We are no longer offering accounts on this server. Consider https://gitlab.freedesktop.org/ as a place to host projects.

newnotice.php 13.6 KB
Newer Older
Evan Prodromou's avatar
Evan Prodromou committed
1
<?php
Evan Prodromou's avatar
Evan Prodromou committed
2
/**
3
 * StatusNet, the distributed open-source microblogging tool
Evan Prodromou's avatar
Evan Prodromou committed
4
 *
Evan Prodromou's avatar
Evan Prodromou committed
5 6 7 8 9
 * Handler for posting new notices
 *
 * PHP version 5
 *
 * LICENCE: This program is free software: you can redistribute it and/or modify
Evan Prodromou's avatar
Evan Prodromou committed
10 11 12
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
Evan Prodromou's avatar
Evan Prodromou committed
13
 *
Evan Prodromou's avatar
Evan Prodromou committed
14 15
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
Evan Prodromou's avatar
Evan Prodromou committed
16
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
Evan Prodromou's avatar
Evan Prodromou committed
17
 * GNU Affero General Public License for more details.
Evan Prodromou's avatar
Evan Prodromou committed
18
 *
Evan Prodromou's avatar
Evan Prodromou committed
19
 * You should have received a copy of the GNU Affero General Public License
Evan Prodromou's avatar
Evan Prodromou committed
20 21 22
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 *
 * @category  Personal
23
 * @package   StatusNet
24 25 26
 * @author    Evan Prodromou <evan@status.net>
 * @author    Zach Copley <zach@status.net>
 * @author    Sarven Capadisli <csarven@status.net>
27
 * @copyright 2008-2009 StatusNet, Inc.
Evan Prodromou's avatar
Evan Prodromou committed
28
 * @license   http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0
29
 * @link      http://status.net/
Evan Prodromou's avatar
Evan Prodromou committed
30 31
 */

32
if (!defined('STATUSNET') && !defined('LACONICA')) {
Evan Prodromou's avatar
Evan Prodromou committed
33 34 35
    exit(1);
}

36 37
require_once INSTALLDIR . '/lib/noticelist.php';
require_once INSTALLDIR . '/lib/mediafile.php';
Evan Prodromou's avatar
Evan Prodromou committed
38

Evan Prodromou's avatar
Evan Prodromou committed
39 40 41 42
/**
 * Action for posting new notices
 *
 * @category Personal
43
 * @package  StatusNet
44 45 46
 * @author   Evan Prodromou <evan@status.net>
 * @author   Zach Copley <zach@status.net>
 * @author   Sarven Capadisli <csarven@status.net>
Evan Prodromou's avatar
Evan Prodromou committed
47
 * @license  http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0
48
 * @link     http://status.net/
Evan Prodromou's avatar
Evan Prodromou committed
49
 */
50 51
class NewnoticeAction extends Action
{
Evan Prodromou's avatar
Evan Prodromou committed
52 53 54 55 56 57 58 59
    /**
     * Error message, if any
     */
    var $msg = null;

    /**
     * Title of the page
     *
60
     * Note that this usually doesn't get called unless something went wrong
Evan Prodromou's avatar
Evan Prodromou committed
61 62 63 64 65
     *
     * @return string page title
     */
    function title()
    {
66
        // TRANS: Page title for sending a new notice.
67
        return _m('TITLE','New notice');
Evan Prodromou's avatar
Evan Prodromou committed
68 69 70 71 72 73 74 75 76 77 78 79 80 81 82
    }

    /**
     * Handle input, produce output
     *
     * Switches based on GET or POST method. On GET, shows a form
     * for posting a notice. On POST, saves the results of that form.
     *
     * Results may be a full page, or just a single notice list item,
     * depending on whether AJAX was requested.
     *
     * @param array $args $_REQUEST contents
     *
     * @return void
     */
83 84
    function handle($args)
    {
85
        if (!common_logged_in()) {
86
            // TRANS: Error message displayed when trying to perform an action that requires a logged in user.
87
            $this->clientError(_('Not logged in.'));
88
        } else if ($_SERVER['REQUEST_METHOD'] == 'POST') {
89 90 91
            // check for this before token since all POST and FILES data
            // is losts when size is exceeded
            if (empty($_POST) && $_SERVER['CONTENT_LENGTH']) {
92 93 94 95 96 97
                // TRANS: Client error displayed when the number of bytes in a POST request exceeds a limit.
                // TRANS: %s is the number of bytes of the CONTENT_LENGTH.
                $msg = _m('The server was unable to handle that much POST data (%s byte) due to its current configuration.',
                          'The server was unable to handle that much POST data (%s bytes) due to its current configuration.',
                          intval($_SERVER['CONTENT_LENGTH']));
                $this->clientError(sprintf($msg,$_SERVER['CONTENT_LENGTH']));
98 99
            }
            parent::handle($args);
100

101
            // CSRF protection
102 103
            $token = $this->trimmed('token');
            if (!$token || $token != common_session_token()) {
104
                // TRANS: Client error displayed when the session token does not match or is not given.
Evan Prodromou's avatar
Evan Prodromou committed
105 106
                $this->clientError(_('There was a problem with your session token. '.
                                     'Try again, please.'));
107
            }
108 109 110 111 112 113
            try {
                $this->saveNewNotice();
            } catch (Exception $e) {
                $this->showForm($e->getMessage());
                return;
            }
114
        } else {
Evan Prodromou's avatar
Evan Prodromou committed
115
            $this->showForm();
116 117 118
        }
    }

Evan Prodromou's avatar
Evan Prodromou committed
119 120 121 122 123 124 125 126 127 128 129 130 131
    /**
     * Save a new notice, based on arguments
     *
     * If successful, will show the notice, or return an Ajax-y result.
     * If not, it will show an error message -- possibly Ajax-y.
     *
     * Also, if the notice input looks like a command, it will run the
     * command and show the results -- again, possibly ajaxy.
     *
     * @return void
     */
    function saveNewNotice()
    {
132
        $user = common_current_user();
Evan Prodromou's avatar
Evan Prodromou committed
133
        assert($user); // XXX: maybe an error instead...
134
        $content = $this->trimmed('status_textarea');
135 136
        $options = array();
        Event::handle('StartSaveNewNoticeWeb', array($this, $user, &$content, &$options));
137 138

        if (!$content) {
139
            // TRANS: Client error displayed trying to send a notice without content.
140
            $this->clientError(_('No content!'));
141
            return;
142 143 144 145
        }

        $inter = new CommandInterpreter();

146
        $cmd = $inter->handle_command($user, $content);
147 148 149

        if ($cmd) {
            if ($this->boolean('ajax')) {
150
                $cmd->execute(new AjaxWebChannel($this));
151
            } else {
152
                $cmd->execute(new WebChannel($this));
153 154 155 156
            }
            return;
        }

157
        $content_shortened = $user->shortenLinks($content);
158
        if (Notice::contentTooLong($content_shortened)) {
Siebrand Mazeland's avatar
Siebrand Mazeland committed
159 160 161 162 163
            // TRANS: Client error displayed when the parameter "status" is missing.
            // TRANS: %d is the maximum number of character for a notice.
            $this->clientError(sprintf(_m('That\'s too long. Maximum notice size is %d character.',
                                          'That\'s too long. Maximum notice size is %d characters.',
                                          Notice::maxContent()),
164 165 166
                                       Notice::maxContent()));
        }

167 168
        $replyto = intval($this->trimmed('inreplyto'));
        if ($replyto) {
169
            $options['reply_to'] = $replyto;
170
        }
171

172 173
        $upload = null;
        $upload = MediaFile::fromUpload('attach');
174

175
        if (isset($upload)) {
176

177 178 179 180
            if (Event::handle('StartSaveNewNoticeAppendAttachment', array($this, $upload, &$content_shortened, &$options))) {
                $content_shortened .= ' ' . $upload->shortUrl();
            }
            Event::handle('EndSaveNewNoticeAppendAttachment', array($this, $upload, &$content_shortened, &$options));
181

182
            if (Notice::contentTooLong($content_shortened)) {
183
                $upload->delete();
184 185
                // TRANS: Client error displayed exceeding the maximum notice length.
                // TRANS: %d is the maximum length for a notice.
Siebrand Mazeland's avatar
Siebrand Mazeland committed
186 187 188 189
                $this->clientError(sprintf(_m('Maximum notice size is %d character, including attachment URL.',
                                              'Maximum notice size is %d characters, including attachment URL.',
                                              Notice::maxContent()),
                                           Notice::maxContent()));
190 191 192
            }
        }

193 194 195 196 197 198 199 200 201 202 203 204 205 206 207
        if ($user->shareLocation()) {
            // use browser data if checked; otherwise profile data
            if ($this->arg('notice_data-geo')) {
                $locOptions = Notice::locationOptions($this->trimmed('lat'),
                                                      $this->trimmed('lon'),
                                                      $this->trimmed('location_id'),
                                                      $this->trimmed('location_ns'),
                                                      $user->getProfile());
            } else {
                $locOptions = Notice::locationOptions(null,
                                                      null,
                                                      null,
                                                      null,
                                                      $user->getProfile());
            }
208

209
            $options = array_merge($options, $locOptions);
210 211
        }

212 213
        $author_id = $user->id;
        $text      = $content_shortened;
214

215 216 217 218
        // Does the heavy-lifting for getting "To:" information

        ToSelector::fillOptions($this, $options);

219 220 221 222 223 224 225 226 227
        if (Event::handle('StartNoticeSaveWeb', array($this, &$author_id, &$text, &$options))) {

            $notice = Notice::saveNew($user->id, $content_shortened, 'web', $options);

            if (isset($upload)) {
                $upload->attachToNotice($notice);
            }

            Event::handle('EndNoticeSaveWeb', array($this, $notice));
228
        }
229
        Event::handle('EndSaveNewNoticeWeb', array($this, $user, &$content_shortened, &$options));
230

231
        if ($this->boolean('ajax')) {
232 233 234
            header('Content-Type: text/xml;charset=utf-8');
            $this->xw->startDocument('1.0', 'UTF-8');
            $this->elementStart('html');
235
            $this->elementStart('head');
236
            // TRANS: Page title after sending a notice.
237 238 239
            $this->element('title', null, _('Notice posted'));
            $this->elementEnd('head');
            $this->elementStart('body');
Evan Prodromou's avatar
Evan Prodromou committed
240
            $this->showNotice($notice);
241 242
            $this->elementEnd('body');
            $this->elementEnd('html');
243 244 245 246 247 248 249 250 251 252 253 254 255 256
        } else {
            $returnto = $this->trimmed('returnto');

            if ($returnto) {
                $url = common_local_url($returnto,
                                        array('nickname' => $user->nickname));
            } else {
                $url = common_local_url('shownotice',
                                        array('notice' => $notice->id));
            }
            common_redirect($url, 303);
        }
    }

Evan Prodromou's avatar
Evan Prodromou committed
257 258 259 260 261 262 263 264 265 266
    /**
     * Show an Ajax-y error message
     *
     * Goes back to the browser, where it's shown in a popup.
     *
     * @param string $msg Message to show
     *
     * @return void
     */
    function ajaxErrorMsg($msg)
267
    {
268
        $this->startHTML('text/xml;charset=utf-8', true);
269
        $this->elementStart('head');
270
        // TRANS: Page title after an AJAX error occurs on the send notice page.
271 272 273 274 275 276
        $this->element('title', null, _('Ajax Error'));
        $this->elementEnd('head');
        $this->elementStart('body');
        $this->element('p', array('id' => 'error'), $msg);
        $this->elementEnd('body');
        $this->elementEnd('html');
277 278
    }

279 280 281 282 283 284 285 286 287 288 289 290 291
    /**
     * Show an Ajax-y notice form
     *
     * Goes back to the browser, where it's shown in a popup.
     *
     * @param string $msg Message to show
     *
     * @return void
     */
    function ajaxShowForm()
    {
        $this->startHTML('text/xml;charset=utf-8', true);
        $this->elementStart('head');
292 293
        // TRANS: Title for form to send a new notice.
        $this->element('title', null, _m('TITLE','New notice'));
294 295 296 297 298 299 300 301 302 303
        $this->elementEnd('head');
        $this->elementStart('body');

        $form = new NoticeForm($this);
        $form->show();

        $this->elementEnd('body');
        $this->elementEnd('html');
    }

Evan Prodromou's avatar
Evan Prodromou committed
304 305 306 307 308 309 310 311 312 313 314 315 316 317 318
    /**
     * Formerly page output
     *
     * This used to be the whole page output; now that's been largely
     * subsumed by showPage. So this just stores an error message, if
     * it was passed, and calls showPage.
     *
     * Note that since we started doing Ajax output, this page is rarely
     * seen.
     *
     * @param string $msg An error message, if any
     *
     * @return void
     */
    function showForm($msg=null)
319
    {
320 321 322 323 324 325
        if ($this->boolean('ajax')) {
            if ($msg) {
                $this->ajaxErrorMsg($msg);
            } else {
                $this->ajaxShowForm();
            }
326 327
            return;
        }
Evan Prodromou's avatar
Evan Prodromou committed
328 329 330 331 332 333

        $this->msg = $msg;
        $this->showPage();
    }

    /**
334 335
     * // XXX: Should we be showing the notice form with microapps here?
     *
Evan Prodromou's avatar
Evan Prodromou committed
336 337 338 339 340 341 342 343
     * Overload for replies or bad results
     *
     * We show content in the notice form if there were replies or results.
     *
     * @return void
     */
    function showNoticeForm()
    {
344 345 346
        $content = $this->trimmed('status_textarea');
        if (!$content) {
            $replyto = $this->trimmed('replyto');
347
            $inreplyto = $this->trimmed('inreplyto');
348 349 350 351
            $profile = Profile::staticGet('nickname', $replyto);
            if ($profile) {
                $content = '@' . $profile->nickname . ' ';
            }
352 353 354
        } else {
            // @fixme most of these bits above aren't being passed on above
            $inreplyto = null;
355
        }
Evan Prodromou's avatar
Evan Prodromou committed
356

357 358 359 360 361
        $this->elementStart('div', 'input_forms');
        $this->elementStart(
            'div',
            array(
                'id'    => 'input_form_status',
362
                'class' => 'input_form current nonav'
363 364 365 366 367 368 369 370 371 372
            )
        );

        $notice_form = new NoticeForm(
            $this,
            array(
                'content' => $content,
                'inreplyto' => $inreplyto
            )
        );
373

Evan Prodromou's avatar
Evan Prodromou committed
374
        $notice_form->show();
375 376 377

        $this->elementEnd('div');
        $this->elementEnd('div');
Evan Prodromou's avatar
Evan Prodromou committed
378 379 380 381 382 383 384 385 386 387 388 389 390 391 392
    }

    /**
     * Show an error message
     *
     * Shows an error message if there is one.
     *
     * @return void
     *
     * @todo maybe show some instructions?
     */
    function showPageNotice()
    {
        if ($this->msg) {
            $this->element('p', array('id' => 'error'), $this->msg);
393 394 395
        }
    }

Evan Prodromou's avatar
Evan Prodromou committed
396 397 398 399 400 401 402 403 404 405
    /**
     * Output a notice
     *
     * Used to generate the notice code for Ajax results.
     *
     * @param Notice $notice Notice that was saved
     *
     * @return void
     */
    function showNotice($notice)
406
    {
Evan Prodromou's avatar
Evan Prodromou committed
407
        $nli = new NoticeListItem($notice, $this);
408
        $nli->show();
409
    }
410
}