<?php
class Instances extends Plugin implements IHandler {
private $link;
private $host;
private $status_codes = array(
0 => "Connection failed",
1 => "Success",
2 => "Invalid object received",
16 => "Access denied" );
function about() {
return array(1.0,
"Support for linking tt-rss instances together and sharing popular feeds.",
"fox",
true);
}
function init($host) {
$this->link = $host->get_link();
$this->host = $host;
$host->add_hook($host::HOOK_PREFS_TABS, $this);
$host->add_handler("pref-instances", "*", $this);
$host->add_handler("public", "fbexport", $this);
$host->add_command("get-feeds", "receive popular feeds from linked instances", $this);
$host->add_hook($host::HOOK_UPDATE_TASK, $this);
}
function hook_update_task($args) {
_debug("Get linked feeds...");
$this->get_linked_feeds($this->link);
}
// Status codes:
// -1 - never connected
// 0 - no data received
// 1 - data received successfully
// 2 - did not receive valid data
// >10 - server error, code + 10 (e.g. 16 means server error 6)
function get_linked_feeds($link, $instance_id = false) {
if ($instance_id)
$instance_qpart = "id = '$instance_id' AND ";
else
$instance_qpart = "";
if (DB_TYPE == "pgsql") {
$date_qpart = "last_connected < NOW ( ) - INTERVAL ' 6 hours ' " ;
} else {
$date_qpart = "last_connected < DATE_SUB ( NOW ( ) , INTERVAL 6 HOUR ) " ;
}
$result = db_query($link, "SELECT id, access_key, access_url FROM ttrss_linked_instances
WHERE $instance_qpart $date_qpart ORDER BY last_connected");
while ($line = db_fetch_assoc($result)) {
$id = $line['id'];
_debug("Updating: " . $line['access_url'] . " ($id)");
$fetch_url = $line['access_url'] . '/public.php?op=fbexport';
$post_query = 'key=' . $line['access_key'];
$feeds = fetch_file_contents($fetch_url, false, false, false, $post_query);
// try doing it the old way
if (!$feeds) {
$fetch_url = $line['access_url'] . '/backend.php?op=fbexport';
$feeds = fetch_file_contents($fetch_url, false, false, false, $post_query);
}
if ($feeds) {
$feeds = json_decode($feeds, true);
if ($feeds) {
if ($feeds['error']) {
$status = $feeds['error']['code'] + 10;
// access denied
if ($status == 16) {
db_query($link, "DELETE FROM ttrss_linked_feeds
WHERE instance_id = '$id'");
}
} else {
$status = 1;
if (count($feeds['feeds']) > 0) {
db_query($link, "DELETE FROM ttrss_linked_feeds
WHERE instance_id = '$id'");
foreach ($feeds['feeds'] as $feed) {
$feed_url = db_escape_string($this->link, $feed['feed_url']);
$title = db_escape_string($this->link, $feed['title']);
$subscribers = db_escape_string($this->link, $feed['subscribers']);
$site_url = db_escape_string($this->link, $feed['site_url']);
db_query($link, "INSERT INTO ttrss_linked_feeds
(feed_url, site_url, title, subscribers, instance_id, created, updated)
VALUES
('$feed_url', '$site_url', '$title', '$subscribers', '$id', NOW(), NOW())");
}
} else {
// received 0 feeds, this might indicate that
// the instance on the other hand is rebuilding feedbrowser cache
// we will try again later
// TODO: maybe perform expiration based on updated here?
}
_debug("Processed " . count($feeds['feeds']) . " feeds.");
}
} else {
$status = 2;
}
} else {
$status = 0;
}
_debug("Status: $status");
db_query($link, "UPDATE ttrss_linked_instances SET
last_status_out = '$status', last_connected = NOW() WHERE id = '$id'");
}
}
function get_feeds() {
$this->get_linked_feeds($this->link, false);
}
function get_prefs_js() {
return file_get_contents(dirname(__FILE__) . "/instances.js");
}
function hook_prefs_tabs($args) {
if ($_SESSION["access_level"] >= 10 || SINGLE_USER_MODE) {
?>< div id = "instanceConfigTab" dojoType = "dijit.layout.ContentPane"
href="backend.php?op=pref-instances"
title="<?php echo __ ( 'Linked' ) ?> "></ div > <?php
}
}
function csrf_ignore($method) {
$csrf_ignored = array("index", "edit");
return array_search($method, $csrf_ignored) !== false;
}
function before($method) {
if ($_SESSION["uid"]) {
if ($_SESSION["access_level"] < 10 ) {
print __("Your access level is insufficient to open this tab.");
return false;
}
return true;
}
return false;
}
function after() {
return true;
}
function remove() {
$ids = db_escape_string($this->link, $_REQUEST['ids']);
db_query($this->link, "DELETE FROM ttrss_linked_instances WHERE
id IN ($ids)");
}
function add() {
$id = db_escape_string($this->link, $_REQUEST["id"]);
$access_url = db_escape_string($this->link, $_REQUEST["access_url"]);
$access_key = db_escape_string($this->link, $_REQUEST["access_key"]);
db_query($this->link, "BEGIN");
$result = db_query($this->link, "SELECT id FROM ttrss_linked_instances
WHERE access_url = '$access_url'");
if (db_num_rows($result) == 0) {
db_query($this->link, "INSERT INTO ttrss_linked_instances
(access_url, access_key, last_connected, last_status_in, last_status_out)
VALUES
('$access_url', '$access_key', '1970-01-01', -1, -1)");
}
db_query($this->link, "COMMIT");
}
function edit() {
$id = db_escape_string($this->link, $_REQUEST["id"]);
$result = db_query($this->link, "SELECT * FROM ttrss_linked_instances WHERE
id = '$id'");
print "< input dojoType = \"dijit.form.TextBox\" style = \"display : none \ " name = \"id\" value = \"$id\" > ";
print "< input dojoType = \"dijit.form.TextBox\" style = \"display : none \ " name = \"op\" value = \"pref-instances\" > ";
print "< input dojoType = \"dijit.form.TextBox\" style = \"display : none \ " name = \"method\" value = \"editSave\" > ";
print "< div class = \"dlgSec\" > ".__("Instance")."< / div > ";
print "< div class = \"dlgSecCont\" > ";
/* URL */
$access_url = htmlspecialchars(db_fetch_result($result, 0, "access_url"));
print __("URL:") . " ";
print "< input dojoType = \"dijit.form.ValidationTextBox\" required = \"1\"
placeHolder=\"".__("Instance URL")."\"
regExp='^(http|https)://.*'
style=\"font-size : 16px; width: 20em\" name=\"access_url\"
value=\"$access_url\">";
print "< hr / > ";
$access_key = htmlspecialchars(db_fetch_result($result, 0, "access_key"));
/* Access key */
print __("Access key:") . " ";
print "< input dojoType = \"dijit.form.ValidationTextBox\" required = \"1\"
placeHolder=\"".__("Access key")."\" regExp='\w{40}'
style=\"width: 20em\" name=\"access_key\" id=\"instance_edit_key\"
value=\"$access_key\">";
print "< p class = 'insensitive' > " . __("Use one access key for both linked instances.");
print "< / div > ";
print "< div class = \"dlgButtons\" >
< div style = 'float : left' >
< button dojoType = \"dijit.form.Button\"
onclick=\"return dijit.byId('instanceEditDlg').regenKey()\">".
__('Generate new key')."< / button >
< / div >
< button dojoType = \"dijit.form.Button\"
onclick=\"return dijit.byId('instanceEditDlg').execute()\">".
__('Save')."< / button >
< button dojoType = \"dijit.form.Button\"
onclick=\"return dijit.byId('instanceEditDlg').hide()\"\">".
__('Cancel')."< / button > < / div > ";
}
function editSave() {
$id = db_escape_string($this->link, $_REQUEST["id"]);
$access_url = db_escape_string($this->link, $_REQUEST["access_url"]);
$access_key = db_escape_string($this->link, $_REQUEST["access_key"]);
db_query($this->link, "UPDATE ttrss_linked_instances SET
access_key = '$access_key', access_url = '$access_url',
last_connected = '1970-01-01'
WHERE id = '$id'");
}
function index() {
if (!function_exists('curl_init')) {
print "< div style = 'padding : 1em' > ";
print_error("This functionality requires CURL functions. Please enable CURL in your PHP configuration (you might also want to disable open_basedir in php.ini) and reload this page.");
print "< / div > ";
}
print "< div id = \"pref-instance-wrap\" dojoType = \"dijit.layout.BorderContainer\" gutters = \"false\" > ";
print "< div id = \"pref-instance-header\" dojoType = \"dijit.layout.ContentPane\" region = \"top\" > ";
print "< div id = \"pref-instance-toolbar\" dojoType = \"dijit.Toolbar\" > ";
$sort = db_escape_string($this->link, $_REQUEST["sort"]);
if (!$sort || $sort == "undefined") {
$sort = "access_url";
}
print "< div dojoType = \"dijit.form.DropDownButton\" > ".
"< span > " . __('Select')."< / span > ";
print "< div dojoType = \"dijit.Menu\" style = \"display: none ; \ " > ";
print "< div onclick = \"selectTableRows('prefInstanceList', ' all ' ) \ "
dojoType=\"dijit.MenuItem\">".__('All')."< / div > ";
print "< div onclick = \"selectTableRows('prefInstanceList', ' none ' ) \ "
dojoType=\"dijit.MenuItem\">".__('None')."< / div > ";
print "< / div > < / div > ";
print "< button dojoType = \"dijit.form.Button\" onclick = \"addInstance()\" > ".__('Link instance')."< / button > ";
print "< button dojoType = \"dijit.form.Button\" onclick = \"editSelectedInstance()\" > ".__('Edit')."< / button > ";
print "< button dojoType = \"dijit.form.Button\" onclick = \"removeSelectedInstances()\" > ".__('Remove')."< / button > ";
print "< / div > "; #toolbar
$result = db_query($this->link, "SELECT *,
(SELECT COUNT(*) FROM ttrss_linked_feeds
WHERE instance_id = ttrss_linked_instances.id) AS num_feeds
FROM ttrss_linked_instances
ORDER BY $sort");
print "< p class = \"insensitive\" style = 'margin-left : 1em;' > " . __("You can connect other instances of Tiny Tiny RSS to this one to share Popular feeds. Link to this instance of Tiny Tiny RSS by using this URL:");
print " < a href = \"#\" onclick = \"alert('".htmlspecialchars(get_self_url_prefix())."')\" > (display url)< / a > ";
print "< p > < table width = '100%' id = 'prefInstanceList' class = 'prefInstanceList' cellspacing = '0' > ";
print "< tr class = \"title\" >
< td align = 'center' width = \"5%\" > < / td >
< td width = '' > < a href = \"#\" onclick = \"updateInstanceList('access_url')\" > ".__('Instance URL')."< / a > < / td >
< td width = '20%' > < a href = \"#\" onclick = \"updateInstanceList('access_key')\" > ".__('Access key')."< / a > < / td >
< td width = '10%' > < a href = \"#\" onclick = \"updateUsersList('last_connected')\" > ".__('Last connected')."< / a > < / td >
< td width = '10%' > < a href = \"#\" onclick = \"updateUsersList('last_status_out')\" > ".__('Status')."< / a > < / td >
< td width = '10%' > < a href = \"#\" onclick = \"updateUsersList('num_feeds')\" > ".__('Stored feeds')."< / a > < / td >
< / tr > ";
$lnum = 0;
while ($line = db_fetch_assoc($result)) {
$class = ($lnum % 2) ? "even" : "odd";
$id = $line['id'];
$this_row_id = "id=\"LIRR-$id\"";
$line["last_connected"] = make_local_datetime($this->link, $line["last_connected"], false);
print "< tr class = \"$class\" $ this_row_id > ";
print "< td align = 'center' > < input onclick = 'toggleSelectRow(this);'
type=\"checkbox\" id=\"LICHK-$id\">< / td > ";
$onclick = "onclick='editInstance($id, event)' title='".__('Click to edit')."'";
$access_key = mb_substr($line['access_key'], 0, 4) . '...' .
mb_substr($line['access_key'], -4);
print "< td $ onclick > " . htmlspecialchars($line['access_url']) . "< / td > ";
print "< td $ onclick > " . htmlspecialchars($access_key) . "< / td > ";
print "< td $ onclick > " . htmlspecialchars($line['last_connected']) . "< / td > ";
print "< td $ onclick > " . $this->status_codes[$line['last_status_out']] . "< / td > ";
print "< td $ onclick > " . htmlspecialchars($line['num_feeds']) . "< / td > ";
print "< / tr > ";
++$lnum;
}
print "< / table > ";
print "< / div > "; #pane
global $pluginhost;
$pluginhost->run_hooks($pluginhost::HOOK_PREFS_TAB,
"hook_prefs_tab", "prefInstances");
print "< / div > "; #container
}
function fbexport() {
$access_key = db_escape_string($this->link, $_POST["key"]);
// TODO: rate limit checking using last_connected
$result = db_query($this->link, "SELECT id FROM ttrss_linked_instances
WHERE access_key = '$access_key'");
if (db_num_rows($result) == 1) {
$instance_id = db_fetch_result($result, 0, "id");
$result = db_query($this->link, "SELECT feed_url, site_url, title, subscribers
FROM ttrss_feedbrowser_cache ORDER BY subscribers DESC LIMIT 100");
$feeds = array();
while ($line = db_fetch_assoc($result)) {
array_push($feeds, $line);
}
db_query($this->link, "UPDATE ttrss_linked_instances SET
last_status_in = 1 WHERE id = '$instance_id'");
print json_encode(array("feeds" => $feeds));
} else {
print json_encode(array("error" => array("code" => 6)));
}
}
function addInstance() {
print "< input dojoType = \"dijit.form.TextBox\" style = \"display : none \ " name = \"op\" value = \"pref-instances\" > ";
print "< input dojoType = \"dijit.form.TextBox\" style = \"display : none \ " name = \"method\" value = \"add\" > ";
print "< div class = \"dlgSec\" > ".__("Instance")."< / div > ";
print "< div class = \"dlgSecCont\" > ";
/* URL */
print __("URL:") . " ";
print "< input dojoType = \"dijit.form.ValidationTextBox\" required = \"1\"
placeHolder=\"".__("Instance URL")."\"
regExp='^(http|https)://.*'
style=\"font-size : 16px; width: 20em\" name=\"access_url\">";
print "< hr / > ";
$access_key = sha1(uniqid(rand(), true));
/* Access key */
print __("Access key:") . " ";
print "< input dojoType = \"dijit.form.ValidationTextBox\" required = \"1\"
placeHolder=\"".__("Access key")."\" regExp='\w{40}'
style=\"width: 20em\" name=\"access_key\" id=\"instance_add_key\"
value=\"$access_key\">";
print "< p class = 'insensitive' > " . __("Use one access key for both linked instances.");
print "< / div > ";
print "< div class = \"dlgButtons\" >
< div style = 'float : left' >
< button dojoType = \"dijit.form.Button\"
onclick=\"return dijit.byId('instanceAddDlg').regenKey()\">".
__('Generate new key')."< / button >
< / div >
< button dojoType = \"dijit.form.Button\"
onclick=\"return dijit.byId('instanceAddDlg').execute()\">".
__('Create link')."< / button >
< button dojoType = \"dijit.form.Button\"
onclick=\"return dijit.byId('instanceAddDlg').hide()\"\">".
__('Cancel')."< / button > < / div > ";
return;
}
function genHash() {
$hash = sha1(uniqid(rand(), true));
print json_encode(array("hash" => $hash));
}
}
?>