WP 3.1 firestats dirty fix

<?php
/*
 Plugin Name: FireStats
 Plugin URI: http://firestats.cc
 Description: Statistics plugin for WordPress.
 Version: 1.6.7-stable
 Author: Omry Yadan
 Author URI: http://blog.firestats.cc
 */

// this is an version of the FireStats this file is a part of.
// it's used by firestats core to detect if the correct file is installed.
// (there can in be inconsistencies in case of a satelitte installation).
define('FS_WORDPRESS_PLUGIN_VER','1.6.7-stable');

/**
 * Initialize FireStats callbacks in any case
 */
fs_initialize_fs_callbacks();


// This bit pretends to be the any file inside firestats path
// so the browser will allow the js code to send the ajax request.
if (isset($_GET['fs_javascript']))
{
    add_action('init','fs_resume_js_call');
}

function fs_resume_js_call()
{
    $path = fs_get_firestats_path();
    $file = $_GET['fs_javascript'];
    unset($_GET['fs_javascript']);

    $allowed_files = array
    (
        'php/ajax-handler.php',
        'php/window-donation.php',
        'css/base.css.php',
        'js/page-settings.js.php',
        'php/page-settings.php',
        'js/page-wordpress-settings.js.php',
        'php/page-wordpress-settings.php',
        'js/page-database.js.php',
        'php/page-database.php',
        'js/page-users.js.php',
        'css/page-users.css.php',
        'php/page-users.php',
        'js/page-sites.js.php',
        'css/page-sites.css.php',
        'php/page-sites.php',
        'php/page-tools.php',
        'php/window-add-excluded-url.php',
        'php/window-add-excluded-ip.php',
        'php/window-delete-site.php',
        'php/window-new-edit-site.php',
        'php/window-edit-user.php',
        'php/window-delete-user.php',
        'php/tools/system_test.php',
        'js/firestats.js.php'
    );


    $found = false;

    foreach ($allowed_files as $a)
    {
        if ($file == $a)
        {
            $found = true;
            break;
        }
    }

    if (!$found) die("invalid fs_javascript");

    require_once("$path/$file");
    die();
}

global $FS_CONTEXT;
$FS_CONTEXT = array();
$FS_CONTEXT['TYPE'] = 'WORDPRESS';
$FS_CONTEXT['WP_PATH'] = fs_get_wp_config_path();
$FS_CONTEXT['JAVASCRIPT_URL'] = fs_get_js_url();

/**
 * Only initialize the plugin if not indirectly invoked from ajax plugin
 * to avoid wierd order of initialization problems caused by various wordpress versions.
 */
if (!defined('FS_AJAX_HANDLER'))
{
    $is_wpmu = fs_is_wpmu();
    fs_initialize_wp_plugin($is_wpmu);
}

function fs_initialize_fs_callbacks()
{
    $FS_PATH = fs_get_firestats_path();
    if ($FS_PATH)
    {
        // if WPLANG is defined, set FireStats's default language to it.
        if(defined('WPLANG') && !defined('FS_DEFAULT_LANG')) define('FS_DEFAULT_LANG',WPLANG);

        require_once($FS_PATH.'/php/init.php');
        fs_add_action("db_upgraded", "fs_plugin_db_update");
        fs_add_action("authenticated", "fs_register_dashboard_widgets");
    }
}

function fs_initialize_wp_plugin($is_wpmu)
{
    if (!function_exists("add_action")) return;

    add_action('wp_head', 'fs_add_wordpress', 1);
    add_action('admin_footer', 'fs_admin_footer');
    add_action('admin_menu', 'fs_add_page');
    add_action('admin_head', 'fs_admin_head');
    add_action('widgets_init', 'fs_widget_init');
    add_action('publish_post', 'fs_update_post_title');
    add_action('edit_post', 'fs_update_post_title');
    add_action('after_plugin_row','fs_new_version_nag');
    if (!function_exists('wp_add_dashboard_widget')) add_filter('wp_dashboard_widgets', 'fs_add_dashboard_widgets');

    // wpmu
    if ($is_wpmu)
    {
        add_action('delete_blog','fs_delete_wpmu_blog');
    }

    global $wp_version;
    if (!fs_is_wpmu() && version_compare($wp_version,"2.0") == -1) // wordpress is older than 2.0
    {
        $activated = (basename($_SERVER['SCRIPT_NAME']) == 'plugins.php' && isset($_GET['activate']));
        if ($activated) fs_activate();
    }
    else
    {
        register_activation_hook(__FILE__, 'fs_activate');
    }


    if (get_option('firestats_add_comment_flag') == 'true')
    {
        add_filter('get_comment_author_link', 'fs_add_comment_flag', 100);
    }

    if (get_option('firestats_add_comment_browser_os') == 'true')
    {
        add_filter('get_comment_author_link', 'fs_add_comment_browser_os', 100);
    }

    $FS_PATH = fs_get_firestats_path();
    if ($FS_PATH) // needed when installing in satellite mode
    {
        require_once($FS_PATH.'/php/api.php');
    }

    // show footer by default
    $show_footer = get_option('firestats_show_footer');
    if ((empty($show_footer) && DEFAULT_SHOW_FIRESTATS_FOOTER) || $show_footer == "true")
    {
        add_action('wp_footer','fs_echo_footer');
    }

    $FS_PATH = fs_get_firestats_path();
    if ($FS_PATH)
    {
        // only relevant if we know FS path.
        // otherwise fs_do_action is not in the scope.
        fs_do_action("wordpress_plugin_initialized");
    }
}


function fs_activate()
{
    $FS_PATH = fs_get_firestats_path();
    if (!$FS_PATH)
    {
        return;
    }

    require_once($FS_PATH.'/php/db-setup.php');
    $res = fs_install();
    if ($res !== true)
    {
        $plugin_name = substr(__FILE__, strlen(ABSPATH . PLUGINDIR . '/'));
        deactivate_plugins($plugin_name);
        wp_die(sprintf("Error installing FireStats tables: %s",$res));
        return;
    }

    $res = fs_register_wordpress();
    if ($res !== true)
    {
        wp_die($res);
        return;
    }
    fs_update_post_titles();

}

function fs_update_post_title($id)
{
    $post = &get_post($id);
    if ($post->post_type == 'post' || $post->post_type == 'page')
    {
        $FS_PATH = fs_get_firestats_path();
        $site_id = get_option('firestats_site_id');
        if (!$FS_PATH)
        {
            return;
        }
        require_once($FS_PATH.'/php/db-sql.php');


        $title = get_the_title($id);
        if (empty($title))
        {
            return;
        }
        $link = get_permalink($id);
        if (empty($link))
        {
            return;
        }

        // make sure the url exists in the urls table.;
        $res = fs_insert_url($link, $site_id);

        if (!$res)
        {
            echo $res;
            return;
        }

        // replace title with current one
        fs_set_url_title($link,$title);

        // mark url as a post
        if ($post->post_type == 'post')
        {
            fs_set_url_type($link,FS_URL_TYPE_POST);
        }
    }

}

/**
 * Registers this instance of wordpress with FireStats.
 * This is requires so that if there is more than one blog/system that works with
 * the same FireStats instance it will be possible to filter the stats per site.
 */
function fs_register_wordpress()
{
    $FS_PATH = fs_get_firestats_path();
    if (!$FS_PATH) return true;
    require_once($FS_PATH.'/php/db-sql.php');


    $firestats_site_id = get_option('firestats_site_id');
    if ($firestats_site_id == null && fs_is_wpmu())
    {
        // for wpmu sites, use the blog id as the firestats site id.
        global $blog_id;
        $firestats_site_id = $blog_id;
    }

    $site_exists = fs_site_exists($firestats_site_id);
    if (is_string($site_exists)) return $site_exists;
    if (!$site_exists)
    {
        $firestats_site_id = fs_register_site($firestats_site_id);
        if (!is_numeric($firestats_site_id))
        {
            $site_info = ($site_id != null ? "(site_id=$firestats_site_id)" : "(new site)");
            return "FireStats: error registering blog ".$site_info . " : $firestats_site_id";
        }
        update_option('firestats_site_id',$firestats_site_id);
    }

    $name = get_option('blogname');
    if (empty($name))
    {
        $name = "Unamed blog (#$firestats_site_id)";
    }

    $type = FS_SITE_TYPE_WORDPRESS;

    $res = fs_update_site_params($firestats_site_id,$firestats_site_id, $name, $type);
    if ($res !== true)
    {
        return $res;
    }

    // update the filter to show us this blog by default after the installation
    update_option('firestats_sites_filter',$firestats_site_id);
    return true;
}


function fs_is_wpmu()
{
    return file_exists(ABSPATH."/wpmu-settings.php");
}

function fs_full_installation()
{
    return file_exists(dirname(__FILE__).'/php/db-hit.php');
}

function fs_override_base_url()
{
    if (fs_full_installation())
    {
        $site_url = get_option("siteurl");

        // make sure the url ends with /
        $last = substr($site_url, strlen( $site_url ) - 1 );
        if ($last != "/") $site_url .= "/";

        // calculate base url based on current directory.
        $base_len = strlen(ABSPATH);
        $suffix = substr(dirname(__FILE__),$base_len)."/";
        // fix windows path sperator to url path seperator.
        $suffix = str_replace("\\","/",$suffix);
        $base_url = $site_url . $suffix;
        return $base_url;
    }
    else // not full installation == satelite of a standlone firestats.
    {
        if (fs_is_wpmu())
        {
            $url = get_site_option('firestats_url');
        }
        else
        {
            $url = get_option('firestats_url');
        }
        // make sure the url ends with /
        $last = substr($url, strlen( $url ) - 1 );
        if ($last != "/") $url .= "/";
        return $url;
    }
}

function fs_get_firestats_path($reset = false)
{
    static $path;
    if (!isset($path) || $reset)
    {
        $path = fs_get_firestats_path_impl();
    }

    if (file_exists($path.'/firestats.info')) return $path;
    else return false;
}

function fs_get_firestats_path_impl()
{
    if (!fs_full_installation())
    {
        if (fs_is_wpmu())
        {
            $path = get_site_option('firestats_path');
        }
        else
        {
            $path = get_option('firestats_path');
        }
        if ($path == null || $path == '')
        {
            return false;
        }
        else
        {
            return $path;
        }
    }
    else
    {
        return dirname(__FILE__);
    }
}

# Small info on DashBoard-page
function fs_admin_footer()
{
    $admin = dirname($_SERVER['SCRIPT_FILENAME']);
    $admin = substr($admin, strrpos($admin, '/')+1);
    $query = $_SERVER["QUERY_STRING"];
    if ($admin == 'wp-admin' && basename($_SERVER['SCRIPT_FILENAME']) == 'index.php' && $query == '')
    {
        $FS_PATH = fs_get_firestats_path();
        if (!$FS_PATH) return;
        require_once($FS_PATH.'/php/auth.php');
        if (!fs_can_use()) return;

        require_once($FS_PATH.'/php/db-sql.php');
        $url = fs_get_firestats_url();
        $title = "<h3>".fs_r("FireStats"). $url."</h3><span id ='firestats_span'>".fs_r('Loading...')."</span>";
        print
            '<script language="javascript" type="text/javascript">
                var e = document.getElementById("zeitgeist");
                if (e)
                {
                    var div = document.createElement("DIV");
                    div.id = div.innerHTML = "'.$title.'";
                    e.appendChild(div);
                }
            </script> ';
        flush();

        $count = fs_get_hit_count();
        $unique = fs_get_unique_hit_count();
        $last_24h_count= fs_get_hit_count(1);
        $last_24h_unique = fs_get_unique_hit_count(1);

        echo "<!-- admin = $admin, script =  ".basename($_SERVER['SCRIPT_FILENAME'])."  -->";
        $content.= sprintf(fs_r("Total : %s page views and %s visits"),'<strong>'.$count.'</strong>','<strong>'.$unique.'</strong>').'<br/>';
        $content.= sprintf(fs_r("Last 24 hours : %s page views and %s visits"),'<strong>'.$last_24h_count.'</strong>','<strong>'.$last_24h_unique.'</strong>').'<br/>';
        print
        '<script language="javascript" type="text/javascript">
            var e = document.getElementById("firestats_span");
            if (e)
            {
                e.innerHTML = "'.$content.'";
            }
            </script> ';
    }
}

function fs_get_firestats_url($txt = null)
{
    $txt = $txt ? $txt  : "&raquo;";
    if (fs_full_installation())
    {
        $plugin_dir = substr(dirname(__FILE__), strlen(ABSPATH . PLUGINDIR . '/'));
        // hack around stupid wp bug under windows
        if (fs_is_windows())
        {
            $link = "index.php?page=$plugin_dir%5C" . basename(__FILE__);

        }
        else
        {
            $link = "index.php?page=$plugin_dir/" . basename(__FILE__);
        }
        $url = "<a href='$link'>$txt</a>";
    }
    else
    {
        $file = __FILE__;
        $url = "<a href='index.php?page=$file'>$txt</a>";
    }
    return $url;
}

function fs_authenticate_wp_user()
{
    // use wordpress users only when installed in hosted mode
    if (fs_full_installation())
    {
        global $current_user;
        $path = fs_get_firestats_path();
        require_once($path.'/php/auth.php');
        $user = new stdClass();
        $user->name = $current_user->user_login;
        $user->id = $current_user->id;
//      if (fs_is_wpmu())
//      {
            if (is_super_admin())
            {
                $user->security_level = SEC_ADMIN;
            }
            else
            {
                $user->security_level = current_user_can('publish_posts') ? SEC_USER : SEC_NONE;
            }
/*      }
        else
        {
            if (current_user_can('manage_options'))
            {
                $user->security_level = SEC_ADMIN;
            }
            else
            {
                if (current_user_can('moderate_comments')) // editor
                {
                    $user_level = 4;
                }
                else
                if (current_user_can('publish_posts')) // author
                {
                    $user_level = 3;
                }
                else
                if (current_user_can('edit_posts')) // contributor
                {
                    $user_level = 2;
                }
                else
                if (current_user_can('read')) // subscriber
                {
                    $user_level = 1;
                }
                else
                {
                    $user_level = 0; // a bumhug
                }

                $required = (int)fs_get_local_option('firestats_min_view_security_level',3);
                $user->security_level = $required <= $user_level ? SEC_USER : SEC_NONE;
            }
        }
*/
        // this mark the user as a user that can access all the sites.
        // this is a little hack for WordPress in hosted installation, where users are not real FireStats users
        // and it makes no sense to add an entry in the user_sites table for each user.
        $user->check_user_sites_table = false;

        fs_start_user_session($user);
    }
    else
    {
        fs_resume_user_session();
        if (!fs_authenticated())
        {
            fs_start_user_session(null); // dummy session that can only be used to login.
        }
    }
}

function fs_page()
{
    $path = fs_get_firestats_path();
    if ($path)
    {
        if (!fs_full_installation()) // satellite installation
        {
            if (defined('DEMO'))
            {
                $user = new stdClass();
                $user->name = "Demo";
                $user->id = 1;
                $user->security_level = SEC_USER;
                $res = fs_start_user_session($user);
            }
            else
            {
                $res = fs_resume_user_session();
            }

            if ($res === true)
            {
                fs_show_embedded_page($path.'/php/tabbed-pane.php');
                return;
            }
            else
            {
                fs_show_embedded_page($path.'/login.php', true, true, true);
            }
        }
        else // full installation
        {
            if (fs_can_use() === true)
            {
                fs_show_embedded_page($path.'/php/tabbed-pane.php');
                return;
            }
            else
            {
                $msg = fs_r("You are not authorized to access FireStats");
                $msg = "<div class='error'>$msg</div>";

                fs_show_embedded_page($msg,false);
            }
        }
    }
    else
    {
        $href = sprintf("<a href='options-general.php?page=FireStats'>%s</a>",__('Options'));
        echo '<div class="error" style="margin-top:40px;margin-bottom:40px">'.sprintf(__('You need to configure FireStats in the %s menu'),$href).'</div>';
    }
}

function fs_endsWith( $str, $sub ) {
    return ( substr( $str, strlen( $str ) - strlen( $sub ) ) === $sub );
}

function fs_admin_head()
{
    $FS_PATH = fs_get_firestats_path();
    if ($FS_PATH)
    {
        if (FS_WORDPRESS_PLUGIN_VER != FS_VERSION)
        {
            echo "Version mismatch between FireStats plugin (".FS_WORDPRESS_PLUGIN_VER.") and FireStats installation (".FS_VERSION.")";
            return;
        }

        fs_authenticate_wp_user();
        if (strstr($_SERVER["QUERY_STRING"],basename(__FILE__)) !== false)
        {
            require_once($FS_PATH.'/php/html-utils.php');
            fs_output_head();
        }
    }
}

function fs_add_wordpress()
{
    $FS_PATH = fs_get_firestats_path();
    if (!$FS_PATH) return;
    if (is_404()) return; // don't log 404.
    require_once($FS_PATH.'/php/db-hit.php');
    $firestats_site_id = get_option('firestats_site_id');
    // extract user ID in a wordpress specific method.
    global $user_ID;
    get_currentuserinfo();

    $excluded_users = get_option('firestats_excluded_users');
    $excluded_user = $user_ID && $excluded_users && in_array($user_ID,explode(",",$excluded_users));
    if (!$excluded_user)
    {
        // WP likes to add slashes to the useragent, which causes problems.
        $_SERVER['HTTP_USER_AGENT'] = stripslashes($_SERVER['HTTP_USER_AGENT']);
        $_SERVER['REQUEST_URI'] = stripslashes($_SERVER['REQUEST_URI']);
        $_SERVER['HTTP_REFERER'] = stripslashes($_SERVER['HTTP_REFERER']);

        fs_add_site_hit($firestats_site_id,false);
    }
}

# Add a sub-menu to the "manage"-page.
function fs_add_page()
{
    add_submenu_page('index.php', 'FireStats', 'FireStats', 1, __FILE__, 'fs_page');
    if (!fs_full_installation())
    {
        if (!fs_is_wpmu() || is_super_admin())
        {
            add_submenu_page('options-general.php', 'FireStats', 'FireStats', 8, 'FireStats', 'fs_options_page');
        }
    }
}


function fs_options_page()
{
    if (isset($_POST['action']) && $_POST['action'] == 'update')
    {
        update_option('firestats_path',$_POST['firestats_path']);
        update_option('firestats_url',$_POST['firestats_url']);
    }
    $path = get_option('firestats_path');
    $url = get_option('firestats_url');
    ?>
<div class="fwrap">
<h2><?php _e('FireStats configuration')?></h2>
<form method="post"><input type="hidden" name="action" value="update" />
    <?php
    $path_good = false;
    $url_good = false;
    $path_version = '';
    $url_version = '';
    if (ini_get('safe_mode') == 1)
    {
        ?>
<div class="error"><?php _e("Your PHP is configured in safe mode, FireStats may be impossible to configure in satellite mode.")?></div>
        <?php
    }

    if (!empty($path))
    {
        $len = strlen($path);
        if ($path[$len - 1] != '/' && $path[$len - 1] != '\\')
        {
            $path .= '/';
        }

        if (file_exists($path.'firestats.info'))
        {?>
<div class="updated fade"><?php
echo sprintf(__("FireStats detected at %s"),"<b>$path</b>").'<br/>';
$path_good = true;
$info = file($path.'firestats.info');
$path_version = $info[0];
?></div>
<?php
        }
        else
        {?>
<div class="error"><?php echo sprintf(__("FireStats was not found at %s"),"<b>$path</b>")?></div>
        <?php
        }
    }
    else
    {
        echo '<div class="error">'.__("Enter the directory that contains FireStats").'</div>';
    }

    if (!empty($url))
    {
        ob_start();
        $file = file($url.'/firestats.info');
        $output = ob_get_clean();
        if ($file !== false)
        {?>
<div class="updated fade"><?php
echo sprintf(__("FireStats detected at %s"),"<b>$url</b>").'<br/>';
$url_good = true;
$url_version = $file[0];
?></div>
<?php
        }
        else
        {
            if ($output != '')
            {
                $msg = sprintf(__("Error : %s"),"<b>$output</b>");
            }
            else
            {
                $msg = sprintf(__("FireStats was not found at %s"),"<b>$url</b>");
            }
            {?>
<div class="error"><?php echo $msg?></div>
            <?php
            }
        }
    }
    else
    {
        echo '<div class="error">'. __("Enter FireStats url").'</div>';
    }

    if ($path_good && $url_good)
    {
        fs_get_firestats_path(true); // reset cached path.

        $plugin_ver = "FireStats/".FS_WORDPRESS_PLUGIN_VER;
        if (trim($plugin_ver) != trim($path_version))
        {
            ?>
<div class="error"><?php echo sprintf(__("Version mismatch between %s (%s) and FireStats at path (%s)"),basename(__FILE__),$plugin_ver, $path_version)?></div>
            <?php
        }
        else
        {
            $res = fs_register_wordpress();
            if ($res !== true)
            {
                echo "<div class='error'>$res</div>";
            }
            else
            {
                fs_update_post_titles();
                echo '<div class="updated fade">'.sprintf(__('Everything is okay, click %s to open %s'),'<b>'.fs_get_firestats_url('here').'</b>',"$path_version").'</div>';
            }

        }
    }
    ?>
<table>
    <tr>
        <td><?php _e('FireStats path : ')?></td>
        <td><input type="text" class="code" id="firestats_path"
            name="firestats_path" size="60" value="<?php echo $path?>" /> <?php echo __('Example:')."<b>".$_SERVER["DOCUMENT_ROOT"]."firestats/</b>"?></td>
    </tr>
    <tr>
        <td><?php _e('FireStats URL : ')?></td>
        <td><input type="text" class="code" id="firestats_url"
            name="firestats_url" size="60" value="<?php echo $url?>" /> <?php _e('Example: <b>http://your_site.com/firestats</b>')?>
        </td>
    </tr>
</table>

<p class="submit"><input type="submit" name="Submit"
    value="<?php _e('Update options')?>&raquo;" /></p>
</form>
</div>
    <?php
}

function fs_widget_init()
{
    // Check for the required plugin functions. This will prevent fatal
    // errors occurring when you deactivate the dynamic-sidebar plugin.
    if ( !function_exists('register_sidebar_widget') )
        return;

    $FS_PATH = fs_get_firestats_path();
    $configured = true;
    if ($FS_PATH)
    {
        global $wp_version;
        if ($wp_version != "2.5") // 2.5 displayed actual img tag instead of image. fixed in 2.5.1
        {
            require_once($FS_PATH.'/php/utils.php');
            $img = fs_url("img/firestats-icon-small.png");
            $name = "<img alt='FireStats icon' src='$img'/>&nbsp;%s";
        }
        else
        {
            $name = "%s";
        }
    }
    else
    {
        $name = "%s (FireStats is not configured)";
        $configured  = false;
    }
    // not translated due to a bug in wordpress that prevents saving of
    // widgets with non ascii characters in their name.
    $stats_name = sprintf($name,"Statistics");
    $popular_name = sprintf($name,"Popular posts");
    $rss_name = sprintf($name,"RSS subscribers");

    // stats widget
    register_sidebar_widget($stats_name, 'fs_widget');
    if ($configured) register_widget_control($stats_name, 'fs_widget_control', 300, 100);

    // popular pages widget
    register_sidebar_widget($popular_name, 'fs_popular_pages_widget');
    if ($configured) register_widget_control($popular_name, 'fs_popular_pages_widget_control', 400, 200);

    // rss subscribers
    register_sidebar_widget($rss_name, 'fs_rss_subscribers_widget');
    if ($configured) register_widget_control($rss_name, 'fs_rss_subscribers_controll', 300, 100);
}


function fs_rss_subscribers_widget($args)
{
    // $args is an array of strings that help widgets to conform to
    // the active theme: before_widget, before_title, after_widget,
    // and after_title are the array keys. Default tags: li and h2.
    extract($args);

    // Each widget can store its own options. We keep strings here.
    $options = get_option('firestats_rss_subscribers_widget');
    $title = $options['title3'];
    $hide_logo = $options['hide_logo3'];

    // These lines generate our output. Widgets can be very complex
    // but as you can see here, they can also be very, very simple.
    echo $before_widget . $before_title . $title . $after_title;
    if (fs_plugin_installed("RSS Subscribers"))
    {
        echo fs_get_rss_subscribers_box($hide_logo);
    }
    else
    {
        $FS_PATH = fs_get_firestats_path();
        if ($FS_PATH)
        {
            require_once($FS_PATH.'/php/html-utils.php');
            echo fs_create_wiki_help_link("FireStatsPRO");
        }
    }
    echo $after_widget;
}

function fs_rss_subscribers_controll()
{
    // Get our options and see if we're handling a form submission.
    $options = get_option('firestats_rss_subscribers_widget');

    if (empty($options))
    {
        $options = array('title3'=>fs_r('FireStats'),'hide_logo3'=>false);
    }

    if ( $_POST['firestats-rss-subscribers-widget-submit'])
    {
        $hide_logo = $_POST['hide_logo3'] == 'on';
        // Remember to sanitize and format use input appropriately.
        $options['title3'] = strip_tags(stripslashes($_POST['firestats-title3']));
        $options['hide_logo3'] = $hide_logo;
        update_option('firestats_rss_subscribers_widget', $options);
    }

    // Be sure you format your options to be valid HTML attributes.
    $title = htmlspecialchars($options['title3'], ENT_QUOTES);
    $hide_logo = $options['hide_logo3'];

    // Here is our little form segment. Notice that we don't need a
    // complete form. This will be embedded into the existing form.
    ?>
<table>
    <tr>
        <td><label for="firestats-title3"><?php fs_e('Title:')?></label></td>
        <td><input style="width: 200px;" id="firestats-title3"
            name="firestats-title3" type="text" value="<?php echo $title?>" /></td>
    </tr>
    <tr>
        <td colspan="2"><input id="hide_logo3" name="hide_logo3" type="checkbox"
        <?php echo $hide_logo ? "checked='checked'" : ""?> /> <label
            for="hide_logo3"><?php fs_e('Hide FireStats logo')?></label></td>
    </tr>
</table>
<input
    type="hidden" id="firestats-rss-subscribers-widget-submit"
    name="firestats-rss-subscribers-widget-submit" value="1" />
    <?php
}


function fs_widget($args)
{
    // $args is an array of strings that help widgets to conform to
    // the active theme: before_widget, before_title, after_widget,
    // and after_title are the array keys. Default tags: li and h2.
    extract($args);

    // Each widget can store its own options. We keep strings here.
    $options = get_option('widget_firestats');
    $title = $options['title'];
    $hide_logo = $options['hide_logo'];

    // These lines generate our output. Widgets can be very complex
    // but as you can see here, they can also be very, very simple.
    echo $before_widget . $before_title . $title . $after_title;
    echo fs_get_stats_box($hide_logo);
    echo $after_widget;
}

function fs_widget_control()
{
    // Get our options and see if we're handling a form submission.
    $options = get_option('widget_firestats');

    if (empty($options))
    {
        $options = array('title'=>fs_r('FireStats'), 'hide_logo'=>false);
    }

    if ( $_POST['firestats-stats-widget-submit'])
    {
        $hide_logo = $_POST['hide_logo'] == 'on';
        // Remember to sanitize and format use input appropriately.
        $options['title'] = strip_tags(stripslashes($_POST['firestats-title']));
        $options['hide_logo'] = $hide_logo;
        update_option('widget_firestats', $options);
    }

    // Be sure you format your options to be valid HTML attributes.
    $title = htmlspecialchars($options['title'], ENT_QUOTES);
    $hide_logo = $options['hide_logo'];

    // Here is our little form segment. Notice that we don't need a
    // complete form. This will be embedded into the existing form.
    ?>
<table>
    <tr>
        <td><label for="firestats-title2"><?php fs_e('Title:')?></label></td>
        <td><input style="width: 200px;" id="firestats-title"
            name="firestats-title" type="text" value="<?php echo $title?>" /></td>
    </tr>
    <tr>
        <td colspan="2"><input id="hide_logo" name="hide_logo" type="checkbox"
        <?php echo $hide_logo ? "checked='checked'" : ""?> /> <label
            for="hide_logo"><?php fs_e('Hide FireStats logo')?></label></td>
    </tr>
</table>
<input
    type="hidden" id="firestats-stats-widget-submit"
    name="firestats-stats-widget-submit" value="1" />
    <?php
}

function fs_popular_pages_widget($args)
{
    $FS_PATH = fs_get_firestats_path();
    require_once($FS_PATH.'/php/html-utils.php');

    // $args is an array of strings that help widgets to conform to
    // the active theme: before_widget, before_title, after_widget,
    // and after_title are the array keys. Default tags: li and h2.
    extract($args);

    // Each widget can store its own options. We keep strings here.
    $options = get_option('firestats_popular_pages_widget');
    $title = htmlspecialchars($options['title'], ENT_QUOTES);
    $num_to_show = htmlspecialchars($options['num_to_show'], ENT_QUOTES);
    $days_ago = htmlspecialchars($options['days_ago'], ENT_QUOTES);
    $hide_logo = $options['hide_logo2'];

    echo $before_widget . $before_title . $title . $after_title;
    echo fs_get_popular_posts_list($num_to_show, $days_ago, $hide_logo);
    echo $after_widget;
}

function fs_popular_pages_widget_control()
{
    // Get our options and see if we're handling a form submission.
    $options = get_option('firestats_popular_pages_widget');
    if ( empty($options))
    {
        $options = array('title'=>fs_r("Popular posts"),
                             'num_to_show'=>10,
                             'days_ago'=>90,
                             'hide_logo2'=>false);
    }

    if ( $_POST['firestats-submit'])
    {
        $hide_logo = $_POST['hide_logo2'] == 'on';

        // Remember to sanitize and format use input appropriately.

        $options['title'] =       strip_tags(stripslashes(isset($_POST['firestats-title2']) ? $_POST['firestats-title2'] : $options['title']));
        $options['num_to_show'] = strip_tags(stripslashes(isset($_POST['num_to_show'])      ? $_POST['num_to_show']      : $options['num_to_show']));
        $options['days_ago'] =    strip_tags(stripslashes(isset($_POST['days_ago2'])        ? $_POST['days_ago2']        : $options['days_ago']));
        $options['hide_logo2'] = $hide_logo;
        if (!is_numeric($options['num_to_show'])) $options['num_to_show'] = 10;
        if (!is_numeric($options['days_ago']) && !empty($options['days_ago'])) $options['days_ago'] = 90;
        update_option('firestats_popular_pages_widget', $options);
        delete_option('cached_firestats_popular_pages');
    }

    // Be sure you format your options to be valid HTML attributes.
    $title = htmlspecialchars($options['title'], ENT_QUOTES);
    $num_to_show = htmlspecialchars($options['num_to_show'], ENT_QUOTES);
    $days_ago = htmlspecialchars($options['days_ago'], ENT_QUOTES);
    $hide_logo = $options['hide_logo2'];

    // Here is our little form segment. Notice that we don't need a
    // complete form. This will be embedded into the existing form.
    ?>
<table>
    <tr>
        <td><label for="firestats-title2"><?php fs_e('Title:')?></label></td>
        <td><input style="width: 200px;" id="firestats-title2"
            name="firestats-title2" type="text" value="<?php echo $title?>" /></td>
    </tr>
    <tr>
        <td><label for="num_to_show"><?php fs_e('Number to show')?></label></td>
        <td><input style="width: 200px;" id="num_to_show" name="num_to_show"
            type="text" value="<?php echo $num_to_show?>" /></td>
    </tr>
    <tr>
        <td><label for="days_ago"><?php fs_e('Days ago (Empty for all time)')?></label></td>
        <td><input style="width: 200px;" id="days_ago2" name="days_ago2"
            type="text" value="<?php echo $days_ago?>" /></td>
    </tr>
    <tr>
        <td colspan="2"><input id="hide_logo2" name="hide_logo2"
            type="checkbox" <?php echo $hide_logo ? "checked='checked'" : ""?> />
        <label for="hide_logo2"><?php fs_e('Hide FireStats logo')?></label></td>
    </tr>
</table>
<input
    type="hidden" id="firestats-submit" name="firestats-submit" value="1" />
    <?php
}

/**
 * returns a cached bit of data from the options table.
 * if the data is too old, it generates new data with the generator function
 */
function fs_get_cached_data($name, $generator, $timeout = 3600)
{
    $s = get_option($name);
    if (is_string($s))
    $cached = get_option($name);
    else
    $cached = $s;

    $stale = false;
    if (empty($cached))
    {
        $stale = true;
    }
    else
    {
        $timestamp = $cached['timestamp'];
        if (time() - $timestamp > $timeout)
        {
            $stale = true;
        }
        else
        {
            $res = $cached['data'];
        }
    }

    if ($stale)
    {
        $res = $generator();
        $cached = array('timestamp'=>time(), 'data'=>$res);
        update_option($name,serialize($cached));
    }

    return $res;
}

function fs_get_rss_subscribers_box($hide_logo = false)
{
    $FS_PATH = fs_get_firestats_path();
    if (!$FS_PATH) return "FireStats is not configured yet";
    require_once($FS_PATH.'/php/init.php');

    $powered = fs_get_powered_by('fs_powered_by');
    $cache_timeout = 10*60; // 10 minutes
    $subscribers = fs_get_cached_data('firestats_rss_subscribers', fs_get_rss_subscribers, $cache_timeout);
    $text = sprintf(fs_r("%s readers"),$subscribers);
    $res = "
<!-- You can customize the sidebox by playing with your theme css-->
<ul class='firestats_sidebox'>
    <li>$text</li>
</ul>";
    if (!$hide_logo) $res .= $powered;

    return $res;
}


function fs_get_stats_box($hide_logo = false, $with_rss = false)
{
    $with_rss = $with_rss && fs_plugin_installed("RSS Subscribers");
    $FS_PATH = fs_get_firestats_path();
    if (!$FS_PATH) return "FireStats is not configured yet";
    require_once($FS_PATH.'/php/db-sql.php');

    $powered = fs_get_powered_by('fs_powered_by');
    $cache_timeout = 10*60; // 10 minutes
    $count = fs_get_cached_data('cached_firestats_hit_count', fs_get_hit_count, $cache_timeout);
    $unique = fs_get_cached_data('cached_firestats_unique_hits', fs_get_unique_hit_count, $cache_timeout);
    $last_24h_count = fs_get_cached_data('cached_firestats_last_24h_count', create_function('','return fs_get_hit_count(1);'),$cache_timeout);
    $last_24h_unique = fs_get_cached_data('cached_firestats_last_24h_visits', create_function('','return fs_get_unique_hit_count(1);'),$cache_timeout);

    if ($with_rss)
    {
        $subscribers = fs_get_cached_data('firestats_rss_subscribers', fs_get_rss_subscribers, $cache_timeout);
    }


    $total_visits  = fs_r("Pages displayed : ")."<b>$count</b>";
    $total_uniques = fs_r("Unique visitors : ")."<b>$unique</b>";
    $visits_today  = fs_r("Pages displayed in last 24 hours : ")."<b>$last_24h_count</b>";
    $uniques_today = fs_r("Unique visitors in last 24 hours : ")."<b>$last_24h_unique</b>";
    if ($with_rss)
    {
        $rss_subscribers = fs_r("RSS subscribers")." : <b>$subscribers</b>";
    }


    $res = "
<!-- You can customize the sidebox by playing with your theme css-->
<ul class='firestats_sidebox'>
    <li>$total_visits</li>
    <li>$total_uniques</li>
    <li>$visits_today</li>
    <li>$uniques_today</li>
    ".($with_rss ? "<li>$rss_subscribers</li>" : "")."
</ul>";
    if (!$hide_logo) $res .= $powered;

    return $res;
}

function fs_add_comment_flag($link)
{
    $FS_PATH = fs_get_firestats_path();
    if (!$FS_PATH) return;
    require_once($FS_PATH.'/php/ip2country.php');
    require_once($FS_PATH.'/php/utils.php');
    if (fs_called_by(null, 'wp_widget_recent_comments') || fs_called_by("WP_Widget_Recent_Comments", 'widget')) return $link;
    $ip = get_comment_author_IP();
    $code = fs_ip2c($ip);
    if (!$code) return $link;
    return $link .' '. fs_get_country_flag_url($code);
}

function fs_add_comment_browser_os($link)
{
    global $comment;
    $ua = $comment->comment_agent;
    if (!$ua) return $link;
    $FS_PATH = fs_get_firestats_path();
    if (!$FS_PATH) return;
    require_once($FS_PATH.'/php/browsniff.php');
    require_once($FS_PATH.'/php/utils.php');
    if (fs_called_by(null, 'wp_widget_recent_comments') || fs_called_by("WP_Widget_Recent_Comments", 'widget')) return $link;
    return $link . ' '.fs_pri_browser_images($ua);
}

function fs_echo_footer()
{
    $FS_PATH = fs_get_firestats_path();
    if (!$FS_PATH) return;
    require_once($FS_PATH.'/php/db-sql.php');

    $stats = get_option('firestats_show_footer_stats') == 'true';
    if ($stats)
    {
        $cache_timeout = 10*60; // 10 minutes
        $count = fs_get_cached_data('cached_firestats_hit_count', fs_get_hit_count, $cache_timeout);
        $unique = fs_get_cached_data('cached_firestats_unique_hits', fs_get_unique_hit_count, $cache_timeout);
        $last_24h_count = fs_get_cached_data('cached_firestats_last_24h_count', create_function('','return fs_get_hit_count(1);'),$cache_timeout);
        $last_24h_unique = fs_get_cached_data('cached_firestats_last_24h_visits', create_function('','return fs_get_unique_hit_count(1);'),$cache_timeout);
        echo $count  .' '.fs_r('pages viewed')  . ", $last_24h_count "  . fs_r('today')."<br/>";
        echo $unique .' '.fs_r('visits')        . ", $last_24h_unique " . fs_r('today')."<br/>";
    }
    echo fs_get_powered_by('fs_powered_by');
}

function fs_get_powered_by($css_class)
{
    $img = fs_url("img/firestats-icon-small.png");
    $firestats_url = FS_HOMEPAGE;
    $powered = "<img alt='FireStats icon' src='$img'/><a href='$firestats_url'>&nbsp;".fs_r("Powered by FireStats").'</a>';
    return "";
}


function fs_get_wp_config_path()
{
    $base = dirname(__FILE__);
    $path = false;

    if (@file_exists(dirname(dirname($base))."/wp-config.php"))
    {
        $path = dirname(dirname($base))."/wp-config.php";
    }
    else
    if (@file_exists(dirname(dirname(dirname($base)))."/wp-config.php"))
    {
        $path = dirname(dirname(dirname($base)))."/wp-config.php";
    }
    else
    $path = false;

    if ($path != false)
    {
        $path = str_replace("\\", "/", $path);
    }
    return $path;
}


/**
 * Local option storage for wordpress, used by fs_update_local_option to update wordpress value in a generic way.
 */
function fs_update_local_option_impl($key, $value)
{
    update_option($key,$value);
}

/**
 * Local option storage for wordpress, used by fs_get_local_option to get wordpress value in a generic way.
 */
function fs_get_local_option_impl($key)
{
    return get_option($key);
}

function fs_define_system_settings_impl()
{
    global $FS_SYSTEM_SETTINGS;
    $FS_SYSTEM_SETTINGS['site_selector_mode'] = fs_full_installation()
    ? FS_SITE_SELECTOR_MODE_ADMIN_ONLY
    : FS_SITE_SELECTOR_MODE_BY_USERS_SITES_TABLE;

}

/**
 * Returns a list of local (saved in WordPress) options that a non admin user may change.
 * @return array of strings
 */
function fs_local_options_allowed_for_non_admin()
{
    if (fs_is_wpmu())
    {
        // even non admin user is allowed to save those options in a wpmu blog.
        return array(
            'firestats_show_footer',
            'firestats_show_footer_stats',
            'firestats_add_comment_flag',
            'firestats_add_comment_browser_os',
            'firestats_sites_filter'
            );
    }
    else
    {
        return array();
    }
}

function fs_is_windows()
{
    if (!isset($_ENV['OS'])) return false; // assume not windows.
    if (strpos(strtolower($_ENV['OS']), "windows") === false) return false;
    return true;
}


function fs_update_post_titles()
{
    $path = fs_get_firestats_path();
    if (!$path) return "FS_PATH not defined";
    require_once($path.'/php/db-sql.php');

    global $wpdb;
    $posts = $wpdb->get_results("SELECT ID,post_title,post_type FROM $wpdb->posts WHERE post_type = 'post' OR post_type = 'page'");
    if ($posts === false)
    {
        return $wpdb->last_error;
    }

    // this is required because of a wp bug: calling get_permalink assumes pluggable was included
    // and throws an error if it's not.
    // the if is needed because plugable only exists starting from a particular version of wp.
    if (file_exists(ABSPATH . "/wp-includes/pluggable.php"))
    {
        require_once(ABSPATH . "/wp-includes/pluggable.php");
    }

    $site_id = get_option('firestats_site_id');
    $fsdb = &fs_get_db_conn();
    $urls = fs_urls_table();
    $post_type = FS_URL_TYPE_POST;
    // reset type of all urls in this site id that are marked as posts
    $fsdb->query("UPDATE `$urls` set type=NULL,title=NULL WHERE type='$post_type' AND site_id = '$site_id'");
    foreach($posts as $post)
    {
        $id = $post->ID;
        $title = $post->post_title;
        $link = get_permalink($id);
        if (empty($link)) continue;
        // make sure the url exists in the urls table.;
        $url_id = fs_get_url_id($link);
        if ($url_id == null)
        {
            $res = fs_insert_url($link, $site_id);
            if ($res !== true)
            {
                return "Error inserting url: $res";
            }
            $url_id = fs_get_url_id($link);
        }

        // replace title with current one
        $res = fs_set_url_title($link,$title);
        if ($res !== true)
        {
            return "Error handling post ($post->post_title) : $res";
        }

        // mark url as a post
        if ($post->post_type == 'post')
        {
            $res = fs_set_url_type($link,FS_URL_TYPE_POST);
            if ($res !== true)
            {
                return $res;
            }
        }
    }

    // clear popular pages cache
    delete_option('cached_firestats_popular_pages');
    return true;
}

function fs_plugin_db_update()
{
    // database version of firestats data in this particular blog.
    // if there are several blogs on the same firestats db, each one may need to do some actions in the upgrade prorcess.
    $db_version = get_option('firestats_db_version');
    if (empty($db_version)) $db_version = 0;
    if ($db_version < 11)
    {
        if (!fs_is_wpmu())
        {
            $res = fs_update_post_titles();
            if ($res !== true)
            {
                echo $res;
                return false;
            }
        }
    }

    update_option('firestats_db_version',FS_REQUIRED_DB_VERSION);
}

function fs_get_js_url()
{
    // as if this is not complicated enough, we need to add some windows specific hacks for IE7.
    $f = "index.php?page=".__FILE__."&fs_javascript=";
    $f = str_replace("\\","%5C",$f);
    return $f;
}

function fs_new_version_nag($file)
{
    $plugin_name = substr(__FILE__, strlen(ABSPATH . PLUGINDIR . '/'));
    if ($file != $plugin_name) return;
    $FS_PATH = fs_get_firestats_path();
    if ($FS_PATH)
    {
        require_once($FS_PATH.'/php/version-check.php');
        $msg = fs_get_latest_firestats_version_message();
        if ($msg != "")
        {
            echo "<tr><td colspan='5' class='plugin-update'>";
            echo $msg;
            echo "</td></tr>";
        }
    }
}

function fs_get_popular_posts_list($num_to_show = 10, $days_ago = 90, $hide_logo = false)
{
    $FS_PATH = fs_get_firestats_path();
    if (!$FS_PATH) return;
    require_once($FS_PATH.'/php/html-utils.php');

    if ($days_ago == '') $days_ago = 'null';
    if ($num_to_show == '') $num_to_show = '10';
    $generator =  create_function('',"return fs_get_popular_pages_tree($num_to_show, $days_ago, FS_URL_TYPE_POST,false, null);");
    $res = fs_get_cached_data('cached_firestats_popular_pages', $generator, 3600);
    if (!$hide_logo)
    $res .= "<br/>".fs_get_powered_by('fs_powered_by');
    return $res;
}

function fs_delete_wpmu_blog($blog_id)
{
    $FS_PATH = fs_get_firestats_path();
    if (!$FS_PATH) return;
    require_once($FS_PATH.'/php/db-sql.php');
    fs_delete_site($blog_id,'delete',null);
    fs_log("blog $blog_id deleted");
}

function fs_register_dashboard_widgets()
{
    $fs_path = fs_get_firestats_path();
    if (!$fs_path) return;
    require_once("$fs_path/php/db-common.php");
    if (fs_db_valid() && fs_can_use())
    {
        if (function_exists('wp_add_dashboard_widget'))
        {
            wp_add_dashboard_widget( 'firestats_stats_widget', 'FireStats statistics', 'fs_dashboard_widget' );
        }
        else
        {
            wp_register_sidebar_widget('firestats_stats_widget', 'FireStats statistics', 'fs_dashboard_widgets_pre_27');
        }
    }
}

function fs_add_dashboard_widgets( $widgets )
{
    global $wp_registered_widgets;
    if ( !isset($wp_registered_widgets['firestats_stats_widget']) ) return $widgets;
    array_splice( $widgets, 0, 0, 'firestats_stats_widget' );
    return $widgets;
}

/**
 * for wp <= 2.6
 */
function fs_dashboard_widgets_pre_27($args)
{
    extract($args);
    $img = fs_url("img/firestats-icon-small.png");
    $fs =  fs_r("FireStats");
    $title = fs_get_firestats_url("<img src='$img'> $fs</img>");
    echo $before_widget . $before_title . $title . $after_title;
    echo fs_get_stats_box(true,true);
    echo $after_widget;
}

/**
 * for wp >= 2.7
 */
function fs_dashboard_widget()
{
    $img = fs_url("img/firestats-icon-small.png");
    $fs =  fs_r("FireStats");
    $title = fs_get_firestats_url("<img src='$img'> $fs</img>");
    echo  $title;
    echo fs_get_stats_box(true,true);
}

?>