aboutsummaryrefslogtreecommitdiffstats
path: root/Zotlabs/Module/Outbox.php
blob: 503b464d1e2ae95efe08cb1b8222db684a68b490 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
<?php

namespace Zotlabs\Module;

use App;
use Zotlabs\Lib\Activity;
use Zotlabs\Lib\ActivityStreams;
use Zotlabs\Lib\Config;
use Zotlabs\Lib\ThreadListener;
use Zotlabs\Web\Controller;
use Zotlabs\Web\HTTPSig;

class Outbox extends Controller {

	function init() {
		if (ActivityStreams::is_as_request()) {

			if (observer_prohibited(true)) {
				killme();
			}

			$channel = channelx_by_nick(argv(1));
			if (!$channel) {
				killme();
			}

			if (intval($channel['channel_system'])) {
				killme();
			}

			$sigdata = HTTPSig::verify(($_SERVER['REQUEST_METHOD'] === 'POST') ? file_get_contents('php://input') : EMPTY_STR);
			if ($sigdata['portable_id'] && $sigdata['header_valid']) {
				$portable_id = $sigdata['portable_id'];
				if (!check_channelallowed($portable_id)) {
					http_status_exit(403, 'Permission denied');
				}
				if (!check_siteallowed($sigdata['signer'])) {
					http_status_exit(403, 'Permission denied');
				}
				observer_auth($portable_id);
			}
			elseif (Config::get('system', 'require_authenticated_fetch', false)) {
				http_status_exit(403, 'Permission denied');
			}

			$observer_hash = get_observer_hash();

			$params = [];

			$params['begin']     = ((x($_REQUEST, 'date_begin')) ? $_REQUEST['date_begin'] : NULL_DATE);
			$params['end']       = ((x($_REQUEST, 'date_end')) ? $_REQUEST['date_end'] : '');
			$params['type']      = 'json';
			$params['pages']     = ((x($_REQUEST, 'pages')) ? intval($_REQUEST['pages']) : 0);
			$params['top']       = ((x($_REQUEST, 'top')) ? intval($_REQUEST['top']) : 0);
			$params['direction'] = ((x($_REQUEST, 'direction')) ? dbesc($_REQUEST['direction']) : 'desc'); // unimplemented
			$params['cat']       = ((x($_REQUEST, 'cat')) ? escape_tags($_REQUEST['cat']) : '');
			$params['compat']    = 1;

			$total = items_fetch(
				[
					'total'      => true,
					'wall'       => 1,
					'datequery'  => $params['end'],
					'datequery2' => $params['begin'],
					'direction'  => dbesc($params['direction']),
					'pages'      => $params['pages'],
					'order'      => dbesc('post'),
					'top'        => $params['top'],
					'cat'        => $params['cat'],
					'compat'     => $params['compat']
				], $channel, $observer_hash, CLIENT_MODE_NORMAL, App::$module
			);

			if ($total) {
				App::set_pager_total($total);
				App::set_pager_itemspage(30);
			}

			if (App::$pager['unset'] && $total > 30) {
				$ret = Activity::paged_collection_init($total, App::$query_string);
			}
			else {

				$items = items_fetch(
					[
						'wall'       => 1,
						'datequery'  => $params['end'],
						'datequery2' => $params['begin'],
						'records'    => intval(App::$pager['itemspage']),
						'start'      => intval(App::$pager['start']),
						'direction'  => dbesc($params['direction']),
						'pages'      => $params['pages'],
						'order'      => dbesc('post'),
						'top'        => $params['top'],
						'cat'        => $params['cat'],
						'compat'     => $params['compat']
					], $channel, $observer_hash, CLIENT_MODE_NORMAL, App::$module
				);

				if ($items && $observer_hash) {

					// check to see if this observer is a connection. If not, register any items
					// belonging to this channel for notification of deletion/expiration

					$x = q("select abook_id from abook where abook_channel = %d and abook_xchan = '%s'",
						intval($channel['channel_id']),
						dbesc($observer_hash)
					);
					if (!$x) {
						foreach ($items as $item) {
							if (strpos($item['mid'], z_root()) === 0) {
								ThreadListener::store($item['mid'], $observer_hash);
							}
						}
					}
				}

				$ret = Activity::encode_item_collection($items, App::$query_string, 'OrderedCollection', $total);
			}

			as_return_and_die($ret, $channel);
		}
	}
}