forked from GNUsocial/gnu-social
1150 lines
40 KiB
PHP
1150 lines
40 KiB
PHP
<?php
|
|
/**
|
|
* Validation class
|
|
*
|
|
* Copyright (c) 1997-2006 Pierre-Alain Joye,Tomas V.V.Cox, Amir Saied
|
|
*
|
|
* This source file is subject to the New BSD license, That is bundled
|
|
* with this package in the file LICENSE, and is available through
|
|
* the world-wide-web at
|
|
* http://www.opensource.org/licenses/bsd-license.php
|
|
* If you did not receive a copy of the new BSDlicense and are unable
|
|
* to obtain it through the world-wide-web, please send a note to
|
|
* pajoye@php.net so we can mail you a copy immediately.
|
|
*
|
|
* Author: Tomas V.V.Cox <cox@idecnet.com>
|
|
* Pierre-Alain Joye <pajoye@php.net>
|
|
* Amir Mohammad Saied <amir@php.net>
|
|
*
|
|
*
|
|
* Package to validate various datas. It includes :
|
|
* - numbers (min/max, decimal or not)
|
|
* - email (syntax, domain check)
|
|
* - string (predifined type alpha upper and/or lowercase, numeric,...)
|
|
* - date (min, max, rfc822 compliant)
|
|
* - uri (RFC2396)
|
|
* - possibility valid multiple data with a single method call (::multiple)
|
|
*
|
|
* @category Validate
|
|
* @package Validate
|
|
* @author Tomas V.V.Cox <cox@idecnet.com>
|
|
* @author Pierre-Alain Joye <pajoye@php.net>
|
|
* @author Amir Mohammad Saied <amir@php.net>
|
|
* @copyright 1997-2006 Pierre-Alain Joye,Tomas V.V.Cox,Amir Mohammad Saied
|
|
* @license http://www.opensource.org/licenses/bsd-license.php New BSD License
|
|
* @version CVS: $Id$
|
|
* @link http://pear.php.net/package/Validate
|
|
*/
|
|
|
|
// {{{ Constants
|
|
/**
|
|
* Methods for common data validations
|
|
*/
|
|
define('VALIDATE_NUM', '0-9');
|
|
define('VALIDATE_SPACE', '\s');
|
|
define('VALIDATE_ALPHA_LOWER', 'a-z');
|
|
define('VALIDATE_ALPHA_UPPER', 'A-Z');
|
|
define('VALIDATE_ALPHA', VALIDATE_ALPHA_LOWER . VALIDATE_ALPHA_UPPER);
|
|
define('VALIDATE_EALPHA_LOWER', VALIDATE_ALPHA_LOWER . 'áéíóúýàèìòùäëïöüÿâêîôûãñõ¨åæç½ðøþß');
|
|
define('VALIDATE_EALPHA_UPPER', VALIDATE_ALPHA_UPPER . 'ÁÉÍÓÚÝÀÈÌÒÙÄËÏÖܾÂÊÎÔÛÃÑÕ¦ÅÆǼÐØÞ');
|
|
define('VALIDATE_EALPHA', VALIDATE_EALPHA_LOWER . VALIDATE_EALPHA_UPPER);
|
|
define('VALIDATE_PUNCTUATION', VALIDATE_SPACE . '\.,;\:&"\'\?\!\(\)');
|
|
define('VALIDATE_NAME', VALIDATE_EALPHA . VALIDATE_SPACE . "'" . '\-');
|
|
define('VALIDATE_STREET', VALIDATE_NUM . VALIDATE_NAME . "/\\ºª\.");
|
|
|
|
define('VALIDATE_ITLD_EMAILS', 1);
|
|
define('VALIDATE_GTLD_EMAILS', 2);
|
|
define('VALIDATE_CCTLD_EMAILS', 4);
|
|
define('VALIDATE_ALL_EMAILS', 8);
|
|
// }}}
|
|
|
|
/**
|
|
* Validation class
|
|
*
|
|
* Package to validate various datas. It includes :
|
|
* - numbers (min/max, decimal or not)
|
|
* - email (syntax, domain check)
|
|
* - string (predifined type alpha upper and/or lowercase, numeric,...)
|
|
* - date (min, max)
|
|
* - uri (RFC2396)
|
|
* - possibility valid multiple data with a single method call (::multiple)
|
|
*
|
|
* @category Validate
|
|
* @package Validate
|
|
* @author Tomas V.V.Cox <cox@idecnet.com>
|
|
* @author Pierre-Alain Joye <pajoye@php.net>
|
|
* @author Amir Mohammad Saied <amir@php.net>
|
|
* @copyright 1997-2006 Pierre-Alain Joye,Tomas V.V.Cox,Amir Mohammad Saied
|
|
* @license http://www.opensource.org/licenses/bsd-license.php New BSD License
|
|
* @version Release: @package_version@
|
|
* @link http://pear.php.net/package/Validate
|
|
*/
|
|
class Validate
|
|
{
|
|
// {{{ International, Generic and Country code TLDs
|
|
/**
|
|
* International Top-Level Domain
|
|
*
|
|
* This is an array of the known international
|
|
* top-level domain names.
|
|
*
|
|
* @access protected
|
|
* @var array $_iTld (International top-level domains)
|
|
*/
|
|
var $_itld = array(
|
|
'arpa',
|
|
'root',
|
|
);
|
|
|
|
/**
|
|
* Generic top-level domain
|
|
*
|
|
* This is an array of the official
|
|
* generic top-level domains.
|
|
*
|
|
* @access protected
|
|
* @var array $_gTld (Generic top-level domains)
|
|
*/
|
|
var $_gtld = array(
|
|
'aero',
|
|
'biz',
|
|
'cat',
|
|
'com',
|
|
'coop',
|
|
'edu',
|
|
'gov',
|
|
'info',
|
|
'int',
|
|
'jobs',
|
|
'mil',
|
|
'mobi',
|
|
'museum',
|
|
'name',
|
|
'net',
|
|
'org',
|
|
'pro',
|
|
'travel',
|
|
'asia',
|
|
'post',
|
|
'tel',
|
|
'geo',
|
|
);
|
|
|
|
/**
|
|
* Country code top-level domains
|
|
*
|
|
* This is an array of the official country
|
|
* codes top-level domains
|
|
*
|
|
* @access protected
|
|
* @var array $_ccTld (Country Code Top-Level Domain)
|
|
*/
|
|
var $_cctld = array(
|
|
'ac',
|
|
'ad','ae','af','ag',
|
|
'ai','al','am','an',
|
|
'ao','aq','ar','as',
|
|
'at','au','aw','ax',
|
|
'az','ba','bb','bd',
|
|
'be','bf','bg','bh',
|
|
'bi','bj','bm','bn',
|
|
'bo','br','bs','bt',
|
|
'bu','bv','bw','by',
|
|
'bz','ca','cc','cd',
|
|
'cf','cg','ch','ci',
|
|
'ck','cl','cm','cn',
|
|
'co','cr','cs','cu',
|
|
'cv','cx','cy','cz',
|
|
'de','dj','dk','dm',
|
|
'do','dz','ec','ee',
|
|
'eg','eh','er','es',
|
|
'et','eu','fi','fj',
|
|
'fk','fm','fo','fr',
|
|
'ga','gb','gd','ge',
|
|
'gf','gg','gh','gi',
|
|
'gl','gm','gn','gp',
|
|
'gq','gr','gs','gt',
|
|
'gu','gw','gy','hk',
|
|
'hm','hn','hr','ht',
|
|
'hu','id','ie','il',
|
|
'im','in','io','iq',
|
|
'ir','is','it','je',
|
|
'jm','jo','jp','ke',
|
|
'kg','kh','ki','km',
|
|
'kn','kp','kr','kw',
|
|
'ky','kz','la','lb',
|
|
'lc','li','lk','lr',
|
|
'ls','lt','lu','lv',
|
|
'ly','ma','mc','md',
|
|
'me','mg','mh','mk',
|
|
'ml','mm','mn','mo',
|
|
'mp','mq','mr','ms',
|
|
'mt','mu','mv','mw',
|
|
'mx','my','mz','na',
|
|
'nc','ne','nf','ng',
|
|
'ni','nl','no','np',
|
|
'nr','nu','nz','om',
|
|
'pa','pe','pf','pg',
|
|
'ph','pk','pl','pm',
|
|
'pn','pr','ps','pt',
|
|
'pw','py','qa','re',
|
|
'ro','rs','ru','rw',
|
|
'sa','sb','sc','sd',
|
|
'se','sg','sh','si',
|
|
'sj','sk','sl','sm',
|
|
'sn','so','sr','st',
|
|
'su','sv','sy','sz',
|
|
'tc','td','tf','tg',
|
|
'th','tj','tk','tl',
|
|
'tm','tn','to','tp',
|
|
'tr','tt','tv','tw',
|
|
'tz','ua','ug','uk',
|
|
'us','uy','uz','va',
|
|
'vc','ve','vg','vi',
|
|
'vn','vu','wf','ws',
|
|
'ye','yt','yu','za',
|
|
'zm','zw',
|
|
);
|
|
// }}}
|
|
|
|
/**
|
|
* Validate a tag URI (RFC4151)
|
|
*
|
|
* @param string $uri tag URI to validate
|
|
*
|
|
* @return boolean true if valid tag URI, false if not
|
|
*
|
|
* @access private
|
|
*/
|
|
function __uriRFC4151($uri)
|
|
{
|
|
$datevalid = false;
|
|
if (preg_match(
|
|
'/^tag:(?<name>.*),(?<date>\d{4}-?\d{0,2}-?\d{0,2}):(?<specific>.*)(.*:)*$/', $uri, $matches)) {
|
|
$date = $matches['date'];
|
|
$date6 = strtotime($date);
|
|
if ((strlen($date) == 4) && $date <= date('Y')) {
|
|
$datevalid = true;
|
|
} elseif ((strlen($date) == 7) && ($date6 < strtotime("now"))) {
|
|
$datevalid = true;
|
|
} elseif ((strlen($date) == 10) && ($date6 < strtotime("now"))) {
|
|
$datevalid = true;
|
|
}
|
|
if (self::email($matches['name'])) {
|
|
$namevalid = true;
|
|
} else {
|
|
$namevalid = self::email('info@' . $matches['name']);
|
|
}
|
|
return $datevalid && $namevalid;
|
|
} else {
|
|
return false;
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Validate a number
|
|
*
|
|
* @param string $number Number to validate
|
|
* @param array $options array where:
|
|
* 'decimal' is the decimal char or false when decimal
|
|
* not allowed.
|
|
* i.e. ',.' to allow both ',' and '.'
|
|
* 'dec_prec' Number of allowed decimals
|
|
* 'min' minimum value
|
|
* 'max' maximum value
|
|
*
|
|
* @return boolean true if valid number, false if not
|
|
*
|
|
* @access public
|
|
*/
|
|
function number($number, $options = array())
|
|
{
|
|
$decimal = $dec_prec = $min = $max = null;
|
|
if (is_array($options)) {
|
|
extract($options);
|
|
}
|
|
|
|
$dec_prec = $dec_prec ? "{1,$dec_prec}" : '+';
|
|
$dec_regex = $decimal ? "[$decimal][0-9]$dec_prec" : '';
|
|
|
|
if (!preg_match("|^[-+]?\s*[0-9]+($dec_regex)?\$|", $number)) {
|
|
return false;
|
|
}
|
|
|
|
if ($decimal != '.') {
|
|
$number = strtr($number, $decimal, '.');
|
|
}
|
|
|
|
$number = (float)str_replace(' ', '', $number);
|
|
if ($min !== null && $min > $number) {
|
|
return false;
|
|
}
|
|
|
|
if ($max !== null && $max < $number) {
|
|
return false;
|
|
}
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Converting a string to UTF-7 (RFC 2152)
|
|
*
|
|
* @param string $string string to be converted
|
|
*
|
|
* @return string converted string
|
|
*
|
|
* @access private
|
|
*/
|
|
function __stringToUtf7($string)
|
|
{
|
|
$return = '';
|
|
$utf7 = array(
|
|
'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'I', 'J', 'K',
|
|
'L', 'M', 'N', 'O', 'P', 'Q', 'R', 'S', 'T', 'U', 'V',
|
|
'W', 'X', 'Y', 'Z', 'a', 'b', 'c', 'd', 'e', 'f', 'g',
|
|
'h', 'i', 'j', 'k', 'l', 'm', 'n', 'o', 'p', 'q', 'r',
|
|
's', 't', 'u', 'v', 'w', 'x', 'y', 'z', '0', '1', '2',
|
|
'3', '4', '5', '6', '7', '8', '9', '+', ','
|
|
);
|
|
|
|
|
|
$state = 0;
|
|
|
|
if (!empty($string)) {
|
|
$i = 0;
|
|
while ($i <= strlen($string)) {
|
|
$char = substr($string, $i, 1);
|
|
if ($state == 0) {
|
|
if ((ord($char) >= 0x7F) || (ord($char) <= 0x1F)) {
|
|
if ($char) {
|
|
$return .= '&';
|
|
}
|
|
$state = 1;
|
|
} elseif ($char == '&') {
|
|
$return .= '&-';
|
|
} else {
|
|
$return .= $char;
|
|
}
|
|
} elseif (($i == strlen($string) ||
|
|
!((ord($char) >= 0x7F)) || (ord($char) <= 0x1F))) {
|
|
if ($state != 1) {
|
|
if (ord($char) > 64) {
|
|
$return .= '';
|
|
} else {
|
|
$return .= $utf7[ord($char)];
|
|
}
|
|
}
|
|
$return .= '-';
|
|
$state = 0;
|
|
} else {
|
|
switch($state) {
|
|
case 1:
|
|
$return .= $utf7[ord($char) >> 2];
|
|
$residue = (ord($char) & 0x03) << 4;
|
|
$state = 2;
|
|
break;
|
|
case 2:
|
|
$return .= $utf7[$residue | (ord($char) >> 4)];
|
|
$residue = (ord($char) & 0x0F) << 2;
|
|
$state = 3;
|
|
break;
|
|
case 3:
|
|
$return .= $utf7[$residue | (ord($char) >> 6)];
|
|
$return .= $utf7[ord($char) & 0x3F];
|
|
$state = 1;
|
|
break;
|
|
}
|
|
}
|
|
$i++;
|
|
}
|
|
return $return;
|
|
}
|
|
return '';
|
|
}
|
|
|
|
/**
|
|
* Validate an email according to full RFC822 (inclusive human readable part)
|
|
*
|
|
* @param string $email email to validate,
|
|
* will return the address for optional dns validation
|
|
* @param array $options email() options
|
|
*
|
|
* @return boolean true if valid email, false if not
|
|
*
|
|
* @access private
|
|
*/
|
|
function __emailRFC822(&$email, &$options)
|
|
{
|
|
static $address = null;
|
|
static $uncomment = null;
|
|
if (!$address) {
|
|
// atom = 1*<any CHAR except specials, SPACE and CTLs>
|
|
$atom = '[^][()<>@,;:\\".\s\000-\037\177-\377]+\s*';
|
|
// qtext = <any CHAR excepting <">, ; => may be folded
|
|
// "\" & CR, and including linear-white-space>
|
|
$qtext = '[^"\\\\\r]';
|
|
// quoted-pair = "\" CHAR ; may quote any char
|
|
$quoted_pair = '\\\\.';
|
|
// quoted-string = <"> *(qtext/quoted-pair) <">; Regular qtext or
|
|
// ; quoted chars.
|
|
$quoted_string = '"(?:' . $qtext . '|' . $quoted_pair . ')*"\s*';
|
|
// word = atom / quoted-string
|
|
$word = '(?:' . $atom . '|' . $quoted_string . ')';
|
|
// local-part = word *("." word) ; uninterpreted
|
|
// ; case-preserved
|
|
$local_part = $word . '(?:\.\s*' . $word . ')*';
|
|
// dtext = <any CHAR excluding "[", ; => may be folded
|
|
// "]", "\" & CR, & including linear-white-space>
|
|
$dtext = '[^][\\\\\r]';
|
|
// domain-literal = "[" *(dtext / quoted-pair) "]"
|
|
$domain_literal = '\[(?:' . $dtext . '|' . $quoted_pair . ')*\]\s*';
|
|
// sub-domain = domain-ref / domain-literal
|
|
// domain-ref = atom ; symbolic reference
|
|
$sub_domain = '(?:' . $atom . '|' . $domain_literal . ')';
|
|
// domain = sub-domain *("." sub-domain)
|
|
$domain = $sub_domain . '(?:\.\s*' . $sub_domain . ')*';
|
|
// addr-spec = local-part "@" domain ; global address
|
|
$addr_spec = $local_part . '@\s*' . $domain;
|
|
// route = 1#("@" domain) ":" ; path-relative
|
|
$route = '@' . $domain . '(?:,@\s*' . $domain . ')*:\s*';
|
|
// route-addr = "<" [route] addr-spec ">"
|
|
$route_addr = '<\s*(?:' . $route . ')?' . $addr_spec . '>\s*';
|
|
// phrase = 1*word ; Sequence of words
|
|
$phrase = $word . '+';
|
|
// mailbox = addr-spec ; simple address
|
|
// / phrase route-addr ; name & addr-spec
|
|
$mailbox = '(?:' . $addr_spec . '|' . $phrase . $route_addr . ')';
|
|
// group = phrase ":" [#mailbox] ";"
|
|
$group = $phrase . ':\s*(?:' . $mailbox . '(?:,\s*' . $mailbox . ')*)?;\s*';
|
|
// address = mailbox ; one addressee
|
|
// / group ; named list
|
|
$address = '/^\s*(?:' . $mailbox . '|' . $group . ')$/';
|
|
|
|
$uncomment =
|
|
'/((?:(?:\\\\"|[^("])*(?:' . $quoted_string .
|
|
')?)*)((?<!\\\\)\((?:(?2)|.)*?(?<!\\\\)\))/';
|
|
}
|
|
// strip comments
|
|
$email = preg_replace($uncomment, '$1 ', $email);
|
|
return preg_match($address, $email);
|
|
}
|
|
|
|
/**
|
|
* Full TLD Validation function
|
|
*
|
|
* This function is used to make a much more proficient validation
|
|
* against all types of official domain names.
|
|
*
|
|
* @param string $email The email address to check.
|
|
* @param array $options The options for validation
|
|
*
|
|
* @access protected
|
|
*
|
|
* @return bool True if validating succeeds
|
|
*/
|
|
function _fullTLDValidation($email, $options)
|
|
{
|
|
$validate = array();
|
|
if(!empty($options["VALIDATE_ITLD_EMAILS"])) array_push($validate, 'itld');
|
|
if(!empty($options["VALIDATE_GTLD_EMAILS"])) array_push($validate, 'gtld');
|
|
if(!empty($options["VALIDATE_CCTLD_EMAILS"])) array_push($validate, 'cctld');
|
|
|
|
if (count($validate) === 0) {
|
|
array_push($validate, 'itld', 'gtld', 'cctld');
|
|
}
|
|
|
|
$self = new Validate;
|
|
|
|
$toValidate = array();
|
|
|
|
foreach ($validate as $valid) {
|
|
$tmpVar = '_' . (string)$valid;
|
|
|
|
$toValidate[$valid] = $self->{$tmpVar};
|
|
}
|
|
|
|
$e = $self->executeFullEmailValidation($email, $toValidate);
|
|
|
|
return $e;
|
|
}
|
|
|
|
/**
|
|
* Execute the validation
|
|
*
|
|
* This function will execute the full email vs tld
|
|
* validation using an array of tlds passed to it.
|
|
*
|
|
* @param string $email The email to validate.
|
|
* @param array $arrayOfTLDs The array of the TLDs to validate
|
|
*
|
|
* @access public
|
|
*
|
|
* @return true or false (Depending on if it validates or if it does not)
|
|
*/
|
|
function executeFullEmailValidation($email, $arrayOfTLDs)
|
|
{
|
|
$emailEnding = explode('.', $email);
|
|
$emailEnding = $emailEnding[count($emailEnding)-1];
|
|
foreach ($arrayOfTLDs as $validator => $keys) {
|
|
if (in_array($emailEnding, $keys)) {
|
|
return true;
|
|
}
|
|
}
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* Validate an email
|
|
*
|
|
* @param string $email email to validate
|
|
* @param mixed boolean (BC) $check_domain Check or not if the domain exists
|
|
* array $options associative array of options
|
|
* 'check_domain' boolean Check or not if the domain exists
|
|
* 'use_rfc822' boolean Apply the full RFC822 grammar
|
|
*
|
|
* Ex.
|
|
* $options = array(
|
|
* 'check_domain' => 'true',
|
|
* 'fullTLDValidation' => 'true',
|
|
* 'use_rfc822' => 'true',
|
|
* 'VALIDATE_GTLD_EMAILS' => 'true',
|
|
* 'VALIDATE_CCTLD_EMAILS' => 'true',
|
|
* 'VALIDATE_ITLD_EMAILS' => 'true',
|
|
* );
|
|
*
|
|
* @return boolean true if valid email, false if not
|
|
*
|
|
* @access public
|
|
*/
|
|
function email($email, $options = null)
|
|
{
|
|
$check_domain = false;
|
|
$use_rfc822 = false;
|
|
if (is_bool($options)) {
|
|
$check_domain = $options;
|
|
} elseif (is_array($options)) {
|
|
extract($options);
|
|
}
|
|
|
|
/**
|
|
* Check for IDN usage so we can encode the domain as Punycode
|
|
* before continuing.
|
|
*/
|
|
$hasIDNA = false;
|
|
|
|
if (Validate::_includePathFileExists('Net/IDNA.php')) {
|
|
include_once('Net/IDNA.php');
|
|
$hasIDNA = true;
|
|
}
|
|
|
|
if ($hasIDNA === true) {
|
|
if (strpos($email, '@') !== false) {
|
|
$tmpEmail = explode('@', $email);
|
|
$domain = array_pop($tmpEmail);
|
|
|
|
// Check if the domain contains characters > 127 which means
|
|
// it's an idn domain name.
|
|
$chars = count_chars($domain, 1);
|
|
if (!empty($chars) && max(array_keys($chars)) > 127) {
|
|
$idna =& Net_IDNA::singleton();
|
|
$domain = $idna->encode($domain);
|
|
}
|
|
|
|
array_push($tmpEmail, $domain);
|
|
$email = implode('@', $tmpEmail);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* @todo Fix bug here.. even if it passes this, it won't be passing
|
|
* The regular expression below
|
|
*/
|
|
if (isset($fullTLDValidation)) {
|
|
//$valid = Validate::_fullTLDValidation($email, $fullTLDValidation);
|
|
$valid = Validate::_fullTLDValidation($email, $options);
|
|
|
|
if (!$valid) {
|
|
return false;
|
|
}
|
|
}
|
|
|
|
// the base regexp for address
|
|
$regex = '&^(?: # recipient:
|
|
("\s*(?:[^"\f\n\r\t\v\b\s]+\s*)+")| #1 quoted name
|
|
([-\w!\#\$%\&\'*+~/^`|{}]+(?:\.[-\w!\#\$%\&\'*+~/^`|{}]+)*)) #2 OR dot-atom
|
|
@(((\[)? #3 domain, 4 as IPv4, 5 optionally bracketed
|
|
(?:(?:(?:(?:25[0-5])|(?:2[0-4][0-9])|(?:[0-1]?[0-9]?[0-9]))\.){3}
|
|
(?:(?:25[0-5])|(?:2[0-4][0-9])|(?:[0-1]?[0-9]?[0-9]))))(?(5)\])|
|
|
((?:[a-z0-9](?:[-a-z0-9]*[a-z0-9])?\.)*[a-z0-9](?:[-a-z0-9]*[a-z0-9])?) #6 domain as hostname
|
|
\.((?:([^- ])[-a-z]*[-a-z]))) #7 TLD
|
|
$&xi';
|
|
|
|
//checks if exists the domain (MX or A)
|
|
if ($use_rfc822? Validate::__emailRFC822($email, $options) :
|
|
preg_match($regex, $email)) {
|
|
if ($check_domain && function_exists('checkdnsrr')) {
|
|
$domain = preg_replace('/[^-a-z.0-9]/i', '', array_pop(explode('@', $email)));
|
|
if (checkdnsrr($domain, 'MX') || checkdnsrr($domain, 'A')) {
|
|
return true;
|
|
}
|
|
return false;
|
|
}
|
|
return true;
|
|
}
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* Validate a string using the given format 'format'
|
|
*
|
|
* @param string $string String to validate
|
|
* @param array $options Options array where:
|
|
* 'format' is the format of the string
|
|
* Ex:VALIDATE_NUM . VALIDATE_ALPHA (see constants)
|
|
* 'min_length' minimum length
|
|
* 'max_length' maximum length
|
|
*
|
|
* @return boolean true if valid string, false if not
|
|
*
|
|
* @access public
|
|
*/
|
|
function string($string, $options)
|
|
{
|
|
$format = null;
|
|
$min_length = 0;
|
|
$max_length = 0;
|
|
|
|
if (is_array($options)) {
|
|
extract($options);
|
|
}
|
|
|
|
if ($format && !preg_match("|^[$format]*\$|s", $string)) {
|
|
return false;
|
|
}
|
|
|
|
if ($min_length && strlen($string) < $min_length) {
|
|
return false;
|
|
}
|
|
|
|
if ($max_length && strlen($string) > $max_length) {
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Validate an URI (RFC2396)
|
|
* This function will validate 'foobarstring' by default, to get it to validate
|
|
* only http, https, ftp and such you have to pass it in the allowed_schemes
|
|
* option, like this:
|
|
* <code>
|
|
* $options = array('allowed_schemes' => array('http', 'https', 'ftp'))
|
|
* var_dump(Validate::uri('http://www.example.org', $options));
|
|
* </code>
|
|
*
|
|
* NOTE 1: The rfc2396 normally allows middle '-' in the top domain
|
|
* e.g. http://example.co-m should be valid
|
|
* However, as '-' is not used in any known TLD, it is invalid
|
|
* NOTE 2: As double shlashes // are allowed in the path part, only full URIs
|
|
* including an authority can be valid, no relative URIs
|
|
* the // are mandatory (optionally preceeded by the 'sheme:' )
|
|
* NOTE 3: the full complience to rfc2396 is not achieved by default
|
|
* the characters ';/?:@$,' will not be accepted in the query part
|
|
* if not urlencoded, refer to the option "strict'"
|
|
*
|
|
* @param string $url URI to validate
|
|
* @param array $options Options used by the validation method.
|
|
* key => type
|
|
* 'domain_check' => boolean
|
|
* Whether to check the DNS entry or not
|
|
* 'allowed_schemes' => array, list of protocols
|
|
* List of allowed schemes ('http',
|
|
* 'ssh+svn', 'mms')
|
|
* 'strict' => string the refused chars
|
|
* in query and fragment parts
|
|
* default: ';/?:@$,'
|
|
* empty: accept all rfc2396 foreseen chars
|
|
*
|
|
* @return boolean true if valid uri, false if not
|
|
*
|
|
* @access public
|
|
*/
|
|
function uri($url, $options = null)
|
|
{
|
|
$strict = ';/?:@$,';
|
|
$domain_check = false;
|
|
$allowed_schemes = null;
|
|
if (is_array($options)) {
|
|
extract($options);
|
|
}
|
|
if (is_array($allowed_schemes) &&
|
|
in_array("tag", $allowed_schemes)
|
|
) {
|
|
if (strpos($url, "tag:") === 0) {
|
|
return self::__uriRFC4151($url);
|
|
}
|
|
}
|
|
|
|
if (preg_match(
|
|
'&^(?:([a-z][-+.a-z0-9]*):)? # 1. scheme
|
|
(?:// # authority start
|
|
(?:((?:%[0-9a-f]{2}|[-a-z0-9_.!~*\'();:\&=+$,])*)@)? # 2. authority-userinfo
|
|
(?:((?:[a-z0-9](?:[-a-z0-9]*[a-z0-9])?\.)*[a-z](?:[a-z0-9]+)?\.?) # 3. authority-hostname OR
|
|
|([0-9]{1,3}(?:\.[0-9]{1,3}){3})) # 4. authority-ipv4
|
|
(?::([0-9]*))?) # 5. authority-port
|
|
((?:/(?:%[0-9a-f]{2}|[-a-z0-9_.!~*\'():@\&=+$,;])*)*/?)? # 6. path
|
|
(?:\?([^#]*))? # 7. query
|
|
(?:\#((?:%[0-9a-f]{2}|[-a-z0-9_.!~*\'();/?:@\&=+$,])*))? # 8. fragment
|
|
$&xi', $url, $matches)) {
|
|
$scheme = isset($matches[1]) ? $matches[1] : '';
|
|
$authority = isset($matches[3]) ? $matches[3] : '' ;
|
|
if (is_array($allowed_schemes) &&
|
|
!in_array($scheme, $allowed_schemes)
|
|
) {
|
|
return false;
|
|
}
|
|
if (!empty($matches[4])) {
|
|
$parts = explode('.', $matches[4]);
|
|
foreach ($parts as $part) {
|
|
if ($part > 255) {
|
|
return false;
|
|
}
|
|
}
|
|
} elseif ($domain_check && function_exists('checkdnsrr')) {
|
|
if (!checkdnsrr($authority, 'A')) {
|
|
return false;
|
|
}
|
|
}
|
|
if ($strict) {
|
|
$strict = '#[' . preg_quote($strict, '#') . ']#';
|
|
if ((!empty($matches[7]) && preg_match($strict, $matches[7]))
|
|
|| (!empty($matches[8]) && preg_match($strict, $matches[8]))) {
|
|
return false;
|
|
}
|
|
}
|
|
return true;
|
|
}
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* Validate date and times. Note that this method need the Date_Calc class
|
|
*
|
|
* @param string $date Date to validate
|
|
* @param array $options array options where :
|
|
* 'format' The format of the date (%d-%m-%Y)
|
|
* or rfc822_compliant
|
|
* 'min' The date has to be greater
|
|
* than this array($day, $month, $year)
|
|
* or PEAR::Date object
|
|
* 'max' The date has to be smaller than
|
|
* this array($day, $month, $year)
|
|
* or PEAR::Date object
|
|
*
|
|
* @return boolean true if valid date/time, false if not
|
|
*
|
|
* @access public
|
|
*/
|
|
function date($date, $options)
|
|
{
|
|
$max = false;
|
|
$min = false;
|
|
$format = '';
|
|
|
|
if (is_array($options)) {
|
|
extract($options);
|
|
}
|
|
|
|
if (strtolower($format) == 'rfc822_compliant') {
|
|
$preg = '&^(?:(Mon|Tue|Wed|Thu|Fri|Sat|Sun),) \s+
|
|
(?:(\d{2})?) \s+
|
|
(?:(Jan|Feb|Mar|Apr|May|Jun|Jul|Aug|Sep|Oct|Nov|Dec)?) \s+
|
|
(?:(\d{2}(\d{2})?)?) \s+
|
|
(?:(\d{2}?)):(?:(\d{2}?))(:(?:(\d{2}?)))? \s+
|
|
(?:[+-]\d{4}|UT|GMT|EST|EDT|CST|CDT|MST|MDT|PST|PDT|[A-IK-Za-ik-z])$&xi';
|
|
|
|
if (!preg_match($preg, $date, $matches)) {
|
|
return false;
|
|
}
|
|
|
|
$year = (int)$matches[4];
|
|
$months = array('Jan', 'Feb', 'Mar', 'Apr', 'May', 'Jun',
|
|
'Jul', 'Aug', 'Sep', 'Oct', 'Nov', 'Dec');
|
|
$month = array_keys($months, $matches[3]);
|
|
$month = (int)$month[0]+1;
|
|
$day = (int)$matches[2];
|
|
$weekday = $matches[1];
|
|
$hour = (int)$matches[6];
|
|
$minute = (int)$matches[7];
|
|
isset($matches[9]) ? $second = (int)$matches[9] : $second = 0;
|
|
|
|
if ((strlen($year) != 4) ||
|
|
($day > 31 || $day < 1)||
|
|
($hour > 23) ||
|
|
($minute > 59) ||
|
|
($second > 59)) {
|
|
return false;
|
|
}
|
|
} else {
|
|
$date_len = strlen($format);
|
|
for ($i = 0; $i < $date_len; $i++) {
|
|
$c = $format{$i};
|
|
if ($c == '%') {
|
|
$next = $format{$i + 1};
|
|
switch ($next) {
|
|
case 'j':
|
|
case 'd':
|
|
if ($next == 'j') {
|
|
$day = (int)Validate::_substr($date, 1, 2);
|
|
} else {
|
|
$day = (int)Validate::_substr($date, 0, 2);
|
|
}
|
|
if ($day < 1 || $day > 31) {
|
|
return false;
|
|
}
|
|
break;
|
|
case 'm':
|
|
case 'n':
|
|
if ($next == 'm') {
|
|
$month = (int)Validate::_substr($date, 0, 2);
|
|
} else {
|
|
$month = (int)Validate::_substr($date, 1, 2);
|
|
}
|
|
if ($month < 1 || $month > 12) {
|
|
return false;
|
|
}
|
|
break;
|
|
case 'Y':
|
|
case 'y':
|
|
if ($next == 'Y') {
|
|
$year = Validate::_substr($date, 4);
|
|
$year = (int)$year?$year:'';
|
|
} else {
|
|
$year = (int)(substr(date('Y'), 0, 2) .
|
|
Validate::_substr($date, 2));
|
|
}
|
|
if (strlen($year) != 4 || $year < 0 || $year > 9999) {
|
|
return false;
|
|
}
|
|
break;
|
|
case 'g':
|
|
case 'h':
|
|
if ($next == 'g') {
|
|
$hour = Validate::_substr($date, 1, 2);
|
|
} else {
|
|
$hour = Validate::_substr($date, 2);
|
|
}
|
|
if (!preg_match('/^\d+$/', $hour) || $hour < 0 || $hour > 12) {
|
|
return false;
|
|
}
|
|
break;
|
|
case 'G':
|
|
case 'H':
|
|
if ($next == 'G') {
|
|
$hour = Validate::_substr($date, 1, 2);
|
|
} else {
|
|
$hour = Validate::_substr($date, 2);
|
|
}
|
|
if (!preg_match('/^\d+$/', $hour) || $hour < 0 || $hour > 24) {
|
|
return false;
|
|
}
|
|
break;
|
|
case 's':
|
|
case 'i':
|
|
$t = Validate::_substr($date, 2);
|
|
if (!preg_match('/^\d+$/', $t) || $t < 0 || $t > 59) {
|
|
return false;
|
|
}
|
|
break;
|
|
default:
|
|
trigger_error("Not supported char `$next' after % in offset " . ($i+2), E_USER_WARNING);
|
|
}
|
|
$i++;
|
|
} else {
|
|
//literal
|
|
if (Validate::_substr($date, 1) != $c) {
|
|
return false;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
// there is remaing data, we don't want it
|
|
if (strlen($date) && (strtolower($format) != 'rfc822_compliant')) {
|
|
return false;
|
|
}
|
|
|
|
if (isset($day) && isset($month) && isset($year)) {
|
|
if (!checkdate($month, $day, $year)) {
|
|
return false;
|
|
}
|
|
|
|
if (strtolower($format) == 'rfc822_compliant') {
|
|
if ($weekday != date("D", mktime(0, 0, 0, $month, $day, $year))) {
|
|
return false;
|
|
}
|
|
}
|
|
|
|
if ($min) {
|
|
include_once 'Date/Calc.php';
|
|
if (is_a($min, 'Date') &&
|
|
(Date_Calc::compareDates($day, $month, $year,
|
|
$min->getDay(), $min->getMonth(), $min->getYear()) < 0)
|
|
) {
|
|
return false;
|
|
} elseif (is_array($min) &&
|
|
(Date_Calc::compareDates($day, $month, $year,
|
|
$min[0], $min[1], $min[2]) < 0)
|
|
) {
|
|
return false;
|
|
}
|
|
}
|
|
|
|
if ($max) {
|
|
include_once 'Date/Calc.php';
|
|
if (is_a($max, 'Date') &&
|
|
(Date_Calc::compareDates($day, $month, $year,
|
|
$max->getDay(), $max->getMonth(), $max->getYear()) > 0)
|
|
) {
|
|
return false;
|
|
} elseif (is_array($max) &&
|
|
(Date_Calc::compareDates($day, $month, $year,
|
|
$max[0], $max[1], $max[2]) > 0)
|
|
) {
|
|
return false;
|
|
}
|
|
}
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Substr
|
|
*
|
|
* @param string &$date Date
|
|
* @param string $num Length
|
|
* @param string $opt Unknown
|
|
*
|
|
* @access private
|
|
* @return string
|
|
*/
|
|
function _substr(&$date, $num, $opt = false)
|
|
{
|
|
if ($opt && strlen($date) >= $opt && preg_match('/^[0-9]{'.$opt.'}/', $date, $m)) {
|
|
$ret = $m[0];
|
|
} else {
|
|
$ret = substr($date, 0, $num);
|
|
}
|
|
$date = substr($date, strlen($ret));
|
|
return $ret;
|
|
}
|
|
|
|
function _modf($val, $div)
|
|
{
|
|
if (function_exists('bcmod')) {
|
|
return bcmod($val, $div);
|
|
} elseif (function_exists('fmod')) {
|
|
return fmod($val, $div);
|
|
}
|
|
$r = $val / $div;
|
|
$i = intval($r);
|
|
return intval($val - $i * $div + .1);
|
|
}
|
|
|
|
/**
|
|
* Calculates sum of product of number digits with weights
|
|
*
|
|
* @param string $number number string
|
|
* @param array $weights reference to array of weights
|
|
*
|
|
* @access protected
|
|
*
|
|
* @return int returns product of number digits with weights
|
|
*/
|
|
function _multWeights($number, &$weights)
|
|
{
|
|
if (!is_array($weights)) {
|
|
return -1;
|
|
}
|
|
$sum = 0;
|
|
|
|
$count = min(count($weights), strlen($number));
|
|
if ($count == 0) { // empty string or weights array
|
|
return -1;
|
|
}
|
|
for ($i = 0; $i < $count; ++$i) {
|
|
$sum += intval(substr($number, $i, 1)) * $weights[$i];
|
|
}
|
|
|
|
return $sum;
|
|
}
|
|
|
|
/**
|
|
* Calculates control digit for a given number
|
|
*
|
|
* @param string $number number string
|
|
* @param array $weights reference to array of weights
|
|
* @param int $modulo (optionsl) number
|
|
* @param int $subtract (optional) number
|
|
* @param bool $allow_high (optional) true if function can return number higher than 10
|
|
*
|
|
* @access protected
|
|
*
|
|
* @return int -1 calculated control number is returned
|
|
*/
|
|
function _getControlNumber($number, &$weights, $modulo = 10, $subtract = 0, $allow_high = false)
|
|
{
|
|
// calc sum
|
|
$sum = Validate::_multWeights($number, $weights);
|
|
if ($sum == -1) {
|
|
return -1;
|
|
}
|
|
$mod = Validate::_modf($sum, $modulo); // calculate control digit
|
|
|
|
if ($subtract > $mod && $mod > 0) {
|
|
$mod = $subtract - $mod;
|
|
}
|
|
if ($allow_high === false) {
|
|
$mod %= 10; // change 10 to zero
|
|
}
|
|
return $mod;
|
|
}
|
|
|
|
/**
|
|
* Validates a number
|
|
*
|
|
* @param string $number number to validate
|
|
* @param array $weights reference to array of weights
|
|
* @param int $modulo (optional) number
|
|
* @param int $subtract (optional) number
|
|
*
|
|
* @access protected
|
|
*
|
|
* @return bool true if valid, false if not
|
|
*/
|
|
function _checkControlNumber($number, &$weights, $modulo = 10, $subtract = 0)
|
|
{
|
|
if (strlen($number) < count($weights)) {
|
|
return false;
|
|
}
|
|
$target_digit = substr($number, count($weights), 1);
|
|
$control_digit = Validate::_getControlNumber($number, $weights, $modulo, $subtract, $modulo > 10);
|
|
|
|
if ($control_digit == -1) {
|
|
return false;
|
|
}
|
|
if ($target_digit === 'X' && $control_digit == 10) {
|
|
return true;
|
|
}
|
|
if ($control_digit != $target_digit) {
|
|
return false;
|
|
}
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Bulk data validation for data introduced in the form of an
|
|
* assoc array in the form $var_name => $value.
|
|
* Can be used on any of Validate subpackages
|
|
*
|
|
* @param array $data Ex: array('name' => 'toto', 'email' => 'toto@thing.info');
|
|
* @param array $val_type Contains the validation type and all parameters used in.
|
|
* 'val_type' is not optional
|
|
* others validations properties must have the same name as the function
|
|
* parameters.
|
|
* Ex: array('toto'=>array('type'=>'string','format'='toto@thing.info','min_length'=>5));
|
|
* @param boolean $remove if set, the elements not listed in data will be removed
|
|
*
|
|
* @return array value name => true|false the value name comes from the data key
|
|
*
|
|
* @access public
|
|
*/
|
|
function multiple(&$data, &$val_type, $remove = false)
|
|
{
|
|
$keys = array_keys($data);
|
|
$valid = array();
|
|
|
|
foreach ($keys as $var_name) {
|
|
if (!isset($val_type[$var_name])) {
|
|
if ($remove) {
|
|
unset($data[$var_name]);
|
|
}
|
|
continue;
|
|
}
|
|
$opt = $val_type[$var_name];
|
|
$methods = get_class_methods('Validate');
|
|
$val2check = $data[$var_name];
|
|
// core validation method
|
|
if (in_array(strtolower($opt['type']), $methods)) {
|
|
//$opt[$opt['type']] = $data[$var_name];
|
|
$method = $opt['type'];
|
|
unset($opt['type']);
|
|
|
|
if (sizeof($opt) == 1 && is_array(reset($opt))) {
|
|
$opt = array_pop($opt);
|
|
}
|
|
$valid[$var_name] = call_user_func(array('Validate', $method), $val2check, $opt);
|
|
|
|
/**
|
|
* external validation method in the form:
|
|
* "<class name><underscore><method name>"
|
|
* Ex: us_ssn will include class Validate/US.php and call method ssn()
|
|
*/
|
|
} elseif (strpos($opt['type'], '_') !== false) {
|
|
$validateType = explode('_', $opt['type']);
|
|
$method = array_pop($validateType);
|
|
$class = implode('_', $validateType);
|
|
$classPath = str_replace('_', DIRECTORY_SEPARATOR, $class);
|
|
$class = 'Validate_' . $class;
|
|
if (Validate::_includePathFileExists("Validate/$classPath.php")) {
|
|
include_once "Validate/$classPath.php";
|
|
} else {
|
|
trigger_error("$class isn't installed or you may have some permission issues", E_USER_ERROR);
|
|
}
|
|
|
|
$ce = substr(phpversion(), 0, 1) > 4 ?
|
|
class_exists($class, false) : class_exists($class);
|
|
if (!$ce ||
|
|
!in_array($method, get_class_methods($class))
|
|
) {
|
|
trigger_error("Invalid validation type $class::$method",
|
|
E_USER_WARNING);
|
|
continue;
|
|
}
|
|
unset($opt['type']);
|
|
if (sizeof($opt) == 1) {
|
|
$opt = array_pop($opt);
|
|
}
|
|
$valid[$var_name] = call_user_func(array($class, $method),
|
|
$data[$var_name], $opt);
|
|
} else {
|
|
trigger_error("Invalid validation type {$opt['type']}",
|
|
E_USER_WARNING);
|
|
}
|
|
}
|
|
return $valid;
|
|
}
|
|
|
|
/**
|
|
* Determine whether specified file exists along the include path.
|
|
*
|
|
* @param string $filename file to search for
|
|
*
|
|
* @access private
|
|
*
|
|
* @return bool true if file exists
|
|
*/
|
|
function _includePathFileExists($filename)
|
|
{
|
|
$paths = explode(":", ini_get("include_path"));
|
|
$result = false;
|
|
|
|
while ((!($result)) && (list($key,$val) = each($paths))) {
|
|
$result = file_exists($val . "/" . $filename);
|
|
}
|
|
return $result;
|
|
}
|
|
}
|
|
|