mirror of
https://github.com/openvk/openvk
synced 2024-11-14 02:59:12 +03:00
324 lines
15 KiB
PHP
324 lines
15 KiB
PHP
<?php declare(strict_types=1);
|
||
namespace openvk\Web\Presenters;
|
||
use openvk\Web\Util\Sms;
|
||
use openvk\Web\Themes\Themepacks;
|
||
use openvk\Web\Models\Entities\Photo;
|
||
use openvk\Web\Models\Repositories\Users;
|
||
use openvk\Web\Models\Repositories\Albums;
|
||
use openvk\Web\Models\Repositories\Videos;
|
||
use openvk\Web\Models\Repositories\Notes;
|
||
use openvk\Web\Models\Repositories\Vouchers;
|
||
|
||
final class UserPresenter extends OpenVKPresenter
|
||
{
|
||
private $users;
|
||
|
||
function __construct(Users $users)
|
||
{
|
||
$this->users = $users;
|
||
|
||
parent::__construct();
|
||
}
|
||
|
||
function renderView(int $id): void
|
||
{
|
||
$user = $this->users->get($id);
|
||
if(!$user || $user->isDeleted())
|
||
$this->notFound();
|
||
else {
|
||
if($user->getShortCode())
|
||
if(parse_url($_SERVER["REQUEST_URI"], PHP_URL_PATH) !== "/" . $user->getShortCode())
|
||
$this->redirect("/" . $user->getShortCode(), static::REDIRECT_TEMPORARY_PRESISTENT);
|
||
|
||
$this->template->albums = (new Albums)->getUserAlbums($user);
|
||
$this->template->albumsCount = (new Albums)->getUserAlbumsCount($user);
|
||
$this->template->videos = (new Videos)->getByUser($user, 1, 2);
|
||
$this->template->videosCount = (new Videos)->getUserVideosCount($user);
|
||
$this->template->notes = (new Notes)->getUserNotes($user, 1, 4);
|
||
$this->template->notesCount = (new Notes)->getUserNotesCount($user);
|
||
|
||
$this->template->user = $user;
|
||
}
|
||
}
|
||
|
||
function renderFriends(int $id): void
|
||
{
|
||
$this->assertUserLoggedIn();
|
||
|
||
$user = $this->users->get($id);
|
||
$page = abs($this->queryParam("p") ?? 1);
|
||
if(!$user)
|
||
$this->notFound();
|
||
else
|
||
$this->template->user = $user;
|
||
|
||
$this->template->mode = in_array($this->queryParam("act"), [
|
||
"incoming", "outcoming", "friends"
|
||
]) ? $this->queryParam("act")
|
||
: "friends";
|
||
$this->template->page = $page;
|
||
|
||
if(!is_null($this->user)) {
|
||
if($this->template->mode !== "friends" && $this->user->id !== $id) {
|
||
$name = $user->getFullName();
|
||
$this->flash("err", "Ошибка доступа", "Вы не можете просматривать полный список подписок $name.");
|
||
|
||
$this->redirect("/id$id", static::REDIRECT_TEMPORARY_PRESISTENT);
|
||
}
|
||
}
|
||
}
|
||
|
||
function renderGroups(int $id): void
|
||
{
|
||
$this->assertUserLoggedIn();
|
||
|
||
$user = $this->users->get($id);
|
||
if(!$user) {
|
||
$this->notFound();
|
||
} else {
|
||
$this->template->user = $user;
|
||
$this->template->page = $this->queryParam("p") ?? 1;
|
||
}
|
||
}
|
||
|
||
function renderEdit(): void
|
||
{
|
||
$this->assertUserLoggedIn();
|
||
|
||
$id = $this->user->id; #TODO: when ACL'll be done, allow admins to edit users via ?GUID=(chandler guid)
|
||
|
||
if(!$id)
|
||
$this->notFound();
|
||
|
||
$user = $this->users->get($id);
|
||
if($_SERVER["REQUEST_METHOD"] === "POST") {
|
||
$this->willExecuteWriteAction();
|
||
|
||
if($_GET['act'] === "main" || $_GET['act'] == NULL) {
|
||
$user->setFirst_Name(empty($this->postParam("first_name")) ? $user->getFirstName() : $this->postParam("first_name"));
|
||
$user->setLast_Name(empty($this->postParam("last_name")) ? "" : $this->postParam("last_name"));
|
||
$user->setPseudo(empty($this->postParam("pseudo")) ? NULL : $this->postParam("pseudo"));
|
||
$user->setStatus(empty($this->postParam("status")) ? NULL : $this->postParam("status"));
|
||
if (strtotime($this->postParam("birthday")) < time())
|
||
$user->setBirthday(strtotime($this->postParam("birthday")));
|
||
|
||
if ($this->postParam("marialstatus") <= 8 && $this->postParam("marialstatus") >= 0)
|
||
$user->setMarital_Status($this->postParam("marialstatus"));
|
||
|
||
if ($this->postParam("politViews") <= 8 && $this->postParam("politViews") >= 0)
|
||
$user->setPolit_Views($this->postParam("politViews"));
|
||
|
||
if ($this->postParam("gender") <= 1 && $this->postParam("gender") >= 0)
|
||
$user->setSex($this->postParam("gender"));
|
||
|
||
if(!empty($this->postParam("phone")) && $this->postParam("phone") !== $user->getPhone()) {
|
||
if(!OPENVK_ROOT_CONF["openvk"]["credentials"]["smsc"]["enable"])
|
||
$this->flashFail("err", tr("error_segmentation"), "котлетки");
|
||
|
||
$code = $user->setPhoneWithVerification($this->postParam("phone"));
|
||
|
||
if(!Sms::send($this->postParam("phone"), "OPENVK - Your verification code is: $code"))
|
||
$this->flashFail("err", tr("error_segmentation"), "котлетки: Remote err!");
|
||
}
|
||
} elseif($_GET['act'] === "contacts") {
|
||
$user->setEmail_Contact(empty($this->postParam("email_contact")) ? NULL : $this->postParam("email_contact"));
|
||
$user->setTelegram(empty($this->postParam("telegram")) ? NULL : $this->postParam("telegram"));
|
||
$user->setCity(empty($this->postParam("city")) ? NULL : $this->postParam("city"));
|
||
$user->setAddress(empty($this->postParam("address")) ? NULL : $this->postParam("address"));
|
||
} elseif($_GET['act'] === "interests") {
|
||
$user->setInterests(empty($this->postParam("interests")) ? NULL : ovk_proc_strtr($this->postParam("interests"), 300));
|
||
$user->setFav_Music(empty($this->postParam("fav_music")) ? NULL : ovk_proc_strtr($this->postParam("fav_music"), 300));
|
||
$user->setFav_Films(empty($this->postParam("fav_films")) ? NULL : ovk_proc_strtr($this->postParam("fav_films"), 300));
|
||
$user->setFav_Shows(empty($this->postParam("fav_shows")) ? NULL : ovk_proc_strtr($this->postParam("fav_shows"), 300));
|
||
$user->setFav_Books(empty($this->postParam("fav_books")) ? NULL : ovk_proc_strtr($this->postParam("fav_books"), 300));
|
||
$user->setFav_Quote(empty($this->postParam("fav_quote")) ? NULL : ovk_proc_strtr($this->postParam("fav_quote"), 300));
|
||
$user->setAbout(empty($this->postParam("about")) ? NULL : ovk_proc_strtr($this->postParam("about"), 300));
|
||
}
|
||
|
||
try {
|
||
$user->save();
|
||
} catch(\PDOException $ex) {
|
||
if($ex->getCode() == 23000)
|
||
$this->flashFail("err", tr("error"), tr("error_shorturl"));
|
||
else
|
||
throw $ex;
|
||
}
|
||
|
||
$this->flash("succ", tr("changes_saved"), tr("changes_saved_comment"));
|
||
}
|
||
|
||
$this->template->mode = in_array($this->queryParam("act"), [
|
||
"main", "contacts", "interests", "avatar"
|
||
]) ? $this->queryParam("act")
|
||
: "main";
|
||
|
||
$this->template->user = $user;
|
||
}
|
||
|
||
function renderVerifyPhone(): void
|
||
{
|
||
$this->assertUserLoggedIn();
|
||
$this->willExecuteWriteAction();
|
||
|
||
$user = $this->user->identity;
|
||
if(!$user->hasPendingNumberChange())
|
||
exit;
|
||
else
|
||
$this->template->change = $user->getPendingPhoneVerification();
|
||
|
||
if($_SERVER["REQUEST_METHOD"] === "POST") {
|
||
if(!$user->verifyNumber($this->postParam("code") ?? 0))
|
||
$this->flashFail("err", "Ошибка", "Не удалось подтвердить номер телефона: неверный код.");
|
||
|
||
$this->flash("succ", tr("changes_saved"), tr("changes_saved_comment"));
|
||
}
|
||
}
|
||
|
||
function renderSub(): void
|
||
{
|
||
$this->assertUserLoggedIn();
|
||
$this->willExecuteWriteAction();
|
||
|
||
if($_SERVER["REQUEST_METHOD"] !== "POST") exit("Invalid state");
|
||
|
||
$user = $this->users->get((int) $this->postParam("id"));
|
||
if(!$user) exit("Invalid state");
|
||
|
||
$user->toggleSubscription($this->user->identity);
|
||
|
||
header("HTTP/1.1 302 Found");
|
||
header("Location: /id" . $user->getId());
|
||
exit;
|
||
}
|
||
|
||
function renderSetAvatar(): void
|
||
{
|
||
$this->assertUserLoggedIn();
|
||
$this->willExecuteWriteAction();
|
||
|
||
$photo = new Photo;
|
||
try {
|
||
$photo->setOwner($this->user->id);
|
||
$photo->setDescription("Profile image");
|
||
$photo->setFile($_FILES["blob"]);
|
||
$photo->setCreated(time());
|
||
$photo->save();
|
||
} catch(ISE $ex) {
|
||
$name = $album->getName();
|
||
$this->flashFail("err", tr("error"), tr("error_upload_failed"));
|
||
}
|
||
|
||
(new Albums)->getUserAvatarAlbum($this->user->identity)->addPhoto($photo);
|
||
$this->flashFail("succ", tr("photo_saved"), tr("photo_saved_comment"));
|
||
}
|
||
|
||
function renderSettings(): void
|
||
{
|
||
$this->assertUserLoggedIn();
|
||
|
||
$id = $this->user->id; #TODO: when ACL'll be done, allow admins to edit users via ?GUID=(chandler guid)
|
||
|
||
if(!$id)
|
||
$this->notFound();
|
||
|
||
if(in_array($this->queryParam("act"), ["finance", "finance.top-up"]) && !OPENVK_ROOT_CONF["openvk"]["preferences"]["commerce"])
|
||
$this->flashFail("err", tr("error"), tr("feature_disabled"));
|
||
|
||
$user = $this->users->get($id);
|
||
if($_SERVER["REQUEST_METHOD"] === "POST") {
|
||
$this->willExecuteWriteAction();
|
||
|
||
if($_GET['act'] === "main" || $_GET['act'] == NULL) {
|
||
if($this->postParam("old_pass") && $this->postParam("new_pass") && $this->postParam("repeat_pass")) {
|
||
if($this->postParam("new_pass") === $this->postParam("repeat_pass")) {
|
||
if(!$this->user->identity->getChandlerUser()->updatePassword($this->postParam("new_pass"), $this->postParam("old_pass")))
|
||
$this->flashFail("err", tr("error"), tr("error_old_password"));
|
||
} else {
|
||
$this->flashFail("err", tr("error"), tr("error_new_password"));
|
||
}
|
||
}
|
||
|
||
if(!$user->setShortCode(empty($this->postParam("sc")) ? NULL : $this->postParam("sc")))
|
||
$this->flashFail("err", tr("error"), tr("error_shorturl_incorrect"));
|
||
} else if($_GET['act'] === "privacy") {
|
||
$settings = [
|
||
"page.read",
|
||
"page.info.read",
|
||
"groups.read",
|
||
"photos.read",
|
||
"videos.read",
|
||
"notes.read",
|
||
"friends.read",
|
||
"friends.add",
|
||
"wall.write",
|
||
];
|
||
foreach($settings as $setting) {
|
||
$input = $this->postParam(str_replace(".", "_", $setting));
|
||
$user->setPrivacySetting($setting, min(3, abs($input ?? $user->getPrivacySetting($setting))));
|
||
}
|
||
} else if($_GET['act'] === "finance.top-up") {
|
||
$token = $this->postParam("key0") . $this->postParam("key1") . $this->postParam("key2") . $this->postParam("key3");
|
||
$voucher = (new Vouchers)->getByToken($token);
|
||
if(!$voucher)
|
||
$this->flashFail("err", tr("invalid_voucher"), tr("voucher_bad"));
|
||
|
||
$perm = $voucher->willUse($user);
|
||
if(!$perm)
|
||
$this->flashFail("err", tr("invalid_voucher"), tr("voucher_bad"));
|
||
|
||
$user->setCoins($user->getCoins() + $voucher->getCoins());
|
||
$user->setRating($user->getRating() + $voucher->getRating());
|
||
$user->save();
|
||
|
||
$this->flashFail("succ", tr("voucher_good"), tr("voucher_redeemed"));
|
||
} else if($_GET['act'] === "interface") {
|
||
if (isset(Themepacks::i()[$this->postParam("style")]) || $this->postParam("style") === Themepacks::DEFAULT_THEME_ID)
|
||
$user->setStyle($this->postParam("style"));
|
||
|
||
if ($this->postParam("style_avatar") <= 2 && $this->postParam("style_avatar") >= 0)
|
||
$user->setStyle_Avatar((int)$this->postParam("style_avatar"));
|
||
|
||
if (in_array($this->postParam("rating"), [0, 1]))
|
||
$user->setShow_Rating((int) $this->postParam("rating"));
|
||
|
||
if (in_array($this->postParam("microblog"), [0, 1]))
|
||
$user->setMicroblog((int) $this->postParam("microblog"));
|
||
|
||
if(in_array($this->postParam("nsfw"), [0, 1, 2]))
|
||
$user->setNsfwTolerance((int) $this->postParam("nsfw"));
|
||
} else if($_GET['act'] === "lMenu") {
|
||
$settings = [
|
||
"menu_bildoj" => "photos",
|
||
"menu_filmetoj" => "videos",
|
||
"menu_mesagoj" => "messages",
|
||
"menu_notatoj" => "notes",
|
||
"menu_grupoj" => "groups",
|
||
"menu_novajoj" => "news",
|
||
];
|
||
foreach($settings as $checkbox => $setting)
|
||
$user->setLeftMenuItemStatus($setting, $this->checkbox($checkbox));
|
||
}
|
||
|
||
try {
|
||
$user->save();
|
||
} catch(\PDOException $ex) {
|
||
if($ex->getCode() == 23000)
|
||
$this->flashFail("err", tr("error"), tr("error_shorturl"));
|
||
else
|
||
throw $ex;
|
||
}
|
||
|
||
$this->flash(
|
||
"succ",
|
||
"Изменения сохранены",
|
||
"Новые данные появятся на вашей странице.<br/>Если вы изменили стиль, перезагрузите страницу."
|
||
);
|
||
}
|
||
$this->template->mode = in_array($this->queryParam("act"), [
|
||
"main", "privacy", "finance", "finance.top-up", "interface"
|
||
]) ? $this->queryParam("act")
|
||
: "main";
|
||
$this->template->user = $user;
|
||
$this->template->themes = Themepacks::i()->getThemeList();
|
||
}
|
||
}
|