2016-04-19 03:38:38 +00:00
< ? php
2021-12-03 03:01:39 +00:00
2022-02-16 04:08:28 +00:00
namespace Code\Module ;
2016-04-19 03:38:38 +00:00
2019-05-30 00:32:31 +00:00
use App ;
2022-02-16 04:08:28 +00:00
use Code\Web\Controller ;
use Code\Lib\Activity ;
use Code\Lib\ActivityStreams ;
use Code\Lib\ASCollection ;
use Code\Lib\Queue ;
use Code\Daemon\Run ;
use Code\Lib\Channel ;
use Code\Lib\Navbar ;
use Code\Render\Theme ;
2022-03-12 20:44:12 +00:00
use Code\Lib\LDSignatures ;
use Code\Web\HTTPSig ;
2022-02-12 20:43:29 +00:00
2018-06-01 04:05:09 +00:00
require_once ( " include/bbcode.php " );
require_once ( 'include/security.php' );
require_once ( 'include/conversation.php' );
2016-04-19 03:38:38 +00:00
2021-12-02 23:02:31 +00:00
class Search extends Controller
{
// State passed in from the Update module.
public $profile_uid = 0 ;
public $loading = 0 ;
public $updating = 0 ;
public function init ()
{
if ( x ( $_REQUEST , 'search' )) {
App :: $data [ 'search' ] = escape_tags ( $_REQUEST [ 'search' ]);
}
}
public function get ()
{
2022-06-01 21:18:51 +00:00
if ( get_config ( 'system' , 'block_public_search' , 1 )) {
2021-12-02 23:02:31 +00:00
if (( ! local_channel ()) && ( ! remote_channel ())) {
notice ( t ( 'Public access denied.' ) . EOL );
return ;
}
}
if ( $this -> loading ) {
$_SESSION [ 'loadtime' ] = datetime_convert ();
}
2022-01-25 04:16:38 +00:00
Navbar :: set_selected ( 'Search' );
2021-12-02 23:02:31 +00:00
2022-03-12 20:44:12 +00:00
$format = (( $_REQUEST [ 'module_format' ]) ? $_REQUEST [ 'module_format' ] : '' );
2021-12-02 23:02:31 +00:00
if ( $format !== '' ) {
$this -> updating = $this -> loading = 1 ;
}
$observer = App :: get_observer ();
$observer_hash = (( $observer ) ? $observer [ 'xchan_hash' ] : '' );
$o = '<div id="live-search"></div>' . " \r \n " ;
$o .= '<div class="generic-content-wrapper-styled">' . " \r \n " ;
$o .= '<h3>' . t ( 'Search' ) . '</h3>' ;
if ( x ( App :: $data , 'search' )) {
$search = trim ( App :: $data [ 'search' ]);
2022-03-12 20:44:12 +00:00
$saved_id = 'search=' . urlencode ( $_GET [ 'search' ]);
2021-12-02 23:02:31 +00:00
} else {
$search = (( x ( $_GET , 'search' )) ? trim ( escape_tags ( rawurldecode ( $_GET [ 'search' ]))) : '' );
2022-03-12 20:44:12 +00:00
$saved_id = 'search=' . urlencode ( $_GET [ 'search' ]);
2021-12-02 23:02:31 +00:00
}
$tag = false ;
if ( x ( $_GET , 'tag' )) {
$tag = true ;
$search = (( x ( $_GET , 'tag' )) ? trim ( escape_tags ( rawurldecode ( $_GET [ 'tag' ]))) : '' );
2022-03-12 20:44:12 +00:00
$saved_id = 'tag=' . urlencode ( $_GET [ 'tag' ]);
2021-12-02 23:02:31 +00:00
}
2022-03-12 20:44:12 +00:00
2021-12-02 23:02:31 +00:00
$static = (( array_key_exists ( 'static' , $_REQUEST )) ? intval ( $_REQUEST [ 'static' ]) : 0 );
$o .= search ( $search , 'search-box' , '/search' , (( local_channel ()) ? true : false ));
// ActivityStreams object fetches from the navbar
if ( local_channel () && strpos ( $search , 'https://' ) === 0 && ( ! $this -> updating ) && ( ! $this -> loading )) {
logger ( 'searching for ActivityPub' );
2022-01-19 03:43:46 +00:00
if (( $pos = strpos ( $search , 'b64.' )) !== false ) {
$search = substr ( $search , $pos + 4 );
if (( $pos2 = strpos ( $search , '?' )) !== false ) {
$search = substr ( $search , 0 , $pos2 );
}
$search = base64_decode ( $search );
}
logger ( 'Search: ' . $search );
2022-08-15 19:47:49 +00:00
$url = htmlspecialchars_decode ( $search );
2021-12-02 23:02:31 +00:00
$channel = App :: get_channel ();
$hash = EMPTY_STR ;
2022-08-15 19:47:49 +00:00
$j = Activity :: fetch ( $url , $channel );
2021-12-02 23:02:31 +00:00
if ( $j ) {
if ( isset ( $j [ 'type' ]) && ActivityStreams :: is_an_actor ( $j [ 'type' ])) {
2022-06-19 01:27:41 +00:00
Activity :: actor_store ( $j [ 'id' ], $j , true );
2021-12-02 23:02:31 +00:00
goaway ( z_root () . '/directory' . '?f=1&navsearch=1&search=' . $search );
}
$AS = new ActivityStreams ( $j , null , true );
if ( $AS -> is_valid () && isset ( $AS -> data [ 'type' ])) {
if ( is_array ( $AS -> obj )) {
// matches Collection and orderedCollection
if ( isset ( $AS -> obj [ 'type' ]) && strpos ( $AS -> obj [ 'type' ], 'Collection' ) !== false ) {
// Collections are awkward to process because they can be huge.
// Our strategy is to limit a navbar search to 100 Collection items
// and only fetch the first 10 conversations in the foreground.
// We'll queue the rest, and then send you to a page where
// you can see something we've imported.
// In theory you'll start to see notifications as other conversations
// are fetched in the background while you're looking at the first ones.
$max = intval ( get_config ( 'system' , 'max_imported_search_collection' , 100 ));
if ( intval ( $max )) {
2022-08-15 19:47:49 +00:00
$obj = new ASCollection ( $url , $channel , 0 , $max );
2021-12-02 23:02:31 +00:00
$messages = $obj -> get ();
// logger('received: ' . print_r($messages,true));
$author = null ;
if ( $messages ) {
logger ( 'received ' . count ( $messages ) . ' items from collection.' , LOGGER_DEBUG );
$processed = 0 ;
foreach ( $messages as $message ) {
$processed ++ ;
// only process the first several items in the foreground and
// queue the remainder.
if ( $processed > 10 ) {
$fetch_url = (( is_string ( $message )) ? $message : EMPTY_STR );
$fetch_url = (( is_array ( $message ) && array_key_exists ( 'id' , $message )) ? $message [ 'id' ] : $fetch_url );
if ( ! $fetch_url ) {
continue ;
}
$hash = new_uuid ();
Queue :: insert (
[
'hash' => $hash ,
'account_id' => $channel [ 'channel_account_id' ],
'channel_id' => $channel [ 'channel_id' ],
'posturl' => $fetch_url ,
'notify' => EMPTY_STR ,
'msg' => EMPTY_STR ,
'driver' => 'asfetch'
]
);
continue ;
}
if ( is_string ( $message )) {
$message = Activity :: fetch ( $message , App :: get_channel ());
}
$AS = new ActivityStreams ( $message , null , true );
if ( $AS -> is_valid () && is_array ( $AS -> obj )) {
$item = Activity :: decode_note ( $AS , true );
}
if ( $item ) {
if ( ! $author ) {
$author = $item [ 'author_xchan' ];
}
Activity :: store ( App :: get_channel (), get_observer_hash (), $AS , $item , true , true );
}
}
if ( $hash ) {
Run :: Summon ([ 'Deliver' , $hash ]);
}
}
// This will go to the right place most but not all of the time.
// It will go to a relevant place all of the time, so we'll use it.
if ( $author ) {
goaway ( z_root () . '/stream/?xchan=' . urlencode ( $author ));
}
goaway ( z_root () . '/stream' );
}
} else {
// It wasn't a Collection object and wasn't an Actor object,
// so let's see if it decodes. The boolean flag enables html
// cache of the item
$item = Activity :: decode_note ( $AS , true );
2022-04-21 21:46:21 +00:00
2021-12-02 23:02:31 +00:00
if ( $item ) {
Activity :: store ( App :: get_channel (), get_observer_hash (), $AS , $item , true , true );
2022-07-20 11:26:28 +00:00
goaway ( z_root () . '/display/?mid=' . gen_link_id ( $item [ 'mid' ]));
2021-12-02 23:02:31 +00:00
}
2022-01-19 03:43:46 +00:00
else {
notice ( t ( 'Item not found.' ) . EOL );
return EMPTY_STR ;
}
2021-12-02 23:02:31 +00:00
}
}
}
}
}
if ( strpos ( $search , '#' ) === 0 ) {
$tag = true ;
$search = substr ( $search , 1 );
}
2022-03-16 05:57:30 +00:00
if ( strpos ( $search , '@' ) === 0 && $format === '' ) {
2021-12-02 23:02:31 +00:00
$search = substr ( $search , 1 );
goaway ( z_root () . '/directory' . '?f=1&navsearch=1&search=' . $search );
}
2022-03-16 05:57:30 +00:00
if ( strpos ( $search , '!' ) === 0 && $format === '' ) {
2021-12-02 23:02:31 +00:00
$search = substr ( $search , 1 );
goaway ( z_root () . '/directory' . '?f=1&navsearch=1&search=' . $search );
}
2022-03-16 05:57:30 +00:00
if ( strpos ( $search , '?' ) === 0 && $format === '' ) {
2021-12-02 23:02:31 +00:00
$search = substr ( $search , 1 );
goaway ( z_root () . '/help' . '?f=1&navsearch=1&search=' . $search );
}
// look for a naked webbie
2022-03-16 05:57:30 +00:00
if ( strpos ( $search , '@' ) !== false && strpos ( $search , 'http' ) !== 0 && $format === '' ) {
2021-12-02 23:02:31 +00:00
goaway ( z_root () . '/directory' . '?f=1&navsearch=1&search=' . $search );
}
if ( ! $search ) {
return $o ;
}
if ( $tag ) {
$wildtag = str_replace ( '*' , '%' , $search );
2021-12-03 03:01:39 +00:00
$sql_extra = sprintf (
" AND item.id IN (select oid from term where otype = %d and ttype in ( %d , %d) and term like '%s') " ,
2021-12-02 23:02:31 +00:00
intval ( TERM_OBJ_POST ),
intval ( TERM_HASHTAG ),
intval ( TERM_COMMUNITYTAG ),
dbesc ( protect_sprintf ( $wildtag ))
);
} else {
$regstr = db_getfunc ( 'REGEXP' );
$sql_extra = sprintf ( " AND (item.title $regstr '%s' OR item.body $regstr '%s') " , dbesc ( protect_sprintf ( preg_quote ( $search ))), dbesc ( protect_sprintf ( preg_quote ( $search ))));
}
// Here is the way permissions work in the search module...
// Only public posts can be shown
// OR your own posts if you are a logged in member
// No items will be shown if the member has a blocked profile wall.
if (( ! $this -> updating ) && ( ! $this -> loading )) {
2022-01-25 01:26:12 +00:00
$static = (( local_channel ()) ? Channel :: manual_conv_update ( local_channel ()) : 0 );
2021-12-02 23:02:31 +00:00
// This is ugly, but we can't pass the profile_uid through the session to the ajax updater,
// because browser prefetching might change it on us. We have to deliver it with the page.
$o .= '<div id="live-search"></div>' . " \r \n " ;
$o .= " <script> var profile_uid = " . (( intval ( local_channel ())) ? local_channel () : ( - 1 ))
. " ; var netargs = '?f='; var profile_page = " . App :: $pager [ 'page' ] . " ; </script> \r \n " ;
2022-02-12 20:43:29 +00:00
App :: $page [ 'htmlhead' ] .= replace_macros ( Theme :: get_template ( " build_query.tpl " ), [
2021-12-02 23:02:31 +00:00
'$baseurl' => z_root (),
'$pgtype' => 'search' ,
'$uid' => (( App :: $profile [ 'profile_uid' ]) ? App :: $profile [ 'profile_uid' ] : '0' ),
'$gid' => '0' ,
'$cid' => '0' ,
'$cmin' => '(-1)' ,
'$cmax' => '(-1)' ,
'$star' => '0' ,
'$liked' => '0' ,
'$conv' => '0' ,
'$spam' => '0' ,
'$fh' => '0' ,
'$dm' => '0' ,
'$nouveau' => '0' ,
'$wall' => '0' ,
'$draft' => '0' ,
'$static' => $static ,
'$list' => (( x ( $_REQUEST , 'list' )) ? intval ( $_REQUEST [ 'list' ]) : 0 ),
'$page' => (( App :: $pager [ 'page' ] != 1 ) ? App :: $pager [ 'page' ] : 1 ),
'$search' => (( $tag ) ? urlencode ( '#' ) : '' ) . $search ,
'$xchan' => '' ,
'$order' => '' ,
'$file' => '' ,
'$cats' => '' ,
'$tags' => '' ,
'$mid' => '' ,
'$verb' => '' ,
'$net' => '' ,
'$dend' => '' ,
2022-09-16 21:55:12 +00:00
'$dbegin' => '' ,
'$distance' => '0' ,
'$distance_from' => '' ,
2021-12-02 23:02:31 +00:00
]);
}
$item_normal = item_normal_search ();
$pub_sql = item_permissions_sql ( 0 , $observer_hash );
2022-01-25 01:26:12 +00:00
$sys = Channel :: get_system ();
2021-12-02 23:02:31 +00:00
if (( $this -> updating ) && ( $this -> loading )) {
$itemspage = get_pconfig ( local_channel (), 'system' , 'itemspage' );
App :: set_pager_itemspage ((( intval ( $itemspage )) ? $itemspage : 20 ));
$pager_sql = sprintf ( " LIMIT %d OFFSET %d " , intval ( App :: $pager [ 'itemspage' ]), intval ( App :: $pager [ 'start' ]));
if ( $this -> loading ) {
$r = null ;
// if logged in locally, first look in the items you own
// and if this returns zero results, resort to searching elsewhere on the site.
// Ideally these results would be merged but this can be difficult
// and results in lots of duplicated content and/or messed up pagination
if ( local_channel ()) {
2021-12-03 03:01:39 +00:00
$r = q (
" SELECT mid, MAX(id) as item_id from item where uid = %d
2022-01-19 03:43:46 +00:00
$item_normal
$sql_extra
group by mid , created order by created desc $pager_sql " ,
2021-12-02 23:02:31 +00:00
intval ( local_channel ())
);
}
if ( ! $r ) {
$r = q ( " SELECT mid, MAX(id) as item_id from item WHERE true $pub_sql
2022-01-19 03:43:46 +00:00
$item_normal
$sql_extra
group by mid , created order by created desc $pager_sql " );
2021-12-02 23:02:31 +00:00
}
if ( $r ) {
$str = ids_to_querystr ( $r , 'item_id' );
$r = q ( " select *, id as item_id from item where id in ( " . $str . " ) order by created desc " );
}
} else {
$r = [];
}
}
if ( $r ) {
xchan_query ( $r );
2022-10-23 00:50:31 +00:00
$items = fetch_post_tags ( $r );
2021-12-02 23:02:31 +00:00
} else {
$items = [];
}
2022-03-12 20:44:12 +00:00
if ( $format === 'json' ) {
2022-03-12 22:04:16 +00:00
$chan = Channel :: get_system ();
2022-03-12 20:44:12 +00:00
$i = Activity :: encode_item_collection ( $items , 'search?' . $saved_id , 'OrderedCollection' , true , count ( $items ));
2022-03-12 22:04:16 +00:00
$x = array_merge ([ '@context' => [
ACTIVITYSTREAMS_JSONLD_REV ,
'https://w3id.org/security/v1' ,
Activity :: ap_schema ()
]], $i );
$headers = [];
$headers [ 'Content-Type' ] = 'application/x-nomad+json' ;
$x [ 'signature' ] = LDSignatures :: sign ( $x , $chan );
$ret = json_encode ( $x , JSON_UNESCAPED_SLASHES );
$headers [ 'Digest' ] = HTTPSig :: generate_digest_header ( $ret );
$headers [ '(request-target)' ] = strtolower ( $_SERVER [ 'REQUEST_METHOD' ]) . ' ' . $_SERVER [ 'REQUEST_URI' ];
$h = HTTPSig :: create_sig ( $headers , $chan [ 'channel_prvkey' ], Channel :: url ( $chan ));
HTTPSig :: set_headers ( $h );
echo $ret ;
killme ();
2021-12-02 23:02:31 +00:00
}
2021-12-03 03:01:39 +00:00
if ( $tag ) {
2021-12-02 23:02:31 +00:00
$o .= '<h2>' . sprintf ( t ( 'Items tagged with: %s' ), $search ) . '</h2>' ;
2021-12-03 03:01:39 +00:00
} else {
2021-12-02 23:02:31 +00:00
$o .= '<h2>' . sprintf ( t ( 'Search results for: %s' ), $search ) . '</h2>' ;
2021-12-03 03:01:39 +00:00
}
2021-12-02 23:02:31 +00:00
$o .= conversation ( $items , 'search' , $this -> updating , 'client' );
$o .= '</div>' ;
return $o ;
}
2016-04-19 03:38:38 +00:00
}