Home Explore Help
Sign In
kevin
/
r2c
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: fb7c85d1b7
Branches Tags
r2c
/
user
/
plugins
/
form
/
form.php

form.php 28 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861 
  1. <?php
    2. 

  2. namespace Grav\Plugin;
    3. 

  3. 

  4. use Composer\Autoload\ClassLoader;
    5. 

  5. use Grav\Common\Data\ValidationException;
    6. 

  6. use Grav\Common\Filesystem\Folder;
    7. 

  7. use Grav\Common\Page\Page;
    8. 

  8. use Grav\Common\Page\Pages;
    9. 

  9. use Grav\Common\Page\Types;
    10. 

  10. use Grav\Common\Plugin;
    11. 

  11. use Grav\Common\Twig\Twig;
    12. 

  12. use Grav\Common\Utils;
    13. 

  13. use Grav\Common\Uri;
    14. 

  14. use Grav\Plugin\Form\Form;
    15. 

  15. use RocketTheme\Toolbox\File\JsonFile;
    16. 

  16. use RocketTheme\Toolbox\File\YamlFile;
    17. 

  17. use Symfony\Component\Yaml\Yaml;
    18. 

  18. use RocketTheme\Toolbox\File\File;
    19. 

  19. use RocketTheme\Toolbox\Event\Event;
    20. 

  20. 

  21. /**
    22. 

  22.  * Class FormPlugin
    23. 

  23.  * @package Grav\Plugin
    24. 

  24.  */
    25. 

  25. class FormPlugin extends Plugin
    26. 

  26. {
    27. 

  27.     /** @var array */
    28. 

  28.     public $features = [
    29. 

  29.         'blueprints' => 1000
    30. 

  30.     ];
    31. 

  31. 

  32.     /** @var Form */
    33. 

  33.     protected $form;
    34. 

  34. 

  35.     /** @var array */
    36. 

  36.     protected $forms = [];
    37. 

  37. 

  38.     /** @var array */
    39. 

  39.     protected $flat_forms = [];
    40. 

  40. 

  41.     /** @var array */
    42. 

  42.     protected $json_response = [];
    43. 

  43. 

  44.     /** @var bool */
    45. 

  45.     protected $recache_forms = false;
    46. 

  46. 

  47. 

  48.     /**
    49. 

  49.      * @return array
    50. 

  50.      */
    51. 

  51.     public static function getSubscribedEvents()
    52. 

  52.     {
    53. 

  53.         return [
    54. 

  54.             'onPluginsInitialized' => [
    55. 

  55.                 ['autoload', 100000],
    56. 

  56.                 ['onPluginsInitialized', 0]
    57. 

  57.             ],
    58. 

  58.             'onTwigTemplatePaths' => ['onTwigTemplatePaths', 0]
    59. 

  59.         ];
    60. 

  60.     }
    61. 

  61. 

  62.     /**
    63. 

  63.      * [onPluginsInitialized:100000] Composer autoload.
    64. 

  64.      *
    65. 

  65.      * @return ClassLoader
    66. 

  66.      */
    67. 

  67.     public function autoload()
    68. 

  68.     {
    69. 

  69.         return require __DIR__ . '/vendor/autoload.php';
    70. 

  70.     }
    71. 

  71. 

  72.     /**
    73. 

  73.      * Initialize forms from cache if possible
    74. 

  74.      */
    75. 

  75.     public function onPluginsInitialized()
    76. 

  76.     {
    77. 

  77.         // Backwards compatibility for plugins that use forms.
    78. 

  78.         class_alias(Form::class, 'Grav\Plugin\Form');
    79. 

  79. 

  80.         if ($this->isAdmin()) {
    81. 

  81.             $this->enable([
    82. 

  82.                 'onPageInitialized' => ['onPageInitialized', 0],
    83. 

  83.                 'onGetPageTemplates' => ['onGetPageTemplates', 0],
    84. 

  84.             ]);
    85. 

  85.             return;
    86. 

  86.         }
    87. 

  87. 

  88.         $this->enable([
    89. 

  89.             'onPageProcessed' => ['onPageProcessed', 0],
    90. 

  90.             'onPagesInitialized' => ['onPagesInitialized', 0],
    91. 

  91.             'onPageInitialized' => ['onPageInitialized', 0],
    92. 

  92.             'onTwigInitialized' => ['onTwigInitialized', 0],
    93. 

  93.             'onTwigPageVariables' => ['onTwigVariables', 0],
    94. 

  94.             'onTwigSiteVariables' => ['onTwigVariables', 0],
    95. 

  95.             'onFormValidationProcessed' => ['onFormValidationProcessed', 0],
    96. 

  96.         ]);
    97. 

  97.     }
    98. 

  98. 

  99.     public function onGetPageTemplates(Event $event)
    100. 

  100.     {
    101. 

  101.         /** @var Types $types */
    102. 

  102.         $types = $event->types;
    103. 

  103.         $types->register('form');
    104. 

  104.     }
    105. 

  105. 

  106.     /**
    107. 

  107.      * Process forms after page header processing, but before caching
    108. 

  108.      *
    109. 

  109.      * @param Event $e
    110. 

  110.      */
    111. 

  111.     public function onPageProcessed(Event $e)
    112. 

  112.     {
    113. 

  113.         /** @var Page $page */
    114. 

  114.         $page = $e['page'];
    115. 

  115.         $page_route = $page->route();
    116. 

  116. 

  117.         if ($page->home()) {
    118. 

  118.             $page_route = '/';
    119. 

  119.         }
    120. 

  120. 

  121.         $header = $page->header();
    122. 

  122. 

  123.         // Call event to allow filling the page header form dynamically (e.g. use case: Comments plugin)
    124. 

  124.         $this->grav->fireEvent('onFormPageHeaderProcessed', new Event(['page' => $page, 'header' => $header]));
    125. 

  125. 

  126.         if ((isset($header->forms) && is_array($header->forms)) ||
    127. 

  127.             (isset($header->form) && is_array($header->form))) {
    128. 

  128.             $page_forms = [];
    129. 

  129. 

  130.             // Force never_cache_twig if modular form
    131. 

  131.             if ($page->modular()) {
    132. 

  132.                 $header->never_cache_twig = true;
    133. 

  133.             }
    134. 

  134. 

  135.             // Get the forms from the page headers
    136. 

  136.             if (isset($header->forms)) {
    137. 

  137.                 $page_forms = $header->forms;
    138. 

  138.             } elseif (isset($header->form)) {
    139. 

  139.                 $page_forms[] = $header->form;
    140. 

  140.             }
    141. 

  141. 

  142.             // Store the page forms in the forms instance
    143. 

  143.             foreach ($page_forms as $name => $page_form) {
    144. 

  144.                 $form = new Form($page, $name, $page_form);
    145. 

  145.                 $this->addForm($page_route, $form);
    146. 

  146.             }
    147. 

  147.         }
    148. 

  148.     }
    149. 

  149. 

  150.     /**
    151. 

  151.      * Initialize all the forms
    152. 

  152.      */
    153. 

  153.     public function onPagesInitialized()
    154. 

  154.     {
    155. 

  155.         $this->loadCachedForms();
    156. 

  156.     }
    157. 

  157. 

  158.     /**
    159. 

  159.      * Catches form processing if user posts the form.
    160. 

  160.      */
    161. 

  161.     public function onPageInitialized()
    162. 

  162.     {
    163. 

  163.         $submitted = false;
    164. 

  164.         $this->json_response = [];
    165. 

  165. 

  166.         // Save cached forms.
    167. 

  167.         if ($this->recache_forms) {
    168. 

  168.             $this->saveCachedForms();
    169. 

  169.         }
    170. 

  170. 

  171.         // Force rebuild form when form has not been built and form cache expired.
    172. 

  172.         // This happens when form cache expires before the page cache
    173. 

  173.         // and then does not trigger 'onPageProcessed' event.
    174. 

  174.         if (!$this->forms) {
    175. 

  175.             $this->onPageProcessed(new Event(['page' => $this->grav['page']]));
    176. 

  176.         }
    177. 

  177. 

  178.         // Enable form events if there's a POST
    179. 

  179.         if ($this->shouldProcessForm()) {
    180. 

  180.             $this->enable([
    181. 

  181.                 'onFormProcessed'       => ['onFormProcessed', 0],
    182. 

  182.                 'onFormValidationError' => ['onFormValidationError', 0],
    183. 

  183.                 'onFormFieldTypes'      => ['onFormFieldTypes', 0],
    184. 

  184.             ]);
    185. 

  185. 

  186.             $uri = $this->grav['uri'];
    187. 

  187. 

  188.             // Post the form
    189. 

  189.             if ($this->form) {
    190. 

  190.                 if ($uri->post('__form-file-uploader__') && $uri->extension() === 'json') {
    191. 

  191.                     $this->json_response = $this->form->uploadFiles();
    192. 

  192.                 } else if ($this->form && isset($_POST['__form-file-remover__']) && $this->grav['uri']->extension() === 'json') {
    193. 

  193.                     $this->json_response = $this->form->filesSessionRemove();
    194. 

  194.                 } else {
    195. 

  195.                     $this->form->post();
    196. 

  196.                     $submitted = true;
    197. 

  197.                 }
    198. 

  198.             }
    199. 

  199. 

  200.             // Clear flash objects for previously uploaded files
    201. 

  201.             // whenever the user switches page / reloads
    202. 

  202.             // ignoring any JSON / extension call
    203. 

  203.             if (!$submitted && null === $uri->extension()) {
    204. 

  204.                 // Discard any previously uploaded files session.
    205. 

  205.                 // and if there were any uploaded file, remove them from the filesystem
    206. 

  206.                 if ($flash = $this->grav['session']->getFlashObject('files-upload')) {
    207. 

  207.                     $flash = new \RecursiveIteratorIterator(new \RecursiveArrayIterator($flash));
    208. 

  208.                     foreach ($flash as $key => $value) {
    209. 

  209.                         if ($key !== 'tmp_name') {
    210. 

  210.                             continue;
    211. 

  211.                         }
    212. 

  212.                         @unlink($value);
    213. 

  213.                     }
    214. 

  214.                 }
    215. 

  215.             }
    216. 

  216.         }
    217. 

  217.     }
    218. 

  218. 

  219.     /**
    220. 

  220.      * Add simple `forms()` Twig function
    221. 

  221.      */
    222. 

  222.     public function onTwigInitialized()
    223. 

  223.     {
    224. 

  224.         $this->grav['twig']->twig()->addFunction(
    225. 

  225.             new \Twig_SimpleFunction('forms', [$this, 'getForm'])
    226. 

  226.         );
    227. 

  227. 

  228.         $this->grav['twig']->twig()->getExtension('Twig_Extension_Core')->setEscaper('yaml', function($twig, $string, $charset) {
    229. 

  229.             return Yaml::dump($string);
    230. 

  230.             }
    231. 

  231.         );
    232. 

  232. 

  233.     }
    234. 

  234. 

  235.     /**
    236. 

  236.      * Add current directory to twig lookup paths.
    237. 

  237.      */
    238. 

  238.     public function onTwigTemplatePaths()
    239. 

  239.     {
    240. 

  240.         $this->grav['twig']->twig_paths[] = __DIR__ . '/templates';
    241. 

  241.     }
    242. 

  242. 

  243.     /**
    244. 

  244.      * Make form accessible from twig.
    245. 

  245.      *
    246. 

  246.      * @param Event $event
    247. 

  247.      */
    248. 

  248.     public function onTwigVariables(Event $event = null)
    249. 

  249.     {
    250. 

  250.         if ($event !== null && isset($event['page'])) {
    251. 

  251.             $page = $event['page'];
    252. 

  252.         } else {
    253. 

  253.             $page = $this->grav['page'];
    254. 

  254.         }
    255. 

  255. 

  256.         $twig = $this->grav['twig'];
    257. 

  257. 

  258.         if (!isset($twig->twig_vars['form'])) {
    259. 

  259.             $twig->twig_vars['form'] = $this->form($page);
    260. 

  260.         }
    261. 

  261. 

  262.         if ($this->config->get('plugins.form.built_in_css')) {
    263. 

  263.             $this->grav['assets']->addCss('plugin://form/assets/form-styles.css');
    264. 

  264.         }
    265. 

  265.         $twig->twig_vars['form_max_filesize'] = Form::getMaxFilesize();
    266. 

  266.         $twig->twig_vars['form_json_response'] = $this->json_response;
    267. 

  267.     }
    268. 

  268. 

  269.     /**
    270. 

  270.      * Handle form processing instructions.
    271. 

  271.      *
    272. 

  272.      * @param Event $event
    273. 

  273.      * @throws \Exception
    274. 

  274.      */
    275. 

  275.     public function onFormProcessed(Event $event)
    276. 

  276.     {
    277. 

  277.         /** @var Form $form */
    278. 

  278.         $form = $event['form'];
    279. 

  279.         $action = $event['action'];
    280. 

  280.         $params = $event['params'];
    281. 

  281. 

  282.         $this->process($form);
    283. 

  283. 

  284.         switch ($action) {
    285. 

  285.             case 'captcha':
    286. 

  286.                 if (isset($params['recaptcha_secret'])) {
    287. 

  287.                     $recaptchaSecret = $params['recaptcha_secret'];
    288. 

  288.                 } elseif (isset($params['recatpcha_secret'])) {
    289. 

  289.                     // Included for backwards compatibility with typo (issue #51)
    290. 

  290.                     $recaptchaSecret = $params['recatpcha_secret'];
    291. 

  291.                 } else {
    292. 

  292.                     $recaptchaSecret = $this->config->get('plugins.form.recaptcha.secret_key');
    293. 

  293.                 }
    294. 

  294. 

  295.                 // Validate the captcha
    296. 

  296.                 $query = http_build_query([
    297. 

  297.                     'secret'   => $recaptchaSecret,
    298. 

  298.                     'response' => $form->value('g-recaptcha-response', true)
    299. 

  299.                 ]);
    300. 

  300. 

  301.                 $url = 'https://www.google.com/recaptcha/api/siteverify';
    302. 

  302.                 if (ini_get('allow_url_fopen')) {
    303. 

  303.                     $response = json_decode(file_get_contents($url . '?' . $query), true);
    304. 

  304.                 } else {
    305. 

  305.                     $ch = curl_init();
    306. 

  306.                     curl_setopt($ch, CURLOPT_URL, $url);
    307. 

  307.                     curl_setopt($ch, CURLOPT_POST, true);
    308. 

  308.                     curl_setopt($ch, CURLOPT_POSTFIELDS, $query);
    309. 

  309.                     curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
    310. 

  310.                     curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    311. 

  311.                     $response = json_decode(curl_exec($ch), true);
    312. 

  312.                 }
    313. 

  313. 

  314.                 if (!isset($response['success']) || $response['success'] !== true) {
    315. 

  315.                     $this->grav->fireEvent('onFormValidationError', new Event([
    316. 

  316.                         'form'    => $form,
    317. 

  317.                         'message' => $this->grav['language']->translate('PLUGIN_FORM.ERROR_VALIDATING_CAPTCHA')
    318. 

  318.                     ]));
    319. 

  319.                     $event->stopPropagation();
    320. 

  320. 

  321.                     return;
    322. 

  322.                 }
    323. 

  323.                 break;
    324. 

  324.             case 'timestamp':
    325. 

  325.                 $label = isset($params['label']) ? $params['label'] : 'Timestamp';
    326. 

  326.                 $format = isset($params['format']) ? $params['format'] : 'Y-m-d H:i:s';
    327. 

  327.                 $blueprint = $form->value()->blueprints();
    328. 

  328.                 $blueprint->set('form/fields/timestamp', ['name'=>'timestamp', 'label'=> $label]);
    329. 

  329.                 $now = new \DateTime('now');
    330. 

  330.                 $date_string = $now->format($format);
    331. 

  331.                 $form->setFields($blueprint->fields());
    332. 

  332.                 $form->setData('timestamp',$date_string);
    333. 

  333.                 break;
    334. 

  334.             case 'ip':
    335. 

  335.                 $label = isset($params['label']) ? $params['label'] : 'User IP';
    336. 

  336.                 $blueprint = $form->value()->blueprints();
    337. 

  337.                 $blueprint->set('form/fields/ip', ['name'=>'ip', 'label'=> $label]);
    338. 

  338.                 $form->setFields($blueprint->fields());
    339. 

  339.                 $form->setData('ip', Uri::ip());
    340. 

  340.                 break;
    341. 

  341.             case 'message':
    342. 

  342.                 $translated_string = $this->grav['language']->translate($params);
    343. 

  343.                 $vars = array(
    344. 

  344.                     'form' => $form
    345. 

  345.                 );
    346. 

  346. 

  347.                 /** @var Twig $twig */
    348. 

  348.                 $twig = $this->grav['twig'];
    349. 

  349.                 $processed_string = $twig->processString($translated_string, $vars);
    350. 

  350. 

  351.                 $form->message = $processed_string;
    352. 

  352.                 break;
    353. 

  353.             case 'redirect':
    354. 

  354.                 $this->grav['session']->setFlashObject('form', $form);
    355. 

  355.                 $url = ((string)$params);
    356. 

  356.                 $vars = array(
    357. 

  357.                     'form' => $form
    358. 

  358.                 );
    359. 

  359.                 /** @var Twig $twig */
    360. 

  360.                 $twig = $this->grav['twig'];
    361. 

  361.                 $url = $twig->processString($url, $vars);
    362. 

  362.                 $this->grav->redirect($url);
    363. 

  363.                 break;
    364. 

  364.             case 'reset':
    365. 

  365.                 if (Utils::isPositive($params)) {
    366. 

  366.                     $form->reset();
    367. 

  367.                 }
    368. 

  368.                 break;
    369. 

  369.             case 'display':
    370. 

  370.                 $route = (string)$params;
    371. 

  371.                 if (!$route || $route[0] !== '/') {
    372. 

  372.                     /** @var Uri $uri */
    373. 

  373.                     $uri = $this->grav['uri'];
    374. 

  374.                     $route = rtrim($uri->route(), '/'). '/' . ($route ?: '');
    375. 

  375.                 }
    376. 

  376. 

  377.                 /** @var Twig $twig */
    378. 

  378.                 $twig = $this->grav['twig'];
    379. 

  379.                 $twig->twig_vars['form'] = $form;
    380. 

  380. 

  381.                 /** @var Pages $pages */
    382. 

  382.                 $pages = $this->grav['pages'];
    383. 

  383.                 $page = $pages->dispatch($route, true);
    384. 

  384. 

  385.                 if (!$page) {
    386. 

  386.                     throw new \RuntimeException('Display page not found. Please check the page exists.', 400);
    387. 

  387.                 }
    388. 

  388. 

  389.                 unset($this->grav['page']);
    390. 

  390.                 $this->grav['page'] = $page;
    391. 

  391.                 break;
    392. 

  392.             case 'remember':
    393. 

  393.                 foreach ($params as $remember_field) {
    394. 

  394.                     $field_cookie = 'forms-'.$form['name'].'-'.$remember_field;
    395. 

  395.                     setcookie($field_cookie, $form->value($remember_field), time()+60*60*24*60);
    396. 

  396.                 }
    397. 

  397.                 break;
    398. 

  398.             case 'save':
    399. 

  399.                 $prefix = !empty($params['fileprefix']) ? $params['fileprefix'] : '';
    400. 

  400.                 $format = !empty($params['dateformat']) ? $params['dateformat'] : 'Ymd-His-u';
    401. 

  401.                 $raw_format = !empty($params['dateraw']) ? (bool) $params['dateraw'] : false;
    402. 

  402.                 $postfix = !empty($params['filepostfix']) ? $params['filepostfix'] : '';
    403. 

  403.                 $ext = !empty($params['extension']) ? '.' . trim($params['extension'], '.') : '.txt';
    404. 

  404.                 $filename = !empty($params['filename']) ? $params['filename'] : '';
    405. 

  405.                 $operation = !empty($params['operation']) ? $params['operation'] : 'create';
    406. 

  406. 

  407.                 if (!$filename) {
    408. 

  408.                     $filename = $prefix . $this->udate($format, $raw_format) . $postfix. $ext;
    409. 

  409.                 }
    410. 

  410. 

  411.                 /** @var Twig $twig */
    412. 

  412.                 $twig = $this->grav['twig'];
    413. 

  413.                 $vars = [
    414. 

  414.                     'form' => $form
    415. 

  415.                 ];
    416. 

  416. 

  417.                 // Process with Twig
    418. 

  418.                 $filename = $twig->processString($filename, $vars);
    419. 

  419. 

  420.                 $locator = $this->grav['locator'];
    421. 

  421.                 $path = $locator->findResource('user://data', true);
    422. 

  422.                 $dir = $path . DS . $form->name();
    423. 

  423.                 $fullFileName = $dir. DS . $filename;
    424. 

  424. 

  425.                 if (!empty($params['raw']) || !empty($params['template'])) {
    426. 

  426.                     // Save data as it comes from the form.
    427. 

  427.                     if ($operation === 'add') {
    428. 

  428.                         throw new \RuntimeException('Form save: \'operation: add\' is not supported for raw files');
    429. 

  429.                     }
    430. 

  430.                     switch ($ext) {
    431. 

  431.                         case '.yaml':
    432. 

  432.                             $file = YamlFile::instance($fullFileName);
    433. 

  433.                             break;
    434. 

  434.                         case '.json':
    435. 

  435.                             $file = JsonFile::instance($fullFileName);
    436. 

  436.                             break;
    437. 

  437.                         default:
    438. 

  438.                             throw new \RuntimeException('Form save: Unsupported RAW file format, please use either yaml or json');
    439. 

  439.                     }
    440. 

  440. 

  441.                     $data = [
    442. 

  442.                         '_data_type' => 'form',
    443. 

  443.                         'template' => !empty($params['template']) ? $params['template'] : null,
    444. 

  444.                         'name' => $form->name(),
    445. 

  445.                         'timestamp' => date('Y-m-d H:i:s'),
    446. 

  446.                         'content' => $form->getData()->toArray()
    447. 

  447.                     ];
    448. 

  448. 

  449.                     $file->save(array_filter($data));
    450. 

  450.                     break;
    451. 

  451.                 }
    452. 

  452. 

  453.                 $file = File::instance($fullFileName);
    454. 

  454. 

  455.                 if ($operation === 'create') {
    456. 

  456.                     $body = $twig->processString(!empty($params['body']) ? $params['body'] : '{% include "forms/data.txt.twig" %}',
    457. 

  457.                         $vars);
    458. 

  458.                     $file->save($body);
    459. 

  459.                 } elseif ($operation === 'add') {
    460. 

  460.                     if (!empty($params['body'])) {
    461. 

  461.                         // use body similar to 'create' action and append to file as a log
    462. 

  462.                         $body = $twig->processString($params['body'], $vars);
    463. 

  463. 

  464.                         // create folder if it doesn't exist
    465. 

  465.                         if (!file_exists($dir)) {
    466. 

  466.                             Folder::create($dir);
    467. 

  467.                         }
    468. 

  468. 

  469.                         // append data to existing file
    470. 

  470.                         file_put_contents($fullFileName, $body, FILE_APPEND | LOCK_EX);
    471. 

  471.                     } else {
    472. 

  472.                         // serialize YAML out to file for easier parsing as data sets
    473. 

  473.                         $vars = $vars['form']->value()->toArray();
    474. 

  474. 

  475.                         foreach ($form->fields as $field) {
    476. 

  476.                             if (!empty($field['process']['ignore'])) {
    477. 

  477.                                 unset($vars[$field['name']]);
    478. 

  478.                             }
    479. 

  479.                         }
    480. 

  480. 

  481.                         if (file_exists($fullFileName)) {
    482. 

  482.                             $data = Yaml::parse($file->content());
    483. 

  483.                             if (count($data) > 0) {
    484. 

  484.                                 array_unshift($data, $vars);
    485. 

  485.                             } else {
    486. 

  486.                                 $data[] = $vars;
    487. 

  487.                             }
    488. 

  488.                         } else {
    489. 

  489.                             $data[] = $vars;
    490. 

  490.                         }
    491. 

  491. 

  492.                         $file->save(Yaml::dump($data));
    493. 

  493.                     }
    494. 

  494.                 }
    495. 

  495.                 break;
    496. 

  496.             case 'call':
    497. 

  497.                 $callable = $params;
    498. 

  498. 

  499.                 if (is_array($callable) && !method_exists($callable[0], $callable[1])) {
    500. 

  500.                     throw new \RuntimeException('Form cannot be processed (method does not exist)');
    501. 

  501.                 }
    502. 

  502.                 if (is_string($callable) && !function_exists($callable)) {
    503. 

  503.                     throw new \RuntimeException('Form cannot be processed (function does not exist)');
    504. 

  504.                 }
    505. 

  505. 

  506.                 call_user_func($callable, $form);
    507. 

  507.                 break;
    508. 

  508.         }
    509. 

  509.     }
    510. 

  510. 

  511.     /**
    512. 

  512.      * Custom field logic can go in here
    513. 

  513.      *
    514. 

  514.      * @param Event $event
    515. 

  515.      */
    516. 

  516.     public function onFormValidationProcessed(Event $event)
    517. 

  517.     {
    518. 

  518.         // special check for honeypot field
    519. 

  519.         foreach ($event['form']->fields() as $field) {
    520. 

  520.             if ($field['type'] === 'honeypot' && !empty($event['form']->value($field['name']))) {
    521. 

  521.                 throw new ValidationException('Are you a bot?');
    522. 

  522.             }
    523. 

  523.         }
    524. 

  524.     }
    525. 

  525. 

  526.     /**
    527. 

  527.      * Handle form validation error
    528. 

  528.      *
    529. 

  529.      * @param  Event $event An event object
    530. 

  530.      * @throws \Exception
    531. 

  531.      */
    532. 

  532.     public function onFormValidationError(Event $event)
    533. 

  533.     {
    534. 

  534.         $form = $event['form'];
    535. 

  535.         if (isset($event['message'])) {
    536. 

  536.             $form->status = 'error';
    537. 

  537.             $form->message = $event['message'];
    538. 

  538.             $form->messages = $event['messages'];
    539. 

  539.         }
    540. 

  540. 

  541.         $uri = $this->grav['uri'];
    542. 

  542.         $route = $uri->route();
    543. 

  543. 

  544.         /** @var Twig $twig */
    545. 

  545.         $twig = $this->grav['twig'];
    546. 

  546.         $twig->twig_vars['form'] = $form;
    547. 

  547. 

  548.         /** @var Pages $pages */
    549. 

  549.         $pages = $this->grav['pages'];
    550. 

  550.         $page = $pages->dispatch($route, true);
    551. 

  551. 

  552.         if ($page) {
    553. 

  553.             unset($this->grav['page']);
    554. 

  554.             $this->grav['page'] = $page;
    555. 

  555.         }
    556. 

  556. 

  557.         $event->stopPropagation();
    558. 

  558.     }
    559. 

  559. 

  560.     /**
    561. 

  561.      * Add a form to the forms plugin
    562. 

  562.      *
    563. 

  563.      * @param $page_route
    564. 

  564.      * @param $form
    565. 

  565.      */
    566. 

  566.     public function addForm($page_route, $form)
    567. 

  567.     {
    568. 

  568. 

  569.         $form_array = [$form['name'] => $form];
    570. 

  570.         if (array_key_exists($page_route, $this->forms)) {
    571. 

  571.             if (!isset($this->form[$page_route][$form['name']])) {
    572. 

  572.                 $this->forms[$page_route] = array_merge($this->forms[$page_route], $form_array);
    573. 

  573.             }
    574. 

  574.         } else {
    575. 

  575.             $this->forms[$page_route] = $form_array;
    576. 

  576. 

  577.         }
    578. 

  578. 

  579.         $this->flattenForms();
    580. 

  580.         $this->recache_forms = true;
    581. 

  581.     }
    582. 

  582. 

  583.     /**
    584. 

  584.      * function to get a specific form
    585. 

  585.      *
    586. 

  586.      * @param null|array|string $data optional form `name`
    587. 

  587.      *
    588. 

  588.      * @return null|Form
    589. 

  589.      */
    590. 

  590.     public function getForm($data = null)
    591. 

  591.     {
    592. 

  592.         $page_route = null;
    593. 

  593.         $form_name = null;
    594. 

  594. 

  595.         if (is_array($data)) {
    596. 

  596.             if (isset($data['name'])) {
    597. 

  597.                 $form_name = $data['name'];
    598. 

  598.             }
    599. 

  599.             if (isset($data['route'])) {
    600. 

  600.                 $page_route = $data['route'];
    601. 

  601.             }
    602. 

  602.         } elseif (is_string($data)) {
    603. 

  603.             $form_name = $data;
    604. 

  604.         }
    605. 

  605. 

  606.         // if no form name, use the first form found in the page
    607. 

  607.         if (!$form_name) {
    608. 

  608.             // If page route not provided, use the current page
    609. 

  609.             if (!$page_route) {
    610. 

  610.                 // Get page route
    611. 

  611.                 $page_route = $this->grav['page']->route();
    612. 

  612. 

  613.                 // fallback using current URI if page not initialized yet
    614. 

  614.                 if (!$page_route) {
    615. 

  615.                     $page_route = $this->getCurrentPageRoute();
    616. 

  616.                 }
    617. 

  617.             }
    618. 

  618. 

  619.             if (isset($this->forms[$page_route])) {
    620. 

  620.                 $forms = $this->forms[$page_route];
    621. 

  621.                 $first_form = array_shift($forms);
    622. 

  622.                 $form_name = $first_form['name'];
    623. 

  623.             } else {
    624. 

  624.                 //No form on this route. Try looking up in the current page first
    625. 

  625.                 return new Form($this->grav['page']);
    626. 

  626.             }
    627. 

  627.         }
    628. 

  628. 

  629.         // return the form you are looking for if available
    630. 

  630.         return $this->getFormByName($form_name);
    631. 

  631.     }
    632. 

  632. 

  633.     /**
    634. 

  634.      * Get list of form field types specified in this plugin. Only special types needs to be listed.
    635. 

  635.      *
    636. 

  636.      * @return array
    637. 

  637.      */
    638. 

  638.     public function getFormFieldTypes()
    639. 

  639.     {
    640. 

  640.         return [
    641. 

  641.             'column' => [
    642. 

  642.                 'input@' => false
    643. 

  643.             ],
    644. 

  644.             'columns' => [
    645. 

  645.                 'input@' => false
    646. 

  646.             ],
    647. 

  647.             'fieldset' => [
    648. 

  648.                 'input@' => false
    649. 

  649.             ],
    650. 

  650.             'conditional' => [
    651. 

  651.                 'input@' => false
    652. 

  652.             ],
    653. 

  653.             'display' => [
    654. 

  654.                 'input@' => false
    655. 

  655.             ],
    656. 

  656.             'spacer' => [
    657. 

  657.                 'input@' => false
    658. 

  658.             ],
    659. 

  659.             'captcha' => [
    660. 

  660.                 'input@' => false
    661. 

  661.             ]
    662. 

  662.         ];
    663. 

  663.     }
    664. 

  664. 

  665.     /**
    666. 

  666.      * Process a form
    667. 

  667.      *
    668. 

  668.      * Currently available processing tasks:
    669. 

  669.      *
    670. 

  670.      * - fillWithCurrentDateTime
    671. 

  671.      *
    672. 

  672.      * @param Form $form
    673. 

  673.      */
    674. 

  674.     protected function process($form)
    675. 

  675.     {
    676. 

  676.         foreach ($form->fields as $field) {
    677. 

  677.             if (!empty($field['process']['fillWithCurrentDateTime'])) {
    678. 

  678.                 $form->setData($field['name'], gmdate('D, d M Y H:i:s', time()));
    679. 

  679.             }
    680. 

  680.         }
    681. 

  681.     }
    682. 

  682. 

  683.     /**
    684. 

  684.      * Get current page's route
    685. 

  685.      *
    686. 

  686.      * @return mixed
    687. 

  687.      */
    688. 

  688.     protected function getCurrentPageRoute()
    689. 

  689.     {
    690. 

  690.         $path = $this->grav['uri']->route();
    691. 

  691.         $path = $path ?: '/';
    692. 

  692.         return $path;
    693. 

  693.     }
    694. 

  694. 

  695.     /**
    696. 

  696.      * Retrieve a form based on the form name
    697. 

  697.      *
    698. 

  698.      * @param $form_name
    699. 

  699.      * @return mixed
    700. 

  700.      */
    701. 

  701.     protected function getFormByName($form_name)
    702. 

  702.     {
    703. 

  703.         if (array_key_exists($form_name, $this->flat_forms)) {
    704. 

  704.             return $this->flat_forms[$form_name];
    705. 

  705.         }
    706. 

  706.         return null;
    707. 

  707.     }
    708. 

  708. 

  709.     /**
    710. 

  710.      * Determine if the page has a form submission that should be processed
    711. 

  711.      *
    712. 

  712.      * @return bool
    713. 

  713.      */
    714. 

  714.     protected function shouldProcessForm()
    715. 

  715.     {
    716. 

  716.         $uri = $this->grav['uri'];
    717. 

  717.         $nonce = $uri->post('form-nonce');
    718. 

  718.         $status = $nonce ? true : false; // php72 quirk?
    719. 

  719.         $refresh_prevention = null;
    720. 

  720. 

  721.         if ($status && $this->form()) {
    722. 

  722.             // Set page template if passed by form
    723. 

  723.             if (isset($this->form->template)) {
    724. 

  724.                 $this->grav['page']->template($this->form->template);
    725. 

  725.             }
    726. 

  726. 

  727.             if (isset($this->form->refresh_prevention)) {
    728. 

  728.                 $refresh_prevention = (bool) $this->form->refresh_prevention;
    729. 

  729.             } else {
    730. 

  730.                 $refresh_prevention = $this->config->get('plugins.form.refresh_prevention', false);
    731. 

  731.             }
    732. 

  732. 

  733.             $unique_form_id = $uri->post('__unique_form_id__', FILTER_SANITIZE_STRING);
    734. 

  734. 

  735.             if ($refresh_prevention && $unique_form_id) {
    736. 

  736.                 if ($this->grav['session']->unique_form_id !== $unique_form_id) {
    737. 

  737.                     $this->grav['session']->unique_form_id = $unique_form_id;
    738. 

  738.                 } else {
    739. 

  739.                     $status = false;
    740. 

  740.                     $this->form->message = $this->grav['language']->translate('PLUGIN_FORM.FORM_ALREADY_SUBMITTED');
    741. 

  741.                     $this->form->status = 'error';
    742. 

  742.                 }
    743. 

  743.             }
    744. 

  744.         }
    745. 

  745. 

  746.         return $status;
    747. 

  747.     }
    748. 

  748. 

  749.     /**
    750. 

  750.      * Flatten the forms array into something that can be more easily searched
    751. 

  751.      */
    752. 

  752.     protected function flattenForms()
    753. 

  753.     {
    754. 

  754.         $this->flat_forms = Utils::arrayFlatten($this->forms);
    755. 

  755.     }
    756. 

  756. 

  757.     /**
    758. 

  758.      * Get the current form, should already be processed but can get it directly from the page if necessary
    759. 

  759.      *
    760. 

  760.      * @param Page|null $page
    761. 

  761.      * @return Form|mixed
    762. 

  762.      */
    763. 

  763.     protected function form($page = null)
    764. 

  764.     {
    765. 

  765.         // Regenerate list of flat_forms if not already populated
    766. 

  766.         if (empty($this->flat_forms)) {
    767. 

  767.             $this->flattenForms();
    768. 

  768.         }
    769. 

  769. 

  770.         if (null === $this->form) {
    771. 

  771.             // try to get the page if possible
    772. 

  772.             if (null === $page) {
    773. 

  773.                 $page = $this->grav['page'];
    774. 

  774.             }
    775. 

  775. 

  776.             $form_name = $this->grav['uri']->post('__form-name__', FILTER_SANITIZE_STRING);
    777. 

  777. 

  778.             if (!$form_name) {
    779. 

  779.                 $form_name = $page ? $page->slug() : null;
    780. 

  780.             }
    781. 

  781. 

  782.             $this->form = $this->getFormByName($form_name);
    783. 

  783. 

  784.             // last attempt using current page's form
    785. 

  785.             if (null === $this->form && $page) {
    786. 

  786.                 $header = $page->header();
    787. 

  787. 

  788.                 if (isset($header->form)) {
    789. 

  789.                     $this->form = new Form($page);
    790. 

  790.                 }
    791. 

  791.             }
    792. 

  792.         }
    793. 

  793. 

  794.         return $this->form;
    795. 

  795.     }
    796. 

  796. 

  797.     /**
    798. 

  798.      * Load cached forms and merge with any currently found forms
    799. 

  799.      */
    800. 

  800.     protected function loadCachedForms()
    801. 

  801.     {
    802. 

  802.         // Get and set the cache of forms if it exists
    803. 

  803.         list($forms, $flat_forms) = $this->grav['cache']->fetch($this->getFormCacheId());
    804. 

  804. 

  805.         // Only store the forms if they are an array
    806. 

  806.         if (is_array($forms)) {
    807. 

  807.             $this->forms = array_merge($this->forms, $forms);
    808. 

  808.         }
    809. 

  809. 

  810.         // Only store the flat_forms if they are an array
    811. 

  811.         if (is_array($flat_forms)) {
    812. 

  812.             $this->flat_forms = array_merge($this->flat_forms, $flat_forms);
    813. 

  813.         }
    814. 

  814.     }
    815. 

  815. 

  816.     /**
    817. 

  817.      * Save the current state of the forms
    818. 

  818.      */
    819. 

  819.     protected function saveCachedForms()
    820. 

  820.     {
    821. 

  821.         // Save the current state of the forms to cache
    822. 

  822.         if ($this->recache_forms) {
    823. 

  823.             $this->recache_forms = false;
    824. 

  824.             $this->grav['cache']->save($this->getFormCacheId(), [$this->forms, $this->flat_forms]);
    825. 

  825.         }
    826. 

  826.     }
    827. 

  827. 

  828.     /**
    829. 

  829.      * Get the current page cache based id for the forms cache
    830. 

  830.      *
    831. 

  831.      * @return string
    832. 

  832.      */
    833. 

  833.     protected function getFormCacheId()
    834. 

  834.     {
    835. 

  835.         return $this->grav['pages']->getPagesCacheId() . '-form-plugin';
    836. 

  836.     }
    837. 

  837. 

  838.     /**
    839. 

  839.      * Create unix timestamp for storing the data into the filesystem.
    840. 

  840.      *
    841. 

  841.      * @param string $format
    842. 

  842.      * @param bool   $raw
    843. 

  843.      *
    844. 

  844.      * @return string
    845. 

  845.      */
    846. 

  846.     protected function udate($format = 'u', $raw = false)
    847. 

  847.     {
    848. 

  848. 

  849.         $utimestamp = microtime(true);
    850. 

  850. 

  851.         if ($raw) {
    852. 

  852.             return date($format);
    853. 

  853.         }
    854. 

  854. 

  855.         $timestamp = floor($utimestamp);
    856. 

  856.         $milliseconds = round(($utimestamp - $timestamp) * 1000000);
    857. 

  857. 

  858.         return date(preg_replace('`(?<!\\\\)u`', \sprintf('%06d', $milliseconds), $format), $timestamp);
    859. 

  859.     }
    860. 

  860. 

  861. }
    862.