[platal.git] / include / xorg.misc.inc.php

<?php
/***************************************************************************
 *  Copyright (C) 2003-2008 Polytechnique.org                              *
 *  http://opensource.polytechnique.org/                                   *
 *                                                                         *
 *  This program is free software; you can redistribute it and/or modify   *
 *  it under the terms of the GNU General Public License as published by   *
 *  the Free Software Foundation; either version 2 of the License, or      *
 *  (at your option) any later version.                                    *
 *                                                                         *
 *  This program is distributed in the hope that it will be useful,        *
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of         *
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          *
 *  GNU General Public License for more details.                           *
 *                                                                         *
 *  You should have received a copy of the GNU General Public License      *
 *  along with this program; if not, write to the Free Software            *
 *  Foundation, Inc.,                                                      *
 *  59 Temple Place, Suite 330, Boston, MA  02111-1307  USA                *
 ***************************************************************************/

function quoted_printable_encode($input, $line_max = 76)
{
    $lines = preg_split("/(?:\r\n|\r|\n)/", $input);
    $eol = "\n";
    $linebreak = "=0D=0A=\n    ";
    $escape = "=";
    $output = "";

    foreach ($lines as $j => $line) {
        $linlen = strlen($line);
        $newline = "";
        for($i = 0; $i < $linlen; $i++) {
            $c = $line{$i};
            $dec = ord($c);
            if ( ($dec == 32) && ($i == ($linlen - 1)) ) {
                // convert space at eol only
                $c = "=20";
            } elseif ( ($dec == 61) || ($dec < 32 ) || ($dec > 126) ) {
                // always encode "\t", which is *not* required
                $c = $escape.strtoupper(sprintf("%02x",$dec));
            }
            if ( (strlen($newline) + strlen($c)) >= $line_max ) { // CRLF is not counted
                $output .= $newline.$escape.$eol;
                $newline = "    ";
            }
            $newline .= $c;
        } // end of for
        $output .= $newline;
        if ($j<count($lines)-1) $output .= $linebreak;
    }
    return trim($output);
}

/** vérifie si une adresse email convient comme adresse de redirection
 * @param $email l'adresse email a verifier
 * @return BOOL
 */
function isvalid_email_redirection($email)
{
    return isvalid_email($email) &&
        !preg_match("/@(polytechnique\.(org|edu)|melix\.(org|net)|m4x\.org)$/", $email);
}

/** genere une chaine aleatoire de 22 caracteres ou moins
 * @param $len longueur souhaitée, 22 par défaut
 * @return la chaine aleatoire qui contient les caractères [A-Za-z0-9+/]
 */
function rand_token($len = 22)
{
    $len = max(2, $len);
    $len = min(50, $len);
    $fp = fopen('/dev/urandom', 'r');
    // $len * 2 is certainly an overkill,
    // but HEY, reading 40 bytes from /dev/urandom is not that slow !
    $token = fread($fp, $len * 2);
    fclose($fp);
    $token = base64_encode($token);
    $token = preg_replace("![Il10O+/]!", "", $token);
    $token = substr($token,0,$len);
    return $token;
}

/** genere une chaine aleatoire convenable pour une url
 * @param $len longueur souhaitée, 22 par défaut
 * @return la chaine aleatoire
 */
function rand_url_id($len = 22)
{
    return rand_token($len);
}


/** genere une chaine aleatoire convenable pour un mot de passe
 * @return la chaine aleatoire
 */
function rand_pass()
{
    return rand_token(8);
}

/** Remove accent from a string and replace them by the nearest letter
 */
global $lc_convert, $uc_convert;
$lc_convert = array('é' => 'e', 'è' => 'e', 'ë' => 'e', 'ê' => 'e',
    'á' => 'a', 'à' => 'a', 'ä' => 'a', 'â' => 'a', 'å' => 'a', 'ã' => 'a',
    'ï' => 'i', 'î' => 'i', 'ì' => 'i', 'í' => 'i',
    'ô' => 'o', 'ö' => 'o', 'ò' => 'o', 'ó' => 'o', 'õ' => 'o', 'ø' => 'o',
    'ú' => 'u', 'ù' => 'u', 'û' => 'u', 'ü' => 'u',
    'ç' => 'c', 'ñ' => 'n');
$uc_convert = array('É' => 'E', 'È' => 'E', 'Ë' => 'E', 'Ê' => 'E',
    'Á' => 'A', 'À' => 'A', 'Ä' => 'A', 'Â' => 'A', 'Å' => 'A', 'Ã' => 'A',
    'Ï' => 'I', 'Î' => 'I', 'Ì' => 'I', 'Í' => 'I',
    'Ô' => 'O', 'Ö' => 'O', 'Ò' => 'O', 'Ó' => 'O', 'Õ' => 'O', 'Ø' => 'O',
    'Ú' => 'U', 'Ù' => 'U', 'Û' => 'U', 'Ü' => 'U',
    'Ç' => 'C', 'Ñ' => 'N');

function replace_accent($string)
{
    global $lc_convert, $uc_convert;
    $string = strtr($string, $lc_convert);
    return strtr($string, $uc_convert);
}

/** creates a username from a first and last name
 *
 * @param $prenom the firstname
 * @param $nom the last name
 *
 * return STRING the corresponding username
 */
function make_username($prenom,$nom)
{
    /* on traite le prenom */
    $prenomUS=replace_accent(trim($prenom));
    $prenomUS=stripslashes($prenomUS);

    /* on traite le nom */
    $nomUS=replace_accent(trim($nom));
    $nomUS=stripslashes($nomUS);

    // calcul du login
    $username = strtolower($prenomUS.".".$nomUS);
    $username = str_replace(" ","-",$username);
    $username = str_replace("'","",$username);
    return $username;
}

/* Un soundex en français posté par Frédéric Bouchery
   Voici une adaptation en PHP de la fonction soundex2 francisée de Frédéric BROUARD (http://sqlpro.developpez.com/Soundex/).
   C'est une bonne démonstration de la force des expressions régulières compatible Perl.
trouvé sur http://expreg.com/voirsource.php?id=40&type=Chaines%20de%20caract%E8res */
function soundex_fr($sIn)
{
    static $convVIn, $convVOut, $convGuIn, $convGuOut, $accents;
    if (!isset($convGuIn)) {
        global $uc_convert, $lc_convert;
        $convGuIn  = array( 'GUI', 'GUE', 'GA', 'GO', 'GU', 'SCI', 'SCE', 'SC', 'CA', 'CO',
                            'CU', 'QU', 'Q', 'CC', 'CK', 'G', 'ST', 'PH');
        $convGuOut = array( 'KI', 'KE', 'KA', 'KO', 'K', 'SI', 'SE', 'SK', 'KA', 'KO',
                            'KU', 'K', 'K', 'K', 'K', 'J', 'T', 'F');
        $convVIn   = array( '/E?(AU)/', '/([EA])?[UI]([NM])([^EAIOUY]|$)/', '/[AE]O?[NM]([^AEIOUY]|$)/',
            '/[EA][IY]([NM]?[^NM]|$)/', '/(^|[^OEUIA])(OEU|OE|EU)([^OEUIA]|$)/', '/OI/',
            '/(ILLE?|I)/', '/O(U|W)/', '/O[NM]($|[^EAOUIY])/', '/(SC|S|C)H/',
            '/([^AEIOUY1])[^AEIOUYLKTPNR]([UAO])([^AEIOUY])/', '/([^AEIOUY]|^)([AUO])[^AEIOUYLKTP]([^AEIOUY1])/', '/^KN/',
            '/^PF/', '/C([^AEIOUY]|$)/',
            '/C/', '/Z$/', '/(?<!^)Z+/', '/ER$/', '/H/', '/W/');
        $convVOut  = array( 'O', '1\3', 'A\1',
            'E\1', '\1E\3', 'O',
            'Y', 'U', 'O\1', '9',
            '\1\2\3', '\1\2\3', 'N',
            'F', 'K\1',
            'S', 'SE', 'S', 'E', '', 'V');
        $accents = $uc_convert + $lc_convert;
        $accents['Ç'] = 'S';
        $accents['¿'] = 'E';
    }
    // Si il n'y a pas de mot, on sort immédiatement
    if ( $sIn === '' ) return '    ';
    // On supprime les accents
    $sIn = strtr( $sIn, $accents);
    // On met tout en minuscule
    $sIn = strtoupper( $sIn );
    // On supprime tout ce qui n'est pas une lettre
    $sIn = preg_replace( '`[^A-Z]`', '', $sIn );
    // Si la chaîne ne fait qu'un seul caractère, on sort avec.
    if ( strlen( $sIn ) === 1 ) return $sIn . '   ';
    // on remplace les consonnances primaires
    $sIn = str_replace( $convGuIn, $convGuOut, $sIn );
    // on supprime les lettres répétitives
    $sIn = preg_replace( '`(.)\1`', '$1', $sIn );
    // on réinterprète les voyelles
    $sIn = preg_replace( $convVIn, $convVOut, $sIn);
    // on supprime les terminaisons T, D, S, X (et le L qui précède si existe)
    $sIn = preg_replace( '`L?[TDX]S?$`', '', $sIn );
    // on supprime les E, A et Y qui ne sont pas en première position
    $sIn = preg_replace( '`(?!^)Y([^AEOU]|$)`', '\1', $sIn);
    $sIn = preg_replace( '`(?!^)[EA]`', '', $sIn);
    return substr( $sIn . '    ', 0, 4);
}

/** met les majuscules au debut de chaque atome du prénom
 * @param $prenom le prénom à formater
 * return STRING le prénom avec les majuscules
 */
function make_firstname_case($prenom)
{
    $prenom = strtolower($prenom);
    $pieces = explode('-',$prenom);

    foreach ($pieces as $piece) {
        $subpieces = explode("'",$piece);
        $usubpieces="";
        foreach ($subpieces as $subpiece)
            $usubpieces[] = ucwords($subpiece);
        $upieces[] = implode("'",$usubpieces);
    }
    return implode('-',$upieces);
}


function make_forlife($prenom, $nom, $promo)
{
    $prenomUS = replace_accent(trim($prenom));
    $nomUS    = replace_accent(trim($nom));

    $forlife = strtolower($prenomUS.".".$nomUS.".".$promo);
    $forlife = str_replace(" ","-",$forlife);
    $forlife = str_replace("'","",$forlife);
    return $forlife;
}

/** Convert ip to uint (to store it in a database)
 */
function ip_to_uint($ip)
{
    $part = explode('.', $ip);
    if (count($part) != 4) {
        return null;
    }
    $v = 0;
    $fact = 0x1000000;
    for ($i = 0 ; $i < 4 ; ++$i) {
        $v += $fact * $part[$i];
        $fact >>= 8;
    }
    return $v;
}

/** Convert uint to ip (to build a human understandable ip)
 */
function uint_to_ip($uint)
{
    return long2ip($uint);
}


/******************************************************************************
 * Security functions
 *****************************************************************************/

function check_ip($level)
{
    if (empty($_SERVER['REMOTE_ADDR'])) {
        return false;
    }
    if (empty($_SESSION['check_ip'])) {
        $ips = array();
        if (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
            $ips = explode(',', $_SERVER['HTTP_X_FORWARDED_FOR']);
        }
        $ips[] = $_SERVER['REMOTE_ADDR'];
        foreach ($ips as &$ip) {
            $ip = '(ip & mask) = (' . ip_to_uint($ip) . '& mask)';
        }
        $res = XDB::query('SELECT  state, description
                             FROM  ip_watch
                            WHERE  ' . implode(' OR ', $ips) . '
                         ORDER BY  state DESC');
        if ($res->numRows()) {
            $state = $res->fetchOneAssoc();
            $_SESSION['check_ip'] = $state['state'];
            $_SESSION['check_ip_desc'] = $state['description'];
        } else {
            $_SESSION['check_ip'] = 'safe';
        }
    }
    $test = array();
    switch ($level) {
      case 'unsafe': $test[] = 'unsafe';
      case 'dangerous': $test[] = 'dangerous';
      case 'ban': $test[] = 'ban'; break;
      default: return false;
    }
    return in_array($_SESSION['check_ip'], $test);
}

function check_email($email, $message)
{
    $res = XDB::query("SELECT state, description
        FROM emails_watch
        WHERE state != 'safe' AND email = {?}", $email);
    if ($res->numRows()) {
        send_warning_mail($message);
        return true;
    }
    return false;
}

function check_account()
{
    return S::v('watch_account');
}

function check_redirect($red = null)
{
    require_once 'emails.inc.php';
    if (is_null($red)) {
        $red = new Redirect(S::v('uid'));
    }
    if ($red->get_uid() == S::v('uid')) {
        $_SESSION['no_redirect'] = !$red->other_active('');
        $_SESSION['mx_failures'] = $red->get_broken_mx();
    }
}

function send_warning_mail($title)
{
    global $globals;
    $mailer = new PlMailer();
    $mailer->setFrom("webmaster@" . $globals->mail->domain);
    $mailer->addTo($globals->core->admin_email);
    $mailer->setSubject("[Plat/al Security Alert] $title");
    $mailer->setTxtBody("Identifiants de session :\n" . var_export($_SESSION, true) . "\n\n"
        ."Identifiants de connexion :\n" . var_export($_SERVER, true));
    $mailer->send();
}

function kill_sessions()
{
    assert(S::has_perms());
    shell_exec('sudo -u root ' . dirname(dirname(__FILE__)) . '/bin/kill_sessions.sh');
}


/******************************************************************************
 * Dynamic configuration update/edition stuff
 *****************************************************************************/

function update_NbIns()
{
    global $globals;
    $res = XDB::query("SELECT  COUNT(*)
                         FROM  auth_user_md5
                        WHERE  perms IN ('admin','user') AND deces=0");
    $cnt = $res->fetchOneCell();
    $globals->change_dynamic_config(array('NbIns' => $cnt));
}

function update_NbValid()
{
    global $globals;
    $res = XDB::query("SELECT  COUNT(*)
                         FROM  requests");
    $globals->change_dynamic_config(array('NbValid' => $res->fetchOneCell()));
}

function update_NbNotifs()
{
    require_once 'notifs.inc.php';
    $n = select_notifs(false, S::i('uid'), S::v('watch_last'), false);
    $_SESSION['notifs'] = $n->numRows();
}

// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
?>
Commit	Line	Data
0337d704	1	<?php
0337d704	2	/***************************************************************************
179afa7f	3	* Copyright (C) 2003-2008 Polytechnique.org *
0337d704	4	* http://opensource.polytechnique.org/ *
	5	* *
	6	* This program is free software; you can redistribute it and/or modify *
	7	* it under the terms of the GNU General Public License as published by *
	8	* the Free Software Foundation; either version 2 of the License, or *
	9	* (at your option) any later version. *
	10	* *
	11	* This program is distributed in the hope that it will be useful, *
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of *
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
	14	* GNU General Public License for more details. *
	15	* *
	16	* You should have received a copy of the GNU General Public License *
	17	* along with this program; if not, write to the Free Software *
	18	* Foundation, Inc., *
	19	* 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
	20	***************************************************************************/
	21
db3bd146	22	function quoted_printable_encode($input, $line_max = 76)
db3bd146	23	{
0337d704	24	$lines = preg_split("/(?:\r\n\|\r\|\n)/", $input);
	25	$eol = "\n";
	26	$linebreak = "=0D=0A=\n ";
	27	$escape = "=";
	28	$output = "";
	29
	30	foreach ($lines as $j => $line) {
d36e55a1	31	$linlen = strlen($line);
	32	$newline = "";
	33	for($i = 0; $i < $linlen; $i++) {
	34	$c = $line{$i};
	35	$dec = ord($c);
	36	if ( ($dec == 32) && ($i == ($linlen - 1)) ) {
	37	// convert space at eol only
	38	$c = "=20";
	39	} elseif ( ($dec == 61) \|\| ($dec < 32 ) \|\| ($dec > 126) ) {
	40	// always encode "\t", which is not required
	41	$c = $escape.strtoupper(sprintf("%02x",$dec));
	42	}
	43	if ( (strlen($newline) + strlen($c)) >= $line_max ) { // CRLF is not counted
	44	$output .= $newline.$escape.$eol;
	45	$newline = " ";
	46	}
	47	$newline .= $c;
	48	} // end of for
	49	$output .= $newline;
	50	if ($j<count($lines)-1) $output .= $linebreak;
0337d704	51	}
	52	return trim($output);
	53	}
	54
eaf30d86	55	/** vérifie si une adresse email convient comme adresse de redirection
0337d704	56	* @param $email l'adresse email a verifier
	57	* @return BOOL
	58	*/
d36e55a1	59	function isvalid_email_redirection($email)
d36e55a1	60	{
eaf30d86	61	return isvalid_email($email) &&
d36e55a1	62	!preg_match("/@(polytechnique\.(org\|edu)\|melix\.(org\|net)\|m4x\.org)$/", $email);
0337d704	63	}
0337d704	64
d0631eab	65	/** genere une chaine aleatoire de 22 caracteres ou moins
	66	* @param $len longueur souhaitée, 22 par défaut
	67	* @return la chaine aleatoire qui contient les caractères [A-Za-z0-9+/]
	68	*/
	69	function rand_token($len = 22)
	70	{
	71	$len = max(2, $len);
	72	$len = min(50, $len);
	73	$fp = fopen('/dev/urandom', 'r');
	74	// $len * 2 is certainly an overkill,
	75	// but HEY, reading 40 bytes from /dev/urandom is not that slow !
	76	$token = fread($fp, $len * 2);
	77	fclose($fp);
	78	$token = base64_encode($token);
	79	$token = preg_replace("![Il10O+/]!", "", $token);
	80	$token = substr($token,0,$len);
	81	return $token;
	82	}
	83
	84	/** genere une chaine aleatoire convenable pour une url
	85	* @param $len longueur souhaitée, 22 par défaut
eaf30d86	86	* @return la chaine aleatoire
d0631eab	87	*/
	88	function rand_url_id($len = 22)
	89	{
	90	return rand_token($len);
	91	}
	92
	93
	94	/** genere une chaine aleatoire convenable pour un mot de passe
	95	* @return la chaine aleatoire
	96	*/
	97	function rand_pass()
	98	{
	99	return rand_token(8);
	100	}
	101
a14159bf	102	/** Remove accent from a string and replace them by the nearest letter
	103	*/
	104	global $lc_convert, $uc_convert;
	105	$lc_convert = array('é' => 'e', 'è' => 'e', 'ë' => 'e', 'ê' => 'e',
d36e55a1	106	'á' => 'a', 'à' => 'a', 'ä' => 'a', 'â' => 'a', 'å' => 'a', 'ã' => 'a',
	107	'ï' => 'i', 'î' => 'i', 'ì' => 'i', 'í' => 'i',
	108	'ô' => 'o', 'ö' => 'o', 'ò' => 'o', 'ó' => 'o', 'õ' => 'o', 'ø' => 'o',
	109	'ú' => 'u', 'ù' => 'u', 'û' => 'u', 'ü' => 'u',
	110	'ç' => 'c', 'ñ' => 'n');
eaf30d86 PH	111	$uc_convert = array('É' => 'E', 'È' => 'E', 'Ë' => 'E', 'Ê' => 'E',
	112	'Á' => 'A', 'À' => 'A', 'Ä' => 'A', 'Â' => 'A', 'Å' => 'A', 'Ã' => 'A',
	113	'Ï' => 'I', 'Î' => 'I', 'Ì' => 'I', 'Í' => 'I',
	114	'Ô' => 'O', 'Ö' => 'O', 'Ò' => 'O', 'Ó' => 'O', 'Õ' => 'O', 'Ø' => 'O',
	115	'Ú' => 'U', 'Ù' => 'U', 'Û' => 'U', 'Ü' => 'U',
d36e55a1	116	'Ç' => 'C', 'Ñ' => 'N');
a14159bf	117
	118	function replace_accent($string)
	119	{
	120	global $lc_convert, $uc_convert;
	121	$string = strtr($string, $lc_convert);
	122	return strtr($string, $uc_convert);
	123	}
	124
a11b5424	125	/** creates a username from a first and last name
d36e55a1	126	*
	127	* @param $prenom the firstname
	128	* @param $nom the last name
	129	*
	130	* return STRING the corresponding username
	131	*/
	132	function make_username($prenom,$nom)
	133	{
a11b5424	134	/* on traite le prenom */
	135	$prenomUS=replace_accent(trim($prenom));
	136	$prenomUS=stripslashes($prenomUS);
	137
	138	/* on traite le nom */
	139	$nomUS=replace_accent(trim($nom));
	140	$nomUS=stripslashes($nomUS);
	141
	142	// calcul du login
	143	$username = strtolower($prenomUS.".".$nomUS);
	144	$username = str_replace(" ","-",$username);
	145	$username = str_replace("'","",$username);
	146	return $username;
	147	}
	148
a7de4ef7	149	/* Un soundex en français posté par Frédéric Bouchery
	150	Voici une adaptation en PHP de la fonction soundex2 francisée de Frédéric BROUARD (http://sqlpro.developpez.com/Soundex/).
	151	C'est une bonne démonstration de la force des expressions régulières compatible Perl.
d36e55a1	152	trouvé sur http://expreg.com/voirsource.php?id=40&type=Chaines%20de%20caract%E8res */
0337d704	153	function soundex_fr($sIn)
94f6c381	154	{
	155	static $convVIn, $convVOut, $convGuIn, $convGuOut, $accents;
	156	if (!isset($convGuIn)) {
d36e55a1	157	global $uc_convert, $lc_convert;
33a55e8d FB	158	$convGuIn = array( 'GUI', 'GUE', 'GA', 'GO', 'GU', 'SCI', 'SCE', 'SC', 'CA', 'CO',
	159	'CU', 'QU', 'Q', 'CC', 'CK', 'G', 'ST', 'PH');
	160	$convGuOut = array( 'KI', 'KE', 'KA', 'KO', 'K', 'SI', 'SE', 'SK', 'KA', 'KO',
	161	'KU', 'K', 'K', 'K', 'K', 'J', 'T', 'F');
393137f9	162	$convVIn = array( '/E?(AU)/', '/([EA])?[UI]([NM])([^EAIOUY]\|$)/', '/[AE]O?[NM]([^AEIOUY]\|$)/',
d36e55a1	163	'/[EA][IY]([NM]?[^NM]\|$)/', '/(^\|[^OEUIA])(OEU\|OE\|EU)([^OEUIA]\|$)/', '/OI/',
d36e55a1	164	'/(ILLE?\|I)/', '/O(U\|W)/', '/O[NM]($\|[^EAOUIY])/', '/(SC\|S\|C)H/',
33a55e8d	165	'/([^AEIOUY1])[^AEIOUYLKTPNR]([UAO])([^AEIOUY])/', '/([^AEIOUY]\|^)([AUO])[^AEIOUYLKTP]([^AEIOUY1])/', '/^KN/',
d36e55a1	166	'/^PF/', '/C([^AEIOUY]\|$)/',
1c428347	167	'/C/', '/Z$/', '/(?<!^)Z+/', '/ER$/', '/H/', '/W/');
94f6c381	168	$convVOut = array( 'O', '1\3', 'A\1',
d36e55a1	169	'E\1', '\1E\3', 'O',
	170	'Y', 'U', 'O\1', '9',
	171	'\1\2\3', '\1\2\3', 'N',
	172	'F', 'K\1',
1c428347	173	'S', 'SE', 'S', 'E', '', 'V');
d36e55a1	174	$accents = $uc_convert + $lc_convert;
94f6c381	175	$accents['Ç'] = 'S';
	176	$accents['¿'] = 'E';
	177	}
eaf30d86 PH	178	// Si il n'y a pas de mot, on sort immédiatement
	179	if ( $sIn === '' ) return ' ';
	180	// On supprime les accents
d36e55a1	181	$sIn = strtr( $sIn, $accents);
eaf30d86 PH	182	// On met tout en minuscule
	183	$sIn = strtoupper( $sIn );
	184	// On supprime tout ce qui n'est pas une lettre
	185	$sIn = preg_replace( '`[^A-Z]`', '', $sIn );
	186	// Si la chaîne ne fait qu'un seul caractère, on sort avec.
	187	if ( strlen( $sIn ) === 1 ) return $sIn . ' ';
	188	// on remplace les consonnances primaires
94f6c381	189	$sIn = str_replace( $convGuIn, $convGuOut, $sIn );
	190	// on supprime les lettres répétitives
	191	$sIn = preg_replace( '`(.)\1`', '$1', $sIn );
	192	// on réinterprète les voyelles
	193	$sIn = preg_replace( $convVIn, $convVOut, $sIn);
eaf30d86	194	// on supprime les terminaisons T, D, S, X (et le L qui précède si existe)
33a55e8d	195	$sIn = preg_replace( '`L?[TDX]S?$`', '', $sIn );
94f6c381	196	// on supprime les E, A et Y qui ne sont pas en première position
94f6c381	197	$sIn = preg_replace( '`(?!^)Y([^AEOU]\|$)`', '\1', $sIn);
393137f9	198	$sIn = preg_replace( '`(?!^)[EA]`', '', $sIn);
eaf30d86	199	return substr( $sIn . ' ', 0, 4);
0337d704	200	}
0337d704	201
e2fcbef1	202	/** met les majuscules au debut de chaque atome du prénom
	203	* @param $prenom le prénom à formater
	204	* return STRING le prénom avec les majuscules
	205	*/
94f6c381	206	function make_firstname_case($prenom)
94f6c381	207	{
d36e55a1	208	$prenom = strtolower($prenom);
d36e55a1	209	$pieces = explode('-',$prenom);
e2fcbef1	210
d36e55a1	211	foreach ($pieces as $piece) {
	212	$subpieces = explode("'",$piece);
	213	$usubpieces="";
	214	foreach ($subpieces as $subpiece)
	215	$usubpieces[] = ucwords($subpiece);
	216	$upieces[] = implode("'",$usubpieces);
	217	}
	218	return implode('-',$upieces);
e2fcbef1	219	}
	220
	221
d36e55a1	222	function make_forlife($prenom, $nom, $promo)
d36e55a1	223	{
0337d704	224	$prenomUS = replace_accent(trim($prenom));
	225	$nomUS = replace_accent(trim($nom));
	226
	227	$forlife = strtolower($prenomUS.".".$nomUS.".".$promo);
	228	$forlife = str_replace(" ","-",$forlife);
	229	$forlife = str_replace("'","",$forlife);
	230	return $forlife;
	231	}
5480a216	232
9797734d FB	233	/** Convert ip to uint (to store it in a database)
	234	*/
	235	function ip_to_uint($ip)
	236	{
61c98f4b	237	$part = explode('.', $ip);
ba34dc61 FB	238	if (count($part) != 4) {
	239	return null;
	240	}
61c98f4b FB	241	$v = 0;
	242	$fact = 0x1000000;
	243	for ($i = 0 ; $i < 4 ; ++$i) {
	244	$v += $fact * $part[$i];
	245	$fact >>= 8;
	246	}
	247	return $v;
9797734d FB	248	}
	249
	250	/** Convert uint to ip (to build a human understandable ip)
	251	*/
	252	function uint_to_ip($uint)
	253	{
bcf05105	254	return long2ip($uint);
9797734d FB	255	}
	256
	257
	258	/******************************************************************************
	259	* Security functions
	260	*****************************************************************************/
	261
5480a216	262	function check_ip($level)
a2446af5	263	{
a2446af5	264	if (empty($_SERVER['REMOTE_ADDR'])) {
e76421d8	265	return false;
8f61b4d5	266	}
8f61b4d5	267	if (empty($_SESSION['check_ip'])) {
e76421d8	268	$ips = array();
	269	if (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
	270	$ips = explode(',', $_SERVER['HTTP_X_FORWARDED_FOR']);
	271	}
	272	$ips[] = $_SERVER['REMOTE_ADDR'];
	273	foreach ($ips as &$ip) {
61c98f4b	274	$ip = '(ip & mask) = (' . ip_to_uint($ip) . '& mask)';
e76421d8	275	}
61c98f4b	276	$res = XDB::query('SELECT state, description
d36e55a1	277	FROM ip_watch
	278	WHERE ' . implode(' OR ', $ips) . '
	279	ORDER BY state DESC');
8f61b4d5	280	if ($res->numRows()) {
61c98f4b FB	281	$state = $res->fetchOneAssoc();
	282	$_SESSION['check_ip'] = $state['state'];
	283	$_SESSION['check_ip_desc'] = $state['description'];
8f61b4d5	284	} else {
	285	$_SESSION['check_ip'] = 'safe';
	286	}
	287	}
5480a216	288	$test = array();
5480a216	289	switch ($level) {
8f61b4d5	290	case 'unsafe': $test[] = 'unsafe';
	291	case 'dangerous': $test[] = 'dangerous';
	292	case 'ban': $test[] = 'ban'; break;
5480a216	293	default: return false;
5480a216	294	}
8f61b4d5	295	return in_array($_SESSION['check_ip'], $test);
5480a216	296	}
5480a216	297
0d693e2f	298	function check_email($email, $message)
	299	{
	300	$res = XDB::query("SELECT state, description
d36e55a1	301	FROM emails_watch
d36e55a1	302	WHERE state != 'safe' AND email = {?}", $email);
0d693e2f	303	if ($res->numRows()) {
	304	send_warning_mail($message);
	305	return true;
	306	}
	307	return false;
	308	}
	309
0be07aa6	310	function check_account()
0be07aa6	311	{
bfa821a0	312	return S::v('watch_account');
0be07aa6	313	}
0be07aa6	314
ccdbc270	315	function check_redirect($red = null)
	316	{
	317	require_once 'emails.inc.php';
	318	if (is_null($red)) {
	319	$red = new Redirect(S::v('uid'));
eaf30d86	320	}
45282934 VZ	321	if ($red->get_uid() == S::v('uid')) {
	322	$_SESSION['no_redirect'] = !$red->other_active('');
	323	$_SESSION['mx_failures'] = $red->get_broken_mx();
	324	}
ccdbc270	325	}
ccdbc270	326
5480a216	327	function send_warning_mail($title)
5480a216	328	{
8932382b	329	global $globals;
5480a216	330	$mailer = new PlMailer();
1d55fe45	331	$mailer->setFrom("webmaster@" . $globals->mail->domain);
d7dd70be	332	$mailer->addTo($globals->core->admin_email);
2efe5355	333	$mailer->setSubject("[Plat/al Security Alert] $title");
5480a216	334	$mailer->setTxtBody("Identifiants de session :\n" . var_export($_SESSION, true) . "\n\n"
d36e55a1	335	."Identifiants de connexion :\n" . var_export($_SERVER, true));
ef42a9d6	336	$mailer->send();
5480a216	337	}
5480a216	338
05d5ce15 FB	339	function kill_sessions()
	340	{
	341	assert(S::has_perms());
	342	shell_exec('sudo -u root ' . dirname(dirname(__FILE__)) . '/bin/kill_sessions.sh');
	343	}
	344
9797734d FB	345
	346	/******************************************************************************
	347	* Dynamic configuration update/edition stuff
	348	*****************************************************************************/
	349
328d2791 PC	350	function update_NbIns()
	351	{
	352	global $globals;
84868ee9 FB	353	$res = XDB::query("SELECT COUNT(*)
	354	FROM auth_user_md5
	355	WHERE perms IN ('admin','user') AND deces=0");
328d2791 PC	356	$cnt = $res->fetchOneCell();
	357	$globals->change_dynamic_config(array('NbIns' => $cnt));
	358	}
	359
84868ee9 FB	360	function update_NbValid()
	361	{
	362	global $globals;
	363	$res = XDB::query("SELECT COUNT(*)
	364	FROM requests");
	365	$globals->change_dynamic_config(array('NbValid' => $res->fetchOneCell()));
	366	}
	367
c557ed51 FB	368	function update_NbNotifs()
	369	{
	370	require_once 'notifs.inc.php';
	371	$n = select_notifs(false, S::i('uid'), S::v('watch_last'), false);
	372	$_SESSION['notifs'] = $n->numRows();
	373	}
	374
a7de4ef7	375	// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
0337d704	376	?>