1<?php 2 3/** 4 * webtrees: online genealogy 5 * Copyright (C) 2021 webtrees development team 6 * This program is free software: you can redistribute it and/or modify 7 * it under the terms of the GNU General Public License as published by 8 * the Free Software Foundation, either version 3 of the License, or 9 * (at your option) any later version. 10 * This program is distributed in the hope that it will be useful, 11 * but WITHOUT ANY WARRANTY; without even the implied warranty of 12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 13 * GNU General Public License for more details. 14 * You should have received a copy of the GNU General Public License 15 * along with this program. If not, see <https://www.gnu.org/licenses/>. 16 */ 17 18declare(strict_types=1); 19 20namespace Fisharebest\Webtrees\Module; 21 22use Fisharebest\Webtrees\Auth; 23use Fisharebest\Webtrees\Http\Exceptions\HttpAccessDeniedException; 24use Fisharebest\Webtrees\Http\Exceptions\HttpNotFoundException; 25use Fisharebest\Webtrees\Http\RequestHandlers\UserPage; 26use Fisharebest\Webtrees\I18N; 27use Fisharebest\Webtrees\Registry; 28use Fisharebest\Webtrees\Services\HtmlService; 29use Fisharebest\Webtrees\Tree; 30use Illuminate\Database\Capsule\Manager as DB; 31use Illuminate\Database\Query\Expression; 32use Illuminate\Support\Str; 33use Psr\Http\Message\ResponseInterface; 34use Psr\Http\Message\ServerRequestInterface; 35 36use function assert; 37use function redirect; 38 39/** 40 * Class UserJournalModule 41 */ 42class UserJournalModule extends AbstractModule implements ModuleBlockInterface 43{ 44 use ModuleBlockTrait; 45 46 private HtmlService $html_service; 47 48 /** 49 * HtmlBlockModule constructor. 50 * 51 * @param HtmlService $html_service 52 */ 53 public function __construct(HtmlService $html_service) 54 { 55 $this->html_service = $html_service; 56 } 57 58 /** 59 * A sentence describing what this module does. 60 * 61 * @return string 62 */ 63 public function description(): string 64 { 65 /* I18N: Description of the “Journal” module */ 66 return I18N::translate('A private area to record notes or keep a journal.'); 67 } 68 69 /** 70 * Generate the HTML content of this block. 71 * 72 * @param Tree $tree 73 * @param int $block_id 74 * @param string $context 75 * @param array<string,string> $config 76 * 77 * @return string 78 */ 79 public function getBlock(Tree $tree, int $block_id, string $context, array $config = []): string 80 { 81 $articles = DB::table('news') 82 ->where('user_id', '=', Auth::id()) 83 ->orderByDesc('updated') 84 ->get() 85 ->map(static function (object $row): object { 86 $row->updated = Registry::timestampFactory()->fromString($row->updated); 87 88 return $row; 89 }); 90 91 $content = view('modules/user_blog/list', [ 92 'articles' => $articles, 93 'block_id' => $block_id, 94 'limit' => 5, 95 'tree' => $tree, 96 ]); 97 98 if ($context !== self::CONTEXT_EMBED) { 99 return view('modules/block-template', [ 100 'block' => Str::kebab($this->name()), 101 'id' => $block_id, 102 'config_url' => '', 103 'title' => $this->title(), 104 'content' => $content, 105 ]); 106 } 107 108 return $content; 109 } 110 111 /** 112 * How should this module be identified in the control panel, etc.? 113 * 114 * @return string 115 */ 116 public function title(): string 117 { 118 /* I18N: Name of a module */ 119 return I18N::translate('Journal'); 120 } 121 122 /** 123 * Should this block load asynchronously using AJAX? 124 * 125 * Simple blocks are faster in-line, more complex ones can be loaded later. 126 * 127 * @return bool 128 */ 129 public function loadAjax(): bool 130 { 131 return false; 132 } 133 134 /** 135 * Can this block be shown on the user’s home page? 136 * 137 * @return bool 138 */ 139 public function isUserBlock(): bool 140 { 141 return true; 142 } 143 144 /** 145 * Can this block be shown on the tree’s home page? 146 * 147 * @return bool 148 */ 149 public function isTreeBlock(): bool 150 { 151 return false; 152 } 153 154 /** 155 * @param ServerRequestInterface $request 156 * 157 * @return ResponseInterface 158 */ 159 public function getEditJournalAction(ServerRequestInterface $request): ResponseInterface 160 { 161 $tree = $request->getAttribute('tree'); 162 assert($tree instanceof Tree); 163 164 if (!Auth::check()) { 165 throw new HttpAccessDeniedException(); 166 } 167 168 $news_id = $request->getQueryParams()['news_id'] ?? ''; 169 170 if ($news_id !== '') { 171 $row = DB::table('news') 172 ->where('news_id', '=', $news_id) 173 ->where('user_id', '=', Auth::id()) 174 ->first(); 175 176 // Record was deleted before we could read it? 177 if ($row === null) { 178 throw new HttpNotFoundException(I18N::translate('%s does not exist.', 'news_id:' . $news_id)); 179 } 180 } else { 181 $row = (object)['body' => '', 'subject' => '']; 182 } 183 184 $title = I18N::translate('Add/edit a journal/news entry'); 185 186 return $this->viewResponse('modules/user_blog/edit', [ 187 'body' => $row->body, 188 'news_id' => $news_id, 189 'subject' => $row->subject, 190 'title' => $title, 191 'tree' => $tree, 192 ]); 193 } 194 195 /** 196 * @param ServerRequestInterface $request 197 * 198 * @return ResponseInterface 199 */ 200 public function postEditJournalAction(ServerRequestInterface $request): ResponseInterface 201 { 202 $tree = $request->getAttribute('tree'); 203 assert($tree instanceof Tree); 204 205 if (!Auth::check()) { 206 throw new HttpAccessDeniedException(); 207 } 208 209 $params = (array) $request->getParsedBody(); 210 211 $news_id = $request->getQueryParams()['news_id'] ?? ''; 212 $subject = $params['subject']; 213 $body = $params['body']; 214 215 $subject = $this->html_service->sanitize($subject); 216 $body = $this->html_service->sanitize($body); 217 218 if ($news_id !== '') { 219 DB::table('news') 220 ->where('news_id', '=', $news_id) 221 ->where('user_id', '=', Auth::id()) 222 ->update([ 223 'body' => $body, 224 'subject' => $subject, 225 'updated' => new Expression('updated'), // See issue #3208 226 ]); 227 } else { 228 DB::table('news')->insert([ 229 'body' => $body, 230 'subject' => $subject, 231 'user_id' => Auth::id(), 232 ]); 233 } 234 235 $url = route(UserPage::class, ['tree' => $tree->name()]); 236 237 return redirect($url); 238 } 239 240 /** 241 * @param ServerRequestInterface $request 242 * 243 * @return ResponseInterface 244 */ 245 public function postDeleteJournalAction(ServerRequestInterface $request): ResponseInterface 246 { 247 $tree = $request->getAttribute('tree'); 248 assert($tree instanceof Tree); 249 250 $news_id = $request->getQueryParams()['news_id']; 251 252 DB::table('news') 253 ->where('news_id', '=', $news_id) 254 ->where('user_id', '=', Auth::id()) 255 ->delete(); 256 257 $url = route(UserPage::class, ['tree' => $tree->name()]); 258 259 return redirect($url); 260 } 261} 262