2013-10-05 12:55:03 +02:00
|
|
|
<?php
|
2013-10-05 21:24:20 +02:00
|
|
|
class PostController
|
2013-10-05 12:55:03 +02:00
|
|
|
{
|
2013-10-07 00:44:17 +02:00
|
|
|
public function workWrapper($callback)
|
|
|
|
|
{
|
|
|
|
|
$this->context->stylesheets []= 'jquery.tagit.css';
|
|
|
|
|
$this->context->scripts []= 'jquery.tagit.js';
|
|
|
|
|
$callback();
|
|
|
|
|
}
|
|
|
|
|
|
2013-10-08 23:02:31 +02:00
|
|
|
|
|
|
|
|
|
2013-10-05 12:55:03 +02:00
|
|
|
/**
|
2013-10-05 19:24:08 +02:00
|
|
|
* @route /posts
|
2013-10-09 11:45:18 +02:00
|
|
|
* @route /posts/{page}
|
2013-10-05 19:24:08 +02:00
|
|
|
* @route /posts/{query}
|
2013-10-09 11:45:18 +02:00
|
|
|
* @route /posts/{query}/{page}
|
|
|
|
|
* @validate page \d*
|
|
|
|
|
* @validate query [^\/]*
|
2013-10-05 12:55:03 +02:00
|
|
|
*/
|
2013-10-09 11:45:18 +02:00
|
|
|
public function listAction($page = 1, $query = null)
|
2013-10-05 12:55:03 +02:00
|
|
|
{
|
2013-10-09 11:45:18 +02:00
|
|
|
$this->context->stylesheets []= 'post-list.css';
|
|
|
|
|
|
2013-10-05 22:52:55 +02:00
|
|
|
#redirect requests in form of /posts/?query=... to canonical address
|
|
|
|
|
$formQuery = InputHelper::get('query');
|
|
|
|
|
if (!empty($formQuery))
|
|
|
|
|
{
|
|
|
|
|
$url = \Chibi\UrlHelper::route('post', 'list', ['query' => $formQuery]);
|
|
|
|
|
\Chibi\UrlHelper::forward($url);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2013-10-05 21:22:28 +02:00
|
|
|
$this->context->subTitle = 'browsing posts';
|
2013-10-09 11:45:18 +02:00
|
|
|
$page = intval($page);
|
|
|
|
|
$postsPerPage = intval($this->config->browsing->postsPerPage);
|
2013-10-07 20:44:14 +02:00
|
|
|
|
|
|
|
|
PrivilegesHelper::confirmWithException($this->context->user, Privilege::ListPosts);
|
|
|
|
|
|
2013-10-09 11:45:18 +02:00
|
|
|
$buildDbQuery = function($dbQuery)
|
2013-10-08 23:02:31 +02:00
|
|
|
{
|
2013-10-09 11:45:18 +02:00
|
|
|
$dbQuery->from('post');
|
2013-10-08 23:02:31 +02:00
|
|
|
|
2013-10-09 11:45:18 +02:00
|
|
|
$allowedSafety = array_filter(PostSafety::getAll(), function($safety)
|
|
|
|
|
{
|
|
|
|
|
return PrivilegesHelper::confirm($this->context->user, Privilege::ListPosts, PostSafety::toString($safety));
|
|
|
|
|
});
|
|
|
|
|
//todo safety [user choice]
|
2013-10-08 23:02:31 +02:00
|
|
|
|
2013-10-09 11:45:18 +02:00
|
|
|
$dbQuery->where('safety IN (' . R::genSlots($allowedSafety) . ')');
|
|
|
|
|
foreach ($allowedSafety as $s)
|
|
|
|
|
$dbQuery->put($s);
|
2013-10-07 20:44:14 +02:00
|
|
|
|
2013-10-09 11:45:18 +02:00
|
|
|
//todo construct WHERE based on filters
|
2013-10-07 20:44:14 +02:00
|
|
|
|
2013-10-09 11:45:18 +02:00
|
|
|
//todo construct ORDER based on filers
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
$countDbQuery = R::$f->begin();
|
|
|
|
|
$countDbQuery->select('COUNT(1) AS count');
|
|
|
|
|
$buildDbQuery($countDbQuery);
|
|
|
|
|
$postCount = intval($countDbQuery->get('row')['count']);
|
|
|
|
|
$pageCount = ceil($postCount / $postsPerPage);
|
|
|
|
|
|
|
|
|
|
$searchDbQuery = R::$f->begin();
|
|
|
|
|
$searchDbQuery->select('*');
|
|
|
|
|
$buildDbQuery($searchDbQuery);
|
|
|
|
|
$searchDbQuery->orderBy('upload_date DESC');
|
|
|
|
|
$searchDbQuery->limit('?')->put($postsPerPage);
|
|
|
|
|
$searchDbQuery->offset('?')->put(($page - 1) * $postsPerPage);
|
2013-10-07 20:44:14 +02:00
|
|
|
|
2013-10-09 11:45:18 +02:00
|
|
|
$posts = $searchDbQuery->get();
|
|
|
|
|
$this->context->transport->searchQuery = $query;
|
|
|
|
|
$this->context->transport->page = $page;
|
|
|
|
|
$this->context->transport->postCount = $postCount;
|
|
|
|
|
$this->context->transport->pageCount = $pageCount;
|
2013-10-07 20:44:14 +02:00
|
|
|
$this->context->transport->posts = $posts;
|
2013-10-05 19:24:08 +02:00
|
|
|
}
|
|
|
|
|
|
2013-10-08 23:02:31 +02:00
|
|
|
|
|
|
|
|
|
2013-10-05 19:24:08 +02:00
|
|
|
/**
|
|
|
|
|
* @route /post/upload
|
|
|
|
|
*/
|
|
|
|
|
public function uploadAction()
|
|
|
|
|
{
|
2013-10-07 00:44:17 +02:00
|
|
|
$this->context->stylesheets []= 'upload.css';
|
|
|
|
|
$this->context->scripts []= 'upload.js';
|
2013-10-05 21:22:28 +02:00
|
|
|
$this->context->subTitle = 'upload';
|
2013-10-07 00:44:17 +02:00
|
|
|
|
|
|
|
|
PrivilegesHelper::confirmWithException($this->context->user, Privilege::UploadPost);
|
|
|
|
|
|
|
|
|
|
if (isset($_FILES['file']))
|
|
|
|
|
{
|
|
|
|
|
$suppliedSafety = intval(InputHelper::get('safety'));
|
|
|
|
|
if (!in_array($suppliedSafety, PostSafety::getAll()))
|
|
|
|
|
throw new SimpleException('Invalid safety type "' . $suppliedSafety . '"');
|
|
|
|
|
|
|
|
|
|
$suppliedTags = InputHelper::get('tags');
|
|
|
|
|
$suppliedTags = preg_split('/[,;\s+]/', $suppliedTags);
|
|
|
|
|
$suppliedTags = array_filter($suppliedTags);
|
|
|
|
|
$suppliedTags = array_unique($suppliedTags);
|
|
|
|
|
foreach ($suppliedTags as $tag)
|
2013-10-07 20:44:14 +02:00
|
|
|
if (!preg_match('/^[a-zA-Z0-9_-]+$/i', $tag))
|
2013-10-07 00:44:17 +02:00
|
|
|
throw new SimpleException('Invalid tag "' . $tag . '"');
|
2013-10-09 00:58:49 +02:00
|
|
|
if (empty($suppliedTags))
|
|
|
|
|
throw new SimpleException('No tags set');
|
2013-10-07 00:44:17 +02:00
|
|
|
|
|
|
|
|
$suppliedFile = $_FILES['file'];
|
2013-10-09 01:17:25 +02:00
|
|
|
switch ($suppliedFile['error'])
|
|
|
|
|
{
|
|
|
|
|
case UPLOAD_ERR_OK:
|
|
|
|
|
break;
|
|
|
|
|
case UPLOAD_ERR_INI_SIZE:
|
|
|
|
|
throw new SimpleException('File is too big (maximum size allowed: ' . ini_get('upload_max_filesize') . ')');
|
|
|
|
|
case UPLOAD_ERR_FORM_SIZE:
|
|
|
|
|
throw new SimpleException('File is too big than it was allowed in HTML form');
|
|
|
|
|
case UPLOAD_ERR_PARTIAL:
|
|
|
|
|
throw new SimpleException('File transfer was interrupted');
|
|
|
|
|
case UPLOAD_ERR_NO_FILE:
|
|
|
|
|
throw new SimpleException('No file was uploaded');
|
|
|
|
|
case UPLOAD_ERR_NO_TMP_DIR:
|
|
|
|
|
throw new SimpleException('Server misconfiguration error: missing temporary folder');
|
|
|
|
|
case UPLOAD_ERR_CANT_WRITE:
|
|
|
|
|
throw new SimpleException('Server misconfiguration error: cannot write to disk');
|
|
|
|
|
case UPLOAD_ERR_EXTENSION:
|
|
|
|
|
throw new SimpleException('Server misconfiguration error: upload was canceled by an extension');
|
|
|
|
|
default:
|
|
|
|
|
throw new SimpleException('Generic file upload error (id: ' . $suppliedFile['error'] . ')');
|
|
|
|
|
}
|
|
|
|
|
if (!is_uploaded_file($suppliedFile['tmp_name']))
|
|
|
|
|
throw new SimpleException('Generic file upload error');
|
2013-10-07 00:44:17 +02:00
|
|
|
|
2013-10-09 01:17:25 +02:00
|
|
|
#$mimeType = $suppliedFile['type'];
|
|
|
|
|
$mimeType = mime_content_type($suppliedFile['tmp_name']);
|
|
|
|
|
switch ($mimeType)
|
2013-10-07 00:44:17 +02:00
|
|
|
{
|
|
|
|
|
case 'image/gif':
|
|
|
|
|
case 'image/png':
|
|
|
|
|
case 'image/jpeg':
|
|
|
|
|
$postType = PostType::Image;
|
|
|
|
|
break;
|
|
|
|
|
case 'application/x-shockwave-flash':
|
|
|
|
|
$postType = PostType::Flash;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
2013-10-09 01:17:25 +02:00
|
|
|
throw new SimpleException('Invalid file type "' . $mimeType . '"');
|
2013-10-07 00:44:17 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//todo: find out duplicate files
|
|
|
|
|
|
|
|
|
|
do
|
|
|
|
|
{
|
|
|
|
|
$name = md5(mt_rand() . uniqid());
|
|
|
|
|
$path = $this->config->main->filesPath . DIRECTORY_SEPARATOR . $name;
|
|
|
|
|
}
|
|
|
|
|
while (file_exists($path));
|
|
|
|
|
|
|
|
|
|
$dbTags = [];
|
|
|
|
|
foreach ($suppliedTags as $tag)
|
|
|
|
|
{
|
|
|
|
|
$dbTag = R::findOne('tag', 'name = ?', [$tag]);
|
|
|
|
|
if (!$dbTag)
|
|
|
|
|
{
|
|
|
|
|
$dbTag = R::dispense('tag');
|
|
|
|
|
$dbTag->name = $tag;
|
|
|
|
|
R::store($dbTag);
|
|
|
|
|
}
|
|
|
|
|
$dbTags []= $dbTag;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$dbPost = R::dispense('post');
|
|
|
|
|
$dbPost->type = $postType;
|
|
|
|
|
$dbPost->name = $name;
|
2013-10-09 01:17:25 +02:00
|
|
|
$dbPost->mime_type = $mimeType;
|
2013-10-07 00:44:17 +02:00
|
|
|
$dbPost->safety = $suppliedSafety;
|
2013-10-07 20:44:14 +02:00
|
|
|
$dbPost->upload_date = time();
|
2013-10-07 00:44:17 +02:00
|
|
|
$dbPost->sharedTag = $dbTags;
|
2013-10-07 20:44:14 +02:00
|
|
|
$dbPost->ownUser = $this->context->user;
|
2013-10-07 00:44:17 +02:00
|
|
|
|
|
|
|
|
move_uploaded_file($suppliedFile['tmp_name'], $path);
|
|
|
|
|
R::store($dbPost);
|
|
|
|
|
|
|
|
|
|
$this->context->transport->success = true;
|
|
|
|
|
}
|
2013-10-05 19:24:08 +02:00
|
|
|
}
|
|
|
|
|
|
2013-10-08 23:02:31 +02:00
|
|
|
|
|
|
|
|
|
2013-10-05 19:24:08 +02:00
|
|
|
/**
|
2013-10-07 20:44:14 +02:00
|
|
|
* Action that decorates the page containing the post.
|
2013-10-05 19:24:08 +02:00
|
|
|
* @route /post/{id}
|
|
|
|
|
*/
|
2013-10-07 20:44:14 +02:00
|
|
|
public function viewAction($id)
|
2013-10-05 19:24:08 +02:00
|
|
|
{
|
2013-10-07 20:44:14 +02:00
|
|
|
$post = R::findOne('post', 'id = ?', [$id]);
|
|
|
|
|
if (!$post)
|
|
|
|
|
throw new SimpleException('Invalid post ID "' . $id . '"');
|
|
|
|
|
|
2013-10-07 23:17:33 +02:00
|
|
|
PrivilegesHelper::confirmWithException($this->context->user, Privilege::ViewPost);
|
|
|
|
|
PrivilegesHelper::confirmWithException($this->context->user, Privilege::ViewPost, PostSafety::toString($post->safety));
|
2013-10-07 20:44:14 +02:00
|
|
|
|
|
|
|
|
$this->context->subTitle = 'showing @' . $post->id;
|
|
|
|
|
$this->context->transport->post = $post;
|
|
|
|
|
}
|
|
|
|
|
|
2013-10-08 23:02:31 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Action that renders the thumbnail of the requested file and sends it to user.
|
|
|
|
|
* @route /post/thumb/{id}
|
|
|
|
|
*/
|
|
|
|
|
public function thumbAction($id)
|
|
|
|
|
{
|
|
|
|
|
$this->context->layoutName = 'layout-file';
|
|
|
|
|
|
|
|
|
|
$post = R::findOne('post', 'id = ?', [$id]);
|
|
|
|
|
if (!$post)
|
|
|
|
|
throw new SimpleException('Invalid post ID "' . $id . '"');
|
|
|
|
|
|
|
|
|
|
PrivilegesHelper::confirmWithException($this->context->user, Privilege::ViewPost);
|
|
|
|
|
PrivilegesHelper::confirmWithException($this->context->user, Privilege::ViewPost, PostSafety::toString($post->safety));
|
|
|
|
|
|
|
|
|
|
$path = $this->config->main->thumbsPath . DIRECTORY_SEPARATOR . $post->name . '.png';
|
|
|
|
|
if (!file_exists($path))
|
|
|
|
|
{
|
|
|
|
|
$srcPath = $this->config->main->thumbsPath . DIRECTORY_SEPARATOR . $post->name;
|
|
|
|
|
$dstPath = $path;
|
|
|
|
|
$dstWidth = $this->config->browsing->thumbWidth;
|
|
|
|
|
$dstHeight = $this->config->browsing->thumbHeight;
|
|
|
|
|
|
|
|
|
|
switch($post->mime_type)
|
|
|
|
|
{
|
|
|
|
|
case 'image/jpeg':
|
|
|
|
|
$srcImage = imagecreatefromjpeg($srcPath);
|
|
|
|
|
break;
|
|
|
|
|
case 'image/png':
|
|
|
|
|
$srcImage = imagecreatefrompng($srcPath);
|
|
|
|
|
break;
|
|
|
|
|
case 'image/gif':
|
|
|
|
|
$srcImage = imagecreatefromgif($srcPath);
|
|
|
|
|
break;
|
|
|
|
|
case 'application/x-shockwave-flash':
|
|
|
|
|
$path = $this->config->main->mediaPath . DIRECTORY_SEPARATOR . 'img' . DIRECTORY_SEPARATOR . 'thumb-swf.png';
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
$path = $this->config->main->mediaPath . DIRECTORY_SEPARATOR . 'img' . DIRECTORY_SEPARATOR . 'thumb.png';
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (isset($srcImage))
|
|
|
|
|
{
|
|
|
|
|
switch ($this->config->browsing->thumbStyle)
|
|
|
|
|
{
|
|
|
|
|
case 'outside':
|
|
|
|
|
$dstImage = ThumbnailHelper::cropOutside($srcImage, $dstWidth, $dstHeight);
|
|
|
|
|
break;
|
|
|
|
|
case 'inside':
|
|
|
|
|
$dstImage = ThumbnailHelper::cropInside($srcImage, $dstWidth, $dstHeight);
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
throw new SimpleException('Unknown thumbnail crop style');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
imagepng($dstImage, $dstPath);
|
|
|
|
|
imagedestroy($srcImage);
|
|
|
|
|
imagedestroy($dstImage);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (!is_readable($path))
|
|
|
|
|
throw new SimpleException('Thumbnail file is not readable');
|
|
|
|
|
|
|
|
|
|
\Chibi\HeadersHelper::set('Pragma', 'public');
|
|
|
|
|
\Chibi\HeadersHelper::set('Cache-Control', 'max-age=86400');
|
|
|
|
|
\Chibi\HeadersHelper::set('Expires', gmdate('D, d M Y H:i:s \G\M\T', time() + 86400));
|
|
|
|
|
|
|
|
|
|
$this->context->transport->mimeType = 'image/png';
|
|
|
|
|
$this->context->transport->filePath = $path;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2013-10-07 20:44:14 +02:00
|
|
|
/**
|
|
|
|
|
* Action that renders the requested file itself and sends it to user.
|
2013-10-07 23:17:33 +02:00
|
|
|
* @route /post/retrieve/{name}
|
2013-10-07 20:44:14 +02:00
|
|
|
*/
|
2013-10-07 23:17:33 +02:00
|
|
|
public function retrieveAction($name)
|
2013-10-07 20:44:14 +02:00
|
|
|
{
|
|
|
|
|
$this->context->layoutName = 'layout-file';
|
|
|
|
|
|
|
|
|
|
$post = R::findOne('post', 'name = ?', [$name]);
|
|
|
|
|
if (!$post)
|
|
|
|
|
throw new SimpleException('Invalid post name "' . $name . '"');
|
|
|
|
|
|
2013-10-07 23:17:33 +02:00
|
|
|
PrivilegesHelper::confirmWithException($this->context->user, Privilege::RetrievePost);
|
|
|
|
|
PrivilegesHelper::confirmWithException($this->context->user, Privilege::RetrievePost, PostSafety::toString($post->safety));
|
2013-10-07 20:44:14 +02:00
|
|
|
|
|
|
|
|
$path = $this->config->main->filesPath . DIRECTORY_SEPARATOR . $post->name;
|
|
|
|
|
if (!file_exists($path))
|
|
|
|
|
throw new SimpleException('Post file does not exist');
|
|
|
|
|
if (!is_readable($path))
|
|
|
|
|
throw new SimpleException('Post file is not readable');
|
|
|
|
|
|
|
|
|
|
$this->context->transport->mimeType = $post->mimeType;
|
|
|
|
|
$this->context->transport->filePath = $path;
|
2013-10-05 12:55:03 +02:00
|
|
|
}
|
2013-10-05 22:52:55 +02:00
|
|
|
|
2013-10-08 23:02:31 +02:00
|
|
|
|
|
|
|
|
|
2013-10-05 22:52:55 +02:00
|
|
|
/**
|
|
|
|
|
* @route /favorites
|
|
|
|
|
*/
|
|
|
|
|
public function favoritesAction()
|
|
|
|
|
{
|
|
|
|
|
$this->listAction('favmin:1');
|
2013-10-07 20:44:14 +02:00
|
|
|
$this->context->viewName = 'post-list';
|
2013-10-05 22:52:55 +02:00
|
|
|
}
|
2013-10-05 12:55:03 +02:00
|
|
|
}
|
