function auth() { if (!empty($_GET['database'])) { // Return unauthorized if the requested database could not be found if (!Model\Database\select($_GET['database'])) { return array('api_version' => 3, 'auth' => 0); } } $credentials = Database::getInstance('db')->hashtable('settings')->get('username', 'fever_token'); $api_key = md5($credentials['username'] . ':' . $credentials['fever_token']); $response = array('api_version' => 3, 'auth' => (int) (isset($_POST['api_key']) && strcasecmp($_POST['api_key'], $api_key) === 0), 'last_refreshed_on_time' => time()); return $response; }
use PicoFarad\Router; use PicoFarad\Response; use PicoFarad\Request; use PicoFarad\Session; use PicoFarad\Template; // Called before each action Router\before(function ($action) { Session\open(BASE_URL_DIRECTORY, SESSION_SAVE_PATH, 0); // Select the requested database either from post param database or from the // session variable. If it fails, logout to destroy session and // 'remember me' cookie if (!is_null(Request\value('database')) && !Model\Database\select(Request\value('database'))) { Model\User\logout(); Response\redirect('?action=login'); } elseif (!empty($_SESSION['database'])) { if (!Model\Database\select($_SESSION['database'])) { Model\User\logout(); Response\redirect('?action=login'); } } // These actions are considered to be safe even for unauthenticated users $safe_actions = array('login', 'bookmark-feed', 'select-db', 'logout', 'notfound'); if (!Model\User\is_loggedin() && !in_array($action, $safe_actions)) { if (!Model\RememberMe\authenticate()) { Model\User\logout(); Response\redirect('?action=login'); } } elseif (Model\RememberMe\has_cookie()) { Model\RememberMe\refresh(); } // Load translations
<?php require __DIR__ . '/common.php'; if (php_sapi_name() === 'cli') { $options = getopt('', array('limit::', 'call-interval::', 'update-interval::', 'database::')); } else { $options = $_GET; } if (!empty($options['database'])) { if (!Model\Database\select($options['database'])) { die("Database " . $options['database'] . " not found\r\n"); } } $limit = !empty($options['limit']) && ctype_digit($options['limit']) ? (int) $options['limit'] : Model\Feed\LIMIT_ALL; $update_interval = !empty($options['update-interval']) && ctype_digit($options['update-interval']) ? (int) $options['update-interval'] : null; $call_interval = !empty($options['call-interval']) && ctype_digit($options['call-interval']) ? (int) $options['call-interval'] : null; if ($update_interval !== null && $call_interval !== null && $limit === Model\Feed\LIMIT_ALL && $update_interval >= $call_interval) { $feeds_count = PicoDb\Database::getInstance('db')->table('feeds')->count(); $limit = ceil($feeds_count / ($update_interval / $call_interval)); } Model\Feed\refresh_all($limit); Model\Item\autoflush_read(); Model\Item\autoflush_unread(); Model\Config\write_debug();
} Response\Redirect('?action=' . $menu . '&offset=' . $offset . '&feed_id=' . $feed_id . '#item-' . $id); }); // Display bookmarks page Router\get_action('bookmarks', function () { $offset = Request\int_param('offset', 0); $nb_items = Model\Item\count_bookmarks(); $items = Model\Item\get_bookmarks($offset, Model\Config\get('items_per_page')); Response\html(Template\layout('bookmarks', array('favicons' => Model\Favicon\get_item_favicons($items), 'original_marks_read' => Model\Config\get('original_marks_read'), 'order' => '', 'direction' => '', 'display_mode' => Model\Config\get('items_display_mode'), 'items' => $items, 'nb_items' => $nb_items, 'offset' => $offset, 'items_per_page' => Model\Config\get('items_per_page'), 'nothing_to_read' => Request\int_param('nothing_to_read'), 'nb_unread_items' => Model\Item\count_by_status('unread'), 'menu' => 'bookmarks', 'title' => t('Bookmarks') . ' (' . $nb_items . ')'))); }); // Display bookmark feeds Router\get_action('bookmark-feed', function () { // Select database if the parameter is set $database = Request\param('database'); if (!empty($database)) { Model\Database\select($database); } // Check token $feed_token = Model\Config\get('feed_token'); $request_token = Request\param('token'); if ($feed_token !== $request_token) { Response\text('Access Forbidden', 403); } // Build Feed $writer = new Atom(); $writer->title = t('Bookmarks') . ' - Miniflux'; $writer->site_url = Helper\get_current_base_url(); $writer->feed_url = $writer->site_url . '?action=bookmark-feed&token=' . urlencode($feed_token); $bookmarks = Model\Item\get_bookmarks(); foreach ($bookmarks as $bookmark) { $article = Model\Item\get($bookmark['id']);
<?php use PicoFarad\Router; use PicoFarad\Response; use PicoFarad\Request; use PicoFarad\Template; // Logout and destroy session Router\get_action('logout', function () { Model\User\logout(); Response\redirect('?action=login'); }); // Display form login Router\get_action('login', function () { if (Model\User\is_loggedin()) { Response\redirect('?action=unread'); } Response\html(Template\load('login', array('errors' => array(), 'values' => array('csrf' => Model\Config\generate_csrf()), 'databases' => Model\Database\get_list(), 'current_database' => Model\Database\select()))); }); // Check credentials and redirect to unread items Router\post_action('login', function () { $values = Request\values(); Model\Config\check_csrf_values($values); list($valid, $errors) = Model\User\validate_login($values); if ($valid) { Response\redirect('?action=unread'); } Response\html(Template\load('login', array('errors' => $errors, 'values' => $values + array('csrf' => Model\Config\generate_csrf()), 'databases' => Model\Database\get_list(), 'current_database' => Model\Database\select()))); });
if (empty($options)) { $return = Model\Config\get_all(); } else { foreach ($options as $name) { $return[$name] = Model\Config\get($name); } } Response\json($return); }); // Display help page Router\get_action('help', function () { Response\html(Template\layout('help', array('config' => Model\Config\get_all(), 'nb_unread_items' => Model\Item\count_by_status('unread'), 'menu' => 'config', 'title' => t('Preferences')))); }); // Display about page Router\get_action('about', function () { Response\html(Template\layout('about', array('csrf' => Model\Config\generate_csrf(), 'config' => Model\Config\get_all(), 'db_name' => Model\Database\select(), 'nb_unread_items' => Model\Item\count_by_status('unread'), 'menu' => 'config', 'title' => t('Preferences')))); }); // Display database page Router\get_action('database', function () { Response\html(Template\layout('database', array('csrf' => Model\Config\generate_csrf(), 'config' => Model\Config\get_all(), 'db_size' => filesize(\Model\Database\get_path()), 'nb_unread_items' => Model\Item\count_by_status('unread'), 'menu' => 'config', 'title' => t('Preferences')))); }); // Display API page Router\get_action('api', function () { Response\html(Template\layout('api', array('config' => Model\Config\get_all(), 'nb_unread_items' => Model\Item\count_by_status('unread'), 'menu' => 'config', 'title' => t('Preferences')))); }); // Display bookmark services page Router\get_action('services', function () { Response\html(Template\layout('services', array('errors' => array(), 'values' => Model\Config\get_all() + array('csrf' => Model\Config\generate_csrf()), 'menu' => 'config', 'title' => t('Preferences')))); }); // Update bookmark services Router\post_action('services', function () {