friendica_2021-01/mod/profperm.php

172 lines
4.2 KiB
PHP
Raw Normal View History

2011-04-13 06:25:00 +02:00
<?php
/**
* @file mod/profperm.php
*/
use Friendica\App;
use Friendica\Core\Protocol;
use Friendica\Content\Text\HTML;
use Friendica\Database\DBA;
use Friendica\DI;
2018-01-15 03:38:26 +01:00
use Friendica\Model\Profile;
function profperm_init(App $a)
{
if (!local_user()) {
2011-04-13 06:25:00 +02:00
return;
}
2011-04-13 06:25:00 +02:00
$which = $a->user['nickname'];
$profile = $a->argv[1];
2011-04-13 06:25:00 +02:00
Profile::load($a, $which, $profile);
2011-04-13 06:25:00 +02:00
}
function profperm_content(App $a) {
2011-04-13 06:25:00 +02:00
if (!local_user()) {
notice(DI::l10n()->t('Permission denied') . EOL);
2011-04-13 06:25:00 +02:00
return;
}
if ($a->argc < 2) {
notice(DI::l10n()->t('Invalid profile identifier.') . EOL );
2011-04-13 06:25:00 +02:00
return;
}
$o = '';
// Switch to text mod interface if we have more than 'n' contacts or group members
$switchtotext = DI::pConfig()->get(local_user(),'system','groupedit_image_limit');
2017-11-07 23:15:59 +01:00
if (is_null($switchtotext)) {
$switchtotext = DI::config()->get('system','groupedit_image_limit', 400);
2017-11-07 23:15:59 +01:00
}
if (($a->argc > 2) && intval($a->argv[1]) && intval($a->argv[2])) {
$r = q("SELECT `id` FROM `contact` WHERE `blocked` = 0 AND `pending` = 0 AND `self` = 0
AND `network` = '%s' AND `id` = %d AND `uid` = %d LIMIT 1",
DBA::escape(Protocol::DFRN),
2011-04-13 06:25:00 +02:00
intval($a->argv[2]),
intval(local_user())
);
if (DBA::isResult($r)) {
2011-04-13 06:25:00 +02:00
$change = intval($a->argv[2]);
}
2011-04-13 06:25:00 +02:00
}
if (($a->argc > 1) && (intval($a->argv[1]))) {
2011-04-13 06:25:00 +02:00
$r = q("SELECT * FROM `profile` WHERE `id` = %d AND `uid` = %d AND `is-default` = 0 LIMIT 1",
intval($a->argv[1]),
intval(local_user())
);
if (!DBA::isResult($r)) {
notice(DI::l10n()->t('Invalid profile identifier.') . EOL );
2011-04-13 06:25:00 +02:00
return;
}
$profile = $r[0];
$r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `profile-id` = %d",
intval(local_user()),
intval($a->argv[1])
);
$ingroup = [];
2018-07-21 14:46:04 +02:00
if (DBA::isResult($r))
foreach($r as $member)
2011-04-13 06:25:00 +02:00
$ingroup[] = $member['id'];
$members = $r;
if (!empty($change)) {
if (in_array($change,$ingroup)) {
q("UPDATE `contact` SET `profile-id` = 0 WHERE `id` = %d AND `uid` = %d",
2011-04-13 06:25:00 +02:00
intval($change),
intval(local_user())
);
}
else {
q("UPDATE `contact` SET `profile-id` = %d WHERE `id` = %d AND `uid` = %d",
2011-04-13 06:25:00 +02:00
intval($a->argv[1]),
intval($change),
intval(local_user())
);
}
$r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `profile-id` = %d",
intval(local_user()),
intval($a->argv[1])
);
$members = $r;
$ingroup = [];
2018-07-21 14:46:04 +02:00
if (DBA::isResult($r))
foreach($r as $member)
2011-04-13 06:25:00 +02:00
$ingroup[] = $member['id'];
}
$o .= '<h2>' . DI::l10n()->t('Profile Visibility Editor') . '</h2>';
2011-04-13 06:25:00 +02:00
$o .= '<h3>' . DI::l10n()->t('Profile') . ' \'' . $profile['profile-name'] . '\'</h3>';
2011-04-13 06:25:00 +02:00
$o .= '<div id="prof-edit-desc">' . DI::l10n()->t('Click on a contact to add or remove.') . '</div>';
2011-04-13 06:25:00 +02:00
}
$o .= '<div id="prof-update-wrapper">';
if (!empty($change))
2011-04-13 06:25:00 +02:00
$o = '';
$o .= '<div id="prof-members-title">';
$o .= '<h3>' . DI::l10n()->t('Visible To') . '</h3>';
$o .= '</div>';
$o .= '<div id="prof-members">';
$textmode = (($switchtotext && (count($members) > $switchtotext)) ? true : false);
foreach($members as $member) {
if ($member['url']) {
2011-04-13 06:25:00 +02:00
$member['click'] = 'profChangeMember(' . $profile['id'] . ',' . $member['id'] . '); return true;';
$o .= HTML::micropro($member,true,'mpprof', $textmode);
2011-04-13 06:25:00 +02:00
}
}
$o .= '</div><div id="prof-members-end"></div>';
$o .= '<hr id="prof-separator" />';
$o .= '<div id="prof-all-contcts-title">';
$o .= '<h3>' . DI::l10n()->t("All Contacts \x28with secure profile access\x29") . '</h3>';
$o .= '</div>';
$o .= '<div id="prof-all-contacts">';
$r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `blocked` = 0 and `pending` = 0 and `self` = 0
AND `network` = '%s' ORDER BY `name` ASC",
intval(local_user()),
DBA::escape(Protocol::DFRN)
2011-04-13 06:25:00 +02:00
);
2018-07-21 14:46:04 +02:00
if (DBA::isResult($r)) {
$textmode = (($switchtotext && (count($r) > $switchtotext)) ? true : false);
foreach($r as $member) {
if (!in_array($member['id'],$ingroup)) {
2011-04-13 06:25:00 +02:00
$member['click'] = 'profChangeMember(' . $profile['id'] . ',' . $member['id'] . '); return true;';
$o .= HTML::micropro($member,true,'mpprof',$textmode);
2011-04-13 06:25:00 +02:00
}
}
}
$o .= '</div><div id="prof-all-contacts-end"></div>';
if (!empty($change)) {
2011-04-13 06:25:00 +02:00
echo $o;
2018-12-26 06:40:12 +01:00
exit();
2011-04-13 06:25:00 +02:00
}
$o .= '</div>';
return $o;
2011-04-13 06:25:00 +02:00
}