aboutsummaryrefslogblamecommitdiffstats
path: root/Zotlabs/Module/Like.php
blob: c1fefcb89456185028deedbcec353048745c7d05 (plain) (tree)



































































































































































































































                                                                                                                                                                                          
                                                                    




































                                                                                                               



                                                                                                        
                                      










                                                                                                     
































































                                                                                                                                                       
                                                                                                           




































































































                                                                                                                                                                  
                                                                                                                          

































                                                                                                                                        
                                                











                                                     

                                              


































                                                                                                                                                                          
                                                                                  












                                                              
<?php
namespace Zotlabs\Module;

require_once('include/security.php');
require_once('include/bbcode.php');
require_once('include/items.php');



class Like extends \Zotlabs\Web\Controller {

	function get() {
	
		$o = '';
	
		$observer = \App::get_observer();
		$interactive = $_REQUEST['interactive'];
		if($interactive) {
			$o .= '<h1>' . t('Like/Dislike') . '</h1>';
			$o .= EOL . EOL;
	
			if(! $observer) {
				$_SESSION['return_url'] = \App::$query_string;
				$o .= t('This action is restricted to members.') . EOL;
				$o .= t('Please <a href="rmagic">login with your $Projectname ID</a> or <a href="register">register as a new $Projectname member</a> to continue.') . EOL;
				return $o;
			}
		}
	
		$verb = notags(trim($_GET['verb']));
	
		if(! $verb)
			$verb = 'like';
	
		switch($verb) {
			case 'like':
			case 'unlike':
				$activity = ACTIVITY_LIKE;
				break;
			case 'dislike':
			case 'undislike':
				$activity = ACTIVITY_DISLIKE;
				break;
			case 'agree':
			case 'unagree':
				$activity = ACTIVITY_AGREE;
				break;
			case 'disagree':
			case 'undisagree':
				$activity = ACTIVITY_DISAGREE;
				break;
			case 'abstain':
			case 'unabstain':
				$activity = ACTIVITY_ABSTAIN;
				break;
			case 'attendyes':
			case 'unattendyes':
				$activity = ACTIVITY_ATTEND;
				break;
			case 'attendno':
			case 'unattendno':
				$activity = ACTIVITY_ATTENDNO;
				break;
			case 'attendmaybe':
			case 'unattendmaybe':
				$activity = ACTIVITY_ATTENDMAYBE;
				break;
			default:
				return;
				break;
		}
	
		$extended_like = false;
		$object = $target = null;
		$post_type = '';
		$objtype = '';
	
		if(argc() == 3) {
	
			if(! $observer)
				killme();
	
			$extended_like = true;
			$obj_type = argv(1);
			$obj_id = argv(2);
			$public = true;
	
			if($obj_type == 'profile') {
				$r = q("select * from profile where profile_guid = '%s' limit 1",
					dbesc(argv(2))
				);
				if(! $r)
					killme();			
				$owner_uid = $r[0]['uid'];
				if($r[0]['is_default'])
					$public = true;
				if(! $public) {
					$d = q("select abook_xchan from abook where abook_profile = '%s' and abook_channel = %d",
						dbesc($r[0]['profile_guid']),
						intval($owner_uid)
					);
					if(! $d) {
						// forgery - illegal
						if($interactive) {
							notice( t('Invalid request.') . EOL);
							return $o;
						}
						killme();
					}
					// $d now contains a list of those who can see this profile - only send the status notification
					// to them.
					$allow_cid = $allow_gid = $deny_cid = $deny_gid = '';
					foreach($d as $dd) {
						$allow_cid .= '<' . $dd['abook_xchan'] . '>';
					}
				}
				$post_type = t('channel');
				$objtype = ACTIVITY_OBJ_PROFILE;
	
				$profile = $r[0];
			}
			elseif($obj_type == 'thing') {
	
				$r = q("select * from obj where obj_type = %d and obj_obj = '%s' limit 1",
	            	intval(TERM_OBJ_THING),
	            	dbesc(argv(2))
	        	);
	
				if(! $r) {
					if($interactive) {
						notice( t('Invalid request.') . EOL);
						return $o;
					}
					killme();		
				}
	
				$owner_uid = $r[0]['obj_channel'];
	
				$allow_cid = $r[0]['allow_cid'];
				$allow_gid = $r[0]['allow_gid'];
				$deny_cid = $r[0]['deny_cid'];
				$deny_gid = $r[0]['deny_gid'];
				if($allow_cid || $allow_gid || $deny_cid || $deny_gid)			
					$public = false;
	
				$post_type = t('thing');
				$objtype = ACTIVITY_OBJ_PROFILE;
				$tgttype = ACTIVITY_OBJ_THING;
	
				$links   = array();
				$links[] = array('rel' => 'alternate', 'type' => 'text/html',
					'href' => z_root() . '/thing/' . $r[0]['obj_obj']);
				if($r[0]['imgurl'])	
					$links[] = array('rel' => 'photo', 'href' => $r[0]['obj_imgurl']);
	
				$target = json_encode(array(
					'type'  => $tgttype,
					'title' => $r[0]['obj_term'],
					'id'    => z_root() . '/thing/' . $r[0]['obj_obj'],
					'link'  => $links
				));
	
				$plink = '[zrl=' . z_root() . '/thing/' . $r[0]['obj_obj'] . ']' . $r[0]['obj_term'] . '[/zrl]';
	
			}
			
			if(! ($owner_uid && $r)) {
				if($interactive) {
					notice( t('Invalid request.') . EOL);
					return $o;
				}
				killme();
			}
	
			// The resultant activity is going to be a wall-to-wall post, so make sure this is allowed
	
			$perms = get_all_perms($owner_uid,$observer['xchan_hash']);
	
			if(! ($perms['post_like'] && $perms['view_profile'])) {
				if($interactive) {
					notice( t('Permission denied.') . EOL);
					return $o;
				}
				killme();
			}
	
			$ch = q("select * from channel left join xchan on channel_hash = xchan_hash where channel_id = %d limit 1",
				intval($owner_uid)
			);
			if(! $ch) {
				if($interactive) {
					notice( t('Channel unavailable.') . EOL);
					return $o;
				}
				killme();
			}
				
			if(! $plink)
				$plink = '[zrl=' . z_root() . '/profile/' . $ch[0]['channel_address'] . ']' . $post_type . '[/zrl]';
		
			$links   = array();
			$links[] = array('rel' => 'alternate', 'type' => 'text/html',
				'href' => z_root() . '/profile/' . $ch[0]['channel_address']);
			$links[] = array('rel' => 'photo', 'type' => $ch[0]['xchan_photo_mimetype'],
				'href' => $ch[0]['xchan_photo_l']);
	
			$object = json_encode(array(
				'type'  => ACTIVITY_OBJ_PROFILE,
				'title' => $ch[0]['channel_name'],
				'id'    => $ch[0]['xchan_url'] . '/' . $ch[0]['xchan_hash'],
				'link'  => $links
			));
	
	
			// second like of the same thing is "undo" for the first like
	
			$z = q("select * from likes where channel_id = %d and liker = '%s' and verb = '%s' and target_type = '%s' and target_id = '%s' limit 1",
				intval($ch[0]['channel_id']),
				dbesc($observer['xchan_hash']),
				dbesc($activity),
				dbesc(($tgttype)?$tgttype:$objtype),
				dbesc($obj_id)
			);
	
			if($z) {
				$z[0]['deleted'] = 1;
				build_sync_packet($ch[0]['channel_id'],array('likes' => $z));
	
				q("delete from likes where id = %d",
					intval($z[0]['id'])
				);
				if($z[0]['i_mid']) {
					$r = q("select id from item where mid = '%s' and uid = %d limit 1",
						dbesc($z[0]['i_mid']),
						intval($ch[0]['channel_id'])
					);
					if($r)
						drop_item($r[0]['id'],false);
					if($interactive) {
						notice( t('Previous action reversed.') . EOL);
						return $o;
					}
				}
				killme();
			}
		}
		else {
	
			// this is used to like an item or comment
	
			$item_id = ((argc() == 2) ? notags(trim(argv(1))) : 0);
	
			logger('like: verb ' . $verb . ' item ' . $item_id, LOGGER_DEBUG);
	
			// get the item. Allow linked photos (which are normally hidden) to be liked
	
			$r = q("SELECT * FROM item WHERE id = %d 
				and item_type = 0 and item_deleted = 0 and item_unpublished = 0 
				and item_delayed = 0 and item_pending_remove = 0 and item_blocked = 0 LIMIT 1",
				intval($item_id)
			);
	
			if(! $item_id || (! $r)) {
				logger('like: no item ' . $item_id);
				killme();
			}


			xchan_query($r,true,(($r[0]['uid'] == local_channel()) ? 0 : local_channel()));	

			$item = $r[0];

			$owner_uid = $r[0]['uid'];
			$owner_aid = $r[0]['aid'];

            $can_comment = false;
            if((array_key_exists('owner',$item)) && intval($item['owner']['abook_self']))
                $can_comment = perm_is_allowed($item['uid'],$observer['xchan_hash'],'post_comments');
            else
                $can_comment = can_comment_on_post($observer['xchan_hash'],$item);

            if(! $can_comment) {
				notice( t('Permission denied') . EOL);
				killme();
			}
	
			$r = q("select * from xchan where xchan_hash = '%s' limit 1",
				dbesc($item['owner_xchan'])
			);
			if($r)
				$thread_owner = $r[0];
			else
				killme();
	
			$r = q("select * from xchan where xchan_hash = '%s' limit 1",
				dbesc($item['author_xchan'])
			);
			if($r)
				$item_author = $r[0];
			else
				killme();
	
			
			$verbs = " '".dbesc($activity)."' ";
	
			$multi_undo = false;		
	
			// event participation and consensus items are essentially radio toggles. If you make a subsequent choice,
			// we need to eradicate your first choice. 
	
			if($activity === ACTIVITY_ATTEND || $activity === ACTIVITY_ATTENDNO || $activity === ACTIVITY_ATTENDMAYBE) {
				$verbs = " '" . dbesc(ACTIVITY_ATTEND) . "','" . dbesc(ACTIVITY_ATTENDNO) . "','" . dbesc(ACTIVITY_ATTENDMAYBE) . "' ";
				$multi_undo = 1;
			}
			if($activity === ACTIVITY_AGREE || $activity === ACTIVITY_DISAGREE || $activity === ACTIVITY_ABSTAIN) {
				$verbs = " '" . dbesc(ACTIVITY_AGREE) . "','" . dbesc(ACTIVITY_DISAGREE) . "','" . dbesc(ACTIVITY_ABSTAIN) . "' ";
				$multi_undo = true;
			}
	
			$item_normal = item_normal();
	
			$r = q("SELECT id, parent, uid, verb FROM item WHERE verb in ( $verbs ) $item_normal
				AND author_xchan = '%s' AND thr_parent = '%s' and uid = %d ",
				dbesc($observer['xchan_hash']),
				dbesc($item['mid']),
				intval($owner_uid)
			);
	
			if($r) {
				// already liked it. Drop that item.
				require_once('include/items.php');
				foreach($r as $rr) {
					drop_item($rr['id'],false,DROPITEM_PHASE1);
					// set the changed timestamp on the parent so we'll see the update without a page reload
					$z = q("update item set changed = '%s' where id = %d and uid = %d",
						dbesc(datetime_convert()),
						intval($rr['parent']),
						intval($rr['uid'])
					);
					// Prior activity was a duplicate of the one we're submitting, just undo it; 
					// don't fall through and create another
					if(activity_match($rr['verb'],$activity))
						$multi_undo = false;
	
					// drop_item was not done interactively, so we need to invoke the notifier
					// in order to push the changes to connections
	
					\Zotlabs\Daemon\Master::Summon(array('Notifier','drop',$rr['id']));
	
				}
	
				if($interactive)
					return;
	
				if(! $multi_undo)
					killme();
			}
		}
	
		$mid = item_message_id();
	
		$arr = array();
	
		if($extended_like) {
			$arr['item_thread_top'] = 1;
			$arr['item_origin'] = 1;
			$arr['item_wall'] = 1;
		}
		else {
			$post_type = (($item['resource_type'] === 'photo') ? t('photo') : t('status'));
			if($item['obj_type'] === ACTIVITY_OBJ_EVENT)
				$post_type = t('event');
	
			$links = array(array('rel' => 'alternate','type' => 'text/html', 'href' => $item['plink']));
			$objtype = (($item['resource_type'] === 'photo') ? ACTIVITY_OBJ_PHOTO : ACTIVITY_OBJ_NOTE ); 
	
			$body = $item['body'];
	
			$object = json_encode(array(
				'type'    => $objtype,
				'id'      => $item['mid'],
				'parent'  => (($item['thr_parent']) ? $item['thr_parent'] : $item['parent_mid']),
				'link'    => $links,
				'title'   => $item['title'],
				'content' => $item['body'],
				'created' => $item['created'],
				'edited'  => $item['edited'],
				'author'  => array(
					'name'     => $item_author['xchan_name'],
					'address'  => $item_author['xchan_addr'],
					'guid'     => $item_author['xchan_guid'],
					'guid_sig' => $item_author['xchan_guid_sig'],
					'link'     => array(
						array('rel' => 'alternate', 'type' => 'text/html', 'href' => $item_author['xchan_url']),
						array('rel' => 'photo', 'type' => $item_author['xchan_photo_mimetype'], 'href' => $item_author['xchan_photo_m'])),
					),
			));
	
			if(! intval($item['item_thread_top']))
				$post_type = 'comment';		
	
			$arr['item_origin'] = 1;
			$arr['item_notshown'] = 1;
	
			if(intval($item['item_wall']))
				$arr['item_wall'] = 1;
	
			// if this was a linked photo and was hidden, unhide it.
	
			if(intval($item['item_hidden'])) {
				$r = q("update item set item_hidden = 0 where id = %d",
					intval($item['id'])
				);
			}	
	
		}
	
		if($verb === 'like')
			$bodyverb = t('%1$s likes %2$s\'s %3$s');
		if($verb === 'dislike')
			$bodyverb = t('%1$s doesn\'t like %2$s\'s %3$s');
		if($verb === 'agree')
			$bodyverb = t('%1$s agrees with %2$s\'s %3$s');
		if($verb === 'disagree')
			$bodyverb = t('%1$s doesn\'t agree with %2$s\'s %3$s');
		if($verb === 'abstain')
			$bodyverb = t('%1$s abstains from a decision on %2$s\'s %3$s');
		if($verb === 'attendyes')
			$bodyverb = t('%1$s is attending %2$s\'s %3$s');
		if($verb === 'attendno')
			$bodyverb = t('%1$s is not attending %2$s\'s %3$s');
		if($verb === 'attendmaybe')
			$bodyverb = t('%1$s may attend %2$s\'s %3$s');
	
		if(! isset($bodyverb))
				killme(); 
	
		
	
		if($extended_like) {
			$ulink = '[zrl=' . $ch[0]['xchan_url'] . ']' . $ch[0]['xchan_name'] . '[/zrl]';
			$alink = '[zrl=' . $observer['xchan_url'] . ']' . $observer['xchan_name'] . '[/zrl]';
			$private = (($public) ? 0 : 1);
		}
		else {
			$arr['parent']       = $item['id'];
			$arr['thr_parent']   = $item['mid'];
			$ulink = '[zrl=' . $item_author['xchan_url'] . ']' . $item_author['xchan_name'] . '[/zrl]';
			$alink = '[zrl=' . $observer['xchan_url'] . ']' . $observer['xchan_name'] . '[/zrl]';
			$plink = '[zrl=' . z_root() . '/display/' . urlencode($item['mid']) . ']' . $post_type . '[/zrl]';
			$allow_cid       = $item['allow_cid'];
			$allow_gid       = $item['allow_gid'];
			$deny_cid        = $item['deny_cid'];
			$deny_gid        = $item['deny_gid'];
			$private         = $item['private'];
	
		}
		
	
		$arr['mid']          = $mid;
		$arr['aid']          = (($extended_like) ? $ch[0]['channel_account_id'] : $owner_aid);
		$arr['uid']          = $owner_uid;
		$arr['item_flags']   = $item_flags;
		$arr['item_wall']    = $item_wall;
		$arr['parent_mid']   = (($extended_like) ? $mid : $item['mid']);
		$arr['owner_xchan']  = (($extended_like) ? $ch[0]['xchan_hash'] : $thread_owner['xchan_hash']);
		$arr['author_xchan'] = $observer['xchan_hash'];
	
		
		$arr['body']          =  sprintf( $bodyverb, $alink, $ulink, $plink );
		if($obj_type === 'thing' && $r[0]['imgurl']) {
			$arr['body'] .= "\n\n[zmg=80x80]" . $r[0]['imgurl'] . '[/zmg]';
		}	
		if($obj_type === 'profile') {
			if($public) {
				$arr['body'] .= "\n\n" . '[embed]' . z_root() . '/profile/' . $ch[0]['channel_address'] . '[/embed]';	
			}
			else
				$arr['body'] .= "\n\n[zmg=80x80]" . $profile['thumb'] . '[/zmg]';
		}	
	
	
		$arr['verb']          = $activity;
		$arr['obj_type']      = $objtype;
		$arr['obj']           = $object;
	
		if($target) {
			$arr['tgt_type']  = $tgttype;
			$arr['target']    = $target;
		}
	
		$arr['allow_cid']     = $allow_cid;
		$arr['allow_gid']     = $allow_gid;
		$arr['deny_cid']      = $deny_cid;
		$arr['deny_gid']      = $deny_gid;
		$arr['item_private']  = $private;
	
		call_hooks('post_local',$arr);

	
		$post = item_store($arr);	
		$post_id = $post['item_id'];
	
		$arr['id'] = $post_id;
	
		call_hooks('post_local_end', $arr);
	
	
		if($extended_like) {
			$r = q("insert into likes (channel_id,liker,likee,iid,i_mid,verb,target_type,target_id,target) values (%d,'%s','%s',%d,'%s','%s','%s','%s','%s')",
				intval($ch[0]['channel_id']),
				dbesc($observer['xchan_hash']),
				dbesc($ch[0]['channel_hash']),
				intval($post_id),
				dbesc($mid),
				dbesc($activity),
				dbesc(($tgttype)? $tgttype : $objtype),
				dbesc($obj_id),
				dbesc(($target) ? $target  : $object)
			);
			$r = q("select * from likes where liker = '%s' and likee = '%s' and i_mid = '%s' and verb = '%s' and target_type = '%s' and target_id = '%s' ",
				dbesc($observer['xchan_hash']),
				dbesc($ch[0]['channel_hash']),
				dbesc($mid),
				dbesc($activity),
				dbesc(($tgttype)? $tgttype : $objtype),
				dbesc($obj_id)
			);
			if($r)
				build_sync_packet($ch[0]['channel_id'],array('likes' => $r));	
	
		}
	
	
		\Zotlabs\Daemon\Master::Summon(array('Notifier','like',$post_id));
	
		if($interactive) {
			notice( t('Action completed.') . EOL);
			$o .= t('Thank you.');
			return $o;
		}
	
		killme();
	}
	
	
	
}