uwuzu version 1.2.24

2026-06-05 03:24:41 +00:00 · 2023-10-04 00:30:38 +09:00
parent e8ddcb9921
commit 0ecf4b9fb1
41 changed files with 2000 additions and 429 deletions
@@ -0,0 +1,94 @@
+<?php
+$activitypub_file = "../../server/activitypub.txt";
+if(file_get_contents($activitypub_file) === "true"){
+        
+    header("Content-Type: application/json; charset=utf-8");
+
+    $domain = $_SERVER['HTTP_HOST'];
+
+    require('../../db.php');
+
+    // データベースに接続
+    try {
+        $option = array(
+            PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION,
+            PDO::MYSQL_ATTR_MULTI_STATEMENTS => false
+        );
+        $pdo = new PDO('mysql:charset=utf8mb4;dbname=' . DB_NAME . ';host=' . DB_HOST, DB_USER, DB_PASS, $option);
+    } catch (PDOException $e) {
+        // 接続エラーのときエラー内容を取得する
+        $error_message[] = $e->getMessage();
+    }
+
+    $ueuse = htmlentities($_GET['ueuse']);
+
+    if( !empty($pdo) ) {
+            
+        $dbh = new PDO('mysql:charset=utf8mb4;dbname='.DB_NAME.';host='.DB_HOST, DB_USER, DB_PASS, array(
+            PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION,
+            PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
+            PDO::MYSQL_ATTR_USE_BUFFERED_QUERY => true,
+        ));
+
+        $messageQuery = $dbh->prepare("SELECT * FROM ueuse WHERE uniqid = :ueuse limit 1");
+        $messageQuery->bindValue(':ueuse', $ueuse);
+        $messageQuery->execute();
+        $message_array = $messageQuery->fetchAll();
+        
+        $messages = array();
+        foreach ($message_array as $row) {
+            $messages[] = $row;
+        }
+    }
+
+    if (!empty($messages)) {
+        $orderedItems = array();
+    
+        foreach ($messages as $value) {
+            if ($value["nsfw"] === "true") {
+                $value["sensitive"] = true;
+            } else {
+                $value["sensitive"] = false;
+            }
+            $orderedItem = array(
+                "@context" => "https://www.w3.org/ns/activitystreams",
+                "id" => "https://" . $domain . "/ueuse/activity/?ueuse=" . $value["uniqid"],
+                "actor" => "https://" . $domain . "/actor/?actor=@" . $value["account"],
+                "type" => "Create",
+                "published" => date(DATE_ATOM, strtotime($value["datetime"])),
+                "to" => [
+                    "https://" . $domain . "/followers",
+                    "https://www.w3.org/ns/activitystreams#Public",
+                ],
+                "object" => array(
+                    "type" => "Note",
+                    "@context" => "https://www.w3.org/ns/activitystreams",
+                    "id" => "https://" . $domain . "/ueuse/activity/?ueuse=" . $value["uniqid"],
+                    "url" => "https://" . $domain . "/ueuse/activity/?ueuse=" . $value["uniqid"],
+                    "published" => date(DATE_ATOM, strtotime($value["datetime"])),
+                    "to" => [
+                        "https://" . $domain . "/followers",
+                        "https://www.w3.org/ns/activitystreams#Public",
+                    ],
+                    "attributedTo" => "https://" . $domain . "/@" . $value["account"],
+                    "content" => nl2br($value["ueuse"]),
+                    "inReplyTo" => null,
+                    "attachment" => [],
+                    "sensitive" => $value["sensitive"],
+                    "tag" => [],
+                ),
+            );
+    
+            $orderedItems[] = $orderedItem;
+        }
+    
+        echo json_encode($orderedItems, JSON_UNESCAPED_UNICODE);
+    } else {
+        $item = array(
+            "type" => "item_not_found",
+        );
+        echo json_encode($item, JSON_UNESCAPED_UNICODE);
+    }
+    
+}
+?>
@@ -53,7 +53,7 @@ try {

 if(isset($_SESSION['admin_login']) && $_SESSION['admin_login'] === true) {

-	$passQuery = $pdo->prepare("SELECT username,userid,loginid,admin,role,sacinfo FROM account WHERE userid = :userid");
+	$passQuery = $pdo->prepare("SELECT username,userid,loginid,admin,role,sacinfo,blocklist FROM account WHERE userid = :userid");
 	$passQuery->bindValue(':userid', htmlentities($_SESSION['userid']));
 	$passQuery->execute();
 	$res = $passQuery->fetch();
@@ -67,6 +67,7 @@ if(isset($_SESSION['admin_login']) && $_SESSION['admin_login'] === true) {
 	$loginid = htmlentities($res["loginid"]);
 	$role = htmlentities($res["role"]);
 	$sacinfo = htmlentities($res["sacinfo"]);
+	$myblocklist = htmlentities($res["blocklist"]);
 	$_SESSION['admin_login'] = true;
 	$_SESSION['userid'] = $userid;
 	$_SESSION['username'] = $username;
@@ -99,7 +100,7 @@ if(isset($_SESSION['admin_login']) && $_SESSION['admin_login'] === true) {
 		
 } elseif (isset($_COOKIE['admin_login']) && $_COOKIE['admin_login'] == true) {

-	$passQuery = $pdo->prepare("SELECT username,userid,loginid,admin,role,sacinfo FROM account WHERE userid = :userid");
+	$passQuery = $pdo->prepare("SELECT username,userid,loginid,admin,role,sacinfo,blocklist FROM account WHERE userid = :userid");
 	$passQuery->bindValue(':userid', htmlentities($_COOKIE['userid']));
 	$passQuery->execute();
 	$res = $passQuery->fetch();
@@ -113,6 +114,7 @@ if(isset($_SESSION['admin_login']) && $_SESSION['admin_login'] === true) {
 	$loginid = htmlentities($res["loginid"]);
 	$role = htmlentities($res["role"]);
 	$sacinfo = htmlentities($res["sacinfo"]);
+	$myblocklist = htmlentities($res["blocklist"]);
 	$_SESSION['admin_login'] = true;
 	$_SESSION['userid'] = $userid;
 	$_SESSION['username'] = $username;
@@ -155,7 +157,7 @@ if(empty($userid)){
 if(empty($username)){
 	header("Location: ../login.php");
 	exit;
-} 
+}  
 $notiQuery = $pdo->prepare("SELECT COUNT(*) as notification_count FROM notification WHERE touserid = :userid AND userchk = 'none'");
 $notiQuery->bindValue(':userid', $userid);
 $notiQuery->execute();
@@ -413,39 +415,42 @@ if( !empty($_POST['btn_submit']) ) {
 				$mentionedUsers = get_mentions_userid($ueuse);

 				foreach ($mentionedUsers as $mentionedUser) {
+					
+					if(!($mentionedUser === $userid)){
 				
-					$pdo->beginTransaction();
+						$pdo->beginTransaction();

-					try {
-						$touserid = $mentionedUser;
-						$datetime = date("Y-m-d H:i:s");
-						$msg = "" . $ueuse . "";
-						$title = "" . $username . "さんにメンションされました！";
-						$url = "/!" . $uniqid . "~" . $userid . "";
-						$userchk = 'none';
+						try {
+							$touserid = $mentionedUser;
+							$datetime = date("Y-m-d H:i:s");
+							$msg = "" . $ueuse . "";
+							$title = "" . $username . "さんにメンションされました！";
+							$url = "/!" . $uniqid . "~" . $userid . "";
+							$userchk = 'none';

-						// 通知用SQL作成
-						$stmt = $pdo->prepare("INSERT INTO notification (touserid, msg, url, datetime, userchk, title) VALUES (:touserid, :msg, :url, :datetime, :userchk, :title)");
+							// 通知用SQL作成
+							$stmt = $pdo->prepare("INSERT INTO notification (touserid, msg, url, datetime, userchk, title) VALUES (:touserid, :msg, :url, :datetime, :userchk, :title)");


-						$stmt->bindParam(':touserid', $touserid, PDO::PARAM_STR);
-						$stmt->bindParam(':msg', $msg, PDO::PARAM_STR);
-						$stmt->bindParam(':url', $url, PDO::PARAM_STR);
-						$stmt->bindParam(':userchk', $userchk, PDO::PARAM_STR);
-						$stmt->bindParam(':title', $title, PDO::PARAM_STR);
+							$stmt->bindParam(':touserid', $touserid, PDO::PARAM_STR);
+							$stmt->bindParam(':msg', $msg, PDO::PARAM_STR);
+							$stmt->bindParam(':url', $url, PDO::PARAM_STR);
+							$stmt->bindParam(':userchk', $userchk, PDO::PARAM_STR);
+							$stmt->bindParam(':title', $title, PDO::PARAM_STR);

-						$stmt->bindParam(':datetime', $datetime, PDO::PARAM_STR);
+							$stmt->bindParam(':datetime', $datetime, PDO::PARAM_STR);

-						// SQLクエリの実行
-						$res = $stmt->execute();
+							// SQLクエリの実行
+							$res = $stmt->execute();

-						// コミット
-						$res = $pdo->commit();
+							// コミット
+							$res = $pdo->commit();

-					} catch(Exception $e) {
+						} catch(Exception $e) {

-						// エラーが発生した時はロールバック
-						$pdo->rollBack();
+							// エラーが発生した時はロールバック
+							$pdo->rollBack();
+						}
 					}
 			
 				}