2025-01-31 18:20:13 +03:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
declare(strict_types=1);
|
|
|
|
|
|
2020-06-07 19:04:43 +03:00
|
|
|
namespace openvk\Web\Presenters;
|
2025-01-31 18:20:13 +03:00
|
|
|
|
2022-08-09 08:58:47 +03:00
|
|
|
use openvk\Web\Models\Repositories\{Users, Notes};
|
2020-06-07 19:04:43 +03:00
|
|
|
use openvk\Web\Models\Entities\Note;
|
|
|
|
|
|
|
|
|
|
final class NotesPresenter extends OpenVKPresenter
|
|
|
|
|
{
|
|
|
|
|
private $notes;
|
2022-09-17 00:19:46 +03:00
|
|
|
protected $presenterName = "notes";
|
|
|
|
|
|
2025-01-31 18:20:13 +03:00
|
|
|
public function __construct(Notes $notes)
|
2020-06-07 19:04:43 +03:00
|
|
|
{
|
|
|
|
|
$this->notes = $notes;
|
2025-01-31 18:20:13 +03:00
|
|
|
|
2020-06-07 19:04:43 +03:00
|
|
|
parent::__construct();
|
|
|
|
|
}
|
2025-01-31 18:20:13 +03:00
|
|
|
|
|
|
|
|
public function renderList(int $owner): void
|
2020-06-07 19:04:43 +03:00
|
|
|
{
|
2025-01-31 18:20:13 +03:00
|
|
|
$user = (new Users())->get($owner);
|
|
|
|
|
if (!$user) {
|
|
|
|
|
$this->notFound();
|
|
|
|
|
}
|
|
|
|
|
if (!$user->getPrivacyPermission('notes.read', $this->user->identity ?? null)) {
|
2021-12-14 16:00:12 +03:00
|
|
|
$this->flashFail("err", tr("forbidden"), tr("forbidden_comment"));
|
2025-01-31 18:20:13 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$this->template->page = (int) ($this->queryParam("p") ?? 1);
|
2024-11-22 16:31:07 +03:00
|
|
|
$this->template->notes = $this->notes->getUserNotes($user, $this->template->page);
|
2020-06-07 19:04:43 +03:00
|
|
|
$this->template->count = $this->notes->getUserNotesCount($user);
|
|
|
|
|
$this->template->owner = $user;
|
|
|
|
|
}
|
2025-01-31 18:20:13 +03:00
|
|
|
|
|
|
|
|
public function renderView(int $owner, int $note_id): void
|
2020-06-07 19:04:43 +03:00
|
|
|
{
|
2021-11-15 14:00:49 +03:00
|
|
|
$note = $this->notes->getNoteById($owner, $note_id);
|
2025-01-31 18:20:13 +03:00
|
|
|
if (!$note || $note->getOwner()->getId() !== $owner || $note->isDeleted()) {
|
2020-06-07 19:04:43 +03:00
|
|
|
$this->notFound();
|
2025-01-31 18:20:13 +03:00
|
|
|
}
|
|
|
|
|
if (!$note->getOwner()->getPrivacyPermission('notes.read', $this->user->identity ?? null)) {
|
2021-12-14 16:00:12 +03:00
|
|
|
$this->flashFail("err", tr("forbidden"), tr("forbidden_comment"));
|
2025-01-31 18:20:13 +03:00
|
|
|
}
|
|
|
|
|
if (!$note->canBeViewedBy($this->user->identity)) {
|
2023-12-02 20:21:16 +03:00
|
|
|
$this->flashFail("err", tr("forbidden"), tr("forbidden_comment"));
|
2025-01-31 18:20:13 +03:00
|
|
|
}
|
|
|
|
|
|
2020-06-07 19:04:43 +03:00
|
|
|
$this->template->cCount = $note->getCommentsCount();
|
|
|
|
|
$this->template->cPage = (int) ($this->queryParam("p") ?? 1);
|
|
|
|
|
$this->template->comments = iterator_to_array($note->getComments($this->template->cPage));
|
|
|
|
|
$this->template->note = $note;
|
|
|
|
|
}
|
2025-01-31 18:20:13 +03:00
|
|
|
|
|
|
|
|
public function renderPreView(): void
|
2022-08-19 20:20:09 +03:00
|
|
|
{
|
|
|
|
|
$this->assertUserLoggedIn();
|
|
|
|
|
$this->willExecuteWriteAction();
|
2025-01-31 18:20:13 +03:00
|
|
|
|
|
|
|
|
if ($_SERVER["REQUEST_METHOD"] !== "POST") {
|
2022-08-19 20:20:09 +03:00
|
|
|
header("HTTP/1.1 400 Bad Request");
|
|
|
|
|
exit;
|
|
|
|
|
}
|
2025-01-31 18:20:13 +03:00
|
|
|
|
|
|
|
|
if (empty($this->postParam("html")) || empty($this->postParam("title"))) {
|
2022-08-19 20:20:09 +03:00
|
|
|
header("HTTP/1.1 400 Bad Request");
|
|
|
|
|
exit(tr("note_preview_empty_err"));
|
|
|
|
|
}
|
2025-01-31 18:20:13 +03:00
|
|
|
|
|
|
|
|
$note = new Note();
|
2022-08-19 20:20:09 +03:00
|
|
|
$note->setSource($this->postParam("html"));
|
2025-01-31 18:20:13 +03:00
|
|
|
|
2022-08-19 20:20:09 +03:00
|
|
|
$this->flash("info", tr("note_preview_warn"), tr("note_preview_warn_details"));
|
|
|
|
|
$this->template->title = $this->postParam("title");
|
|
|
|
|
$this->template->html = $note->getText();
|
|
|
|
|
}
|
2025-01-31 18:20:13 +03:00
|
|
|
|
|
|
|
|
public function renderCreate(): void
|
2020-06-07 19:04:43 +03:00
|
|
|
{
|
|
|
|
|
$this->assertUserLoggedIn();
|
2021-01-01 00:18:53 +03:00
|
|
|
$this->willExecuteWriteAction();
|
2025-01-31 18:20:13 +03:00
|
|
|
|
2020-06-07 19:04:43 +03:00
|
|
|
$id = $this->user->id; #TODO: when ACL'll be done, allow admins to edit users via ?GUID=(chandler guid)
|
2025-01-31 18:20:13 +03:00
|
|
|
|
|
|
|
|
if (!$id) {
|
2020-06-07 19:04:43 +03:00
|
|
|
$this->notFound();
|
2025-01-31 18:20:13 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ($_SERVER["REQUEST_METHOD"] === "POST") {
|
|
|
|
|
if (empty($this->postParam("name"))) {
|
|
|
|
|
$this->flashFail("err", tr("error"), tr("error_segmentation"));
|
2021-01-17 01:45:49 +03:00
|
|
|
}
|
2021-01-17 02:19:54 +03:00
|
|
|
|
2025-01-31 18:20:13 +03:00
|
|
|
$note = new Note();
|
2020-06-07 19:04:43 +03:00
|
|
|
$note->setOwner($this->user->id);
|
|
|
|
|
$note->setCreated(time());
|
|
|
|
|
$note->setName($this->postParam("name"));
|
|
|
|
|
$note->setSource($this->postParam("html"));
|
2022-01-26 18:20:10 +03:00
|
|
|
$note->setEdited(time());
|
|
|
|
|
$note->save();
|
2025-01-31 18:20:13 +03:00
|
|
|
|
2022-01-26 18:20:10 +03:00
|
|
|
$this->redirect("/note" . $this->user->id . "_" . $note->getVirtualId());
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2025-01-31 18:20:13 +03:00
|
|
|
public function renderEdit(int $owner, int $note_id): void
|
2022-01-26 18:20:10 +03:00
|
|
|
{
|
|
|
|
|
$this->assertUserLoggedIn();
|
|
|
|
|
$this->willExecuteWriteAction();
|
2025-01-31 18:20:13 +03:00
|
|
|
|
2022-01-26 18:20:10 +03:00
|
|
|
$note = $this->notes->getNoteById($owner, $note_id);
|
|
|
|
|
|
2025-01-31 18:20:13 +03:00
|
|
|
if (!$note || $note->getOwner()->getId() !== $owner || $note->isDeleted()) {
|
2022-01-26 18:20:10 +03:00
|
|
|
$this->notFound();
|
2025-01-31 18:20:13 +03:00
|
|
|
}
|
|
|
|
|
if (is_null($this->user) || !$note->canBeModifiedBy($this->user->identity)) {
|
2023-09-17 16:22:59 +03:00
|
|
|
$this->flashFail("err", tr("error_access_denied_short"), tr("error_access_denied"));
|
2025-01-31 18:20:13 +03:00
|
|
|
}
|
2022-01-26 18:20:10 +03:00
|
|
|
$this->template->note = $note;
|
2025-01-31 18:20:13 +03:00
|
|
|
|
|
|
|
|
if ($_SERVER["REQUEST_METHOD"] === "POST") {
|
|
|
|
|
if (empty($this->postParam("name"))) {
|
|
|
|
|
$this->flashFail("err", tr("error"), tr("error_segmentation"));
|
2022-01-26 18:20:10 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$note->setName($this->postParam("name"));
|
|
|
|
|
$note->setSource($this->postParam("html"));
|
2025-01-31 18:20:13 +03:00
|
|
|
$note->setCached_Content(null);
|
2022-01-26 18:20:10 +03:00
|
|
|
$note->setEdited(time());
|
2020-06-07 19:04:43 +03:00
|
|
|
$note->save();
|
2025-01-31 18:20:13 +03:00
|
|
|
|
2021-11-15 14:00:49 +03:00
|
|
|
$this->redirect("/note" . $this->user->id . "_" . $note->getVirtualId());
|
2020-06-07 19:04:43 +03:00
|
|
|
}
|
|
|
|
|
}
|
2025-01-31 18:20:13 +03:00
|
|
|
|
|
|
|
|
public function renderDelete(int $owner, int $id): void
|
2021-01-17 02:19:54 +03:00
|
|
|
{
|
|
|
|
|
$this->assertUserLoggedIn();
|
|
|
|
|
$this->willExecuteWriteAction();
|
|
|
|
|
$this->assertNoCSRF();
|
2025-01-31 18:20:13 +03:00
|
|
|
|
2021-01-17 02:19:54 +03:00
|
|
|
$note = $this->notes->get($id);
|
2025-01-31 18:20:13 +03:00
|
|
|
if (!$note) {
|
|
|
|
|
$this->notFound();
|
|
|
|
|
}
|
|
|
|
|
if ($note->getOwner()->getId() . "_" . $note->getId() !== $owner . "_" . $id || $note->isDeleted()) {
|
|
|
|
|
$this->notFound();
|
|
|
|
|
}
|
|
|
|
|
if (is_null($this->user) || !$note->canBeModifiedBy($this->user->identity)) {
|
2023-09-17 16:22:59 +03:00
|
|
|
$this->flashFail("err", tr("error_access_denied_short"), tr("error_access_denied"));
|
2025-01-31 18:20:13 +03:00
|
|
|
}
|
|
|
|
|
|
2021-01-17 02:19:54 +03:00
|
|
|
$name = $note->getName();
|
|
|
|
|
$note->delete();
|
2023-09-17 16:22:59 +03:00
|
|
|
$this->flash("succ", tr("note_is_deleted"), tr("note_x_is_now_deleted", $name));
|
2021-01-17 02:19:54 +03:00
|
|
|
$this->redirect("/notes" . $this->user->id);
|
|
|
|
|
}
|
2020-06-07 19:04:43 +03:00
|
|
|
}
|
