2020-06-07 19:04:43 +03:00
|
|
|
|
<?php declare(strict_types=1);
|
|
|
|
|
|
namespace openvk\Web\Presenters;
|
2023-08-11 16:43:39 +03:00
|
|
|
|
use Chandler\Database\Log;
|
|
|
|
|
|
use Chandler\Database\Logs;
|
2022-09-05 18:57:41 +03:00
|
|
|
|
use openvk\Web\Models\Entities\{Voucher, Gift, GiftCategory, User, BannedLink};
|
2023-08-11 16:43:39 +03:00
|
|
|
|
use openvk\Web\Models\Repositories\{Bans, ChandlerGroups, ChandlerUsers, Photos, Posts, Users, Clubs, Videos, Vouchers, Gifts, BannedLinks};
|
2022-09-05 18:57:41 +03:00
|
|
|
|
use Chandler\Database\DatabaseConnection;
|
2020-06-07 19:04:43 +03:00
|
|
|
|
|
|
|
|
|
|
final class AdminPresenter extends OpenVKPresenter
|
|
|
|
|
|
{
|
|
|
|
|
|
private $users;
|
|
|
|
|
|
private $clubs;
|
2021-10-07 11:47:30 +03:00
|
|
|
|
private $vouchers;
|
2021-10-07 11:48:55 +03:00
|
|
|
|
private $gifts;
|
2022-09-05 18:57:41 +03:00
|
|
|
|
private $bannedLinks;
|
2022-11-02 13:45:49 +03:00
|
|
|
|
private $chandlerGroups;
|
2023-08-11 16:43:39 +03:00
|
|
|
|
private $logs;
|
2022-11-02 13:45:49 +03:00
|
|
|
|
|
|
|
|
|
|
function __construct(Users $users, Clubs $clubs, Vouchers $vouchers, Gifts $gifts, BannedLinks $bannedLinks, ChandlerGroups $chandlerGroups)
|
2020-06-07 19:04:43 +03:00
|
|
|
|
{
|
2021-10-07 11:47:30 +03:00
|
|
|
|
$this->users = $users;
|
|
|
|
|
|
$this->clubs = $clubs;
|
|
|
|
|
|
$this->vouchers = $vouchers;
|
2021-10-07 11:48:55 +03:00
|
|
|
|
$this->gifts = $gifts;
|
2022-09-05 18:57:41 +03:00
|
|
|
|
$this->bannedLinks = $bannedLinks;
|
2022-11-02 13:45:49 +03:00
|
|
|
|
$this->chandlerGroups = $chandlerGroups;
|
2023-08-11 16:43:39 +03:00
|
|
|
|
$this->logs = DatabaseConnection::i()->getContext()->table("ChandlerLogs");
|
2020-06-07 19:04:43 +03:00
|
|
|
|
|
|
|
|
|
|
parent::__construct();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-12 12:15:55 +03:00
|
|
|
|
private function warnIfNoCommerce(): void
|
|
|
|
|
|
{
|
|
|
|
|
|
if(!OPENVK_ROOT_CONF["openvk"]["preferences"]["commerce"])
|
2022-04-24 09:02:23 +03:00
|
|
|
|
$this->flash("warn", tr("admin_commerce_disabled"), tr("admin_commerce_disabled_desc"));
|
2021-10-12 12:15:55 +03:00
|
|
|
|
}
|
|
|
|
|
|
|
2020-06-07 19:04:43 +03:00
|
|
|
|
private function searchResults(object $repo, &$count)
|
|
|
|
|
|
{
|
|
|
|
|
|
$query = $this->queryParam("q") ?? "";
|
|
|
|
|
|
$page = (int) ($this->queryParam("p") ?? 1);
|
|
|
|
|
|
|
2021-09-11 13:35:27 +03:00
|
|
|
|
$count = $repo->find($query)->size();
|
|
|
|
|
|
return $repo->find($query)->page($page, 20);
|
2020-06-07 19:04:43 +03:00
|
|
|
|
}
|
|
|
|
|
|
|
2020-06-15 21:25:55 +03:00
|
|
|
|
function onStartup(): void
|
|
|
|
|
|
{
|
2020-07-17 19:26:59 +03:00
|
|
|
|
parent::onStartup();
|
|
|
|
|
|
|
|
|
|
|
|
$this->assertPermission("admin", "access", -1);
|
2020-06-15 21:25:55 +03:00
|
|
|
|
}
|
|
|
|
|
|
|
2020-06-07 19:04:43 +03:00
|
|
|
|
function renderIndex(): void
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderUsers(): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$this->template->users = $this->searchResults($this->users, $this->template->count);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderUser(int $id): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$user = $this->users->get($id);
|
|
|
|
|
|
if(!$user)
|
|
|
|
|
|
$this->notFound();
|
|
|
|
|
|
|
|
|
|
|
|
$this->template->user = $user;
|
2022-11-02 13:45:49 +03:00
|
|
|
|
$this->template->c_groups_list = (new ChandlerGroups)->getList();
|
|
|
|
|
|
$this->template->c_memberships = $this->chandlerGroups->getUsersMemberships($user->getChandlerGUID());
|
|
|
|
|
|
|
2020-06-07 19:04:43 +03:00
|
|
|
|
if($_SERVER["REQUEST_METHOD"] !== "POST")
|
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
|
|
switch($_POST["act"] ?? "info") {
|
|
|
|
|
|
default:
|
|
|
|
|
|
case "info":
|
2021-09-11 17:39:14 +03:00
|
|
|
|
$user->setFirst_Name($this->postParam("first_name"));
|
|
|
|
|
|
$user->setLast_Name($this->postParam("last_name"));
|
|
|
|
|
|
$user->setPseudo($this->postParam("nickname"));
|
|
|
|
|
|
$user->setStatus($this->postParam("status"));
|
2021-12-31 07:11:29 +03:00
|
|
|
|
if(!$user->setShortCode(empty($this->postParam("shortcode")) ? NULL : $this->postParam("shortcode")))
|
|
|
|
|
|
$this->flash("err", tr("error"), tr("error_shorturl_incorrect"));
|
2022-05-11 15:22:17 +03:00
|
|
|
|
$user->changeEmail($this->postParam("email"));
|
|
|
|
|
|
if($user->onlineStatus() != $this->postParam("online")) $user->setOnline(intval($this->postParam("online")));
|
|
|
|
|
|
$user->setVerified(empty($this->postParam("verify") ? 0 : 1));
|
2022-11-02 13:45:49 +03:00
|
|
|
|
if($this->postParam("add-to-group")) {
|
2022-11-02 15:48:35 +03:00
|
|
|
|
$query = "INSERT INTO `ChandlerACLRelations` (`user`, `group`) VALUES ('" . $user->getChandlerGUID() . "', '" . $this->postParam("add-to-group") . "')";
|
2022-11-02 13:45:49 +03:00
|
|
|
|
DatabaseConnection::i()->getConnection()->query($query);
|
|
|
|
|
|
}
|
2023-07-12 02:35:22 +03:00
|
|
|
|
if($this->postParam("password")) {
|
|
|
|
|
|
$user->getChandlerUser()->updatePassword($this->postParam("password"));
|
|
|
|
|
|
}
|
2022-05-11 15:22:17 +03:00
|
|
|
|
|
2021-09-11 17:39:14 +03:00
|
|
|
|
$user->save();
|
2022-11-02 13:45:49 +03:00
|
|
|
|
|
2020-06-07 19:04:43 +03:00
|
|
|
|
break;
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderClubs(): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$this->template->clubs = $this->searchResults($this->clubs, $this->template->count);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderClub(int $id): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$club = $this->clubs->get($id);
|
|
|
|
|
|
if(!$club)
|
|
|
|
|
|
$this->notFound();
|
|
|
|
|
|
|
2021-09-13 16:47:10 +03:00
|
|
|
|
$this->template->mode = in_array($this->queryParam("act"), ["main", "ban", "followers"]) ? $this->queryParam("act") : "main";
|
|
|
|
|
|
|
2020-06-07 19:04:43 +03:00
|
|
|
|
$this->template->club = $club;
|
2021-09-11 22:36:17 +03:00
|
|
|
|
|
2021-09-13 16:47:10 +03:00
|
|
|
|
$this->template->followers = $this->template->club->getFollowers((int) ($this->queryParam("p") ?? 1));
|
|
|
|
|
|
|
2021-09-11 22:36:17 +03:00
|
|
|
|
if($_SERVER["REQUEST_METHOD"] !== "POST")
|
|
|
|
|
|
return;
|
2020-06-07 19:04:43 +03:00
|
|
|
|
|
2021-09-13 16:47:10 +03:00
|
|
|
|
switch($this->queryParam("act")) {
|
2021-09-11 22:36:17 +03:00
|
|
|
|
default:
|
2021-09-13 16:47:10 +03:00
|
|
|
|
case "main":
|
2021-09-11 22:36:17 +03:00
|
|
|
|
$club->setOwner($this->postParam("id_owner"));
|
|
|
|
|
|
$club->setName($this->postParam("name"));
|
|
|
|
|
|
$club->setAbout($this->postParam("about"));
|
|
|
|
|
|
$club->setShortCode($this->postParam("shortcode"));
|
|
|
|
|
|
$club->setVerified(empty($this->postParam("verify") ? 0 : 1));
|
2022-01-15 20:41:39 +03:00
|
|
|
|
$club->setHide_From_Global_Feed(empty($this->postParam("hide_from_global_feed") ? 0 : 1));
|
2021-09-13 16:47:10 +03:00
|
|
|
|
$club->save();
|
|
|
|
|
|
break;
|
|
|
|
|
|
case "ban":
|
2023-08-09 16:05:01 +03:00
|
|
|
|
$reason = mb_strlen(trim($this->postParam("ban_reason"))) > 0 ? $this->postParam("ban_reason") : NULL;
|
|
|
|
|
|
$club->setBlock_reason($reason);
|
2021-09-11 22:36:17 +03:00
|
|
|
|
$club->save();
|
|
|
|
|
|
break;
|
2020-06-07 19:04:43 +03:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-07 11:47:30 +03:00
|
|
|
|
function renderVouchers(): void
|
|
|
|
|
|
{
|
2021-10-12 12:15:55 +03:00
|
|
|
|
$this->warnIfNoCommerce();
|
|
|
|
|
|
|
2021-10-07 11:47:30 +03:00
|
|
|
|
$this->template->count = $this->vouchers->size();
|
|
|
|
|
|
$this->template->vouchers = iterator_to_array($this->vouchers->enumerate((int) ($this->queryParam("p") ?? 1)));
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderVoucher(int $id): void
|
|
|
|
|
|
{
|
2021-10-12 12:15:55 +03:00
|
|
|
|
$this->warnIfNoCommerce();
|
|
|
|
|
|
|
2021-10-07 11:47:30 +03:00
|
|
|
|
$voucher = NULL;
|
|
|
|
|
|
$this->template->form = (object) [];
|
|
|
|
|
|
if($id === 0) {
|
|
|
|
|
|
$this->template->form->id = 0;
|
|
|
|
|
|
$this->template->form->token = NULL;
|
|
|
|
|
|
$this->template->form->coins = 0;
|
|
|
|
|
|
$this->template->form->rating = 0;
|
|
|
|
|
|
$this->template->form->usages = -1;
|
|
|
|
|
|
$this->template->form->users = [];
|
|
|
|
|
|
} else {
|
|
|
|
|
|
$voucher = $this->vouchers->get($id);
|
|
|
|
|
|
if(!$voucher)
|
|
|
|
|
|
$this->notFound();
|
|
|
|
|
|
|
|
|
|
|
|
$this->template->form->id = $voucher->getId();
|
|
|
|
|
|
$this->template->form->token = $voucher->getToken();
|
|
|
|
|
|
$this->template->form->coins = $voucher->getCoins();
|
|
|
|
|
|
$this->template->form->rating = $voucher->getRating();
|
|
|
|
|
|
$this->template->form->usages = $voucher->getRemainingUsages();
|
|
|
|
|
|
$this->template->form->users = iterator_to_array($voucher->getUsers());
|
|
|
|
|
|
|
|
|
|
|
|
if($this->template->form->usages === INF)
|
|
|
|
|
|
$this->template->form->usages = -1;
|
|
|
|
|
|
else
|
|
|
|
|
|
$this->template->form->usages = (int) $this->template->form->usages;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if($_SERVER["REQUEST_METHOD"] !== "POST")
|
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
|
|
$voucher ??= new Voucher;
|
|
|
|
|
|
$voucher->setCoins((int) $this->postParam("coins"));
|
|
|
|
|
|
$voucher->setRating((int) $this->postParam("rating"));
|
|
|
|
|
|
$voucher->setRemainingUsages($this->postParam("usages") === '-1' ? INF : ((int) $this->postParam("usages")));
|
|
|
|
|
|
if(!empty($tok = $this->postParam("token")) && strlen($tok) === 24)
|
|
|
|
|
|
$voucher->setToken($tok);
|
|
|
|
|
|
|
|
|
|
|
|
$voucher->save();
|
|
|
|
|
|
|
2022-08-09 08:52:36 +03:00
|
|
|
|
$this->redirect("/admin/vouchers/id" . $voucher->getId());
|
2021-10-07 11:47:30 +03:00
|
|
|
|
}
|
|
|
|
|
|
|
2021-10-07 11:48:55 +03:00
|
|
|
|
function renderGiftCategories(): void
|
|
|
|
|
|
{
|
2021-10-12 12:15:55 +03:00
|
|
|
|
$this->warnIfNoCommerce();
|
|
|
|
|
|
|
2021-10-07 11:48:55 +03:00
|
|
|
|
$this->template->act = $this->queryParam("act") ?? "list";
|
|
|
|
|
|
$this->template->categories = iterator_to_array($this->gifts->getCategories((int) ($this->queryParam("p") ?? 1), NULL, $this->template->count));
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderGiftCategory(string $slug, int $id): void
|
|
|
|
|
|
{
|
2021-10-12 12:15:55 +03:00
|
|
|
|
$this->warnIfNoCommerce();
|
|
|
|
|
|
|
2021-10-07 11:48:55 +03:00
|
|
|
|
$cat;
|
|
|
|
|
|
$gen = false;
|
|
|
|
|
|
if($id !== 0) {
|
|
|
|
|
|
$cat = $this->gifts->getCat($id);
|
|
|
|
|
|
if(!$cat)
|
|
|
|
|
|
$this->notFound();
|
|
|
|
|
|
else if($cat->getSlug() !== $slug)
|
2022-08-09 08:52:36 +03:00
|
|
|
|
$this->redirect("/admin/gifts/" . $cat->getSlug() . "." . $id . ".meta");
|
2021-10-07 11:48:55 +03:00
|
|
|
|
} else {
|
|
|
|
|
|
$gen = true;
|
|
|
|
|
|
$cat = new GiftCategory;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
$this->template->form = (object) [];
|
|
|
|
|
|
$this->template->form->id = $id;
|
|
|
|
|
|
$this->template->form->languages = [];
|
|
|
|
|
|
foreach(getLanguages() as $language) {
|
|
|
|
|
|
$language = (object) $language;
|
|
|
|
|
|
$this->template->form->languages[$language->code] = (object) [];
|
|
|
|
|
|
|
|
|
|
|
|
$this->template->form->languages[$language->code]->name = $gen ? "" : ($cat->getName($language->code, true) ?? "");
|
|
|
|
|
|
$this->template->form->languages[$language->code]->description = $gen ? "" : ($cat->getDescription($language->code, true) ?? "");
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
$this->template->form->languages["master"] = (object) [
|
|
|
|
|
|
"name" => $gen ? "Unknown Name" : $cat->getName(),
|
|
|
|
|
|
"description" => $gen ? "" : $cat->getDescription(),
|
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
|
|
if($_SERVER["REQUEST_METHOD"] !== "POST")
|
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
|
|
if($gen) {
|
|
|
|
|
|
$cat->setAutoQuery(NULL);
|
|
|
|
|
|
$cat->save();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
$cat->setName("_", $this->postParam("name_master"));
|
|
|
|
|
|
$cat->setDescription("_", $this->postParam("description_master"));
|
|
|
|
|
|
foreach(getLanguages() as $language) {
|
|
|
|
|
|
$code = $language["code"];
|
|
|
|
|
|
if(!empty($this->postParam("name_$code") ?? NULL))
|
|
|
|
|
|
$cat->setName($code, $this->postParam("name_$code"));
|
|
|
|
|
|
|
|
|
|
|
|
if(!empty($this->postParam("description_$code") ?? NULL))
|
|
|
|
|
|
$cat->setDescription($code, $this->postParam("description_$code"));
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-08-09 08:52:36 +03:00
|
|
|
|
$this->redirect("/admin/gifts/" . $cat->getSlug() . "." . $cat->getId() . ".meta");
|
2021-10-07 11:48:55 +03:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderGifts(string $catSlug, int $catId): void
|
|
|
|
|
|
{
|
2021-10-12 12:15:55 +03:00
|
|
|
|
$this->warnIfNoCommerce();
|
|
|
|
|
|
|
2021-10-07 11:48:55 +03:00
|
|
|
|
$cat = $this->gifts->getCat($catId);
|
|
|
|
|
|
if(!$cat)
|
|
|
|
|
|
$this->notFound();
|
|
|
|
|
|
else if($cat->getSlug() !== $catSlug)
|
2022-08-09 08:52:36 +03:00
|
|
|
|
$this->redirect("/admin/gifts/" . $cat->getSlug() . "." . $catId . "/");
|
2021-10-07 11:48:55 +03:00
|
|
|
|
|
|
|
|
|
|
$this->template->cat = $cat;
|
|
|
|
|
|
$this->template->gifts = iterator_to_array($cat->getGifts((int) ($this->queryParam("p") ?? 1), NULL, $this->template->count));
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderGift(int $id): void
|
|
|
|
|
|
{
|
2021-10-12 12:15:55 +03:00
|
|
|
|
$this->warnIfNoCommerce();
|
|
|
|
|
|
|
2021-10-07 11:48:55 +03:00
|
|
|
|
$gift = $this->gifts->get($id);
|
|
|
|
|
|
$act = $this->queryParam("act") ?? "edit";
|
|
|
|
|
|
switch($act) {
|
|
|
|
|
|
case "delete":
|
|
|
|
|
|
$this->assertNoCSRF();
|
|
|
|
|
|
if(!$gift)
|
|
|
|
|
|
$this->notFound();
|
|
|
|
|
|
|
|
|
|
|
|
$gift->delete();
|
|
|
|
|
|
$this->flashFail("succ", "Gift moved successfully", "This gift will now be in <b>Recycle Bin</b>.");
|
|
|
|
|
|
break;
|
|
|
|
|
|
case "copy":
|
|
|
|
|
|
case "move":
|
|
|
|
|
|
$this->assertNoCSRF();
|
|
|
|
|
|
if(!$gift)
|
|
|
|
|
|
$this->notFound();
|
|
|
|
|
|
|
|
|
|
|
|
$catFrom = $this->gifts->getCat((int) ($this->queryParam("from") ?? 0));
|
|
|
|
|
|
$catTo = $this->gifts->getCat((int) ($this->queryParam("to") ?? 0));
|
|
|
|
|
|
if(!$catFrom || !$catTo || !$catFrom->hasGift($gift))
|
|
|
|
|
|
$this->badRequest();
|
|
|
|
|
|
|
|
|
|
|
|
if($act === "move")
|
|
|
|
|
|
$catFrom->removeGift($gift);
|
|
|
|
|
|
|
|
|
|
|
|
$catTo->addGift($gift);
|
|
|
|
|
|
|
|
|
|
|
|
$name = $catTo->getName();
|
|
|
|
|
|
$this->flash("succ", "Gift moved successfully", "This gift will now be in <b>$name</b>.");
|
2022-08-09 08:52:36 +03:00
|
|
|
|
$this->redirect("/admin/gifts/" . $catTo->getSlug() . "." . $catTo->getId() . "/");
|
2021-10-07 11:48:55 +03:00
|
|
|
|
break;
|
|
|
|
|
|
default:
|
|
|
|
|
|
case "edit":
|
|
|
|
|
|
$gen = false;
|
|
|
|
|
|
if(!$gift) {
|
|
|
|
|
|
$gen = true;
|
|
|
|
|
|
$gift = new Gift;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
$this->template->form = (object) [];
|
|
|
|
|
|
$this->template->form->id = $id;
|
|
|
|
|
|
$this->template->form->name = $gen ? "New Gift (1)" : $gift->getName();
|
|
|
|
|
|
$this->template->form->price = $gen ? 0 : $gift->getPrice();
|
|
|
|
|
|
$this->template->form->usages = $gen ? 0 : $gift->getUsages();
|
|
|
|
|
|
$this->template->form->limit = $gen ? -1 : ($gift->getLimit() === INF ? -1 : $gift->getLimit());
|
|
|
|
|
|
$this->template->form->pic = $gen ? NULL : $gift->getImage(Gift::IMAGE_URL);
|
|
|
|
|
|
|
|
|
|
|
|
if($_SERVER["REQUEST_METHOD"] !== "POST")
|
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
|
|
$limit = $this->postParam("limit") ?? $this->template->form->limit;
|
|
|
|
|
|
$limit = $limit == "-1" ? INF : (float) $limit;
|
|
|
|
|
|
$gift->setLimit($limit, is_null($this->postParam("reset_limit")) ? Gift::PERIOD_SET_IF_NONE : Gift::PERIOD_SET);
|
|
|
|
|
|
|
|
|
|
|
|
$gift->setName($this->postParam("name"));
|
|
|
|
|
|
$gift->setPrice((int) $this->postParam("price"));
|
|
|
|
|
|
$gift->setUsages((int) $this->postParam("usages"));
|
|
|
|
|
|
if(isset($_FILES["pic"]) && $_FILES["pic"]["error"] === UPLOAD_ERR_OK) {
|
|
|
|
|
|
if(!$gift->setImage($_FILES["pic"]["tmp_name"]))
|
|
|
|
|
|
$this->flashFail("err", "Не удалось сохранить подарок", "Изображение подарка кривое.");
|
|
|
|
|
|
} else if($gen) {
|
|
|
|
|
|
# If there's no gift pic but it's newly created
|
|
|
|
|
|
$this->flashFail("err", "Не удалось сохранить подарок", "Пожалуйста, загрузите изображение подарка.");
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
$gift->save();
|
|
|
|
|
|
|
|
|
|
|
|
if($gen && !is_null($cat = $this->postParam("_cat"))) {
|
|
|
|
|
|
$cat = $this->gifts->getCat((int) $cat);
|
|
|
|
|
|
if(!is_null($cat))
|
|
|
|
|
|
$cat->addGift($gift);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-08-09 08:52:36 +03:00
|
|
|
|
$this->redirect("/admin/gifts/id" . $gift->getId());
|
2021-10-07 11:48:55 +03:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2020-06-07 19:04:43 +03:00
|
|
|
|
function renderFiles(): void
|
|
|
|
|
|
{
|
|
|
|
|
|
|
|
|
|
|
|
}
|
2020-07-17 19:26:59 +03:00
|
|
|
|
|
|
|
|
|
|
function renderQuickBan(int $id): void
|
|
|
|
|
|
{
|
2020-07-18 11:14:30 +03:00
|
|
|
|
$this->assertNoCSRF();
|
2022-09-05 11:16:22 +03:00
|
|
|
|
|
2023-08-11 16:50:19 +03:00
|
|
|
|
if (str_contains($this->queryParam("reason"), "*"))
|
|
|
|
|
|
exit(json_encode([ "error" => "Incorrect reason" ]));
|
|
|
|
|
|
|
2022-09-05 11:16:22 +03:00
|
|
|
|
$unban_time = strtotime($this->queryParam("date")) ?: NULL;
|
|
|
|
|
|
|
2020-07-17 19:26:59 +03:00
|
|
|
|
$user = $this->users->get($id);
|
|
|
|
|
|
if(!$user)
|
|
|
|
|
|
exit(json_encode([ "error" => "User does not exist" ]));
|
2023-08-11 16:50:19 +03:00
|
|
|
|
|
|
|
|
|
|
if ($this->queryParam("incr"))
|
|
|
|
|
|
$unban_time = time() + $user->getNewBanTime();
|
|
|
|
|
|
|
|
|
|
|
|
$user->ban($this->queryParam("reason"), true, $unban_time, $this->user->identity->getId());
|
2022-03-27 09:41:48 +03:00
|
|
|
|
exit(json_encode([ "success" => true, "reason" => $this->queryParam("reason") ]));
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderQuickUnban(int $id): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$this->assertNoCSRF();
|
|
|
|
|
|
|
|
|
|
|
|
$user = $this->users->get($id);
|
|
|
|
|
|
if(!$user)
|
|
|
|
|
|
exit(json_encode([ "error" => "User does not exist" ]));
|
2023-08-11 16:50:19 +03:00
|
|
|
|
|
|
|
|
|
|
$ban = (new Bans)->get((int)$user->getRawBanReason());
|
|
|
|
|
|
if (!$ban || $ban->isOver())
|
|
|
|
|
|
exit(json_encode([ "error" => "User is not banned" ]));
|
|
|
|
|
|
|
|
|
|
|
|
$ban->setRemoved_Manually(true);
|
|
|
|
|
|
$ban->setRemoved_By($this->user->identity->getId());
|
|
|
|
|
|
$ban->save();
|
|
|
|
|
|
|
2022-09-05 11:16:22 +03:00
|
|
|
|
$user->setBlock_Reason(NULL);
|
2023-08-11 16:50:19 +03:00
|
|
|
|
// $user->setUnblock_time(NULL);
|
2022-03-27 09:41:48 +03:00
|
|
|
|
$user->save();
|
|
|
|
|
|
exit(json_encode([ "success" => true ]));
|
2020-07-17 19:26:59 +03:00
|
|
|
|
}
|
2020-07-17 19:39:34 +03:00
|
|
|
|
|
|
|
|
|
|
function renderQuickWarn(int $id): void
|
|
|
|
|
|
{
|
2020-07-18 11:14:30 +03:00
|
|
|
|
$this->assertNoCSRF();
|
|
|
|
|
|
|
2020-07-17 19:39:34 +03:00
|
|
|
|
$user = $this->users->get($id);
|
|
|
|
|
|
if(!$user)
|
|
|
|
|
|
exit(json_encode([ "error" => "User does not exist" ]));
|
|
|
|
|
|
|
|
|
|
|
|
$user->adminNotify("⚠️ " . $this->queryParam("message"));
|
|
|
|
|
|
exit(json_encode([ "message" => $this->queryParam("message") ]));
|
|
|
|
|
|
}
|
2022-09-05 18:57:41 +03:00
|
|
|
|
|
|
|
|
|
|
function renderBannedLinks(): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$this->template->links = $this->bannedLinks->getList((int) $this->queryParam("p") ?: 1);
|
|
|
|
|
|
$this->template->users = new Users;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderBannedLink(int $id): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$this->template->form = (object) [];
|
|
|
|
|
|
|
|
|
|
|
|
if($id === 0) {
|
|
|
|
|
|
$this->template->form->id = 0;
|
|
|
|
|
|
$this->template->form->link = NULL;
|
|
|
|
|
|
$this->template->form->reason = NULL;
|
|
|
|
|
|
} else {
|
|
|
|
|
|
$link = (new BannedLinks)->get($id);
|
|
|
|
|
|
if(!$link)
|
|
|
|
|
|
$this->notFound();
|
|
|
|
|
|
|
|
|
|
|
|
$this->template->form->id = $link->getId();
|
|
|
|
|
|
$this->template->form->link = $link->getDomain();
|
|
|
|
|
|
$this->template->form->reason = $link->getReason();
|
|
|
|
|
|
$this->template->form->regexp = $link->getRawRegexp();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if($_SERVER["REQUEST_METHOD"] !== "POST")
|
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
|
|
$link = (new BannedLinks)->get($id);
|
|
|
|
|
|
|
|
|
|
|
|
$new_domain = parse_url($this->postParam("link"))["host"];
|
|
|
|
|
|
$new_reason = $this->postParam("reason") ?: NULL;
|
|
|
|
|
|
|
|
|
|
|
|
$lid = $id;
|
|
|
|
|
|
|
|
|
|
|
|
if ($link) {
|
|
|
|
|
|
$link->setDomain($new_domain ?? $this->postParam("link"));
|
|
|
|
|
|
$link->setReason($new_reason);
|
|
|
|
|
|
$link->setRegexp_rule($this->postParam("regexp"));
|
|
|
|
|
|
$link->save();
|
|
|
|
|
|
} else {
|
|
|
|
|
|
if (!$new_domain)
|
|
|
|
|
|
$this->flashFail("err", tr("error"), tr("admin_banned_link_not_specified"));
|
|
|
|
|
|
|
|
|
|
|
|
$link = new BannedLink;
|
|
|
|
|
|
$link->setDomain($new_domain);
|
|
|
|
|
|
$link->setReason($new_reason);
|
|
|
|
|
|
$link->setRegexp_rule($this->postParam("regexp"));
|
|
|
|
|
|
$link->setInitiator($this->user->identity->getId());
|
|
|
|
|
|
$link->save();
|
|
|
|
|
|
|
|
|
|
|
|
$lid = $link->getId();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
$this->redirect("/admin/bannedLink/id" . $lid);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderUnbanLink(int $id): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$link = (new BannedLinks)->get($id);
|
|
|
|
|
|
|
|
|
|
|
|
if (!$link)
|
|
|
|
|
|
$this->flashFail("err", tr("error"), tr("admin_banned_link_not_found"));
|
|
|
|
|
|
|
|
|
|
|
|
$link->delete(false);
|
|
|
|
|
|
|
|
|
|
|
|
$this->redirect("/admin/bannedLinks");
|
|
|
|
|
|
}
|
2022-11-02 13:45:49 +03:00
|
|
|
|
|
2023-08-11 16:50:19 +03:00
|
|
|
|
function renderBansHistory(int $user_id) :void
|
|
|
|
|
|
{
|
|
|
|
|
|
$user = (new Users)->get($user_id);
|
|
|
|
|
|
if (!$user) $this->notFound();
|
|
|
|
|
|
|
|
|
|
|
|
$this->template->bans = (new Bans)->getByUser($user_id);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-11-02 13:45:49 +03:00
|
|
|
|
function renderChandlerGroups(): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$this->template->groups = (new ChandlerGroups)->getList();
|
|
|
|
|
|
|
|
|
|
|
|
if($_SERVER["REQUEST_METHOD"] !== "POST")
|
|
|
|
|
|
return;
|
|
|
|
|
|
|
2022-11-02 15:48:35 +03:00
|
|
|
|
$req = "INSERT INTO `ChandlerGroups` (`name`) VALUES ('" . $this->postParam("name") . "')";
|
2022-11-02 13:45:49 +03:00
|
|
|
|
DatabaseConnection::i()->getConnection()->query($req);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderChandlerGroup(string $UUID): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$DB = DatabaseConnection::i()->getConnection();
|
|
|
|
|
|
|
2022-11-02 15:48:35 +03:00
|
|
|
|
if(is_null($DB->query("SELECT * FROM `ChandlerGroups` WHERE `id` = '$UUID'")->fetch()))
|
2022-11-02 13:45:49 +03:00
|
|
|
|
$this->flashFail("err", tr("error"), tr("c_group_not_found"));
|
|
|
|
|
|
|
|
|
|
|
|
$this->template->group = (new ChandlerGroups)->get($UUID);
|
|
|
|
|
|
$this->template->mode = in_array(
|
|
|
|
|
|
$this->queryParam("act"),
|
|
|
|
|
|
[
|
|
|
|
|
|
"main",
|
|
|
|
|
|
"members",
|
|
|
|
|
|
"permissions",
|
|
|
|
|
|
"removeMember",
|
|
|
|
|
|
"removePermission",
|
|
|
|
|
|
"delete"
|
|
|
|
|
|
]) ? $this->queryParam("act") : "main";
|
|
|
|
|
|
$this->template->members = (new ChandlerGroups)->getMembersById($UUID);
|
|
|
|
|
|
$this->template->perms = (new ChandlerGroups)->getPermissionsById($UUID);
|
|
|
|
|
|
|
|
|
|
|
|
if($this->template->mode == "removeMember") {
|
|
|
|
|
|
$where = "`user` = '" . $this->queryParam("uid") . "' AND `group` = '$UUID'";
|
|
|
|
|
|
|
2022-11-02 15:48:35 +03:00
|
|
|
|
if(is_null($DB->query("SELECT * FROM `ChandlerACLRelations` WHERE " . $where)->fetch()))
|
2022-11-02 13:45:49 +03:00
|
|
|
|
$this->flashFail("err", tr("error"), tr("c_user_is_not_in_group"));
|
|
|
|
|
|
|
2022-11-02 15:48:35 +03:00
|
|
|
|
$DB->query("DELETE FROM `ChandlerACLRelations` WHERE " . $where);
|
2022-11-02 13:45:49 +03:00
|
|
|
|
$this->flashFail("succ", tr("changes_saved"), tr("c_user_removed_from_group"));
|
|
|
|
|
|
} elseif($this->template->mode == "removePermission") {
|
|
|
|
|
|
$where = "`model` = '" . trim(addslashes($this->queryParam("model"))) . "' AND `permission` = '". $this->queryParam("perm") ."' AND `group` = '$UUID'";
|
|
|
|
|
|
|
2022-11-02 15:48:35 +03:00
|
|
|
|
if(is_null($DB->query("SELECT * FROM `ChandlerACLGroupsPermissions WHERE $where`")))
|
2022-11-02 13:45:49 +03:00
|
|
|
|
$this->flashFail("err", tr("error"), tr("c_permission_not_found"));
|
|
|
|
|
|
|
2022-11-02 15:48:35 +03:00
|
|
|
|
$DB->query("DELETE FROM `ChandlerACLGroupsPermissions` WHERE $where");
|
2022-11-02 13:45:49 +03:00
|
|
|
|
$this->flashFail("succ", tr("changes_saved"), tr("c_permission_removed_from_group"));
|
|
|
|
|
|
} elseif($this->template->mode == "delete") {
|
2022-11-02 15:48:35 +03:00
|
|
|
|
$DB->query("DELETE FROM `ChandlerGroups` WHERE `id` = '$UUID'");
|
|
|
|
|
|
$DB->query("DELETE FROM `ChandlerACLGroupsPermissions` WHERE `group` = '$UUID'");
|
|
|
|
|
|
$DB->query("DELETE FROM `ChandlerACLRelations` WHERE `group` = '$UUID'");
|
2022-11-02 13:45:49 +03:00
|
|
|
|
|
|
|
|
|
|
$this->flashFail("succ", tr("changes_saved"), tr("c_group_removed"));
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if ($_SERVER["REQUEST_METHOD"] !== "POST") return;
|
|
|
|
|
|
|
|
|
|
|
|
$req = "";
|
|
|
|
|
|
|
|
|
|
|
|
if($this->template->mode == "main")
|
|
|
|
|
|
if($this->postParam("delete"))
|
2022-11-02 15:48:35 +03:00
|
|
|
|
$req = "DELETE FROM `ChandlerGroups` WHERE `id`='$UUID'";
|
2022-11-02 13:45:49 +03:00
|
|
|
|
else
|
2022-11-02 15:48:35 +03:00
|
|
|
|
$req = "UPDATE `ChandlerGroups` SET `name`='". $this->postParam('name') ."' , `color`='". $this->postParam("color") ."' WHERE `id`='$UUID'";
|
2022-11-02 13:45:49 +03:00
|
|
|
|
|
|
|
|
|
|
if($this->template->mode == "members")
|
|
|
|
|
|
if($this->postParam("uid"))
|
2022-11-02 15:48:35 +03:00
|
|
|
|
if(!is_null($DB->query("SELECT * FROM `ChandlerACLRelations` WHERE `user` = '" . $this->postParam("uid") . "'")))
|
2022-11-02 13:45:49 +03:00
|
|
|
|
$this->flashFail("err", tr("error"), tr("c_user_is_already_in_group"));
|
|
|
|
|
|
|
2022-11-02 15:48:35 +03:00
|
|
|
|
$req = "INSERT INTO `ChandlerACLRelations` (`user`, `group`, `priority`) VALUES ('". $this->postParam("uid") ."', '$UUID', 32)";
|
2022-11-02 13:45:49 +03:00
|
|
|
|
|
|
|
|
|
|
if($this->template->mode == "permissions")
|
2022-11-02 15:48:35 +03:00
|
|
|
|
$req = "INSERT INTO `ChandlerACLGroupsPermissions` (`group`, `model`, `permission`, `context`) VALUES ('$UUID', '". trim(addslashes($this->postParam("model"))) ."', '". $this->postParam("permission") ."', 0)";
|
2022-11-02 13:45:49 +03:00
|
|
|
|
|
|
|
|
|
|
$DB->query($req);
|
|
|
|
|
|
$this->flashFail("succ", tr("changes_saved"));
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function renderChandlerUser(string $UUID): void
|
|
|
|
|
|
{
|
|
|
|
|
|
if(!$UUID) $this->notFound();
|
|
|
|
|
|
|
|
|
|
|
|
$c_user = (new ChandlerUsers())->getById($UUID);
|
|
|
|
|
|
$user = $this->users->getByChandlerUser($c_user);
|
|
|
|
|
|
if(!$user) $this->notFound();
|
|
|
|
|
|
|
|
|
|
|
|
$this->redirect("/admin/users/id" . $user->getId());
|
|
|
|
|
|
}
|
2023-08-11 16:43:39 +03:00
|
|
|
|
|
|
|
|
|
|
function renderLogs(): void
|
|
|
|
|
|
{
|
|
|
|
|
|
$filter = [];
|
|
|
|
|
|
|
|
|
|
|
|
if ($this->queryParam("id")) {
|
|
|
|
|
|
$id = (int) $this->queryParam("id");
|
|
|
|
|
|
$filter["id"] = $id;
|
|
|
|
|
|
$this->template->id = $id;
|
|
|
|
|
|
}
|
|
|
|
|
|
if ($this->queryParam("type") !== NULL && $this->queryParam("type") !== "any") {
|
|
|
|
|
|
$type = in_array($this->queryParam("type"), [0, 1, 2, 3]) ? (int) $this->queryParam("type") : 0;
|
|
|
|
|
|
$filter["type"] = $type;
|
|
|
|
|
|
$this->template->type = $type;
|
|
|
|
|
|
}
|
|
|
|
|
|
if ($this->queryParam("uid")) {
|
|
|
|
|
|
$user = $this->queryParam("uid");
|
|
|
|
|
|
$filter["user"] = $user;
|
|
|
|
|
|
$this->template->user = $user;
|
|
|
|
|
|
}
|
|
|
|
|
|
if ($this->queryParam("obj_id")) {
|
|
|
|
|
|
$obj_id = (int) $this->queryParam("obj_id");
|
|
|
|
|
|
$filter["object_id"] = $obj_id;
|
|
|
|
|
|
$this->template->obj_id = $obj_id;
|
|
|
|
|
|
}
|
|
|
|
|
|
if ($this->queryParam("obj_type") !== NULL && $this->queryParam("obj_type") !== "any") {
|
|
|
|
|
|
$obj_type = "openvk\\Web\\Models\\Entities\\" . $this->queryParam("obj_type");
|
|
|
|
|
|
$filter["object_model"] = $obj_type;
|
|
|
|
|
|
$this->template->obj_type = $obj_type;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
$this->template->logs = (new Logs)->search($filter);
|
|
|
|
|
|
$this->template->object_types = (new Logs)->getTypes();
|
|
|
|
|
|
}
|
2020-06-07 19:04:43 +03:00
|
|
|
|
}
|
