shimmie2/ext/pm/main.php

<?php
/*
 * Name: Private Messaging
 * Author: Shish <webmaster@shishnet.org>
 * License: GPLv2
 * Description: Allow users to send messages to eachother
 * Documentation:
 *  PMs show up on a user's profile page, readable by that user
 *  as well as board admins. To send a PM, visit another user's
 *  profile page and a box will be shown.
 */

class SendPMEvent extends Event
{
    public $pm;

    public function __construct(PM $pm)
    {
        $this->pm = $pm;
    }
}

class PM
{
    public $id;
    public $from_id;
    public $from_ip;
    public $to_id;
    public $sent_date;
    public $subject;
    public $message;
    public $is_read;

    public function __construct($from_id=0, string $from_ip="0.0.0.0", int $to_id=0, string $subject="A Message", string $message="Some Text", bool $read=false)
    {
        # PHP: the P stands for "really", the H stands for "awful" and the other P stands for "language"
        if (is_array($from_id)) {
            $a = $from_id;
            $this->id      = $a["id"];
            $this->from_id = $a["from_id"];
            $this->from_ip = $a["from_ip"];
            $this->to_id   = $a["to_id"];
            $this->sent_date = $a["sent_date"];
            $this->subject = $a["subject"];
            $this->message = $a["message"];
            $this->is_read = bool_escape($a["is_read"]);
        } else {
            $this->id      = -1;
            $this->from_id = $from_id;
            $this->from_ip = $from_ip;
            $this->to_id   = $to_id;
            $this->subject = $subject;
            $this->message = $message;
            $this->is_read = $read;
        }
    }
}

class PrivMsg extends Extension
{
    public function onInitExt(InitExtEvent $event)
    {
        global $config, $database;

        // shortcut to latest
        if ($config->get_int("pm_version") < 1) {
            $database->create_table("private_message", "
				id SCORE_AIPK,
				from_id INTEGER NOT NULL,
				from_ip SCORE_INET NOT NULL,
				to_id INTEGER NOT NULL,
				sent_date SCORE_DATETIME NOT NULL,
				subject VARCHAR(64) NOT NULL,
				message TEXT NOT NULL,
				is_read SCORE_BOOL NOT NULL DEFAULT SCORE_BOOL_N,
				FOREIGN KEY (from_id) REFERENCES users(id) ON DELETE CASCADE,
				FOREIGN KEY (to_id) REFERENCES users(id) ON DELETE CASCADE
			");
            $database->execute("CREATE INDEX private_message__to_id ON private_message(to_id)");
            $config->set_int("pm_version", 2);
            log_info("pm", "extension installed");
        }

        if ($config->get_int("pm_version") < 2) {
            log_info("pm", "Adding foreign keys to private messages");
            $database->Execute("delete from private_message where to_id not in (select id from users);");
            $database->Execute("delete from private_message where from_id not in (select id from users);");
            $database->Execute("ALTER TABLE private_message 
			ADD FOREIGN KEY (from_id) REFERENCES users(id) ON DELETE CASCADE,
			ADD FOREIGN KEY (to_id) REFERENCES users(id) ON DELETE CASCADE;");
            $config->set_int("pm_version", 2);
            log_info("pm", "extension installed");
        }
    }

    public function onUserBlockBuilding(UserBlockBuildingEvent $event)
    {
        global $user;
        if (!$user->is_anonymous()) {
            $count = $this->count_pms($user);
            $h_count = $count > 0 ? " <span class='unread'>($count)</span>" : "";
            $event->add_link("Private Messages$h_count", make_link("user#private-messages"));
        }
    }

    public function onUserPageBuilding(UserPageBuildingEvent $event)
    {
        global $page, $user;
        $duser = $event->display_user;
        if (!$user->is_anonymous() && !$duser->is_anonymous()) {
            if (($user->id == $duser->id) || $user->can(Permissions::VIEW_OTHER_PMS)) {
                $this->theme->display_pms($page, $this->get_pms($duser));
            }
            if ($user->id != $duser->id) {
                $this->theme->display_composer($page, $user, $duser);
            }
        }
    }

    public function onPageRequest(PageRequestEvent $event)
    {
        global $database, $page, $user;
        if ($event->page_matches("pm")) {
            if (!$user->is_anonymous()) {
                switch ($event->get_arg(0)) {
                    case "read":
                        $pm_id = int_escape($event->get_arg(1));
                        $pm = $database->get_row("SELECT * FROM private_message WHERE id = :id", ["id" => $pm_id]);
                        if (is_null($pm)) {
                            $this->theme->display_error(404, "No such PM", "There is no PM #$pm_id");
                        } elseif (($pm["to_id"] == $user->id) || $user->can(Permissions::VIEW_OTHER_PMS)) {
                            $from_user = User::by_id(int_escape($pm["from_id"]));
                            if ($pm["to_id"] == $user->id) {
                                $database->execute("UPDATE private_message SET is_read='Y' WHERE id = :id", ["id" => $pm_id]);
                                $database->cache->delete("pm-count-{$user->id}");
                            }
                            $this->theme->display_message($page, $from_user, $user, new PM($pm));
                        } else {
                            // permission denied
                        }
                        break;
                    case "delete":
                        if ($user->check_auth_token()) {
                            $pm_id = int_escape($_POST["pm_id"]);
                            $pm = $database->get_row("SELECT * FROM private_message WHERE id = :id", ["id" => $pm_id]);
                            if (is_null($pm)) {
                                $this->theme->display_error(404, "No such PM", "There is no PM #$pm_id");
                            } elseif (($pm["to_id"] == $user->id) || $user->can(Permissions::VIEW_OTHER_PMS)) {
                                $database->execute("DELETE FROM private_message WHERE id = :id", ["id" => $pm_id]);
                                $database->cache->delete("pm-count-{$user->id}");
                                log_info("pm", "Deleted PM #$pm_id", "PM deleted");
                                $page->set_mode(PageMode::REDIRECT);
                                $page->set_redirect($_SERVER["HTTP_REFERER"]);
                            }
                        }
                        break;
                    case "send":
                        if ($user->check_auth_token()) {
                            $to_id = int_escape($_POST["to_id"]);
                            $from_id = $user->id;
                            $subject = $_POST["subject"];
                            $message = $_POST["message"];
                            send_event(new SendPMEvent(new PM($from_id, $_SERVER["REMOTE_ADDR"], $to_id, $subject, $message)));
                            flash_message("PM sent");
                            $page->set_mode(PageMode::REDIRECT);
                            $page->set_redirect($_SERVER["HTTP_REFERER"]);
                        }
                        break;
                    default:
                        $this->theme->display_error(400, "Invalid action", "That's not something you can do with a PM");
                        break;
                }
            }
        }
    }

    public function onSendPM(SendPMEvent $event)
    {
        global $database;
        $database->execute(
            "
				INSERT INTO private_message(
					from_id, from_ip, to_id,
					sent_date, subject, message)
				VALUES(:fromid, :fromip, :toid, now(), :subject, :message)",
            ["fromid" => $event->pm->from_id, "fromip" => $event->pm->from_ip,
            "toid" => $event->pm->to_id, "subject" => $event->pm->subject, "message" => $event->pm->message]
        );
        $database->cache->delete("pm-count-{$event->pm->to_id}");
        log_info("pm", "Sent PM to User #{$event->pm->to_id}");
    }


    private function get_pms(User $user)
    {
        global $database;

        $arr = $database->get_all(
            "
				SELECT private_message.*,user_from.name AS from_name
				FROM private_message
				JOIN users AS user_from ON user_from.id=from_id
				WHERE to_id = :toid
				ORDER BY sent_date DESC",
            ["toid" => $user->id]
        );
        $pms = [];
        foreach ($arr as $pm) {
            $pms[] = new PM($pm);
        }
        return $pms;
    }

    private function count_pms(User $user)
    {
        global $database;

        $count = $database->cache->get("pm-count:{$user->id}");
        if (is_null($count) || $count === false) {
            $count = $database->get_one("
					SELECT count(*)
					FROM private_message
					WHERE to_id = :to_id
					AND is_read = :is_read
			", ["to_id" => $user->id, "is_read" => "N"]);
            $database->cache->set("pm-count:{$user->id}", $count, 600);
        }
        return $count;
    }
}
private messaging system git-svn-id: file:///home/shish/svn/shimmie2/trunk@1032 7f39781d-f577-437e-ae19-be835c7a54ca 2008-09-07 05:57:28 +00:00			`<?php`
extension documentation updates 2009-08-20 22:37:17 +00:00			`/*`
private messaging system git-svn-id: file:///home/shish/svn/shimmie2/trunk@1032 7f39781d-f577-437e-ae19-be835c7a54ca 2008-09-07 05:57:28 +00:00			`* Name: Private Messaging`
			`* Author: Shish <webmaster@shishnet.org>`
			`* License: GPLv2`
			`* Description: Allow users to send messages to eachother`
contrib documentation 2009-01-16 08:18:41 +00:00			`* Documentation:`
			`* PMs show up on a user's profile page, readable by that user`
			`* as well as board admins. To send a PM, visit another user's`
			`* profile page and a box will be shown.`
private messaging system git-svn-id: file:///home/shish/svn/shimmie2/trunk@1032 7f39781d-f577-437e-ae19-be835c7a54ca 2008-09-07 05:57:28 +00:00			`*/`

PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`class SendPMEvent extends Event`
			`{`
			`public $pm;`

			`public function __construct(PM $pm)`
			`{`
			`$this->pm = $pm;`
			`}`
add the ability to send PMs (and make it an event, so other extensions can send them) git-svn-id: file:///home/shish/svn/shimmie2/trunk@1033 7f39781d-f577-437e-ae19-be835c7a54ca 2008-09-07 13:55:28 +00:00			`}`

PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`class PM`
			`{`
			`public $id;`
			`public $from_id;`
			`public $from_ip;`
			`public $to_id;`
			`public $sent_date;`
			`public $subject;`
			`public $message;`
			`public $is_read;`

			`public function __construct($from_id=0, string $from_ip="0.0.0.0", int $to_id=0, string $subject="A Message", string $message="Some Text", bool $read=false)`
			`{`
			`# PHP: the P stands for "really", the H stands for "awful" and the other P stands for "language"`
			`if (is_array($from_id)) {`
			`$a = $from_id;`
			`$this->id = $a["id"];`
			`$this->from_id = $a["from_id"];`
			`$this->from_ip = $a["from_ip"];`
			`$this->to_id = $a["to_id"];`
			`$this->sent_date = $a["sent_date"];`
			`$this->subject = $a["subject"];`
			`$this->message = $a["message"];`
			`$this->is_read = bool_escape($a["is_read"]);`
			`} else {`
			`$this->id = -1;`
			`$this->from_id = $from_id;`
			`$this->from_ip = $from_ip;`
			`$this->to_id = $to_id;`
			`$this->subject = $subject;`
			`$this->message = $message;`
			`$this->is_read = $read;`
			`}`
			`}`
truthomatic 2009-10-08 16:44:25 +00:00			`}`

PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`class PrivMsg extends Extension`
			`{`
			`public function onInitExt(InitExtEvent $event)`
			`{`
			`global $config, $database;`
private messaging system git-svn-id: file:///home/shish/svn/shimmie2/trunk@1032 7f39781d-f577-437e-ae19-be835c7a54ca 2008-09-07 05:57:28 +00:00
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`// shortcut to latest`
			`if ($config->get_int("pm_version") < 1) {`
			`$database->create_table("private_message", "`
make things use SimpleExtension 2009-05-11 21:09:24 +00:00			`id SCORE_AIPK,`
			`from_id INTEGER NOT NULL,`
			`from_ip SCORE_INET NOT NULL,`
			`to_id INTEGER NOT NULL,`
DATETIME > SCORE_DATETIME fixes #354 2014-03-02 18:50:46 +00:00			`sent_date SCORE_DATETIME NOT NULL,`
make things use SimpleExtension 2009-05-11 21:09:24 +00:00			`subject VARCHAR(64) NOT NULL,`
			`message TEXT NOT NULL,`
			`is_read SCORE_BOOL NOT NULL DEFAULT SCORE_BOOL_N,`
mysql ignores the FK names anyway, so all they were doing was bothering me ~_~ 2012-03-11 01:52:25 +00:00			`FOREIGN KEY (from_id) REFERENCES users(id) ON DELETE CASCADE,`
			`FOREIGN KEY (to_id) REFERENCES users(id) ON DELETE CASCADE`
make things use SimpleExtension 2009-05-11 21:09:24 +00:00			`");`
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`$database->execute("CREATE INDEX private_message__to_id ON private_message(to_id)");`
			`$config->set_int("pm_version", 2);`
			`log_info("pm", "extension installed");`
			`}`

			`if ($config->get_int("pm_version") < 2) {`
			`log_info("pm", "Adding foreign keys to private messages");`
			`$database->Execute("delete from private_message where to_id not in (select id from users);");`
			`$database->Execute("delete from private_message where from_id not in (select id from users);");`
			`$database->Execute("ALTER TABLE private_message`
mysql ignores the FK names anyway, so all they were doing was bothering me ~_~ 2012-03-11 01:52:25 +00:00			`ADD FOREIGN KEY (from_id) REFERENCES users(id) ON DELETE CASCADE,`
			`ADD FOREIGN KEY (to_id) REFERENCES users(id) ON DELETE CASCADE;");`
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`$config->set_int("pm_version", 2);`
			`log_info("pm", "extension installed");`
			`}`
			`}`

			`public function onUserBlockBuilding(UserBlockBuildingEvent $event)`
			`{`
			`global $user;`
			`if (!$user->is_anonymous()) {`
			`$count = $this->count_pms($user);`
			`$h_count = $count > 0 ? " <span class='unread'>($count)</span>" : "";`
			`$event->add_link("Private Messages$h_count", make_link("user#private-messages"));`
			`}`
			`}`

			`public function onUserPageBuilding(UserPageBuildingEvent $event)`
			`{`
			`global $page, $user;`
			`$duser = $event->display_user;`
			`if (!$user->is_anonymous() && !$duser->is_anonymous()) {`
Permissions to constants 2019-07-09 14:10:21 +00:00			`if (($user->id == $duser->id) \|\| $user->can(Permissions::VIEW_OTHER_PMS)) {`
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`$this->theme->display_pms($page, $this->get_pms($duser));`
			`}`
			`if ($user->id != $duser->id) {`
			`$this->theme->display_composer($page, $user, $duser);`
			`}`
			`}`
			`}`

			`public function onPageRequest(PageRequestEvent $event)`
			`{`
			`global $database, $page, $user;`
			`if ($event->page_matches("pm")) {`
			`if (!$user->is_anonymous()) {`
			`switch ($event->get_arg(0)) {`
			`case "read":`
			`$pm_id = int_escape($event->get_arg(1));`
			`$pm = $database->get_row("SELECT * FROM private_message WHERE id = :id", ["id" => $pm_id]);`
			`if (is_null($pm)) {`
			`$this->theme->display_error(404, "No such PM", "There is no PM #$pm_id");`
Permissions to constants 2019-07-09 14:10:21 +00:00			`} elseif (($pm["to_id"] == $user->id) \|\| $user->can(Permissions::VIEW_OTHER_PMS)) {`
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`$from_user = User::by_id(int_escape($pm["from_id"]));`
			`if ($pm["to_id"] == $user->id) {`
			`$database->execute("UPDATE private_message SET is_read='Y' WHERE id = :id", ["id" => $pm_id]);`
			`$database->cache->delete("pm-count-{$user->id}");`
			`}`
			`$this->theme->display_message($page, $from_user, $user, new PM($pm));`
			`} else {`
			`// permission denied`
			`}`
			`break;`
			`case "delete":`
			`if ($user->check_auth_token()) {`
			`$pm_id = int_escape($_POST["pm_id"]);`
			`$pm = $database->get_row("SELECT * FROM private_message WHERE id = :id", ["id" => $pm_id]);`
			`if (is_null($pm)) {`
			`$this->theme->display_error(404, "No such PM", "There is no PM #$pm_id");`
Permissions to constants 2019-07-09 14:10:21 +00:00			`} elseif (($pm["to_id"] == $user->id) \|\| $user->can(Permissions::VIEW_OTHER_PMS)) {`
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`$database->execute("DELETE FROM private_message WHERE id = :id", ["id" => $pm_id]);`
			`$database->cache->delete("pm-count-{$user->id}");`
			`log_info("pm", "Deleted PM #$pm_id", "PM deleted");`
PageMode constants 2019-06-19 01:58:28 +00:00			`$page->set_mode(PageMode::REDIRECT);`
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`$page->set_redirect($_SERVER["HTTP_REFERER"]);`
			`}`
			`}`
			`break;`
			`case "send":`
			`if ($user->check_auth_token()) {`
			`$to_id = int_escape($_POST["to_id"]);`
			`$from_id = $user->id;`
			`$subject = $_POST["subject"];`
			`$message = $_POST["message"];`
			`send_event(new SendPMEvent(new PM($from_id, $_SERVER["REMOTE_ADDR"], $to_id, $subject, $message)));`
			`flash_message("PM sent");`
PageMode constants 2019-06-19 01:58:28 +00:00			`$page->set_mode(PageMode::REDIRECT);`
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`$page->set_redirect($_SERVER["HTTP_REFERER"]);`
			`}`
			`break;`
			`default:`
			`$this->theme->display_error(400, "Invalid action", "That's not something you can do with a PM");`
			`break;`
			`}`
			`}`
			`}`
			`}`

			`public function onSendPM(SendPMEvent $event)`
			`{`
			`global $database;`
			`$database->execute(`
			`"`
make things use SimpleExtension 2009-05-11 21:09:24 +00:00			`INSERT INTO private_message(`
			`from_id, from_ip, to_id,`
			`sent_date, subject, message)`
pm: PDO compatibility 2011-02-22 22:29:31 +00:00			`VALUES(:fromid, :fromip, :toid, now(), :subject, :message)",`
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`["fromid" => $event->pm->from_id, "fromip" => $event->pm->from_ip,`
			`"toid" => $event->pm->to_id, "subject" => $event->pm->subject, "message" => $event->pm->message]`
			`);`
			`$database->cache->delete("pm-count-{$event->pm->to_id}");`
			`log_info("pm", "Sent PM to User #{$event->pm->to_id}");`
			`}`
private messaging system git-svn-id: file:///home/shish/svn/shimmie2/trunk@1032 7f39781d-f577-437e-ae19-be835c7a54ca 2008-09-07 05:57:28 +00:00
make things use SimpleExtension 2009-05-11 21:09:24 +00:00
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`private function get_pms(User $user)`
			`{`
			`global $database;`
private messaging system git-svn-id: file:///home/shish/svn/shimmie2/trunk@1032 7f39781d-f577-437e-ae19-be835c7a54ca 2008-09-07 05:57:28 +00:00
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`$arr = $database->get_all(`
			`"`
pm: PDO compatibility 2011-02-22 22:29:31 +00:00			`SELECT private_message.*,user_from.name AS from_name`
			`FROM private_message`
			`JOIN users AS user_from ON user_from.id=from_id`
explicit sorting for PM list 2013-02-09 10:26:30 +00:00			`WHERE to_id = :toid`
			`ORDER BY sent_date DESC",`
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`["toid" => $user->id]`
			`);`
			`$pms = [];`
			`foreach ($arr as $pm) {`
			`$pms[] = new PM($pm);`
			`}`
			`return $pms;`
			`}`

			`private function count_pms(User $user)`
			`{`
			`global $database;`

			`$count = $database->cache->get("pm-count:{$user->id}");`
			`if (is_null($count) \|\| $count === false) {`
			`$count = $database->get_one("`
PM count 2012-03-02 17:41:25 +00:00			`SELECT count(*)`
			`FROM private_message`
count the messages properly, and show them... 2012-03-02 18:03:34 +00:00			`WHERE to_id = :to_id`
PM count 2012-03-02 17:41:25 +00:00			`AND is_read = :is_read`
PSR-2. I'm not a huge fan, but ugly consistency beats no consistency... 2019-05-28 16:59:38 +00:00			`", ["to_id" => $user->id, "is_read" => "N"]);`
			`$database->cache->set("pm-count:{$user->id}", $count, 600);`
			`}`
			`return $count;`
			`}`
private messaging system git-svn-id: file:///home/shish/svn/shimmie2/trunk@1032 7f39781d-f577-437e-ae19-be835c7a54ca 2008-09-07 05:57:28 +00:00			`}`