8 * Determine the allowed character set in short URLs
11 function yourls_get_shorturl_charset() {
12 static $charset = null;
13 if( $charset !== null )
16 if( !defined('YOURLS_URL_CONVERT') ) {
17 $charset = '0123456789abcdefghijklmnopqrstuvwxyz';
19 switch( YOURLS_URL_CONVERT ) {
21 $charset = '0123456789abcdefghijklmnopqrstuvwxyz';
24 case 64: // just because some people get this wrong in their config.php
25 $charset = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
30 $charset = yourls_apply_filter( 'get_shorturl_charset', $charset );
35 * Make an optimized regexp pattern from a string of characters
38 function yourls_make_regexp_pattern( $string ) {
39 $pattern = preg_quote( $string, '-' ); // add - as an escaped characters -- this is fixed in PHP 5.3
40 // TODO: replace char sequences by smart sequences such as 0-9, a-z, A-Z ... ?
45 * Is a URL a short URL? Accept either 'http://sho.rt/abc' or 'abc'
48 function yourls_is_shorturl( $shorturl ) {
49 // TODO: make sure this function evolves with the feature set.
53 // Is $shorturl a URL (http://sho.rt/abc) or a keyword (abc) ?
54 if( yourls_get_protocol( $shorturl ) ) {
55 $keyword = yourls_get_relative_url( $shorturl );
60 // Check if it's a valid && used keyword
61 if( $keyword && $keyword == yourls_sanitize_string( $keyword ) && yourls_keyword_is_taken( $keyword ) ) {
65 return yourls_apply_filter( 'is_shorturl', $is_short, $shorturl );
69 * Check to see if a given keyword is reserved (ie reserved URL or an existing page). Returns bool
72 function yourls_keyword_is_reserved( $keyword ) {
73 global $yourls_reserved_URL;
74 $keyword = yourls_sanitize_keyword( $keyword );
77 if ( in_array( $keyword, $yourls_reserved_URL)
78 or file_exists( YOURLS_ABSPATH ."/pages/$keyword.php" )
79 or is_dir( YOURLS_ABSPATH ."/$keyword" )
83 return yourls_apply_filter( 'keyword_is_reserved', $reserved, $keyword );
87 * Function: Get client IP Address. Returns a DB safe string.
90 function yourls_get_IP() {
93 // Precedence: if set, X-Forwarded-For > HTTP_X_FORWARDED_FOR > HTTP_CLIENT_IP > HTTP_VIA > REMOTE_ADDR
94 $headers = array( 'X-Forwarded-For', 'HTTP_X_FORWARDED_FOR', 'HTTP_CLIENT_IP', 'HTTP_VIA', 'REMOTE_ADDR' );
95 foreach( $headers as $header ) {
96 if ( !empty( $_SERVER[ $header ] ) ) {
97 $ip = $_SERVER[ $header ];
102 // headers can contain multiple IPs (X-Forwarded-For = client, proxy1, proxy2). Take first one.
103 if ( strpos( $ip, ',' ) !== false )
104 $ip = substr( $ip, 0, strpos( $ip, ',' ) );
106 return yourls_apply_filter( 'get_IP', yourls_sanitize_ip( $ip ) );
110 * Get next id a new link will have if no custom keyword provided
113 function yourls_get_next_decimal() {
114 return yourls_apply_filter( 'get_next_decimal', (int)yourls_get_option( 'next_id' ) );
118 * Update id for next link with no custom keyword
121 function yourls_update_next_decimal( $int = '' ) {
122 $int = ( $int == '' ) ? yourls_get_next_decimal() + 1 : (int)$int ;
123 $update = yourls_update_option( 'next_id', $int );
124 yourls_do_action( 'update_next_decimal', $int, $update );
129 * Delete a link in the DB
132 function yourls_delete_link_by_keyword( $keyword ) {
135 $table = YOURLS_DB_TABLE_URL;
136 $keyword = yourls_sanitize_string( $keyword );
137 $delete = $ydb->query("DELETE FROM `$table` WHERE `keyword` = '$keyword';");
138 yourls_do_action( 'delete_link', $keyword, $delete );
143 * SQL query to insert a new link in the DB. Returns boolean for success or failure of the inserting
146 function yourls_insert_link_in_db( $url, $keyword, $title = '' ) {
149 $url = yourls_escape( yourls_sanitize_url( $url ) );
150 $keyword = yourls_escape( yourls_sanitize_keyword( $keyword ) );
151 $title = yourls_escape( yourls_sanitize_title( $title ) );
153 $table = YOURLS_DB_TABLE_URL;
154 $timestamp = date('Y-m-d H:i:s');
155 $ip = yourls_get_IP();
156 $insert = $ydb->query("INSERT INTO `$table` (`keyword`, `url`, `title`, `timestamp`, `ip`, `clicks`) VALUES('$keyword', '$url', '$title', '$timestamp', '$ip', 0);");
158 yourls_do_action( 'insert_link', (bool)$insert, $url, $keyword, $title, $timestamp, $ip );
160 return (bool)$insert;
164 * Check if a URL already exists in the DB. Return NULL (doesn't exist) or an object with URL informations.
167 function yourls_url_exists( $url ) {
168 // Allow plugins to short-circuit the whole function
169 $pre = yourls_apply_filter( 'shunt_url_exists', false, $url );
170 if ( false !== $pre )
174 $table = YOURLS_DB_TABLE_URL;
175 $strip_url = stripslashes($url);
176 $url_exists = $ydb->get_row("SELECT * FROM `$table` WHERE `url` = '".$strip_url."';");
178 return yourls_apply_filter( 'url_exists', $url_exists, $url );
182 * Add a new link in the DB, either with custom keyword, or find one
185 function yourls_add_new_link( $url, $keyword = '', $title = '' ) {
186 // Allow plugins to short-circuit the whole function
187 $pre = yourls_apply_filter( 'shunt_add_new_link', false, $url, $keyword, $title );
188 if ( false !== $pre )
191 $url = yourls_encodeURI( $url );
192 $url = yourls_escape( yourls_sanitize_url( $url ) );
193 if ( !$url || $url == 'http://' || $url == 'https://' ) {
194 $return['status'] = 'fail';
195 $return['code'] = 'error:nourl';
196 $return['message'] = yourls__( 'Missing or malformed URL' );
197 $return['errorCode'] = '400';
198 return yourls_apply_filter( 'add_new_link_fail_nourl', $return, $url, $keyword, $title );
202 $ip = yourls_get_IP();
203 yourls_check_IP_flood( $ip );
205 // Prevent internal redirection loops: cannot shorten a shortened URL
206 if( yourls_get_relative_url( $url ) ) {
207 if( yourls_is_shorturl( $url ) ) {
208 $return['status'] = 'fail';
209 $return['code'] = 'error:noloop';
210 $return['message'] = yourls__( 'URL is a short URL' );
211 $return['errorCode'] = '400';
212 return yourls_apply_filter( 'add_new_link_fail_noloop', $return, $url, $keyword, $title );
216 yourls_do_action( 'pre_add_new_link', $url, $keyword, $title );
218 $strip_url = stripslashes( $url );
221 // duplicates allowed or new URL => store it
222 if( yourls_allow_duplicate_longurls() || !( $url_exists = yourls_url_exists( $url ) ) ) {
224 if( isset( $title ) && !empty( $title ) ) {
225 $title = yourls_sanitize_title( $title );
227 $title = yourls_get_remote_title( $url );
229 $title = yourls_apply_filter( 'add_new_title', $title, $url, $keyword );
231 // Custom keyword provided
234 yourls_do_action( 'add_new_link_custom_keyword', $url, $keyword, $title );
236 $keyword = yourls_escape( yourls_sanitize_string( $keyword ) );
237 $keyword = yourls_apply_filter( 'custom_keyword', $keyword, $url, $title );
238 if ( !yourls_keyword_is_free( $keyword ) ) {
239 // This shorturl either reserved or taken already
240 $return['status'] = 'fail';
241 $return['code'] = 'error:keyword';
242 $return['message'] = yourls_s( 'Short URL %s already exists in database or is reserved', $keyword );
244 // all clear, store !
245 yourls_insert_link_in_db( $url, $keyword, $title );
246 $return['url'] = array('keyword' => $keyword, 'url' => $strip_url, 'title' => $title, 'date' => date('Y-m-d H:i:s'), 'ip' => $ip );
247 $return['status'] = 'success';
248 $return['message'] = /* //translators: eg "http://someurl/ added to DB" */ yourls_s( '%s added to database', yourls_trim_long_string( $strip_url ) );
249 $return['title'] = $title;
250 $return['html'] = yourls_table_add_row( $keyword, $url, $title, $ip, 0, time() );
251 $return['shorturl'] = YOURLS_SITE .'/'. $keyword;
254 // Create random keyword
257 yourls_do_action( 'add_new_link_create_keyword', $url, $keyword, $title );
259 $timestamp = date( 'Y-m-d H:i:s' );
260 $id = yourls_get_next_decimal();
263 $keyword = yourls_int2string( $id );
264 $keyword = yourls_apply_filter( 'random_keyword', $keyword, $url, $title );
265 $free = yourls_keyword_is_free($keyword);
266 $add_url = @yourls_insert_link_in_db( $url, $keyword, $title );
267 $ok = ($free && $add_url);
268 if ( $ok === false && $add_url === 1 ) {
269 // we stored something, but shouldn't have (ie reserved id)
270 yourls_delete_link_by_keyword( $keyword );
271 $return['extra_info'] .= '(deleted '.$keyword.')';
273 // everything ok, populate needed vars
274 $return['url'] = array('keyword' => $keyword, 'url' => $strip_url, 'title' => $title, 'date' => $timestamp, 'ip' => $ip );
275 $return['status'] = 'success';
276 $return['message'] = /* //translators: eg "http://someurl/ added to DB" */ yourls_s( '%s added to database', yourls_trim_long_string( $strip_url ) );
277 $return['title'] = $title;
278 $return['html'] = yourls_table_add_row( $keyword, $url, $title, $ip, 0, time() );
279 $return['shorturl'] = YOURLS_SITE .'/'. $keyword;
283 @yourls_update_next_decimal( $id );
286 // URL was already stored
289 yourls_do_action( 'add_new_link_already_stored', $url, $keyword, $title );
291 $return['status'] = 'fail';
292 $return['code'] = 'error:url';
293 $return['url'] = array( 'keyword' => $url_exists->keyword, 'url' => $strip_url, 'title' => $url_exists->title, 'date' => $url_exists->timestamp, 'ip' => $url_exists->ip, 'clicks' => $url_exists->clicks );
294 $return['message'] = /* //translators: eg "http://someurl/ already exists" */ yourls_s( '%s already exists in database', yourls_trim_long_string( $strip_url ) );
295 $return['title'] = $url_exists->title;
296 $return['shorturl'] = YOURLS_SITE .'/'. $url_exists->keyword;
299 yourls_do_action( 'post_add_new_link', $url, $keyword, $title );
301 $return['statusCode'] = 200; // regardless of result, this is still a valid request
302 return yourls_apply_filter( 'add_new_link', $return, $url, $keyword, $title );
310 function yourls_edit_link( $url, $keyword, $newkeyword='', $title='' ) {
313 $table = YOURLS_DB_TABLE_URL;
314 $url = yourls_escape (yourls_sanitize_url( $url ) );
315 $keyword = yourls_escape( yourls_sanitize_string( $keyword ) );
316 $title = yourls_escape( yourls_sanitize_title( $title ) );
317 $newkeyword = yourls_escape( yourls_sanitize_string( $newkeyword ) );
318 $strip_url = stripslashes( $url );
319 $strip_title = stripslashes( $title );
320 $old_url = $ydb->get_var( "SELECT `url` FROM `$table` WHERE `keyword` = '$keyword';" );
322 // Check if new URL is not here already
323 if ( $old_url != $url && !yourls_allow_duplicate_longurls() ) {
324 $new_url_already_there = intval($ydb->get_var("SELECT COUNT(keyword) FROM `$table` WHERE `url` = '$strip_url';"));
326 $new_url_already_there = false;
329 // Check if the new keyword is not here already
330 if ( $newkeyword != $keyword ) {
331 $keyword_is_ok = yourls_keyword_is_free( $newkeyword );
333 $keyword_is_ok = true;
336 yourls_do_action( 'pre_edit_link', $url, $keyword, $newkeyword, $new_url_already_there, $keyword_is_ok );
339 if ( ( !$new_url_already_there || yourls_allow_duplicate_longurls() ) && $keyword_is_ok ) {
340 $update_url = $ydb->query( "UPDATE `$table` SET `url` = '$url', `keyword` = '$newkeyword', `title` = '$title' WHERE `keyword` = '$keyword';" );
342 $return['url'] = array( 'keyword' => $newkeyword, 'shorturl' => YOURLS_SITE.'/'.$newkeyword, 'url' => $strip_url, 'display_url' => yourls_trim_long_string( $strip_url ), 'title' => $strip_title, 'display_title' => yourls_trim_long_string( $strip_title ) );
343 $return['status'] = 'success';
344 $return['message'] = yourls__( 'Link updated in database' );
346 $return['status'] = 'fail';
347 $return['message'] = /* //translators: "Error updating http://someurl/ (Shorturl: http://sho.rt/blah)" */ yourls_s( 'Error updating %s (Short URL: %s)', yourls_trim_long_string( $strip_url ), $keyword ) ;
352 $return['status'] = 'fail';
353 $return['message'] = yourls__( 'URL or keyword already exists in database' );
356 return yourls_apply_filter( 'edit_link', $return, $url, $keyword, $newkeyword, $title, $new_url_already_there, $keyword_is_ok );
360 * Update a title link (no checks for duplicates etc..)
363 function yourls_edit_link_title( $keyword, $title ) {
366 $keyword = yourls_escape( yourls_sanitize_keyword( $keyword ) );
367 $title = yourls_escape( yourls_sanitize_title( $title ) );
369 $table = YOURLS_DB_TABLE_URL;
370 $update = $ydb->query("UPDATE `$table` SET `title` = '$title' WHERE `keyword` = '$keyword';");
377 * Check if keyword id is free (ie not already taken, and not reserved). Return bool.
380 function yourls_keyword_is_free( $keyword ) {
382 if ( yourls_keyword_is_reserved( $keyword ) or yourls_keyword_is_taken( $keyword ) )
385 return yourls_apply_filter( 'keyword_is_free', $free, $keyword );
389 * Check if a keyword is taken (ie there is already a short URL with this id). Return bool.
392 function yourls_keyword_is_taken( $keyword ) {
394 // Allow plugins to short-circuit the whole function
395 $pre = yourls_apply_filter( 'shunt_keyword_is_taken', false, $keyword );
396 if ( false !== $pre )
400 $keyword = yourls_sanitize_keyword( $keyword );
402 $table = YOURLS_DB_TABLE_URL;
403 $already_exists = $ydb->get_var( "SELECT COUNT(`keyword`) FROM `$table` WHERE `keyword` = '$keyword';" );
404 if ( $already_exists )
407 return yourls_apply_filter( 'keyword_is_taken', $taken, $keyword );
415 function yourls_db_connect() {
418 if ( !defined( 'YOURLS_DB_USER' )
419 or !defined( 'YOURLS_DB_PASS' )
420 or !defined( 'YOURLS_DB_NAME' )
421 or !defined( 'YOURLS_DB_HOST' )
422 ) yourls_die ( yourls__( 'Incorrect DB config, or could not connect to DB' ), yourls__( 'Fatal error' ), 503 );
424 // Are we standalone or in the WordPress environment?
425 if ( class_exists( 'wpdb', false ) ) {
426 /* TODO: should we deprecate this? Follow WP dev in that area */
427 $ydb = new wpdb( YOURLS_DB_USER, YOURLS_DB_PASS, YOURLS_DB_NAME, YOURLS_DB_HOST );
429 yourls_set_DB_driver();
432 if ( $ydb->last_error )
433 yourls_die( $ydb->last_error, yourls__( 'Fatal error' ), 503 );
435 if ( defined( 'YOURLS_DEBUG' ) && YOURLS_DEBUG === true )
436 $ydb->show_errors = true;
445 function yourls_xml_encode( $array ) {
446 require_once( YOURLS_INC.'/functions-xml.php' );
447 $converter= new yourls_array2xml;
448 return $converter->array2xml( $array );
452 * Return array of all information associated with keyword. Returns false if keyword not found. Set optional $use_cache to false to force fetching from DB
455 function yourls_get_keyword_infos( $keyword, $use_cache = true ) {
457 $keyword = yourls_sanitize_string( $keyword );
459 yourls_do_action( 'pre_get_keyword', $keyword, $use_cache );
461 if( isset( $ydb->infos[$keyword] ) && $use_cache == true ) {
462 return yourls_apply_filter( 'get_keyword_infos', $ydb->infos[$keyword], $keyword );
465 yourls_do_action( 'get_keyword_not_cached', $keyword );
467 $table = YOURLS_DB_TABLE_URL;
468 $infos = $ydb->get_row( "SELECT * FROM `$table` WHERE `keyword` = '$keyword'" );
471 $infos = (array)$infos;
472 $ydb->infos[ $keyword ] = $infos;
474 $ydb->infos[ $keyword ] = false;
477 return yourls_apply_filter( 'get_keyword_infos', $ydb->infos[$keyword], $keyword );
481 * Return (string) selected information associated with a keyword. Optional $notfound = string default message if nothing found
484 function yourls_get_keyword_info( $keyword, $field, $notfound = false ) {
486 // Allow plugins to short-circuit the whole function
487 $pre = yourls_apply_filter( 'shunt_get_keyword_info', false, $keyword, $field, $notfound );
488 if ( false !== $pre )
491 $keyword = yourls_sanitize_string( $keyword );
492 $infos = yourls_get_keyword_infos( $keyword );
495 if ( isset( $infos[ $field ] ) && $infos[ $field ] !== false )
496 $return = $infos[ $field ];
498 return yourls_apply_filter( 'get_keyword_info', $return, $keyword, $field, $notfound );
502 * Return title associated with keyword. Optional $notfound = string default message if nothing found
505 function yourls_get_keyword_title( $keyword, $notfound = false ) {
506 return yourls_get_keyword_info( $keyword, 'title', $notfound );
510 * Return long URL associated with keyword. Optional $notfound = string default message if nothing found
513 function yourls_get_keyword_longurl( $keyword, $notfound = false ) {
514 return yourls_get_keyword_info( $keyword, 'url', $notfound );
518 * Return number of clicks on a keyword. Optional $notfound = string default message if nothing found
521 function yourls_get_keyword_clicks( $keyword, $notfound = false ) {
522 return yourls_get_keyword_info( $keyword, 'clicks', $notfound );
526 * Return IP that added a keyword. Optional $notfound = string default message if nothing found
529 function yourls_get_keyword_IP( $keyword, $notfound = false ) {
530 return yourls_get_keyword_info( $keyword, 'ip', $notfound );
534 * Return timestamp associated with a keyword. Optional $notfound = string default message if nothing found
537 function yourls_get_keyword_timestamp( $keyword, $notfound = false ) {
538 return yourls_get_keyword_info( $keyword, 'timestamp', $notfound );
542 * Update click count on a short URL. Return 0/1 for error/success.
545 function yourls_update_clicks( $keyword, $clicks = false ) {
546 // Allow plugins to short-circuit the whole function
547 $pre = yourls_apply_filter( 'shunt_update_clicks', false, $keyword, $clicks );
548 if ( false !== $pre )
552 $keyword = yourls_sanitize_string( $keyword );
553 $table = YOURLS_DB_TABLE_URL;
554 if ( $clicks !== false && is_int( $clicks ) && $clicks >= 0 )
555 $update = $ydb->query( "UPDATE `$table` SET `clicks` = $clicks WHERE `keyword` = '$keyword'" );
557 $update = $ydb->query( "UPDATE `$table` SET `clicks` = clicks + 1 WHERE `keyword` = '$keyword'" );
559 yourls_do_action( 'update_clicks', $keyword, $update, $clicks );
564 * Return array of stats. (string)$filter is 'bottom', 'last', 'rand' or 'top'. (int)$limit is the number of links to return
567 function yourls_get_stats( $filter = 'top', $limit = 10, $start = 0 ) {
576 $sort_by = 'timestamp';
577 $sort_order = 'desc';
587 $sort_order = 'desc';
592 $limit = intval( $limit );
593 $start = intval( $start );
596 $table_url = YOURLS_DB_TABLE_URL;
597 $results = $ydb->get_results( "SELECT * FROM `$table_url` WHERE 1=1 ORDER BY `$sort_by` $sort_order LIMIT $start, $limit;" );
602 foreach ( (array)$results as $res ) {
603 $return['links']['link_'.$i++] = array(
604 'shorturl' => YOURLS_SITE .'/'. $res->keyword,
606 'title' => $res->title,
607 'timestamp'=> $res->timestamp,
609 'clicks' => $res->clicks,
614 $return['stats'] = yourls_get_db_stats();
616 $return['statusCode'] = 200;
618 return yourls_apply_filter( 'get_stats', $return, $filter, $limit, $start );
622 * Return array of stats. (string)$filter is 'bottom', 'last', 'rand' or 'top'. (int)$limit is the number of links to return
625 function yourls_get_link_stats( $shorturl ) {
628 $table_url = YOURLS_DB_TABLE_URL;
629 $res = $ydb->get_row( "SELECT * FROM `$table_url` WHERE keyword = '$shorturl';" );
636 'message' => 'Error: short URL not found',
641 'message' => 'success',
643 'shorturl' => YOURLS_SITE .'/'. $res->keyword,
645 'title' => $res->title,
646 'timestamp'=> $res->timestamp,
648 'clicks' => $res->clicks,
653 return yourls_apply_filter( 'get_link_stats', $return, $shorturl );
657 * Get total number of URLs and sum of clicks. Input: optional "AND WHERE" clause. Returns array
660 function yourls_get_db_stats( $where = '' ) {
662 $table_url = YOURLS_DB_TABLE_URL;
664 $totals = $ydb->get_row( "SELECT COUNT(keyword) as count, SUM(clicks) as sum FROM `$table_url` WHERE 1=1 $where" );
665 $return = array( 'total_links' => $totals->count, 'total_clicks' => $totals->sum );
667 return yourls_apply_filter( 'get_db_stats', $return, $where );
671 * Get number of SQL queries performed
674 function yourls_get_num_queries() {
677 return yourls_apply_filter( 'get_num_queries', $ydb->num_queries );
681 * Returns a sanitized a user agent string. Given what I found on http://www.user-agents.org/ it should be OK.
684 function yourls_get_user_agent() {
685 if ( !isset( $_SERVER['HTTP_USER_AGENT'] ) )
688 $ua = strip_tags( html_entity_decode( $_SERVER['HTTP_USER_AGENT'] ));
689 $ua = preg_replace('![^0-9a-zA-Z\':., /{}\(\)\[\]\+@&\!\?;_\-=~\*\#]!', '', $ua );
691 return yourls_apply_filter( 'get_user_agent', substr( $ua, 0, 254 ) );
695 * Redirect to another page
698 function yourls_redirect( $location, $code = 301 ) {
699 yourls_do_action( 'pre_redirect', $location, $code );
700 $location = yourls_apply_filter( 'redirect_location', $location, $code );
701 $code = yourls_apply_filter( 'redirect_code', $code, $location );
702 // Redirect, either properly if possible, or via Javascript otherwise
703 if( !headers_sent() ) {
704 yourls_status_header( $code );
705 header( "Location: $location" );
707 yourls_redirect_javascript( $location );
713 * Set HTTP status header
716 function yourls_status_header( $code = 200 ) {
720 $protocol = $_SERVER["SERVER_PROTOCOL"];
721 if ( 'HTTP/1.1' != $protocol && 'HTTP/1.0' != $protocol )
722 $protocol = 'HTTP/1.0';
724 $code = intval( $code );
725 $desc = yourls_get_HTTP_status( $code );
727 @header ("$protocol $code $desc"); // This causes problems on IIS and some FastCGI setups
728 yourls_do_action( 'status_header', $code );
732 * Redirect to another page using Javascript. Set optional (bool)$dontwait to false to force manual redirection (make sure a message has been read by user)
735 function yourls_redirect_javascript( $location, $dontwait = true ) {
736 yourls_do_action( 'pre_redirect_javascript', $location, $dontwait );
737 $location = yourls_apply_filter( 'redirect_javascript', $location, $dontwait );
739 $message = yourls_s( 'if you are not redirected after 10 seconds, please <a href="%s">click here</a>', $location );
741 <script type="text/javascript">
742 window.location="$location";
744 <small>($message)</small>
747 echo '<p>' . yourls_s( 'Please <a href="%s">click here</a>', $location ) . '</p>';
749 yourls_do_action( 'post_redirect_javascript', $location );
753 * Return a HTTP status code
756 function yourls_get_HTTP_status( $code ) {
757 $code = intval( $code );
758 $headers_desc = array(
760 101 => 'Switching Protocols',
766 203 => 'Non-Authoritative Information',
768 205 => 'Reset Content',
769 206 => 'Partial Content',
770 207 => 'Multi-Status',
773 300 => 'Multiple Choices',
774 301 => 'Moved Permanently',
777 304 => 'Not Modified',
780 307 => 'Temporary Redirect',
782 400 => 'Bad Request',
783 401 => 'Unauthorized',
784 402 => 'Payment Required',
787 405 => 'Method Not Allowed',
788 406 => 'Not Acceptable',
789 407 => 'Proxy Authentication Required',
790 408 => 'Request Timeout',
793 411 => 'Length Required',
794 412 => 'Precondition Failed',
795 413 => 'Request Entity Too Large',
796 414 => 'Request-URI Too Long',
797 415 => 'Unsupported Media Type',
798 416 => 'Requested Range Not Satisfiable',
799 417 => 'Expectation Failed',
800 422 => 'Unprocessable Entity',
802 424 => 'Failed Dependency',
803 426 => 'Upgrade Required',
805 500 => 'Internal Server Error',
806 501 => 'Not Implemented',
807 502 => 'Bad Gateway',
808 503 => 'Service Unavailable',
809 504 => 'Gateway Timeout',
810 505 => 'HTTP Version Not Supported',
811 506 => 'Variant Also Negotiates',
812 507 => 'Insufficient Storage',
813 510 => 'Not Extended'
816 if ( isset( $headers_desc[$code] ) )
817 return $headers_desc[$code];
824 * Log a redirect (for stats)
827 function yourls_log_redirect( $keyword ) {
828 // Allow plugins to short-circuit the whole function
829 $pre = yourls_apply_filter( 'shunt_log_redirect', false, $keyword );
830 if ( false !== $pre )
833 if ( !yourls_do_log_redirect() )
837 $table = YOURLS_DB_TABLE_LOG;
839 $keyword = yourls_sanitize_string( $keyword );
840 $referrer = ( isset( $_SERVER['HTTP_REFERER'] ) ? yourls_sanitize_url( $_SERVER['HTTP_REFERER'] ) : 'direct' );
841 $ua = yourls_get_user_agent();
842 $ip = yourls_get_IP();
843 $location = yourls_geo_ip_to_countrycode( $ip );
845 return $ydb->query( "INSERT INTO `$table` (click_time, shorturl, referrer, user_agent, ip_address, country_code) VALUES (NOW(), '$keyword', '$referrer', '$ua', '$ip', '$location')" );
849 * Check if we want to not log redirects (for stats)
852 function yourls_do_log_redirect() {
853 return ( !defined( 'YOURLS_NOSTATS' ) || YOURLS_NOSTATS != true );
857 * Converts an IP to a 2 letter country code, using GeoIP database if available in includes/geo/
860 function yourls_geo_ip_to_countrycode( $ip = '', $default = '' ) {
861 // Allow plugins to short-circuit the Geo IP API
862 $location = yourls_apply_filter( 'shunt_geo_ip_to_countrycode', false, $ip, $default ); // at this point $ip can be '', check if your plugin hooks in here
863 if ( false !== $location )
866 if ( !file_exists( YOURLS_INC.'/geo/GeoIP.dat') || !file_exists( YOURLS_INC.'/geo/geoip.inc') )
870 $ip = yourls_get_IP();
872 require_once( YOURLS_INC.'/geo/geoip.inc') ;
873 $gi = geoip_open( YOURLS_INC.'/geo/GeoIP.dat', GEOIP_STANDARD);
874 $location = geoip_country_code_by_addr($gi, $ip);
877 return yourls_apply_filter( 'geo_ip_to_countrycode', $location, $ip, $default );
881 * Converts a 2 letter country code to long name (ie AU -> Australia)
884 function yourls_geo_countrycode_to_countryname( $code ) {
885 // Allow plugins to short-circuit the Geo IP API
886 $country = yourls_apply_filter( 'shunt_geo_countrycode_to_countryname', false, $code );
887 if ( false !== $country )
890 // Load the Geo class if not already done
891 if( !class_exists( 'GeoIP', false ) ) {
892 $temp = yourls_geo_ip_to_countrycode( '127.0.0.1' );
895 if( class_exists( 'GeoIP', false ) ) {
897 $id = $geo->GEOIP_COUNTRY_CODE_TO_NUMBER[ $code ];
898 $long = $geo->GEOIP_COUNTRY_NAMES[ $id ];
906 * Return flag URL from 2 letter country code
909 function yourls_geo_get_flag( $code ) {
910 if( file_exists( YOURLS_INC.'/geo/flags/flag_'.strtolower($code).'.gif' ) ) {
911 $img = yourls_match_current_protocol( YOURLS_SITE.'/includes/geo/flags/flag_'.( strtolower( $code ) ).'.gif' );
915 return yourls_apply_filter( 'geo_get_flag', $img, $code );
920 * Check if an upgrade is needed
923 function yourls_upgrade_is_needed() {
924 // check YOURLS_DB_VERSION exist && match values stored in YOURLS_DB_TABLE_OPTIONS
925 list( $currentver, $currentsql ) = yourls_get_current_version_from_sql();
926 if( $currentsql < YOURLS_DB_VERSION )
933 * Get current version & db version as stored in the options DB. Prior to 1.4 there's no option table.
936 function yourls_get_current_version_from_sql() {
937 $currentver = yourls_get_option( 'version' );
938 $currentsql = yourls_get_option( 'db_version' );
940 // Values if version is 1.3
946 return array( $currentver, $currentsql);
950 * Read an option from DB (or from cache if available). Return value or $default if not found
953 function yourls_get_option( $option_name, $default = false ) {
956 // Allow plugins to short-circuit options
957 $pre = yourls_apply_filter( 'shunt_option_'.$option_name, false );
958 if ( false !== $pre )
961 // If option not cached already, get its value from the DB
962 if ( !isset( $ydb->option[$option_name] ) ) {
963 $table = YOURLS_DB_TABLE_OPTIONS;
964 $option_name = yourls_escape( $option_name );
965 $row = $ydb->get_row( "SELECT `option_value` FROM `$table` WHERE `option_name` = '$option_name' LIMIT 1" );
966 if ( is_object( $row) ) { // Has to be get_row instead of get_var because of funkiness with 0, false, null values
967 $value = $row->option_value;
968 } else { // option does not exist, so we must cache its non-existence
971 $ydb->option[ $option_name ] = yourls_maybe_unserialize( $value );
974 return yourls_apply_filter( 'get_option_'.$option_name, $ydb->option[$option_name] );
978 * Read all options from DB at once
981 function yourls_get_all_options() {
984 // Allow plugins to short-circuit all options. (Note: regular plugins are loaded after all options)
985 $pre = yourls_apply_filter( 'shunt_all_options', false );
986 if ( false !== $pre )
989 $table = YOURLS_DB_TABLE_OPTIONS;
991 $allopt = $ydb->get_results( "SELECT `option_name`, `option_value` FROM `$table` WHERE 1=1" );
993 foreach( (array)$allopt as $option ) {
994 $ydb->option[ $option->option_name ] = yourls_maybe_unserialize( $option->option_value );
997 if( property_exists( $ydb, 'option' ) ) {
998 $ydb->option = yourls_apply_filter( 'get_all_options', $ydb->option );
1003 * Update (add if doesn't exist) an option to DB
1006 function yourls_update_option( $option_name, $newvalue ) {
1008 $table = YOURLS_DB_TABLE_OPTIONS;
1010 $safe_option_name = yourls_escape( $option_name );
1012 $oldvalue = yourls_get_option( $safe_option_name );
1014 // If the new and old values are the same, no need to update.
1015 if ( $newvalue === $oldvalue )
1018 if ( false === $oldvalue ) {
1019 yourls_add_option( $option_name, $newvalue );
1023 $_newvalue = yourls_escape( yourls_maybe_serialize( $newvalue ) );
1025 yourls_do_action( 'update_option', $option_name, $oldvalue, $newvalue );
1027 $ydb->query( "UPDATE `$table` SET `option_value` = '$_newvalue' WHERE `option_name` = '$option_name'" );
1029 if ( $ydb->rows_affected == 1 ) {
1030 $ydb->option[ $option_name ] = $newvalue;
1037 * Add an option to the DB
1040 function yourls_add_option( $name, $value = '' ) {
1042 $table = YOURLS_DB_TABLE_OPTIONS;
1043 $safe_name = yourls_escape( $name );
1045 // Make sure the option doesn't already exist
1046 if ( false !== yourls_get_option( $safe_name ) )
1049 $_value = yourls_escape( yourls_maybe_serialize( $value ) );
1051 yourls_do_action( 'add_option', $safe_name, $_value );
1053 $ydb->query( "INSERT INTO `$table` (`option_name`, `option_value`) VALUES ('$name', '$_value')" );
1054 $ydb->option[ $name ] = $value;
1060 * Delete an option from the DB
1063 function yourls_delete_option( $name ) {
1065 $table = YOURLS_DB_TABLE_OPTIONS;
1066 $name = yourls_escape( $name );
1068 // Get the ID, if no ID then return
1069 $option = $ydb->get_row( "SELECT option_id FROM `$table` WHERE `option_name` = '$name'" );
1070 if ( is_null( $option ) || !$option->option_id )
1073 yourls_do_action( 'delete_option', $name );
1075 $ydb->query( "DELETE FROM `$table` WHERE `option_name` = '$name'" );
1082 * Serialize data if needed. Stolen from WordPress
1085 function yourls_maybe_serialize( $data ) {
1086 if ( is_array( $data ) || is_object( $data ) )
1087 return serialize( $data );
1089 if ( yourls_is_serialized( $data ) )
1090 return serialize( $data );
1096 * Check value to find if it was serialized. Stolen from WordPress
1099 function yourls_is_serialized( $data ) {
1100 // if it isn't a string, it isn't serialized
1101 if ( !is_string( $data ) )
1103 $data = trim( $data );
1104 if ( 'N;' == $data )
1106 if ( !preg_match( '/^([adObis]):/', $data, $badions ) )
1108 switch ( $badions[1] ) {
1112 if ( preg_match( "/^{$badions[1]}:[0-9]+:.*[;}]\$/s", $data ) )
1118 if ( preg_match( "/^{$badions[1]}:[0-9.E-]+;\$/", $data ) )
1126 * Unserialize value only if it was serialized. Stolen from WP
1129 function yourls_maybe_unserialize( $original ) {
1130 if ( yourls_is_serialized( $original ) ) // don't attempt to unserialize data that wasn't serialized going in
1131 return @unserialize( $original );
1136 * Determine if the current page is private
1139 function yourls_is_private() {
1142 if ( defined('YOURLS_PRIVATE') && YOURLS_PRIVATE == true ) {
1144 // Allow overruling for particular pages:
1147 if( yourls_is_API() ) {
1148 if( !defined('YOURLS_PRIVATE_API') || YOURLS_PRIVATE_API != false )
1152 } elseif( yourls_is_infos() ) {
1153 if( !defined('YOURLS_PRIVATE_INFOS') || YOURLS_PRIVATE_INFOS !== false )
1163 return yourls_apply_filter( 'is_private', $private );
1167 * Show login form if required
1170 function yourls_maybe_require_auth() {
1171 if( yourls_is_private() ) {
1172 yourls_do_action( 'require_auth' );
1173 require_once( YOURLS_INC.'/auth.php' );
1175 yourls_do_action( 'require_no_auth' );
1180 * Allow several short URLs for the same long URL ?
1183 function yourls_allow_duplicate_longurls() {
1184 // special treatment if API to check for WordPress plugin requests
1185 if( yourls_is_API() ) {
1186 if ( isset($_REQUEST['source']) && $_REQUEST['source'] == 'plugin' )
1189 return ( defined( 'YOURLS_UNIQUE_URLS' ) && YOURLS_UNIQUE_URLS == false );
1193 * Return list of all shorturls associated to the same long URL. Returns NULL or array of keywords.
1196 function yourls_get_duplicate_keywords( $longurl ) {
1197 if( !yourls_allow_duplicate_longurls() )
1201 $longurl = yourls_escape( yourls_sanitize_url($longurl) );
1202 $table = YOURLS_DB_TABLE_URL;
1204 $return = $ydb->get_col( "SELECT `keyword` FROM `$table` WHERE `url` = '$longurl'" );
1205 return yourls_apply_filter( 'get_duplicate_keywords', $return, $longurl );
1209 * Check if an IP shortens URL too fast to prevent DB flood. Return true, or die.
1212 function yourls_check_IP_flood( $ip = '' ) {
1214 // Allow plugins to short-circuit the whole function
1215 $pre = yourls_apply_filter( 'shunt_check_IP_flood', false, $ip );
1216 if ( false !== $pre )
1219 yourls_do_action( 'pre_check_ip_flood', $ip ); // at this point $ip can be '', check it if your plugin hooks in here
1222 ( defined('YOURLS_FLOOD_DELAY_SECONDS') && YOURLS_FLOOD_DELAY_SECONDS === 0 ) ||
1223 !defined('YOURLS_FLOOD_DELAY_SECONDS')
1227 $ip = ( $ip ? yourls_sanitize_ip( $ip ) : yourls_get_IP() );
1229 // Don't throttle whitelist IPs
1230 if( defined( 'YOURLS_FLOOD_IP_WHITELIST' ) && YOURLS_FLOOD_IP_WHITELIST ) {
1231 $whitelist_ips = explode( ',', YOURLS_FLOOD_IP_WHITELIST );
1232 foreach( (array)$whitelist_ips as $whitelist_ip ) {
1233 $whitelist_ip = trim( $whitelist_ip );
1234 if ( $whitelist_ip == $ip )
1239 // Don't throttle logged in users
1240 if( yourls_is_private() ) {
1241 if( yourls_is_valid_user() === true )
1245 yourls_do_action( 'check_ip_flood', $ip );
1248 $table = YOURLS_DB_TABLE_URL;
1250 $lasttime = $ydb->get_var( "SELECT `timestamp` FROM $table WHERE `ip` = '$ip' ORDER BY `timestamp` DESC LIMIT 1" );
1253 $then = date( 'U', strtotime( $lasttime ) );
1254 if( ( $now - $then ) <= YOURLS_FLOOD_DELAY_SECONDS ) {
1256 yourls_do_action( 'ip_flood', $ip, $now - $then );
1257 yourls_die( yourls__( 'Too many URLs added too fast. Slow down please.' ), yourls__( 'Forbidden' ), 403 );
1265 * Check if YOURLS is installing
1270 function yourls_is_installing() {
1271 $installing = defined( 'YOURLS_INSTALLING' ) && YOURLS_INSTALLING == true;
1272 return yourls_apply_filter( 'is_installing', $installing );
1276 * Check if YOURLS is upgrading
1281 function yourls_is_upgrading() {
1282 $upgrading = defined( 'YOURLS_UPGRADING' ) && YOURLS_UPGRADING == true;
1283 return yourls_apply_filter( 'is_upgrading', $upgrading );
1288 * Check if YOURLS is installed
1291 function yourls_is_installed() {
1292 static $is_installed = false;
1293 if ( $is_installed === false ) {
1294 $check_14 = $check_13 = false;
1296 if( defined('YOURLS_DB_TABLE_NEXTDEC') )
1297 $check_13 = $ydb->get_var('SELECT `next_id` FROM '.YOURLS_DB_TABLE_NEXTDEC);
1298 $check_14 = yourls_get_option( 'version' );
1299 $is_installed = $check_13 || $check_14;
1301 return yourls_apply_filter( 'is_installed', $is_installed );
1305 * Generate random string of (int)$length length and type $type (see function for details)
1308 function yourls_rnd_string ( $length = 5, $type = 0, $charlist = '' ) {
1310 $length = intval( $length );
1312 // define possible characters
1315 // custom char list, or comply to charset as defined in config
1317 $possible = $charlist ? $charlist : yourls_get_shorturl_charset() ;
1320 // no vowels to make no offending word, no 0/1/o/l to avoid confusion between letters & digits. Perfect for passwords.
1322 $possible = "23456789bcdfghjkmnpqrstvwxyz";
1325 // Same, with lower + upper
1327 $possible = "23456789bcdfghjkmnpqrstvwxyzBCDFGHJKMNPQRSTVWXYZ";
1330 // all letters, lowercase
1332 $possible = "abcdefghijklmnopqrstuvwxyz";
1335 // all letters, lowercase + uppercase
1337 $possible = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
1340 // all digits & letters lowercase
1342 $possible = "0123456789abcdefghijklmnopqrstuvwxyz";
1345 // all digits & letters lowercase + uppercase
1347 $possible = "0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
1353 while ($i < $length) {
1354 $str .= substr( $possible, mt_rand( 0, strlen( $possible )-1 ), 1 );
1358 return yourls_apply_filter( 'rnd_string', $str, $length, $type, $charlist );
1362 * Return salted string
1365 function yourls_salt( $string ) {
1366 $salt = defined('YOURLS_COOKIEKEY') ? YOURLS_COOKIEKEY : md5(__FILE__) ;
1367 return yourls_apply_filter( 'yourls_salt', md5 ($string . $salt), $string );
1371 * Add a query var to a URL and return URL. Completely stolen from WP.
1373 * Works with one of these parameter patterns:
1374 * array( 'var' => 'value' )
1375 * array( 'var' => 'value' ), $url
1377 * 'var', 'value', $url
1378 * If $url omitted, uses $_SERVER['REQUEST_URI']
1381 function yourls_add_query_arg() {
1383 if ( is_array( func_get_arg(0) ) ) {
1384 if ( @func_num_args() < 2 || false === @func_get_arg( 1 ) )
1385 $uri = $_SERVER['REQUEST_URI'];
1387 $uri = @func_get_arg( 1 );
1389 if ( @func_num_args() < 3 || false === @func_get_arg( 2 ) )
1390 $uri = $_SERVER['REQUEST_URI'];
1392 $uri = @func_get_arg( 2 );
1395 $uri = str_replace( '&', '&', $uri );
1398 if ( $frag = strstr( $uri, '#' ) )
1399 $uri = substr( $uri, 0, -strlen( $frag ) );
1403 if ( preg_match( '|^https?://|i', $uri, $matches ) ) {
1404 $protocol = $matches[0];
1405 $uri = substr( $uri, strlen( $protocol ) );
1410 if ( strpos( $uri, '?' ) !== false ) {
1411 $parts = explode( '?', $uri, 2 );
1412 if ( 1 == count( $parts ) ) {
1416 $base = $parts[0] . '?';
1419 } elseif ( !empty( $protocol ) || strpos( $uri, '=' ) === false ) {
1427 parse_str( $query, $qs );
1428 $qs = yourls_urlencode_deep( $qs ); // this re-URL-encodes things that were already in the query string
1429 if ( is_array( func_get_arg( 0 ) ) ) {
1430 $kayvees = func_get_arg( 0 );
1431 $qs = array_merge( $qs, $kayvees );
1433 $qs[func_get_arg( 0 )] = func_get_arg( 1 );
1436 foreach ( (array) $qs as $k => $v ) {
1441 $ret = http_build_query( $qs );
1442 $ret = trim( $ret, '?' );
1443 $ret = preg_replace( '#=(&|$)#', '$1', $ret );
1444 $ret = $protocol . $base . $ret . $frag;
1445 $ret = rtrim( $ret, '?' );
1450 * Navigates through an array and encodes the values to be used in a URL. Stolen from WP, used in yourls_add_query_arg()
1453 function yourls_urlencode_deep( $value ) {
1454 $value = is_array( $value ) ? array_map( 'yourls_urlencode_deep', $value ) : urlencode( $value );
1459 * Remove arg from query. Opposite of yourls_add_query_arg. Stolen from WP.
1462 function yourls_remove_query_arg( $key, $query = false ) {
1463 if ( is_array( $key ) ) { // removing multiple keys
1464 foreach ( $key as $k )
1465 $query = yourls_add_query_arg( $k, false, $query );
1468 return yourls_add_query_arg( $key, false, $query );
1472 * Return a time-dependent string for nonce creation
1475 function yourls_tick() {
1476 return ceil( time() / YOURLS_NONCE_LIFE );
1480 * Create a time limited, action limited and user limited token
1483 function yourls_create_nonce( $action, $user = false ) {
1484 if( false == $user )
1485 $user = defined( 'YOURLS_USER' ) ? YOURLS_USER : '-1';
1486 $tick = yourls_tick();
1487 return substr( yourls_salt($tick . $action . $user), 0, 10 );
1491 * Create a nonce field for inclusion into a form
1494 function yourls_nonce_field( $action, $name = 'nonce', $user = false, $echo = true ) {
1495 $field = '<input type="hidden" id="'.$name.'" name="'.$name.'" value="'.yourls_create_nonce( $action, $user ).'" />';
1502 * Add a nonce to a URL. If URL omitted, adds nonce to current URL
1505 function yourls_nonce_url( $action, $url = false, $name = 'nonce', $user = false ) {
1506 $nonce = yourls_create_nonce( $action, $user );
1507 return yourls_add_query_arg( $name, $nonce, $url );
1511 * Check validity of a nonce (ie time span, user and action match).
1513 * Returns true if valid, dies otherwise (yourls_die() or die($return) if defined)
1514 * if $nonce is false or unspecified, it will use $_REQUEST['nonce']
1517 function yourls_verify_nonce( $action, $nonce = false, $user = false, $return = '' ) {
1519 if( false == $user )
1520 $user = defined( 'YOURLS_USER' ) ? YOURLS_USER : '-1';
1522 // get current nonce value
1523 if( false == $nonce && isset( $_REQUEST['nonce'] ) )
1524 $nonce = $_REQUEST['nonce'];
1526 // what nonce should be
1527 $valid = yourls_create_nonce( $action, $user );
1529 if( $nonce == $valid ) {
1534 yourls_die( yourls__( 'Unauthorized action or expired link' ), yourls__( 'Error' ), 403 );
1539 * Converts keyword into short link (prepend with YOURLS base URL)
1542 function yourls_link( $keyword = '' ) {
1543 $link = YOURLS_SITE . '/' . yourls_sanitize_keyword( $keyword );
1544 return yourls_apply_filter( 'yourls_link', $link, $keyword );
1548 * Converts keyword into stat link (prepend with YOURLS base URL, append +)
1551 function yourls_statlink( $keyword = '' ) {
1552 $link = YOURLS_SITE . '/' . yourls_sanitize_keyword( $keyword ) . '+';
1553 if( yourls_is_ssl() )
1554 $link = str_replace( 'http://', 'https://', $link );
1555 return yourls_apply_filter( 'yourls_statlink', $link, $keyword );
1559 * Check if we're in API mode. Returns bool
1562 function yourls_is_API() {
1563 if ( defined( 'YOURLS_API' ) && YOURLS_API == true )
1569 * Check if we're in Ajax mode. Returns bool
1572 function yourls_is_Ajax() {
1573 if ( defined( 'YOURLS_AJAX' ) && YOURLS_AJAX == true )
1579 * Check if we're in GO mode (yourls-go.php). Returns bool
1582 function yourls_is_GO() {
1583 if ( defined( 'YOURLS_GO' ) && YOURLS_GO == true )
1589 * Check if we're displaying stats infos (yourls-infos.php). Returns bool
1592 function yourls_is_infos() {
1593 if ( defined( 'YOURLS_INFOS' ) && YOURLS_INFOS == true )
1599 * Check if we'll need interface display function (ie not API or redirection)
1602 function yourls_has_interface() {
1603 if( yourls_is_API() or yourls_is_GO() )
1609 * Check if we're in the admin area. Returns bool
1612 function yourls_is_admin() {
1613 if ( defined( 'YOURLS_ADMIN' ) && YOURLS_ADMIN == true )
1619 * Check if the server seems to be running on Windows. Not exactly sure how reliable this is.
1622 function yourls_is_windows() {
1623 return defined( 'DIRECTORY_SEPARATOR' ) && DIRECTORY_SEPARATOR == '\\';
1627 * Check if SSL is required. Returns bool.
1630 function yourls_needs_ssl() {
1631 if ( defined('YOURLS_ADMIN_SSL') && YOURLS_ADMIN_SSL == true )
1637 * Return admin link, with SSL preference if applicable.
1640 function yourls_admin_url( $page = '' ) {
1641 $admin = YOURLS_SITE . '/admin/' . $page;
1642 if( yourls_is_ssl() or yourls_needs_ssl() )
1643 $admin = str_replace('http://', 'https://', $admin);
1644 return yourls_apply_filter( 'admin_url', $admin, $page );
1648 * Return YOURLS_SITE or URL under YOURLS setup, with SSL preference
1651 function yourls_site_url( $echo = true, $url = '' ) {
1652 $url = yourls_get_relative_url( $url );
1653 $url = trim( YOURLS_SITE . '/' . $url, '/' );
1655 // Do not enforce (checking yourls_need_ssl() ) but check current usage so it won't force SSL on non-admin pages
1656 if( yourls_is_ssl() )
1657 $url = str_replace( 'http://', 'https://', $url );
1658 $url = yourls_apply_filter( 'site_url', $url );
1665 * Check if SSL is used, returns bool. Stolen from WP.
1668 function yourls_is_ssl() {
1670 if ( isset( $_SERVER['HTTPS'] ) ) {
1671 if ( 'on' == strtolower( $_SERVER['HTTPS'] ) )
1673 if ( '1' == $_SERVER['HTTPS'] )
1675 } elseif ( isset( $_SERVER['SERVER_PORT'] ) && ( '443' == $_SERVER['SERVER_PORT'] ) ) {
1678 return yourls_apply_filter( 'is_ssl', $is_ssl );
1683 * Get a remote page <title>, return a string (either title or url)
1686 function yourls_get_remote_title( $url ) {
1687 // Allow plugins to short-circuit the whole function
1688 $pre = yourls_apply_filter( 'shunt_get_remote_title', false, $url );
1689 if ( false !== $pre )
1692 require_once( YOURLS_INC.'/functions-http.php' );
1694 $url = yourls_sanitize_url( $url );
1696 $title = $charset = false;
1698 $content = yourls_get_remote_content( $url );
1700 // If false, return url as title.
1701 // Todo: improve this with temporary title when shorturl_meta available?
1702 if( false === $content )
1705 if( $content !== false ) {
1707 if ( preg_match('/<title>(.*?)<\/title>/is', $content, $found ) ) {
1713 // <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
1714 if ( preg_match('/<meta[^>]*?charset=([^>]*?)\/?>/is', $content, $found ) ) {
1715 $charset = trim($found[1], '"\' ');
1720 // if title not found, guess if returned content was actually an error message
1721 if( $title == false && strpos( $content, 'Error' ) === 0 ) {
1725 if( $title == false )
1729 if( !yourls_seems_utf8( $title ) )
1730 $title = utf8_encode( $title );
1733 // Charset conversion. We use @ to remove warnings (mb_ functions are easily bitching about illegal chars)
1734 if( function_exists( 'mb_convert_encoding' ) ) {
1736 $title = @mb_convert_encoding( $title, 'UTF-8', $charset );
1738 $title = @mb_convert_encoding( $title, 'UTF-8' );
1742 // Remove HTML entities
1743 $title = html_entity_decode( $title, ENT_QUOTES, 'UTF-8' );
1745 // Strip out evil things
1746 $title = yourls_sanitize_title( $title );
1748 return yourls_apply_filter( 'get_remote_title', $title, $url );
1752 * Quick UA check for mobile devices. Return boolean.
1755 function yourls_is_mobile_device() {
1758 'android', 'blackberry', 'blazer',
1759 'compal', 'elaine', 'fennec', 'hiptop',
1760 'iemobile', 'iphone', 'ipod', 'ipad',
1761 'iris', 'kindle', 'opera mobi', 'opera mini',
1762 'palm', 'phone', 'pocket', 'psp', 'symbian',
1763 'treo', 'wap', 'windows ce', 'windows phone'
1766 // Current user-agent
1767 $current = strtolower( $_SERVER['HTTP_USER_AGENT'] );
1770 $is_mobile = ( str_replace( $mobiles, '', $current ) != $current );
1771 return yourls_apply_filter( 'is_mobile_device', $is_mobile );
1775 * Get request in YOURLS base (eg in 'http://site.com/yourls/abcd' get 'abdc')
1778 function yourls_get_request() {
1779 // Allow plugins to short-circuit the whole function
1780 $pre = yourls_apply_filter( 'shunt_get_request', false );
1781 if ( false !== $pre )
1784 static $request = null;
1786 yourls_do_action( 'pre_get_request', $request );
1788 if( $request !== null )
1791 // Ignore protocol & www. prefix
1792 $root = str_replace( array( 'https://', 'http://', 'https://www.', 'http://www.' ), '', YOURLS_SITE );
1793 // Case insensitive comparison of the YOURLS root to match both http://Sho.rt/blah and http://sho.rt/blah
1794 $request = preg_replace( "!$root/!i", '', $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'], 1 );
1796 // Unless request looks like a full URL (ie request is a simple keyword) strip query string
1797 if( !preg_match( "@^[a-zA-Z]+://.+@", $request ) ) {
1798 $request = current( explode( '?', $request ) );
1801 return yourls_apply_filter( 'get_request', $request );
1805 * Change protocol to match current scheme used (http or https)
1808 function yourls_match_current_protocol( $url, $normal = 'http', $ssl = 'https' ) {
1809 if( yourls_is_ssl() )
1810 $url = str_replace( $normal, $ssl, $url );
1811 return yourls_apply_filter( 'match_current_protocol', $url );
1815 * Fix $_SERVER['REQUEST_URI'] variable for various setups. Stolen from WP.
1818 function yourls_fix_request_uri() {
1820 $default_server_values = array(
1821 'SERVER_SOFTWARE' => '',
1822 'REQUEST_URI' => '',
1824 $_SERVER = array_merge( $default_server_values, $_SERVER );
1826 // Fix for IIS when running with PHP ISAPI
1827 if ( empty( $_SERVER['REQUEST_URI'] ) || ( php_sapi_name() != 'cgi-fcgi' && preg_match( '/^Microsoft-IIS\//', $_SERVER['SERVER_SOFTWARE'] ) ) ) {
1830 if ( isset( $_SERVER['HTTP_X_ORIGINAL_URL'] ) ) {
1831 $_SERVER['REQUEST_URI'] = $_SERVER['HTTP_X_ORIGINAL_URL'];
1833 // IIS Isapi_Rewrite
1834 else if ( isset( $_SERVER['HTTP_X_REWRITE_URL'] ) ) {
1835 $_SERVER['REQUEST_URI'] = $_SERVER['HTTP_X_REWRITE_URL'];
1837 // Use ORIG_PATH_INFO if there is no PATH_INFO
1838 if ( !isset( $_SERVER['PATH_INFO'] ) && isset( $_SERVER['ORIG_PATH_INFO'] ) )
1839 $_SERVER['PATH_INFO'] = $_SERVER['ORIG_PATH_INFO'];
1841 // Some IIS + PHP configurations puts the script-name in the path-info (No need to append it twice)
1842 if ( isset( $_SERVER['PATH_INFO'] ) ) {
1843 if ( $_SERVER['PATH_INFO'] == $_SERVER['SCRIPT_NAME'] )
1844 $_SERVER['REQUEST_URI'] = $_SERVER['PATH_INFO'];
1846 $_SERVER['REQUEST_URI'] = $_SERVER['SCRIPT_NAME'] . $_SERVER['PATH_INFO'];
1849 // Append the query string if it exists and isn't null
1850 if ( ! empty( $_SERVER['QUERY_STRING'] ) ) {
1851 $_SERVER['REQUEST_URI'] .= '?' . $_SERVER['QUERY_STRING'];
1858 * Shutdown function, runs just before PHP shuts down execution. Stolen from WP
1861 function yourls_shutdown() {
1862 yourls_do_action( 'shutdown' );
1866 * Auto detect custom favicon in /user directory, fallback to YOURLS favicon, and echo/return its URL
1869 function yourls_favicon( $echo = true ) {
1870 static $favicon = null;
1871 if( $favicon !== null )
1875 // search for favicon.(gif|ico|png|jpg|svg)
1876 foreach( array( 'gif', 'ico', 'png', 'jpg', 'svg' ) as $ext ) {
1877 if( file_exists( YOURLS_USERDIR. '/favicon.' . $ext ) ) {
1878 $custom = 'favicon.' . $ext;
1884 $favicon = yourls_site_url( false, YOURLS_USERURL . '/' . $custom );
1886 $favicon = yourls_site_url( false ) . '/images/favicon.gif';
1894 * Check for maintenance mode. If yes, die. See yourls_maintenance_mode(). Stolen from WP.
1897 function yourls_check_maintenance_mode() {
1899 $file = YOURLS_ABSPATH . '/.maintenance' ;
1900 if ( !file_exists( $file ) || yourls_is_upgrading() || yourls_is_installing() )
1903 global $maintenance_start;
1906 // If the $maintenance_start timestamp is older than 10 minutes, don't die.
1907 if ( ( time() - $maintenance_start ) >= 600 )
1910 // Use any /user/maintenance.php file
1911 if( file_exists( YOURLS_USERDIR.'/maintenance.php' ) ) {
1912 include( YOURLS_USERDIR.'/maintenance.php' );
1916 // https://www.youtube.com/watch?v=Xw-m4jEY-Ns
1917 $title = yourls__( 'Service temporarily unavailable' );
1918 $message = yourls__( 'Our service is currently undergoing scheduled maintenance.' ) . "</p>\n<p>" .
1919 yourls__( 'Things should not last very long, thank you for your patience and please excuse the inconvenience' );
1920 yourls_die( $message, $title , 503 );
1925 * Return current admin page, or null if not an admin page
1927 * @return mixed string if admin page, null if not an admin page
1930 function yourls_current_admin_page() {
1931 if( yourls_is_admin() ) {
1932 $current = substr( yourls_get_request(), 6 );
1933 if( $current === false )
1934 $current = 'index.php'; // if current page is http://sho.rt/admin/ instead of http://sho.rt/admin/index.php
1942 * Check if a URL protocol is allowed
1944 * Checks a URL against a list of whitelisted protocols. Protocols must be defined with
1945 * their complete scheme name, ie 'stuff:' or 'stuff://' (for instance, 'mailto:' is a valid
1946 * protocol, 'mailto://' isn't, and 'http:' with no double slashed isn't either
1950 * @param string $url URL to be check
1951 * @param array $protocols Optional. Array of protocols, defaults to global $yourls_allowedprotocols
1952 * @return boolean true if protocol allowed, false otherwise
1954 function yourls_is_allowed_protocol( $url, $protocols = array() ) {
1955 if( ! $protocols ) {
1956 global $yourls_allowedprotocols;
1957 $protocols = $yourls_allowedprotocols;
1960 $protocol = yourls_get_protocol( $url );
1961 return yourls_apply_filter( 'is_allowed_protocol', in_array( $protocol, $protocols ), $url, $protocols );
1965 * Get protocol from a URL (eg mailto:, http:// ...)
1969 * @param string $url URL to be check
1970 * @return string Protocol, with slash slash if applicable. Empty string if no protocol
1972 function yourls_get_protocol( $url ) {
1973 preg_match( '!^[a-zA-Z0-9\+\.-]+:(//)?!', $url, $matches );
1975 http://en.wikipedia.org/wiki/URI_scheme#Generic_syntax
1976 The scheme name consists of a sequence of characters beginning with a letter and followed by any
1977 combination of letters, digits, plus ("+"), period ("."), or hyphen ("-"). Although schemes are
1978 case-insensitive, the canonical form is lowercase and documents that specify schemes must do so
1979 with lowercase letters. It is followed by a colon (":").
1981 $protocol = ( isset( $matches[0] ) ? $matches[0] : '' );
1982 return yourls_apply_filter( 'get_protocol', $protocol, $url );
1986 * Get relative URL (eg 'abc' from 'http://sho.rt/abc')
1988 * Treat indifferently http & https. If a URL isn't relative to the YOURLS install, return it as is
1989 * or return empty string if $strict is true
1992 * @param string $url URL to relativize
1993 * @param bool $strict if true and if URL isn't relative to YOURLS install, return empty string
1994 * @return string URL
1996 function yourls_get_relative_url( $url, $strict = true ) {
1997 $url = yourls_sanitize_url( $url );
1999 // Remove protocols to make it easier
2000 $noproto_url = str_replace( 'https:', 'http:', $url );
2001 $noproto_site = str_replace( 'https:', 'http:', YOURLS_SITE );
2003 // Trim URL from YOURLS root URL : if no modification made, URL wasn't relative
2004 $_url = str_replace( $noproto_site . '/', '', $noproto_url );
2005 if( $_url == $noproto_url )
2006 $_url = ( $strict ? '' : $url );
2008 return yourls_apply_filter( 'get_relative_url', $_url, $url );
2012 * Marks a function as deprecated and informs when it has been used. Stolen from WP.
2014 * There is a hook deprecated_function that will be called that can be used
2015 * to get the backtrace up to what file and function called the deprecated
2018 * The current behavior is to trigger a user error if YOURLS_DEBUG is true.
2020 * This function is to be used in every function that is deprecated.
2023 * @uses yourls_do_action() Calls 'deprecated_function' and passes the function name, what to use instead,
2024 * and the version the function was deprecated in.
2025 * @uses yourls_apply_filters() Calls 'deprecated_function_trigger_error' and expects boolean value of true to do
2026 * trigger or false to not trigger error.
2028 * @param string $function The function that was called
2029 * @param string $version The version of WordPress that deprecated the function
2030 * @param string $replacement Optional. The function that should have been called
2032 function yourls_deprecated_function( $function, $version, $replacement = null ) {
2034 yourls_do_action( 'deprecated_function', $function, $replacement, $version );
2036 // Allow plugin to filter the output error trigger
2037 if ( YOURLS_DEBUG && yourls_apply_filters( 'deprecated_function_trigger_error', true ) ) {
2038 if ( ! is_null( $replacement ) )
2039 trigger_error( sprintf( yourls__('%1$s is <strong>deprecated</strong> since version %2$s! Use %3$s instead.'), $function, $version, $replacement ) );
2041 trigger_error( sprintf( yourls__('%1$s is <strong>deprecated</strong> since version %2$s with no alternative available.'), $function, $version ) );
2046 * Return the value if not an empty string
2048 * Used with array_filter(), to remove empty keys but not keys with value 0 or false
2051 * @param mixed $val Value to test against ''
2052 * @return bool True if not an empty string
2054 function yourls_return_if_not_empty_string( $val ) {
2055 return( $val !== '' );