loading) { $_SESSION['loadtime'] = datetime_convert(); } Navbar::set_selected('Search'); $format = (($_REQUEST['module_format']) ? $_REQUEST['module_format'] : ''); if ($format !== '') { $this->updating = $this->loading = 1; } $observer = App::get_observer(); $observer_hash = (($observer) ? $observer['xchan_hash'] : ''); $o = '' . "\r\n"; $o .= '
' . "\r\n"; $o .= '

' . t('Search') . '

'; if (x(App::$data, 'search')) { $search = trim(App::$data['search']); $saved_id = 'search=' . urlencode($_GET['search']); } else { $search = ((x($_GET, 'search')) ? trim(escape_tags(rawurldecode($_GET['search']))) : ''); $saved_id = 'search=' . urlencode($_GET['search']); } $tag = false; if (x($_GET, 'tag')) { $tag = true; $search = ((x($_GET, 'tag')) ? trim(escape_tags(rawurldecode($_GET['tag']))) : ''); $saved_id = 'tag=' . urlencode($_GET['tag']); } $static = ((array_key_exists('static', $_REQUEST)) ? intval($_REQUEST['static']) : 0); $o .= search($search, 'search-box', '/search', ((local_channel()) ? true : false)); // ActivityStreams object fetches from the navbar if (local_channel() && strpos($search, 'https://') === 0 && (!$this->updating) && (!$this->loading)) { logger('searching for ActivityPub'); if (($pos = strpos($search,'b64.')) !== false) { $search = substr($search,$pos + 4); if (($pos2 = strpos($search,'?')) !== false) { $search = substr($search,0,$pos2); } $search = base64_decode($search); } logger('Search: ' . $search); $url = htmlspecialchars_decode($search); $channel = App::get_channel(); $hash = EMPTY_STR; $j = Activity::fetch($url, $channel); if ($j) { if (isset($j['type']) && ActivityStreams::is_an_actor($j['type'])) { Activity::actor_store($j['id'], $j, true); goaway(z_root() . '/directory' . '?f=1&navsearch=1&search=' . $search); } $AS = new ActivityStreams($j, null, true); if ($AS->is_valid() && isset($AS->data['type'])) { if (is_array($AS->obj)) { // matches Collection and orderedCollection if (isset($AS->obj['type']) && strpos($AS->obj['type'], 'Collection') !== false) { // Collections are awkward to process because they can be huge. // Our strategy is to limit a navbar search to 100 Collection items // and only fetch the first 10 conversations in the foreground. // We'll queue the rest, and then send you to a page where // you can see something we've imported. // In theory you'll start to see notifications as other conversations // are fetched in the background while you're looking at the first ones. $max = intval(get_config('system', 'max_imported_search_collection', 100)); if (intval($max)) { $obj = new ASCollection($url, $channel, 0, $max); $messages = $obj->get(); // logger('received: ' . print_r($messages,true)); $author = null; if ($messages) { logger('received ' . count($messages) . ' items from collection.', LOGGER_DEBUG); $processed = 0; foreach ($messages as $message) { $processed++; // only process the first several items in the foreground and // queue the remainder. if ($processed > 10) { $fetch_url = ((is_string($message)) ? $message : EMPTY_STR); $fetch_url = ((is_array($message) && array_key_exists('id', $message)) ? $message['id'] : $fetch_url); if (!$fetch_url) { continue; } $hash = new_uuid(); Queue::insert( [ 'hash' => $hash, 'account_id' => $channel['channel_account_id'], 'channel_id' => $channel['channel_id'], 'posturl' => $fetch_url, 'notify' => EMPTY_STR, 'msg' => EMPTY_STR, 'driver' => 'asfetch' ] ); continue; } if (is_string($message)) { $message = Activity::fetch($message, App::get_channel()); } $AS = new ActivityStreams($message, null, true); if ($AS->is_valid() && is_array($AS->obj)) { $item = Activity::decode_note($AS, true); } if ($item) { if (!$author) { $author = $item['author_xchan']; } Activity::store(App::get_channel(), get_observer_hash(), $AS, $item, true, true); } } if ($hash) { Run::Summon(['Deliver', $hash]); } } // This will go to the right place most but not all of the time. // It will go to a relevant place all of the time, so we'll use it. if ($author) { goaway(z_root() . '/stream/?xchan=' . urlencode($author)); } goaway(z_root() . '/stream'); } } else { // It wasn't a Collection object and wasn't an Actor object, // so let's see if it decodes. The boolean flag enables html // cache of the item $item = Activity::decode_note($AS, true); if ($item) { Activity::store(App::get_channel(), get_observer_hash(), $AS, $item, true, true); goaway(z_root() . '/display/?mid=' . gen_link_id($item['mid'])); } else { notice( t('Item not found.') . EOL); return EMPTY_STR; } } } } } } if (strpos($search, '#') === 0) { $tag = true; $search = substr($search, 1); } if (strpos($search, '@') === 0 && $format === '') { $search = substr($search, 1); goaway(z_root() . '/directory' . '?f=1&navsearch=1&search=' . $search); } if (strpos($search, '!') === 0 && $format === '') { $search = substr($search, 1); goaway(z_root() . '/directory' . '?f=1&navsearch=1&search=' . $search); } if (strpos($search, '?') === 0 && $format === '') { $search = substr($search, 1); goaway(z_root() . '/help' . '?f=1&navsearch=1&search=' . $search); } // look for a naked webbie if (strpos($search, '@') !== false && strpos($search, 'http') !== 0 && $format === '') { goaway(z_root() . '/directory' . '?f=1&navsearch=1&search=' . $search); } if (!$search) { return $o; } if ($tag) { $wildtag = str_replace('*', '%', $search); $sql_extra = sprintf( " AND item.id IN (select oid from term where otype = %d and ttype in ( %d , %d) and term like '%s') ", intval(TERM_OBJ_POST), intval(TERM_HASHTAG), intval(TERM_COMMUNITYTAG), dbesc(protect_sprintf($wildtag)) ); } else { $regstr = db_getfunc('REGEXP'); $sql_extra = sprintf(" AND (item.title $regstr '%s' OR item.body $regstr '%s') ", dbesc(protect_sprintf(preg_quote($search))), dbesc(protect_sprintf(preg_quote($search)))); } // Here is the way permissions work in the search module... // Only public posts can be shown // OR your own posts if you are a logged in member // No items will be shown if the member has a blocked profile wall. if ((!$this->updating) && (!$this->loading)) { $static = ((local_channel()) ? Channel::manual_conv_update(local_channel()) : 0); // This is ugly, but we can't pass the profile_uid through the session to the ajax updater, // because browser prefetching might change it on us. We have to deliver it with the page. $o .= '' . "\r\n"; $o .= "\r\n"; App::$page['htmlhead'] .= replace_macros(Theme::get_template("build_query.tpl"), [ '$baseurl' => z_root(), '$pgtype' => 'search', '$uid' => ((App::$profile['profile_uid']) ? App::$profile['profile_uid'] : '0'), '$gid' => '0', '$cid' => '0', '$cmin' => '(-1)', '$cmax' => '(-1)', '$star' => '0', '$liked' => '0', '$conv' => '0', '$spam' => '0', '$fh' => '0', '$dm' => '0', '$nouveau' => '0', '$wall' => '0', '$draft' => '0', '$static' => $static, '$list' => ((x($_REQUEST, 'list')) ? intval($_REQUEST['list']) : 0), '$page' => ((App::$pager['page'] != 1) ? App::$pager['page'] : 1), '$search' => (($tag) ? urlencode('#') : '') . $search, '$xchan' => '', '$order' => '', '$file' => '', '$cats' => '', '$tags' => '', '$mid' => '', '$verb' => '', '$net' => '', '$dend' => '', '$dbegin' => '' ]); } $item_normal = item_normal_search(); $pub_sql = item_permissions_sql(0, $observer_hash); $sys = Channel::get_system(); if (($this->updating) && ($this->loading)) { $itemspage = get_pconfig(local_channel(), 'system', 'itemspage'); App::set_pager_itemspage(((intval($itemspage)) ? $itemspage : 20)); $pager_sql = sprintf(" LIMIT %d OFFSET %d ", intval(App::$pager['itemspage']), intval(App::$pager['start'])); if ($this->loading) { $r = null; // if logged in locally, first look in the items you own // and if this returns zero results, resort to searching elsewhere on the site. // Ideally these results would be merged but this can be difficult // and results in lots of duplicated content and/or messed up pagination if (local_channel()) { $r = q( "SELECT mid, MAX(id) as item_id from item where uid = %d $item_normal $sql_extra group by mid, created order by created desc $pager_sql ", intval(local_channel()) ); } if (!$r) { $r = q("SELECT mid, MAX(id) as item_id from item WHERE true $pub_sql $item_normal $sql_extra group by mid, created order by created desc $pager_sql"); } if ($r) { $str = ids_to_querystr($r, 'item_id'); $r = q("select *, id as item_id from item where id in ( " . $str . ") order by created desc "); } } else { $r = []; } } if ($r) { xchan_query($r); $items = fetch_post_tags($r, true); } else { $items = []; } if ($format === 'json') { $chan = Channel::get_system(); $i = Activity::encode_item_collection($items, 'search?' . $saved_id , 'OrderedCollection', true, count($items)); $x = array_merge(['@context' => [ ACTIVITYSTREAMS_JSONLD_REV, 'https://w3id.org/security/v1', Activity::ap_schema() ]], $i); $headers = []; $headers['Content-Type'] = 'application/x-nomad+json'; $x['signature'] = LDSignatures::sign($x, $chan); $ret = json_encode($x, JSON_UNESCAPED_SLASHES); $headers['Digest'] = HTTPSig::generate_digest_header($ret); $headers['(request-target)'] = strtolower($_SERVER['REQUEST_METHOD']) . ' ' . $_SERVER['REQUEST_URI']; $h = HTTPSig::create_sig($headers, $chan['channel_prvkey'], Channel::url($chan)); HTTPSig::set_headers($h); echo $ret; killme(); } if ($tag) { $o .= '

' . sprintf(t('Items tagged with: %s'), $search) . '

'; } else { $o .= '

' . sprintf(t('Search results for: %s'), $search) . '

'; } $o .= conversation($items, 'search', $this->updating, 'client'); $o .= '
'; return $o; } }