mirror of
https://github.com/humhub/humhub.git
synced 2025-03-15 04:29:45 +01:00
540e3013d7
- Enh: Added disable behaviour for non movable target spaces - Fix: Invalid message source error in space permissions
272 lines
7.6 KiB
PHP
272 lines
7.6 KiB
PHP
<?php
|
|
|
|
/**
|
|
* @link https://www.humhub.org/
|
|
* @copyright Copyright (c) 2015 HumHub GmbH & Co. KG
|
|
* @license https://www.humhub.com/licences
|
|
*/
|
|
|
|
namespace humhub\modules\content\controllers;
|
|
|
|
use Yii;
|
|
use yii\web\HttpException;
|
|
use humhub\components\Controller;
|
|
use humhub\modules\content\models\Content;
|
|
use humhub\modules\content\permissions\CreatePublicContent;
|
|
|
|
/**
|
|
* ContentController is responsible for basic content objects.
|
|
*
|
|
* @package humhub.modules_core.wall.controllers
|
|
* @since 0.5
|
|
* @author Luke
|
|
*/
|
|
class ContentController extends Controller
|
|
{
|
|
|
|
/**
|
|
* @inheritdoc
|
|
*/
|
|
public function behaviors()
|
|
{
|
|
return [
|
|
'acl' => [
|
|
'class' => \humhub\components\behaviors\AccessControl::class,
|
|
]
|
|
];
|
|
}
|
|
|
|
public function actionViewModal($id)
|
|
{
|
|
$content = Content::findOne(['id' => $id]);
|
|
if ($content === null) {
|
|
throw new HttpException(404);
|
|
} elseif (!$content->canView()) {
|
|
throw new HttpException(403);
|
|
}
|
|
|
|
if (!Yii::$app->request->isAjax) {
|
|
return $this->redirect(['/content/perma', 'id' => $content->id]);
|
|
}
|
|
|
|
$entry = $content->getPolymorphicRelation();
|
|
if ($entry === null) {
|
|
throw new HttpException(500);
|
|
}
|
|
|
|
return $this->renderAjax('view-modal', ['entry' => $entry]);
|
|
}
|
|
|
|
/**
|
|
* Deletes a content object
|
|
*
|
|
* Returns a JSON list of affected wallEntryIds.
|
|
*/
|
|
public function actionDelete()
|
|
{
|
|
Yii::$app->response->format = 'json';
|
|
|
|
$this->forcePostRequest();
|
|
|
|
$model = Yii::$app->request->get('model');
|
|
|
|
//Due to backward compatibility we use the old delte mechanism in case a model parameter is provided
|
|
$id = (int) ($model != null) ? Yii::$app->request->get('id') : Yii::$app->request->post('id');
|
|
|
|
$contentObj = ($model != null) ? Content::Get($model, $id) : Content::findOne($id);
|
|
|
|
if (!$contentObj->canDelete()) {
|
|
throw new HttpException(400, Yii::t('ContentModule.controllers_ContentController', 'Could not delete content: Access denied!'));
|
|
}
|
|
|
|
if ($contentObj !== null && $contentObj->delete()) {
|
|
$json = [
|
|
'success' => true,
|
|
'uniqueId' => $contentObj->getUniqueId(),
|
|
'model' => $model,
|
|
'pk' => $id
|
|
];
|
|
} else {
|
|
throw new HttpException(500, Yii::t('ContentModule.controllers_ContentController', 'Could not delete content!'));
|
|
}
|
|
|
|
return $json;
|
|
}
|
|
|
|
/**
|
|
* Archives an wall entry & corresponding content object.
|
|
*
|
|
* Returns JSON Output.
|
|
*/
|
|
public function actionArchive()
|
|
{
|
|
Yii::$app->response->format = 'json';
|
|
$this->forcePostRequest();
|
|
|
|
$json = array();
|
|
$json['success'] = false;
|
|
|
|
$id = (int) Yii::$app->request->get('id', "");
|
|
|
|
$content = Content::findOne(['id' => $id]);
|
|
if ($content !== null && $content->canArchive()) {
|
|
$content->archive();
|
|
|
|
$json['success'] = true;
|
|
}
|
|
|
|
return $json;
|
|
}
|
|
|
|
/**
|
|
* UnArchives an wall entry & corresponding content object.
|
|
*
|
|
* Returns JSON Output.
|
|
*/
|
|
public function actionUnarchive()
|
|
{
|
|
$this->forcePostRequest();
|
|
|
|
$json = array();
|
|
$json['success'] = false; // default
|
|
|
|
$id = (int) Yii::$app->request->get('id', "");
|
|
|
|
$content = Content::findOne(['id' => $id]);
|
|
if ($content !== null && $content->canArchive()) {
|
|
$content->unarchive();
|
|
|
|
$json['success'] = true;
|
|
}
|
|
|
|
return $this->asJson($json);
|
|
}
|
|
|
|
public function actionDeleteId()
|
|
{
|
|
$this->forcePostRequest();
|
|
$content = Content::findOne(['id' => Yii::$app->request->post('id')]);
|
|
if (!$content) {
|
|
throw new HttpException(400, Yii::t('ContentController.base', 'Invalid content id given!'));
|
|
} elseif (!$content->canEdit()) {
|
|
throw new HttpException(403);
|
|
}
|
|
|
|
return $this->asJson(['success' => $content->delete()]);
|
|
}
|
|
|
|
public function actionReload($id)
|
|
{
|
|
$content = Content::findOne(['id' => $id]);
|
|
if (!$content) {
|
|
throw new HttpException(400, Yii::t('ContentController.base', 'Invalid content id given!'));
|
|
} elseif (!$content->canView()) {
|
|
throw new HttpException(403);
|
|
}
|
|
|
|
return $this->asJson(\humhub\modules\stream\actions\Stream::getContentResultEntry($content, false));
|
|
}
|
|
|
|
/**
|
|
* Switches the content visibility for the given content.
|
|
*
|
|
* @param type $id content id
|
|
* @return \yii\web\Response
|
|
* @throws HttpException
|
|
*/
|
|
public function actionToggleVisibility($id)
|
|
{
|
|
$this->forcePostRequest();
|
|
$content = Content::findOne(['id' => $id]);
|
|
|
|
if (!$content) {
|
|
throw new HttpException(400, Yii::t('ContentController.base', 'Invalid content id given!'));
|
|
} elseif (!$content->canEdit()) {
|
|
throw new HttpException(403);
|
|
} elseif ($content->isPrivate() && !$content->container->permissionManager->can(new CreatePublicContent())) {
|
|
throw new HttpException(403);
|
|
}
|
|
|
|
if ($content->isPrivate()) {
|
|
$content->visibility = Content::VISIBILITY_PUBLIC;
|
|
} else {
|
|
$content->visibility = Content::VISIBILITY_PRIVATE;
|
|
}
|
|
|
|
return $this->asJson([
|
|
'success' => $content->save(),
|
|
'state' => $content->visibility
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Pins an wall entry & corresponding content object.
|
|
*
|
|
* Returns JSON Output.
|
|
*/
|
|
public function actionPin()
|
|
{
|
|
$this->forcePostRequest();
|
|
|
|
$json = array();
|
|
$json['success'] = false;
|
|
|
|
$content = Content::findOne(['id' => Yii::$app->request->get('id', "")]);
|
|
if ($content !== null && $content->canPin()) {
|
|
if ($content->countPinnedItems() < 2) {
|
|
$content->pin();
|
|
|
|
$json['success'] = true;
|
|
$json['contentId'] = $content->id;
|
|
} else {
|
|
$json['info'] = Yii::t('ContentModule.controllers_ContentController', "Maximum number of pinned items reached!\n\nYou can pin to top only two items at once.\nTo however pin this item, unpin another before!");
|
|
}
|
|
} else {
|
|
$json['error'] = Yii::t('ContentModule.controllers_ContentController', "Could not load requested object!");
|
|
}
|
|
|
|
return $this->asJson($json);
|
|
}
|
|
|
|
/**
|
|
* Unpins an wall entry & corresponding content object.
|
|
*
|
|
* Returns JSON Output.
|
|
*/
|
|
public function actionUnPin()
|
|
{
|
|
$this->forcePostRequest();
|
|
|
|
$json = [];
|
|
$json['success'] = false;
|
|
|
|
$content = Content::findOne(['id' => Yii::$app->request->get('id', "")]);
|
|
if ($content !== null && $content->canPin()) {
|
|
$content->unpin();
|
|
$json['success'] = true;
|
|
}
|
|
|
|
return $this->asJson($json);
|
|
}
|
|
|
|
public function actionNotificationSwitch()
|
|
{
|
|
$this->forcePostRequest();
|
|
|
|
$json = array();
|
|
$json['success'] = false; // default
|
|
|
|
$content = Content::findOne(['id' => Yii::$app->request->get('id', "")]);
|
|
if ($content !== null) {
|
|
$switch = (Yii::$app->request->get('switch', true) == 1) ? true : false;
|
|
$obj = $content->getPolymorphicRelation();
|
|
$obj->follow(Yii::$app->user->id, $switch);
|
|
$json['success'] = true;
|
|
}
|
|
|
|
return $this->asJson($json);
|
|
}
|
|
}
|
|
|
|
?>
|