includes/render.php~
changeset 1 fe660c52c48f
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/includes/render.php~	Wed Jun 13 16:07:17 2007 -0400
@@ -0,0 +1,792 @@
+<?php
+/*
+ * Enano - an open-source CMS capable of wiki functions, Drupal-like sidebar blocks, and everything in between
+ * Version 1.0 (Banshee)
+ * render.php - handles fetching pages and parsing them into HTML
+ * Copyright (C) 2006-2007 Dan Fuhry
+ *
+ * This program is Free Software; you can redistribute and/or modify it under the terms of the GNU General Public License
+ * as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied
+ * warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for details.
+ */
+ 
+class RenderMan {
+  
+  function strToPageID($string)
+  {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    $k = array_keys($paths->nslist);
+    for($i=0;$i<sizeof($paths->nslist);$i++)
+    {
+      $ln = strlen($paths->nslist[$k[$i]]);
+      if(substr($string, 0, $ln) == $paths->nslist[$k[$i]])
+      {
+        $ns = $k[$i];
+        $pg = substr($string, strlen($paths->nslist[$ns]), strlen($string));
+      }
+    }
+    return Array($pg, $ns);
+  }
+  
+  function getPage($page_id, $namespace, $wiki = 1, $smilies = true, $filter_links = true, $redir = true, $render = true)
+  {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    dc_here('render: page requested<br />ID/namespace: '."$page_id, $namespace<br />Wiki mode: $wiki<br />Smilies: ".(string)$smilies."<br />Allow redirects: ".(string)$redir);
+    
+    $perms =& $session;
+    
+    if ( $page_id != $paths->cpage['urlname_nons'] || $namespace != $paths->namespace )
+    {
+      unset($perms);
+      unset($perms); // PHP <5.1.5 Zend bug
+      $perms = $session->fetch_page_acl($page_id, $namespace);
+    }
+    
+    if(!$perms->get_permissions('read'))
+      return 'Access denied ('.$paths->nslist[$namespace].$page_id.')';
+    
+    if($wiki == 0 || $render == false)
+    {
+      if(!$perms->get_permissions('view_source'))
+      {
+        return 'Access denied ('.$paths->nslist[$namespace].$page_id.')';
+      }
+    }
+    
+    $q = $db->sql_query('SELECT page_text,char_tag FROM '.table_prefix.'page_text WHERE page_id=\''.$db->escape($page_id).'\' AND namespace=\''.$db->escape($namespace).'\';');
+    if ( !$q )
+    {
+      $db->_die('Method called was: RenderMan::getPage(\''.$page_id.'\', \''.$namespace.'\');.');
+    }
+    if ( $db->numrows() < 1 )
+    {
+      return false;
+    }
+    $row = $db->fetchrow();
+    $db->free_result();
+    
+    $message = $row['page_text'];
+    $chartag = $row['char_tag'];
+    unset($row); // Free some memory
+    
+    if ( preg_match('#^\#redirect \[\[(.+?)\]\]#', $message, $m) && $redir && !isset($_GET['redirect']) || ( isset($_GET['redirect']) && $_GET['redirect'] != 'no' ) )
+    {
+      dc_here('render: looks like a redirect page to me...');
+      $old = $paths->cpage;
+      $a = RenderMan::strToPageID($m[1]);
+      $a[0] = str_replace(' ', '_', $a[0]);
+      
+      $pageid = str_replace(' ', '_', $paths->nslist[$a[1]] . $a[0]);
+      $paths->page = $pageid;
+      $paths->cpage = $paths->pages[$pageid];
+      //die('<pre>'.print_r($paths->cpage,true).'</pre>');
+      
+      dc_here('render: wreckin\' $template, and reloading the theme vars to match the new page<br />This might get messy!');
+      
+      unset($template);
+      unset($GLOBALS['template']);
+      
+      $GLOBALS['template'] = new template();
+      global $template;
+      
+      $template->template(); // Tear down and rebuild the template parser
+      $template->load_theme($session->theme, $session->style);
+      
+      $data = '<div><small>(Redirected from <a href="'.makeUrlNS($old['namespace'], $old['urlname_nons'], 'redirect=no', true).'">'.$old['name'].'</a>)</small></div>'.RenderMan::getPage($a[0], $a[1], $wiki, $smilies, $filter_links, false /* Enforces a maximum of one redirect */);
+      
+      return $data;
+    }
+    else if(preg_match('#^\#redirect \[\[(.+?)\]\]#', $message, $m) && isset($_GET['redirect']) && $_GET['redirect'] == 'no')
+    {
+      dc_here('render: looks like a redirect page to me...');
+      dc_here('render: skipping redirect as requested on URI');
+      preg_match('#^\#redirect \[\[(.+)\]\]#', $message, $m);
+      $m[1] = str_replace(' ', '_', $m[1]);
+      $message = preg_replace('#\#redirect \[\[(.+)\]\]#', '<nowiki><div class="mdg-infobox"><table border="0" width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><img alt="Cute wet-floor icon" src="'.scriptPath.'/images/redirector.png" /></td><td valign="top" style="padding-left: 10px;"><b>This page is a <i>redirector</i>.</b><br />This means that this page will not show its own content by default. Instead it will display the contents of the page it redirects to.<br /><br />To create a redirect page, make the <i>first characters</i> in the page content <tt>#redirect [[Page_ID]]</tt>. For more information, see the Enano <a href="http://enanocms.org/Help:Wiki_formatting">Wiki formatting guide</a>.<br /><br />This page redirects to <a href="'.makeUrl($m[1]).'">'.$paths->pages[$m[1]]['name'].'</a>.</td></tr></table></div><br /><hr style="margin-left: 1em; width: 200px;" /></nowiki>', $message);
+    }
+    $session->disallow_password_grab();
+    dc_here('render: alright, got the text, formatting...');
+    return ($render) ? RenderMan::render($message, $wiki, $smilies, $filter_links) : $message;
+  }
+  
+  function getTemplate($id, $parms)
+  {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    dc_here('render: template requested: '.$id);
+    if(!isset($paths->pages[$paths->nslist['Template'].$id])) 
+    {
+      return '[['.$paths->nslist['Template'].$id.']]';
+    }
+    if(isset($paths->template_cache[$id]))
+    {
+      $text = $paths->template_cache[$id];
+    }
+    else
+    {
+      $text = RenderMan::getPage($id, 'Template', 0, true, true, 0);
+      $paths->template_cache[$id] = $text;
+    }
+    
+    $text = preg_replace('/<noinclude>(.*?)<\/noinclude>/is', '', $text);
+    $text = preg_replace('/<nodisplay>(.*?)<\/nodisplay>/is', '\\1', $text);
+    
+    preg_match_all('#\(_([0-9]+)_\)#', $text, $matchlist);
+    
+    foreach($matchlist[1] as $m)
+    {
+      if(isset($parms[((int)$m)+1])) 
+      {
+        $p = $parms[((int)$m)+1];
+      }
+      else
+      {
+        $p = '<b>Notice:</b> RenderMan::getTemplate(): Parameter '.$m.' is not set';
+      }
+      $text = str_replace('(_'.$m.'_)', $p, $text);
+    }
+    $text = RenderMan::include_templates($text);
+    return $text;
+  }
+  
+  function fetch_template_text($id)
+  {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    dc_here('render: template raw data requested: '.$id);
+    if(!isset($paths->pages[$paths->nslist['Template'].$id])) 
+    {
+      return '[['.$paths->nslist['Template'].$id.']]';
+    }
+    if(isset($paths->template_cache[$id]))
+    {
+      $text = $paths->template_cache[$id];
+    }
+    else
+    {
+      $text = RenderMan::getPage($id, 'Template', 0, false, false, false, false);
+      $paths->template_cache[$id] = $text;
+    }
+    
+    if ( is_string($text) )
+    {
+      $text = preg_replace('/<noinclude>(.*?)<\/noinclude>/is', '', $text);
+      $text = preg_replace('/<nodisplay>(.*?)<\/nodisplay>/is', '\\1', $text);
+    }
+    
+    return $text;
+  }
+  
+  function render($text, $wiki = 1, $smilies = true, $filter_links = true)
+  {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    if($smilies)
+    {
+      $text = RenderMan::smilieyize($text);
+    }
+    if($wiki == 1)
+    {
+      $text = RenderMan::next_gen_wiki_format($text);
+    }
+    elseif($wiki == 2)
+    {
+      $text = $template->tplWikiFormat($text);
+    }
+    return $text;
+  }
+  
+  function PlainTextRender($text, $wiki = 1, $smilies = false, $filter_links = true)
+  {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    if($smilies)
+    {
+      $text = RenderMan::smilieyize($text);
+    }
+    if($wiki == 1)
+    {
+      $text = RenderMan::next_gen_wiki_format($text, true);
+    }
+    elseif($wiki == 2)
+    {
+      $text = $template->tplWikiFormat($text);
+    }
+    return $text;
+  }
+  
+  function next_gen_wiki_format($text, $plaintext = false, $filter_links = true, $do_params = false)
+  {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    $random_id = md5( time() . mt_rand() );
+    
+    // Strip out <nowiki> sections and PHP code
+    
+    $php = preg_match_all('#<\?php(.*?)\?>#is', $text, $phpsec);
+    
+    for($i=0;$i<sizeof($phpsec[1]);$i++)
+    {
+      $text = str_replace('<?php'.$phpsec[1][$i].'?>', '{PHP:'.$random_id.':'.$i.'}', $text);
+    }
+    
+    $nw = preg_match_all('#<nowiki>(.*?)<\/nowiki>#is', $text, $nowiki);
+    
+    for($i=0;$i<sizeof($nowiki[1]);$i++)
+    {
+      $text = str_replace('<nowiki>'.$nowiki[1][$i].'</nowiki>', '{NOWIKI:'.$random_id.':'.$i.'}', $text);
+    }
+    
+    $text = preg_replace('/<noinclude>(.*?)<\/noinclude>/is', '\\1', $text);
+    if ( $paths->namespace == 'Template' )
+    {
+      $text = preg_replace('/<nodisplay>(.*?)<\/nodisplay>/is', '', $text);
+    }
+    
+    if ( !$plaintext )
+    {
+      // Process images
+      
+      $j = preg_match_all('#\[\[:'.$paths->nslist['File'].'([\w\s0-9_\(\)!@%\^\+\|\.-]+?)\|([0-9]+)\|([0-9]+)\]\]#is', $text, $matchlist);
+      $matches = Array();
+      $matches['images']  =& $matchlist[1];
+      $matches['widths']  =& $matchlist[2];
+      $matches['heights'] =& $matchlist[3];
+      for($i=0;$i<sizeof($matchlist[1]);$i++)
+      {
+        if(isPage($paths->nslist['File'].$matches['images'][$i])) $text = str_replace('[[:'.$paths->nslist['File'].$matches['images'][$i].'|'.$matches['widths'][$i].'|'.$matches['heights'][$i].']]',
+          '<nowiki><a href="'.makeUrlNS('File', $matches['images'][$i]).'"><img alt="'.$matches['images'][$i].'" style="border: 0" src="'.makeUrlNS('Special', 'DownloadFile/'.$matches['images'][$i], 'preview&amp;width='.$matches['widths'][$i].'&amp;height='.$matches['heights'][$i]).'" /></a></nowiki>',
+          $text);
+      }
+      
+      $j = preg_match_all('#\[\[:'.$paths->nslist['File'].'([\w\s0-9_\(\)!@%\^\+\|\.-]+?)\]\]#is', $text, $matchlist);
+      $matches = Array();
+      $matches['images'] = $matchlist[1];
+      for($i=0;$i<sizeof($matchlist[1]);$i++)
+      {
+        if(isPage($paths->nslist['File'].$matches['images'][$i])) $text = str_replace('[[:'.$paths->nslist['File'].$matches['images'][$i].']]',
+          '<nowiki><a href="'.makeUrlNS('File', $matches['images'][$i]).'"><img alt="'.$matches['images'][$i].'" style="border: 0" src="'.makeUrlNS('Special', 'DownloadFile/'.$matches['images'][$i]).'" /></a></nowiki>',
+          $text);
+      }
+      
+    }
+    
+    if($do_params)
+    {
+      preg_match_all('#\(_([0-9]+)_\)#', $text, $matchlist);
+      foreach($matchlist[1] as $m)
+      {
+        $text = str_replace('(_'.$m.'_)', $paths->getParam((int)$m), $text);
+      }
+    }
+    
+    $text = RenderMan::include_templates($text);
+    
+    $text = process_tables($text);
+    
+    $wiki =& Text_Wiki::singleton('Mediawiki');
+    if($plaintext)
+    {
+      $wiki->setRenderConf('Plain', 'wikilink', 'view_url', contentPath);
+      $result = $wiki->transform($text, 'Plain');
+    }
+    else
+    {
+      $wiki->setRenderConf('Xhtml', 'wikilink', 'view_url', contentPath);
+      $wiki->setRenderConf('Xhtml', 'Url', 'css_descr', 'external');
+      $result = $wiki->transform($text, 'Xhtml');
+    }
+    
+    // Reinsert <nowiki> sections
+    for($i=0;$i<$nw;$i++)
+    {
+      $result = str_replace('{NOWIKI:'.$random_id.':'.$i.'}', $nowiki[1][$i], $result);
+    }
+    
+    // Reinsert PHP
+    for($i=0;$i<$php;$i++)
+    {
+      $result = str_replace('{PHP:'.$random_id.':'.$i.'}', '<?php'.$phpsec[1][$i].'?>', $result);
+    }
+    
+    return $result;
+    
+  }
+  
+  function wikiFormat($message, $filter_links = true, $do_params = false, $plaintext = false) {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    
+    return RenderMan::next_gen_wiki_format($message, $plaintext, $filter_links, $do_params);
+    
+    $random_id = md5( time() . mt_rand() );
+    
+    // Strip out <nowiki> sections
+    $nw = preg_match_all('#<nowiki>(.*?)<\/nowiki>#is', $message, $nowiki);
+    
+    if(!$plaintext)
+    {
+    
+      //return '<pre>'.print_r($nowiki,true).'</pre>';
+      
+      for($i=0;$i<sizeof($nowiki[1]);$i++)
+      {
+        $message = str_replace('<nowiki>'.$nowiki[1][$i].'</nowiki>', '{NOWIKI:'.$random_id.':'.$i.'}', $message);
+      }
+      
+      $message = preg_replace('/<noinclude>(.*?)<\/noinclude>/is', '\\1', $message);
+      
+      //return '<pre>'.htmlspecialchars($message).'</pre>';
+      
+      $j = preg_match_all('#\[\[:'.$paths->nslist['File'].'([\w\s0-9_\(\)!@%\^\+\|\.-]+?)\|([0-9]+)\|([0-9]+)\]\]#is', $message, $matchlist);
+      $matches = Array();
+      $matches['images'] = $matchlist[1];
+      $matches['widths'] = $matchlist[2];
+      $matches['heights'] = $matchlist[3];
+      for($i=0;$i<sizeof($matchlist[1]);$i++)
+      {
+        if(isPage($paths->nslist['File'].$matches['images'][$i])) $message = str_replace('[[:'.$paths->nslist['File'].$matches['images'][$i].'|'.$matches['widths'][$i].'|'.$matches['heights'][$i].']]',
+          '<nowiki><a href="'.makeUrlNS('File', $matches['images'][$i]).'"><img alt="'.$matches['images'][$i].'" style="border: 0" src="'.makeUrlNS('Special', 'DownloadFile/'.$matches['images'][$i], 'preview&amp;width='.$matches['widths'][$i].'&amp;height='.$matches['heights'][$i]).'" /></a></nowiki>',
+          $message);
+      }
+      
+      $j = preg_match_all('#\[\[:'.$paths->nslist['File'].'([\w\s0-9_\(\)!@%\^\+\|\.-]+?)\]\]#is', $message, $matchlist);
+      $matches = Array();
+      $matches['images'] = $matchlist[1];
+      for($i=0;$i<sizeof($matchlist[1]);$i++)
+      {
+        if(isPage($paths->nslist['File'].$matches['images'][$i])) $message = str_replace('[[:'.$paths->nslist['File'].$matches['images'][$i].']]',
+          '<nowiki><a href="'.makeUrlNS('File', $matches['images'][$i]).'"><img alt="'.$matches['images'][$i].'" style="border: 0" src="'.makeUrlNS('Special', 'DownloadFile/'.$matches['images'][$i]).'" /></a></nowiki>',
+          $message);
+      }
+    
+    }
+    
+    if($do_params)
+    {
+      preg_match_all('#\(_([0-9]+)_\)#', $message, $matchlist);
+      foreach($matchlist[1] as $m)
+      {
+        $message = str_replace('(_'.$m.'_)', $paths->getParam((int)$m), $message);
+      }
+    }
+    
+    $message = RenderMan::include_templates($message);
+    
+    // Reinsert <nowiki> sections
+    for($i=0;$i<$nw;$i++)
+    {
+      $message = str_replace('{NOWIKI:'.$random_id.':'.$i.'}', '<nowiki>'.$nowiki[1][$i].'</nowiki>', $message);
+    }
+    
+    $message = process_tables($message);
+    //if($message2 != $message) return '<pre>'.htmlspecialchars($message2).'</pre>';
+    //$message = str_replace(array('<table>', '</table>'), array('<nowiki><table>', '</table></nowiki>'), $message);
+    
+    $wiki =& Text_Wiki::singleton('Mediawiki');
+    if($plaintext)
+    {
+      $wiki->setRenderConf('Plain', 'wikilink', 'view_url', contentPath);
+      $result = $wiki->transform($message, 'Plain');
+    } else {
+      $wiki->setRenderConf('Xhtml', 'wikilink', 'view_url', contentPath);
+      $wiki->setRenderConf('Xhtml', 'Url', 'css_descr', 'external');
+      $result = $wiki->transform($message, 'Xhtml');
+    }
+    
+    // HTML fixes
+    $result = preg_replace('#<tr>([\s]*?)<\/tr>#is', '', $result);
+    $result = preg_replace('#<p>([\s]*?)<\/p>#is', '', $result);
+    $result = preg_replace('#<br />([\s]*?)<table#is', '<table', $result);
+    $result = str_replace("<pre><code>\n", "<pre><code>", $result);
+    $result = preg_replace("/<p><table([^>]*?)><\/p>/", "<table\\1>", $result);
+    $result = str_replace("<br />\n</td>", "\n</td>", $result);
+    $result = str_replace("<p><tr>", "<tr>", $result);
+    $result = str_replace("<tr><br />", "<tr>", $result);
+    $result = str_replace("</tr><br />", "</tr>", $result);
+    $result = str_replace("</table></p>", "</table>", $result);
+    $result = str_replace("</table><br />", "</table>", $result);
+    $result = preg_replace('/<\/table>$/', "</table><br /><br />", $result);
+    
+    $result = str_replace('<nowiki>',  '&lt;nowiki&gt;',  $result);
+    $result = str_replace('</nowiki>', '&lt;/nowiki&gt;', $result);
+    
+    return $result;
+  }
+  
+  function destroy_javascript($message, $_php = false)
+  {
+    $message = preg_replace('#<(script|object|applet|embed|iframe|frame|form|input|select)(.*?)>#is', '&lt;\\1\\2&gt;', $message);
+    $message = preg_replace('#</(script|object|applet|embed|iframe|frame|form|input|select)(.*?)>#is', '&lt;/\\1\\2&gt;', $message);
+    $message = preg_replace('#(javascript|script|activex|chrome|about|applet):#is', '\\1&#058;', $message);
+    if ( $_php )
+    {
+      // Left in only for compatibility
+      $message = preg_replace('#&lt;(.*?)>#is', '<\\1>', $message);
+      $message = preg_replace('#<(.*?)&gt;#is', '<\\1>', $message);
+      $message = preg_replace('#<(\?|\?php|%)(.*?)(\?|%)>#is', '&lt;\\1\\2\\3&gt;', $message);
+      // strip <a href="foo" onclick="bar();">-type attacks
+      $message = preg_replace('#<([a-zA-Z:\-]+) (.*?)on([A-Za-z]*)=(.*?)>#is', '&lt;\\1\\2on\\3=\\4&gt;', $message);
+    }
+    return $message;
+  }
+  
+  function strip_php($message)
+  {
+    return RenderMan::destroy_javascript($message, true);
+  }
+  
+  function sanitize_html($text)
+  {
+    $text = htmlspecialchars($text);
+    $allowed_tags = Array('b', 'i', 'u', 'pre', 'code', 'tt', 'br', 'p', 'nowiki', '!--([^.]+)--');
+    foreach($allowed_tags as $t)
+    {
+      $text = preg_replace('#&lt;'.$t.'&gt;(.*?)&lt;/'.$t.'&gt;#is', '<'.$t.'>\\1</'.$t.'>', $text);
+      $text = preg_replace('#&lt;'.$t.' /&gt;#is', '<'.$t.' />', $text);
+      $text = preg_replace('#&lt;'.$t.'&gt;#is', '<'.$t.'>', $text);
+    }
+    return $text;
+  }
+  
+  /* *
+   * Replaces template inclusions with the templates
+   * @param string $message The text to format
+   * @return string
+   * /
+   
+  function old_include_templates($message)
+  {
+    $random_id = md5( time() . mt_rand() );
+    preg_match_all('#\{\{(.+?)\}\}#s', $message, $matchlist);
+    foreach($matchlist[1] as $m)
+    {
+      $mn = $m;
+      // Strip out wikilinks and re-add them after the explosion (because of the "|")
+      preg_match_all('#\[\[(.+?)\]\]#i', $m, $linklist);
+      //echo '<pre>'.print_r($linklist, true).'</pre>';
+      for($i=0;$i<sizeof($linklist[1]);$i++)
+      {
+        $mn = str_replace('[['.$linklist[1][$i].']]', '{WIKILINK:'.$random_id.':'.$i.'}', $mn);
+      }
+      
+      $ar = explode('|', $mn);
+      
+      for($j=0;$j<sizeof($ar);$j++)
+      {
+        for($i=0;$i<sizeof($linklist[1]);$i++)
+        {
+          $ar[$j] = str_replace('{WIKILINK:'.$random_id.':'.$i.'}', '[['.$linklist[1][$i].']]', $ar[$j]);
+        }
+      }
+      
+      $tp = $ar[0];
+      unset($ar[0]);
+      $tp = str_replace(' ', '_', $tp);
+      $message = str_replace('{{'.$m.'}}', RenderMan::getTemplate($tp, $ar), $message);
+    }
+    return $message;
+  }
+  */
+  
+  /**
+   * Parses a partial template tag in wikitext, and return an array with the parameters.
+   * @param string The portion of the template tag that contains the parameters. Example:
+   * <code>
+   * foo = lorem ipsum
+   * bar = dolor sit amet
+   * </code>
+   * @return array Example:
+   * [foo] => lorem ipsum
+   * [bar] => dolor sit amet
+   */
+  
+  function parse_template_vars($input)
+  {
+    $input = explode("\n", trim( $input ));
+    $parms = Array();
+    $current_line = '';
+    $current_parm = '';
+    foreach ( $input as $num => $line )
+    {
+      if ( preg_match('/^([ ]*?)([A-z0-9_]+?)([ ]*?)=([ ]*?)(.+?)$/i', $line, $matches) )
+      {
+        $parm =& $matches[2];
+        $text =& $matches[5];
+        if ( $parm == $current_parm )
+        {
+          $current_line .= $text;
+        }
+        else
+        {
+          // New parameter
+          if ( $current_parm != '' )
+            $parms[$current_parm] = $current_line;
+          $current_line = $text;
+          $current_parm = $parm;
+        }
+      }
+      else if ( $num == 0 )
+      {
+        // Syntax error
+        return false;
+      }
+      else
+      {
+        $current_line .= "\n$line";
+      }
+    }
+    if ( !empty($current_parm) && !empty($current_line) )
+    {
+      $parms[$current_parm] = $current_line;
+    }
+    return $parms;
+  }
+  
+  /**
+   * Processes all template tags within a block of wikitext.
+   * @param string The text to process
+   * @return string Formatted text
+   * @example
+   * <code>
+   $text = '{{Template
+     parm1 = Foo
+     parm2 = Bar
+     }}';
+   $text = include_templates($text);
+   * </code>
+   */
+  
+  function include_templates($text)
+  {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    $template_regex = "/\{\{([A-z0-9_-]+?)((\n([ ]*?)[A-z0-9]+([ ]*?)=([ ]*?)(.+?))*)\}\}/is";
+    if ( $count = preg_match_all($template_regex, $text, $matches) )
+    {
+      for ( $i = 0; $i < $count; $i++ )
+      {
+        $parmsection = trim($matches[2][$i]);
+        if ( !empty($parmsection) )
+        {
+          $parms = parse_template_vars($parmsection);
+          foreach ( $parms as $j => $parm )
+          {
+            $parms[$j] = $parm;
+          }
+        }
+        else
+        {
+          $parms = Array();
+        }
+        if ( $tpl_code = RenderMan::fetch_template_text($matches[1][$i]) )
+        {
+          $parser = $template->makeParserText($tpl_code);
+          $parser->assign_vars($parms);
+          $text = str_replace($matches[0][$i], $parser->run(), $text);
+        }
+      }
+    }
+    return $text;
+  }
+  
+  /**
+   * Preprocesses an HTML text string prior to being sent to MySQL.
+   * @param string $text
+   * @param bool $strip_all_php - if true, strips all PHP regardless of user permissions. Else, strips PHP only if user level < USER_LEVEL_ADMIN.
+   */
+  function preprocess_text($text, $strip_all_php = true, $sqlescape = true)
+  {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    $random_id = md5( time() . mt_rand() );
+    
+    $can_do_php = ( $session->get_permissions('php_in_pages') && !$strip_all_php );
+    
+    $text = sanitize_html($text, ( !$can_do_php ));
+    
+    if ( !$can_do_php )
+    {
+      // If we can't do PHP, we can't do Javascript either.
+      $text = RenderMan::destroy_javascript($text);
+    }
+    
+    // Strip out <nowiki> sections and PHP code
+    
+    $php = preg_match_all('#(<|&lt;)\?php(.*?)\?(>|&gt;)#is', $text, $phpsec);
+    
+    //die('<pre>'.htmlspecialchars(print_r($phpsec, true))."\n".htmlspecialchars(print_r($text, true)).'</pre>');
+    
+    for($i=0;$i<sizeof($phpsec[1]);$i++)
+    {
+      $text = str_replace($phpsec[0][$i], '{PHP:'.$random_id.':'.$i.'}', $text);
+    }
+    
+    $nw = preg_match_all('#<nowiki>(.*?)<\/nowiki>#is', $text, $nowiki);
+    
+    for($i=0;$i<sizeof($nowiki[1]);$i++)
+    {
+      $text = str_replace('<nowiki>'.$nowiki[1][$i].'</nowiki>', '{NOWIKI:'.$random_id.':'.$i.'}', $text);
+    }
+    
+    $text = str_replace('~~~~~', date('G:i, j F Y (T)'), $text);
+    $text = str_replace('~~~~', "[[User:$session->username|$session->username]] ".date('G:i, j F Y (T)'), $text);
+    $text = str_replace('~~~', "[[User:$session->username|$session->username]] ", $text);
+    
+    // Reinsert <nowiki> sections
+    for($i=0;$i<$nw;$i++)
+    {
+      $text = str_replace('{NOWIKI:'.$random_id.':'.$i.'}', '<nowiki>'.$nowiki[1][$i].'</nowiki>', $text);
+    }
+    // Reinsert PHP
+    for($i=0;$i<$php;$i++)
+    {
+      $phsec = ''.$phpsec[1][$i].'?php'.$phpsec[2][$i].'?'.$phpsec[3][$i].'';
+      if ( $strip_all_php )
+        $phsec = htmlspecialchars($phsec);
+      $text = str_replace('{PHP:'.$random_id.':'.$i.'}', $phsec, $text);
+    }
+    
+    $text = ( $sqlescape ) ? $db->escape($text) : $text;
+    
+    return $text;
+  }
+  
+  function smilieyize($text, $complete_urls = false)
+  {
+    
+    $random_id = md5( time() . mt_rand() );
+    
+    // Smileys array - eventually this will be fetched from the database by
+    // RenderMan::initSmileys during initialization, but it will all be hardcoded for beta 2
+    
+    $smileys = Array(
+      'O:-)'    => 'face-angel.png',
+      'O:)'     => 'face-angel.png',
+      'O=)'     => 'face-angel.png',
+      ':-)'     => 'face-smile.png',
+      ':)'      => 'face-smile.png',
+      '=)'      => 'face-smile-big.png',
+      ':-('     => 'face-sad.png',
+      ':('      => 'face-sad.png',
+      ';('      => 'face-sad.png',
+      ':-O'     => 'face-surprise.png',
+      ';-)'     => 'face-wink.png',
+      ';)'      => 'face-wink.png',
+      '8-)'     => 'face-glasses.png',
+      '8)'      => 'face-glasses.png',
+      ':-D'     => 'face-grin.png',
+      ':D'      => 'face-grin.png',
+      '=D'      => 'face-grin.png',
+      ':-*'     => 'face-kiss.png',
+      ':*'      => 'face-kiss.png',
+      '=*'      => 'face-kiss.png',
+      ':\'('    => 'face-crying.png',
+      ':-|'     => 'face-plain.png',
+      ':-\\'    => 'face-plain.png',
+      ':-/'     => 'face-plain.png',
+      ':joke:'  => 'face-plain.png',
+      ']:-&gt;' => 'face-devil-grin.png',
+      ':kiss:'  => 'face-kiss.png',
+      ':-P'     => 'face-tongue-out.png',
+      ':P'      => 'face-tongue-out.png',
+      ':-p'     => 'face-tongue-out.png',
+      ':p'      => 'face-tongue-out.png',
+      ':-X'     => 'face-sick.png',
+      ':X'      => 'face-sick.png',
+      ':sick:'  => 'face-sick.png',
+      ':-]'     => 'face-oops.png',
+      ':]'      => 'face-oops.png',
+      ':oops:'  => 'face-oops.png',
+      ':-['     => 'face-embarassed.png',
+      ':['      => 'face-embarassed.png'
+      );
+    /*
+    $keys = array_keys($smileys);
+    foreach($keys as $k)
+    {
+      $regex1 = '#([\W]+)'.preg_quote($k).'([\s\n\r\.]+)#s';
+      $regex2 = '\\1<img alt="'.$k.'" title="'.$k.'" src="'.scriptPath.'/images/smilies/'.$smileys[$k].'" style="border: 0;" />\\2';
+      $text = preg_replace($regex1, $regex2, $text);
+    }                                                                      
+    */
+    
+    // Strip out <nowiki> sections
+    //return '<pre>'.htmlspecialchars($text).'</pre>';
+    $nw = preg_match_all('#<nowiki>(.*?)<\/nowiki>#is', $text, $nowiki);
+    
+    for($i=0;$i<sizeof($nowiki[1]);$i++)
+    {
+      $text = str_replace('<nowiki>'.$nowiki[1][$i].'</nowiki>', '{NOWIKI:'.$random_id.':'.$i.'}', $text);
+    }
+    
+    $keys = array_keys($smileys);
+    foreach($keys as $k)
+    {
+      $t = str_hex($k);
+      $t = explode(' ', $t);
+      $s = '';
+      foreach($t as $b)
+      {
+        $s.='&#x'.$b.';';
+      }
+      $pfx = ( $complete_urls ) ? 'http' . ( isset($_SERVER['HTTPS']) ? 's' : '' ) . '://'.$_SERVER['HTTP_HOST'] : '';
+      $text = str_replace(' '.$k, ' <nowiki><img title="'.$s.'" alt="'.$s.'" src="'.$pfx.scriptPath.'/images/smilies/'.$smileys[$k].'" style="border: 0;" /></nowiki>', $text);
+    }
+    //*/
+    
+    // Reinsert <nowiki> sections
+    for($i=0;$i<$nw;$i++)
+    {
+      $text = str_replace('{NOWIKI:'.$random_id.':'.$i.'}', '<nowiki>'.$nowiki[1][$i].'</nowiki>', $text);
+    }
+    
+    return $text;
+  }
+  
+  /*
+   * **** DEPRECATED ****
+   * Replaces some critical characters in a string with MySQL-safe equivalents
+   * @param $text string the text to escape
+   * @return array key 0 is the escaped text, key 1 is the character tag
+   * /
+   
+  function escape_page_text($text)
+  {
+    $char_tag = md5(microtime() . mt_rand());
+    $text = str_replace("'",  "{APOS:$char_tag}",  $text);
+    $text = str_replace('"',  "{QUOT:$char_tag}",  $text);
+    $text = str_replace("\\", "{SLASH:$char_tag}", $text);
+    return Array($text, $char_tag);
+  }
+  */
+  
+  /* **** DEPRECATED ****
+   * Reverses the result of RenderMan::escape_page_text().
+   * @param $text string the text to unescape
+   * @param $char_tag string the character tag
+   * @return string
+   * /
+   
+  function unescape_page_text($text, $char_tag)
+  {
+    $text = str_replace("{APOS:$char_tag}",  "'",  $text);
+    $text = str_replace("{QUOT:$char_tag}",  '"',  $text);
+    $text = str_replace("{SLASH:$char_tag}", "\\", $text);
+    return $text;
+  }
+  */
+  
+  /**
+   * Generates a summary of the differences between two texts, and formats it as XHTML.
+   * @param $str1 string the first block of text
+   * @param $str2 string the second block of text
+   * @return string
+   */
+  function diff($str1, $str2)
+  {
+    global $db, $session, $paths, $template, $plugins; // Common objects
+    $str1 = explode("\n", $str1);
+    $str2 = explode("\n", $str2);
+    $diff = new Diff($str1, $str2);
+    $renderer = new TableDiffFormatter();
+    return '<table class="diff">'.$renderer->format($diff).'</table>';
+  }
+  
+}
+ 
+?>