Hypolite Petovan
18f54f4425
- Moved several admin pages to the moderation area - ACL still is checking for administrator credentials
134 lines
4.6 KiB
PHP
134 lines
4.6 KiB
PHP
<?php
|
|
/**
|
|
* @copyright Copyright (C) 2010-2022, the Friendica project
|
|
*
|
|
* @license GNU AGPL version 3 or any later version
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License as
|
|
* published by the Free Software Foundation, either version 3 of the
|
|
* License, or (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License
|
|
* along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
*
|
|
*/
|
|
|
|
namespace Friendica\Module;
|
|
|
|
use Friendica\App;
|
|
use Friendica\BaseModule;
|
|
use Friendica\Core\L10n;
|
|
use Friendica\Core\Renderer;
|
|
use Friendica\Core\Session\Capability\IHandleUserSessions;
|
|
use Friendica\Navigation\SystemMessages;
|
|
use Friendica\Network\HTTPException;
|
|
use Friendica\Util\Profiler;
|
|
use Psr\Log\LoggerInterface;
|
|
|
|
/**
|
|
* This abstract module is meant to be extended by all modules that are reserved to moderator users.
|
|
*
|
|
* It performs a blanket permission check in all the module methods as long as the relevant `parent::method()` is
|
|
* called in the inheriting module.
|
|
*
|
|
* Additionally, it puts together the moderation page aside with all the moderation links.
|
|
*
|
|
* @package Friendica\Module
|
|
*/
|
|
abstract class BaseModeration extends BaseModule
|
|
{
|
|
/** @var IHandleUserSessions */
|
|
protected $session;
|
|
/** @var SystemMessages */
|
|
protected $systemMessages;
|
|
/** @var App */
|
|
protected $app;
|
|
/** @var App\Page */
|
|
protected $page;
|
|
|
|
public function __construct(App\Page $page, App $app, SystemMessages $systemMessages, IHandleUserSessions $session, L10n $l10n, App\BaseURL $baseUrl, App\Arguments $args, LoggerInterface $logger, Profiler $profiler, Response $response, array $server, array $parameters = [])
|
|
{
|
|
parent::__construct($l10n, $baseUrl, $args, $logger, $profiler, $response, $server, $parameters);
|
|
|
|
$this->session = $session;
|
|
$this->systemMessages = $systemMessages;
|
|
$this->app = $app;
|
|
$this->page = $page;
|
|
}
|
|
|
|
/**
|
|
* Checks moderator access and throws exceptions if not logged-in moderator
|
|
*
|
|
* @param bool $interactive
|
|
* @return void
|
|
* @throws HTTPException\ForbiddenException
|
|
* @throws HTTPException\InternalServerErrorException
|
|
*/
|
|
public function checkModerationAccess(bool $interactive = false)
|
|
{
|
|
if (!$this->session->getLocalUserId()) {
|
|
if ($interactive) {
|
|
$this->systemMessages->addNotice($this->t('Please login to continue.'));
|
|
$this->session->set('return_path', $this->args->getQueryString());
|
|
$this->baseUrl->redirect('login');
|
|
} else {
|
|
throw new HTTPException\UnauthorizedException($this->t('Please login to continue.'));
|
|
}
|
|
}
|
|
|
|
if (!$this->app->isSiteAdmin()) {
|
|
throw new HTTPException\ForbiddenException($this->t('You don\'t have access to administration pages.'));
|
|
}
|
|
|
|
if ($this->session->getSubManagedUserId()) {
|
|
throw new HTTPException\ForbiddenException($this->t('Submanaged account can\'t access the administration pages. Please log back in as the main account.'));
|
|
}
|
|
}
|
|
|
|
protected function content(array $request = []): string
|
|
{
|
|
$this->checkModerationAccess(true);
|
|
|
|
// Header stuff
|
|
$this->page['htmlhead'] .= Renderer::replaceMacros(Renderer::getMarkupTemplate('moderation/settings_head.tpl'), []);
|
|
|
|
/*
|
|
* Side bar links
|
|
*/
|
|
|
|
// array(url, name, extra css classes)
|
|
// not part of $aside to make the template more adjustable
|
|
$aside_sub = [
|
|
'information' => [$this->t('Information'), [
|
|
'overview' => ['moderation', $this->t('Overview'), 'overview'],
|
|
]],
|
|
'configuration' => [$this->t('Configuration'), [
|
|
'users' => ['moderation/users', $this->t('Users'), 'users'],
|
|
]],
|
|
'tools' => [$this->t('Tools'), [
|
|
'contactblock' => ['moderation/blocklist/contact', $this->t('Contact Blocklist'), 'contactblock'],
|
|
'blocklist' => ['moderation/blocklist/server', $this->t('Server Blocklist'), 'blocklist'],
|
|
'deleteitem' => ['moderation/item/delete', $this->t('Delete Item'), 'deleteitem'],
|
|
]],
|
|
'diagnostics' => [$this->t('Diagnostics'), [
|
|
'itemsource' => ['moderation/item/source', $this->t('Item Source'), 'itemsource'],
|
|
]],
|
|
];
|
|
|
|
$t = Renderer::getMarkupTemplate('moderation/aside.tpl');
|
|
$this->page['aside'] .= Renderer::replaceMacros($t, [
|
|
'$subpages' => $aside_sub,
|
|
'$admtxt' => $this->t('Moderation'),
|
|
'$h_pending' => $this->t('User registrations waiting for confirmation'),
|
|
'$modurl' => 'moderation/'
|
|
]);
|
|
|
|
return '';
|
|
}
|
|
}
|