PageRenderTime 114ms CodeModel.GetById 2ms RepoModel.GetById 1ms app.codeStats 1ms

/includes/bbcode.php

http://github.com/MightyGorgon/icy_phoenix
PHP | 4718 lines | 3684 code | 297 blank | 737 comment | 680 complexity | 442916b2d1bda1372e286b299bbb16db MD5 | raw file
Possible License(s): AGPL-1.0 
    

  1. <?php
    2. 

  2. /**
    3. 

  3. *
    4. 

  4. * @package Icy Phoenix
    5. 

  5. * @version $Id$
    6. 

  6. * @copyright (c) 2008 Icy Phoenix
    7. 

  7. * @license http://opensource.org/licenses/gpl-license.php GNU Public License
    8. 

  8. *
    9. 

  9. */
    10. 

  10. 

  11. /**
    12. 

  12. *
    13. 

  13. * @Extra credits for this file
    14. 

  14. * Vjacheslav Trushkin (http://www.stsoftware.biz)
    15. 

  15. *
    16. 

  16. */
    17. 

  17. 

  18. if (!defined('IN_ICYPHOENIX'))
    19. 

  19. {
    20. 

  20. 	die('Hacking attempt');
    21. 

  21. }
    22. 

  22. 

  23. /*
    24. 

    25. 

  25. =================
    26. 

  26. Includes
    27. 

  27. =================
    28. 

    29. 

  29. include_once(IP_ROOT_PATH . 'includes/bbcode.' . PHP_EXT);
    30. 

    31. 

  31. =================
    32. 

  32. Globals
    33. 

  33. =================
    34. 

    35. 

  35. global $bbcode;
    36. 

    37. 

  37. =================
    38. 

  38. BBCode Parsing
    39. 

  39. =================
    40. 

    41. 

  41. $text = $bbcode->parse($text);
    42. 

    43. 

  43. =================
    44. 

  44. BBCode Conditions
    45. 

  45. =================
    46. 

    47. 

  47. $bbcode->allow_html = ($user->data['user_allowhtml'] && $config['allow_html']) ? true : false;
    48. 

  48. $bbcode->allow_bbcode = ($user->data['user_allowbbcode'] && $config['allow_bbcode']) ? true : false;
    49. 

  49. $bbcode->allow_smilies = ($user->data['user_allowsmile'] && $config['allow_smilies']) ? true : false;
    50. 

    51. 

  51. =================
    52. 

    53. 

  53. $html_on = ($user->data['user_allowhtml'] && $config['allow_html']) ? 1 : 0 ;
    54. 

  54. $bbcode_on = ($user->data['user_allowbbcode'] && $config['allow_bbcode']) ? 1 : 0 ;
    55. 

  55. $smilies_on = ($user->data['user_allowsmile'] && $config['allow_smilies']) ? 1 : 0 ;
    56. 

    57. 

  57. $bbcode->allow_html = $html_on;
    58. 

  58. $bbcode->allow_bbcode = $bbcode_on;
    59. 

  59. $bbcode->allow_smilies = $smilies_on;
    60. 

    61. 

  61. =================
    62. 

    63. 

  63. $bbcode->allow_html = ($config['allow_html'] ? true : false);
    64. 

  64. $bbcode->allow_bbcode = ($config['allow_bbcode'] ? true : false);
    65. 

  65. $bbcode->allow_smilies = ($config['allow_smilies'] ? true : false);
    66. 

    67. 

  67. =================
    68. 

    69. 

  69. $bbcode->allow_html = (($config['allow_html'] && $row['enable_bbcode']) ? true : false);
    70. 

  70. $bbcode->allow_bbcode = (($config['allow_bbcode'] && $row['enable_bbcode']) ? true : false);
    71. 

  71. $bbcode->allow_smilies = (($config['allow_smilies'] && $row['enable_smilies']) ? true : false);
    72. 

    73. 

  73. =================
    74. 

    75. 

  75. $bbcode->allow_html = ($config['allow_html'] && $postrow[$i]['enable_bbcode'] ? true : false);
    76. 

  76. $bbcode->allow_bbcode = ($config['allow_bbcode'] && $postrow[$i]['enable_bbcode'] ? true : false);
    77. 

  77. $bbcode->allow_smilies = ($config['allow_smilies'] && $postrow[$i]['enable_smilies'] ? true : false);
    78. 

    79. 

  79. =================
    80. 

    81. 

  81. =================================
    82. 

  82. Acronyms, Autolinks
    83. 

  83. =================================
    84. 

    85. 

  85. $text = $bbcode->acronym_pass($text);
    86. 

  86. $text = $bbcode->autolink_text($text, $forum_id);
    87. 

  87. ====================
    88. 

    89. 

    90. 

  90. */
    91. 

  91. 

  92. // If included via function we need to make sure to have the requested globals...
    93. 

  93. global $db, $cache, $config, $lang;
    94. 

  94. 

  95. // To use this file outside Icy Phoenix you need to comment the define below and remove the check on top of the file.
    96. 

  96. define('IS_ICYPHOENIX', true);
    97. 

  97. if(defined('IS_ICYPHOENIX'))
    98. 

  98. {
    99. 

  99. 	// Include moved to functions... to avoid including wrong lang file ($config['default_lang'] is only assigned after session request)
    100. 

  100. 	//setup_extra_lang(array('lang_bbcb_mg'));
    101. 

  101. }
    102. 

  102. else
    103. 

  103. {
    104. 

  104. 	if (!defined('IP_ROOT_PATH')) define('IP_ROOT_PATH', './../');
    105. 

  105. 	if (!defined('PHP_EXT')) define('PHP_EXT', substr(strrchr(__FILE__, '.'), 1));
    106. 

  106. 	$config['allow_all_bbcode'] = 0;
    107. 

  107. 	$config['allow_html'] = false;
    108. 

  108. 	$config['allow_bbcode'] = true;
    109. 

  109. 	$config['allow_smilies'] = true;
    110. 

  110. 	$config['default_lang'] = 'english';
    111. 

  111. 	$config['cookie_secure'] = 0;
    112. 

  112. 	$config['server_name'] = 'icyphoenix.com';
    113. 

  113. 	$config['script_path'] = '/';
    114. 

  114. 	$config['liw_enabled'] = 0;
    115. 

  115. 	$config['liw_max_width'] = 0;
    116. 

  116. 	$config['thumbnail_cache'] = 0;
    117. 

  117. 	$config['thumbnail_posts'] = 0;
    118. 

  118. 	$config['thumbnail_highslide'] = 0;
    119. 

  119. 	$config['disable_html_guests'] = 0;
    120. 

  120. 	$config['quote_iterations'] = 3;
    121. 

  121. 	$config['switch_bbcb_active_content'] = 1;
    122. 

  122. 	$user->data['is_bot'] = false;
    123. 

  123. 	$user->data['session_logged_in'] = 0;
    124. 

  124. 	$lang['OpenNewWindow'] = 'Open in new window';
    125. 

  125. 	$lang['Click_enlarge_pic'] = 'Click to enlarge the image';
    126. 

  126. 	$lang['Links_For_Guests'] = 'You must be logged in to see this link';
    127. 

  127. 	$lang['Quote'] = 'Quote';
    128. 

  128. 	$lang['Code'] = 'Code';
    129. 

  129. 	$lang['OffTopic'] = 'Off Topic';
    130. 

  130. 	$lang['ReviewPost'] = 'Review Post';
    131. 

  131. 	$lang['wrote'] = 'wrote';
    132. 

  132. 	$lang['Description'] = 'Description';
    133. 

  133. 	$lang['Download'] = 'Download';
    134. 

  134. 	$lang['Hide'] = 'Hide';
    135. 

  135. 	$lang['Show'] = 'Show';
    136. 

  136. 	$lang['Select'] = 'Select';
    137. 

  137. 	$lang['xs_bbc_hide_message'] = 'Hidden';
    138. 

  138. 	$lang['xs_bbc_hide_message_explain'] = 'This message is hidden, you have to answer this topic to see it.';
    139. 

  139. 	$lang['DOWNLOADED'] = 'Downloaded';
    140. 

  140. 	$lang['FILESIZE'] = 'Filesize';
    141. 

  141. 	$lang['FILENAME'] = 'Filename';
    142. 

  142. 	$lang['Not_Authorized'] = 'Not Authorized';
    143. 

  143. 	$lang['FILE_NOT_AUTH'] = 'You are not authorized to download this file';
    144. 

  144. }
    145. 

  145. 

  146. $server_protocol = !empty($config['cookie_secure']) ? 'https://' : 'http://';
    147. 

  147. $local_urls = array(
    148. 

  148. 	$server_protocol . 'www.' . $config['server_name'] . $config['script_path'],
    149. 

  149. 	$server_protocol . $config['server_name'] . $config['script_path']
    150. 

  150. );
    151. 

  151. 

  152. if (function_exists('create_server_url'))
    153. 

  153. {
    154. 

  154. 	$server_url = create_server_url();
    155. 

  155. }
    156. 

  156. else
    157. 

  157. {
    158. 

  158. 	$host = getenv('HTTP_HOST');
    159. 

  159. 	$host = (!empty($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : (!empty($host) ? $host : $config['server_name']));
    160. 

  160. 	$server_url = $server_protocol . $host . $config['script_path'];
    161. 

  161. }
    162. 

  162. $smileys_path = $server_url . $config['smilies_path'] . '/';
    163. 

  163. 

  164. define('BBCODE_UID_LEN', 10);
    165. 

  165. define('BBCODE_NOSMILIES_START', '<!-- no smilies start -->');
    166. 

  166. define('BBCODE_NOSMILIES_END', '<!-- no smilies end -->');
    167. 

  167. define('BBCODE_SMILIES_PATH', $smileys_path);
    168. 

  168. define('AUTOURL', time());
    169. 

  169. 

  170. // Need to initialize the random numbers only ONCE
    171. 

  171. mt_srand((double) microtime() * 1000000);
    172. 

  172. 

  173. class bbcode
    174. 

  174. {
    175. 

  175. 	var $text = '';
    176. 

  176. 	var $html = '';
    177. 

  177. 	var $tag = '';
    178. 

  178. 

  179. 	var $code_counter = 0;
    180. 

  180. 	var $code_post_id = 0;
    181. 

  181. 

  182. 	var $allow_html = false;
    183. 

  183. 	var $allow_styling = true;
    184. 

  184. 	var $allow_bbcode = true;
    185. 

  185. 	var $allow_smilies = true;
    186. 

  186. 	var $allow_hs = true;
    187. 

  187. 	var $plain_html = false;
    188. 

  188. 	var $is_sig = false;
    189. 

  189. 

  190. 	var $params = array();
    191. 

  191. 	var $data = array();
    192. 

  192. 	var $replaced_smilies = array();
    193. 

  193. 

  194. 	var $self_closing_tags = array('[*]', '[hr]');
    195. 

  195. 

  196. 	var $allowed_bbcode = array(
    197. 

  197. 		'b'						=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    198. 

  198. 		'strong'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    199. 

  199. 		'em'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    200. 

  200. 		'i'						=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    201. 

  201. 		'u'						=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    202. 

  202. 		'tt'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    203. 

  203. 		'strike'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    204. 

  204. 		'sup'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    205. 

  205. 		'sub'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    206. 

  206. 

  207. 		'color'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    208. 

  208. 		'highlight'		=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    209. 

  209. 		'rainbow'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    210. 

  210. 		'gradient'		=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    211. 

  211. 		'fade'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    212. 

  212. 		'opacity'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    213. 

  213. 

  214. 		'align'				=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    215. 

  215. 		'center'			=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    216. 

  216. 		'font'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    217. 

  217. 		'size'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    218. 

  218. 		'hr'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => true),
    219. 

  219. 

  220. 		'url'					=> array('nested' => false, 'inurl' => false),
    221. 

  221. 		'a'						=> array('nested' => false, 'inurl' => false),
    222. 

  222. 		'email'				=> array('nested' => false, 'inurl' => false),
    223. 

  223. 

  224. 		'list'				=> array('nested' => true, 'inurl' => false),
    225. 

  225. 		'ul'					=> array('nested' => true, 'inurl' => false),
    226. 

  226. 		'ol'					=> array('nested' => true, 'inurl' => false),
    227. 

  227. 		'li'					=> array('nested' => true, 'inurl' => false),
    228. 

  228. 		'*'						=> array('nested' => true, 'inurl' => false),
    229. 

  229. 

  230. 		'div'					=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    231. 

  231. 		'span'				=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    232. 

  232. 		'cell'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    233. 

  233. 		'spoiler'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    234. 

  234. 		'hide'				=> array('nested' => false, 'inurl' => true, 'allow_empty' => false),
    235. 

  235. 

  236. 		'quote'				=> array('nested' => true, 'inurl' => false),
    237. 

  237. 		'ot'					=> array('nested' => true, 'inurl' => false),
    238. 

  238. 		'code'				=> array('nested' => false, 'inurl' => false),
    239. 

  239. 		'codeblock'		=> array('nested' => false, 'inurl' => false),
    240. 

  240. 		'c'						=> array('nested' => false, 'inurl' => false),
    241. 

  241. 

  242. 		'img'					=> array('nested' => false, 'inurl' => true),
    243. 

  243. 		'imgba'				=> array('nested' => false, 'inurl' => true),
    244. 

  244. 		'albumimg'		=> array('nested' => false, 'inurl' => true),
    245. 

  245. 		'attachment'	=> array('nested' => false, 'inurl' => false, 'allow_empty' => true),
    246. 

  246. 		'download'		=> array('nested' => false, 'inurl' => false, 'allow_empty' => true),
    247. 

  247. 

  248. 		'user'				=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    249. 

  249. 		'search'			=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    250. 

  250. 		'tag'					=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    251. 

  251. 		'langvar'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => true),
    252. 

  252. 		'language'		=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    253. 

  253. 

  254. 		'random'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => true),
    255. 

  255. 		'marquee'			=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    256. 

  256. 		'smiley'			=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    257. 

  257. 

  258. 		'flash'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    259. 

  259. 		'swf'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    260. 

  260. 		'flv'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    261. 

  261. 		'video'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    262. 

  262. 		'ram'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    263. 

  263. 		'quick'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    264. 

  264. 		'stream'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    265. 

  265. 		'emff'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    266. 

  266. 		'mp3'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    267. 

  267. 		'vimeo'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    268. 

  268. 		'youtube'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    269. 

  269. 		'googlevideo'	=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    270. 

  270. 

  271. 		// All these tags require HTML 4 specification (NON XHTML) and only work with IE!
    272. 

  272. 		// Decomment below to use these properly...
    273. 

  273. 		/*
    274. 

  274. 		'glow'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    275. 

  275. 		'shadow'		=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    276. 

  276. 		'blur'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    277. 

  277. 		'wave'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    278. 

  278. 		'fliph'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    279. 

  279. 		'flipv'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    280. 

  280. 		*/
    281. 

  281. 

  282. 		// Requires external file for parsing TEX
    283. 

  283. 		//'tex'				=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    284. 

  284. 

  285. 		// To use tables you just need to decomment this... no need to decomment even TR and TD
    286. 

  286. 		//'table'			=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    287. 

  287. 		/*
    288. 

  288. 		'tr'				=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    289. 

  289. 		'td'				=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    290. 

  290. 		*/
    291. 

  291. 

  292. 		// To use IFRAMES you just need to decomment this line (and the block some hundreds lines below)... good luck!
    293. 

  293. 		//'iframe'		=> array('nested' => true, 'inurl' => false, 'allow_empty' => true),
    294. 

  294. 	);
    295. 

  295. 

  296. 	var $allowed_html = array(
    297. 

  297. 		'b'						=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    298. 

  298. 		'strong'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    299. 

  299. 		'em'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    300. 

  300. 		'i'						=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    301. 

  301. 		'u'						=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    302. 

  302. 		'tt'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    303. 

  303. 		'strike'			=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    304. 

  304. 		'sup'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    305. 

  305. 		'sub'					=> array('nested' => true, 'inurl' => true, 'allow_empty' => false),
    306. 

  306. 

  307. 		'div'					=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    308. 

  308. 		'span'				=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    309. 

  309. 		'center'			=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    310. 

  310. 		'hr'					=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    311. 

  311. 

  312. 		'a'						=> array('nested' => false, 'inurl' => false),
    313. 

  313. 		'ul'					=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    314. 

  314. 		'ol'					=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    315. 

  315. 		'li'					=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    316. 

  316. 		'code'				=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    317. 

  317. 		'blockquote'	=> array('nested' => true, 'inurl' => false, 'allow_empty' => false),
    318. 

  318. 

  319. 		'table'			=> array('nested' => true, 'inurl' => false),
    320. 

  320. 		/*
    321. 

  321. 		'tr' => array('nested' => true, 'inurl' => false),
    322. 

  322. 		'td' => array('nested' => true, 'inurl' => false),
    323. 

  323. 		*/
    324. 

  324. 

  325. 		// To use IFRAMES you just need to decomment this line (and the block some hundreds lines below)... good luck!
    326. 

  326. 		//'iframe' => array('nested' => true, 'inurl' => false, 'allow_empty' => true),
    327. 

  327. 	);
    328. 

  328. 

  329. 	var $allowed_smilies = array(
    330. 

  330. 		array('code' => ':wink:', 'replace' => '(wink)'),
    331. 

  331. 		array('code' => ';)', 'replace' => '(smile1)'),
    332. 

  332. 		array('code' => ':)', 'replace' => '(smile2)'),
    333. 

  333. 	);
    334. 

  334. 

  335. 	/**
    336. 

  336. 	* Instantiate class
    337. 

  337. 	*/
    338. 

  338. 	function __construct()
    339. 

  339. 	{
    340. 

  340. 		global $config;
    341. 

  341. 

  342. 		$this->allow_html = (!empty($config['allow_html']) ? true : false);
    343. 

  343. 		$this->allow_bbcode = (!empty($config['allow_bbcode']) ? true : false);
    344. 

  344. 		$this->allow_smilies = (!empty($config['allow_smilies']) ? true : false);
    345. 

  345. 	}
    346. 

  346. 

  347. 	/*
    348. 

  348. 	Clean bbcode/html tag.
    349. 

  349. 	*/
    350. 

  350. 	function clean_tag(&$item)
    351. 

  351. 	{
    352. 

  352. 		$tag = $item['tag'];
    353. 

  353. 		//echo 'clean_tag(', $tag, ')<br />';
    354. 

  354. 		$start = substr($this->text, $item['start'], $item['start_len']);
    355. 

  355. 		$end = substr($this->text, $item['end'], $item['end_len']);
    356. 

  356. 		$content = substr($this->text, $item['start'] + $item['start_len'], $item['end'] - $item['start'] - $item['start_len']);
    357. 

  357. 		$error = array(
    358. 

  358. 			'valid' => false,
    359. 

  359. 			'start' => $this->process_text($start),
    360. 

  360. 			'end' => $this->process_text($end)
    361. 

  361. 		);
    362. 

  362. 		if(isset($item['valid']) && $item['valid'] == false)
    363. 

  363. 		{
    364. 

  364. 			return $error;
    365. 

  365. 		}
    366. 

  366. 

  367. 		// check if empty item is allowed
    368. 

  368. 		if(!strlen($content))
    369. 

  369. 		{
    370. 

  370. 			$allow_empty = true;
    371. 

  371. 			if($item['is_html'] && isset($this->allowed_html[$tag]['allow_empty']) && !$this->allowed_html[$tag]['allow_empty'])
    372. 

  372. 			{
    373. 

  373. 				$allow_empty = false;
    374. 

  374. 			}
    375. 

  375. 			if(!$item['is_html'] && isset($this->allowed_bbcode[$tag]['allow_empty']) && !$this->allowed_bbcode[$tag]['allow_empty'])
    376. 

  376. 			{
    377. 

  377. 				$allow_empty = false;
    378. 

  378. 			}
    379. 

  379. 			if(!$allow_empty)
    380. 

  380. 			{
    381. 

  381. 				return array(
    382. 

  382. 					'valid' => true,
    383. 

  383. 					'html' => '',
    384. 

  384. 					'end' => '',
    385. 

  385. 					'allow_nested' => false,
    386. 

  386. 				);
    387. 

  387. 			}
    388. 

  388. 		}
    389. 

  389. 

  390. 		return array(
    391. 

  391. 			'valid' => true,
    392. 

  392. 			'start' => '',
    393. 

  393. 			'end' => ''
    394. 

  394. 		);
    395. 

  395. 	}
    396. 

  396. 

  397. 	/*
    398. 

  398. 	Process bbcode/html tag.
    399. 

  399. 	This is the only function you would want to modify to add your own bbcode/html tags.
    400. 

  400. 	Note: this bbcode parser doesn't make any differece of bbcode and html, so <b> and [b] are treated exactly same way
    401. 

  401. 	*/
    402. 

  402. 	function process_tag(&$item)
    403. 

  403. 	{
    404. 

  404. 		global $db, $cache, $config, $user, $lang, $topic_id, $local_urls, $meta_content;
    405. 

  405. 

  406. 		$server_protocol = !empty($config['cookie_secure']) ? 'https://' : 'http://';
    407. 

  407. 		if (function_exists('create_server_url'))
    408. 

  408. 		{
    409. 

  409. 			$server_url = create_server_url();
    410. 

  410. 			$local_urls = empty($local_urls) ? array($server_url) : array_merge(array($server_url), $local_urls);
    411. 

  411. 		}
    412. 

  412. 		else
    413. 

  413. 		{
    414. 

  414. 			$host = getenv('HTTP_HOST');
    415. 

  415. 			$host = (!empty($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : (!empty($host) ? $host : $config['server_name']));
    416. 

  416. 			$server_url = $server_protocol . $host . $config['script_path'];
    417. 

  417. 		}
    418. 

  418. 

  419. 		//LIW - BEGIN
    420. 

  420. 		$max_image_width = intval($config['liw_max_width']);
    421. 

  421. 		//LIW - END
    422. 

  422. 		$tag = $item['tag'];
    423. 

  423. 		//echo 'process_tag(', $tag, ')<br />';
    424. 

  424. 		$start = substr($this->text, $item['start'], $item['start_len']);
    425. 

  425. 		$end = substr($this->text, $item['end'], $item['end_len']);
    426. 

  426. 		$content = substr($this->text, $item['start'] + $item['start_len'], $item['end'] - $item['start'] - $item['start_len']);
    427. 

  427. 		$error = array(
    428. 

  428. 			'valid' => false,
    429. 

  429. 			'start' => $this->process_text($start),
    430. 

  430. 			'end' => $this->process_text($end)
    431. 

  431. 		);
    432. 

  432. 		if(isset($item['valid']) && $item['valid'] == false)
    433. 

  433. 		{
    434. 

  434. 			return $error;
    435. 

  435. 		}
    436. 

  436. 

  437. 		// check if empty item is allowed
    438. 

  438. 		if(!strlen($content))
    439. 

  439. 		{
    440. 

  440. 			$allow_empty = true;
    441. 

  441. 			if($item['is_html'] && isset($this->allowed_html[$tag]['allow_empty']) && !$this->allowed_html[$tag]['allow_empty'])
    442. 

  442. 			{
    443. 

  443. 				$allow_empty = false;
    444. 

  444. 			}
    445. 

  445. 			if(!$item['is_html'] && isset($this->allowed_bbcode[$tag]['allow_empty']) && !$this->allowed_bbcode[$tag]['allow_empty'])
    446. 

  446. 			{
    447. 

  447. 				$allow_empty = false;
    448. 

  448. 			}
    449. 

  449. 			if(!$allow_empty)
    450. 

  450. 			{
    451. 

  451. 				return array(
    452. 

  452. 					'valid' => true,
    453. 

  453. 					'html' => '',
    454. 

  454. 					'end' => '',
    455. 

  455. 					'allow_nested' => false,
    456. 

  456. 				);
    457. 

  457. 			}
    458. 

  458. 		}
    459. 

  459. 

  460. 		// check if nested item is allowed
    461. 

  461. 		if($item['iteration'])
    462. 

  462. 		{
    463. 

  463. 			if($item['is_html'] && !$this->allowed_html[$tag]['nested'])
    464. 

  464. 			{
    465. 

  465. 				return $error;
    466. 

  466. 			}
    467. 

  467. 			if(!$item['is_html'] && !$this->allowed_bbcode[$tag]['nested'])
    468. 

  468. 			{
    469. 

  469. 				return $error;
    470. 

  470. 			}
    471. 

  471. 		}
    472. 

  472. 

  473. 		// Simple tags: B, EM, STRONG, I, U, TT, STRIKE, SUP, SUB, DIV, SPAN, CENTER
    474. 

  474. 		if(($tag === 'b') || ($tag === 'em') || ($tag === 'strong') || ($tag === 'i') || ($tag === 'u') || ($tag === 'tt') || ($tag === 'strike') || ($tag === 'sup') || ($tag === 'sub') || ($tag === 'div') || ($tag === 'span') || ($tag === 'center'))
    475. 

  475. 		{
    476. 

  476. 			$extras = $this->allow_styling ? array('style', 'class', 'name') : array('class', 'name');
    477. 

  477. 			$html = '<' . $tag . $this->add_extras($item['params'], $extras) . '>';
    478. 

  478. 			return array(
    479. 

  479. 				'valid' => true,
    480. 

  480. 				'start' => $html,
    481. 

  481. 				'end' => '</' . $tag . '>'
    482. 

  482. 			);
    483. 

  483. 		}
    484. 

  484. 

  485. 		// COLOR
    486. 

  486. 		if($tag === 'color')
    487. 

  487. 		{
    488. 

  488. 			$extras = $this->allow_styling ? array('class') : array();
    489. 

  489. 			$color = $this->valid_color((isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['color']) ? $item['params']['color'] : false)));
    490. 

  490. 

  491. 			if($color === false)
    492. 

  492. 			{
    493. 

  493. 				return $error;
    494. 

  494. 			}
    495. 

  495. 

  496. 			$html = '<span style="' . ($this->allow_styling && isset($item['params']['style']) ? htmlspecialchars($this->valid_style($item['params']['style'], '')) : '') . 'color: ' . $color . ';"' . $this->add_extras($item['params'], $extras) . '>';
    497. 

  497. 			return array(
    498. 

  498. 				'valid' => true,
    499. 

  499. 				'start' => $html,
    500. 

  500. 				'end' => '</span>',
    501. 

  501. 			);
    502. 

  502. 		}
    503. 

  503. 

  504. 		// RAINBOW
    505. 

  505. 		if($tag === 'rainbow')
    506. 

  506. 		{
    507. 

  507. 			$html = $this->rainbow($content);
    508. 

  508. 			return array(
    509. 

  509. 				'valid' => true,
    510. 

  510. 				'html' => $html,
    511. 

  511. 				'allow_nested' => false,
    512. 

  512. 			);
    513. 

  513. 		}
    514. 

  514. 

  515. 		// GRADIENT
    516. 

  516. 		if($tag === 'gradient')
    517. 

  517. 		{
    518. 

  518. 			$default_color1 = '#000080';
    519. 

  519. 			$color1 = $this->valid_color((isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['cols']) ? $item['params']['cols'] : $default_color1)), true);
    520. 

  520. 			$color1 = (($color1 === false) ? $default_color1 : $color1);
    521. 

  521. 

  522. 			$default_color2 = '#aaccee';
    523. 

  523. 			$color2 = $this->valid_color((isset($item['params']['cole']) ? $item['params']['cole'] : $default_color2), true);
    524. 

  524. 			$color2 = (($color2 === false) ? $default_color2 : $color2);
    525. 

  525. 

  526. 			$mode = $this->process_text((isset($item['params']['mode']) ? $item['params']['mode'] : ''));
    527. 

  527. 

  528. 			$default_iterations = 10;
    529. 

  529. 			$iterations = intval(isset($item['params']['iterations']) ? $item['params']['iterations'] : $default_iterations);
    530. 

  530. 			$iterations = ((($iterations < 10) || ($iterations > 100)) ? $default_iterations : $iterations);
    531. 

  531. 

  532. 			$html = $this->gradient($content, $color1, $color2, $mode, $iterations);
    533. 

  533. 			return array(
    534. 

  534. 				'valid' => true,
    535. 

  535. 				'html' => $html,
    536. 

  536. 				'allow_nested' => false,
    537. 

  537. 			);
    538. 

  538. 		}
    539. 

  539. 

  540. 		// HIGHLIGHT
    541. 

  541. 		if($tag === 'highlight')
    542. 

  542. 		{
    543. 

  543. 			$extras = $this->allow_styling ? array('class') : array();
    544. 

  544. 			$default_param = '#ffffaa';
    545. 

  545. 			$color = (isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['color']) ? $item['params']['color'] : $default_param));
    546. 

  546. 			$color = $this->valid_color($color);
    547. 

  547. 			if($color === false)
    548. 

  548. 			{
    549. 

  549. 				return $error;
    550. 

  550. 			}
    551. 

  551. 			$html = '<span style="' . ($this->allow_styling && isset($item['params']['style']) ? htmlspecialchars($this->valid_style($item['params']['style'], '')) : '') . 'background-color: ' . $color . ';"' . $this->add_extras($item['params'], $extras) . '>';
    552. 

  552. 			return array(
    553. 

  553. 				'valid' => true,
    554. 

  554. 				'start' => $html,
    555. 

  555. 				'end' => '</span>',
    556. 

  556. 			);
    557. 

  557. 		}
    558. 

  558. 

  559. 		// SIZE
    560. 

  560. 		if($tag === 'size')
    561. 

  561. 		{
    562. 

  562. 			$extras = $this->allow_styling ? array('class') : array();
    563. 

  563. 			$default_param = 0;
    564. 

  564. 			$size = intval((isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['size']) ? $item['params']['size'] : $default_param)));
    565. 

  565. 			if($size > 0 && $size < 7)
    566. 

  566. 			{
    567. 

  567. 				// vBulletin-style sizes
    568. 

  568. 				switch($size)
    569. 

  569. 				{
    570. 

  570. 					case 1: $size = 7; break;
    571. 

  571. 					case 2: $size = 8; break;
    572. 

  572. 					case 3: $size = 10; break;
    573. 

  573. 					case 4: $size = 12; break;
    574. 

  574. 					case 5: $size = 15; break;
    575. 

  575. 					case 6: $size = 24; break;
    576. 

  576. 				}
    577. 

  577. 			}
    578. 

  578. 			if(($size < 6) || ($size > 48))
    579. 

  579. 			{
    580. 

  580. 				return $error;
    581. 

  581. 			}
    582. 

  582. 			$html = '<span style="' . ($this->allow_styling && isset($item['params']['style']) ? htmlspecialchars($this->valid_style($item['params']['style'], '')) : '') . 'font-size: ' . $size . 'px; line-height: 116%;"' . $this->add_extras($item['params'], $extras) . '>';
    583. 

  583. 			return array(
    584. 

  584. 				'valid' => true,
    585. 

  585. 				'start' => $html,
    586. 

  586. 				'end' => '</span>',
    587. 

  587. 			);
    588. 

  588. 		}
    589. 

  589. 

  590. 		// Single tags: HR
    591. 

  591. 		if($tag === 'hr')
    592. 

  592. 		{
    593. 

  593. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    594. 

  594. 

  595. 			$extras = $this->allow_styling ? array('style', 'class') : array();
    596. 

  596. 			$color = $this->valid_color((isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['color']) ? $item['params']['color'] : false)));
    597. 

  597. 

  598. 			$html = '<' . $tag . (($color === false) ? ($this->allow_styling && isset($item['params']['style']) ? (' style="' . htmlspecialchars($this->valid_style($item['params']['style'], '')) . '"') : '') : (' style="border-color: ' . $color . ';"')) . ' />';
    599. 

  599. 			return array(
    600. 

  600. 				'valid' => true,
    601. 

  601. 				'html' => $html
    602. 

  602. 			);
    603. 

  603. 		}
    604. 

  604. 

  605. 		// ALIGN
    606. 

  606. 		if($tag === 'align')
    607. 

  607. 		{
    608. 

  608. 			$extras = $this->allow_styling ? array('style', 'class') : array();
    609. 

  609. 			$default_param = 'left';
    610. 

  610. 			$align = (isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['align']) ? $item['params']['align'] : $default_param));
    611. 

  611. 			if (($align === 'left') || ($align === 'right') || ($align === 'center') || ($align === 'justify'))
    612. 

  612. 			{
    613. 

  613. 				$html = '<div style="text-align: ' . $align . ';' . (($align === 'center') ? (' margin-left: auto; margin-right: auto;') : '') . '">';
    614. 

  614. 				return array(
    615. 

  615. 					'valid' => true,
    616. 

  616. 					'start' => $html,
    617. 

  617. 					'end' => '</div>',
    618. 

  618. 				);
    619. 

  619. 			}
    620. 

  620. 			else
    621. 

  621. 			{
    622. 

  622. 				return $error;
    623. 

  623. 			}
    624. 

  624. 		}
    625. 

  625. 

  626. 		// IMG
    627. 

  627. 		if($tag === 'img')
    628. 

  628. 		{
    629. 

  629. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    630. 

  630. 

  631. 			// main parameters
    632. 

  632. 			$params = array(
    633. 

  633. 				'src' => false,
    634. 

  634. 				'alt' => false,
    635. 

  635. 				'slide' => false,
    636. 

  636. 			);
    637. 

  637. 

  638. 			// additional allowed parameters
    639. 

  639. 			$extras = $this->allow_styling ? array('width', 'height', 'border', 'style', 'class', 'title', 'align') : array('width', 'height', 'border', 'title', 'align');
    640. 

  640. 			if ($config['thumbnail_highslide'])
    641. 

  641. 			{
    642. 

  642. 				$slideshow = !empty($item['params']['slide']) ? ', { slideshowGroup: \'' . $this->process_text($item['params']['slide']) . '\' } ' : '';
    643. 

  643. 			}
    644. 

  644. 			$liw_bypass = false;
    645. 

  645. 

  646. 			// [img=blah]blah2[/img]
    647. 

  647. 			if(isset($item['params']['param']))
    648. 

  648. 			{
    649. 

  649. 				$params['src'] = $item['params']['param'];
    650. 

  650. 				$img_url = $params['src'];
    651. 

  651. 				$img_url_enc = urlencode(ip_utf8_decode($params['src']));
    652. 

  652. 				$path_parts = pathinfo($img_url);
    653. 

  653. 				$params['alt'] = (!empty($content) ? $content : ip_clean_string($path_parts['filename'], $lang['ENCODING'], true));
    654. 

  654. 			}
    655. 

  655. 			// [img src=blah alt=blah width=123][/img]
    656. 

  656. 			elseif(isset($item['params']['src']))
    657. 

  657. 			{
    658. 

  658. 				$params['src'] = $item['params']['src'];
    659. 

  659. 				$img_url = $params['src'];
    660. 

  660. 				$img_url_enc = urlencode(ip_utf8_decode($params['src']));
    661. 

  661. 				$path_parts = pathinfo($img_url);
    662. 

  662. 				$params['alt'] = (isset($item['params']['alt']) ? $item['params']['alt'] : (!empty($content) ? $content : ip_clean_string($path_parts['filename'], $lang['ENCODING'], true)));
    663. 

  663. 				for($i = 0; $i < sizeof($extras); $i++)
    664. 

  664. 				{
    665. 

  665. 					if(!empty($item['params'][$extras[$i]]))
    666. 

  666. 					{
    667. 

  667. 						if($extras[$i] === 'style')
    668. 

  668. 						{
    669. 

  669. 							$style = $this->valid_style($item['params']['style']);
    670. 

  670. 							if($style !== false)
    671. 

  671. 							{
    672. 

  672. 								$params['style'] = $style;
    673. 

  673. 							}
    674. 

  674. 						}
    675. 

  675. 						else
    676. 

  676. 						{
    677. 

  677. 							$params[$extras[$i]] = $item['params'][$extras[$i]];
    678. 

  678. 						}
    679. 

  679. 					}
    680. 

  680. 				}
    681. 

  681. 			}
    682. 

  682. 			// [img]blah[/img], [img width=blah]blah[/img]
    683. 

  683. 			elseif(!empty($content))
    684. 

  684. 			{
    685. 

  685. 				$params['src'] = $content;
    686. 

  686. 				$img_url = $params['src'];
    687. 

  687. 				$img_url_enc = urlencode(ip_utf8_decode($params['src']));
    688. 

  688. 				$path_parts = pathinfo($img_url);
    689. 

  689. 				$params['alt'] = (isset($item['params']['alt']) ? $item['params']['alt'] : (isset($params['title']) ? $params['title'] : ip_clean_string($path_parts['filename'], $lang['ENCODING'], true)));
    690. 

  690. 				// LIW - BEGIN
    691. 

  691. 				if (($config['liw_enabled'] == 1) && ($max_image_width > 0) && ($config['thumbnail_posts'] == 0) && empty($this->plain_html))
    692. 

  692. 				{
    693. 

  693. 					$liw_bypass = true;
    694. 

  694. 					if (isset($item['params']['width']))
    695. 

  695. 					{
    696. 

  696. 						$item['params']['width'] = ($item['params']['width'] > $max_image_width) ? $max_image_width : $item['params']['width'];
    697. 

  697. 					}
    698. 

  698. 					else
    699. 

  699. 					{
    700. 

  700. 						$image_size = @getimagesize($content);
    701. 

  701. 						$item['params']['width'] = ($image_size[0] > $max_image_width) ? $max_image_width : $image_size[0];
    702. 

  702. 					}
    703. 

  703. 				}
    704. 

  704. 				// LIW - END
    705. 

  705. 				for($i = 0; $i < sizeof($extras); $i++)
    706. 

  706. 				{
    707. 

  707. 					if(!empty($item['params'][$extras[$i]]))
    708. 

  708. 					{
    709. 

  709. 						if($extras[$i] === 'style')
    710. 

  710. 						{
    711. 

  711. 							$style = $this->valid_style($item['params']['style']);
    712. 

  712. 							if($style !== false)
    713. 

  713. 							{
    714. 

  714. 								$params['style'] = $style;
    715. 

  715. 							}
    716. 

  716. 						}
    717. 

  717. 						else
    718. 

  718. 						{
    719. 

  719. 							$params[$extras[$i]] = $item['params'][$extras[$i]];
    720. 

  720. 						}
    721. 

  721. 					}
    722. 

  722. 				}
    723. 

  723. 			}
    724. 

  724. 

  725. 			$is_smiley = false;
    726. 

  726. 			if (substr($params['src'], 0, strlen(BBCODE_SMILIES_PATH)) == BBCODE_SMILIES_PATH)
    727. 

  727. 			{
    728. 

  728. 				$is_smiley = true;
    729. 

  729. 			}
    730. 

  730. 

  731. 			if (!$is_smiley && $config['thumbnail_posts'] && ($liw_bypass == false) && empty($this->plain_html))
    732. 

  732. 			{
    733. 

  733. 				$process_thumb = !empty($config['thumbnail_cache']) ? true : false;
    734. 

  734. 				$thumb_exists = false;
    735. 

  735. 				$thumb_processed = false;
    736. 

  736. 				$is_light_view = false;
    737. 

  737. 				if (isset($item['params']['thumb']))
    738. 

  738. 				{
    739. 

  739. 					if ($item['params']['thumb'] == 'false')
    740. 

  740. 					{
    741. 

  741. 						$process_thumb = false;
    742. 

  742. 					}
    743. 

  743. 				}
    744. 

  744. 				if(!empty($process_thumb))
    745. 

  745. 				{
    746. 

  746. 					$thumb_processed = true;
    747. 

  747. 					$pic_id = $img_url;
    748. 

  748. 					$pic_fullpath = str_replace(array(' '), array('%20'), $pic_id);
    749. 

  749. 					$pic_id = str_replace('http://', '', str_replace('https://', '', $pic_id));
    750. 

  750. 					$pic_path[] = array();
    751. 

  751. 					$pic_path = explode('/', $pic_id);
    752. 

  752. 					$pic_filename = end($pic_path);
    753. 

  753. 					$file_part = explode('.', strtolower($pic_filename));
    754. 

  754. 					$pic_filetype = end($file_part);
    755. 

  755. 					$thumb_ext_array = array('gif', 'jpg', 'png');
    756. 

  756. 					if (in_array($pic_filetype, $thumb_ext_array))
    757. 

  757. 					{
    758. 

  758. 						$user_dir = '';
    759. 

  759. 						$users_images_path = str_replace('http://', '', str_replace('https://', '', $server_url . str_replace(IP_ROOT_PATH, '', POSTED_IMAGES_PATH)));
    760. 

  760. 						$pic_title = substr($pic_filename, 0, strlen($pic_filename) - strlen($pic_filetype) - 1);
    761. 

  761. 						$pic_title_reg = preg_replace('/[^A-Za-z0-9]+/', '_', $pic_title);
    762. 

  762. 						$pic_thumbnail = 'mid_' . md5($pic_id) . '_' . $pic_filename;
    763. 

  763. 						if (strpos($pic_id, $users_images_path) !== false)
    764. 

  764. 						{
    765. 

  765. 							$user_dir = str_replace($pic_filename, '', str_replace($users_images_path, '', $pic_id));
    766. 

  766. 							$pic_thumbnail = $pic_filename;
    767. 

  767. 						}
    768. 

  768. 						$pic_thumbnail_fullpath = POSTED_IMAGES_THUMBS_PATH . $user_dir . $pic_thumbnail;
    769. 

  769. 						// Light View - BEGIN
    770. 

  770. 						$light_view = request_var('light_view', 0);
    771. 

  771. 						// Force to false for debugging purpose...
    772. 

  772. 						$light_view = 0;
    773. 

  773. 						if (!empty($light_view) && !empty($user_dir))
    774. 

  774. 						{
    775. 

  775. 							$is_light_view = true;
    776. 

  776. 							$pic_thumbnail_fullpath = POSTED_IMAGES_THUMBS_S_PATH . $user_dir . $pic_thumbnail;
    777. 

  777. 						}
    778. 

  778. 						// Light View - END
    779. 

  779. 						if(file_exists($pic_thumbnail_fullpath))
    780. 

  780. 						{
    781. 

  781. 							$thumb_exists = true;
    782. 

  782. 							$params['src'] = $server_url . str_replace(IP_ROOT_PATH, '', $pic_thumbnail_fullpath);
    783. 

  783. 						}
    784. 

  784. 					}
    785. 

  785. 				}
    786. 

  786. 				$cache_image = true;
    787. 

  787. 				$cache_append = '';
    788. 

  788. 				if (isset($item['params']['cache']))
    789. 

  789. 				{
    790. 

  790. 					if ($item['params']['cache'] == 'false')
    791. 

  791. 					{
    792. 

  792. 						//$bbc_eamp = '&amp;';
    793. 

  793. 						$bbc_eamp = '&';
    794. 

  794. 						$cache_image = false;
    795. 

  795. 						$cache_append = 'cache=false' . $bbc_eamp . 'rand=' . md5(rand()) . $bbc_eamp;
    796. 

  796. 					}
    797. 

  797. 					else
    798. 

  798. 					{
    799. 

  799. 						$cache_image = true;
    800. 

  800. 					}
    801. 

  801. 				}
    802. 

  802. 				if (!empty($process_thumb) && (($thumb_exists == false) || ($cache_image == false)))
    803. 

  803. 				{
    804. 

  804. 					$pic_thumbnail_script = $server_url . CMS_PAGE_IMAGE_THUMBNAIL . '?' . $cache_append . 'pic_id=' . $img_url_enc;
    805. 

  805. 					// Light View - BEGIN
    806. 

  806. 					if (!empty($thumb_processed) && !empty($is_light_view))
    807. 

  807. 					{
    808. 

  808. 						$img_url_enc = $user_dir . $pic_thumbnail;
    809. 

  809. 						$pic_thumbnail_script = $server_url . CMS_PAGE_IMAGE_THUMBNAIL_S . '?' . $cache_append . 'pic_id=' . $img_url_enc;
    810. 

  810. 					}
    811. 

  811. 					// Light View - END
    812. 

  812. 					$params['src'] = $pic_thumbnail_script;
    813. 

  813. 				}
    814. 

  814. 			}
    815. 

  815. 

  816. 			// generate html
    817. 

  817. 			$html = '<img';
    818. 

  818. 			foreach($params as $var => $value)
    819. 

  819. 			{
    820. 

  820. 				if ($this->process_text($value) != '')
    821. 

  821. 				{
    822. 

  822. 					$html .= ' ' . $var . '="' . $this->process_text($value) . '"';
    823. 

  823. 				}
    824. 

  824. 				if (($var == 'src') && (!$this->is_sig))
    825. 

  825. 				{
    826. 

  826. 					$meta_content['og_img'][] = $value;
    827. 

  827. 				}
    828. 

  828. 			}
    829. 

  829. 			if(!isset($params['title']))
    830. 

  830. 			{
    831. 

  831. 				$html .= ' title="' . $this->process_text($params['alt']) . '"';
    832. 

  832. 			}
    833. 

  833. 			$html .= ' />';
    834. 

  834. 			// add url
    835. 

  835. 			/*
    836. 

  836. 			if (strpos($params['src'], trim($config['server_name'])) == false)
    837. 

  837. 			{
    838. 

  838. 				$html = $this->process_text($params['alt']);
    839. 

  839. 			}
    840. 

  840. 			*/
    841. 

  841. 			// Light View - BEGIN
    842. 

  842. 			if (!empty($thumb_processed) && !empty($is_light_view) && empty($this->plain_html))
    843. 

  843. 			{
    844. 

  844. 				$item['inurl'] = true;
    845. 

  845. 			}
    846. 

  846. 			// Light View - END
    847. 

  847. 			if(empty($item['inurl']) && !$is_smiley && empty($this->plain_html))
    848. 

  848. 			{
    849. 

  849. 				if ($this->allow_hs && $config['thumbnail_posts'] && $config['thumbnail_highslide'])
    850. 

  850. 				{
    851. 

  851. 					$extra_html = ' class="highslide" onclick="return hs.expand(this' . $slideshow . ')"';
    852. 

  852. 				}
    853. 

  853. 				else
    854. 

  854. 				{
    855. 

  855. 					$extra_html = ' target="_blank" title="' . $lang['OpenNewWindow'] . '"';
    856. 

  856. 				}
    857. 

  857. 				$html = '<a href="' . $this->process_text($img_url) . '"' . $extra_html . '>' . $html . '</a>';
    858. 

  858. 			}
    859. 

  859. 			return array(
    860. 

  860. 				'valid' => true,
    861. 

  861. 				'html' => $html,
    862. 

  862. 				'allow_nested' => false,
    863. 

  863. 			);
    864. 

  864. 		}
    865. 

  865. 

  866. 		// IMGBA
    867. 

  867. 		if($tag === 'imgba')
    868. 

  868. 		{
    869. 

  869. 			if($this->is_sig) return $error;
    870. 

  870. 			if (!empty($this->plain_html)) return $error;
    871. 

  871. 

  872. 			// main parameters
    873. 

  873. 			$params = array(
    874. 

  874. 				'before' => false,
    875. 

  875. 				'after' => false,
    876. 

  876. 				'width' => false,
    877. 

  877. 				'w' => false,
    878. 

  878. 				'height' => false,
    879. 

  879. 				'h' => false,
    880. 

  880. 				'alt' => false,
    881. 

  881. 				'title' => false,
    882. 

  882. 			);
    883. 

  883. 

  884. 			foreach ($params as $k => $v)
    885. 

  885. 			{
    886. 

  886. 				$params[$k] = $item['params'][$k];
    887. 

  887. 			}
    888. 

  888. 

  889. 			if (empty($params['before']) || empty($params['after']))
    890. 

  890. 			{
    891. 

  891. 				return $error;
    892. 

  892. 			}
    893. 

  893. 

  894. 			$path_parts = pathinfo($params['before']);
    895. 

  895. 			(int) $params['width'] = !empty($params['w']) ? intval($params['w']) : intval($params['width']);
    896. 

  896. 			(int) $params['height'] = !empty($params['h']) ? intval($params['h']) : intval($params['height']);
    897. 

  897. 			$params['alt'] = (!empty($params['alt']) ? $params['alt'] : ip_clean_string($path_parts['filename'], $lang['ENCODING'], true));
    898. 

  898. 

  899. 			if (empty($params['width']) || empty($params['height']))
    900. 

  900. 			{
    901. 

  901. 				return $error;
    902. 

  902. 			}
    903. 

  903. 

  904. 			// Since we passed the main tests, we may force all needed JS inclusions...
    905. 

  905. 			$config['jquery_ui'] = true;
    906. 

  906. 			$config['jquery_ui_ba'] = true;
    907. 

  907. 

  908. 			$max_width = 600;
    909. 

  909. 			$or_width = $params['width'];
    910. 

  910. 			$or_height = $params['height'];
    911. 

  911. 			if ($params['width'] > $max_width)
    912. 

  912. 			{
    913. 

  913. 				$params['width'] = $max_width;
    914. 

  914. 				$params['height'] = $max_width / ($or_width / $or_height);
    915. 

  915. 			}
    916. 

  916. 

  917. 			// additional allowed parameters
    918. 

  918. 			$extras = $this->allow_styling ? array('style', 'class') : array();
    919. 

  919. 

  920. 			for($i = 0; $i < sizeof($extras); $i++)
    921. 

  921. 			{
    922. 

  922. 				if(!empty($item['params'][$extras[$i]]))
    923. 

  923. 				{
    924. 

  924. 					if($extras[$i] === 'style')
    925. 

  925. 					{
    926. 

  926. 						$style = $this->valid_style($item['params']['style']);
    927. 

  927. 						if($style !== false)
    928. 

  928. 						{
    929. 

  929. 							$params['style'] = $style;
    930. 

  930. 						}
    931. 

  931. 					}
    932. 

  932. 					else
    933. 

  933. 					{
    934. 

  934. 						$params[$extras[$i]] = $item['params'][$extras[$i]];
    935. 

  935. 					}
    936. 

  936. 				}
    937. 

  937. 			}
    938. 

  938. 

  939. 			$container = 'imgba_' . substr(md5($params['before']), 0, 6);
    940. 

  940. 

  941. 			$imgba_error = false;
    942. 

  942. 			$allowed_ext = array('gif', 'jpeg', 'jpg', 'png');
    943. 

  943. 			$img_test_array = array('before', 'after');
    944. 

  944. 			// Few "pseudo-security" tests
    945. 

  945. 			foreach ($img_test_array as $img_test)
    946. 

  946. 			{
    947. 

  947. 				$file_ext = substr(strrchr($params[$img_test], '.'), 1);
    948. 

  948. 				//if (!in_array($file_ext, $allowed_ext) || (strpos($params[$img_test], $server_url) !== 0) || (strpos($params[$img_test], '?') !== 0))
    949. 

  949. 				if (!in_array($file_ext, $allowed_ext))
    950. 

  950. 				{
    951. 

  951. 					$imgba_error = true;
    952. 

  952. 				}
    953. 

  953. 			}
    954. 

  954. 

  955. 			if (!empty($imgba_error))
    956. 

  956. 			{
    957. 

  957. 				return $error;
    958. 

  958. 			}
    959. 

  959. 

  960. 			// generate html
    961. 

  961. 			$html = '';
    962. 

  962. 			$html .= '<div id="' . $container . '"';
    963. 

  963. 			foreach($params as $var => $value)
    964. 

  964. 			{
    965. 

  965. 				if (in_array($value, array('width', 'height')) && ($this->process_text($value) != ''))
    966. 

  966. 				{
    967. 

  967. 					$html .= ' ' . $var . '="' . $this->process_text($value) . '"';
    968. 

  968. 				}
    969. 

  969. 			}
    970. 

  970. 			$html .= '>';
    971. 

  971. 

  972. 			$img_alt = $this->process_text($params['alt']);
    973. 

  973. 			$img_title = (!empty($params['title']) ? ' title="' . $this->process_text($params['title']) . '"' : '');
    974. 

  974. 			$html .= '<div><img src="' . $params['before'] . '" width="' . $params['width'] . '" height="' . $params['height'] . '" alt="Before: ' . $img_alt . '"' . $img_title . ' /></div>';
    975. 

  975. 			$html .= '<div><img src="' . $params['after'] . '" width="' . $params['width'] . '" height="' . $params['height'] . '" alt="After: ' . $img_alt . '"' . $img_title . ' /></div>';
    976. 

  976. 			$html .= '</div>';
    977. 

  977. 			$html .= '<script type="text/javascript">$(function(){ $(\'#' . $container . '\').beforeAfter({imagePath: \'' . $server_url . 'templates/common/jquery/\', showFullLinks: true, cursor: \'e-resize\', dividerColor: \'#dd2222\', beforeLinkText: \'' . $lang['IMG_BA_SHOW_ONLY_BEFORE'] . '\', afterLinkText: \'' . $lang['IMG_BA_SHOW_ONLY_AFTER'] . '\'}); });</script>';
    978. 

  978. 			return array(
    979. 

  979. 				'valid' => true,
    980. 

  980. 				'html' => $html,
    981. 

  981. 				'allow_nested' => false,
    982. 

  982. 			);
    983. 

  983. 		}
    984. 

  984. 

  985. 		// ALBUMIMG
    986. 

  986. 		if($tag === 'albumimg')
    987. 

  987. 		{
    988. 

  988. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    989. 

  989. 			if (!empty($this->plain_html)) return $error;
    990. 

  990. 

  991. 			// main parameters
    992. 

  992. 			$params = array(
    993. 

  993. 				'src' => false,
    994. 

  994. 				'alt' => false,
    995. 

  995. 			);
    996. 

  996. 			// additional allowed parameters
    997. 

  997. 			$extras = $this->allow_styling ? array('width', 'height', 'border', 'style', 'class', 'title', 'align') : array('width', 'height', 'border', 'title', 'align');
    998. 

  998. 			// [albumimg=blah]blah2[/albumimg]
    999. 

  999. 			if(isset($item['params']['param']))
    1000. 

  1000. 			{
    1001. 

  1001. 				$params['src'] = $item['params']['param'];
    1002. 

  1002. 				$pic_url = $item['params']['param'];
    1003. 

  1003. 				$params['alt'] = $content;
    1004. 

  1004. 			}
    1005. 

  1005. 			// [albumimg src=blah alt=blah width=123][/albumimg]
    1006. 

  1006. 			elseif(isset($item['params']['src']))
    1007. 

  1007. 			{
    1008. 

  1008. 				$params['src'] = $item['params']['src'];
    1009. 

  1009. 				$pic_url = $item['params']['src'];
    1010. 

  1010. 				$params['alt'] = isset($item['params']['alt']) ? $item['params']['alt'] : $content;
    1011. 

  1011. 				for($i = 0; $i < sizeof($extras); $i++)
    1012. 

  1012. 				{
    1013. 

  1013. 					if(!empty($item['params'][$extras[$i]]))
    1014. 

  1014. 					{
    1015. 

  1015. 						if($extras[$i] === 'style')
    1016. 

  1016. 						{
    1017. 

  1017. 							$style = $this->valid_style($item['params']['style']);
    1018. 

  1018. 							if($style !== false)
    1019. 

  1019. 							{
    1020. 

  1020. 								$params['style'] = $style;
    1021. 

  1021. 							}
    1022. 

  1022. 						}
    1023. 

  1023. 						else
    1024. 

  1024. 						{
    1025. 

  1025. 							$params[$extras[$i]] = $item['params'][$extras[$i]];
    1026. 

  1026. 						}
    1027. 

  1027. 					}
    1028. 

  1028. 				}
    1029. 

  1029. 			}
    1030. 

  1030. 			// [albumimg]blah[/albumimg], [albumimg width=blah]blah[/albumimg]
    1031. 

  1031. 			elseif(!empty($content))
    1032. 

  1032. 			{
    1033. 

  1033. 				$params['src'] = $content;
    1034. 

  1034. 				$pic_url = $content;
    1035. 

  1035. 				$params['alt'] = isset($item['params']['alt']) ? $item['params']['alt'] : (isset($params['title']) ? $params['title'] : '');
    1036. 

  1036. 				for($i = 0; $i < sizeof($extras); $i++)
    1037. 

  1037. 				{
    1038. 

  1038. 					if(!empty($item['params'][$extras[$i]]))
    1039. 

  1039. 					{
    1040. 

  1040. 						if($extras[$i] === 'style')
    1041. 

  1041. 						{
    1042. 

  1042. 							$style = $this->valid_style($item['params']['style']);
    1043. 

  1043. 							if($style !== false)
    1044. 

  1044. 							{
    1045. 

  1045. 								$params['style'] = $style;
    1046. 

  1046. 							}
    1047. 

  1047. 						}
    1048. 

  1048. 						else
    1049. 

  1049. 						{
    1050. 

  1050. 							$params[$extras[$i]] = $item['params'][$extras[$i]];
    1051. 

  1051. 						}
    1052. 

  1052. 					}
    1053. 

  1053. 				}
    1054. 

  1054. 			}
    1055. 

  1055. 			// generate html
    1056. 

  1056. 			$pic_url = $server_url . 'album_showpage.' . PHP_EXT . '?pic_id=' . $pic_url;
    1057. 

  1057. 			if(isset($item['params']['mode']))
    1058. 

  1058. 			{
    1059. 

  1059. 				$pic_mode = $item['params']['mode'];
    1060. 

  1060. 				if ($pic_mode === 'full')
    1061. 

  1061. 				{
    1062. 

  1062. 					$params['src'] = $server_url . 'album_picm.' . PHP_EXT . '?pic_id=' . $params['src'];
    1063. 

  1063. 				}
    1064. 

  1064. 				else
    1065. 

  1065. 				{
    1066. 

  1066. 					$params['src'] = $server_url . 'album_thumbnail.' . PHP_EXT . '?pic_id=' . $params['src'];
    1067. 

  1067. 				}
    1068. 

  1068. 			}
    1069. 

  1069. 			else
    1070. 

  1070. 			{
    1071. 

  1071. 				$params['src'] = $server_url . 'album_thumbnail.' . PHP_EXT . '?pic_id=' . $params['src'];
    1072. 

  1072. 			}
    1073. 

  1073. 			$html = '<img';
    1074. 

  1074. 			foreach($params as $var => $value)
    1075. 

  1075. 			{
    1076. 

  1076. 				$html .= ' ' . $var . '="' . $this->process_text($value) . '"';
    1077. 

  1077. 				if (($var == 'src') && (!$this->is_sig))
    1078. 

  1078. 				{
    1079. 

  1079. 					$meta_content['og_img'][] = $value;
    1080. 

  1080. 				}
    1081. 

  1081. 			}
    1082. 

  1082. 			if(!isset($params['title']))
    1083. 

  1083. 			{
    1084. 

  1084. 				$html .= ' title="' . $this->process_text($params['alt']) . '"';
    1085. 

  1085. 			}
    1086. 

  1086. 			$html .= ' />';
    1087. 

  1087. 			// add url
    1088. 

  1088. 			if(empty($item['inurl']))
    1089. 

  1089. 			{
    1090. 

  1090. 				$html = '<a href="' . $this->process_text($pic_url) . '" title="' . $lang['Click_enlarge_pic'] . '">' . $html . '</a>';
    1091. 

  1091. 			}
    1092. 

  1092. 			return array(
    1093. 

  1093. 				'valid' => true,
    1094. 

  1094. 				'html' => $html,
    1095. 

  1095. 				'allow_nested' => false,
    1096. 

  1096. 			);
    1097. 

  1097. 		}
    1098. 

  1098. 

  1099. 		// ATTACHMENT
    1100. 

  1100. 		if(($tag === 'attachment') || ($tag === 'download'))
    1101. 

  1101. 		{
    1102. 

  1102. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    1103. 

  1103. 			if (!empty($this->plain_html)) return $error;
    1104. 

  1104. 

  1105. 			$html = '';
    1106. 

  1106. 			$params['id'] = isset($item['params']['param']) ? intval($item['params']['param']) : (isset($item['params']['id']) ? intval($item['params']['id']) : false);
    1107. 

  1107. 			$params['title'] = isset($item['params']['title']) ? $this->process_text($item['params']['title']) : false;
    1108. 

  1108. 			$params['description'] = isset($item['params']['description']) ? $this->process_text($item['params']['description']) : (!empty($content) ? $this->process_text($content) : false);
    1109. 

  1109. 			$params['icon'] = isset($item['params']['icon']) ? $this->process_text($item['params']['icon']) : false;
    1110. 

  1110. 			$color = $this->valid_color(isset($item['params']['color']) ? $item['params']['color'] : false);
    1111. 

  1111. 			$bgcolor = $this->valid_color(isset($item['params']['bgcolor']) ? $item['params']['bgcolor'] : false);
    1112. 

  1112. 

  1113. 			$errored = false;
    1114. 

  1114. 			if ($params['id'] <= 0)
    1115. 

  1115. 			{
    1116. 

  1116. 				$errored = true;
    1117. 

  1117. 			}
    1118. 

  1118. 

  1119. 			if (!$errored)
    1120. 

  1120. 			{
    1121. 

  1121. 				if ($tag === 'attachment')
    1122. 

  1122. 				{
    1123. 

  1123. 					if (!function_exists('get_attachment_details'))
    1124. 

  1124. 					{
    1125. 

  1125. 						include_once(IP_ROOT_PATH . 'includes/functions_bbcode.' . PHP_EXT);
    1126. 

  1126. 					}
    1127. 

  1127. 					$is_auth_ary = auth(AUTH_READ, AUTH_LIST_ALL, $user->data);
    1128. 

  1128. 					$is_download_auth_ary = auth(AUTH_DOWNLOAD, AUTH_LIST_ALL, $user->data);
    1129. 

  1129. 					$attachment_details = get_attachment_details($params['id']);
    1130. 

  1130. 					if (($attachment_details == false) || !$is_auth_ary[$attachment_details['forum_id']]['auth_read'] || !$is_download_auth_ary[$attachment_details['forum_id']]['auth_download'])
    1131. 

  1131. 					{
    1132. 

  1132. 						$errored = true;
    1133. 

  1133. 					}
    1134. 

  1134. 				}
    1135. 

  1135. 				else
    1136. 

  1136. 				{
    1137. 

  1137. 					if (!function_exists('get_download_details'))
    1138. 

  1138. 					{
    1139. 

  1139. 						include_once(IP_ROOT_PATH . 'includes/functions_bbcode.' . PHP_EXT);
    1140. 

  1140. 					}
    1141. 

  1141. 					$attachment_details = get_download_details($params['id']);
    1142. 

  1142. 					$errored = ($attachment_details == false) ? true : false;
    1143. 

  1143. 				}
    1144. 

  1144. 			}
    1145. 

  1145. 

  1146. 			if (!$errored)
    1147. 

  1147. 			{
    1148. 

  1148. 				if ($tag === 'attachment')
    1149. 

  1149. 				{
    1150. 

  1150. 					$params['title'] = $params['title'] ? $params['title'] : (!empty($attachment_details['real_filename']) ? $attachment_details['real_filename'] : '&nbsp;');
    1151. 

  1151. 					$params['description'] = $params['description'] ? $params['description'] : (!empty($attachment_details['comment']) ? $attachment_details['comment'] : ' ');
    1152. 

  1152. 					$params['icon'] = IP_ROOT_PATH . FILES_ICONS_DIR . ($params['icon'] ? $params['icon'] : 'default.png');
    1153. 

  1153. 					$download_url = IP_ROOT_PATH . 'download.' . PHP_EXT . '?id=' . $params['id'];
    1154. 

  1154. 				}
    1155. 

  1155. 				else
    1156. 

  1156. 				{
    1157. 

  1157. 					$params['title'] = $params['title'] ? $params['title'] : (!empty($attachment_details['file_name']) ? $attachment_details['file_name'] : '&nbsp;');
    1158. 

  1158. 					$params['description'] = $params['description'] ? $params['description'] : (!empty($attachment_details['file_desc']) ? $attachment_details['file_desc'] : ' ');
    1159. 

  1159. 					$params['icon'] = IP_ROOT_PATH . FILES_ICONS_DIR . ($params['icon'] ? $params['icon'] : (!empty($attachment_details['file_posticon']) ? $attachment_details['file_posticon'] : 'default.png'));
    1160. 

  1160. 					$attachment_details['filesize'] = $attachment_details['file_size'];
    1161. 

  1161. 					$attachment_details['download_count'] = $attachment_details['file_dls'];
    1162. 

  1162. 					$download_url = IP_ROOT_PATH . 'dload.' . PHP_EXT . '?action=file&amp;file_id=' . $params['id'];
    1163. 

  1163. 				}
    1164. 

  1164. 

  1165. 				$params['title'] = htmlspecialchars($params['title']);
    1166. 

  1166. 				$params['description'] = htmlspecialchars($params['description']);
    1167. 

  1167. 				$params['icon'] = file_exists($params['icon']) ? $params['icon'] : (IP_ROOT_PATH . FILES_ICONS_DIR . 'default.png');
    1168. 

  1168. 				$style = ($color || $bgcolor) ? (' style="' . ($color ? 'color: ' . $color . ';' : '') . ($bgcolor ? 'background-color: ' . $bgcolor . ';' : '') . '"') : '';
    1169. 

  1169. 

  1170. 				$html .= '<div class="mg_attachtitle"' . $style . '>' . $params['title'] . '</div>';
    1171. 

  1171. 				$html .= '<div class="mg_attachdiv"><table>';
    1172. 

  1172. 				$html .= '<tr><td style="width: 15%;"><b class="gensmall">' . $lang['Description'] . ':</b></td><td style="width: 75%;"><span class="gensmall">' . $params['description'] . '</span></td><td rowspan="3" class="row-center" style="width: 10%;"><img src="' . $params['icon'] . '" alt="' . $params['description'] . '" /><br /><a href="' . append_sid($download_url) . '" title="' . $lang['Download'] . ' ' . $params['title'] . '"><b>' . $lang['Download'] . '</b></a></td></tr>';
    1173. 

  1173. 				$html .= '<tr><td><b class="gensmall">' . $lang['FILESIZE'] . ':</b></td><td><span class="gensmall">' . round(($attachment_details['filesize'] / 1024), 2) . ' KB</span></td></tr>';
    1174. 

  1174. 				$html .= '<tr><td><b class="gensmall">' . $lang['DOWNLOADED'] . ':</b></td><td><span class="gensmall">' . $attachment_details['download_count'] . '</span></td></tr>';
    1175. 

  1175. 				$html .= '</table></div>';
    1176. 

  1176. 			}
    1177. 

  1177. 			else
    1178. 

  1178. 			{
    1179. 

  1179. 				$style = ($color || $bgcolor) ? (' style="' . ($color ? 'color: ' . $color . ';' : '') . ($bgcolor ? 'background-color: ' . $bgcolor . ';' : '') . '"') : '';
    1180. 

  1180. 				$html .= '<div class="mg_attachtitle"' . $style . '>' . $lang['Not_Authorized'] . '</div>';
    1181. 

  1181. 				$html .= '<div class="mg_attachdiv"><div style="text-align: center;">' . $lang['FILE_NOT_AUTH'] . '</div></div>';
    1182. 

  1182. 			}
    1183. 

  1183. 

  1184. 			return array(
    1185. 

  1185. 				'valid' => true,
    1186. 

  1186. 				'html' => $html,
    1187. 

  1187. 				'allow_nested' => false,
    1188. 

  1188. 			);
    1189. 

  1189. 		}
    1190. 

  1190. 

  1191. 		// LIST
    1192. 

  1192. 		if(($tag === 'list') || ($tag === 'ul') || ($tag === 'ol'))
    1193. 

  1193. 		{
    1194. 

  1194. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    1195. 

  1195. 			$extras = $this->allow_styling ? array('style', 'class') : array();
    1196. 

  1196. 			// check if nested tags are all [*]
    1197. 

  1197. 			$nested_count = 0;
    1198. 

  1198. 			for($i = 0; $i < sizeof($item['items']); $i++)
    1199. 

  1199. 			{
    1200. 

  1200. 				$tag2 = $item['items'][$i]['tag'];
    1201. 

  1201. 				if(($tag2 === '*') || ($tag2 === 'li'))
    1202. 

  1202. 				{
    1203. 

  1203. 					$nested_count++;
    1204. 

  1204. 				}
    1205. 

  1205. 			}
    1206. 

  1206. 			if(!$nested_count)
    1207. 

  1207. 			{
    1208. 

  1208. 				// no <li> items. return error
    1209. 

  1209. 				return $error;
    1210. 

  1210. 			}
    1211. 

  1211. 			// replace "list" with html tag
    1212. 

  1212. 			if($tag === 'list')
    1213. 

  1213. 			{
    1214. 

  1214. 				if(isset($item['params']['param']) || isset($item['params']['type']))
    1215. 

  1215. 				{
    1216. 

  1216. 					$tag = 'ol';
    1217. 

  1217. 				}
    1218. 

  1218. 				else
    1219. 

  1219. 				{
    1220. 

  1220. 					$tag = 'ul';
    1221. 

  1221. 				}
    1222. 

  1222. 			}
    1223. 

  1223. 			// valid tag. process subitems to make sure there are no extra items and remove all code between elements
    1224. 

  1224. 			$last_item = false;
    1225. 

  1225. 			for($i = 0; $i < sizeof($item['items']); $i++)
    1226. 

  1226. 			{
    1227. 

  1227. 				$item2 = &$item['items'][$i];
    1228. 

  1228. 				$tag2 = $item2['tag'];
    1229. 

  1229. 				if(($tag2 === '*') || ($tag2 === 'li'))
    1230. 

  1230. 				{
    1231. 

  1231. 					// mark as valid
    1232. 

  1232. 					$item2['list_valid'] = true;
    1233. 

  1233. 					if($last_item === false)
    1234. 

  1234. 					{
    1235. 

  1235. 						// change start position to end of [list]
    1236. 

  1236. 						$pos = !empty($pos) ? $pos : 0;
    1237. 

  1237. 						$pos2 = $item2['start'] + $item2['start_len'];
    1238. 

  1238. 						$item2['start'] = $pos;
    1239. 

  1239. 						$item2['start_len'] = $pos2 - $pos;
    1240. 

  1240. 						$item2['first_entry'] = true;
    1241. 

  1241. 					}
    1242. 

  1242. 					$last_item = &$item['items'][$i];
    1243. 

  1243. 				}
    1244. 

  1244. 			}
    1245. 

  1245. 			// generate html
    1246. 

  1246. 			$html = '<' . $tag;
    1247. 

  1247. 			if(isset($item['params']['param']))
    1248. 

  1248. 			{
    1249. 

  1249. 				$html .= ' type="' . htmlspecialchars($item['params']['param']) . '"';
    1250. 

  1250. 			}
    1251. 

  1251. 			elseif(isset($item['params']['type']))
    1252. 

  1252. 			{
    1253. 

  1253. 				$html .= ' type="' . htmlspecialchars($item['params']['type']) . '"';
    1254. 

  1254. 			}
    1255. 

  1255. 			$html .= $this->add_extras($item['params'], $extras) . '>';
    1256. 

  1256. 			return array(
    1257. 

  1257. 				'valid' => true,
    1258. 

  1258. 				'start' => $html,
    1259. 

  1259. 				'end' => '</li></' . $tag . '>'
    1260. 

  1260. 			);
    1261. 

  1261. 		}
    1262. 

  1262. 

  1263. 		// [*], LI
    1264. 

  1264. 		if(($tag === '*') || ($tag === 'li'))
    1265. 

  1265. 		{
    1266. 

  1266. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    1267. 

  1267. 			$extras = $this->allow_styling ? array('style', 'class') : array();
    1268. 

  1268. 			// if not marked as valid return error
    1269. 

  1269. 			if(empty($item['list_valid']))
    1270. 

  1270. 			{
    1271. 

  1271. 				return $error;
    1272. 

  1272. 			}
    1273. 

  1273. 			$html = '<li';
    1274. 

  1274. 			if(empty($item['first_entry']))
    1275. 

  1275. 			{
    1276. 

  1276. 				// add closing tag for previous list entry
    1277. 

  1277. 				$html = '</li>' . $html;
    1278. 

  1278. 			}
    1279. 

  1279. 			$html .= $this->add_extras($item['params'], $extras) . '>';
    1280. 

  1280. 			return array(
    1281. 

  1281. 				'valid' => true,
    1282. 

  1282. 				'start' => $html,
    1283. 

  1283. 				'end' => '',
    1284. 

  1284. 			);
    1285. 

  1285. 		}
    1286. 

  1286. 

  1287. 		// FONT
    1288. 

  1288. 		if($tag === 'font')
    1289. 

  1289. 		{
    1290. 

  1290. 			$fonts = array(
    1291. 

  1291. 				'Arial',
    1292. 

  1292. 				'Arial Black',
    1293. 

  1293. 				'Comic Sans MS',
    1294. 

  1294. 				'Courier New',
    1295. 

  1295. 				'Impact',
    1296. 

  1296. 				'Lucida Console',
    1297. 

  1297. 				'Lucida Sans Unicode',
    1298. 

  1298. 				'Microsoft Sans Serif',
    1299. 

  1299. 				'Symbol',
    1300. 

  1300. 				'Tahoma',
    1301. 

  1301. 				'Times New Roman',
    1302. 

  1302. 				'Traditional Arabic',
    1303. 

  1303. 				'Trebuchet MS',
    1304. 

  1304. 				'Verdana',
    1305. 

  1305. 				'Webdings',
    1306. 

  1306. 				'Wingdings'
    1307. 

  1307. 			);
    1308. 

  1308. 			if (defined('FONTS_DIR'))
    1309. 

  1309. 			{
    1310. 

  1310. 				foreach ($cache->obtain_fonts() as $font_file)
    1311. 

  1311. 				{
    1312. 

  1312. 					$fonts[] = substr($font_file, 0, -4);
    1313. 

  1313. 				}
    1314. 

  1314. 			}
    1315. 

  1315. 			$extras = $this->allow_styling ? array('style', 'class') : array();
    1316. 

  1316. 			$default_param = 'Verdana';
    1317. 

  1317. 			$font = (isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['font']) ? $item['params']['font'] : $default_param));
    1318. 

  1318. 			$font = in_array($font, $fonts) ? $font : $default_param;
    1319. 

  1319. 			$html = '<span style="font-family: \'' . $font . '\';">';
    1320. 

  1320. 			return array(
    1321. 

  1321. 				'valid' => true,
    1322. 

  1322. 				'start' => $html,
    1323. 

  1323. 				'end' => '</span>',
    1324. 

  1324. 			);
    1325. 

  1325. 		}
    1326. 

  1326. 

  1327. 		// CELL
    1328. 

  1328. 		if($tag === 'cell')
    1329. 

  1329. 		{
    1330. 

  1330. 			$extras = $this->allow_styling ? array('style', 'class', 'align', 'border') : array('class', 'align');
    1331. 

  1331. 

  1332. 			$width = (isset($item['params']['width']) ? (' width: ' . intval($item['params']['width']) . 'px;') : '');
    1333. 

  1333. 			$height = (isset($item['params']['height']) ? (' height: ' . intval($item['params']['height']) . 'px;') : '');
    1334. 

  1334. 			$padding = (isset($item['params']['padding']) ? (' padding: ' . intval($item['params']['padding']) . 'px;') : '');
    1335. 

  1335. 			$margin = (isset($item['params']['margin']) ? (' margin: ' . intval($item['params']['margin']) . 'px;') : '');
    1336. 

  1336. 			$borderwidth = (isset($item['params']['borderwidth']) ? (' border-width: ' . intval($item['params']['borderwidth']) . 'px;') : '');
    1337. 

  1337. 

  1338. 			$bgcolor = $this->valid_color((isset($item['params']['bgcolor']) ? $item['params']['bgcolor'] : false));
    1339. 

  1339. 			$bgcolor = (($bgcolor !== false) ? (' background-color: ' . $bgcolor . ';') : '');
    1340. 

  1340. 

  1341. 			$bordercolor = $this->valid_color((isset($item['params']['bordercolor']) ? $item['params']['bordercolor'] : false));
    1342. 

  1342. 			$bordercolor = (($bordercolor !== false) ? (' border-color: ' . $bordercolor . ';') : '');
    1343. 

  1343. 

  1344. 			$color = $this->valid_color((isset($item['params']['color']) ? $item['params']['color'] : false));
    1345. 

  1345. 			$color = (($color !== false) ? (' color: ' . $color . ';') : '');
    1346. 

  1346. 

  1347. 			$html = '<div style="' . ($this->allow_styling && isset($item['params']['style']) ? htmlspecialchars($this->valid_style($item['params']['style'], '')) : '') . $height . $width . $bgcolor . $bordercolor . $borderwidth . $color . $padding . $margin . '"' . $this->add_extras($item['params'], $extras) . '>';
    1348. 

  1348. 			return array(
    1349. 

  1349. 				'valid' => true,
    1350. 

  1350. 				'start' => $html,
    1351. 

  1351. 				'end' => '</div>',
    1352. 

  1352. 			);
    1353. 

  1353. 		}
    1354. 

  1354. 

  1355. 		// URL, A
    1356. 

  1356. 		if(($tag === 'url') || ($tag === 'a'))
    1357. 

  1357. 		{
    1358. 

  1358. 			$extras = $this->allow_styling ? array('style', 'class', 'name', 'title') : array('name', 'title');
    1359. 

  1359. 			$allow_nested = true;
    1360. 

  1360. 			$strip_text = false;
    1361. 

  1361. 			$show_content = true;
    1362. 

  1362. 			$url = '';
    1363. 

  1363. 			// get url
    1364. 

  1364. 			if(!empty($item['params']['param']))
    1365. 

  1365. 			{
    1366. 

  1366. 				$url = $item['params']['param'];
    1367. 

  1367. 			}
    1368. 

  1368. 			elseif(!empty($item['params']['href']))
    1369. 

  1369. 			{
    1370. 

  1370. 				$url = $item['params']['href'];
    1371. 

  1371. 			}
    1372. 

  1372. 			elseif(!$item['is_html'])
    1373. 

  1373. 			{
    1374. 

  1374. 				$url = $content;
    1375. 

  1375. 				$allow_nested = false;
    1376. 

  1376. 				$strip_text = true;
    1377. 

  1377. 			}
    1378. 

  1378. 			else
    1379. 

  1379. 			{
    1380. 

  1380. 				return $error;
    1381. 

  1381. 			}
    1382. 

  1382. 			if(($url === $content) && (strlen($content) > 64))
    1383. 

  1383. 			{
    1384. 

  1384. 				$content = htmlspecialchars(substr($content, 0, 35) . '...' . substr($content, strlen($content) - 15));
    1385. 

  1385. 				$show_content = false;
    1386. 

  1386. 			}
    1387. 

  1387. 			// check if its email
    1388. 

  1388. 			if(substr(strtolower($url), 0, 7) === 'mailto:')
    1389. 

  1389. 			{
    1390. 

  1390. 				$item['tag'] = 'email';
    1391. 

  1391. 				return $this->process_tag($item);
    1392. 

  1392. 			}
    1393. 

  1393. 			// check for invalid urls
    1394. 

  1394. 			$url = $this->valid_url($url, '');
    1395. 

  1395. 			if(empty($url))
    1396. 

  1396. 			{
    1397. 

  1397. 				return $error;
    1398. 

  1398. 			}
    1399. 

  1399. 			// check nested items
    1400. 

  1400. 			if(!$allow_nested)
    1401. 

  1401. 			{
    1402. 

  1402. 				for($i = 0; $i < sizeof($item['items']); $i++)
    1403. 

  1403. 				{
    1404. 

  1404. 					$item['items'][$i]['valid'] = false;
    1405. 

  1405. 				}
    1406. 

  1406. 			}
    1407. 

  1407. 			else
    1408. 

  1408. 			{
    1409. 

  1409. 				for($i = 0; $i < sizeof($item['next']); $i++)
    1410. 

  1410. 				{
    1411. 

  1411. 					$tag2 = $item['next'][$i]['tag'];
    1412. 

  1412. 					$is_html = $item['next'][$i]['item']['is_html'];
    1413. 

  1413. 					$item['next'][$i]['item']['inurl'] = true;
    1414. 

  1414. 					if($is_html && !$this->allowed_html[$tag2]['inurl'])
    1415. 

  1415. 					{
    1416. 

  1416. 						$item['next'][$i]['item']['valid'] = false;
    1417. 

  1417. 					}
    1418. 

  1418. 					if(!$is_html && !$this->allowed_bbcode[$tag2]['inurl'])
    1419. 

  1419. 					{
    1420. 

  1420. 						$item['next'][$i]['item']['valid'] = false;
    1421. 

  1421. 					}
    1422. 

  1422. 				}
    1423. 

  1423. 			}
    1424. 

  1424. 			// check for incomplete url
    1425. 

  1425. 			if(substr(strtolower($url), 0, 4) === 'www.')
    1426. 

  1426. 			{
    1427. 

  1427. 				$url = 'http://' . $url;
    1428. 

  1428. 			}
    1429. 

  1429. 			// remove extra characters at the end
    1430. 

  1430. 			$last_char = substr($url, strlen($url) - 1);
    1431. 

  1431. 			$last_char_i = ord($last_char);
    1432. 

  1432. 			if((($last_char_i > 32) && ($last_char_i < 47)) || (($last_char_i > 57) && ($last_char_i < 65)))
    1433. 

  1433. 			{
    1434. 

  1434. 				$url = substr($url, 0, strlen($url) - 1);
    1435. 

  1435. 			}
    1436. 

  1436. 

  1437. 			// check if url is local
    1438. 

  1438. 			$is_local_url = false;
    1439. 

  1439. 			if (!empty($local_urls))
    1440. 

  1440. 			{
    1441. 

  1441. 				foreach ($local_urls as $local_url)
    1442. 

  1442. 				{
    1443. 

  1443. 					if((strlen($url) > strlen($local_url)) && strpos($url, $local_url) === 0)
    1444. 

  1444. 					{
    1445. 

  1445. 						$is_local_url = true;
    1446. 

  1446. 					}
    1447. 

  1447. 				}
    1448. 

  1448. 			}
    1449. 

  1449. 			if(empty($is_local_url) && (strpos($url, ':') === false))
    1450. 

  1450. 			{
    1451. 

  1451. 				$is_local_url = true;
    1452. 

  1452. 			}
    1453. 

  1453. 			// generate html
    1454. 

  1454. 			$url_target = ((isset($item['params']['target']) && (($item['params']['target'] != 0) || ($item['params']['target'] != 'false'))) ? true : false);
    1455. 

  1455. 			$url_class = empty($this->plain_html) ? ' class="post-url"' : '';
    1456. 

  1456. 			$html = '<a' . ($this->allow_styling && isset($item['params']['class']) ? '' : $url_class) . ' href="' . htmlspecialchars($url) . '"' . (($is_local_url && empty($url_target)) ? '' : (' target="_blank"' . ((!empty($item['params']['nofollow']) || $this->is_sig) ? ' rel="nofollow"' : ''))) . $this->add_extras($item['params'], $extras) . '>';
    1457. 

  1457. 

  1458. 			if ($config['disable_html_guests'] && !$user->data['session_logged_in'])
    1459. 

  1459. 			{
    1460. 

  1460. 				return array(
    1461. 

  1461. 					'valid' => true,
    1462. 

  1462. 					'html' => $lang['Links_For_Guests'],
    1463. 

  1463. 					'allow_nested' => false,
    1464. 

  1464. 				);
    1465. 

  1465. 			}
    1466. 

  1466. 			else
    1467. 

  1467. 			{
    1468. 

  1468. 				if($show_content)
    1469. 

  1469. 				{
    1470. 

  1470. 					return array(
    1471. 

  1471. 						'valid' => true,
    1472. 

  1472. 						'start' => $html,
    1473. 

  1473. 						'end' => '</a>',
    1474. 

  1474. 					);
    1475. 

  1475. 				}
    1476. 

  1476. 				else
    1477. 

  1477. 				{
    1478. 

  1478. 					return array(
    1479. 

  1479. 						'valid' => true,
    1480. 

  1480. 						'html' => $html . $content . '</a>',
    1481. 

  1481. 						'allow_nested' => false,
    1482. 

  1482. 					);
    1483. 

  1483. 				}
    1484. 

  1484. 			}
    1485. 

  1485. 		}
    1486. 

  1486. 

  1487. 		// EMAIL
    1488. 

  1488. 		if($tag === 'email')
    1489. 

  1489. 		{
    1490. 

  1490. 			$extras = $this->allow_styling ? array('style', 'class', 'name', 'title') : array('name', 'title');
    1491. 

  1491. 			$allow_nested = true;
    1492. 

  1492. 			$strip_text = false;
    1493. 

  1493. 			$url = '';
    1494. 

  1494. 			// get url
    1495. 

  1495. 			if(!empty($item['params']['param']))
    1496. 

  1496. 			{
    1497. 

  1497. 				$url = $item['params']['param'];
    1498. 

  1498. 			}
    1499. 

  1499. 			elseif(!empty($item['params']['href']))
    1500. 

  1500. 			{
    1501. 

  1501. 				$url = $item['params']['href'];
    1502. 

  1502. 			}
    1503. 

  1503. 			elseif(!empty($item['params']['addr']))
    1504. 

  1504. 			{
    1505. 

  1505. 				$url = $item['params']['addr'];
    1506. 

  1506. 			}
    1507. 

  1507. 			else
    1508. 

  1508. 			{
    1509. 

  1509. 				$url = $content;
    1510. 

  1510. 				$pos = strpos($url, '?');
    1511. 

  1511. 				if($pos)
    1512. 

  1512. 				{
    1513. 

  1513. 					$content = substr($url, 0, $pos);
    1514. 

  1514. 				}
    1515. 

  1515. 				if(substr(strtolower($url), 0, 7) === 'mailto:')
    1516. 

  1516. 				{
    1517. 

  1517. 					$content = substr($content, 7);
    1518. 

  1518. 				}
    1519. 

  1519. 				$allow_nested = false;
    1520. 

  1520. 				$strip_text = true;
    1521. 

  1521. 			}
    1522. 

  1522. 			if(empty($url))
    1523. 

  1523. 			{
    1524. 

  1524. 				return $error;
    1525. 

  1525. 			}
    1526. 

  1526. 			// disable nested items
    1527. 

  1527. 			for($i = 0; $i < sizeof($item['items']); $i++)
    1528. 

  1528. 			{
    1529. 

  1529. 				$item['items'][$i]['valid'] = false;
    1530. 

  1530. 			}
    1531. 

  1531. 			// generate html
    1532. 

  1532. 			if(substr(strtolower($url), 0, 7) === 'mailto:')
    1533. 

  1533. 			{
    1534. 

  1534. 				$url = substr($url, 7);
    1535. 

  1535. 			}
    1536. 

  1536. 			$email = '<a' . ($this->allow_styling && isset($item['params']['class']) ? '' : ' class="post-email"') . ' href="mailto:' . htmlspecialchars($url) . '"' . $this->add_extras($item['params'], $extras) . '>' . $content . '</a>';
    1537. 

  1537. 			$pos = strpos($url, '?');
    1538. 

  1538. 			if($pos)
    1539. 

  1539. 			{
    1540. 

  1540. 				$str = substr($url, 0, $pos);
    1541. 

  1541. 			}
    1542. 

  1542. 			else
    1543. 

  1543. 			{
    1544. 

  1544. 				$str = $url;
    1545. 

  1545. 			}
    1546. 

  1546. 			if (!empty($this->plain_html))
    1547. 

  1547. 			{
    1548. 

  1548. 				$html = '<a href="mailto:' . htmlspecialchars($url) . '"' . $this->add_extras($item['params'], $extras) . '>' . $content . '</a>';
    1549. 

  1549. 			}
    1550. 

  1550. 			else
    1551. 

  1551. 			{
    1552. 

  1552. 				if (defined('IN_AJAX_CHAT'))
    1553. 

  1553. 				{
    1554. 

  1554. 					$html = htmlspecialchars(str_replace(array('@', '.'), array(' [at] ', ' [dot] '), $str));
    1555. 

  1555. 				}
    1556. 

  1556. 				else
    1557. 

  1557. 				{
    1558. 

  1558. 					$noscript = '<noscript>' . htmlspecialchars(str_replace(array('@', '.'), array(' [at] ', ' [dot] '), $str)) . '</noscript>';
    1559. 

  1559. 					// make javascript from it
    1560. 

  1560. 					$html = BBCODE_NOSMILIES_START . '<script type="text/javascript">' . "\n" . '// <![CDATA[' . "\n";
    1561. 

  1561. 					$bit_lenght = 5;
    1562. 

  1562. 					for($i = 0; $i < strlen($email); $i += $bit_lenght)
    1563. 

  1563. 					{
    1564. 

  1564. 						$str = substr($email, $i, $bit_lenght);
    1565. 

  1565. 						//$str = preg_replace('/[^A-Za-z0-9_\-@.]+/', '_', $str);
    1566. 

  1566. 						$html .= 'document.write(\'' . str_replace('/', '\/', addslashes($str)) . '\');' . "\n";
    1567. 

  1567. 					}
    1568. 

  1568. 					$html .= "\n" . '// ]]>' . "\n" . '</script>' . "\n" . $noscript . BBCODE_NOSMILIES_END;
    1569. 

  1569. 				}
    1570. 

  1570. 			}
    1571. 

  1571. 			return array(
    1572. 

  1572. 				'valid' => true,
    1573. 

  1573. 				'html' => $html,
    1574. 

  1574. 				//'html' => $email,
    1575. 

  1575. 				'allow_nested' => false,
    1576. 

  1576. 			);
    1577. 

  1577. 		}
    1578. 

  1578. 

  1579. 		// QUOTE
    1580. 

  1580. 		if(($tag === 'quote') || ($tag === 'blockquote') || ($tag === 'ot'))
    1581. 

  1581. 		{
    1582. 

  1582. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    1583. 

  1583. 			if($item['iteration'] > ($config['quote_iterations']))
    1584. 

  1584. 			{
    1585. 

  1585. 				return $error;
    1586. 

  1586. 			}
    1587. 

  1587. 			// check user
    1588. 

  1588. 			$target_user = '';
    1589. 

  1589. 			$post_rev = '';
    1590. 

  1590. 			if(isset($item['params']['param']))
    1591. 

  1591. 			{
    1592. 

  1592. 				$target_user = htmlspecialchars($item['params']['param']);
    1593. 

  1593. 			}
    1594. 

  1594. 			elseif(isset($item['params']['user']))
    1595. 

  1595. 			{
    1596. 

  1596. 				$target_user = htmlspecialchars($item['params']['user']);
    1597. 

  1597. 				if(isset($item['params']['userid']) && intval($item['params']['userid']))
    1598. 

  1598. 				{
    1599. 

  1599. 					$target_user = '<a href="' . CMS_PAGE_PROFILE . '?mode=viewprofile&amp;' . POST_USERS_URL . '=' . intval($item['params']['userid']) . '">' . $target_user . '</a>';
    1600. 

  1600. 				}
    1601. 

  1601. 			}
    1602. 

  1602. 			if (!empty($this->plain_html))
    1603. 

  1603. 			{
    1604. 

  1604. 				// generate html
    1605. 

  1605. 				$html = '<blockquote>';
    1606. 

  1606. 				if($target_user)
    1607. 

  1607. 				{
    1608. 

  1608. 					$html .= '<div class="quote-user">' . $target_user . '&nbsp;' . $lang['wrote'] . ':&nbsp;' . $post_rev . '</div>';
    1609. 

  1609. 				}
    1610. 

  1610. 				return array(
    1611. 

  1611. 					'valid' => true,
    1612. 

  1612. 					'start' => $html,
    1613. 

  1613. 					'end' => '</blockquote>'
    1614. 

  1614. 				);
    1615. 

  1615. 			}
    1616. 

  1616. 			else
    1617. 

  1617. 			{
    1618. 

  1618. 				// generate html
    1619. 

  1619. 				$html = '<blockquote class="quote"';
    1620. 

  1620. 				if(isset($item['params']['post']) && intval($item['params']['post']))
    1621. 

  1621. 				{
    1622. 

  1622. 					$post_rev = ($user->data['is_bot'] ? '&nbsp;' : ('[<a href="#" onclick="open_postreview(\'show_post.php?p=' . intval($item['params']['post']) . '\'); return false;" class="genmed">' . $lang['ReviewPost'] . '</a>]'));
    1623. 

  1623. 					$html .= ' cite="'. CMS_PAGE_VIEWTOPIC . '?' . POST_POST_URL . '=' . intval($item['params']['post']) . '#p' . intval($item['params']['post']) . '"';
    1624. 

  1624. 				}
    1625. 

  1625. 				$html .= '>';
    1626. 

  1626. 				if($target_user)
    1627. 

  1627. 				{
    1628. 

  1628. 					if ($tag === 'ot')
    1629. 

  1629. 					{
    1630. 

  1630. 						$html .= '<div class="quote-user"><div class="error-message" style="display:inline;">' . $lang['OffTopic'] . '</div>&nbsp;' . $target_user . ':&nbsp;' . $post_rev . '</div>';
    1631. 

  1631. 					}
    1632. 

  1632. 					else
    1633. 

  1633. 					{
    1634. 

  1634. 						$html .= '<div class="quote-user">' . $target_user . '&nbsp;' . $lang['wrote'] . ':&nbsp;' . $post_rev . '</div>';
    1635. 

  1635. 					}
    1636. 

  1636. 				}
    1637. 

  1637. 				else
    1638. 

  1638. 				{
    1639. 

  1639. 					if ($tag === 'ot')
    1640. 

  1640. 					{
    1641. 

  1641. 						$html .= '<div class="quote-nouser">&nbsp;<div class="error-message" style="display: inline;">' . $lang['OffTopic'] . '</div>:</div>';
    1642. 

  1642. 					}
    1643. 

  1643. 					else
    1644. 

  1644. 					{
    1645. 

  1645. 						$html .= '<div class="quote-nouser">' . $lang['Quote'] . ':</div>';
    1646. 

  1646. 					}
    1647. 

  1647. 				}
    1648. 

  1648. 				$html .= '<div class="post-text post-text-hide-flow">';
    1649. 

  1649. 				return array(
    1650. 

  1650. 					'valid' => true,
    1651. 

  1651. 					'start' => $html,
    1652. 

  1652. 					'end' => '</div></blockquote>'
    1653. 

  1653. 				);
    1654. 

  1654. 			}
    1655. 

  1655. 		}
    1656. 

  1656. 

  1657. 		// INLINE CODE
    1658. 

  1658. 		if($tag === 'c')
    1659. 

  1659. 		{
    1660. 

  1660. 			$extras = $this->allow_styling ? array('style', 'name') : array('name');
    1661. 

  1661. 			$html = '<code class="inline"' . $this->add_extras($item['params'], $extras) . '>';
    1662. 

  1662. 			return array(
    1663. 

  1663. 				'valid' => true,
    1664. 

  1664. 				'start' => $html,
    1665. 

  1665. 				'end' => '</code>'
    1666. 

  1666. 			);
    1667. 

  1667. 		}
    1668. 

  1668. 

  1669. 		// CODE, CODEBLOCK
    1670. 

  1670. 		if(($tag === 'code') || ($tag === 'codeblock'))
    1671. 

  1671. 		{
    1672. 

  1672. 			if (!empty($this->plain_html))
    1673. 

  1673. 			{
    1674. 

  1674. 				if($this->is_sig && !$config['allow_all_bbcode'])
    1675. 

  1675. 				{
    1676. 

  1676. 					return $error;
    1677. 

  1677. 				}
    1678. 

  1678. 				$text = $this->process_text($content, false, true);
    1679. 

  1679. 				$html = BBCODE_NOSMILIES_START . '<code>' . $text . '</code>' . BBCODE_NOSMILIES_END;
    1680. 

  1680. 				return array(
    1681. 

  1681. 					'valid' => true,
    1682. 

  1682. 					'html' => $html,
    1683. 

  1683. 					'allow_nested' => false
    1684. 

  1684. 				);
    1685. 

  1685. 			}
    1686. 

  1686. 			else
    1687. 

  1687. 			{
    1688. 

  1688. 

  1689. 				// CODE
    1690. 

  1690. 				if($tag === 'code')
    1691. 

  1691. 				{
    1692. 

  1692. 					if($this->is_sig && !$config['allow_all_bbcode'])
    1693. 

  1693. 					{
    1694. 

  1694. 						return $error;
    1695. 

  1695. 					}
    1696. 

  1696. 					// replace spaces and tabs with &nbsp;
    1697. 

  1697. 					if(!defined('EXTRACT_CODE'))
    1698. 

  1698. 					{
    1699. 

  1699. 						/*
    1700. 

  1700. 						$search = array(
    1701. 

  1701. 							'  ',
    1702. 

  1702. 							"\t"
    1703. 

  1703. 						);
    1704. 

  1704. 						$replace = array(
    1705. 

  1705. 							'&nbsp; ',
    1706. 

  1706. 							'&nbsp; &nbsp; '
    1707. 

  1707. 						);
    1708. 

  1708. 						$text = str_replace($search, $replace, $this->process_text($content, false, true));
    1709. 

  1709. 						*/
    1710. 

  1710. 						$text = $this->process_text($content, false, true);
    1711. 

  1711. 					}
    1712. 

  1712. 					else
    1713. 

  1713. 					{
    1714. 

  1714. 						$text = $this->process_text($content, false, true);
    1715. 

  1715. 						$search = array('[highlight]', '[/highlight]');
    1716. 

  1716. 						$replace = array('', '');
    1717. 

  1717. 						$text = str_replace($search, $replace, $text);
    1718. 

  1718. 					}
    1719. 

  1719. 

  1720. 					// check filename
    1721. 

  1721. 					if(isset($item['params']['filename']))
    1722. 

  1722. 					{
    1723. 

  1723. 						$item['params']['file'] = $item['params']['filename'];
    1724. 

  1724. 					}
    1725. 

  1725. 					if(defined('EXTRACT_CODE') && ($this->code_counter == EXTRACT_CODE))
    1726. 

  1726. 					{
    1727. 

  1727. 						$GLOBALS['code_text'] = $text;
    1728. 

  1728. 						if(!empty($item['params']['file']))
    1729. 

  1729. 						{
    1730. 

  1730. 							$GLOBALS['code_filename'] = $item['params']['file'];
    1731. 

  1731. 						}
    1732. 

  1732. 					}
    1733. 

  1733. 					if(substr($text, 0, 1) === "\n")
    1734. 

  1734. 					{
    1735. 

  1735. 						$text = substr($text, 1);
    1736. 

  1736. 					}
    1737. 

  1737. 					elseif(substr($text, 0, 2) === "\r\n")
    1738. 

  1738. 					{
    1739. 

  1739. 						$text = substr($text, 2);
    1740. 

  1740. 					}
    1741. 

  1741. 					$linenumbers = true;
    1742. 

  1742. 					if(isset($item['params']['linenumbers']))
    1743. 

  1743. 					{
    1744. 

  1744. 						$linenumbers = ($item['params']['linenumbers'] == 'true') ? true : false;
    1745. 

  1745. 					}
    1746. 

  1746. 

  1747. 					if ($linenumbers == true)
    1748. 

  1748. 					{
    1749. 

  1749. 						// convert to list
    1750. 

  1750. 						if(isset($item['params']['syntax']))
    1751. 

  1751. 						{
    1752. 

  1752. 							if ($item['params']['syntax'] == 'php')
    1753. 

  1753. 							{
    1754. 

  1754. 								/*
    1755. 

  1755. 								$html = strtr($text, array_flip(get_html_translation_table(HTML_ENTITIES)));
    1756. 

  1756. 								$html = highlight_string($html, true);
    1757. 

  1757. 								$html_search = array('<font color="', '</font', '&nbsp;');
    1758. 

  1758. 								$xhtml_replace = array('<code style="color:', '</code', ' ');
    1759. 

  1759. 								//$xhtml_replace = array('<div style="display:inline;color:', '</div', ' ');
    1760. 

  1760. 								//$xhtml_replace = array('<span style="display:inline;color:', '</span', ' ');
    1761. 

  1761. 								$html = str_replace ($html_search, $xhtml_replace, $html);
    1762. 

  1762. 								$html = '<li class="code-row"><div class="code-row-text">' . $html . '</div></li>';
    1763. 

  1763. 								*/
    1764. 

  1764. 								/*
    1765. 

  1765. 								$html_search = array('<br />');
    1766. 

  1766. 								$xhtml_replace = array('</div></li><li class="code-row"><div class="code-row-text">');
    1767. 

  1767. 								$html = str_replace ($html_search, $xhtml_replace, $html);
    1768. 

  1768. 								*/
    1769. 

  1769. 

  1770. 								//PHP Highlight - Start
    1771. 

  1771. 								$code_ary = explode("\n", $text);
    1772. 

  1772. 

  1773. 								$open_php_tag = 0;
    1774. 

  1774. 								$close_php_tag = 0;
    1775. 

  1775. 								for ($i = 0; $i < sizeof($code_ary); $i++)
    1776. 

  1776. 								{
    1777. 

  1777. 									if (($code_ary[$i] == '') || ($code_ary[$i] == ' ') || ($code_ary[$i] == '&nbsp;') || ($code_ary[$i] == "\n") || ($code_ary[$i] == "\r") || ($code_ary[$i] == "\n\r"))
    1778. 

  1778. 									{
    1779. 

  1779. 										$html .= '<li class="code-row"><span class="code-row-text">&nbsp;&nbsp;</span></li>';
    1780. 

  1780. 									}
    1781. 

  1781. 									else
    1782. 

  1782. 									{
    1783. 

  1783. 										$prefix = (strpos(' ' . $code_ary[$i], '&lt;?')) ? '' : '<?php ';
    1784. 

  1784. 										$suffix = (strpos(' ' . $code_ary[$i], '?&gt;')) ? '' : '?>';
    1785. 

  1785. 

  1786. 										$code_ary[$i] = str_replace(array('&lt;', '&gt;'), array('<', '>'), $code_ary[$i]);
    1787. 

  1787. 										$code_ary[$i] = highlight_string(strtr($prefix . $code_ary[$i] . $suffix, array_flip(get_html_translation_table(HTML_ENTITIES))), true);
    1788. 

  1788. 

  1789. 										$html_search = array('<code>', '</code>');
    1790. 

  1790. 										$xhtml_replace = array('', '');
    1791. 

  1791. 										$code_ary[$i] = str_replace($html_search, $xhtml_replace, $code_ary[$i]);
    1792. 

  1792. 

  1793. 										if ($open_php_tag || ($prefix != ''))
    1794. 

  1794. 										{
    1795. 

  1795. 											$html_search = array('&lt;?php');
    1796. 

  1796. 											$xhtml_replace = array('');
    1797. 

  1797. 											$code_ary[$i] = str_replace($html_search, $xhtml_replace, $code_ary[$i]);
    1798. 

  1798. 										}
    1799. 

  1799. 

  1800. 										if ($close_php_tag || ($suffix != ''))
    1801. 

  1801. 										{
    1802. 

  1802. 											$html_search = array('?&gt;&nbsp;', '?&gt;');
    1803. 

  1803. 											$xhtml_replace = array('', '');
    1804. 

  1804. 											$code_ary[$i] = str_replace($html_search, $xhtml_replace, $code_ary[$i]);
    1805. 

  1805. 										}
    1806. 

  1806. 

  1807. 										($prefix == '') ? $open_php_tag++ : (($open_php_tag) ? $open_php_tag-- : '');
    1808. 

  1808. 										($suffix == '') ? $close_php_tag++ : (($close_php_tag) ? $close_php_tag-- : '');
    1809. 

  1809. 

  1810. 										$html .= '<li class="code-row"><span class="code-row-text">' . $code_ary[$i] . '&nbsp;</span></li>';
    1811. 

  1811. 									}
    1812. 

  1812. 								}
    1813. 

  1813. 

  1814. 								$html_search = array('<font color="', '</font', '&nbsp;', '<code style="color:#0000BB"></code>', '<code style="color:#0000BB"> </code>', '>  <');
    1815. 

  1815. 								$xhtml_replace = array('<code style="color:', '</code', ' ', '', '', '>&nbsp;<');
    1816. 

  1816. 								$html = str_replace($html_search, $xhtml_replace, $html);
    1817. 

  1817. 								//PHP Highlight - End
    1818. 

  1818. 							}
    1819. 

  1819. 							else
    1820. 

  1820. 							{
    1821. 

  1821. 								$search = array("\n", '[highlight]', '[/highlight]');
    1822. 

  1822. 								$replace = array('&nbsp;</span></li><li class="code-row"><span class="code-row-text">', '<span class="code-row-highlight">', '</span>');
    1823. 

  1823. 								$html = '<li class="code-row code-row-first"><span class="code-row-text">' . str_replace($search, $replace, $text) . '&nbsp;</span></li>';
    1824. 

  1824. 							}
    1825. 

  1825. 						}
    1826. 

  1826. 						else
    1827. 

  1827. 						{
    1828. 

  1828. 							$search = array("\n", '[highlight]', '[/highlight]');
    1829. 

  1829. 							$replace = array('&nbsp;</span></li><li class="code-row"><span class="code-row-text">', '<span class="code-row-highlight">', '</span>');
    1830. 

  1830. 							$html = '<li class="code-row code-row-first"><span class="code-row-text">' . str_replace($search, $replace, $text) . '&nbsp;</span></li>';
    1831. 

  1831. 						}
    1832. 

  1832. 

  1833. 						$str = '<li class="code-row"><div class="code-row-text">&nbsp;</div></li>';
    1834. 

  1834. 						if(substr($html, strlen($html) - strlen($str)) === $str)
    1835. 

  1835. 						{
    1836. 

  1836. 							$html = substr($html, 0, strlen($html) - strlen($str));
    1837. 

  1837. 						}
    1838. 

  1838. 						$start = isset($item['params']['start']) ? intval($item['params']['start']) : 1;
    1839. 

  1839. 						$can_download = !empty($this->code_post_id) ? $this->code_post_id : 0;
    1840. 

  1840. 						if($can_download)
    1841. 

  1841. 						{
    1842. 

  1842. 							//$download_text = ' [<a href="download.php?post=' . $can_download;
    1843. 

  1843. 							$download_text = ' [<a href="download_post.' . PHP_EXT . '?post=' . $can_download;
    1844. 

  1844. 							if($this->code_counter)
    1845. 

  1845. 							{
    1846. 

  1846. 								$download_text .= '&amp;item=' . $this->code_counter;
    1847. 

  1847. 							}
    1848. 

  1848. 							$download_text .= '">' . $lang['Download'] . '</a>]';
    1849. 

  1849. 						}
    1850. 

  1850. 						else
    1851. 

  1851. 						{
    1852. 

  1852. 							$download_text = '';
    1853. 

  1853. 						}
    1854. 

  1854. 						$code_id = substr(md5($content . mt_rand()), 0, 8);
    1855. 

  1855. 						$str = BBCODE_NOSMILIES_START . '<div class="code">';
    1856. 

  1856. 						$str .= '<div class="code-header" id="codehdr2_' . $code_id . '" style="position: relative;">' . $lang['Code'] . ':' . (empty($item['params']['file']) ? '' : ' (' . htmlspecialchars($item['params']['file']) . ')') . $download_text . ' [<a href="#" onclick="ShowHide(\'code_' . $code_id . '\',\'code2_' . $code_id . '\',\'\'); ShowHide(\'codehdr_' . $code_id . '\', \'codehdr2_' . $code_id . '\', \'\'); return false;">' . $lang['Hide'] . '</a>]</div>';
    1857. 

  1857. 						$str .= '<div class="code-header" id="codehdr_' . $code_id . '" style="position: relative; display: none;">' . $lang['Code'] . ':' . (empty($item['params']['file']) ? '' : ' (' . htmlspecialchars($item['params']['file']) . ')') . $download_text . ' [<a href="#" onclick="ShowHide(\'code_' . $code_id . '\',\'code2_' . $code_id . '\',\'\'); ShowHide(\'codehdr_' . $code_id . '\',\'codehdr2_' . $code_id . '\',\'\'); return false;">' . $lang['Show'] . '</a>]</div>';
    1858. 

  1858. 						$html = $str . '<div class="code-content" id="code_' . $code_id . '" style="position: relative;"><ol class="code-list" start="' . $start . '">' . $html . '</ol></div></div>' . BBCODE_NOSMILIES_END;
    1859. 

  1859. 						// check highlight
    1860. 

  1860. 						// format: highlight="1,2,3-10"
    1861. 

  1861. 						if(isset($item['params']['highlight']))
    1862. 

  1862. 						{
    1863. 

  1863. 							$search = '<li class="code-row';
    1864. 

  1864. 							$replace = '<li class="code-row code-row-highlight';
    1865. 

  1865. 							$search_len = strlen($search);
    1866. 

  1866. 							$replace_len = strlen($replace);
    1867. 

  1867. 							// get highlight string
    1868. 

  1868. 							$items = array();
    1869. 

  1869. 							$str = $item['params']['highlight'];
    1870. 

  1870. 							$list = explode(',', $str);
    1871. 

  1871. 							for($i = 0; $i < sizeof($list); $i++)
    1872. 

  1872. 							{
    1873. 

  1873. 								$str = trim($list[$i]);
    1874. 

  1874. 								if(strpos($str, '-'))
    1875. 

  1875. 								{
    1876. 

  1876. 									$row = explode('-', $str);
    1877. 

  1877. 									if(sizeof($row) == 2)
    1878. 

  1878. 									{
    1879. 

  1879. 										$num1 = intval($row[0]);
    1880. 

  1880. 										if($num1 == 0)
    1881. 

  1881. 										{
    1882. 

  1882. 											$num1 = 1;
    1883. 

  1883. 										}
    1884. 

  1884. 										$num2 = intval($row[1]);
    1885. 

  1885. 										if($num1 > 0 && $num2 > $num1 && ($num2 - $num1) < 256)
    1886. 

  1886. 										{
    1887. 

  1887. 											for($j=$num1; $j<=$num2; $j++)
    1888. 

  1888. 											{
    1889. 

  1889. 												$items['row' . $j] = true;
    1890. 

  1890. 											}
    1891. 

  1891. 										}
    1892. 

  1892. 									}
    1893. 

  1893. 								}
    1894. 

  1894. 								else
    1895. 

  1895. 								{
    1896. 

  1896. 									$num = intval($str);
    1897. 

  1897. 									if($num)
    1898. 

  1898. 									{
    1899. 

  1899. 										$items['row' . $num] = true;
    1900. 

  1900. 									}
    1901. 

  1901. 								}
    1902. 

  1902. 							}
    1903. 

  1903. 							if(sizeof($items))
    1904. 

  1904. 							{
    1905. 

  1905. 								// process all lines
    1906. 

  1906. 								$num = $start - 1;
    1907. 

  1907. 								$pos = strpos($html, $search);
    1908. 

  1908. 								$total = sizeof($items);
    1909. 

  1909. 								$found = 0;
    1910. 

  1910. 								while($pos !== false)
    1911. 

  1911. 								{
    1912. 

  1912. 									$num++;
    1913. 

  1913. 									if(isset($items['row' . $num]))
    1914. 

  1914. 									{
    1915. 

  1915. 										$found++;
    1916. 

  1916. 										$html = substr($html, 0, $pos) . $replace . substr($html, $pos + $search_len);
    1917. 

  1917. 										$pos += $replace_len;
    1918. 

  1918. 									}
    1919. 

  1919. 									else
    1920. 

  1920. 									{
    1921. 

  1921. 										$pos += $search_len;
    1922. 

  1922. 									}
    1923. 

  1923. 									$pos = $found < $total ? strpos($html, $search, $pos) : false;
    1924. 

  1924. 								}
    1925. 

  1925. 							}
    1926. 

  1926. 						}
    1927. 

  1927. 						// $html = BBCODE_NOSMILIES_START . '<div class="code"><div class="code-header">Code:</div><div class="code-content">' . $text . '</div></div>' . BBCODE_NOSMILIES_END;
    1928. 

  1928. 						$this->code_counter++;
    1929. 

  1929. 						return array(
    1930. 

  1930. 							'valid' => true,
    1931. 

  1931. 							'html' => $html,
    1932. 

  1932. 							'allow_nested' => false
    1933. 

  1933. 						);
    1934. 

  1934. 					}
    1935. 

  1935. 					else
    1936. 

  1936. 					{
    1937. 

  1937. 						$syntax_highlight = false;
    1938. 

  1938. 						if(isset($item['params']['syntax']))
    1939. 

  1939. 						{
    1940. 

  1940. 							if ($item['params']['syntax'] == 'php')
    1941. 

  1941. 							{
    1942. 

  1942. 								$html = strtr($text, array_flip(get_html_translation_table(HTML_ENTITIES)));
    1943. 

  1943. 								$html = highlight_string($html, true);
    1944. 

  1944. 								$html_search = array('<code>', '</code>', '<font color="', '</font', '&nbsp;', '<code style="color:#0000BB"></code>', '<code style="color:#0000BB"> </code>');
    1945. 

  1945. 								$xhtml_replace = array('', '', '<code style="color:', '</code', ' ', '', '');
    1946. 

  1946. 								$html = str_replace ($html_search, $xhtml_replace, $html);
    1947. 

  1947. 								$syntax_highlight = true;
    1948. 

  1948. 							}
    1949. 

  1949. 						}
    1950. 

  1950. 						if ($syntax_highlight == false)
    1951. 

  1951. 						{
    1952. 

  1952. 							$html = $text;
    1953. 

  1953. 							$search = array('[highlight]', '[/highlight]');
    1954. 

  1954. 							$replace = array('</span><span class="code-row code-row-highlight">', '</span><span class="code-row-text">');
    1955. 

  1955. 							$html = str_replace($search, $replace, $html);
    1956. 

  1956. 							$html = str_replace(array("\n", "\r\n"), array("<br />\n", "<br />\r\n"), $html);
    1957. 

  1957. 						}
    1958. 

  1958. 

  1959. 						$can_download = !empty($this->code_post_id) ? $this->code_post_id : 0;
    1960. 

  1960. 						if($can_download)
    1961. 

  1961. 						{
    1962. 

  1962. 							$download_text = ' [<a href="download_post.' . PHP_EXT . '?post=' . $can_download;
    1963. 

  1963. 							if($this->code_counter)
    1964. 

  1964. 							{
    1965. 

  1965. 								$download_text .= '&amp;item=' . $this->code_counter;
    1966. 

  1966. 							}
    1967. 

  1967. 							$download_text .= '">' . $lang['Download'] . '</a>]';
    1968. 

  1968. 						}
    1969. 

  1969. 						else
    1970. 

  1970. 						{
    1971. 

  1971. 							$download_text = '';
    1972. 

  1972. 						}
    1973. 

  1973. 						$code_id = substr(md5($content . mt_rand()), 0, 8);
    1974. 

  1974. 						$str = BBCODE_NOSMILIES_START . '<div class="code">';
    1975. 

  1975. 						$str .= '<div class="code-header" id="codehdr2_' . $code_id . '" style="position: relative;">' . $lang['Code'] . ':' . (empty($item['params']['file']) ? '' : ' (' . htmlspecialchars($item['params']['file']) . ')') . $download_text . ' [<a href="#" onclick="ShowHide(\'code_' . $code_id . '\',\'code2_' . $code_id . '\',\'\'); ShowHide(\'codehdr_' . $code_id . '\',\'codehdr2_' . $code_id . '\',\'\'); return false;">' . $lang['Hide'] . '</a>] [<a href="#" onclick="select_text(\'code_' . $code_id . '\'); return false;">' . $lang['Select'] . '</a>]</div>';
    1976. 

  1976. 						$str .= '<div class="code-header" id="codehdr_' . $code_id . '" style="position: relative; display: none;">' . $lang['Code'] . ':' . (empty($item['params']['file']) ? '' : ' (' . htmlspecialchars($item['params']['file']) . ')') . $download_text . ' [<a href="#" onclick="ShowHide(\'code_' . $code_id . '\',\'code2_' . $code_id . '\',\'\'); ShowHide(\'codehdr_' . $code_id . '\',\'codehdr2_' . $code_id . '\',\'\'); return false;">' . $lang['Show'] . '</a>]</div>';
    1977. 

  1977. 						$html = $str . '<div class="code-content" id="code_' . $code_id . '" style="position: relative;"><span class="code-row-text">' . $html . '</span></div></div>' . BBCODE_NOSMILIES_END;
    1978. 

  1978. 

  1979. 						$this->code_counter++;
    1980. 

  1980. 						return array(
    1981. 

  1981. 							'valid' => true,
    1982. 

  1982. 							'html' => $html,
    1983. 

  1983. 							'allow_nested' => false
    1984. 

  1984. 						);
    1985. 

  1985. 					}
    1986. 

  1986. 				}
    1987. 

  1987. 

  1988. 				// CODEBLOCK
    1989. 

  1989. 				if($tag === 'codeblock')
    1990. 

  1990. 				{
    1991. 

  1991. 					if($this->is_sig && !$config['allow_all_bbcode'])
    1992. 

  1992. 					{
    1993. 

  1993. 						return $error;
    1994. 

  1994. 					}
    1995. 

  1995. 					if(!defined('EXTRACT_CODE'))
    1996. 

  1996. 					{
    1997. 

  1997. 						/*
    1998. 

  1998. 						$search = array(
    1999. 

  1999. 							'  ',
    2000. 

  2000. 							"\t"
    2001. 

  2001. 						);
    2002. 

  2002. 						$replace = array(
    2003. 

  2003. 							'&nbsp; ',
    2004. 

  2004. 							'&nbsp; &nbsp; '
    2005. 

  2005. 						);
    2006. 

  2006. 						$text = str_replace($search, $replace, $this->process_text($content, false, true));
    2007. 

  2007. 						*/
    2008. 

  2008. 						$text = $this->process_text($content, false, true);
    2009. 

  2009. 					}
    2010. 

  2010. 					else
    2011. 

  2011. 					{
    2012. 

  2012. 						$text = $this->process_text($content, false, true);
    2013. 

  2013. 						$search = array('[highlight]', '[/highlight]');
    2014. 

  2014. 						$replace = array('', '');
    2015. 

  2015. 						$text = str_replace($search, $replace, $text);
    2016. 

  2016. 					}
    2017. 

  2017. 					// check filename
    2018. 

  2018. 					if(isset($item['params']['filename']))
    2019. 

  2019. 					{
    2020. 

  2020. 						$item['params']['file'] = $item['params']['filename'];
    2021. 

  2021. 					}
    2022. 

  2022. 					if(defined('EXTRACT_CODE') && $this->code_counter == EXTRACT_CODE)
    2023. 

  2023. 					{
    2024. 

  2024. 						$GLOBALS['code_text'] = $text;
    2025. 

  2025. 						if(!empty($item['params']['file']))
    2026. 

  2026. 						{
    2027. 

  2027. 							$GLOBALS['code_filename'] = $item['params']['file'];
    2028. 

  2028. 						}
    2029. 

  2029. 					}
    2030. 

  2030. 					if(substr($text, 0, 1) === "\n")
    2031. 

  2031. 					{
    2032. 

  2032. 						$text = substr($text, 1);
    2033. 

  2033. 					}
    2034. 

  2034. 					elseif(substr($text, 0, 2) === "\r\n")
    2035. 

  2035. 					{
    2036. 

  2036. 						$text = substr($text, 2);
    2037. 

  2037. 					}
    2038. 

  2038. 

  2039. 					$syntax_highlight = false;
    2040. 

  2040. 					if(isset($item['params']['syntax']))
    2041. 

  2041. 					{
    2042. 

  2042. 						if ($item['params']['syntax'] == 'php')
    2043. 

  2043. 						{
    2044. 

  2044. 							$html = strtr($text, array_flip(get_html_translation_table(HTML_ENTITIES)));
    2045. 

  2045. 							$html = highlight_string($html, true);
    2046. 

  2046. 							$html_search = array('<code>', '</code>', '<font color="', '</font', '&nbsp;', '<code style="color:#0000BB"></code>', '<code style="color:#0000BB"> </code>');
    2047. 

  2047. 							$xhtml_replace = array('', '', '<code style="color:', '</code', ' ', '', '');
    2048. 

  2048. 							$html = str_replace ($html_search, $xhtml_replace, $html);
    2049. 

  2049. 							$syntax_highlight = true;
    2050. 

  2050. 						}
    2051. 

  2051. 					}
    2052. 

  2052. 					if ($syntax_highlight == false)
    2053. 

  2053. 					{
    2054. 

  2054. 						$html = $text;
    2055. 

  2055. 						$search = array('[highlight]', '[/highlight]');
    2056. 

  2056. 						$replace = array('</span><span class="code-row code-row-highlight">', '</span><span class="code-row-text">');
    2057. 

  2057. 						$html = str_replace($search, $replace, $html);
    2058. 

  2058. 						$html = str_replace(array("\n", "\r\n"), array("<br />\n", "<br />\r\n"), $html);
    2059. 

  2059. 					}
    2060. 

  2060. 

  2061. 					$can_download = !empty($this->code_post_id) ? $this->code_post_id : 0;
    2062. 

  2062. 					if($can_download)
    2063. 

  2063. 					{
    2064. 

  2064. 						$download_text = ' [<a href="download_post.' . PHP_EXT . '?post=' . $can_download;
    2065. 

  2065. 						if($this->code_counter)
    2066. 

  2066. 						{
    2067. 

  2067. 							$download_text .= '&amp;item=' . $this->code_counter;
    2068. 

  2068. 						}
    2069. 

  2069. 						$download_text .= '">' . $lang['Download'] . '</a>]';
    2070. 

  2070. 					}
    2071. 

  2071. 					else
    2072. 

  2072. 					{
    2073. 

  2073. 						$download_text = '';
    2074. 

  2074. 					}
    2075. 

  2075. 					$code_id = substr(md5($content . mt_rand()), 0, 8);
    2076. 

  2076. 					$str = BBCODE_NOSMILIES_START . '<div class="code">';
    2077. 

  2077. 					$str .= '<div class="code-header" id="codehdr2_' . $code_id . '" style="position: relative;">' . $lang['Code'] . ':' . (empty($item['params']['file']) ? '' : ' (' . htmlspecialchars($item['params']['file']) . ')') . $download_text . ' [<a href="#" onclick="ShowHide(\'code_' . $code_id . '\',\'code2_' . $code_id . '\',\'\'); ShowHide(\'codehdr_' . $code_id . '\',\'codehdr2_' . $code_id . '\',\'\'); return false;">' . $lang['Hide'] . '</a>] [<a href="#" onclick="select_text(\'code_' . $code_id . '\'); return false;">' . $lang['Select'] . '</a>]</div>';
    2078. 

  2078. 					$str .= '<div class="code-header" id="codehdr_' . $code_id . '" style="position: relative; display: none;">' . $lang['Code'] . ':' . (empty($item['params']['file']) ? '' : ' (' . htmlspecialchars($item['params']['file']) . ')') . $download_text . ' [<a href="#" onclick="ShowHide(\'code_' . $code_id . '\',\'code2_' . $code_id . '\',\'\'); ShowHide(\'codehdr_' . $code_id . '\',\'codehdr2_' . $code_id . '\',\'\'); return false;">' . $lang['Show'] . '</a>]</div>';
    2079. 

  2079. 					$html = $str . '<div class="code-content" id="code_' . $code_id . '" style="position: relative;"><span class="code-row-text">' . $html . '</span></div></div>' . BBCODE_NOSMILIES_END;
    2080. 

  2080. 

  2081. 					$this->code_counter++;
    2082. 

  2082. 					return array(
    2083. 

  2083. 						'valid' => true,
    2084. 

  2084. 						'html' => $html,
    2085. 

  2085. 						'allow_nested' => false
    2086. 

  2086. 					);
    2087. 

  2087. 				}
    2088. 

  2088. 

  2089. 			}
    2090. 

  2090. 		}
    2091. 

  2091. 

  2092. 		// HIDE
    2093. 

  2093. 		if($tag === 'hide')
    2094. 

  2094. 		{
    2095. 

  2095. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    2096. 

  2096. 			if (!empty($this->plain_html)) return $error;
    2097. 

  2097. 

  2098. 			if($item['iteration'] > 1)
    2099. 

  2099. 			{
    2100. 

  2100. 				return $error;
    2101. 

  2101. 			}
    2102. 

  2102. 			$show = false;
    2103. 

  2103. 			if(defined('IS_ICYPHOENIX') && $user->data['session_logged_in'])
    2104. 

  2104. 			{
    2105. 

  2105. 				if (($user->data['user_level'] == ADMIN) || ($user->data['user_level'] == MOD))
    2106. 

  2106. 				{
    2107. 

  2107. 					$show = true;
    2108. 

  2108. 				}
    2109. 

  2109. 				else
    2110. 

  2110. 				{
    2111. 

  2111. 					$sql = "SELECT p.poster_id, p.topic_id
    2112. 

  2112. 						FROM " . POSTS_TABLE . " p
    2113. 

  2113. 						WHERE p.topic_id = " . intval($topic_id) . "
    2114. 

  2114. 						AND p.poster_id = " . $user->data['user_id'];
    2115. 

  2115. 					$db->sql_return_on_error(true);
    2116. 

  2116. 					$result = $db->sql_query($sql);
    2117. 

  2117. 					$db->sql_return_on_error(false);
    2118. 

  2118. 					if ($result)
    2119. 

  2119. 					{
    2120. 

  2120. 						$show = $db->sql_numrows($result) ? true : false;
    2121. 

  2121. 						$db->sql_freeresult($result);
    2122. 

  2122. 					}
    2123. 

  2123. 

  2124. 					$sql = "SELECT *
    2125. 

  2125. 						FROM " . POSTS_LIKES_TABLE . "
    2126. 

  2126. 						WHERE topic_id = " . intval($topic_id) . "
    2127. 

  2127. 						AND user_id = " . $user->data['user_id'];
    2128. 

  2128. 					$db->sql_return_on_error(true);
    2129. 

  2129. 					$result = $db->sql_query($sql);
    2130. 

  2130. 					$db->sql_return_on_error(false);
    2131. 

  2131. 					if ($result)
    2132. 

  2132. 					{
    2133. 

  2133. 						$show = ($db->sql_numrows($result) || ($show == true))? true : false;
    2134. 

  2134. 						$db->sql_freeresult($result);
    2135. 

  2135. 					}
    2136. 

  2136. 				}
    2137. 

  2137. 			}
    2138. 

  2138. 			// generate html
    2139. 

  2139. 			$html = '<blockquote class="quote"><div class="quote-nouser">' . $lang['xs_bbc_hide_message'] . ':</div><div class="post-text post-text-hide-flow">';
    2140. 

  2140. 			if(!$show)
    2141. 

  2141. 			{
    2142. 

  2142. 				return array(
    2143. 

  2143. 					'valid' => true,
    2144. 

  2144. 					'html' => $html . $lang['xs_bbc_hide_message_explain'] . '</div></blockquote>',
    2145. 

  2145. 					'allow_nested' => false,
    2146. 

  2146. 				);
    2147. 

  2147. 			}
    2148. 

  2148. 			else
    2149. 

  2149. 			{
    2150. 

  2150. 				return array(
    2151. 

  2151. 					'valid' => true,
    2152. 

  2152. 					'start' => $html,
    2153. 

  2153. 					'end' => '</div></blockquote>'
    2154. 

  2154. 				);
    2155. 

  2155. 			}
    2156. 

  2156. 		}
    2157. 

  2157. 

  2158. 		// SPOILER
    2159. 

  2159. 		if($tag === 'spoiler')
    2160. 

  2160. 		{
    2161. 

  2161. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    2162. 

  2162. 			if (!empty($this->plain_html)) return $error;
    2163. 

  2163. 

  2164. 			if($item['iteration'] > 1)
    2165. 

  2165. 			{
    2166. 

  2166. 				return $error;
    2167. 

  2167. 			}
    2168. 

  2168. 			$spoiler_id = substr(md5($content . mt_rand()), 0, 8);
    2169. 

  2169. 			$str = '<div class="spoiler">';
    2170. 

  2170. 			$str .= '<div class="code-header" id="spoilerhdr_' . $spoiler_id . '" style="position: relative;">' . $lang['bbcb_mg_spoiler'] . ': [ <a href="#" onclick="ShowHide(\'spoiler_' . $spoiler_id . '\', \'spoiler2_' . $spoiler_id . '\', \'\'); ShowHide(\'spoilerhdr_' . $spoiler_id . '\', \'spoilerhdr2_' . $spoiler_id . '\', \'\'); return false;">' . $lang['Show'] . '</a> ]</div>';
    2171. 

  2171. 			$str .= '<div class="code-header" id="spoilerhdr2_' . $spoiler_id . '" style="position: relative; display: none;">' . $lang['bbcb_mg_spoiler'] . ': [ <a href="#" onclick="ShowHide(\'spoiler_' . $spoiler_id . '\', \'spoiler2_' . $spoiler_id . '\', \'\'); ShowHide(\'spoilerhdr_' . $spoiler_id . '\', \'spoilerhdr2_' . $spoiler_id . '\', \'\'); return false;">' . $lang['Hide'] . '</a> ]</div>';
    2172. 

  2172. 			$str .= '<div class="spoiler-content" id="spoiler2_' . $spoiler_id . '" style="position: relative; display: none;">' . $html;
    2173. 

  2173. 			return array(
    2174. 

  2174. 				'valid' => true,
    2175. 

  2175. 				'start' => $str,
    2176. 

  2176. 				'end' => '</div></div>'
    2177. 

  2177. 			);
    2178. 

  2178. 		}
    2179. 

  2179. 

  2180. 		// USER
    2181. 

  2181. 		// Insert the username and avatar for the selected id
    2182. 

  2182. 		if($tag === 'user')
    2183. 

  2183. 		{
    2184. 

  2184. 			if($this->is_sig) return $error;
    2185. 

  2185. 			if (!empty($this->plain_html)) return $error;
    2186. 

  2186. 

  2187. 			if(isset($item['params']['param']))
    2188. 

  2188. 			{
    2189. 

  2189. 				$bb_userid = (int) $item['params']['param'];
    2190. 

  2190. 			}
    2191. 

  2191. 			else
    2192. 

  2192. 			{
    2193. 

  2193. 				$bb_userid = (int) $content;
    2194. 

  2194. 			}
    2195. 

  2195. 

  2196. 			if ($bb_userid < 2)
    2197. 

  2197. 			{
    2198. 

  2198. 				return $error;
    2199. 

  2199. 			}
    2200. 

  2200. 

  2201. 			$bb_user_data = get_userdata($bb_userid);
    2202. 

  2202. 			if (empty($bb_user_data))
    2203. 

  2203. 			{
    2204. 

  2204. 				return $error;
    2205. 

  2205. 			}
    2206. 

  2206. 

  2207. 			$bb_name_link = colorize_username($bb_user_data['user_id'], $bb_user_data['username'], $bb_user_data['user_color'], $bb_user_data['user_active']);
    2208. 

  2208. 			$bb_avatar_img = user_get_avatar($bb_user_data['user_id'], $bb_user_data['user_level'], $bb_user_data['user_avatar'], $bb_user_data['user_avatar_type'], $bb_user_data['user_allowavatar'], '', 30);
    2209. 

  2209. 

  2210. 			$html = $bb_avatar_img . ' ' . $bb_name_link;
    2211. 

  2211. 			return array(
    2212. 

  2212. 				'valid' => true,
    2213. 

  2213. 				'html' => $html
    2214. 

  2214. 			);
    2215. 

  2215. 		}
    2216. 

  2216. 

  2217. 		// LANGVAR
    2218. 

  2218. 		// Insert the content of a lang var into post... maybe we need to filter something?
    2219. 

  2219. 		if($tag === 'langvar')
    2220. 

  2220. 		{
    2221. 

  2221. 			if(isset($item['params']['param']))
    2222. 

  2222. 			{
    2223. 

  2223. 				$langvar = $item['params']['param'];
    2224. 

  2224. 			}
    2225. 

  2225. 			else
    2226. 

  2226. 			{
    2227. 

  2227. 				$langvar = $content;
    2228. 

  2228. 			}
    2229. 

  2229. 			$html = (isset($lang[$langvar]) ? $lang[$langvar] : '');
    2230. 

  2230. 			return array(
    2231. 

  2231. 				'valid' => true,
    2232. 

  2232. 				'html' => $html
    2233. 

  2233. 			);
    2234. 

  2234. 		}
    2235. 

  2235. 

  2236. 		// LANGUAGE
    2237. 

  2237. 		// Parse the content only if in the same language of the user viewing it!!!
    2238. 

  2238. 		if($tag === 'language')
    2239. 

  2239. 		{
    2240. 

  2240. 			$language = '';
    2241. 

  2241. 			if(isset($item['params']['param']))
    2242. 

  2242. 			{
    2243. 

  2243. 				$language = $item['params']['param'];
    2244. 

  2244. 			}
    2245. 

  2245. 			$content = ($config['default_lang'] != $language) ? '' : $content;
    2246. 

  2246. 			// We need this trick to process BBCodes withing language BBCode
    2247. 

  2247. 			if(empty($content))
    2248. 

  2248. 			{
    2249. 

  2249. 				return array(
    2250. 

  2250. 					'valid' => true,
    2251. 

  2251. 					'html' => '',
    2252. 

  2252. 				);
    2253. 

  2253. 			}
    2254. 

  2254. 			else
    2255. 

  2255. 			{
    2256. 

  2256. 				return array(
    2257. 

  2257. 					'valid' => true,
    2258. 

  2258. 					'start' => '',
    2259. 

  2259. 					'end' => ''
    2260. 

  2260. 				);
    2261. 

  2261. 			}
    2262. 

  2262. 		}
    2263. 

  2263. 

  2264. 		// SEARCH
    2265. 

  2265. 		if($tag === 'search')
    2266. 

  2266. 		{
    2267. 

  2267. 			if(empty($content)) return $error;
    2268. 

  2268. 			if (!empty($this->plain_html)) return $error;
    2269. 

  2269. 

  2270. 			$str = '<a href="' . CMS_PAGE_SEARCH . '?search_keywords=' . urlencode($this->process_text($content)) . '">';
    2271. 

  2271. 			return array(
    2272. 

  2272. 				'valid' => true,
    2273. 

  2273. 				'start' => $str,
    2274. 

  2274. 				'end' => '</a>'
    2275. 

  2275. 			);
    2276. 

  2276. 		}
    2277. 

  2277. 

  2278. 		// TAG
    2279. 

  2279. 		if($tag === 'tag')
    2280. 

  2280. 		{
    2281. 

  2281. 			if(empty($content)) return $error;
    2282. 

  2282. 			if (!empty($this->plain_html)) return $error;
    2283. 

  2283. 

  2284. 			$str = '<a href="tags.' . PHP_EXT . '?tag_text=' . urlencode($this->process_text($content)) . '">';
    2285. 

  2285. 			return array(
    2286. 

  2286. 				'valid' => true,
    2287. 

  2287. 				'start' => $str,
    2288. 

  2288. 				'end' => '</a>'
    2289. 

  2289. 			);
    2290. 

  2290. 		}
    2291. 

  2291. 

  2292. 		// Random number or quote (quote not implemented yet)
    2293. 

  2293. 		if($tag === 'random')
    2294. 

  2294. 		{
    2295. 

  2295. 			$max_n = 6;
    2296. 

  2296. 			$max_n = intval((isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['max']) ? $item['params']['max'] : 6)));
    2297. 

  2297. 			$max_n = ($max_n <= 0) ? 6 : $max_n;
    2298. 

  2298. 			/*
    2299. 

  2299. 			include_once(IP_ROOT_PATH . 'language/lang_' . $config['default_lang'] . '/lang_randomquote.' . PHP_EXT);
    2300. 

  2300. 			$randomquote_phrase = $randomquote[rand(0, sizeof($randomquote) - 1)];
    2301. 

  2301. 			*/
    2302. 

  2302. 			$html = rand(1, $max_n);
    2303. 

  2303. 			return array(
    2304. 

  2304. 				'valid' => true,
    2305. 

  2305. 				'html' => $html
    2306. 

  2306. 			);
    2307. 

  2307. 		}
    2308. 

  2308. 

  2309. 		// MARQUEE
    2310. 

  2310. 		if($tag === 'marquee')
    2311. 

  2311. 		{
    2312. 

  2312. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    2313. 

  2313. 			if (!empty($this->plain_html)) return $error;
    2314. 

  2314. 

  2315. 			$extras = $this->allow_styling ? array('style', 'class') : array();
    2316. 

  2316. 

  2317. 			$directions_array = array('up', 'right', 'down', 'left');
    2318. 

  2318. 			$default_param = 'right';
    2319. 

  2319. 			$direction = (isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['direction']) ? $item['params']['direction'] : $default_param));
    2320. 

  2320. 			$direction = (in_array($direction, $directions_array) ? $direction : $default_param);
    2321. 

  2321. 

  2322. 			$default_scroll = '120';
    2323. 

  2323. 			$scrolldelay = (isset($item['params']['scrolldelay']) ? intval($item['params']['scrolldelay']) : $default_scroll);
    2324. 

  2324. 			$scrolldelay = ((($scrolldelay > 10) && ($scrolldelay < 601)) ? $scrolldelay : $default_scroll);
    2325. 

  2325. 

  2326. 			$default_behavior = 'scroll';
    2327. 

  2327. 			$behavior = (isset($item['params']['behavior']) ? intval($item['params']['behavior']) : $default_behavior);
    2328. 

  2328. 			$behavior = ((($behavior === 'alternate') || ($behavior === 'slide')) ? $behavior : $default_behavior);
    2329. 

  2329. 

  2330. 			$html = '<marquee behavior="' . $behavior . '" direction="' . $direction . '" scrolldelay="' . $scrolldelay . '" loop="true" onmouseover="this.stop()" onmouseout="this.start()">';
    2331. 

  2331. 			return array(
    2332. 

  2332. 				'valid' => true,
    2333. 

  2333. 				'start' => $html,
    2334. 

  2334. 				'end' => '</marquee>',
    2335. 

  2335. 			);
    2336. 

  2336. 		}
    2337. 

  2337. 

  2338. 		// Active Content - BEGIN
    2339. 

  2339. 		// Added by Tom XS2 Build 054
    2340. 

  2340. 		if ($config['switch_bbcb_active_content'] == 1)
    2341. 

  2341. 		{
    2342. 

  2342. 			// FLASH, SWF, FLV, VIDEO, REAL, QUICK, STREAM, EMFF, VIMEO, YOUTUBE, GOOGLEVIDEO
    2343. 

  2343. 			if(($tag === 'flash') || ($tag === 'swf') || ($tag === 'flv') || ($tag === 'video') || ($tag === 'ram') || ($tag === 'quick') || ($tag === 'stream') || ($tag === 'emff') || ($tag === 'mp3') || ($tag === 'vimeo') || ($tag === 'youtube') || ($tag === 'googlevideo'))
    2344. 

  2344. 			{
    2345. 

  2345. 				if($this->is_sig && !$config['allow_all_bbcode'])
    2346. 

  2346. 				{
    2347. 

  2347. 					return $error;
    2348. 

  2348. 				}
    2349. 

  2349. 				$content = $this->process_text(isset($item['params']['param']) ? $item['params']['param'] : $content);
    2350. 

  2350. 

  2351. 				$color_1 = $this->valid_color((isset($item['params']['colors']) ? $item['params']['colors'] : false));
    2352. 

  2352. 				$color_2 = $this->valid_color((isset($item['params']['colore']) ? $item['params']['colore'] : false));
    2353. 

  2353. 

  2354. 				// 4/3 YouTube width and height: 425x350
    2355. 

  2355. 				// 16/9 YouTube width and height: 640x385
    2356. 

  2356. 				$default_width = 320;
    2357. 

  2357. 				$default_height = 240;
    2358. 

  2358. 				$default_ratio = $default_width / $default_height;
    2359. 

  2359. 				if (($tag === 'vimeo') || ($tag === 'youtube') || ($tag === 'googlevideo'))
    2360. 

  2360. 				{
    2361. 

  2361. 					$default_width = 640;
    2362. 

  2362. 					$default_height = 385;
    2363. 

  2363. 					$default_ratio = 16 / 9;
    2364. 

  2364. 				}
    2365. 

  2365. 

  2366. 				$width_array = array(240, 270, 300, 320, 400, 425, 426, 480, 540, 600, 640, 720, 854);
    2367. 

  2367. 				$height_array = array(135, 152, 169, 180, 202, 203, 225, 240, 270, 300, 304, 319, 320, 337, 338, 360, 405, 420, 450, 480, 540, 640);
    2368. 

  2368. 

  2369. 				// Allows both WIDTH and W
    2370. 

  2370. 				if (isset($item['params']['width']) || isset($item['params']['w']))
    2371. 

  2371. 				{
    2372. 

  2372. 					$item['params']['width'] = isset($item['params']['width']) ? $item['params']['width'] : $item['params']['w'];
    2373. 

  2373. 				}
    2374. 

  2374. 				$width = (isset($item['params']['width']) ? intval($item['params']['width']) : $default_width);
    2375. 

  2375. 				$width = ((($width > 10) && ($width < 855)) ? $width : $default_width);
    2376. 

  2376. 

  2377. 				// Allows both HEIGHT and H
    2378. 

  2378. 				if (isset($item['params']['height']) || isset($item['params']['h']))
    2379. 

  2379. 				{
    2380. 

  2380. 					$item['params']['height'] = isset($item['params']['height']) ? $item['params']['width'] : $item['params']['h'];
    2381. 

  2381. 				}
    2382. 

  2382. 				$height = (isset($item['params']['height']) ? intval($item['params']['height']) : $default_height);
    2383. 

  2383. 				$height = ((($height > 10) && ($height < 641)) ? $height : $default_height);
    2384. 

  2384. 

  2385. 				// Width and Height check-in...
    2386. 

  2386. 				// 4/3 YouTube width and height: 425x350
    2387. 

  2387. 				// 16/9 YouTube width and height: 640x385
    2388. 

  2388. 				if (($tag === 'vimeo') || ($tag === 'youtube') || ($tag === 'googlevideo'))
    2389. 

  2389. 				{
    2390. 

  2390. 					// Consider that YouTube HTML code may need 25px extra in height to display the control bar... hence the edited code below!
    2391. 

  2391. 					$width = in_array($width, $width_array) ? $width : 640;
    2392. 

  2392. 					$height = (in_array($height, $height_array) || in_array($height + 25, $height_array)) ? $height : 385;
    2393. 

  2393. 				}
    2394. 

  2394. 

  2395. 				// Set Ratio
    2396. 

  2396. 				if (isset($item['params']['ratio']) || isset($item['params']['r']))
    2397. 

  2397. 				{
    2398. 

  2398. 					$item['params']['ratio'] = isset($item['params']['ratio']) ? $item['params']['ratio'] : $item['params']['r'];
    2399. 

  2399. 					$ratio = (isset($item['params']['ratio']) ? floatval($item['params']['ratio']) : $default_ratio);
    2400. 

  2400. 					if (($ratio > 1) && ($ratio < 2))
    2401. 

  2401. 					{
    2402. 

  2402. 						$height = round($width / $ratio, 0);
    2403. 

  2403. 						if (($tag === 'vimeo') || ($tag === 'youtube') || ($tag === 'googlevideo'))
    2404. 

  2404. 						{
    2405. 

  2405. 							// Adds extra height for the control bar... to be checked for futures updates...
    2406. 

  2406. 							$height = $height + 25;
    2407. 

  2407. 						}
    2408. 

  2408. 					}
    2409. 

  2409. 				}
    2410. 

  2410. 

  2411. 				if (($tag === 'flash') || ($tag === 'swf'))
    2412. 

  2412. 				{
    2413. 

  2413. 					$html = '<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="//download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=5,0,0,0" width="' . $width . '" height="' . $height . '"><param name="movie" value="' . $content . '"><param name="quality" value="high"><param name="scale" value="noborder"><param name="wmode" value="transparent"><param name="bgcolor" value="#000000"><embed src="' . $content . '" quality="high" scale="noborder" wmode="transparent" bgcolor="#000000" width="' . $width . '" height="' . $height . '" type="application/x-shockwave-flash" pluginspage="//www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash"></embed></object>';
    2414. 

  2414. 				}
    2415. 

  2415. 				elseif ($tag === 'flv')
    2416. 

  2416. 				{
    2417. 

  2417. 					$html = '<object type="application/x-shockwave-flash" width="' . $width . '" height="' . $height . '" wmode="transparent" data="flv_player.swf?file=' . $content . '&amp;autoStart=false"><param name="movie" value="flv_player.swf?file=' . $content . '&amp;autoStart=false"/><param name="wmode" value="transparent"/></object>';
    2418. 

  2418. 				}
    2419. 

  2419. 				elseif ($tag === 'video')
    2420. 

  2420. 				{
    2421. 

  2421. 					$html = '<div align="center"><embed src="' . $content . '" width="' . $width . '" height="' . $height . '" autostart="false"></embed></div>';
    2422. 

  2422. 				}
    2423. 

  2423. 				elseif ($tag === 'ram')
    2424. 

  2424. 				{
    2425. 

  2425. 					$html = '<div align="center"><embed src="' . $content . '" align="center" width="275" height="40" type="audio/x-pn-realaudio-plugin" console="cons" controls="ControlPanel" autostart="false"></embed></div>';
    2426. 

  2426. 				}
    2427. 

  2427. 				elseif ($tag === 'quick')
    2428. 

  2428. 				{
    2429. 

  2429. 					$html = '<object classid="clsid:02BF25D5-8C17-4B23-BC80-D3488ABDDC6B" codebase="//www.apple.com/qtactivex/qtplugin.cab#version=6,0,2,0" width="' . $width . '" height="' . $height . '" align="middle"><param name="controller" value="true"><param name="type" value="video/quicktime"><param name="autoplay" value="true"><param name="target" value="myself"><param name="src" value="' . $content . '"><param name="pluginspage" value="//www.apple.com/quicktime/download/indext.html"><param name="kioskmode" value="true"><embed src="' . $content . '" width="' . $width . '" height="' . $height . '" align="middle" kioskmode="true" controller="true" target="myself" type="video/quicktime" border="0" pluginspage="//www.apple.com/quicktime/download/indext.html"></embed></object>';
    2430. 

  2430. 				}
    2431. 

  2431. 				elseif ($tag === 'stream')
    2432. 

  2432. 				{
    2433. 

  2433. 					$html = '<object id="wmp" width="' . $width . '" height="' . $height . '" classid="CLSID:22d6f312-b0f6-11d0-94ab-0080c74c7e95" codebase="//activex.microsoft.com/activex/controls/mplayer/en/nsmp2inf.cab#Version=6,0,0,0" standby="Loading Microsoft Windows Media Player components..." type="application/x-oleobject"><param name="FileName" value="' . $content . '"><param name="ShowControls" value="1"><param name="ShowDisplay" value="0"><param name="ShowStatusBar" value="1"><param name="AutoSize" value="1"><embed type="application/x-mplayer2" pluginspage="//www.microsoft.com/windows95/downloads/contents/wurecommended/s_wufeatured/mediaplayer/default.asp" src="' . $content . '" name="MediaPlayer2" showcontrols="1" showdisplay="0" showstatusbar="1" autosize="1" visible="1" animationatstart="0" transparentatstart="1" loop="0" height="70" width="300"></embed></object>';
    2434. 

  2434. 				}
    2435. 

  2435. 				elseif (($tag === 'emff') || ($tag === 'mp3'))
    2436. 

  2436. 				{
    2437. 

  2437. 					$html = '<object data="emff_player.swf" type="application/x-shockwave-flash" width="200" height="55" align="top" ><param name="FlashVars" value="src=' . $content . '" /><param name="movie" value="emff_player.swf" /><param name="quality" value="high" /><param name="bgcolor" value="#f8f8f8" /></object>';
    2438. 

  2438. 				}
    2439. 

  2439. 				elseif ($tag === 'vimeo')
    2440. 

  2440. 				{
    2441. 

  2441. 					$html = '<object type="application/x-shockwave-flash" width="' . $width . '" height="' . $height . '" data="//www.vimeo.com/moogaloop.swf?clip_id=' . $content . '"><param name="quality" value="best" /><param name="allowfullscreen" value="true" /><param name="scale" value="showAll" /><param name="movie" value="//www.vimeo.com/moogaloop.swf?clip_id=' . $content . '" /></object><br /><a href="//www.vimeo.com/moogaloop.swf?clip_id=' . $content . '" target="_blank">Link</a><br />';
    2442. 

  2442. 				}
    2443. 

  2443. 				elseif ($tag === 'youtube')
    2444. 

  2444. 				{
    2445. 

  2445. 					//check URL type
    2446. 

  2446. 					$video_file = $content;
    2447. 

  2447. 					if (strpos($content, 'youtu.be') !== false)
    2448. 

  2448. 					{
    2449. 

  2449. 						// Short URL
    2450. 

  2450. 						// parse the URL to split it in parts
    2451. 

  2451. 						$parsed_url = parse_url($content);
    2452. 

  2452. 						// get the path and delete the initial / simbol
    2453. 

  2453. 						$video_file = str_replace('/', '', $parsed_url['path']);
    2454. 

  2454. 					}
    2455. 

  2455. 					elseif (strrpos($content, 'youtube') !== false)
    2456. 

  2456. 					{
    2457. 

  2457. 						// Long URL
    2458. 

  2458. 						// parse the URL to split it in parts
    2459. 

  2459. 						$parsed_url = parse_url($content);
    2460. 

  2460. 						// get the query part (vars) and parse them into name and value
    2461. 

  2461. 						parse_str($parsed_url['query'], $qvars);
    2462. 

  2462. 						// send the value to the destination var.
    2463. 

  2463. 						$video_file = $qvars['v'];
    2464. 

  2464. 					}
    2465. 

  2465. 					$video_file = preg_replace('/[^A-Za-z0-9_-]+/', '', $video_file);
    2466. 

  2466. 

  2467. 					$color_append = '';
    2468. 

  2468. 					if ($color_1 || $color_2)
    2469. 

  2469. 					{
    2470. 

  2470. 						$color_append .= ($color_1 ? ('&amp;color1=0x' . str_replace('#', '', $color_1)) : '');
    2471. 

  2471. 						$color_append .= ($color_2 ? ('&amp;color2=0x' . str_replace('#', '', $color_2)) : '');
    2472. 

  2472. 					}
    2473. 

  2473. 					$video_link = '<br /><a href="//youtube.com/watch?v=' . $video_file . $color_append . '" target="_blank">YouTube Link</a><br />';
    2474. 

  2474. 					// OLD OBJECT Version
    2475. 

  2475. 					//$html = '<object width="' . $width . '" height="' . $height . '"><param name="movie" value="//www.youtube.com/v/' . $video_file . $color_append . '" /><embed src="//www.youtube.com/v/' . $video_file . $color_append . '" type="application/x-shockwave-flash" width="' . $width . '" height="' . $height . '"></embed></object>' . $video_link;
    2476. 

  2476. 					// IFRAME Version
    2477. 

  2477. 					$html = '<iframe width="' . $width . '" height="' . $height . '" src="//www.youtube.com/embed/' . $video_file . '?autoplay=0' . $color_append . '" frameborder="0"></iframe>' . $video_link;
    2478. 

  2478. 				}
    2479. 

  2479. 				elseif ($tag === 'googlevideo')
    2480. 

  2480. 				{
    2481. 

  2481. 					$html = '<object width="' . $width . '" height="' . $height . '"><param name="movie" value="//video.google.com/googleplayer.swf?docId=' . $content . '"></param><embed style="width:' . $width . 'px; height:' . $height . 'px;" id="VideoPlayback" align="middle" type="application/x-shockwave-flash" src="//video.google.com/googleplayer.swf?docId=' . $content . '" allowScriptAccess="sameDomain" quality="best" bgcolor="#f8f8f8" scale="noScale" salign="TL" FlashVars="playerMode=embedded"></embed></object><br /><a href="//video.google.com/videoplay?docid=' . $content . '" target="_blank">Link</a><br />';
    2482. 

  2482. 				}
    2483. 

  2483. 				return array(
    2484. 

  2484. 					'valid' => true,
    2485. 

  2485. 					'html' => $html
    2486. 

  2486. 				);
    2487. 

  2487. 			}
    2488. 

  2488. 		}
    2489. 

  2489. 		// Active Content - END
    2490. 

  2490. 

  2491. 		// SMILEY
    2492. 

  2492. 		if($tag === 'smiley')
    2493. 

  2493. 		{
    2494. 

  2494. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    2495. 

  2495. 			if (!empty($this->plain_html)) return $error;
    2496. 

  2496. 

  2497. 			$extras = $this->allow_styling ? array('style', 'class') : array();
    2498. 

  2498. 

  2499. 			$text = htmlspecialchars((isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['text']) ? $item['params']['text'] : $content)));
    2500. 

  2500. 

  2501. 			if(isset($item['params']['smilie']))
    2502. 

  2502. 			{
    2503. 

  2503. 				if (($item['params']['smilie'] == 'standard') || ($item['params']['smilie'] == 'random'))
    2504. 

  2504. 				{
    2505. 

  2505. 					//$smilie = $item['params']['smilie'];
    2506. 

  2506. 					$smilie = '1';
    2507. 

  2507. 				}
    2508. 

  2508. 				else
    2509. 

  2509. 				{
    2510. 

  2510. 					$smilie = intval($item['params']['smilie']);
    2511. 

  2511. 				}
    2512. 

  2512. 			}
    2513. 

  2513. 			else
    2514. 

  2514. 			{
    2515. 

  2515. 				$smilie = '1';
    2516. 

  2516. 			}
    2517. 

  2517. 

  2518. 			$default_fontcolor = '000000';
    2519. 

  2519. 			$fontcolor = $this->valid_color((isset($item['params']['fontcolor']) ? $item['params']['fontcolor'] : $default_fontcolor));
    2520. 

  2520. 			$fontcolor = (($fontcolor === false) ? $default_fontcolor : str_replace('#', '', $fontcolor));
    2521. 

  2521. 

  2522. 			$default_shadowcolor = '888888';
    2523. 

  2523. 			$shadowcolor = $this->valid_color((isset($item['params']['shadowcolor']) ? $item['params']['shadowcolor'] : $default_shadowcolor));
    2524. 

  2524. 			$shadowcolor = (($shadowcolor === false) ? $default_shadowcolor : str_replace('#', '', $shadowcolor));
    2525. 

  2525. 

  2526. 			$default_shieldshadow = 0;
    2527. 

  2527. 			$shieldshadow = (isset($item['params']['shieldshadow']) ? (($item['params']['shieldshadow'] == 1) ? 1 : $default_param) : $default_param);
    2528. 

  2528. 

  2529. 			//$html = '<img src="text2shield.' . PHP_EXT . '?smilie=' . $smilie . '&amp;fontcolor=' . $fontcolor . '&amp;shadowcolor=' . $shadowcolor . '&amp;shieldshadow=' . $shieldshadow . '&amp;text=' . $text . '" alt="Smiley" title="Smiley" />';
    2530. 

  2530. 			$html = '<img src="text2shield.' . PHP_EXT . '?smilie=' . $smilie . '&amp;fontcolor=' . $fontcolor . '&amp;shadowcolor=' . $shadowcolor . '&amp;shieldshadow=' . $shieldshadow . '&amp;text=' . urlencode(ip_utf8_decode($text)) . '" alt="'. $text . '" title="' . $text . '" />';
    2531. 

  2531. 			return array(
    2532. 

  2532. 				'valid' => true,
    2533. 

  2533. 				'html' => $html,
    2534. 

  2534. 				'allow_nested' => false,
    2535. 

  2535. 			);
    2536. 

  2536. 		}
    2537. 

  2537. 

  2538. 		// OPACITY
    2539. 

  2539. 		if($tag === 'opacity')
    2540. 

  2540. 		{
    2541. 

  2541. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    2542. 

  2542. 			if (!empty($this->plain_html)) return $error;
    2543. 

  2543. 

  2544. 			if(isset($item['params']['param']))
    2545. 

  2545. 			{
    2546. 

  2546. 				$opacity = intval($item['params']['param']);
    2547. 

  2547. 				if (($opacity > 0) && ($opacity < 101))
    2548. 

  2548. 				{
    2549. 

  2549. 					$opacity = $opacity;
    2550. 

  2550. 				}
    2551. 

  2551. 			}
    2552. 

  2552. 			else
    2553. 

  2553. 			{
    2554. 

  2554. 				$opacity = '100';
    2555. 

  2555. 			}
    2556. 

  2556. 			$opacity_dec = $opacity / 100;
    2557. 

  2557. 			$html = '<div class="opacity" style="opacity: ' . $opacity_dec . '; filter: Alpha(Opacity=' . $opacity . ');">';
    2558. 

  2558. 			return array(
    2559. 

  2559. 				'valid' => true,
    2560. 

  2560. 				'start' => $html,
    2561. 

  2561. 				'end' => '</div>',
    2562. 

  2562. 			);
    2563. 

  2563. 		}
    2564. 

  2564. 

  2565. 		// FADE
    2566. 

  2566. 		if($tag === 'fade')
    2567. 

  2567. 		{
    2568. 

  2568. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    2569. 

  2569. 			if (!empty($this->plain_html)) return $error;
    2570. 

  2570. 

  2571. 			if(isset($item['params']['param']))
    2572. 

  2572. 			{
    2573. 

  2573. 				$opacity = intval($item['params']['param']);
    2574. 

  2574. 				if (($opacity > 0) && ($opacity < 101))
    2575. 

  2575. 				{
    2576. 

  2576. 					$opacity = $opacity;
    2577. 

  2577. 				}
    2578. 

  2578. 			}
    2579. 

  2579. 			else
    2580. 

  2580. 			{
    2581. 

  2581. 				$opacity = '100';
    2582. 

  2582. 			}
    2583. 

  2583. 			$opacity_dec = $opacity / 100;
    2584. 

  2584. 			$html = '<div style="display: inline; height: 1; opacity: ' . $opacity_dec . '; filter: Alpha(Opacity=' . $opacity . ',FinishOpacity=0,Style=1,StartX=0,FinishX=100%);">';
    2585. 

  2585. 			//$html = '<div style="display:inline;height:1;filter:Alpha(Opacity=' . $opacity . ',FinishOpacity=0,Style=1,StartX=0,FinishX=100%);">';
    2586. 

  2586. 			return array(
    2587. 

  2587. 				'valid' => true,
    2588. 

  2588. 				'start' => $html,
    2589. 

  2589. 				'end' => '</div>',
    2590. 

  2590. 			);
    2591. 

  2591. 		}
    2592. 

  2592. 

  2593. 		// IE AND HTML 4 ONLY TAGS - BEGIN
    2594. 

  2594. 		// Let's add a global IF so we can skip them all in once to speed up things...
    2595. 

  2595. 		// Enable these tags only if you know how to make them work...
    2596. 

  2596. 		if(($tag === 'glow') || ($tag === 'shadow') || ($tag === 'blur') || ($tag === 'wave') || ($tag === 'fliph') || ($tag === 'flipv'))
    2597. 

  2597. 		{
    2598. 

  2598. 			return array(
    2599. 

  2599. 				'valid' => true,
    2600. 

  2600. 				'start' => '',
    2601. 

  2601. 				'end' => '',
    2602. 

  2602. 			);
    2603. 

  2603. 		}
    2604. 

  2604. 		/*
    2605. 

  2605. 		if(($tag === 'glow') || ($tag === 'shadow') || ($tag === 'blur') || ($tag === 'wave') || ($tag === 'fliph') || ($tag === 'flipv'))
    2606. 

  2606. 		{
    2607. 

  2607. 			// GLOW
    2608. 

  2608. 			if($tag === 'glow')
    2609. 

  2609. 			{
    2610. 

  2610. 				$default_color = '#fffffa';
    2611. 

  2611. 				$color = $this->valid_color((isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['color']) ? $item['params']['color'] : $default_color)));
    2612. 

  2612. 				if($color === false)
    2613. 

  2613. 				{
    2614. 

  2614. 					return $error;
    2615. 

  2615. 				}
    2616. 

  2616. 				$html = '<div style="display: inline; filter: glow(color=' . $color . '); height: 20px;">';
    2617. 

  2617. 				return array(
    2618. 

  2618. 					'valid' => true,
    2619. 

  2619. 					'start' => $html,
    2620. 

  2620. 					'end' => '</div>',
    2621. 

  2621. 				);
    2622. 

  2622. 			}
    2623. 

    2624. 

  2624. 			// SHADOW
    2625. 

  2625. 			if($tag === 'shadow')
    2626. 

  2626. 			{
    2627. 

  2627. 				$default_color = '#666666';
    2628. 

  2628. 				$color = $this->valid_color((isset($item['params']['param']) ? $item['params']['param'] : (isset($item['params']['color']) ? $item['params']['color'] : $default_color)));
    2629. 

  2629. 				if($color === false)
    2630. 

  2630. 				{
    2631. 

  2631. 					return $error;
    2632. 

  2632. 				}
    2633. 

  2633. 				$html = '<div style="display: inline; filter: shadow(color=' . $color . '); height: 20;">';
    2634. 

  2634. 				return array(
    2635. 

  2635. 					'valid' => true,
    2636. 

  2636. 					'start' => $html,
    2637. 

  2637. 					'end' => '</div>',
    2638. 

  2638. 				);
    2639. 

  2639. 			}
    2640. 

    2641. 

  2641. 			// BLUR
    2642. 

  2642. 			if($tag === 'blur')
    2643. 

  2643. 			{
    2644. 

  2644. 				if($this->is_sig && !$config['allow_all_bbcode'])
    2645. 

  2645. 				{
    2646. 

  2646. 					return $error;
    2647. 

  2647. 				}
    2648. 

  2648. 				if(isset($item['params']['param']))
    2649. 

  2649. 				{
    2650. 

  2650. 					$strenght = intval($item['params']['param']);
    2651. 

  2651. 					if (($strenght > 0) && ($strenght < 101))
    2652. 

  2652. 					{
    2653. 

  2653. 						$strenght = $strenght;
    2654. 

  2654. 					}
    2655. 

  2655. 				}
    2656. 

  2656. 				else
    2657. 

  2657. 				{
    2658. 

  2658. 					$strenght = '100';
    2659. 

  2659. 				}
    2660. 

  2660. 				$strenght_dec = $strenght / 100;
    2661. 

  2661. 				$html = '<div style="display: inline; width: 100%; height: 20; filter: Blur(add=1,direction=270,strength=' . $strenght . ');">';
    2662. 

  2662. 				return array(
    2663. 

  2663. 					'valid' => true,
    2664. 

  2664. 					'start' => $html,
    2665. 

  2665. 					'end' => '</div>',
    2666. 

  2666. 				);
    2667. 

  2667. 			}
    2668. 

    2669. 

  2669. 			// WAVE
    2670. 

  2670. 			if($tag === 'wave')
    2671. 

  2671. 			{
    2672. 

  2672. 				if($this->is_sig && !$config['allow_all_bbcode'])
    2673. 

  2673. 				{
    2674. 

  2674. 					return $error;
    2675. 

  2675. 				}
    2676. 

  2676. 				if(isset($item['params']['param']))
    2677. 

  2677. 				{
    2678. 

  2678. 					$strenght = intval($item['params']['param']);
    2679. 

  2679. 					if (($strenght > 0) && ($strenght < 101))
    2680. 

  2680. 					{
    2681. 

  2681. 						$strenght = $strenght;
    2682. 

  2682. 					}
    2683. 

  2683. 				}
    2684. 

  2684. 				else
    2685. 

  2685. 				{
    2686. 

  2686. 					$strenght = '100';
    2687. 

  2687. 				}
    2688. 

  2688. 				$strenght_dec = $strenght / 100;
    2689. 

  2689. 				$html = '<div style="display: inline; width: 100%; height: 20; filter: Wave(add=1,direction=270,strength=' . $strenght . ');">';
    2690. 

  2690. 				return array(
    2691. 

  2691. 					'valid' => true,
    2692. 

  2692. 					'start' => $html,
    2693. 

  2693. 					'end' => '</div>',
    2694. 

  2694. 				);
    2695. 

  2695. 			}
    2696. 

    2697. 

  2697. 			// FLIPH, FLIPV
    2698. 

  2698. 			if(($tag === 'fliph') || ($tag === 'flipv'))
    2699. 

  2699. 			{
    2700. 

  2700. 				if($this->is_sig && !$config['allow_all_bbcode'])
    2701. 

  2701. 				{
    2702. 

  2702. 					return $error;
    2703. 

  2703. 				}
    2704. 

  2704. 				$html = '<div style="display: inline; filter: ' . $tag . '; height: 1;">';
    2705. 

  2705. 				return array(
    2706. 

  2706. 					'valid' => true,
    2707. 

  2707. 					'start' => $html,
    2708. 

  2708. 					'end' => '</div>',
    2709. 

  2709. 				);
    2710. 

  2710. 			}
    2711. 

  2711. 		}
    2712. 

  2712. 		*/
    2713. 

  2713. 		// OLD IE AND HTML 4 ONLY TAGS - END
    2714. 

  2714. 

  2715. 		// TEX
    2716. 

  2716. 		if($tag === 'tex')
    2717. 

  2717. 		{
    2718. 

  2718. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    2719. 

  2719. 			if (!empty($this->plain_html)) return $error;
    2720. 

  2720. 

  2721. 			$html = '<img src="cgi-bin/mimetex.cgi?' . $content . '" alt="" border="0" style="vertical-align: middle;" />';
    2722. 

  2722. 			return array(
    2723. 

  2723. 				'valid' => true,
    2724. 

  2724. 				'html' => $html,
    2725. 

  2725. 				'allow_nested' => false,
    2726. 

  2726. 			);
    2727. 

  2727. 		}
    2728. 

  2728. 

  2729. 		// TABLE
    2730. 

  2730. 		if($tag === 'table')
    2731. 

  2731. 		{
    2732. 

  2732. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    2733. 

  2733. 			if (!empty($this->plain_html)) return $error;
    2734. 

  2734. 

  2735. 			// additional allowed parameters
    2736. 

  2736. 			$extras = $this->allow_styling ? array('style', 'class', 'align', 'width', 'height', 'border', 'cellspacing', 'cellpadding') : array('style', 'class', 'align', 'width');
    2737. 

  2737. 			if(isset($item['params']['param']))
    2738. 

  2738. 			{
    2739. 

  2739. 				$table_class = $item['params']['param'];
    2740. 

  2740. 			}
    2741. 

  2741. 			else
    2742. 

  2742. 			{
    2743. 

  2743. 				$table_class = '';
    2744. 

  2744. 			}
    2745. 

  2745. 

  2746. 			for($i = 0; $i < sizeof($extras); $i++)
    2747. 

  2747. 			{
    2748. 

  2748. 				if(!empty($item['params'][$extras[$i]]))
    2749. 

  2749. 				{
    2750. 

  2750. 					if($extras[$i] === 'style')
    2751. 

  2751. 					{
    2752. 

  2752. 						$style = $this->valid_style($item['params']['style']);
    2753. 

  2753. 						if($style !== false)
    2754. 

  2754. 						{
    2755. 

  2755. 							$params['style'] = $style;
    2756. 

  2756. 						}
    2757. 

  2757. 					}
    2758. 

  2758. 					else
    2759. 

  2759. 					{
    2760. 

  2760. 						$params[$extras[$i]] = $item['params'][$extras[$i]];
    2761. 

  2761. 					}
    2762. 

  2762. 				}
    2763. 

  2763. 			}
    2764. 

  2764. 			if (!isset($params['class']))
    2765. 

  2765. 			{
    2766. 

  2766. 				$params['class'] = $table_class;
    2767. 

  2767. 			}
    2768. 

  2768. 			// generate html
    2769. 

  2769. 			$html = '<table';
    2770. 

  2770. 			foreach($params as $var => $value)
    2771. 

  2771. 			{
    2772. 

  2772. 				$html .= ' ' . $var . '="' . $this->process_text($value) . '"';
    2773. 

  2773. 			}
    2774. 

  2774. 			$html .= ' >' . $content . '</table>';
    2775. 

  2775. 			return array(
    2776. 

  2776. 				'valid' => true,
    2777. 

  2777. 				'html' => $html,
    2778. 

  2778. 				'allow_nested' => true,
    2779. 

  2779. 			);
    2780. 

  2780. 		}
    2781. 

  2781. 

  2782. 		/*
    2783. 

  2783. 		// TR
    2784. 

  2784. 		if($tag === 'tr')
    2785. 

  2785. 		{
    2786. 

  2786. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    2787. 

  2787. 			// generate html
    2788. 

  2788. 			$html = '<tr>' . $content . '</tr>';
    2789. 

  2789. 			return array(
    2790. 

  2790. 				'valid' => true,
    2791. 

  2791. 				'html' => $html,
    2792. 

  2792. 				'allow_nested' => true,
    2793. 

  2793. 			);
    2794. 

  2794. 		}
    2795. 

    2796. 

  2796. 		// TD
    2797. 

  2797. 		if($tag === 'td')
    2798. 

  2798. 		{
    2799. 

  2799. 			if($this->is_sig && !$config['allow_all_bbcode']) return $error;
    2800. 

  2800. 			// additional allowed parameters
    2801. 

  2801. 			$extras = $this->allow_styling ? array('class', 'align', 'width', 'height') : array('class', 'align', 'width', 'height');
    2802. 

    2803. 

  2803. 			for($i = 0; $i < sizeof($extras); $i++)
    2804. 

  2804. 			{
    2805. 

  2805. 				if(!empty($item['params'][$extras[$i]]))
    2806. 

  2806. 				{
    2807. 

  2807. 					if($extras[$i] === 'style')
    2808. 

  2808. 					{
    2809. 

  2809. 						$style = $this->valid_style($item['params']['style']);
    2810. 

  2810. 						if($style !== false)
    2811. 

  2811. 						{
    2812. 

  2812. 							$params['style'] = $style;
    2813. 

  2813. 						}
    2814. 

  2814. 					}
    2815. 

  2815. 					else
    2816. 

  2816. 					{
    2817. 

  2817. 						$params[$extras[$i]] = $item['params'][$extras[$i]];
    2818. 

  2818. 					}
    2819. 

  2819. 				}
    2820. 

  2820. 			}
    2821. 

  2821. 			// generate html
    2822. 

  2822. 			$html = '<td';
    2823. 

  2823. 			foreach($params as $var => $value)
    2824. 

  2824. 			{
    2825. 

  2825. 				$html .= ' ' . $var . '="' . $this->process_text($value) . '"';
    2826. 

  2826. 			}
    2827. 

  2827. 			$html .= ' >' . $content . '</td>';
    2828. 

  2828. 			return array(
    2829. 

  2829. 				'valid' => true,
    2830. 

  2830. 				'html' => $html,
    2831. 

  2831. 				'allow_nested' => true,
    2832. 

  2832. 			);
    2833. 

  2833. 		}
    2834. 

  2834. 		*/
    2835. 

  2835. 

  2836. 		// To use IFRAMES you just need to decomment this block of code (and allow the tag on top of this file)... good luck!
    2837. 

  2837. 		// IFRAME
    2838. 

  2838. 		//<iframe src="index.html" scrolling="no" width="100%" height="190" frameborder="0" marginheight="0" marginwidth="0"></iframe>
    2839. 

  2839. 		//[iframe height=100]docs/index.html[/iframe]
    2840. 

  2840. 		//[iframe src=docs/index.html height=100] [/iframe]
    2841. 

  2841. 		/*
    2842. 

  2842. 		if($tag === 'iframe')
    2843. 

  2843. 		{
    2844. 

  2844. 			if(isset($item['params']['param']))
    2845. 

  2845. 			{
    2846. 

  2846. 				$params['src'] = $item['params']['param'];
    2847. 

  2847. 			}
    2848. 

  2848. 			elseif(isset($item['params']['src']))
    2849. 

  2849. 			{
    2850. 

  2850. 				$params['src'] = $item['params']['src'];
    2851. 

  2851. 			}
    2852. 

  2852. 			elseif(!empty($content))
    2853. 

  2853. 			{
    2854. 

  2854. 				$params['src'] = $content;
    2855. 

  2855. 			}
    2856. 

  2856. 			if(isset($item['params']['scrolling']) && ($params['scrolling'] == 'no'))
    2857. 

  2857. 			{
    2858. 

  2858. 				$params['scrolling'] = 'no';
    2859. 

  2859. 				//$params['scrolling'] = $item['params']['scrolling'];
    2860. 

  2860. 			}
    2861. 

  2861. 			else
    2862. 

  2862. 			{
    2863. 

  2863. 				$params['scrolling'] = 'yes';
    2864. 

  2864. 			}
    2865. 

  2865. 			if(isset($item['params']['width']))
    2866. 

  2866. 			{
    2867. 

  2867. 				$params['width'] = $item['params']['width'];
    2868. 

  2868. 			}
    2869. 

  2869. 			else
    2870. 

  2870. 			{
    2871. 

  2871. 				$params['width'] = '100%';
    2872. 

  2872. 			}
    2873. 

  2873. 			if(isset($item['params']['height']))
    2874. 

  2874. 			{
    2875. 

  2875. 				$params['height'] = $item['params']['height'];
    2876. 

  2876. 			}
    2877. 

  2877. 			else
    2878. 

  2878. 			{
    2879. 

  2879. 				$params['height'] = '600';
    2880. 

  2880. 			}
    2881. 

    2882. 

  2882. 			foreach($params as $var => $value)
    2883. 

  2883. 			{
    2884. 

  2884. 				if ($this->process_text($value) != '')
    2885. 

  2885. 				{
    2886. 

  2886. 					$html .= ' ' . $var . '="' . $this->process_text($value) . '"';
    2887. 

  2887. 				}
    2888. 

  2888. 			}
    2889. 

  2889. 			$extras = $this->allow_styling ? array('style', 'class') : array('class');
    2890. 

  2890. 			$html = '<iframe' . $html . '>';
    2891. 

  2891. 			return array(
    2892. 

  2892. 				'valid' => true,
    2893. 

  2893. 				'start' => $html,
    2894. 

  2894. 				'end' => '</iframe>'
    2895. 

  2895. 			);
    2896. 

  2896. 		}
    2897. 

  2897. 		*/
    2898. 

  2898. 

  2899. 		// Invalid tag
    2900. 

  2900. 		return $error;
    2901. 

  2901. 	}
    2902. 

  2902. 

  2903. 	// Check if bbcode tag is valid
    2904. 

  2904. 	function valid_tag($tag, $is_html)
    2905. 

  2905. 	{
    2906. 

  2906. 		if($is_html)
    2907. 

  2907. 		{
    2908. 

  2908. 			return (isset($this->allowed_html[$tag]) && preg_match('/^[a-z]+$/', $tag)) ? true : false;
    2909. 

  2909. 		}
    2910. 

  2910. 		else
    2911. 

  2911. 		{
    2912. 

  2912. 			$tag_ok = false;
    2913. 

  2913. 			if(($tag === '*') || ($tag === '[*]') || ($tag === '[hr]'))
    2914. 

  2914. 			{
    2915. 

  2915. 				$tag_ok = true;
    2916. 

  2916. 			}
    2917. 

  2917. 			return (isset($this->allowed_bbcode[$tag]) && (preg_match('/^[a-z]+$/', $tag) || ($tag_ok === true))) ? true : false;
    2918. 

  2918. 		}
    2919. 

  2919. 	}
    2920. 

  2920. 

  2921. 	// Check if parameter name is valid
    2922. 

  2922. 	function valid_param($param)
    2923. 

  2923. 	{
    2924. 

  2924. 		return preg_match('/^[a-z]+$/', $param);
    2925. 

  2925. 	}
    2926. 

  2926. 

  2927. 	// Check if color is valid
    2928. 

  2928. 	function valid_color($color, $hex_only = false)
    2929. 

  2929. 	{
    2930. 

  2930. 		if ($color === false)
    2931. 

  2931. 		{
    2932. 

  2932. 			return false;
    2933. 

  2933. 		}
    2934. 

  2934. 		$color = strtolower($color);
    2935. 

  2935. 		if(substr($color, 0, 1) === '#')
    2936. 

  2936. 		{
    2937. 

  2937. 			// normal color
    2938. 

  2938. 			if(preg_match('/^[0-9a-f]+$/', substr($color, 1)))
    2939. 

  2939. 			{
    2940. 

  2940. 				if ($hex_only == true)
    2941. 

  2941. 				{
    2942. 

  2942. 					if(strlen($color) == 7)
    2943. 

  2943. 					{
    2944. 

  2944. 						return $color;
    2945. 

  2945. 					}
    2946. 

  2946. 				}
    2947. 

  2947. 				else
    2948. 

  2948. 				{
    2949. 

  2949. 					if((strlen($color) == 4) || (strlen($color) == 7))
    2950. 

  2950. 					{
    2951. 

  2951. 						return $color;
    2952. 

  2952. 					}
    2953. 

  2953. 				}
    2954. 

  2954. 			}
    2955. 

  2955. 			return false;
    2956. 

  2956. 		}
    2957. 

  2957. 		// color with missing #
    2958. 

  2958. 		if(preg_match('/^[0-9a-f]+$/', $color))
    2959. 

  2959. 		{
    2960. 

  2960. 			if ($hex_only == true)
    2961. 

  2961. 			{
    2962. 

  2962. 				if(strlen($color) == 6)
    2963. 

  2963. 				{
    2964. 

  2964. 					return '#' . $color;
    2965. 

  2965. 				}
    2966. 

  2966. 			}
    2967. 

  2967. 			else
    2968. 

  2968. 			{
    2969. 

  2969. 				if((strlen($color) == 3) || (strlen($color) == 6))
    2970. 

  2970. 				{
    2971. 

  2971. 					return '#' . $color;
    2972. 

  2972. 				}
    2973. 

  2973. 			}
    2974. 

  2974. 		}
    2975. 

  2975. 		if($hex_only == true)
    2976. 

  2976. 		{
    2977. 

  2977. 			// We didn't find any valid 6 digits hex color
    2978. 

  2978. 			return false;
    2979. 

  2979. 		}
    2980. 

  2980. 		if(preg_match('/^[a-z]+$/', $color))
    2981. 

  2981. 		{
    2982. 

  2982. 			// text color
    2983. 

  2983. 			return $color;
    2984. 

  2984. 		}
    2985. 

  2985. 

  2986. 		// rgb(ddd, ddd, ddd) color
    2987. 

  2987. 		// OLD RGB FUNCTION
    2988. 

  2988. 		/*
    2989. 

  2989. 		if((substr($color, 0, 4) === 'rgb(') && preg_match('/^rgb\([0-9]+,[0-9]+,[0-9]+\)$/', $color))
    2990. 

  2990. 		{
    2991. 

  2991. 			$colors = explode(',', substr($color, 4, strlen($color) - 5));
    2992. 

  2992. 			for($i = 0; $i < 3; $i++)
    2993. 

  2993. 			{
    2994. 

  2994. 				if($colors[$i] > 255)
    2995. 

  2995. 				{
    2996. 

  2996. 					return false;
    2997. 

  2997. 				}
    2998. 

  2998. 			}
    2999. 

  2999. 			return sprintf('#%02X%02X%02X', $colors[0], $colors[1], $colors[2]);
    3000. 

  3000. 		}
    3001. 

  3001. 		*/
    3002. 

  3002. 

  3003. 		if(substr($color, 0, 4) === 'rgb(')
    3004. 

  3004. 		{
    3005. 

  3005. 			$valid = preg_replace_callback('#^rgb\((\d{1,3}),\s*(\d{1,3}),\s*(\d{1,3})\)$#', 'bbcode::valid_rgb_match', $color);
    3006. 

  3006. 			return !empty($valid) ? $color : false;
    3007. 

  3007. 		}
    3008. 

  3008. 		return false;
    3009. 

  3009. 	}
    3010. 

  3010. 

  3011. 	// Check for valid RGB match
    3012. 

  3012. 	function valid_rgb_match($matches)
    3013. 

  3013. 	{
    3014. 

  3014. 		$valid = true;
    3015. 

  3015. 		if (sizeof($matches) != 4)
    3016. 

  3016. 		{
    3017. 

  3017. 			$valid = false;
    3018. 

  3018. 		}
    3019. 

  3019. 		else
    3020. 

  3020. 		{
    3021. 

  3021. 			$red = (int) $matches[1];
    3022. 

  3022. 			$green = (int) $matches[2];
    3023. 

  3023. 			$blue = (int) $matches[3];
    3024. 

  3024. 			if (($red > 255) || ($green > 255) || ($blue > 255))
    3025. 

  3025. 			{
    3026. 

  3026. 				$valid = false;
    3027. 

  3027. 			}
    3028. 

  3028. 		}
    3029. 

  3029. 		return $valid;
    3030. 

  3030. 	}
    3031. 

  3031. 

  3032. 	// Parse style
    3033. 

  3033. 	function valid_style($style, $error = false)
    3034. 

  3034. 	{
    3035. 

  3035. 		$style = str_replace(array('\\', '"', '@'), array('', '', ''), $style);
    3036. 

  3036. 		$str = strtolower($style);
    3037. 

  3037. 		if((strpos($str, 'expression') !== false) || (strpos($str, 'javascript:') !== false) || (strpos($str, 'vbscript:') !== false) || (strpos($str, 'about:') !== false))
    3038. 

  3038. 		{
    3039. 

  3039. 			// attempt to use javascript
    3040. 

  3040. 			return $error;
    3041. 

  3041. 		}
    3042. 

  3042. 		if(strpos($str, '//') !== false)
    3043. 

  3043. 		{
    3044. 

  3044. 			// attempt to use external file
    3045. 

  3045. 			return $error;
    3046. 

  3046. 		}
    3047. 

  3047. 		if(strpos($str, '!important') !== false)
    3048. 

  3048. 		{
    3049. 

  3049. 			// attempt to completely mess up forum layout?
    3050. 

  3050. 			return $error;
    3051. 

  3051. 		}
    3052. 

  3052. 		return $style;
    3053. 

  3053. 	}
    3054. 

  3054. 

  3055. 	// Validate url
    3056. 

  3056. 	function valid_url($url, $error = '')
    3057. 

  3057. 	{
    3058. 

  3058. 		$str = strtolower($url);
    3059. 

  3059. 		if(substr($str, 0, 11) === 'javascript:')
    3060. 

  3060. 		{
    3061. 

  3061. 			// attempt to use javascript
    3062. 

  3062. 			return $error;
    3063. 

  3063. 		}
    3064. 

  3064. 

  3065. 		if(substr($str, 0, 9) === 'vbscript:')
    3066. 

  3066. 		{
    3067. 

  3067. 			// attempt to use vbscript
    3068. 

  3068. 			return $error;
    3069. 

  3069. 		}
    3070. 

  3070. 

  3071. 		if(substr($str, 0, 6) === 'about:')
    3072. 

  3072. 		{
    3073. 

  3073. 			// attempt to use about: url
    3074. 

  3074. 			return $error;
    3075. 

  3075. 		}
    3076. 

  3076. 

  3077. 		return $url;
    3078. 

  3078. 	}
    3079. 

  3079. 

  3080. 	// Add extras
    3081. 

  3081. 	function add_extras($params, $extras)
    3082. 

  3082. 	{
    3083. 

  3083. 		$html = '';
    3084. 

  3084. 		for($i = 0; $i < sizeof($extras); $i++)
    3085. 

  3085. 		{
    3086. 

  3086. 			if(isset($params[$extras[$i]]))
    3087. 

  3087. 			{
    3088. 

  3088. 				if($extras[$i] === 'style')
    3089. 

  3089. 				{
    3090. 

  3090. 					$style = $this->valid_style($params['style']);
    3091. 

  3091. 					if($style !== false)
    3092. 

  3092. 					{
    3093. 

  3093. 						$html .= ' style="' . htmlspecialchars($style) . '"';
    3094. 

  3094. 					}
    3095. 

  3095. 				}
    3096. 

  3096. 				else
    3097. 

  3097. 				{
    3098. 

  3098. 					$html .= ' ' . $extras[$i] . '="' . htmlspecialchars($params[$extras[$i]]) . '"';
    3099. 

  3099. 				}
    3100. 

  3100. 			}
    3101. 

  3101. 		}
    3102. 

  3102. 		return $html;
    3103. 

  3103. 	}
    3104. 

  3104. 

  3105. 	// Splits string to tag and parameters
    3106. 

  3106. 	function extract_params($tag, $is_html)
    3107. 

  3107. 	{
    3108. 

  3108. 		$this->tag = $tag;
    3109. 

  3109. 		$this->params = array();
    3110. 

  3110. 		$tag = str_replace("\t", ' ', $tag);
    3111. 

  3111. 		// get parameters
    3112. 

  3112. 		$pos_eq = strpos($tag, '=');
    3113. 

  3113. 		$pos_space = strpos($tag, ' ');
    3114. 

  3114. 		if(($pos_space !== false) && ($pos_eq !== false) && ($pos_space < $pos_eq))
    3115. 

  3115. 		{
    3116. 

  3116. 			// mutiple parameters
    3117. 

  3117. 			$param_start = 0;
    3118. 

  3118. 			$param_str = substr($tag, $pos_space + 1);
    3119. 

  3119. 			$param_len = strlen($param_str);
    3120. 

  3120. 			$this->tag = strtolower(substr($tag, 0, $pos_space));
    3121. 

  3121. 			if(!$this->valid_tag($this->tag, $is_html))
    3122. 

  3122. 			{
    3123. 

  3123. 				return false;
    3124. 

  3124. 			}
    3125. 

  3125. 			while($param_start < $param_len)
    3126. 

  3126. 			{
    3127. 

  3127. 				// find entry for '='
    3128. 

  3128. 				$pos = strpos($param_str, '=', $param_start);
    3129. 

  3129. 				if($pos === false)
    3130. 

  3130. 				{
    3131. 

  3131. 					return false;
    3132. 

  3132. 				}
    3133. 

  3133. 				else
    3134. 

  3134. 				{
    3135. 

  3135. 					// get parameter name
    3136. 

  3136. 					$str = substr($param_str, $param_start, $pos - $param_start);
    3137. 

  3137. 					if(!$this->valid_param($str))
    3138. 

  3138. 					{
    3139. 

  3139. 						return false;
    3140. 

  3140. 					}
    3141. 

  3141. 					// get value
    3142. 

  3142. 					$pos++;
    3143. 

  3143. 					$quoted = false;
    3144. 

  3144. 					if(substr($param_str, $pos, 1) === '"')
    3145. 

  3145. 					{
    3146. 

  3146. 						$pos2 = strpos($param_str, '"', $pos + 1);
    3147. 

  3147. 						if($pos2 === false)
    3148. 

  3148. 						{
    3149. 

  3149. 							// invalid quote. search for space instead
    3150. 

  3150. 							$pos2 = strpos($param_str, ' ', $pos + 1);
    3151. 

  3151. 						}
    3152. 

  3152. 						else
    3153. 

  3153. 						{
    3154. 

  3154. 							$pos++;
    3155. 

  3155. 							$quoted = true;
    3156. 

  3156. 						}
    3157. 

  3157. 					}
    3158. 

  3158. 					else
    3159. 

  3159. 					{
    3160. 

  3160. 						$pos2 = strpos($param_str, ' ', $pos);
    3161. 

  3161. 					}
    3162. 

  3162. 					// end not found. counting until end of expression
    3163. 

  3163. 					if($pos2 === false)
    3164. 

  3164. 					{
    3165. 

  3165. 						$pos2 = $param_len;
    3166. 

  3166. 					}
    3167. 

  3167. 					$this->params[$str] = substr($param_str, $pos, $pos2 - $pos);
    3168. 

  3168. 					$param_start = $pos2 + 1;
    3169. 

  3169. 					if($quoted)
    3170. 

  3170. 					{
    3171. 

  3171. 						$param_start++;
    3172. 

  3172. 					}
    3173. 

  3173. 				}
    3174. 

  3174. 			}
    3175. 

  3175. 		}
    3176. 

  3176. 		elseif($pos_eq !== false)
    3177. 

  3177. 		{
    3178. 

  3178. 			// single parameter
    3179. 

  3179. 			$str = substr($tag, $pos_eq + 1);
    3180. 

  3180. 			$this->tag = strtolower(substr($tag, 0, $pos_eq));
    3181. 

  3181. 			if(!$this->valid_tag($this->tag, $is_html))
    3182. 

  3182. 			{
    3183. 

  3183. 				return false;
    3184. 

  3184. 			}
    3185. 

  3185. 			if(strlen($str) > 1 && substr($str, 0, 1) === '"' && substr($str, strlen($str) - 1) === '"')
    3186. 

  3186. 			{
    3187. 

  3187. 				$str = substr($str, 1, strlen($str) - 2);
    3188. 

  3188. 			}
    3189. 

  3189. 			if(trim($str) !== $str)
    3190. 

  3190. 			{
    3191. 

  3191. 				return false;
    3192. 

  3192. 			}
    3193. 

  3193. 			$this->params['param'] = $str;
    3194. 

  3194. 		}
    3195. 

  3195. 		else
    3196. 

  3196. 		{
    3197. 

  3197. 			// no parameters
    3198. 

  3198. 			$this->tag = strtolower($tag);
    3199. 

  3199. 			if(!$this->valid_tag($this->tag, $is_html))
    3200. 

  3200. 			{
    3201. 

  3201. 				return false;
    3202. 

  3202. 			}
    3203. 

  3203. 		}
    3204. 

  3204. 		return true;
    3205. 

  3205. 	}
    3206. 

  3206. 

  3207. 	// Recursive function that converts text to bbcode tree
    3208. 

  3208. 	function push($start, $level, $prev_tags)
    3209. 

  3209. 	{
    3210. 

  3210. 		//echo '<b>push</b>(', $start, ', ', $level, ', (', implode(',', $prev_tags), '))<br />';
    3211. 

  3211. 		$items = array();
    3212. 

  3212. 		$pos_start_bbcode = $this->allow_bbcode ? strpos($this->text, '[', $start) : false;
    3213. 

  3213. 		$pos_start_html = $this->allow_html ? strpos($this->text, '<', $start) : false;
    3214. 

  3214. 		while($pos_start_bbcode !== false || $pos_start_html !== false)
    3215. 

  3215. 		{
    3216. 

  3216. 			$pos_start = ($pos_start_bbcode === false) ? $pos_start_html : (($pos_start_html === false) ? $pos_start_bbcode : min($pos_start_bbcode, $pos_start_html));
    3217. 

  3217. 			$is_html = ($pos_start_html === $pos_start) ? true : false;
    3218. 

  3218. 			$prev_start = $start;
    3219. 

  3219. 			// found tag. get data.
    3220. 

  3220. 			$pos_end = strpos($this->text, $is_html ? '>' : ']', $pos_start);
    3221. 

  3221. 			if($pos_end === false)
    3222. 

  3222. 			{
    3223. 

  3223. 				$tag_valid = false;
    3224. 

  3224. 			}
    3225. 

  3225. 			else
    3226. 

  3226. 			{
    3227. 

  3227. 				$code = substr($this->text, $pos_start, $pos_end - $pos_start + 1);
    3228. 

  3228. 				// check if tag is valid and get type of tag
    3229. 

  3229. 				$tag_valid = true;
    3230. 

  3230. 				$tag_closing = false;
    3231. 

  3231. 				$tag_self_closing = false;
    3232. 

  3232. 				if(strlen($code) < 3)
    3233. 

  3233. 				{
    3234. 

  3234. 					$tag_valid = false;
    3235. 

  3235. 				}
    3236. 

  3236. 				elseif(!$is_html && strpos($code, '[', 1) !== false)
    3237. 

  3237. 				{
    3238. 

  3238. 					$tag_valid = false;
    3239. 

  3239. 				}
    3240. 

  3240. 				elseif($is_html && strpos($code, '<', 1) !== false)
    3241. 

  3241. 				{
    3242. 

  3242. 					$tag_valid = false;
    3243. 

  3243. 				}
    3244. 

  3244. 				elseif(!$is_html && strpos($code, "\n") !== false)
    3245. 

  3245. 				{
    3246. 

  3246. 					$tag_valid = false;
    3247. 

  3247. 				}
    3248. 

  3248. 				elseif(substr($code, 0, 2) === ($is_html ? '</' : '[/'))
    3249. 

  3249. 				{
    3250. 

  3250. 					$tag_closing = true;
    3251. 

  3251. 					$tag = substr($code, 2, strlen($code) - 3);
    3252. 

  3252. 				}
    3253. 

  3253. 				elseif(substr($code, strlen($code) - 3) === ($is_html ? ' />' : ' /]'))
    3254. 

  3254. 				{
    3255. 

  3255. 					$tag_self_closing = true;
    3256. 

  3256. 					$tag = substr($code, 1, strlen($code) - 4);
    3257. 

  3257. 				}
    3258. 

  3258. 				else
    3259. 

  3259. 				{
    3260. 

  3260. 					$tag = substr($code, 1, strlen($code) - 2);
    3261. 

  3261. 				}
    3262. 

  3262. 

  3263. 				// do not process tag if it requires too much recursion
    3264. 

  3264. 				if($level > 12 && (!$tag_closing && !$tag_self_closing))
    3265. 

  3265. 				{
    3266. 

  3266. 					$tag_valid = false;
    3267. 

  3267. 				}
    3268. 

  3268. 

  3269. 				// special tags
    3270. 

  3270. 				if(in_array($code, $this->self_closing_tags) != false)
    3271. 

  3271. 				{
    3272. 

  3272. 					$tag_self_closing = true;
    3273. 

  3273. 				}
    3274. 

  3274. 			}
    3275. 

  3275. 			if($tag_valid)
    3276. 

  3276. 			{
    3277. 

  3277. 				$start = $pos_end;
    3278. 

  3278. 				$params = array();
    3279. 

  3279. 				if(!$tag_closing)
    3280. 

  3280. 				{
    3281. 

  3281. 					if(!$this->extract_params($tag, $is_html))
    3282. 

  3282. 					{
    3283. 

  3283. 						$tag_valid = false;
    3284. 

  3284. 					}
    3285. 

  3285. 					else
    3286. 

  3286. 					{
    3287. 

  3287. 						$tag = $this->tag;
    3288. 

  3288. 						$params = $this->params;
    3289. 

  3289. 					}
    3290. 

  3290. 				}
    3291. 

  3291. 				else
    3292. 

  3292. 				{
    3293. 

  3293. 					if(strpos($tag, ' autourl=' . AUTOURL . ' nofollow=1'))
    3294. 

  3294. 					{
    3295. 

  3295. 						$tag = str_replace(' autourl=' . AUTOURL . ' nofollow=1', '', $tag);
    3296. 

  3296. 					}
    3297. 

  3297. 					$tag = strtolower($tag);
    3298. 

  3298. 					if(!$this->valid_tag($tag, $is_html))
    3299. 

  3299. 					{
    3300. 

  3300. 						$tag_valid = false;
    3301. 

  3301. 					}
    3302. 

  3302. 				}
    3303. 

  3303. 			}
    3304. 

  3304. 			if($tag_valid)
    3305. 

  3305. 			{
    3306. 

  3306. 				if($tag_closing)
    3307. 

  3307. 				{
    3308. 

  3308. 					// check if this is correct closing tag
    3309. 

  3309. 					if(in_array($tag, $prev_tags))
    3310. 

  3310. 					{
    3311. 

  3311. 						return array(
    3312. 

  3312. 							'items' => $items,
    3313. 

  3313. 							'tag' => $tag,
    3314. 

  3314. 							'pos' => $pos_end,
    3315. 

  3315. 							'start' => $pos_start,
    3316. 

  3316. 							'len' => strlen($code)
    3317. 

  3317. 						);
    3318. 

  3318. 					}
    3319. 

  3319. 				}
    3320. 

  3320. 				elseif($tag_self_closing)
    3321. 

  3321. 				{
    3322. 

  3322. 					// found self-closing tag
    3323. 

  3323. 					$items[] = array(
    3324. 

  3324. 						'tag' => $tag,
    3325. 

  3325. 						'code' => $code,
    3326. 

  3326. 						'params' => $params,
    3327. 

  3327. 						'start' => $pos_start,
    3328. 

  3328. 						'start_len' => strlen($code),
    3329. 

  3329. 						'end' => $pos_end + 1,
    3330. 

  3330. 						'end_len' => 0,
    3331. 

  3331. 						'level' => $level + 1,
    3332. 

  3332. 						'iteration' => 0,
    3333. 

  3333. 						'self_closing' => 1,
    3334. 

  3334. 						'prev' => array(),
    3335. 

  3335. 						'next' => array(),
    3336. 

  3336. 						'is_html' => $is_html,
    3337. 

  3337. 						'items' => array()
    3338. 

  3338. 					);
    3339. 

  3339. 				}
    3340. 

  3340. 				else
    3341. 

  3341. 				{
    3342. 

  3342. 					// found correct tag. call recursive search
    3343. 

  3343. 					$result = $this->push($pos_end, $level + 1, array_merge($prev_tags, array($tag)));
    3344. 

  3344. 					if($result['tag'] === $tag)
    3345. 

  3345. 					{
    3346. 

  3346. 						// found correctly finished tag
    3347. 

  3347. 						$items[] = array(
    3348. 

  3348. 							'tag' => $tag,
    3349. 

  3349. 							'code' => $code,
    3350. 

  3350. 							'params' => $params,
    3351. 

  3351. 							'start' => $pos_start,
    3352. 

  3352. 							'start_len' => strlen($code),
    3353. 

  3353. 							'end' => $result['start'],
    3354. 

  3354. 							'end_len' => $result['len'],
    3355. 

  3355. 							'level' => $level + 1,
    3356. 

  3356. 							'iteration' => 0,
    3357. 

  3357. 							'self_closing' => 2,
    3358. 

  3358. 							'prev' => array(),
    3359. 

  3359. 							'next' => array(),
    3360. 

  3360. 							'is_html' => $is_html,
    3361. 

  3361. 							'items' => $result['items']
    3362. 

  3362. 						);
    3363. 

  3363. 						$start = $result['pos'];
    3364. 

  3364. 					}
    3365. 

  3365. 					else
    3366. 

  3366. 					{
    3367. 

  3367. 						$items = array_merge($items, $result['items']);
    3368. 

  3368. 						return array(
    3369. 

  3369. 							'items' => $items,
    3370. 

  3370. 							'tag' => $result['tag'],
    3371. 

  3371. 							'pos' => !empty($result['pos']) ? $result['pos'] : 0,
    3372. 

  3372. 							'start' => !empty($result['start']) ? $result['start'] : 0,
    3373. 

  3373. 							'len' => !empty($result['len']) ? $result['len'] : 0
    3374. 

  3374. 						);
    3375. 

  3375. 					}
    3376. 

  3376. 				}
    3377. 

  3377. 			}
    3378. 

  3378. 			else
    3379. 

  3379. 			{
    3380. 

  3380. 				$start = $pos_start + 1;
    3381. 

  3381. 			}
    3382. 

  3382. 			$pos_start_bbcode = $this->allow_bbcode ? strpos($this->text, '[', $start) : false;
    3383. 

  3383. 			$pos_start_html = $this->allow_html ? strpos($this->text, '<', $start) : false;
    3384. 

  3384. 		}
    3385. 

  3385. 		return array(
    3386. 

  3386. 			'items' => $items,
    3387. 

  3387. 			'tag' => false,
    3388. 

  3388. 		);
    3389. 

  3389. 	}
    3390. 

  3390. 

  3391. 	// Debug fuction. Prints tree of bbcode
    3392. 

  3392. 	function debug($items)
    3393. 

  3393. 	{
    3394. 

  3394. 		for($i = 0; $i < sizeof($items); $i++)
    3395. 

  3395. 		{
    3396. 

  3396. 			$item = $items[$i];
    3397. 

  3397. 			if($item['tag'])
    3398. 

  3398. 			{
    3399. 

  3399. 				for($j=0; $j<$item['level']; $j++)
    3400. 

  3400. 				{
    3401. 

  3401. 					echo '-';
    3402. 

  3402. 				}
    3403. 

  3403. 				echo ' ', $item['tag'], ' (';
    3404. 

  3404. 				$first = true;
    3405. 

  3405. 				foreach($item['params'] as $var => $value)
    3406. 

  3406. 				{
    3407. 

  3407. 					if(!$first) echo ', ';
    3408. 

  3408. 					$first = false;
    3409. 

  3409. 					echo $var, '="', htmlspecialchars($value), '"';
    3410. 

  3410. 				}
    3411. 

  3411. 				echo ")<br />\n";
    3412. 

  3412. 				$this->debug($item['items']);
    3413. 

  3413. 			}
    3414. 

  3414. 		}
    3415. 

  3415. 	}
    3416. 

  3416. 

  3417. 	// Post-processing. Adds previous/next items to every item.
    3418. 

  3418. 	function add_pointers(&$items, $prev_tags)
    3419. 

  3419. 	{
    3420. 

  3420. 		$tags = array();
    3421. 

  3421. 		for($i = 0; $i < sizeof($items); $i++)
    3422. 

  3422. 		{
    3423. 

  3423. 			$item = &$items[$i];
    3424. 

  3424. 			$tags[] = array(
    3425. 

  3425. 				'tag' => $item['tag'],
    3426. 

  3426. 				'item' => &$items[$i]
    3427. 

  3427. 				);
    3428. 

  3428. 			$iterations = 0;
    3429. 

  3429. 			for($j = 0; $j < sizeof($prev_tags); $j++)
    3430. 

  3430. 			{
    3431. 

  3431. 				if($prev_tags[$j]['tag'] === $item['tag'])
    3432. 

  3432. 				{
    3433. 

  3433. 					$iterations++;
    3434. 

  3434. 				}
    3435. 

  3435. 			}
    3436. 

  3436. 			$item['iteration'] = $iterations;
    3437. 

  3437. 			$item['prev'] = $prev_tags;
    3438. 

  3438. 			// todo: check if subitems are allowed
    3439. 

  3439. 			// parse sub-items
    3440. 

  3440. 			if(sizeof($item['items']))
    3441. 

  3441. 			{
    3442. 

  3442. 				$arr = array(
    3443. 

  3443. 					'tag' => $item['tag'],
    3444. 

  3444. 					'item' => &$items[$i]
    3445. 

  3445. 					);
    3446. 

  3446. 				$item['next'] = $this->add_pointers($item['items'], array_merge($prev_tags, array($arr)));
    3447. 

  3447. 				$tags = array_merge($tags, $item['next']);
    3448. 

  3448. 			}
    3449. 

  3449. 		}
    3450. 

  3450. 		return $tags;
    3451. 

  3451. 	}
    3452. 

  3452. 

  3453. 	// Process text
    3454. 

  3454. 	function process_text($text, $br = true, $chars = true)
    3455. 

  3455. 	{
    3456. 

  3456. 		$search = array(
    3457. 

  3457. 			'[url autourl=' . AUTOURL . ' nofollow=1]',
    3458. 

  3458. 			'[/url autourl=' . AUTOURL .' nofollow=1]',
    3459. 

  3459. 			'[email autourl=' . AUTOURL . ' nofollow=1]',
    3460. 

  3460. 			'[/email autourl=' . AUTOURL . ' nofollow=1]'
    3461. 

  3461. 		);
    3462. 

  3462. 		$replace = array('', '', '', '');
    3463. 

  3463. 		$text = str_replace($search, $replace, $text);
    3464. 

  3464. 		if($chars)
    3465. 

  3465. 		{
    3466. 

  3466. 			$text = htmlspecialchars($text);
    3467. 

  3467. 			$text = str_replace('&amp;#', '&#', $text);
    3468. 

  3468. 		}
    3469. 

  3469. 		else
    3470. 

  3470. 		{
    3471. 

  3471. 			$text = str_replace(
    3472. 

  3472. 				array('&amp;', '>', '%3E', '<', '%3C', '"', '&amp;#'),
    3473. 

  3473. 				array('&amp;amp;', '&gt;', '&gt;', '&lt;', '&lt;', '&quot;', '&#'),
    3474. 

  3474. 				$text
    3475. 

  3475. 			);
    3476. 

  3476. 		}
    3477. 

  3477. 		if($br)
    3478. 

  3478. 		{
    3479. 

  3479. 			$text = str_replace("\n", "<br />\n", $text);
    3480. 

  3480. 		}
    3481. 

  3481. 		return $text;
    3482. 

  3482. 	}
    3483. 

  3483. 

  3484. 	// Process tree
    3485. 

  3485. 	function process($start, $end, &$items, $clean_tags = false)
    3486. 

  3486. 	{
    3487. 

  3487. 		$html = '';
    3488. 

  3488. 		for($i = 0; $i < sizeof($items); $i++)
    3489. 

  3489. 		{
    3490. 

  3490. 			$item = &$items[$i];
    3491. 

  3491. 

  3492. 			// check code before item
    3493. 

  3493. 			if($item['start'] > $start)
    3494. 

  3494. 			{
    3495. 

  3495. 				$html .= $this->process_text(substr($this->text, $start, $item['start'] - $start));
    3496. 

  3496. 			}
    3497. 

  3497. 

  3498. 			if ($clean_tags === true)
    3499. 

  3499. 			{
    3500. 

  3500. 				// clean tag
    3501. 

  3501. 				$result = $this->clean_tag($item);
    3502. 

  3502. 			}
    3503. 

  3503. 			else
    3504. 

  3504. 			{
    3505. 

  3505. 				// process tag
    3506. 

  3506. 				$result = $this->process_tag($item);
    3507. 

  3507. 			}
    3508. 

  3508. 

  3509. 			if($result['valid'] && !isset($result['html']))
    3510. 

  3510. 			{
    3511. 

  3511. 				$html .= $result['start'];
    3512. 

  3512. 				if(!isset($result['allow_nested']) || $result['allow_nested'])
    3513. 

  3513. 				{
    3514. 

  3514. 					// process code inside tag
    3515. 

  3515. 					$html .= $this->process($item['start'] + $item['start_len'], $item['end'], $item['items'], $clean_tags);
    3516. 

  3516. 				}
    3517. 

  3517. 				$html .= $result['end'];
    3518. 

  3518. 			}
    3519. 

  3519. 			elseif($result['valid'])
    3520. 

  3520. 			{
    3521. 

  3521. 				$html .= $result['html'];
    3522. 

  3522. 			}
    3523. 

  3523. 			else
    3524. 

  3524. 			{
    3525. 

  3525. 				// invalid tag. show html code for it and process nested tags
    3526. 

  3526. 				$item['valid'] = false;
    3527. 

  3527. 				if($item['start_len'])
    3528. 

  3528. 				{
    3529. 

  3529. 					$html .= $this->process_text(substr($this->text, $item['start'], $item['start_len']));
    3530. 

  3530. 				}
    3531. 

  3531. 				$html .= $this->process($item['start'] + $item['start_len'], $item['end'], $item['items']);
    3532. 

  3532. 				if($item['end_len'])
    3533. 

  3533. 				{
    3534. 

  3534. 					$html .= $this->process_text(substr($this->text, $item['end'], $item['end_len']));
    3535. 

  3535. 				}
    3536. 

  3536. 			}
    3537. 

  3537. 

  3538. 			$start = $item['end'] + $item['end_len'];
    3539. 

  3539. 		}
    3540. 

  3540. 		// process code after item
    3541. 

  3541. 		if($start < $end)
    3542. 

  3542. 		{
    3543. 

  3543. 			$html .= $this->process_text(substr($this->text, $start, $end - $start));
    3544. 

  3544. 		}
    3545. 

  3545. 		return $html;
    3546. 

  3546. 	}
    3547. 

  3547. 

  3548. 	// Prepare smilies list
    3549. 

  3549. 	function prepare_smilies()
    3550. 

  3550. 	{
    3551. 

  3551. 		if(!$this->allow_smilies)
    3552. 

  3552. 		{
    3553. 

  3553. 			return;
    3554. 

  3554. 		}
    3555. 

  3555. 		$this->replaced_smilies = array();
    3556. 

  3556. 		for($i = 0; $i < sizeof($this->allowed_smilies); $i++)
    3557. 

  3557. 		{
    3558. 

  3558. 			if(strpos($this->text, $this->allowed_smilies[$i]['code']) !== false)
    3559. 

  3559. 			{
    3560. 

  3560. 				$this->replaced_smilies[] = $this->allowed_smilies[$i];
    3561. 

  3561. 			}
    3562. 

  3562. 		}
    3563. 

  3563. 	}
    3564. 

  3564. 

  3565. 	// Parse only smilies
    3566. 

  3566. 	function parse_only_smilies($text)
    3567. 

  3567. 	{
    3568. 

  3568. 		if(!$this->allow_smilies || (sizeof($this->allowed_smilies) == 0))
    3569. 

  3569. 		{
    3570. 

  3570. 			return $text;
    3571. 

  3571. 		}
    3572. 

  3572. 		$smilies_code = array();
    3573. 

  3573. 		$smilies_replace = array();
    3574. 

  3574. 		for($i = 0; $i < sizeof($this->allowed_smilies); $i++)
    3575. 

  3575. 		{
    3576. 

  3576. 			$smilies_code_prev[] = ' ' . $this->allowed_smilies[$i]['code'];
    3577. 

  3577. 			$smilies_code_next[] = $this->allowed_smilies[$i]['code'] . ' ';
    3578. 

  3578. 			$smilies_replace_prev[] = ' ' . $this->allowed_smilies[$i]['replace'];
    3579. 

  3579. 			$smilies_replace_next[] = $this->allowed_smilies[$i]['replace'] . ' ';
    3580. 

  3580. 		}
    3581. 

  3581. 		$text = str_replace($smilies_code_prev, $smilies_replace_prev, $text);
    3582. 

  3582. 		$text = str_replace($smilies_code_next, $smilies_replace_next, $text);
    3583. 

  3583. 		return $text;
    3584. 

  3584. 	}
    3585. 

  3585. 

  3586. 	// Process smilies
    3587. 

  3587. 	function process_smilies()
    3588. 

  3588. 	{
    3589. 

  3589. 		$valid_chars_prev = array('', ' ', "\n", "\r", "\t", '>');
    3590. 

  3590. 		$valid_chars_next = array('', ' ', "\n", "\r", "\t", '<');
    3591. 

  3591. 		if(!$this->allow_smilies && !sizeof($this->replaced_smilies))
    3592. 

  3592. 		{
    3593. 

  3593. 			return;
    3594. 

  3594. 		}
    3595. 

  3595. 		for($i = 0; $i < sizeof($this->replaced_smilies); $i++)
    3596. 

  3596. 		{
    3597. 

  3597. 			$code = $this->replaced_smilies[$i]['code'];
    3598. 

  3598. 			$text = $this->replaced_smilies[$i]['replace'];
    3599. 

  3599. 			$code_len = strlen($code);
    3600. 

  3600. 			$text_len = strlen($text);
    3601. 

  3601. 			$pos = strpos($this->html, $code);
    3602. 

  3602. 			while($pos !== false)
    3603. 

  3603. 			{
    3604. 

  3604. 				$valid = false;
    3605. 

  3605. 				// check previous character
    3606. 

  3606. 				$prev_char = $pos > 0 ? substr($this->html, $pos - 1, 1) : '';
    3607. 

  3607. 				if(in_array($prev_char, $valid_chars_prev))
    3608. 

  3608. 				{
    3609. 

  3609. 					// check next character
    3610. 

  3610. 					$next_char = substr($this->html, $pos + $code_len, 1);
    3611. 

  3611. 					if(in_array($next_char, $valid_chars_next))
    3612. 

  3612. 					{
    3613. 

  3613. 						// make sure we aren't inside html code
    3614. 

  3614. 						$pos1 = strpos($this->html, '<', $pos + $code_len);
    3615. 

  3615. 						$pos2 = strpos($this->html, '>', $pos + $code_len);
    3616. 

  3616. 						if($pos2 === false || ($pos1 && $pos1 < $pos2))
    3617. 

  3617. 						{
    3618. 

  3618. 							// make sure we aren't inside nosmilies zone
    3619. 

  3619. 							$pos1 = strpos($this->html, BBCODE_NOSMILIES_START, $pos + $code_len);
    3620. 

  3620. 							$pos2 = strpos($this->html, BBCODE_NOSMILIES_END, $pos + $code_len);
    3621. 

  3621. 							if($pos2 === false || ($pos1 && $pos1 < $pos2))
    3622. 

  3622. 							{
    3623. 

  3623. 								$valid = true;
    3624. 

  3624. 							}
    3625. 

  3625. 						}
    3626. 

  3626. 					}
    3627. 

  3627. 				}
    3628. 

  3628. 				if($valid)
    3629. 

  3629. 				{
    3630. 

  3630. 					$this->html = substr($this->html, 0, $pos) . $text . substr($this->html, $pos + $code_len);
    3631. 

  3631. 					$pos += $text_len;
    3632. 

  3632. 				}
    3633. 

  3633. 				else
    3634. 

  3634. 				{
    3635. 

  3635. 					$pos++;
    3636. 

  3636. 				}
    3637. 

  3637. 				$pos = strpos($this->html, $code, $pos);
    3638. 

  3638. 			}
    3639. 

  3639. 		}
    3640. 

  3640. 	}
    3641. 

  3641. 

  3642. 	// Make urls clickable
    3643. 

  3643. 	function process_urls()
    3644. 

  3644. 	{
    3645. 

  3645. 		// characters allowed in email
    3646. 

  3646. 		$chars = array();
    3647. 

  3647. 		for($i = 224; $i < 256; $i++)
    3648. 

  3648. 		{
    3649. 

  3649. 			if($i != 247)
    3650. 

  3650. 			{
    3651. 

  3651. 				$chars .= chr($i);
    3652. 

  3652. 			}
    3653. 

  3653. 		}
    3654. 

  3654. 		// search and replace arrays
    3655. 

  3655. 		$search = array(
    3656. 

  3656. 			"/([\s>])((https?|ftp):\/\/|www\.)([^ \r\n\(\)\^\$!`\"'\|\[\]\{\}<>]+)/si",
    3657. 

  3657. 			"/([\s>])([_a-zA-Z0-9\-]+(\.[_a-zA-Z0-9-]+)*@[a-zA-Z0-9\-{$chars}]+(\.[a-zA-Z0-9\-{$chars}]+)*(\.[a-zA-Z]{2,}))/si",
    3658. 

  3658. 		);
    3659. 

  3659. 		$replace = array(
    3660. 

  3660. 			"\\1[url autourl=" . AUTOURL . " nofollow=1]\\2\\4[/url autourl=" . AUTOURL . " nofollow=1]",
    3661. 

  3661. 			"\\1[email autourl=" . AUTOURL . " nofollow=1]\\2[/email autourl=" . AUTOURL . " nofollow=1]",
    3662. 

  3662. 		);
    3663. 

  3663. 		$this->text = preg_replace($search, $replace, ' ' . $this->text . ' ');
    3664. 

  3664. 		$this->text = substr($this->text, 1, strlen($this->text) - 2);
    3665. 

  3665. 	}
    3666. 

  3666. 

  3667. 	// Remove bbcode_uid from old posts
    3668. 

  3668. 	function bbcuid_clean($text, $id = false)
    3669. 

  3669. 	{
    3670. 

  3670. 		if ($id != false)
    3671. 

  3671. 		{
    3672. 

  3672. 			$text = str_replace(':' . $id, '', $text);
    3673. 

  3673. 		}
    3674. 

  3674. 		else
    3675. 

  3675. 		{
    3676. 

  3676. 			$text = preg_replace("/\:([a-f0-9]{10})/s", '', $text);
    3677. 

  3677. 			// phpBB 3
    3678. 

  3678. 			//$text = preg_replace("/\:([a-z0-9]{8})/s", '', $text);
    3679. 

  3679. 		}
    3680. 

  3680. 		return $text;
    3681. 

  3681. 	}
    3682. 

  3682. 

  3683. 	// Converts text to html code
    3684. 

  3684. 	function parse($text, $id = false, $light = false, $clean_tags = false)
    3685. 

  3685. 	{
    3686. 

  3686. 		if(defined('IN_ICYPHOENIX'))
    3687. 

  3687. 		{
    3688. 

  3688. 			// if you have an old phpBB based site with old posts, you may want to enable this BBCode UID strip REG EX Replace
    3689. 

  3689. 			//$text = preg_replace("/\:([a-f0-9]{10})/s", '', $text);
    3690. 

  3690. 			$search = array(
    3691. 

  3691. 				$id ? ':' . $id : '',
    3692. 

  3692. 				'code:1]',
    3693. 

  3693. 				'list:o]',
    3694. 

  3694. 			);
    3695. 

  3695. 			$replace = array(
    3696. 

  3696. 				'',
    3697. 

  3697. 				'code]',
    3698. 

  3698. 				'list]',
    3699. 

  3699. 			);
    3700. 

  3700. 			$text = str_replace($search, $replace, $text);
    3701. 

  3701. 			// We need this after having removed bbcode_uid... but don't know why
    3702. 

  3702. 			$text = $this->undo_htmlspecialchars($text);
    3703. 

  3703. 			/*
    3704. 

  3704. 			if($id)
    3705. 

  3705. 			{
    3706. 

  3706. 				$text = $this->undo_htmlspecialchars($text);
    3707. 

  3707. 			}
    3708. 

  3708. 			*/
    3709. 

  3709. 		}
    3710. 

  3710. 		// reset variables
    3711. 

  3711. 		$this->text = $text;
    3712. 

  3712. 		$this->data = array();
    3713. 

  3713. 		$this->html = '';
    3714. 

  3714. 		$this->prepare_smilies();
    3715. 

  3715. 		if (!$light)
    3716. 

  3716. 		{
    3717. 

  3717. 			$this->process_urls();
    3718. 

  3718. 		}
    3719. 

  3719. 		$this->code_counter = 0;
    3720. 

  3720. 		// if bbcode and html are disabled then return unprocessed text
    3721. 

  3721. 		if(!$this->allow_bbcode && !$this->allow_html)
    3722. 

  3722. 		{
    3723. 

  3723. 			// Mighty Gorgon: I had to add htmlspecialchars to text, otherwise users were able to post html by disabling both HTML and BBCodes in topics... still to be fully verified...
    3724. 

  3724. 			//$this->html = $this->text;
    3725. 

  3725. 			$this->html = htmlspecialchars($this->text);
    3726. 

  3726. 			$this->process_smilies();
    3727. 

  3727. 			return $this->html;
    3728. 

  3728. 		}
    3729. 

  3729. 		// convert to tree structure
    3730. 

  3730. 		$result = $this->push(0, 0, array());
    3731. 

  3731. 		$this->data = $result['items'];
    3732. 

  3732. 

  3733. 		/*
    3734. 

  3734. 		ob_start();
    3735. 

  3735. 		$this->debug($this->data);
    3736. 

  3736. 		$str = ob_get_contents();
    3737. 

  3737. 		ob_end_clean();
    3738. 

  3738. 		$this->html = 'Debug:<br />' . $str;
    3739. 

  3739. 		return $this->html;
    3740. 

  3740. 		*/
    3741. 

  3741. 

  3742. 		// add prev/next pointers and count iterations
    3743. 

  3743. 		$this->add_pointers($this->data, array());
    3744. 

  3744. 		if ($clean_tags !== false)
    3745. 

  3745. 		{
    3746. 

  3746. 			$clean_tags = true;
    3747. 

  3747. 		}
    3748. 

  3748. 		// convert to html
    3749. 

  3749. 		$this->html = $this->process(0, strlen($this->text), $this->data, $clean_tags);
    3750. 

  3750. 		$this->process_smilies();
    3751. 

  3751. 

  3752. 		if(defined('IN_ICYPHOENIX'))
    3753. 

  3753. 		{
    3754. 

  3754. 			global $db, $cache, $config, $lang;
    3755. 

  3755. 			if (!empty($config['enable_custom_bbcodes']))
    3756. 

  3756. 			{
    3757. 

  3757. 				$bbcodes = $cache->obtain_bbcodes(true);
    3758. 

  3758. 				if (!empty($bbcodes))
    3759. 

  3759. 				{
    3760. 

  3760. 					$bbcode_regexp = array();
    3761. 

  3761. 					foreach ($bbcodes as $k => $v)
    3762. 

  3762. 					{
    3763. 

  3763. 						$v = array_map('stripslashes', $v);
    3764. 

  3764. 						$bbcode_regexp = $this->build_regexp($v['bbcode_match'], $v['bbcode_tpl']);
    3765. 

  3765. 						$this->html = preg_replace($bbcode_regexp['second_pass_match'], $bbcode_regexp['second_pass_replace'], $this->html);
    3766. 

  3766. 					}
    3767. 

  3767. 				}
    3768. 

  3768. 			}
    3769. 

  3769. 		}
    3770. 

  3770. 

  3771. 		return $this->html;
    3772. 

  3772. 	}
    3773. 

  3773. 

  3774. 	/*
    3775. 

  3775. 	* Build regular expression for custom bbcode
    3776. 

  3776. 	*/
    3777. 

  3777. 	function build_regexp(&$bbcode_match, &$bbcode_tpl)
    3778. 

  3778. 	{
    3779. 

  3779. 		$bbcode_match = trim($bbcode_match);
    3780. 

  3780. 		$bbcode_tpl = trim($bbcode_tpl);
    3781. 

  3781. 

  3782. 		$fp_match = preg_quote($bbcode_match, '!');
    3783. 

  3783. 		$fp_replace = preg_replace('#^\[(.*?)\]#', '[$1]', $bbcode_match);
    3784. 

  3784. 		$fp_replace = preg_replace('#\[/(.*?)\]$#', '[/$1]', $fp_replace);
    3785. 

  3785. 

  3786. 		$sp_match = preg_quote($bbcode_match, '!');
    3787. 

  3787. 		$sp_match = preg_replace('#^\\\\\[(.*?)\\\\\]#', '\[$1\]', $sp_match);
    3788. 

  3788. 		$sp_match = preg_replace('#\\\\\[/(.*?)\\\\\]$#', '\[/$1\]', $sp_match);
    3789. 

  3789. 		$sp_replace = $bbcode_tpl;
    3790. 

  3790. 

  3791. 		// @todo Make sure to change this too if something changed in message parsing
    3792. 

  3792. 		$tokens = array(
    3793. 

  3793. 			'URL' => array(
    3794. 

  3794. 				'!(?:(' . str_replace(array('!', '\#'), array('\!', '#'), $this->get_preg_expression('url')) . ')|(' . str_replace(array('!', '\#'), array('\!', '#'), $this->get_preg_expression('www_url')) . '))!ie' => "\$this->bbcode_specialchars(('\$1') ? '\$1' : 'http://\$2')"
    3795. 

  3795. 			),
    3796. 

  3796. 			'LOCAL_URL' => array(
    3797. 

  3797. 				'!(' . str_replace(array('!', '\#'), array('\!', '#'), $this->get_preg_expression('relative_url')) . ')!e' => "\$this->bbcode_specialchars('$1')"
    3798. 

  3798. 			),
    3799. 

  3799. 			'EMAIL' => array(
    3800. 

  3800. 				'!(' . $this->get_preg_expression('email') . ')!ie' => "\$this->bbcode_specialchars('$1')"
    3801. 

  3801. 			),
    3802. 

  3802. 			'TEXT' => array(
    3803. 

  3803. 				'!(.*?)!es' => "str_replace(array(\"\\r\\n\", '\\\"', '\\'', '(', ')'), array(\"\\n\", '\"', '&#39;', '&#40;', '&#41;'), trim('\$1'))"
    3804. 

  3804. 			),
    3805. 

  3805. 			'SIMPLETEXT' => array(
    3806. 

  3806. 				'!([a-zA-Z0-9-+.,_ ]+)!' => "$1"
    3807. 

  3807. 			),
    3808. 

  3808. 			'IDENTIFIER' => array(
    3809. 

  3809. 				'!([a-zA-Z0-9-_]+)!' => "$1"
    3810. 

  3810. 			),
    3811. 

  3811. 			'COLOR' => array(
    3812. 

  3812. 				'!([a-z]+|#[0-9abcdef]+)!i' => '$1'
    3813. 

  3813. 			),
    3814. 

  3814. 			'NUMBER' => array(
    3815. 

  3815. 				'!([0-9]+)!' => '$1'
    3816. 

  3816. 			)
    3817. 

  3817. 		);
    3818. 

  3818. 

  3819. 		$sp_tokens = array(
    3820. 

  3820. 			'URL' => '(?i)((?:' . str_replace(array('!', '\#'), array('\!', '#'), $this->get_preg_expression('url')) . ')|(?:' . str_replace(array('!', '\#'), array('\!', '#'), $this->get_preg_expression('www_url')) . '))(?-i)',
    3821. 

  3821. 			'LOCAL_URL' => '(?i)(' . str_replace(array('!', '\#'), array('\!', '#'), $this->get_preg_expression('relative_url')) . ')(?-i)',
    3822. 

  3822. 			'EMAIL' => '(' . $this->get_preg_expression('email') . ')',
    3823. 

  3823. 			'TEXT' => '(.*?)',
    3824. 

  3824. 			'SIMPLETEXT' => '([a-zA-Z0-9-+.,_ ]+)',
    3825. 

  3825. 			'IDENTIFIER' => '([a-zA-Z0-9-_]+)',
    3826. 

  3826. 			'COLOR' => '([a-zA-Z]+|#[0-9abcdefABCDEF]+)',
    3827. 

  3827. 			'NUMBER' => '([0-9]+)',
    3828. 

  3828. 		);
    3829. 

  3829. 

  3830. 		$pad = 0;
    3831. 

  3831. 		$modifiers = 'i';
    3832. 

  3832. 

  3833. 		if (preg_match_all('/\{(' . implode('|', array_keys($tokens)) . ')[0-9]*\}/i', $bbcode_match, $m))
    3834. 

  3834. 		{
    3835. 

  3835. 			foreach ($m[0] as $n => $token)
    3836. 

  3836. 			{
    3837. 

  3837. 				$token_type = $m[1][$n];
    3838. 

  3838. 

  3839. 				reset($tokens[strtoupper($token_type)]);
    3840. 

  3840. 				list($match, $replace) = each($tokens[strtoupper($token_type)]);
    3841. 

  3841. 

  3842. 				// Pad backreference numbers from tokens
    3843. 

  3843. 				if (preg_match_all('/(?<!\\\\)\$([0-9]+)/', $replace, $repad))
    3844. 

  3844. 				{
    3845. 

  3845. 					$repad = $pad + sizeof(array_unique($repad[0]));
    3846. 

  3846. 					// Updated by Informpro
    3847. 

  3847. 					/*
    3848. 

  3848. 					$replace = preg_replace('/(?<!\\\\)\$([0-9]+)/e', "'\${' . (\$1 + \$pad) . '}'", $replace);
    3849. 

  3849. 					*/
    3850. 

  3850. 					$replace = preg_replace_callback('/(?<!\\\\)\$([0-9]+)/', function ($m) use ($pad) {
    3851. 

  3851. 						return '${' . ($m[1] + $pad) . '}';
    3852. 

  3852. 					}, $replace);
    3853. 

  3853. 

  3854. 					$pad = $repad;
    3855. 

  3855. 				}
    3856. 

  3856. 

  3857. 				// Obtain pattern modifiers to use and alter the regex accordingly
    3858. 

  3858. 				$regex = preg_replace('/!(.*)!([a-z]*)/', '$1', $match);
    3859. 

  3859. 				$regex_modifiers = preg_replace('/!(.*)!([a-z]*)/', '$2', $match);
    3860. 

  3860. 

  3861. 				for ($i = 0, $size = strlen($regex_modifiers); $i < $size; ++$i)
    3862. 

  3862. 				{
    3863. 

  3863. 					if (strpos($modifiers, $regex_modifiers[$i]) === false)
    3864. 

  3864. 					{
    3865. 

  3865. 						$modifiers .= $regex_modifiers[$i];
    3866. 

  3866. 

  3867. 						if ($regex_modifiers[$i] == 'e')
    3868. 

  3868. 						{
    3869. 

  3869. 							$fp_replace = "'" . str_replace("'", "\\'", $fp_replace) . "'";
    3870. 

  3870. 						}
    3871. 

  3871. 					}
    3872. 

  3872. 

  3873. 					if ($regex_modifiers[$i] == 'e')
    3874. 

  3874. 					{
    3875. 

  3875. 						$replace = "'.$replace.'";
    3876. 

  3876. 					}
    3877. 

  3877. 				}
    3878. 

  3878. 

  3879. 				$fp_match = str_replace(preg_quote($token, '!'), $regex, $fp_match);
    3880. 

  3880. 				$fp_replace = str_replace($token, $replace, $fp_replace);
    3881. 

  3881. 

  3882. 				$sp_match = str_replace(preg_quote($token, '!'), $sp_tokens[$token_type], $sp_match);
    3883. 

  3883. 				$sp_replace = str_replace($token, '${' . ($n + 1) . '}', $sp_replace);
    3884. 

  3884. 			}
    3885. 

  3885. 

  3886. 			$fp_match = '!' . $fp_match . '!' . $modifiers;
    3887. 

  3887. 			$sp_match = '!' . $sp_match . '!s';
    3888. 

  3888. 

  3889. 			if (strpos($fp_match, 'e') !== false)
    3890. 

  3890. 			{
    3891. 

  3891. 				$fp_replace = str_replace("'.'", '', $fp_replace);
    3892. 

  3892. 				$fp_replace = str_replace(".''.", '.', $fp_replace);
    3893. 

  3893. 			}
    3894. 

  3894. 		}
    3895. 

  3895. 		else
    3896. 

  3896. 		{
    3897. 

  3897. 			// No replacement is present, no need for a second-pass pattern replacement
    3898. 

  3898. 			// A simple str_replace will suffice
    3899. 

  3899. 			$fp_match = '!' . $fp_match . '!' . $modifiers;
    3900. 

  3900. 			$sp_match = $fp_replace;
    3901. 

  3901. 			$sp_replace = '';
    3902. 

  3902. 		}
    3903. 

  3903. 

  3904. 		// Lowercase tags
    3905. 

  3905. 		$bbcode_tag = preg_replace('/.*?\[([a-z0-9_-]+=?).*/i', '$1', $bbcode_match);
    3906. 

  3906. 		$bbcode_search = preg_replace('/.*?\[([a-z0-9_-]+)=?.*/i', '$1', $bbcode_match);
    3907. 

  3907. 

  3908. 		if (!preg_match('/^[a-zA-Z0-9_-]+=?$/', $bbcode_tag))
    3909. 

  3909. 		{
    3910. 

  3910. 			return false;
    3911. 

  3911. 		}
    3912. 

  3912. 

  3913. 		// Updated by Informpro
    3914. 

  3914. 		/*
    3915. 

  3915. 		$fp_match = preg_replace('#\[/?' . $bbcode_search . '#ie', "strtolower('\$0')", $fp_match);
    3916. 

  3916. 		$fp_replace = preg_replace('#\[/?' . $bbcode_search . '#ie', "strtolower('\$0')", $fp_replace);
    3917. 

  3917. 		$sp_match = preg_replace('#\[/?' . $bbcode_search . '#ie', "strtolower('\$0')", $sp_match);
    3918. 

  3918. 		$sp_replace = preg_replace('#\[/?' . $bbcode_search . '#ie', "strtolower('\$0')", $sp_replace);
    3919. 

  3919. 		*/
    3920. 

  3920. 		$fp_match = preg_replace_callback('#\[/?' . $bbcode_search . '#i', function ($m) {
    3921. 

  3921. 			return strtolower($m[0]);
    3922. 

  3922. 		}, $fp_match);
    3923. 

  3923. 		$fp_replace = preg_replace_callback('#\[/?' . $bbcode_search . '#i', function ($m) {
    3924. 

  3924. 			return strtolower($m[0]);
    3925. 

  3925. 		}, $fp_replace);
    3926. 

  3926. 		$sp_match = preg_replace_callback('#\[/?' . $bbcode_search . '#i', function ($m) {
    3927. 

  3927. 			return strtolower($m[0]);
    3928. 

  3928. 		}, $sp_match);
    3929. 

  3929. 		$sp_replace = preg_replace_callback('#\[/?' . $bbcode_search . '#i', function ($m) {
    3930. 

  3930. 			return strtolower($m[0]);
    3931. 

  3931. 		}, $sp_replace);
    3932. 

  3932. 

  3933. 

  3934. 		return array(
    3935. 

  3935. 			'bbcode_tag'						=> $bbcode_tag,
    3936. 

  3936. 			'first_pass_match'			=> $fp_match,
    3937. 

  3937. 			'first_pass_replace'		=> $fp_replace,
    3938. 

  3938. 			'second_pass_match'			=> $sp_match,
    3939. 

  3939. 			'second_pass_replace'		=> $sp_replace
    3940. 

  3940. 		);
    3941. 

  3941. 	}
    3942. 

  3942. 

  3943. 

  3944. 	/**
    3945. 

  3945. 	* This function returns a regular expression pattern for commonly used expressions
    3946. 

  3946. 	* Use with / as delimiter for email mode and # for url modes
    3947. 

  3947. 	* mode can be: email|bbcode_htm|url|url_inline|www_url|www_url_inline|relative_url|relative_url_inline
    3948. 

  3948. 	*/
    3949. 

  3949. 	function get_preg_expression($mode)
    3950. 

  3950. 	{
    3951. 

  3951. 		switch ($mode)
    3952. 

  3952. 		{
    3953. 

  3953. 			case 'email':
    3954. 

  3954. 				//return '(?:[a-z0-9\'\.\-_\+\|]++|&amp;)+@[a-z0-9\-]+\.(?:[a-z0-9\-]+\.)*[a-z]+';
    3955. 

  3955. 				return '([\w\!\#$\%\&\'\*\+\-\/\=\?\^\`{\|\}\~]+\.)*(?:[\w\!\#$\%\'\*\+\-\/\=\?\^\`{\|\}\~]|&amp;)+@((((([a-z0-9]{1}[a-z0-9\-]{0,62}[a-z0-9]{1})|[a-z])\.)+[a-z]{2,63})|(\d{1,3}\.){3}\d{1,3}(\:\d{1,5})?)';
    3956. 

  3956. 			break;
    3957. 

  3957. 

  3958. 			case 'bbcode_htm':
    3959. 

  3959. 				return array(
    3960. 

  3960. 					'#<!\-\- e \-\-><a href="mailto:(.*?)">.*?</a><!\-\- e \-\->#',
    3961. 

  3961. 					'#<!\-\- l \-\-><a (?:class="[\w-]+" )?href="(.*?)(?:(&amp;|\?)sid=[0-9a-f]{32})?">.*?</a><!\-\- l \-\->#',
    3962. 

  3962. 					'#<!\-\- ([mw]) \-\-><a (?:class="[\w-]+" )?href="(.*?)">.*?</a><!\-\- \1 \-\->#',
    3963. 

  3963. 					'#<!\-\- s(.*?) \-\-><img src="\{SMILIES_PATH\}\/.*? \/><!\-\- s\1 \-\->#',
    3964. 

  3964. 					'#<!\-\- .*? \-\->#s',
    3965. 

  3965. 					'#<.*?>#s',
    3966. 

  3966. 				);
    3967. 

  3967. 			break;
    3968. 

  3968. 

  3969. 			case 'url':
    3970. 

  3970. 			case 'url_inline':
    3971. 

  3971. 				$inline = ($mode == 'url') ? ')' : '';
    3972. 

  3972. 				$scheme = ($mode == 'url') ? '[a-z\d+\-.]' : '[a-z\d+]'; // avoid automatic parsing of "word" in "last word.http://..."
    3973. 

  3973. 				// generated with regex generation file in the develop folder
    3974. 

  3974. 				return "[a-z]$scheme*:/{2}(?:(?:[a-z0-9\-._~!$&'($inline*+,;=:@|]+|%[\dA-F]{2})+|[0-9.]+|\[[a-z0-9.]+:[a-z0-9.]+:[a-z0-9.:]+\])(?::\d*)?(?:/(?:[a-z0-9\-._~!$&'($inline*+,;=:@|]+|%[\dA-F]{2})*)*(?:\?(?:[a-z0-9\-._~!$&'($inline*+,;=:@/?|]+|%[\dA-F]{2})*)?(?:\#(?:[a-z0-9\-._~!$&'($inline*+,;=:@/?|]+|%[\dA-F]{2})*)?";
    3975. 

  3975. 			break;
    3976. 

  3976. 

  3977. 			case 'www_url':
    3978. 

  3978. 			case 'www_url_inline':
    3979. 

  3979. 				$inline = ($mode == 'www_url') ? ')' : '';
    3980. 

  3980. 				return "www\.(?:[a-z0-9\-._~!$&'($inline*+,;=:@|]+|%[\dA-F]{2})+(?::\d*)?(?:/(?:[a-z0-9\-._~!$&'($inline*+,;=:@|]+|%[\dA-F]{2})*)*(?:\?(?:[a-z0-9\-._~!$&'($inline*+,;=:@/?|]+|%[\dA-F]{2})*)?(?:\#(?:[a-z0-9\-._~!$&'($inline*+,;=:@/?|]+|%[\dA-F]{2})*)?";
    3981. 

  3981. 			break;
    3982. 

  3982. 

  3983. 			case 'relative_url':
    3984. 

  3984. 			case 'relative_url_inline':
    3985. 

  3985. 				$inline = ($mode == 'relative_url') ? ')' : '';
    3986. 

  3986. 				return "(?:[a-z0-9\-._~!$&'($inline*+,;=:@|]+|%[\dA-F]{2})*(?:/(?:[a-z0-9\-._~!$&'($inline*+,;=:@|]+|%[\dA-F]{2})*)*(?:\?(?:[a-z0-9\-._~!$&'($inline*+,;=:@/?|]+|%[\dA-F]{2})*)?(?:\#(?:[a-z0-9\-._~!$&'($inline*+,;=:@/?|]+|%[\dA-F]{2})*)?";
    3987. 

  3987. 			break;
    3988. 

  3988. 		}
    3989. 

  3989. 

  3990. 		return '';
    3991. 

  3991. 	}
    3992. 

  3992. 

  3993. 	/**
    3994. 

  3994. 	* Transform some characters in valid bbcodes
    3995. 

  3995. 	*/
    3996. 

  3996. 	function bbcode_specialchars($text)
    3997. 

  3997. 	{
    3998. 

  3998. 		$str_from = array('<', '>', '[', ']', '.', ':');
    3999. 

  3999. 		$str_to = array('&lt;', '&gt;', '&#91;', '&#93;', '&#46;', '&#58;');
    4000. 

  4000. 

  4001. 		return str_replace($str_from, $str_to, $text);
    4002. 

  4002. 	}
    4003. 

  4003. 

  4004. 	/**
    4005. 

  4005. 	* Load rainbow colors
    4006. 

  4006. 	*/
    4007. 

  4007. 	function load_rainbow_colors()
    4008. 

  4008. 	{
    4009. 

  4009. 		return array(
    4010. 

  4010. 			1 => 'red',
    4011. 

  4011. 			2 => 'orange',
    4012. 

  4012. 			3 => 'yellow',
    4013. 

  4013. 			4 => 'green',
    4014. 

  4014. 			5 => 'blue',
    4015. 

  4015. 			6 => 'indigo',
    4016. 

  4016. 			7 => 'violet'
    4017. 

  4017. 		);
    4018. 

  4018. 	}
    4019. 

  4019. 

  4020. 	/**
    4021. 

  4021. 	* Apply rainbow effect
    4022. 

  4022. 	*/
    4023. 

  4023. 	function rainbow($text)
    4024. 

  4024. 	{
    4025. 

  4025. 		// Returns text highlighted in rainbow colours
    4026. 

  4026. 		$colors = $this->load_rainbow_colors();
    4027. 

  4027. 		$text = trim($text);
    4028. 

  4028. 		$length = strlen($text);
    4029. 

  4029. 		$result = '';
    4030. 

  4030. 		$color_counter = 0;
    4031. 

  4031. 		$TAG_OPEN = false;
    4032. 

  4032. 		for ($i = 0; $i < $length; $i++)
    4033. 

  4033. 		{
    4034. 

  4034. 			$char = substr($text, $i, 1);
    4035. 

  4035. 			// UTF-8 character encoding - BEGIN
    4036. 

  4036. 			// See http://www.faqs.org/rfcs/rfc2279.html
    4037. 

  4037. 			$code = ord($char);
    4038. 

  4038. 			if ($code >= 0x80)
    4039. 

  4039. 			{
    4040. 

  4040. 				if ($code < 0xE0)
    4041. 

  4041. 				{
    4042. 

  4042. 					// Two byte
    4043. 

  4043. 					$char = substr($text, $i, 2);
    4044. 

  4044. 					$i = $i + 1;
    4045. 

  4045. 				}
    4046. 

  4046. 				elseif ($code < 0xF0)
    4047. 

  4047. 				{
    4048. 

  4048. 					// Three byte
    4049. 

  4049. 					$char = substr($text, $i, 3);
    4050. 

  4050. 					$i = $i + 2;
    4051. 

  4051. 				}
    4052. 

  4052. 				elseif ($code < 0xF8)
    4053. 

  4053. 				{
    4054. 

  4054. 					// Four byte
    4055. 

  4055. 					$char = substr($text, $i, 4);
    4056. 

  4056. 					$i = $i + 3;
    4057. 

  4057. 				}
    4058. 

  4058. 				elseif ($code < 0xFC)
    4059. 

  4059. 				{
    4060. 

  4060. 					// Five byte
    4061. 

  4061. 					$char = substr($text, $i, 5);
    4062. 

  4062. 					$i = $i + 4;
    4063. 

  4063. 				}
    4064. 

  4064. 				elseif ($code < 0xFE)
    4065. 

  4065. 				{
    4066. 

  4066. 					// Six byte
    4067. 

  4067. 					$char = substr($text, $i, 6);
    4068. 

  4068. 					$i = $i + 5;
    4069. 

  4069. 				}
    4070. 

  4070. 			}
    4071. 

  4071. 			// UTF-8 character encoding - END
    4072. 

  4072. 			if (!$TAG_OPEN)
    4073. 

  4073. 			{
    4074. 

  4074. 				if ($char == '<')
    4075. 

  4075. 				{
    4076. 

  4076. 					$TAG_OPEN = true;
    4077. 

  4077. 					$result .= $char;
    4078. 

  4078. 				}
    4079. 

  4079. 				elseif (preg_match("#\S#i", $char))
    4080. 

  4080. 				{
    4081. 

  4081. 					$color_counter++;
    4082. 

  4082. 					$result .= '<span style="color: ' . $colors[$color_counter] . ';">' . $char . '</span>';
    4083. 

  4083. 					$color_counter = ($color_counter == 7) ? 0 : $color_counter;
    4084. 

  4084. 				}
    4085. 

  4085. 				else
    4086. 

  4086. 				{
    4087. 

  4087. 					$result .= $char;
    4088. 

  4088. 				}
    4089. 

  4089. 			}
    4090. 

  4090. 			else
    4091. 

  4091. 			{
    4092. 

  4092. 				if ($char == '>')
    4093. 

  4093. 				{
    4094. 

  4094. 					$TAG_OPEN = false;
    4095. 

  4095. 				}
    4096. 

  4096. 				$result .= $char;
    4097. 

  4097. 			}
    4098. 

  4098. 		}
    4099. 

  4099. 		return $result;
    4100. 

  4100. 	}
    4101. 

  4101. 

  4102. 	function rand_color()
    4103. 

  4103. 	{
    4104. 

  4104. 		$color_code = mt_rand(0, 255);
    4105. 

  4105. 		if ($color_code < 16)
    4106. 

  4106. 		{
    4107. 

  4107. 			return ('0' . dechex($color_code));
    4108. 

  4108. 		}
    4109. 

  4109. 		else
    4110. 

  4110. 		{
    4111. 

  4111. 			return dechex($color_code);
    4112. 

  4112. 		}
    4113. 

  4113. 	}
    4114. 

  4114. 

  4115. 	function load_random_colors($iterations = 10)
    4116. 

  4116. 	{
    4117. 

  4117. 		$random_color = array();
    4118. 

  4118. 		for ($i = 0; $i < $iterations; $i++)
    4119. 

  4119. 		{
    4120. 

  4120. 			$random_color[$i + 1] = '#' . $this->rand_color() . $this->rand_color() . $this->rand_color();
    4121. 

  4121. 		}
    4122. 

  4122. 		return $random_color;
    4123. 

  4123. 	}
    4124. 

  4124. 

  4125. 	function load_gradient_colors($color1, $color2, $iterations = 10)
    4126. 

  4126. 	{
    4127. 

  4127. 		$col1_array = array();
    4128. 

  4128. 		$col2_array = array();
    4129. 

  4129. 		$col_dif_array = array();
    4130. 

  4130. 		$gradient_color = array();
    4131. 

  4131. 		$col1_array[0] = hexdec(substr($color1, 1, 2));
    4132. 

  4132. 		$col1_array[1] = hexdec(substr($color1, 3, 2));
    4133. 

  4133. 		$col1_array[2] = hexdec(substr($color1, 5, 2));
    4134. 

  4134. 		$col2_array[0] = hexdec(substr($color2, 1, 2));
    4135. 

  4135. 		$col2_array[1] = hexdec(substr($color2, 3, 2));
    4136. 

  4136. 		$col2_array[2] = hexdec(substr($color2, 5, 2));
    4137. 

  4137. 		$col_dif_array[0] = ($col2_array[0] - $col1_array[0]) / ($iterations - 1);
    4138. 

  4138. 		$col_dif_array[1] = ($col2_array[1] - $col1_array[1]) / ($iterations - 1);
    4139. 

  4139. 		$col_dif_array[2] = ($col2_array[2] - $col1_array[2]) / ($iterations - 1);
    4140. 

  4140. 		for ($i = 0; $i < $iterations; $i++)
    4141. 

  4141. 		{
    4142. 

  4142. 			$part1 = round($col1_array[0] + ($col_dif_array[0] * $i));
    4143. 

  4143. 			$part2 = round($col1_array[1] + ($col_dif_array[1] * $i));
    4144. 

  4144. 			$part3 = round($col1_array[2] + ($col_dif_array[2] * $i));
    4145. 

  4145. 			$part1 = ($part1 < 16) ? ('0' . dechex($part1)) : (dechex($part1));
    4146. 

  4146. 			$part2 = ($part2 < 16) ? ('0' . dechex($part2)) : (dechex($part2));
    4147. 

  4147. 			$part3 = ($part3 < 16) ? ('0' . dechex($part3)) : (dechex($part3));
    4148. 

  4148. 			$gradient_color[$i + 1] = '#' . $part1 . $part2 . $part3;
    4149. 

  4149. 		}
    4150. 

  4150. 

  4151. 		return $gradient_color;
    4152. 

  4152. 	}
    4153. 

  4153. 

  4154. 	function gradient($text, $color1, $color2, $mode = 'random', $iterations = 10)
    4155. 

  4155. 	{
    4156. 

  4156. 		// Returns text highlighted in random gradient colours
    4157. 

  4157. 		if ($mode == 'random')
    4158. 

  4158. 		{
    4159. 

  4159. 			$colors = $this->load_random_colors();
    4160. 

  4160. 		}
    4161. 

  4161. 		else
    4162. 

  4162. 		{
    4163. 

  4163. 			$colors = $this->load_gradient_colors($color1, $color2, $iterations);
    4164. 

  4164. 		}
    4165. 

  4165. 		$text = trim(stripslashes($text));
    4166. 

  4166. 		$length = strlen($text);
    4167. 

  4167. 		$result = '';
    4168. 

  4168. 		$color_counter = 0;
    4169. 

  4169. 		$TAG_OPEN = false;
    4170. 

  4170. 		for ($i = 0; $i < $length; $i++)
    4171. 

  4171. 		{
    4172. 

  4172. 			$char = substr($text, $i, 1);
    4173. 

  4173. 			// UTF-8 character encoding - BEGIN
    4174. 

  4174. 			// See http://www.faqs.org/rfcs/rfc2279.html
    4175. 

  4175. 			$code = ord($char);
    4176. 

  4176. 			if ($code >= 0x80)
    4177. 

  4177. 			{
    4178. 

  4178. 				if ($code < 0xE0)
    4179. 

  4179. 				{
    4180. 

  4180. 					// Two byte
    4181. 

  4181. 					$char = substr($text, $i, 2);
    4182. 

  4182. 					$i = $i + 1;
    4183. 

  4183. 				}
    4184. 

  4184. 				elseif ($code < 0xF0)
    4185. 

  4185. 				{
    4186. 

  4186. 					// Three byte
    4187. 

  4187. 					$char = substr($text, $i, 3);
    4188. 

  4188. 					$i = $i + 2;
    4189. 

  4189. 				}
    4190. 

  4190. 				elseif ($code < 0xF8)
    4191. 

  4191. 				{
    4192. 

  4192. 					// Four byte
    4193. 

  4193. 					$char = substr($text, $i, 4);
    4194. 

  4194. 					$i = $i + 3;
    4195. 

  4195. 				}
    4196. 

  4196. 				elseif ($code < 0xFC)
    4197. 

  4197. 				{
    4198. 

  4198. 					// Five byte
    4199. 

  4199. 					$char = substr($text, $i, 5);
    4200. 

  4200. 					$i = $i + 4;
    4201. 

  4201. 				}
    4202. 

  4202. 				elseif ($code < 0xFE)
    4203. 

  4203. 				{
    4204. 

  4204. 					// Six byte
    4205. 

  4205. 					$char = substr($text, $i, 6);
    4206. 

  4206. 					$i = $i + 5;
    4207. 

  4207. 				}
    4208. 

  4208. 			}
    4209. 

  4209. 			// UTF-8 character encoding - END
    4210. 

  4210. 			if (!$TAG_OPEN)
    4211. 

  4211. 			{
    4212. 

  4212. 				if ($char == '<')
    4213. 

  4213. 				{
    4214. 

  4214. 					$TAG_OPEN = true;
    4215. 

  4215. 					$result .= $char;
    4216. 

  4216. 				}
    4217. 

  4217. 				elseif (preg_match("#\S#i", $char))
    4218. 

  4218. 				{
    4219. 

  4219. 					$color_counter++;
    4220. 

  4220. 					$result .= '<span style="color: ' . $colors[$color_counter] . ';">' . $char . '</span>';
    4221. 

  4221. 					$color_counter = ($color_counter == $iterations) ? 0 : $color_counter;
    4222. 

  4222. 				}
    4223. 

  4223. 				else
    4224. 

  4224. 				{
    4225. 

  4225. 					$result .= $char;
    4226. 

  4226. 				}
    4227. 

  4227. 			}
    4228. 

  4228. 			else
    4229. 

  4229. 			{
    4230. 

  4230. 				if ($char == '>')
    4231. 

  4231. 				{
    4232. 

  4232. 					$TAG_OPEN = false;
    4233. 

  4233. 				}
    4234. 

  4234. 				$result .= $char;
    4235. 

  4235. 			}
    4236. 

  4236. 		}
    4237. 

  4237. 		return $result;
    4238. 

  4238. 	}
    4239. 

  4239. 

  4240. 	/*
    4241. 

  4241. 	* Strip only specified tags
    4242. 

  4242. 	* $tags array of tags
    4243. 

  4243. 	* $strip_content if set to true, also text within the specified tag is removed
    4244. 

  4244. 	*/
    4245. 

  4245. 	function strip_only($text, $tags, $strip_content = false)
    4246. 

  4246. 	{
    4247. 

  4247. 		if (empty($text) || empty($tags))
    4248. 

  4248. 		{
    4249. 

  4249. 			return $text;
    4250. 

  4250. 		}
    4251. 

  4251. 

  4252. 		$content = '';
    4253. 

  4253. 		if(!is_array($tags))
    4254. 

  4254. 		{
    4255. 

  4255. 			$tags = array($tags);
    4256. 

  4256. 		}
    4257. 

  4257. 

  4258. 		foreach($tags as $tag)
    4259. 

  4259. 		{
    4260. 

  4260. 			if ($strip_content)
    4261. 

  4261. 			{
    4262. 

  4262. 				$content = '(.+</' . $tag . '[^>]*>|)';
    4263. 

  4263. 			}
    4264. 

  4264. 			$text = preg_replace('#</?' . $tag . '[^>]*>' . $content . '#is', '', $text);
    4265. 

  4265. 		}
    4266. 

  4266. 

  4267. 		return $text;
    4268. 

  4268. 	}
    4269. 

  4269. 

  4270. 	/*
    4271. 

  4271. 	* Undo HTML special chars
    4272. 

  4272. 	*/
    4273. 

  4273. 	function html2txt($text)
    4274. 

  4274. 	{
    4275. 

  4275. 		$search = array(
    4276. 

  4276. 			'@<script[^>]*?>.*?</script>@si',  // Strip out javascript
    4277. 

  4277. 			'@<[\/\!]*?[^<>]*?>@si',            // Strip out HTML tags
    4278. 

  4278. 			'@<style[^>]*?>.*?</style>@siU',    // Strip style tags properly
    4279. 

  4279. 			'@<![\s\S]*?--[ \t\n\r]*>@'         // Strip multi-line comments including CDATA
    4280. 

  4280. 		);
    4281. 

  4281. 		$text = preg_replace($search, '', $text);
    4282. 

  4282. 		return $text;
    4283. 

  4283. 	}
    4284. 

  4284. 

  4285. 	/*
    4286. 

  4286. 	* Undo HTML special chars
    4287. 

  4287. 	*/
    4288. 

  4288. 	function undo_htmlspecialchars($input, $full_undo = false)
    4289. 

  4289. 	{
    4290. 

  4290. 		if($full_undo)
    4291. 

  4291. 		{
    4292. 

  4292. 			$input = str_replace('&nbsp;', '', $input);
    4293. 

  4293. 		}
    4294. 

  4294. 		$input = preg_replace("/&gt;/i", ">", $input);
    4295. 

  4295. 		$input = preg_replace("/&lt;/i", "<", $input);
    4296. 

  4296. 		$input = preg_replace("/&quot;/i", "\"", $input);
    4297. 

  4297. 		$input = preg_replace("/&amp;/i", "&", $input);
    4298. 

  4298. 

  4299. 		if($full_undo)
    4300. 

  4300. 		{
    4301. 

  4301. 			if(preg_match_all('/&\#([0-9]+);/', $input, $matches) && sizeof($matches))
    4302. 

  4302. 			{
    4303. 

  4303. 				$list = array();
    4304. 

  4304. 				for($i = 0; $i < sizeof($matches[1]); $i++)
    4305. 

  4305. 				{
    4306. 

  4306. 					$list[$matches[1][$i]] = true;
    4307. 

  4307. 				}
    4308. 

  4308. 				$search = array();
    4309. 

  4309. 				$replace = array();
    4310. 

  4310. 				foreach($list as $var => $value)
    4311. 

  4311. 				{
    4312. 

  4312. 					$search[] = '&#' . $var . ';';
    4313. 

  4313. 					$replace[] = chr($var);
    4314. 

  4314. 				}
    4315. 

  4315. 				$input = str_replace($search, $replace, $input);
    4316. 

  4316. 			}
    4317. 

  4317. 		}
    4318. 

  4318. 

  4319. 		return $input;
    4320. 

  4320. 	}
    4321. 

  4321. 

  4322. 	/*
    4323. 

  4323. 	* This function will strip common BBCodes tags, but some of them will be left there (such as CODE or QUOTE)
    4324. 

  4324. 	*/
    4325. 

  4325. 	function bbcode_killer($text, $id = false)
    4326. 

  4326. 	{
    4327. 

  4327. 		// Pad it with a space so we can distinguish between FALSE and matching the 1st char (index 0).
    4328. 

  4328. 		// This is important; bbencode_quote(), bbencode_list(), and bbencode_code() all depend on it.
    4329. 

  4329. 		$text = " " . $text;
    4330. 

  4330. 

  4331. 		// First: If there isn't a "[" and a "]" in the message, don't bother.
    4332. 

  4332. 		if (!(strpos($text, "[") && strpos($text, "]")))
    4333. 

  4333. 		{
    4334. 

  4334. 			// Remove padding, return.
    4335. 

  4335. 			$text = substr($text, 1);
    4336. 

  4336. 			return $text;
    4337. 

  4337. 		}
    4338. 

  4338. 

  4339. 		// Stripping out old bbcode_uid
    4340. 

  4340. 		if (!empty($id))
    4341. 

  4341. 		{
    4342. 

  4342. 			$text = preg_replace("/\:(([a-z0-9]:)?)" . $id . "/s", "", $text);
    4343. 

  4343. 		}
    4344. 

  4344. 

  4345. 		// Strip simple tags
    4346. 

  4346. 		$look_up_array = array(
    4347. 

  4347. 			//"[code]", "[/code]",
    4348. 

  4348. 			//"[php]","[/php]",
    4349. 

  4349. 			//"[cpp]","[/cpp]",
    4350. 

  4350. 			"[b]", "[/b]",
    4351. 

  4351. 			"[u]", "[/u]",
    4352. 

  4352. 			"[tt]", "[/tt]",
    4353. 

  4353. 			"[i]", "[/i]",
    4354. 

  4354. 			"[list]", "[/list]",
    4355. 

  4355. 			"[list=1]",
    4356. 

  4356. 			"[list=a]",
    4357. 

  4357. 			"[*]",
    4358. 

  4358. 			"[url]", "[/url]",
    4359. 

  4359. 			"[email]", "[/email]",
    4360. 

  4360. 			"[img]", "[img align=left]", "[img align=right]", "[/img]",
    4361. 

  4361. 			"[imgl]", "[/imgl]",
    4362. 

  4362. 			"[imgr]", "[/imgr]",
    4363. 

  4363. 			"[albumimg]", "[/albumimg]",
    4364. 

  4364. 			"[albumimgl]", "[/albumimgl]",
    4365. 

  4365. 			"[albumimgr]", "[/albumimgr]",
    4366. 

  4366. 			"[blur]", "[/blur]",
    4367. 

  4367. 			"[fade]", "[/fade]",
    4368. 

  4368. 			"[rainbow]", "[/rainbow]",
    4369. 

  4369. 			"[gradient]", "[/gradient]",
    4370. 

  4370. 			"[jiggle]", "[/jiggle]",
    4371. 

  4371. 			"[pulse]", "[/pulse]",
    4372. 

  4372. 			"[neon]", "[/neon]",
    4373. 

  4373. 			"[updown]", "[/updown]",
    4374. 

  4374. 			"[flipv]", "[/flipv]",
    4375. 

  4375. 			"[fliph]", "[/fliph]",
    4376. 

  4376. 			"[wave]", "[/wave]",
    4377. 

  4377. 			"[offtopic]", "[/offtopic]",
    4378. 

  4378. 			"[strike]", "[/strike]",
    4379. 

  4379. 			"[sup]", "[/sup]",
    4380. 

  4380. 			"[sub]", "[/sub]",
    4381. 

  4381. 			"[spoil]", "[/spoil]",
    4382. 

  4382. 			"[spoiler]", "[/spoiler]",
    4383. 

  4383. 			"[table]", "[/table]",
    4384. 

  4384. 			"[tr]", "[/tr]",
    4385. 

  4385. 			"[td]", "[/td]",
    4386. 

  4386. 			"[em]", "[/em]",
    4387. 

  4387. 			"[strong]", "[/strong]",
    4388. 

  4388. 			"[center]", "[/center]",
    4389. 

  4389. 			"[hide]", "[/hide]",
    4390. 

  4390. 			//"[]", "[/]",
    4391. 

  4391. 			"[hr]",
    4392. 

  4392. 		);
    4393. 

  4393. 

  4394. 		$text = str_replace($look_up_array, "", $text);
    4395. 

  4395. 

  4396. 		// Colours
    4397. 

  4397. 		$color_code = "(\#[0-9A-F]{6}|[a-z]+)";
    4398. 

  4398. 		$look_up_array = array(
    4399. 

  4399. 			"/\[color=" . $color_code . "\]/si", "/\[\/color\]/si",
    4400. 

  4400. 			"/\[glow=" . $color_code . "\]/si", "/\[\/glow\]/si",
    4401. 

  4401. 			"/\[shadow=" . $color_code . "\]/si", "/\[\/shadow\]/si",
    4402. 

  4402. 			"/\[highlight=" . $color_code . "\]/si", "/\[\/highlight\]/si",
    4403. 

  4403. 			"/\[size=([\-\+]?[1-3]?[0-9])\]/si", "/\[\/size\]/si",
    4404. 

  4404. 			"/\[url=([a-z0-9\-\.,\?!%\*_\/:;~\\&$@\/=\+]+)\]/si", "/\[\/url\]/si",
    4405. 

  4405. 			"/\[web=([a-z0-9\-\.,\?!%\*_\/:;~\\&$@\/=\+]+)\]/si", "/\[\/web\]/si",
    4406. 

  4406. 			"/\[font=(Arial|Arial Black|Arial Bold|Arial Bold Italic|Arial Italic|Comic Sans MS|Comic Sans MS Bold|Courier New|Courier New Bold|Courier New Bold Italic|Courier New Italic|Impact|Lucida Console|Lucida Sans Unicode|Microsoft Sans Serif|Symbol|Tahoma|Tahoma Bold|Times New Roman|Times New Roman Bold|Times New Roman Bold Italic|Times New Roman Italic|Traditional Arabic|Trebuchet MS|Trebuchet MS Bold|Trebuchet MS Bold Italic|Trebuchet MS Italic|Verdana|Verdana Bold|Verdana Bold Italic|Verdana Italic|Webdings|Wingdings|)\]/si", "/\[\/font\]/si",
    4407. 

  4407. 			"/\[font=\"(Arial|Arial Black|Arial Bold|Arial Bold Italic|Arial Italic|Comic Sans MS|Comic Sans MS Bold|Courier New|Courier New Bold|Courier New Bold Italic|Courier New Italic|Impact|Lucida Console|Lucida Sans Unicode|Microsoft Sans Serif|Symbol|Tahoma|Tahoma Bold|Times New Roman|Times New Roman Bold|Times New Roman Bold Italic|Times New Roman Italic|Traditional Arabic|Trebuchet MS|Trebuchet MS Bold|Trebuchet MS Bold Italic|Trebuchet MS Italic|Verdana|Verdana Bold|Verdana Bold Italic|Verdana Italic|Webdings|Wingdings|)\"\]/si", "/\[\/font\]/si",
    4408. 

  4408. 			"/\[marq=(left|right|up|down)\]/si", "/\[\/marq\]/si",
    4409. 

  4409. 			"/\[marquee direction=(left|right|up|down)\]/si", "/\[\/marquee\]/si",
    4410. 

  4410. 			"/\[align=(left|center|right|justify)\]/si", "/\[\/align\]/si",
    4411. 

  4411. 		);
    4412. 

  4412. 

  4413. 		$text = preg_replace($look_up_array, "", $text);
    4414. 

  4414. 

  4415. 		// [QUOTE] and [/QUOTE]
    4416. 

  4416. 		/*
    4417. 

  4417. 		$text = str_replace("[quote]","", $text);
    4418. 

  4418. 		$text = str_replace("[/quote]", "", $text);
    4419. 

  4419. 		$text = preg_replace("/\[quote=(?:\"?([^\"]*)\"?)\]/si", "", $text);
    4420. 

  4420. 		*/
    4421. 

  4421. 

  4422. 		// Remove our padding from the string..
    4423. 

  4423. 		$text = substr($text, 1);
    4424. 

  4424. 

  4425. 		return $text;
    4426. 

  4426. 	}
    4427. 

  4427. 

  4428. 	/*
    4429. 

  4429. 	* This function will strip from a message some BBCodes, all BBCodes $uid, and some other formattings.
    4430. 

  4430. 	* The result will be suitable for email sendings.
    4431. 

  4431. 	*/
    4432. 

  4432. 	function plain_message($text, $id = false)
    4433. 

  4433. 	{
    4434. 

  4434. 		$text = $this->bbcode_killer($text, $id);
    4435. 

  4435. 		//$text = preg_replace("/\r\n/", "<br />", $text);
    4436. 

  4436. 		$text = preg_replace("/\r\n/", "\n", $text);
    4437. 

  4437. 		$text = str_replace('<br />', "\n", $text);
    4438. 

  4438. 

  4439. 		return $text;
    4440. 

  4440. 	}
    4441. 

  4441. 

  4442. 	/*
    4443. 

  4443. 	* This function will strip all specified BBCodes tags or all BBCodes tags
    4444. 

  4444. 	*/
    4445. 

  4445. 	function bbcode_clean($text, &$tags)
    4446. 

  4446. 	{
    4447. 

  4447. 		if (is_array($tags) && (sizeof($tags) > 0))
    4448. 

  4448. 		{
    4449. 

  4449. 			for ($i = 0; $i < sizeof($tags); $i++)
    4450. 

  4450. 			{
    4451. 

  4451. 				$tags[$i] = ($tags[$i] == '*') ? '\*' : $tags[$i];
    4452. 

  4452. 				$text = preg_replace("/\[" . $tags[$i] . "[^]^[]*\]/", '', $text);
    4453. 

  4453. 				$text = preg_replace("/\[(/?)[^]^[]" . $tags[$i] . "\]/", '', $text);
    4454. 

  4454. 			}
    4455. 

  4455. 		}
    4456. 

  4456. 		else
    4457. 

  4457. 		{
    4458. 

  4458. 			$text = preg_replace("/\[(/?)[^]^[]*\]/", '', $text);
    4459. 

  4459. 		}
    4460. 

  4460. 

  4461. 		$text = nl2br($text);
    4462. 

  4462. 		return $text;
    4463. 

  4463. 	}
    4464. 

  4464. 

  4465. 	function acronym_sort($a, $b)
    4466. 

  4466. 	{
    4467. 

  4467. 		if (strlen($a['acronym']) == strlen($b['acronym']))
    4468. 

  4468. 		{
    4469. 

  4469. 			return 0;
    4470. 

  4470. 		}
    4471. 

  4471. 

  4472. 		return (strlen($a['acronym']) > strlen($b['acronym'])) ? -1 : 1;
    4473. 

  4473. 	}
    4474. 

  4474. 

  4475. 	function acronym_pass($text)
    4476. 

  4476. 	{
    4477. 

  4477. 		if (!defined('IS_ICYPHOENIX'))
    4478. 

  4478. 		{
    4479. 

  4479. 			return $text;
    4480. 

  4480. 		}
    4481. 

  4481. 

  4482. 		static $orig, $repl;
    4483. 

  4483. 		// Mighty Gorgon: acronyms are not working any more with PHP 7, so we need to fix them
    4484. 

  4484. 		//return $text;
    4485. 

  4485. 

  4486. 		if(!isset($orig))
    4487. 

  4487. 		{
    4488. 

  4488. 			global $db, $config;
    4489. 

  4489. 			$orig = $repl = array();
    4490. 

  4490. 

  4491. 			$sql = 'SELECT * FROM ' . ACRONYMS_TABLE;
    4492. 

  4492. 			$db->sql_return_on_error(true);
    4493. 

  4493. 			$result = $db->sql_query($sql, 0, 'acronyms_', TOPICS_CACHE_FOLDER);
    4494. 

  4494. 			$db->sql_return_on_error(false);
    4495. 

  4495. 			if (!$result)
    4496. 

  4496. 			{
    4497. 

  4497. 				return $text;
    4498. 

  4498. 			}
    4499. 

  4499. 

  4500. 			while ($row = $db->sql_fetchrow($result))
    4501. 

  4501. 			{
    4502. 

  4502. 				$acronyms[] = $row;
    4503. 

  4503. 			}
    4504. 

  4504. 			$db->sql_freeresult($result);
    4505. 

  4505. 

  4506. 			if(sizeof($acronyms))
    4507. 

  4507. 			{
    4508. 

  4508. 				//usort($acronyms, 'acronym_sort');
    4509. 

  4509. 				// This use acronym_sort calling it from within BBCode object
    4510. 

  4510. 				usort($acronyms, array('BBCode', 'acronym_sort'));
    4511. 

  4511. 			}
    4512. 

  4512. 

  4513. 			for ($i = 0; $i < sizeof($acronyms); $i++)
    4514. 

  4514. 			{
    4515. 

  4515. 				/* OLD CODE FOR ACRONYMS
    4516. 

  4516. 				$orig[] = '#\b(' . phpbb_preg_quote($acronyms[$i]['acronym'], "/") . ')\b#';
    4517. 

  4517. 				$orig[] = "/(?<=.\W|\W.|^\W)" . phpbb_preg_quote($acronyms[$i]['acronym'], "/") . "(?=.\W|\W.|\W$)/";
    4518. 

  4518. 				*/
    4519. 

  4519. 				$orig[] = '#\b(' . str_replace('\*', '\w*?', preg_quote(stripslashes($acronyms[$i]['acronym']), '#')) . ')\b#i';
    4520. 

  4520. 				$repl[] = '<abbr title="' . $acronyms[$i]['description'] . '">' . $acronyms[$i]['acronym'] . '</abbr>'; ;
    4521. 

  4521. 			}
    4522. 

  4522. 		}
    4523. 

  4523. 

  4524. 		if(sizeof($orig))
    4525. 

  4525. 		{
    4526. 

  4526. 

  4527. 			$segments = preg_split('#(<abbr.+?>.+?</abbr>|<.+?>)#s' , $text, -1, PREG_SPLIT_NO_EMPTY | PREG_SPLIT_DELIM_CAPTURE);
    4528. 

  4528. 			//<?php
    4529. 

  4529. 			//Insert for formating purpose
    4530. 

  4530. 

  4531. 

  4532. 			/*
    4533. 

  4533. 			print_r($segments);
    4534. 

  4534. 			print_r(htmlspecialchars($text));
    4535. 

  4535. 			die('DEBUG');
    4536. 

  4536. 			*/
    4537. 

  4537. 

  4538. 

  4539. 			$text = '';
    4540. 

  4540. 

  4541. 			foreach($segments as $seg)
    4542. 

  4542. 			{
    4543. 

  4543. 				if(($seg[0] != '<') && ($seg[0] != '['))
    4544. 

  4544. 				{
    4545. 

  4545. 					// Mighty Gorgon: we need to check if this fix is correct!
    4546. 

  4546. 					/*
    4547. 

  4547. 					// OLD VERSION working with PHP 5.6
    4548. 

  4548. 					$text .= str_replace('\"', '"', substr(preg_replace('#(\>(((?>([^><]+|(?R)))*)\<))#se', "preg_replace(\$orig, \$repl, '\\0')", '>' . $seg . '<'), 1, -1));
    4549. 

  4549. 					*/
    4550. 

  4550. 

  4551. 					// New version working with PHP 7.3
    4552. 

  4552. 					$text .= str_replace('\"', '"', substr(preg_replace('#(\>(((?>([^><]+|(?R)))*)\<))#s', preg_replace($orig, $repl, '>' . $seg . '<'), '>' . $seg . '<'), 1, -1));
    4553. 

  4553. 

  4554. 					// Test without internal REGEX
    4555. 

  4555. 					//$text .= str_replace('\"', '"', substr(preg_replace($orig, $repl, '>' . $seg . '<'), 1, -1));
    4556. 

  4556. 				}
    4557. 

  4557. 				else
    4558. 

  4558. 				{
    4559. 

  4559. 					$text .= $seg;
    4560. 

  4560. 				}
    4561. 

  4561. 			}
    4562. 

  4562. 		}
    4563. 

  4563. 

  4564. 		return $text;
    4565. 

  4565. 	}
    4566. 

  4566. 

  4567. 	// Autolinks - BEGIN
    4568. 

  4568. 	//
    4569. 

  4569. 	// Obtain list of autolink words and build preg style replacement arrays for use by the calling script, note that the vars are passed as references this just makes it easier to return both sets of arrays
    4570. 

  4570. 	//
    4571. 

  4571. 	function obtain_autolinks_list($forum_id)
    4572. 

  4572. 	{
    4573. 

  4573. 		global $db;
    4574. 

  4574. 

  4575. 		$where = ($forum_id) ? ' WHERE link_forum = 0 OR link_forum IN (' . $forum_id . ')' : ' WHERE link_forum = -1';
    4576. 

  4576. 		$sql = "SELECT * FROM " . AUTOLINKS . $where;
    4577. 

  4577. 		$result = $db->sql_query($sql, 0, 'autolinks_', TOPICS_CACHE_FOLDER);
    4578. 

  4578. 

  4579. 		$autolinks = array();
    4580. 

  4580. 		while($row = $db->sql_fetchrow($result))
    4581. 

  4581. 		{
    4582. 

  4582. 			// Munge word boundaries to stop autolinks from linking to themselves or other autolinks in step 2 in the function below.
    4583. 

  4583. 			$row['link_url'] = preg_replace('/(\b)/', '\\1ALSPACEHOLDER', $row['link_url']);
    4584. 

  4584. 			$row['link_comment'] = preg_replace('/(\b)/', '\\1ALSPACEHOLDER', $row['link_comment']);
    4585. 

  4585. 

  4586. 			if($row['link_style'])
    4587. 

  4587. 			{
    4588. 

  4588. 				$row['link_style'] = preg_replace('/(\b)/', '\\1ALSPACEHOLDER', $row['link_style']);
    4589. 

  4589. 				$style = ' style="' . htmlspecialchars($row['link_style']) . '" ';
    4590. 

  4590. 			}
    4591. 

  4591. 			else
    4592. 

  4592. 			{
    4593. 

  4593. 				$style = ' ';
    4594. 

  4594. 			}
    4595. 

  4595. 			$autolinks['match'][] = '/(?<![\/\w@\.:-])(?!\.\w)(' . phpbb_preg_quote($row['link_keyword'], '/') . ')(?![\/\w@:-])(?!\.\w)/i';
    4596. 

  4596. 			if($row['link_int'])
    4597. 

  4597. 			{
    4598. 

  4598. 				$autolinks['replace'][] = '<a href="' . append_sid(htmlspecialchars($row['link_url'])) . '" target="_self"' . $style . 'title="' . htmlspecialchars($row['link_comment']) . '">' . htmlspecialchars($row['link_title']) . '</a>';
    4599. 

  4599. 			}
    4600. 

  4600. 			else
    4601. 

  4601. 			{
    4602. 

  4602. 				$autolinks['replace'][] = '<a href="' . htmlspecialchars($row['link_url']) . '" target="_blank"' . $style . 'title="' . htmlspecialchars($row['link_comment']) . '">' . htmlspecialchars($row['link_title']) . '</a>';
    4603. 

  4603. 			}
    4604. 

  4604. 		}
    4605. 

  4605. 		$db->sql_freeresult($result);
    4606. 

  4606. 

  4607. 		return $autolinks;
    4608. 

  4608. 	}
    4609. 

  4609. 

  4610. 	/**
    4611. 

  4611. 	* Autolinks
    4612. 

  4612. 	* Original Author - Jim McDonald - Edited by Mighty Gorgon
    4613. 

  4613. 	*/
    4614. 

  4614. 	function autolink_text($text, $forum_id = '')
    4615. 

  4615. 	{
    4616. 

  4616. 		static $autolinks;
    4617. 

  4617. 

  4618. 		if (empty($text))
    4619. 

  4619. 		{
    4620. 

  4620. 			return $text;
    4621. 

  4621. 		}
    4622. 

  4622. 

  4623. 		if (!isset($autolinks) || !is_array($autolinks))
    4624. 

  4624. 		{
    4625. 

  4625. 			$autolinks = $this->obtain_autolinks_list($forum_id);
    4626. 

  4626. 		}
    4627. 

  4627. 

  4628. 		if (sizeof($autolinks))
    4629. 

  4629. 		{
    4630. 

  4630. 			global $config;
    4631. 

  4631. 

  4632. 			// Step 1 - move all tags out of the text and replace them with placeholders
    4633. 

  4633. 			preg_match_all('/(<a\s+.*?\/a>|<[^>]+>)/i', $text, $matches);
    4634. 

  4634. 			$matchnum = sizeof($matches[1]);
    4635. 

  4635. 			for($i = 0; $i < $matchnum; $i++)
    4636. 

  4636. 			{
    4637. 

  4637. 				$text = preg_replace('/' . preg_quote($matches[1][$i], '/') . '/', " ALPLACEHOLDER{$i}PH", $text, 1);
    4638. 

  4638. 			}
    4639. 

  4639. 

  4640. 			// Step 2 - s/r of the remaining text
    4641. 

  4641. 			if($config['autolink_first'])
    4642. 

  4642. 			{
    4643. 

  4643. 				$text = preg_replace($autolinks['match'], $autolinks['replace'], $text, 1);
    4644. 

  4644. 			}
    4645. 

  4645. 			else
    4646. 

  4646. 			{
    4647. 

  4647. 				$text = preg_replace($autolinks['match'], $autolinks['replace'], $text);
    4648. 

  4648. 			}
    4649. 

  4649. 

  4650. 			// Step 3 - replace the spaces we munged in step 1
    4651. 

  4651. 			$text = preg_replace('/ALSPACEHOLDER/', '', $text);
    4652. 

  4652. 

  4653. 			// Step 4 - replace the HTML tags that we removed in step 1
    4654. 

  4654. 			for($i = 0; $i < $matchnum; $i++)
    4655. 

  4655. 			{
    4656. 

  4656. 				$text = preg_replace("/ ALPLACEHOLDER{$i}PH/", $matches[1][$i], $text, 1);
    4657. 

  4657. 			}
    4658. 

  4658. 		}
    4659. 

  4659. 

  4660. 		return $text;
    4661. 

  4661. 	}
    4662. 

  4662. 	// Autolinks - END
    4663. 

  4663. 

  4664. 	/*
    4665. 

  4665. 	* Generate bbcode uid
    4666. 

  4666. 	*/
    4667. 

  4667. 	function make_bbcode_uid()
    4668. 

  4668. 	{
    4669. 

  4669. 		// Unique ID for this message..
    4670. 

  4670. 		$uid = unique_id();
    4671. 

  4671. 		$uid = substr($uid, 0, BBCODE_UID_LEN);
    4672. 

  4672. 		return $uid;
    4673. 

  4673. 	}
    4674. 

  4674. 

  4675. 	/*
    4676. 

  4676. 	* Make a link clickable
    4677. 

  4677. 	*/
    4678. 

  4678. 	function make_clickable($text)
    4679. 

  4679. 	{
    4680. 

  4680. 		$text = preg_replace('#(script|about|applet|activex|chrome):#is', "\\1:", $text);
    4681. 

  4681. 		$text = preg_replace('#(script|about|applet|activex|chrome):#is', "\\1&#058;", $text);
    4682. 

  4682. 

  4683. 		// pad it with a space so we can match things at the start of the 1st line.
    4684. 

  4684. 		$ret = ' ' . $text;
    4685. 

  4685. 

  4686. 		// matches an "xxxx://yyyy" URL at the start of a line, or after a space.
    4687. 

  4687. 		// xxxx can only be alpha characters.
    4688. 

  4688. 		// yyyy is anything up to the first space, newline, comma, double quote or <
    4689. 

  4689. 		$ret = preg_replace("#(^|[\n ])([\w]+?://[\w\#$%&~/.\-;:=,?@\[\]+]*)#is", "\\1<a href=\"\\2\" target=\"_blank\">\\2</a>", $ret);
    4690. 

  4690. 

  4691. 		// matches a "www|ftp.xxxx.yyyy[/zzzz]" kinda lazy URL thing
    4692. 

  4692. 		// Must contain at least 2 dots. xxxx contains either alphanum, or "-"
    4693. 

  4693. 		// zzzz is optional.. will contain everything up to the first space, newline,
    4694. 

  4694. 		// comma, double quote or <.
    4695. 

  4695. 		$ret = preg_replace("#(^|[\n ])((www|ftp)\.[\w\#$%&~/.\-;:=,?@\[\]+]*)#is", "\\1<a href=\"http://\\2\" target=\"_blank\">\\2</a>", $ret);
    4696. 

  4696. 

  4697. 

  4698. 		// matches an email@domain type address at the start of a line, or after a space.
    4699. 

  4699. 		// Note: Only the followed chars are valid; alphanums, "-", "_" and or ".".
    4700. 

  4700. 		$ret = preg_replace("#(^|[\n ])([a-z0-9&\-_.]+?)@([\w\-]+\.([\w\-\.]+\.)*[\w]+)#i", "\\1<a href=\"mailto:\\2@\\3\">\\2@\\3</a>", $ret);
    4701. 

  4701. 

  4702. 		// Remove our padding..
    4703. 

  4703. 		$ret = substr($ret, 1);
    4704. 

  4704. 

  4705. 		return($ret);
    4706. 

  4706. 	}
    4707. 

  4707. 

  4708. }
    4709. 

  4709. 

  4710. $bbcode = new bbcode();
    4711. 

  4711. 

  4712. if (defined('SMILIES_TABLE'))
    4713. 

  4713. {
    4714. 

  4714. 	$bbcode->allowed_smilies = array();
    4715. 

  4715. 	$bbcode->allowed_smilies = $cache->obtain_smileys(false);
    4716. 

  4716. }
    4717. 

  4717. 

  4718. ?>
    4719.