<?php
-/*
- * Laconica - a distributed open-source microblogging tool
- * Copyright (C) 2008, Controlez-Vous, Inc.
+/**
+ * Block a user action class.
+ *
+ * PHP version 5
+ *
+ * @category Action
+ * @package StatusNet
+ * @author Evan Prodromou <evan@status.net>
+ * @author Robin Millette <millette@status.net>
+ * @license http://www.fsf.org/licensing/licenses/agpl.html AGPLv3
+ * @link http://status.net/
+ *
+ * StatusNet - the distributed open-source microblogging tool
+ * Copyright (C) 2008, 2009, StatusNet, Inc.
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as published by
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
-if (!defined('LACONICA')) { exit(1); }
+if (!defined('STATUSNET') && !defined('LACONICA')) {
+ exit(1);
+}
+
+/**
+ * Block a user action class.
+ *
+ * @category Action
+ * @package StatusNet
+ * @author Evan Prodromou <evan@status.net>
+ * @author Robin Millette <millette@status.net>
+ * @license http://www.fsf.org/licensing/licenses/agpl.html AGPLv3
+ * @link http://status.net/
+ */
-class BlockAction extends Action
+class BlockAction extends ProfileFormAction
{
-
var $profile = null;
+ /**
+ * Take arguments for running
+ *
+ * @param array $args $_REQUEST args
+ *
+ * @return boolean success flag
+ */
+
function prepare($args)
{
-
- parent::prepare($args);
-
- if (!common_logged_in()) {
- $this->clientError(_('Not logged in.'));
+ if (!parent::prepare($args)) {
return false;
}
- $token = $this->trimmed('token');
-
- if (!$token || $token != common_session_token()) {
- $this->clientError(_('There was a problem with your session token. Try again, please.'));
- return;
- }
-
- $id = $this->trimmed('blockto');
-
- if (!$id) {
- $this->clientError(_('No profile specified.'));
- return false;
- }
+ $cur = common_current_user();
- $this->profile = Profile::staticGet('id', $id);
+ assert(!empty($cur)); // checked by parent
- if (!$this->profile) {
- $this->clientError(_('No profile with that ID.'));
+ if ($cur->hasBlocked($this->profile)) {
+ $this->clientError(_('You already blocked that user.'));
return false;
}
return true;
}
+ /**
+ * Handle request
+ *
+ * Shows a page with list of favorite notices
+ *
+ * @param array $args $_REQUEST args; handled in prepare()
+ *
+ * @return void
+ */
+
function handle($args)
{
- parent::handle($args);
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
- if ($this->arg('block')) {
- $this->are_you_sure_form();
- } else if ($this->arg('no')) {
- $cur = common_current_user();
- common_redirect(common_local_url('subscribers',
- array('nickname' => $cur->nickname)));
- } else if ($this->arg('yes')) {
- $this->block_profile();
+ if ($this->arg('no')) {
+ $this->returnToPrevious();
+ } elseif ($this->arg('yes')) {
+ $this->handlePost();
+ $this->returnToPrevious();
+ } else {
+ $this->showPage();
}
+ } else {
+ $this->showPage();
}
}
- function are_you_sure_form()
- {
+ function showContent() {
+ $this->areYouSureForm();
+ }
- $id = $this->profile->id;
+ function title() {
+ return _('Block user');
+ }
- common_show_header(_('Block user'));
+ function showNoticeForm() {
+ // nop
+ }
- $this->element('p', null,
- _('Are you sure you want to block this user? '.
- 'Afterwards, they will be unsubscribed from you, '.
- 'unable to subscribe to you in the future, and '.
- 'you will not be notified of any @-replies from them.'));
+ /**
+ * Confirm with user.
+ *
+ * Shows a confirmation form.
+ *
+ * @return void
+ */
+ function areYouSureForm()
+ {
+ // @fixme if we ajaxify the confirmation form, skip the preview on ajax hits
+ $profile = new ArrayWrapper(array($this->profile));
+ $preview = new ProfileList($profile, $this);
+ $preview->show();
+
+ $id = $this->profile->id;
$this->elementStart('form', array('id' => 'block-' . $id,
'method' => 'post',
- 'class' => 'block',
+ 'class' => 'form_settings form_entity_block',
'action' => common_local_url('block')));
-
+ $this->elementStart('fieldset');
$this->hidden('token', common_session_token());
-
+ $this->element('legend', _('Block user'));
+ $this->element('p', null,
+ _('Are you sure you want to block this user? '.
+ 'Afterwards, they will be unsubscribed from you, '.
+ 'unable to subscribe to you in the future, and '.
+ 'you will not be notified of any @-replies from them.'));
$this->element('input', array('id' => 'blockto-' . $id,
- 'name' => 'blockto',
+ 'name' => 'profileid',
'type' => 'hidden',
'value' => $id));
-
foreach ($this->args as $k => $v) {
if (substr($k, 0, 9) == 'returnto-') {
$this->hidden($k, $v);
}
}
-
- $this->submit('no', _('No'));
- $this->submit('yes', _('Yes'));
-
+ $this->submit('form_action-no',
+ // TRANS: Button label on the user block form.
+ _m('BUTTON','No'),
+ 'submit form_action-primary',
+ 'no',
+ // TRANS: Submit button title for 'No' when blocking a user.
+ _('Do not block this user'));
+ $this->submit('form_action-yes',
+ // TRANS: Button label on the user block form.
+ _m('BUTTON','Yes'),
+ 'submit form_action-secondary',
+ 'yes',
+ // TRANS: Submit button title for 'Yes' when blocking a user.
+ _('Block this user'));
+ $this->elementEnd('fieldset');
$this->elementEnd('form');
-
- common_show_footer();
}
- function block_profile()
- {
+ /**
+ * Actually block a user.
+ *
+ * @return void
+ */
+ function handlePost()
+ {
$cur = common_current_user();
- if ($cur->hasBlocked($this->profile)) {
- $this->clientError(_('You have already blocked this user.'));
- return;
+ if (Event::handle('StartBlockProfile', array($cur, $this->profile))) {
+ $result = $cur->block($this->profile);
+ if ($result) {
+ Event::handle('EndBlockProfile', array($cur, $this->profile));
+ }
}
- $result = $cur->block($this->profile);
-
if (!$result) {
$this->serverError(_('Failed to save block information.'));
return;
}
+ }
- # Now, gotta figure where we go back to
+ function showScripts()
+ {
+ parent::showScripts();
+ $this->autofocus('form_action-yes');
+ }
- foreach ($this->args as $k => $v) {
- if ($k == 'returnto-action') {
- $action = $v;
- } else if (substr($k, 0, 9) == 'returnto-') {
- $args[substr($k, 9)] = $v;
- }
+ /**
+ * Override for form session token checks; on our first hit we're just
+ * requesting confirmation, which doesn't need a token. We need to be
+ * able to take regular GET requests from email!
+ *
+ * @throws ClientException if token is bad on POST request or if we have
+ * confirmation parameters which could trigger something.
+ */
+ function checkSessionToken()
+ {
+ if ($_SERVER['REQUEST_METHOD'] == 'POST' ||
+ $this->arg('yes') ||
+ $this->arg('no')) {
+
+ return parent::checkSessionToken();
}
+ }
- if ($action) {
- common_redirect(common_local_url($action, $args));
+ /**
+ * If we reached this form without returnto arguments, return to the
+ * current user's subscription list.
+ *
+ * @return string URL
+ */
+ function defaultReturnTo()
+ {
+ $user = common_current_user();
+ if ($user) {
+ return common_local_url('subscribers',
+ array('nickname' => $user->nickname));
} else {
- common_redirect(common_local_url('subscriptions',
- array('nickname' => $cur->nickname)));
+ return common_local_url('public');
}
}
}