2012-08-22 04:18:01 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
function zfinger_init(&$a) {
|
|
|
|
|
|
2012-08-22 04:39:21 +00:00
|
|
|
require_once('include/zot.php');
|
2012-09-10 04:17:06 +00:00
|
|
|
require_once('include/crypto.php');
|
2012-08-22 04:18:01 +00:00
|
|
|
|
2012-08-27 06:05:00 +00:00
|
|
|
$ret = array('success' => false);
|
|
|
|
|
|
2013-01-04 03:34:04 +00:00
|
|
|
$zhash = ((x($_REQUEST,'guid_hash')) ? $_REQUEST['guid_hash'] : '');
|
|
|
|
|
$zguid = ((x($_REQUEST,'guid')) ? $_REQUEST['guid'] : '');
|
|
|
|
|
$zguid_sig = ((x($_REQUEST,'guid_sig')) ? $_REQUEST['guid_sig'] : '');
|
|
|
|
|
$zaddr = ((x($_REQUEST,'address')) ? $_REQUEST['address'] : '');
|
|
|
|
|
$ztarget = ((x($_REQUEST,'target')) ? $_REQUEST['target'] : '');
|
|
|
|
|
$zsig = ((x($_REQUEST,'target_sig')) ? $_REQUEST['target_sig'] : '');
|
|
|
|
|
$zkey = ((x($_REQUEST,'key')) ? $_REQUEST['key'] : '');
|
|
|
|
|
$mindate = ((x($_REQUEST,'mindate')) ? $_REQUEST['mindate'] : '');
|
|
|
|
|
$feed = ((x($_REQUEST,'feed')) ? intval($_REQUEST['feed']) : 0);
|
2012-11-02 22:34:35 +00:00
|
|
|
|
|
|
|
|
if($ztarget) {
|
|
|
|
|
if((! $zkey) || (! $zsig) || (! rsa_verify($ztarget,base64url_decode($zsig),$zkey))) {
|
|
|
|
|
logger('zfinger: invalid target signature');
|
|
|
|
|
$ret['message'] = t("invalid target signature");
|
|
|
|
|
json_return_and_die($ret);
|
|
|
|
|
}
|
|
|
|
|
}
|
2012-11-01 03:53:02 +00:00
|
|
|
|
2012-12-26 00:57:48 +00:00
|
|
|
// allow re-written domains so bob@foo.example.com can provide an address of bob@example.com
|
|
|
|
|
// The top-level domain also needs to redirect .well-known/zot-info to the sub-domain with a 301 or 308
|
|
|
|
|
|
|
|
|
|
// TODO: Make 308 work in include/network.php for zot_fetch_url and zot_post_url
|
|
|
|
|
|
|
|
|
|
if(($zaddr) && ($s = get_config('system','zotinfo_domainrewrite'))) {
|
|
|
|
|
$arr = explode('^',$s);
|
|
|
|
|
if(count($arr) == 2)
|
|
|
|
|
$zaddr = str_replace($arr[0],$arr[1],$zaddr);
|
|
|
|
|
}
|
|
|
|
|
|
2012-08-27 06:05:00 +00:00
|
|
|
$r = null;
|
|
|
|
|
|
2012-11-13 00:16:37 +00:00
|
|
|
if(strlen($zhash)) {
|
2012-11-01 00:38:22 +00:00
|
|
|
$r = q("select channel.*, xchan.* from channel left join xchan on channel_hash = xchan_hash
|
2012-11-11 04:08:07 +00:00
|
|
|
where channel_hash = '%s' limit 1",
|
|
|
|
|
dbesc($zhash)
|
2012-08-27 06:05:00 +00:00
|
|
|
);
|
|
|
|
|
}
|
2013-01-03 00:28:47 +00:00
|
|
|
elseif(strlen($zguid) && strlen($zguid_sig)) {
|
2012-11-13 00:16:37 +00:00
|
|
|
$r = q("select channel.*, xchan.* from channel left join xchan on channel_hash = xchan_hash
|
|
|
|
|
where channel_guid = '%s' and channel_guid_sig = '%s' limit 1",
|
|
|
|
|
dbesc($zguid),
|
|
|
|
|
dbesc($zguid_sig)
|
|
|
|
|
);
|
|
|
|
|
}
|
2012-08-27 06:05:00 +00:00
|
|
|
elseif(strlen($zaddr)) {
|
2013-12-15 22:36:43 +00:00
|
|
|
if(strpos($zaddr,'[system]') === false) { /* normal address lookup */
|
|
|
|
|
$r = q("select channel.*, xchan.* from channel left join xchan on channel_hash = xchan_hash
|
|
|
|
|
where ( channel_address = '%s' or xchan_addr = '%s' ) limit 1",
|
|
|
|
|
dbesc($zaddr),
|
|
|
|
|
dbesc($zaddr)
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
else {
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* The special address '[system]' will return a system channel if one has been defined,
|
|
|
|
|
* Or the first valid channel we find if there are no system channels.
|
|
|
|
|
*
|
|
|
|
|
* This is used by magic-auth if we have no prior communications with this site - and
|
|
|
|
|
* returns an identity on this site which we can use to create a valid hub record so that
|
|
|
|
|
* we can exchange signed messages. The precise identity is irrelevant. It's the hub
|
|
|
|
|
* information that we really need at the other end - and this will return it.
|
|
|
|
|
*
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
$r = q("select channel.*, xchan.* from channel left join xchan on channel_hash = xchan_hash
|
2014-06-03 00:49:19 +00:00
|
|
|
where ( channel_pageflags & %d ) order by channel_id limit 1",
|
|
|
|
|
intval(PAGE_SYSTEM)
|
2013-12-15 22:36:43 +00:00
|
|
|
);
|
2014-06-03 00:49:19 +00:00
|
|
|
if(! $r) {
|
|
|
|
|
$r = q("select channel.*, xchan.* from channel left join xchan on channel_hash = xchan_hash
|
|
|
|
|
where not ( channel_pageflags & %d ) order by channel_id limit 1",
|
|
|
|
|
intval(PAGE_REMOVED)
|
|
|
|
|
);
|
|
|
|
|
}
|
2013-12-15 22:36:43 +00:00
|
|
|
}
|
2012-08-27 06:05:00 +00:00
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
$ret['message'] = 'Invalid request';
|
|
|
|
|
json_return_and_die($ret);
|
|
|
|
|
}
|
2012-08-22 04:18:01 +00:00
|
|
|
|
2012-11-13 00:16:37 +00:00
|
|
|
if(! $r) {
|
2012-08-27 06:05:00 +00:00
|
|
|
$ret['message'] = 'Item not found.';
|
|
|
|
|
json_return_and_die($ret);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$e = $r[0];
|
2012-08-22 04:18:01 +00:00
|
|
|
|
2012-09-26 00:57:20 +00:00
|
|
|
$id = $e['channel_id'];
|
2012-11-13 00:16:37 +00:00
|
|
|
|
2014-04-07 23:10:43 +00:00
|
|
|
$special_channel = (($e['channel_pageflags'] & PAGE_PREMIUM) ? true : false);
|
|
|
|
|
$adult_channel = (($e['channel_pageflags'] & PAGE_ADULT) ? true : false);
|
2014-06-23 00:15:42 +00:00
|
|
|
$censored = (($e['channel_pageflags'] & PAGE_CENSORED) ? true : false);
|
2014-04-07 23:10:43 +00:00
|
|
|
$searchable = (($e['channel_pageflags'] & PAGE_HIDDEN) ? false : true);
|
|
|
|
|
$deleted = (($e['xchan_flags'] & XCHAN_FLAGS_DELETED) ? true : false);
|
2014-04-07 09:55:00 +00:00
|
|
|
|
2014-07-05 08:21:29 +00:00
|
|
|
if($deleted || $censored)
|
2013-01-22 08:20:25 +00:00
|
|
|
$searchable = false;
|
2012-12-27 00:43:13 +00:00
|
|
|
|
2014-07-05 08:21:29 +00:00
|
|
|
|
|
|
|
|
|
2012-12-27 00:43:13 +00:00
|
|
|
// This is for birthdays and keywords, but must check access permissions
|
|
|
|
|
$p = q("select * from profile where uid = %d and is_default = 1",
|
|
|
|
|
intval($e['channel_id'])
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$profile = array();
|
|
|
|
|
|
|
|
|
|
if($p) {
|
2013-02-13 00:24:30 +00:00
|
|
|
|
|
|
|
|
if(! intval($p[0]['publish']))
|
|
|
|
|
$searchable = false;
|
|
|
|
|
|
2012-12-28 07:33:37 +00:00
|
|
|
$profile['description'] = $p[0]['pdesc'];
|
|
|
|
|
$profile['birthday'] = $p[0]['dob'];
|
2014-06-03 00:49:19 +00:00
|
|
|
if(($profile['birthday'] != '0000-00-00') && (($bd = z_birthday($p[0]['dob'],$e['channel_timezone'])) !== ''))
|
|
|
|
|
$profile['next_birthday'] = $bd;
|
2013-06-30 07:38:02 +00:00
|
|
|
|
|
|
|
|
if($age = age($p[0]['dob'],$e['channel_timezone'],''))
|
|
|
|
|
$profile['age'] = $age;
|
2012-12-28 07:33:37 +00:00
|
|
|
$profile['gender'] = $p[0]['gender'];
|
|
|
|
|
$profile['marital'] = $p[0]['marital'];
|
|
|
|
|
$profile['sexual'] = $p[0]['sexual'];
|
|
|
|
|
$profile['locale'] = $p[0]['locality'];
|
|
|
|
|
$profile['region'] = $p[0]['region'];
|
|
|
|
|
$profile['postcode'] = $p[0]['postal_code'];
|
|
|
|
|
$profile['country'] = $p[0]['country_name'];
|
2013-12-25 09:57:04 +00:00
|
|
|
$profile['about'] = $p[0]['about'];
|
|
|
|
|
$profile['homepage'] = $p[0]['homepage'];
|
|
|
|
|
$profile['hometown'] = $p[0]['hometown'];
|
|
|
|
|
|
2012-12-27 00:50:52 +00:00
|
|
|
if($p[0]['keywords']) {
|
|
|
|
|
$tags = array();
|
|
|
|
|
$k = explode(' ',$p[0]['keywords']);
|
2013-09-15 00:21:39 +00:00
|
|
|
if($k) {
|
|
|
|
|
foreach($k as $kk) {
|
2013-12-25 09:57:04 +00:00
|
|
|
if(trim($kk," \t\n\r\0\x0B,")) {
|
2013-09-15 00:20:24 +00:00
|
|
|
$tags[] = trim($kk," \t\n\r\0\x0B,");
|
|
|
|
|
}
|
|
|
|
|
}
|
2013-09-15 00:21:39 +00:00
|
|
|
}
|
2012-12-27 00:50:52 +00:00
|
|
|
if($tags)
|
|
|
|
|
$profile['keywords'] = $tags;
|
|
|
|
|
}
|
2012-12-27 00:43:13 +00:00
|
|
|
}
|
2012-08-31 01:17:38 +00:00
|
|
|
|
2012-08-27 06:05:00 +00:00
|
|
|
$ret['success'] = true;
|
2012-08-22 06:11:27 +00:00
|
|
|
|
2012-08-27 06:05:00 +00:00
|
|
|
// Communication details
|
2012-08-22 06:11:27 +00:00
|
|
|
|
2012-11-01 08:49:00 +00:00
|
|
|
$ret['guid'] = $e['xchan_guid'];
|
|
|
|
|
$ret['guid_sig'] = $e['xchan_guid_sig'];
|
|
|
|
|
$ret['key'] = $e['xchan_pubkey'];
|
|
|
|
|
$ret['name'] = $e['xchan_name'];
|
|
|
|
|
$ret['name_updated'] = $e['xchan_name_date'];
|
|
|
|
|
$ret['address'] = $e['xchan_addr'];
|
2012-11-01 09:00:25 +00:00
|
|
|
$ret['photo_mimetype'] = $e['xchan_photo_mimetype'];
|
2012-11-01 08:49:00 +00:00
|
|
|
$ret['photo'] = $e['xchan_photo_l'];
|
|
|
|
|
$ret['photo_updated'] = $e['xchan_photo_date'];
|
2012-11-01 08:53:57 +00:00
|
|
|
$ret['url'] = $e['xchan_url'];
|
2013-01-01 09:57:20 +00:00
|
|
|
$ret['connections_url']= (($e['xchan_connurl']) ? $e['xchan_connurl'] : z_root() . '/poco/' . $e['channel_address']);
|
2012-11-01 08:49:00 +00:00
|
|
|
$ret['target'] = $ztarget;
|
|
|
|
|
$ret['target_sig'] = $zsig;
|
2012-12-20 06:45:49 +00:00
|
|
|
$ret['searchable'] = $searchable;
|
2013-09-23 03:38:24 +00:00
|
|
|
$ret['adult_content'] = $adult_channel;
|
2014-04-07 23:10:43 +00:00
|
|
|
if($deleted)
|
|
|
|
|
$ret['deleted'] = $deleted;
|
2012-11-02 23:25:59 +00:00
|
|
|
|
2013-08-22 00:15:56 +00:00
|
|
|
// premium or other channel desiring some contact with potential followers before connecting.
|
|
|
|
|
// This is a template - %s will be replaced with the follow_url we discover for the return channel.
|
|
|
|
|
|
|
|
|
|
if($special_channel)
|
2013-08-22 05:10:08 +00:00
|
|
|
$ret['connect_url'] = z_root() . '/connect/' . $e['channel_address'];
|
2013-08-22 00:15:56 +00:00
|
|
|
|
|
|
|
|
// This is a template for our follow url, %s will be replaced with a webbie
|
|
|
|
|
|
|
|
|
|
$ret['follow_url'] = z_root() . '/follow?f=&url=%s';
|
|
|
|
|
|
2014-03-03 03:40:59 +00:00
|
|
|
$ztarget_hash = (($ztarget && $zsig)
|
2014-07-15 04:21:24 +00:00
|
|
|
? make_xchan_hash($ztarget,$zsig)
|
2014-03-03 03:40:59 +00:00
|
|
|
: '' );
|
2012-11-01 03:53:02 +00:00
|
|
|
|
2014-03-03 03:40:59 +00:00
|
|
|
$permissions = get_all_perms($e['channel_id'],$ztarget_hash,false);
|
|
|
|
|
|
|
|
|
|
if($ztarget_hash) {
|
2014-03-06 09:29:42 +00:00
|
|
|
$permissions['connected'] = false;
|
2014-03-03 03:40:59 +00:00
|
|
|
$b = q("select * from abook where abook_xchan = '%s' and abook_channel = %d limit 1",
|
|
|
|
|
dbesc($ztarget_hash),
|
|
|
|
|
intval($e['channel_id'])
|
|
|
|
|
);
|
|
|
|
|
if($b)
|
|
|
|
|
$permissions['connected'] = true;
|
|
|
|
|
}
|
2012-11-01 03:53:02 +00:00
|
|
|
|
2014-08-23 09:45:21 +00:00
|
|
|
$ret['permissions'] = (($ztarget && $zkey) ? crypto_encapsulate(json_encode($permissions),$zkey) : $permissions);
|
2012-08-22 04:18:01 +00:00
|
|
|
|
2012-12-27 00:43:13 +00:00
|
|
|
if($permissions['view_profile'])
|
|
|
|
|
$ret['profile'] = $profile;
|
2012-08-31 01:17:38 +00:00
|
|
|
|
2012-09-26 00:57:20 +00:00
|
|
|
// array of (verified) hubs this channel uses
|
2012-08-27 06:05:00 +00:00
|
|
|
|
2014-09-14 08:48:54 +00:00
|
|
|
$x = zot_encode_locations($e);
|
|
|
|
|
if($x)
|
|
|
|
|
$ret['locations'] = $x;
|
2012-08-22 04:39:21 +00:00
|
|
|
|
2012-12-20 08:27:01 +00:00
|
|
|
$ret['site'] = array();
|
|
|
|
|
$ret['site']['url'] = z_root();
|
2013-07-24 05:33:56 +00:00
|
|
|
$ret['site']['url_sig'] = base64url_encode(rsa_sign(z_root(),$e['channel_prvkey']));
|
|
|
|
|
|
2012-12-20 08:27:01 +00:00
|
|
|
$dirmode = get_config('system','directory_mode');
|
|
|
|
|
if(($dirmode === false) || ($dirmode == DIRECTORY_MODE_NORMAL))
|
|
|
|
|
$ret['site']['directory_mode'] = 'normal';
|
2012-12-20 08:33:53 +00:00
|
|
|
if($dirmode == DIRECTORY_MODE_PRIMARY)
|
|
|
|
|
$ret['site']['directory_mode'] = 'primary';
|
2012-12-20 08:27:01 +00:00
|
|
|
elseif($dirmode == DIRECTORY_MODE_SECONDARY)
|
|
|
|
|
$ret['site']['directory_mode'] = 'secondary';
|
|
|
|
|
elseif($dirmode == DIRECTORY_MODE_STANDALONE)
|
|
|
|
|
$ret['site']['directory_mode'] = 'standalone';
|
|
|
|
|
if($dirmode != DIRECTORY_MODE_NORMAL)
|
2013-01-22 10:56:32 +00:00
|
|
|
$ret['site']['directory_url'] = z_root() . '/dirsearch';
|
2013-06-21 01:36:02 +00:00
|
|
|
|
2013-07-25 01:17:00 +00:00
|
|
|
|
2013-07-25 03:53:28 +00:00
|
|
|
// hide detailed site information if you're off the grid
|
2013-07-25 01:17:00 +00:00
|
|
|
|
2013-07-25 03:53:28 +00:00
|
|
|
if($dirmode != DIRECTORY_MODE_STANDALONE) {
|
2013-07-25 01:17:00 +00:00
|
|
|
|
2013-07-25 03:53:28 +00:00
|
|
|
$register_policy = intval(get_config('system','register_policy'));
|
2013-07-25 03:35:54 +00:00
|
|
|
|
2013-07-25 03:53:28 +00:00
|
|
|
if($register_policy == REGISTER_CLOSED)
|
|
|
|
|
$ret['site']['register_policy'] = 'closed';
|
|
|
|
|
if($register_policy == REGISTER_APPROVE)
|
|
|
|
|
$ret['site']['register_policy'] = 'approve';
|
|
|
|
|
if($register_policy == REGISTER_OPEN)
|
|
|
|
|
$ret['site']['register_policy'] = 'open';
|
|
|
|
|
|
2013-08-07 00:15:41 +00:00
|
|
|
|
|
|
|
|
$access_policy = intval(get_config('system','access_policy'));
|
|
|
|
|
|
|
|
|
|
if($access_policy == ACCESS_PRIVATE)
|
|
|
|
|
$ret['site']['access_policy'] = 'private';
|
|
|
|
|
if($access_policy == ACCESS_PAID)
|
|
|
|
|
$ret['site']['access_policy'] = 'paid';
|
|
|
|
|
if($access_policy == ACCESS_FREE)
|
|
|
|
|
$ret['site']['access_policy'] = 'free';
|
2013-09-19 00:47:26 +00:00
|
|
|
if($access_policy == ACCESS_TIERED)
|
|
|
|
|
$ret['site']['access_policy'] = 'tiered';
|
2013-08-07 00:15:41 +00:00
|
|
|
|
2013-07-25 03:53:28 +00:00
|
|
|
$ret['site']['accounts'] = account_total();
|
|
|
|
|
|
|
|
|
|
require_once('include/identity.php');
|
|
|
|
|
$ret['site']['channels'] = channel_total();
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
$ret['site']['version'] = RED_PLATFORM . ' ' . RED_VERSION . '[' . DB_UPDATE_VERSION . ']';
|
2013-07-25 03:35:54 +00:00
|
|
|
|
2013-07-25 03:53:28 +00:00
|
|
|
$ret['site']['admin'] = get_config('system','admin_email');
|
2013-07-25 03:35:54 +00:00
|
|
|
|
2013-07-25 03:53:28 +00:00
|
|
|
$visible_plugins = array();
|
|
|
|
|
if(is_array($a->plugins) && count($a->plugins)) {
|
|
|
|
|
$r = q("select * from addon where hidden = 0");
|
|
|
|
|
if($r)
|
|
|
|
|
foreach($r as $rr)
|
|
|
|
|
$visible_plugins[] = $rr['name'];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$ret['site']['plugins'] = $visible_plugins;
|
|
|
|
|
$ret['site']['sitehash'] = get_config('system','location_hash');
|
|
|
|
|
$ret['site']['sitename'] = get_config('system','sitename');
|
2013-09-18 05:27:51 +00:00
|
|
|
$ret['site']['sellpage'] = get_config('system','sellpage');
|
2013-10-30 08:58:45 +00:00
|
|
|
$ret['site']['location'] = get_config('system','site_location');
|
2014-08-16 23:10:35 +00:00
|
|
|
$ret['site']['realm'] = get_directory_realm();
|
2013-07-25 03:53:28 +00:00
|
|
|
|
|
|
|
|
}
|
2013-12-04 01:55:10 +00:00
|
|
|
call_hooks('zot_finger',$ret);
|
2012-08-22 04:18:01 +00:00
|
|
|
json_return_and_die($ret);
|
2012-08-27 06:05:00 +00:00
|
|
|
|
2013-09-10 22:29:27 +00:00
|
|
|
}
|
