = getenv('HTTP_CLIENT_IP');
    382. 

  382.       } else {
    383. 

  383.         $ip = getenv('REMOTE_ADDR');
    384. 

  384.       }
    385. 

  385.     }
    386. 

  386. 

  387.     return $ip;
    388. 

  388.   }
    389. 

  389. 

  390. /**
    391. 

  391.  * Encrypt a string
    392. 

  392.  *
    393. 

  393.  * @param string $plain The string to encrypt
    394. 

  394.  * @access public
    395. 

  395.  */
    396. 

  396. 

  397.   function osc_encrypt_string($plain) {
    398. 

  398.     $password = '';
    399. 

  399. 

  400.     for ($i=0; $i<10; $i++) {
    401. 

  401.       $password .= osc_rand();
    402. 

  402.     }
    403. 

  403. 

  404.     $salt = substr(md5($password), 0, 2);
    405. 

  405. 

  406.     $password = md5($salt . $plain) . ':' . $salt;
    407. 

  407. 

  408.     return $password;
    409. 

  409.   }
    410. 

  410. 

  411. /**
    412. 

  412.  * Validates the format of an email address
    413. 

  413.  *
    414. 

  414.  * @param string $email_address The email address to validate
    415. 

  415.  * @access public
    416. 

  416.  */
    417. 

  417. 

  418.   function osc_validate_email_address($email_address) {
    419. 

  419.     $valid_address = true;
    420. 

  420. 

  421.     $mail_pat = '/^(.+)@(.+)$/i';
    422. 

  422.     $valid_chars = "[^] \(\)<>@,;:\.\\\"\[]";
    423. 

  423.     $atom = "$valid_chars+";
    424. 

  424.     $quoted_user='(\"[^\"]*\")';
    425. 

  425.     $word = "($atom|$quoted_user)";
    426. 

  426.     $user_pat = "/^$word(\.$word)*$/i";
    427. 

  427.     $ip_domain_pat='/^\[([0-9]{1,3})\.([0-9]{1,3})\.([0-9]{1,3})\.([0-9]{1,3})\]$/i';
    428. 

  428.     $domain_pat = "/^$atom(\.$atom)*$/i";
    429. 

  429. 

  430.     if (preg_match($mail_pat, $email_address, $components)) {
    431. 

  431.       $user = $components[1];
    432. 

  432.       $domain = $components[2];
    433. 

  433. // validate user
    434. 

  434.       if (preg_match($user_pat, $user)) {
    435. 

  435. // validate domain
    436. 

  436.         if (preg_match($ip_domain_pat, $domain, $ip_components)) {
    437. 

  437. // this is an IP address
    438. 

  438.           for ($i=1;$i<=4;$i++) {
    439. 

  439.             if ($ip_components[$i] > 255) {
    440. 

  440.               $valid_address = false;
    441. 

  441.               break;
    442. 

  442.             }
    443. 

  443.           }
    444. 

  444.         } else {
    445. 

  445. // Domain is a name, not an IP
    446. 

  446.           if (preg_match($domain_pat, $domain)) {
    447. 

  447. // domain name seems valid, but now make sure that it ends in a valid TLD or ccTLD and that there's a hostname preceding the domain or country.
    448. 

  448.             $domain_components = explode(".", $domain);
    449. 

  449. // Make sure there's a host name preceding the domain.
    450. 

  450.             if (sizeof($domain_components) < 2) {
    451. 

  451.               $valid_address = false;
    452. 

  452.             } else {
    453. 

  453.               $top_level_domain = strtolower($domain_components[sizeof($domain_components)-1]);
    454. 

  454. // Allow all 2-letter TLDs (ccTLDs)
    455. 

  455.               if (preg_match('/^[a-z][a-z]$/i', $top_level_domain) != 1) {
    456. 

  456.                 $tld_pattern = '';
    457. 

  457. // Get authorized TLDs from text file
    458. 

  458.                 $tlds = file(DIR_FS_CATALOG . 'includes/tld.txt');
    459. 

  459.                 while (list(,$line) = each($tlds)) {
    460. 

  460. // Get rid of comments
    461. 

  461.                   $words = explode('#', $line);
    462. 

  462.                   $tld = trim($words[0]);
    463. 

  463. // TLDs should be 3 letters or more
    464. 

  464.                   if (preg_match('/^[a-z]{3,}$/i', $tld) == 1) {
    465. 

  465.                     $tld_pattern .= '^' . $tld . '$|';
    466. 

  466.                   }
    467. 

  467.                 }
    468. 

  468. // Remove last '|'
    469. 

  469.                 $tld_pattern = substr($tld_pattern, 0, -1);
    470. 

  470.                 if (preg_match("/$tld_pattern/i", $top_level_domain) == 0) {
    471. 

  471.                   $valid_address = false;
    472. 

  472.                 }
    473. 

  473.               }
    474. 

  474.             }
    475. 

  475.           } else {
    476. 

  476.             $valid_address = false;
    477. 

  477.           }
    478. 

  478.         }
    479. 

  479.       } else {
    480. 

  480.         $valid_address = false;
    481. 

  481.       }
    482. 

  482.     } else {
    483. 

  483.       $valid_address = false;
    484. 

  484.     }
    485. 

  485. 

  486.     if ($valid_address && ENTRY_EMAIL_ADDRESS_CHECK == '1') {
    487. 

  487.       if (!checkdnsrr($domain, "MX") && !checkdnsrr($domain, "A")) {
    488. 

  488.         $valid_address = false;
    489. 

  489.       }
    490. 

  490.     }
    491. 

  491. 

  492.     return $valid_address;
    493. 

  493.   }
    494. 

  494. 

  495. /**
    496. 

  496.  * Sets the defined locale
    497. 

  497.  *
    498. 

  498.  * @param string $category The category of the locale to set
    499. 

  499.  * @param mixed $locale The locale, or an array of locales to try and set
    500. 

  500.  * @access public
    501. 

  501.  */
    502. 

  502. 

  503.   function osc_setlocale($category, $locale) {
    504. 

  504.     if (version_compare(PHP_VERSION, '4.3', '<')) {
    505. 

  505.       if (is_array($locale)) {
    506. 

  506.         foreach ($locale as $l) {
    507. 

  507.           if (($result = setlocale($category, $l)) !== false) {
    508. 

  508.             return $result;
    509. 

  509.           }
    510. 

  510.         }
    511. 

  511. 

  512.         return false;
    513. 

  513.       } else {
    514. 

  514.         return setlocale($category, $locale);
    515. 

  515.       }
    516. 

  516.     } else {
    517. 

  517.       return setlocale($category, $locale);
    518. 

  518.     }
    519. 

  519.   }
    520. 

  520. ?>
    521. 

  521.