projects / platal.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Fixes variable use.
[platal.git] / classes / plpage.php
1 <?php
2 /***************************************************************************
3 * Copyright (C) 2003-2011 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
22 if (!@include_once 'smarty/libs/Smarty.class.php') {
23 require_once 'smarty/Smarty.class.php';
24 }
25
26 abstract class PlPage extends Smarty
27 {
28 private $_page_type;
29 private $_tpl;
30 private $_errors;
31 private $_failure;
32 private $_jsonVars;
33
34 // {{{ function PlPage()
35
36 public function __construct()
37 {
38 parent::Smarty();
39
40 global $globals;
41
42 $this->caching = false;
43 $this->config_overwrite = false;
44 $this->use_sub_dirs = false;
45 $this->template_dir = $globals->spoolroot . '/templates/';
46 $this->compile_dir = $globals->spoolroot . '/spool/templates_c/';
47 array_unshift($this->plugins_dir,
48 $globals->spoolroot . '/core/plugins/',
49 $globals->spoolroot . '/plugins/');
50 $this->config_dir = $globals->spoolroot . '/configs/';
51
52 $this->compile_check = !empty($globals->debug) || $globals->smarty_autocompile;
53
54 $this->_errors = array('errors' => array());
55 $this->_jsonVars = array();
56 $this->_failure = false;
57
58 if ($globals->mode != 'rw') {
59 $this->trigError("En raison d'une maintenance, une partie des fonctionnalités du site est"
60 . " actuellement désactivée, en particulier aucune donnée ne sera sauvegardée");
61 }
62 $this->register_prefilter('at_to_globals');
63 }
64
65 // }}}
66 // {{{ function changeTpl()
67
68 public function changeTpl($tpl, $type = SKINNED)
69 {
70 $this->_tpl = $tpl;
71 $this->_page_type = $type;
72 $this->assign('pl_tpl', $tpl);
73 }
74
75 // }}}
76 // {{{ function getCoreTpl()
77
78 public static function getCoreTpl($tpl)
79 {
80 global $globals;
81 return $globals->spoolroot . '/core/templates/' . $tpl;
82 }
83
84 // }}}
85 // {{{ function coreTpl()
86
87 /** Use a template from the core.
88 */
89 public function coreTpl($tpl, $type = SKINNED)
90 {
91 global $globals;
92 $this->changeTpl(self::getCoreTpl($tpl), $type);
93 }
94
95 // }}}
96 // {{{ function raw()
97
98 public function raw()
99 {
100 global $globals;
101 $this->assign('globals', $globals);
102 return $this->fetch($this->_tpl);
103 }
104
105 // }}}
106 // {{{ function _run()
107
108 protected function _run($skin)
109 {
110 global $globals, $platal, $TIME_BEGIN;
111
112 Platal::session()->close();
113
114 $this->register_prefilter('trimwhitespace');
115 $this->register_prefilter('form_force_encodings');
116 $this->register_prefilter('wiki_include');
117 $this->register_prefilter('core_include');
118 $this->register_prefilter('if_rewrites');
119 $this->assign('pl_triggers', $this->_errors);
120 $this->assign('pl_errors', $this->nb_errs());
121 $this->assign('pl_failure', $this->_failure);
122 $this->assign_by_ref('platal', $platal);
123 $this->assign_by_ref('globals', $globals);
124
125 if (Env::has('json') && count($this->_jsonVars)) {
126 return $this->jsonDisplay();
127 }
128
129 $display = Env::s('display');
130 if ($display == 'light' && $this->_page_type == SKINNED) {
131 $this->_page_type = SIMPLE;
132 } elseif ($display == 'raw') {
133 $this->_page_type = NO_SKIN;
134 } elseif ($display == 'full') {
135 $this->_page_type = SKINNED;
136 }
137
138 if ($this->_page_type == SIMPLE) {
139 $this->assign('simple', true);
140 } else {
141 $this->assign('simple', false);
142 }
143
144 switch ($this->_page_type) {
145 case NO_SKIN:
146 if (!($globals->debug & DEBUG_SMARTY)) {
147 error_reporting(0);
148 }
149 $this->display($this->_tpl);
150 exit;
151
152 case SIMPLE:
153 case SKINNED:
154 $this->register_modifier('escape_html', 'escape_html');
155 $this->default_modifiers = Array('@escape_html');
156 }
157 if (S::i('auth') <= AUTH_PUBLIC) {
158 $this->register_outputfilter('hide_emails');
159 }
160 header("Accept-Charset: utf-8");
161 if (Env::v('forceXml')) {
162 pl_content_headers("text/xml");
163 }
164
165 if (!$globals->debug) {
166 error_reporting(0);
167 $this->display($skin);
168 pl_print_errors(true);
169 exit;
170 }
171
172 $this->assign('validate', true);
173 if (!($globals->debug & DEBUG_SMARTY)) {
174 error_reporting(0);
175 }
176 $START_SMARTY = microtime(true);
177 $result = $this->fetch($skin);
178 $ttime = sprintf('Temps total: %.02fs (Smarty %.02fs) - Mémoire totale : %dKo<br />',
179 microtime(true) - $TIME_BEGIN, microtime(true) - $START_SMARTY,
180 memory_get_peak_usage(true) / 1024);
181 if ($globals->debug & DEBUG_BT) {
182 PlBacktrace::clean();
183 $this->assign_by_ref('backtraces', PlBacktrace::$bt);
184 $result = str_replace('@@BACKTRACE@@',
185 $this->fetch(self::getCoreTpl('backtrace.tpl')),
186 $result);
187 } else {
188 $result = str_replace('@@BACKTRACE@@', '', $result);
189 }
190
191 $replc = "<span class='erreur'>VALIDATION HTML INACTIVE</span><br />";
192 if ($globals->debug & DEBUG_VALID) {
193 global $platal;
194 $fd = fopen($this->compile_dir."/valid.html","w");
195 fwrite($fd, $result);
196 fclose($fd);
197
198 $replc = '<span id="html_valid"><span style="color: #860">VALIDATION HTML EN COURS</span></span>'
199 . '<script type="text/javascript">$("#html_valid").updateHtml("validator");</script>'
200 . '<br />';
201 }
202
203 echo str_replace("@HOOK@", $ttime.$replc, $result);
204 exit;
205 }
206
207 abstract public function run();
208
209 // }}}
210 // {{{ function nb_errs()
211
212 public function nb_errs()
213 {
214 return count($this->_errors['errors']);
215 }
216
217 // }}}
218 // {{{ function trig()
219
220 private function trig($msg, $type = 'errors')
221 {
222 if (!isset($this->_errors[$type])) {
223 $this->_errors[$type] = array();
224 }
225 $this->_errors[$type][] = $msg;
226 }
227
228 public function trigError($msg)
229 {
230 $this->trig($msg, 'errors');
231 }
232
233 public function trigWarning($msg)
234 {
235 $this->trig($msg, 'warnings');
236 }
237
238 public function trigSuccess($msg)
239 {
240 $this->trig($msg, 'success');
241 }
242
243 // }}}
244 // {{{ function trigRedirect
245
246 // Acts as trig(), but replaces the template with a simple one displaying
247 // the error messages and a "continue" link.
248 private function trigRedirect($msg, $continue, $type = 'errors')
249 {
250 $this->trig($msg, $type);
251 $this->coreTpl('msgredirect.tpl');
252 $this->assign('continue', $continue);
253 $this->run();
254 }
255
256 public function trigErrorRedirect($msg, $continue)
257 {
258 $this->trigRedirect($msg, $continue, 'errors');
259 }
260
261 public function trigWarningRedirect($msg, $continue)
262 {
263 $this->trigRedirect($msg, $continue, 'warnings');
264 }
265
266 public function trigSuccessRedirect($msg, $continue)
267 {
268 $this->trigRedirect($msg, $continue, 'success');
269 }
270
271 // }}}
272 // {{{ function kill()
273
274 public function kill($msg, $type = 'errors')
275 {
276 // PHP is used on command line... do not run the whole page stuff.
277 if (php_sapi_name() == 'cli') {
278 echo $msg . "\n";
279 exit(-1);
280 }
281
282 global $platal;
283
284 $this->trig($msg, $type);
285 $this->_failure = true;
286 $this->run();
287 }
288
289 public function killError($msg)
290 {
291 $this->kill($msg, 'errors');
292 }
293
294 public function killWarning($msg)
295 {
296 $this->kill($msg, 'warnings');
297 }
298
299 public function killSuccess($msg)
300 {
301 $this->kill($msg, 'success');
302 }
303
304 // }}}
305 // {{{ function setTitle
306
307 public function setTitle($title)
308 {
309 global $globals;
310 if (isset($globals->core->sitename)) {
311 $title = $globals->core->sitename . ' :: ' . $title;
312 }
313 $this->assign('pl_title', $title);
314 }
315
316 // }}}
317 // {{{ function addJsLink
318
319 public function addJsLink($filename, $static_content = true)
320 {
321 if ($static_content) {
322 $this->append('pl_js', pl_static_content_path("javascript/", $filename));
323 } else {
324 $this->append('pl_js', "javascript/$filename");
325 }
326 }
327
328 // }}}
329 // {{{ function addCssLink
330
331 public function addCssLink($path)
332 {
333 $this->append('pl_css', $path);
334 }
335
336 // }}}
337 // {{{ function addLink
338
339 public function addLink($rel, $path)
340 {
341 $this->append('pl_link', array('rel' => $rel, 'href' => $path));
342 }
343
344
345 // }}}
346 // {{{ function addCssInline
347
348 public function addCssInline($css)
349 {
350 if (!empty($css)) {
351 $this->append('pl_inline_css', $css);
352 }
353 }
354
355 // }}}
356 // {{{ function setRssLink
357
358 public function setRssLink($title, $path)
359 {
360 $this->assign('pl_rss', array('title' => $title, 'href' => $path));
361 }
362
363 // }}}
364 // {{{ function jsonDisplay
365 protected function jsonDisplay()
366 {
367 pl_content_headers("text/javascript");
368 if (!empty(PlBacktrace::$bt)) {
369 $this->jsonAssign('pl_backtraces', PlBacktrace::$bt);
370 }
371 array_walk_recursive($this->_jsonVars, "escape_XDB");
372 $jsonbegin = Env::v('jsonBegin');
373 $jsonend = Env::v('jsonEnd');
374 if (Env::has('jsonVar')) {
375 $jsonbegin = Env::v('jsonVar').' = ';
376 $jsonend = ';';
377 } elseif (Env::has('jsonFunc')) {
378 $jsonbegin = Env::v('jsonFunc').'(';
379 $jsonend = ');';
380 }
381 echo $jsonbegin, json_encode($this->_jsonVars), $jsonend;
382 exit;
383 }
384 // }}}
385
386 public function runJSon()
387 {
388 pl_content_headers("text/javascript");
389 if (!empty(PlBacktrace::$bt)) {
390 $this->jsonAssign('pl_backtraces', PlBacktrace::$bt);
391 }
392 echo json_encode($this->_jsonVars);
393 exit;
394 }
395
396 // {{{ function jsonAssign
397 public function jsonAssign($var, $value)
398 {
399 $this->_jsonVars[$var] = $value;
400 }
401
402 // }}}
403 }
404
405 function escape_XDB(&$item, $key)
406 {
407 if ($item instanceof XDBIterator) {
408 $expanded = array();
409 while ($a = $item->next()) {
410 $expanded[] = $a;
411 }
412 $item = $expanded;
413 }
414 }
415
416 // {{{ function escape_html ()
417
418 /**
419 * default smarty plugin, used to auto-escape dangerous html.
420 *
421 * < --> &lt;
422 * > --> &gt;
423 * " --> &quot;
424 * & not followed by some entity --> &amp;
425 */
426 function escape_html($string)
427 {
428 if (is_string($string)) {
429 return htmlspecialchars($string, ENT_QUOTES, 'UTF-8');
430 } else {
431 return $string;
432 }
433 }
434
435 // }}}
436 // {{{ function at_to_globals()
437
438 /**
439 * helper
440 */
441
442 function _to_globals($s) {
443 global $globals;
444 $t = explode('.',$s);
445 if (count($t) == 1) {
446 return var_export($globals->$t[0],true);
447 } else {
448 return var_export($globals->$t[0]->$t[1],true);
449 }
450 }
451
452 /**
453 * compilation plugin used to import $globals confing through #globals.foo.bar# directives
454 */
455
456 function at_to_globals($tpl_source, $smarty)
457 {
458 return preg_replace('/#globals\.([a-zA-Z0-9_.]+?)#/e', '_to_globals(\'\\1\')', $tpl_source);
459 }
460
461 // }}}
462 // {{{ function trimwhitespace
463
464 function trimwhitespace($source, $smarty)
465 {
466 $tags = '(script|pre|textarea)';
467 preg_match_all("!<$tags.*?>.*?</(\\1)>!ius", $source, $tagsmatches);
468 $source = preg_replace("!<$tags.*?>.*?</(\\1)>!ius", "&&&tags&&&", $source);
469
470 // remove all leading spaces, tabs and carriage returns NOT
471 // preceeded by a php close tag.
472 $source = preg_replace('/((?<!\?>)\n)[\s]+/m', '\1', $source);
473 $source = preg_replace("!&&&tags&&&!e", 'array_shift($tagsmatches[0])', $source);
474
475 return $source;
476 }
477
478 // }}}
479 // {{{ function wiki_include
480
481 function wiki_include($source, $smarty)
482 {
483 global $globals;
484 return preg_replace('/\{include( [^}]*)? wiki=([^} ]+)(.*?)\}/ui',
485 '{include\1 file="' . $globals->spoolroot . '/spool/wiki.d/cache_\2.tpl"\3 included=1}',
486 $source);
487 }
488
489 function core_include($source, $smarty)
490 {
491 global $globals;
492 return preg_replace('/\{include( [^}]*)? core=([^} ]+)(.*?)\}/ui',
493 '{include\1 file="' . $globals->spoolroot . '/core/templates/\2"\3}',
494 $source);
495 }
496
497 // }}}
498 //{{{ function hasPerm
499
500 function if_rewrites($source, $smarty)
501 {
502 $perms = 'isset($smarty.session.user|smarty:nodefaults) && $smarty.session.user';
503 return preg_replace(array('/\{(else)?if([^}]*) (\!?)hasPerms?\(([^)]+)\)([^}]*)\}/',
504 '/\{(else)?if([^}]*) (\!?)t\(([^)]+)\)([^}]*)\}/'),
505 array('{\1if\2 \3(' . $perms . '->checkPerms(\4))\5}',
506 '{\1if\2 \3(isset(\4|smarty:nodefaults) && (\4|smarty:nodefaults))\5}'),
507 $source);
508 }
509
510 // }}}
511 // {{{
512
513 function form_force_encodings($source, $smarty)
514 {
515 return preg_replace('/<form[^\w]/',
516 '\0 accept-charset="utf-8" ',
517 $source);
518 }
519
520 // }}}
521 // {{{ function hide_emails
522
523 function _hide_email($source)
524 {
525 $source = str_replace("\n", '', $source);
526 return '<script type="text/javascript">//<![CDATA[' . "\n" .
527 'Nix.decode("' . addslashes(str_rot13($source)) . '");' . "\n" .
528 '//]]></script>';
529 }
530
531 function hide_emails($source, $smarty)
532 {
533 if (!strpos($source, '@')) {
534 return $source;
535 }
536
537 //prevent email replacement in <script> and <textarea>
538 $tags = '(script|textarea|select)';
539 preg_match_all("!<$tags.*?>.*?</(\\1)>!ius", $source, $tagsmatches);
540 $source = preg_replace("!<$tags.*?>.*?</(\\1)>!ius", "&&&tags&&&", $source);
541
542 //catch all emails in <a href="mailto:...">
543 preg_match_all("!<a[^>]+href=[\"'][^\"']*[-a-z0-9+_.]+@[-a-z0-9_.]+[^\"']*[\"'].*?>.*?</a>!ius", $source, $ahref);
544 $source = preg_replace("!<a[^>]+href=[\"'][^\"']*[-a-z0-9+_.]+@[-a-z0-9_.]+[^\"']*[\"'].*?>.*?</a>!ius", '&&&ahref&&&', $source);
545
546 //prevant replacement in tag attributes
547 preg_match_all("!<[^>]+[-a-z0-9_+.]+@[-a-z0-9_.]+.+?>!ius", $source, $misc);
548 $source = preg_replace("!<[^>]+[-a-z0-9_+.]+@[-a-z0-9_.]+.+?>!ius", '&&&misc&&&', $source);
549
550 //catch !
551 $source = preg_replace('!([-a-z0-9_+.]+@[-a-z0-9_.]+)!iue', '_hide_email("\1")', $source);
552 $source = preg_replace('!&&&ahref&&&!e', '_hide_email(array_shift($ahref[0]))', $source);
553
554 // restore data
555 $source = preg_replace('!&&&misc&&&!e', 'array_shift($misc[0])', $source);
556 $source = preg_replace("!&&&tags&&&!e", 'array_shift($tagsmatches[0])', $source);
557
558 return $source;
559 }
560
561 // }}}
562
563 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
564 ?>
plat/al