Banana
/
insipid


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189
							<?php
/**
 * Insipid
 * Personal web-bookmark-system
 *
 * Copyright 2016-2023 Johannes Keßler
 *
 * Development starting from 2011: Johannes Keßler
 * https://www.bananas-playground.net/projekt/insipid/
 *
 * creator:
 * Luke Reeves <luke@neuro-tech.net>
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see http://www.gnu.org/licenses/gpl-3.0.
 *
 */

$searchValue = false;
$isUrl = false;
$submitFeedback = array();
$queryStr = false;
$searchResult = false;
$showAddForm = false;
$honeypotCheck = false;
$formData = array();

$_requestMode = '';
if(isset($_GET['m']) && !empty($_GET['m'])) {
	$_requestMode = trim($_GET['m']);
	$_requestMode = Summoner::validate($_requestMode,'nospace') ? $_requestMode : "all";
}
if($_requestMode === "auth") {
	# very simple security check.
	# can/should be extended in the future.
	Summoner::simpleAuth();
}

if((isset($_POST['password']) && !empty($_POST['password'])) || (isset($_POST['username']) && !empty($_POST['username']))) {
	# those are hidden fields. A robot may input these. A valid user does not.
	$honeypotCheck = true;
}

# search or new one.
if(isset($_POST['data']) && !empty($_POST['data']) && isset($_POST['submitsearch']) && $honeypotCheck === false) {
	$searchValue = trim($_POST['data']['searchfield']);
	$isUrl = Summoner::validate($searchValue,'url');
	if($isUrl === true) {
		# search for URL
		$searchResult = $Management->searchForLinkByURL($searchValue);
	}
	elseif(Summoner::validate($searchValue,'text')) {
		$searchResult = $Management->searchForLinkBySearchData(strtolower($searchValue));
	}
	else {
		$submitFeedback['message'] = $T->t('home.input.invalid');
		$submitFeedback['status'] = 'error';
	}

	# new one?
	if(empty($searchResult) && $isUrl === true && Summoner::simpleAuthCheck() === true) {
		# try to gather some information automatically
		$linkInfo = Summoner::gatherInfoFromURL($searchValue);
		if(!empty($linkInfo)) {
			if(isset($linkInfo['description'])) {
				$formData['description'] = $linkInfo['description'];
			}
			if(isset($linkInfo['title'])) {
				$formData['title'] = $linkInfo['title'];
			}
			if(isset($linkInfo['image'])) {
				$formData['image'] = $linkInfo['image'];
			}
		}
		# show the add form
		$showAddForm = true;
		$formData['url'] = $searchValue;
		$formData['categories'] = array();
		$formData['tags'] = array();
	}
	elseif(!empty($searchResult)) {
		# something has been found
	}
	else {
		# nothing found
		$submitFeedback['message'] = $T->t('home.input.search.not.found');
		$submitFeedback['status'] = 'error';
	}
}

# add a new one
if(isset($_POST['data']) && !empty($_POST['data']) && isset($_POST['addnewone']) && $honeypotCheck === false
	&& Summoner::simpleAuthCheck() === true
) {
	$fData = $_POST['data'];

	$formData['private'] = 2;
	if(isset($fData['private'])) {
		$formData['private'] = 1;
	}

	$formData['url'] = trim($fData['url']);
	$formData['description'] = trim($fData['description']);
	$formData['title'] = trim($fData['title']);
	$formData['image'] = trim($fData['image']);
	$formData['category'] = trim($fData['category']);
	$formData['tag'] = trim($fData['tag']);

	# categories and tag stuff
	$catArr = Summoner::prepareTagOrCategoryStr($formData['category']);
	$tagArr = Summoner::prepareTagOrCategoryStr($formData['tag']);
	$formData['categories'] = $catArr;
	$formData['tags'] = $tagArr;

	$isUrl = Summoner::validate($formData['url'],'url');

	if($isUrl === true && !empty($formData['title'])) {
		$hash = md5($formData['url']);

		$DB->begin_transaction(MYSQLI_TRANS_START_READ_WRITE);

		$linkObj = new Link($DB);
		$linkID = $linkObj->create(array(
			'hash' => $hash,
			'link' => $formData['url'],
			'status' => $formData['private'],
			'description' => $formData['description'],
			'title' => $formData['title'],
			'image' => $formData['image'],
			'tagArr'  => $tagArr,
			'catArr' => $catArr
		),true);

		if(!empty($linkID)) {

			if(!empty($catArr)) {
				foreach($catArr as $c) {
					$catObj = new Category($DB);
					$catObj->initbystring($c);
					$catObj->setRelation($linkID);

					unset($catObj);
				}
			}
			if(!empty($tagArr)) {
				foreach($tagArr as $t) {
					$tagObj = new Tag($DB);
					$tagObj->initbystring($t);
					$tagObj->setRelation($linkID);

					unset($tagObj);
				}
			}

			$DB->commit();

			$submitFeedback['message'] = $T->t('home.input.added');
			$submitFeedback['status'] = 'success';
			$TemplateData['refresh'] = 'index.php?p=linkinfo&id='.$hash;
		}
		else {
			$DB->rollback();
			$submitFeedback['message'] = $T->t('home.input.add.fail');
			$submitFeedback['status'] = 'error';
			$showAddForm = true;
		}
	}
	else {
		$submitFeedback['message'] = $T->t('home.input.invalid.data');
		$submitFeedback['status'] = 'error';
		$showAddForm = true;
	}
}

if($showAddForm === true) {
    $existingCategories = $Management->categories();
    $existingTags = $Management->tags();
}
$latestLinks = $Management->latestLinks(50);