diff options
Diffstat (limited to 'src/index.php')
| -rw-r--r-- | src/index.php | 186 |
1 files changed, 113 insertions, 73 deletions
diff --git a/src/index.php b/src/index.php index 9c5d678..f2d0f86 100644 --- a/src/index.php +++ b/src/index.php @@ -10,6 +10,7 @@ use mystic\forum\Messaging; use mystic\forum\orm\Attachment; use mystic\forum\orm\Post; use mystic\forum\orm\Topic; +use mystic\forum\orm\TopicLogMessage; use mystic\forum\orm\User; use mystic\forum\orm\UserPermissions; use mystic\forum\utils\FileUtils; @@ -23,7 +24,7 @@ use Symfony\Contracts\Service\Attribute\Required; header_remove("X-Powered-By"); -const MYSTICBB_VERSION = "0.1.1"; +const MYSTICBB_VERSION = "0.2.0-dev"; if (($_SERVER["HTTP_USER_AGENT"] ?? "") === "") { http_response_code(403); @@ -256,6 +257,7 @@ $db->ensureTable(User::class); $db->ensureTable(Topic::class); $db->ensureTable(Post::class); $db->ensureTable(Attachment::class); +$db->ensureTable(TopicLogMessage::class); $superuser = new User(); $superuser->id = "SUPERUSER"; @@ -599,16 +601,16 @@ if ($_action === "auth") { RequestUtils::triggerFormError(__("Message too short or too long!"), $formId); } - $post = new Post(); - $post->id = $db->generateId(); - $post->authorId = $currentUser->id; - $post->topicId = $topicId; - $post->content = $message; - $post->postDate = new DateTimeImmutable(); - $post->deleted = false; - $post->edited = false; + $item = new Post(); + $item->id = $db->generateId(); + $item->authorId = $currentUser->id; + $item->topicId = $topicId; + $item->content = $message; + $item->postDate = new DateTimeImmutable(); + $item->deleted = false; + $item->edited = false; - $db->insert($post); + $db->insert($item); foreach ($attachments as $att) { [ @@ -620,7 +622,7 @@ if ($_action === "auth") { $attachment->id = $db->generateId(); $attachment->name = $name; $attachment->mimeType = $type; - $attachment->postId = $post->id; + $attachment->postId = $item->id; $attachment->contents = file_get_contents($tmpName); $db->insert($attachment); @@ -628,7 +630,10 @@ if ($_action === "auth") { header("Location: ?_action=viewtopic&topic=" . urlencode($topicId) . "#form"); } else { + /** @var Post[] $posts */ $posts = $db->fetchCustom(Post::class, 'WHERE topic_id = $1 ORDER BY post_date', [ $topicId ]); + /** @var TopicLogMessage[] $logMessages */ + $logMessages = $db->fetchCustom(TopicLogMessage::class, 'WHERE topic_id = $1 ORDER BY post_date', [ $topicId ]); $userCache = []; $topicAuthor = null; @@ -640,34 +645,45 @@ if ($_action === "auth") { } } + $allItems = [...$posts, ...$logMessages]; + usort($allItems, fn(Post|TopicLogMessage $a, Post|TopicLogMessage $b): int => $a->postDate <=> $b->postDate); + _view("template_start", ["_title" => $topic->title]); _view("template_navigation_start"); _view("template_navigation", ["user" => RequestUtils::getAuthorizedUser($db)]); _view("template_navigation_end"); _view("view_topic_start", ["topic" => $topic, "topicAuthor" => $topicAuthor]); - /** @var Post $post */ - foreach ($posts as $post) { + foreach ($allItems as $item) { /** @var ?User $postAuthor */ $postAuthor = null; - if ($post->authorId !== null && !isset($userCache[$post->authorId])) { + if ($item->authorId !== null && !isset($userCache[$item->authorId])) { $usr = new User(); - $usr->id = $post->authorId; + $usr->id = $item->authorId; if ($db->fetch($usr)) - $userCache[$post->authorId] = &$usr; + $userCache[$item->authorId] = &$usr; + } + if (isset($userCache[$item->authorId])) + $postAuthor = &$userCache[$item->authorId]; + + if ($item instanceof Post) { + $attachments = $db->fetchCustom(Attachment::class, 'WHERE post_id = $1', [ $item->id ]); + + _view("view_post", [ + "post" => $item, + "postAuthor" => $postAuthor, + "topicAuthor" => $topicAuthor, + "attachments" => $attachments, + "topic" => $topic, + ]); + } else { + _view("view_topiclog", [ + "logMessage" => $item, + "postAuthor" => $postAuthor, + "topicAuthor" => $topicAuthor, + "topic" => $topic, + ]); } - if (isset($userCache[$post->authorId])) - $postAuthor = &$userCache[$post->authorId]; - - $attachments = $db->fetchCustom(Attachment::class, 'WHERE post_id = $1', [ $post->id ]); - - _view("view_post", [ - "post" => $post, - "postAuthor" => $postAuthor, - "topicAuthor" => $topicAuthor, - "attachments" => $attachments, - "topic" => $topic, - ]); } _view("view_topic_end"); @@ -724,16 +740,16 @@ if ($_action === "auth") { $db->insert($topic); - $post = new Post(); - $post->id = $db->generateId(); - $post->authorId = $currentUser->id; - $post->topicId = $topic->id; - $post->content = $message; - $post->postDate = $topic->creationDate; - $post->deleted = false; - $post->edited = false; + $item = new Post(); + $item->id = $db->generateId(); + $item->authorId = $currentUser->id; + $item->topicId = $topic->id; + $item->content = $message; + $item->postDate = $topic->creationDate; + $item->deleted = false; + $item->edited = false; - $db->insert($post); + $db->insert($item); foreach ($attachments as $att) { [ @@ -745,7 +761,7 @@ if ($_action === "auth") { $attachment->id = $db->generateId(); $attachment->name = $name; $attachment->mimeType = $type; - $attachment->postId = $post->id; + $attachment->postId = $item->id; $attachment->contents = file_get_contents($tmpName); $db->insert($attachment); @@ -960,15 +976,15 @@ if ($_action === "auth") { $posts = $db->fetchCustom(Post::class, 'WHERE author_id = $1 ORDER BY post_date DESC', [ $userId ]); $topics = []; $attachments = []; - foreach ($posts as $post) { - if (!isset($topics[$post->topicId])) { + foreach ($posts as $item) { + if (!isset($topics[$item->topicId])) { $topic = new Topic(); - $topic->id = $post->topicId; + $topic->id = $item->topicId; if ($db->fetch($topic)) - $topics[$post->topicId] = $topic; + $topics[$item->topicId] = $topic; } - $attachs = $db->fetchCustom(Attachment::class, 'WHERE post_id = $1', [ $post->id ]); - $attachments[$post->id] = $attachs; + $attachs = $db->fetchCustom(Attachment::class, 'WHERE post_id = $1', [ $item->id ]); + $attachments[$item->id] = $attachs; } _view("template_start", ["_title" => $user->displayName]); _view("template_navigation_start"); @@ -1166,23 +1182,23 @@ if ($_action === "auth") { $formId = "deletepost"; $postId = RequestUtils::getRequiredField("post", $formId); - $post = new Post(); - $post->id = $postId; + $item = new Post(); + $item->id = $postId; - if (!$db->fetch($post) || $post->deleted) { + if (!$db->fetch($item) || $item->deleted) { http_response_code(404); msg_error("No post exists with this id"); exit; } $topicAuthor = new User(); - $topicAuthor->id = $post->authorId; + $topicAuthor->id = $item->authorId; if (!$db->fetch($topicAuthor)) $topicAuthor = null; $topic = new Topic(); - $topic->id = $post->topicId; + $topic->id = $item->topicId; if (!$db->fetch($topic)) $topic = null; @@ -1196,21 +1212,21 @@ if ($_action === "auth") { exit; } - $attachments = $db->fetchCustom(Attachment::class, 'WHERE post_id = $1', [ $post->id ]); + $attachments = $db->fetchCustom(Attachment::class, 'WHERE post_id = $1', [ $item->id ]); $confirm = $_POST["confirm"] ?? null; if ($confirm !== null) { - $expectedConfirm = base64_encode(hash("sha256", "confirm" . $post->id, true)); + $expectedConfirm = base64_encode(hash("sha256", "confirm" . $item->id, true)); if ($confirm !== $expectedConfirm) { http_response_code(400); msg_error("Invalid confirmation"); exit; } - $post->deleted = true; - $post->content = ""; + $item->deleted = true; + $item->content = ""; - if (!$db->update($post)) { + if (!$db->update($item)) { http_response_code(500); msg_error("Failed to delete post"); exit; @@ -1224,14 +1240,14 @@ if ($_action === "auth") { } } - header("Location: ?_action=viewtopic&topic=" . urlencode($post->topicId)); + header("Location: ?_action=viewtopic&topic=" . urlencode($item->topicId)); } else { _view("template_start", ["_title" => __("Delete post")]); _view("template_navigation_start"); _view("template_navigation", ["user" => RequestUtils::getAuthorizedUser($db)]); _view("template_navigation_end"); _view("form_delete_post_confirm", [ - "post" => $post, + "post" => $item, "postAuthor" => $topicAuthor, "topicAuthor" => null, "attachments" => $attachments, @@ -1252,17 +1268,17 @@ if ($_action === "auth") { $postId = RequestUtils::getRequiredField("post", $formId); $message = RequestUtils::getRequiredField("message", $formId); - $post = new Post(); - $post->id = $postId; + $item = new Post(); + $item->id = $postId; - if (!$db->fetch($post) || $post->deleted) { + if (!$db->fetch($item) || $item->deleted) { http_response_code(404); msg_error(__("No post exists with this id")); exit; } $topicAuthor = new User(); - $topicAuthor->id = $post->authorId; + $topicAuthor->id = $item->authorId; if (!$db->fetch($topicAuthor)) $topicAuthor = null; @@ -1271,7 +1287,7 @@ if ($_action === "auth") { || ($currentUser->hasPermission(UserPermissions::EDIT_OTHER_POST)); $topic = new Topic(); - $topic->id = $post->topicId; + $topic->id = $item->topicId; if (!$db->fetch($topic)) $topic = null; @@ -1290,16 +1306,16 @@ if ($_action === "auth") { $confirm = $_POST["confirm"] ?? null; - $post->content = $message; - $post->edited = true; + $item->content = $message; + $item->edited = true; - if (!$db->update($post)) { + if (!$db->update($item)) { http_response_code(500); msg_error(__("Failed to update post")); exit; } - header("Location: ?_action=viewtopic&topic=" . urlencode($post->topicId) . "#post-" . urlencode($postId)); + header("Location: ?_action=viewtopic&topic=" . urlencode($item->topicId) . "#post-" . urlencode($postId)); } elseif ($_action === "deletetopic") { RequestUtils::ensureRequestMethod("POST"); @@ -1406,8 +1422,22 @@ if ($_action === "auth") { exit; } + $prevTitle = $topic->title; $topic->title = $title; + $log = new TopicLogMessage(); + $log->id = $db->generateId(); + $log->topicId = $topic->id; + $log->authorId = $currentUser->id; + $log->params = [ + "old_value" => $prevTitle, + "new_value" => $title, + ]; + $log->type = TopicLogMessage::TITLE_CHANGED; + $log->postDate = new \DateTimeImmutable(); + + $db->insert($log); + if (!$db->update($topic)) { http_response_code(500); msg_error(__("Failed to update topic")); @@ -1465,6 +1495,16 @@ if ($_action === "auth") { $topic->isLocked = $locked; + $log = new TopicLogMessage(); + $log->id = $db->generateId(); + $log->topicId = $topic->id; + $log->authorId = $currentUser->id; + $log->params = []; + $log->type = $locked ? TopicLogMessage::LOCKED : TopicLogMessage::UNLOCKED; + $log->postDate = new \DateTimeImmutable(); + + $db->insert($log); + if (!$db->update($topic)) { http_response_code(500); msg_error(__("Failed to lock or unlock topic")); @@ -1489,21 +1529,21 @@ if ($_action === "auth") { $topicLookup = []; $attachmentLookup = []; $userLookup = []; - foreach ($posts as $post) { - if (!isset($topicLookup[$post->topicId])) { + foreach ($posts as $item) { + if (!isset($topicLookup[$item->topicId])) { $topic = new Topic; - $topic->id = $post->topicId; + $topic->id = $item->topicId; if ($db->fetch($topic)) $topicLookup[$topic->id] = &$topic; } - if (!isset($attachmentLookup[$post->id])) { - $attachmentLookup[$post->id] = $db->fetchCustom(Attachment::class, 'WHERE post_id = $1', [ $post->id ]); + if (!isset($attachmentLookup[$item->id])) { + $attachmentLookup[$item->id] = $db->fetchCustom(Attachment::class, 'WHERE post_id = $1', [ $item->id ]); } - if (!isset($userLookup[$post->authorId])) { + if (!isset($userLookup[$item->authorId])) { $user = new User; - $user->id = $post->authorId; + $user->id = $item->authorId; if ($db->fetch($user)) - $userLookup[$post->authorId] = &$user; + $userLookup[$item->authorId] = &$user; } } $end_time = microtime(true); |