<?php
/*
**	Copyright (C) 1995-2021 by the ITools Authors.
**	This file is part of ITools - the Internet Tools Library
**
**	ITools is free software; you can redistribute it and/or modify
**	it under the terms of the GNU General Public License as published by
**	the Free Software Foundation; either version 3 of the License, or
**	(at your option) any later version.
**
**	ITools is distributed in the hope that it will be useful,
**	but WITHOUT ANY WARRANTY; without even the implied warranty of
**	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
**	GNU General Public License for more details.
**
**	You should have received a copy of the GNU General Public License
**	along with this program.  If not, see <http://www.gnu.org/licenses/>.
**
**	itjs.php - Delivers /itjs/ files through AliasMatch in httpd.conf
*/

require "itools/itools.lib";

if (EDC('slow' . it::match('\.(css|js)\b', U($_GET))))
	 sleep(5);

if (is_array($_GET['files']) || it::match('/server/', $_SERVER['DOCUMENT_ROOT']))
	exit; # useless here. cannot write tempfiles

itjs::far_future_headers(); # may exit

if (it::match('W3C_CSS_Validator', $_SERVER['HTTP_USER_AGENT']))
	$_GET['files'] = it::replace([',jquery.fancybox.css,' => ","], $_GET['files']);

$files = itjs::filenames($_GET['files'] ?: it::match('/itjs/([-a-z0-9_,.]*)', $_SERVER['PHP_SELF']));
$data = itjs::filecontents($files);
$lastfile = end($files) ?: it::match('[^,]+$', $_GET['files']); # set correct mime type even if files not found
$nostrip = $_GET['nostrip'] && $GLOBALS['ULTRATRUSTED'];

if (it::match('\.gif$', $lastfile))
{
	header("Content-Type: image/gif");
}
else if (it::match('\.css', $lastfile))
{
	header("Content-Type: text/css");
	$data = preg_replace_callback('/\burl\(["\']?([^"\'\)]+)["\']?\s*\)/', fn($v) => 'url(' . U($v[1]) . ')', $data);	# Pass url(...) through U() for normalization/OneDomain
	if (!it::match('^devel', $GLOBALS['ULTRASERVERTYPE']))
		$data = it::replace(array('[ \t]*([{};])[ \t]*' => '$1', ($nostrip ? '_LEAVE_COMMENTS_' : '/\*.*?\*/') => ""), $data);
	if (it::match('W3C_CSS_Validator', $_SERVER['HTTP_USER_AGENT']) || $_GET['w3c'])
		$data = it::replace(array(
			'@-.*|@page.*' => "",
			'background[^;}]*(gradient|rgba)[^;}]*;?' => "",
			'::-webkit[^ ,{]*' => '.foo',
			'\n:.*' => "\n",
			'(filter:\s*(progid|none)|text-overflow:|zoom:|-webkit-[-\w]+:|display:-moz-|-moz-|-o-|cursor:|border-radius:|(?<!overscroll-)behavior:|text-rendering:|\w+:expression:|[-\w]*appearance:)[^;}]*;?' => "",
			'pointer-events:[^;}]*' => "",
			'html\.ie6.*' => "",
			':valid:' => ":", # hack for iOS datetime
			'([^/])\*(\w)' => '$1$2',
			'svg\..*' => "", # ignore svg styles
			'\battr\(.*?\)' => "'x'", # ignore content:attr(placeholder)
			'\benv\(.*?\)' => "0", # ignore env(), e.g. env(safe-area-inset-left) for iPhone X
			'\bmax\(.*?\)' => "0",
			'\bclip-path:[^;}]*' => "",
			'\bbackground-position-[xy]' => "background-position",
			':has\([^)]*\)' => "",
			),
			$data
		);
}
else if (it::match('\.htc$', $lastfile))
{
	header("Content-Type: text/x-component");
}
else if ($files && !it::match('\.html$', $lastfile))
{
	header("Content-Type: application/x-javascript; charset=" . (ini_get('default_charset') ?: 'iso-8859-1'));
	$data = "window.trace+='i';\n$data\nwindow.trace+='I';\n";
	$data .= "\nwindow.it_gotjs = (window.it_gotjs ? window.it_gotjs : '') + '." . it::match('\w+', basename($lastfile)) . "';\n";
}

if (strpos($data, "<?php") !== false)
	it::error("sending php source?!");

if (strlen($content = $nostrip ? $data : itjs::strip($data)))
	echo $content;
else
	http_response_code(404);