aboutsummaryrefslogblamecommitdiffstats
path: root/mod/rpost.php
blob: 562040f1bd06655a46d64c9fdcd7f6bab1fb263f (plain) (tree)





























                                                                                                                           









                                                                                                                                 



























































                                                                                                                               
<?php /** @file */

require_once('acl_selectors.php');
require_once('include/crypto.php');
require_once('include/items.php');
require_once('include/taxonomy.php');
require_once('include/conversation.php');

/**
 * remote post
 * 
 * https://yoursite/rpost?f=&title=&body=&remote_return=
 *
 * This can be called via either GET or POST, use POST for long body content as suhosin often limits GET parameter length
 *
 * f= placeholder, often required
 * title= Title of post
 * body= Body of post
 * remote_return= absolute URL to return after posting is finished
 *
 * currently content type is Red Matrix bbcode, though HTML is possible. This is left as an exercise for future developers 
 */



function rpost_content(&$a) {

	$o = '';

	if(! local_user()) {
		if(remote_user()) {
			// redirect to your own site.
			// We can only do this with a GET request so you'll need to keep the text short or risk getting truncated
			// by the wretched beast called 'shusoin'. All the browsers now allow long GET requests, but suhosin
			// blocks them.



		}

		// FIXME
		// probably need to figure out how to preserve the $_REQUEST variables in the session
		// in case you aren't currently logged in. Otherwise you'll have to go back to
		// the site that sent you here and try again. 		
		return login();
	}

	if($_REQUEST['remote_return']) {
		$_SESSION['remote_return'] = $_REQUEST['remote_return'];
	}
	if(argc() > 1 && argv(1) === 'return' && $_SESSION['remote_return']) {
		goaway($_SESSION['remote_return']);
	}

	$plaintext = true;
	if(feature_enabled(local_user(),'richtext'))
		$plaintext = false;


	$channel = $a->get_channel();

	$o .= replace_macros(get_markup_template('edpost_head.tpl'), array(
		'$title' => t('Edit post')
	));

	
	$a->page['htmlhead'] .= replace_macros(get_markup_template('jot-header.tpl'), array(
		'$baseurl' => $a->get_baseurl(),
		'$editselect' =>  (($plaintext) ? 'none' : '/(profile-jot-text|prvmail-text)/'),
		'$ispublic' => '&nbsp;', // t('Visible to <strong>everybody</strong>'),
		'$geotag' => $geotag,
		'$nickname' => $channel['channel_address']
	));



	$x = array(
		'is_owner' => true,
		'allow_location' => ((intval(get_pconfig($channel['channel_id'],'system','use_browser_location'))) ? '1' : ''),
		'default_location' => $channel['channel_location'],
		'nickname' => $channel['channel_address'],
		'lockstate' => (($channel['channel_allow_cid'] || $channel['channel_allow_gid'] 
			|| $channel['channel_deny_cid'] || $channel['channel_deny_gid']) ? 'lock' : 'unlock'),
		'acl' => populate_acl($channel, $false),
		'bang' => '',
		'visitor' => 'block',
		'profile_uid' => local_user(),
		'title' => $_REQUEST['title'],
		'body' => $_REQUEST['body'],
		'return_path' => 'rpost/return'
	);


	$o .= status_editor($a,$x);

	return $o;

}