169 lines
6.2 KiB
PHP
169 lines
6.2 KiB
PHP
<?php
|
|
use Misuzu\Database;
|
|
|
|
$mode = (string)($_GET['m'] ?? null);
|
|
$misuzuBypassLockdown = $mode === 'avatar';
|
|
|
|
require_once __DIR__ . '/../misuzu.php';
|
|
|
|
$userId = (int)($_GET['u'] ?? 0);
|
|
|
|
switch ($mode) {
|
|
case 'avatar':
|
|
$avatar_filename = $app->getDefaultAvatar();
|
|
$user_avatar = "{$userId}.msz";
|
|
$cropped_avatar = build_path(
|
|
create_directory(build_path($app->getStoragePath(), 'avatars/200x200')),
|
|
$user_avatar
|
|
);
|
|
|
|
if (is_file($cropped_avatar)) {
|
|
$avatar_filename = $cropped_avatar;
|
|
} else {
|
|
$original_avatar = build_path($app->getStoragePath(), 'avatars/original', $user_avatar);
|
|
|
|
if (is_file($original_avatar)) {
|
|
try {
|
|
file_put_contents(
|
|
$cropped_avatar,
|
|
crop_image_centred_path($original_avatar, 200, 200)->getImagesBlob(),
|
|
LOCK_EX
|
|
);
|
|
|
|
$avatar_filename = $cropped_avatar;
|
|
} catch (Exception $ex) {
|
|
}
|
|
}
|
|
}
|
|
|
|
header('Content-Type: ' . mime_content_type($avatar_filename));
|
|
echo file_get_contents($avatar_filename);
|
|
break;
|
|
|
|
case 'background':
|
|
$user_background = build_path(
|
|
create_directory(build_path($app->getStoragePath(), 'backgrounds/original')),
|
|
"{$userId}.msz"
|
|
);
|
|
|
|
if (!is_file($user_background)) {
|
|
echo render_error(404);
|
|
break;
|
|
}
|
|
|
|
header('Content-Type: ' . mime_content_type($user_background));
|
|
echo file_get_contents($user_background);
|
|
break;
|
|
|
|
default:
|
|
$getProfile = Database::prepare('
|
|
SELECT
|
|
u.*,
|
|
COALESCE(u.`user_title`, r.`role_title`) as `user_title`,
|
|
COALESCE(u.`user_colour`, r.`role_colour`) as `user_colour`,
|
|
(
|
|
SELECT COUNT(`topic_id`)
|
|
FROM `msz_forum_topics`
|
|
WHERE `user_id` = u.`user_id`
|
|
) as `forum_topic_count`,
|
|
(
|
|
SELECT COUNT(`post_id`)
|
|
FROM `msz_forum_posts`
|
|
WHERE `user_id` = u.`user_id`
|
|
) as `forum_post_count`,
|
|
(
|
|
SELECT COUNT(`change_id`)
|
|
FROM `msz_changelog_changes`
|
|
WHERE `user_id` = u.`user_id`
|
|
) as `changelog_count`,
|
|
(
|
|
SELECT COUNT(`comment_id`)
|
|
FROM `msz_comments_posts`
|
|
WHERE `user_id` = u.`user_id`
|
|
) as `comments_count`
|
|
FROM `msz_users` as u
|
|
LEFT JOIN `msz_roles` as r
|
|
ON r.`role_id` = u.`display_role`
|
|
WHERE `user_id` = :user_id
|
|
OR LOWER(`username`) = LOWER(:username)
|
|
LIMIT 1
|
|
');
|
|
$getProfile->bindValue('user_id', $userId);
|
|
$getProfile->bindValue('username', $_GET['u'] ?? '');
|
|
$profile = $getProfile->execute() ? $getProfile->fetch() : [];
|
|
|
|
if (!$profile) {
|
|
http_response_code(404);
|
|
echo tpl_render('user.notfound');
|
|
break;
|
|
}
|
|
|
|
$isEditing = false;
|
|
$userPerms = perms_get_user(MSZ_PERMS_USER, $app->getUserId());
|
|
$perms = [
|
|
'edit_profile' => perms_check($userPerms, MSZ_PERM_USER_EDIT_PROFILE),
|
|
'edit_avatar' => perms_check($userPerms, MSZ_PERM_USER_CHANGE_AVATAR),
|
|
'edit_background' => perms_check($userPerms, MSZ_PERM_USER_CHANGE_BACKGROUND),
|
|
'edit_about' => perms_check($userPerms, MSZ_PERM_USER_EDIT_ABOUT),
|
|
];
|
|
|
|
if ($app->hasActiveSession()) {
|
|
$canEdit = $app->getUserId() === $profile['user_id']
|
|
|| perms_check($userPerms, MSZ_PERM_USER_MANAGE_USERS);
|
|
$isEditing = $canEdit && $mode === 'edit';
|
|
|
|
$getFriendInfo = Database::prepare('
|
|
SELECT
|
|
:visitor as `visitor`, :profile as `profile`,
|
|
(
|
|
SELECT `relation_type`
|
|
FROM `msz_user_relations`
|
|
WHERE `user_id` = `visitor`
|
|
AND `subject_id` = `profile`
|
|
) as `visitor_relation`,
|
|
(
|
|
SELECT `relation_type`
|
|
FROM `msz_user_relations`
|
|
WHERE `subject_id` = `visitor`
|
|
AND `user_id` = `profile`
|
|
) as `profile_relation`,
|
|
(
|
|
SELECT MAX(`relation_created`)
|
|
FROM `msz_user_relations`
|
|
WHERE (`user_id` = `visitor` AND `subject_id` = `profile`)
|
|
OR (`user_id` = `profile` AND `subject_id` = `visitor`)
|
|
) as `relation_created`
|
|
');
|
|
$getFriendInfo->bindValue('visitor', $app->getUserId());
|
|
$getFriendInfo->bindValue('profile', $profile['user_id']);
|
|
$friendInfo = $getFriendInfo->execute() ? $getFriendInfo->fetch(PDO::FETCH_ASSOC) : [];
|
|
|
|
tpl_vars([
|
|
'friend_info' => $friendInfo,
|
|
]);
|
|
|
|
if ($isEditing) {
|
|
tpl_vars([
|
|
'guidelines' => [
|
|
'avatar' => $app->getAvatarProps(),
|
|
'background' => $app->getBackgroundProps(),
|
|
],
|
|
]);
|
|
}
|
|
}
|
|
|
|
if (!$isEditing) {
|
|
tpl_var('profile_notices', ['The profile pages are still under much construction, more things will eventually populate the area where this container current exists.']);
|
|
}
|
|
|
|
tpl_vars([
|
|
'profile' => $profile,
|
|
'can_edit' => $canEdit ?? false,
|
|
'is_editing' => $isEditing,
|
|
'perms' => $perms,
|
|
'profile_fields' => $app->hasActiveSession() ? user_profile_fields_display($profile, !$isEditing) : [],
|
|
'has_background' => is_file(build_path($app->getStoragePath(), 'backgrounds/original', "{$profile['user_id']}.msz")),
|
|
]);
|
|
echo tpl_render('user.profile');
|
|
break;
|
|
}
|