We are no longer offering accounts on this server. Consider https://gitlab.freedesktop.org/ as a place to host projects.

deletenotice.php 6.29 KB
Newer Older
1
<?php
2
/**
3
 * StatusNet, the distributed open-source microblogging tool
4
 *
5 6 7 8 9
 * Class for deleting a notice
 *
 * PHP version 5
 *
 * LICENCE: This program is free software: you can redistribute it and/or modify
10 11 12 13 14 15 16 17 18 19 20
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
21 22
 *
 * @category  Personal
23
 * @package   StatusNet
24 25
 * @author    Evan Prodromou <evan@status.net>
 * @author    Sarven Capadisli <csarven@status.net>
26
 * @copyright 2008 StatusNet, Inc.
27
 * @license   http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0
28
 * @link      http://status.net/
29 30
 */

31
if (!defined('STATUSNET') && !defined('LACONICA')) {
32 33
    exit(1);
}
34

35
// @todo FIXME: documentation needed.
36
class DeletenoticeAction extends Action
37
{
38 39 40 41 42 43 44 45 46 47 48
    var $error        = null;
    var $user         = null;
    var $notice       = null;
    var $profile      = null;
    var $user_profile = null;

    function prepare($args)
    {
        parent::prepare($args);

        $this->user   = common_current_user();
49 50

        if (!$this->user) {
51
            // TRANS: Error message displayed when trying to perform an action that requires a logged in user.
52 53 54 55
            common_user_error(_('Not logged in.'));
            exit;
        }

56 57 58 59
        $notice_id    = $this->trimmed('notice');
        $this->notice = Notice::staticGet($notice_id);

        if (!$this->notice) {
60
            // TRANS: Error message displayed trying to delete a non-existing notice.
61 62 63 64 65 66 67 68 69
            common_user_error(_('No such notice.'));
            exit;
        }

        $this->profile      = $this->notice->getProfile();
        $this->user_profile = $this->user->getProfile();

        return true;
    }
70

71 72
    function handle($args)
    {
73
        parent::handle($args);
74

75
        if ($this->notice->profile_id != $this->user_profile->id &&
76
                   !$this->user->hasRight(Right::DELETEOTHERSNOTICE)) {
77
            // TRANS: Error message displayed trying to delete a notice that was not made by the current user.
78
            common_user_error(_('Cannot delete this notice.'));
79 80
            exit;
        }
81
        // XXX: Ajax!
82

83
        if ($_SERVER['REQUEST_METHOD'] == 'POST') {
84
            $this->deleteNotice();
85
        } else if ($_SERVER['REQUEST_METHOD'] == 'GET') {
86
            $this->showForm();
87 88
        }
    }
89

90 91 92 93 94 95 96 97
    /**
     * Show the page notice
     *
     * Shows instructions for the page
     *
     * @return void
     */
    function showPageNotice()
98
    {
99 100 101 102 103 104
        $instr  = $this->getInstructions();
        $output = common_markup_to_html($instr);

        $this->elementStart('div', 'instructions');
        $this->raw($output);
        $this->elementEnd('div');
105
    }
106

107 108
    function getInstructions()
    {
109
        // TRANS: Instructions for deleting a notice.
110
        return _('You are about to permanently delete a notice. ' .
111
                 'Once this is done, it cannot be undone.');
112 113 114
    }

    function title()
115
    {
116
        // TRANS: Page title when deleting a notice.
117 118
        return _('Delete notice');
    }
119

120 121 122 123 124 125 126 127 128 129
    /**
     * Wrapper for showing a page
     *
     * Stores an error and shows the page
     *
     * @param string $error Error, if any
     *
     * @return void
     */
    function showForm($error = null)
130
    {
131 132 133 134 135 136 137 138 139 140 141
        $this->error = $error;
        $this->showPage();
    }

    /**
     * Insert delete notice form into the content
     *
     * @return void
     */
    function showContent()
    {
142 143
        $this->elementStart('form', array('id' => 'form_notice_delete',
                                          'class' => 'form_settings',
144 145
                                          'method' => 'post',
                                          'action' => common_local_url('deletenotice')));
146
        $this->elementStart('fieldset');
147
        // TRANS: Fieldset legend for the delete notice form.
148
        $this->element('legend', null, _('Delete notice'));
149 150
        $this->hidden('token', common_session_token());
        $this->hidden('notice', $this->trimmed('notice'));
151
        // TRANS: Message for the delete notice form.
152
        $this->element('p', null, _('Are you sure you want to delete this notice?'));
153 154 155 156 157 158
        $this->submit('form_action-no',
                      // TRANS: Button label on the delete notice form.
                      _m('BUTTON','No'),
                      'submit form_action-primary',
                      'no',
                      // TRANS: Submit button title for 'No' when deleting a notice.
159
                      _('Do not delete this notice.'));
160 161 162 163 164 165
        $this->submit('form_action-yes',
                      // TRANS: Button label on the delete notice form.
                      _m('BUTTON','Yes'),
                      'submit form_action-secondary',
                      'yes',
                      // TRANS: Submit button title for 'Yes' when deleting a notice.
166
                      _('Delete this notice.'));
167
        $this->elementEnd('fieldset');
168
        $this->elementEnd('form');
169
    }
170

171
    function deleteNotice()
172
    {
173
        // CSRF protection
174
        $token = $this->trimmed('token');
175

176
        if (!$token || $token != common_session_token()) {
177
            // TRANS: Client error displayed when the session token does not match or is not given.
178
            $this->showForm(_('There was a problem with your session token. ' .
179
                              'Try again, please.'));
180 181
            return;
        }
182

Evan Prodromou's avatar
Evan Prodromou committed
183
        if ($this->arg('yes')) {
184 185 186 187
            if (Event::handle('StartDeleteOwnNotice', array($this->user, $this->notice))) {
                $this->notice->delete();
                Event::handle('EndDeleteOwnNotice', array($this->user, $this->notice));
            }
Evan Prodromou's avatar
Evan Prodromou committed
188
        }
189

Evan Prodromou's avatar
Evan Prodromou committed
190
        $url = common_get_returnto();
191

Evan Prodromou's avatar
Evan Prodromou committed
192 193 194 195
        if ($url) {
            common_set_returnto(null);
        } else {
            $url = common_local_url('public');
196
        }
Evan Prodromou's avatar
Evan Prodromou committed
197

198
        common_redirect($url, 303);
199
    }
200
}