3 * Name: Advanced content Filter
4 * Description: Expression-based content filter
6 * Author: Hypolite Petovan <https://friendica.mrpetovan.com/profile/hypolite>
7 * Maintainer: Hypolite Petovan <https://friendica.mrpetovan.com/profile/hypolite>
9 * Copyright (c) 2018 Hypolite Petovan
10 * All rights reserved.
12 * Redistribution and use in source and binary forms, with or without
13 * modification, are permitted provided that the following conditions are met:
14 * * Redistributions of source code must retain the above copyright notice,
15 * this list of conditions and the following disclaimer.
16 * * Redistributions in binary form must reproduce the above
17 * * copyright notice, this list of conditions and the following disclaimer in
18 * the documentation and/or other materials provided with the distribution.
19 * * Neither the name of Friendica nor the names of its contributors
20 * may be used to endorse or promote products derived from this software
21 * without specific prior written permission.
23 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
24 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
25 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
26 * DISCLAIMED. IN NO EVENT SHALL FRIENDICA BE LIABLE FOR ANY DIRECT,
27 * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
28 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
29 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
30 * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
31 * OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
32 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
37 use Friendica\BaseModule;
38 use Friendica\Content\Text\Markdown;
39 use Friendica\Core\Hook;
40 use Friendica\Core\Logger;
41 use Friendica\Core\Renderer;
42 use Friendica\Database\DBA;
43 use Friendica\Database\DBStructure;
45 use Friendica\Model\Item;
46 use Friendica\Model\Post;
47 use Friendica\Model\Tag;
48 use Friendica\Model\User;
49 use Friendica\Module\Security\Login;
50 use Friendica\Network\HTTPException;
51 use Friendica\Util\DateTimeFormat;
52 use Psr\Http\Message\ResponseInterface;
53 use Psr\Http\Message\ServerRequestInterface;
54 use Symfony\Component\ExpressionLanguage;
56 require_once __DIR__ . DIRECTORY_SEPARATOR . 'vendor' . DIRECTORY_SEPARATOR . 'autoload.php';
58 function advancedcontentfilter_install(App $a)
60 Hook::register('dbstructure_definition' , __FILE__, 'advancedcontentfilter_dbstructure_definition');
61 Hook::register('prepare_body_content_filter', __FILE__, 'advancedcontentfilter_prepare_body_content_filter');
62 Hook::register('addon_settings' , __FILE__, 'advancedcontentfilter_addon_settings');
64 Hook::add('dbstructure_definition' , __FILE__, 'advancedcontentfilter_dbstructure_definition');
65 DBStructure::performUpdate();
67 Logger::log("installed advancedcontentfilter");
74 function advancedcontentfilter_dbstructure_definition(App $a, &$database)
76 $database["advancedcontentfilter_rules"] = [
77 "comment" => "Advancedcontentfilter addon rules",
79 "id" => ["type" => "int unsigned", "not null" => "1", "extra" => "auto_increment", "primary" => "1", "comment" => "Auto incremented rule id"],
80 "uid" => ["type" => "int unsigned", "not null" => "1", "comment" => "Owner user id"],
81 "name" => ["type" => "varchar(255)", "not null" => "1", "comment" => "Rule name"],
82 "expression" => ["type" => "mediumtext" , "not null" => "1", "comment" => "Expression text"],
83 "serialized" => ["type" => "mediumtext" , "not null" => "1", "comment" => "Serialized parsed expression"],
84 "active" => ["type" => "boolean" , "not null" => "1", "default" => "1", "comment" => "Whether the rule is active or not"],
85 "created" => ["type" => "datetime" , "not null" => "1", "default" => DBA::NULL_DATETIME, "comment" => "Creation date"],
89 "uid_active" => ["uid", "active"],
94 function advancedcontentfilter_get_filter_fields(array $item)
98 // Convert the language JSON text into a filterable format
99 if (!empty($item['language']) && ($languages = json_decode($item['language'], true))) {
100 foreach ($languages as $key => $value) {
101 $vars['language_' . strtolower($key)] = $value;
105 foreach ($item as $key => $value) {
106 $vars[str_replace('-', '_', $key)] = $value;
114 function advancedcontentfilter_prepare_body_content_filter(App $a, &$hook_data)
116 static $expressionLanguage;
118 if (is_null($expressionLanguage)) {
119 $expressionLanguage = new ExpressionLanguage\ExpressionLanguage();
126 $vars = advancedcontentfilter_get_filter_fields($hook_data['item']);
128 $rules = DI::cache()->get('rules_' . local_user());
129 if (!isset($rules)) {
130 $rules = DBA::toArray(DBA::select(
131 'advancedcontentfilter_rules',
132 ['name', 'expression', 'serialized'],
133 ['uid' => local_user(), 'active' => true]
136 DI::cache()->set('rules_' . local_user(), $rules);
140 foreach($rules as $rule) {
142 $serializedParsedExpression = new ExpressionLanguage\SerializedParsedExpression(
147 // The error suppression operator is used because of potentially broken user-supplied regular expressions
148 $found = (bool) @$expressionLanguage->evaluate($serializedParsedExpression, $vars);
149 } catch (Exception $e) {
154 $hook_data['filter_reasons'][] = DI::l10n()->t('Filtered by rule: %s', $rule['name']);
162 function advancedcontentfilter_addon_settings(App $a, &$s)
168 $advancedcontentfilter = DI::l10n()->t('Advanced Content Filter');
171 <span class="settings-block fakelink" style="display: block;"><h3><a href="advancedcontentfilter">$advancedcontentfilter <i class="glyphicon glyphicon-share"></i></a></h3></span>
181 function advancedcontentfilter_module() {}
183 function advancedcontentfilter_init(App $a)
185 if (DI::args()->getArgc() > 1 && DI::args()->getArgv()[1] == 'api') {
186 $slim = new \Slim\App();
188 require __DIR__ . '/src/middlewares.php';
190 require __DIR__ . '/src/routes.php';
197 function advancedcontentfilter_content(App $a)
200 return Login::form('/' . implode('/', DI::args()->getArgv()));
203 if (DI::args()->getArgc() > 1 && DI::args()->getArgv()[1] == 'help') {
204 $user = User::getById(local_user());
206 $lang = $user['language'];
208 $default_dir = 'addon/advancedcontentfilter/doc/';
209 $help_file = 'advancedcontentfilter.md';
210 $help_path = $default_dir . $help_file;
211 if (file_exists($default_dir . $lang . '/' . $help_file)) {
212 $help_path = $default_dir . $lang . '/' . $help_file;
215 $content = file_get_contents($help_path);
217 $html = Markdown::convert($content, false);
219 $html = str_replace('code>', 'key>', $html);
223 $t = Renderer::getMarkupTemplate('settings.tpl', 'addon/advancedcontentfilter/');
224 return Renderer::replaceMacros($t, [
226 'backtosettings' => DI::l10n()->t('Back to Addon Settings'),
227 'title' => DI::l10n()->t('Advanced Content Filter'),
228 'add_a_rule' => DI::l10n()->t('Add a Rule'),
229 'help' => DI::l10n()->t('Help'),
230 'intro' => DI::l10n()->t('Add and manage your personal content filter rules in this screen. Rules have a name and an arbitrary expression that will be matched against post data. For a complete reference of the available operations and variables, check the help page.'),
231 'your_rules' => DI::l10n()->t('Your rules'),
232 'no_rules' => DI::l10n()->t('You have no rules yet! Start adding one by clicking on the button above next to the title.'),
233 'disabled' => DI::l10n()->t('Disabled'),
234 'enabled' => DI::l10n()->t('Enabled'),
235 'disable_this_rule' => DI::l10n()->t('Disable this rule'),
236 'enable_this_rule' => DI::l10n()->t('Enable this rule'),
237 'edit_this_rule' => DI::l10n()->t('Edit this rule'),
238 'edit_the_rule' => DI::l10n()->t('Edit the rule'),
239 'save_this_rule' => DI::l10n()->t('Save this rule'),
240 'delete_this_rule' => DI::l10n()->t('Delete this rule'),
241 'rule' => DI::l10n()->t('Rule'),
242 'close' => DI::l10n()->t('Close'),
243 'addtitle' => DI::l10n()->t('Add new rule'),
244 'rule_name' => DI::l10n()->t('Rule Name'),
245 'rule_expression' => DI::l10n()->t('Rule Expression'),
246 'cancel' => DI::l10n()->t('Cancel'),
248 '$current_theme' => $a->getCurrentTheme(),
249 '$rules' => advancedcontentfilter_get_rules(),
250 '$form_security_token' => BaseModule::getFormSecurityToken()
258 function advancedcontentfilter_build_fields($data)
262 if (!empty($data['name'])) {
263 $fields['name'] = $data['name'];
266 if (!empty($data['expression'])) {
268 'author_id', 'author_link', 'author_name', 'author_avatar',
269 'owner_id', 'owner_link', 'owner_name', 'owner_avatar',
270 'contact_id', 'uid', 'id', 'parent', 'uri',
271 'thr_parent', 'parent_uri',
273 'commented', 'created', 'edited', 'received',
274 'verb', 'object_type', 'postopts', 'plink', 'guid', 'wall', 'private', 'starred',
276 'file', 'event_id', 'location', 'coord', 'app', 'attach',
277 'rendered_hash', 'rendered_html', 'object',
278 'allow_cid', 'allow_gid', 'deny_cid', 'deny_gid',
279 'item_id', 'item_network', 'author_thumb', 'owner_thumb',
280 'network', 'url', 'name', 'writable', 'self',
282 'event_created', 'event_edited', 'event_start', 'event_finish', 'event_summary',
283 'event_desc', 'event_location', 'event_type', 'event_nofinish', 'event_ignore',
284 'children', 'pagedrop', 'tags', 'hashtags', 'mentions',
288 $expressionLanguage = new ExpressionLanguage\ExpressionLanguage();
290 $parsedExpression = $expressionLanguage->parse($data['expression'], $allowed_keys);
292 $serialized = serialize($parsedExpression->getNodes());
294 $fields['expression'] = $data['expression'];
295 $fields['serialized'] = $serialized;
298 if (isset($data['active'])) {
299 $fields['active'] = intval($data['active']);
301 $fields['active'] = 1;
311 function advancedcontentfilter_get_rules()
314 throw new HTTPException\UnauthorizedException(DI::l10n()->t('You must be logged in to use this method'));
317 $rules = DBA::toArray(DBA::select('advancedcontentfilter_rules', [], ['uid' => local_user()]));
319 return json_encode($rules);
322 function advancedcontentfilter_get_rules_id(ServerRequestInterface $request, ResponseInterface $response, $args)
325 throw new HTTPException\UnauthorizedException(DI::l10n()->t('You must be logged in to use this method'));
328 $rule = DBA::selectFirst('advancedcontentfilter_rules', [], ['id' => $args['id'], 'uid' => local_user()]);
330 return json_encode($rule);
333 function advancedcontentfilter_post_rules(ServerRequestInterface $request)
336 throw new HTTPException\UnauthorizedException(DI::l10n()->t('You must be logged in to use this method'));
339 if (!BaseModule::checkFormSecurityToken()) {
340 throw new HTTPException\BadRequestException(DI::l10n()->t('Invalid form security token, please refresh the page.'));
343 $data = json_decode($request->getBody(), true);
346 $fields = advancedcontentfilter_build_fields($data);
347 } catch (Exception $e) {
348 throw new HTTPException\BadRequestException($e->getMessage(), $e);
351 if (empty($fields['name']) || empty($fields['expression'])) {
352 throw new HTTPException\BadRequestException(DI::l10n()->t('The rule name and expression are required.'));
355 $fields['uid'] = local_user();
356 $fields['created'] = DateTimeFormat::utcNow();
358 if (!DBA::insert('advancedcontentfilter_rules', $fields)) {
359 throw new HTTPException\ServiceUnavailableException(DBA::errorMessage());
362 $rule = DBA::selectFirst('advancedcontentfilter_rules', [], ['id' => DBA::lastInsertId()]);
364 DI::cache()->delete('rules_' . local_user());
366 return json_encode(['message' => DI::l10n()->t('Rule successfully added'), 'rule' => $rule]);
369 function advancedcontentfilter_put_rules_id(ServerRequestInterface $request, ResponseInterface $response, $args)
372 throw new HTTPException\UnauthorizedException(DI::l10n()->t('You must be logged in to use this method'));
375 if (!BaseModule::checkFormSecurityToken()) {
376 throw new HTTPException\BadRequestException(DI::l10n()->t('Invalid form security token, please refresh the page.'));
379 if (!DBA::exists('advancedcontentfilter_rules', ['id' => $args['id'], 'uid' => local_user()])) {
380 throw new HTTPException\NotFoundException(DI::l10n()->t('Rule doesn\'t exist or doesn\'t belong to you.'));
383 $data = json_decode($request->getBody(), true);
386 $fields = advancedcontentfilter_build_fields($data);
387 } catch (Exception $e) {
388 throw new HTTPException\BadRequestException($e->getMessage(), $e);
391 if (!DBA::update('advancedcontentfilter_rules', $fields, ['id' => $args['id']])) {
392 throw new HTTPException\ServiceUnavailableException(DBA::errorMessage());
395 DI::cache()->delete('rules_' . local_user());
397 return json_encode(['message' => DI::l10n()->t('Rule successfully updated')]);
400 function advancedcontentfilter_delete_rules_id(ServerRequestInterface $request, ResponseInterface $response, $args)
403 throw new HTTPException\UnauthorizedException(DI::l10n()->t('You must be logged in to use this method'));
406 if (!BaseModule::checkFormSecurityToken()) {
407 throw new HTTPException\BadRequestException(DI::l10n()->t('Invalid form security token, please refresh the page.'));
410 if (!DBA::exists('advancedcontentfilter_rules', ['id' => $args['id'], 'uid' => local_user()])) {
411 throw new HTTPException\NotFoundException(DI::l10n()->t('Rule doesn\'t exist or doesn\'t belong to you.'));
414 if (!DBA::delete('advancedcontentfilter_rules', ['id' => $args['id']])) {
415 throw new HTTPException\ServiceUnavailableException(DBA::errorMessage());
418 DI::cache()->delete('rules_' . local_user());
420 return json_encode(['message' => DI::l10n()->t('Rule successfully deleted')]);
423 function advancedcontentfilter_get_variables_guid(ServerRequestInterface $request, ResponseInterface $response, $args)
426 throw new HTTPException\UnauthorizedException(DI::l10n()->t('You must be logged in to use this method'));
429 if (!isset($args['guid'])) {
430 throw new HTTPException\BadRequestException(DI::l10n()->t('Missing argument: guid.'));
433 $condition = ["`guid` = ? AND (`uid` = ? OR `uid` = 0)", $args['guid'], local_user()];
434 $params = ['order' => ['uid' => true]];
435 $item = Post::selectFirstForUser(local_user(), [], $condition, $params);
437 if (!DBA::isResult($item)) {
438 throw new HTTPException\NotFoundException(DI::l10n()->t('Unknown post with guid: %s', $args['guid']));
441 $tags = Tag::populateFromItem($item);
443 $item['tags'] = $tags['tags'];
444 $item['hashtags'] = $tags['hashtags'];
445 $item['mentions'] = $tags['mentions'];
447 $attachments = Post\Media::splitAttachments($item['uri-id'], $item['guid'] ?? '');
449 $item['attachments'] = $attachments;
451 $return = advancedcontentfilter_get_filter_fields($item);
453 return json_encode(['variables' => str_replace('\\\'', '\'', var_export($return, true))]);