diff options
Diffstat (limited to 'phpBB/includes/functions_content.php')
| -rw-r--r-- | phpBB/includes/functions_content.php | 171 | 
1 files changed, 95 insertions, 76 deletions
| diff --git a/phpBB/includes/functions_content.php b/phpBB/includes/functions_content.php index 6f861b8607..345df1d47a 100644 --- a/phpBB/includes/functions_content.php +++ b/phpBB/includes/functions_content.php @@ -389,46 +389,68 @@ function phpbb_clean_search_string($search_string)  /**  * Decode text whereby text is coming from the db and expected to be pre-parsed content  * We are placing this outside of the message parser because we are often in need of it... +* +* NOTE: special chars are kept encoded +* +* @param string &$message Original message, passed by reference +* @param string $bbcode_uid BBCode UID +* @return null  */  function decode_message(&$message, $bbcode_uid = '')  { -	global $config; +	global $phpbb_container; -	if ($bbcode_uid) +	if (preg_match('#^<[rt][ >]#', $message))  	{ -		$match = array('<br />', "[/*:m:$bbcode_uid]", ":u:$bbcode_uid", ":o:$bbcode_uid", ":$bbcode_uid"); -		$replace = array("\n", '', '', '', ''); +		$message = htmlspecialchars($phpbb_container->get('text_formatter.utils')->unparse($message), ENT_COMPAT);  	}  	else  	{ -		$match = array('<br />'); -		$replace = array("\n"); -	} +		if ($bbcode_uid) +		{ +			$match = array('<br />', "[/*:m:$bbcode_uid]", ":u:$bbcode_uid", ":o:$bbcode_uid", ":$bbcode_uid"); +			$replace = array("\n", '', '', '', ''); +		} +		else +		{ +			$match = array('<br />'); +			$replace = array("\n"); +		} -	$message = str_replace($match, $replace, $message); +		$message = str_replace($match, $replace, $message); -	$match = get_preg_expression('bbcode_htm'); -	$replace = array('\1', '\1', '\2', '\1', '', ''); +		$match = get_preg_expression('bbcode_htm'); +		$replace = array('\1', '\1', '\3', '\1', '', ''); -	$message = preg_replace($match, $replace, $message); +		$message = preg_replace($match, $replace, $message); +	}  }  /** -* Strips all bbcode from a text and returns the plain content +* Strips all bbcode from a text in place  */  function strip_bbcode(&$text, $uid = '')  { -	if (!$uid) +	global $phpbb_container; + +	if (preg_match('#^<[rt][ >]#', $text))  	{ -		$uid = '[0-9a-z]{5,}'; +		$text = $phpbb_container->get('text_formatter.utils')->clean_formatting($text);  	} +	else +	{ +		if (!$uid) +		{ +			$uid = '[0-9a-z]{5,}'; +		} -	$text = preg_replace("#\[\/?[a-z0-9\*\+\-]+(?:=(?:".*"|[^\]]*))?(?::[a-z])?(\:$uid)\]#", ' ', $text); +		$text = preg_replace("#\[\/?[a-z0-9\*\+\-]+(?:=(?:".*"|[^\]]*))?(?::[a-z])?(\:$uid)\]#", ' ', $text); -	$match = get_preg_expression('bbcode_htm'); -	$replace = array('\1', '\1', '\2', '\1', '', ''); +		$match = get_preg_expression('bbcode_htm'); +		$replace = array('\1', '\1', '\2', '\1', '', ''); -	$text = preg_replace($match, $replace, $text); +		$text = preg_replace($match, $replace, $text); +	}  }  /** @@ -438,7 +460,7 @@ function strip_bbcode(&$text, $uid = '')  function generate_text_for_display($text, $uid, $bitfield, $flags, $censor_text = true)  {  	static $bbcode; -	global $phpbb_dispatcher; +	global $phpbb_dispatcher, $phpbb_container;  	if ($text === '')  	{ @@ -459,34 +481,56 @@ function generate_text_for_display($text, $uid, $bitfield, $flags, $censor_text  	$vars = array('text', 'uid', 'bitfield', 'flags', 'censor_text');  	extract($phpbb_dispatcher->trigger_event('core.modify_text_for_display_before', compact($vars))); -	if ($censor_text) +	if (preg_match('#^<[rt][ >]#', $text))  	{ -		$text = censor_text($text); -	} +		$renderer = $phpbb_container->get('text_formatter.renderer'); -	// Parse bbcode if bbcode uid stored and bbcode enabled -	if ($uid && ($flags & OPTION_FLAG_BBCODE)) -	{ -		if (!class_exists('bbcode')) +		// Temporarily switch off viewcensors if applicable +		$old_censor = $renderer->get_viewcensors(); +		if ($old_censor !== $censor_text)  		{ -			global $phpbb_root_path, $phpEx; -			include($phpbb_root_path . 'includes/bbcode.' . $phpEx); +			$renderer->set_viewcensors($censor_text);  		} -		if (empty($bbcode)) +		$text = $renderer->render($text); + +		// Restore the previous value +		if ($old_censor !== $censor_text)  		{ -			$bbcode = new bbcode($bitfield); +			$renderer->set_viewcensors($old_censor);  		} -		else +	} +	else +	{ +		if ($censor_text)  		{ -			$bbcode->bbcode($bitfield); +			$text = censor_text($text);  		} -		$bbcode->bbcode_second_pass($text, $uid); -	} +		// Parse bbcode if bbcode uid stored and bbcode enabled +		if ($uid && ($flags & OPTION_FLAG_BBCODE)) +		{ +			if (!class_exists('bbcode')) +			{ +				global $phpbb_root_path, $phpEx; +				include($phpbb_root_path . 'includes/bbcode.' . $phpEx); +			} + +			if (empty($bbcode)) +			{ +				$bbcode = new bbcode($bitfield); +			} +			else +			{ +				$bbcode->bbcode($bitfield); +			} -	$text = bbcode_nl2br($text); -	$text = smiley_text($text, !($flags & OPTION_FLAG_SMILIES)); +			$bbcode->bbcode_second_pass($text, $uid); +		} + +		$text = bbcode_nl2br($text); +		$text = smiley_text($text, !($flags & OPTION_FLAG_SMILIES)); +	}  	/**  	* Use this event to modify the text after it is parsed @@ -507,7 +551,7 @@ function generate_text_for_display($text, $uid, $bitfield, $flags, $censor_text  /**  * For parsing custom parsed text to be stored within the database.  * This function additionally returns the uid and bitfield that needs to be stored. -* Expects $text to be the value directly from request_var() and in it's non-parsed form +* Expects $text to be the value directly from $request->variable() and in it's non-parsed form  *  * @param string $text The text to be replaced with the parsed one  * @param string $uid The BBCode uid for this parse @@ -516,10 +560,14 @@ function generate_text_for_display($text, $uid, $bitfield, $flags, $censor_text  * @param bool $allow_bbcode If BBCode is allowed (i.e. if BBCode is parsed)  * @param bool $allow_urls If urls is allowed  * @param bool $allow_smilies If smilies are allowed +* @param bool $allow_img_bbcode +* @param bool $allow_flash_bbcode +* @param bool $allow_quote_bbcode +* @param bool $allow_url_bbcode  *  * @return array	An array of string with the errors that occurred while parsing  */ -function generate_text_for_storage(&$text, &$uid, &$bitfield, &$flags, $allow_bbcode = false, $allow_urls = false, $allow_smilies = false) +function generate_text_for_storage(&$text, &$uid, &$bitfield, &$flags, $allow_bbcode = false, $allow_urls = false, $allow_smilies = false, $allow_img_bbcode = true, $allow_flash_bbcode = true, $allow_quote_bbcode = true, $allow_url_bbcode = true)  {  	global $phpbb_root_path, $phpEx, $phpbb_dispatcher; @@ -534,6 +582,10 @@ function generate_text_for_storage(&$text, &$uid, &$bitfield, &$flags, $allow_bb  	* @var bool		allow_bbcode	Whether or not to parse BBCode  	* @var bool		allow_urls		Whether or not to parse URLs  	* @var bool		allow_smilies	Whether or not to parse Smilies +	* @var bool		allow_img_bbcode	Whether or not to parse the [img] BBCode +	* @var bool		allow_flash_bbcode	Whether or not to parse the [flash] BBCode +	* @var bool		allow_quote_bbcode	Whether or not to parse the [quote] BBCode +	* @var bool		allow_url_bbcode	Whether or not to parse the [url] BBCode  	* @since 3.1.0-a1  	*/  	$vars = array( @@ -544,24 +596,23 @@ function generate_text_for_storage(&$text, &$uid, &$bitfield, &$flags, $allow_bb  		'allow_bbcode',  		'allow_urls',  		'allow_smilies', +		'allow_img_bbcode', +		'allow_flash_bbcode', +		'allow_quote_bbcode', +		'allow_url_bbcode',  	);  	extract($phpbb_dispatcher->trigger_event('core.modify_text_for_storage_before', compact($vars)));  	$uid = $bitfield = '';  	$flags = (($allow_bbcode) ? OPTION_FLAG_BBCODE : 0) + (($allow_smilies) ? OPTION_FLAG_SMILIES : 0) + (($allow_urls) ? OPTION_FLAG_LINKS : 0); -	if ($text === '') -	{ -		return; -	} -  	if (!class_exists('parse_message'))  	{  		include($phpbb_root_path . 'includes/message_parser.' . $phpEx);  	}  	$message_parser = new parse_message($text); -	$message_parser->parse($allow_bbcode, $allow_urls, $allow_smilies); +	$message_parser->parse($allow_bbcode, $allow_urls, $allow_smilies, $allow_img_bbcode, $allow_flash_bbcode, $allow_quote_bbcode, $allow_url_bbcode);  	$text = $message_parser->message;  	$uid = $message_parser->bbcode_uid; @@ -1120,38 +1171,6 @@ function parse_attachments($forum_id, &$message, &$attachments, &$update_count,  					$update_count[] = $attachment['attach_id'];  				break; -				// Windows Media Streams -				case ATTACHMENT_CATEGORY_WM: - -					// Giving the filename directly because within the wm object all variables are in local context making it impossible -					// to validate against a valid session (all params can differ) -					// $download_link = $filename; - -					$block_array += array( -						'U_FORUM'		=> generate_board_url(), -						'ATTACH_ID'		=> $attachment['attach_id'], -						'S_WM_FILE'		=> true, -					); - -					// Viewed/Heared File ... update the download count -					$update_count[] = $attachment['attach_id']; -				break; - -				// Real Media Streams -				case ATTACHMENT_CATEGORY_RM: -				case ATTACHMENT_CATEGORY_QUICKTIME: - -					$block_array += array( -						'S_RM_FILE'			=> ($display_cat == ATTACHMENT_CATEGORY_RM) ? true : false, -						'S_QUICKTIME_FILE'	=> ($display_cat == ATTACHMENT_CATEGORY_QUICKTIME) ? true : false, -						'U_FORUM'			=> generate_board_url(), -						'ATTACH_ID'			=> $attachment['attach_id'], -					); - -					// Viewed/Heared File ... update the download count -					$update_count[] = $attachment['attach_id']; -				break; -  				// Macromedia Flash Files  				case ATTACHMENT_CATEGORY_FLASH:  					list($width, $height) = @getimagesize($filename); | 
