<?php /* Drukkar, a small blogging platform Copyright (C) 2011-2012 Danyil Bohdan This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ /** Converts a list into a string that contains the list's items, each enclosed within tags. * @param array $list a list of items to convert * @param string $left the tag to put on the left of each item * @param string $right the tag to put on the right of each item * @return string */ function list_to_xml($list, $left, $right) { $result = ""; foreach (explode("\r\n", rtrim($list)) as $i) { if (strlen($i) > 0) $result = $result . $left . htmlspecialchars($i) . $right; } return $result; } /** Returns all of entry's files. * @param object $entry entry as a SimpleXMLElement object * @return array */ function entry_files($entry) { $files = array(); foreach ($entry as $key => $value) if (stripos(strtolower($key), "file") === 0) $files[] = $value; return $files; } /** Checks whether an entry has a specific tag * @param string $what the tag to find * @param array $where entry as a SimpleXMLElement object * @return boolean */ function entry_find_tag($what, $where) { $found = 0; foreach ($where->tag as $key => $value) if ((string) $value === (string) $what) $found = 1; return $found; } /** Formats an entry for output * @param object $entry entry as a SimpleXMLElement object * @param string $entry_id given entry's id that's used for linking to it * @param string $link_target target for the link to view this particular entry * @return string */ function entry_format($entry, $entry_id, $link_target = "index.php", $base_dir = "/", $files_dir = "files/") { $files = ""; $tags = ""; foreach ($entry->file as $file) { $files = $files . "<a href=\"" . $base_dir . $files_dir . urlencode($file) . "\">" . htmlspecialchars($file) . "</a><br />"; } foreach ($entry->tag as $tag) { if (!((string) $tag === "_excluded" || (string) $tag === "_hidden")) $tags = $tags . "<a href=\"index.php?tag=" . urlencode($tag) . "\">" . htmlspecialchars($tag) . "</a>, "; } $tags = substr($tags, 0, -2); return "<h2 class=\"entrytitle\"><a class=\"titlelink\" href=\"$link_target?post=" . htmlspecialchars($entry_id) . ($GLOBALS['blog_entry_links_with_titles'] != 0 ? "-" . sanitize_file_name(strip_tags($entry->title)) : "") ."\">" . ((string) $entry->format === "html" ? $entry->title : htmlspecialchars($entry->title)) . "</a></h2><div class=\"text\">" . ((string) $entry->format === "html" ? $entry->text : htmlspecialchars($entry->text)) . "</div><p class=\"files\">$files</p><p class=\"date\">" . date($GLOBALS['blog_date_format'], (int) $entry->date) . "</p>" . (strlen($tags) != 0 ? "<p class=\"tags\">Tags: $tags</p>" : ""); } /** Sanitizes a file's name replacing special symbols with dashes * @param string $string the string to be sanitized * @return string */ function sanitize_file_name($string, $language = "ukrainian") { $string = preg_replace('/[^\w\-~_\.]+/u', '-', transliterate(mb_strtolower($string, 'UTF-8'), $language)); return preg_replace('/--+/u', '-', $string); } /** Transliterates Cyrillic into Latin script * @param string $string the string to be transliterated * @param string $language chooses between Ukrainian and Russian transliteration * @return string */ function transliterate($string = '', $language = "ukrainian") { $ukrainian = (string) $language === "ukrainian"; $string=strtr($string, array(" є" => " ye", " ї" => " yi", " ю" => " yu", " я" => " ya", " й" => " y", "є" => "ie", "ї" => "i", "ю" => ($ukrainian ? "iu" : "yu"), "я" => ($ukrainian ? "ia" : "ya"), "й" => ($ukrainian ? "i" : "y"), "ё" => "io", "ье" => "ye", "ж" => "zh", "х" => "kh", "ц" => "ts", "ч" => "ch", "ш" => "sh", "щ" => "shch", "ь" => "", "ъ" => "", )); $string=strtr($string, array("а" => "a", "б" => "b", "в" => "v", "г" => ($ukrainian ? "h" : "g"), "ґ" => "g", "д" => "d", "е" => "e", "з" => "z", "и" => ($ukrainian ? "y" : "i"), "і" => "i", "к" => "k", "л" => "l", "м" => "m", "н" => "n", "о" => "o", "п" => "p", "р" => "r", "с" => "s", "т" => "t", "у" => "u", "ф" => "f", "ы" => "y", "э" => "e", )); return $string; } /** Handles the newly-uploaded files in a uniform way * @param array $uploaded_files a $_FILES construction to be processed * @param string $translit_language transliteration language * @param string $directory target directory */ function process_uploaded_files($uploaded_files, $translit_language = 'ukrainian', $directory = 'files/') { $files = ""; // File list in XML foreach ($uploaded_files as $file) { if ($file['error'] !== 4) { // If a file was actually uploaded $file_name_sanitized = htmlspecialchars(basename(sanitize_file_name($file['name'], $translit_language))); // strip the the file name of all special symbols and transliterate Cyrillic into Latin script if (!file_exists($directory . $file_name_sanitized)) { if (move_uploaded_file($file['tmp_name'], $directory . $file_name_sanitized)) { printf($GLOBALS['loc_file_uploaded'] . "<br>", $file['name'], $file_name_sanitized); $files = $files . "<file name=\"" . $file['name'] . "\">$file_name_sanitized</file>"; } else { printf("<span class=\"error\">" . $GLOBALS['loc_uploading_failed'] . "</span><br>", $file['name']); } } else { printf("<span class=\"error\">" . $GLOBALS['loc_uploading_failed_file_exists'] . "</span><br>", htmlspecialchars($file['name'])); } } } return $files; } /** Converts a date represented by a formatted string into a Unix timestamp * @param string $format the format that the date is in * @param string $date_to_process self-explanatory * @param mixed $result_on_error the result to return should the coversion fail */ function string_to_time($format, $date_to_process, $result_on_error = false) { $d = date_parse_from_format($format, $date_to_process); if ($d['errors']) return $result_on_error; return mktime($d['hour'], $d['minute'], $d['second'], $d['month'], $d['day'], $d['year']); } /** Creates a new, blank blog entry */ function entry_new() { $entry = new stdClass(); $entry->title = ""; $entry->text = ""; $entry->tag = array(); $entry->file = array(); $entry->format = "text"; return $entry; } /** Loads the blog entry from an XML file * @param string $file file name */ function entry_load($file) { $entry = simplexml_load_file($file); if (!$GLOBALS['blog_entry_date_from_file_name']) { $entry->old_date = $entry->date; // Create a back-up copy from the date stored within the file itself $entry->date = string_to_time($GLOBALS['blog_file_name_format'], basename($file, ".xml")); } else { if (!$entry->date) $entry->date = filemtime($file); } $entry->date = (int) $entry->date; return $entry; } /** Saves a blog entry to an XML file * @param string $file_name file name * @param string $format either "html" or "plain" for plain text * @param string $title * @param string $text * @param string $tags * @param string $date * @param string $date_backup used when $date is malformatted */ function entry_save($file_name, $format, $title, $text, $tags, $files, $date, $date_backup) { $processed_date = string_to_time($GLOBALS['blog_date_format'], $date); if ($processed_date === false) { $processed_date = string_to_time($GLOBALS['blog_date_format'], $date_backup); printf("<span class=\"error\">" . $GLOBALS['loc_invalid_date'] . "</span><br>", htmlspecialchars($date), htmlspecialchars($date_backup)); } return file_put_contents($file_name, "<?xml version=\"1.0\" encoding=\"UTF-8\"?> <entry> <format>$format</format> <title>" . htmlspecialchars($title) . "</title> <text>" . htmlspecialchars($text) . "</text> <date>" . $processed_date . "</date> " . $files . " " . $tags . " </entry>"); } /** Processes a _GET or _POST form replacing missing data with "false" * @param array &$form * @param array $get_or_post */ function process_form(&$form, $get_or_post) { $form_new = array(); foreach ($form as $var) { $form_new[$var] = ((isset($get_or_post) && array_key_exists($var, $get_or_post)) ? $get_or_post[$var] : false); } $form = $form_new; } /** Processes a _GET or _POST form replacing missing data with "false" * @param array &$form * @param array $get_or_post */ function hash_with_salt($pass, $salt = "") { return md5(md5($pass) . $salt); } ?>

Simpan