X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=actions%2Fnewnotice.php;h=b6ed87f8157bc7bf967297f8d9f22e9774aef923;hb=f7d6d4448fff25351f3f0d9b4d6d1ee02044e263;hp=50d676eb50c659a8df1798b3a186d329770352a1;hpb=a88e18e5af2383f209fada762721a06488749d7f;p=quix0rs-gnu-social.git

diff --git a/actions/newnotice.php b/actions/newnotice.php
index 50d676eb50..b6ed87f815 100644
--- a/actions/newnotice.php
+++ b/actions/newnotice.php
@@ -1,65 +1,161 @@
 <?php
-/* 
+/*
  * Laconica - a distributed open-source microblogging tool
  * Copyright (C) 2008, Controlez-Vous, Inc.
- * 
+ *
  * This program is free software: you can redistribute it and/or modify
  * it under the terms of the GNU Affero General Public License as published by
  * the Free Software Foundation, either version 3 of the License, or
  * (at your option) any later version.
- * 
+ *
  * This program is distributed in the hope that it will be useful,
  * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.     See the
  * GNU Affero General Public License for more details.
- * 
+ *
  * You should have received a copy of the GNU Affero General Public License
- * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ * along with this program.     If not, see <http://www.gnu.org/licenses/>.
  */
 
 if (!defined('LACONICA')) { exit(1); }
 
-class NewnoticeAction extends Action {
-	
-	function handle($args) {
-		parent::handle($args);
-		# XXX: Ajax!
-
-		if (!common_logged_in()) {
-			common_user_error(_t('Not logged in.'));
-		} else if ($_SERVER['REQUEST_METHOD'] == 'POST') {
-			$id = $this->save_new_notice();
-			if ($id) {
-				common_broadcast_notices($id);
-				common_redirect(common_local_url('shownotice',
-												 array('notice' => $id)), 303);
-			} else {
-				common_server_error(_t('Problem saving notice.'));
-			}
-		} else {
-			$this->show_form();
-		}
-	}
-	
-	function save_new_notice() {
-		$user = common_current_user();
-		assert($user); # XXX: maybe an error instead...
-		$notice = DB_DataObject::factory('notice');
-		assert($notice);
-		$notice->profile_id = $user->id; # user id *is* profile id
-		$notice->content = $this->arg('content');
-		$notice->created = date(DATE_RFC822); # current time
-		return $notice->insert();
-	}
-	
-	function show_form() {
-		common_element_start('form', array('id' => 'newnotice', 'method' => 'POST',
-										   'action' => common_local_url('newnotice')));
-		common_element('span', 'nickname', $profile->nickname);
-		common_element('textarea', array('rows' => 4, 'cols' => 80,
-										 'name' => 'content', 
-										 'id' => 'content'));
-		common_element('input', array('type' => 'submit', 'value' => 'Send'));
-		common_element_end('form');
-	}
-}
\ No newline at end of file
+require_once INSTALLDIR . '/lib/noticelist.php';
+
+class NewnoticeAction extends Action
+{
+
+    function handle($args)
+    {
+        parent::handle($args);
+
+        if (!common_logged_in()) {
+            $this->clientError(_('Not logged in.'));
+        } else if ($_SERVER['REQUEST_METHOD'] == 'POST') {
+
+            # CSRF protection - token set in common_notice_form()
+            $token = $this->trimmed('token');
+            if (!$token || $token != common_session_token()) {
+                $this->clientError(_('There was a problem with your session token. Try again, please.'));
+                return;
+            }
+
+            $this->save_new_notice();
+        } else {
+            $this->show_form();
+        }
+    }
+
+    function save_new_notice()
+    {
+
+        $user = common_current_user();
+        assert($user); # XXX: maybe an error instead...
+        $content = $this->trimmed('status_textarea');
+
+        if (!$content) {
+            $this->show_form(_('No content!'));
+            return;
+        } else {
+            $content_shortened = common_shorten_links($content);
+
+            if (mb_strlen($content_shortened) > 140) {
+                common_debug("Content = '$content_shortened'", __FILE__);
+                common_debug("mb_strlen(\$content) = " . mb_strlen($content_shortened), __FILE__);
+                $this->show_form(_('That\'s too long. Max notice size is 140 chars.'));
+                return;
+            }
+        }
+
+        $inter = new CommandInterpreter();
+
+        $cmd = $inter->handle_command($user, $content_shortened);
+
+        if ($cmd) {
+            if ($this->boolean('ajax')) {
+                $cmd->execute(new AjaxWebChannel());
+            } else {
+                $cmd->execute(new WebChannel());
+            }
+            return;
+        }
+
+        $replyto = $this->trimmed('inreplyto');
+
+        $notice = Notice::saveNew($user->id, $content, 'web', 1, ($replyto == 'false') ? null : $replyto);
+
+        if (is_string($notice)) {
+            $this->show_form($notice);
+            return;
+        }
+
+        common_broadcast_notice($notice);
+
+        if ($this->boolean('ajax')) {
+            $this->startHTML('text/xml;charset=utf-8', true);
+            $this->elementStart('head');
+            $this->element('title', null, _('Notice posted'));
+            $this->elementEnd('head');
+            $this->elementStart('body');
+            $this->show_notice($notice);
+            $this->elementEnd('body');
+            $this->elementEnd('html');
+        } else {
+            $returnto = $this->trimmed('returnto');
+
+            if ($returnto) {
+                $url = common_local_url($returnto,
+                                        array('nickname' => $user->nickname));
+            } else {
+                $url = common_local_url('shownotice',
+                                        array('notice' => $notice->id));
+            }
+            common_redirect($url, 303);
+        }
+    }
+
+    function ajax_error_msg($msg)
+    {
+        common_start_html('text/xml;charset=utf-8', true);
+        $this->elementStart('head');
+        $this->element('title', null, _('Ajax Error'));
+        $this->elementEnd('head');
+        $this->elementStart('body');
+        $this->element('p', array('id' => 'error'), $msg);
+        $this->elementEnd('body');
+        $this->elementEnd('html');
+    }
+
+    function show_top($content=null)
+    {
+        common_notice_form(null, $content);
+    }
+
+    function show_form($msg=null)
+    {
+        if ($msg && $this->boolean('ajax')) {
+            $this->ajax_error_msg($msg);
+            return;
+        }
+        $content = $this->trimmed('status_textarea');
+        if (!$content) {
+            $replyto = $this->trimmed('replyto');
+            $profile = Profile::staticGet('nickname', $replyto);
+            if ($profile) {
+                $content = '@' . $profile->nickname . ' ';
+            }
+        }
+        common_show_header(_('New notice'), null, $content,
+                           array($this, 'show_top'));
+        if ($msg) {
+            $this->element('p', array('id' => 'error'), $msg);
+        }
+        common_show_footer();
+    }
+
+    function show_notice($notice)
+    {
+        $nli = new NoticeListItem($notice);
+        $nli->show();
+    }
+
+}