Commit | Line | Data |
---|---|---|
0337d704 | 1 | <?php |
2 | /*************************************************************************** | |
179afa7f | 3 | * Copyright (C) 2003-2008 Polytechnique.org * |
0337d704 | 4 | * http://opensource.polytechnique.org/ * |
5 | * * | |
6 | * This program is free software; you can redistribute it and/or modify * | |
7 | * it under the terms of the GNU General Public License as published by * | |
8 | * the Free Software Foundation; either version 2 of the License, or * | |
9 | * (at your option) any later version. * | |
10 | * * | |
11 | * This program is distributed in the hope that it will be useful, * | |
12 | * but WITHOUT ANY WARRANTY; without even the implied warranty of * | |
13 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * | |
14 | * GNU General Public License for more details. * | |
15 | * * | |
16 | * You should have received a copy of the GNU General Public License * | |
17 | * along with this program; if not, write to the Free Software * | |
18 | * Foundation, Inc., * | |
19 | * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * | |
20 | ***************************************************************************/ | |
21 | ||
f12af8ad | 22 | require_once 'smarty/libs/Smarty.class.php'; |
0337d704 | 23 | |
1490093c | 24 | abstract class PlatalPage extends Smarty |
0337d704 | 25 | { |
2b1ee50b | 26 | private $_page_type; |
27 | private $_tpl; | |
28 | private $_errors; | |
29 | private $_failure; | |
4a8a1e0a | 30 | private $_jsonVars; |
0337d704 | 31 | |
0337d704 | 32 | // {{{ function PlatalPage() |
33 | ||
2b1ee50b | 34 | public function __construct($tpl, $type = SKINNED) |
0337d704 | 35 | { |
2b1ee50b | 36 | parent::Smarty(); |
0337d704 | 37 | |
2b1ee50b | 38 | global $globals; |
796aea34 | 39 | |
abe7e055 | 40 | $this->caching = false; |
41 | $this->config_overwrite = false; | |
42 | $this->use_sub_dirs = false; | |
0337d704 | 43 | $this->template_dir = $globals->spoolroot."/templates/"; |
7faf6e6a | 44 | $this->compile_dir = $globals->spoolroot."/spool/templates_c/"; |
0337d704 | 45 | array_unshift($this->plugins_dir, $globals->spoolroot."/plugins/"); |
46 | $this->config_dir = $globals->spoolroot."/configs/"; | |
47 | ||
48 | $this->compile_check = !empty($globals->debug); | |
49 | ||
1490093c | 50 | $this->changeTpl($tpl, $type); |
860fdaec | 51 | $this->_errors = array(); |
4a8a1e0a | 52 | $this->_jsonVars = array(); |
860fdaec | 53 | $this->_failure = false; |
0337d704 | 54 | |
fe556813 FB |
55 | if ($globals->mode != 'rw') { |
56 | $this->_errors[] = "En raison d'une maintenance, une partie des fonctionnalités du site sont actuellement" | |
57 | . " désactivée, en particuliers aucune donnée ne sera sauvegardée"; | |
58 | } | |
0337d704 | 59 | $this->register_prefilter('at_to_globals'); |
60979eb7 | 60 | $this->addJsLink('xorg.js'); |
0337d704 | 61 | } |
62 | ||
63 | // }}} | |
64 | // {{{ function changeTpl() | |
65 | ||
2b1ee50b | 66 | public function changeTpl($tpl, $type = SKINNED) |
0337d704 | 67 | { |
c1895524 FB |
68 | $this->_tpl = $tpl; |
69 | $this->_page_type = $type; | |
70 | $this->assign('xorg_tpl', $tpl); | |
0337d704 | 71 | } |
72 | ||
73 | // }}} | |
e654517d | 74 | // {{{ function raw() |
75 | ||
76 | public function raw() | |
77 | { | |
78 | global $globals; | |
79 | $this->assign('globals', $globals); | |
80 | return $this->fetch($this->_tpl); | |
81 | } | |
82 | ||
83 | // }}} | |
0337d704 | 84 | // {{{ function _run() |
85 | ||
2b1ee50b | 86 | protected function _run($skin) |
0337d704 | 87 | { |
88 | global $globals, $TIME_BEGIN; | |
36f114ef | 89 | |
90 | session_write_close(); | |
91 | ||
e654517d | 92 | $this->register_prefilter('trimwhitespace'); |
93 | $this->register_prefilter('form_force_encodings'); | |
7a3f546b | 94 | $this->register_prefilter('wiki_include'); |
908db125 | 95 | $this->register_prefilter('if_has_perms'); |
6995a9b9 | 96 | $this->assign('xorg_errors', $this->_errors); |
97 | $this->assign('xorg_failure', $this->_failure); | |
d083f500 | 98 | $this->assign('globals', $globals); |
a3a049fc | 99 | |
4a8a1e0a | 100 | if (Env::has('json') && count($this->_jsonVars)) { |
101 | return $this->jsonDisplay(); | |
102 | } | |
eaf30d86 | 103 | |
8a105df2 | 104 | if (Env::v('display') == 'light') { |
105 | $this->_page_type = SIMPLE; | |
106 | } elseif (Env::v('display') == 'raw') { | |
107 | $this->_page_type = NO_SKIN; | |
108 | } elseif (Env::v('display') == 'full') { | |
109 | $this->_page_typ = SKINNED; | |
110 | } | |
111 | ||
62a66dfc | 112 | switch ($this->_page_type) { |
113 | case NO_SKIN: | |
81e9c63f | 114 | if (!($globals->debug & DEBUG_SMARTY)) { |
115 | error_reporting(0); | |
116 | } | |
0337d704 | 117 | $this->display($this->_tpl); |
118 | exit; | |
62a66dfc | 119 | |
120 | case SIMPLE: | |
c6db254a | 121 | $this->assign('simple', true); |
bf2e1ab0 | 122 | |
62a66dfc | 123 | case SKINNED: |
b4ee37a4 FB |
124 | $this->register_modifier('escape_html', 'escape_html'); |
125 | $this->default_modifiers = Array('@escape_html'); | |
0337d704 | 126 | } |
5aa58639 FB |
127 | if (S::i('auth') <= AUTH_PUBLIC) { |
128 | $this->register_outputfilter('hide_emails'); | |
129 | } | |
bf2e1ab0 | 130 | $this->addJsLink('wiki.js'); |
493b6abe | 131 | header("Accept-Charset: utf-8"); |
4a8a1e0a | 132 | if (Env::v('forceXml')) { |
133 | header("Content-Type: text/xml; charset=utf-8"); | |
134 | } | |
b4315e15 | 135 | |
136 | if (!$globals->debug) { | |
6995a9b9 | 137 | error_reporting(0); |
b4315e15 | 138 | $this->display($skin); |
139 | exit; | |
140 | } | |
a3a049fc | 141 | |
7da8ef90 | 142 | $this->assign('validate', true); |
81e9c63f | 143 | if (!($globals->debug & DEBUG_SMARTY)) { |
144 | error_reporting(0); | |
145 | } | |
040a594c | 146 | $START_SMARTY = microtime(true); |
b4315e15 | 147 | $result = $this->fetch($skin); |
040a594c FB |
148 | $ttime = sprintf('Temps total: %.02fs (Smarty %.02fs) - Mémoire totale : %dKo<br />', |
149 | microtime(true) - $TIME_BEGIN, microtime(true) - $START_SMARTY, | |
150 | memory_get_peak_usage(true) / 1024); | |
b4ee37a4 FB |
151 | if ($globals->debug & DEBUG_BT) { |
152 | PlBacktrace::clean(); | |
153 | $this->assign_by_ref('backtraces', PlBacktrace::$bt); | |
154 | $result = str_replace('@@BACKTRACE@@', $this->fetch('skin/common.backtrace.tpl'), $result); | |
155 | } else { | |
156 | $result = str_replace('@@BACKTRACE@@', '', $result); | |
157 | } | |
0337d704 | 158 | |
b4ee37a4 | 159 | $replc = "<span class='erreur'>VALIDATION HTML INACTIVE</span><br />"; |
81e9c63f | 160 | if ($globals->debug & DEBUG_VALID) { |
b4315e15 | 161 | $fd = fopen($this->compile_dir."/valid.html","w"); |
162 | fwrite($fd, $result); | |
163 | fclose($fd); | |
a3a049fc | 164 | |
b4315e15 | 165 | exec($globals->spoolroot."/bin/devel/xhtml.validate.pl ".$this->compile_dir."/valid.html", $val); |
166 | foreach ($val as $h) { | |
167 | if (preg_match("/^X-W3C-Validator-Errors: (\d+)$/", $h, $m)) { | |
168 | $replc = '<span style="color: #080;">HTML OK</span><br />'; | |
169 | if ($m[1]) { | |
170 | $replc = "<span class='erreur'><a href='http://validator.w3.org/check?uri={$globals->baseurl}" | |
171 | ."/valid.html&ss=1#result'>{$m[1]} ERREUR(S) !!!</a></span><br />"; | |
0337d704 | 172 | } |
b4315e15 | 173 | break; |
0337d704 | 174 | } |
175 | } | |
0337d704 | 176 | } |
177 | ||
b4315e15 | 178 | echo str_replace("@HOOK@", $ttime.$replc, $result); |
0337d704 | 179 | exit; |
180 | } | |
181 | ||
1490093c | 182 | abstract public function run(); |
183 | ||
0337d704 | 184 | // }}} |
0337d704 | 185 | // {{{ function nb_errs() |
186 | ||
2b1ee50b | 187 | public function nb_errs() |
0337d704 | 188 | { |
860fdaec | 189 | return count($this->_errors); |
0337d704 | 190 | } |
191 | ||
192 | // }}} | |
193 | // {{{ function trig() | |
194 | ||
2b1ee50b | 195 | public function trig($msg) |
0337d704 | 196 | { |
860fdaec | 197 | $this->_errors[] = $msg; |
0337d704 | 198 | } |
199 | ||
200 | // }}} | |
0337d704 | 201 | // {{{ function kill() |
202 | ||
2b1ee50b | 203 | public function kill($msg) |
0337d704 | 204 | { |
90eba1aa | 205 | global $platal; |
206 | ||
207 | $this->assign('platal', $platal); | |
0fcbe8d0 | 208 | $this->trig($msg); |
209 | $this->_failure = true; | |
0337d704 | 210 | $this->run(); |
211 | } | |
212 | ||
213 | // }}} | |
0337d704 | 214 | // {{{ function addJsLink |
215 | ||
2b1ee50b | 216 | public function addJsLink($path) |
0337d704 | 217 | { |
218 | $this->append('xorg_js', $path); | |
219 | } | |
220 | ||
221 | // }}} | |
222 | // {{{ function addCssLink | |
223 | ||
2b1ee50b | 224 | public function addCssLink($path) |
0337d704 | 225 | { |
226 | $this->append('xorg_css', $path); | |
227 | } | |
228 | ||
229 | // }}} | |
ea626742 | 230 | // {{{ function addCssInline |
231 | ||
2b1ee50b | 232 | public function addCssInline($css) |
ea626742 | 233 | { |
234 | if (!empty($css)) { | |
235 | $this->append('xorg_inline_css', $css); | |
eaf30d86 | 236 | } |
ea626742 | 237 | } |
238 | ||
239 | // }}} | |
162370e7 | 240 | // {{{ function setRssLink |
241 | ||
2b1ee50b | 242 | public function setRssLink($title, $path) |
162370e7 | 243 | { |
244 | $this->assign('xorg_rss', array('title' => $title, 'href' => $path)); | |
245 | } | |
246 | ||
247 | // }}} | |
4a8a1e0a | 248 | // {{{ function jsonDisplay |
249 | protected function jsonDisplay() | |
250 | { | |
251 | header("Content-type: text/javascript; charset=utf-8"); | |
252 | array_walk_recursive($this->_jsonVars, "escape_xorgDB"); | |
253 | $jsonbegin = Env::v('jsonBegin'); | |
254 | $jsonend = Env::v('jsonEnd'); | |
255 | if (Env::has('jsonVar')) { | |
256 | $jsonbegin = Env::v('jsonVar').' = '; | |
257 | $jsonend = ';'; | |
258 | } elseif (Env::has('jsonFunc')) { | |
259 | $jsonbegin = Env::v('jsonFunc').'('; | |
260 | $jsonend = ');'; | |
261 | } | |
262 | echo $jsonbegin, json_encode($this->_jsonVars), $jsonend; | |
263 | exit; | |
264 | } | |
265 | // }}} | |
266 | // {{{ function jsonAssign | |
267 | public function jsonAssign($var, $value) | |
268 | { | |
269 | $this->_jsonVars[$var] = $value; | |
270 | } | |
fba760d2 | 271 | |
272 | // }}} | |
4a8a1e0a | 273 | } |
274 | ||
275 | function escape_xorgDB(&$item, $key) | |
276 | { | |
277 | if (is_a($item, 'XOrgDBIterator')) { | |
278 | $expanded = array(); | |
279 | while ($a = $item->next()) { | |
280 | $expanded[] = $a; | |
281 | } | |
282 | $item = $expanded; | |
283 | } | |
0337d704 | 284 | } |
285 | ||
b76f0797 | 286 | // {{{ function escape_html () |
287 | ||
288 | /** | |
289 | * default smarty plugin, used to auto-escape dangerous html. | |
eaf30d86 | 290 | * |
b76f0797 | 291 | * < --> < |
292 | * > --> > | |
293 | * " --> " | |
294 | * & not followed by some entity --> & | |
295 | */ | |
296 | function escape_html($string) | |
297 | { | |
298 | if (is_string($string)) { | |
c1895524 | 299 | return htmlspecialchars($string, ENT_QUOTES, 'UTF-8'); |
b76f0797 | 300 | } else { |
c1895524 | 301 | return $string; |
b76f0797 | 302 | } |
303 | } | |
304 | ||
305 | // }}} | |
306 | // {{{ function at_to_globals() | |
307 | ||
308 | /** | |
309 | * helper | |
310 | */ | |
311 | ||
312 | function _to_globals($s) { | |
313 | global $globals; | |
314 | $t = explode('.',$s); | |
315 | if (count($t) == 1) { | |
316 | return var_export($globals->$t[0],true); | |
317 | } else { | |
318 | return var_export($globals->$t[0]->$t[1],true); | |
319 | } | |
320 | } | |
321 | ||
322 | /** | |
323 | * compilation plugin used to import $globals confing through #globals.foo.bar# directives | |
324 | */ | |
325 | ||
326 | function at_to_globals($tpl_source, &$smarty) | |
327 | { | |
328 | return preg_replace('/#globals\.([a-zA-Z0-9_.]+?)#/e', '_to_globals(\'\\1\')', $tpl_source); | |
329 | } | |
330 | ||
331 | // }}} | |
332 | // {{{ function trimwhitespace | |
333 | ||
334 | function trimwhitespace($source, &$smarty) | |
335 | { | |
120bd636 | 336 | $tags = '(script|pre|textarea)'; |
abe7e055 | 337 | preg_match_all("!<$tags.*?>.*?</(\\1)>!ius", $source, $tagsmatches); |
338 | $source = preg_replace("!<$tags.*?>.*?</(\\1)>!ius", "&&&tags&&&", $source); | |
b76f0797 | 339 | |
340 | // remove all leading spaces, tabs and carriage returns NOT | |
341 | // preceeded by a php close tag. | |
342 | $source = preg_replace('/((?<!\?>)\n)[\s]+/m', '\1', $source); | |
120bd636 | 343 | $source = preg_replace("!&&&tags&&&!e", 'array_shift($tagsmatches[0])', $source); |
b76f0797 | 344 | |
eaf30d86 | 345 | return $source; |
b76f0797 | 346 | } |
347 | ||
348 | // }}} | |
7a3f546b | 349 | // {{{ function wiki_include |
350 | ||
351 | function wiki_include($source, &$smarty) | |
352 | { | |
353 | return preg_replace('/\{include( [^}]*)? wiki=([^} ]+)(.*?)\}/ui', | |
354 | '{include\1 file="../spool/wiki.d/cache_\2.tpl"\3 included=1}', | |
355 | $source); | |
356 | } | |
357 | ||
358 | // }}} | |
908db125 FB |
359 | //{{{ function hasPerm |
360 | ||
361 | function if_has_perms($source, &$smarty) | |
362 | { | |
363 | $source = preg_replace('/\{if([^}]*) (\!?)hasPerms\(([^)]+)\)([^}]*)\}/', | |
364 | '{if\1 \2$smarty.session.perms->hasFlagCombination(\3)\4}', | |
365 | $source); | |
366 | return preg_replace('/\{if([^}]*) (\!?)hasPerm\(([^)]+)\)([^}]*)\}/', | |
367 | '{if\1 \2($smarty.session.perms && $smarty.session.perms->hasFlag(\3))\4}', | |
368 | $source); | |
369 | } | |
370 | ||
371 | // }}} | |
edc636b8 | 372 | // {{{ |
373 | ||
374 | function form_force_encodings($source, &$smarty) | |
375 | { | |
376 | return preg_replace('/<form[^\w]/', | |
a7de4ef7 | 377 | '\0 accept-charset="utf-8" ', |
edc636b8 | 378 | $source); |
379 | } | |
380 | ||
381 | // }}} | |
bf2e1ab0 | 382 | // {{{ function hide_emails |
383 | ||
384 | function _hide_email($source) | |
385 | { | |
1bd2bc7e | 386 | $source = str_replace("\n", '', $source); |
6b8d257b | 387 | return '<script type="text/javascript">//<![CDATA[' . "\n" . |
388 | 'Nix.decode("' . addslashes(str_rot13($source)) . '");' . "\n" . | |
eaf30d86 | 389 | '//]]></script>'; |
bf2e1ab0 | 390 | } |
391 | ||
392 | function hide_emails($source, &$smarty) | |
393 | { | |
a18afbdc | 394 | if (!strpos($source, '@')) { |
395 | return $source; | |
396 | } | |
397 | ||
bf2e1ab0 | 398 | //prevent email replacement in <script> and <textarea> |
120bd636 | 399 | $tags = '(script|textarea|select)'; |
abe7e055 | 400 | preg_match_all("!<$tags.*?>.*?</(\\1)>!ius", $source, $tagsmatches); |
401 | $source = preg_replace("!<$tags.*?>.*?</(\\1)>!ius", "&&&tags&&&", $source); | |
bf2e1ab0 | 402 | |
403 | //catch all emails in <a href="mailto:..."> | |
a14159bf | 404 | preg_match_all("!<a[^>]+href=[\"'][^\"']*[-a-z0-9+_.]+@[-a-z0-9_.]+[^\"']*[\"'].*?>.*?</a>!ius", $source, $ahref); |
405 | $source = preg_replace("!<a[^>]+href=[\"'][^\"']*[-a-z0-9+_.]+@[-a-z0-9_.]+[^\"']*[\"'].*?>.*?</a>!ius", '&&&ahref&&&', $source); | |
bf2e1ab0 | 406 | |
407 | //prevant replacement in tag attributes | |
abe7e055 | 408 | preg_match_all("!<[^>]+[-a-z0-9_+.]+@[-a-z0-9_.]+.+?>!ius", $source, $misc); |
409 | $source = preg_replace("!<[^>]+[-a-z0-9_+.]+@[-a-z0-9_.]+.+?>!ius", '&&&misc&&&', $source); | |
bf2e1ab0 | 410 | |
411 | //catch ! | |
eaf30d86 | 412 | $source = preg_replace('!([-a-z0-9_+.]+@[-a-z0-9_.]+)!iue', '_hide_email("\1")', $source); |
bf2e1ab0 | 413 | $source = preg_replace('!&&&ahref&&&!e', '_hide_email(array_shift($ahref[0]))', $source); |
bf2e1ab0 | 414 | |
415 | // restore data | |
2456ea61 | 416 | $source = preg_replace('!&&&misc&&&!e', 'array_shift($misc[0])', $source); |
120bd636 | 417 | $source = preg_replace("!&&&tags&&&!e", 'array_shift($tagsmatches[0])', $source); |
bf2e1ab0 | 418 | |
419 | return $source; | |
420 | } | |
421 | ||
422 | // }}} | |
b76f0797 | 423 | |
a7de4ef7 | 424 | // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: |
0337d704 | 425 | ?> |