|
|
- <?php
-
- namespace App\Http\Controllers;
-
- use Laravel\Lumen\Routing\Controller as BaseController;
- use Illuminate\Http\Request;
- use DB;
-
- class Controller extends BaseController
- {
- private static function displayURL() {
- return preg_replace('/(^https?:\/\/|\/$)/', '', session('me'));
- }
-
- public function index(Request $request) {
- if(session('user_id')) {
-
- $databases = DB::select('SELECT d.*
- FROM `databases` d
- JOIN database_users u ON d.id = u.database_id
- WHERE u.user_id = ?
- ORDER BY name', [session('user_id')]);
-
- return view('dashboard', [
- 'displayURL' => self::displayURL(),
- 'databases' => $databases
- ]);
- } else {
- return view('index');
- }
- }
-
- public function createDatabase(Request $request) {
- if(!session('user_id'))
- return redirect('/');
-
- if($request->input('name') == '') {
- $request->session()->flash('create-error', 'Enter a name.');
- return redirect('/');
- }
-
- // Only alphanumeric chars are allowed
- if(preg_replace('/[^a-zA-Z0-9]/', '', $request->input('name')) != $request->input('name')) {
- $request->session()->flash('create-error', 'Only alphanumeric characters are allowed.');
- $request->session()->flash('database-name', preg_replace('/[^a-zA-Z0-9]/','',$request->input('name')));
- return redirect('/');
- }
-
- // Check for conflicts
- $db = DB::select('SELECT * FROM `databases` WHERE name = ?', [$request->input('name')]);
- if(count($db) == 0) {
-
- // Create the database records
- $id = DB::table('databases')->insertGetId([
- 'name' => $request->input('name'),
- 'read_token' => str_random(40),
- 'write_token' => str_random(40),
- 'created_by' => session('user_id'),
- 'created_at' => date('Y-m-d H:i:s')
- ]);
- DB::table('database_users')->insert([
- 'database_id' => $id,
- 'user_id' => session('user_id'),
- 'created_at' => date('Y-m-d H:i:s')
- ]);
- return redirect('/');
-
- } else {
- $request->session()->flash('create-error', 'That database name is already in use.');
- $request->session()->flash('database-name', $request->input('name'));
- return redirect('/');
- }
- }
-
- public function map(Request $request, $name) {
- if(!session('user_id'))
- return redirect('/');
-
- // Verify this user has access to the database
- $db = DB::table('databases')
- ->join('database_users', function($join){
- $join->on('databases.id','=','database_users.database_id');
- })
- ->where('user_id','=',session('user_id'))
- ->where('name','=',$name)
- ->first();
- if(!$db)
- return redirect('/');
-
-
- return view('map', [
- 'displayURL' => self::displayURL(),
- 'database' => $db,
- ]);
- }
-
- public function settings(Request $request, $name) {
- if(!session('user_id'))
- return redirect('/');
-
- // Only the person that created the database can modify it
- $db = DB::table('databases')
- ->where('created_by','=',session('user_id'))
- ->where('name','=',$name)
- ->first();
- if(!$db)
- return redirect('/');
-
- $users = DB::select('SELECT u.*
- FROM users u
- JOIN database_users d ON u.id = d.user_id
- WHERE d.database_id = ?
- ORDER BY u.url', [$db->id]);
-
- return view('settings', [
- 'displayURL' => self::displayURL(),
- 'database' => $db,
- 'users' => $users
- ]);
- }
-
- public function updateSettings(Request $request, $name) {
- if(!session('user_id'))
- return redirect('/');
-
- // Only the person that created the database can modify it
- $db = DB::table('databases')
- ->where('created_by','=',session('user_id'))
- ->where('name','=',$name)
- ->first();
- if(!$db)
- return redirect('/');
-
- if($request->input('remove_user')) {
-
- $user = DB::table('users')->where('url','=',$request->input('remove_user'))->first();
- if($user) {
- DB::table('database_users')->where('database_id','=',$db->id)->where('user_id','=',$user->id)->delete();
- }
-
- return response(json_encode([
- 'result' => 'ok'
- ]))->header('Content-Type', 'application/json');
-
- } else if($request->input('add_user')) {
- // Find user if it exists already
- $user = DB::table('users')->where('url','=',$request->input('add_user'))->first();
- if($user) {
- $user_id = $user->id;
- } else {
- $user_id = DB::table('users')->insertGetId([
- 'url' => $request->input('add_user'),
- 'created_at' => date('Y-m-d H:i:s')
- ]);
- }
-
- // Add access to the database
- $exists = DB::table('database_users')->where('database_id','=',$db->id)->where('user_id','=',$user_id)->first();
- if(!$exists) {
- DB::table('database_users')->insert([
- 'database_id' => $db->id,
- 'user_id' => $user_id,
- 'created_at' => date('Y-m-d H:i:s')
- ]);
- }
-
- return redirect('/settings/'.$db->name);
- } else if($request->input('micropub_endpoint')) {
- DB::table('databases')->where('id', $db->id)
- ->update([
- 'micropub_endpoint' => $request->input('micropub_endpoint'),
- 'micropub_token' => $request->input('micropub_token'),
- ]);
-
- return redirect('/settings/'.$db->name);
- }
- }
-
- }
|