This repository has been archived on 2024-09-05. You can view files and clone it, but cannot push or open issues or pull requests.
shimmie2/ext/pm/main.php

306 lines
10 KiB
PHP

<?php
declare(strict_types=1);
namespace Shimmie2;
use GQLA\Type;
use GQLA\Field;
use GQLA\Query;
use GQLA\Mutation;
use function MicroHTML\{emptyHTML, SPAN};
class SendPMEvent extends Event
{
public PM $pm;
public function __construct(PM $pm)
{
parent::__construct();
$this->pm = $pm;
}
}
#[Type(name: "PrivateMessage")]
class PM
{
public int $id = -1;
public int $from_id;
public string $from_ip;
public int $to_id;
public mixed $sent_date;
#[Field]
public string $subject;
#[Field]
public string $message;
#[Field]
public bool $is_read;
#[Field]
public function from(): User
{
return User::by_id($this->from_id);
}
#[Field(name: "pm_id")]
public function graphql_oid(): int
{
return $this->id;
}
#[Field(name: "id")]
public function graphql_guid(): string
{
return "pm:{$this->id}";
}
public function __construct(
int $from_id,
string $from_ip,
int $to_id,
string $subject,
string $message,
bool $is_read = false
) {
$this->from_id = $from_id;
$this->from_ip = $from_ip;
$this->to_id = $to_id;
$this->subject = $subject;
$this->message = $message;
$this->is_read = $is_read;
}
/**
* @param array<string, mixed> $row
*/
public static function from_row(array $row): PM
{
$pm = new PM(
(int)$row["from_id"],
$row["from_ip"],
(int)$row["to_id"],
$row["subject"],
$row["message"],
bool_escape($row["is_read"]),
);
$pm->id = (int)$row["id"];
$pm->sent_date = $row["sent_date"];
return $pm;
}
/**
* @return PM[]|null
*/
#[Field(extends: "User", name: "private_messages", type: "[PrivateMessage!]")]
public static function get_pms(User $duser): ?array
{
global $database, $user;
if (!$user->can(Permissions::READ_PM)) {
return null;
}
if (($duser->id != $user->id) && !$user->can(Permissions::VIEW_OTHER_PMS)) {
return null;
}
$pms = [];
$arr = $database->get_all(
"SELECT * FROM private_message WHERE to_id = :to_id ORDER BY sent_date DESC",
["to_id" => $duser->id]
);
foreach ($arr as $pm) {
$pms[] = PM::from_row($pm);
}
return $pms;
}
#[Field(extends: "User", name: "private_message_unread_count")]
public static function count_unread_pms(User $duser): ?int
{
global $database, $user;
if (!$user->can(Permissions::READ_PM)) {
return null;
}
if (($duser->id != $user->id) && !$user->can(Permissions::VIEW_OTHER_PMS)) {
return null;
}
return (int)$database->get_one(
"SELECT COUNT(*) FROM private_message WHERE to_id = :to_id AND is_read = :is_read",
["is_read" => false, "to_id" => $duser->id]
);
}
#[Mutation(name: "create_private_message")]
public static function send_pm(int $to_user_id, string $subject, string $message): bool
{
global $user;
if (!$user->can(Permissions::SEND_PM)) {
return false;
}
send_event(new SendPMEvent(new PM($user->id, get_real_ip(), $to_user_id, $subject, $message)));
return true;
}
}
class PrivMsg extends Extension
{
/** @var PrivMsgTheme */
protected Themelet $theme;
public function onDatabaseUpgrade(DatabaseUpgradeEvent $event): void
{
global $database;
// shortcut to latest
if ($this->get_version("pm_version") < 1) {
$database->create_table("private_message", "
id SCORE_AIPK,
from_id INTEGER NOT NULL,
from_ip SCORE_INET NOT NULL,
to_id INTEGER NOT NULL,
sent_date TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
subject VARCHAR(64) NOT NULL,
message TEXT NOT NULL,
is_read BOOLEAN NOT NULL DEFAULT FALSE,
FOREIGN KEY (from_id) REFERENCES users(id) ON DELETE CASCADE,
FOREIGN KEY (to_id) REFERENCES users(id) ON DELETE CASCADE
");
$database->execute("CREATE INDEX private_message__to_id ON private_message(to_id)");
$this->set_version("pm_version", 3);
}
if ($this->get_version("pm_version") < 2) {
log_info("pm", "Adding foreign keys to private messages");
$database->execute("delete from private_message where to_id not in (select id from users);");
$database->execute("delete from private_message where from_id not in (select id from users);");
$database->execute("ALTER TABLE private_message
ADD FOREIGN KEY (from_id) REFERENCES users(id) ON DELETE CASCADE,
ADD FOREIGN KEY (to_id) REFERENCES users(id) ON DELETE CASCADE;");
$this->set_version("pm_version", 2);
}
if ($this->get_version("pm_version") < 3) {
$database->standardise_boolean("private_message", "is_read", true);
$this->set_version("pm_version", 3);
}
}
public function onPageSubNavBuilding(PageSubNavBuildingEvent $event): void
{
global $user;
if ($event->parent === "user") {
if ($user->can(Permissions::READ_PM)) {
$count = $this->count_pms($user);
$h_count = $count > 0 ? SPAN(["class" => 'unread'], "($count)") : "";
$event->add_nav_link("pm", new Link('user#private-messages'), emptyHTML("Private Messages", $h_count));
}
}
}
public function onUserBlockBuilding(UserBlockBuildingEvent $event): void
{
global $user;
if ($user->can(Permissions::READ_PM)) {
$count = $this->count_pms($user);
$h_count = $count > 0 ? SPAN(["class" => 'unread'], "($count)") : "";
$event->add_link(emptyHTML("Private Messages", $h_count), make_link("user", null, "private-messages"));
}
}
public function onUserPageBuilding(UserPageBuildingEvent $event): void
{
global $page, $user;
$duser = $event->display_user;
if (!$user->is_anonymous() && !$duser->is_anonymous()) {
$pms = PM::get_pms($duser);
if (!is_null($pms)) {
$this->theme->display_pms($page, $pms);
}
if ($user->can(Permissions::SEND_PM) && $user->id != $duser->id) {
$this->theme->display_composer($page, $user, $duser);
}
}
}
public function onPageRequest(PageRequestEvent $event): void
{
global $cache, $database, $page, $user;
if ($event->page_matches("pm/read", permission: Permissions::READ_PM)) {
$pm_id = int_escape($event->get_arg(1));
$pm = $database->get_row("SELECT * FROM private_message WHERE id = :id", ["id" => $pm_id]);
if (is_null($pm)) {
$this->theme->display_error(404, "No such PM", "There is no PM #$pm_id");
} elseif (($pm["to_id"] == $user->id) || $user->can(Permissions::VIEW_OTHER_PMS)) {
$from_user = User::by_id((int)$pm["from_id"]);
if ($pm["to_id"] == $user->id) {
$database->execute("UPDATE private_message SET is_read=true WHERE id = :id", ["id" => $pm_id]);
$cache->delete("pm-count-{$user->id}");
}
$pmo = PM::from_row($pm);
$this->theme->display_message($page, $from_user, $user, $pmo);
if($user->can(Permissions::SEND_PM)) {
$this->theme->display_composer($page, $user, $from_user, "Re: ".$pmo->subject);
}
} else {
throw new PermissionDeniedException("You do not have permission to view this PM");
}
}
if ($event->page_matches("pm/delete", method: "POST", permission: Permissions::READ_PM)) {
$pm_id = int_escape($event->req_POST("pm_id"));
$pm = $database->get_row("SELECT * FROM private_message WHERE id = :id", ["id" => $pm_id]);
if (is_null($pm)) {
$this->theme->display_error(404, "No such PM", "There is no PM #$pm_id");
} elseif (($pm["to_id"] == $user->id) || $user->can(Permissions::VIEW_OTHER_PMS)) {
$database->execute("DELETE FROM private_message WHERE id = :id", ["id" => $pm_id]);
$cache->delete("pm-count-{$user->id}");
log_info("pm", "Deleted PM #$pm_id", "PM deleted");
$page->set_mode(PageMode::REDIRECT);
$page->set_redirect(referer_or(make_link()));
}
}
if ($event->page_matches("pm/send", method: "POST", permission: Permissions::SEND_PM)) {
$to_id = int_escape($event->req_POST("to_id"));
$from_id = $user->id;
$subject = $event->req_POST("subject");
$message = $event->req_POST("message");
send_event(new SendPMEvent(new PM($from_id, get_real_ip(), $to_id, $subject, $message)));
$page->flash("PM sent");
$page->set_mode(PageMode::REDIRECT);
$page->set_redirect(referer_or(make_link()));
}
}
public function onSendPM(SendPMEvent $event): void
{
global $cache, $database;
$database->execute(
"
INSERT INTO private_message(
from_id, from_ip, to_id,
sent_date, subject, message)
VALUES(:fromid, :fromip, :toid, now(), :subject, :message)",
["fromid" => $event->pm->from_id, "fromip" => $event->pm->from_ip,
"toid" => $event->pm->to_id, "subject" => $event->pm->subject, "message" => $event->pm->message]
);
$cache->delete("pm-count-{$event->pm->to_id}");
log_info("pm", "Sent PM to User #{$event->pm->to_id}");
}
private function count_pms(User $user): int
{
global $database;
return cache_get_or_set(
"pm-count:{$user->id}",
fn () => $database->get_one("
SELECT count(*)
FROM private_message
WHERE to_id = :to_id
AND is_read = :is_read
", ["to_id" => $user->id, "is_read" => false]),
600
);
}
}