* #8 - Rogue tag - nibreh */ // Initialises a new object to store your wiki's settings in. Please don't touch this. $settings = new stdClass(); //////////////////////////////////////////////////////////////////////////////// //////////////////////////////// Basic Settings //////////////////////////////// //////////////////////////////////////////////////////////////////////////////// // The site's name. Used all over the place. $settings->sitename = "Pepperminty Wiki"; // The name of the page that will act as the home page for the wiki. This page // will be served if the user didn't specify a page. $settings->defaultpage = "Main Page"; // Contact details for the site administrator. Since users can only be added by // editing this file, people will need a contact address to use to ask for an // account. $settings->admindetails = [ "name" => "Administrator", "email" => "admin@localhost" ]; //////////////////////////////////////////////////////////////////////////////// ////////////////////////////////// Appearance ////////////////////////////////// //////////////////////////////////////////////////////////////////////////////// // A url that points to the favicon you want to use for your wiki. By default // this is set to a data: url of a Peppermint. // Default favicon credit: Peppermint by bluefrog23 // Link: https://openclipart.org/detail/19571/peppermint-candy-by-bluefrog23 $settings->favicon = "data:image/png;base64,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"; // A url that points to the site's logo. Leave blank to disable. When enabled // the logo will be inserted next to the site name on every page. $settings->logo_url = "//starbeamrainbowlabs.com/images/logos/peppermint.png"; // The side of the site name at which the logo should be placed. $settings->logo_position = "left"; // Whether to show a list of subpages at the bottom of the page. $settings->show_subpages = true; // The depth to which we should display when listing subpages at the bottom of // the page. $settings->subpages_display_depth = 3; // A message that will appear at the bottom of every page. May contain HTML. $settings->footer_message = "All content is under this license. Please make sure that you read and understand the license, especially if you are thinking about copying some (or all) of this site's content, as it may restrict you from doing so."; // A message that will appear just before the submit button on the editing // page. May contain HTML. $settings->editing_message = "By submitting your edit, you are agreeing to release your changes under this license. Also note that if you don't want your work to be edited by other users of this site, please don't submit it here!"; // The string that is prepended before an admin's name on the nav bar. Defaults // to a diamond shape (◆). $settings->admindisplaychar = "◆"; // The string that is prepended a page's name in the page title if it is // protected. Defaults to a lock symbol. (🔒) $settings->protectedpagechar = "🔒"; /////////////////////////////////////////////////////////////////////////////// /////////////////////////////////// Editing /////////////////////////////////// /////////////////////////////////////////////////////////////////////////////// // Whether editing is enabled. $settings->editing = true; // Whether users who aren't logged in are allowed to edit your wiki. $settings->anonedits = false; // The maximum page size in characters. $settings->maxpagesize = 135000; // The parser to use when rendering pages. Defaults to a modified version of // slimdown, originally written by Johnny Broadway . $settings->parser = "parsedown"; // Whether page sources should be cleaned of HTML before rendering. It is // STRONGLY recommended that you keep this option turned on. $settings->clean_raw_html = true; /////////////////////////////////////////////////////////////////////////////// ///////////////////////////// Access and Security ///////////////////////////// /////////////////////////////////////////////////////////////////////////////// // An array of usernames and passwords - passwords should be hashed with // sha256. $settings->users = [ "admin" => "5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8", //password "user" => "873ac9ffea4dd04fa719e8920cd6938f0c23cd678af330939cff53c3d2855f34" //cheese ]; // An array of usernames that are administrators. Administrators can delete and // move pages. $settings->admins = [ "admin" ]; // Whether to use the new sha3 hashing algorithm for passwords etc. $settings->use_sha3 = false; // Whether to require that users login before they do anything else. $settings->require_login_view = false; // The directory in which to store all files, except this main index.php. $settings->data_storage_dir = "."; // The secret key used to perform 'dangerous' actions, like updating the wiki. // It is strongly advised that you change this! $settings->sitesecret = "ed420502615bac9037f8f12abd4c9f02"; //////////////////////////////////////////////////////////////////////////////// ////////////////////////////////// Navigation ////////////////////////////////// //////////////////////////////////////////////////////////////////////////////// // An array of links and display text to display at the top of the site. // Format: // [ "Display Text", "Link" ] // You can also use strings here and they will be printed as-is, except the // following special strings: // user-status Expands to the user's login information // e.g. "Logged in as {name}. | Logout". // e.g. "Browsing as Anonymous. | Login". // // search Expands to a search box. // // divider Expands to a divider to separate stuff. // // more Expands to the "More..." submenu. $settings->nav_links = [ "user-status", [ "Home", "index.php" ], // [ "Login", "index.php?action=login" ], "search", [ "Read", "index.php?page={page}" ], [ "Edit", "index.php?action=edit&page={page}" ], [ "Printable", "index.php?action=view&printable=yes&page={page}" ], //"divider", [ "All Pages", "index.php?action=list" ], "menu" ]; // An array of additional links in the above format that will be shown under // "More" subsection. $settings->nav_links_extra = [ [ "🎫 All Tags", "index.php?action=list-tags" ], [ "🡅 Upload", "index.php?action=upload" ], [ "⌧ $settings->admindisplaychar" . "Delete", "index.php?action=delete&page={page}" ], [ "⎘ $settings->admindisplaychar" . "Move", "index.php?action=move&page={page}" ], [ "🔐 $settings->admindisplaychar" . "Toggle Protection", "index.php?action=protect&page={page}" ] ]; // An array of links in the above format that will be shown at the bottom of // the page. $settings->nav_links_bottom = [ [ "Credits", "index.php?action=credits" ], [ "Help", "index.php?action=help" ] ]; /////////////////////////////////////////////////////////////////////////////// /////////////////////////////////// Uploads /////////////////////////////////// /////////////////////////////////////////////////////////////////////////////// // Whether to allow image uploads to the server. $settings->upload_enabled = true; // An array of mime types that are allowed to be uploaded. $settings->upload_allowed_file_types = [ "image/jpeg", "image/png", "image/gif", "image/webp" ]; // The default file type for previews. $settings->preview_file_type = "image/png"; // The default size of preview images. $settings->default_preview_size = 640; // The location of a file that maps mime types onto file extensions and vice // versa. Used to generate the file extension for an uploaded file. See the // configuration guide for windows instructions. $settings->mime_extension_mappings_location = "/etc/mime.types"; // The minimum and maximum sizes of generated preview images in pixels. $settings->min_preview_size = 1; $settings->max_preview_size = 2048; //////////////////////////////////////////////////////////////////////////////// //////////////////////////////////// Search //////////////////////////////////// //////////////////////////////////////////////////////////////////////////////// // The number of characters that should be displayed either side of a matching // term in the context below each search result. $settings->search_characters_context = 200; // The weighting to give to search term matches found in a page's title. $settings->search_title_matches_weighting = 10; // The weighting to give to search term matches found in a page's tags. $settings->search_tags_matches_weighting = 3; //////////////////////////////////////////////////////////////////////////////// /////////////////////////////////// Advanced /////////////////////////////////// //////////////////////////////////////////////////////////////////////////////// // The default action. This action will be performed if no other action is // specified. It is recommended you set this to "view" - that way the user // automatically views the default page (see above). $settings->defaultaction = "view"; // The url from which to fetch updates. Defaults to the master (development) // branch. // MAKE SURE THAT THIS POINTS TO A *HTTPS* URL, OTHERWISE SOMEONE COULD INJECT // A VIRUS INTO YOUR WIKI $settings->updateurl = "https://raw.githubusercontent.com/sbrl/pepperminty-wiki/master/index.php"; /////////////////////////////////////////////////////////////////////////////// //////////////////////////////// Other Modules //////////////////////////////// /////////////////////////////////////////////////////////////////////////////// // The maximum number of recent changes to display on the recent changes page. $settings->max_recent_changes = 512; // Whether to only allow adminstrators to export the your wiki as a zip using // the page-export module. $settings->export_allow_only_admins = false; // The prefix that should be used in the names of the session variables. See // the readme for more information. $settings->sessionprefix = preg_replace("/[^0-9a-z]/i", "", strtolower($settings->sitename)); /////////////////////////////////////////////////////////////////////////////// //////////////////////////////////// Theme //////////////////////////////////// /////////////////////////////////////////////////////////////////////////////// // A string of css to include. Will be included in the of every page // inside a "; } public static $nav_divider = " | "; /* * @summary Function to render a navigation bar from an array of links. See * $settings->nav_links for format information. * * @param $nav_links - The links to add to the navigation bar. * @param $nav_links_extra - The extra nav links to add to the "More..." * menu. */ public static function render_navigation_bar($nav_links, $nav_links_extra, $class = "") { global $settings, $env; $result = "

\n"; // Loop over all the navigation links foreach($nav_links as $item) { if(is_string($item)) { // The item is a string switch($item) { //keywords case "user-status": if($env->is_logged_in) { $result .= "Logged in as " . self::render_username($env->user) . ". "/* . page_renderer::$nav_divider*/; $result .= "Logout"; $result .= page_renderer::$nav_divider; } else $result .= "Browsing as Anonymous." . /*page_renderer::$nav_divider . */"Login" . page_renderer::$nav_divider; break; case "search": // Displays a search bar $result .= ""; break; case "divider": // Displays a divider $result .= page_renderer::$nav_divider; break; case "menu": $result .= "More... "; $result .= page_renderer::render_navigation_bar($nav_links_extra, [], "nav-more-menu"); $result .= ""; break; // It isn't a keyword, so just output it directly default: $result .= "$item"; } } else { // Output the item as a link to a url $result .= "$item[0]"; } } $result .= "

"; return $result; } public static function render_username($name) { global $settings; $result = ""; if(in_array($name, $settings->admins)) $result .= $settings->admindisplaychar; $result .= $name; return $result; } public static function generate_all_pages_datalist() { global $pageindex; $result = "\n"; foreach($pageindex as $pagename => $pagedetails) { $result .= "\t\t\t"; return $result; } } ////////////////////////////////////// ///// Extra consistency measures ///// ////////////////////////////////////// // Redirect to the search page if there isn't a page with the requested name if(!isset($pageindex->{$env->page}) and isset($_GET["search-redirect"])) { http_response_code(307); $url = "?action=search&query=" . rawurlencode($env->page); header("location: $url"); exit(page_renderer::render("Non existent page - $settings->sitename", "

There isn't a page on $settings->sitename with that name. However, you could search for this page name in other pages.

Alternatively, you could create this page.

")); } // Redirect the user to the login page if: // - A login is required to view this wiki // - The user isn't already requesting the login page // Note we use $_GET here because $env->action isn't populated at this point if($settings->require_login_view === true && // If this site requires a login in order to view pages !$env->is_logged_in && // And the user isn't logged in !in_array($_GET["action"], [ "login", "checklogin" ])) // And the user isn't trying to login { // Redirect the user to the login page http_response_code(307); $url = "?action=login&returnto=" . rawurlencode($_SERVER["REQUEST_URI"]) . "&required=true"; header("location: $url"); exit(page_renderer::render("Login required - $settings->sitename", "

$settings->sitename requires that you login before you are able to access it.

")); } ////////////////////////////////////// ////////////////////////////////////// ////////////////////////// /// Module functions /// ////////////////////////// // These functions are // // used by modules to // // register themselves // // or new pages. // ////////////////////////// $modules = []; // List that contains all the loaded modules // Function to register a module function register_module($moduledata) { global $modules; //echo("registering module\n"); //var_dump($moduledata); $modules[] = $moduledata; } /** * Checks to see whether a module with the given id exists. * @param string $id The id to search for. * @return bool Whether a module is currently loaded with the given id. */ function module_exists($id) { global $modules; foreach($modules as $module) { if($module["id"] == $id) return true; } return false; } // Function to register an action handler $actions = new stdClass(); function add_action($action_name, $func) { global $actions; //echo("adding $action_name\n"); $actions->$action_name = $func; } // Function to register a new parser. $parsers = [ "none" => function() { throw new Exception("No parser registered!"); } ]; function add_parser($name, $parser_code) { global $parsers; if(isset($parsers[$name])) throw new Exception("Can't register parser with name '$name' because a parser with that name already exists."); $parsers[$name] = $parser_code; } function parse_page_source($source) { global $settings, $parsers; if(!isset($parsers[$settings->parser])) exit(page_renderer::render_main("Parsing error - $settings->sitename", "

Parsing some page source data failed. This is most likely because $settings->sitename has the parser setting set incorrectly. Please contact " . $settings->admindetails["name"] . ", your $settings->sitename Administrator.")); /* Not needed atm because escaping happens when saving, not when rendering * if($settings->clean_raw_html) $source = htmlentities($source, ENT_QUOTES | ENT_HTML5); */ return $parsers[$settings->parser]($source); } // Function to register a new proprocessor that will be executed just before // an edit is saved. $save_preprocessors = []; function register_save_preprocessor($func) { global $save_preprocessors; $save_preprocessors[] = $func; } $help_sections = []; function add_help_section($index, $title, $content) { global $help_sections; $help_sections[$index] = [ "title" => $title, "content" => $content ]; } ////////////////////////////////////////////////////////////////// register_module([ "name" => "Password hashing action", "version" => "0.5", "author" => "Starbeamrainbowlabs", "description" => "Adds a utility action (that anyone can use) called hash that hashes a given string. Useful when changing a user's password.", "id" => "action-hash", "code" => function() { /* * ██ ██ █████ ███████ ██ ██ * ██ ██ ██ ██ ██ ██ ██ * ███████ ███████ ███████ ███████ * ██ ██ ██ ██ ██ ██ ██ * ██ ██ ██ ██ ███████ ██ ██ */ add_action("hash", function() { global $settings; if(!isset($_GET["string"])) { http_response_code(422); exit(page_renderer::render_main("Missing parameter", "

The GET parameter string must be specified.

It is strongly recommended that you utilise this page via a private or incognito window in order to prevent your password from appearing in your browser history.

")); } else { exit(page_renderer::render_main("Hashed string", "

Algorithm: " . ($settings->use_sha3 ? "sha3" : "sha256") . "

" . $_GET["string"] . " → " . hash_password($_GET["string"]) . "

")); } }); } ]); register_module([ "name" => "Page protection", "version" => "0.2", "author" => "Starbeamrainbowlabs", "description" => "Exposes Pepperminty Wiki's new page protection mechanism and makes the protect button in the 'More...' menu on the top bar work.", "id" => "action-protect", "code" => function() { /* * ██████ ██████ ██████ ████████ ███████ ██████ ████████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██████ ██████ ██ ██ ██ █████ ██ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ ██ ██████ ██ ███████ ██████ ██ */ add_action("protect", function() { global $env, $pageindex, $paths, $settings; // Make sure that the user is logged in as an admin / mod. if($env->is_admin) { // They check out ok, toggle the page's protection. $page = $env->page; if(!isset($pageindex->$page->protect)) { $pageindex->$page->protect = true; } else if($pageindex->$page->protect === true) { $pageindex->$page->protect = false; } else if($pageindex->$page->protect === false) { $pageindex->$page->protect = true; } // Save the pageindex file_put_contents($paths->pageindex, json_encode($pageindex, JSON_PRETTY_PRINT)); $state = ($pageindex->$page->protect ? "enabled" : "disabled"); $title = "Page protection $state."; exit(page_renderer::render_main($title, "

Page protection for $env->page has been $state.

Go back.")); } else { exit(page_renderer::render_main("Error protecting page", "

You are not allowed to protect pages because you are not logged in as a mod or admin. Please try logging out if you are logged in and then try logging in as an administrator.

")); } }); } ]); register_module([ "name" => "Raw page source", "version" => "0.6", "author" => "Starbeamrainbowlabs", "description" => "Adds a 'raw' action that shows you the raw source of a page.", "id" => "action-raw", "code" => function() { global $settings; /* * ██████ █████ ██ ██ * ██ ██ ██ ██ ██ ██ * ██████ ███████ ██ █ ██ * ██ ██ ██ ██ ██ ███ ██ * ██ ██ ██ ██ ███ ███ */ add_action("raw", function() { global $env; header("x-filename: " . rawurlencode($env->page) . ".md"); header("content-type: text/markdown"); exit(file_get_contents("$env->storage_prefix$env->page.md")); exit(); }); add_help_section("800-raw-page-content", "Viewing Raw Page Content", "

Although you can use the edit page to view a page's source, you can also ask $settings->sitename to send you the raw page source and nothing else. This feature is intented for those who want to automate their interaction with $settings->sitename.

To use this feature, navigate to the page for which you want to see the source, and then alter the action parameter in the url's query string to be raw. If the action parameter doesn't exist, add it. Note that when used on an file's page this action will return the source of the description and not the file itself.

"); } ]); register_module([ "name" => "Sidebar", "version" => "0.3", "author" => "Starbeamrainbowlabs", "description" => "Adds a sidebar to the left hand side of every page. Add '\$settings->sidebar_show = true;' to your configuration, or append '&sidebar=yes' to the url to enable. Adding to the url sets a cookie to remember your setting.", "id" => "extra-sidebar", "code" => function() { global $settings; $show_sidebar = false; // Show the sidebar if it is enabled in the settings if(isset($settings->sidebar_show) && $settings->sidebar_show === true) $show_sidebar = true; // Also show and persist the sidebar if the special GET parameter // sidebar is seet if(!$show_sidebar && isset($_GET["sidebar"])) { $show_sidebar = true; // Set a cookie to persist the display of the sidebar setcookie("sidebar_show", "true", time() + (60 * 60 * 24 * 30)); } // Show the sidebar if the cookie is set if(!$show_sidebar && isset($_COOKIE["sidebar_show"])) $show_sidebar = true; // Delete the cookie and hide the sidebar if the special GET paramter // nosidebar is set if(isset($_GET["nosidebar"])) { $show_sidebar = false; unset($_COOKIE["sidebar_show"]); setcookie("sidebar_show", null, time() - 3600); } page_renderer::register_part_preprocessor(function(&$parts) use ($show_sidebar) { global $settings, $pageindex, $env; // Don't render a sidebar if the user is logging in and a login is // required in order to view pages. if($settings->require_login_view && in_array($env->action, [ "login", "checklogin" ])) return false; if($show_sidebar && !isset($_GET["printable"])) { // Show the sidebar $exec_start = microtime(true); // Sort the pageindex $sorted_pageindex = get_object_vars($pageindex); ksort($sorted_pageindex, SORT_NATURAL); $sidebar_contents = ""; $sidebar_contents .= render_sidebar($sorted_pageindex); $parts["{body}"] = "

" . $parts["{body}"] . "

"; } }); add_help_section("50-sidebar", "Sidebar", "

$settings->sitename has an optional sidebar which displays a list of all the current pages (but not subpages) that it is currently hosting. It may or may not be enabled.

If it isn't enabled, it can be enabled for your current browser only by appending sidebar=yes to the current page's query string.

"); } ]); /* * @summary Renders the sidebar for a given pageindex. * * @param $pageindex {array} - The pageindex to render the sidebar for * @param $root_pagename {string} - The pagename that should be considered the root of the rendering. You don't usually need to use this, it is used by the algorithm itself since it is recursive. * * @returns {string} A HTML rendering of the sidebar for the given pageindex */ function render_sidebar($pageindex, $root_pagename = "") { global $settings; $result = " $details) { // If we have a valid root pagename, and it isn't present at the // beginning of the current pagename, skip it if($root_pagename !== "" && strpos($pagename, $root_pagename) !== 0) continue; // The current page is the same as the root page, skip it if($pagename == $root_pagename) continue; // If the part of the current pagename that comes after the root // pagename has a slash in it, skip it as it is a sub-sub page. if(strpos(substr($pagename, strlen($root_pagename)), "/") !== false) continue; $result .= "

$pagename\n"; $result .= render_sidebar($pageindex, $pagename); $result .= "

\n"; } $result .= "\n"; return $result == "

\n" ? "" : $result; } register_module([ "name" => "Recent Changes", "version" => "0.1", "author" => "Starbeamrainbowlabs", "description" => "Adds recent changes. Access through the 'recent-changes' action.", "id" => "feature-recent-changes", "code" => function() { global $settings, $env, $paths; // Add the recent changes json file to $paths for convenience. $paths->recentchanges = $env->storage_prefix . "recent-changes.json"; // Create the recent changes json file if it doesn't exist if(!file_exists($paths->recentchanges)) file_put_contents($paths->recentchanges, "[]"); /* * ██████ ███████ ██████ ███████ ███ ██ ████████ * ██ ██ ██ ██ ██ ████ ██ ██ * ██████ █████ ██ █████ ██ ██ ██ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ ███████ ██████ ███████ ██ ████ ██ * * ██████ ██ ██ █████ ███ ██ ██████ ███████ ███████ * ██ ██ ██ ██ ██ ████ ██ ██ ██ ██ * ██ ███████ ███████ ██ ██ ██ ██ ███ █████ ███████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██████ ██ ██ ██ ██ ██ ████ ██████ ███████ ███████ */ add_action("recent-changes", function() { global $settings, $paths; $content = "\t\t

Recent Changes

\n"; $recentchanges = json_decode(file_get_contents($paths->recentchanges)); if(count($recentchanges) > 0) { $content .= "

$rchange->page ✎ $rchange->user " . human_time_since($rchange->timestamp) . " ($size_display)

"; } else { // No changes yet :( $content .= "

None yet! Try making a few changes and then check back here.

\n"; } echo(page_renderer::render("Recent Changes - $settings->sitename", $content)); }); register_save_preprocessor(function(&$pageinfo, &$newsource, &$oldsource) { global $env, $settings, $paths; // Work out the old and new page lengths $oldsize = strlen($oldsource); $newsize = strlen($newsource); // Calculate the page length difference $size_diff = $newsize - $oldsize; $recentchanges = json_decode(file_get_contents($paths->recentchanges), true); array_unshift($recentchanges, [ "timestamp" => time(), "page" => $env->page, "user" => $env->user, "newsize" => $newsize, "sizediff" => $size_diff ]); // Limit the number of entries in the recent changes file if we've // been asked to. if(isset($settings->max_recent_changes)) $recentchanges = array_slice($recentchanges, -$settings->max_recent_changes); // Save the recent changes file back to disk file_put_contents($paths->recentchanges, json_encode($recentchanges, JSON_PRETTY_PRINT)); }); add_help_section("800-raw-page-content", "Recent Changes", "

"); } ]); register_module([ "name" => "Redirect pages", "version" => "0.3", "author" => "Starbeamrainbowlabs", "description" => "Adds support for redirect pages. Uses the same syntax that Mediawiki does.", "id" => "feature-redirect", "code" => function() { global $settings; register_save_preprocessor(function(&$index_entry, &$pagedata) { $matches = []; if(preg_match("/^# ?REDIRECT ?\[\[([^\]]+)\]\]/i", $pagedata, $matches) === 1) { //error_log("matches: " . var_export($matches, true)); // We have found a redirect page! // Update the metadata to reflect this. $index_entry->redirect = true; $index_entry->redirect_target = $matches[1]; } else { // This page isn't a redirect. Unset the metadata just in case. if(isset($index_entry->redirect)) unset($index_entry->redirect); if(isset($index_entry->redirect_target)) unset($index_entry->redirect_target); } }); // Register a help section add_help_section("25-redirect", "Redirect Pages", "

$settings->sitename supports redirect pages. To create a redirect page, enter something like # REDIRECT [[pagename]] on the first line of the redirect page's content. This must appear as the first line of the page, with no whitespace before it. You can include content beneath the redirect if you want, too (such as a reason for redirecting the page).

"); } ]); register_module([ "name" => "Search", "version" => "0.2", "author" => "Starbeamrainbowlabs", "description" => "Adds proper search functionality to Pepperminty Wiki. Note that this module, at the moment, just contains test code while I figure out how best to write a search engine.", "id" => "feature-search", "code" => function() { /* * ██ ███ ██ ██████ ███████ ██ ██ * ██ ████ ██ ██ ██ ██ ██ ██ * ██ ██ ██ ██ ██ ██ █████ ███ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ ████ ██████ ███████ ██ ██ */ add_action("index", function() { global $settings, $env; $breakable_chars = "\r\n\t .,\\/!\"£$%^&*[]()+`_~#"; header("content-type: text/plain"); $source = file_get_contents("$env->storage_prefix$env->page.md"); $index = search::index($source); var_dump($env->page); var_dump($source); var_dump($index); }); /* * ██ ███ ██ ██ ██ ██ ███ ██ ██████ ███████ ██ ██ * ██ ████ ██ ██ ██ ██ ████ ██ ██ ██ ██ ██ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ █████ ███ █████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ ████ ████ ██ ██ ████ ██████ ███████ ██ ██ * * ██████ ███████ ██████ ██ ██ ██ ██ ██████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██████ █████ ██████ ██ ██ ██ ██ ██ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ ███████ ██████ ██████ ██ ███████ ██████ */ add_action("invindex-rebuild", function() { search::rebuild_invindex(); }); /* * ███████ ███████ █████ ██████ ██████ ██ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ███████ █████ ███████ ██████ ██ ███████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ███████ ███████ ██ ██ ██ ██ ██████ ██ ██ */ add_action("search", function() { global $settings, $env, $pageindex, $paths; // Create the inverted index if it doesn't exist. // todo In the future perhaps a CLI for this would be good? if(!file_exists($paths->searchindex)) search::rebuild_invindex(); if(!isset($_GET["query"])) exit(page_renderer::render("No Search Terms - Error - $settings->sitename", "

You didn't specify any search terms. Try typing some into the box above.

")); $search_start = microtime(true); $invindex = search::load_invindex($paths->searchindex); $results = search::query_invindex($_GET["query"], $invindex); $search_end = microtime(true) - $search_start; $title = $_GET["query"] . " - Search results - $settings->sitename"; $content = "

\n"; $content .= "

Search Results

"; /// Search Box /// $content .= ""; $query = $_GET["query"]; if(isset($pageindex->$query)) { $content .= "

There's a page on $settings->sitename called $query.

"; } else { $content .= "

There isn't a page called $query on $settings->sitename, but you can create it.

"; } $i = 0; // todo use $_GET["offset"] and $_GET["result-count"] or something foreach($results as $result) { $link = "?page=" . rawurlencode($result["pagename"]); $pagesource = file_get_contents($env->storage_prefix . $result["pagename"] . ".md"); $context = search::extract_context($_GET["query"], $pagesource); $context = search::highlight_context($_GET["query"], $context); /*if(strlen($context) == 0) { $context = search::strip_markup(file_get_contents("$env->page.md", null, null, null, $settings->search_characters_context * 2)); if($pageindex->{$env->page}->size > $settings->search_characters_context * 2) $context .= "..."; }*/ // We add 1 to $i here to convert it from an index to a result // number as people expect it to start from 1 $content .= "

\n"; $content .= "

" . $result["pagename"] . "

\n"; $content .= "

$context

\n"; $content .= "

\n"; $i++; } $content .= "

\n"; exit(page_renderer::render($title, $content)); //header("content-type: text/plain"); //var_dump($results); }); } ]); class search { // Words that we should exclude from the inverted index. public static $stop_words = [ "a", "about", "above", "above", "across", "after", "afterwards", "again", "against", "all", "almost", "alone", "along", "already", "also", "although", "always", "am", "among", "amongst", "amoungst", "amount", "an", "and", "another", "any", "anyhow", "anyone", "anything", "anyway", "anywhere", "are", "around", "as", "at", "back", "be", "became", "because", "become", "becomes", "becoming", "been", "before", "beforehand", "behind", "being", "below", "beside", "besides", "between", "beyond", "bill", "both", "bottom", "but", "by", "call", "can", "cannot", "cant", "co", "con", "could", "couldnt", "cry", "de", "describe", "detail", "do", "done", "down", "due", "during", "each", "eg", "eight", "either", "eleven", "else", "elsewhere", "empty", "enough", "etc", "even", "ever", "every", "everyone", "everything", "everywhere", "except", "few", "fifteen", "fify", "fill", "find", "fire", "first", "five", "for", "former", "formerly", "forty", "found", "four", "from", "front", "full", "further", "get", "give", "go", "had", "has", "hasnt", "have", "he", "hence", "her", "here", "hereafter", "hereby", "herein", "hereupon", "hers", "herself", "him", "himself", "his", "how", "however", "hundred", "ie", "if", "in", "inc", "indeed", "interest", "into", "is", "it", "its", "itself", "keep", "last", "latter", "latterly", "least", "less", "ltd", "made", "many", "may", "me", "meanwhile", "might", "mine", "more", "moreover", "most", "mostly", "move", "much", "must", "my", "myself", "name", "namely", "neither", "never", "nevertheless", "next", "nine", "no", "none", "nor", "not", "nothing", "now", "nowhere", "of", "off", "often", "on", "once", "one", "only", "onto", "or", "other", "others", "otherwise", "our", "ours", "ourselves", "out", "over", "own", "part", "per", "perhaps", "please", "put", "rather", "re", "same", "see", "seem", "seemed", "seeming", "seems", "serious", "several", "she", "should", "show", "side", "since", "sincere", "six", "sixty", "so", "some", "somehow", "someone", "something", "sometime", "sometimes", "somewhere", "still", "such", "system", "take", "ten", "than", "that", "the", "their", "them", "themselves", "then", "thence", "there", "thereafter", "thereby", "therefore", "therein", "thereupon", "these", "they", "thickv", "thin", "third", "this", "those", "though", "three", "through", "throughout", "thru", "thus", "to", "together", "too", "top", "toward", "towards", "twelve", "twenty", "two", "un", "under", "until", "up", "upon", "us", "very", "via", "was", "we", "well", "were", "what", "whatever", "when", "whence", "whenever", "where", "whereafter", "whereas", "whereby", "wherein", "whereupon", "wherever", "whether", "which", "while", "whither", "who", "whoever", "whole", "whom", "whose", "why", "will", "with", "within", "without", "would", "yet", "you", "your", "yours", "yourself", "yourselves" ]; public static function index($source) { $source = html_entity_decode($source, ENT_QUOTES); $source_length = strlen($source); $index = []; $terms = self::tokenize($source); $i = 0; foreach($terms as $term) { $nterm = $term; // Skip over stop words (see https://en.wikipedia.org/wiki/Stop_words) if(in_array($nterm, self::$stop_words)) continue; if(!isset($index[$nterm])) { $index[$nterm] = [ "freq" => 0, "offsets" => [] ]; } $index[$nterm]["freq"]++; $index[$nterm]["offsets"][] = $i; $i++; } return $index; } public static function tokenize($source) { $source = strtolower($source); return preg_split("/((^\p{P}+)|(\p{P}*\s+\p{P}*)|(\p{P}+$))|\|/", $source, -1, PREG_SPLIT_NO_EMPTY); } public static function strip_markup($source) { return str_replace([ "[", "]", "\"", "*", "_", " - ", "`" ], "", $source); } public static function rebuild_invindex() { global $pageindex, $env, $paths; $invindex = []; foreach($pageindex as $pagename => $pagedetails) { $pagesource = file_get_contents("$env->storage_prefix$pagename.md"); $index = self::index($pagesource); self::merge_into_invindex($invindex, ids::getid($pagename), $index); } self::save_invindex($paths->searchindex, $invindex); } /* * @summary Sorts an index alphabetically. Will also sort an inverted index. * This allows us to do a binary search instead of a regular * sequential search. */ public static function sort_index(&$index) { ksort($index, SORT_NATURAL); } /* * @summary Compares two *regular* indexes to find the differences between them. * * @param {array} $indexa - The old index. * @param {array} $indexb - The new index. * @param {array} $changed - An array to be filled with the nterms of all * the changed entries. * @param {array} $removed - An array to be filled with the nterms of all * the removed entries. */ public static function compare_indexes($oldindex, $newindex, &$changed, &$removed) { foreach($oldindex as $nterm => $entry) { if(!isset($newindex[$nterm])) $removed[] = $nterm; } foreach($newindex as $nterm => $entry) { if(!isset($oldindex[$nterm]) or // If this world is new $newindex[$nterm] !== $oldindex[$nterm]) // If this word has changed $changed[$nterm] = $newindex[$nterm]; } } /* * @summary Reads in and parses an inverted index. */ // Todo remove this function and make everything streamable public static function load_invindex($invindex_filename) { $invindex = json_decode(file_get_contents($invindex_filename), true); return $invindex; } /* * @summary Merge an index into an inverted index. */ public static function merge_into_invindex(&$invindex, $pageid, &$index, &$removals = []) { // Remove all the subentries that were removed since last time foreach($removals as $nterm) { unset($invindex[$nterm][$pageid]); } // Merge all the new / changed index entries into the inverted index foreach($index as $nterm => $newentry) { // If the nterm isn't in the inverted index, then create a space for it if(!isset($invindex[$nterm])) $invindex[$nterm] = []; $invindex[$nterm][$pageid] = $newentry; // Sort the page entries for this word by frequency uasort($invindex[$nterm], function($a, $b) { if($a["freq"] == $b["freq"]) return 0; return ($a["freq"] < $b["freq"]) ? +1 : -1; }); } // Sort the inverted index by rank uasort($invindex, function($a, $b) { $ac = count($a); $bc = count($b); if($ac == $bc) return 0; return ($ac < $bc) ? +1 : -1; }); } /** * Deletes the given pageid from the given pageindex. * @param inverted_index &$invindex The inverted index. * @param number $pageid The pageid to remove. */ public static function delete_entry(&$invindex, $pageid) { $str_pageid = (string)$pageid; foreach($invindex as $nterm => &$entry) { if(isset($entry[$pageid])) unset($entry[$pageid]); if(isset($entry[$str_pageid])) unset($entry[$str_pageid]); if(count($entry) === 0) unset($invindex[$nterm]); } } public static function save_invindex($filename, &$invindex) { file_put_contents($filename, json_encode($invindex)); } public static function query_invindex($query, &$invindex) { global $settings, $pageindex; $query_terms = self::tokenize($query); $matching_pages = []; // Loop over each term in the query and find the matching page entries $count = count($query_terms); for($i = 0; $i < $count; $i++) { $qterm = $query_terms[$i]; // Only search the inverted index if it actually exists there if(isset($invindex[$qterm])) { // Loop over each page in the inverted index entry foreach($invindex[$qterm] as $pageid => $page_entry) { // Create an entry in the matching pages array if it doesn't exist if(!isset($matching_pages[$pageid])) $matching_pages[$pageid] = [ "nterms" => [] ]; $matching_pages[$pageid]["nterms"][$qterm] = $page_entry; } } // Loop over the pageindex and search the titles / tags foreach ($pageindex as $pagename => $pagedata) { // Get the current page's id $pageid = ids::getid($pagename); // Consider matches in the page title if(stripos($pagename, $qterm) !== false) { // We found the qterm in the title if(!isset($matching_pages[$pageid])) $matching_pages[$pageid] = [ "nterms" => [] ]; // Set up a counter for page title matches if it doesn't exist already if(!isset($matching_pages[$pageid]["title-matches"])) $matching_pages[$pageid]["title-matches"] = 0; $matching_pages[$pageid]["title-matches"] += count(mb_stripos_all($pagename, $qterm)); } // Consider matches in the page's tags if(isset($pagedata->tags) and // If this page has tags stripos(implode(" ", $pagedata->tags), $qterm) !== false) // And we found the qterm in the tags { if(!isset($matching_pages[$pageid])) $matching_pages[$pageid] = [ "nterms" => [] ]; // Set up a counter for tag match if there isn't one already if(!isset($matching_pages[$pageid]["tag-matches"])) $matching_pages[$pageid]["tag-matches"] = 0; $matching_pages[$pageid]["tag-matches"] += count(mb_stripos_all(implode(" ", $pagedata->tags), $qterm)); } } } foreach($matching_pages as $pageid => &$pagedata) { $pagedata["pagename"] = ids::getpagename($pageid); $pagedata["rank"] = 0; foreach($pagedata["nterms"] as $pterm => $entry) { $pagedata["rank"] += $entry["freq"]; // todo rank by context here } // Consider matches in the title / tags if(isset($pagedata["title-matches"])) $pagedata["rank"] += $pagedata["title-matches"] * $settings->search_title_matches_weighting; if(isset($pagedata["tag-matches"])) $pagedata["rank"] += $pagedata["tag-matches"] * $settings->search_tags_matches_weighting; // todo remove items if the rank is below a threshold } // todo sort by rank here uasort($matching_pages, function($a, $b) { if($a["rank"] == $b["rank"]) return 0; return ($a["rank"] < $b["rank"]) ? +1 : -1; }); return $matching_pages; } public static function extract_context($query, $source) { global $settings; $nterms = self::tokenize($query); $matches = []; // Loop over each nterm and find it in the source foreach($nterms as $nterm) { $all_offsets = mb_stripos_all($source, $nterm); // Skip over adding matches if there aren't any if($all_offsets === false) continue; foreach($all_offsets as $offset) { $matches[] = [ $nterm, $offset ]; } } usort($matches, function($a, $b) { if($a[1] == $b[1]) return 0; return ($a[1] < $b[1]) ? +1 : -1; }); $contexts = []; $basepos = 0; $matches_count = count($matches); while($basepos < $matches_count) { // Store the next match along - all others will be relative to that // one $group = [$matches[$basepos]]; // Start scanning at the next one along - we always store the first match $scanpos = $basepos + 1; $distance = 0; while(true) { // Break out if we reach the end if($scanpos >= $matches_count) break; // Find the distance between the current one and the last one $distance = $matches[$scanpos][1] - $matches[$scanpos - 1][1]; // Store it if the distance is below the threshold if($distance < $settings->search_characters_context) $group[] = $matches[$scanpos]; else break; $scanpos++; } $context_start = $group[0][1] - $settings->search_characters_context; $context_end = $group[count($group) - 1][1] + $settings->search_characters_context; $context = substr($source, $context_start, $context_end - $context_start); // Strip the markdown from the context - it's most likely going to // be broken anyway. $context = self::strip_markup($context); $contexts[] = $context; $basepos = $scanpos + 1; } return implode(" ... ", $contexts); } public static function highlight_context($query, $context) { $qterms = self::tokenize($query); foreach($qterms as $qterm) { // From http://stackoverflow.com/a/2483859/1460422 $context = preg_replace("/" . str_replace("/", "\/", preg_quote($qterm)) . "/i", "$0", $context); } return $context; } } register_module([ "name" => "Uploader", "version" => "0.3", "author" => "Starbeamrainbowlabs", "description" => "Adds the ability to upload files to Pepperminty Wiki. Uploaded files act as pages and have the special 'File:' prefix.", "id" => "feature-upload", "code" => function() { global $settings; /* * ██ ██ ██████ ██ ██████ █████ ██████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ ██████ ██ ██ ██ ███████ ██ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██████ ██ ███████ ██████ ██ ██ ██████ */ add_action("upload", function() { global $settings, $env, $pageindex, $paths; switch($_SERVER["REQUEST_METHOD"]) { case "GET": // Send upload page if(!$settings->upload_enabled) exit(page_renderer::render("Upload Disabled - $setting->sitename", "

You can't upload anything at the moment because $settings->sitename has uploads disabled. Try contacting " . $settings->admindetails["name"] . ", your site Administrator. Go back.

")); if(!$env->is_logged_in) exit(page_renderer::render("Upload Error - $settings->sitename", "

You are not currently logged in, so you can't upload anything.

Try logging in first.

")); exit(page_renderer::render("Upload - $settings->sitename", "

Select an image below, and then type a name for it in the box. This server currently supports uploads up to " . human_filesize(get_max_upload_size()) . " in size.

$settings->sitename currently supports uploading of the following file types: " . implode(", ", $settings->upload_allowed_file_types) . ".

")); break; case "POST": // Recieve file // Make sure uploads are enabled if(!$settings->upload_enabled) { unlink($_FILES["file"]["tmp_name"]); http_response_code(412); exit(page_renderer::render("Upload failed - $settings->sitename", "

Your upload couldn't be processed because uploads are currently disabled on $settings->sitename. Go back to the main page.

")); } // Make sure that the user is logged in if(!$env->is_logged_in) { unlink($_FILES["file"]["tmp_name"]); http_response_code(401); exit(page_renderer::render("Upload failed - $settings->sitename", "

Your upload couldn't be processed because you are not logged in.

Try logging in first.")); } // Calculate the target ename, removing any characters we // are unsure about. $target_name = makepathsafe($_POST["name"]); $temp_filename = $_FILES["file"]["tmp_name"]; $mimechecker = finfo_open(FILEINFO_MIME_TYPE); $mime_type = finfo_file($mimechecker, $temp_filename); finfo_close($mimechecker); // Perform appropriate checks based on the *real* filetype switch(substr($mime_type, 0, strpos($mime_type, "/"))) { case "image": $extra_data = []; $imagesize = getimagesize($temp_filename, $extra_data); // Make sure that the image size is defined if(!is_int($imagesize[0]) or !is_int($imagesize[1])) { http_response_code(415); exit(page_renderer::render("Upload Error - $settings->sitename", "

The file that you uploaded doesn't appear to be an image. $settings->sitename currently only supports uploading images (videos coming soon). Go back to try again.

")); } break; case "video": http_response_code(501); exit(page_renderer::render("Upload Error - $settings->sitename", "

You uploaded a video, but $settings->sitename doesn't support them yet. Please try again later.

")); default: http_response_code(415); exit(page_renderer::render("Upload Error - $settings->sitename", "

You uploaded an unnknown file type which couldn't be processed. $settings->sitename thinks that the file you uploaded was a(n) '$mime_type', which isn't supported.

")); } $file_extension = system_mime_type_extension($mime_type); $new_filename = "$paths->upload_file_prefix$target_name.$file_extension"; $new_description_filename = "$new_filename.md"; if(isset($pageindex->$new_filename)) exit(page_renderer::render("Upload Error - $settings->sitename", "

A page or file has already been uploaded with the name '$new_filename'. Try deleting it first. If you do not have permission to delete things, try contacting one of the moderators.

")); if(!file_exists("Files")) mkdir("Files", 0664); if(!move_uploaded_file($temp_filename, $env->storage_prefix . $new_filename)) { http_response_code(409); exit(page_renderer::render("Upload Error - $settings->sitename", "

The file you uploaded was valid, but $settings->sitename couldn't verify that it was tampered with during the upload process. This probably means that $settings->sitename has been attacked. Please contact " . $settings->admindetails . ", your $settings->sitename Administrator.

")); } $description = $_POST["description"]; // Escape the raw html in the provided description if the setting is enabled if($settings->clean_raw_html) $description = htmlentities($description, ENT_QUOTES); file_put_contents($env->storage_prefix . $new_description_filename, $description); // Construct a new entry for the pageindex $entry = new stdClass(); // Point to the description's filepath since this property // should point to a markdown file $entry->filename = $new_description_filename; $entry->size = strlen($description); $entry->lastmodified = time(); $entry->lasteditor = $env->user; $entry->uploadedfile = true; $entry->uploadedfilepath = $new_filename; $entry->uploadedfilemime = $mime_type; // Add the new entry to the pageindex // Assign the new entry to the image's filepath as that // should be the page name. $pageindex->$new_filename = $entry; // Save the pageindex file_put_contents($paths->pageindex, json_encode($pageindex, JSON_PRETTY_PRINT)); header("location: ?action=view&page=$new_filename&upload=success"); break; } }); /* * ██████ ██████ ███████ ██ ██ ██ ███████ ██ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██████ ██████ █████ ██ ██ ██ █████ ██ █ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ███ ██ * ██ ██ ██ ███████ ████ ██ ███████ ███ ███ */ add_action("preview", function() { global $settings, $env, $pageindex; $filepath = $env->storage_prefix . $pageindex->{$env->page}->uploadedfilepath; $mime_type = $pageindex->{$env->page}->uploadedfilemime; if(isset($_GET["size"]) and $_GET["size"] == "original") { // Get the file size $filesize = filesize($filepath); // Send some headers header("content-length: $filesize"); header("content-type: $mime_type"); // Open the file and send it to the user $handle = fopen($filepath, "rb"); fpassthru($handle); fclose($handle); exit(); } // Determine the target size of the image $target_size = 512; if(isset($_GET["size"])) $target_size = intval($_GET["size"]); if($target_size < $settings->min_preview_size) $target_size = $settings->min_preview_size; if($target_size > $settings->max_preview_size) $target_size = $settings->max_preview_size; // Determine the output file type $output_mime = $settings->preview_file_type; if(isset($_GET["type"]) and in_array($_GET["type"], [ "image/png", "image/jpeg", "image/webp" ])) $output_mime = $_GET["type"]; switch(substr($mime_type, 0, strpos($mime_type, "/"))) { case "image": $image = false; switch($mime_type) { case "image/jpeg": $image = imagecreatefromjpeg($filepath); break; case "image/gif": $image = imagecreatefromgif($filepath); break; case "image/png": $image = imagecreatefrompng($filepath); break; case "image/webp": $image = imagecreatefromwebp($filepath); break; default: http_response_code(415); $image = errorimage("Unsupported image type."); break; } $raw_width = imagesx($image); $raw_height = imagesy($image); $preview_image = resize_image($image, $target_size); header("content-type: $output_mime"); switch($output_mime) { case "image/jpeg": imagejpeg($preview_image); break; case "image/png": imagepng($preview_image); break; default: case "image/webp": imagewebp($preview_image); break; } imagedestroy($preview_image); break; default: http_response_code(501); exit("Unrecognised file type."); } }); page_renderer::register_part_preprocessor(function(&$parts) { global $pageindex, $env, $settings; // Todo add the preview to the top of the page here, but only if the current action is view and we are on a page that is a file if(isset($pageindex->{$env->page}->uploadedfile) and $pageindex->{$env->page}->uploadedfile == true) { // We are looking at a page that is paired with an uploaded file $filepath = $pageindex->{$env->page}->uploadedfilepath; $mime_type = $pageindex->{$env->page}->uploadedfilemime; $dimensions = getimagesize($env->storage_prefix . $filepath); $preview_sizes = [ 256, 512, 768, 1024, 1440 ]; $preview_html = "

File Information

Name	" . str_replace("File/", "", $filepath) . "
Type	$mime_type
Size	" . human_filesize(filesize($filepath)) . "
Original dimensions	$dimensions[0] x $dimensions[1]
Uploaded by	" . $pageindex->{$env->page}->lasteditor . "

Description

"; $parts["{content}"] = str_replace("", "\n$preview_html", $parts["{content}"]); } }); // Register a section on the help page on uploading files add_help_section("28-uploading-files", "Uploading Files", "

$settings->sitename supports the uploading of files, though it is up to " . $settings->admindetails["name"] . ", $settings->sitename's administrator as to whether it is enabled or not (uploads are currently " . (($settings->upload_enabled) ? "enabled" : "disabled") . ").

Currently Pepperminty Wiki (the software that $settings->sitename uses) only supports the uploading of images, although more file types should be supported in the future (open an issue on GitHub if you are interested in support for more file types).

Uploading a file is actually quite simple. Click the "Upload" option in the "More..." menu to go to the upload page. The upload page will tell you what types of file $settings->sitename allows, and the maximum supported filesize for files that you upload (this is usually set by the web server that the wiki is running on).

Use the file chooser to select the file that you want to upload, and then decide on a name for it. Note that the name that you choose should not include the file extension, as this will be determined automatically. Enter a description that will appear on the file's page, and then click upload.

"); } ]); //// Pair of functions to calculate the actual maximum upload size supported by the server //// Lifted from Drupal by @meustrus from Stackoverflow. Link to answer: //// http://stackoverflow.com/a/25370978/1460422 // Returns a file size limit in bytes based on the PHP upload_max_filesize // and post_max_size function get_max_upload_size() { static $max_size = -1; if ($max_size < 0) { // Start with post_max_size. $max_size = parse_size(ini_get('post_max_size')); // If upload_max_size is less, then reduce. Except if upload_max_size is // zero, which indicates no limit. $upload_max = parse_size(ini_get('upload_max_filesize')); if ($upload_max > 0 && $upload_max < $max_size) { $max_size = $upload_max; } } return $max_size; } function parse_size($size) { $unit = preg_replace('/[^bkmgtpezy]/i', '', $size); // Remove the non-unit characters from the size. $size = preg_replace('/[^0-9\.]/', '', $size); // Remove the non-numeric characters from the size. if ($unit) { // Find the position of the unit in the ordered string which is the power of magnitude to multiply a kilobyte by. return round($size * pow(1024, stripos('bkmgtpezy', $unit[0]))); } else { return round($size); } } function errorimage($text) { $width = 640; $height = 480; $image = imagecreatetruecolor($width, $height); imagefill($image, 0, 0, imagecolorallocate($image, 238, 232, 242)); // Set the background to #eee8f2 $fontwidth = imagefontwidth(3); imagetext($image, 3, ($width / 2) - (($fontwidth * strlen($text)) / 2), ($height / 2) - (imagefontheight(3) / 2), $text, imagecolorallocate($image, 17, 17, 17) // #111111 ); return $image; } function resize_image($image, $size) { $cur_width = imagesx($image); $cur_height = imagesy($image); if($cur_width < $size and $cur_height < $size) return $image; $width_ratio = $size / $cur_width; $height_ratio = $size / $cur_height; $ratio = min($width_ratio, $height_ratio); $new_height = floor($cur_height * $ratio); $new_width = floor($cur_width * $ratio); header("x-resize-to: $new_width x $new_height\n"); return imagescale($image, $new_width, $new_height); } register_module([ "name" => "Credits", "version" => "0.6", "author" => "Starbeamrainbowlabs", "description" => "Adds the credits page. You *must* have this module :D", "id" => "page-credits", "code" => function() { /* * ██████ ██████ ███████ ██████ ██ ████████ ███████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██████ █████ ██ ██ ██ ██ ███████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██████ ██ ██ ███████ ██████ ██ ██ ███████ */ add_action("credits", function() { global $settings, $version, $pageindex, $modules; $credits = [ "Code" => [ "author" => "Starbeamrainbowlabs", "author_url" => "https://starbeamrmainbowlabs.com/", "thing_url" => "https://github.com/sbrl/Pepprminty-Wiki" ], "Slightly modified version of Slimdown" => [ "author" => "Johnny Broadway", "author_url" => "https://github.com/jbroadway", "thing_url" => "https://gist.github.com/jbroadway/2836900" ], "Default Favicon" => [ "author" => "bluefrog23", "author_url" => "https://openclipart.org/user-detail/bluefrog23/", "thing_url" => "https://openclipart.org/detail/19571/peppermint-candy-by-bluefrog23" ], "Bug Reports" => [ "author" => "nibreh", "author_url" => "https://github.com/nibreh/", "thing_url" => "" ] ]; //// Credits html renderer //// $credits_html = "

"; $credits_html .= "$thing by "; $credits_html .= "" . $author_details["author"] . ""; $credits_html .= "

"; /////////////////////////////// //// Module html renderer //// $modules_html = ""; foreach($modules as $module) { $modules_html .= " \n"; } $modules_html .= "

Name	Version	Author	Description
" . $module["name"] . "	" . $module["version"] . "	" . $module["author"] . "	" . $module["description"] . "

"; ////////////////////////////// $title = "Credits - $settings->sitename"; $content = "

$settings->sitename credits

$settings->sitename is powered by Pepperminty Wiki - an entire wiki packed inside a single file, which was built by Starbeamrainbowlabs, and can be found on GitHub (contributors will ablso be listed here in the future).

Main Credits

$credits_html

Site status

Site name:	$settings->sitename (Update - Administrators only, Export as zip - Check for permission first)
Pepperminty Wiki version:	$version
Number of pages:	" . count(get_object_vars($pageindex)) . "
Number of modules:	" . count($modules) . "

Installed Modules

$modules_html"; exit(page_renderer::render_main($title, $content)); }); } ]); register_module([ "name" => "Debug Information", "version" => "0.1", "author" => "Starbeamrainbowlabs", "description" => "Adds a debug action for administrator use only that collects a load of useful information to make reporting bugs easier.", "id" => "page-debug-info", "code" => function() { global $settings, $env; /* * ██████ ███████ ██████ ██ ██ ██████ * ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ █████ ██████ ██ ██ ██ ███ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██████ ███████ ██████ ██████ ██████ */ add_action("debug", function() { global $settings, $env, $paths, $version; header("content-type: text/plain"); if(!$env->is_admin) { exit("You must be logged in as an moderator in order to generate debugging information."); } $title = "$settings->sitename debug report"; echo("$title\n"); echo(str_repeat("=", strlen($title)) . "\n"); echo("Powered by Pepperminty Wiki version $version.\n"); echo("This report may contain personal information.\n\n"); echo("Environment: "); echo(var_export($env, true)); echo("\nPaths: "); var_dump(var_export($paths, true)); echo("\nServer information:\n"); echo("uname -a: " . php_uname() . "\n"); echo("Path: " . getenv("PATH") . "\n"); echo("Temporary directory: " . sys_get_temp_dir() . "\n"); echo("Server: " . $_SERVER["SERVER_SOFTWARE"] . "\n"); echo("Web root: " . $_SERVER["DOCUMENT_ROOT"] . "\n"); echo("Web server user: " . exec("whoami") . "\n"); echo("PHP version: " . phpversion() . "\n"); echo("index.php location: " . __FILE__ . "\n"); echo("index.php file permissions: " . substr(sprintf('%o', fileperms("./index.php")), -4) . "\n"); echo("Current folder permissions: " . substr(sprintf('%o', fileperms(".")), -4) . "\n"); echo("Storage directory permissions: " . substr(sprintf('%o', fileperms($env->storage_prefix)), -4) . "\n"); echo("Loaded extensions: " . implode(", ", get_loaded_extensions()) . "\n"); echo("Settings:\n-----\n"); $settings_export = explode("\n", var_export($settings, true)); foreach ($settings_export as &$row) { if(preg_match("/(sitesecret|email)/i", $row)) $row = "********* secret *********"; } echo(implode("\n", $settings_export)); echo("\n-----\n"); exit(); }); if($env->is_admin) { add_help_section("810-debug-information", "Gathering debug information", "

As a moderator, $settings->sitename gives you the ability to generate a report on $settings->sitename's installation of Pepperminty Wiki for debugging purposes.

To generate such a report, visit the debug action or click here.

"); } } ]); register_module([ "name" => "Page deleter", "version" => "0.9", "author" => "Starbeamrainbowlabs", "description" => "Adds an action to allow administrators to delete pages.", "id" => "page-delete", "code" => function() { global $settings; /* * ██████ ███████ ██ ███████ ████████ ███████ * ██ ██ ██ ██ ██ ██ ██ * ██ ██ █████ ██ █████ ██ █████ * ██ ██ ██ ██ ██ ██ ██ * ██████ ███████ ███████ ███████ ██ ███████ */ add_action("delete", function() { global $pageindex, $settings, $env, $paths, $modules; if(!$settings->editing) { exit(page_renderer::render_main("Deleting $env->page - error", "

You tried to delete $env->page, but editing is disabled on this wiki.

If you wish to delete this page, please re-enable editing on this wiki first.

Go back to $env->page.

Nothing has been changed.

")); } if(!$env->is_admin) { exit(page_renderer::render_main("Deleting $env->page - error", "

You tried to delete $env->page, but you are not an admin so you don't have permission to do that.

You should try logging in as an admin.

")); } if(!isset($_GET["delete"]) or $_GET["delete"] !== "yes") { exit(page_renderer::render_main("Deleting $env->page", "

You are about to delete $env->page. You can't undo this!

Click here to delete $env->page.

Click here to go back.")); } $page = $env->page; // Delete the associated file if it exists if(!empty($pageindex->$page->uploadedfile)) { unlink($env->storage_prefix . $pageindex->$page->uploadedfilepath); } // Delete the page from the page index unset($pageindex->$page); // Save the new page index file_put_contents($paths->pageindex, json_encode($pageindex, JSON_PRETTY_PRINT)); // Remove the page's name from the id index ids::deletepagename($env->page); // Delete the page from the search index, if that module is installed if(module_exists("feature-search")) { $pageid = ids::getid($env->page); $invindex = search::load_invindex($paths->searchindex); search::delete_entry($invindex, $pageid); search::save_invindex($paths->searchindex, $invindex); } // Delete the page from the disk unlink("$env->storage_prefix$env->page.md"); exit(page_renderer::render_main("Deleting $env->page - $settings->sitename", "

$env->page has been deleted. Go back to the main page.

")); }); // Register a help section add_help_section("60-delete", "Deleting Pages", "

If you are logged in as an adminitrator, then you have the power to delete pages. To do this, click "Delete" in the "More..." menu when browsing the pge you wish to delete. When you are sure that you want to delete the page, click the given link.

Warning: Once a page has been deleted, you can't bring it back! You will need to recover it from your backup, if you have one (which you really should).

"); } ]); register_module([ "name" => "Page editor", "version" => "0.13", "author" => "Starbeamrainbowlabs", "description" => "Allows you to edit pages by adding the edit and save actions. You should probably include this one.", "id" => "page-edit", "code" => function() { global $settings; /* * _ _ _ * ___ __| (_) |_ * / _ \/ _` | | __| * | __/ (_| | | |_ * \___|\__,_|_|\__| * %edit% */ add_action("edit", function() { global $pageindex, $settings, $env; $filename = "$env->storage_prefix$env->page.md"; $page = $env->page; $creatingpage = !isset($pageindex->$page); if((isset($_GET["newpage"]) and $_GET["newpage"] == "true") or $creatingpage) { $title = "Creating $env->page"; } else { $title = "Editing $env->page"; } $pagetext = ""; if(isset($pageindex->$page)) { $pagetext = file_get_contents($filename); } if((!$env->is_logged_in and !$settings->anonedits) or // if we aren't logged in and anonymous edits are disbled !$settings->editing or// or editing is disabled ( isset($pageindex->$page) and // the page exists isset($pageindex->$page->protect) and // the protect property exists $pageindex->$page->protect and // the protect property is true !$env->is_admin // the user isn't an admin ) ) { if(!$creatingpage) { // The page already exists - let the user view the page source exit(page_renderer::render_main("Viewing source for $env->page", "

$settings->sitename does not allow anonymous users to make edits. If you are in fact logged in, then this page is probably protected, and you aren't an administrator or moderator. You can view the source of $env->page below, but you can't edit it.

$pagetext

")); } else { http_response_code(404); exit(page_renderer::render_main("404 - $env->page", "

The page $env->page does not exist, but you do not have permission to create it.

If you haven't already, perhaps you should try logging in.

")); } } $content = "

$title

"; $page_tags = implode(", ", (!empty($pageindex->{$env->page}->tags)) ? $pageindex->{$env->page}->tags : []); if(!$env->is_logged_in and $settings->anonedits) { $content .= "

Warning: You are not logged in! Your IP address may be recorded.

"; } $content .= ""; exit(page_renderer::render_main("$title - $settings->sitename", $content)); }); /* * * ___ __ ___ _____ * / __|/ _` \ \ / / _ \ * \__ \ (_| |\ V / __/ * |___/\__,_| \_/ \___| * %save% */ add_action("save", function() { global $pageindex, $settings, $env, $save_preprocessors, $paths; if(!$settings->editing) { header("location: index.php?page=$env->page"); exit(page_renderer::render_main("Error saving edit", "

Editing is currently disabled on this wiki.

")); } if(!$env->is_logged_in and !$settings->anonedits) { http_response_code(403); header("refresh: 5; url=index.php?page=$env->page"); exit("You are not logged in, so you are not allowed to save pages on $settings->sitename. Redirecting in 5 seconds...."); } $page = $env->page; if(( isset($pageindex->$page) and isset($pageindex->page->protect) and $pageindex->$page->protect ) and !$env->is_admin) { http_response_code(403); header("refresh: 5; url=index.php?page=$env->page"); exit("$env->page is protected, and you aren't logged in as an administrator or moderator. Your edit was not saved. Redirecting in 5 seconds..."); } if(!isset($_POST["content"])) { http_response_code(400); header("refresh: 5; url=index.php?page=$env->page"); exit("Bad request: No content specified."); } // Make sure that the directory in which the page needs to be saved exists if(!is_dir(dirname("$env->storage_prefix$env->page.md"))) { // Recursively create the directory if needed mkdir(dirname("$env->storage_prefix$env->page.md"), null, true); } // Read in the new page content $pagedata = $_POST["content"]; // Santise it if necessary if($settings->clean_raw_html) $pagedata = htmlentities($pagedata, ENT_QUOTES); // Read in the new page tags, so long as there are actually some tags to read in $page_tags = []; if(strlen(trim($_POST["tags"])) > 0) { $page_tags = explode(",", $_POST["tags"]); // Trim off all the whitespace foreach($page_tags as &$tag) $tag = trim($tag); } // Update the inverted search index // Construct an index for the old and new page content $oldindex = []; $oldpagedata = ""; // We need the old page data in order to pass it to the preprocessor if(file_exists("$env->page.md")) { $oldpagedata = file_get_contents("$env->page.md"); $oldindex = search::index($oldpagedata); } $newindex = search::index($pagedata); // Compare the indexes of the old and new content $additions = []; $removals = []; search::compare_indexes($oldindex, $newindex, $additions, $removals); // Load in the inverted index $invindex = search::load_invindex("./invindex.json"); // Merge the changes into the inverted index search::merge_into_invindex($invindex, ids::getid($env->page), $additions, $removals); // Save the inverted index back to disk search::save_invindex("invindex.json", $invindex); if(file_put_contents("$env->storage_prefix$env->page.md", $pagedata) !== false) { $page = $env->page; // Make sure that this page's parents exist check_subpage_parents($page); // Update the page index if(!isset($pageindex->$page)) { $pageindex->$page = new stdClass(); $pageindex->$page->filename = "$env->page.md"; } $pageindex->$page->size = strlen($_POST["content"]); $pageindex->$page->lastmodified = time(); if($env->is_logged_in) $pageindex->$page->lasteditor = utf8_encode($env->user); else $pageindex->$page->lasteditor = utf8_encode("anonymous"); $pageindex->$page->tags = $page_tags; // A hack to resave the pagedata if the preprocessors have // changed it. We need this because the preprocessors *must* // run _after_ the pageindex has been updated. $pagedata_orig = $pagedata; // Execute all the preprocessors foreach($save_preprocessors as $func) { $func($pageindex->$page, $pagedata, $oldpagedata); } if($pagedata !== $pagedata_orig) file_put_contents("$env->storage_prefix$env->page.md", $pagedata); file_put_contents($paths->pageindex, json_encode($pageindex, JSON_PRETTY_PRINT)); if(isset($_GET["newpage"])) http_response_code(201); else http_response_code(200); // header("content-type: text/plain"); header("location: index.php?page=$env->page&edit_status=success&redirect=no"); exit(); } else { http_response_code(507); exit(page_renderer::render_main("Error saving page - $settings->sitename", "

$settings->sitename failed to write your changes to the server's disk. Your changes have not been saved, but you might be able to recover your edit by pressing the back button in your browser.

Please tell the administrator of this wiki (" . $settings->admindetails["name"] . ") about this problem.

")); } }); add_help_section("15-editing", "Editing", "

To edit a page on $settings->sitename, click the edit button on the top bar. Note that you will probably need to be logged in. If you do not already have an account you will need to ask $settings->sitename's administrator for an account since there is no registration form. Note that the $settings->sitename's administrator may have changed these settings to allow anonymous edits.

Editing is simple. The edit page has a sizeable box that contains a page's current contents. Once you are done altering it, add or change the comma separated list of tags in the field below the editor and then click save page.

A reference to the syntax that $settings->sitename supports can be found below.

"); } ]); register_module([ "name" => "Export", "version" => "0.4", "author" => "Starbeamrainbowlabs", "description" => "Adds a page that you can use to export your wiki as a .zip file. Uses \$settings->export_only_allow_admins, which controls whether only admins are allowed to export the wiki.", "id" => "page-export", "code" => function() { global $settings; /* * ███████ ██ ██ ██████ ██████ ██████ ████████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * █████ ███ ██████ ██ ██ ██████ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ███████ ██ ██ ██ ██████ ██ ██ ██ */ add_action("export", function() { global $settings, $pageindex, $env; if($settings->export_allow_only_admins && !$env->is_admin) { http_response_code(401); exit(page_renderer::render("Export error - $settings->sitename", "Only administrators of $settings->sitename are allowed to export the wiki as a zip. Return to the $settings->defaultpage.")); } $tmpfilename = tempnam(sys_get_temp_dir(), "pepperminty-wiki-"); $zip = new ZipArchive(); if($zip->open($tmpfilename, ZipArchive::CREATE) !== true) { http_response_code(507); exit(page_renderer::render("Export error - $settings->sitename", "Pepperminty Wiki was unable to open a temporary file to store the exported data in. Please contact $settings->sitename's administrator (" . $settings->admindetails["name"] . " at " . hide_email($settings->admindetails["email"]) . ") for assistance.")); } foreach($pageindex as $entry) { $zip->addFile("$env->storage_prefix$entry->filename", $entry->filename); } if($zip->close() !== true) { http_response_code(500); exit(page_renderer::render("Export error - $settings->sitename", "Pepperminty wiki was unable to close the temporary zip file after creating it. Please contact $settings->sitename's administrator (" . $settings->admindetails["name"] . " at " . hide_email($settings->admindetails["email"]) . ") for assistance.")); } header("content-type: application/zip"); header("content-disposition: attachment; filename=$settings->sitename-export.zip"); header("content-length: " . filesize($tmpfilename)); $zip_handle = fopen($tmpfilename, "rb"); fpassthru($zip_handle); fclose($zip_handle); unlink($tmpfilename); }); // Add a section to the help page add_help_section("50-export", "Exporting", "

$settings->sitename supports exporting the entire wiki's content as a zip. Note that you may need to be a moderator in order to do this. Also note that you should check for permission before doing so, even if you are able to export without asking.

To perform an export, go to the credits page and click "Export as zip - Check for permission first".

"); } ]); register_module([ "name" => "Help page", "version" => "0.7", "author" => "Starbeamrainbowlabs", "description" => "Adds the help action. You really want this one.", "id" => "page-help", "code" => function() { global $settings; /* * ██ ██ ███████ ██ ██████ * ██ ██ ██ ██ ██ ██ * ███████ █████ ██ ██████ * ██ ██ ██ ██ ██ * ██ ██ ███████ ███████ ██ */ add_action("help", function() { global $settings, $version, $help_sections; // Sort the help sections by key ksort($help_sections, SORT_NATURAL); if(isset($_GET["dev"]) and $_GET["dev"] == "yes") { $title = "Developers Help - $settings->sitename"; $content = "

$settings->sitename runs on Pepperminty Wiki, an entire wiki packed into a single file. This page contains some information that developers may find useful.

A full guide to developing a Pepperminty Wiki module can be found on GitHub.

The following help sections are currently registered:

\n"; foreach($help_sections as $index => $section) { $content .= "\t\t\t\n"; } $content .= "\t\t

Index	Title	Length
$index	" . $section["title"] . "	" . human_filesize(strlen($section["content"])) . "

"; } else { $title = "Help - $settings->sitename"; $content = "

$settings->sitename Help

Welcome to $settings->sitename!

$settings->sitename is powered by Pepperminty Wiki, a complete wiki in a box you can drop into your server.

"; // todo Insert a table of contents here? foreach($help_sections as $index => $section) { // Todo add a button that you can click to get a permanent link // to this section. $content .= "

" . $section["title"] . "

\n"; $content .= $section["content"] . "\n"; } } exit(page_renderer::render_main($title, $content)); }); // Register a help section on general navigation add_help_section("5-navigation", "Navigating", "

All the navigation links can be found on the top bar, along with a search box (if your site administrator has enabled it). There is also a "More..." menu in the top right that contains some additional links that you may fine useful.

This page, along with the credits page, can be found on the bar at the bottom of every page.

"); add_help_section("999-extra", "Extra Information", "

You can find out whch version of Pepperminty Wiki $settings->sitename is using by visiting the credits page.

Information for developers can be found on this page.

"); } ]); register_module([ "name" => "Page list", "version" => "0.9", "author" => "Starbeamrainbowlabs", "description" => "Adds a page that lists all the pages in the index along with their metadata.", "id" => "page-list", "code" => function() { global $settings; /* * ██ ██ ███████ ████████ * ██ ██ ██ ██ * ██ ██ ███████ ██ * ██ ██ ██ ██ * ███████ ██ ███████ ██ */ add_action("list", function() { global $pageindex, $settings; $title = "All Pages"; $content = "

$title on $settings->sitename

"; $sorted_pageindex = get_object_vars($pageindex); ksort($sorted_pageindex, SORT_NATURAL); $content .= generate_page_list(array_keys($sorted_pageindex)); exit(page_renderer::render_main("$title - $settings->sitename", $content)); }); /* * ██ ██ ███████ ████████ ████████ █████ ██████ ███████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ ███████ ██ █████ ██ ███████ ██ ███ ███████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ███████ ██ ███████ ██ ██ ██ ██ ██████ ███████ */ add_action("list-tags", function() { global $pageindex, $settings; if(!isset($_GET["tag"])) { // Render a list of all tags $all_tags = []; foreach($pageindex as $entry) { if(!isset($entry->tags)) continue; foreach($entry->tags as $tag) { if(!in_array($tag, $all_tags)) $all_tags[] = $tag; } } $content = "

All tags

\n"; exit(page_renderer::render("All tags - $settings->sitename", $content)); } $tag = $_GET["tag"]; $sorted_pageindex = get_object_vars($pageindex); ksort($sorted_pageindex, SORT_NATURAL); $pagelist = []; foreach($pageindex as $pagename => $pagedetails) { if(empty($pagedetails->tags)) continue; if(in_array($tag, $pagedetails->tags)) $pagelist[] = $pagename; } $content = "

$tag

\n"; $content .= generate_page_list($pagelist); $content .= "

(All tags)

\n"; exit(page_renderer::render("$tag - Page List - $settings->sitename", $content)); }); add_help_section("30-all-pages-tags", "Listing pages and tags", "

All the pages and tags on $settings->sitename are listed on a pair of paegs to aid navigation. The list of all pages on $settings->sitename can be found by clicking "All Pages" on the top bar. The list of all the tags currently in use can be found by clicking "All Tags" in the "More..." menu in the top right.

Each tag on either page can be clicked, and leads to a list of all pages that possess that particular tag.

A page's last known editor is also shown next to each entry on a list of pages, along with the last known size (which should correct, unless it was changed outside of $settings->sitename) and the time since the last modification (hovering over this will show the exact time that the last modification was made in a tooltip).

"); } ]); function generate_page_list($pagelist) { global $pageindex; // ✎ ✎ 🕒 🕒 $result = "

$tag

$pagename (" . human_filesize($pageindex->$pagename->size) . ") ✎ " . $pageindex->$pagename->lasteditor . " " . human_time_since($pageindex->$pagename->lastmodified) . " $tags

\n"; return $result; } register_module([ "name" => "Login", "version" => "0.8", "author" => "Starbeamrainbowlabs", "description" => "Adds a pair of actions (login and checklogin) that allow users to login. You need this one if you want your users to be able to login.", "id" => "page-login", "code" => function() { global $settings; /* * _ _ * | | ___ __ _(_)_ __ * | |/ _ \ / _` | | '_ \ * | | (_) | (_| | | | | | * |_|\___/ \__, |_|_| |_| * |___/ %login% */ add_action("login", function() { global $settings; // Build the action url that will actually perform the login $login_form_action_url = "index.php?action=checklogin"; if(isset($_GET["returnto"])) $login_form_action_url .= "&returnto=" . rawurlencode($_GET["returnto"]); $title = "Login to $settings->sitename"; $content = "

Login to $settings->sitename

\n"; if(isset($_GET["failed"])) $content .= "\t\t

Login failed.

\n"; if(isset($_GET["required"])) $content .= "\t\t

$settings->sitename requires that you login before continuing.

\n"; $content .= "\t\t\n"; exit(page_renderer::render_main($title, $content)); }); /* * _ _ _ _ * ___| |__ ___ ___| | _| | ___ __ _(_)_ __ * / __| '_ \ / _ \/ __| |/ / |/ _ \ / _` | | '_ \ * | (__| | | | __/ (__| <| | (_) | (_| | | | | | * \___|_| |_|\___|\___|_|\_\_|\___/ \__, |_|_| |_| * %checklogin% |___/ */ add_action("checklogin", function() { global $settings, $env; //actually do the login if(isset($_POST["user"]) and isset($_POST["pass"])) { //the user wants to log in $user = $_POST["user"]; $pass = $_POST["pass"]; if($settings->users[$user] == hash_password($pass)) { $env->is_logged_in = true; $expiretime = time() + 60*60*24*30; //30 days from now $_SESSION["$settings->sessionprefix-user"] = $user; $_SESSION["$settings->sessionprefix-pass"] = hash_password($pass); $_SESSION["$settings->sessionprefix-expiretime"] = $expiretime; //redirect to wherever the user was going http_response_code(302); if(isset($_GET["returnto"])) header("location: " . $_GET["returnto"]); else header("location: index.php"); exit(); } else { http_response_code(302); header("location: index.php?action=login&failed=yes"); exit(); } } else { http_response_code(302); header("location: index.php?action=login&failed=yes&badrequest=yes"); exit(); } }); // Register a section on logging in on the help page. add_help_section("30-login", "Logging in", "

In order to edit $settings->sitename and have your edit attributed to you, you need to be logged in. Depending on the settings, logging in may be a required step if you want to edit at all. Thankfully, loggging in is not hard. Simply click the "Login" link in the top left, type your username and password, and then click login.

If you do not have an account yet and would like one, try contacting " . $settings->admindetails["name"] . ", $settings->sitename's administrator and ask them nicely to see if they can create you an account.

"); } ]); /* * @summary Hashes the given password according to the current settings defined * in $settings. * * @param $pass {string} The password to hash. * * @returns {string} The hashed password. Uses sha3 if $settings->use_sha3 is * enabled, or sha256 otherwise. */ function hash_password($pass) { global $settings; if($settings->use_sha3) { return sha3($pass, 256); } else { return hash("sha256", $pass); } } register_module([ "name" => "Logout", "version" => "0.6", "author" => "Starbeamrainbowlabs", "description" => "Adds an action to let users user out. For security reasons it is wise to add this module since logging in automatically opens a session that is valid for 30 days.", "id" => "page-logout", "code" => function() { /* * ██ ██████ ██████ ██████ ██ ██ ████████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ ██ ██ ███ ██ ██ ██ ██ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ███████ ██████ ██████ ██████ ██████ ██ */ add_action("logout", function() { global $env; $env->is_logged_in = false; unset($env->user); unset($env->pass); //clear the session variables $_SESSION = []; session_destroy(); exit(page_renderer::render_main("Logout Successful", "

Logout Successful

Logout Successful. You can login again here.

")); }); } ]); register_module([ "name" => "Page mover", "version" => "0.8", "author" => "Starbeamrainbowlabs", "description" => "Adds an action to allow administrators to move pages.", "id" => "page-move", "code" => function() { global $settings; /* * ███ ███ ██████ ██ ██ ███████ * ████ ████ ██ ██ ██ ██ ██ * ██ ████ ██ ██ ██ ██ ██ █████ * ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ ██████ ████ ███████ */ add_action("move", function() { global $pageindex, $settings, $env, $paths; if(!$settings->editing) { exit(page_renderer::render_main("Moving $env->page - error", "

You tried to move $env->page, but editing is disabled on this wiki.

If you wish to move this page, please re-enable editing on this wiki first.

Go back to $env->page.

Nothing has been changed.

")); } if(!$env->is_admin) { exit(page_renderer::render_main("Moving $env->page - Error", "

You tried to move $env->page, but you do not have permission to do that.

You should try logging in as an admin.

")); } if(!isset($_GET["new_name"]) or strlen($_GET["new_name"]) == 0) exit(page_renderer::render_main("Moving $env->page", "

Moving $env->page

")); $new_name = makepathsafe($_GET["new_name"]); $page = $env->page; if(!isset($pageindex->$page)) exit(page_renderer::render_main("Moving $env->page - Error", "

You tried to move $env->page to $new_name, but the page with the name $env->page does not exist in the first place.

Nothing has been changed.

")); if($env->page == $new_name) exit(page_renderer::render_main("Moving $env->page - Error", "

You tried to move $page, but the new name you gave is the same as it's current name.

It is possible that you tried to use some characters in the new name that are not allowed and were removed.

Page names may only contain alphanumeric characters, dashes, and underscores.

")); //move the page in the page index $pageindex->$new_name = new stdClass(); foreach($pageindex->$page as $key => $value) { $pageindex->$new_name->$key = $value; } unset($pageindex->$page); $pageindex->$new_name->filename = $new_name; // If this page has an associated file, then we should move that too if(!empty($pageindex->$new_name->uploadedfile)) { // Update the filepath to point to the description and not the image $pageindex->$new_name->filename = $pageindex->$new_name->filename . ".md"; // Move the file in the pageindex $pageindex->$new_name->uploadedfilepath = $new_name; // Move the file on disk rename($env->storage_prefix . $env->page, $env->storage_prefix . $new_name); } file_put_contents($paths->pageindex, json_encode($pageindex, JSON_PRETTY_PRINT)); // Move the page on the disk rename("$env->storage_prefix$env->page.md", "$env->storage_prefix$new_name.md"); // Move the page in the id index ids::movepagename($page, $new_name); // Exit with a nice message exit(page_renderer::render_main("Moving $env->page", "

$env->page has been moved to $new_name successfully.

")); }); // Register a help section add_help_section("60-move", "Moving Pages", "

If you are logged in as an adminitrator, then you have the power to move pages. To do this, click "Delete" in the "More..." menu when browsing the pge you wish to move. Type in the new name of the page, and then click "Move Page".

"); } ]); register_module([ "name" => "Update", "version" => "0.6.1", "author" => "Starbeamrainbowlabs", "description" => "Adds an update page that downloads the latest stable version of Pepperminty Wiki. This module is currently outdated as it doesn't save your module preferences.", "id" => "page-update", "code" => function() { /* * ██ ██ ██████ ██████ █████ ████████ ███████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██ ██ ██████ ██ ██ ███████ ██ █████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ * ██████ ██ ██████ ██ ██ ██ ███████ */ add_action("update", function() { global $settings, $env; if(!$env->is_admin) { http_response_code(401); exit(page_renderer::render_main("Update - Error", "

You must be an administrator to do that.

")); } if(!isset($_GET["do"]) or $_GET["do"] !== "true") { exit(page_renderer::render_main("Update $settings->sitename", "

This page allows you to update $settings->sitename.

Currently, $settings->sitename is using $settings->version of Pepperminty Wiki.

This script will automatically download and install the latest version of Pepperminty Wiki from the url of your choice (see settings), regardless of whether an update is actually needed (version checking isn't implemented yet).

To update $settings->sitename, fill out the form below and click click the update button.

Note that a backup system has not been implemented yet! If this script fails you will loose your wiki's code and have to re-build it.

")); } if(!isset($_GET["secret"]) or $_GET["secret"] !== $settings->sitesecret) { exit(page_renderer::render_main("Update $settings->sitename - Error", "

You forgot to enter $settings->sitename's secret code or entered it incorrectly. $settings->sitename's secret can be found in the settings portion of index.php.

")); } $settings_separator = "/////////////// Do not edit below this line unless you know what you are doing! ///////////////"; $log = "Beginning update...\n"; $log .= "I am " . __FILE__ . ".\n"; $oldcode = file_get_contents(__FILE__); $log .= "Fetching new code..."; $newcode = file_get_contents($settings->updateurl); $log .= "done.\n"; $log .= "Rewriting " . __FILE__ . "..."; $settings = substr($oldcode, 0, strpos($oldcode, $settings_separator)); $code = substr($newcode, strpos($newcode, $settings_separator)); $result = $settings . $code; $log .= "done.\n"; $log .= "Saving..."; file_put_contents(__FILE__, $result); $log .= "done.\n"; $log .= "Update complete. I am now running on the latest version of Pepperminty Wiki."; $log .= "The version number that I have updated to can be found on the credits or help ages."; exit(page_renderer::render_main("Update - Success", "

" . implode("
", explode("\n", $log)) . "

")); }); } ]); register_module([ "name" => "Page viewer", "version" => "0.11", "author" => "Starbeamrainbowlabs", "description" => "Allows you to view pages. You reallyshould include this one.", "id" => "page-view", "code" => function() { /* * ██ ██ ██ ███████ ██ ██ * ██ ██ ██ ██ ██ ██ * ██ ██ ██ █████ ██ █ ██ * ██ ██ ██ ██ ██ ███ ██ * ████ ██ ███████ ███ ███ */ add_action("view", function() { global $pageindex, $settings, $env; // Check to make sure that the page exists $page = $env->page; if(!isset($pageindex->$page)) { // todo make this intelligent so we only redirect if the user is acutally able to create the page if($settings->editing) { // Editing is enabled, redirect to the editing page http_response_code(307); // Temporary redirect header("location: index.php?action=edit&newpage=yes&page=" . rawurlencode($env->page)); exit(); } else { // Editing is disabled, show an error message http_response_code(404); exit(page_renderer::render_main("$env->page - 404 - $settings->sitename", "

$env->page does not exist.

Since editing is currently disabled on this wiki, you may not create this page. If you feel that this page should exist, try contacting this wiki's Administrator.

")); } } // Perform a redirect if the requested page is a redirect page if(isset($pageindex->$page->redirect) && $pageindex->$page->redirect === true) { $send_redirect = true; if(isset($_GET["redirect"]) && $_GET["redirect"] == "no") $send_redirect = false; if($send_redirect) { // Todo send an explanatory page along with the redirect http_response_code(307); header("location: ?action=$env->action&page=" . $pageindex->$page->redirect_target . "&redirected_from=$env->page"); exit(); } } $title = "$env->page - $settings->sitename"; if(isset($pageindex->$page->protect) && $pageindex->$page->protect === true) $title = $settings->protectedpagechar . $title; $content = "

$env->page

\n"; // Add an extra message if the requester was redirected from another page if(isset($_GET["redirected_from"])) $content .= "

Redirected from " . $_GET["redirected_from"] . ".

"; $parsing_start = microtime(true); $content .= parse_page_source(file_get_contents("$env->storage_prefix$env->page.md")); if(!empty($pageindex->$page->tags)) { $content .= "

$tag

\n"; } /*else { $content .= "\n"; }*/ if($settings->show_subpages) { $subpages = get_object_vars(get_subpages($pageindex, $env->page)); if(count($subpages) > 0) { $content .= "

"; $content .= "Subpages: "; foreach($subpages as $subpage => $times_removed) { if($times_removed <= $settings->subpages_display_depth) { $content .= "$subpage, "; } } // Remove the last comma from the content $content = substr($content, 0, -2); } } $content .= "\n\t\t\n"; if(isset($_GET["printable"]) and $_GET["printable"] === "yes") exit(page_renderer::render_minimal($title, $content)); else exit(page_renderer::render_main($title, $content)); }); } ]); register_module([ "name" => "Parsedown", "version" => "0.3", "author" => "Johnny Broadway, Emanuil Rusev & Starbeamrainbowlabs", "description" => "An upgraded parser based on Emanuil Rusev's Parsedown Extra PHP library (https://github.com/erusev/parsedown-extra), which is licensed MIT. Please be careful, as this module adds a some weight to your installation, and also requires write access to the disk on first load.", "id" => "parser-parsedown", "code" => function() { $parser = new PeppermintParsedown(); $parser->setInternalLinkBase("?page=%s"); add_parser("parsedown", function($source) use ($parser) { $result = $parser->text($source); return $result; }); } ]); /*** Parsedown versions *** * Parsedown Core: 1.6.0 * * Parsedown Extra: 0.7.0 * **************************/ $env->parsedown_paths = new stdClass(); $env->parsedown_paths->parsedown = "https://cdn.rawgit.com/erusev/parsedown/3ebbd730b5c2cf5ce78bc1bf64071407fc6674b7/Parsedown.php"; $env->parsedown_paths->parsedown_extra = "https://cdn.rawgit.com/erusev/parsedown-extra/11a44e076d02ffcc4021713398a60cd73f78b6f5/ParsedownExtra.php"; // Download parsedown and parsedown extra if they don't already exist if(!file_exists("./Parsedown.php") || filesize("./Parsedown.php") === 0) file_put_contents("./Parsedown.php", fopen($env->parsedown_paths->parsedown, "r")); if(!file_exists("./ParsedownExtra.php") || filesize("./ParsedownExtra.php") === 0) file_put_contents("./ParsedownExtra.php", fopen($env->parsedown_paths->parsedown_extra, "r")); require_once("./Parsedown.php"); require_once("./ParsedownExtra.php"); /* * ██████ █████ ██████ ███████ ███████ ██████ ██████ ██ ██ ███ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ████ ██ * ██████ ███████ ██████ ███████ █████ ██ ██ ██ ██ ██ █ ██ ██ ██ ██ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ███ ██ ██ ██ ██ * ██ ██ ██ ██ ██ ███████ ███████ ██████ ██████ ███ ███ ██ ████ * * ███████ ██ ██ ████████ ███████ ███ ██ ███████ ██ ██████ ███ ██ ███████ * ██ ██ ██ ██ ██ ████ ██ ██ ██ ██ ██ ████ ██ ██ * █████ ███ ██ █████ ██ ██ ██ ███████ ██ ██ ██ ██ ██ ██ ███████ * ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ ██ * ███████ ██ ██ ██ ███████ ██ ████ ███████ ██ ██████ ██ ████ ███████ */ class PeppermintParsedown extends ParsedownExtra { private $internalLinkBase = "./%s"; function __construct() { // Prioritise our internal link parsing over the regular link parsing array_unshift($this->InlineTypes["["], "InternalLink"); // Prioritise our image parser over the regular image parser array_unshift($this->InlineTypes["!"], "ExtendedImage"); //$this->inlineMarkerList .= "{"; } protected function inlineInternalLink($fragment) { if(preg_match('/^\[\[(.*)\]\]/', $fragment["text"], $matches)) { $display = $linkPage = $matches[1]; if(strpos($matches[1], "|")) { // We have a bar character $parts = explode("|", $matches[1], 2); $linkPage = $parts[0]; $display = $parts[1]; } // Construct the full url $linkUrl = str_replace( "%s", rawurlencode($linkPage), $this->internalLinkBase ); return [ "extent" => strlen($matches[0]), "element" => [ "name" => "a", "text" => $display, "attributes" => [ "href" => $linkUrl ] ] ]; } return; } protected function inlineExtendedImage($fragment) { if(preg_match('/^!\[(.*)\]$([^ |)]+)\s*\|([^|)]*)(?:\|([^)]*))?$/', $fragment["text"], $matches)) { /* * 0 - Everything * 1 - Alt text * 2 - Url * 3 - First param * 4 - Second Param (optional) */ var_dump($matches); $altText = $matches[1]; $imageUrl = $matches[2]; $param1 = strtolower(trim($matches[3])); $param2 = empty($matches[4]) ? false : strtolower(trim($matches[4])); $floatDirection = false; $imageSize = false; if($this->isFloatValue($param1)) { $floatDirection = $param1; $imageSize = $this->parseSizeSpec($param2); } else if($this->isFloatValue($param2)) { $floatDirection = $param2; $imageSize = $this->parseSizeSpec($param1); } else { $imageSize = $this->parseSizeSpec($param1); } // If they are both invalid then something very strange is going on // Let the built in parsedown image handler deal with it if($imageSize === false && $floatDirection === false) return; $style = ""; if($imageSize !== false) $style .= " max-width: " . $imageSize["x"] . "; max-height: " . $imageSize["y"] . ";"; if($floatDirection) $style .= " float: $floatDirection;"; return [ "extent" => strlen($matches[0]), "element" => [ "name" => "img", "attributes" => [ "src" => $imageUrl, "alt" => $altText, "style" => trim($style) ] ] ]; } } private function isFloatValue($value) { return in_array(strtolower($value), [ "left", "right" ]); } private function parseSizeSpec($text) { if(strpos($text, "x") === false) return false; $parts = explode("x", $text, 2); if(count($parts) != 2) return false; array_map("trim", $parts); array_map("intval", $parts); if(in_array(0, $parts)) return false; return [ "x" => $parts[0], "y" => $parts[1] ]; } /** * Sets the base url to be used for internal links. '%s' will be replaced * with a URL encoded version of the page name. * @param string $url The url to use when parsing internal links. */ public function setInternalLinkBase($url) { $this->internalLinkBase = $url; } } // %next_module% // ////////////////////////////////////////////////////////////////// // Execute each module's code foreach($modules as $moduledata) { $moduledata["code"](); } // Make sure that the credits page exists if(!isset($actions->credits)) { exit(page_renderer::render_main("Error - $settings->$sitename", "

No credits page detected. The credits page is a required module!

")); } // Perform the appropriate action $action_name = $env->action; if(isset($actions->$action_name)) { $req_action_data = $actions->$action_name; $req_action_data(); } else { exit(page_renderer::render_main("Error - $settings->sitename", "

No action called " . strtolower($_GET["action"]) ." has been registered. Perhaps you are missing a module?

")); } ?>