X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=mod%2Fgroup.php;h=a282dbccf571c8ff5558a099c928b666235545da;hb=ffd5217ffaab826eb7f16c112a9f39b548298b81;hp=16298e63ec118d489a493acf63537c9379da93f3;hpb=83dc89d8594e5de56f7bdc173048e93a5c73d488;p=friendica.git

diff --git a/mod/group.php b/mod/group.php
index 16298e63ec..a282dbccf5 100644
--- a/mod/group.php
+++ b/mod/group.php
@@ -1,10 +1,14 @@
 <?php
 
-
+function validate_members(&$item) {
+	$item = intval($item);
+}
 
 function group_init(&$a) {
-	require_once('include/group.php');
-
+	if(local_user()) {
+		require_once('include/group.php');
+		$a->page['aside'] = group_side('contacts','group',false,(($a->argc > 1) ? intval($a->argv[1]) : 0));
+	}
 }
 
 
@@ -12,45 +16,217 @@ function group_init(&$a) {
 function group_post(&$a) {
 
 	if(! local_user()) {
-		notice("Access denied." . EOL);
+		notice( t('Permission denied.') . EOL);
 		return;
 	}
 
-	if(($a->argc == 2) && ($a->argv[1] == 'new')) {
+	if(($a->argc == 2) && ($a->argv[1] === 'new')) {
+		check_form_security_token_redirectOnErr('/group/new', 'group_edit');
+		
 		$name = notags(trim($_POST['groupname']));
-		$r = group_add($_SESSION['uid'],$name);
+		$r = group_add(local_user(),$name);
 		if($r) {
-			notice("Group created." . EOL );
-			$r = group_byname($_SESSION['uid'],$name);
+			info( t('Group created.') . EOL );
+			$r = group_byname(local_user(),$name);
 			if($r)
 				goaway($a->get_baseurl() . '/group/' . $r);
 		}
 		else
-			notice("Could not create group." . EOL );	
-//		goaway($a->get_baseurl() . '/group');
+			notice( t('Could not create group.') . EOL );	
+		goaway($a->get_baseurl() . '/group');
 		return; // NOTREACHED
 	}
+	if(($a->argc == 2) && (intval($a->argv[1]))) {
+		check_form_security_token_redirectOnErr('/group', 'group_edit');
+		
+		$r = q("SELECT * FROM `group` WHERE `id` = %d AND `uid` = %d LIMIT 1",
+			intval($a->argv[1]),
+			intval(local_user())
+		);
+		if(! count($r)) {
+			notice( t('Group not found.') . EOL );
+			goaway($a->get_baseurl() . '/contacts');
+			return; // NOTREACHED
+		}
+		$group = $r[0];
+		$groupname = notags(trim($_POST['groupname']));
+		if((strlen($groupname))  && ($groupname != $group['name'])) {
+			$r = q("UPDATE `group` SET `name` = '%s' WHERE `uid` = %d AND `id` = %d LIMIT 1",
+				dbesc($groupname),
+				intval(local_user()),
+				intval($group['id'])
+			);
+			if($r)
+				info( t('Group name changed.') . EOL );
+		}
 
+		$a->page['aside'] = group_side();
+	}
+	return;	
 }
 
 function group_content(&$a) {
-
+	$change = false;
+	
 	if(! local_user()) {
-		notice("Access denied." . EOL);
+		notice( t('Permission denied') . EOL);
 		return;
 	}
 
-	if(($a->argc == 2) && ($a->argv[1] == 'new')) {
-		$tpl = file_get_contents('view/group_new.tpl');
-		$o .= replace_macros($tpl,array(
+	// Switch to text mode interface if we have more than 'n' contacts or group members
+
+	$switchtotext = get_pconfig(local_user(),'system','groupedit_image_limit');
+	if($switchtotext === false)
+		$switchtotext = get_config('system','groupedit_image_limit');
+	if($switchtotext === false)
+		$switchtotext = 400;
 
+	$tpl = get_markup_template('group_edit.tpl');
+	$context = array('$submit' => t('Submit'));
+
+	if(($a->argc == 2) && ($a->argv[1] === 'new')) {
+		
+		return replace_macros($tpl, $context + array(
+			'$title' => t('Create a group of contacts/friends.'),
+			'$gname' => array('groupname',t('Group Name: '), '', ''),
+			'$gid' => 'new',
+			'$form_security_token' => get_form_security_token("group_edit"),
 		));
 
 
+	}
 
+	if(($a->argc == 3) && ($a->argv[1] === 'drop')) {
+		check_form_security_token_redirectOnErr('/group', 'group_drop', 't');
+		
+		if(intval($a->argv[2])) {
+			$r = q("SELECT `name` FROM `group` WHERE `id` = %d AND `uid` = %d LIMIT 1",
+				intval($a->argv[2]),
+				intval(local_user())
+			);
+			if(count($r)) 
+				$result = group_rmv(local_user(),$r[0]['name']);
+			if($result)
+				info( t('Group removed.') . EOL);
+			else
+				notice( t('Unable to remove group.') . EOL);
+		}
+		goaway($a->get_baseurl() . '/group');
+		// NOTREACHED
+	}
 
+	if(($a->argc > 2) && intval($a->argv[1]) && intval($a->argv[2])) {
+		check_form_security_token_ForbiddenOnErr('group_member_change', 't');
+		
+		$r = q("SELECT `id` FROM `contact` WHERE `id` = %d AND `uid` = %d and `self` = 0 and `blocked` = 0 AND `pending` = 0 LIMIT 1",
+			intval($a->argv[2]),
+			intval(local_user())
+		);
+		if(count($r))
+			$change = intval($a->argv[2]);
 	}
+
+	if(($a->argc > 1) && (intval($a->argv[1]))) {
+
+		require_once('include/acl_selectors.php');
+		$r = q("SELECT * FROM `group` WHERE `id` = %d AND `uid` = %d AND `deleted` = 0 LIMIT 1",
+			intval($a->argv[1]),
+			intval(local_user())
+		);
+		if(! count($r)) {
+			notice( t('Group not found.') . EOL );
+			goaway($a->get_baseurl() . '/contacts');
+		}
+		$group = $r[0];
+		$members = group_get_members($group['id']);
+		$preselected = array();
+		if(count($members))	{
+			foreach($members as $member)
+				$preselected[] = $member['id'];
+		}
+
+		if($change) {
+			if(in_array($change,$preselected)) {
+				group_rmv_member(local_user(),$group['name'],$change);
+			}
+			else {
+				group_add_member(local_user(),$group['name'],$change);
+			}
+
+			$members = group_get_members($group['id']);
+			$preselected = array();
+			if(count($members))	{
+				foreach($members as $member)
+					$preselected[] = $member['id'];
+			}
+		}
+
+
+		$drop_tpl = get_markup_template('group_drop.tpl');
+		$drop_txt = replace_macros($drop_tpl, array(
+			'$id' => $group['id'],
+			'$delete' => t('Delete'),
+			'$form_security_token' => get_form_security_token("group_drop"),
+		));
+
+		$celeb = ((($a->user['page-flags'] == PAGE_SOAPBOX) || ($a->user['page-flags'] == PAGE_COMMUNITY)) ? true : false);
+
+		
+		$context = $context + array(
+			'$title' => t('Group Editor'),
+			'$gname' => array('groupname',t('Group Name: '),$group['name'], ''),
+			'$gid' => $group['id'],
+			'$drop' => $drop_txt,
+			'$form_security_token' => get_form_security_token('group_edit'),
+		);
+
+	}
+
+	if(! isset($group))
+		return;
+
+	$groupeditor = array(
+		'label_members' => t('Members'),
+		'members' => array(),
+		'label_contacts' => t('All Contacts'),
+		'contacts' => array(),
+	);
 		
-	return $o;
+	$sec_token = addslashes(get_form_security_token('group_member_change'));
+	$textmode = (($switchtotext && (count($members) > $switchtotext)) ? true : false);
+	foreach($members as $member) {
+		if($member['url']) {
+			$member['click'] = 'groupChangeMember(' . $group['id'] . ',' . $member['id'] . ',\'' . $sec_token . '\'); return true;';
+			$groupeditor['members'][] = micropro($member,true,'mpgroup', $textmode);
+		}
+		else
+			group_rmv_member(local_user(),$group['name'],$member['id']);
+	}
+
+	$r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `blocked` = 0 and `pending` = 0 and `self` = 0 ORDER BY `name` ASC",
+		intval(local_user())
+	);
+
+	if(count($r)) {
+		$textmode = (($switchtotext && (count($r) > $switchtotext)) ? true : false);
+		foreach($r as $member) {
+			if(! in_array($member['id'],$preselected)) {
+				$member['click'] = 'groupChangeMember(' . $group['id'] . ',' . $member['id'] . ',\'' . $sec_token . '\'); return true;';
+				$groupeditor['contacts'][] = micropro($member,true,'mpall', $textmode);
+			}
+		}
+	}
+
+	$context['$groupeditor'] = $groupeditor;
+	$context['$desc'] = t('Click on a contact to add or remove.');
+
+	if($change) {
+		$tpl = get_markup_template('groupeditor.tpl');
+		echo replace_macros($tpl, $context);
+		killme();
+	}
+	
+	return replace_macros($tpl, $context);
+
+}
 
-}
\ No newline at end of file