p3k
/
Quill
mirror of https://github.com/aaronpk/Quill.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
171 Commits
3 Branches
20 MiB
Tree: 40bc510cb7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '40bc510cb7'
${ noResults }
Quill/controllers/controllers.php

580 lines
16 KiB
Raw Normal View History

Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
11 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
11 years ago
lock to JWT 2.* version
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
11 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
11 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
11 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
11 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
11 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
11 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
11 years ago
add dashboard with links to all post types
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
10 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
10 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
11 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
10 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
support media endpoint, autosave notes in local storage * looks for a media endpoint in the micropub config * if media endpoint is available, both the note interface and the editor will upload files to it instead of posting the photo directly * the note interface autosaves in-progress notes in localstorage
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
11 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
11 years ago
Added authorizing false so it would not show the Savant3:: error
10 years ago
add tweet text length countdown on note interface
9 years ago
Added authorizing false so it would not show the Savant3:: error
10 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
11 years ago
Added authorizing false so it would not show the Savant3:: error
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
11 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
11 years ago
Added authorizing false so it would not show the Savant3:: error
10 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
11 years ago
crude UI for creating events
9 years ago
add interface for posting travel itinerary
9 years ago
Adds possibility to post photos. With this it is possible to post a photo note with a description, nothing more. It doesn't move the file in the file system, just posts it from the temp location to the users server. It also does validate for file size, content type and max upload size and shows the errors to the user. If everything goes according to plan the response from the users server is shown, together with a link with the posted photos URL.
10 years ago
add h-review interface
9 years ago
add repost form
10 years ago
Added authorizing false so it would not show the Savant3:: error
10 years ago
add repost form
10 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
11 years ago
send proper content type headers
9 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
11 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
11 years ago
lock to JWT 2.* version
10 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
11 years ago
lock to JWT 2.* version
10 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
11 years ago
lock to JWT 2.* version
10 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
11 years ago
add interface for posting travel itinerary
9 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
11 years ago
add post-by-email support to quill
10 years ago
add interface for posting travel itinerary
9 years ago
add post-by-email support to quill
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
11 years ago
remove facebook/instagram stuff
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
11 years ago
add banner to opt in to html content change
10 years ago
send proper content type headers
9 years ago
add banner to opt in to html content change
10 years ago
send proper content type headers
9 years ago
add banner to opt in to html content change
10 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
11 years ago
remove facebook/instagram stuff
9 years ago
add repost form
10 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
11 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
11 years ago
add repost form
10 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
9 years ago
add repost form
10 years ago
actually post likes from the form
11 years ago
send proper content type headers
9 years ago
actually post likes from the form
11 years ago
add repost form
10 years ago
send proper content type headers
9 years ago
add repost form
10 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
9 years ago
reset reply context state when URL is removed
9 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
9 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
11 years ago
support media endpoint, autosave notes in local storage * looks for a media endpoint in the micropub config * if media endpoint is available, both the note interface and the editor will upload files to it instead of posting the photo directly * the note interface autosaves in-progress notes in localstorage
9 years ago
send proper content type headers
9 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
11 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
11 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
11 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
11 years ago
send proper content type headers
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
11 years ago
integrates photo uploading in the main note interface Quill corrects the photo rotation based on exif data since iOS tends to take landscape photos and set the rotation bit when holding it in portrait mode.
9 years ago
send proper content type headers
9 years ago
integrates photo uploading in the main note interface Quill corrects the photo rotation based on exif data since iOS tends to take landscape photos and set the rotation bit when holding it in portrait mode.
9 years ago
support media endpoint, autosave notes in local storage * looks for a media endpoint in the micropub config * if media endpoint is available, both the note interface and the editor will upload files to it instead of posting the photo directly * the note interface autosaves in-progress notes in localstorage
9 years ago
send proper content type headers
9 years ago
support media endpoint, autosave notes in local storage * looks for a media endpoint in the micropub config * if media endpoint is available, both the note interface and the editor will upload files to it instead of posting the photo directly * the note interface autosaves in-progress notes in localstorage
9 years ago
crude UI for creating events
9 years ago
send proper content type headers
9 years ago
crude UI for creating events
9 years ago
 
  1. <?php
  2. use Abraham\TwitterOAuth\TwitterOAuth;
  3. 

  4. function require_login(&$app, $redirect=true) {
  5.   $params = $app->request()->params();
  6.   if(array_key_exists('token', $params)) {
  7.     try {
  8.       $data = JWT::decode($params['token'], Config::$jwtSecret, array('HS256'));
  9.       $_SESSION['user_id'] = $data->user_id;
  10.       $_SESSION['me'] = $data->me;
  11.     } catch(DomainException $e) {
  12.       if($redirect) {
  13.         header('X-Error: DomainException');
  14.         $app->redirect('/', 301);
  15.       } else {
  16.         return false;
  17.       }
  18.     } catch(UnexpectedValueException $e) {
  19.       if($redirect) {
  20.         header('X-Error: UnexpectedValueException');
  21.         $app->redirect('/', 301);
  22.       } else {
  23.         return false;
  24.       }
  25.     }
  26.   }
  27. 

  28.   if(!array_key_exists('user_id', $_SESSION)) {
  29.     if($redirect)
  30.       $app->redirect('/');
  31.     return false;
  32.   } else {
  33.     return ORM::for_table('users')->find_one($_SESSION['user_id']);
  34.   }
  35. }
  36. 

  37. function generate_login_token() {
  38.   return JWT::encode(array(
  39.     'user_id' => $_SESSION['user_id'],
  40.     'me' => $_SESSION['me'],
  41.     'created_at' => time()
  42.   ), Config::$jwtSecret);
  43. }
  44. 

  45. $app->get('/dashboard', function() use($app) {
  46.   if($user=require_login($app)) {
  47.     $html = render('dashboard', array(
  48.       'title' => 'Dashboard',
  49.       'authorizing' => false
  50.     ));
  51.     $app->response()->body($html);
  52.   }
  53. });
  54. 

  55. $app->get('/new', function() use($app) {
  56.   if($user=require_login($app)) {
  57.     $params = $app->request()->params();
  58. 

  59.     $entry = false;
  60.     $in_reply_to = '';
  61. 

  62.     if(array_key_exists('reply', $params))
  63.        $in_reply_to = $params['reply'];
  64. 

  65.     $test_response = '';
  66.     if($user->last_micropub_response) {
  67.       try {
  68.         if(@json_decode($user->last_micropub_response)) {
  69.           $d = json_decode($user->last_micropub_response);
  70.           $test_response = $d->response;
  71.         }
  72.       } catch(Exception $e) {
  73.       }
  74.     }
  75. 

  76.     $html = render('new-post', array(
  77.       'title' => 'New Post',
  78.       'in_reply_to' => $in_reply_to,
  79.       'micropub_endpoint' => $user->micropub_endpoint,
  80.       'media_endpoint' => $user->micropub_media_endpoint,
  81.       'micropub_scope' => $user->micropub_scope,
  82.       'micropub_access_token' => $user->micropub_access_token,
  83.       'response_date' => $user->last_micropub_response_date,
  84.       'syndication_targets' => json_decode($user->syndication_targets, true),
  85.       'test_response' => $test_response,
  86.       'location_enabled' => $user->location_enabled,
  87.       'user' => $user,
  88.       'authorizing' => false
  89.     ));
  90.     $app->response()->body($html);
  91.   }
  92. });
  93. 

  94. $app->get('/bookmark', function() use($app) {
  95.   if($user=require_login($app)) {
  96.     $params = $app->request()->params();
  97. 

  98.     $url = '';
  99.     $name = '';
  100.     $content = '';
  101.     $tags = '';
  102. 

  103.     if(array_key_exists('url', $params))
  104.       $url = $params['url'];
  105. 

  106.     if(array_key_exists('name', $params))
  107.       $name = $params['name'];
  108. 

  109.     if(array_key_exists('content', $params))
  110.       $content = $params['content'];
  111. 

  112.     $html = render('new-bookmark', array(
  113.       'title' => 'New Bookmark',
  114.       'bookmark_url' => $url,
  115.       'bookmark_name' => $name,
  116.       'bookmark_content' => $content,
  117.       'bookmark_tags' => $tags,
  118.       'token' => generate_login_token(),
  119.       'syndication_targets' => json_decode($user->syndication_targets, true),
  120.       'authorizing' => false
  121.     ));
  122.     $app->response()->body($html);
  123.   }
  124. });
  125. 

  126. $app->get('/favorite', function() use($app) {
  127.   if($user=require_login($app)) {
  128.     $params = $app->request()->params();
  129. 

  130.     $url = '';
  131. 

  132.     if(array_key_exists('url', $params))
  133.       $url = $params['url'];
  134. 

  135.     $html = render('new-favorite', array(
  136.       'title' => 'New Favorite',
  137.       'url' => $url,
  138.       'token' => generate_login_token(),
  139.       'authorizing' => false
  140.     ));
  141.     $app->response()->body($html);
  142.   }
  143. });
  144. 

  145. $app->get('/event', function() use($app) {
  146.   if($user=require_login($app)) {
  147.     $params = $app->request()->params();
  148. 

  149.     $html = render('event', array(
  150.       'title' => 'Event',
  151.       'authorizing' => false
  152.     ));
  153.     $app->response()->body($html);
  154.   }
  155. });
  156. 

  157. $app->get('/itinerary', function() use($app) {
  158.   if($user=require_login($app)) {
  159.     $params = $app->request()->params();
  160. 

  161.     $html = render('new-itinerary', array(
  162.       'title' => 'Itinerary',
  163.       'authorizing' => false
  164.     ));
  165.     $app->response()->body($html);
  166.   }
  167. });
  168. 

  169. $app->get('/photo', function() use($app) {
  170.   if($user=require_login($app)) {
  171.     $params = $app->request()->params();
  172. 

  173.     $html = render('photo', array(
  174.       'title' => 'New Photo',
  175.       'note_content' => '',
  176.       'authorizing' => false
  177.     ));
  178.     $app->response()->body($html);
  179.   }
  180. });
  181. 

  182. $app->get('/review', function() use($app) {
  183.   if($user=require_login($app)) {
  184.     $params = $app->request()->params();
  185. 

  186.     $html = render('review', array(
  187.       'title' => 'Review',
  188.       'authorizing' => false
  189.     ));
  190.     $app->response()->body($html);
  191.   }
  192. });
  193. 

  194. $app->get('/repost', function() use($app) {
  195.   if($user=require_login($app)) {
  196.     $params = $app->request()->params();
  197. 

  198.     $url = '';
  199. 

  200.     if(array_key_exists('url', $params))
  201.       $url = $params['url'];
  202. 

  203.     $html = render('new-repost', array(
  204.       'title' => 'New Repost',
  205.       'url' => $url,
  206.       'token' => generate_login_token(),
  207.       'authorizing' => false
  208.     ));
  209.     $app->response()->body($html);
  210.   }
  211. });
  212. 

  213. $app->post('/prefs', function() use($app) {
  214.   if($user=require_login($app)) {
  215.     $params = $app->request()->params();
  216.     $user->location_enabled = $params['enabled'];
  217.     $user->save();
  218.   }
  219.   $app->response()['Content-type'] = 'application/json';
  220.   $app->response()->body(json_encode(array(
  221.     'result' => 'ok'
  222.   )));
  223. });
  224. 

  225. $app->get('/add-to-home', function() use($app) {
  226.   $params = $app->request()->params();
  227.   header("Cache-Control: no-cache, must-revalidate");
  228. 

  229.   if(array_key_exists('token', $params) && !session('add-to-home-started')) {
  230.     unset($_SESSION['add-to-home-started']);
  231. 

  232.     // Verify the token and sign the user in

  233.     try {
  234.       $data = JWT::decode($params['token'], Config::$jwtSecret, array('HS256'));
  235.       $_SESSION['user_id'] = $data->user_id;
  236.       $_SESSION['me'] = $data->me;
  237.       $app->redirect('/new', 301);
  238.     } catch(DomainException $e) {
  239.       header('X-Error: DomainException');
  240.       $app->redirect('/', 301);
  241.     } catch(UnexpectedValueException $e) {
  242.       header('X-Error: UnexpectedValueException');
  243.       $app->redirect('/', 301);
  244.     }
  245. 

  246.   } else {
  247. 

  248.     if($user=require_login($app)) {
  249.       if(array_key_exists('start', $params)) {
  250.         $_SESSION['add-to-home-started'] = true;
  251. 

  252.         $token = JWT::encode(array(
  253.           'user_id' => $_SESSION['user_id'],
  254.           'me' => $_SESSION['me'],
  255.           'created_at' => time()
  256.         ), Config::$jwtSecret);
  257. 

  258.         $app->redirect('/add-to-home?token='.$token, 301);
  259.       } else {
  260.         unset($_SESSION['add-to-home-started']);
  261.         $html = render('add-to-home', array('title' => 'Quill'));
  262.         $app->response()->body($html);
  263.       }
  264.     }
  265.   }
  266. });
  267. 

  268. $app->get('/email', function() use($app) {
  269.   if($user=require_login($app)) {
  270. 

  271.     $test_response = '';
  272.     if($user->last_micropub_response) {
  273.       try {
  274.         if(@json_decode($user->last_micropub_response)) {
  275.           $d = json_decode($user->last_micropub_response);
  276.           $test_response = $d->response;
  277.         }
  278.       } catch(Exception $e) {
  279.       }
  280.     }
  281. 

  282.     if(!$user->email_username) {
  283.       $host = parse_url($user->url, PHP_URL_HOST);
  284.       $user->email_username = $host . '.' . rand(100000,999999);
  285.       $user->save();
  286.     }
  287. 

  288.     $html = render('email', array(
  289.       'title' => 'Post-by-Email',
  290.       'micropub_endpoint' => $user->micropub_endpoint,
  291.       'test_response' => $test_response,
  292.       'user' => $user
  293.     ));
  294.     $app->response()->body($html);
  295.   }
  296. });
  297. 

  298. $app->get('/settings', function() use($app) {
  299.   if($user=require_login($app)) {
  300.     $html = render('settings', [
  301.       'title' => 'Settings',
  302.       'user' => $user,
  303.       'authorizing' => false
  304.     ]);
  305.     $app->response()->body($html);
  306.   }
  307. });
  308. 

  309. $app->post('/settings/html-content', function() use($app) {
  310.   if($user=require_login($app)) {
  311.     $params = $app->request()->params();
  312.     $user->micropub_optin_html_content = $params['html'] ? 1 : 0;
  313.     $user->save();
  314.     $app->response()['Content-type'] = 'application/json';
  315.     $app->response()->body(json_encode(array(
  316.       'html' => $user->micropub_optin_html_content
  317.     )));
  318.   }
  319. });
  320. $app->get('/settings/html-content', function() use($app) {
  321.   if($user=require_login($app)) {
  322.     $app->response()['Content-type'] = 'application/json';
  323.     $app->response()->body(json_encode(array(
  324.       'html' => $user->micropub_optin_html_content
  325.     )));
  326.   }
  327. });
  328. 

  329. function create_favorite(&$user, $url) {
  330.   $micropub_request = array(
  331.     'like-of' => $url
  332.   );
  333.   $r = micropub_post_for_user($user, $micropub_request);
  334. 

  335.   $tweet_id = false;
  336. 

  337.   // POSSE favorites to Twitter

  338.   if($user->twitter_access_token && preg_match('/https?:\/\/(?:www\.)?twitter\.com\/[^\/]+\/status(?:es)?\/(\d+)/', $url, $match)) {
  339.     $tweet_id = $match[1];
  340.     $twitter = new TwitterOAuth(Config::$twitterClientID, Config::$twitterClientSecret,
  341.       $user->twitter_access_token, $user->twitter_token_secret);
  342.     $result = $twitter->post('favorites/create', array(
  343.       'id' => $tweet_id
  344.     ));
  345.   }
  346. 

  347.   return $r;
  348. }
  349. 

  350. function create_repost(&$user, $url) {
  351.   $micropub_request = array(
  352.     'repost-of' => $url
  353.   );
  354.   $r = micropub_post_for_user($user, $micropub_request);
  355. 

  356.   $tweet_id = false;
  357. 

  358.   if($user->twitter_access_token && preg_match('/https?:\/\/(?:www\.)?twitter\.com\/[^\/]+\/status(?:es)?\/(\d+)/', $url, $match)) {
  359.     $tweet_id = $match[1];
  360.     $twitter = new TwitterOAuth(Config::$twitterClientID, Config::$twitterClientSecret,
  361.       $user->twitter_access_token, $user->twitter_token_secret);
  362.     $result = $twitter->post('statuses/retweet/'.$tweet_id);
  363.   }
  364. 

  365.   return $r;
  366. }
  367. 

  368. $app->post('/favorite', function() use($app) {
  369.   if($user=require_login($app)) {
  370.     $params = $app->request()->params();
  371. 

  372.     $r = create_favorite($user, $params['url']);
  373. 

  374.     $app->response()['Content-type'] = 'application/json';
  375.     $app->response()->body(json_encode(array(
  376.       'location' => $r['location'],
  377.       'error' => $r['error']
  378.     )));
  379.   }
  380. });
  381. 

  382. $app->post('/repost', function() use($app) {
  383.   if($user=require_login($app)) {
  384.     $params = $app->request()->params();
  385. 

  386.     $r = create_repost($user, $params['url']);
  387. 

  388.     $app->response()['Content-type'] = 'application/json';
  389.     $app->response()->body(json_encode(array(
  390.       'location' => $r['location'],
  391.       'error' => $r['error']
  392.     )));
  393.   }
  394. });
  395. 

  396. $app->get('/reply/preview', function() use($app) {
  397.   if($user=require_login($app)) {
  398.     $params = $app->request()->params();
  399. 

  400.     if(!isset($params['url']) || !$params['url']) {
  401.       return '';
  402.     }
  403. 

  404.     $reply_url = trim($params['url']);
  405. 

  406.     if(preg_match('/twtr\.io\/([0-9a-z]+)/i', $reply_url, $match)) {
  407.       $twtr = 'https://twitter.com/_/status/' . sxg_to_num($match[1]);
  408.       $ch = curl_init($twtr);
  409.       curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  410.       curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
  411.       curl_exec($ch);
  412.       $expanded_url = curl_getinfo($ch, CURLINFO_EFFECTIVE_URL);
  413.       if($expanded_url) $reply_url = $expanded_url;
  414.     }
  415. 

  416.     $entry = false;
  417.     // Convert Tweets to h-entry

  418.     if(preg_match('/twitter\.com\/(?:[^\/]+)\/statuse?s?\/(.+)/', $reply_url, $match)) {
  419.       $tweet_id = $match[1];
  420.       if($user->twitter_access_token) {
  421.         $twitter = new TwitterOAuth(Config::$twitterClientID, Config::$twitterClientSecret,
  422.           $user->twitter_access_token, $user->twitter_token_secret);
  423.       } else {
  424.         $twitter = new TwitterOAuth(Config::$twitterClientID, Config::$twitterClientSecret);
  425.       }
  426.       $tweet = $twitter->get('statuses/show/'.$tweet_id);
  427.       $entry = tweet_to_h_entry($tweet);
  428.     } else {
  429.       // Pass to X-Ray to see if it can expand the entry

  430.       $ch = curl_init('https://xray.p3k.io/parse?url='.urlencode($reply_url));
  431.       curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  432.       $response = curl_exec($ch);
  433.       $data = @json_decode($response, true);
  434.       if($data && $data['data']['type'] == 'entry') {
  435.         $entry = $data['data'];
  436.         // Create a nickname based on the author URL

  437.         if($entry['author']['url']) {
  438.           $entry['author']['nickname'] = display_url($entry['author']['url']);
  439.         }
  440.       }
  441.     }
  442. 

  443.     $mentions = [];
  444.     if($entry) {
  445.       // Find all @-names in the post, as well as the author name

  446.       $mentions[] = $entry['author']['nickname'];
  447. 

  448.       if(preg_match_all('/(^|(?<=[\s\/]))@([a-z0-9_]+([a-z0-9_\.]*)?)/i', $entry['content']['text'], $matches)) {
  449.         foreach($matches[0] as $nick) {
  450.           if(trim($nick,'@') != $user->twitter_username && trim($nick,'@') != display_url($user->url))
  451.             $mentions[] = trim($nick,'@');
  452.         }
  453.       }
  454. 

  455.     }    
  456. 

  457.     $app->response()['Content-type'] = 'application/json';
  458.     $app->response()->body(json_encode([
  459.       'canonical_reply_url' => $reply_url,
  460.       'entry' => $entry,
  461.       'mentions' => $mentions
  462.     ]));
  463.   }
  464. });
  465. 

  466. $app->get('/micropub/syndications', function() use($app) {
  467.   if($user=require_login($app)) {
  468.     $data = get_micropub_config($user, ['q'=>'syndicate-to']);
  469.     $app->response()['Content-type'] = 'application/json';
  470.     $app->response()->body(json_encode(array(
  471.       'targets' => $data['targets'],
  472.       'response' => $data['response']
  473.     )));
  474.   }
  475. });
  476. 

  477. $app->post('/micropub/post', function() use($app) {
  478.   if($user=require_login($app)) {
  479.     $params = $app->request()->params();
  480. 

  481.     // Remove any blank params

  482.     $params = array_filter($params, function($v){
  483.       return $v !== '';
  484.     });
  485. 

  486.     $r = micropub_post_for_user($user, $params);
  487. 

  488.     $app->response()['Content-type'] = 'application/json';
  489.     $app->response()->body(json_encode(array(
  490.       'request' => htmlspecialchars($r['request']),
  491.       'response' => htmlspecialchars($r['response']),
  492.       'location' => $r['location'],
  493.       'error' => $r['error'],
  494.       'curlinfo' => $r['curlinfo']
  495.     )));
  496.   }
  497. });
  498. 

  499. $app->post('/micropub/multipart', function() use($app) {
  500.   if($user=require_login($app)) {
  501.     // var_dump($app->request()->post());

  502.     //

  503.     // Since $app->request()->post() with multipart is always

  504.     // empty (bug in Slim?) We're using the raw $_POST here.

  505.     // PHP empties everything in $_POST if the file upload size exceeds

  506.     // that is why we have to test if the variables exist first.

  507. 

  508.     $file = isset($_FILES['photo']) ? $_FILES['photo'] : null;
  509. 

  510.     if($file) {
  511.       $error = validate_photo($file);
  512. 

  513.       unset($_POST['null']);
  514. 

  515.       if(!$error) {
  516.         $file_path = $file['tmp_name'];
  517.         correct_photo_rotation($file_path);
  518.         $r = micropub_post_for_user($user, $_POST, $file_path);
  519.       } else {
  520.         $r = array('error' => $error);
  521.       }
  522.     } else {
  523.       unset($_POST['null']);
  524.       $r = micropub_post_for_user($user, $_POST);
  525.     }
  526. 

  527.     // Populate the error if there was no location header.

  528.     if(empty($r['location']) && empty($r['error'])) {
  529.       $r['error'] = "No 'Location' header in response.";
  530.     }
  531. 

  532.     $app->response()['Content-type'] = 'application/json';
  533.     $app->response()->body(json_encode(array(
  534.       'response' => (isset($r['response']) ? htmlspecialchars($r['response']) : null),
  535.       'location' => (isset($r['location']) ? $r['location'] : null),
  536.       'error' => (isset($r['error']) ? $r['error'] : null),
  537.     )));
  538.   }
  539. });
  540. 

  541. $app->post('/micropub/media', function() use($app) {
  542.   if($user=require_login($app)) {
  543.     $file = isset($_FILES['photo']) ? $_FILES['photo'] : null;
  544.     $error = validate_photo($file);
  545.     unset($_POST['null']);
  546. 

  547.     if(!$error) {
  548.       $file_path = $file['tmp_name'];
  549.       correct_photo_rotation($file_path);
  550.       $r = micropub_media_post_for_user($user, $file_path);
  551.     } else {
  552.       $r = array('error' => $error);
  553.     }
  554. 

  555.     if(empty($r['location']) && empty($r['error'])) {
  556.       $r['error'] = "No 'Location' header in response.";
  557.     }
  558. 

  559.     $app->response()['Content-type'] = 'application/json';
  560.     $app->response()->body(json_encode(array(
  561.       'location' => (isset($r['location']) ? $r['location'] : null),
  562.       'error' => (isset($r['error']) ? $r['error'] : null),
  563.     )));
  564.   }
  565. });
  566. 

  567. $app->post('/micropub/postjson', function() use($app) {
  568.   if($user=require_login($app)) {
  569.     $params = $app->request()->params();
  570. 

  571.     $r = micropub_post_for_user($user, json_decode($params['data'], true), null, true);
  572. 

  573.     $app->response()['Content-type'] = 'application/json';
  574.     $app->response()->body(json_encode(array(
  575.       'location' => $r['location'],
  576.       'error' => $r['error'],
  577.       'response' => $r['response']
  578.     )));
  579.   }
  580. });