forked from captn3m0/ifttt-webhook
-
Notifications
You must be signed in to change notification settings - Fork 28
/
xmlrpc.php
199 lines (169 loc) · 5.96 KB
/
xmlrpc.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
<?php
require_once(dirname(__FILE__) . '/settings.php');
require_once(dirname(__FILE__) . '/log.php');
require_once(dirname(__FILE__) . '/plugin.php');
error_reporting(-1);
ini_set('display_errors', 1);
$request_body = file_get_contents('php://input');
$xml = simplexml_load_string($request_body);
__log("Endpoint triggered");
// Plugin?
$__PLUGIN = null;
if (!$xml) die ("Ooops! No XML Payload: You possibly want to <a href=\"index.php\">read the documentation!</a>");
switch ($xml->methodName) {
//wordpress blog verification
case 'mt.supportedMethods':
success('metaWeblog.getRecentPosts');
break;
//first authentication request from ifttt
case 'metaWeblog.getRecentPosts':
//send a blank blog response
//this also makes sure that the channel is never triggered
success('<array><data></data></array>');
break;
case 'metaWeblog.newPost':
__log("Processing newpost payload");
//@see http://codex.wordpress.org/XML-RPC_WordPress_API/Posts#wp.newPost
$obj = new stdClass;
//get the parameters from xml
$obj->user = (string) $xml->params->param[1]->value->string;
$obj->pass = (string) $xml->params->param[2]->value->string;
//@see content in the wordpress docs
$content = $xml->params->param[3]->value->struct->member;
foreach ($content as $data) {
switch ((string) $data->name) {
//we use the tags field for providing webhook URL
case 'mt_keywords':
$url = $data->xpath('value/array/data/value/string');
$url = (string) $url[0];
break;
//the passed categories are parsed into an array
case 'categories':
$categories = array();
foreach ($data->xpath('value/array/data/value/string') as $cat)
array_push($categories, (string) $cat);
$obj->categories = $categories;
break;
//this is used for title/description
default:
$obj->{$data->name} = (string) $data->value->string;
}
}
// Plugin details
if ($ALLOW_PLUGINS) {
__log("Plugins are permitted");
foreach ($obj->categories as $category) {
if (strpos($category, 'plugin:') !== false)
$__PLUGIN = $category;
}
// If we allow plugins, pass the constructed object to
if ($__PLUGIN) {
$processed = executePlugin($__PLUGIN, $obj, $content);
if ($processed)
$obj = $processed;
else
{
__log("Plugin was invalid");
failure(400);
}
}
else
{
__log("No valid plugin specified");
failure(400);
}
}
//Make the webrequest
//Only if we have a valid url
if ($url)
{
if (valid_url($url, true)) {
// Load Requests Library
include('requests/Requests.php');
Requests::register_autoloader();
$headers = array('Content-Type' => 'application/json');
$response = Requests::post($url, $headers, json_encode($obj));
if ($response->success)
success('<string>' . $response->status_code . '</string>');
else
failure($response->status_code);
}
else {
//since the url was invalid, we return 400 (Bad Request)
failure(400);
}
} else
success('<string>No forward url, but will assume data was handled locally</string>');
}
/** Copied from wordpress */
function success($innerXML) {
__log("Success!");
$xml = <<<EOD
<?xml version="1.0"?>
<methodResponse>
<params>
<param>
<value>
$innerXML
</value>
</param>
</params>
</methodResponse>
EOD;
output($xml);
}
function output($xml) {
$length = strlen($xml);
header('Connection: close');
header('Content-Length: ' . $length);
header('Content-Type: text/xml');
header('Date: ' . date('r'));
echo $xml;
exit;
}
function failure($status) {
__log("Failure: $status", 'ERROR');
$xml = <<<EOD
<?xml version="1.0"?>
<methodResponse>
<fault>
<value>
<struct>
<member>
<name>faultCode</name>
<value><int>$status</int></value>
</member>
<member>
<name>faultString</name>
<value><string>Request was not successful.</string></value>
</member>
</struct>
</value>
</fault>
</methodResponse>
EOD;
output($xml);
}
/** Used from drupal */
function valid_url($url, $absolute = FALSE) {
if ($absolute) {
return (bool) preg_match("
/^ # Start at the beginning of the text
(?:https?):\/\/ # Look for ftp, http, https or feed schemes
(?: # Userinfo (optional) which is typically
(?:(?:[\w\.\-\+!$&'\(\)*\+,;=]|%[0-9a-f]{2})+:)* # a username or a username and password
(?:[\w\.\-\+%!$&'\(\)*\+,;=]|%[0-9a-f]{2})+@ # combination
)?
(?:
(?:[a-z0-9\-\.]|%[0-9a-f]{2})+ # A domain name or a IPv4 address
|(?:\[(?:[0-9a-f]{0,4}:)*(?:[0-9a-f]{0,4})\]) # or a well formed IPv6 address
)
(?::[0-9]+)? # Server port number (optional)
(?:[\/|\?]
(?:[\w#!:\.\?\+=&@$'~*,;\/\(\)\[\]\-]|%[0-9a-f]{2}) # The path and query (optional)
*)?
$/xi", $url);
} else {
return (bool) preg_match("/^(?:[\w#!:\.\?\+=&@$'~*,;\/\(\)\[\]\-]|%[0-9a-f]{2})+$/i", $url);
}
}