*/ // must be run within Dokuwiki if(!defined('DOKU_INC')) die(); if(!defined('DOKU_PLUGIN')) define('DOKU_PLUGIN',DOKU_INC.'lib/plugins/'); require_once(DOKU_PLUGIN.'action.php'); class action_plugin_captcha extends DokuWiki_Action_Plugin { /** * register the eventhandlers */ function register(&$controller){ $controller->register_hook('ACTION_ACT_PREPROCESS', 'BEFORE', $this, 'handle_act_preprocess', array()); // old hook $controller->register_hook('HTML_EDITFORM_INJECTION', 'BEFORE', $this, 'handle_editform_output', array('editform' => true, 'oldhook' => true)); // new hook $controller->register_hook('HTML_EDITFORM_OUTPUT', 'BEFORE', $this, 'handle_editform_output', array('editform' => true, 'oldhook' => false)); if($this->getConf('regprotect')){ // old hook $controller->register_hook('HTML_REGISTERFORM_INJECTION', 'BEFORE', $this, 'handle_editform_output', array('editform' => false, 'oldhook' => true)); // new hook $controller->register_hook('HTML_REGISTERFORM_OUTPUT', 'BEFORE', $this, 'handle_editform_output', array('editform' => false, 'oldhook' => false)); } } /** * Will intercept the 'save' action and check for CAPTCHA first. */ function handle_act_preprocess(&$event, $param){ $act = $this->_act_clean($event->data); if(!('save' == $act || ($this->getConf('regprotect') && 'register' == $act && $_POST['save']))){ return; // nothing to do for us } // do nothing if logged in user and no CAPTCHA required if(!$this->getConf('forusers') && $_SERVER['REMOTE_USER']){ return; } // check captcha $helper = plugin_load('helper','captcha'); if(!$helper->check()){ if($act == 'save'){ // stay in preview mode $event->data = 'preview'; }else{ // stay in register mode, but disable the save parameter $_POST['save'] = false; } } } /** * Create the additional fields for the edit form */ function handle_editform_output(&$event, $param){ // check if source view -> no captcha needed if(!$param['oldhook']){ // get position of submit button $pos = $event->data->findElementByAttribute('type','submit'); if(!$pos) return; // no button -> source view mode }elseif($param['editform'] && !$event->data['writable']){ if($param['editform'] && !$event->data['writable']) return; } // do nothing if logged in user and no CAPTCHA required if(!$this->getConf('forusers') && $_SERVER['REMOTE_USER']){ return; } // get the CAPTCHA $helper = plugin_load('helper','captcha'); $out = $helper->getHTML(); if($param['oldhook']){ // old wiki - just print echo $out; }else{ // new wiki - insert at correct position $event->data->insertElement($pos++,$out); } } /** * Pre-Sanitize the action command * * Similar to act_clean in action.php but simplified and without * error messages */ function _act_clean($act){ // check if the action was given as array key if(is_array($act)){ list($act) = array_keys($act); } //remove all bad chars $act = strtolower($act); $act = preg_replace('/[^a-z_]+/','',$act); return $act; } }