Sākums Izpētīt Palīdzība
Pierakstīties
susdiv
/
gnu-social
atdalīts no diogo/gnu-social
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Faili
Koks: b2cfbded2e
Atzari Tagi
gnu-social
/
plugins
/
StoreRemoteMedia
/
StoreRemoteMediaPlugin.php

StoreRemoteMediaPlugin.php 6.0 KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158 
  1. <?php
    2. 

  2. 

  3. if (!defined('GNUSOCIAL')) { exit(1); }
    4. 

  4. 

  5. // FIXME: To support remote video/whatever files, this plugin needs reworking.
    6. 

  6. 

  7. class StoreRemoteMediaPlugin extends Plugin
    8. 

  8. {
    9. 

  9.     // settings which can be set in config.php with addPlugin('Oembed', array('param'=>'value', ...));
    10. 

  10.     // WARNING, these are _regexps_ (slashes added later). Always escape your dots and end your strings
    11. 

  11.     public $domain_whitelist = array(       // hostname => service provider
    12. 

  12.                                     '^i\d*\.ytimg\.com$' => 'YouTube',
    13. 

  13.                                     '^i\d*\.vimeocdn\.com$' => 'Vimeo',
    14. 

  14.                                     );
    15. 

  15.     public $append_whitelist = array(); // fill this array as domain_whitelist to add more trusted sources
    16. 

  16.     public $check_whitelist  = false;    // security/abuse precaution
    17. 

  17. 

  18.     protected $imgData = array();
    19. 

  19. 

  20.     // these should be declared protected everywhere
    21. 

  21.     public function initialize()
    22. 

  22.     {
    23. 

  23.         parent::initialize();
    24. 

  24. 

  25.         $this->domain_whitelist = array_merge($this->domain_whitelist, $this->append_whitelist);
    26. 

  26.     }
    27. 

  27. 

  28.     /**
    29. 

  29.      * Save embedding information for a File, if applicable.
    30. 

  30.      *
    31. 

  31.      * Normally this event is called through File::saveNew()
    32. 

  32.      *
    33. 

  33.      * @param File   $file       The abount-to-be-inserted File object.
    34. 

  34.      *
    35. 

  35.      * @return boolean success
    36. 

  36.      */
    37. 

  37.     public function onStartFileSaveNew(File &$file)
    38. 

  38.     {
    39. 

  39.         // save given URL as title if it's a media file this plugin understands
    40. 

  40.         // which will make it shown in the AttachmentList widgets
    41. 

  41. 

  42.         if (isset($file->title) && strlen($file->title)>0) {
    43. 

  43.             // Title is already set
    44. 

  44.             return true;
    45. 

  45.         }
    46. 

  46.         if (!isset($file->mimetype)) {
    47. 

  47.             // Unknown mimetype, it's not our job to figure out what it is.
    48. 

  48.             return true;
    49. 

  49.         }
    50. 

  50.         switch (common_get_mime_media($file->mimetype)) {
    51. 

  51.         case 'image':
    52. 

  52.             // Just to set something for now at least...
    53. 

  53.             $file->title = $file->mimetype;
    54. 

  54.             break;
    55. 

  55.         }
    56. 

  56.         
    57. 

  57.         return true;
    58. 

  58.     }
    59. 

  59. 

  60.     public function onCreateFileImageThumbnailSource(File $file, &$imgPath, $media=null)
    61. 

  61.     {
    62. 

  62.         // If we are on a private node, we won't do any remote calls (just as a precaution until
    63. 

  63.         // we can configure this from config.php for the private nodes)
    64. 

  64.         if (common_config('site', 'private')) {
    65. 

  65.             return true;
    66. 

  66.         }
    67. 

  67. 

  68.         if ($media !== 'image') {
    69. 

  69.             return true;
    70. 

  70.         }
    71. 

  71. 

  72.         // If there is a local filename, it is either a local file already or has already been downloaded.
    73. 

  73.         if (!empty($file->filename)) {
    74. 

  74.             return true;
    75. 

  75.         }
    76. 

  76. 

  77.         $this->checkWhitelist($file->getUrl());
    78. 

  78. 

  79.         // First we download the file to memory and test whether it's actually an image file
    80. 

  80.         common_debug(sprintf('Downloading remote file id==%u with URL: %s', $file->getID(), _ve($file->getUrl())));
    81. 

  81.         try {
    82. 

  82.             $imgData = HTTPClient::quickGet($file->getUrl());
    83. 

  83.         } catch (HTTP_Request2_ConnectionException $e) {
    84. 

  84.             common_log(LOG_ERR, __CLASS__.': quickGet on URL: '._ve($file->getUrl()).' threw exception: '.$e->getMessage());
    85. 

  85.             return true;
    86. 

  86.         }
    87. 

  87.         $info = @getimagesizefromstring($imgData);
    88. 

  88.         if ($info === false) {
    89. 

  89.             throw new UnsupportedMediaException(_('Remote file format was not identified as an image.'), $file->getUrl());
    90. 

  90.         } elseif (!$info[0] || !$info[1]) {
    91. 

  91.             throw new UnsupportedMediaException(_('Image file had impossible geometry (0 width or height)'));
    92. 

  92.         }
    93. 

  93. 

  94.         $filehash = hash(File::FILEHASH_ALG, $imgData);
    95. 

  95.         try {
    96. 

  96.             // Exception will be thrown before $file is set to anything, so old $file value will be kept
    97. 

  97.             $file = File::getByHash($filehash);
    98. 

  98. 

  99.             //FIXME: Add some code so we don't have to store duplicate File rows for same hash files.
    100. 

  100.         } catch (NoResultException $e) {
    101. 

  101.             $filename = $filehash . '.' . common_supported_mime_to_ext($info['mime']);
    102. 

  102.             $fullpath = File::path($filename);
    103. 

  103. 

  104.             // Write the file to disk if it doesn't exist yet. Throw Exception on failure.
    105. 

  105.             if (!file_exists($fullpath) && file_put_contents($fullpath, $imgData) === false) {
    106. 

  106.                 throw new ServerException(_('Could not write downloaded file to disk.'));
    107. 

  107.             }
    108. 

  108. 

  109.             // Updated our database for the file record
    110. 

  110.             $orig = clone($file);
    111. 

  111.             $file->filehash = $filehash;
    112. 

  112.             $file->filename = $filename;
    113. 

  113.             $file->width = $info[0];    // array indexes documented on php.net:
    114. 

  114.             $file->height = $info[1];   // https://php.net/manual/en/function.getimagesize.php
    115. 

  115.             // Throws exception on failure.
    116. 

  116.             $file->updateWithKeys($orig);
    117. 

  117.         }
    118. 

  118.         // Get rid of the file from memory
    119. 

  119.         unset($imgData);
    120. 

  120. 

  121.         $imgPath = $file->getPath();
    122. 

  122. 

  123.         return false;
    124. 

  124.     }
    125. 

  125. 

  126.     /**
    127. 

  127.      * @return boolean          false on no check made, provider name on success
    128. 

  128.      * @throws ServerException  if check is made but fails
    129. 

  129.      */
    130. 

  130.     protected function checkWhitelist($url)
    131. 

  131.     {
    132. 

  132.         if (!$this->check_whitelist) {
    133. 

  133.             return false;   // indicates "no check made"
    134. 

  134.         }
    135. 

  135. 

  136.         $host = parse_url($url, PHP_URL_HOST);
    137. 

  137.         foreach ($this->domain_whitelist as $regex => $provider) {
    138. 

  138.             if (preg_match("/$regex/", $host)) {
    139. 

  139.                 return $provider;    // we trust this source, return provider name
    140. 

  140.             }
    141. 

  141.         }
    142. 

  142. 

  143.         throw new ServerException(sprintf(_('Domain not in remote source whitelist: %s'), $host));
    144. 

  144.     }
    145. 

  145. 

  146.     public function onPluginVersion(array &$versions)
    147. 

  147.     {
    148. 

  148.         $versions[] = array('name' => 'StoreRemoteMedia',
    149. 

  149.                             'version' => GNUSOCIAL_VERSION,
    150. 

  150.                             'author' => 'Mikael Nordfeldth',
    151. 

  151.                             'homepage' => 'https://gnu.io/',
    152. 

  152.                             'description' =>
    153. 

  153.                             // TRANS: Plugin description.
    154. 

  154.                             _m('Plugin for downloading remotely attached files to local server.'));
    155. 

  155.         return true;
    156. 

  156.     }
    157. 

  157. }
    158. 

  158.