Build your own sharing service. OExchange makes it possible to share any URL-based content with any service on the web.
OExchange (http://www.oexchange.org/) is an open protocol for sharing any URL with any service on the web. You can build your own sharing button like facebook/twitter and also submit to Addthis (http://addthis.com) and Sharethis (http://sharethis.com).
Project page link: https://drupal.org/sandbox/vikram_jeet/2177409
git clone --branch 7.x-1.x http://git.drupal.org/sandbox/vikram_jeet/2177409.git oexchange
Reviews of other projects
https://drupal.org/comment/8417781#comment-8417781
https://drupal.org/comment/8417955#comment-8417955
https://drupal.org/comment/8418093#comment-8418093
Comments
Comment #1
PA robot CreditAttribution: PA robot commentedWe are currently quite busy with all the project applications and we prefer projects with a review bonus. Please help reviewing and put yourself on the high priority list, then we will take a look at your project right away :-)
Also, you should get your friends, colleagues or other community members involved to review this application. Let them go through the review checklist and post a comment that sets this issue to "needs work" (they found some problems with the project) or "reviewed & tested by the community" (they found no major flaws).
I'm a robot and this is an automated message from Project Applications Scraper.
Comment #2
rodrigoeg CreditAttribution: rodrigoeg commentedHi,
I did not found issues on http://pareview.sh/pareview/httpgitdrupalorgsandboxvikramjeet2177409git
On Coder (https://drupal.org/project/coder) these items are the only ones I found. The last one I think it could be a false positive:
When I installed the module, this notice showed to me:
The constant COMMENT_NODE_CLOSED is from comment module, which I don't have it enabled. Appears to have a little dependence that does not interfere in the module functionality, and could be solved easily, with only a module_exists() verification.
Comment #3
singhsantosh CreditAttribution: singhsantosh commentedWe have added the check for comment module in install file.
We do not use /e in preg_match, I think, this is because we use '\'.
Comment #4
singhsantosh CreditAttribution: singhsantosh commentedComment #5
rmn CreditAttribution: rmn commentedHi Vikram
$('.drupal_share_button')
. So, its a good practice to cache this in a variable like:var $drupalShareBtn = $('.drupal_share_button');
Then refer the above variable everytime instead of that expression.$(this).hasAttr('title')
Thanks
Raman
Comment #6
rmn CreditAttribution: rmn commentedOn second thought, point 4 can be invalid in certain cases, since there can be multiple elements with class
.drupal_share_button
on the page. But, you still must cache$(this)
asvar $this = $(this);
so an object is not created every time.Comment #7
singhsantosh CreditAttribution: singhsantosh commentedI have made changes in oexchange_share.js file.For Maintain consistency use the jQuery replace of $.Use the variable of $drupalShareBtn which refer to $(.drupal_share_button).Cache the $(this) in variable.And hasAttr is not a function of jquery library thats why i used "is" instead of "hasAttr" to check the attribute is exists or not.
Comment #8
singhsantosh CreditAttribution: singhsantosh commentedComment #9
klausimanual review:
<script>alert('XSS title');</script>
as node title then I will get a nasty javascript popup. You need to sanitize user provided text before printing. Make sure to read https://drupal.org/node/28984 again. And please don't remove the security tag, we keep that for statistics and to show examples of security problems. oexchange_share_form() looks a bit suspicoius as well, as you are printing stuff from the user supplied $_GET to HTML.Removing review bonus tag, you can add it again if you have done another 3 reviews of other projects.
Comment #10
singhsantosh CreditAttribution: singhsantosh commented1. This module adds the share button to other site like facebook share button. This share button works same as Facebook, Twitter etc. You can publish your sahre button on 'Sharethis' or 'Addthis' because we follow the standards provided by the http://www.oexchange.org/.
alert('XSS title');2.Now i use the fetch col instead of foreach loop on db result.
3. Actually this module have own permissions, Administrator of the site can select any thing, so we use user_access to check the permission on this page.
4.Undefined index: en in oexchange_node_view() function now remove this error.
5.oexchange_node_view(): now i use $node->language instead of $language_content variable.
6.oexchange_node_view(): this is vulnerable to XSS exploits. If I enter
as node title then I will get a nasty javascript popup.Now remove this issue from this function.
7.oexchange_node_view(): contains a lot of custom markup, this is now generated in a theme function, so that it can be easily overridden.
Comment #11
heddn'access arguments' => array('share content'),
in your hook_menuComment #12
heddnComment #13
PA robot CreditAttribution: PA robot commentedClosing due to lack of activity. If you are still working on this application, you should fix all known problems and then set the status to "Needs review". (See also the project application workflow).
I'm a robot and this is an automated message from Project Applications Scraper.