2021-07-10 19:18:17 +01:00
< ? php
/*
* Paste < https :// github . com / jordansamuel / PASTE >
*
* This program is free software ; you can redistribute it and / or
* modify it under the terms of the GNU General Public License
* as published by the Free Software Foundation ; either version 3
* of the License , or ( at your option ) any later version .
*
* This program is distributed in the hope that it will be useful ,
* but WITHOUT ANY WARRANTY ; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
* GNU General Public License in GPL . txt for more details .
*/
function timer ()
{
static $start ;
if ( is_null ( $start ))
{
$start = microtime ( true );
}
else
{
$diff = round (( microtime ( true ) - $start ), 4 );
$start = null ;
return $diff ;
}
}
function getUserFavs ( $conn , $username )
{
2021-07-11 19:30:48 +01:00
$query = $conn -> prepare ( " SELECT pins.f_time, pins.m_fav, pins.f_paste, pastes.id, pastes.title, pastes.now_time, pastes.tagsys FROM pins, pastes WHERE pins.f_paste = pastes.id AND pins.m_fav=?' " );
$query -> execute ([ $username ]);
return $query -> fetchAll ();
2021-07-10 19:18:17 +01:00
}
function CountPasteFavs ( $conn , $fav_id )
{
2021-07-11 19:30:48 +01:00
$query = $conn -> prepare ( " SELECT COUNT(f_paste) FROM pins WHERE f_paste=? " );
$query -> execute ([ $fav_id ]);
return $query -> fetchAll ();
2021-07-10 19:18:17 +01:00
}
function checkFavorite ( $paste_id , $user_id , $conn ) {
$result = $conn -> query ( " SELECT * FROM pins WHERE m_fav = ' " . $user_id . " ' AND f_paste = ' " . $paste_id . " ' " );
$numrows = $result -> num_rows ;
if ( $numrows == 0 ) {
echo " <a href='#' id='favorite' class='iconn tool-iconn' data-fid=' " . $paste_id . " '><i class='far fa-star fa-lg has-text-grey' title='Favourite'></i></a> " ;
}
else {
echo " <a href='#' id='favorite' class='iconn tool-iconn' data-fid=' " . $paste_id . " '><i class='fas fa-star fa-lg has-text-grey' title='Favourite'></i></a> " ;
}
}
2021-07-11 19:30:48 +01:00
function getreports ( $conn , $count = 10 ) {
2021-07-10 16:21:01 -04:00
$query = $conn -> prepare ( 'SELECT * FROM user_reports LIMIT ?' );
$query -> execute ([ $count ]);
return $query -> fetchAll ();
2021-07-10 19:18:17 +01:00
}
function sandwitch ( $str ){
$output = " " ;
$arr = explode ( " , " , $str );
foreach ( $arr as $word ){
$output .= '<span class="tag is-info">' . trim ( $word ) . '</span>' ;
}
return $output ;
}
2021-07-11 19:30:48 +01:00
function getevent ( $conn , $event_name , $count )
2021-07-10 19:18:17 +01:00
{
2021-07-11 19:30:48 +01:00
$query = $conn -> prepare ( " SELECT id, visible, title, date, now_time, views, member, tagsys FROM pastes WHERE visible='1' AND tagsys LIKE '%?%'
ORDER BY RAND () LIMIT 0 , ? " );
$query -> execute ([ $event_name , $count ]);
return $query -> fetchAll ();
2021-07-10 19:18:17 +01:00
}
function linkify ( $value , $protocols = array ( 'http' , 'mail' ), array $attributes = array ())
{
// Link attributes
$attr = '' ;
foreach ( $attributes as $key => $val ) {
$attr .= ' ' . $key . '="' . htmlentities ( $val ) . '"' ;
}
$links = array ();
// Extract existing links and tags
$value = preg_replace_callback ( '~(<a .*?>.*?</a>|<.*?>)~i' , function ( $match ) use ( & $links ) { return '<' . array_push ( $links , $match [ 1 ]) . '>' ; }, $value );
// Extract text links for each protocol
foreach (( array ) $protocols as $protocol ) {
switch ( $protocol ) {
case 'http' :
case 'https' : $value = preg_replace_callback ( '~(?:(https?)://([^\s<]+)|(www\.[^\s<]+?\.[^\s<]+))(?<![\.,:])~i' , function ( $match ) use ( $protocol , & $links , $attr ) { if ( $match [ 1 ]) $protocol = $match [ 1 ]; $link = $match [ 2 ] ? : $match [ 3 ]; return '<' . array_push ( $links , " <a $attr href= \" $protocol :// $link\ " > $protocol :// $link </ a > " ) . '>'; }, $value ); break;
default : $value = preg_replace_callback ( '~' . preg_quote ( $protocol , '~' ) . '://([^\s<]+?)(?<![\.,:])~i' , function ( $match ) use ( $protocol , & $links , $attr ) { return '<' . array_push ( $links , " <a $attr href= \" $protocol :// { $match [ 1 ] } \" > $protocol :// { $match [ 1 ] } </a> " ) . '>' ; }, $value ); break ;
}
}
// Insert all link
return preg_replace_callback ( '/<(\d+)>/' , function ( $match ) use ( & $links ) { return $links [ $match [ 1 ] - 1 ]; }, $value );
}
2021-07-11 19:30:48 +01:00
function getRecentreport ( $conn , $count )
2021-07-10 19:18:17 +01:00
{
2021-07-11 19:30:48 +01:00
$query = $conn -> prepare ( " SELECT id, m_report, p_report, rep_reason, t_report FROM user_reports
ORDER BY id DESC
LIMIT 0 , ? " );
$query -> execute ([ $count ]);
return $query -> fetchAll ();
2021-07-10 19:18:17 +01:00
}
function getUserRecom ( $conn , $p_member )
{
$query = $conn -> prepare ( " SELECT id, member, title, visible
FROM pastes where member = ? AND visible = '0'
ORDER BY id DESC
LIMIT 0 , 5 " );
$query -> execute ([ $p_member ]);
return $query -> fetchAll ();
}
function recentupdate ( $conn , $count ) {
$query = $conn -> prepare ( " SELECT id, visible, title, date, timeedit, now_time, member, tagsys FROM pastes WHERE visible='0' ORDER BY timeedit DESC
LIMIT 10 , ? " );
$query -> execute ([ $count ]);
return $query -> fetchAll ();
}
function monthpop ( $conn , $count = 10 ) {
$limit = $count ? " limit $count " : " " ;
$p_month = date ( 'F' );
$query = " SELECT s_date, views, title, id, now_time, visible, tagsys, member FROM pastes WHERE s_date LIKE '% $p_month %' AND visible = '0' ORDER BY views + 0 DESC LIMIT 10, $count " ;
$result = mysqli_query ( $conn , $query );
return $result ;
}
function isValidEmail ( $email ) {
return filter_var ( $email , FILTER_VALIDATE_EMAIL )
&& preg_match ( '/@.+\./' , $email );
}
function formatBytes ( $size , $precision = 2 )
{
$base = log ( $size , 1024 );
$suffixes = array ( 'B' , 'KB' , 'MB' , 'GB' , 'TB' );
return round ( pow ( 1024 , $base - floor ( $base )), $precision ) . ' ' . $suffixes [ floor ( $base )];
}
function str_conntains ( $haystack , $needle , $ignoreCase = false )
{
if ( $ignoreCase ) {
$haystack = strtolower ( $haystack );
$needle = strtolower ( $needle );
}
$needlePos = strpos ( $haystack , $needle );
return ( $needlePos === false ? false : ( $needlePos + 1 ));
}
function encrypt ( $value )
{
$salt = $sec_key ;
$encrypted_string = openssl_encrypt ( $value , " AES-256-CBC " , $salt );
return $encrypted_string ;
}
function decrypt ( $value )
{
$salt = $sec_key ;
$decrypted_string = openssl_decrypt ( $value , " AES-256-CBC " , $salt );
return $decrypted_string ;
}
function deleteMyPaste ( $conn , $paste_id )
{
$query = " DELETE FROM pastes where id=' $paste_id ' " ;
$result = mysqli_query ( $conn , $query );
}
function getRecent ( $conn , $count )
{
$query = $conn -> prepare ( " SELECT id, visible, title, date, now_time, member, tagsys
FROM pastes where visible = '0'
ORDER BY id DESC
LIMIT ? " );
$query -> execute ([ $count ]);
return $query -> fetchAll ();
}
function getRecentadmin ( $conn , $count = 5 )
{
2021-07-10 16:21:01 -04:00
$query = $conn -> prepare ( 'SELECT id, ip title, date, now_time, s_date, views, member FROM pastes ORDER BY id DESC LIMIT 0, ?' );
$query -> execute ([ $count ]);
return $query -> fetchAll ();
2021-07-10 19:18:17 +01:00
}
2021-07-11 19:30:48 +01:00
function getpopular ( $conn , $count )
2021-07-10 19:18:17 +01:00
{
2021-07-11 19:30:48 +01:00
$query = $conn -> prepare ( " SELECT id, visible, title, date, now_time, views, member, tagsys
FROM pastes WHERE visible = '0'
2021-07-10 19:18:17 +01:00
ORDER BY views + 0 DESC
2021-07-11 19:30:48 +01:00
LIMIT 0 , ? " );
$query -> execute ([ $count ]);
return $query -> fetchAll ();
2021-07-10 19:18:17 +01:00
}
function getrandom ( $conn , $count )
{
$query = $conn -> prepare ( " SELECT id, visible, title, date, now_time, views, member, tagsys
FROM pastes where visible = '0'
ORDER BY RAND ()
LIMIT ? " );
$query -> execute ([ $count ]);
return $query -> fetchAll ();
}
function getUserRecent ( $conn , $count , $username )
{
$query = $conn -> prepare ( " SELECT id, member, title, date, now_time
FROM pastes where member = ?
ORDER BY id DESC
LIMIT 0 , ? " );
$query -> execute ([ $username , $count ]);
return $query -> fetchAll ();
}
2021-07-11 19:30:48 +01:00
2021-07-10 19:18:17 +01:00
function getUserPastes ( $conn , $username )
{
2021-07-11 19:30:48 +01:00
$query = $conn -> prepare ( " SELECT id, title, code, views, s_date, now_time, visible, date, tagsys, member FROM pastes where member=? ORDER by id DESC " );
$query -> execute ([ $username ]);
return $query -> fetchAll ();
2021-07-10 19:18:17 +01:00
}
function jsonView ( $paste_id , $p_title , $p_conntent , $p_code )
{
$stats = false ;
if ( $p_code ) {
// Raw
header ( 'conntent-type: text/plain' );
echo $p_conntent ;
$stats = true ;
} else {
// 404
header ( 'HTTP/1.1 404 Not Found' );
}
return $stats ;
}
function getTotalPastes ( $conn , $username )
{
$count = 0 ;
2021-07-11 19:30:48 +01:00
$query = $conn -> prepare ( " SELECT member FROM pastes WHERE member=? " );
$query -> execute ([ $username ]);
while ( $row = $site_info_rows -> fetch ()) {
2021-07-10 19:18:17 +01:00
$count = $count + 1 ;
}
return $count ;
}
function isValidUsername ( $str ) {
return ! preg_match ( '/[^A-Za-z0-9._\\-$]/' , $str );
}
2021-07-11 12:44:31 -04:00
function existingUser ( PDO $conn , string $username ) : bool {
$query = $conn -> prepare ( 'SELECT 1 FROM users WHERE username = ?' );
$query -> execute ([ $username ]);
return ( bool ) $query -> fetch ();
2021-07-10 19:18:17 +01:00
}
2021-07-11 19:30:48 +01:00
function updateMyView ( $conn , $paste_id )
{
2021-07-10 19:18:17 +01:00
$query = $conn -> prepare ( " SELECT views, id FROM pastes WHERE id= ? " );
$query -> execute ([ $paste_id ]);
if ( $row = $query -> fetch ()) {
$p_view = Trim ( $row [ 'views' ]);
}
$p_view = $p_view + 1 ;
$query = $conn -> prepare ( " UPDATE pastes SET views=' $p_view ' where id= ? " );
$query -> execute ([ $paste_id ]);
return $query -> fetchAll ();
}
function conTime ( $secs ) {
// round up to 1 seconnd
if ( $secs == 0 ) {
$secs = 1 ;
}
$bit = array (
' year' => $secs / 31556926 % 12 ,
' week' => $secs / 604800 % 52 ,
' day' => $secs / 86400 % 7 ,
' hour' => $secs / 3600 % 24 ,
' min' => $secs / 60 % 60 ,
' sec' => $secs % 60
);
foreach ( $bit as $k => $v ) {
if ( $v > 1 )
$ret [] = $v . $k . 's' ;
if ( $v == 1 )
$ret [] = $v . $k ;
}
array_splice ( $ret , count ( $ret ) - 1 , 0 , 'and' );
$ret [] = 'ago' ;
$val = join ( ' ' , $ret );
if ( str_conntains ( $val , " week " )) {
} else {
$val = str_replace ( " and " , " " , $val );
}
if ( Trim ( $val ) == " ago " ) {
$val = " 1 sec ago " ;
}
return $val ;
}
function truncate ( $input , $maxWords , $maxChars )
{
$words = preg_split ( '/\s+/' , $input );
$words = array_slice ( $words , 0 , $maxWords );
$words = array_reverse ( $words );
$chars = 0 ;
$truncated = array ();
while ( count ( $words ) > 0 ) {
$fragment = trim ( array_pop ( $words ));
$chars += strlen ( $fragment );
if ( $chars > $maxChars )
break ;
$truncated [] = $fragment ;
}
2021-07-11 11:54:37 -04:00
$result = implode ( ' ' , $truncated );
2021-07-10 19:18:17 +01:00
return $result . ( $input == $result ? '' : '[...]' );
}
function truncatetag ( $input , $maxWords , $maxChars )
{ $str = $input ;
$pattern = '/,/i' ;
$words = preg_replace ( $pattern , ' ' , $str );
$words = preg_split ( '/\s+/' , $input );
$words = array_slice ( $words , 0 , $maxWords );
$words = array_reverse ( $words );
$chars = 0 ;
$truncated1 = array ();
while ( count ( $words ) > 0 ) {
$fragment = trim ( array_pop ( $words ));
$chars += strlen ( $fragment );
if ( $chars > $maxChars )
break ;
$truncated1 [] = $fragment ;
}
$result = implode ( $truncated1 , ' ' );
return $result . ( $input == $result ? '' : '...' );
}
function doDownload ( $paste_id , $p_title , $p_member , $p_conntent , $p_code )
{
$stats = false ;
if ( $p_code ) {
// Figure out extensions.
$ext = " txt " ;
switch ( $p_code ) {
default :
$ext = 'txt' ;
break ;
}
// Download
$p_title = stripslashes ( $p_title );
header ( 'content-type: text/plain' );
header ( 'content-Disposition: attachment; filename="' . $paste_id . '_' . $p_title . '_' . $p_member . '.' . $ext . '"' );
echo $p_conntent ;
$stats = true ;
} else {
// 404
header ( 'HTTP/1.1 404 Not Found' );
}
return $stats ;
}
function rawView ( $paste_id , $p_title , $p_conntent , $p_code )
{
$stats = false ;
if ( $p_code ) {
// Raw
header ( 'content-type: text/plain' );
echo $p_conntent ;
$stats = true ;
} else {
// 404
header ( 'HTTP/1.1 404 Not Found' );
}
return $stats ;
}
function embedView ( $paste_id , $p_title , $p_conntent , $p_code , $title , $baseurl , $ges_style , $lang ) {
$stats = false ;
if ( $p_conntent ) {
// Build the output
$output = " <div class='paste_embed_conntainer'> " ;
$output .= " <style> " ; // Add our own styles
$output .= "
. paste_embed_conntainer {
font - size : 12 px ;
color : #333;
text - align : left ;
margin - bottom : 1 em ;
border : 1 px solid #ddd;
background - color : #f7f7f7;
border - radius : 3 px ;
}
. paste_embed_conntainer a {
font - weight : bold ;
color : #666;
text - decoration : none ;
border : 0 ;
}
. paste_embed_conntainer ol {
color : white ;
background - color : #f7f7f7;
border - right : 1 px solid #ccc;
margin : 0 ;
}
. paste_embed_footer {
font - size : 14 px ;
padding : 10 px ;
overflow : hidden ;
color : #767676;
background - color : #f7f7f7;
border - radius : 0 0 2 px 2 px ;
border - top : 1 px solid #ccc;
}
. de1 , . de2 {
- moz - user - select : text ;
- khtml - user - select : text ;
- webkit - user - select : text ;
- ms - user - select : text ;
user - select : text ;
padding : 0 8 px ;
color : #000;
border - left : 1 px solid #ddd;
background : #ffffff;
line - height : 20 px ;
} " ;
$output .= " </style> " ;
$output .= " $ges_style " ; // Dynamic GeSHI Style
$output .= $p_conntent ; // Paste conntent
$output .= " <div class='paste_embed_footer'> " ;
$output .= " <a href='https://ponepaste.org/ $paste_id '> $p_title </a> " . $lang [ 'embed-hosted-by' ] . " <a href='https://ponepaste.org'> $title </a> | <a href='https://ponepaste.org/raw/ $paste_id '> " . strtolower ( $lang [ 'view-raw' ] ) . " </a> " ;
$output .= " </div> " ;
$output .= " </div> " ;
// Display embed conntent using json_encode since that escapes
// characters well enough to satisfy javascript. http://stackoverflow.com/a/169035
header ( 'conntent-type: text/javascript; charset=utf-8;' );
echo 'document.write(' . json_encode ( $output ) . ')' ;
$stats = true ;
} else {
// 404
header ( 'HTTP/1.1 404 Not Found' );
}
return $stats ;
}
function addToSitemap ( $paste_id , $priority , $changefreq , $mod_rewrite )
{
$c_date = date ( 'Y-m-d' );
2021-07-10 17:54:43 -04:00
$site_data = file_get_contents ( " sitemap.xml " );
2021-07-10 19:18:17 +01:00
$site_data = str_replace ( " </urlset> " , " " , $site_data );
// which protocol are we on
$protocol = paste_protocol ();
if ( $mod_rewrite == " 1 " ) {
$server_name = $protocol . $_SERVER [ 'HTTP_HOST' ] . dirname ( $_SERVER [ 'PHP_SELF' ]) . " / " . $paste_id ;
} else {
$server_name = $protocol . $_SERVER [ 'HTTP_HOST' ] . dirname ( $_SERVER [ 'PHP_SELF' ]) . " /paste.php?id= " . $paste_id ;
}
$c_sitemap =
' < url >
< loc > ' . $server_name . ' </ loc >
< priority > ' . $priority . ' </ priority >
< changefreq > ' . $changefreq . ' </ changefreq >
< lastmod > ' . $c_date . ' </ lastmod >
</ url >
</ urlset > ' ;
$full_map = $site_data . $c_sitemap ;
2021-07-10 17:54:43 -04:00
file_put_contents ( " sitemap.xml " , $full_map );
2021-07-10 19:18:17 +01:00
}
function paste_protocol () {
$protocol = ( isset ( $_SERVER [ 'HTTPS' ] ) && $_SERVER [ 'HTTPS' ] == " on " ) ? 'https://' : 'http://' ;
return $protocol ;
}
function is_banned ( $conn , $ip ) {
$query = $conn -> prepare ( 'SELECT 1 FROM ban_user WHERE ip = ?' );
$query -> execute ([ $ip ]);
return ( bool ) $query -> fetch ();
}
?>
