2016-07-31 19:36:13 +00:00
|
|
|
<?php
|
|
|
|
/**
|
|
|
|
* Holds the controller for posts.
|
|
|
|
*
|
|
|
|
* @package Sakura
|
|
|
|
*/
|
|
|
|
|
|
|
|
namespace Sakura\Controllers\Forum;
|
|
|
|
|
|
|
|
use Sakura\ActiveUser;
|
|
|
|
use Sakura\DB;
|
|
|
|
use Sakura\Forum\Forum;
|
|
|
|
use Sakura\Forum\Post;
|
|
|
|
use Sakura\Forum\Topic;
|
2016-08-02 20:35:12 +00:00
|
|
|
use Sakura\Perms;
|
2016-07-31 19:36:13 +00:00
|
|
|
use Sakura\Perms\Forum as ForumPerms;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Topic controller.
|
|
|
|
*
|
|
|
|
* @package Sakura
|
|
|
|
* @author Julian van de Groep <me@flash.moe>
|
|
|
|
*/
|
|
|
|
class PostController extends Controller
|
|
|
|
{
|
|
|
|
public function find($id = 0)
|
|
|
|
{
|
|
|
|
$post = new Post($id);
|
|
|
|
$topic = new Topic($post->topic);
|
|
|
|
$forum = new Forum($topic->forum);
|
|
|
|
|
|
|
|
// Check if the forum exists
|
|
|
|
if ($post->id === 0
|
|
|
|
|| $topic->id === 0
|
|
|
|
|| !$forum->permission(ForumPerms::VIEW, ActiveUser::$user->id)) {
|
|
|
|
$message = "This post doesn't exist or you don't have access to it!";
|
|
|
|
$redirect = route('forums.index');
|
|
|
|
|
|
|
|
return view('global/information', compact('message', 'redirect'));
|
|
|
|
}
|
|
|
|
|
|
|
|
$topicLink = route('forums.topic', $topic->id);
|
|
|
|
|
|
|
|
// Get all post ids from the database
|
|
|
|
$postIds = DB::table('posts')
|
|
|
|
->where('topic_id', $topic->id)
|
|
|
|
->get(['post_id']);
|
|
|
|
$postIds = array_column($postIds, 'post_id');
|
|
|
|
|
|
|
|
// Find in array
|
|
|
|
$postAt = ceil(array_search($post->id, $postIds) / 10);
|
|
|
|
|
|
|
|
// Only append the page variable if it's more than 1
|
|
|
|
if ($postAt > 1) {
|
|
|
|
$topicLink .= "?page={$postAt}";
|
|
|
|
}
|
|
|
|
|
|
|
|
return header("Location: {$topicLink}#p{$post->id}");
|
|
|
|
}
|
|
|
|
|
|
|
|
public function raw($id = 0)
|
|
|
|
{
|
|
|
|
$post = new Post($id);
|
|
|
|
$topic = new Topic($post->topic);
|
|
|
|
$forum = new Forum($topic->forum);
|
|
|
|
|
|
|
|
// Check if the forum exists
|
|
|
|
if ($post->id === 0
|
|
|
|
|| $topic->id === 0
|
|
|
|
|| !$forum->permission(ForumPerms::VIEW, ActiveUser::$user->id)) {
|
|
|
|
return "";
|
|
|
|
}
|
|
|
|
|
|
|
|
return $post->text;
|
|
|
|
}
|
|
|
|
|
|
|
|
public function edit($id = 0)
|
|
|
|
{
|
|
|
|
$title = $_POST['title'] ?? null;
|
|
|
|
$text = $_POST['text'] ?? null;
|
|
|
|
|
|
|
|
$post = new Post($id);
|
|
|
|
$topic = new Topic($post->topic);
|
|
|
|
$forum = new Forum($topic->forum);
|
|
|
|
|
|
|
|
// Check permissions
|
|
|
|
$noAccess = $post->id === 0
|
|
|
|
|| $topic->id === 0
|
|
|
|
|| !$forum->permission(ForumPerms::VIEW, ActiveUser::$user->id);
|
|
|
|
|
|
|
|
$noEdit = (
|
|
|
|
$post->poster->id === ActiveUser::$user->id
|
|
|
|
? !ActiveUser::$user->permission(ForumPerms::EDIT_OWN, Perms::FORUM)
|
|
|
|
: !$forum->permission(ForumPerms::EDIT_ANY, ActiveUser::$user->id)
|
|
|
|
) || (
|
|
|
|
$topic->status === 1
|
|
|
|
&& !$forum->permission(ForumPerms::LOCK, ActiveUser::$user->id)
|
|
|
|
);
|
|
|
|
|
|
|
|
// Check if the forum exists
|
|
|
|
if ($noAccess || $noEdit) {
|
|
|
|
if ($noDelete) {
|
|
|
|
$message = "You aren't allowed to edit posts in this topic!";
|
|
|
|
$redirect = route('forums.post', $post->id);
|
|
|
|
} else {
|
|
|
|
$message = "This post doesn't exist or you don't have access to it!";
|
|
|
|
$redirect = route('forums.index');
|
|
|
|
}
|
|
|
|
|
|
|
|
return view('global/information', compact('message', 'redirect'));
|
|
|
|
}
|
|
|
|
|
|
|
|
$titleLength = strlen($title);
|
|
|
|
$textLength = strlen($text);
|
|
|
|
$titleMin = config('forum.min_title_length');
|
|
|
|
$titleMax = config('forum.max_title_length');
|
|
|
|
$textMin = config('forum.min_post_length');
|
|
|
|
$textMax = config('forum.max_post_length');
|
|
|
|
|
|
|
|
// Checks
|
|
|
|
$titleTooShort = $title !== null
|
|
|
|
&& $post->id === $topic->firstPost()->id
|
|
|
|
&& $titleLength < $titleMin;
|
|
|
|
$titleTooLong = $title !== null
|
|
|
|
&& $post->id === $topic->firstPost()->id
|
|
|
|
&& $titleLength > $titleMax;
|
|
|
|
$textTooShort = $textLength < $textMin;
|
|
|
|
$textTooLong = $textLength > $textMax;
|
|
|
|
|
|
|
|
// Check requirments
|
|
|
|
if ($titleTooShort
|
|
|
|
|| $titleTooLong
|
|
|
|
|| $textTooShort
|
|
|
|
|| $textTooLong) {
|
|
|
|
$message = "";
|
|
|
|
|
|
|
|
if ($titleTooShort) {
|
|
|
|
$message = "This title is too short!";
|
|
|
|
} elseif ($titleTooLong) {
|
|
|
|
$message = "This title is too long!";
|
|
|
|
} elseif ($textTooShort) {
|
|
|
|
$message = "Please make your post a little bit longer!";
|
|
|
|
} elseif ($textTooLong) {
|
|
|
|
$message = "Your post is too long, you're gonna have to cut a little!";
|
|
|
|
}
|
|
|
|
|
|
|
|
$redirect = route('forums.post', $post->id);
|
|
|
|
|
|
|
|
if (!isset($_SESSION['replyText'])) {
|
|
|
|
$_SESSION['replyText'] = [];
|
|
|
|
}
|
|
|
|
|
|
|
|
$_SESSION['replyText']["t{$forum->id}"] = $text;
|
|
|
|
|
|
|
|
return view('global/information', compact('message', 'redirect'));
|
|
|
|
}
|
|
|
|
|
|
|
|
unset($_SESSION['replyText']["t{$forum->id}"]);
|
|
|
|
|
|
|
|
if ($post->id !== $topic->firstPost()->id || $title === null) {
|
|
|
|
$title = "Re: {$topic->title}";
|
|
|
|
} else {
|
|
|
|
$topic->title = $title;
|
|
|
|
$topic->update();
|
|
|
|
}
|
|
|
|
|
|
|
|
// Create the post
|
|
|
|
$post->subject = $title;
|
|
|
|
$post->text = $text;
|
|
|
|
$post->editTime = time();
|
|
|
|
$post->editReason = '';
|
|
|
|
$post->editUser = ActiveUser::$user;
|
|
|
|
$post = $post->update();
|
|
|
|
|
|
|
|
$postLink = route('forums.post', $post->id);
|
|
|
|
|
|
|
|
return header("Location: {$postLink}");
|
|
|
|
}
|
|
|
|
|
|
|
|
public function delete($id = 0)
|
|
|
|
{
|
|
|
|
$post = new Post($id);
|
|
|
|
$topic = new Topic($post->topic);
|
|
|
|
$forum = new Forum($topic->forum);
|
|
|
|
|
|
|
|
// Check permissions
|
|
|
|
$noAccess = $post->id === 0
|
|
|
|
|| $topic->id === 0
|
|
|
|
|| !$forum->permission(ForumPerms::VIEW, ActiveUser::$user->id);
|
|
|
|
|
|
|
|
$noDelete = (
|
|
|
|
$post->poster->id === ActiveUser::$user->id
|
|
|
|
? !ActiveUser::$user->permission(ForumPerms::DELETE_OWN, Perms::FORUM)
|
|
|
|
: !$forum->permission(ForumPerms::DELETE_ANY, ActiveUser::$user->id)
|
|
|
|
) || (
|
|
|
|
$topic->status === 1
|
|
|
|
&& !$forum->permission(ForumPerms::LOCK, ActiveUser::$user->id)
|
|
|
|
);
|
|
|
|
|
|
|
|
// Check if the forum exists
|
|
|
|
if ($noAccess || $noDelete) {
|
|
|
|
if ($noDelete) {
|
|
|
|
$message = "You aren't allowed to delete posts in this topic!";
|
|
|
|
$redirect = Router::route('forums.post', $post->id);
|
|
|
|
} else {
|
|
|
|
$message = "This post doesn't exist or you don't have access to it!";
|
|
|
|
$redirect = Router::route('forums.index');
|
|
|
|
}
|
|
|
|
|
|
|
|
return view('global/information', compact('message', 'redirect'));
|
|
|
|
}
|
|
|
|
|
2016-08-02 20:35:12 +00:00
|
|
|
if (session_check('sessionid')) {
|
|
|
|
if (isset($_POST['yes'])) {
|
2016-07-31 19:36:13 +00:00
|
|
|
// Set message
|
|
|
|
$message = "Deleted the post!";
|
|
|
|
|
|
|
|
// Check if the topic only has 1 post
|
|
|
|
if ($topic->replyCount() === 1) {
|
|
|
|
// Delete the entire topic
|
|
|
|
$topic->delete();
|
|
|
|
|
|
|
|
$redirect = route('forums.forum', $forum->id);
|
|
|
|
} else {
|
|
|
|
// Just delete the post
|
|
|
|
$post->delete();
|
|
|
|
|
|
|
|
$redirect = route('forums.topic', $topic->id);
|
|
|
|
}
|
|
|
|
|
|
|
|
return view('global/information', compact('message', 'redirect'));
|
|
|
|
}
|
|
|
|
|
|
|
|
$postLink = route('forums.post', $post->id);
|
|
|
|
return header("Location: {$postLink}");
|
|
|
|
}
|
|
|
|
|
|
|
|
$message = "Are you sure?";
|
|
|
|
|
|
|
|
return view('global/confirm', compact('message'));
|
|
|
|
}
|
|
|
|
}
|