From bf15bdf4639c61d9855cc76b4e58463eabbd6760 Mon Sep 17 00:00:00 2001 From: Jonas Kohl Date: Sun, 22 Dec 2024 12:45:07 +0100 Subject: Add missing 'editpost' action --- src/application/actions/editpost/post.php | 58 +++++++++++++++++++++++++++++++ 1 file changed, 58 insertions(+) create mode 100644 src/application/actions/editpost/post.php (limited to 'src/application/actions/editpost') diff --git a/src/application/actions/editpost/post.php b/src/application/actions/editpost/post.php new file mode 100644 index 0000000..1ea83a7 --- /dev/null +++ b/src/application/actions/editpost/post.php @@ -0,0 +1,58 @@ +id = $postId; + +if (!$db->fetch($item) || $item->deleted) { + http_response_code(404); + msg_error(__("No post exists with this id")); + exit; +} + +$topicAuthor = new User(); +$topicAuthor->id = $item->authorId; + +if (!$db->fetch($topicAuthor)) + $topicAuthor = null; + +$canEdit = ($currentUser->id === $topicAuthor?->id && $topicAuthor?->hasPermission(UserPermissions::EDIT_OWN_POST)) + || ($currentUser->hasPermission(UserPermissions::EDIT_OTHER_POST)); + +$topic = new Topic(); +$topic->id = $item->topicId; + +if (!$db->fetch($topic)) + $topic = null; + +if ($topic->isLocked) { + http_response_code(403); + msg_error(__("This topic has been locked")); + exit; +} + +if (!$canEdit) { + http_response_code(403); + msg_error(__("You don't have permission to edit this post")); + exit; +} + +render("edit_post.twig", [ + "post" => $item, + "topicAuthor" => $topicAuthor, + "topic" => $topic, +]); -- cgit v1.2.3