* Yeah, and again notices ... * And some more * Block access without given user name * Reformatting
		
			
				
	
	
		
			341 lines
		
	
	
	
		
			8.5 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
			
		
		
	
	
			341 lines
		
	
	
	
		
			8.5 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
| <?php
 | |
| /**
 | |
|  * @file mod/cal.php
 | |
|  * @brief The calendar module
 | |
|  * 	This calendar is for profile visitors and contains only the events
 | |
|  * 	of the profile owner
 | |
|  */
 | |
| 
 | |
| use Friendica\App;
 | |
| use Friendica\Content\Feature;
 | |
| use Friendica\Content\Nav;
 | |
| use Friendica\Content\Widget;
 | |
| use Friendica\Core\Config;
 | |
| use Friendica\Core\L10n;
 | |
| use Friendica\Core\System;
 | |
| use Friendica\Database\DBA;
 | |
| use Friendica\Model\Contact;
 | |
| use Friendica\Model\Event;
 | |
| use Friendica\Model\Group;
 | |
| use Friendica\Model\Profile;
 | |
| use Friendica\Protocol\DFRN;
 | |
| use Friendica\Util\DateTimeFormat;
 | |
| use Friendica\Util\Temporal;
 | |
| 
 | |
| function cal_init(App $a)
 | |
| {
 | |
| 	if ($a->argc > 1) {
 | |
| 		DFRN::autoRedir($a, $a->argv[1]);
 | |
| 	}
 | |
| 
 | |
| 	if (Config::get('system', 'block_public') && !local_user() && !remote_user()) {
 | |
| 		return;
 | |
| 	}
 | |
| 
 | |
| 	if ($a->argc < 2) {
 | |
| 		System::httpExit(403, ["title" => L10n::t('Access denied.')]);
 | |
| 	}
 | |
| 
 | |
| 	Nav::setSelected('events');
 | |
| 
 | |
| 	$nick = $a->argv[1];
 | |
| 	$user = DBA::selectFirst('user', [], ['nickname' => $nick, 'blocked' => false]);
 | |
| 	if (!DBA::isResult($user)) {
 | |
| 		return;
 | |
| 	}
 | |
| 
 | |
| 	$a->data['user'] = $user;
 | |
| 	$a->profile_uid = $user['uid'];
 | |
| 
 | |
| 	// if it's a json request abort here becaus we don't
 | |
| 	// need the widget data
 | |
| 	if (!empty($a->argv[2]) && ($a->argv[2] === 'json')) {
 | |
| 		return;
 | |
| 	}
 | |
| 
 | |
| 	$profile = Profile::getByNickname($nick, $a->profile_uid);
 | |
| 
 | |
| 	$account_type = Contact::getAccountType($profile);
 | |
| 
 | |
| 	$tpl = get_markup_template("vcard-widget.tpl");
 | |
| 
 | |
| 	$vcard_widget = replace_macros($tpl, [
 | |
| 		'$name' => $profile['name'],
 | |
| 		'$photo' => $profile['photo'],
 | |
| 		'$addr' => (($profile['addr'] != "") ? $profile['addr'] : ""),
 | |
| 		'$account_type' => $account_type,
 | |
| 		'$pdesc' => (($profile['pdesc'] != "") ? $profile['pdesc'] : ""),
 | |
| 	]);
 | |
| 
 | |
| 	$cal_widget = Widget\CalendarExport::getHTML();
 | |
| 
 | |
| 	if (!x($a->page, 'aside')) {
 | |
| 		$a->page['aside'] = '';
 | |
| 	}
 | |
| 
 | |
| 	$a->page['aside'] .= $vcard_widget;
 | |
| 	$a->page['aside'] .= $cal_widget;
 | |
| 
 | |
| 	return;
 | |
| }
 | |
| 
 | |
| function cal_content(App $a)
 | |
| {
 | |
| 	Nav::setSelected('events');
 | |
| 
 | |
| 	// get the translation strings for the callendar
 | |
| 	$i18n = Event::getStrings();
 | |
| 
 | |
| 	$htpl = get_markup_template('event_head.tpl');
 | |
| 	$a->page['htmlhead'] .= replace_macros($htpl, [
 | |
| 		'$baseurl' => System::baseUrl(),
 | |
| 		'$module_url' => '/cal/' . $a->data['user']['nickname'],
 | |
| 		'$modparams' => 2,
 | |
| 		'$i18n' => $i18n,
 | |
| 	]);
 | |
| 
 | |
| 	$etpl = get_markup_template('event_end.tpl');
 | |
| 	$a->page['end'] .= replace_macros($etpl, [
 | |
| 		'$baseurl' => System::baseUrl(),
 | |
| 	]);
 | |
| 
 | |
| 	$mode = 'view';
 | |
| 	$y = 0;
 | |
| 	$m = 0;
 | |
| 	$ignored = (x($_REQUEST, 'ignored') ? intval($_REQUEST['ignored']) : 0);
 | |
| 
 | |
| 	$format = 'ical';
 | |
| 	if ($a->argc == 4 && $a->argv[2] == 'export') {
 | |
| 		$mode = 'export';
 | |
| 		$format = $a->argv[3];
 | |
| 	}
 | |
| 
 | |
| 	// Setup permissions structures
 | |
| 	$remote_contact = false;
 | |
| 	$contact_id = 0;
 | |
| 
 | |
| 	$owner_uid = $a->data['user']['uid'];
 | |
| 	$nick = $a->data['user']['nickname'];
 | |
| 
 | |
| 	if (x($_SESSION, 'remote') && is_array($_SESSION['remote'])) {
 | |
| 		foreach ($_SESSION['remote'] as $v) {
 | |
| 			if ($v['uid'] == $a->profile['profile_uid']) {
 | |
| 				$contact_id = $v['cid'];
 | |
| 				break;
 | |
| 			}
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	$groups = [];
 | |
| 	if ($contact_id) {
 | |
| 		$groups = Group::getIdsByContactId($contact_id);
 | |
| 		$r = q("SELECT * FROM `contact` WHERE `id` = %d AND `uid` = %d LIMIT 1",
 | |
| 			intval($contact_id),
 | |
| 			intval($a->profile['profile_uid'])
 | |
| 		);
 | |
| 		if (DBA::isResult($r)) {
 | |
| 			$remote_contact = true;
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	$is_owner = local_user() == $a->profile['profile_uid'];
 | |
| 
 | |
| 	if ($a->profile['hidewall'] && !$is_owner && !$remote_contact) {
 | |
| 		notice(L10n::t('Access to this profile has been restricted.') . EOL);
 | |
| 		return;
 | |
| 	}
 | |
| 
 | |
| 	// get the permissions
 | |
| 	$sql_perms = item_permissions_sql($owner_uid, $remote_contact, $groups);
 | |
| 	// we only want to have the events of the profile owner
 | |
| 	$sql_extra = " AND `event`.`cid` = 0 " . $sql_perms;
 | |
| 
 | |
| 	// get the tab navigation bar
 | |
| 	$tabs = Profile::getTabs($a, false, $a->data['user']['nickname']);
 | |
| 
 | |
| 	// The view mode part is similiar to /mod/events.php
 | |
| 	if ($mode == 'view') {
 | |
| 		$thisyear = DateTimeFormat::localNow('Y');
 | |
| 		$thismonth = DateTimeFormat::localNow('m');
 | |
| 		if (!$y) {
 | |
| 			$y = intval($thisyear);
 | |
| 		}
 | |
| 
 | |
| 		if (!$m) {
 | |
| 			$m = intval($thismonth);
 | |
| 		}
 | |
| 
 | |
| 		// Put some limits on dates. The PHP date functions don't seem to do so well before 1900.
 | |
| 		// An upper limit was chosen to keep search engines from exploring links millions of years in the future.
 | |
| 
 | |
| 		if ($y < 1901) {
 | |
| 			$y = 1900;
 | |
| 		}
 | |
| 
 | |
| 		if ($y > 2099) {
 | |
| 			$y = 2100;
 | |
| 		}
 | |
| 
 | |
| 		$nextyear = $y;
 | |
| 		$nextmonth = $m + 1;
 | |
| 		if ($nextmonth > 12) {
 | |
| 			$nextmonth = 1;
 | |
| 			$nextyear ++;
 | |
| 		}
 | |
| 
 | |
| 		$prevyear = $y;
 | |
| 		if ($m > 1) {
 | |
| 			$prevmonth = $m - 1;
 | |
| 		} else {
 | |
| 			$prevmonth = 12;
 | |
| 			$prevyear --;
 | |
| 		}
 | |
| 
 | |
| 		$dim = Temporal::getDaysInMonth($y, $m);
 | |
| 		$start = sprintf('%d-%d-%d %d:%d:%d', $y, $m, 1, 0, 0, 0);
 | |
| 		$finish = sprintf('%d-%d-%d %d:%d:%d', $y, $m, $dim, 23, 59, 59);
 | |
| 
 | |
| 
 | |
| 		if (!empty($a->argv[2]) && ($a->argv[2] === 'json')) {
 | |
| 			if (x($_GET, 'start')) {
 | |
| 				$start = $_GET['start'];
 | |
| 			}
 | |
| 
 | |
| 			if (x($_GET, 'end')) {
 | |
| 				$finish = $_GET['end'];
 | |
| 			}
 | |
| 		}
 | |
| 
 | |
| 		$start = DateTimeFormat::utc($start);
 | |
| 		$finish = DateTimeFormat::utc($finish);
 | |
| 
 | |
| 		$adjust_start = DateTimeFormat::local($start);
 | |
| 		$adjust_finish = DateTimeFormat::local($finish);
 | |
| 
 | |
| 		// put the event parametes in an array so we can better transmit them
 | |
| 		$event_params = [
 | |
| 			'event_id'      => intval(defaults($_GET, 'id', 0)),
 | |
| 			'start'         => $start,
 | |
| 			'finish'        => $finish,
 | |
| 			'adjust_start'  => $adjust_start,
 | |
| 			'adjust_finish' => $adjust_finish,
 | |
| 			'ignore'        => $ignored,
 | |
| 		];
 | |
| 
 | |
| 		// get events by id or by date
 | |
| 		if ($event_params['event_id']) {
 | |
| 			$r = Event::getListById($owner_uid, $event_params['event-id'], $sql_extra);
 | |
| 		} else {
 | |
| 			$r = Event::getListByDate($owner_uid, $event_params, $sql_extra);
 | |
| 		}
 | |
| 
 | |
| 		$links = [];
 | |
| 
 | |
| 		if (DBA::isResult($r)) {
 | |
| 			$r = Event::sortByDate($r);
 | |
| 			foreach ($r as $rr) {
 | |
| 				$j = $rr['adjust'] ? DateTimeFormat::local($rr['start'], 'j') : DateTimeFormat::utc($rr['start'], 'j');
 | |
| 				if (!x($links, $j)) {
 | |
| 					$links[$j] = System::baseUrl() . '/' . $a->cmd . '#link-' . $j;
 | |
| 				}
 | |
| 			}
 | |
| 		}
 | |
| 
 | |
| 		// transform the event in a usable array
 | |
| 		$events = Event::prepareListForTemplate($r);
 | |
| 
 | |
| 		if (!empty($a->argv[2]) && ($a->argv[2] === 'json')) {
 | |
| 			echo json_encode($events);
 | |
| 			killme();
 | |
| 		}
 | |
| 
 | |
| 		// links: array('href', 'text', 'extra css classes', 'title')
 | |
| 		if (x($_GET, 'id')) {
 | |
| 			$tpl = get_markup_template("event.tpl");
 | |
| 		} else {
 | |
| //			if (Config::get('experimentals','new_calendar')==1){
 | |
| 			$tpl = get_markup_template("events_js.tpl");
 | |
| //			} else {
 | |
| //				$tpl = get_markup_template("events.tpl");
 | |
| //			}
 | |
| 		}
 | |
| 
 | |
| 		// Get rid of dashes in key names, Smarty3 can't handle them
 | |
| 		foreach ($events as $key => $event) {
 | |
| 			$event_item = [];
 | |
| 			foreach ($event['item'] as $k => $v) {
 | |
| 				$k = str_replace('-', '_', $k);
 | |
| 				$event_item[$k] = $v;
 | |
| 			}
 | |
| 			$events[$key]['item'] = $event_item;
 | |
| 		}
 | |
| 
 | |
| 		$o = replace_macros($tpl, [
 | |
| 			'$baseurl' => System::baseUrl(),
 | |
| 			'$tabs' => $tabs,
 | |
| 			'$title' => L10n::t('Events'),
 | |
| 			'$view' => L10n::t('View'),
 | |
| 			'$previous' => [System::baseUrl() . "/events/$prevyear/$prevmonth", L10n::t('Previous'), '', ''],
 | |
| 			'$next' => [System::baseUrl() . "/events/$nextyear/$nextmonth", L10n::t('Next'), '', ''],
 | |
| 			'$calendar' => Temporal::getCalendarTable($y, $m, $links, ' eventcal'),
 | |
| 			'$events' => $events,
 | |
| 			"today" => L10n::t("today"),
 | |
| 			"month" => L10n::t("month"),
 | |
| 			"week" => L10n::t("week"),
 | |
| 			"day" => L10n::t("day"),
 | |
| 			"list" => L10n::t("list"),
 | |
| 		]);
 | |
| 
 | |
| 		if (x($_GET, 'id')) {
 | |
| 			echo $o;
 | |
| 			killme();
 | |
| 		}
 | |
| 
 | |
| 		return $o;
 | |
| 	}
 | |
| 
 | |
| 	if ($mode == 'export') {
 | |
| 		if (!intval($owner_uid)) {
 | |
| 			notice(L10n::t('User not found'));
 | |
| 			return;
 | |
| 		}
 | |
| 
 | |
| 		// Test permissions
 | |
| 		// Respect the export feature setting for all other /cal pages if it's not the own profile
 | |
| 		if ((local_user() !== intval($owner_uid)) && !Feature::isEnabled($owner_uid, "export_calendar")) {
 | |
| 			notice(L10n::t('Permission denied.') . EOL);
 | |
| 			goaway('cal/' . $nick);
 | |
| 		}
 | |
| 
 | |
| 		// Get the export data by uid
 | |
| 		$evexport = Event::exportListByUserId($owner_uid, $format);
 | |
| 
 | |
| 		if (!$evexport["success"]) {
 | |
| 			if ($evexport["content"]) {
 | |
| 				notice(L10n::t('This calendar format is not supported'));
 | |
| 			} else {
 | |
| 				notice(L10n::t('No exportable data found'));
 | |
| 			}
 | |
| 
 | |
| 			// If it the own calendar return to the events page
 | |
| 			// otherwise to the profile calendar page
 | |
| 			if (local_user() === intval($owner_uid)) {
 | |
| 				$return_path = "events";
 | |
| 			} else {
 | |
| 				$return_path = "cal/" . $nick;
 | |
| 			}
 | |
| 
 | |
| 			goaway($return_path);
 | |
| 		}
 | |
| 
 | |
| 		// If nothing went wrong we can echo the export content
 | |
| 		if ($evexport["success"]) {
 | |
| 			header('Content-type: text/calendar');
 | |
| 			header('content-disposition: attachment; filename="' . L10n::t('calendar') . '-' . $nick . '.' . $evexport["extension"] . '"');
 | |
| 			echo $evexport["content"];
 | |
| 			killme();
 | |
| 		}
 | |
| 
 | |
| 		return;
 | |
| 	}
 | |
| }
 |