<?php
/**
- * @copyright Copyright (C) 2010-2021, the Friendica project
+ * @copyright Copyright (C) 2010-2022, the Friendica project
*
* @license GNU AGPL version 3 or any later version
*
* @return string
* @throws \Exception
*/
- public static function getMessageContactSelectHTML(int $selected = null)
+ public static function getMessageContactSelectHTML(int $selected = null): string
{
$o = '';
$page->registerStylesheet(Theme::getPathForFile('js/friendica-tagsinput/friendica-tagsinput.css'));
$page->registerStylesheet(Theme::getPathForFile('js/friendica-tagsinput/friendica-tagsinput-typeahead.css'));
- // When used for private messages, we limit correspondence to mutual DFRN/Friendica friends and the selector
- // to one recipient. By default our selector allows multiple selects amongst all contacts.
- $condition = [
- 'uid' => local_user(),
- 'self' => false,
- 'blocked' => false,
- 'pending' => false,
- 'archive' => false,
- 'deleted' => false,
- 'rel' => [Contact::FOLLOWER, Contact::SHARING, Contact::FRIEND],
- 'network' => Protocol::FEDERATED,
- ];
-
- $contacts = Contact::selectToArray(
- ['id', 'name', 'addr', 'micro'],
- DBA::mergeConditions($condition, ["`notify` != ''"])
- );
-
- $arr = ['contact' => $contacts, 'entry' => $o];
-
- Hook::callAll(DI::module()->getName() . '_pre_recipient', $arr);
+ $contacts = self::getValidMessageRecipientsForUser(local_user());
$tpl = Renderer::getMarkupTemplate('acl/message_recipient.tpl');
$o = Renderer::replaceMacros($tpl, [
'$selected' => $selected,
]);
- Hook::callAll(DI::module()->getName() . '_post_recipient', $o);
+ Hook::callAll(DI::args()->getModuleName() . '_post_recipient', $o);
return $o;
}
+ public static function getValidMessageRecipientsForUser(int $uid): array
+ {
+ $condition = [
+ 'uid' => $uid,
+ 'self' => false,
+ 'blocked' => false,
+ 'pending' => false,
+ 'archive' => false,
+ 'deleted' => false,
+ 'rel' => [Contact::FOLLOWER, Contact::SHARING, Contact::FRIEND],
+ 'network' => Protocol::SUPPORT_PRIVATE,
+ ];
+
+ return Contact::selectToArray(
+ ['id', 'name', 'addr', 'micro', 'url', 'nick'],
+ DBA::mergeConditions($condition, ["`notify` != ''"])
+ );
+ }
+
/**
* Returns a minimal ACL block for self-only permissions
*
return $o;
}
+
+ /**
+ * Checks the validity of the given ACL string
+ *
+ * @param string $acl_string
+ * @param int $uid
+ * @return bool
+ * @throws Exception
+ */
+ public static function isValidContact($acl_string, $uid)
+ {
+ if (empty($acl_string)) {
+ return true;
+ }
+
+ // split <x><y><z> into array of cids
+ preg_match_all('/<[A-Za-z0-9]+>/', $acl_string, $array);
+
+ // check for each cid if the contact is valid for the given user
+ $cid_array = $array[0];
+ foreach ($cid_array as $cid) {
+ $cid = str_replace(['<', '>'], ['', ''], $cid);
+ if (!DBA::exists('contact', ['id' => $cid, 'uid' => $uid])) {
+ return false;
+ }
+ }
+
+ return true;
+ }
+
+ /**
+ * Checks the validity of the given ACL string
+ *
+ * @param string $acl_string
+ * @param int $uid
+ * @return bool
+ * @throws Exception
+ */
+ public static function isValidGroup($acl_string, $uid)
+ {
+ if (empty($acl_string)) {
+ return true;
+ }
+
+ // split <x><y><z> into array of cids
+ preg_match_all('/<[A-Za-z0-9]+>/', $acl_string, $array);
+
+ // check for each cid if the contact is valid for the given user
+ $gid_array = $array[0];
+ foreach ($gid_array as $gid) {
+ $gid = str_replace(['<', '>'], ['', ''], $gid);
+ if (!DBA::exists('group', ['id' => $gid, 'uid' => $uid, 'deleted' => false])) {
+ return false;
+ }
+ }
+
+ return true;
+ }
}