apiaccountupdateprofileimage.php 4.72 KB
Newer Older
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78
<?php
/**
 * StatusNet, the distributed open-source microblogging tool
 *
 * Update the authenticating user's profile image
 *
 * PHP version 5
 *
 * LICENCE: This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 *
 * @category  API
 * @package   StatusNet
 * @author    Zach Copley <zach@status.net>
 * @copyright 2009 StatusNet, Inc.
 * @license   http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0
 * @link      http://status.net/
 */

if (!defined('STATUSNET')) {
    exit(1);
}

require_once INSTALLDIR . '/lib/apiauth.php';

/**
 * Updates the authenticating user's profile image. Note that this API method
 * expects raw multipart data, not a URL to an image.
 *
 * @category API
 * @package  StatusNet
 * @author   Zach Copley <zach@status.net>
 * @license  http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0
 * @link     http://status.net/
 */
class ApiAccountUpdateProfileImageAction extends ApiAuthAction
{
    /**
     * Take arguments for running
     *
     * @param array $args $_REQUEST args
     *
     * @return boolean success flag
     */
    function prepare($args)
    {
        parent::prepare($args);

        $this->user   = $this->auth_user;

        return true;
    }

    /**
     * Handle the request
     *
     * Check whether the credentials are valid and output the result
     *
     * @param array $args $_REQUEST data (unused)
     *
     * @return void
     */
    function handle($args)
    {
        parent::handle($args);

        if ($_SERVER['REQUEST_METHOD'] != 'POST') {
            $this->clientError(
Siebrand Mazeland's avatar
Siebrand Mazeland committed
79
                // TRANS: Client error. POST is a HTTP command. It should not be translated.
80 81 82 83 84 85
                _('This method requires a POST.'),
                400, $this->format
            );
            return;
        }

86 87 88 89 90 91 92
        // Workaround for PHP returning empty $_POST and $_FILES when POST
        // length > post_max_size in php.ini

        if (empty($_FILES)
            && empty($_POST)
            && ($_SERVER['CONTENT_LENGTH'] > 0)
        ) {
93 94 95 96 97
            // TRANS: Client error displayed when the number of bytes in a POST request exceeds a limit.
            // TRANS: %s is the number of bytes of the CONTENT_LENGTH.
            $msg = _m('The server was unable to handle that much POST data (%s byte) due to its current configuration.',
                      'The server was unable to handle that much POST data (%s bytes) due to its current configuration.',
                      intval($_SERVER['CONTENT_LENGTH']));
98
            $this->clientError(sprintf($msg, $_SERVER['CONTENT_LENGTH']));
99 100 101
            return;
        }

102
        if (empty($this->user)) {
Siebrand Mazeland's avatar
Siebrand Mazeland committed
103
            // TRANS: Client error displayed updating profile image without having a user object.
104
            $this->clientError(_('No such user.'), 404, $this->format);
105 106 107 108 109 110 111 112 113 114
            return;
        }

        try {
            $imagefile = ImageFile::fromUpload('image');
        } catch (Exception $e) {
            $this->clientError($e->getMessage(), 400, $this->format);
            return;
        }

115
        $type = $imagefile->preferredType();
116 117
        $filename = Avatar::filename(
            $user->id,
118
            image_type_to_extension($type),
119 120 121 122 123 124
            null,
            'tmp'.common_timestamp()
        );

        $filepath = Avatar::path($filename);

125
        $imagefile->copyTo($filepath);
126 127 128 129

        $profile = $this->user->getProfile();

        if (empty($profile)) {
130
            // TRANS: Error message displayed when referring to a user without a profile.
131 132 133 134 135 136 137 138
            $this->clientError(_('User has no profile.'));
            return;
        }

        $profile->setOriginal($filename);

        common_broadcast_profile($profile);

139
        $twitter_user = $this->twitterUserArray($profile, true);
140 141 142

        if ($this->format == 'xml') {
            $this->initDocument('xml');
143
            $this->showTwitterXmlUser($twitter_user, 'user', true);
144 145 146 147 148 149 150 151
            $this->endDocument('xml');
        } elseif ($this->format == 'json') {
            $this->initDocument('json');
            $this->showJsonObjects($twitter_user);
            $this->endDocument('json');
        }
    }
}