<?php
    // TigerWiki 2 (Version 2.14 - 2006-05-03)
    // Copyleft (C) Arsenic 2005-2006, licence GNU/GPL (disponible sur www.gnu.org)
    // http://chabel.org/ - root chez chabel point org
   
// Configuration du mot de passe
	$PASSWORD			=	"";
// Nom de ce fichier
    $NAMEFILE           =   "index.php";
// Paramètres divers
    $TIME_FORMAT		=	"%Y/%m/%d %R";
    $LOCAL_HOUR			=	"-6";
	$PAGES_DIR			= 	"pages/";
	$BACKUP_DIR			=	"historique/";
// Variables de configuration de langues
    $WIKI_TITLE			=	"TigerWiki 2";
    $START_PAGE			=	"Accueil";
    $HOME_BUTTON		=	"Accueil";
    $HELP_BUTTON		=	"Aide";
    $DEFAULT_CONTENT	=	"La page ". $_GET["page"]." est vide.";
    $EDIT_BUTTON		=	"&Eacute;diter";
    $DONE_BUTTON		=	"Enregistrer";
    $PROTECTED_BUTTON 	=	"Page verrouill&eacute;e";
    $SEARCH_BUTTON		=	"Rechercher";
    $SEARCH_RESULTS		=	"R&eacute;sultats de recherche pour";
	$LIST				=	"Liste des pages";
    $RECENT_CHANGES		=	"Changements r&eacute;cents";
	$LAST_CHANGES		=	"Derni&egrave;re modification";
	$HISTORY_BUTTON		=	"Historique";
	$NO_HISTORY			=	"Aucun historique existant.";
	$RESTORE            =   "Restaurer";
	$ANONYMOUS          =   "-Anonyme-";
	$MDP                =   "Mot de passe";
	$ERROR				=	$MDP." sp&eacute;cifi&eacute; incorrect.";
	$ERASE_COOKIE       =   "Eff. cookie";
// Trouver la page à afficher
    if (! $PAGE_TITLE = stripslashes($_GET["page"])) {
        if ($_GET["action"] == "search")
			if ($_GET["query"] != "")
				$PAGE_TITLE = "$SEARCH_RESULTS \"$_GET[query]\"";
			else
				$PAGE_TITLE = $LIST;
        elseif ($_GET["action"] == "recent")
            $PAGE_TITLE = "$RECENT_CHANGES";
        else
            $PAGE_TITLE = "$START_PAGE";
    }
    $action = $_GET["action"];
    $gtime = $_GET["time"];
    $datetw = date("Y/m/d H:i", mktime(date("H") + $LOCAL_HOUR));
// Arrêter les accès malicieux via répertoire
    if (preg_match("/\//", $PAGE_TITLE))
		$PAGE_TITLE = $START_PAGE;
    if (preg_match("/\//", $gtime))
		$gtime = '';
// Écrire les modifications, s'il y a lieu
   	if ($_POST["content"] != "") {
		if ($_SERVER["REQUEST_METHOD"] == "POST") {	
			if ($_POST["sc"] == $PASSWORD || $_COOKIE['AutorisationTigerWiki'] == md5($PASSWORD)) {
			    setcookie('AutorisationTigerWiki', md5($PASSWORD), time() + 365*24*3600);
				if (! $file = @fopen($PAGES_DIR . stripslashes($_POST["page"]) . ".txt", "w"))
					die("Could not write page!");
				if (get_magic_quotes_gpc())
					fputs($file, trim(stripslashes($_POST["content"])));
				else
					fputs($file, trim($_POST["content"]));	    
				fclose($file);        
				if ($BACKUP_DIR <> '') {
					$complete_dir_s = $BACKUP_DIR . $_POST["page"] . "/";
                    if (! $dir = @opendir($complete_dir_s))
						mkdir($complete_dir_s);
                    if (! $file = @fopen($complete_dir_s . date("Ymd-Hi", mktime(date("H") + $LOCAL_HOUR)) . ".bak", "a"))
                        die("Could not write backup of page!");
                     fputs($file, "\n// " . $datetw . " / " . " " . $_SERVER['REMOTE_ADDR'] . "\n");
                    if (get_magic_quotes_gpc())
                         fputs($file, trim(stripslashes($_POST["content"])));
                    else
                         fputs($file, trim($_POST["content"]) . "\n\n");            
                     fclose($file);
				}
				header("location: ".$NAMEFILE."?page=" . stripslashes($_POST[page]));
			}
			else { header("location: ".$NAMEFILE."?page=" . $_POST[page]."&action=edit&error=1"); }
	}
	}
	elseif (isset($_POST["content"]) && $_POST["content"] == "") {
	    if ($_POST["sc"] == $PASSWORD || $_COOKIE['AutorisationTigerWiki'] == md5($PASSWORD)) {
	        setcookie('AutorisationTigerWiki', md5($PASSWORD), time() + 365*24*3600);
	        unlink($PAGES_DIR . stripslashes($_POST["page"]) . ".txt");
	    }
	    else
	        header("location: ".$NAMEFILE."?page=".$_POST["page"]."&action=edit&error=1");
    }
// Lecture et analyse du modèle de page
    if (! $file = @fopen("template.html", "r"))
        die("'template.html' is missing!");
    $template = fread($file, filesize("template.html"));
    fclose($file);
// Lecture du contenu et de la date de modification de la page
    if (($file = @fopen($PAGES_DIR . $PAGE_TITLE . ".txt", "r")) || $action <> "") {
        if (file_exists($PAGES_DIR . $PAGE_TITLE . ".txt"))
            $TIME = date("Y/m/d H:i", @filemtime($PAGES_DIR . $PAGE_TITLE . ".txt") + $LOCAL_HOUR * 3600);
    $CONTENT = "\n" . @fread($file, @filesize($PAGES_DIR . $PAGE_TITLE . ".txt")) . "\n";
        // Restaurer une page
        if (isset($_GET["page"]) && isset($gtime) && $_GET["restore"] == 1)
            if ($file = @fopen($BACKUP_DIR . $PAGE_TITLE . "/" . $gtime, "r"))
                $CONTENT = "\n" . @fread($file, @filesize($BACKUP_DIR . $PAGE_TITLE . "/" . $gtime)) . "\n";
        @fclose($file);
		$CONTENT = preg_replace("/\\$/Umsi", "&#036;", $CONTENT);
		$CONTENT = preg_replace("/\\\/Umsi", "&#092;", $CONTENT);
    }
    else {
        if (!file_exists($PAGES_DIR . $PAGE_TITLE . ".txt"))
            $CONTENT = "\n" . $DEFAULT_CONTENT;
        else
            $action = "edit";
    }
// Déterminer le mode d'accès
    if ($action == "edit" || $action == "search" || $action == "recent")
        $html = preg_replace('/{EDIT}/', $EDIT_BUTTON, $template);
    elseif (is_writable($PAGES_DIR . $PAGE_TITLE . ".txt") || !file_exists($PAGES_DIR . $PAGE_TITLE . ".txt"))
        $html = preg_replace('/{EDIT}/', "<a href=\"".$NAMEFILE."?page=".$_GET["page"]."&amp;action=edit\" accesskey=\"5\">$EDIT_BUTTON</a>", $template);
    else
        $html = preg_replace('/{EDIT}/', $PROTECTED_BUTTON, $template);
    if ($action == "recent")
        $html = preg_replace('/{RECENT_CHANGES}/', $RECENT_CHANGES, $html);
    else
        $html = preg_replace('/{RECENT_CHANGES}/', "<a href=\"".$NAMEFILE."?action=recent\" accesskey=\"3\">$RECENT_CHANGES</a>", $html);
// Remplacer les variables par des valeurs (dans le style de page)
    $html = preg_replace('/{PAGE_TITLE_BRUT}/', $PAGE_TITLE, $html);
    if ($action != "" && $action != "recent" && $action != "search")
	   $html = preg_replace('/{PAGE_TITLE}/', "<a href=\"".$NAMEFILE."?page=".$PAGE_TITLE."\">".$PAGE_TITLE."</a>", $html);
	else
	    $html = preg_replace('/{PAGE_TITLE}/', $PAGE_TITLE, $html);
    if ($PAGE_TITLE == $START_PAGE && $action <> "search")
        $html = preg_replace('/{HOME}/', $HOME_BUTTON, $html);
    else
        $html = preg_replace('/{HOME}/', "<a href=\"".$NAMEFILE."?page=".$START_PAGE."\" accesskey=\"1\">$HOME_BUTTON</a>", $html);
    $html = preg_replace('/{WIKI_TITLE}/', $WIKI_TITLE, $html);
    $html = preg_replace('/{LAST_CHANGE}/', $LAST_CHANGES." :", $html);
    if ($PAGE_TITLE == $HELP_BUTTON)
	    $html = preg_replace('/{HELP}/', $HELP_BUTTON, $html);    
    else
	    $html = preg_replace('/{HELP}/', "<a href=\"".$NAMEFILE."?page=$HELP_BUTTON\" accesskey=\"2\">$HELP_BUTTON</a>", $html);
    $html = preg_replace('/{SEARCH}/', "<form method=\"get\" action=\"".$NAMEFILE."?page=".$_GET[page]."\"><input type=\"hidden\" name=\"action\" value=\"search\" /><input type=\"text\" name=\"query\" value=\"$_GET[query]\" /> <input type=\"submit\" value=\"$SEARCH_BUTTON\" accesskey=\"q\" /></form>", $html);
    if ($action == "edit") {
        $html = preg_replace('/{HISTORY}/', "/ <a href=\"?page=".$PAGE_TITLE."&action=history\" accesskey=\"6\">".$HISTORY_BUTTON."</a><br />", $html);
        $CONTENT = "<form method=\"post\" action=\"".$NAMEFILE."\"><textarea name=\"content\" cols=\"83\" rows=\"30\" style=\"width: 100%;\">$CONTENT</textarea><input type=\"hidden\" name=\"page\" value=\"".$_GET[page]."\" /><br /><p align=\"right\">";
        if ($PASSWORD != "" && $_COOKIE['AutorisationTigerWiki'] != md5($PASSWORD))
            $CONTENT .= $MDP." : <input type=\"password\" name=\"sc\">";
        $CONTENT .= " <input type=\"submit\" value=\"$DONE_BUTTON\" accesskey=\"s\" /></p></form>";
	}
	elseif ($action != "history")
    	$html = preg_replace('/{HISTORY}/', "", $html);
// Liste des versions historiques d'une page
    if ($action == "history" && !isset($gtime)) {
    	$html = preg_replace('/{HISTORY}/', "/ ".$HISTORY_BUTTON, $html);
		$complete_dir = $BACKUP_DIR . $_GET["page"] . "/";
    	if ($opening_dir = @opendir($complete_dir)) {
        	while (false !== ($filename = @readdir($opening_dir)))
        		$files[] = $filename;
        	sort ($files);
           	for($cptfiles = 2; $files[$cptfiles] != ''; $cptfiles++)
        	    $affichage = $affichage."<a href=\"?page=".$_GET["page"]."&action=history&time=".$files[$cptfiles]."\">".$files[$cptfiles]."</a><br />";
        	$html = preg_replace('/{CONTENT}/', $affichage, $html);
        }
        else
        	$html = preg_replace('/{CONTENT}/', $NO_HISTORY, $html);
    }
// Affichage d'un fichier historique
	if ($action == "history" && isset($gtime)) {
	    $complete_dir = $BACKUP_DIR . $PAGE_TITLE . "/";
	    if ($file = @fopen($BACKUP_DIR . $PAGE_TITLE . "/" . $gtime, "r")) {
    	    $html = preg_replace('/{HISTORY}/', "/ <a href=\"?page=".$PAGE_TITLE."&action=history\">".$HISTORY_BUTTON."</a> (<a href=\"?page=".$PAGE_TITLE."&action=edit&time=".$gtime."&restore=1\">".$RESTORE."</a>)", $html);
            $CONTENT = @fread($file, @filesize($complete_dir . $gtime)) . "\n";
      	}
      	else
    	    $html = preg_replace('/{HISTORY}/', "/ <a href=\"?page=".$PAGE_TITLE."&action=history\">".$HISTORY_BUTTON."</a> (-)", $html);
    }
// Erreur du mot de passe
	if ($_GET['error'] == 1)
		$html = preg_replace('/{ERROR}/', $ERROR, $html);
	else
		$html = preg_replace('/{ERROR}/', "", $html);
// Effacement du cookie
    if ($_GET['erasecookie'] == 1)
        setcookie('AutorisationTigerWiki');
// Page de recherche
    if ($action == "search") {
        $dir = opendir(getcwd() . "/$PAGES_DIR");
        while ($file = readdir($dir)) {
            if (preg_match("/.txt/", $file)) {
                $handle = fopen($PAGES_DIR . $file, "r");
                @$content = fread($handle, filesize($PAGES_DIR . $file));
                fclose($handle);
                if (preg_match("/$_GET[query]/i", $content) || preg_match("/$_GET[query]/i", "$PAGES_DIR/$file")) {
                    $file = substr($file, 0, strlen($file) - 4);
                    $CONTENT .= "<a href=\"".$NAMEFILE."?page=$file\">$file</a><br />";
                }
            }
        }
    }
// Changements récents
    elseif ($action == "recent") {
        $dir = opendir(getcwd() . "/$PAGES_DIR");
        while ($file = readdir($dir))
            if (preg_match("/.txt/", $file))
                $filetime[$file] = filemtime($PAGES_DIR . $file);
        arsort($filetime);
        $filetime = array_slice($filetime, 0, 10);
        foreach ($filetime as $filename => $timestamp) {
            $filename = substr($filename, 0, strlen($filename) - 4);
            $CONTENT .= "<a href=\"".$NAMEFILE."?page=$filename\">$filename</a> (" . strftime("$TIME_FORMAT", $timestamp + $LOCAL_HOUR * 3600) . ")<br />";
        }
    }
// Formatage de page
    elseif ($action <> "edit") {
        if (preg_match("/%html%\s/", $CONTENT))     
            $CONTENT = preg_replace("/%html%\s/", "", $CONTENT);
        else {
            $CONTENT = htmlentities($CONTENT);
    		$CONTENT = preg_replace("/&amp;#036;/Umsi", "&#036;", $CONTENT);
    		$CONTENT = preg_replace("/&amp;#092;/Umsi", "&#092;", $CONTENT);
    		$CONTENT = preg_replace("/\^(.)/Umsie", "'&#'.ord('\\1').';'", $CONTENT);
    		$CONTENT = preg_replace('#\[(.+)\|([0-9a-zA-Z\.\'\s\#/~\-_%=\?\&amp;,\+]*)\]#U', '<a href="$2" class="url">$1</a>', $CONTENT);
    		$CONTENT = preg_replace('#\[(.+)\|h(ttps?://[0-9a-zA-Z\.\#/~\-_%=\?\&amp;,\+]*)\]#U', '<a href="xx$2" class="url">$1</a>', $CONTENT);
    		$CONTENT = preg_replace('#\[([0-9a-zA-Z\.\&amp;\#\:/~\-_%=?]*\.(jpg|gif|png))\]#i', '<img src="$1" />', $CONTENT);
    		$CONTENT = preg_replace('#h(ttps?://[0-9a-zA-Z\.\&amp;\#\:/~\-_%=?]*\.(jpg|gif|png))#i', '<img src="xx$1" />', $CONTENT);
    		$CONTENT = preg_replace('#(https?://[0-9a-zA-Z\.\&amp;\#\:/~\-_%=?]*)#i', '<a href="$0" class="url">$1</a>', $CONTENT);
    		$CONTENT = preg_replace('#xxttp#', 'http', $CONTENT);
    		preg_match_all("/\[([^\/]+)\]/U", $CONTENT, $matches, PREG_PATTERN_ORDER); //Pour bloquer les liens accentués : "/\[([0-9a-zA-Z\- :\.,\(\)\']+)\]/U"
    		foreach ($matches[1] as $match)
    			if (file_exists(html_entity_decode($PAGES_DIR."$match.txt")))
    				$CONTENT = str_replace("[$match]", "<a href=\"".$NAMEFILE."?page=".$match."\">$match</a>", $CONTENT);
    			else
    				$CONTENT = str_replace("[$match]", "<a class=\"pending\" href=\"".$NAMEFILE."?page=".$match."\">$match</a>", $CONTENT);
    		$CONTENT = preg_replace('#([0-9a-zA-Z\./~\-_]+@[0-9a-z\./~\-_]+)#i', '<a href="mailto:$0">$0</a>', $CONTENT);
            $CONTENT = preg_replace('/^\*\*\*(.*)(\n)/Um', "<ul><ul><ul><li>$1</li></ul></ul></ul>$2", $CONTENT);
            $CONTENT = preg_replace('/^\*\*(.*)(\n)/Um', "<ul><ul><li>$1</li></ul></ul>$2", $CONTENT);
            $CONTENT = preg_replace('/^\*(.*)(\n)/Um', "<ul><li>$1</li></ul>$2", $CONTENT);
            $CONTENT = preg_replace('/^\#\#\#(.*)(\n)/Um', "<ol><ol><ol><li>$1</li></ol></ol></ol>$2", $CONTENT);
            $CONTENT = preg_replace('/^\#\#(.*)(\n)/Um', "<ol><ol><li>$1</li></ol></ol>$2", $CONTENT);
            $CONTENT = preg_replace('/^\#(.*)(\n)/Um', "<ol><li>$1</li></ol>$2", $CONTENT);
            $CONTENT = preg_replace('/(<\/ol>\n*<ol>|<\/ul>\n*<ul>)/', "", $CONTENT);
            $CONTENT = preg_replace('/^!!!(.*)(\n)/Um', '<h1>$1</h1>$2', $CONTENT);
            $CONTENT = preg_replace('/^!!(.*)(\n)/Um', '<h2>$1</h2>$2', $CONTENT);
            $CONTENT = preg_replace('/^!(.*)(\n)/Um', '<h3>$1</h3>$2', $CONTENT);
            while (preg_match('/^  /Um', $CONTENT))
    			$CONTENT = preg_replace('/^( +) ([^ ])/Um', '$1&nbsp;&nbsp;&nbsp;&nbsp;$2', $CONTENT);
    		$CONTENT = preg_replace('/^ /Um', '&nbsp;&nbsp;&nbsp;&nbsp;', $CONTENT);
            $CONTENT = preg_replace('/----*(\r\n|\r|\n)/m', '<hr />', $CONTENT);
            $CONTENT = preg_replace('/\n/', '<br />', $CONTENT);
    		$CONTENT = preg_replace('#</ul>(<br />)*#', "</ul>", $CONTENT);
    		$CONTENT = preg_replace('#</ol>(<br />)*#', "</ol>", $CONTENT);
            $CONTENT = preg_replace('#(</h[123]>)<br />#', "$1", $CONTENT);
            $CONTENT = preg_replace("/{(.+)}/Ue", "'<code><pre>' . preg_replace('#<br />#', '', '\\1') . '</pre></code>'", $CONTENT);
            $CONTENT = preg_replace("/'''(.*)'''/Um", '<b>$1</b>', $CONTENT);
            $CONTENT = preg_replace("/''(.*)''/Um", '<i>$1</i>', $CONTENT); 
            $CONTENT = substr($CONTENT, 6, strlen($CONTENT) - 6);
            $CONTENT = html_entity_decode($CONTENT);
        }
    }
    if ($action != "" && $action != "edit" || (!file_exists($PAGES_DIR . $PAGE_TITLE . ".txt")))
        $TIME = "-";
    $html = preg_replace("/{CONTENT}/", $CONTENT, $html);
    $html = preg_replace('/{TIME}/', $TIME, $html);
    $html = preg_replace('/{DATE}/', $datetw, $html);
    $html = preg_replace('/{IP}/', $_SERVER['REMOTE_ADDR'], $html);
    if ($_COOKIE['AutorisationTigerWiki'] != "")
        $html = preg_replace('/{COOKIE}/', '-- <a href="'.$NAMEFILE.'?erasecookie=1">'.$ERASE_COOKIE.'</a>', $html);
    else
        $html = preg_replace('/{COOKIE}/', '', $html);
// Affichage de la page
    echo $html;
?>