2
0

Subs-Editor.php 75 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411141214131414141514161417141814191420142114221423142414251426142714281429143014311432143314341435143614371438143914401441144214431444144514461447144814491450145114521453145414551456145714581459146014611462146314641465146614671468146914701471147214731474147514761477147814791480148114821483148414851486148714881489149014911492149314941495149614971498149915001501150215031504150515061507150815091510151115121513151415151516151715181519152015211522152315241525152615271528152915301531153215331534153515361537153815391540154115421543154415451546154715481549155015511552155315541555155615571558155915601561156215631564156515661567156815691570157115721573157415751576157715781579158015811582158315841585158615871588158915901591159215931594159515961597159815991600160116021603160416051606160716081609161016111612161316141615161616171618161916201621162216231624162516261627162816291630163116321633163416351636163716381639164016411642164316441645164616471648164916501651165216531654165516561657165816591660166116621663166416651666166716681669167016711672167316741675167616771678167916801681168216831684168516861687168816891690169116921693169416951696169716981699170017011702170317041705170617071708170917101711171217131714171517161717171817191720172117221723172417251726172717281729173017311732173317341735173617371738173917401741174217431744174517461747174817491750175117521753175417551756175717581759176017611762176317641765176617671768176917701771177217731774177517761777177817791780178117821783178417851786178717881789179017911792179317941795179617971798179918001801180218031804180518061807180818091810181118121813181418151816181718181819182018211822182318241825182618271828182918301831183218331834183518361837183818391840184118421843184418451846184718481849185018511852185318541855185618571858185918601861186218631864186518661867186818691870187118721873187418751876187718781879188018811882188318841885188618871888188918901891189218931894189518961897189818991900190119021903190419051906190719081909191019111912191319141915191619171918191919201921192219231924192519261927192819291930193119321933193419351936193719381939194019411942194319441945194619471948194919501951195219531954195519561957195819591960196119621963196419651966196719681969197019711972197319741975197619771978197919801981198219831984198519861987198819891990199119921993199419951996199719981999200020012002200320042005200620072008200920102011201220132014201520162017201820192020202120222023202420252026202720282029203020312032203320342035203620372038203920402041204220432044204520462047204820492050205120522053205420552056205720582059206020612062206320642065206620672068206920702071207220732074207520762077207820792080208120822083208420852086208720882089209020912092209320942095209620972098209921002101210221032104210521062107210821092110211121122113211421152116211721182119212021212122212321242125212621272128212921302131213221332134213521362137213821392140214121422143214421452146214721482149215021512152215321542155215621572158215921602161216221632164216521662167216821692170217121722173217421752176217721782179218021812182218321842185218621872188218921902191219221932194219521962197219821992200220122022203220422052206220722082209221022112212221322142215221622172218221922202221222222232224222522262227222822292230223122322233223422352236223722382239224022412242224322442245224622472248224922502251225222532254225522562257225822592260226122622263226422652266226722682269227022712272227322742275227622772278227922802281228222832284228522862287228822892290229122922293229422952296229722982299230023012302230323042305230623072308230923102311231223132314231523162317231823192320232123222323232423252326232723282329233023312332233323342335233623372338233923402341234223432344234523462347234823492350235123522353235423552356235723582359236023612362236323642365236623672368236923702371237223732374237523762377237823792380238123822383238423852386238723882389239023912392239323942395
  1. <?php
  2. /**
  3. * This file contains those functions specific to the editing box and is
  4. * generally used for WYSIWYG type functionality.
  5. *
  6. * Simple Machines Forum (SMF)
  7. *
  8. * @package SMF
  9. * @author Simple Machines http://www.simplemachines.org
  10. * @copyright 2014 Simple Machines and individual contributors
  11. * @license http://www.simplemachines.org/about/smf/license.php BSD
  12. *
  13. * @version 2.1 Alpha 1
  14. */
  15. if (!defined('SMF'))
  16. die('No direct access...');
  17. /**
  18. * !!!Compatibility!!!
  19. * Since we changed the editor we don't need it any more, but let's keep it if any mod wants to use it
  20. * Convert only the BBC that can be edited in HTML mode for the editor.
  21. *
  22. * @param string $text
  23. * @param boolean $compat_mode if true will convert the text, otherwise not (default false)
  24. * @return string
  25. */
  26. function bbc_to_html($text, $compat_mode = false)
  27. {
  28. global $modSettings, $smcFunc;
  29. if (!$compat_mode)
  30. return $text;
  31. // Turn line breaks back into br's.
  32. $text = strtr($text, array("\r" => '', "\n" => '<br>'));
  33. // Prevent conversion of all bbcode inside these bbcodes.
  34. // @todo Tie in with bbc permissions ?
  35. foreach (array('code', 'php', 'nobbc') as $code)
  36. {
  37. if (strpos($text, '['. $code) !== false)
  38. {
  39. $parts = preg_split('~(\[/' . $code . '\]|\[' . $code . '(?:=[^\]]+)?\])~i', $text, -1, PREG_SPLIT_DELIM_CAPTURE);
  40. // Only mess with stuff inside tags.
  41. for ($i = 0, $n = count($parts); $i < $n; $i++)
  42. {
  43. // Value of 2 means we're inside the tag.
  44. if ($i % 4 == 2)
  45. $parts[$i] = strtr($parts[$i], array('[' => '&#91;', ']' => '&#93;', "'" => "'"));
  46. }
  47. // Put our humpty dumpty message back together again.
  48. $text = implode('', $parts);
  49. }
  50. }
  51. // What tags do we allow?
  52. $allowed_tags = array('b', 'u', 'i', 's', 'hr', 'list', 'li', 'font', 'size', 'color', 'img', 'left', 'center', 'right', 'url', 'email', 'ftp', 'sub', 'sup');
  53. $text = parse_bbc($text, true, '', $allowed_tags);
  54. // Fix for having a line break then a thingy.
  55. $text = strtr($text, array('<br><div' => '<div', "\n" => '', "\r" => ''));
  56. // Note that IE doesn't understand spans really - make them something "legacy"
  57. $working_html = array(
  58. '~<del>(.+?)</del>~i' => '<strike>$1</strike>',
  59. '~<span\sclass="bbc_u">(.+?)</span>~i' => '<u>$1</u>',
  60. '~<span\sstyle="color:\s*([#\d\w]+);" class="bbc_color">(.+?)</span>~i' => '<font color="$1">$2</font>',
  61. '~<span\sstyle="font-family:\s*([#\d\w\s]+);" class="bbc_font">(.+?)</span>~i' => '<font face="$1">$2</font>',
  62. '~<div\sstyle="text-align:\s*(left|right);">(.+?)</div>~i' => '<p align="$1">$2</p>',
  63. );
  64. $text = preg_replace(array_keys($working_html), array_values($working_html), $text);
  65. // Parse unique ID's and disable javascript into the smileys - using the double space.
  66. $i = 1;
  67. $text = preg_replace_callback('~(?:\s|&nbsp;)?<(img\ssrc="' . preg_quote($modSettings['smileys_url'], '~') . '/[^<>]+?/([^<>]+?)"\s*)[^<>]*?class="smiley">~', create_function('$m', 'return \'<\' . ' . 'stripslashes(\'$1\') . \'alt="" title="" onresizestart="return false;" id="smiley_\' . ' . "\$" . 'i++ . \'_$2" style="padding: 0 3px 0 3px;">\';'), $text);
  68. return $text;
  69. }
  70. /**
  71. * !!!Compatibility!!!
  72. * This is no more needed, but to avoid break mods let's keep it
  73. * Run it it shouldn't even hurt either, so let's not bother remove it
  74. *
  75. * The harder one - wysiwyg to BBC!
  76. *
  77. * @param string $text
  78. * @return string
  79. */
  80. function html_to_bbc($text)
  81. {
  82. global $modSettings, $smcFunc, $sourcedir, $scripturl, $context;
  83. // Replace newlines with spaces, as that's how browsers usually interpret them.
  84. $text = preg_replace("~\s*[\r\n]+\s*~", ' ', $text);
  85. // Though some of us love paragraphs, the parser will do better with breaks.
  86. $text = preg_replace('~</p>\s*?<p~i', '</p><br><p', $text);
  87. $text = preg_replace('~</p>\s*(?!<)~i', '</p><br>', $text);
  88. // Safari/webkit wraps lines in Wysiwyg in <div>'s.
  89. if (isBrowser('webkit'))
  90. $text = preg_replace(array('~<div(?:\s(?:[^<>]*?))?' . '>~i', '</div>'), array('<br>', ''), $text);
  91. // If there's a trailing break get rid of it - Firefox tends to add one.
  92. $text = preg_replace('~<br\s?/?' . '>$~i', '', $text);
  93. // Remove any formatting within code tags.
  94. if (strpos($text, '[code') !== false)
  95. {
  96. $text = preg_replace('~<br\s?/?' . '>~i', '#smf_br_spec_grudge_cool!#', $text);
  97. $parts = preg_split('~(\[/code\]|\[code(?:=[^\]]+)?\])~i', $text, -1, PREG_SPLIT_DELIM_CAPTURE);
  98. // Only mess with stuff outside [code] tags.
  99. for ($i = 0, $n = count($parts); $i < $n; $i++)
  100. {
  101. // Value of 2 means we're inside the tag.
  102. if ($i % 4 == 2)
  103. $parts[$i] = strip_tags($parts[$i]);
  104. }
  105. $text = strtr(implode('', $parts), array('#smf_br_spec_grudge_cool!#' => '<br>'));
  106. }
  107. // Remove scripts, style and comment blocks.
  108. $text = preg_replace('~<script[^>]*[^/]?' . '>.*?</script>~i', '', $text);
  109. $text = preg_replace('~<style[^>]*[^/]?' . '>.*?</style>~i', '', $text);
  110. $text = preg_replace('~\\<\\!--.*?-->~i', '', $text);
  111. $text = preg_replace('~\\<\\!\\[CDATA\\[.*?\\]\\]\\>~i', '', $text);
  112. // Do the smileys ultra first!
  113. preg_match_all('~<img\s+[^<>]*?id="*smiley_\d+_([^<>]+?)[\s"/>]\s*[^<>]*?/*>(?:\s)?~i', $text, $matches);
  114. if (!empty($matches[0]))
  115. {
  116. // Easy if it's not custom.
  117. if (empty($modSettings['smiley_enable']))
  118. {
  119. $smileysfrom = array('>:D', ':D', '::)', '>:(', ':)', ';)', ';D', ':(', ':o', '8)', ':P', '???', ':-[', ':-X', ':-*', ':\'(', ':-\\', '^-^', 'O0', 'C:-)', '0:)');
  120. $smileysto = array('evil.gif', 'cheesy.gif', 'rolleyes.gif', 'angry.gif', 'smiley.gif', 'wink.gif', 'grin.gif', 'sad.gif', 'shocked.gif', 'cool.gif', 'tongue.gif', 'huh.gif', 'embarrassed.gif', 'lipsrsealed.gif', 'kiss.gif', 'cry.gif', 'undecided.gif', 'azn.gif', 'afro.gif', 'police.gif', 'angel.gif');
  121. foreach ($matches[1] as $k => $file)
  122. {
  123. $found = array_search($file, $smileysto);
  124. // Note the weirdness here is to stop double spaces between smileys.
  125. if ($found)
  126. $matches[1][$k] = '-[]-smf_smily_start#|#' . $smcFunc['htmlspecialchars']($smileysfrom[$found]) . '-[]-smf_smily_end#|#';
  127. else
  128. $matches[1][$k] = '';
  129. }
  130. }
  131. else
  132. {
  133. // Load all the smileys.
  134. $names = array();
  135. foreach ($matches[1] as $file)
  136. $names[] = $file;
  137. $names = array_unique($names);
  138. if (!empty($names))
  139. {
  140. $request = $smcFunc['db_query']('', '
  141. SELECT code, filename
  142. FROM {db_prefix}smileys
  143. WHERE filename IN ({array_string:smiley_filenames})',
  144. array(
  145. 'smiley_filenames' => $names,
  146. )
  147. );
  148. $mappings = array();
  149. while ($row = $smcFunc['db_fetch_assoc']($request))
  150. $mappings[$row['filename']] = $smcFunc['htmlspecialchars']($row['code']);
  151. $smcFunc['db_free_result']($request);
  152. foreach ($matches[1] as $k => $file)
  153. if (isset($mappings[$file]))
  154. $matches[1][$k] = '-[]-smf_smily_start#|#' . $mappings[$file] . '-[]-smf_smily_end#|#';
  155. }
  156. }
  157. // Replace the tags!
  158. $text = str_replace($matches[0], $matches[1], $text);
  159. // Now sort out spaces
  160. $text = str_replace(array('-[]-smf_smily_end#|#-[]-smf_smily_start#|#', '-[]-smf_smily_end#|#', '-[]-smf_smily_start#|#'), ' ', $text);
  161. }
  162. // Only try to buy more time if the client didn't quit.
  163. if (connection_aborted() && $context['server']['is_apache'])
  164. @apache_reset_timeout();
  165. $parts = preg_split('~(<[A-Za-z]+\s*[^<>]*?style="?[^<>"]+"?[^<>]*?(?:/?)>|</[A-Za-z]+>)~', $text, -1, PREG_SPLIT_DELIM_CAPTURE);
  166. $replacement = '';
  167. $stack = array();
  168. foreach ($parts as $part)
  169. {
  170. if (preg_match('~(<([A-Za-z]+)\s*[^<>]*?)style="?([^<>"]+)"?([^<>]*?(/?)>)~', $part, $matches) === 1)
  171. {
  172. // If it's being closed instantly, we can't deal with it...yet.
  173. if ($matches[5] === '/')
  174. continue;
  175. else
  176. {
  177. // Get an array of styles that apply to this element. (The strtr is there to combat HTML generated by Word.)
  178. $styles = explode(';', strtr($matches[3], array('&quot;' => '')));
  179. $curElement = $matches[2];
  180. $precedingStyle = $matches[1];
  181. $afterStyle = $matches[4];
  182. $curCloseTags = '';
  183. $extra_attr = '';
  184. foreach ($styles as $type_value_pair)
  185. {
  186. // Remove spaces and convert uppercase letters.
  187. $clean_type_value_pair = strtolower(strtr(trim($type_value_pair), '=', ':'));
  188. // Something like 'font-weight: bold' is expected here.
  189. if (strpos($clean_type_value_pair, ':') === false)
  190. continue;
  191. // Capture the elements of a single style item (e.g. 'font-weight' and 'bold').
  192. list ($style_type, $style_value) = explode(':', $type_value_pair);
  193. $style_value = trim($style_value);
  194. switch (trim($style_type))
  195. {
  196. case 'font-weight':
  197. if ($style_value === 'bold')
  198. {
  199. $curCloseTags .= '[/b]';
  200. $replacement .= '[b]';
  201. }
  202. break;
  203. case 'text-decoration':
  204. if ($style_value == 'underline')
  205. {
  206. $curCloseTags .= '[/u]';
  207. $replacement .= '[u]';
  208. }
  209. elseif ($style_value == 'line-through')
  210. {
  211. $curCloseTags .= '[/s]';
  212. $replacement .= '[s]';
  213. }
  214. break;
  215. case 'text-align':
  216. if ($style_value == 'left')
  217. {
  218. $curCloseTags .= '[/left]';
  219. $replacement .= '[left]';
  220. }
  221. elseif ($style_value == 'center')
  222. {
  223. $curCloseTags .= '[/center]';
  224. $replacement .= '[center]';
  225. }
  226. elseif ($style_value == 'right')
  227. {
  228. $curCloseTags .= '[/right]';
  229. $replacement .= '[right]';
  230. }
  231. break;
  232. case 'font-style':
  233. if ($style_value == 'italic')
  234. {
  235. $curCloseTags .= '[/i]';
  236. $replacement .= '[i]';
  237. }
  238. break;
  239. case 'color':
  240. $curCloseTags .= '[/color]';
  241. $replacement .= '[color=' . $style_value . ']';
  242. break;
  243. case 'font-size':
  244. // Sometimes people put decimals where decimals should not be.
  245. if (preg_match('~(\d)+\.\d+(p[xt])~i', $style_value, $dec_matches) === 1)
  246. $style_value = $dec_matches[1] . $dec_matches[2];
  247. $curCloseTags .= '[/size]';
  248. $replacement .= '[size=' . $style_value . ']';
  249. break;
  250. case 'font-family':
  251. // Only get the first freaking font if there's a list!
  252. if (strpos($style_value, ',') !== false)
  253. $style_value = substr($style_value, 0, strpos($style_value, ','));
  254. $curCloseTags .= '[/font]';
  255. $replacement .= '[font=' . strtr($style_value, array("'" => '')) . ']';
  256. break;
  257. // This is a hack for images with dimensions embedded.
  258. case 'width':
  259. case 'height':
  260. if (preg_match('~[1-9]\d*~i', $style_value, $dimension) === 1)
  261. $extra_attr .= ' ' . $style_type . '="' . $dimension[0] . '"';
  262. break;
  263. case 'list-style-type':
  264. if (preg_match('~none|disc|circle|square|decimal|decimal-leading-zero|lower-roman|upper-roman|lower-alpha|upper-alpha|lower-greek|lower-latin|upper-latin|hebrew|armenian|georgian|cjk-ideographic|hiragana|katakana|hiragana-iroha|katakana-iroha~i', $style_value, $listType) === 1)
  265. $extra_attr .= ' listtype="' . $listType[0] . '"';
  266. break;
  267. }
  268. }
  269. // Preserve some tags stripping the styling.
  270. if (in_array($matches[2], array('a', 'font', 'td')))
  271. {
  272. $replacement .= $precedingStyle . $afterStyle;
  273. $curCloseTags = '</' . $matches[2] . '>' . $curCloseTags;
  274. }
  275. // If there's something that still needs closing, push it to the stack.
  276. if (!empty($curCloseTags))
  277. array_push($stack, array(
  278. 'element' => strtolower($curElement),
  279. 'closeTags' => $curCloseTags
  280. )
  281. );
  282. elseif (!empty($extra_attr))
  283. $replacement .= $precedingStyle . $extra_attr . $afterStyle;
  284. }
  285. }
  286. elseif (preg_match('~</([A-Za-z]+)>~', $part, $matches) === 1)
  287. {
  288. // Is this the element that we've been waiting for to be closed?
  289. if (!empty($stack) && strtolower($matches[1]) === $stack[count($stack) - 1]['element'])
  290. {
  291. $byebyeTag = array_pop($stack);
  292. $replacement .= $byebyeTag['closeTags'];
  293. }
  294. // Must've been something else.
  295. else
  296. $replacement .= $part;
  297. }
  298. // In all other cases, just add the part to the replacement.
  299. else
  300. $replacement .= $part;
  301. }
  302. // Now put back the replacement in the text.
  303. $text = $replacement;
  304. // We are not finished yet, request more time.
  305. if (connection_aborted() && $context['server']['is_apache'])
  306. @apache_reset_timeout();
  307. // Let's pull out any legacy alignments.
  308. while (preg_match('~<([A-Za-z]+)\s+[^<>]*?(align="*(left|center|right)"*)[^<>]*?(/?)>~i', $text, $matches) === 1)
  309. {
  310. // Find the position in the text of this tag over again.
  311. $start_pos = strpos($text, $matches[0]);
  312. if ($start_pos === false)
  313. break;
  314. // End tag?
  315. if ($matches[4] != '/' && strpos($text, '</' . $matches[1] . '>', $start_pos) !== false)
  316. {
  317. $end_length = strlen('</' . $matches[1] . '>');
  318. $end_pos = strpos($text, '</' . $matches[1] . '>', $start_pos);
  319. // Remove the align from that tag so it's never checked again.
  320. $tag = substr($text, $start_pos, strlen($matches[0]));
  321. $content = substr($text, $start_pos + strlen($matches[0]), $end_pos - $start_pos - strlen($matches[0]));
  322. $tag = str_replace($matches[2], '', $tag);
  323. // Put the tags back into the body.
  324. $text = substr($text, 0, $start_pos) . $tag . '[' . $matches[3] . ']' . $content . '[/' . $matches[3] . ']' . substr($text, $end_pos);
  325. }
  326. else
  327. {
  328. // Just get rid of this evil tag.
  329. $text = substr($text, 0, $start_pos) . substr($text, $start_pos + strlen($matches[0]));
  330. }
  331. }
  332. // Let's do some special stuff for fonts - cause we all love fonts.
  333. while (preg_match('~<font\s+([^<>]*)>~i', $text, $matches) === 1)
  334. {
  335. // Find the position of this again.
  336. $start_pos = strpos($text, $matches[0]);
  337. $end_pos = false;
  338. if ($start_pos === false)
  339. break;
  340. // This must have an end tag - and we must find the right one.
  341. $lower_text = strtolower($text);
  342. $start_pos_test = $start_pos + 4;
  343. // How many starting tags must we find closing ones for first?
  344. $start_font_tag_stack = 0;
  345. while ($start_pos_test < strlen($text))
  346. {
  347. // Where is the next starting font?
  348. $next_start_pos = strpos($lower_text, '<font', $start_pos_test);
  349. $next_end_pos = strpos($lower_text, '</font>', $start_pos_test);
  350. // Did we past another starting tag before an end one?
  351. if ($next_start_pos !== false && $next_start_pos < $next_end_pos)
  352. {
  353. $start_font_tag_stack++;
  354. $start_pos_test = $next_start_pos + 4;
  355. }
  356. // Otherwise we have an end tag but not the right one?
  357. elseif ($start_font_tag_stack)
  358. {
  359. $start_font_tag_stack--;
  360. $start_pos_test = $next_end_pos + 4;
  361. }
  362. // Otherwise we're there!
  363. else
  364. {
  365. $end_pos = $next_end_pos;
  366. break;
  367. }
  368. }
  369. if ($end_pos === false)
  370. break;
  371. // Now work out what the attributes are.
  372. $attribs = fetchTagAttributes($matches[1]);
  373. $tags = array();
  374. $sizes_equivalence = array(1 => '8pt', '10pt', '12pt', '14pt', '18pt', '24pt', '36pt');
  375. foreach ($attribs as $s => $v)
  376. {
  377. if ($s == 'size')
  378. {
  379. // Cast before empty chech because casting a string results in a 0 and we don't have zeros in the array! ;)
  380. $v = (int) trim($v);
  381. $v = empty($v) ? 1 : $v;
  382. $tags[] = array('[size=' . $sizes_equivalence[$v] . ']', '[/size]');
  383. }
  384. elseif ($s == 'face')
  385. $tags[] = array('[font=' . trim(strtolower($v)) . ']', '[/font]');
  386. elseif ($s == 'color')
  387. $tags[] = array('[color=' . trim(strtolower($v)) . ']', '[/color]');
  388. }
  389. // As before add in our tags.
  390. $before = $after = '';
  391. foreach ($tags as $tag)
  392. {
  393. $before .= $tag[0];
  394. if (isset($tag[1]))
  395. $after = $tag[1] . $after;
  396. }
  397. // Remove the tag so it's never checked again.
  398. $content = substr($text, $start_pos + strlen($matches[0]), $end_pos - $start_pos - strlen($matches[0]));
  399. // Put the tags back into the body.
  400. $text = substr($text, 0, $start_pos) . $before . $content . $after . substr($text, $end_pos + 7);
  401. }
  402. // Almost there, just a little more time.
  403. if (connection_aborted() && $context['server']['is_apache'])
  404. @apache_reset_timeout();
  405. if (count($parts = preg_split('~<(/?)(li|ol|ul)([^>]*)>~i', $text, null, PREG_SPLIT_DELIM_CAPTURE)) > 1)
  406. {
  407. // A toggle that dermines whether we're directly under a <ol> or <ul>.
  408. $inList = false;
  409. // Keep track of the number of nested list levels.
  410. $listDepth = 0;
  411. // Map what we can expect from the HTML to what is supported by SMF.
  412. $listTypeMapping = array(
  413. '1' => 'decimal',
  414. 'A' => 'upper-alpha',
  415. 'a' => 'lower-alpha',
  416. 'I' => 'upper-roman',
  417. 'i' => 'lower-roman',
  418. 'disc' => 'disc',
  419. 'square' => 'square',
  420. 'circle' => 'circle',
  421. );
  422. // $i: text, $i + 1: '/', $i + 2: tag, $i + 3: tail.
  423. for ($i = 0, $numParts = count($parts) - 1; $i < $numParts; $i += 4)
  424. {
  425. $tag = strtolower($parts[$i + 2]);
  426. $isOpeningTag = $parts[$i + 1] === '';
  427. if ($isOpeningTag)
  428. {
  429. switch ($tag)
  430. {
  431. case 'ol':
  432. case 'ul':
  433. // We have a problem, we're already in a list.
  434. if ($inList)
  435. {
  436. // Inject a list opener, we'll deal with the ol/ul next loop.
  437. array_splice($parts, $i, 0, array(
  438. '',
  439. '',
  440. str_repeat("\t", $listDepth) . '[li]',
  441. '',
  442. ));
  443. $numParts = count($parts) - 1;
  444. // The inlist status changes a bit.
  445. $inList = false;
  446. }
  447. // Just starting a new list.
  448. else
  449. {
  450. $inList = true;
  451. if ($tag === 'ol')
  452. $listType = 'decimal';
  453. elseif (preg_match('~type="?(' . implode('|', array_keys($listTypeMapping)) . ')"?~', $parts[$i + 3], $match) === 1)
  454. $listType = $listTypeMapping[$match[1]];
  455. else
  456. $listType = null;
  457. $listDepth++;
  458. $parts[$i + 2] = '[list' . ($listType === null ? '' : ' type=' . $listType) . ']' . "\n";
  459. $parts[$i + 3] = '';
  460. }
  461. break;
  462. case 'li':
  463. // This is how it should be: a list item inside the list.
  464. if ($inList)
  465. {
  466. $parts[$i + 2] = str_repeat("\t", $listDepth) . '[li]';
  467. $parts[$i + 3] = '';
  468. // Within a list item, it's almost as if you're outside.
  469. $inList = false;
  470. }
  471. // The li is no direct child of a list.
  472. else
  473. {
  474. // We are apparently in a list item.
  475. if ($listDepth > 0)
  476. {
  477. $parts[$i + 2] = '[/li]' . "\n" . str_repeat("\t", $listDepth) . '[li]';
  478. $parts[$i + 3] = '';
  479. }
  480. // We're not even near a list.
  481. else
  482. {
  483. // Quickly create a list with an item.
  484. $listDepth++;
  485. $parts[$i + 2] = '[list]' . "\n\t" . '[li]';
  486. $parts[$i + 3] = '';
  487. }
  488. }
  489. break;
  490. }
  491. }
  492. // Handle all the closing tags.
  493. else
  494. {
  495. switch ($tag)
  496. {
  497. case 'ol':
  498. case 'ul':
  499. // As we expected it, closing the list while we're in it.
  500. if ($inList)
  501. {
  502. $inList = false;
  503. $listDepth--;
  504. $parts[$i + 1] = '';
  505. $parts[$i + 2] = str_repeat("\t", $listDepth) . '[/list]';
  506. $parts[$i + 3] = '';
  507. }
  508. else
  509. {
  510. // We're in a list item.
  511. if ($listDepth > 0)
  512. {
  513. // Inject closure for this list item first.
  514. // The content of $parts[$i] is left as is!
  515. array_splice($parts, $i + 1, 0, array(
  516. '', // $i + 1
  517. '[/li]' . "\n", // $i + 2
  518. '', // $i + 3
  519. '', // $i + 4
  520. ));
  521. $numParts = count($parts) - 1;
  522. // Now that we've closed the li, we're in list space.
  523. $inList = true;
  524. }
  525. // We're not even in a list, ignore
  526. else
  527. {
  528. $parts[$i + 1] = '';
  529. $parts[$i + 2] = '';
  530. $parts[$i + 3] = '';
  531. }
  532. }
  533. break;
  534. case 'li':
  535. if ($inList)
  536. {
  537. // There's no use for a </li> after <ol> or <ul>, ignore.
  538. $parts[$i + 1] = '';
  539. $parts[$i + 2] = '';
  540. $parts[$i + 3] = '';
  541. }
  542. else
  543. {
  544. // Remove the trailing breaks from the list item.
  545. $parts[$i] = preg_replace('~\s*<br\s*' . '/?' . '>\s*$~', '', $parts[$i]);
  546. $parts[$i + 1] = '';
  547. $parts[$i + 2] = '[/li]' . "\n";
  548. $parts[$i + 3] = '';
  549. // And we're back in the [list] space.
  550. $inList = true;
  551. }
  552. break;
  553. }
  554. }
  555. // If we're in the [list] space, no content is allowed.
  556. if ($inList && trim(preg_replace('~\s*<br\s*' . '/?' . '>\s*~', '', $parts[$i + 4])) !== '')
  557. {
  558. // Fix it by injecting an extra list item.
  559. array_splice($parts, $i + 4, 0, array(
  560. '', // No content.
  561. '', // Opening tag.
  562. 'li', // It's a <li>.
  563. '', // No tail.
  564. ));
  565. $numParts = count($parts) - 1;
  566. }
  567. }
  568. $text = implode('', $parts);
  569. if ($inList)
  570. {
  571. $listDepth--;
  572. $text .= str_repeat("\t", $listDepth) . '[/list]';
  573. }
  574. for ($i = $listDepth; $i > 0; $i--)
  575. $text .= '[/li]' . "\n" . str_repeat("\t", $i - 1) . '[/list]';
  576. }
  577. // I love my own image...
  578. while (preg_match('~<img\s+([^<>]*)/*>~i', $text, $matches) === 1)
  579. {
  580. // Find the position of the image.
  581. $start_pos = strpos($text, $matches[0]);
  582. if ($start_pos === false)
  583. break;
  584. $end_pos = $start_pos + strlen($matches[0]);
  585. $params = '';
  586. $had_params = array();
  587. $src = '';
  588. $attrs = fetchTagAttributes($matches[1]);
  589. foreach ($attrs as $attrib => $value)
  590. {
  591. if (in_array($attrib, array('width', 'height')))
  592. $params .= ' ' . $attrib . '=' . (int) $value;
  593. elseif ($attrib == 'alt' && trim($value) != '')
  594. $params .= ' alt=' . trim($value);
  595. elseif ($attrib == 'src')
  596. $src = trim($value);
  597. }
  598. $tag = '';
  599. if (!empty($src))
  600. {
  601. // Attempt to fix the path in case it's not present.
  602. if (preg_match('~^https?://~i', $src) === 0 && is_array($parsedURL = parse_url($scripturl)) && isset($parsedURL['host']))
  603. {
  604. $baseURL = (isset($parsedURL['scheme']) ? $parsedURL['scheme'] : 'http') . '://' . $parsedURL['host'] . (empty($parsedURL['port']) ? '' : ':' . $parsedURL['port']);
  605. if (substr($src, 0, 1) === '/')
  606. $src = $baseURL . $src;
  607. else
  608. $src = $baseURL . (empty($parsedURL['path']) ? '/' : preg_replace('~/(?:index\\.php)?$~', '', $parsedURL['path'])) . '/' . $src;
  609. }
  610. $tag = '[img' . $params . ']' . $src . '[/img]';
  611. }
  612. // Replace the tag
  613. $text = substr($text, 0, $start_pos) . $tag . substr($text, $end_pos);
  614. }
  615. // The final bits are the easy ones - tags which map to tags which map to tags - etc etc.
  616. $tags = array(
  617. '~<b(\s(.)*?)*?' . '>~i' => '[b]',
  618. '~</b>~i' => '[/b]',
  619. '~<i(\s(.)*?)*?' . '>~i' => '[i]',
  620. '~</i>~i' => '[/i]',
  621. '~<u(\s(.)*?)*?' . '>~i' => '[u]',
  622. '~</u>~i' => '[/u]',
  623. '~<strong(\s(.)*?)*?' . '>~i' => '[b]',
  624. '~</strong>~i' => '[/b]',
  625. '~<em(\s(.)*?)*?' . '>~i' => '[i]',
  626. '~</em>~i' => '[/i]',
  627. '~<s(\s(.)*?)*?' . '>~i' => "[s]",
  628. '~</s>~i' => "[/s]",
  629. '~<strike(\s(.)*?)*?' . '>~i' => '[s]',
  630. '~</strike>~i' => '[/s]',
  631. '~<del(\s(.)*?)*?' . '>~i' => '[s]',
  632. '~</del>~i' => '[/s]',
  633. '~<center(\s(.)*?)*?' . '>~i' => '[center]',
  634. '~</center>~i' => '[/center]',
  635. '~<pre(\s(.)*?)*?' . '>~i' => '[pre]',
  636. '~</pre>~i' => '[/pre]',
  637. '~<sub(\s(.)*?)*?' . '>~i' => '[sub]',
  638. '~</sub>~i' => '[/sub]',
  639. '~<sup(\s(.)*?)*?' . '>~i' => '[sup]',
  640. '~</sup>~i' => '[/sup]',
  641. '~<tt(\s(.)*?)*?' . '>~i' => '[tt]',
  642. '~</tt>~i' => '[/tt]',
  643. '~<table(\s(.)*?)*?' . '>~i' => '[table]',
  644. '~</table>~i' => '[/table]',
  645. '~<tr(\s(.)*?)*?' . '>~i' => '[tr]',
  646. '~</tr>~i' => '[/tr]',
  647. '~<(td|th)\s[^<>]*?colspan="?(\d{1,2})"?.*?' . '>~ie' => 'str_repeat(\'[td][/td]\', $2 - 1) . \'[td]\'',
  648. '~<(td|th)(\s(.)*?)*?' . '>~i' => '[td]',
  649. '~</(td|th)>~i' => '[/td]',
  650. '~<br(?:\s[^<>]*?)?' . '>~i' => "\n",
  651. '~<hr[^<>]*>(\n)?~i' => "[hr]\n$1",
  652. '~(\n)?\\[hr\\]~i' => "\n[hr]",
  653. '~^\n\\[hr\\]~i' => "[hr]",
  654. '~<blockquote(\s(.)*?)*?' . '>~i' => "&lt;blockquote&gt;",
  655. '~</blockquote>~i' => "&lt;/blockquote&gt;",
  656. '~<ins(\s(.)*?)*?' . '>~i' => "&lt;ins&gt;",
  657. '~</ins>~i' => "&lt;/ins&gt;",
  658. );
  659. $text = preg_replace(array_keys($tags), array_values($tags), $text);
  660. // Please give us just a little more time.
  661. if (connection_aborted() && $context['server']['is_apache'])
  662. @apache_reset_timeout();
  663. // What about URL's - the pain in the ass of the tag world.
  664. while (preg_match('~<a\s+([^<>]*)>([^<>]*)</a>~i', $text, $matches) === 1)
  665. {
  666. // Find the position of the URL.
  667. $start_pos = strpos($text, $matches[0]);
  668. if ($start_pos === false)
  669. break;
  670. $end_pos = $start_pos + strlen($matches[0]);
  671. $tag_type = 'url';
  672. $href = '';
  673. $attrs = fetchTagAttributes($matches[1]);
  674. foreach ($attrs as $attrib => $value)
  675. {
  676. if ($attrib == 'href')
  677. {
  678. $href = trim($value);
  679. // Are we dealing with an FTP link?
  680. if (preg_match('~^ftps?://~', $href) === 1)
  681. $tag_type = 'ftp';
  682. // Or is this a link to an email address?
  683. elseif (substr($href, 0, 7) == 'mailto:')
  684. {
  685. $tag_type = 'email';
  686. $href = substr($href, 7);
  687. }
  688. // No http(s), so attempt to fix this potential relative URL.
  689. elseif (preg_match('~^https?://~i', $href) === 0 && is_array($parsedURL = parse_url($scripturl)) && isset($parsedURL['host']))
  690. {
  691. $baseURL = (isset($parsedURL['scheme']) ? $parsedURL['scheme'] : 'http') . '://' . $parsedURL['host'] . (empty($parsedURL['port']) ? '' : ':' . $parsedURL['port']);
  692. if (substr($href, 0, 1) === '/')
  693. $href = $baseURL . $href;
  694. else
  695. $href = $baseURL . (empty($parsedURL['path']) ? '/' : preg_replace('~/(?:index\\.php)?$~', '', $parsedURL['path'])) . '/' . $href;
  696. }
  697. }
  698. // External URL?
  699. if ($attrib == 'target' && $tag_type == 'url')
  700. {
  701. if (trim($value) == '_blank')
  702. $tag_type == 'iurl';
  703. }
  704. }
  705. $tag = '';
  706. if ($href != '')
  707. {
  708. if ($matches[2] == $href)
  709. $tag = '[' . $tag_type . ']' . $href . '[/' . $tag_type . ']';
  710. else
  711. $tag = '[' . $tag_type . '=' . $href . ']' . $matches[2] . '[/' . $tag_type . ']';
  712. }
  713. // Replace the tag
  714. $text = substr($text, 0, $start_pos) . $tag . substr($text, $end_pos);
  715. }
  716. $text = strip_tags($text);
  717. // Some tags often end up as just dummy tags - remove those.
  718. $text = preg_replace('~\[[bisu]\]\s*\[/[bisu]\]~', '', $text);
  719. // Fix up entities.
  720. $text = preg_replace('~&#38;~i', '&#38;#38;', $text);
  721. $text = legalise_bbc($text);
  722. return $text;
  723. }
  724. /**
  725. * !!!Compatibility!!!
  726. * This is no more needed, but to avoid break mods let's keep it
  727. *
  728. * Returns an array of attributes associated with a tag.
  729. *
  730. * @param string $text
  731. * @return string
  732. */
  733. function fetchTagAttributes($text)
  734. {
  735. $attribs = array();
  736. $key = $value = '';
  737. $strpos = 0;
  738. $tag_state = 0; // 0 = key, 1 = attribute with no string, 2 = attribute with string
  739. for ($i = 0; $i < strlen($text); $i++)
  740. {
  741. // We're either moving from the key to the attribute or we're in a string and this is fine.
  742. if ($text[$i] == '=')
  743. {
  744. if ($tag_state == 0)
  745. $tag_state = 1;
  746. elseif ($tag_state == 2)
  747. $value .= '=';
  748. }
  749. // A space is either moving from an attribute back to a potential key or in a string is fine.
  750. elseif ($text[$i] == ' ')
  751. {
  752. if ($tag_state == 2)
  753. $value .= ' ';
  754. elseif ($tag_state == 1)
  755. {
  756. $attribs[$key] = $value;
  757. $key = $value = '';
  758. $tag_state = 0;
  759. }
  760. }
  761. // A quote?
  762. elseif ($text[$i] == '"')
  763. {
  764. // Must be either going into or out of a string.
  765. if ($tag_state == 1)
  766. $tag_state = 2;
  767. else
  768. $tag_state = 1;
  769. }
  770. // Otherwise it's fine.
  771. else
  772. {
  773. if ($tag_state == 0)
  774. $key .= $text[$i];
  775. else
  776. $value .= $text[$i];
  777. }
  778. }
  779. // Anything left?
  780. if ($key != '' && $value != '')
  781. $attribs[$key] = $value;
  782. return $attribs;
  783. }
  784. /**
  785. * !!!Compatibility!!!
  786. * Attempt to clean up illegal BBC caused by browsers like Opera which don't obey the rules
  787. * @param string $text
  788. * @return string
  789. */
  790. function legalise_bbc($text)
  791. {
  792. global $modSettings;
  793. // Don't care about the texts that are too short.
  794. if (strlen($text) < 3)
  795. return $text;
  796. // We are going to cycle through the BBC and keep track of tags as they arise - in order. If get to a block level tag we're going to make sure it's not in a non-block level tag!
  797. // This will keep the order of tags that are open.
  798. $current_tags = array();
  799. // This will quickly let us see if the tag is active.
  800. $active_tags = array();
  801. // A list of tags that's disabled by the admin.
  802. $disabled = empty($modSettings['disabledBBC']) ? array() : array_flip(explode(',', strtolower($modSettings['disabledBBC'])));
  803. // Add flash if it's disabled as embedded tag.
  804. if (empty($modSettings['enableEmbeddedFlash']))
  805. $disabled['flash'] = true;
  806. // Get a list of all the tags that are not disabled.
  807. $all_tags = parse_bbc(false);
  808. $valid_tags = array();
  809. $self_closing_tags = array();
  810. foreach ($all_tags as $tag)
  811. {
  812. if (!isset($disabled[$tag['tag']]))
  813. $valid_tags[$tag['tag']] = !empty($tag['block_level']);
  814. if (isset($tag['type']) && $tag['type'] == 'closed')
  815. $self_closing_tags[] = $tag['tag'];
  816. }
  817. // Don't worry if we're in a code/nobbc.
  818. $in_code_nobbc = false;
  819. // Right - we're going to start by going through the whole lot to make sure we don't have align stuff crossed as this happens load and is stupid!
  820. $align_tags = array('left', 'center', 'right', 'pre');
  821. // Remove those align tags that are not valid.
  822. $align_tags = array_intersect($align_tags, array_keys($valid_tags));
  823. // These keep track of where we are!
  824. if (!empty($align_tags) && count($matches = preg_split('~(\\[/?(?:' . implode('|', $align_tags) . ')\\])~', $text, -1, PREG_SPLIT_DELIM_CAPTURE)) > 1)
  825. {
  826. // The first one is never a tag.
  827. $isTag = false;
  828. // By default we're not inside a tag too.
  829. $insideTag = null;
  830. foreach ($matches as $i => $match)
  831. {
  832. // We're only interested in tags, not text.
  833. if ($isTag)
  834. {
  835. $isClosingTag = substr($match, 1, 1) === '/';
  836. $tagName = substr($match, $isClosingTag ? 2 : 1, -1);
  837. // We're closing the exact same tag that we opened.
  838. if ($isClosingTag && $insideTag === $tagName)
  839. $insideTag = null;
  840. // We're opening a tag and we're not yet inside one either
  841. elseif (!$isClosingTag && $insideTag === null)
  842. $insideTag = $tagName;
  843. // In all other cases, this tag must be invalid
  844. else
  845. unset($matches[$i]);
  846. }
  847. // The next one is gonna be the other one.
  848. $isTag = !$isTag;
  849. }
  850. // We're still inside a tag and had no chance for closure?
  851. if ($insideTag !== null)
  852. $matches[] = '[/' . $insideTag . ']';
  853. // And a complete text string again.
  854. $text = implode('', $matches);
  855. }
  856. // Quickly remove any tags which are back to back.
  857. $backToBackPattern = '~\\[(' . implode('|', array_diff(array_keys($valid_tags), array('td', 'anchor'))) . ')[^<>\\[\\]]*\\]\s*\\[/\\1\\]~';
  858. $lastlen = 0;
  859. while (strlen($text) !== $lastlen)
  860. $lastlen = strlen($text = preg_replace($backToBackPattern, '', $text));
  861. // Need to sort the tags my name length.
  862. uksort($valid_tags, 'sort_array_length');
  863. // These inline tags can compete with each other regarding style.
  864. $competing_tags = array(
  865. 'color',
  866. 'size',
  867. );
  868. // In case things changed above set these back to normal.
  869. $in_code_nobbc = false;
  870. $new_text_offset = 0;
  871. // These keep track of where we are!
  872. if (count($parts = preg_split(sprintf('~(\\[)(/?)(%1$s)((?:[\\s=][^\\]\\[]*)?\\])~', implode('|', array_keys($valid_tags))), $text, -1, PREG_SPLIT_DELIM_CAPTURE)) > 1)
  873. {
  874. // Start with just text.
  875. $isTag = false;
  876. // Start outside [nobbc] or [code] blocks.
  877. $inCode = false;
  878. $inNoBbc = false;
  879. // A buffer containing all opened inline elements.
  880. $inlineElements = array();
  881. // A buffer containing all opened block elements.
  882. $blockElements = array();
  883. // A buffer containing the opened inline elements that might compete.
  884. $competingElements = array();
  885. // $i: text, $i + 1: '[', $i + 2: '/', $i + 3: tag, $i + 4: tag tail.
  886. for ($i = 0, $n = count($parts) - 1; $i < $n; $i += 5)
  887. {
  888. $tag = $parts[$i + 3];
  889. $isOpeningTag = $parts[$i + 2] === '';
  890. $isClosingTag = $parts[$i + 2] === '/';
  891. $isBlockLevelTag = isset($valid_tags[$tag]) && $valid_tags[$tag] && !in_array($tag, $self_closing_tags);
  892. $isCompetingTag = in_array($tag, $competing_tags);
  893. // Check if this might be one of those cleaned out tags.
  894. if ($tag === '')
  895. continue;
  896. // Special case: inside [code] blocks any code is left untouched.
  897. elseif ($tag === 'code')
  898. {
  899. // We're inside a code block and closing it.
  900. if ($inCode && $isClosingTag)
  901. {
  902. $inCode = false;
  903. // Reopen tags that were closed before the code block.
  904. if (!empty($inlineElements))
  905. $parts[$i + 4] .= '[' . implode('][', array_keys($inlineElements)) . ']';
  906. }
  907. // We're outside a coding and nobbc block and opening it.
  908. elseif (!$inCode && !$inNoBbc && $isOpeningTag)
  909. {
  910. // If there are still inline elements left open, close them now.
  911. if (!empty($inlineElements))
  912. {
  913. $parts[$i] .= '[/' . implode('][/', array_reverse($inlineElements)) . ']';
  914. //$inlineElements = array();
  915. }
  916. $inCode = true;
  917. }
  918. // Nothing further to do.
  919. continue;
  920. }
  921. // Special case: inside [nobbc] blocks any BBC is left untouched.
  922. elseif ($tag === 'nobbc')
  923. {
  924. // We're inside a nobbc block and closing it.
  925. if ($inNoBbc && $isClosingTag)
  926. {
  927. $inNoBbc = false;
  928. // Some inline elements might've been closed that need reopening.
  929. if (!empty($inlineElements))
  930. $parts[$i + 4] .= '[' . implode('][', array_keys($inlineElements)) . ']';
  931. }
  932. // We're outside a nobbc and coding block and opening it.
  933. elseif (!$inNoBbc && !$inCode && $isOpeningTag)
  934. {
  935. // Can't have inline elements still opened.
  936. if (!empty($inlineElements))
  937. {
  938. $parts[$i] .= '[/' . implode('][/', array_reverse($inlineElements)) . ']';
  939. //$inlineElements = array();
  940. }
  941. $inNoBbc = true;
  942. }
  943. continue;
  944. }
  945. // So, we're inside one of the special blocks: ignore any tag.
  946. elseif ($inCode || $inNoBbc)
  947. continue;
  948. // We're dealing with an opening tag.
  949. if ($isOpeningTag)
  950. {
  951. // Everyting inside the square brackets of the opening tag.
  952. $elementContent = $parts[$i + 3] . substr($parts[$i + 4], 0, -1);
  953. // A block level opening tag.
  954. if ($isBlockLevelTag)
  955. {
  956. // Are there inline elements still open?
  957. if (!empty($inlineElements))
  958. {
  959. // Close all the inline tags, a block tag is coming...
  960. $parts[$i] .= '[/' . implode('][/', array_reverse($inlineElements)) . ']';
  961. // Now open them again, we're inside the block tag now.
  962. $parts[$i + 5] = '[' . implode('][', array_keys($inlineElements)) . ']' . $parts[$i + 5];
  963. }
  964. $blockElements[] = $tag;
  965. }
  966. // Inline opening tag.
  967. elseif (!in_array($tag, $self_closing_tags))
  968. {
  969. // Can't have two opening elements with the same contents!
  970. if (isset($inlineElements[$elementContent]))
  971. {
  972. // Get rid of this tag.
  973. $parts[$i + 1] = $parts[$i + 2] = $parts[$i + 3] = $parts[$i + 4] = '';
  974. // Now try to find the corresponding closing tag.
  975. $curLevel = 1;
  976. for ($j = $i + 5, $m = count($parts) - 1; $j < $m; $j += 5)
  977. {
  978. // Find the tags with the same tagname
  979. if ($parts[$j + 3] === $tag)
  980. {
  981. // If it's an opening tag, increase the level.
  982. if ($parts[$j + 2] === '')
  983. $curLevel++;
  984. // A closing tag, decrease the level.
  985. else
  986. {
  987. $curLevel--;
  988. // Gotcha! Clean out this closing tag gone rogue.
  989. if ($curLevel === 0)
  990. {
  991. $parts[$j + 1] = $parts[$j + 2] = $parts[$j + 3] = $parts[$j + 4] = '';
  992. break;
  993. }
  994. }
  995. }
  996. }
  997. }
  998. // Otherwise, add this one to the list.
  999. else
  1000. {
  1001. if ($isCompetingTag)
  1002. {
  1003. if (!isset($competingElements[$tag]))
  1004. $competingElements[$tag] = array();
  1005. $competingElements[$tag][] = $parts[$i + 4];
  1006. if (count($competingElements[$tag]) > 1)
  1007. $parts[$i] .= '[/' . $tag . ']';
  1008. }
  1009. $inlineElements[$elementContent] = $tag;
  1010. }
  1011. }
  1012. }
  1013. // Closing tag.
  1014. else
  1015. {
  1016. // Closing the block tag.
  1017. if ($isBlockLevelTag)
  1018. {
  1019. // Close the elements that should've been closed by closing this tag.
  1020. if (!empty($blockElements))
  1021. {
  1022. $addClosingTags = array();
  1023. while ($element = array_pop($blockElements))
  1024. {
  1025. if ($element === $tag)
  1026. break;
  1027. // Still a block tag was open not equal to this tag.
  1028. $addClosingTags[] = $element['type'];
  1029. }
  1030. if (!empty($addClosingTags))
  1031. $parts[$i + 1] = '[/' . implode('][/', array_reverse($addClosingTags)) . ']' . $parts[$i + 1];
  1032. // Apparently the closing tag was not found on the stack.
  1033. if (!is_string($element) || $element !== $tag)
  1034. {
  1035. // Get rid of this particular closing tag, it was never opened.
  1036. $parts[$i + 1] = substr($parts[$i + 1], 0, -1);
  1037. $parts[$i + 2] = $parts[$i + 3] = $parts[$i + 4] = '';
  1038. continue;
  1039. }
  1040. }
  1041. else
  1042. {
  1043. // Get rid of this closing tag!
  1044. $parts[$i + 1] = $parts[$i + 2] = $parts[$i + 3] = $parts[$i + 4] = '';
  1045. continue;
  1046. }
  1047. // Inline elements are still left opened?
  1048. if (!empty($inlineElements))
  1049. {
  1050. // Close them first..
  1051. $parts[$i] .= '[/' . implode('][/', array_reverse($inlineElements)) . ']';
  1052. // Then reopen them.
  1053. $parts[$i + 5] = '[' . implode('][', array_keys($inlineElements)) . ']' . $parts[$i + 5];
  1054. }
  1055. }
  1056. // Inline tag.
  1057. else
  1058. {
  1059. // Are we expecting this tag to end?
  1060. if (in_array($tag, $inlineElements))
  1061. {
  1062. foreach (array_reverse($inlineElements, true) as $tagContentToBeClosed => $tagToBeClosed)
  1063. {
  1064. // Closing it one way or the other.
  1065. unset($inlineElements[$tagContentToBeClosed]);
  1066. // Was this the tag we were looking for?
  1067. if ($tagToBeClosed === $tag)
  1068. break;
  1069. // Nope, close it and look further!
  1070. else
  1071. $parts[$i] .= '[/' . $tagToBeClosed . ']';
  1072. }
  1073. if ($isCompetingTag && !empty($competingElements[$tag]))
  1074. {
  1075. array_pop($competingElements[$tag]);
  1076. if (count($competingElements[$tag]) > 0)
  1077. $parts[$i + 5] = '[' . $tag . $competingElements[$tag][count($competingElements[$tag]) - 1] . $parts[$i + 5];
  1078. }
  1079. }
  1080. // Unexpected closing tag, ex-ter-mi-nate.
  1081. else
  1082. $parts[$i + 1] = $parts[$i + 2] = $parts[$i + 3] = $parts[$i + 4] = '';
  1083. }
  1084. }
  1085. }
  1086. // Close the code tags.
  1087. if ($inCode)
  1088. $parts[$i] .= '[/code]';
  1089. // The same for nobbc tags.
  1090. elseif ($inNoBbc)
  1091. $parts[$i] .= '[/nobbc]';
  1092. // Still inline tags left unclosed? Close them now, better late than never.
  1093. elseif (!empty($inlineElements))
  1094. $parts[$i] .= '[/' . implode('][/', array_reverse($inlineElements)) . ']';
  1095. // Now close the block elements.
  1096. if (!empty($blockElements))
  1097. $parts[$i] .= '[/' . implode('][/', array_reverse($blockElements)) . ']';
  1098. $text = implode('', $parts);
  1099. }
  1100. // Final clean up of back to back tags.
  1101. $lastlen = 0;
  1102. while (strlen($text) !== $lastlen)
  1103. $lastlen = strlen($text = preg_replace($backToBackPattern, '', $text));
  1104. return $text;
  1105. }
  1106. /**
  1107. * !!!Compatibility!!!
  1108. * A help function for legalise_bbc for sorting arrays based on length.
  1109. * @param string $a
  1110. * @param string $b
  1111. * @return int 1 or -1
  1112. */
  1113. function sort_array_length($a, $b)
  1114. {
  1115. return strlen($a) < strlen($b) ? 1 : -1;
  1116. }
  1117. /**
  1118. * Creates the javascript code for localization of the editor (SCEditor)
  1119. */
  1120. function loadLocale()
  1121. {
  1122. global $context, $txt, $editortxt, $modSettings;
  1123. loadLanguage('Editor');
  1124. $context['template_layers'] = array();
  1125. // Lets make sure we aren't going to output anything nasty.
  1126. @ob_end_clean();
  1127. if (!empty($modSettings['enableCompressedOutput']))
  1128. @ob_start('ob_gzhandler');
  1129. else
  1130. @ob_start();
  1131. // If we don't have any locale better avoid broken js
  1132. if (empty($txt['lang_locale']))
  1133. die();
  1134. $file_data = '(function ($) {
  1135. \'use strict\';
  1136. $.sceditor.locale[' . javaScriptEscape($txt['lang_locale']) . '] = {';
  1137. foreach ($editortxt as $key => $val)
  1138. $file_data .= '
  1139. ' . javaScriptEscape($key) . ': ' . javaScriptEscape($val) . ',';
  1140. $file_data .= '
  1141. dateFormat: "day.month.year"
  1142. }
  1143. })(jQuery);';
  1144. // Make sure they know what type of file we are.
  1145. header('Content-Type: text/javascript');
  1146. echo $file_data;
  1147. obExit(false);
  1148. }
  1149. /**
  1150. * Retrieves a list of message icons.
  1151. * - Based on the settings, the array will either contain a list of default
  1152. * message icons or a list of custom message icons retrieved from the database.
  1153. * - The board_id is needed for the custom message icons (which can be set for
  1154. * each board individually).
  1155. *
  1156. * @param int $board_id
  1157. * @return array
  1158. */
  1159. function getMessageIcons($board_id)
  1160. {
  1161. global $modSettings, $context, $txt, $settings, $smcFunc;
  1162. if (empty($modSettings['messageIcons_enable']))
  1163. {
  1164. loadLanguage('Post');
  1165. $icons = array(
  1166. array('value' => 'xx', 'name' => $txt['standard']),
  1167. array('value' => 'thumbup', 'name' => $txt['thumbs_up']),
  1168. array('value' => 'thumbdown', 'name' => $txt['thumbs_down']),
  1169. array('value' => 'exclamation', 'name' => $txt['excamation_point']),
  1170. array('value' => 'question', 'name' => $txt['question_mark']),
  1171. array('value' => 'lamp', 'name' => $txt['lamp']),
  1172. array('value' => 'smiley', 'name' => $txt['icon_smiley']),
  1173. array('value' => 'angry', 'name' => $txt['icon_angry']),
  1174. array('value' => 'cheesy', 'name' => $txt['icon_cheesy']),
  1175. array('value' => 'grin', 'name' => $txt['icon_grin']),
  1176. array('value' => 'sad', 'name' => $txt['icon_sad']),
  1177. array('value' => 'wink', 'name' => $txt['icon_wink']),
  1178. array('value' => 'poll', 'name' => $txt['icon_poll']),
  1179. );
  1180. foreach ($icons as $k => $dummy)
  1181. {
  1182. $icons[$k]['url'] = $settings['images_url'] . '/post/' . $dummy['value'] . '.png';
  1183. $icons[$k]['is_last'] = false;
  1184. }
  1185. }
  1186. // Otherwise load the icons, and check we give the right image too...
  1187. else
  1188. {
  1189. if (($temp = cache_get_data('posting_icons-' . $board_id, 480)) == null)
  1190. {
  1191. $request = $smcFunc['db_query']('select_message_icons', '
  1192. SELECT title, filename
  1193. FROM {db_prefix}message_icons
  1194. WHERE id_board IN (0, {int:board_id})
  1195. ORDER BY icon_order',
  1196. array(
  1197. 'board_id' => $board_id,
  1198. )
  1199. );
  1200. $icon_data = array();
  1201. while ($row = $smcFunc['db_fetch_assoc']($request))
  1202. $icon_data[] = $row;
  1203. $smcFunc['db_free_result']($request);
  1204. $icons = array();
  1205. foreach ($icon_data as $icon)
  1206. {
  1207. $icons[$icon['filename']] = array(
  1208. 'value' => $icon['filename'],
  1209. 'name' => $icon['title'],
  1210. 'url' => $settings[file_exists($settings['theme_dir'] . '/images/post/' . $icon['filename'] . '.png') ? 'images_url' : 'default_images_url'] . '/post/' . $icon['filename'] . '.png',
  1211. 'is_last' => false,
  1212. );
  1213. }
  1214. cache_put_data('posting_icons-' . $board_id, $icons, 480);
  1215. }
  1216. else
  1217. $icons = $temp;
  1218. }
  1219. return array_values($icons);
  1220. }
  1221. /**
  1222. * Compatibility function - used in 1.1 for showing a post box.
  1223. *
  1224. * @param string $msg
  1225. * @return string
  1226. */
  1227. function theme_postbox($msg)
  1228. {
  1229. global $context;
  1230. return template_control_richedit($context['post_box_name']);
  1231. }
  1232. /**
  1233. * Creates a box that can be used for richedit stuff like BBC, Smileys etc.
  1234. * @param array $editorOptions
  1235. */
  1236. function create_control_richedit($editorOptions)
  1237. {
  1238. global $txt, $modSettings, $options, $smcFunc, $editortxt;
  1239. global $context, $settings, $user_info, $sourcedir, $scripturl;
  1240. // Load the Post language file... for the moment at least.
  1241. loadLanguage('Post');
  1242. // Every control must have a ID!
  1243. assert(isset($editorOptions['id']));
  1244. assert(isset($editorOptions['value']));
  1245. // Is this the first richedit - if so we need to ensure some template stuff is initialised.
  1246. if (empty($context['controls']['richedit']))
  1247. {
  1248. // Some general stuff.
  1249. $settings['smileys_url'] = $modSettings['smileys_url'] . '/' . $user_info['smiley_set'];
  1250. if (!empty($context['drafts_autosave']) && !empty($options['drafts_autosave_enabled']))
  1251. $context['drafts_autosave_frequency'] = empty($modSettings['drafts_autosave_frequency']) ? 60000 : $modSettings['drafts_autosave_frequency'] * 1000;
  1252. // This really has some WYSIWYG stuff.
  1253. loadCSSFile('jquery.sceditor.css', array('force_current' => false, 'validate' => true));
  1254. loadTemplate('GenericControls');
  1255. // JS makes the editor go round
  1256. loadJavascriptFile('editor.js', array('default_theme' => true), 'smf_editor');
  1257. loadJavascriptFile('jquery.sceditor.js', array('default_theme' => true));
  1258. loadJavascriptFile('jquery.sceditor.bbcode.js', array('default_theme' => true));
  1259. loadJavascriptFile('jquery.sceditor.smf.js', array('default_theme' => true));
  1260. addInlineJavascript('
  1261. var smf_smileys_url = \'' . $settings['smileys_url'] . '\';
  1262. var bbc_quote_from = \'' . addcslashes($txt['quote_from'], "'") . '\';
  1263. var bbc_quote = \'' . addcslashes($txt['quote'], "'") . '\';
  1264. var bbc_search_on = \'' . addcslashes($txt['search_on'], "'") . '\';');
  1265. // editor language file
  1266. if (!empty($txt['lang_locale']) && $txt['lang_locale'] != 'en_US')
  1267. loadJavascriptFile($scripturl . '?action=loadeditorlocale', array(), 'sceditor_language');
  1268. $context['shortcuts_text'] = $txt['shortcuts' . (!empty($context['drafts_save']) ? '_drafts' : '') . (isBrowser('is_firefox') ? '_firefox' : '')];
  1269. $context['show_spellchecking'] = !empty($modSettings['enableSpellChecking']) && (function_exists('pspell_new') || (function_exists('enchant_broker_init') && ($txt['lang_charset'] == 'UTF-8' || function_exists('iconv'))));
  1270. if ($context['show_spellchecking'])
  1271. {
  1272. loadJavascriptFile('spellcheck.js', array('default_theme' => true));
  1273. // Some hidden information is needed in order to make the spell checking work.
  1274. if (!isset($_REQUEST['xml']))
  1275. $context['insert_after_template'] .= '
  1276. <form name="spell_form" id="spell_form" method="post" accept-charset="' . $context['character_set'] . '" target="spellWindow" action="' . $scripturl . '?action=spellcheck">
  1277. <input type="hidden" name="spellstring" value="">
  1278. </form>';
  1279. }
  1280. }
  1281. // Start off the editor...
  1282. $context['controls']['richedit'][$editorOptions['id']] = array(
  1283. 'id' => $editorOptions['id'],
  1284. 'value' => $editorOptions['value'],
  1285. 'rich_value' => $editorOptions['value'], // 2.0 editor compatibility
  1286. 'rich_active' => empty($modSettings['disable_wysiwyg']) && (!empty($options['wysiwyg_default']) || !empty($editorOptions['force_rich']) || !empty($_REQUEST[$editorOptions['id'] . '_mode'])),
  1287. 'disable_smiley_box' => !empty($editorOptions['disable_smiley_box']),
  1288. 'columns' => isset($editorOptions['columns']) ? $editorOptions['columns'] : 60,
  1289. 'rows' => isset($editorOptions['rows']) ? $editorOptions['rows'] : 18,
  1290. 'width' => isset($editorOptions['width']) ? $editorOptions['width'] : '70%',
  1291. 'height' => isset($editorOptions['height']) ? $editorOptions['height'] : '250px',
  1292. 'form' => isset($editorOptions['form']) ? $editorOptions['form'] : 'postmodify',
  1293. 'bbc_level' => !empty($editorOptions['bbc_level']) ? $editorOptions['bbc_level'] : 'full',
  1294. 'preview_type' => isset($editorOptions['preview_type']) ? (int) $editorOptions['preview_type'] : 1,
  1295. 'labels' => !empty($editorOptions['labels']) ? $editorOptions['labels'] : array(),
  1296. 'locale' => !empty($txt['lang_locale']) && substr($txt['lang_locale'], 0, 5) != 'en_US' ? $txt['lang_locale'] : '',
  1297. 'required' => !empty($editorOptions['required']),
  1298. );
  1299. // Switch between default images and back... mostly in case you don't have an PersonalMessage template, but do have a Post template.
  1300. if (isset($settings['use_default_images']) && $settings['use_default_images'] == 'defaults' && isset($settings['default_template']))
  1301. {
  1302. $temp1 = $settings['theme_url'];
  1303. $settings['theme_url'] = $settings['default_theme_url'];
  1304. $temp2 = $settings['images_url'];
  1305. $settings['images_url'] = $settings['default_images_url'];
  1306. $temp3 = $settings['theme_dir'];
  1307. $settings['theme_dir'] = $settings['default_theme_dir'];
  1308. }
  1309. if (empty($context['bbc_tags']))
  1310. {
  1311. // The below array makes it dead easy to add images to this control. Add it to the array and everything else is done for you!
  1312. /*
  1313. array(
  1314. 'image' => 'bold',
  1315. 'code' => 'b',
  1316. 'before' => '[b]',
  1317. 'after' => '[/b]',
  1318. 'description' => $txt['bold'],
  1319. ),
  1320. */
  1321. $context['bbc_tags'] = array();
  1322. $context['bbc_tags'][] = array(
  1323. array(
  1324. 'code' => 'bold',
  1325. 'description' => $editortxt['bold'],
  1326. ),
  1327. array(
  1328. 'code' => 'italic',
  1329. 'description' => $editortxt['italic'],
  1330. ),
  1331. array(
  1332. 'code' => 'underline',
  1333. 'description' => $editortxt['underline']
  1334. ),
  1335. array(
  1336. 'code' => 'strike',
  1337. 'description' => $editortxt['strike']
  1338. ),
  1339. array(),
  1340. array(
  1341. 'code' => 'pre',
  1342. 'description' => $editortxt['preformatted']
  1343. ),
  1344. array(
  1345. 'code' => 'left',
  1346. 'description' => $editortxt['left_align']
  1347. ),
  1348. array(
  1349. 'code' => 'center',
  1350. 'description' => $editortxt['center']
  1351. ),
  1352. array(
  1353. 'code' => 'right',
  1354. 'description' => $editortxt['right_align']
  1355. ),
  1356. );
  1357. $context['bbc_tags'][] = array(
  1358. array(
  1359. 'code' => 'flash',
  1360. 'description' => $editortxt['flash']
  1361. ),
  1362. array(
  1363. 'code' => 'image',
  1364. 'description' => $editortxt['image']
  1365. ),
  1366. array(
  1367. 'code' => 'link',
  1368. 'description' => $editortxt['hyperlink']
  1369. ),
  1370. array(
  1371. 'code' => 'email',
  1372. 'description' => $editortxt['insert_email']
  1373. ),
  1374. array(
  1375. 'code' => 'ftp',
  1376. 'description' => $editortxt['ftp']
  1377. ),
  1378. array(),
  1379. array(
  1380. 'code' => 'glow',
  1381. 'description' => $editortxt['glow']
  1382. ),
  1383. array(
  1384. 'code' => 'shadow',
  1385. 'description' => $editortxt['shadow']
  1386. ),
  1387. array(
  1388. 'code' => 'move',
  1389. 'description' => $editortxt['marquee']
  1390. ),
  1391. array(),
  1392. array(
  1393. 'code' => 'superscript',
  1394. 'description' => $editortxt['superscript']
  1395. ),
  1396. array(
  1397. 'code' => 'subscript',
  1398. 'description' => $editortxt['subscript']
  1399. ),
  1400. array(
  1401. 'code' => 'tt',
  1402. 'description' => $editortxt['teletype']
  1403. ),
  1404. array(),
  1405. array(
  1406. 'code' => 'table',
  1407. 'description' => $editortxt['table']
  1408. ),
  1409. array(
  1410. 'code' => 'code',
  1411. 'description' => $editortxt['bbc_code']
  1412. ),
  1413. array(
  1414. 'code' => 'quote',
  1415. 'description' => $editortxt['bbc_quote']
  1416. ),
  1417. array(),
  1418. array(
  1419. 'code' => 'bulletlist',
  1420. 'description' => $editortxt['list_unordered']
  1421. ),
  1422. array(
  1423. 'code' => 'orderedlist',
  1424. 'description' => $editortxt['list_ordered']
  1425. ),
  1426. array(
  1427. 'code' => 'horizontalrule',
  1428. 'description' => $editortxt['horizontal_rule']
  1429. ),
  1430. );
  1431. // Allow mods to modify BBC buttons.
  1432. // Note: pass the array here is not necessary and is deprecated, but it is ketp for backward compatibility with 2.0
  1433. call_integration_hook('integrate_bbc_buttons', array(&$context['bbc_tags']));
  1434. // Show the toggle?
  1435. if (empty($modSettings['disable_wysiwyg']))
  1436. {
  1437. $context['bbc_tags'][count($context['bbc_tags']) - 1][] = array();
  1438. $context['bbc_tags'][count($context['bbc_tags']) - 1][] = array(
  1439. 'code' => 'unformat',
  1440. 'description' => $editortxt['unformat_text'],
  1441. );
  1442. $context['bbc_tags'][count($context['bbc_tags']) - 1][] = array(
  1443. 'code' => 'toggle',
  1444. 'description' => $editortxt['toggle_view'],
  1445. );
  1446. }
  1447. // Generate a list of buttons that shouldn't be shown - this should be the fastest way to do this.
  1448. $disabled_tags = array();
  1449. if (!empty($modSettings['disabledBBC']))
  1450. $disabled_tags = explode(',', $modSettings['disabledBBC']);
  1451. if (empty($modSettings['enableEmbeddedFlash']))
  1452. $disabled_tags[] = 'flash';
  1453. foreach ($disabled_tags as $tag)
  1454. {
  1455. if ($tag == 'list')
  1456. {
  1457. $context['disabled_tags']['bulletlist'] = true;
  1458. $context['disabled_tags']['orderedlist'] = true;
  1459. }
  1460. elseif ($tag == 'b')
  1461. $context['disabled_tags']['bold'] = true;
  1462. elseif ($tag == 'i')
  1463. $context['disabled_tags']['italic'] = true;
  1464. elseif ($tag == 'i')
  1465. $context['disabled_tags']['underline'] = true;
  1466. elseif ($tag == 'i')
  1467. $context['disabled_tags']['strike'] = true;
  1468. elseif ($tag == 'img')
  1469. $context['disabled_tags']['image'] = true;
  1470. elseif ($tag == 'url')
  1471. $context['disabled_tags']['link'] = true;
  1472. elseif ($tag == 'sup')
  1473. $context['disabled_tags']['superscript'] = true;
  1474. elseif ($tag == 'sub')
  1475. $context['disabled_tags']['subscript'] = true;
  1476. elseif ($tag == 'hr')
  1477. $context['disabled_tags']['horizontalrule'] = true;
  1478. $context['disabled_tags'][trim($tag)] = true;
  1479. }
  1480. $bbcodes_styles = '';
  1481. $context['bbcodes_handlers'] = '';
  1482. $context['bbc_toolbar'] = array();
  1483. foreach ($context['bbc_tags'] as $row => $tagRow)
  1484. {
  1485. if (!isset($context['bbc_toolbar'][$row]))
  1486. $context['bbc_toolbar'][$row] = array();
  1487. $tagsRow = array();
  1488. foreach ($tagRow as $tag)
  1489. {
  1490. if (!empty($tag))
  1491. {
  1492. if (empty($context['disabled_tags'][$tag['code']]))
  1493. {
  1494. $tagsRow[] = $tag['code'];
  1495. if (isset($tag['image']))
  1496. $bbcodes_styles .= '
  1497. .sceditor-button-' . $tag['code'] . ' div {
  1498. background: url(\'' . $settings['default_theme_url'] . '/images/bbc/' . $tag['image'] . '.png\');
  1499. }';
  1500. if (isset($tag['before']))
  1501. {
  1502. $context['bbcodes_handlers'] = '
  1503. $.sceditor.setCommand(
  1504. ' . javaScriptEscape($tag['code']) . ',
  1505. function () {
  1506. this.wysiwygEditorInsertHtml(' . javaScriptEscape($tag['before']) . (isset($tag['after']) ? ', ' . javaScriptEscape($tag['after']) : '') . ');
  1507. },
  1508. ' . javaScriptEscape($tag['description']) . ',
  1509. null,
  1510. [' . javaScriptEscape($tag['before']) . (isset($tag['after']) ? ', ' . javaScriptEscape($tag['after']) : '') . ']
  1511. );';
  1512. }
  1513. }
  1514. }
  1515. else
  1516. {
  1517. $context['bbc_toolbar'][$row][] = implode(',', $tagsRow);
  1518. $tagsRow = array();
  1519. }
  1520. }
  1521. if ($row == 0)
  1522. {
  1523. $context['bbc_toolbar'][$row][] = implode(',', $tagsRow);
  1524. $tagsRow = array();
  1525. if (!isset($context['disabled_tags']['font']))
  1526. $tagsRow[] = 'font';
  1527. if (!isset($context['disabled_tags']['size']))
  1528. $tagsRow[] = 'size';
  1529. if (!isset($context['disabled_tags']['color']))
  1530. $tagsRow[] = 'color';
  1531. }
  1532. elseif ($row == 1 && empty($modSettings['disable_wysiwyg']))
  1533. {
  1534. $tmp = array();
  1535. $tagsRow[] = 'removeformat';
  1536. $tagsRow[] = 'source';
  1537. if (!empty($tmp))
  1538. {
  1539. $tagsRow[] = '|' . implode(',', $tmp);
  1540. }
  1541. }
  1542. if (!empty($tagsRow))
  1543. $context['bbc_toolbar'][$row][] = implode(',', $tagsRow);
  1544. }
  1545. if (!empty($bbcodes_styles))
  1546. $context['html_headers'] .= '
  1547. <style type="text/css">' . $bbcodes_styles . '
  1548. </style>';
  1549. }
  1550. // Initialize smiley array... if not loaded before.
  1551. if (empty($context['smileys']) && empty($editorOptions['disable_smiley_box']))
  1552. {
  1553. $context['smileys'] = array(
  1554. 'postform' => array(),
  1555. 'popup' => array(),
  1556. );
  1557. // Load smileys - don't bother to run a query if we're not using the database's ones anyhow.
  1558. if (empty($modSettings['smiley_enable']) && $user_info['smiley_set'] != 'none')
  1559. $context['smileys']['postform'][] = array(
  1560. 'smileys' => array(
  1561. array(
  1562. 'code' => ':)',
  1563. 'filename' => 'smiley.gif',
  1564. 'description' => $txt['icon_smiley'],
  1565. ),
  1566. array(
  1567. 'code' => ';)',
  1568. 'filename' => 'wink.gif',
  1569. 'description' => $txt['icon_wink'],
  1570. ),
  1571. array(
  1572. 'code' => ':D',
  1573. 'filename' => 'cheesy.gif',
  1574. 'description' => $txt['icon_cheesy'],
  1575. ),
  1576. array(
  1577. 'code' => ';D',
  1578. 'filename' => 'grin.gif',
  1579. 'description' => $txt['icon_grin']
  1580. ),
  1581. array(
  1582. 'code' => '>:(',
  1583. 'filename' => 'angry.gif',
  1584. 'description' => $txt['icon_angry'],
  1585. ),
  1586. array(
  1587. 'code' => ':(',
  1588. 'filename' => 'sad.gif',
  1589. 'description' => $txt['icon_sad'],
  1590. ),
  1591. array(
  1592. 'code' => ':o',
  1593. 'filename' => 'shocked.gif',
  1594. 'description' => $txt['icon_shocked'],
  1595. ),
  1596. array(
  1597. 'code' => '8)',
  1598. 'filename' => 'cool.gif',
  1599. 'description' => $txt['icon_cool'],
  1600. ),
  1601. array(
  1602. 'code' => '???',
  1603. 'filename' => 'huh.gif',
  1604. 'description' => $txt['icon_huh'],
  1605. ),
  1606. array(
  1607. 'code' => '::)',
  1608. 'filename' => 'rolleyes.gif',
  1609. 'description' => $txt['icon_rolleyes'],
  1610. ),
  1611. array(
  1612. 'code' => ':P',
  1613. 'filename' => 'tongue.gif',
  1614. 'description' => $txt['icon_tongue'],
  1615. ),
  1616. array(
  1617. 'code' => ':-[',
  1618. 'filename' => 'embarrassed.gif',
  1619. 'description' => $txt['icon_embarrassed'],
  1620. ),
  1621. array(
  1622. 'code' => ':-X',
  1623. 'filename' => 'lipsrsealed.gif',
  1624. 'description' => $txt['icon_lips'],
  1625. ),
  1626. array(
  1627. 'code' => ':-\\',
  1628. 'filename' => 'undecided.gif',
  1629. 'description' => $txt['icon_undecided'],
  1630. ),
  1631. array(
  1632. 'code' => ':-*',
  1633. 'filename' => 'kiss.gif',
  1634. 'description' => $txt['icon_kiss'],
  1635. ),
  1636. array(
  1637. 'code' => ':\'(',
  1638. 'filename' => 'cry.gif',
  1639. 'description' => $txt['icon_cry'],
  1640. 'isLast' => true,
  1641. ),
  1642. ),
  1643. 'isLast' => true,
  1644. );
  1645. elseif ($user_info['smiley_set'] != 'none')
  1646. {
  1647. if (($temp = cache_get_data('posting_smileys', 480)) == null)
  1648. {
  1649. $request = $smcFunc['db_query']('', '
  1650. SELECT code, filename, description, smiley_row, hidden
  1651. FROM {db_prefix}smileys
  1652. WHERE hidden IN (0, 2)
  1653. ORDER BY smiley_row, smiley_order',
  1654. array(
  1655. )
  1656. );
  1657. while ($row = $smcFunc['db_fetch_assoc']($request))
  1658. {
  1659. $row['filename'] = $smcFunc['htmlspecialchars']($row['filename']);
  1660. $row['description'] = $smcFunc['htmlspecialchars']($row['description']);
  1661. $context['smileys'][empty($row['hidden']) ? 'postform' : 'popup'][$row['smiley_row']]['smileys'][] = $row;
  1662. }
  1663. $smcFunc['db_free_result']($request);
  1664. foreach ($context['smileys'] as $section => $smileyRows)
  1665. {
  1666. foreach ($smileyRows as $rowIndex => $smileys)
  1667. $context['smileys'][$section][$rowIndex]['smileys'][count($smileys['smileys']) - 1]['isLast'] = true;
  1668. if (!empty($smileyRows))
  1669. $context['smileys'][$section][count($smileyRows) - 1]['isLast'] = true;
  1670. }
  1671. cache_put_data('posting_smileys', $context['smileys'], 480);
  1672. }
  1673. else
  1674. $context['smileys'] = $temp;
  1675. }
  1676. }
  1677. // Set a flag so the sub template knows what to do...
  1678. $context['show_bbc'] = !empty($modSettings['enableBBC']) && !empty($settings['show_bbc']);
  1679. // Switch the URLs back... now we're back to whatever the main sub template is. (like folder in PersonalMessage.)
  1680. if (isset($settings['use_default_images']) && $settings['use_default_images'] == 'defaults' && isset($settings['default_template']))
  1681. {
  1682. $settings['theme_url'] = $temp1;
  1683. $settings['images_url'] = $temp2;
  1684. $settings['theme_dir'] = $temp3;
  1685. }
  1686. }
  1687. /**
  1688. * Create a anti-bot verification control?
  1689. * @param array &$verificationOptions
  1690. * @param bool $do_test = false
  1691. */
  1692. function create_control_verification(&$verificationOptions, $do_test = false)
  1693. {
  1694. global $txt, $modSettings, $smcFunc;
  1695. global $context, $user_info, $sourcedir, $scripturl, $language;
  1696. // First verification means we need to set up some bits...
  1697. if (empty($context['controls']['verification']))
  1698. {
  1699. // The template
  1700. loadTemplate('GenericControls');
  1701. // Some javascript ma'am?
  1702. if (!empty($verificationOptions['override_visual']) || (!empty($modSettings['visual_verification_type']) && !isset($verificationOptions['override_visual'])))
  1703. loadJavascriptFile('captcha.js', array('default_theme' => true));
  1704. $context['use_graphic_library'] = in_array('gd', get_loaded_extensions());
  1705. // Skip I, J, L, O, Q, S and Z.
  1706. $context['standard_captcha_range'] = array_merge(range('A', 'H'), array('K', 'M', 'N', 'P', 'R'), range('T', 'Y'));
  1707. }
  1708. // Always have an ID.
  1709. assert(isset($verificationOptions['id']));
  1710. $isNew = !isset($context['controls']['verification'][$verificationOptions['id']]);
  1711. // Log this into our collection.
  1712. if ($isNew)
  1713. $context['controls']['verification'][$verificationOptions['id']] = array(
  1714. 'id' => $verificationOptions['id'],
  1715. 'empty_field' => empty($verificationOptions['no_empty_field']),
  1716. 'show_visual' => !empty($verificationOptions['override_visual']) || (!empty($modSettings['visual_verification_type']) && !isset($verificationOptions['override_visual'])),
  1717. 'number_questions' => isset($verificationOptions['override_qs']) ? $verificationOptions['override_qs'] : (!empty($modSettings['qa_verification_number']) ? $modSettings['qa_verification_number'] : 0),
  1718. 'max_errors' => isset($verificationOptions['max_errors']) ? $verificationOptions['max_errors'] : 3,
  1719. 'image_href' => $scripturl . '?action=verificationcode;vid=' . $verificationOptions['id'] . ';rand=' . md5(mt_rand()),
  1720. 'text_value' => '',
  1721. 'questions' => array(),
  1722. );
  1723. $thisVerification = &$context['controls']['verification'][$verificationOptions['id']];
  1724. // Add javascript for the object.
  1725. if ($context['controls']['verification'][$verificationOptions['id']]['show_visual'] && !WIRELESS)
  1726. $context['insert_after_template'] .= '
  1727. <script><!-- // --><![CDATA[
  1728. var verification' . $verificationOptions['id'] . 'Handle = new smfCaptcha("' . $thisVerification['image_href'] . '", "' . $verificationOptions['id'] . '", ' . ($context['use_graphic_library'] ? 1 : 0) . ');
  1729. // ]]></script>';
  1730. // Is there actually going to be anything?
  1731. if (empty($thisVerification['show_visual']) && empty($thisVerification['number_questions']))
  1732. return false;
  1733. elseif (!$isNew && !$do_test)
  1734. return true;
  1735. // If we want questions do we have a cache of all the IDs?
  1736. if (!empty($thisVerification['number_questions']) && empty($modSettings['question_id_cache']))
  1737. {
  1738. if (($modSettings['question_id_cache'] = cache_get_data('verificationQuestions', 300)) == null)
  1739. {
  1740. $request = $smcFunc['db_query']('', '
  1741. SELECT id_question, lngfile, question, answers
  1742. FROM {db_prefix}qanda',
  1743. array()
  1744. );
  1745. $modSettings['question_id_cache'] = array(
  1746. 'questions' => array(),
  1747. 'langs' => array(),
  1748. );
  1749. // This is like Captain Kirk climbing a mountain in some ways. This is L's fault, mkay? :P
  1750. while ($row = $smcFunc['db_fetch_assoc']($request))
  1751. {
  1752. $id_question = $row['id_question'];
  1753. unset ($row['id_question']);
  1754. // Make them all lowercase. We can't directly use $smcFunc['strtolower'] with array_walk, so do it manually, eh?
  1755. $row['answers'] = unserialize($row['answers']);
  1756. foreach ($row['answers'] as $k => $v)
  1757. $row['answers'][$k] = $smcFunc['strtolower']($v);
  1758. $modSettings['question_id_cache']['questions'][$id_question] = $row;
  1759. $modSettings['question_id_cache']['langs'][$row['lngfile']][] = $id_question;
  1760. }
  1761. $smcFunc['db_free_result']($request);
  1762. cache_put_data('verificationQuestions', $modSettings['question_id_cache'], 300);
  1763. }
  1764. }
  1765. if (!isset($_SESSION[$verificationOptions['id'] . '_vv']))
  1766. $_SESSION[$verificationOptions['id'] . '_vv'] = array();
  1767. // Do we need to refresh the verification?
  1768. if (!$do_test && (!empty($_SESSION[$verificationOptions['id'] . '_vv']['did_pass']) || empty($_SESSION[$verificationOptions['id'] . '_vv']['count']) || $_SESSION[$verificationOptions['id'] . '_vv']['count'] > 3) && empty($verificationOptions['dont_refresh']))
  1769. $force_refresh = true;
  1770. else
  1771. $force_refresh = false;
  1772. // This can also force a fresh, although unlikely.
  1773. if (($thisVerification['show_visual'] && empty($_SESSION[$verificationOptions['id'] . '_vv']['code'])) || ($thisVerification['number_questions'] && empty($_SESSION[$verificationOptions['id'] . '_vv']['q'])))
  1774. $force_refresh = true;
  1775. $verification_errors = array();
  1776. // Start with any testing.
  1777. if ($do_test)
  1778. {
  1779. // This cannot happen!
  1780. if (!isset($_SESSION[$verificationOptions['id'] . '_vv']['count']))
  1781. fatal_lang_error('no_access', false);
  1782. // ... nor this!
  1783. if ($thisVerification['number_questions'] && (!isset($_SESSION[$verificationOptions['id'] . '_vv']['q']) || !isset($_REQUEST[$verificationOptions['id'] . '_vv']['q'])))
  1784. fatal_lang_error('no_access', false);
  1785. // Hmm, it's requested but not actually declared. This shouldn't happen.
  1786. if ($thisVerification['empty_field'] && empty($_SESSION[$verificationOptions['id'] . '_vv']['empty_field']))
  1787. fatal_lang_error('no_access', false);
  1788. // While we're here, did the user do something bad?
  1789. if ($thisVerification['empty_field'] && !empty($_SESSION[$verificationOptions['id'] . '_vv']['empty_field']) && !empty($_REQUEST[$_SESSION[$verificationOptions['id'] . '_vv']['empty_field']]))
  1790. $verification_errors[] = 'wrong_verification_answer';
  1791. if ($thisVerification['show_visual'] && (empty($_REQUEST[$verificationOptions['id'] . '_vv']['code']) || empty($_SESSION[$verificationOptions['id'] . '_vv']['code']) || strtoupper($_REQUEST[$verificationOptions['id'] . '_vv']['code']) !== $_SESSION[$verificationOptions['id'] . '_vv']['code']))
  1792. $verification_errors[] = 'wrong_verification_code';
  1793. if ($thisVerification['number_questions'])
  1794. {
  1795. $incorrectQuestions = array();
  1796. foreach ($_SESSION[$verificationOptions['id'] . '_vv']['q'] as $q)
  1797. {
  1798. // We don't have this question any more, thus no answers.
  1799. if (!isset($modSettings['question_id_cache']['questions'][$q]))
  1800. continue;
  1801. // This is quite complex. We have our question but it might have multiple answers.
  1802. // First, did they actually answer this question?
  1803. if (!isset($_REQUEST[$verificationOptions['id'] . '_vv']['q'][$q]) || trim($_REQUEST[$verificationOptions['id'] . '_vv']['q'][$q]) == '')
  1804. {
  1805. $incorrectQuestions[] = $q;
  1806. continue;
  1807. }
  1808. // Second, is their answer in the list of possible answers?
  1809. else
  1810. {
  1811. $given_answer = trim($smcFunc['htmlspecialchars'](strtolower($_REQUEST[$verificationOptions['id'] . '_vv']['q'][$q])));
  1812. if (!in_array($given_answer, $modSettings['question_id_cache']['questions'][$q]['answers']))
  1813. $incorrectQuestions[] = $q;
  1814. }
  1815. }
  1816. if (!empty($incorrectQuestions))
  1817. $verification_errors[] = 'wrong_verification_answer';
  1818. }
  1819. }
  1820. // Any errors means we refresh potentially.
  1821. if (!empty($verification_errors))
  1822. {
  1823. if (empty($_SESSION[$verificationOptions['id'] . '_vv']['errors']))
  1824. $_SESSION[$verificationOptions['id'] . '_vv']['errors'] = 0;
  1825. // Too many errors?
  1826. elseif ($_SESSION[$verificationOptions['id'] . '_vv']['errors'] > $thisVerification['max_errors'])
  1827. $force_refresh = true;
  1828. // Keep a track of these.
  1829. $_SESSION[$verificationOptions['id'] . '_vv']['errors']++;
  1830. }
  1831. // Are we refreshing then?
  1832. if ($force_refresh)
  1833. {
  1834. // Assume nothing went before.
  1835. $_SESSION[$verificationOptions['id'] . '_vv']['count'] = 0;
  1836. $_SESSION[$verificationOptions['id'] . '_vv']['errors'] = 0;
  1837. $_SESSION[$verificationOptions['id'] . '_vv']['did_pass'] = false;
  1838. $_SESSION[$verificationOptions['id'] . '_vv']['q'] = array();
  1839. $_SESSION[$verificationOptions['id'] . '_vv']['code'] = '';
  1840. // Make our magic empty field.
  1841. if ($thisVerification['empty_field'])
  1842. {
  1843. // We're building a field that lives in the template, that we hope to be empty later. But at least we give it a believable name.
  1844. $terms = array('gadget', 'device', 'uid', 'gid', 'guid', 'uuid', 'unique', 'identifier');
  1845. $second_terms = array('hash', 'cipher', 'code', 'key', 'unlock', 'bit', 'value');
  1846. $start = mt_rand(0, 27);
  1847. $hash = substr(md5(time()), $start, 4);
  1848. $_SESSION[$verificationOptions['id'] . '_vv']['empty_field'] = $terms[array_rand($terms)] . '-' . $second_terms[array_rand($second_terms)] . '-' . $hash;
  1849. }
  1850. // Generating a new image.
  1851. if ($thisVerification['show_visual'])
  1852. {
  1853. // Are we overriding the range?
  1854. $character_range = !empty($verificationOptions['override_range']) ? $verificationOptions['override_range'] : $context['standard_captcha_range'];
  1855. for ($i = 0; $i < 6; $i++)
  1856. $_SESSION[$verificationOptions['id'] . '_vv']['code'] .= $character_range[array_rand($character_range)];
  1857. }
  1858. // Getting some new questions?
  1859. if ($thisVerification['number_questions'])
  1860. {
  1861. // Attempt to try the current page's language, followed by the user's preference, followed by the site default.
  1862. $possible_langs = array();
  1863. if (isset($_SESSION['language']))
  1864. $possible_langs[] = strtr($_SESSION['language'], array('-utf8' => ''));
  1865. if (!empty($user_info['language']));
  1866. $possible_langs[] = $user_info['language'];
  1867. $possible_langs[] = $language;
  1868. $questionIDs = array();
  1869. foreach ($possible_langs as $lang)
  1870. {
  1871. $lang = strtr($lang, array('-utf8' => ''));
  1872. if (isset($modSettings['question_id_cache']['langs'][$lang]))
  1873. {
  1874. // If we find questions for this, grab the ids from this language's ones, randomize the array and take just the number we need.
  1875. $questionIDs = $modSettings['question_id_cache']['langs'][$lang];
  1876. shuffle($questionIDs);
  1877. $questionIDs = array_slice($questionIDs, 0, $thisVerification['number_questions']);
  1878. break;
  1879. }
  1880. }
  1881. }
  1882. }
  1883. else
  1884. {
  1885. // Same questions as before.
  1886. $questionIDs = !empty($_SESSION[$verificationOptions['id'] . '_vv']['q']) ? $_SESSION[$verificationOptions['id'] . '_vv']['q'] : array();
  1887. $thisVerification['text_value'] = !empty($_REQUEST[$verificationOptions['id'] . '_vv']['code']) ? $smcFunc['htmlspecialchars']($_REQUEST[$verificationOptions['id'] . '_vv']['code']) : '';
  1888. }
  1889. // If we do have an empty field, it would be nice to hide it from legitimate users who shouldn't be populating it anyway.
  1890. if (!empty($_SESSION[$verificationOptions['id'] . '_vv']['empty_field']))
  1891. {
  1892. if (!isset($context['html_headers']))
  1893. $context['html_headers'] = '';
  1894. $context['html_headers'] .= '<style type="text/css">.vv_special { display:none; }</style>';
  1895. }
  1896. // Have we got some questions to load?
  1897. if (!empty($questionIDs))
  1898. {
  1899. $_SESSION[$verificationOptions['id'] . '_vv']['q'] = array();
  1900. foreach ($questionIDs as $q)
  1901. {
  1902. // Bit of a shortcut this.
  1903. $row = &$modSettings['question_id_cache']['questions'][$q];
  1904. $thisVerification['questions'][] = array(
  1905. 'id' => $q,
  1906. 'q' => parse_bbc($row['question']),
  1907. 'is_error' => !empty($incorrectQuestions) && in_array($q, $incorrectQuestions),
  1908. // Remember a previous submission?
  1909. 'a' => isset($_REQUEST[$verificationOptions['id'] . '_vv'], $_REQUEST[$verificationOptions['id'] . '_vv']['q'], $_REQUEST[$verificationOptions['id'] . '_vv']['q'][$q]) ? $smcFunc['htmlspecialchars']($_REQUEST[$verificationOptions['id'] . '_vv']['q'][$q]) : '',
  1910. );
  1911. $_SESSION[$verificationOptions['id'] . '_vv']['q'][] = $q;
  1912. }
  1913. }
  1914. $_SESSION[$verificationOptions['id'] . '_vv']['count'] = empty($_SESSION[$verificationOptions['id'] . '_vv']['count']) ? 1 : $_SESSION[$verificationOptions['id'] . '_vv']['count'] + 1;
  1915. // Return errors if we have them.
  1916. if (!empty($verification_errors))
  1917. return $verification_errors;
  1918. // If we had a test that one, make a note.
  1919. elseif ($do_test)
  1920. $_SESSION[$verificationOptions['id'] . '_vv']['did_pass'] = true;
  1921. // Say that everything went well chaps.
  1922. return true;
  1923. }
  1924. /**
  1925. * This keeps track of all registered handling functions for auto suggest functionality and passes execution to them.
  1926. * @param bool $checkRegistered = null
  1927. */
  1928. function AutoSuggestHandler($checkRegistered = null)
  1929. {
  1930. global $context;
  1931. // These are all registered types.
  1932. $searchTypes = array(
  1933. 'member' => 'Member',
  1934. 'membergroups' => 'MemberGroups',
  1935. 'versions' => 'SMFVersions',
  1936. );
  1937. call_integration_hook('integrate_autosuggest', array(&$searchTypes));
  1938. // If we're just checking the callback function is registered return true or false.
  1939. if ($checkRegistered != null)
  1940. return isset($searchTypes[$checkRegistered]) && function_exists('AutoSuggest_Search_' . $checkRegistered);
  1941. checkSession('get');
  1942. loadTemplate('Xml');
  1943. // Any parameters?
  1944. $context['search_param'] = isset($_REQUEST['search_param']) ? unserialize(base64_decode($_REQUEST['search_param'])) : array();
  1945. if (isset($_REQUEST['suggest_type'], $_REQUEST['search']) && isset($searchTypes[$_REQUEST['suggest_type']]))
  1946. {
  1947. $function = 'AutoSuggest_Search_' . $searchTypes[$_REQUEST['suggest_type']];
  1948. $context['sub_template'] = 'generic_xml';
  1949. $context['xml_data'] = $function();
  1950. }
  1951. }
  1952. /**
  1953. * Search for a member - by real_name or member_name by default.
  1954. *
  1955. * @return string
  1956. */
  1957. function AutoSuggest_Search_Member()
  1958. {
  1959. global $user_info, $txt, $smcFunc, $context;
  1960. $_REQUEST['search'] = trim($smcFunc['strtolower']($_REQUEST['search'])) . '*';
  1961. $_REQUEST['search'] = strtr($_REQUEST['search'], array('%' => '\%', '_' => '\_', '*' => '%', '?' => '_', '&#038;' => '&amp;'));
  1962. // Find the member.
  1963. $request = $smcFunc['db_query']('', '
  1964. SELECT id_member, real_name
  1965. FROM {db_prefix}members
  1966. WHERE {raw:real_name} LIKE {string:search}' . (!empty($context['search_param']['buddies']) ? '
  1967. AND id_member IN ({array_int:buddy_list})' : '') . '
  1968. AND is_activated IN (1, 11)
  1969. LIMIT ' . ($smcFunc['strlen']($_REQUEST['search']) <= 2 ? '100' : '800'),
  1970. array(
  1971. 'real_name' => $smcFunc['db_case_sensitive'] ? 'LOWER(real_name)' : 'real_name',
  1972. 'buddy_list' => $user_info['buddies'],
  1973. 'search' => $_REQUEST['search'],
  1974. )
  1975. );
  1976. $xml_data = array(
  1977. 'items' => array(
  1978. 'identifier' => 'item',
  1979. 'children' => array(),
  1980. ),
  1981. );
  1982. while ($row = $smcFunc['db_fetch_assoc']($request))
  1983. {
  1984. $row['real_name'] = strtr($row['real_name'], array('&amp;' => '&#038;', '&lt;' => '&#060;', '&gt;' => '&#062;', '&quot;' => '&#034;'));
  1985. $xml_data['items']['children'][] = array(
  1986. 'attributes' => array(
  1987. 'id' => $row['id_member'],
  1988. ),
  1989. 'value' => $row['real_name'],
  1990. );
  1991. }
  1992. $smcFunc['db_free_result']($request);
  1993. return $xml_data;
  1994. }
  1995. /**
  1996. * Search for a membergroup by name
  1997. *
  1998. * @return string
  1999. */
  2000. function AutoSuggest_Search_MemberGroups()
  2001. {
  2002. global $txt, $smcFunc, $context;
  2003. $_REQUEST['search'] = trim($smcFunc['strtolower']($_REQUEST['search'])) . '*';
  2004. $_REQUEST['search'] = strtr($_REQUEST['search'], array('%' => '\%', '_' => '\_', '*' => '%', '?' => '_', '&#038;' => '&amp;'));
  2005. // Find the group.
  2006. // Only return groups which are not post-based and not "Hidden", but not the "Administrators" or "Moderators" groups.
  2007. $request = $smcFunc['db_query']('', '
  2008. SELECT id_group, group_name
  2009. FROM {db_prefix}membergroups
  2010. WHERE {raw:group_name} LIKE {string:search}
  2011. AND min_posts = {int:min_posts}
  2012. AND id_group NOT IN ({array_int:invalid_groups})
  2013. AND hidden != {int:hidden}
  2014. ',
  2015. array(
  2016. 'group_name' => $smcFunc['db_case_sensitive'] ? 'LOWER(group_name}' : 'group_name',
  2017. 'min_posts' => -1,
  2018. 'invalid_groups' => array(1,3),
  2019. 'hidden' => 2,
  2020. 'search' => $_REQUEST['search'],
  2021. )
  2022. );
  2023. $xml_data = array(
  2024. 'items' => array(
  2025. 'identifier' => 'item',
  2026. 'children' => array(),
  2027. ),
  2028. );
  2029. while ($row = $smcFunc['db_fetch_assoc']($request))
  2030. {
  2031. $row['group_name'] = strtr($row['group_name'], array('&amp;' => '&#038;', '&lt;' => '&#060;', '&gt;' => '&#062;', '&quot;' => '&#034;'));
  2032. $xml_data['items']['children'][] = array(
  2033. 'attributes' => array(
  2034. 'id' => $row['id_group'],
  2035. ),
  2036. 'value' => $row['group_name'],
  2037. );
  2038. }
  2039. $smcFunc['db_free_result']($request);
  2040. return $xml_data;
  2041. }
  2042. /**
  2043. * Provides a list of possible SMF versions to use in emulation
  2044. *
  2045. * @return string
  2046. */
  2047. function AutoSuggest_Search_SMFVersions()
  2048. {
  2049. global $smcFunc;
  2050. $xml_data = array(
  2051. 'items' => array(
  2052. 'identifier' => 'item',
  2053. 'children' => array(),
  2054. ),
  2055. );
  2056. // First try and get it from the database.
  2057. $versions = array();
  2058. $request = $smcFunc['db_query']('', '
  2059. SELECT data
  2060. FROM {db_prefix}admin_info_files
  2061. WHERE filename = {string:latest_versions}
  2062. AND path = {string:path}',
  2063. array(
  2064. 'latest_versions' => 'latest-versions.txt',
  2065. 'path' => '/smf/',
  2066. )
  2067. );
  2068. if (($smcFunc['db_num_rows']($request) > 0) && ($row = $smcFunc['db_fetch_assoc']($request)) && !empty($row['data']))
  2069. {
  2070. // The file can be either Windows or Linux line endings, but let's ensure we clean it as best we can.
  2071. $possible_versions = explode("\n", $row['data']);
  2072. foreach ($possible_versions as $ver)
  2073. {
  2074. $ver = trim($ver);
  2075. if (strpos($ver, 'SMF') === 0)
  2076. $versions[] = $ver;
  2077. }
  2078. }
  2079. $smcFunc['db_free_result']($request);
  2080. // Just in case we don't have ANYthing.
  2081. if (empty($versions))
  2082. $versions = array('SMF 2.0');
  2083. foreach ($versions as $id => $version)
  2084. if (strpos($version, strtoupper($_REQUEST['search'])) !== false)
  2085. $xml_data['items']['children'][] = array(
  2086. 'attributes' => array(
  2087. 'id' => $id,
  2088. ),
  2089. 'value' => $version,
  2090. );
  2091. return $xml_data;
  2092. }
  2093. ?>