actions/newmessage.php

   1 <?php
   2 /*
   3  * Laconica - a distributed open-source microblogging tool
   4  * Copyright (C) 2008, Controlez-Vous, Inc.
   5  *
   6  * This program is free software: you can redistribute it and/or modify
   7  * it under the terms of the GNU Affero General Public License as published by
   8  * the Free Software Foundation, either version 3 of the License, or
   9  * (at your option) any later version.
  10  *
  11  * This program is distributed in the hope that it will be useful,
  12  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14  * GNU Affero General Public License for more details.
  15  *
  16  * You should have received a copy of the GNU Affero General Public License
  17  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18  */
  19
  20 if (!defined('LACONICA')) { exit(1); }
  21
  22 class NewmessageAction extends Action {
  23
  24         function handle($args) {
  25                 parent::handle($args);
  26
  27                 if (!common_logged_in()) {
  28                         $this->client_error(_('Not logged in.'), 403);
  29                 } else if ($_SERVER['REQUEST_METHOD'] == 'POST') {
  30                         $this->save_new_message();
  31                 } else {
  32                         $this->show_form();
  33                 }
  34         }
  35
  36         function save_new_message() {
  37
  38                 $user = common_current_user();
  39                 assert($user); # XXX: maybe an error instead...
  40
  41                 # CSRF protection
  42
  43                 $token = $this->trimmed('token');
  44                 if (!$token || $token != common_session_token()) {
  45                         $this->show_form(_('There was a problem with your session token. Try again, please.'));
  46                         return;
  47                 }
  48
  49                 $content = $this->trimmed('content');
  50                 $to = $this->trimmed('to');
  51
  52                 if (!$content) {
  53                         $this->show_form(_('No content!'));
  54                         return;
  55                 } else if (mb_strlen($content) > 140) {
  56                         common_debug("Content = '$content'", __FILE__);
  57                         common_debug("mb_strlen(\$content) = " . mb_strlen($content), __FILE__);
  58                         $this->show_form(_('That\'s too long. Max message size is 140 chars.'));
  59                         return;
  60                 }
  61
  62                 $other = User::staticGet('id', $to);
  63
  64                 if (!$other) {
  65                         $this->show_form(_('No recipient specified.'));
  66                         return;
  67                 } else if (!$user->mutuallySubscribed($other)) {
  68                         $this->client_error(_('You can\'t send a message to this user.'), 404);
  69                         return;
  70                 } else if ($user->id == $other->id) {
  71                         $this->client_error(_('Don\'t send a message to yourself; just say it to yourself quietly instead.'), 403);
  72                         return;
  73                 }
  74
  75                 $message = Message::saveNew($user->id, $other->id, $content, 'web');
  76
  77                 if (is_string($message)) {
  78                         $this->show_form($message);
  79                         return;
  80                 }
  81
  82                 $this->notify($user, $other, $message);
  83
  84                 $url = common_local_url('outbox', array('nickname' => $user->nickname));
  85
  86                 common_redirect($url, 303);
  87         }
  88
  89         function show_top($params) {
  90
  91                 list($content, $user, $to) = $params;
  92
  93                 assert(!is_null($user));
  94
  95                 common_message_form($content, $user, $to);
  96         }
  97
  98         function show_form($msg=NULL) {
  99
 100                 $content = $this->trimmed('content');
 101                 $user = common_current_user();
 102
 103                 $to = $this->trimmed('to');
 104
 105                 $other = User::staticGet('id', $to);
 106
 107                 if (!$other) {
 108                         $this->client_error(_('No such user'), 404);
 109                         return;
 110                 }
 111
 112                 if (!$user->mutuallySubscribed($other)) {
 113                         $this->client_error(_('You can\'t send a message to this user.'), 404);
 114                         return;
 115                 }
 116
 117                 common_show_header(_('New message'), NULL,
 118                                                    array($content, $user, $other),
 119                                    array($this, 'show_top'));
 120
 121                 if ($msg) {
 122                         common_element('p', 'error', $msg);
 123                 }
 124
 125                 common_show_footer();
 126         }
 127
 128         function notify($from, $to, $message) {
 129                 mail_notify_message($message, $from, $to);
 130                 # XXX: Jabber, SMS notifications... probably queued
 131         }
 132 }