szurubooru/src/Controllers/PostController.php

423 lines
13 KiB
PHP
Raw Normal View History

2013-10-05 12:55:03 +02:00
<?php
2013-10-05 21:24:20 +02:00
class PostController
2013-10-05 12:55:03 +02:00
{
2013-10-07 00:44:17 +02:00
public function workWrapper($callback)
{
2013-10-09 21:02:54 +02:00
$this->context->stylesheets []= '../lib/tagit/jquery.tagit.css';
$this->context->scripts []= '../lib/tagit/jquery.tagit.js';
2013-10-07 00:44:17 +02:00
$callback();
}
2013-10-08 23:02:31 +02:00
2013-10-05 12:55:03 +02:00
/**
2013-10-05 19:24:08 +02:00
* @route /posts
2013-10-09 11:45:18 +02:00
* @route /posts/{page}
2013-10-05 19:24:08 +02:00
* @route /posts/{query}
2013-10-09 11:45:18 +02:00
* @route /posts/{query}/{page}
* @validate page \d*
* @validate query [^\/]*
2013-10-05 12:55:03 +02:00
*/
2013-10-09 12:24:25 +02:00
public function listAction($query = null, $page = 1)
2013-10-05 12:55:03 +02:00
{
2013-10-09 11:45:18 +02:00
$this->context->stylesheets []= 'post-list.css';
2013-10-10 00:12:27 +02:00
$this->context->stylesheets []= 'paginator.css';
2013-10-09 12:18:22 +02:00
if ($this->config->browsing->endlessScrolling)
2013-10-10 00:12:27 +02:00
$this->context->scripts []= 'paginator-endless.js';
2013-10-09 11:45:18 +02:00
#redirect requests in form of /posts/?query=... to canonical address
$formQuery = InputHelper::get('query');
if (!empty($formQuery))
{
$url = \Chibi\UrlHelper::route('post', 'list', ['query' => $formQuery]);
\Chibi\UrlHelper::forward($url);
return;
}
2013-10-05 21:22:28 +02:00
$this->context->subTitle = 'browsing posts';
2013-10-09 11:45:18 +02:00
$page = intval($page);
$postsPerPage = intval($this->config->browsing->postsPerPage);
PrivilegesHelper::confirmWithException($this->context->user, Privilege::ListPosts);
2013-10-09 11:45:18 +02:00
$buildDbQuery = function($dbQuery)
2013-10-08 23:02:31 +02:00
{
2013-10-09 11:45:18 +02:00
$dbQuery->from('post');
2013-10-08 23:02:31 +02:00
2013-10-09 11:45:18 +02:00
$allowedSafety = array_filter(PostSafety::getAll(), function($safety)
{
return PrivilegesHelper::confirm($this->context->user, Privilege::ListPosts, PostSafety::toString($safety));
});
//todo safety [user choice]
2013-10-08 23:02:31 +02:00
2013-10-09 11:45:18 +02:00
$dbQuery->where('safety IN (' . R::genSlots($allowedSafety) . ')');
foreach ($allowedSafety as $s)
$dbQuery->put($s);
2013-10-09 11:45:18 +02:00
//todo construct WHERE based on filters
2013-10-09 11:45:18 +02:00
//todo construct ORDER based on filers
};
$countDbQuery = R::$f->begin();
$countDbQuery->select('COUNT(1) AS count');
$buildDbQuery($countDbQuery);
$postCount = intval($countDbQuery->get('row')['count']);
$pageCount = ceil($postCount / $postsPerPage);
$searchDbQuery = R::$f->begin();
$searchDbQuery->select('*');
$buildDbQuery($searchDbQuery);
2013-10-12 10:46:15 +02:00
$searchDbQuery->orderBy('id DESC');
2013-10-09 11:45:18 +02:00
$searchDbQuery->limit('?')->put($postsPerPage);
$searchDbQuery->offset('?')->put(($page - 1) * $postsPerPage);
2013-10-09 11:45:18 +02:00
$posts = $searchDbQuery->get();
$this->context->transport->searchQuery = $query;
$this->context->transport->page = $page;
$this->context->transport->postCount = $postCount;
$this->context->transport->pageCount = $pageCount;
$this->context->transport->posts = $posts;
2013-10-05 19:24:08 +02:00
}
2013-10-08 23:02:31 +02:00
2013-10-05 19:24:08 +02:00
/**
* @route /post/upload
*/
public function uploadAction()
{
2013-10-07 00:44:17 +02:00
$this->context->stylesheets []= 'upload.css';
$this->context->scripts []= 'upload.js';
2013-10-05 21:22:28 +02:00
$this->context->subTitle = 'upload';
2013-10-07 00:44:17 +02:00
PrivilegesHelper::confirmWithException($this->context->user, Privilege::UploadPost);
if (isset($_FILES['file']))
{
$suppliedSafety = intval(InputHelper::get('safety'));
if (!in_array($suppliedSafety, PostSafety::getAll()))
throw new SimpleException('Invalid safety type "' . $suppliedSafety . '"');
$suppliedTags = InputHelper::get('tags');
$suppliedTags = preg_split('/[,;\s+]/', $suppliedTags);
$suppliedTags = array_filter($suppliedTags);
$suppliedTags = array_unique($suppliedTags);
foreach ($suppliedTags as $tag)
if (!preg_match('/^[a-zA-Z0-9_-]+$/i', $tag))
2013-10-07 00:44:17 +02:00
throw new SimpleException('Invalid tag "' . $tag . '"');
2013-10-09 00:58:49 +02:00
if (empty($suppliedTags))
throw new SimpleException('No tags set');
2013-10-07 00:44:17 +02:00
$suppliedFile = $_FILES['file'];
switch ($suppliedFile['error'])
{
case UPLOAD_ERR_OK:
break;
case UPLOAD_ERR_INI_SIZE:
throw new SimpleException('File is too big (maximum size allowed: ' . ini_get('upload_max_filesize') . ')');
case UPLOAD_ERR_FORM_SIZE:
throw new SimpleException('File is too big than it was allowed in HTML form');
case UPLOAD_ERR_PARTIAL:
throw new SimpleException('File transfer was interrupted');
case UPLOAD_ERR_NO_FILE:
throw new SimpleException('No file was uploaded');
case UPLOAD_ERR_NO_TMP_DIR:
throw new SimpleException('Server misconfiguration error: missing temporary folder');
case UPLOAD_ERR_CANT_WRITE:
throw new SimpleException('Server misconfiguration error: cannot write to disk');
case UPLOAD_ERR_EXTENSION:
throw new SimpleException('Server misconfiguration error: upload was canceled by an extension');
default:
throw new SimpleException('Generic file upload error (id: ' . $suppliedFile['error'] . ')');
}
if (!is_uploaded_file($suppliedFile['tmp_name']))
throw new SimpleException('Generic file upload error');
2013-10-07 00:44:17 +02:00
#$mimeType = $suppliedFile['type'];
$mimeType = mime_content_type($suppliedFile['tmp_name']);
2013-10-12 12:38:49 +02:00
$imageWidth = null;
$imageHeight = null;
switch ($mimeType)
2013-10-07 00:44:17 +02:00
{
case 'image/gif':
case 'image/png':
case 'image/jpeg':
$postType = PostType::Image;
2013-10-12 12:38:49 +02:00
list ($imageWidth, $imageHeight) = getimagesize($suppliedFile['tmp_name']);
2013-10-07 00:44:17 +02:00
break;
case 'application/x-shockwave-flash':
$postType = PostType::Flash;
2013-10-12 12:38:49 +02:00
list ($imageWidth, $imageHeight) = getimagesize($suppliedFile['tmp_name']);
2013-10-07 00:44:17 +02:00
break;
default:
throw new SimpleException('Invalid file type "' . $mimeType . '"');
2013-10-07 00:44:17 +02:00
}
2013-10-09 12:36:14 +02:00
$fileHash = md5_file($suppliedFile['tmp_name']);
$duplicatedPost = R::findOne('post', 'file_hash = ?', [$fileHash]);
if ($duplicatedPost !== null)
throw new SimpleException('Duplicate upload');
2013-10-07 00:44:17 +02:00
do
{
$name = md5(mt_rand() . uniqid());
2013-10-09 19:25:56 +02:00
$path = $this->config->main->filesPath . DS . $name;
2013-10-07 00:44:17 +02:00
}
while (file_exists($path));
$dbTags = [];
foreach ($suppliedTags as $tag)
{
$dbTag = R::findOne('tag', 'name = ?', [$tag]);
if (!$dbTag)
{
$dbTag = R::dispense('tag');
$dbTag->name = $tag;
R::store($dbTag);
}
$dbTags []= $dbTag;
}
$dbPost = R::dispense('post');
$dbPost->type = $postType;
$dbPost->name = $name;
2013-10-09 12:36:14 +02:00
$dbPost->orig_name = basename($suppliedFile['name']);
$dbPost->file_hash = $fileHash;
2013-10-12 12:38:49 +02:00
$dbPost->file_size = filesize($suppliedFile['tmp_name']);
$dbPost->mime_type = $mimeType;
2013-10-07 00:44:17 +02:00
$dbPost->safety = $suppliedSafety;
$dbPost->upload_date = time();
2013-10-12 12:38:49 +02:00
$dbPost->image_width = $imageWidth;
$dbPost->image_height = $imageHeight;
2013-10-12 14:53:47 +02:00
$dbPost->uploader = $this->context->user;
$dbPost->ownFavoritee = [];
$dbPost->sharedTag = $dbTags;
2013-10-07 00:44:17 +02:00
move_uploaded_file($suppliedFile['tmp_name'], $path);
R::store($dbPost);
$this->context->transport->success = true;
}
2013-10-05 19:24:08 +02:00
}
2013-10-12 14:53:47 +02:00
/**
* @route /post/add-fav/{id}
* @route /post/fav-add/{id}
*/
public function addFavoriteAction($id)
{
$post = self::locatePost($id);
R::preload($post, ['favoritee' => 'user']);
if (!$this->context->loggedIn)
throw new SimpleException('Not logged in');
foreach ($post->via('favoritee')->sharedUser as $fav)
if ($fav->id == $this->context->user->id)
throw new SimpleException('Already in favorites');
PrivilegesHelper::confirmWithException($this->context->user, Privilege::FavoritePost);
$post->link('favoritee')->user = $this->context->user;
R::store($post);
$this->context->transport->success = true;
}
/**
* @route /post/rem-fav/{id}
* @route /post/fav-rem/{id}
*/
public function remFavoriteAction($id)
{
$post = self::locatePost($id);
R::preload($post, ['favoritee' => 'user']);
PrivilegesHelper::confirmWithException($this->context->user, Privilege::FavoritePost);
if (!$this->context->loggedIn)
throw new SimpleException('Not logged in');
$finalKey = null;
foreach ($post->ownFavoritee as $key => $fav)
if ($fav->user->id == $this->context->user->id)
$finalKey = $key;
if ($finalKey === null)
throw new SimpleException('Not in favorites');
unset ($post->ownFavoritee[$key]);
R::store($post);
$this->context->transport->success = true;
}
2013-10-08 23:02:31 +02:00
2013-10-05 19:24:08 +02:00
/**
* Action that decorates the page containing the post.
2013-10-05 19:24:08 +02:00
* @route /post/{id}
*/
public function viewAction($id)
2013-10-05 19:24:08 +02:00
{
2013-10-12 14:53:47 +02:00
$post = self::locatePost($id);
R::preload($post, ['favoritee' => 'user', 'uploader' => 'user', 'tag']);
2013-10-12 10:46:15 +02:00
$prevPost = R::findOne('post', 'id < ? ORDER BY id DESC LIMIT 1', [$id]);
$nextPost = R::findOne('post', 'id > ? ORDER BY id ASC LIMIT 1', [$id]);
2013-10-07 23:17:33 +02:00
PrivilegesHelper::confirmWithException($this->context->user, Privilege::ViewPost);
PrivilegesHelper::confirmWithException($this->context->user, Privilege::ViewPost, PostSafety::toString($post->safety));
2013-10-12 14:53:47 +02:00
$favorite = false;
if ($this->context->loggedIn)
foreach ($post->ownFavoritee as $fav)
if ($fav->user->id == $this->context->user->id)
$favorite = true;
2013-10-12 10:46:15 +02:00
$dbQuery = R::$f->begin();
$dbQuery->select('tag.name, COUNT(1) AS count');
$dbQuery->from('tag');
$dbQuery->innerJoin('post_tag');
$dbQuery->on('tag.id = post_tag.tag_id');
$dbQuery->where('tag.id IN (' . R::genSlots($post->sharedTag) . ')');
foreach ($post->sharedTag as $tag)
$dbQuery->put($tag->id);
$dbQuery->groupBy('tag.id');
$rows = $dbQuery->get();
$this->context->transport->tagDistribution = [];
foreach ($rows as $row)
$this->context->transport->tagDistribution[$row['name']] = $row['count'];
2013-10-09 21:58:57 +02:00
$this->context->stylesheets []= 'post-view.css';
2013-10-12 14:53:47 +02:00
$this->context->scripts []= 'post-view.js';
$this->context->subTitle = 'showing @' . $post->id;
2013-10-12 14:53:47 +02:00
$this->context->favorite = $favorite;
$this->context->transport->post = $post;
2013-10-12 10:46:15 +02:00
$this->context->transport->prevPostId = $prevPost ? $prevPost->id : null;
$this->context->transport->nextPostId = $nextPost ? $nextPost->id : null;
}
2013-10-08 23:02:31 +02:00
/**
* Action that renders the thumbnail of the requested file and sends it to user.
* @route /post/thumb/{id}
*/
public function thumbAction($id)
{
$this->context->layoutName = 'layout-file';
2013-10-12 14:53:47 +02:00
$post = self::locatePost($id);
2013-10-08 23:02:31 +02:00
PrivilegesHelper::confirmWithException($this->context->user, Privilege::ViewPost);
PrivilegesHelper::confirmWithException($this->context->user, Privilege::ViewPost, PostSafety::toString($post->safety));
2013-10-09 19:25:56 +02:00
$path = $this->config->main->thumbsPath . DS . $post->name . '.png';
2013-10-08 23:02:31 +02:00
if (!file_exists($path))
{
2013-10-09 23:46:22 +02:00
$srcPath = $this->config->main->filesPath . DS . $post->name;
2013-10-08 23:02:31 +02:00
$dstPath = $path;
$dstWidth = $this->config->browsing->thumbWidth;
$dstHeight = $this->config->browsing->thumbHeight;
switch($post->mime_type)
{
case 'image/jpeg':
$srcImage = imagecreatefromjpeg($srcPath);
break;
case 'image/png':
$srcImage = imagecreatefrompng($srcPath);
break;
case 'image/gif':
$srcImage = imagecreatefromgif($srcPath);
break;
case 'application/x-shockwave-flash':
2013-10-09 19:25:56 +02:00
$path = $this->config->main->mediaPath . DS . 'img' . DS . 'thumb-swf.png';
2013-10-08 23:02:31 +02:00
break;
default:
2013-10-09 19:25:56 +02:00
$path = $this->config->main->mediaPath . DS . 'img' . DS . 'thumb.png';
2013-10-08 23:02:31 +02:00
break;
}
if (isset($srcImage))
{
switch ($this->config->browsing->thumbStyle)
{
case 'outside':
$dstImage = ThumbnailHelper::cropOutside($srcImage, $dstWidth, $dstHeight);
break;
case 'inside':
$dstImage = ThumbnailHelper::cropInside($srcImage, $dstWidth, $dstHeight);
break;
default:
throw new SimpleException('Unknown thumbnail crop style');
}
imagepng($dstImage, $dstPath);
imagedestroy($srcImage);
imagedestroy($dstImage);
}
}
if (!is_readable($path))
throw new SimpleException('Thumbnail file is not readable');
\Chibi\HeadersHelper::set('Pragma', 'public');
\Chibi\HeadersHelper::set('Cache-Control', 'max-age=86400');
\Chibi\HeadersHelper::set('Expires', gmdate('D, d M Y H:i:s \G\M\T', time() + 86400));
$this->context->transport->mimeType = 'image/png';
$this->context->transport->filePath = $path;
}
/**
* Action that renders the requested file itself and sends it to user.
2013-10-07 23:17:33 +02:00
* @route /post/retrieve/{name}
*/
2013-10-07 23:17:33 +02:00
public function retrieveAction($name)
{
$this->context->layoutName = 'layout-file';
2013-10-12 14:53:47 +02:00
$post = self::locatePost($name);
2013-10-07 23:17:33 +02:00
PrivilegesHelper::confirmWithException($this->context->user, Privilege::RetrievePost);
PrivilegesHelper::confirmWithException($this->context->user, Privilege::RetrievePost, PostSafety::toString($post->safety));
2013-10-09 19:25:56 +02:00
$path = $this->config->main->filesPath . DS . $post->name;
if (!file_exists($path))
throw new SimpleException('Post file does not exist');
if (!is_readable($path))
throw new SimpleException('Post file is not readable');
$this->context->transport->mimeType = $post->mimeType;
$this->context->transport->filePath = $path;
2013-10-05 12:55:03 +02:00
}
2013-10-08 23:02:31 +02:00
/**
* @route /favorites
2013-10-09 12:24:25 +02:00
* @route /favorites/{page}
* @validate page \d*
*/
2013-10-09 12:24:25 +02:00
public function favoritesAction($page = 1)
{
2013-10-09 12:24:25 +02:00
$this->listAction('favmin:1', $page);
$this->context->viewName = 'post-list';
}
2013-10-12 14:53:47 +02:00
public static function locatePost($key)
{
if (is_numeric($key))
{
$post = R::findOne('post', 'id = ?', [$key]);
if (!$post)
throw new SimpleException('Invalid post ID "' . $key . '"');
}
else
{
$post = R::findOne('post', 'name = ?', [$key]);
if (!$post)
throw new SimpleException('Invalid post name "' . $key . '"');
}
return $post;
}
2013-10-05 12:55:03 +02:00
}