function auth()
{
if (!empty($_GET['database'])) {
// Return unauthorized if the requested database could not be found
if (!Model\Database\select($_GET['database'])) {
return array('api_version' => 3, 'auth' => 0);
}
}
$credentials = Database::getInstance('db')->hashtable('settings')->get('username', 'fever_token');
$api_key = md5($credentials['username'] . ':' . $credentials['fever_token']);
$response = array('api_version' => 3, 'auth' => (int) (isset($_POST['api_key']) && strcasecmp($_POST['api_key'], $api_key) === 0), 'last_refreshed_on_time' => time());
return $response;
}
use PicoFarad\Router;
use PicoFarad\Response;
use PicoFarad\Request;
use PicoFarad\Session;
use PicoFarad\Template;
// Called before each action
Router\before(function ($action) {
Session\open(BASE_URL_DIRECTORY, SESSION_SAVE_PATH, 0);
// Select the requested database either from post param database or from the
// session variable. If it fails, logout to destroy session and
// 'remember me' cookie
if (!is_null(Request\value('database')) && !Model\Database\select(Request\value('database'))) {
Model\User\logout();
Response\redirect('?action=login');
} elseif (!empty($_SESSION['database'])) {
if (!Model\Database\select($_SESSION['database'])) {
Model\User\logout();
Response\redirect('?action=login');
}
}
// These actions are considered to be safe even for unauthenticated users
$safe_actions = array('login', 'bookmark-feed', 'select-db', 'logout', 'notfound');
if (!Model\User\is_loggedin() && !in_array($action, $safe_actions)) {
if (!Model\RememberMe\authenticate()) {
Model\User\logout();
Response\redirect('?action=login');
}
} elseif (Model\RememberMe\has_cookie()) {
Model\RememberMe\refresh();
}
// Load translations
<?php
require __DIR__ . '/common.php';
if (php_sapi_name() === 'cli') {
$options = getopt('', array('limit::', 'call-interval::', 'update-interval::', 'database::'));
} else {
$options = $_GET;
}
if (!empty($options['database'])) {
if (!Model\Database\select($options['database'])) {
die("Database " . $options['database'] . " not found\r\n");
}
}
$limit = !empty($options['limit']) && ctype_digit($options['limit']) ? (int) $options['limit'] : Model\Feed\LIMIT_ALL;
$update_interval = !empty($options['update-interval']) && ctype_digit($options['update-interval']) ? (int) $options['update-interval'] : null;
$call_interval = !empty($options['call-interval']) && ctype_digit($options['call-interval']) ? (int) $options['call-interval'] : null;
if ($update_interval !== null && $call_interval !== null && $limit === Model\Feed\LIMIT_ALL && $update_interval >= $call_interval) {
$feeds_count = PicoDb\Database::getInstance('db')->table('feeds')->count();
$limit = ceil($feeds_count / ($update_interval / $call_interval));
}
Model\Feed\refresh_all($limit);
Model\Item\autoflush_read();
Model\Item\autoflush_unread();
Model\Config\write_debug();
}
Response\Redirect('?action=' . $menu . '&offset=' . $offset . '&feed_id=' . $feed_id . '#item-' . $id);
});
// Display bookmarks page
Router\get_action('bookmarks', function () {
$offset = Request\int_param('offset', 0);
$nb_items = Model\Item\count_bookmarks();
$items = Model\Item\get_bookmarks($offset, Model\Config\get('items_per_page'));
Response\html(Template\layout('bookmarks', array('favicons' => Model\Favicon\get_item_favicons($items), 'original_marks_read' => Model\Config\get('original_marks_read'), 'order' => '', 'direction' => '', 'display_mode' => Model\Config\get('items_display_mode'), 'items' => $items, 'nb_items' => $nb_items, 'offset' => $offset, 'items_per_page' => Model\Config\get('items_per_page'), 'nothing_to_read' => Request\int_param('nothing_to_read'), 'nb_unread_items' => Model\Item\count_by_status('unread'), 'menu' => 'bookmarks', 'title' => t('Bookmarks') . ' (' . $nb_items . ')')));
});
// Display bookmark feeds
Router\get_action('bookmark-feed', function () {
// Select database if the parameter is set
$database = Request\param('database');
if (!empty($database)) {
Model\Database\select($database);
}
// Check token
$feed_token = Model\Config\get('feed_token');
$request_token = Request\param('token');
if ($feed_token !== $request_token) {
Response\text('Access Forbidden', 403);
}
// Build Feed
$writer = new Atom();
$writer->title = t('Bookmarks') . ' - Miniflux';
$writer->site_url = Helper\get_current_base_url();
$writer->feed_url = $writer->site_url . '?action=bookmark-feed&token=' . urlencode($feed_token);
$bookmarks = Model\Item\get_bookmarks();
foreach ($bookmarks as $bookmark) {
$article = Model\Item\get($bookmark['id']);
<?php
use PicoFarad\Router;
use PicoFarad\Response;
use PicoFarad\Request;
use PicoFarad\Template;
// Logout and destroy session
Router\get_action('logout', function () {
Model\User\logout();
Response\redirect('?action=login');
});
// Display form login
Router\get_action('login', function () {
if (Model\User\is_loggedin()) {
Response\redirect('?action=unread');
}
Response\html(Template\load('login', array('errors' => array(), 'values' => array('csrf' => Model\Config\generate_csrf()), 'databases' => Model\Database\get_list(), 'current_database' => Model\Database\select())));
});
// Check credentials and redirect to unread items
Router\post_action('login', function () {
$values = Request\values();
Model\Config\check_csrf_values($values);
list($valid, $errors) = Model\User\validate_login($values);
if ($valid) {
Response\redirect('?action=unread');
}
Response\html(Template\load('login', array('errors' => $errors, 'values' => $values + array('csrf' => Model\Config\generate_csrf()), 'databases' => Model\Database\get_list(), 'current_database' => Model\Database\select())));
});
if (empty($options)) {
$return = Model\Config\get_all();
} else {
foreach ($options as $name) {
$return[$name] = Model\Config\get($name);
}
}
Response\json($return);
});
// Display help page
Router\get_action('help', function () {
Response\html(Template\layout('help', array('config' => Model\Config\get_all(), 'nb_unread_items' => Model\Item\count_by_status('unread'), 'menu' => 'config', 'title' => t('Preferences'))));
});
// Display about page
Router\get_action('about', function () {
Response\html(Template\layout('about', array('csrf' => Model\Config\generate_csrf(), 'config' => Model\Config\get_all(), 'db_name' => Model\Database\select(), 'nb_unread_items' => Model\Item\count_by_status('unread'), 'menu' => 'config', 'title' => t('Preferences'))));
});
// Display database page
Router\get_action('database', function () {
Response\html(Template\layout('database', array('csrf' => Model\Config\generate_csrf(), 'config' => Model\Config\get_all(), 'db_size' => filesize(\Model\Database\get_path()), 'nb_unread_items' => Model\Item\count_by_status('unread'), 'menu' => 'config', 'title' => t('Preferences'))));
});
// Display API page
Router\get_action('api', function () {
Response\html(Template\layout('api', array('config' => Model\Config\get_all(), 'nb_unread_items' => Model\Item\count_by_status('unread'), 'menu' => 'config', 'title' => t('Preferences'))));
});
// Display bookmark services page
Router\get_action('services', function () {
Response\html(Template\layout('services', array('errors' => array(), 'values' => Model\Config\get_all() + array('csrf' => Model\Config\generate_csrf()), 'menu' => 'config', 'title' => t('Preferences'))));
});
// Update bookmark services
Router\post_action('services', function () {
