/**
* Insert hidden data for the maximum file size of form fields.
*
* @param tempcode Hidden fields
* @param ID_TEXT Code representing the media types we are using limits for
* @set image file
*/
function handle_max_file_size(&$hidden, $regular_max_size_type = 'file')
{
require_code('files2');
if (!$GLOBALS['FORUM_DRIVER']->is_staff(get_member())) {
switch ($regular_max_size_type) {
case 'image':
require_code('images');
$regular_max_size = get_max_image_size();
break;
case 'file':
default:
$regular_max_size = get_max_file_size();
break;
}
$hidden->attach(form_input_hidden('MAX_FILE_SIZE', strval($regular_max_size)));
} else {
$hidden->attach(form_input_hidden('MAX_FILE_SIZE', strval(get_max_file_size())));
}
}
/**
* Standard modular render function for profile tabs edit hooks.
*
* @param MEMBER The ID of the member who is being viewed
* @param MEMBER The ID of the member who is doing the viewing
* @param boolean Whether to leave the tab contents NULL, if tis hook supports it, so that AJAX can load it later
* @return ?array A tuple: The tab title, the tab body text (may be blank), the tab fields, extra Javascript (may be blank) the suggested tab order, hidden fields (optional) (NULL: if $leave_to_ajax_if_possible was set)
*/
function render_tab($member_id_of, $member_id_viewing, $leave_to_ajax_if_possible = false)
{
$title = do_lang_tempcode('PHOTO');
$order = 30;
// Actualiser
if (post_param_integer('submitting_photo_tab', 0) == 1) {
require_code('ocf_members_action');
require_code('ocf_members_action2');
ocf_member_choose_photo('photo_url', 'photo_file', $member_id_of);
attach_message(do_lang_tempcode('SUCCESS_SAVE'), 'inform');
}
if ($leave_to_ajax_if_possible) {
return NULL;
}
$photo_url = $GLOBALS['FORUM_DRIVER']->get_member_row_field($member_id_of, 'm_photo_url');
$thumb_url = $GLOBALS['FORUM_DRIVER']->get_member_row_field($member_id_of, 'm_photo_thumb_url');
// UI fields
$fields = new ocp_tempcode();
require_code('form_templates');
$fields->attach(form_input_upload(do_lang_tempcode('UPLOAD'), do_lang_tempcode('DESCRIPTION_UPLOAD'), 'photo_file', false, NULL, NULL, true, str_replace(' ', '', get_option('valid_images'))));
$fields->attach(form_input_line(do_lang_tempcode('ALT_FIELD', do_lang_tempcode('URL')), do_lang_tempcode('DESCRIPTION_ALTERNATE_URL'), 'photo_url', $photo_url, false));
if (get_option('is_on_gd') == '0' || !function_exists('imagetypes')) {
$thumb_width = get_option('thumb_width');
$fields->attach(form_input_upload(do_lang_tempcode('THUMBNAIL'), do_lang_tempcode('DESCRIPTION_THUMBNAIL', escape_html($thumb_width)), 'photo_file2', false, NULL, NULL, true, str_replace(' ', '', get_option('valid_images'))));
$fields->attach(form_input_line(do_lang_tempcode('ALT_FIELD', do_lang_tempcode('URL')), do_lang_tempcode('DESCRIPTION_ALTERNATE_URL'), 'photo_thumb_url', $thumb_url, false));
}
$hidden = new ocp_tempcode();
handle_max_file_size($hidden, 'image');
$hidden->attach(form_input_hidden('submitting_photo_tab', '1'));
$text = new ocp_tempcode();
require_code('images');
$max = floatval(get_max_image_size()) / floatval(1024 * 1024);
if ($max < 3.0) {
require_code('files2');
$config_url = get_upload_limit_config_url();
$text->attach(paragraph(do_lang_tempcode(is_null($config_url) ? 'MAXIMUM_UPLOAD' : 'MAXIMUM_UPLOAD_STAFF', escape_html($max > 10.0 ? integer_format(intval($max)) : float_format($max)), is_null($config_url) ? '' : escape_html($config_url))));
}
$text = do_template('OCF_EDIT_PHOTO_TAB', array('TEXT' => $text, 'MEMBER_ID' => strval($member_id_of), 'USERNAME' => $GLOBALS['FORUM_DRIVER']->get_username($member_id_of), 'PHOTO' => $GLOBALS['FORUM_DRIVER']->get_member_photo_url($member_id_of)));
$javascript = '';
return array($title, $fields, $text, $javascript, $order, $hidden);
}
/**
* Standard modular UI to edit an entry.
*
* @return tempcode The UI
*/
function _ed()
{
$doing = 'EDIT_' . $this->lang_type;
if ($this->catalogue && get_param('catalogue_name', '') != '') {
$catalogue_title = get_translated_text($GLOBALS['SITE_DB']->query_value('catalogues', 'c_title', array('c_name' => get_param('catalogue_name'))));
if ($this->type_code == 'd') {
$doing = do_lang('CATALOGUE_GENERIC_EDIT', escape_html($catalogue_title));
} elseif ($this->type_code == 'c') {
$doing = do_lang('CATALOGUE_GENERIC_EDIT_CATEGORY', escape_html($catalogue_title));
}
}
$title = get_page_title($doing);
//$submit_name=(strpos($doing,' ')!==false)?protect_from_escaping($doing):do_lang($doing);
//if (!is_null($this->edit_submit_name)) $submit_name=$this->edit_submit_name;
$submit_name = do_lang_tempcode('SAVE');
//$test=$this->choose_catalogue($title);
//if (!is_null($test)) return $test;
$id = mixed();
// Define type as mixed
$id = $this->non_integer_id ? get_param('id', false, true) : strval(get_param_integer('id'));
$map = array('page' => '_SELF', 'type' => '__e' . $this->type_code, 'id' => $id);
if (get_param('catalogue_name', '') != '') {
$map['catalogue_name'] = get_param('catalogue_name');
}
if (!is_null(get_param('redirect', NULL))) {
$map['redirect'] = get_param('redirect');
}
if (!is_null(get_param('continue', NULL))) {
$map['continue'] = get_param('continue');
}
if (!is_null($this->upload) || $this->possibly_some_kind_of_upload) {
$map['uploading'] = 1;
}
$post_url = build_url($map, '_SELF');
if (multi_lang() && has_actual_page_access(get_member(), 'admin_lang') && user_lang() != get_site_default_lang()) {
require_code('lang2');
$switch_url = get_self_url(false, false, array('keep_lang' => get_site_default_lang()));
attach_message(do_lang_tempcode('lang:EDITING_CONTENT_IN_LANGUAGE_STAFF', escape_html(lookup_language_full_name(user_lang())), escape_html(lookup_language_full_name(get_site_default_lang())), escape_html($switch_url->evaluate())), 'warn');
}
if (method_exists($this, 'get_submitter')) {
list($submitter, $date_and_time) = $this->get_submitter($id);
} else {
$submitter = NULL;
$date_and_time = NULL;
}
if (!is_null($this->permissions_require)) {
check_edit_permission($this->permissions_require, $submitter, array($this->permissions_cat_require, is_null($this->permissions_cat_name) ? NULL : $this->get_cat($id), $this->permissions_cat_require_b, is_null($this->permissions_cat_name_b) ? NULL : $this->get_cat_b($id)), $this->permission_page_name);
}
if (!is_null($this->permissions_cat_require) && !has_category_access(get_member(), $this->permissions_cat_require, $this->get_cat($id))) {
access_denied('CATEGORY_ACCESS');
}
if (!is_null($this->permissions_cat_require_b) && !has_category_access(get_member(), $this->permissions_cat_require_b, $this->get_cat_b($id))) {
access_denied('CATEGORY_ACCESS');
}
$bits = $this->fill_in_edit_form($id);
$delete_fields = new ocp_tempcode();
$all_delete_fields_given = false;
$fields2 = new ocp_tempcode();
if (is_array($bits)) {
$fields = $bits[0];
$hidden = $bits[1];
if (array_key_exists(2, $bits) && !is_null($bits[2])) {
$delete_fields = $bits[2];
}
if (array_key_exists(3, $bits) && !is_null($bits[3])) {
$this->edit_text = $bits[3];
}
if (array_key_exists(4, $bits) && $bits[4]) {
$all_delete_fields_given = true;
}
if (array_key_exists(5, $bits) && !is_null($bits[5])) {
$this->posting_form_text = $bits[5];
}
if (array_key_exists(6, $bits) && !is_null($bits[6])) {
$fields2 = $bits[6];
}
if (array_key_exists(7, $bits)) {
$this->posting_form_text_parsed = $bits[7];
}
} else {
$fields = $bits;
$hidden = new ocp_tempcode();
}
// Add in custom fields
if ($this->has_tied_catalogue()) {
require_code('fields');
$fields->attach(do_template('FORM_SCREEN_FIELD_SPACER', array('TITLE' => do_lang_tempcode('MORE'))));
append_form_custom_fields($this->award_type, $id, $fields, $hidden);
}
// SEO?
if (!is_null($this->seo_type)) {
require_code('seo2');
$fields2->attach(seo_get_fields($this->seo_type, $id));
}
// Awards?
if (addon_installed('awards')) {
if (!is_null($this->award_type)) {
require_code('awards');
$fields2->attach(get_award_fields($this->award_type, $id));
}
}
// Action fields / deletion options
$delete_permission = true;
if (!is_null($this->permissions_require)) {
$delete_permission = has_delete_permission($this->permissions_require, get_member(), $submitter, is_null($this->permission_page_name) ? get_page_name() : $this->permission_page_name, array($this->permissions_cat_require, is_null($this->permissions_cat_name) ? NULL : $this->get_cat($id), $this->permissions_cat_require_b, is_null($this->permissions_cat_name_b) ? NULL : $this->get_cat_b($id)));
}
$may_delete = (!method_exists($this, 'may_delete_this') || $this->may_delete_this($id)) && (!is_numeric($id) || intval($id) >= db_get_first_id() + $this->protect_first) && $delete_permission;
// Deletion options
$action_fields = new ocp_tempcode();
if ($may_delete) {
if (!$all_delete_fields_given) {
$action_fields->attach(form_input_tick(do_lang_tempcode('DELETE'), do_lang_tempcode('DESCRIPTION_DELETE'), 'delete', false));
}
if (addon_installed('points') && !is_null($submitter) && !is_null($date_and_time)) {
$points_test = $GLOBALS['SITE_DB']->query_value_null_ok('gifts', 'id', array('date_and_time' => $date_and_time, 'gift_to' => $submitter, 'gift_from' => $GLOBALS['FORUM_DRIVER']->get_guest_id()));
if (!is_null($points_test)) {
require_lang('points');
$action_fields->attach(form_input_tick(do_lang_tempcode('REVERSE_TITLE'), do_lang_tempcode('REVERSE_TITLE_DESCRIPTION'), 'reverse_point_transaction', false));
}
}
$action_fields->attach($delete_fields);
}
if (!$this->appended_actions_already && !$action_fields->is_empty()) {
$fields2->attach(do_template('FORM_SCREEN_FIELD_SPACER', array('TITLE' => do_lang_tempcode('ACTIONS'))));
}
$fields2->attach($action_fields);
if (!is_object($this->edit_text)) {
$this->edit_text = make_string_tempcode(is_null($this->edit_text) ? '' : $this->edit_text);
}
if (!is_null($this->upload)) {
if ($this->upload == 'image') {
require_code('images');
$max = floatval(get_max_image_size()) / floatval(1024 * 1024);
if ($max < 3.0) {
require_code('files2');
$config_url = get_upload_limit_config_url();
$this->edit_text->attach(paragraph(do_lang_tempcode(is_null($config_url) ? 'MAXIMUM_UPLOAD' : 'MAXIMUM_UPLOAD_STAFF', escape_html($max > 10.0 ? integer_format(intval($max)) : float_format($max)), escape_html(is_null($config_url) ? '' : $config_url))));
}
} else {
require_code('files2');
$max = floatval(get_max_file_size()) / floatval(1024 * 1024);
if ($max < 30.0) {
$config_url = get_upload_limit_config_url();
$this->edit_text->attach(paragraph(do_lang_tempcode(is_null($config_url) ? 'MAXIMUM_UPLOAD' : 'MAXIMUM_UPLOAD_STAFF', escape_html($max > 10.0 ? integer_format(intval($max)) : float_format($max)), escape_html(is_null($config_url) ? '' : $config_url))));
}
}
}
if (get_param('type', '_ed') == '_edit_catalogue') {
require_javascript('javascript_catalogues');
// Existing fields
$field_count = 0;
$c_name = get_param('id', false, true);
$rows = $GLOBALS['SITE_DB']->query_select('catalogue_fields', array('*'), array('c_name' => $c_name), 'ORDER BY cf_order');
$fields_existing = new ocp_tempcode();
foreach ($rows as $i => $myrow) {
$name = get_translated_text($myrow['cf_name']);
$description = get_translated_text($myrow['cf_description']);
$prefix = 'existing_field_' . strval($myrow['id']) . '_';
list($_fields_existing, $_fields_hidden) = $this->get_field_fields($i == 0 && substr($c_name, 0, 1) != '_', count($rows) + 10, $prefix, $field_count, $name, $description, $myrow['cf_type'], $myrow['cf_defines_order'], $myrow['cf_visible'], $myrow['cf_searchable'], $myrow['cf_default'], $myrow['cf_required'], $myrow['cf_put_in_category'], $myrow['cf_put_in_search']);
if (!is_ecommerce_catalogue($c_name) || $i > 9) {
$_fields_existing->attach(do_template('FORM_SCREEN_FIELD_SPACER', array('TITLE' => do_lang_tempcode('ACTIONS'))));
$_fields_existing->attach(form_input_tick(do_lang_tempcode('DELETE'), do_lang_tempcode('DESCRIPTION_DELETE'), $prefix . 'delete', false));
}
$temp = do_template('FORM_FIELD_SET_GROUPER', array('_GUID' => '1492d973db45cbecff892ad4ac1af28f' . get_class($this), 'NAME' => $name, 'ID' => 'FIELD_' . strval($i + 1), 'FIELDS' => $_fields_existing->evaluate()));
$fields_existing->attach($temp);
$hidden->attach($_fields_hidden);
$field_count++;
}
// New field
$fields_new = new ocp_tempcode();
for ($i = 0; $i < 5; $i++) {
list($_fields_new, $_fields_hidden) = $this->get_field_fields(false, count($rows) + 10, 'new_field_' . strval($i) . '_', $field_count);
$temp = do_template('FORM_FIELD_SET_GROUPER', array('_GUID' => '8b9a632eafae003ccc6b007eefb0ce3d' . get_class($this), 'NAME' => do_lang_tempcode('NEW_FIELD', strval($i + 1)), 'ID' => 'NEW_FIELD_' . strval($i + 1), 'FIELDS' => $_fields_new->evaluate()));
$fields_new->attach($temp);
$hidden->attach($_fields_hidden);
$field_count++;
}
$fields->attach($fields2);
return do_template('CATALOGUE_EDITING_SCREEN', array('_GUID' => '584d7dc7c2c13939626102374f13f508' . get_class($this), 'HIDDEN' => $hidden, 'TITLE' => $title, 'TEXT' => $this->add_text, 'URL' => $post_url, 'FIELDS' => $fields->evaluate(), 'FIELDS_EXISTING' => $fields_existing->evaluate(), 'FIELDS_NEW' => $fields_new->evaluate(), 'SUBMIT_NAME' => $submit_name, 'JAVASCRIPT' => $this->javascript));
}
list($warning_details, $ping_url) = handle_conflict_resolution();
if (!is_null($this->posting_form_title)) {
$posting_form = get_posting_form($submit_name, $this->posting_form_text, $post_url, $hidden, $fields, $this->posting_form_title, '', $fields2, $this->posting_form_text_parsed, $this->javascript, NULL, $this->posting_field_required);
return do_template('POSTING_SCREEN', array('_GUID' => '841b9af3aa80bcab86b907e4b942786a' . get_class($this), 'PREVIEW' => $this->do_preview, 'TITLE' => $title, 'SEPARATE_PREVIEW' => $this->second_stage_preview, 'PING_URL' => $ping_url, 'WARNING_DETAILS' => $warning_details, 'TEXT' => $this->add_text, 'POSTING_FORM' => $posting_form->evaluate(), 'JAVASCRIPT' => $this->javascript));
} else {
$fields->attach($fields2);
return do_template('FORM_SCREEN', array('_GUID' => '2d70be34595a16c6f170d966b894bfe2' . get_class($this), 'PREVIEW' => $this->do_preview, 'SEPARATE_PREVIEW' => $this->second_stage_preview, 'TITLE' => $title, 'SKIP_VALIDATION' => $this->skip_validation, 'PING_URL' => $ping_url, 'WARNING_DETAILS' => $warning_details, 'HIDDEN' => $hidden, 'TEXT' => $this->edit_text, 'URL' => $post_url, 'FIELDS' => $fields->evaluate(), 'SUBMIT_NAME' => $submit_name, 'JAVASCRIPT' => $this->javascript));
}
}
/**
* The UI to import in bulk from an archive file.
*
* @return tempcode The UI
*/
function import()
{
$title = get_page_title('IMPORT_EMOTICONS');
require_code('form_templates');
$post_url = build_url(array('page' => '_SELF', 'type' => '_import', 'uploading' => 1), '_SELF');
$fields = new ocp_tempcode();
$supported = 'tar';
if (function_exists('zip_open') || get_option('unzip_cmd') != '') {
$supported .= ', zip';
}
$fields->attach(form_input_upload_multi(do_lang_tempcode('UPLOAD'), do_lang_tempcode('DESCRIPTION_ARCHIVE_IMAGES', escape_html($supported), escape_html(str_replace(',', ', ', get_option('valid_images')))), 'file', true, NULL, NULL, true, str_replace(' ', '', get_option('valid_images') . ',' . $supported)));
$text = paragraph(do_lang_tempcode('IMPORT_EMOTICONS_WARNING'));
require_code('images');
$max = floatval(get_max_image_size()) / floatval(1024 * 1024);
/*if ($max<1.0) Ok - this is silly! Emoticons are tiny.
{
require_code('files2');
$config_url=get_upload_limit_config_url();
$text->attach(paragraph(do_lang_tempcode(is_null($config_url)?'MAXIMUM_UPLOAD':'MAXIMUM_UPLOAD_STAFF',escape_html(($max>10.0)?integer_format(intval($max)):float_format($max)),escape_html(is_null($config_url)?'':$config_url))));
}*/
breadcrumb_set_parents(array(array('_SELF:_SELF:misc', do_lang_tempcode('EMOTICONS')), array('_SELF:_SELF:import', do_lang_tempcode('CHOOSE'))));
$hidden = build_keep_post_fields();
$hidden->attach(form_input_hidden('test', '1'));
handle_max_file_size($hidden);
return do_template('FORM_SCREEN', array('_GUID' => '1910e01ec183392f6b254671dc7050a3', 'TITLE' => $title, 'FIELDS' => $fields, 'SUBMIT_NAME' => do_lang_tempcode('BATCH_IMPORT_ARCHIVE_CONTENTS'), 'URL' => $post_url, 'TEXT' => $text, 'HIDDEN' => $hidden));
}
/**
* The UI to edit a theme image.
*
* @return tempcode The UI
*/
function edit_image()
{
$title = get_page_title('EDIT_THEME_IMAGE');
$lang = choose_language($title, true, true);
if (is_object($lang)) {
return $lang;
}
$url = get_param('url', '');
if ($url != '') {
$theme = get_param('theme', '');
// Editing like this happens in the theme the user is using
if ($theme == '') {
$theme = $GLOBALS['FORUM_DRIVER']->get_theme('');
}
if (substr($url, 0, strlen(get_base_url())) == get_base_url()) {
$url = substr($url, strlen(get_base_url()));
}
$pos = strpos($url, 'themes/');
if ($pos === false) {
warn_exit(do_lang_tempcode('NOT_THEME_IMAGE'));
}
$path = substr($url, $pos);
$id = $GLOBALS['SITE_DB']->query_value_null_ok('theme_images', 'id', array('path' => $path, 'theme' => $theme));
if (is_null($id)) {
warn_exit(do_lang_tempcode('MISSING_RESOURCE'));
}
} else {
$id = get_param('id');
$theme = get_param('theme');
}
//if ((get_file_base()!=get_custom_file_base()) && ($theme=='default')) warn_exit(do_lang_tempcode('SHARED_INSTALL_PROHIBIT'));
$where_map = array('theme' => $theme, 'id' => $id);
if ($lang != '') {
$where_map['lang'] = $lang;
}
$path = $GLOBALS['SITE_DB']->query_value_null_ok('theme_images', 'path', $where_map);
if (is_null($path)) {
$path = $GLOBALS['SITE_DB']->query_value_null_ok('theme_images', 'path', array('theme' => $theme, 'lang' => get_site_default_lang(), 'id' => $id));
}
if (is_null($path)) {
warn_exit(do_lang_tempcode('MISSING_RESOURCE'));
}
$GLOBALS['SEO_TITLE'] = $id;
$unmodified = strpos($path, 'themes/default/images/') !== false;
$from_file = @file_get_contents(($unmodified ? get_file_base() : get_custom_file_base()) . '/' . rawurldecode($path));
$width = do_lang_tempcode('UNKNOWN_EM');
$height = do_lang_tempcode('UNKNOWN_EM');
if ($from_file !== false && function_exists('imagecreatefromstring')) {
$source = @imagecreatefromstring($from_file);
unset($from_file);
if ($source !== false) {
$width = make_string_tempcode(strval(imagesx($source)));
$height = make_string_tempcode(strval(imagesy($source)));
imagedestroy($source);
}
}
$url = ($unmodified ? get_base_url() : get_custom_base_url()) . '/' . $path;
$text = do_template('THEME_IMAGE_PREVIEW', array('_GUID' => 'c71817851526064e738d5076dcd1bce1', 'WIDTH' => $width, 'HEIGHT' => $height, 'URL' => $url, 'UNMODIFIED' => $unmodified));
list($fields, $hidden) = $this->get_image_form_fields($theme, $lang, $id, $path);
$hidden->attach(form_input_hidden('old_id', $id));
if (strpos($path, 'images_custom') !== false) {
$fields->attach(do_template('FORM_SCREEN_FIELD_SPACER', array('TITLE' => do_lang_tempcode('ACTIONS'))));
$fields->attach(form_input_tick(do_lang_tempcode('DELETE'), do_lang_tempcode('DESCRIPTION_DELETE_THEME_IMAGE'), 'delete', false));
}
$post_url = build_url(array('page' => '_SELF', 'type' => '_edit_image', 'uploading' => 1), '_SELF', NULL, false, true);
$submit_name = do_lang_tempcode('SAVE');
breadcrumb_set_parents(array(array('_SELF:_SELF:misc', do_lang_tempcode('MANAGE_THEMES')), array('_SELF:_SELF:manage_images:theme=' . $theme, do_lang_tempcode('CHOOSE'))));
require_code('images');
$max = floatval(get_max_image_size()) / floatval(1024 * 1024);
if ($max < 3.0) {
require_code('files2');
$config_url = get_upload_limit_config_url();
$text->attach(paragraph(do_lang_tempcode(is_null($config_url) ? 'MAXIMUM_UPLOAD' : 'MAXIMUM_UPLOAD_STAFF', escape_html($max > 10.0 ? integer_format(intval($max)) : float_format($max)), escape_html(is_null($config_url) ? '' : $config_url))));
}
return do_template('FORM_SCREEN', array('_GUID' => 'b0e178ad1f840a07c4967f3c266c750b', 'HIDDEN' => $hidden, 'TITLE' => $title, 'URL' => $post_url, 'FIELDS' => $fields, 'TEXT' => $text, 'SUBMIT_NAME' => $submit_name, 'JAVASCRIPT' => 'standardAlternateFields(\'file\',\'path\');'));
}
/**
* Get tempcode for a Comcode tag. This function should always return (errors should be placed in the Comcode output stream), for stability reasons (i.e. if you're submitting something, you can't have the whole submit process die half way through in an unstructured fashion).
*
* @param string The tag being converted
* @param array A map of the attributes (name=>val) for the tag. Val is usually a string, although in select places, the XML parser may pass tempcode.
* @param mixed Tempcode of the inside of the tag ([between]THIS[/between]); the XML parser may pass in special stuff here, which is interpreted only for select tags
* @param boolean Whether we are allowed to proceed even if this tag is marked as 'dangerous'
* @param string A special identifier to mark where the resultant tempcode is going to end up (e.g. the ID of a post)
* @param integer The position this tag occurred at in the Comcode
* @param MEMBER The member who is responsible for this Comcode
* @param boolean Whether to check as arbitrary admin
* @param object The database connection to use
* @param string The whole chunk of comcode
* @param boolean Whether this is for WML output
* @param boolean Whether this is only a structure sweep
* @param boolean Whether we are in semi-parse-mode (some tags might convert differently)
* @param ?array A list of words to highlight (NULL: none)
* @param ?MEMBER The member we are running on behalf of, with respect to how attachments are handled; we may use this members attachments that are already within this post, and our new attachments will be handed to this member (NULL: member evaluating)
* @param boolean Whether what we have came from inside a semihtml tag
* @param boolean Whether what we have came from semihtml mode
* @return tempcode The tempcode for the Comcode
*/
function _do_tags_comcode($tag, $attributes, $embed, $comcode_dangerous, $pass_id, $marker, $source_member, $as_admin, $connection, &$comcode, $wml, $structure_sweep, $semiparse_mode, $highlight_bits = NULL, $on_behalf_of_member = NULL, $in_semihtml = false, $is_all_semihtml = false)
{
if ($structure_sweep && $tag != 'title') {
return new ocp_tempcode();
}
$param_given = isset($attributes['param']);
if (!isset($attributes['param']) && $tag != 'block') {
$attributes['param'] = '';
}
global $DANGEROUS_TAGS, $STRUCTURE_LIST, $COMCODE_PARSE_TITLE;
if (isset($DANGEROUS_TAGS[$tag]) && !$comcode_dangerous) {
$username = $GLOBALS['FORUM_DRIVER']->get_username($source_member);
if (is_null($username)) {
$username = do_lang('UNKNOWN');
}
if ($semiparse_mode) {
$params = '';
foreach ($attributes as $key => $val) {
$params .= ' ' . $key . '="' . comcode_escape($val) . '"';
}
return make_string_tempcode('<input class="ocp_keep_ui_controlled" size="45" title="[' . $tag . '' . escape_html($params) . ']' . ($in_semihtml || $is_all_semihtml ? escape_html($embed->evaluate()) : escape_html($embed->evaluate())) . '[/' . $tag . ']" type="text" value="' . ($tag == 'block' ? do_lang('COMCODE_EDITABLE_BLOCK', escape_html($embed->evaluate())) : do_lang('COMCODE_EDITABLE_TAG', escape_html($tag))) . '" />');
}
return do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('comcode:NO_ACCESS_FOR_TAG', escape_html($tag), escape_html($username))));
//return new ocp_tempcode();
}
// These are just bbcode compatibility tags.. we will remap to our proper comcode
if ($tag == 'php') {
$attributes['param'] = 'php';
$tag = 'code';
} elseif ($tag == 'sql') {
$attributes['param'] = 'sql';
$tag = 'code';
} elseif ($tag == 'codebox') {
$attributes['scroll'] = '1';
$tag = 'code';
} elseif ($tag == 'left') {
$attributes['param'] = 'left';
$tag = 'align';
} elseif ($tag == 'center') {
$attributes['param'] = 'center';
$tag = 'align';
} elseif ($tag == 'right') {
$attributes['param'] = 'right';
$tag = 'align';
} elseif ($tag == 'thread') {
$tag = 'topic';
} elseif ($tag == 'internal_table' || $tag == 'external_table') {
$tag = 'box';
if (array_key_exists('class', $attributes)) {
$attributes['type'] = $attributes['class'];
}
}
if ($semiparse_mode) {
$non_text_tags = array('attachment', 'section_controller', 'big_tab_controller', 'currency', 'block', 'contents', 'concepts', 'flash', 'menu', 'email', 'reference', 'upload', 'page', 'exp_thumb', 'exp_ref', 'thumb', 'snapback', 'post', 'thread', 'topic', 'include', 'random', 'jumping', 'shocker');
// Also in JAVASCRIPT_EDITING.tpl
if ($tag == 'attachment_safe') {
if (preg_match('#^new\\_\\d+$#', $embed->evaluate()) != 0) {
$non_text_tags[] = 'attachment_safe';
}
}
if (in_array($tag, $non_text_tags)) {
$params = '';
foreach ($attributes as $key => $val) {
$params .= ' ' . $key . '="' . str_replace('"', '\\"', $val) . '"';
}
if ($tag != 'block' || !is_file(get_file_base() . '/sources_custom/miniblocks/' . $embed->evaluate() . '.php')) {
return make_string_tempcode('<input class="ocp_keep_ui_controlled" size="45" title="[' . $tag . '' . escape_html($params) . ']' . ($in_semihtml || $is_all_semihtml ? escape_html($embed->evaluate()) : escape_html($embed->evaluate())) . '[/' . $tag . ']" type="text" value="' . ($tag == 'block' ? do_lang('comcode:COMCODE_EDITABLE_BLOCK', escape_html($embed->evaluate())) : do_lang('comcode:COMCODE_EDITABLE_TAG', escape_html($tag))) . '" />');
} else {
return make_string_tempcode('[block' . escape_html($params) . ']' . ($in_semihtml || $is_all_semihtml ? $embed->evaluate() : escape_html($embed->evaluate())) . '[/block]');
}
}
}
$temp_tpl = new ocp_tempcode();
switch ($tag) {
case 'no_parse':
$temp_tpl->attach($embed);
break;
case 'currency':
if (addon_installed('ecommerce')) {
$bracket = array_key_exists('bracket', $attributes) && $attributes['bracket'] == '1';
if ($attributes['param'] == '') {
$attributes['param'] = get_option('currency');
}
$temp_tpl = do_template('COMCODE_CURRENCY', array('_GUID' => 'ee1fcdae082af6397ff3bad89006e012', 'AMOUNT' => $embed, 'FROM_CURRENCY' => $attributes['param'], 'BRACKET' => $bracket));
}
break;
case 'overlay':
$x = strval(array_key_exists('x', $attributes) ? intval($attributes['x']) : 100);
$y = strval(array_key_exists('y', $attributes) ? intval($attributes['y']) : 100);
$width = strval(array_key_exists('width', $attributes) ? intval($attributes['width']) : 300);
$height = strval(array_key_exists('height', $attributes) ? intval($attributes['height']) : 300);
$timein = strval(array_key_exists('timein', $attributes) ? intval($attributes['timein']) : 0);
$timeout = strval(array_key_exists('timeout', $attributes) ? intval($attributes['timeout']) : -1);
$temp_tpl = do_template('COMCODE_OVERLAY', array('_GUID' => 'dfd0f7a72cc2bf6b613b28f8165a0034', 'UNIQ_ID' => 'a' . uniqid('', true), 'EMBED' => $embed, 'ID' => $attributes['param'] != '' ? $attributes['param'] : 'rand' . uniqid('', true), 'X' => $x, 'Y' => $y, 'WIDTH' => $width, 'HEIGHT' => $height, 'TIMEIN' => $timein, 'TIMEOUT' => $timeout));
break;
case 'code':
if ($wml) {
$temp_tpl->attach('<b>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</b>');
break;
}
list($_embed, $title) = do_code_box($attributes['param'], $embed, array_key_exists('numbers', $attributes) && $attributes['numbers'] == '1', $in_semihtml, $is_all_semihtml);
if (!is_null($_embed)) {
$tpl = array_key_exists('scroll', $attributes) && $attributes['scroll'] == '1' ? 'COMCODE_CODE_SCROLL' : 'COMCODE_CODE';
if ($tpl == 'COMCODE_CODE_SCROLL' && substr_count($_embed, chr(10)) < 10) {
$style = 'height: auto';
} else {
$style = '';
}
$temp_tpl = do_template($tpl, array('_GUID' => 'c5d46d0927272fcacbbabcfab0ef6b0c', 'STYLE' => $style, 'TYPE' => $attributes['param'], 'CONTENT' => $_embed, 'TITLE' => $title));
} else {
$_embed = '';
}
if ($temp_tpl->is_empty()) {
if ($in_semihtml || $is_all_semihtml) {
require_code('comcode_from_html');
$back_to_comcode = semihtml_to_comcode($embed->evaluate());
// Undo what's happened already
//$back_to_comcode=html_entity_decode($back_to_comcode,ENT_QUOTES,get_charset()); // Remove the escaping entities that were inside the code tag
$embed = comcode_to_tempcode($back_to_comcode, $source_member, $as_admin, 80, $pass_id, $connection);
// Re-parse (with full security)
}
$_embed = $embed->evaluate();
if (!array_key_exists('scroll', $attributes) && strlen($_embed) > 1000) {
$attributes['scroll'] = '1';
}
$tpl = array_key_exists('scroll', $attributes) && $attributes['scroll'] == '1' ? 'COMCODE_CODE_SCROLL' : 'COMCODE_CODE';
$title = do_lang_tempcode('CODE');
if ($tpl == 'COMCODE_CODE_SCROLL' && substr_count($_embed, chr(10)) < 10) {
$style = 'height: auto';
} else {
$style = '';
}
$temp_tpl = do_template($tpl, array('CONTENT' => $_embed, 'TITLE' => $title, 'STYLE' => $style, 'TYPE' => $attributes['param']));
}
break;
case 'list':
if (is_array($embed)) {
$parts = $embed;
} else {
$_embed = trim($embed->evaluate());
$_embed = str_replace('[/*]', '', $_embed);
$parts = explode('[*]', $_embed);
}
if (isset($temp_tpl->preprocessable_bits)) {
$temp_tpl->preprocessable_bits = array_merge($temp_tpl->preprocessable_bits, $embed->preprocessable_bits);
}
if ($wml) {
foreach ($parts as $i => $part) {
if ($i == 0 && str_replace(array(' ', '<br />', ' '), array('', '', ''), trim($part)) == '') {
continue;
}
$temp_tpl->attach('<br />* ');
$temp_tpl->attach($part);
}
$temp_tpl->attach('<br />* ');
break;
}
$type = $attributes['param'];
if ($type != '') {
if ($type == '1') {
$type = 'decimal';
} elseif ($type == 'a') {
$type = 'lower-alpha';
} elseif ($type == 'i') {
$type = 'lower-roman';
} elseif ($type == 'x') {
$type = 'none';
} elseif (!in_array($type, array('circle', 'disc', 'square', 'armenian', 'decimal', 'decimal-leading-zero', 'georgian', 'lower-alpha', 'lower-greek', 'lower-latin', 'lower-roman', 'upper-alpha', 'upper-latin', 'upper-roman'))) {
$type = 'disc';
}
$tag = in_array($type, array('circle', 'disc', 'square')) ? 'ul' : 'ol';
$temp_tpl->attach('<' . $tag . ' style="list-style-type: ' . $type . '">');
foreach ($parts as $i => $part) {
if ($i == 0 && str_replace(array(' ', '<br />', ' '), array('', '', ''), trim($part)) == '') {
continue;
}
$temp_tpl->attach('<li>' . preg_replace('#\\<br /\\>(\\ |\\s)*$#D', '', preg_replace('#^\\<br /\\>(\\ |\\s)*#D', '', $part)) . '</li>');
}
$temp_tpl->attach('</' . $tag . '>');
} else {
$temp_tpl->attach('<ul>');
foreach ($parts as $i => $part) {
if ($i == 0 && str_replace(array(' ', '<br />', ' '), array('', '', ''), trim($part)) == '') {
continue;
}
$temp_tpl->attach('<li>' . preg_replace('#\\<br /\\>(\\ |\\s)*$#D', '', preg_replace('#^\\<br /\\>(\\ |\\s)*#D', '', $part)) . '</li>');
}
$temp_tpl->attach('</ul>');
}
break;
case 'snapback':
require_lang('ocf');
$post_id = intval($embed->evaluate());
$s_title = $attributes['param'] == '' ? do_lang_tempcode('FORUM_POST_NUMBERED', integer_format($post_id)) : make_string_tempcode($attributes['param']);
$forum = array_key_exists('forum', $attributes) ? $attributes['forum'] : '';
$temp_tpl = do_template('COMCODE_SNAPBACK', array('URL' => $GLOBALS['FORUM_DRIVER']->post_url($post_id, $forum), 'TITLE' => $s_title));
break;
case 'post':
require_lang('ocf');
$post_id = intval($embed->evaluate());
$s_title = $attributes['param'] == '' ? do_lang_tempcode('FORUM_POST_NUMBERED', integer_format($post_id)) : make_string_tempcode($attributes['param']);
$forum = array_key_exists('forum', $attributes) ? $attributes['forum'] : '';
$temp_tpl->attach(hyperlink($GLOBALS['FORUM_DRIVER']->post_url($post_id, $forum), $s_title));
break;
case 'topic':
require_lang('ocf');
$topic_id = intval($embed->evaluate());
$s_title = $attributes['param'] == '' ? do_lang_tempcode('FORUM_TOPIC_NUMBERED', integer_format($topic_id)) : make_string_tempcode($attributes['param']);
$forum = array_key_exists('forum', $attributes) ? $attributes['forum'] : '';
$temp_tpl->attach(hyperlink($GLOBALS['FORUM_DRIVER']->topic_url($topic_id, $forum), $s_title));
break;
case 'staff_note':
$temp_tpl = new ocp_tempcode();
return $temp_tpl;
case 'section':
if ($wml) {
$temp_tpl = $embed;
break;
}
$name = array_key_exists('param', $attributes) ? $attributes['param'] : 'section' . strval(mt_rand(0, 100));
$default = array_key_exists('default', $attributes) ? $attributes['default'] : '0';
$temp_tpl = do_template('COMCODE_SECTION', array('_GUID' => 'a902962ccdc80046c999d6fed907d105', 'PASS_ID' => 'x' . $pass_id, 'DEFAULT' => $default == '1', 'NAME' => $name, 'CONTENT' => $embed));
break;
case 'section_controller':
if ($wml) {
break;
}
$sections = explode(',', $embed->evaluate());
$temp_tpl = do_template('COMCODE_SECTION_CONTROLLER', array('_GUID' => '133bf24892e9e3ec2a01146d6ec418fe', 'SECTIONS' => $sections, 'PASS_ID' => 'x' . $pass_id));
break;
case 'big_tab':
if ($wml) {
$temp_tpl = $embed;
break;
}
$name = array_key_exists('param', $attributes) ? $attributes['param'] : 'big_tab' . strval(mt_rand(0, 100));
$default = array_key_exists('default', $attributes) ? $attributes['default'] : '0';
$temp_tpl = do_template('COMCODE_BIG_TABS_TAB', array('PASS_ID' => 'x' . $pass_id, 'DEFAULT' => $default == '1', 'NAME' => $name, 'CONTENT' => $embed));
break;
case 'big_tab_controller':
if ($wml) {
break;
}
$tabs = explode(',', $embed->evaluate());
if (!array_key_exists('switch_time', $attributes)) {
$attributes['switch_time'] = '6000';
}
$temp_tpl = do_template('COMCODE_BIG_TABS_CONTROLLER', array('SWITCH_TIME' => $attributes['switch_time'], 'TABS' => $tabs, 'PASS_ID' => 'x' . $pass_id));
break;
case 'tab':
if ($wml) {
$temp_tpl = $embed;
break;
}
$default = array_key_exists('default', $attributes) ? $attributes['default'] : '0';
$temp_tpl = do_template('COMCODE_TAB_BODY', array('DEFAULT' => $default == '1', 'TITLE' => trim($attributes['param']), 'CONTENT' => $embed));
break;
case 'tabs':
if ($wml) {
break;
}
$heads = new ocp_tempcode();
$tabs = explode(',', $attributes['param']);
foreach ($tabs as $i => $tab) {
$heads->attach(do_template('COMCODE_TAB_HEAD', array('TITLE' => trim($tab), 'FIRST' => $i == 0, 'LAST' => !array_key_exists($i + 1, $tabs))));
}
$temp_tpl = do_template('COMCODE_TAB_CONTROLLER', array('HEADS' => $heads, 'CONTENT' => $embed));
break;
case 'carousel':
if ($attributes['param'] == '') {
$attributes['param'] = '40';
}
$temp_tpl = do_template('COMCODE_CAROUSEL', array('CONTENT' => $embed, 'SCROLL_AMOUNT' => $attributes['param']));
break;
case 'menu':
if ($wml) {
break;
}
$name = array_key_exists('param', $attributes) ? $attributes['param'] : 'mnu' . strval(mt_rand(0, 100));
$type = array_key_exists('type', $attributes) ? $attributes['type'] : 'tree';
require_code('menus');
require_code('menus_comcode');
$temp_tpl = build_comcode_menu($embed->evaluate(), $name, $source_member, $type);
break;
case 'if_in_group':
$groups = '';
$_groups = explode(',', $attributes['param']);
$all_groups = $GLOBALS['FORUM_DRIVER']->get_usergroup_list();
foreach ($_groups as $group) {
$find = array_search($group, $all_groups);
if ($find === false) {
if ($groups != '') {
$groups .= ',';
}
$groups .= $group;
} else {
if ($groups != '') {
$groups .= ',';
}
$groups .= strval($find);
}
}
$temp_tpl = do_template('COMCODE_IF_IN_GROUP', array('_GUID' => '761a7cc07f7b4b68508d68ce19b87d2c', 'TYPE' => array_key_exists('type', $attributes) ? $attributes['type'] : '', 'CONTENT' => $embed, 'GROUPS' => $groups));
break;
case 'acronym':
case 'abbr':
$temp_tpl = do_template('COMCODE_ABBR', array('_GUID' => 'acbc4f991dsf03f81b61919b74ac24c91', 'CONTENT' => $embed, 'TITLE' => $attributes['param']));
break;
case 'address':
$temp_tpl = do_template('COMCODE_ADDRESS', array('_GUID' => 'acbcsdf9910703f81b61919b74ac24c91', 'CONTENT' => $embed));
break;
case 'dfn':
$temp_tpl = do_template('COMCODE_DFN', array('_GUID' => 'acbc4f9910703f81b61sf19b74ac24c91', 'CONTENT' => $embed));
break;
case 'pulse':
$min_color = array_key_exists('min', $attributes) ? $attributes['min'] : '0000FF';
$max_color = array_key_exists('max', $attributes) ? $attributes['max'] : 'FF0044';
if (substr($min_color, 0, 1) == '#') {
$min_color = substr($min_color, 1);
}
if (substr($max_color, 0, 1) == '#') {
$max_color = substr($max_color, 1);
}
$speed = $attributes['param'] == '' ? 100 : intval($attributes['param']);
$temp_tpl = do_template('COMCODE_PULSE', array('_GUID' => 'adsd4f9910sfd03f81b61919b74ac24c91', 'RAND_ID' => uniqid('', true), 'CONTENT' => $embed, 'MIN_COLOR' => $min_color, 'MAX_COLOR' => $max_color, 'SPEED' => strval($speed)));
break;
case 'del':
$cite = array_key_exists('cite', $attributes) ? $attributes['cite'] : NULL;
if (!is_null($cite)) {
$temp_tpl = test_url($cite, 'del', $cite, $source_member);
}
$datetime = array_key_exists('datetime', $attributes) ? $attributes['datetime'] : NULL;
$temp_tpl->attach(do_template('COMCODE_DEL', array('_GUID' => 'acsd4f9910sfd03f81b61919b74ac24c91', 'CONTENT' => $embed, 'CITE' => $cite, 'DATETIME' => $datetime)));
break;
case 'ins':
$cite = array_key_exists('cite', $attributes) ? $attributes['cite'] : NULL;
if (!is_null($cite)) {
$temp_tpl = test_url($cite, 'ins', $cite, $source_member);
if (!$temp_tpl->is_empty()) {
break;
}
}
$datetime = array_key_exists('datetime', $attributes) ? $attributes['datetime'] : NULL;
$temp_tpl->attach(do_template('COMCODE_INS', array('_GUID' => 'asss4f9910703f81b61919bsfc24c91', 'CONTENT' => $embed, 'CITE' => $cite, 'DATETIME' => $datetime)));
break;
case 'cite':
$temp_tpl = do_template('COMCODE_CITE', array('_GUID' => 'acbcsf910703f81b61919b74ac24c91', 'CONTENT' => $embed));
break;
case 'b':
if ($semiparse_mode) {
$temp_tpl = make_string_tempcode('<b>' . $embed->evaluate() . '</b>');
break;
}
$temp_tpl = do_template('COMCODE_BOLD', array('_GUID' => 'acbc4fds910703f81b619sf74ac24c91', 'CONTENT' => $embed));
break;
case 'align':
if ($wml) {
$temp_tpl = $embed;
break;
}
$align = array_key_exists('param', $attributes) ? $attributes['param'] : 'left';
$temp_tpl = do_template('COMCODE_ALIGN', array('_GUID' => '950b4d9db12cac6bf536860bedd96a36', 'ALIGN' => $align, 'CONTENT' => $embed));
break;
case 'indent':
if ($wml) {
$temp_tpl = $embed;
break;
}
$indent = array_key_exists('param', $attributes) ? $attributes['param'] : '10';
if (!is_numeric($indent)) {
$indent = '10';
}
$temp_tpl = do_template('COMCODE_INDENT', array('_GUID' => 'd8e69fa17eebd5312e3ad5788e3a1343', 'INDENT' => $indent, 'CONTENT' => $embed));
break;
case 'surround':
if ($wml) {
$temp_tpl = $embed;
break;
}
if ($semiparse_mode && $embed->evaluate() == '') {
$temp_tpl = make_string_tempcode('<kbd class="ocp_keep" title="no_parse">[surround="' . comcode_escape(array_key_exists('param', $attributes) ? $attributes['param'] : 'float_surrounder') . '"]' . $embed->evaluate() . '[/surround]</kbd>');
break;
}
$class = array_key_exists('param', $attributes) && $attributes['param'] != '' ? $attributes['param'] : 'float_surrounder';
$temp_tpl = do_template('COMCODE_SURROUND', array('_GUID' => 'e8e69fa17eebd5312e3ad5788e3a1343', 'CLASS' => $class, 'CONTENT' => $embed));
break;
case 'i':
if ($semiparse_mode) {
$temp_tpl = make_string_tempcode('<i>' . $embed->evaluate() . '</i>');
break;
}
$temp_tpl = do_template('COMCODE_ITALICS', array('_GUID' => '4321a1fe3825418e57a29410183c0c60', 'CONTENT' => $embed));
break;
case 'u':
if ($semiparse_mode) {
$temp_tpl = make_string_tempcode('<u>' . $embed->evaluate() . '</u>');
break;
}
$temp_tpl = do_template('COMCODE_UNDERLINE', array('_GUID' => '69cc8e73b17f9e6a35eb1af2bd1dc6ab', 'CONTENT' => $embed));
break;
case 's':
if ($wml) {
$temp_tpl = $embed;
break;
}
if ($semiparse_mode) {
$temp_tpl = make_string_tempcode('<strike>' . $embed->evaluate() . '</strike>');
break;
}
$temp_tpl = do_template('COMCODE_STRIKE', array('_GUID' => 'ed242591cefd365497cc0c63abbb11a9', 'CONTENT' => $embed));
break;
case 'tooltip':
$param = is_object($attributes['param']) ? $attributes['param'] : comcode_to_tempcode($attributes['param'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
if ($wml) {
$temp_tpl->attach($embed);
$temp_tpl->attach('[ ');
$temp_tpl->attach($param);
$temp_tpl->attach(' ]');
break;
}
$temp_tpl = do_template('COMCODE_TOOLTIP', array('_GUID' => 'c9f4793dc0c1a92cd7d08ae1b87c2308', 'URL' => array_key_exists('url', $attributes) ? $attributes['url'] : '', 'TOOLTIP' => $param, 'CONTENT' => $embed));
break;
case 'sup':
if ($wml) {
$temp_tpl->attach('^');
$temp_tpl->attach($embed);
break;
}
$temp_tpl = do_template('COMCODE_SUP', array('_GUID' => '74d2ecfe193dacb6d922bc288828196a', 'CONTENT' => $embed));
break;
case 'sub':
if ($wml) {
$temp_tpl->attach('{');
$temp_tpl->attach($embed);
$temp_tpl->attach('}');
break;
}
$temp_tpl = do_template('COMCODE_SUB', array('_GUID' => '515e310e00a6d7c30f7dca0a5956ebcf', 'CONTENT' => $embed));
break;
case 'title':
if ($semiparse_mode && strpos($comcode, '[contents') !== false) {
$temp_tpl = make_string_tempcode('[title' . reinsert_parameters($attributes) . ']' . $embed->evaluate() . '[/title]');
break;
}
$level = $attributes['param'] != '' ? intval($attributes['param']) : 1;
if ($level == 0) {
$level = 1;
}
// Stop crazy Comcode causing stack errors with the toc
$uniq_id = strval(count($STRUCTURE_LIST));
$STRUCTURE_LIST[] = array($level, $embed, $uniq_id);
if ($level == 1) {
$template = 'SCREEN_TITLE';
} elseif ($level == 2) {
$template = 'COMCODE_SECTION_TITLE';
} elseif ($level == 3) {
$template = 'COMCODE_MINOR_TITLE';
} elseif ($level == 4) {
$template = 'COMCODE_VERY_MINOR_TITLE';
} else {
$template = 'COMCODE_VERY_MINOR_TITLE';
}
if ($level == 1) {
if (is_null($COMCODE_PARSE_TITLE)) {
$COMCODE_PARSE_TITLE = $embed->evaluate();
if (is_object($COMCODE_PARSE_TITLE)) {
$COMCODE_PARSE_TITLE = $COMCODE_PARSE_TITLE->evaluate();
}
}
}
$base = array_key_exists('base', $attributes) ? intval($attributes['base']) : 2;
if (array_key_exists('number', $attributes) && $level >= $base) {
$list_types = $attributes['number'] == '' ? array() : explode(',', $attributes['number']);
$list_types = array_merge($list_types, array('decimal', 'lower-alpha', 'lower-roman', 'upper-alpha', 'upper-roman', 'disc'));
$numerals = array('i', 'ii', 'iii', 'iv', 'v', 'vi', 'viii', 'ix', 'x', 'xi', 'xii', 'xiii', 'xiv', 'xv', 'xvi', 'xvii', 'xviii', 'xix', 'xx');
$symbol_lookup = array('decimal' => range(1, 100), 'lower-alpha' => range('a', 'z'), 'lower-roman' => $numerals, 'upper-alpha' => range('A', 'Z'), 'upper-roman' => str_replace('i', 'I', str_replace('v', 'V', str_replace('x', 'X', $numerals))));
$level_text = '';
$list_pos = count($STRUCTURE_LIST) - 2;
for ($j = $level; $j >= $base; $j--) {
$num_before = 0;
for ($i = $list_pos; $i >= 0; $i--) {
$list_pos--;
if ($STRUCTURE_LIST[$i][0] == $j - 1) {
break;
}
if ($STRUCTURE_LIST[$i][0] == $j) {
$num_before++;
}
}
$level_number = @strval($symbol_lookup[$list_types[$j - $base]][$num_before]);
$level_text = $level_number . ($level_text != '' ? '.' : '') . $level_text;
}
$old_embed = $embed;
$embed = make_string_tempcode($level_text . ' – ');
$embed->attach($old_embed);
}
if ($wml) {
if ($level == 1) {
$temp_tpl->attach('<br /><p><big><u><b>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</b></u></big></p><br />');
} elseif ($level == 2) {
$temp_tpl->attach('<br /><p><big><u>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</u></big></p><br />');
} elseif ($level == 3) {
$temp_tpl->attach('<br /><p><big>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</big></p><br />');
} elseif ($level == 4) {
$temp_tpl->attach('<br /><p>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</p><br />');
}
break;
}
if ($semiparse_mode) {
$temp_tpl = make_string_tempcode('<h' . strval($level) . ($level == 1 ? ' class="main_page_title"' : '') . '><span class="inner">' . $embed->evaluate() . '</span></h' . strval($level) . '>');
break;
}
$tpl_map = array('ID' => substr($pass_id, 0, 5) == 'panel' ? NULL : $uniq_id, 'TITLE' => $embed, 'HELP_URL' => '', 'HELP_TERM' => '');
if (array_key_exists('sub', $attributes)) {
$tpl_map['SUB'] = protect_from_escaping(comcode_to_tempcode($attributes['sub'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member));
}
$temp_tpl = do_template($template, $tpl_map);
break;
case 'attachment':
case 'attachment2':
// legacy
// legacy
case 'attachment_safe':
if ($wml) {
break;
}
require_code('attachments');
if (is_null($on_behalf_of_member)) {
$on_behalf_of_member = $source_member;
}
$id = $embed->evaluate();
global $COMCODE_ATTACHMENTS;
if (!is_numeric($id) && !$as_admin && !has_specific_permission($source_member, 'exceed_filesize_limit')) {
// We work all this out before we do any downloads, to make sure orphaned files aren't dumped on the file system (possible hack method)
if (get_forum_type() == 'ocf') {
require_lang('ocf');
require_code('ocf_groups');
$daily_quota = ocf_get_member_best_group_property($source_member, 'max_daily_upload_mb');
} else {
$daily_quota = 5;
// 5 is a hard coded default for non-OCF forums
}
if (!is_null($daily_quota)) {
$_size_uploaded_today = $connection->query('SELECT SUM(a_file_size) AS the_answer FROM ' . $connection->get_table_prefix() . 'attachments WHERE a_member_id=' . strval((int) $source_member) . ' AND a_add_time>' . strval(time() - 60 * 60 * 24));
if (is_null($_size_uploaded_today[0]['the_answer'])) {
$_size_uploaded_today[0]['the_answer'] = 0;
}
$size_uploaded_today = ceil((double) $_size_uploaded_today[0]['the_answer'] / 1024.0 / 1024.0);
$attach_size = 0;
require_code('uploads');
is_swf_upload(true);
foreach ($_FILES as $_file) {
$attach_size += floatval($_file['size']) / 1024.0 / 1024.0;
}
if ($size_uploaded_today + $attach_size > floatval($daily_quota)) {
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('OVER_DAILY_QUOTA', integer_format($daily_quota), float_format($size_uploaded_today))));
break;
}
}
}
$thumb_url = array_key_exists('thumb_url', $attributes) ? $attributes['thumb_url'] : '';
// Embedded attachments
if (!is_numeric($id) && substr($id, 0, 4) != 'new_' && substr($id, 0, 4) != 'url_') {
$file = base64_decode(str_replace(chr(10), '', $id));
if ($file === false) {
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('comcode:CORRUPT_ATTACHMENT')));
break;
}
$md5 = md5(substr($file, 0, 30));
$original_filename = array_key_exists('filename', $attributes) ? $attributes['filename'] : $md5 . '.dat';
if (get_file_extension($original_filename) != 'dat') {
require_code('files2');
check_extension($original_filename, true);
$new_filename = $md5 . '.' . get_file_extension($original_filename) . '.dat';
} else {
$new_filename = $md5 . '.' . get_file_extension($original_filename);
}
$path = get_custom_file_base() . '/uploads/attachments/' . $new_filename;
$myfile = @fopen($path, 'wb');
if ($myfile === false) {
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => intelligent_write_error_inline($path)));
break;
}
if (fwrite($myfile, $file) < strlen($file)) {
warn_exit(do_lang_tempcode('COULD_NOT_SAVE_FILE'));
}
fclose($myfile);
fix_permissions($path);
sync_file($path);
$_size = strlen($file);
$url = 'uploads/attachments/' . $new_filename;
if ($connection->connection_write != $GLOBALS['SITE_DB']->connection_write) {
$url = get_custom_base_url() . '/' . $url;
}
// Thumbnail
if ($thumb_url == '') {
require_code('images');
if (is_image($original_filename)) {
$gd = get_option('is_on_gd') == '1' && function_exists('imagetypes');
if ($gd) {
require_code('images');
if (!is_saveable_image($url)) {
$ext = '.png';
} else {
$ext = '.' . get_file_extension($original_filename);
}
$thumb_url = 'uploads/attachments_thumbs/' . $md5 . $ext;
convert_image(get_custom_base_url() . '/' . $url, get_custom_file_base() . '/' . $thumb_url, -1, -1, intval(get_option('thumb_width')), true, NULL, false, true);
if ($connection->connection_write != $GLOBALS['SITE_DB']->connection_write) {
$thumb_url = get_custom_base_url() . '/' . $thumb_url;
}
} else {
$thumb_url = $url;
}
}
}
if (addon_installed('galleries')) {
require_code('images');
if (is_video($url) && $connection->connection_read == $GLOBALS['SITE_DB']->connection_read) {
require_code('transcoding');
$url = transcode_video($url, 'attachments', 'a_url', 'a_original_filename', NULL, NULL);
}
}
$attachment = array('a_member_id' => $on_behalf_of_member, 'a_file_size' => $_size, 'a_url' => $url, 'a_thumb_url' => $thumb_url, 'a_original_filename' => $original_filename, 'a_num_downloads' => 0, 'a_last_downloaded_time' => NULL, 'a_add_time' => time());
$attachment['a_description'] = array_key_exists('description', $attributes) ? is_object($attributes['description']) ? '[html]' . $attributes['description']->evaluate() . '[/html]' : $attributes['description'] : '';
$attach_id = $connection->query_insert('attachments', $attachment, true);
$attachment['id'] = $attach_id;
// Create and document attachment
if (!array_key_exists('type', $attributes)) {
$attributes['type'] = 'auto';
}
$COMCODE_ATTACHMENTS[$pass_id][] = array('tag_type' => $tag, 'type' => 'new', 'attachmenttype' => $attributes['type'], 'description' => $attachment['a_description'], 'id' => intval($attach_id), 'marker' => $marker, 'comcode' => $comcode);
// Marker will allow us to search back and replace this with the added id
} elseif (!is_numeric($id)) {
require_code('uploads');
if (substr($id, 0, 4) == 'new_') {
$_id = substr($id, 4);
if (!is_numeric($_id)) {
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('comcode:INVALID_ATTACHMENT')));
break;
}
$attributes['type'] = post_param('attachmenttype' . $_id, array_key_exists('type', $attributes) ? $attributes['type'] : 'auto');
if (substr($attributes['type'], -8) == '_extract') {
$attributes['type'] = substr($attributes['type'], 0, strlen($attributes['type']) - 8);
}
$urls = get_url('', 'file' . $_id, 'uploads/attachments', 2, OCP_UPLOAD_ANYTHING, (!array_key_exists('thumb', $attributes) || $attributes['thumb'] != '0') && $thumb_url == '', '', '', true, true, true);
if ($urls[0] == '') {
return new ocp_tempcode();
}
//warn_exit(do_lang_tempcode('ERROR_UPLOADING')); Can't do this, because this might not be post-calculated if something went wrong once
is_swf_upload(true);
$_size = $_FILES['file' . $_id]['size'];
$original_filename = $_FILES['file' . $_id]['name'];
if (get_magic_quotes_gpc()) {
$original_filename = stripslashes($original_filename);
}
} elseif (substr($id, 0, 4) == 'url_') {
if (!has_specific_permission($source_member, 'draw_to_server') && !$as_admin) {
break;
}
$_id = '!';
$attributes['type'] = post_param('attachmenttype' . $_id, array_key_exists('type', $attributes) ? $attributes['type'] : 'auto');
$url = remove_url_mistakes(substr($id, 4));
$_POST['_specify_url'] = $url;
// Little hack, as we need to read it from a POST
if (get_magic_quotes_gpc()) {
$_POST['_specify_url'] = addslashes($_POST['_specify_url']);
}
$urls = get_url('_specify_url', '', 'uploads/filedump', 1, OCP_UPLOAD_ANYTHING, (!array_key_exists('thumb', $attributes) || $attributes['thumb'] != '0') && $thumb_url == '', '', '', true, true);
if ($urls[0] == '') {
return new ocp_tempcode();
}
$original_filename = rawurldecode(substr($url, strrpos($url, '/') + 1));
if (url_is_local($urls[0])) {
$_size = @filesize(get_custom_file_base() . '/' . rawurldecode($urls[0]));
if ($_size === false) {
$_size = filesize(get_file_base() . '/' . rawurldecode($urls[0]));
}
} else {
$_size = 0;
}
} else {
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('comcode:INVALID_ATTACHMENT')));
break;
}
if ($urls[0] == '') {
require_code('images');
require_code('files2');
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('ATTACHMENT_WOULD_NOT_UPLOAD', float_format(get_max_file_size() / 1024 / 1024), float_format(get_max_image_size() / 1024 / 1024))));
break;
}
$url = $urls[0];
if ($connection->connection_write != $GLOBALS['SITE_DB']->connection_write) {
$url = get_custom_base_url() . '/' . $url;
}
if ($thumb_url == '') {
$thumb_url = array_key_exists(1, $urls) ? $urls[1] : '';
}
if ($thumb_url != '' && $connection != $GLOBALS['SITE_DB']) {
$thumb_url = get_custom_base_url() . '/' . $thumb_url;
}
$num_downloads = 0;
$last_downloaded_time = NULL;
$add_time = time();
$member_id = $on_behalf_of_member;
if (addon_installed('galleries')) {
require_code('images');
if (is_video($url) && $connection->connection_read == $GLOBALS['SITE_DB']->connection_read) {
require_code('transcoding');
$url = transcode_video($url, 'attachments', 'a_url', 'a_original_filename', NULL, NULL);
}
}
$attachment = array('a_member_id' => $member_id, 'a_file_size' => $_size, 'a_url' => $url, 'a_thumb_url' => $thumb_url, 'a_original_filename' => $original_filename, 'a_num_downloads' => $num_downloads, 'a_last_downloaded_time' => $last_downloaded_time, 'a_add_time' => $add_time);
$attachment['a_description'] = post_param('caption' . $_id, array_key_exists('description', $attributes) ? is_object($attributes['description']) ? '[html]' . $attributes['description']->evaluate() . '[/html]' : $attributes['description'] : '');
$attach_id = $connection->query_insert('attachments', $attachment, true);
$attachment['id'] = $attach_id;
if ($tag == 'attachment2' || $tag == 'attachment_safe' || substr($id, 0, 4) == 'url_') {
$connection->query_delete('attachment_refs', array('r_referer_type' => 'null', 'r_referer_id' => '', 'a_id' => $attachment['id']), '', 1);
$connection->query_insert('attachment_refs', array('r_referer_type' => 'null', 'r_referer_id' => '', 'a_id' => $attachment['id']));
}
// Create and document attachment
$COMCODE_ATTACHMENTS[$pass_id][] = array('tag_type' => $tag, 'time' => time(), 'type' => substr($id, 0, 4) == 'new_' ? 'new' : 'url', 'attachmenttype' => $attributes['type'], 'description' => $attachment['a_description'], 'id' => intval($attach_id), 'marker' => $marker, 'comcode' => $comcode);
// Marker will allow us to search back and replace this with the added id
// Existing attachments
} else {
$__id = intval($id);
// Check we have permission to re-use this
$owner = $connection->query_value_null_ok('attachments', 'a_member_id', array('id' => $__id));
if (is_null($owner)) {
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('MISSING_RESOURCE_COMCODE', 'attachment', escape_html(strval($__id)))));
if (!in_array(get_page_name(), $GLOBALS['DONT_CARE_MISSING_PAGES']) && !running_script('iframe')) {
require_code('failure');
relay_error_notification(do_lang('MISSING_RESOURCE_COMCODE', 'attachment', strval($__id)), false, $GLOBALS['FORUM_DRIVER']->is_staff($source_member) ? 'error_occurred_missing_reference_important' : 'error_occurred_missing_reference');
}
break;
}
$_attachment = $connection->query_select('attachments', array('*'), array('id' => $__id), '', 1);
$attachment = $_attachment[0];
$already_referenced = array_key_exists($__id, $GLOBALS['ATTACHMENTS_ALREADY_REFERENCED']);
if ($already_referenced || $as_admin || $source_member === $owner || (has_specific_permission($source_member, 'reuse_others_attachments') || $owner == $source_member) && has_attachment_access($source_member, $__id)) {
if (!array_key_exists('type', $attributes)) {
$attributes['type'] = 'auto';
}
$COMCODE_ATTACHMENTS[$pass_id][] = array('tag_type' => $tag, 'time' => $attachment['a_add_time'], 'type' => 'existing', 'id' => $__id, 'attachmenttype' => $attributes['type'], 'marker' => $marker, 'comcode' => $comcode);
} else {
require_lang('permissions');
$username = $GLOBALS['FORUM_DRIVER']->get_username($source_member);
if (is_null($username)) {
$username = do_lang('DELETED');
}
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('permissions:ACCESS_DENIED__REUSE_ATTACHMENT', $username)));
break;
//access_denied('REUSE_ATTACHMENT');
}
if ($connection->connection_write != $GLOBALS['SITE_DB']->connection_write) {
if (url_is_local($attachment['a_url'])) {
$attachment['a_url'] = get_custom_base_url() . '/' . $attachment['a_url'];
}
if (url_is_local($attachment['a_url'])) {
$attachment['a_thumb_url'] = get_custom_base_url() . '/' . $attachment['a_thumb_url'];
}
}
$attachment['a_description'] = array_key_exists('description', $attributes) ? is_object($attributes['description']) ? '[html]' . $attributes['description']->evaluate() . '[/html]' : $attributes['description'] : $attachment['a_description'];
}
// Now, render it
// ==============
$temp_tpl = render_attachment($tag, $attributes, $attachment, $pass_id, $source_member, $as_admin, $connection, $highlight_bits, $on_behalf_of_member, $semiparse_mode);
if (array_key_exists('float', $attributes)) {
$temp_tpl = do_template('FLOATER', array('_GUID' => '802fe29019be80993296de7cc8b5cc5e', 'FLOAT' => $attributes['float'], 'CONTENT' => $temp_tpl));
}
break;
case 'include':
$codename = $embed->evaluate();
$zone = $attributes['param'];
if ($zone == '_SEARCH') {
$zone = get_comcode_zone($codename);
}
if ($zone == '_SELF') {
$zone = get_zone_name();
}
$temp_comcode_parse_title = $COMCODE_PARSE_TITLE;
$temp = request_page($codename, false, $zone, NULL, true);
$COMCODE_PARSE_TITLE = $temp_comcode_parse_title;
if ($temp->is_empty()) {
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('MISSING_RESOURCE_COMCODE', 'include', hyperlink(build_url(array('page' => 'cms_comcode_pages', 'type' => '_ed', 'page_link' => $zone . ':' . $codename), get_module_zone('cms_comcode_pages')), $zone . ':' . $codename, false, true))));
if (!in_array(get_page_name(), $GLOBALS['DONT_CARE_MISSING_PAGES']) && !running_script('iframe')) {
require_code('failure');
relay_error_notification(do_lang('MISSING_RESOURCE_COMCODE', 'include', $zone . ':' . $codename), false, $GLOBALS['FORUM_DRIVER']->is_staff($source_member) ? 'error_occurred_missing_reference_important' : 'error_occurred_missing_reference');
}
} else {
$temp_tpl = symbol_tempcode('LOAD_PAGE', array($codename, $zone));
}
break;
case 'random':
unset($attributes['param']);
if ($wml) {
$top_attribute = array_pop($attributes);
$temp_tpl = is_object($top_attribute) ? $top_attribute : comcode_to_tempcode($top_attribute, $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
break;
}
$max = $embed->evaluate() == '' ? intval($embed->evaluate()) : 0;
foreach ($attributes as $num => $val) {
$_temp = is_object($val) ? $val : comcode_to_tempcode($val, $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
$attributes[$num] = $_temp->evaluate();
if (intval($num) > $max) {
$max = intval($num);
}
}
$_parts = new ocp_tempcode();
krsort($attributes);
foreach ($attributes as $num => $val) {
$_parts->attach(do_template('COMCODE_RANDOM_PART', array('_GUID' => '5fa49a916304f9caa0ddedeb01531142', 'NUM' => strval($num), 'VAL' => $val)));
}
$temp_tpl = do_template('COMCODE_RANDOM', array('_GUID' => '9b77aaf593b12c763fb0c367fab415b6', 'UNIQID' => uniqid('', true), 'FULL' => $embed, 'MAX' => strval($max), 'PARTS' => $_parts));
break;
case 'jumping':
unset($attributes['param']);
if ($wml) {
$top_attribute = array_pop($attributes);
$temp_tpl = is_object($top_attribute) ? $top_attribute : comcode_to_tempcode($top_attribute, $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
break;
}
$_parts = new ocp_tempcode();
foreach ($attributes as $val) {
$_temp = is_object($val) ? $val : comcode_to_tempcode($val, $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
$_parts->attach(do_template('COMCODE_JUMPING_PART', array('_GUID' => 'd163bd11920f39f0cb8ff2f6ba48bc80', 'PART' => $_temp->evaluate())));
}
$embed = $embed->evaluate();
$temp_tpl = do_template('COMCODE_JUMPING', array('_GUID' => '85e9f83ed134868436a7db7692f56047', 'UNIQID' => uniqid('', true), 'FULL' => implode(', ', $attributes), 'TIME' => strval((int) $embed), 'PARTS' => $_parts));
break;
case 'shocker':
if ($wml) {
$top_attribute = array_pop($attributes);
$temp_tpl = is_object($top_attribute) ? $top_attribute : comcode_to_tempcode($top_attribute, $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
break;
}
$_parts = new ocp_tempcode();
foreach ($attributes as $key => $val) {
if (substr($key, 0, 5) == 'left_') {
$left = $val;
$right = array_key_exists('right_' . substr($key, 5), $attributes) ? $attributes['right_' . substr($key, 5)] : '';
$left = is_object($left) ? $left : comcode_to_tempcode($left, $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
$right = is_object($right) ? $right : comcode_to_tempcode($right, $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
$_parts->attach(do_template('COMCODE_SHOCKER_PART', array('LEFT' => $left, 'RIGHT' => $right)));
}
}
$min_color = array_key_exists('min', $attributes) ? $attributes['min'] : '0000FF';
$max_color = array_key_exists('max', $attributes) ? $attributes['max'] : 'FF0044';
if (substr($min_color, 0, 1) == '#') {
$min_color = substr($min_color, 1);
}
if (substr($max_color, 0, 1) == '#') {
$max_color = substr($max_color, 1);
}
$embed = $embed->evaluate();
$temp_tpl = do_template('COMCODE_SHOCKER', array('UNIQID' => uniqid('', true), 'MIN_COLOR' => $min_color, 'MAX_COLOR' => $max_color, 'FULL' => implode(', ', $attributes), 'TIME' => strval(intval($embed)), 'PARTS' => $_parts));
break;
case 'ticker':
if ($wml) {
$temp_tpl = $embed;
break;
}
$width = $attributes['param'];
if (!is_numeric($width)) {
$width = '300';
}
$fspeed = array_key_exists('speed', $attributes) ? float_to_raw_string(floatval($attributes['speed'])) : '1';
$temp_tpl = do_template('COMCODE_TICKER', array('_GUID' => 'e48893cda61995261577f0556443c537', 'UNIQID' => uniqid('', true), 'SPEED' => $fspeed, 'WIDTH' => $width, 'TEXT' => $embed));
break;
case 'highlight':
if ($wml) {
$temp_tpl->attach('<i>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</i>');
break;
}
$temp_tpl = do_template('COMCODE_HIGHLIGHT', array('_GUID' => '695d041b6605f06ec2aeee1e82f87185', 'CONTENT' => $embed));
break;
case 'size':
$size = array_key_exists('param', $attributes) ? $attributes['param'] : '1';
if ($wml) {
if (floatval($size) >= 1.5) {
$temp_tpl->attach('<big>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</big>');
} elseif (floatval($size) < 0.8) {
$temp_tpl->attach('<small>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</small>');
} else {
$temp_tpl->attach($embed);
}
break;
}
if (is_numeric($size)) {
$size = 'font-size: ' . $size . 'em;';
} elseif (substr($size, 0, 1) == '+') {
$size = 'font-size: ' . substr($size, 1) . 'em';
} elseif (substr($size, -1) == '%') {
$size = 'font-size: ' . float_to_raw_string(floatval(substr($size, 0, strlen($size) - 1)) / 100.0) . 'em';
} elseif (substr($size, -2) == 'of') {
$new_size = '1em';
switch ($size) {
case '1of':
$new_size = '8pt';
break;
case '2of':
$new_size = '10pt';
break;
case '3of':
$new_size = '12pt';
break;
case '4of':
$new_size = '14pt';
break;
case '5of':
$new_size = '18pt';
break;
case '6of':
$new_size = '24pt';
break;
case '7of':
$new_size = '36pt';
break;
}
$size = 'font-size: ' . $new_size;
} else {
$size = 'font-size: ' . $size;
}
$size_len = strlen($size);
filter_html($as_admin, $source_member, 0, $size_len, $size, false, false);
$temp_tpl = do_template('COMCODE_FONT', array('_GUID' => 'fb23fdcb45aabdfeca9f37ed8098948e', 'CONTENT' => $embed, 'SIZE' => $size, 'COLOR' => '', 'FACE' => ''));
break;
case 'color':
if ($wml) {
$temp_tpl = $embed;
break;
}
$color = array_key_exists('param', $attributes) ? 'color: ' . $attributes['param'] . ';' : '';
$temp_tpl = do_template('COMCODE_FONT', array('_GUID' => 'bd146414c9239ba2076f4b683df437d7', 'CONTENT' => $embed, 'SIZE' => '', 'COLOR' => $color, 'FACE' => ''));
$color_len = strlen($color);
filter_html($as_admin, $source_member, 0, $color_len, $color, false, false);
break;
case 'tt':
if ($wml) {
$temp_tpl->attach('<i>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</i>');
break;
}
$temp_tpl = do_template('COMCODE_TELETYPE', array('CONTENT' => $embed));
break;
case 'samp':
if ($wml) {
$temp_tpl->attach('<i>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</i>');
break;
}
$temp_tpl = do_template('COMCODE_SAMP', array('CONTENT' => $embed));
break;
case 'q':
if ($wml) {
$temp_tpl->attach('<i>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</i>');
break;
}
$temp_tpl = do_template('COMCODE_Q', array('CONTENT' => $embed));
break;
case 'var':
if ($wml) {
$temp_tpl->attach('<i>');
$temp_tpl->attach($embed);
$temp_tpl->attach('</i>');
break;
}
$temp_tpl = do_template('COMCODE_VAR', array('CONTENT' => $embed));
break;
case 'font':
$face = $attributes['param'];
if ($face == '' && array_key_exists('face', $attributes)) {
$face = $attributes['face'];
}
$color = array_key_exists('color', $attributes) ? $attributes['color'] : '';
$size = array_key_exists('size', $attributes) ? $attributes['size'] : '';
if ($face == '/') {
$face = '';
}
if ($color == '/') {
$color = '';
}
if ($size == '/') {
$size = '';
}
if ($wml) {
$before = '';
$after = '';
if ($size != '') {
if (floatval($size) >= 1.5) {
$before = '<big>';
$after = '</big>';
} elseif (floatval($size) < 0.8) {
$before = '<small>';
$after = '</small>';
}
}
$temp_tpl->attach($before);
$temp_tpl->attach($embed);
$temp_tpl->attach($after);
break;
}
if ($color != '') {
$color = 'color: ' . $color . ';';
}
if ($size != '') {
if (is_numeric($size)) {
$size = 'font-size: ' . $size . 'em;';
} elseif (substr($size, 0, 1) == '+') {
$size = 'font-size: ' . substr($size, 1) . 'em';
} elseif (substr($size, -1) == '%') {
$size = 'font-size: ' . float_to_raw_string(floatval(substr($size, 0, strlen($size) - 1)) / 100.0) . 'em';
} elseif (substr($size, -2) == 'of') {
$new_size = '1em';
switch ($size) {
case '1of':
$new_size = '8pt';
break;
case '2of':
$new_size = '10pt';
break;
case '3of':
$new_size = '12pt';
break;
case '4of':
$new_size = '14pt';
break;
case '5of':
$new_size = '18pt';
break;
case '6of':
$new_size = '24pt';
break;
case '7of':
$new_size = '36pt';
break;
}
$size = 'font-size: ' . $new_size;
} else {
$size = 'font-size: ' . $size;
}
}
if ($face != '') {
$face = 'font-family: ' . str_replace('\'', '', $face) . ';';
}
$size_len = strlen($size);
filter_html($as_admin, $source_member, 0, $size_len, $size, false, false);
$color_len = strlen($color);
filter_html($as_admin, $source_member, 0, $color_len, $color, false, false);
$face_len = strlen($face);
filter_html($as_admin, $source_member, 0, $face_len, $face, false, false);
$temp_tpl = do_template('COMCODE_FONT', array('_GUID' => 'f5fcafe737b8fdf466a6a51773e09c9b', 'CONTENT' => $embed, 'SIZE' => $size, 'COLOR' => $color, 'FACE' => $face));
break;
case 'box':
if ($wml) {
$temp_tpl->attach('<br /><p>');
if ($attributes['param'] != '') {
$temp_tpl->attach('<big>');
$temp_tpl->attach($attributes['param']);
$temp_tpl->attach('</big><br /><br />');
}
$temp_tpl->attach($embed);
$temp_tpl->attach('</p></br />');
break;
}
// Legacy parameter. There used to be 'place' and 'nowrap' and 'class', but these are now gone.
$breadth = array_key_exists('breadth', $attributes) ? $attributes['breadth'] : '100%';
if ($breadth == 'WIDE') {
$breadth = '100%';
}
if ($breadth == 'WIDE_HIGH') {
$breadth = '100%';
}
if ($breadth == 'THIN') {
$breadth = 'auto';
}
// The new versions
$dimensions = array_key_exists('dimensions', $attributes) ? comcode_to_tempcode($attributes['dimensions'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member) : make_string_tempcode($breadth);
$type = array_key_exists('type', $attributes) ? $attributes['type'] : '';
$options = array_key_exists('options', $attributes) ? $attributes['options'] : '';
$meta = $comcode_dangerous && array_key_exists('meta', $attributes) ? $attributes['meta'] : '';
//Insecure, unneeded here
$links = $comcode_dangerous && array_key_exists('links', $attributes) ? $attributes['links'] : '';
//Insecure, unneeded here
$converted = is_object($attributes['param']) ? $attributes['param'] : comcode_to_tempcode($attributes['param'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
$temp_tpl = directive_tempcode('BOX', $embed, array($converted, $dimensions, make_string_tempcode($type), make_string_tempcode($options), make_string_tempcode($meta), make_string_tempcode($links)));
if (array_key_exists('float', $attributes)) {
$temp_tpl = do_template('FLOATER', array('_GUID' => '54e8fc9ec1e16cfc5c8824e22f1e8745', 'FLOAT' => $attributes['float'], 'CONTENT' => $temp_tpl));
}
break;
case 'concept':
if ($wml) {
$temp_tpl = $embed;
break;
}
if (!array_key_exists('param', $attributes) || $attributes['param'] == '') {
$key = $embed->evaluate();
$temp_tpl = symbol_tempcode('DISPLAY_CONCEPT', array($key));
} else {
$temp_tpl = do_template('COMCODE_CONCEPT_INLINE', array('_GUID' => '381a59de4d6f8967446c12bf4641a9ce', 'TEXT' => $embed, 'FULL' => $attributes['param']));
}
break;
case 'concepts':
if ($wml) {
break;
}
$title = $embed->evaluate();
$concepts = new ocp_tempcode();
foreach ($attributes as $_key => $_value) {
if (substr($_key, -4) == '_key') {
$key = $_value;
$cid = substr($_key, 0, strlen($_key) - 4);
$to_parse = array_key_exists($cid . '_value', $attributes) ? $attributes[$cid . '_value'] : new ocp_tempcode();
$value = is_object($to_parse) ? $to_parse : comcode_to_tempcode($to_parse, $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
$concepts->attach(do_template('COMCODE_CONCEPTS_CONCEPT', array('_GUID' => '4baf6dabc32146c594c7fd922791b6b2', 'A' => 'concept___' . preg_replace('#[^\\w]#', '_', $key), 'KEY' => $key, 'VALUE' => $value)));
}
}
$temp_tpl = do_template('COMCODE_CONCEPTS', array('_GUID' => '4c7a1d70753dc1d209b9951aa10f361a', 'TITLE' => $title, 'CONCEPTS' => $concepts));
break;
case 'exp_ref':
if ($wml) {
break;
}
$_embed = $embed->evaluate();
if (strpos($_embed, '.') !== false) {
break;
}
$stub = get_file_base() . '/data_custom/images/' . get_zone_name() . '/';
$stub2 = get_base_url() . '/data_custom/images/' . get_zone_name() . '/';
if (!file_exists($stub)) {
$stub = get_file_base() . '/data/images/' . get_zone_name() . '/';
$stub2 = get_base_url() . '/data/images/' . get_zone_name() . '/';
}
if (!file_exists($stub)) {
$stub = get_file_base() . '/data_custom/images/';
$stub2 = get_base_url() . '/data_custom/images/';
}
if (!file_exists($stub)) {
$stub = get_file_base() . '/data/images/';
$stub2 = get_base_url() . '/data/images/';
}
if (substr($_embed, 0, 1) == '/') {
$_embed = substr($_embed, 1);
}
if (file_exists($stub . $_embed . '.png')) {
$url = $stub2 . $_embed . '.png';
} elseif (file_exists($stub . $_embed . '.gif')) {
$url = $stub2 . $_embed . '.gif';
} elseif (file_exists($stub . $_embed . '.jpg')) {
$url = $stub2 . $_embed . '.jpg';
} elseif (file_exists($stub . $_embed . '.jpeg')) {
$url = $stub2 . $_embed . '.jpeg';
} else {
$stub = get_file_base() . '/data/images/docs/';
$stub2 = get_base_url() . '/data/images/docs/';
if (substr($_embed, 0, 1) == '/') {
$_embed = substr($_embed, 1);
}
if (file_exists($stub . $_embed . '.png')) {
$url = $stub2 . $_embed . '.png';
} elseif (file_exists($stub . $_embed . '.gif')) {
$url = $stub2 . $_embed . '.gif';
} elseif (file_exists($stub . $_embed . '.jpg')) {
$url = $stub2 . $_embed . '.jpg';
} elseif (file_exists($stub . $_embed . '.jpeg')) {
$url = $stub2 . $_embed . '.jpeg';
} else {
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('MISSING_RESOURCE_COMCODE', 'exp_ref', escape_html($_embed))));
if (array_key_exists('COMCODE_BROKEN_URLS', $GLOBALS)) {
$GLOBALS['COMCODE_BROKEN_URLS'][] = array($_embed, NULL);
} elseif (!in_array(get_page_name(), $GLOBALS['DONT_CARE_MISSING_PAGES']) && !running_script('iframe')) {
require_code('failure');
relay_error_notification(do_lang('MISSING_RESOURCE_COMCODE', 'exp_ref', $_embed), false, $GLOBALS['FORUM_DRIVER']->is_staff($source_member) ? 'error_occurred_missing_reference_important' : 'error_occurred_missing_reference');
}
break;
}
}
$text = make_string_tempcode($attributes['param']);
if ($text->is_empty()) {
$text = do_lang_tempcode('EXAMPLE');
}
$temp_tpl = do_template('COMCODE_EXP_REF', array('_GUID' => '89e7f528e72096e3458d6acb70734d0b', 'TEXT' => $text, 'URL' => $url));
break;
case 'exp_thumb':
if ($wml) {
break;
}
$_embed = $embed->evaluate();
if (strpos($_embed, '.') !== false) {
break;
}
$stub = get_file_base() . '/data/images/' . get_zone_name() . '/';
$stub2 = get_base_url() . '/data/images/' . get_zone_name() . '/';
if (substr($_embed, 0, 1) == '/') {
$_embed = substr($_embed, 1);
}
if (file_exists($stub . $_embed . '.png')) {
$url_full = $stub2 . $_embed . '.png';
} elseif (file_exists($stub . $_embed . '.gif')) {
$url_full = $stub2 . $_embed . '.gif';
} elseif (file_exists($stub . $_embed . '.jpg')) {
$url_full = $stub2 . $_embed . '.jpg';
} elseif (file_exists($stub . $_embed . '.jpeg')) {
$url_full = $stub2 . $_embed . '.jpeg';
} else {
$stub = get_file_base() . '/data/images/docs/';
$stub2 = get_base_url() . '/data/images/docs/';
if (substr($_embed, 0, 1) == '/') {
$_embed = substr($_embed, 1);
}
if (file_exists($stub . $_embed . '.png')) {
$url_full = $stub2 . $_embed . '.png';
} elseif (file_exists($stub . $_embed . '.gif')) {
$url_full = $stub2 . $_embed . '.gif';
} elseif (file_exists($stub . $_embed . '.jpg')) {
$url_full = $stub2 . $_embed . '.jpg';
} elseif (file_exists($stub . $_embed . '.jpeg')) {
$url_full = $stub2 . $_embed . '.jpeg';
} else {
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('MISSING_RESOURCE_COMCODE', 'exp_thumb', escape_html($_embed))));
if (array_key_exists('COMCODE_BROKEN_URLS', $GLOBALS)) {
$GLOBALS['COMCODE_BROKEN_URLS'][] = $_embed;
} elseif (!in_array(get_page_name(), $GLOBALS['DONT_CARE_MISSING_PAGES']) && !running_script('iframe')) {
require_code('failure');
relay_error_notification(do_lang('MISSING_RESOURCE_COMCODE', 'exp_thumb', $_embed), false, $GLOBALS['FORUM_DRIVER']->is_staff($source_member) ? 'error_occurred_missing_reference_important' : 'error_occurred_missing_reference');
}
break;
}
}
$float = array_key_exists('float', $attributes) ? $attributes['float'] : 'right';
$text = $attributes['param'];
if (get_option('is_on_gd') == '0' || !function_exists('imagetypes')) {
$url_thumb = $url_full;
} else {
$new_name = $_embed . '_thumb.png';
$file_thumb = $stub . $new_name;
if (file_exists($file_thumb)) {
$url_thumb = $stub2 . rawurlencode($new_name);
} else {
$new_name = $_embed . '.png';
$file_thumb = get_custom_file_base() . '/uploads/auto_thumbs/' . $new_name;
if (!file_exists($file_thumb)) {
require_code('images');
convert_image($url_full, $file_thumb, -1, -1, 150, false);
}
$url_thumb = get_custom_base_url() . '/uploads/auto_thumbs/' . rawurlencode($new_name);
}
}
if (get_param_integer('wide_print', 0) == 1) {
$temp_tpl = do_template('COMCODE_EXP_THUMB_PRINT', array('_GUID' => 'de7f8a7fa29c2335f381a0beb3da9406', 'FLOAT' => $float, 'TEXT' => $text, 'URL_THUMB' => $url_thumb, 'URL_FULL' => $url_full));
} else {
$temp_tpl = do_template('COMCODE_EXP_THUMB', array('_GUID' => 'ce7f8a7fa29c2335f381a0beb3da9406', 'FLOAT' => $float, 'TEXT' => $text, 'URL_THUMB' => $url_thumb, 'URL_FULL' => $url_full));
}
break;
case 'thumb':
if ($wml) {
break;
}
$_embed = $embed->evaluate();
$_embed = remove_url_mistakes($_embed);
$_embed = check_naughty_javascript_url($source_member, $_embed, $as_admin);
if (substr($_embed, 0, 1) == '/') {
$_embed = substr($_embed, 1);
}
if (url_is_local($_embed)) {
if (file_exists(get_file_base() . '/' . $_embed) && !file_exists(get_custom_file_base() . '/' . $_embed)) {
$url_full = get_base_url() . '/' . $_embed;
} else {
$url_full = get_custom_base_url() . '/' . $_embed;
}
} else {
$url_full = $_embed;
}
$align = array_key_exists('align', $attributes) ? $attributes['align'] : 'bottom';
if (get_option('is_on_gd') == '0' || !function_exists('imagetypes') || !has_specific_permission($source_member, 'draw_to_server') && !$as_admin) {
$url_thumb = $url_full;
} else {
if ($attributes['param'] != '') {
$url_thumb = url_is_local($attributes['param']) ? get_custom_base_url() . '/' . $attributes['param'] : $attributes['param'];
}
if ($attributes['param'] == '' || url_is_local($attributes['param']) && !file_exists(get_custom_file_base() . '/' . rawurldecode($attributes['param']))) {
$new_name = url_to_filename($url_full);
require_code('images');
if (!is_saveable_image($new_name)) {
$new_name .= '.png';
}
if (is_null($new_name)) {
$temp_tpl = do_template('WARNING_TABLE', array('WARNING' => do_lang_tempcode('URL_THUMB_TOO_LONG')));
break;
}
$file_thumb = get_custom_file_base() . '/uploads/auto_thumbs/' . $new_name;
if (!file_exists($file_thumb) && strpos($file_thumb, '{$') === false) {
convert_image($url_full, $file_thumb, -1, -1, intval(get_option('thumb_width')), false);
}
$url_thumb = get_custom_base_url() . '/uploads/auto_thumbs/' . rawurlencode($new_name);
}
}
$caption = array_key_exists('caption', $attributes) ? $attributes['caption'] : '';
$temp_tpl = do_template('COMCODE_THUMB', array('_GUID' => '1b0d25f72ef5f816091269e29c586d60', 'CAPTION' => $caption, 'RAND' => strval(mt_rand(0, 32000)), 'ALIGN' => $align, 'PASS_ID' => intval($pass_id) < 0 ? strval(mt_rand(0, 10000)) : $pass_id, 'URL_THUMB' => $url_thumb, 'URL_FULL' => $url_full));
if (array_key_exists('float', $attributes)) {
$temp_tpl = do_template('FLOATER', array('_GUID' => 'cbc56770714a44f56676f43da282cc7a', 'FLOAT' => $attributes['float'], 'CONTENT' => $temp_tpl));
}
break;
case 'img':
if ($wml) {
break;
}
if ($semiparse_mode && array_key_exists('rollover', $attributes)) {
$temp_tpl = make_string_tempcode('[img' . reinsert_parameters($attributes) . ']' . $embed->evaluate() . '[/img]');
break;
}
$_embed = $embed->evaluate();
$given_url = $_embed;
$_embed = remove_url_mistakes($_embed);
if (substr($_embed, 0, 1) == '/') {
$_embed = substr($_embed, 1);
}
$_embed = check_naughty_javascript_url($source_member, $_embed, $as_admin);
if (url_is_local($_embed)) {
if (file_exists(get_file_base() . '/' . $_embed) && !file_exists(get_custom_file_base() . '/' . $_embed)) {
$url_full = get_base_url() . '/' . $_embed;
} else {
$url_full = get_custom_base_url() . '/' . $_embed;
}
} else {
$url_full = $_embed;
}
$temp_tpl = test_url($url_full, 'img', @html_entity_decode($given_url, ENT_QUOTES, get_charset()), $source_member);
$align = array_key_exists('align', $attributes) ? $attributes['align'] : '';
$caption = is_object($attributes['param']) ? $attributes['param'] : comcode_to_tempcode($attributes['param'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
if (array_key_exists('title', $attributes)) {
$tooltip = is_object($attributes['title']) ? $attributes['title'] : comcode_to_tempcode($attributes['title'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
} else {
$tooltip = $caption;
}
$rollover = array_key_exists('rollover', $attributes) ? $attributes['rollover'] : NULL;
if (!is_null($rollover) && url_is_local($rollover)) {
if (file_exists(get_file_base() . '/' . $rollover) && !file_exists(get_custom_file_base() . '/' . $rollover)) {
$rollover = get_base_url() . '/' . $rollover;
} else {
$rollover = get_custom_base_url() . '/' . $rollover;
}
}
$refresh_time = array_key_exists('refresh_time', $attributes) ? strval(intval($attributes['refresh_time'])) : '0';
$temp_tpl->attach(do_template('COMCODE_IMG', array('_GUID' => '70166d8dbb0aff064b99c0dd30ed77a8', 'RAND' => uniqid('', true), 'REFRESH_TIME' => $refresh_time, 'ROLLOVER' => $rollover, 'ALIGN' => $align, 'URL' => $url_full, 'TOOLTIP' => $tooltip, 'CAPTION' => $caption)));
if (array_key_exists('float', $attributes)) {
$temp_tpl = do_template('FLOATER', array('_GUID' => '918162250c80e10212efd9a051545b9b', 'FLOAT' => $attributes['float'], 'CONTENT' => $temp_tpl));
}
break;
case 'flash':
if ($wml) {
break;
}
$_embed = $embed->evaluate();
$given_url = $_embed;
$_embed = remove_url_mistakes($_embed);
if (substr($_embed, 0, 1) == '/') {
$_embed = substr($_embed, 1);
}
$_embed = check_naughty_javascript_url($source_member, $_embed, $as_admin);
$url_full = url_is_local($_embed) ? get_custom_base_url() . '/' . $_embed : $_embed;
$temp_tpl = test_url($url_full, 'flash', @html_entity_decode($given_url, ENT_QUOTES, get_charset()), $source_member);
if ($attributes['param'] == '' || strpos($attributes['param'], 'x') === false) {
if (!array_key_exists('width', $attributes)) {
$attributes['width'] = '300';
}
if (!array_key_exists('height', $attributes)) {
$attributes['height'] = '300';
}
$attributes['param'] = $attributes['width'] . 'x' . $attributes['height'];
}
list($width, $height) = explode('x', $attributes['param'], 2);
if (addon_installed('jwplayer') && (substr($url_full, -4) == '.flv' || substr($url_full, -4) == '.mp4' || substr($url_full, -4) == '.mp3' || substr($url_full, -4) == '.webm')) {
$temp_tpl->attach(do_template('COMCODE_FLV', array('_GUID' => '4746684d9e098709cc6671e1b00ce47e', 'URL' => $url_full, 'WIDTH' => $width, 'HEIGHT' => $height)));
} else {
$temp_tpl->attach(do_template('COMCODE_SWF', array('_GUID' => '8bc61ad75977a5a85eff96454af31fe8', 'URL' => $url_full, 'WIDTH' => $width, 'HEIGHT' => $height)));
}
break;
case 'url':
// Make them both HTML strings
$url = $embed->evaluate();
if (is_object($attributes['param'])) {
$switch_over = true;
// We know if must be Comcode XML
$attributes['param'] = $attributes['param']->evaluate();
} else {
$switch_over = !looks_like_url($url) && looks_like_url($attributes['param'], true);
if (strpos($attributes['param'], '[') !== false || strpos($attributes['param'], '{') !== false) {
$param_temp = comcode_to_tempcode(escape_html($attributes['param']), $source_member, $as_admin, 60, NULL, $connection, false, false, true, false, false, $highlight_bits, $on_behalf_of_member);
global $ADVERTISING_BANNERS;
$temp_ab = $ADVERTISING_BANNERS;
$ADVERTISING_BANNERS = array();
$caption = $param_temp;
$ADVERTISING_BANNERS = $temp_ab;
} else {
$caption = make_string_tempcode(escape_html($attributes['param']));
// Consistency of escaping
}
}
// Do we need to switch around?
if ($switch_over) {
$url = $attributes['param'];
$caption = $embed;
}
// If we weren't given a caption, use the URL, but crop if necessary
if ($caption->evaluate() == '') {
$_caption = $url;
// Shorten the URL if it is too long
$max_link_length = 50;
if (strlen($_caption) > $max_link_length) {
$_caption = escape_html(substr(@html_entity_decode($_caption, ENT_QUOTES, get_charset()), 0, intval($max_link_length / 2 - 3))) . '…' . escape_html(substr(@html_entity_decode($_caption, ENT_QUOTES, get_charset()), intval(-$max_link_length / 2)));
}
$caption = make_string_tempcode($_caption);
}
// Tidy up the URL now
$url = @html_entity_decode($url, ENT_QUOTES, get_charset());
$url = fixup_protocolless_urls($url);
// Integrity and security
$url = check_naughty_javascript_url($source_member, $url, $as_admin);
// More URL tidying
$local = url_is_local($url) || strpos($url, get_domain()) !== false;
$given_url = $url;
if ($url != '' && $url[0] != '#') {
if (substr($url, 0, 1) == '/') {
$url = substr($url, 1);
}
$url_full = url_is_local($url) ? get_base_url() . '/' . $url : $url;
if ($GLOBALS['XSS_DETECT']) {
ocp_mark_as_escaped($url_full);
}
} else {
$url_full = $url;
}
$striped_base_url = str_replace('www.', '', str_replace('http://', '', get_base_url()));
if ($striped_base_url != '' && substr($url, 0, 1) != '%' && strpos($url_full, $striped_base_url) === false) {
$temp_tpl = test_url($url_full, 'url', $given_url, $source_member);
}
// Render
if (!array_key_exists('target', $attributes)) {
$attributes['target'] = $local ? '_top' : '_blank';
}
if ($attributes['target'] == 'blank') {
$attributes['target'] = '_blank';
}
$rel = $as_admin || has_specific_permission($source_member, 'search_engine_links') ? '' : 'nofollow';
if ($attributes['target'] == '_blank') {
$title = (is_object($caption) ? static_evaluate_tempcode($caption) : $caption) . ' ' . do_lang('LINK_NEW_WINDOW');
} else {
$title = '';
}
$temp_tpl->attach(do_template('COMCODE_URL', array('_GUID' => 'd1657530e6d3d57e6a4791fb3bfa0dd7', 'TITLE' => $title, 'REL' => $rel, 'TARGET' => $attributes['target'], 'URL' => $url_full, 'CAPTION' => $caption)));
break;
case 'email':
$_embed = $embed->evaluate();
require_code('type_validation');
require_code('obfuscate');
// If we need to switch
if (is_object($attributes['param']) || !is_valid_email_address($_embed) && is_valid_email_address($attributes['param'])) {
$temp = $embed;
// Is tempcode
$_embed = $attributes['param'];
$attributes['param'] = $temp;
} else {
$attributes['param'] = comcode_to_tempcode($attributes['param'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
// Becomes tempcode
}
if ($attributes['param']->is_empty()) {
$attributes['param'] = obfuscate_email_address($_embed);
}
$subject = array_key_exists('subject', $attributes) ? $attributes['subject'] : '';
$body = array_key_exists('body', $attributes) ? $attributes['body'] : '';
$title = '';
if (array_key_exists('title', $attributes)) {
$title = $attributes['title'];
}
$temp_tpl = do_template('COMCODE_EMAIL', array('_GUID' => '5f6ade8fe07701b6858575153d78f4e9', 'TITLE' => $title, 'ADDRESS' => obfuscate_email_address($_embed), 'SUBJECT' => $subject, 'BODY' => $body, 'CAPTION' => $attributes['param']));
break;
case 'reference':
if ($wml) {
break;
}
if (array_key_exists('type', $attributes) && $attributes['type'] == 'url') {
$_embed = $embed->evaluate();
$_embed = check_naughty_javascript_url($source_member, $_embed, $as_admin);
if (!array_key_exists('title', $attributes)) {
$attributes['title'] = $attributes['param'];
}
if (is_object($attributes['title']) || $attributes['title'] != '') {
$_title = is_object($attributes['title']) ? make_string_tempcode(escape_html($attributes['title'])) : comcode_to_tempcode($attributes['title'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
$title = $_title->evaluate();
} else {
$title = $_embed;
}
$embed = hyperlink($_embed, $title, true);
}
$temp_tpl = do_template('COMCODE_REFERENCE', array_merge($attributes, array('SOURCE' => $embed)));
break;
case 'upload':
// This points to a file path, not a URL
$_embed = $embed->evaluate();
$type = array_key_exists('type', $attributes) ? $attributes['type'] : 'downloads';
if (is_object($attributes['param']) || $attributes['param'] != '') {
$_caption = is_object($attributes['param']) ? make_string_tempcode(escape_html($attributes['param'])) : comcode_to_tempcode($attributes['param'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
$__caption = $_caption->evaluate();
} else {
$__caption = $_embed;
}
$url = get_custom_base_url() . '/' . $type . '/' . rawurlencode($_embed);
$url = check_naughty_javascript_url($source_member, $url, $as_admin);
$temp_tpl = test_url($url, 'upload', $_embed, $source_member);
$temp_tpl->attach(hyperlink($url, $__caption));
break;
case 'page':
$ignore_if_hidden = array_key_exists('ignore_if_hidden', $attributes) && $attributes['ignore_if_hidden'] == '1';
unset($attributes['ignore_if_hidden']);
// Two sets of parameters: simple style and complex style; both are completely incompatible
$hash = '';
if ($attributes == array('param' => '')) {
$zone = '_SEARCH';
$caption = $embed;
$attributes = array('page' => $caption->evaluate());
} elseif (array_keys($attributes) == array('param')) {
$caption = $embed;
if ($wml) {
$temp_tpl = $embed;
break;
} else {
if (strpos($attributes['param'], ':') !== false) {
global $OVERRIDE_SELF_ZONE;
$page_link = $attributes['param'];
list($zone, $attributes, $hash) = page_link_decode($page_link);
if (!array_key_exists('page', $attributes)) {
$attributes['page'] = '';
}
if ($zone == '_SELF' && !is_null($OVERRIDE_SELF_ZONE)) {
$zone = $OVERRIDE_SELF_ZONE;
}
} else {
$zone = '_SEARCH';
// Changed in v3 from '_SELF', to allow context-sensitivity
$attributes = array_merge(array('page' => $attributes['param']), $attributes);
}
}
} else {
$caption = array_key_exists('caption', $attributes) ? comcode_to_tempcode($attributes['caption'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member) : $embed;
if ($wml) {
$temp_tpl = $caption;
break;
} else {
$zone = $param_given ? $attributes['param'] : '_SEARCH';
// Changed in v3 from '_SELF', to allow context-sensitivity
unset($attributes['caption']);
if (!array_key_exists('page', $attributes)) {
$attributes = array_merge(array('page' => $embed->evaluate()), $attributes);
}
}
}
unset($attributes['param']);
foreach ($attributes as $key => $val) {
if (is_object($val)) {
$attributes[$key] = $val->evaluate();
}
}
if ($zone == '_SEARCH') {
$zone = get_page_zone($attributes['page'], false);
if (is_null($zone)) {
$zone = '';
}
}
$pl_url = build_url($attributes, $zone, NULL, false, false, false, $hash);
$temp_tpl = hyperlink($pl_url, $caption);
$page = $attributes['page'];
if ($page != '') {
if ($zone == '_SELF') {
$zone = get_zone_name();
}
if ($zone == '_SEARCH') {
$zone = get_page_zone($page, false);
if (is_null($zone)) {
$zone = '';
}
// Oh dear, well it will be correctly identified as not found anyway
}
$ptest = _request_page($page, $zone);
if ($ptest !== false) {
if ($page == 'topicview' && array_key_exists('id', $attributes)) {
if (!is_numeric($attributes['id'])) {
$attributes['id'] = $GLOBALS['SITE_DB']->query_value_null_ok('url_id_monikers', 'm_resource_id', array('m_resource_page' => $page, 'm_moniker' => $attributes['id']));
}
if (!is_null($attributes['id'])) {
$test = $GLOBALS['FORUM_DB']->query_value_null_ok('f_topics', 'id', array('id' => $attributes['id']));
if (is_null($test)) {
$ptest = false;
}
} else {
$ptest = false;
}
}
}
if ($ptest === false) {
//$temp_tpl->attach(' ['.do_lang('MISSING_RESOURCE').']'); // Don't want this as we might be making the page immediately
if (!in_array(get_page_name(), $GLOBALS['DONT_CARE_MISSING_PAGES']) && !in_array($page, $GLOBALS['DONT_CARE_MISSING_PAGES']) && !running_script('iframe')) {
if ($ignore_if_hidden) {
$temp_tpl = do_template('COMCODE_DEL', array('CONTENT' => $caption));
} else {
require_code('failure');
relay_error_notification(do_lang('MISSING_RESOURCE_COMCODE', 'page_link', $page_link), false, $GLOBALS['FORUM_DRIVER']->is_staff($source_member) ? 'error_occurred_missing_reference_important' : 'error_occurred_missing_reference');
}
}
}
}
break;
case 'hide':
if ($wml) {
$temp_tpl = $embed;
break;
}
if (array_key_exists('param', $attributes)) {
$text = is_object($attributes['param']) ? $attributes['param'] : comcode_to_tempcode($attributes['param'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member);
} else {
$text = do_lang_tempcode('EXPAND');
}
$temp_tpl = do_template('COMCODE_HIDE', array('_GUID' => 'a591a0d1e6bb3dde0f22cebb9c7ab93e', 'TEXT' => $text, 'CONTENT' => $embed));
break;
case 'quote':
if ($wml) {
$temp_tpl->attach('<br /><br />' . $attributes['param'] . ':');
$temp_tpl->attach($embed);
break;
}
$cite = array_key_exists('cite', $attributes) ? $attributes['cite'] : NULL;
if (!is_null($cite)) {
$temp_tpl = test_url($cite, 'quote', $cite, $source_member);
}
if ($attributes['param'] == '' && isset($attributes['author'])) {
$attributes['param'] = $attributes['author'];
}
// Compatibility with SMF
if ($attributes['param'] != '') {
if (is_numeric($attributes['param'])) {
$attributes['param'] = $GLOBALS['FORUM_DRIVER']->get_username($attributes['param']);
if (is_null($attributes['param'])) {
$attributes['param'] = do_lang('UNKNOWN');
}
} else {
$attributes['param'] = protect_from_escaping(comcode_to_tempcode($attributes['param'], $source_member, $as_admin, 60, NULL, $connection, false, false, false, false, false, $highlight_bits, $on_behalf_of_member));
}
$temp_tpl->attach(do_template('COMCODE_QUOTE_BY', array('_GUID' => '18f55a548892ad08b0b50b3b586b5b95', 'CITE' => $cite, 'CONTENT' => $embed, 'BY' => $attributes['param'], 'SAIDLESS' => array_key_exists('saidless', $attributes) ? $attributes['saidless'] : '0')));
} else {
$temp_tpl->attach(do_template('COMCODE_QUOTE', array('_GUID' => 'fa275de59433c17da19b22814c17fdc5', 'CITE' => $cite, 'CONTENT' => $embed)));
}
break;
case 'html':
if ($wml) {
break;
}
$temp_tpl = $embed;
// Plain HTML. But it's been filtered already
break;
case 'semihtml':
$temp_tpl = $embed;
// Hybrid HTML. But it's been filtered already
break;
case 'block':
if ($wml) {
break;
}
$attributes['block'] = trim($embed->evaluate());
if (preg_match('#^[\\w\\-]*$#', $attributes['block']) == 0) {
$temp_tpl = paragraph(do_lang_tempcode('MISSING_BLOCK_FILE', escape_html($attributes['block'])), '90dfdlksds8d7dyddssddxs', 'error_marker');
break;
// Avoids a suspected hack attempt by just filtering early
}
$_attributes = array();
foreach ($attributes as $key => $val) {
$_attributes[] = $key . '=' . $val;
}
$temp_tpl = symbol_tempcode('BLOCK', $_attributes);
break;
case 'contents':
if ($wml) {
break;
}
// Do structure sweep
$urls_for = array();
$old_structure_list = $STRUCTURE_LIST;
$STRUCTURE_LIST = array();
// reset for e.g. comcode_text_to_tempcode calls (which don't itself reset it, although _comcode_to_tempcode does for top level parses)
if (array_key_exists('files', $attributes) && $comcode_dangerous) {
$s_zone = array_key_exists('zone', $attributes) ? $attributes['zone'] : get_zone_name();
$pages = find_all_pages($s_zone, 'comcode_custom/' . get_site_default_lang(), 'txt') + find_all_pages($s_zone, 'comcode/' . get_site_default_lang(), 'txt');
$prefix = $attributes['files'];
foreach ($pages as $pg_name => $pg_type) {
if (substr($pg_name, 0, strlen($prefix)) == $prefix) {
$i = count($STRUCTURE_LIST);
comcode_to_tempcode(file_get_contents(zone_black_magic_filterer(get_file_base() . '/' . $s_zone . '/pages/' . $pg_type . '/' . $pg_name . '.txt'), FILE_TEXT), $source_member, $as_admin, 60, NULL, $connection, false, false, false, true, false, NULL, $on_behalf_of_member);
$page_url = build_url(array('page' => $pg_name), $s_zone);
while (array_key_exists($i, $STRUCTURE_LIST)) {
$urls_for[] = $page_url;
$i++;
}
}
}
$base = array_key_exists('base', $attributes) ? intval($attributes['base']) : 1;
} else {
if (substr($comcode, 0, 8) == '<comcode') {
require_code('comcode_xml');
if (!$as_admin) {
check_specific_permission('comcode_dangerous', NULL, $source_member);
}
$_ = new comcode_xml_to_tempcode($comcode, $source_member, 60, NULL, $connection, false, false, false, true, false, $on_behalf_of_member);
} else {
require_code('comcode_text');
comcode_text_to_tempcode($comcode, $source_member, $as_admin, 60, NULL, $connection, false, false, false, true, false, NULL, $on_behalf_of_member);
}
$base = array_key_exists('base', $attributes) ? intval($attributes['base']) : 1;
}
$list_types = $embed->evaluate() == '' ? array() : explode(',', $embed->evaluate());
$list_types += array('decimal', 'lower-alpha', 'lower-roman', 'upper-alpha', 'upper-roman', 'disc');
$levels_allowed = array_key_exists('levels', $attributes) ? intval($attributes['levels']) : NULL;
// Convert the list structure into a tree structure
$past_level_stack = array(1);
$subtree_stack = array(array());
$levels = 1;
foreach ($STRUCTURE_LIST as $i => $struct) {
$level = $struct[0];
$title = $struct[1];
$uniq_id = $struct[2];
$url = array_key_exists($i, $urls_for) ? $urls_for[$i] : '';
if ($level > $levels_allowed && !is_null($levels_allowed)) {
continue;
}
// Going down the tree
if ($level > $past_level_stack[$levels - 1]) {
array_push($past_level_stack, $level);
array_push($subtree_stack, array(array($uniq_id, $title->evaluate(), $url)));
$levels++;
} else {
// Going back up the tree, destroying levels that must have now closed off
while ($level < $past_level_stack[$levels - 1] && $levels > 2) {
array_pop($past_level_stack);
$subtree = array_pop($subtree_stack);
$levels--;
// Alter the last of the next level on stack so it is actually taking the closed off level as children, and changing from a property list to a pair: property list & children
$subtree_stack[$levels - 1][count($subtree_stack[$levels - 1]) - 1] = array($subtree_stack[$levels - 1][count($subtree_stack[$levels - 1]) - 1], $subtree);
}
// Store the title where we are
$subtree_stack[$levels - 1][] = array($uniq_id, $title->evaluate(), $url);
}
}
// Clean up... going up until we're with 1
while ($levels > 1) {
array_pop($past_level_stack);
$subtree = array_pop($subtree_stack);
$levels--;
$parent_level_start_index = count($subtree_stack[$levels - 1]) - 1;
if ($parent_level_start_index < 0) {
$subtree_stack[$levels - 1] = $subtree;
} else {
$subtree_stack[$levels - 1][$parent_level_start_index] = array($subtree_stack[$levels - 1][$parent_level_start_index], $subtree);
}
}
// Now we have the structure to display
$levels_t = _do_contents_level($subtree_stack[0], $list_types, $base);
$temp_tpl = do_template('COMCODE_CONTENTS', array('_GUID' => 'ca2f5320fa930e2257a2e74e4f98e5a0', 'LEVELS' => $levels_t));
$STRUCTURE_LIST = $old_structure_list;
// Restore, so subsequent 'title' tags have correct numbering
break;
}
// Last ditch effort: custom tags
if ($temp_tpl->is_definitely_empty() && !$wml) {
global $REPLACE_TARGETS;
if (array_key_exists($tag, $REPLACE_TARGETS)) {
$replace = $REPLACE_TARGETS[$tag]['replace'];
$parameters = explode(',', $REPLACE_TARGETS[$tag]['parameters']);
$binding = array('CONTENT' => $embed, 'RAND' => uniqid('', true));
foreach ($parameters as $parameter) {
$parameter = trim($parameter);
$parts = explode('=', $parameter);
if (count($parts) == 1) {
$parts[] = '';
}
if (count($parts) != 2) {
continue;
}
list($parameter, $default) = $parts;
if (!array_key_exists($parameter, $attributes) || $attributes[$parameter] == '') {
$attributes[$parameter] = $default;
}
$binding[strtoupper($parameter)] = $attributes[$parameter];
$replace = str_replace('{' . $parameter . '}', '{' . strtoupper($parameter) . '*}', $replace);
}
$replace = str_replace('{content}', array_key_exists($tag, $GLOBALS['TEXTUAL_TAGS']) ? '{CONTENT}' : '{CONTENT*}', $replace);
require_code('tempcode_compiler');
$temp_tpl = template_to_tempcode($replace);
$temp_tpl = $temp_tpl->bind($binding, '(custom comcode: ' . $tag . ')');
}
}
return $temp_tpl;
}
/**
* Get URLs generated according to the specified information. It can also generate a thumbnail if required. It first tries attached upload, then URL, then fails.
*
* @param ID_TEXT The name of the POST parameter storing the URL (if '', then no POST parameter). Parameter value may be blank.
* @param ID_TEXT The name of the HTTP file parameter storing the upload (if '', then no HTTP file parameter). No file necessarily is uploaded under this.
* @param ID_TEXT The folder name in uploads/ where we will put this upload
* @param integer Whether to obfuscate file names so the URLs can not be guessed/derived (0=do not, 1=do, 2=make extension .dat as well, 3=only obfuscate if we need to)
* @set 0 1 2 3
* @param integer The type of upload it is (from an OCP_UPLOAD_* constant)
* @param boolean Make a thumbnail (this only makes sense, if it is an image)
* @param ID_TEXT The name of the POST parameter storing the thumb URL. As before
* @param ID_TEXT The name of the HTTP file parameter storing the thumb upload. As before
* @param boolean Whether to copy a URL (if a URL) to the server, and return a local reference
* @param boolean Whether to accept upload errors
* @param boolean Whether to give a (deferred?) error if no file was given at all
* @return array An array of 4 URL bits (URL, thumb URL, URL original filename, thumb original filename)
*/
function get_url($specify_name, $attach_name, $upload_folder, $obfuscate = 0, $enforce_type = 0, $make_thumbnail = false, $thumb_specify_name = '', $thumb_attach_name = '', $copy_to_server = false, $accept_errors = false, $should_get_something = false)
{
require_code('files2');
$upload_folder = filter_naughty($upload_folder);
$out = array();
$thumb = NULL;
$swf_uploaded = false;
$swf_uploaded_thumb = false;
foreach (array($attach_name, $thumb_attach_name) as $i => $_attach_name) {
if ($_attach_name == '') {
continue;
}
//check whatever it is an incoming upload
$row_id_file = 'hidFileID_' . $_attach_name;
$row_id_file_value = post_param($row_id_file, NULL);
if ($row_id_file_value == '-1') {
$row_id_file_value = NULL;
}
//id of the upload from the incoming uploads database table
if (!is_null($row_id_file_value)) {
//get the incoming uploads appropiate db table row
if (substr($row_id_file_value, -4) == '.dat' && strpos($row_id_file_value, ':') === false) {
$path = 'uploads/incoming/' . filter_naughty($row_id_file_value);
if (file_exists(get_custom_file_base() . '/' . $path)) {
$_FILES[$_attach_name] = array('type' => 'swfupload', 'name' => post_param(str_replace('hidFileID', 'hidFileName', $row_id_file)), 'tmp_name' => get_custom_file_base() . '/' . $path, 'size' => filesize(get_custom_file_base() . '/' . $path));
if ($i == 0) {
$swf_uploaded = true;
} else {
$swf_uploaded_thumb = true;
}
}
} else {
$incoming_uploads_id = intval(preg_replace('#:.*$#', '', $row_id_file_value));
$incoming_uploads_row = $GLOBALS['SITE_DB']->query('SELECT * FROM ' . get_table_prefix() . 'incoming_uploads WHERE (i_submitter=' . strval(get_member()) . ' OR i_submitter=' . strval($GLOBALS['FORUM_DRIVER']->get_guest_id()) . ') AND id=' . strval($incoming_uploads_id), 1);
//if there is a db record proceed
if (array_key_exists(0, $incoming_uploads_row)) {
if (file_exists(get_custom_file_base() . '/' . $incoming_uploads_row[0]['i_save_url'])) {
$_FILES[$_attach_name] = array('type' => 'swfupload', 'name' => $incoming_uploads_row[0]['i_orig_filename'], 'tmp_name' => get_custom_file_base() . '/' . $incoming_uploads_row[0]['i_save_url'], 'size' => filesize(get_custom_file_base() . '/' . $incoming_uploads_row[0]['i_save_url']));
if ($i == 0) {
$swf_uploaded = true;
} else {
$swf_uploaded_thumb = true;
}
}
}
}
}
}
if ($obfuscate == 3) {
$accept_errors = true;
}
$thumb_folder = strpos($upload_folder, 'uploads/galleries') !== false ? str_replace('uploads/galleries', 'uploads/galleries_thumbs', $upload_folder) : $upload_folder . '_thumbs';
if (!file_exists(get_custom_file_base() . '/' . $upload_folder)) {
$success = @mkdir(get_custom_file_base() . '/' . $upload_folder, 0777);
if ($success === false) {
warn_exit(@strval($php_errormsg));
}
fix_permissions(get_custom_file_base() . '/' . $upload_folder, 0777);
sync_file($upload_folder);
}
if (!file_exists(get_custom_file_base() . '/' . $thumb_folder) && $make_thumbnail) {
$success = @mkdir(get_custom_file_base() . '/' . $thumb_folder, 0777);
if ($success === false) {
warn_exit(@strval($php_errormsg));
}
fix_permissions(get_custom_file_base() . '/' . $thumb_folder, 0777);
sync_file($thumb_folder);
}
// Find URL
require_code('images');
if ($enforce_type == OCP_UPLOAD_IMAGE || $enforce_type == OCP_UPLOAD_IMAGE_OR_SWF) {
$max_size = get_max_image_size();
} else {
require_code('files2');
$max_size = get_max_file_size();
}
if ($attach_name != '' && array_key_exists($attach_name, $_FILES) && (is_uploaded_file($_FILES[$attach_name]['tmp_name']) || $swf_uploaded)) {
if (!has_specific_permission(get_member(), 'exceed_filesize_limit')) {
if ($_FILES[$attach_name]['size'] > $max_size) {
if ($accept_errors) {
attach_message(do_lang_tempcode('FILE_TOO_BIG', integer_format($max_size)), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('FILE_TOO_BIG', integer_format($max_size)));
}
}
}
$url = _get_upload_url($attach_name, $upload_folder, $enforce_type, $obfuscate, $accept_errors);
if ($url == array('', '')) {
return array('', '', '', '');
}
$is_image = is_image($_FILES[$attach_name]['name']);
} elseif (post_param($specify_name, '') != '') {
$is_image = is_image($_POST[$specify_name], true);
$url = _get_specify_url($specify_name, $upload_folder, $enforce_type, $accept_errors);
if ($url == array('', '')) {
return array('', '', '', '');
}
if ($copy_to_server && !url_is_local($url[0])) {
$path2 = ocp_tempnam('ocpfc');
$tmpfile = fopen($path2, 'wb');
$file = http_download_file($url[0], $max_size, true, false, 'ocPortal', NULL, NULL, NULL, NULL, NULL, $tmpfile);
fclose($tmpfile);
if (is_null($file)) {
@unlink($path2);
if ($accept_errors) {
attach_message(do_lang_tempcode('CANNOT_COPY_TO_SERVER'), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('CANNOT_COPY_TO_SERVER'));
}
}
global $HTTP_FILENAME;
if (is_null($HTTP_FILENAME)) {
$HTTP_FILENAME = $url[1];
}
if (!check_extension($HTTP_FILENAME, $obfuscate == 2, $path2, $accept_errors)) {
if ($obfuscate == 3) {
$obfuscate = 2;
if (!check_extension($HTTP_FILENAME, $obfuscate == 2, $path2, $accept_errors)) {
return array('', '', '', '');
}
} else {
return array('', '', '', '');
}
}
if (url_is_local($url[0])) {
unlink($path2);
if ($accept_errors) {
attach_message(do_lang_tempcode('CANNOT_COPY_TO_SERVER'), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('CANNOT_COPY_TO_SERVER'));
}
}
if ($obfuscate != 0 && $obfuscate != 3) {
$ext = $obfuscate == 2 && !is_image($HTTP_FILENAME) ? 'dat' : get_file_extension($HTTP_FILENAME);
$_file = preg_replace('#\\..*\\.#', '.', $HTTP_FILENAME) . (substr($HTTP_FILENAME, -strlen($ext) - 1) == '.' . $ext ? '' : '.' . $ext);
$place = get_custom_file_base() . '/' . $upload_folder . '/' . $_file;
while (file_exists($place)) {
$_file = uniqid('', true) . '.' . $ext;
$place = get_custom_file_base() . '/' . $upload_folder . '/' . $_file;
}
} else {
$_file = $HTTP_FILENAME;
$place = get_custom_file_base() . '/' . $upload_folder . '/' . $_file;
}
if (!has_specific_permission(get_member(), 'exceed_filesize_limit')) {
$max_size = intval(get_option('max_download_size')) * 1024;
if (strlen($file) > $max_size) {
if ($accept_errors) {
attach_message(do_lang_tempcode('FILE_TOO_BIG', integer_format($max_size)), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('FILE_TOO_BIG', integer_format($max_size)));
}
}
}
$result = @rename($path2, $place);
if (!$result) {
unlink($path2);
if ($accept_errors) {
attach_message(do_lang_tempcode('WRITE_ERROR', escape_html($upload_folder)), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('WRITE_ERROR', escape_html($upload_folder)));
}
}
fix_permissions($place);
sync_file($place);
$url[0] = $upload_folder . '/' . $_file;
if (strpos($HTTP_FILENAME, '/') === false) {
$url[1] = $HTTP_FILENAME;
}
}
} else {
if (array_key_exists($attach_name, $_FILES) && array_key_exists('error', $_FILES[$attach_name]) && ($_FILES[$attach_name]['error'] != 4 || $should_get_something) && $_FILES[$attach_name]['error'] != 0) {
if ($_FILES[$attach_name]['error'] == 1) {
if ($accept_errors) {
attach_message(do_lang_tempcode('FILE_TOO_BIG', integer_format($max_size)), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('FILE_TOO_BIG', integer_format($max_size)));
}
} elseif ($_FILES[$attach_name]['error'] == 2) {
if ($accept_errors) {
attach_message(do_lang_tempcode('FILE_TOO_BIG_QUOTA', integer_format($max_size)), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('FILE_TOO_BIG_QUOTA', integer_format($max_size)));
}
} elseif ($_FILES[$attach_name]['error'] == 3 || $_FILES[$attach_name]['error'] == 4 || $_FILES[$attach_name]['error'] == 6 || $_FILES[$attach_name]['error'] == 7) {
attach_message(do_lang_tempcode('ERROR_UPLOADING_' . strval($_FILES[$attach_name]['error'])), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('ERROR_UPLOADING_' . strval($_FILES[$attach_name]['error'])));
}
}
$url[0] = '';
$url[1] = '';
$is_image = false;
}
$out[0] = $url[0];
$out[2] = $url[1];
// Generate thumbnail if needed
if ($make_thumbnail && $url[0] != '' && $is_image) {
if (array_key_exists($thumb_attach_name, $_FILES) && (is_uploaded_file($_FILES[$thumb_attach_name]['tmp_name']) || $swf_uploaded_thumb)) {
if ($_FILES[$thumb_attach_name]['size'] > get_max_image_size()) {
if ($accept_errors) {
attach_message(do_lang_tempcode('FILE_TOO_BIG', integer_format(get_max_image_size())), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('FILE_TOO_BIG', integer_format(get_max_image_size())));
}
}
$_thumb = _get_upload_url($thumb_attach_name, $thumb_folder, OCP_UPLOAD_IMAGE, 0, $accept_errors);
$thumb = $_thumb[0];
} elseif (array_key_exists($thumb_specify_name, $_POST)) {
$_thumb = _get_specify_url($thumb_specify_name, $thumb_folder, OCP_UPLOAD_IMAGE, $accept_errors);
$thumb = $_thumb[0];
} else {
$gd = get_option('is_on_gd') == '1' && function_exists('imagetypes');
if ($gd) {
if (!is_saveable_image($url[0])) {
$ext = '.png';
} else {
$ext = '';
}
$file = preg_replace('#[^\\w\\.]#', 'x', basename($url[0]));
$_file = $file;
$place = get_custom_file_base() . '/' . $thumb_folder . '/' . $_file . $ext;
$i = 2;
while (file_exists($place)) {
$_file = strval($i) . $file;
$place = get_custom_file_base() . '/' . $thumb_folder . '/' . $_file . $ext;
$i++;
}
$url_full = url_is_local($url[0]) ? get_custom_base_url() . '/' . $url[0] : $url[0];
convert_image($url_full, $place, -1, -1, intval(get_option('thumb_width')));
$thumb = $thumb_folder . '/' . rawurlencode($_file) . $ext;
} else {
if ($accept_errors) {
attach_message(do_lang_tempcode('GD_THUMB_ERROR'), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('GD_THUMB_ERROR'));
}
}
}
$out[1] = $thumb;
} elseif ($make_thumbnail) {
if (array_key_exists($thumb_attach_name, $_FILES) && (is_uploaded_file($_FILES[$thumb_attach_name]['tmp_name']) || $swf_uploaded_thumb)) {
if ($_FILES[$thumb_attach_name]['size'] > get_max_image_size()) {
if ($accept_errors) {
attach_message(do_lang_tempcode('FILE_TOO_BIG', integer_format(get_max_image_size())), 'warn');
return array('', '', '', '');
} else {
warn_exit(do_lang_tempcode('FILE_TOO_BIG', integer_format(get_max_image_size())));
}
}
$_thumb = _get_upload_url($thumb_attach_name, $thumb_folder, OCP_UPLOAD_IMAGE, 0, $accept_errors);
$thumb = $_thumb[0];
} elseif (array_key_exists($thumb_specify_name, $_POST)) {
$_thumb = _get_specify_url($thumb_specify_name, $thumb_folder, OCP_UPLOAD_IMAGE, $accept_errors);
$thumb = $_thumb[0];
}
if (!is_null($thumb)) {
$out[1] = $thumb;
} else {
$out[1] = '';
}
}
// For reentrance of previews
if ($specify_name != '') {
$_POST[$specify_name] = array_key_exists(0, $out) ? $out[0] : '';
}
if ($thumb_specify_name != '') {
$_POST[$thumb_specify_name] = array_key_exists(1, $out) ? $out[1] : '';
}
return $out;
}
