<?php
+/**
+ * @copyright Copyright (C) 2020, Friendica
+ *
+ * @license GNU AGPL version 3 or any later version
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU Affero General Public License as
+ * published by the Free Software Foundation, either version 3 of the
+ * License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU Affero General Public License for more details.
+ *
+ * You should have received a copy of the GNU Affero General Public License
+ * along with this program. If not, see <https://www.gnu.org/licenses/>.
+ *
+ */
use Friendica\App;
-use Friendica\Core\System;
-use Friendica\Database\DBM;
+use Friendica\Network\HTTPException;
+use Friendica\Core\Logger;
+use Friendica\Core\Session;
+use Friendica\Model\Item;
+use Friendica\Util\Strings;
-require_once('include/security.php');
-require_once('include/bbcode.php');
-require_once('include/items.php');
-
-function subthread_content(App $a) {
-
- if(! local_user() && ! remote_user()) {
- return;
- }
-
- $activity = ACTIVITY_FOLLOW;
-
- $item_id = (($a->argc > 1) ? notags(trim($a->argv[1])) : 0);
-
- $r = q("SELECT * FROM `item` WHERE `parent` = '%s' OR `parent-uri` = '%s' and parent = id LIMIT 1",
- dbesc($item_id),
- dbesc($item_id)
- );
-
- if(! $item_id || (! DBM::is_result($r))) {
- logger('subthread: no item ' . $item_id);
- return;
- }
-
- $item = $r[0];
-
- $owner_uid = $item['uid'];
-
- if(! can_write_wall($owner_uid)) {
- return;
- }
-
- $remote_owner = null;
-
- if(! $item['wall']) {
- // The top level post may have been written by somebody on another system
- $r = q("SELECT * FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1",
- intval($item['contact-id']),
- intval($item['uid'])
- );
- if (! DBM::is_result($r)) {
- return;
- }
- if (! $r[0]['self']) {
- $remote_owner = $r[0];
- }
- }
-
- // this represents the post owner on this system.
-
- $r = q("SELECT `contact`.*, `user`.`nickname` FROM `contact` LEFT JOIN `user` ON `contact`.`uid` = `user`.`uid`
- WHERE `contact`.`self` = 1 AND `contact`.`uid` = %d LIMIT 1",
- intval($owner_uid)
- );
- if (DBM::is_result($r))
- $owner = $r[0];
-
- if (! $owner) {
- logger('like: no owner');
- return;
- }
-
- if (! $remote_owner)
- $remote_owner = $owner;
-
-
- // This represents the person posting
-
- if ((local_user()) && (local_user() == $owner_uid)) {
- $contact = $owner;
- } else {
- $r = q("SELECT * FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1",
- intval($_SESSION['visitor_id']),
- intval($owner_uid)
- );
- if (DBM::is_result($r))
- $contact = $r[0];
- }
- if (! $contact) {
- return;
- }
-
- $uri = item_new_uri($a->get_hostname(),$owner_uid);
-
- $post_type = (($item['resource-id']) ? t('photo') : t('status'));
- $objtype = (($item['resource-id']) ? ACTIVITY_OBJ_IMAGE : ACTIVITY_OBJ_NOTE );
- $link = xmlify('<link rel="alternate" type="text/html" href="' . System::baseUrl() . '/display/' . $owner['nickname'] . '/' . $item['id'] . '" />' . "\n") ;
- $body = $item['body'];
-
- $obj = <<< EOT
-
- <object>
- <type>$objtype</type>
- <local>1</local>
- <id>{$item['uri']}</id>
- <link>$link</link>
- <title></title>
- <content>$body</content>
- </object>
-EOT;
- $bodyverb = t('%1$s is following %2$s\'s %3$s');
-
- if (! isset($bodyverb)) {
- return;
+function subthread_content(App $a)
+{
+ if (!Session::isAuthenticated()) {
+ throw new HTTPException\ForbiddenException();
}
- $arr = [];
+ $item_id = (($a->argc > 1) ? Strings::escapeTags(trim($a->argv[1])) : 0);
- $arr['guid'] = get_guid(32);
- $arr['uri'] = $uri;
- $arr['uid'] = $owner_uid;
- $arr['contact-id'] = $contact['id'];
- $arr['type'] = 'activity';
- $arr['wall'] = $item['wall'];
- $arr['origin'] = 1;
- $arr['gravity'] = GRAVITY_LIKE;
- $arr['parent'] = $item['id'];
- $arr['parent-uri'] = $item['uri'];
- $arr['thr-parent'] = $item['uri'];
- $arr['owner-name'] = $remote_owner['name'];
- $arr['owner-link'] = $remote_owner['url'];
- $arr['owner-avatar'] = $remote_owner['thumb'];
- $arr['author-name'] = $contact['name'];
- $arr['author-link'] = $contact['url'];
- $arr['author-avatar'] = $contact['thumb'];
-
- $ulink = '[url=' . $contact['url'] . ']' . $contact['name'] . '[/url]';
- $alink = '[url=' . $item['author-link'] . ']' . $item['author-name'] . '[/url]';
- $plink = '[url=' . System::baseUrl() . '/display/' . $owner['nickname'] . '/' . $item['id'] . ']' . $post_type . '[/url]';
- $arr['body'] = sprintf( $bodyverb, $ulink, $alink, $plink );
-
- $arr['verb'] = $activity;
- $arr['object-type'] = $objtype;
- $arr['object'] = $obj;
- $arr['allow_cid'] = $item['allow_cid'];
- $arr['allow_gid'] = $item['allow_gid'];
- $arr['deny_cid'] = $item['deny_cid'];
- $arr['deny_gid'] = $item['deny_gid'];
- $arr['visible'] = 1;
- $arr['unseen'] = 1;
- $arr['last-child'] = 0;
-
- $post_id = item_store($arr);
-
- if (! $item['visible']) {
- $r = q("UPDATE `item` SET `visible` = 1 WHERE `id` = %d AND `uid` = %d",
- intval($item['id']),
- intval($owner_uid)
- );
+ if (!Item::performActivity($item_id, 'follow', local_user())) {
+ Logger::info('Following item failed', ['item' => $item_id]);
+ throw new HTTPException\BadRequestException();
}
-
- $arr['id'] = $post_id;
-
- call_hooks('post_local_end', $arr);
-
- killme();
-
+ Logger::info('Followed item', ['item' => $item_id]);
+ return;
}
-
-
projects / friendica.git / blobdiff