xref: /webtrees/app/Module/FamilyTreeNewsModule.php (revision 4991f2057a6647447a648c5d6743dab00378e98e)
1<?php
2
3/**
4 * webtrees: online genealogy
5 * Copyright (C) 2021 webtrees development team
6 * This program is free software: you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation, either version 3 of the License, or
9 * (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 * You should have received a copy of the GNU General Public License
15 * along with this program. If not, see <https://www.gnu.org/licenses/>.
16 */
17
18declare(strict_types=1);
19
20namespace Fisharebest\Webtrees\Module;
21
22use Fisharebest\Webtrees\Auth;
23use Fisharebest\Webtrees\Http\Exceptions\HttpAccessDeniedException;
24use Fisharebest\Webtrees\Http\Exceptions\HttpNotFoundException;
25use Fisharebest\Webtrees\Http\RequestHandlers\TreePage;
26use Fisharebest\Webtrees\I18N;
27use Fisharebest\Webtrees\Registry;
28use Fisharebest\Webtrees\Services\HtmlService;
29use Fisharebest\Webtrees\Tree;
30use Fisharebest\Webtrees\Validator;
31use Illuminate\Database\Capsule\Manager as DB;
32use Illuminate\Database\Query\Expression;
33use Illuminate\Support\Str;
34use Psr\Http\Message\ResponseInterface;
35use Psr\Http\Message\ServerRequestInterface;
36
37/**
38 * Class FamilyTreeNewsModule
39 */
40class FamilyTreeNewsModule extends AbstractModule implements ModuleBlockInterface
41{
42    use ModuleBlockTrait;
43
44    private HtmlService $html_service;
45
46    /**
47     * HtmlBlockModule constructor.
48     *
49     * @param HtmlService $html_service
50     */
51    public function __construct(HtmlService $html_service)
52    {
53        $this->html_service = $html_service;
54    }
55
56    /**
57     * A sentence describing what this module does.
58     *
59     * @return string
60     */
61    public function description(): string
62    {
63        /* I18N: Description of the “News” module */
64        return I18N::translate('Family news and site announcements.');
65    }
66
67    /**
68     * Generate the HTML content of this block.
69     *
70     * @param Tree                 $tree
71     * @param int                  $block_id
72     * @param string               $context
73     * @param array<string,string> $config
74     *
75     * @return string
76     */
77    public function getBlock(Tree $tree, int $block_id, string $context, array $config = []): string
78    {
79        $articles = DB::table('news')
80            ->where('gedcom_id', '=', $tree->id())
81            ->orderByDesc('updated')
82            ->get()
83            ->map(static function (object $row): object {
84                $row->updated = Registry::timestampFactory()->fromString($row->updated);
85
86                return $row;
87            });
88
89        $content = view('modules/gedcom_news/list', [
90            'articles' => $articles,
91            'block_id' => $block_id,
92            'limit'    => 5,
93            'tree'     => $tree,
94        ]);
95
96        if ($context !== self::CONTEXT_EMBED) {
97            return view('modules/block-template', [
98                'block'      => Str::kebab($this->name()),
99                'id'         => $block_id,
100                'config_url' => '',
101                'title'      => $this->title(),
102                'content'    => $content,
103            ]);
104        }
105
106        return $content;
107    }
108
109    /**
110     * How should this module be identified in the control panel, etc.?
111     *
112     * @return string
113     */
114    public function title(): string
115    {
116        /* I18N: Name of a module */
117        return I18N::translate('News');
118    }
119
120    /**
121     * Should this block load asynchronously using AJAX?
122     *
123     * Simple blocks are faster in-line, more complex ones can be loaded later.
124     *
125     * @return bool
126     */
127    public function loadAjax(): bool
128    {
129        return false;
130    }
131
132    /**
133     * Can this block be shown on the user’s home page?
134     *
135     * @return bool
136     */
137    public function isUserBlock(): bool
138    {
139        return false;
140    }
141
142    /**
143     * Can this block be shown on the tree’s home page?
144     *
145     * @return bool
146     */
147    public function isTreeBlock(): bool
148    {
149        return true;
150    }
151
152    /**
153     * @param ServerRequestInterface $request
154     *
155     * @return ResponseInterface
156     */
157    public function getEditNewsAction(ServerRequestInterface $request): ResponseInterface
158    {
159        $tree = Validator::attributes($request)->tree();
160
161        if (!Auth::isManager($tree)) {
162            throw new HttpAccessDeniedException();
163        }
164
165        $news_id = $request->getQueryParams()['news_id'] ?? '';
166
167        if ($news_id !== '') {
168            $row = DB::table('news')
169                ->where('news_id', '=', $news_id)
170                ->where('gedcom_id', '=', $tree->id())
171                ->first();
172
173            // Record was deleted before we could read it?
174            if ($row === null) {
175                throw new HttpNotFoundException(I18N::translate('%s does not exist.', 'news_id:' . $news_id));
176            }
177        } else {
178            $row = (object) [
179                'body'    => '',
180                'subject' => '',
181            ];
182        }
183
184        $title = I18N::translate('Add/edit a journal/news entry');
185
186        return $this->viewResponse('modules/gedcom_news/edit', [
187            'body'    => $row->body,
188            'news_id' => $news_id,
189            'subject' => $row->subject,
190            'title'   => $title,
191            'tree'    => $tree,
192        ]);
193    }
194
195    /**
196     * @param ServerRequestInterface $request
197     *
198     * @return ResponseInterface
199     */
200    public function postEditNewsAction(ServerRequestInterface $request): ResponseInterface
201    {
202        $tree = Validator::attributes($request)->tree();
203
204        if (!Auth::isManager($tree)) {
205            throw new HttpAccessDeniedException();
206        }
207
208        $news_id = $request->getQueryParams()['news_id'] ?? '';
209
210        $params = (array) $request->getParsedBody();
211
212        $subject = $params['subject'];
213        $body    = $params['body'];
214
215        $subject = $this->html_service->sanitize($subject);
216        $body    = $this->html_service->sanitize($body);
217
218        if ($news_id > 0) {
219            DB::table('news')
220                ->where('news_id', '=', $news_id)
221                ->where('gedcom_id', '=', $tree->id())
222                ->update([
223                    'body'    => $body,
224                    'subject' => $subject,
225                    'updated' => new Expression('updated'), // See issue #3208
226                ]);
227        } else {
228            DB::table('news')->insert([
229                'body'      => $body,
230                'subject'   => $subject,
231                'gedcom_id' => $tree->id(),
232            ]);
233        }
234
235        $url = route(TreePage::class, ['tree' => $tree->name()]);
236
237        return redirect($url);
238    }
239
240    /**
241     * @param ServerRequestInterface $request
242     *
243     * @return ResponseInterface
244     */
245    public function postDeleteNewsAction(ServerRequestInterface $request): ResponseInterface
246    {
247        $tree = Validator::attributes($request)->tree();
248
249        $news_id = $request->getQueryParams()['news_id'];
250
251        if (!Auth::isManager($tree)) {
252            throw new HttpAccessDeniedException();
253        }
254
255        DB::table('news')
256            ->where('news_id', '=', $news_id)
257            ->where('gedcom_id', '=', $tree->id())
258            ->delete();
259
260        $url = route(TreePage::class, ['tree' => $tree->name()]);
261
262        return redirect($url);
263    }
264}
265