p3k
/
Quill
mirror of https://github.com/aaronpk/Quill.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
87 Commits
3 Branches
4.1 MiB
Tree: 022f58d956
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '022f58d956'
${ noResults }
Quill/controllers/controllers.php

662 lines
19 KiB
Raw Normal View History

Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
lock to JWT 2.* version
8 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
10 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
10 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add interface for posting travel itinerary
8 years ago
Adds possibility to post photos. With this it is possible to post a photo note with a description, nothing more. It doesn't move the file in the file system, just posts it from the temp location to the users server. It also does validate for file size, content type and max upload size and shows the errors to the user. If everything goes according to plan the response from the users server is shown, together with a link with the posted photos URL.
8 years ago
add repost form
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
add repost form
9 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
10 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add privacy policy stub
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
add privacy policy stub
9 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
lock to JWT 2.* version
8 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
lock to JWT 2.* version
8 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
lock to JWT 2.* version
8 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
add interface for posting travel itinerary
8 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
add post-by-email support to quill
8 years ago
add interface for posting travel itinerary
8 years ago
add post-by-email support to quill
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
add banner to opt in to html content change
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add interface for posting travel itinerary
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add repost form
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add interface for posting travel itinerary
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Adds possibility to post photos. With this it is possible to post a photo note with a description, nothing more. It doesn't move the file in the file system, just posts it from the temp location to the users server. It also does validate for file size, content type and max upload size and shows the errors to the user. If everything goes according to plan the response from the users server is shown, together with a link with the posted photos URL.
8 years ago
add repost form
9 years ago
add interface for posting travel itinerary
8 years ago
add repost form
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add interface for posting travel itinerary
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
actually post likes from the form
9 years ago
Adds possibility to post photos. With this it is possible to post a photo note with a description, nothing more. It doesn't move the file in the file system, just posts it from the temp location to the users server. It also does validate for file size, content type and max upload size and shows the errors to the user. If everything goes according to plan the response from the users server is shown, together with a link with the posted photos URL.
8 years ago
add repost form
9 years ago
add interface for posting travel itinerary
8 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
10 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
add interface for posting travel itinerary
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
add interface for posting travel itinerary
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds instagram auth
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
adds instagram auth
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds instagram auth
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds instagram auth
9 years ago
 
  1. <?php
  2. 

  3. function require_login(&$app, $redirect=true) {
  4.   $params = $app->request()->params();
  5.   if(array_key_exists('token', $params)) {
  6.     try {
  7.       $data = JWT::decode($params['token'], Config::$jwtSecret, array('HS256'));
  8.       $_SESSION['user_id'] = $data->user_id;
  9.       $_SESSION['me'] = $data->me;
  10.     } catch(DomainException $e) {
  11.       if($redirect) {
  12.         header('X-Error: DomainException');
  13.         $app->redirect('/', 301);
  14.       } else {
  15.         return false;
  16.       }
  17.     } catch(UnexpectedValueException $e) {
  18.       if($redirect) {
  19.         header('X-Error: UnexpectedValueException');
  20.         $app->redirect('/', 301);
  21.       } else {
  22.         return false;
  23.       }
  24.     }
  25.   }
  26. 

  27.   if(!array_key_exists('user_id', $_SESSION)) {
  28.     if($redirect)
  29.       $app->redirect('/');
  30.     return false;
  31.   } else {
  32.     return ORM::for_table('users')->find_one($_SESSION['user_id']);
  33.   }
  34. }
  35. 

  36. function generate_login_token() {
  37.   return JWT::encode(array(
  38.     'user_id' => $_SESSION['user_id'],
  39.     'me' => $_SESSION['me'],
  40.     'created_at' => time()
  41.   ), Config::$jwtSecret);
  42. }
  43. 

  44. $app->get('/new', function() use($app) {
  45.   if($user=require_login($app)) {
  46.     $params = $app->request()->params();
  47. 

  48.     $entry = false;
  49.     $photo_url = false;
  50.     $in_reply_to = '';
  51. 

  52.     if(array_key_exists('reply', $params))
  53.        $in_reply_to = $params['reply'];
  54. 

  55.     $test_response = '';
  56.     if($user->last_micropub_response) {
  57.       try {
  58.         if(@json_decode($user->last_micropub_response)) {
  59.           $d = json_decode($user->last_micropub_response);
  60.           $test_response = $d->response;
  61.         }
  62.       } catch(Exception $e) {
  63.       }
  64.     }
  65. 

  66.     $html = render('new-post', array(
  67.       'title' => 'New Post',
  68.       'in_reply_to' => $in_reply_to,
  69.       'micropub_endpoint' => $user->micropub_endpoint,
  70.       'micropub_scope' => $user->micropub_scope,
  71.       'micropub_access_token' => $user->micropub_access_token,
  72.       'response_date' => $user->last_micropub_response_date,
  73.       'syndication_targets' => json_decode($user->syndication_targets, true),
  74.       'test_response' => $test_response,
  75.       'location_enabled' => $user->location_enabled,
  76.       'authorizing' => false
  77.     ));
  78.     $app->response()->body($html);
  79.   }
  80. });
  81. 

  82. $app->get('/bookmark', function() use($app) {
  83.   if($user=require_login($app)) {
  84.     $params = $app->request()->params();
  85. 

  86.     $url = '';
  87.     $name = '';
  88.     $content = '';
  89.     $tags = '';
  90. 

  91.     if(array_key_exists('url', $params))
  92.       $url = $params['url'];
  93. 

  94.     if(array_key_exists('name', $params))
  95.       $name = $params['name'];
  96. 

  97.     if(array_key_exists('content', $params))
  98.       $content = $params['content'];
  99. 

  100.     $html = render('new-bookmark', array(
  101.       'title' => 'New Bookmark',
  102.       'bookmark_url' => $url,
  103.       'bookmark_name' => $name,
  104.       'bookmark_content' => $content,
  105.       'bookmark_tags' => $tags,
  106.       'token' => generate_login_token(),
  107.       'syndication_targets' => json_decode($user->syndication_targets, true),
  108.       'authorizing' => false
  109.     ));
  110.     $app->response()->body($html);
  111.   }
  112. });
  113. 

  114. $app->get('/favorite', function() use($app) {
  115.   if($user=require_login($app)) {
  116.     $params = $app->request()->params();
  117. 

  118.     $url = '';
  119. 

  120.     if(array_key_exists('url', $params))
  121.       $url = $params['url'];
  122. 

  123.     $html = render('new-favorite', array(
  124.       'title' => 'New Favorite',
  125.       'url' => $url,
  126.       'token' => generate_login_token(),
  127.       'authorizing' => false
  128.     ));
  129.     $app->response()->body($html);
  130.   }
  131. });
  132. 

  133. $app->get('/itinerary', function() use($app) {
  134.   if($user=require_login($app)) {
  135.     $params = $app->request()->params();
  136. 

  137.     $html = render('new-itinerary', array(
  138.       'title' => 'Itinerary',
  139.       'authorizing' => false
  140.     ));
  141.     $app->response()->body($html);
  142.   }
  143. });
  144. 

  145. $app->get('/photo', function() use($app) {
  146.   if($user=require_login($app)) {
  147.     $params = $app->request()->params();
  148. 

  149.     $html = render('photo', array(
  150.       'title' => 'New Photo',
  151.       'note_content' => '',
  152.       'authorizing' => false
  153.     ));
  154.     $app->response()->body($html);
  155.   }
  156. });
  157. 

  158. $app->get('/repost', function() use($app) {
  159.   if($user=require_login($app)) {
  160.     $params = $app->request()->params();
  161. 

  162.     $url = '';
  163. 

  164.     if(array_key_exists('url', $params))
  165.       $url = $params['url'];
  166. 

  167.     $html = render('new-repost', array(
  168.       'title' => 'New Repost',
  169.       'url' => $url,
  170.       'token' => generate_login_token(),
  171.       'authorizing' => false
  172.     ));
  173.     $app->response()->body($html);
  174.   }
  175. });
  176. 

  177. $app->post('/prefs', function() use($app) {
  178.   if($user=require_login($app)) {
  179.     $params = $app->request()->params();
  180.     $user->location_enabled = $params['enabled'];
  181.     $user->save();
  182.   }
  183.   $app->response()->body(json_encode(array(
  184.     'result' => 'ok'
  185.   )));
  186. });
  187. 

  188. $app->get('/creating-a-token-endpoint', function() use($app) {
  189.   $app->redirect('http://indiewebcamp.com/token-endpoint', 301);
  190. });
  191. $app->get('/creating-a-micropub-endpoint', function() use($app) {
  192.   $html = render('creating-a-micropub-endpoint', array('title' => 'Creating a Micropub Endpoint', 'authorizing' => false));
  193.   $app->response()->body($html);
  194. });
  195. 

  196. $app->get('/docs', function() use($app) {
  197.   $html = render('docs', array('title' => 'Documentation', 'authorizing' => false));
  198.   $app->response()->body($html);
  199. });
  200. 

  201. $app->get('/privacy', function() use($app) {
  202.   $html = render('privacy', array('title' => 'Quill Privacy Policy', 'authorizing' => false));
  203.   $app->response()->body($html);
  204. });
  205. 

  206. $app->get('/add-to-home', function() use($app) {
  207.   $params = $app->request()->params();
  208.   header("Cache-Control: no-cache, must-revalidate");
  209. 

  210.   if(array_key_exists('token', $params) && !session('add-to-home-started')) {
  211.     unset($_SESSION['add-to-home-started']);
  212. 

  213.     // Verify the token and sign the user in

  214.     try {
  215.       $data = JWT::decode($params['token'], Config::$jwtSecret, array('HS256'));
  216.       $_SESSION['user_id'] = $data->user_id;
  217.       $_SESSION['me'] = $data->me;
  218.       $app->redirect('/new', 301);
  219.     } catch(DomainException $e) {
  220.       header('X-Error: DomainException');
  221.       $app->redirect('/', 301);
  222.     } catch(UnexpectedValueException $e) {
  223.       header('X-Error: UnexpectedValueException');
  224.       $app->redirect('/', 301);
  225.     }
  226. 

  227.   } else {
  228. 

  229.     if($user=require_login($app)) {
  230.       if(array_key_exists('start', $params)) {
  231.         $_SESSION['add-to-home-started'] = true;
  232. 

  233.         $token = JWT::encode(array(
  234.           'user_id' => $_SESSION['user_id'],
  235.           'me' => $_SESSION['me'],
  236.           'created_at' => time()
  237.         ), Config::$jwtSecret);
  238. 

  239.         $app->redirect('/add-to-home?token='.$token, 301);
  240.       } else {
  241.         unset($_SESSION['add-to-home-started']);
  242.         $html = render('add-to-home', array('title' => 'Quill'));
  243.         $app->response()->body($html);
  244.       }
  245.     }
  246.   }
  247. });
  248. 

  249. $app->get('/email', function() use($app) {
  250.   if($user=require_login($app)) {
  251. 

  252.     $test_response = '';
  253.     if($user->last_micropub_response) {
  254.       try {
  255.         if(@json_decode($user->last_micropub_response)) {
  256.           $d = json_decode($user->last_micropub_response);
  257.           $test_response = $d->response;
  258.         }
  259.       } catch(Exception $e) {
  260.       }
  261.     }
  262. 

  263.     if(!$user->email_username) {
  264.       $host = parse_url($user->url, PHP_URL_HOST);
  265.       $user->email_username = $host . '.' . rand(100000,999999);
  266.       $user->save();
  267.     }
  268. 

  269.     $html = render('email', array(
  270.       'title' => 'Post-by-Email',
  271.       'micropub_endpoint' => $user->micropub_endpoint,
  272.       'test_response' => $test_response,
  273.       'user' => $user
  274.     ));
  275.     $app->response()->body($html);
  276.   }
  277. });
  278. 

  279. $app->get('/settings', function() use($app) {
  280.   if($user=require_login($app)) {
  281.     $html = render('settings', array('title' => 'Settings', 'include_facebook' => true, 'authorizing' => false));
  282.     $app->response()->body($html);
  283.   }
  284. });
  285. 

  286. $app->post('/settings/html-content', function() use($app) {
  287.   if($user=require_login($app)) {
  288.     $params = $app->request()->params();
  289.     $user->micropub_optin_html_content = $params['html'] ? 1 : 0;
  290.     $user->save();
  291.     $app->response()->body(json_encode(array(
  292.       'html' => $user->micropub_optin_html_content
  293.     )));
  294.   }
  295. });
  296. $app->get('/settings/html-content', function() use($app) {
  297.   if($user=require_login($app)) {
  298.     $app->response()->body(json_encode(array(
  299.       'html' => $user->micropub_optin_html_content
  300.     )));
  301.   }
  302. });
  303. 

  304. $app->get('/favorite-popup', function() use($app) {
  305.   if($user=require_login($app)) {
  306.     $params = $app->request()->params();
  307. 

  308.     $html = $app->render('favorite-popup.php', array(
  309.       'url' => $params['url'],
  310.       'token' => $params['token']
  311.     ));
  312.     $app->response()->body($html);
  313.   }
  314. });
  315. 

  316. function create_favorite(&$user, $url) {
  317.   $micropub_request = array(
  318.     'like-of' => $url
  319.   );
  320.   $r = micropub_post_for_user($user, $micropub_request);
  321. 

  322.   $facebook_id = false;
  323.   $instagram_id = false;
  324.   $tweet_id = false;
  325. 

  326.   /*
  327.   // Facebook likes are posted via Javascript, so pass the FB ID to the javascript code

  328.   if(preg_match('/https?:\/\/(?:www\.)?facebook\.com\/(?:[^\/]+)\/posts\/(\d+)/', $url, $match)) {
  329.     $facebook_id = $match[1];
  330.   }
  331. 

  332.   if(preg_match('/https?:\/\/(?:www\.)?facebook\.com\/photo\.php\?fbid=(\d+)/', $url, $match)) {
  333.     $facebook_id = $match[1];
  334.   }
  335.   */
  336. 

  337.   if(preg_match('/https?:\/\/(?:www\.)?instagram\.com\/p\/([^\/]+)/', $url, $match)) {
  338.     $instagram_id = $match[1];
  339.     if($user->instagram_access_token) {
  340.       $instagram = instagram_client();
  341.       $instagram->setAccessToken($user->instagram_access_token);
  342.       $ch = curl_init('https://api.instagram.com/v1/media/shortcode/' . $instagram_id . '?access_token=' . $user->instagram_access_token);
  343.       curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  344.       $result = json_decode(curl_exec($ch));
  345. 

  346.       $result = $instagram->likeMedia($result->data->id);
  347.     } else {
  348.       // TODO: indicate that the instagram post couldn't be liked because no access token was available

  349.     }
  350.   }
  351. 

  352.   if($user->twitter_access_token && preg_match('/https?:\/\/(?:www\.)?twitter\.com\/[^\/]+\/status(?:es)?\/(\d+)/', $url, $match)) {
  353.     $tweet_id = $match[1];
  354.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret,
  355.       $user->twitter_access_token, $user->twitter_token_secret);
  356.     $result = $twitter->post('favorites/create', array(
  357.       'id' => $tweet_id
  358.     ));
  359.   }
  360. 

  361.   return $r;
  362. }
  363. 

  364. function create_photo(&$user, $params, $file) {
  365.   $error = validate_photo($file);
  366. 

  367.   if(!$error) {
  368.     $file_path = $file['tmp_name'];
  369.     $micropub_request = array('content' => $params['note_content']);
  370.     $r = micropub_post_for_user($user, $micropub_request, $file_path);
  371.   } else {
  372.     $r = array('error' => $error);
  373.   }
  374. 

  375.   return $r;
  376. }
  377. 

  378. function create_repost(&$user, $url) {
  379.   $micropub_request = array(
  380.     'repost-of' => $url
  381.   );
  382.   $r = micropub_post_for_user($user, $micropub_request);
  383. 

  384.   $tweet_id = false;
  385. 

  386.   if($user->twitter_access_token && preg_match('/https?:\/\/(?:www\.)?twitter\.com\/[^\/]+\/status(?:es)?\/(\d+)/', $url, $match)) {
  387.     $tweet_id = $match[1];
  388.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret,
  389.       $user->twitter_access_token, $user->twitter_token_secret);
  390.     $result = $twitter->post('statuses/retweet/'.$tweet_id);
  391.   }
  392. 

  393.   return $r;
  394. }
  395. 

  396. $app->get('/favorite.js', function() use($app) {
  397.   $app->response()->header("Content-type", "text/javascript");
  398.   if($user=require_login($app, false)) {
  399.     $params = $app->request()->params();
  400. 

  401.     if(array_key_exists('url', $params)) {
  402.       $r = create_favorite($user, $params['url']);
  403. 

  404.       $app->response()->body($app->render('favorite-js.php', array(
  405.         'url' => $params['url'],
  406.         'like_url' => $r['location'],
  407.         'error' => $r['error'],
  408.         // 'facebook_id' => $facebook_id

  409.       )));
  410.     } else {
  411.       $app->response()->body('alert("no url");');
  412.     }
  413. 

  414.   } else {
  415.     $app->response()->body('alert("invalid token");');
  416.   }
  417. });
  418. 

  419. $app->post('/favorite', function() use($app) {
  420.   if($user=require_login($app)) {
  421.     $params = $app->request()->params();
  422. 

  423.     $r = create_favorite($user, $params['url']);
  424. 

  425.     $app->response()->body(json_encode(array(
  426.       'location' => $r['location'],
  427.       'error' => $r['error']
  428.     )));
  429.   }
  430. });
  431. 

  432. $app->post('/photo', function() use($app) {
  433.   if($user=require_login($app)) {
  434. 

  435.     // var_dump($app->request()->post());

  436.     //

  437.     // Since $app->request()->post() with multipart is always

  438.     // empty (bug in Slim?) We're using the raw $_POST here

  439.     // until this gets fixed.

  440.     // PHP empties everything in $_POST if the file upload size exceeds

  441.     // that is why we have to test if the variables exist first.

  442. 

  443.     $note_content = isset($_POST['note_content']) ? $_POST['note_content'] : null;
  444.     $params = array('note_content' => $note_content);
  445.     $file = isset($_FILES['note_photo']) ? $_FILES['note_photo'] : null;
  446. 

  447.     $r = create_photo($user, $params, $file);
  448. 

  449.     // Populate the error if there was no location header.

  450.     if(empty($r['location']) && empty($r['error'])) {
  451.       $r['error'] = "No 'Location' header in response.";
  452.     }
  453. 

  454.     $html = render('photo', array(
  455.       'title' => 'Photo posted',
  456.       'note_content' => $params['note_content'],
  457.       'location' => (isset($r['location']) ? $r['location'] : null),
  458.       'error' => (isset($r['error']) ? $r['error'] : null),
  459.       'response' => (isset($r['response']) ? htmlspecialchars($r['response']) : null),
  460.       'authorizing' => false
  461.     ));
  462.     $app->response()->body($html);
  463.   }
  464. });
  465. 

  466. $app->post('/repost', function() use($app) {
  467.   if($user=require_login($app)) {
  468.     $params = $app->request()->params();
  469. 

  470.     $r = create_repost($user, $params['url']);
  471. 

  472.     $app->response()->body(json_encode(array(
  473.       'location' => $r['location'],
  474.       'error' => $r['error']
  475.     )));
  476.   }
  477. });
  478. 

  479. $app->post('/itinerary', function() use($app) {
  480.   if($user=require_login($app)) {
  481.     $params = $app->request()->params();
  482. 

  483.     $r = micropub_post_for_user($user, json_decode($params['data'], true), null, true);
  484. 

  485.     $app->response()->body(json_encode(array(
  486.       'location' => $r['location'],
  487.       'error' => $r['error'],
  488.       'response' => $r['response']
  489.     )));
  490.   }
  491. });
  492. 

  493. $app->get('/micropub/syndications', function() use($app) {
  494.   if($user=require_login($app)) {
  495.     $data = get_syndication_targets($user);
  496.     $app->response()->body(json_encode(array(
  497.       'targets' => $data['targets'],
  498.       'response' => $data['response']
  499.     )));
  500.   }
  501. });
  502. 

  503. $app->post('/micropub/post', function() use($app) {
  504.   if($user=require_login($app)) {
  505.     $params = $app->request()->params();
  506. 

  507.     // Remove any blank params

  508.     $params = array_filter($params, function($v){
  509.       return $v !== '';
  510.     });
  511. 

  512.     $r = micropub_post_for_user($user, $params);
  513. 

  514.     $app->response()->body(json_encode(array(
  515.       'request' => htmlspecialchars($r['request']),
  516.       'response' => htmlspecialchars($r['response']),
  517.       'location' => $r['location'],
  518.       'error' => $r['error'],
  519.       'curlinfo' => $r['curlinfo']
  520.     )));
  521.   }
  522. });
  523. 

  524. /*
  525. $app->post('/auth/facebook', function() use($app) {
  526.   if($user=require_login($app, false)) {
  527.     $params = $app->request()->params();
  528.     // User just auth'd with facebook, store the access token

  529.     $user->facebook_access_token = $params['fb_token'];
  530.     $user->save();
  531. 

  532.     $app->response()->body(json_encode(array(
  533.       'result' => 'ok'
  534.     )));
  535.   } else {
  536.     $app->response()->body(json_encode(array(
  537.       'result' => 'error'
  538.     )));
  539.   }
  540. });
  541. */
  542. 

  543. $app->post('/auth/twitter', function() use($app) {
  544.   if($user=require_login($app, false)) {
  545.     $params = $app->request()->params();
  546.     // User just auth'd with twitter, store the access token

  547.     $user->twitter_access_token = $params['twitter_token'];
  548.     $user->twitter_token_secret = $params['twitter_secret'];
  549.     $user->save();
  550. 

  551.     $app->response()->body(json_encode(array(
  552.       'result' => 'ok'
  553.     )));
  554.   } else {
  555.     $app->response()->body(json_encode(array(
  556.       'result' => 'error'
  557.     )));
  558.   }
  559. });
  560. 

  561. function getTwitterLoginURL(&$twitter) {
  562.   $request_token = $twitter->getRequestToken(Config::$base_url . 'auth/twitter/callback');
  563.   $_SESSION['twitter_auth'] = $request_token;
  564.   return $twitter->getAuthorizeURL($request_token['oauth_token']);
  565. }
  566. 

  567. $app->get('/auth/twitter', function() use($app) {
  568.   $params = $app->request()->params();
  569.   if($user=require_login($app, false)) {
  570. 

  571.     // If there is an existing Twitter token, check if it is valid

  572.     // Otherwise, generate a Twitter login link

  573.     $twitter_login_url = false;
  574.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret,
  575.       $user->twitter_access_token, $user->twitter_token_secret);
  576. 

  577.     if(array_key_exists('login', $params)) {
  578.       $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret);
  579.       $twitter_login_url = getTwitterLoginURL($twitter);
  580.     } else {
  581.       if($user->twitter_access_token) {
  582.         if ($twitter->get('account/verify_credentials')) {
  583.           $app->response()->body(json_encode(array(
  584.             'result' => 'ok'
  585.           )));
  586.           return;
  587.         } else {
  588.           // If the existing twitter token is not valid, generate a login link

  589.           $twitter_login_url = getTwitterLoginURL($twitter);
  590.         }
  591.       } else {
  592.         $twitter_login_url = getTwitterLoginURL($twitter);
  593.       }
  594.     }
  595. 

  596.     $app->response()->body(json_encode(array(
  597.       'url' => $twitter_login_url
  598.     )));
  599. 

  600.   } else {
  601.     $app->response()->body(json_encode(array(
  602.       'result' => 'error'
  603.     )));
  604.   }
  605. });
  606. 

  607. $app->get('/auth/twitter/callback', function() use($app) {
  608.   if($user=require_login($app)) {
  609.     $params = $app->request()->params();
  610. 

  611.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret,
  612.       $_SESSION['twitter_auth']['oauth_token'], $_SESSION['twitter_auth']['oauth_token_secret']);
  613.     $credentials = $twitter->getAccessToken($params['oauth_verifier']);
  614. 

  615.     $user->twitter_access_token = $credentials['oauth_token'];
  616.     $user->twitter_token_secret = $credentials['oauth_token_secret'];
  617.     $user->twitter_username = $credentials['screen_name'];
  618.     $user->save();
  619. 

  620.     $app->redirect('/settings');
  621.   }
  622. });
  623. 

  624. $app->get('/auth/instagram', function() use($app) {
  625.   if($user=require_login($app, false)) {
  626. 

  627.     $instagram = instagram_client();
  628. 

  629.     // If there is an existing Instagram auth token, check if it's valid

  630.     if($user->instagram_access_token) {
  631.       $instagram->setAccessToken($user->instagram_access_token);
  632.       $igUser = $instagram->getUser();
  633. 

  634.       if($igUser && $igUser->meta->code == 200) {
  635.         $app->response()->body(json_encode(array(
  636.           'result' => 'ok',
  637.           'username' => $igUser->data->username,
  638.           'url' => $instagram->getLoginUrl(array('basic','likes'))
  639.         )));
  640.         return;
  641.       }
  642.     }
  643. 

  644.     $app->response()->body(json_encode(array(
  645.       'result' => 'error',
  646.       'url' => $instagram->getLoginUrl(array('basic','likes'))
  647.     )));
  648.   }
  649. });
  650. 

  651. $app->get('/auth/instagram/callback', function() use($app) {
  652.   if($user=require_login($app)) {
  653.     $params = $app->request()->params();
  654. 

  655.     $instagram = instagram_client();
  656.     $data = $instagram->getOAuthToken($params['code']);
  657.     $user->instagram_access_token = $data->access_token;
  658.     $user->save();
  659. 

  660.     $app->redirect('/settings');
  661.   }
  662. });