<?php
/**
 * @copyright Copyright (C) 2010-2021, the Friendica project
 *
 * @license GNU AGPL version 3 or any later version
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as
 * published by the Free Software Foundation, either version 3 of the
 * License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <https://www.gnu.org/licenses/>.
 *
 */

use Friendica\App;
use Friendica\Core\Protocol;
use Friendica\Core\Renderer;
use Friendica\DI;
use Friendica\Model\Contact;
use Friendica\Model\Profile;
use Friendica\Model\Item;
use Friendica\Network\Probe;
use Friendica\Database\DBA;
use Friendica\Model\Post;
use Friendica\Model\User;
use Friendica\Util\Strings;

function follow_post(App $a)
{
	if (!local_user()) {
		throw new \Friendica\Network\HTTPException\ForbiddenException(DI::l10n()->t('Access denied.'));
	}

	if (isset($_REQUEST['cancel'])) {
		DI::baseUrl()->redirect('contact');
	}

	$url = Probe::cleanURI($_REQUEST['url']);

	follow_process($a, $url);
}

function follow_content(App $a)
{
	$return_path = 'contact';

	if (!local_user()) {
		notice(DI::l10n()->t('Permission denied.'));
		DI::baseUrl()->redirect($return_path);
		// NOTREACHED
	}

	$uid = local_user();

	// Issue 4815: Silently removing a prefixing @
	$url = ltrim(Strings::escapeTags(trim($_REQUEST['url'] ?? '')), '@!');

	// Issue 6874: Allow remote following from Peertube
	if (strpos($url, 'acct:') === 0) {
		$url = str_replace('acct:', '', $url);
	}

	if (!$url) {
		DI::baseUrl()->redirect($return_path);
	}

	$submit = DI::l10n()->t('Submit Request');

	// Don't try to add a pending contact
	$user_contact = DBA::selectFirst('contact', ['pending'], ["`uid` = ? AND ((`rel` != ?) OR (`network` = ?)) AND
		(`nurl` = ? OR `alias` = ? OR `alias` = ?) AND `network` != ?", 
		$uid, Contact::FOLLOWER, Protocol::DFRN, Strings::normaliseLink($url),
		Strings::normaliseLink($url), $url, Protocol::STATUSNET]);

	if (DBA::isResult($user_contact)) {
		if ($user_contact['pending']) {
			notice(DI::l10n()->t('You already added this contact.'));
			$submit = '';
		}
	}

	$contact = Contact::getByURL($url, true);

	// Possibly it is a mail contact
	if (empty($contact)) {
		$contact = Probe::uri($url, Protocol::MAIL, $uid);
	}

	if (empty($contact) || ($contact['network'] == Protocol::PHANTOM)) {
		// Possibly it is a remote item and not an account
		follow_remote_item($url);

		notice(DI::l10n()->t("The network type couldn't be detected. Contact can't be added."));
		$submit = '';
		$contact = ['url' => $url, 'network' => Protocol::PHANTOM, 'name' => $url, 'keywords' => ''];
	}

	$protocol = Contact::getProtocol($contact['url'], $contact['network']);

	if (($protocol == Protocol::DIASPORA) && !DI::config()->get('system', 'diaspora_enabled')) {
		notice(DI::l10n()->t("Diaspora support isn't enabled. Contact can't be added."));
		$submit = '';
	}

	if (($protocol == Protocol::OSTATUS) && DI::config()->get('system', 'ostatus_disabled')) {
		notice(DI::l10n()->t("OStatus support is disabled. Contact can't be added."));
		$submit = '';
	}

	if ($protocol == Protocol::MAIL) {
		$contact['url'] = $contact['addr'];
	}

	if (($protocol === Protocol::DFRN) && !DBA::isResult($contact)) {
		$request = $contact['request'];
		$tpl = Renderer::getMarkupTemplate('dfrn_request.tpl');
	} else {
		if (!empty($_REQUEST['auto'])) {
			follow_process($a, $contact['url']);
		}
	
		$request = DI::baseUrl() . '/follow';
		$tpl = Renderer::getMarkupTemplate('auto_request.tpl');
	}

	$owner = User::getOwnerDataById($uid);
	if (empty($owner)) {
		notice(DI::l10n()->t('Permission denied.'));
		DI::baseUrl()->redirect($return_path);
		// NOTREACHED
	}

	$myaddr = $owner['url'];

	// Makes the connection request for friendica contacts easier
	$_SESSION['fastlane'] = $contact['url'];

	$o = Renderer::replaceMacros($tpl, [
		'$header'        => DI::l10n()->t('Connect/Follow'),
		'$pls_answer'    => DI::l10n()->t('Please answer the following:'),
		'$your_address'  => DI::l10n()->t('Your Identity Address:'),
		'$url_label'     => DI::l10n()->t('Profile URL'),
		'$keywords_label'=> DI::l10n()->t('Tags:'),
		'$submit'        => $submit,
		'$cancel'        => DI::l10n()->t('Cancel'),

		'$request'       => $request,
		'$name'          => $contact['name'],
		'$url'           => $contact['url'],
		'$zrl'           => Profile::zrl($contact['url']),
		'$myaddr'        => $myaddr,
		'$keywords'      => $contact['keywords'],

		'$does_know_you' => ['knowyou', DI::l10n()->t('%s knows you', $contact['name'])],
		'$addnote_field' => ['dfrn-request-message', DI::l10n()->t('Add a personal note:')],
	]);

	DI::page()['aside'] = '';

	if ($protocol != Protocol::PHANTOM) {
		Profile::load($a, '', $contact, false);

		$o .= Renderer::replaceMacros(Renderer::getMarkupTemplate('section_title.tpl'),
			['$title' => DI::l10n()->t('Status Messages and Posts')]
		);

		// Show last public posts
		$o .= Contact::getPostsFromUrl($contact['url']);
	}

	return $o;
}

function follow_process(App $a, string $url)
{
	$return_path = 'follow?url=' . urlencode($url);

	// Makes the connection request for friendica contacts easier
	// This is just a precaution if maybe this page is called somewhere directly via POST
	$_SESSION['fastlane'] = $url;

	$result = Contact::createFromProbe($a->user, $url, true);

	if ($result['success'] == false) {
		// Possibly it is a remote item and not an account
		follow_remote_item($url);

		if ($result['message']) {
			notice($result['message']);
		}
		DI::baseUrl()->redirect($return_path);
	} elseif ($result['cid']) {
		DI::baseUrl()->redirect('contact/' . $result['cid']);
	}

	notice(DI::l10n()->t('The contact could not be added.'));

	DI::baseUrl()->redirect($return_path);
}

function follow_remote_item($url)
{
	$item_id = Item::fetchByLink($url, local_user());
	if (!$item_id) {
		// If the user-specific search failed, we search and probe a public post
		$item_id = Item::fetchByLink($url);
	}

	if (!empty($item_id)) {
		$item = Post::selectFirst(['guid'], ['id' => $item_id]);
		if (DBA::isResult($item)) {
			DI::baseUrl()->redirect('display/' . $item['guid']);
		}
	}
}