p3k
/
Quill
mirror of https://github.com/aaronpk/Quill.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
130 Commits
3 Branches
4.1 MiB
Tree: 542aa812f8
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '542aa812f8'
${ noResults }
Quill/controllers/controllers.php

703 lines
20 KiB
Raw Normal View History

Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
lock to JWT 2.* version
8 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
add dashboard with links to all post types
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
support media endpoint, autosave notes in local storage * looks for a media endpoint in the micropub config * if media endpoint is available, both the note interface and the editor will upload files to it instead of posting the photo directly * the note interface autosaves in-progress notes in localstorage
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
9 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
10 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
add tweet text length countdown on note interface
8 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
crude UI for creating events
8 years ago
add interface for posting travel itinerary
8 years ago
Adds possibility to post photos. With this it is possible to post a photo note with a description, nothing more. It doesn't move the file in the file system, just posts it from the temp location to the users server. It also does validate for file size, content type and max upload size and shows the errors to the user. If everything goes according to plan the response from the users server is shown, together with a link with the posted photos URL.
8 years ago
add repost form
8 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
add repost form
8 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
10 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add privacy policy stub
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
add privacy policy stub
9 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
lock to JWT 2.* version
8 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
lock to JWT 2.* version
8 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
lock to JWT 2.* version
8 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
add interface for posting travel itinerary
8 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
add post-by-email support to quill
8 years ago
add interface for posting travel itinerary
8 years ago
add post-by-email support to quill
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
add banner to opt in to html content change
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add interface for posting travel itinerary
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add repost form
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add interface for posting travel itinerary
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add repost form
8 years ago
add interface for posting travel itinerary
8 years ago
add repost form
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add interface for posting travel itinerary
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
actually post likes from the form
9 years ago
add repost form
8 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
9 years ago
support media endpoint, autosave notes in local storage * looks for a media endpoint in the micropub config * if media endpoint is available, both the note interface and the editor will upload files to it instead of posting the photo directly * the note interface autosaves in-progress notes in localstorage
8 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
integrates photo uploading in the main note interface Quill corrects the photo rotation based on exif data since iOS tends to take landscape photos and set the rotation bit when holding it in portrait mode.
8 years ago
support media endpoint, autosave notes in local storage * looks for a media endpoint in the micropub config * if media endpoint is available, both the note interface and the editor will upload files to it instead of posting the photo directly * the note interface autosaves in-progress notes in localstorage
8 years ago
crude UI for creating events
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
add interface for posting travel itinerary
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
add interface for posting travel itinerary
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds instagram auth
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
adds instagram auth
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds instagram auth
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds instagram auth
9 years ago
 
  1. <?php
  2. 

  3. function require_login(&$app, $redirect=true) {
  4.   $params = $app->request()->params();
  5.   if(array_key_exists('token', $params)) {
  6.     try {
  7.       $data = JWT::decode($params['token'], Config::$jwtSecret, array('HS256'));
  8.       $_SESSION['user_id'] = $data->user_id;
  9.       $_SESSION['me'] = $data->me;
  10.     } catch(DomainException $e) {
  11.       if($redirect) {
  12.         header('X-Error: DomainException');
  13.         $app->redirect('/', 301);
  14.       } else {
  15.         return false;
  16.       }
  17.     } catch(UnexpectedValueException $e) {
  18.       if($redirect) {
  19.         header('X-Error: UnexpectedValueException');
  20.         $app->redirect('/', 301);
  21.       } else {
  22.         return false;
  23.       }
  24.     }
  25.   }
  26. 

  27.   if(!array_key_exists('user_id', $_SESSION)) {
  28.     if($redirect)
  29.       $app->redirect('/');
  30.     return false;
  31.   } else {
  32.     return ORM::for_table('users')->find_one($_SESSION['user_id']);
  33.   }
  34. }
  35. 

  36. function generate_login_token() {
  37.   return JWT::encode(array(
  38.     'user_id' => $_SESSION['user_id'],
  39.     'me' => $_SESSION['me'],
  40.     'created_at' => time()
  41.   ), Config::$jwtSecret);
  42. }
  43. 

  44. $app->get('/dashboard', function() use($app) {
  45.   if($user=require_login($app)) {
  46.     $html = render('dashboard', array(
  47.       'title' => 'Dashboard',
  48.       'authorizing' => false
  49.     ));
  50.     $app->response()->body($html);
  51.   }
  52. });
  53. 

  54. $app->get('/new', function() use($app) {
  55.   if($user=require_login($app)) {
  56.     $params = $app->request()->params();
  57. 

  58.     $entry = false;
  59.     $in_reply_to = '';
  60. 

  61.     if(array_key_exists('reply', $params))
  62.        $in_reply_to = $params['reply'];
  63. 

  64.     $test_response = '';
  65.     if($user->last_micropub_response) {
  66.       try {
  67.         if(@json_decode($user->last_micropub_response)) {
  68.           $d = json_decode($user->last_micropub_response);
  69.           $test_response = $d->response;
  70.         }
  71.       } catch(Exception $e) {
  72.       }
  73.     }
  74. 

  75.     $html = render('new-post', array(
  76.       'title' => 'New Post',
  77.       'in_reply_to' => $in_reply_to,
  78.       'micropub_endpoint' => $user->micropub_endpoint,
  79.       'media_endpoint' => $user->micropub_media_endpoint,
  80.       'micropub_scope' => $user->micropub_scope,
  81.       'micropub_access_token' => $user->micropub_access_token,
  82.       'response_date' => $user->last_micropub_response_date,
  83.       'syndication_targets' => json_decode($user->syndication_targets, true),
  84.       'test_response' => $test_response,
  85.       'location_enabled' => $user->location_enabled,
  86.       'user' => $user,
  87.       'authorizing' => false
  88.     ));
  89.     $app->response()->body($html);
  90.   }
  91. });
  92. 

  93. $app->get('/bookmark', function() use($app) {
  94.   if($user=require_login($app)) {
  95.     $params = $app->request()->params();
  96. 

  97.     $url = '';
  98.     $name = '';
  99.     $content = '';
  100.     $tags = '';
  101. 

  102.     if(array_key_exists('url', $params))
  103.       $url = $params['url'];
  104. 

  105.     if(array_key_exists('name', $params))
  106.       $name = $params['name'];
  107. 

  108.     if(array_key_exists('content', $params))
  109.       $content = $params['content'];
  110. 

  111.     $html = render('new-bookmark', array(
  112.       'title' => 'New Bookmark',
  113.       'bookmark_url' => $url,
  114.       'bookmark_name' => $name,
  115.       'bookmark_content' => $content,
  116.       'bookmark_tags' => $tags,
  117.       'token' => generate_login_token(),
  118.       'syndication_targets' => json_decode($user->syndication_targets, true),
  119.       'authorizing' => false
  120.     ));
  121.     $app->response()->body($html);
  122.   }
  123. });
  124. 

  125. $app->get('/favorite', function() use($app) {
  126.   if($user=require_login($app)) {
  127.     $params = $app->request()->params();
  128. 

  129.     $url = '';
  130. 

  131.     if(array_key_exists('url', $params))
  132.       $url = $params['url'];
  133. 

  134.     $html = render('new-favorite', array(
  135.       'title' => 'New Favorite',
  136.       'url' => $url,
  137.       'token' => generate_login_token(),
  138.       'authorizing' => false
  139.     ));
  140.     $app->response()->body($html);
  141.   }
  142. });
  143. 

  144. $app->get('/event', function() use($app) {
  145.   if($user=require_login($app)) {
  146.     $params = $app->request()->params();
  147. 

  148.     $html = render('event', array(
  149.       'title' => 'Event',
  150.       'authorizing' => false
  151.     ));
  152.     $app->response()->body($html);
  153.   }
  154. });
  155. 

  156. $app->get('/itinerary', function() use($app) {
  157.   if($user=require_login($app)) {
  158.     $params = $app->request()->params();
  159. 

  160.     $html = render('new-itinerary', array(
  161.       'title' => 'Itinerary',
  162.       'authorizing' => false
  163.     ));
  164.     $app->response()->body($html);
  165.   }
  166. });
  167. 

  168. $app->get('/photo', function() use($app) {
  169.   if($user=require_login($app)) {
  170.     $params = $app->request()->params();
  171. 

  172.     $html = render('photo', array(
  173.       'title' => 'New Photo',
  174.       'note_content' => '',
  175.       'authorizing' => false
  176.     ));
  177.     $app->response()->body($html);
  178.   }
  179. });
  180. 

  181. $app->get('/repost', function() use($app) {
  182.   if($user=require_login($app)) {
  183.     $params = $app->request()->params();
  184. 

  185.     $url = '';
  186. 

  187.     if(array_key_exists('url', $params))
  188.       $url = $params['url'];
  189. 

  190.     $html = render('new-repost', array(
  191.       'title' => 'New Repost',
  192.       'url' => $url,
  193.       'token' => generate_login_token(),
  194.       'authorizing' => false
  195.     ));
  196.     $app->response()->body($html);
  197.   }
  198. });
  199. 

  200. $app->post('/prefs', function() use($app) {
  201.   if($user=require_login($app)) {
  202.     $params = $app->request()->params();
  203.     $user->location_enabled = $params['enabled'];
  204.     $user->save();
  205.   }
  206.   $app->response()->body(json_encode(array(
  207.     'result' => 'ok'
  208.   )));
  209. });
  210. 

  211. $app->get('/creating-a-token-endpoint', function() use($app) {
  212.   $app->redirect('http://indiewebcamp.com/token-endpoint', 301);
  213. });
  214. $app->get('/creating-a-micropub-endpoint', function() use($app) {
  215.   $html = render('creating-a-micropub-endpoint', array('title' => 'Creating a Micropub Endpoint', 'authorizing' => false));
  216.   $app->response()->body($html);
  217. });
  218. 

  219. $app->get('/docs', function() use($app) {
  220.   $html = render('docs', array('title' => 'Documentation', 'authorizing' => false));
  221.   $app->response()->body($html);
  222. });
  223. 

  224. $app->get('/privacy', function() use($app) {
  225.   $html = render('privacy', array('title' => 'Quill Privacy Policy', 'authorizing' => false));
  226.   $app->response()->body($html);
  227. });
  228. 

  229. $app->get('/add-to-home', function() use($app) {
  230.   $params = $app->request()->params();
  231.   header("Cache-Control: no-cache, must-revalidate");
  232. 

  233.   if(array_key_exists('token', $params) && !session('add-to-home-started')) {
  234.     unset($_SESSION['add-to-home-started']);
  235. 

  236.     // Verify the token and sign the user in

  237.     try {
  238.       $data = JWT::decode($params['token'], Config::$jwtSecret, array('HS256'));
  239.       $_SESSION['user_id'] = $data->user_id;
  240.       $_SESSION['me'] = $data->me;
  241.       $app->redirect('/new', 301);
  242.     } catch(DomainException $e) {
  243.       header('X-Error: DomainException');
  244.       $app->redirect('/', 301);
  245.     } catch(UnexpectedValueException $e) {
  246.       header('X-Error: UnexpectedValueException');
  247.       $app->redirect('/', 301);
  248.     }
  249. 

  250.   } else {
  251. 

  252.     if($user=require_login($app)) {
  253.       if(array_key_exists('start', $params)) {
  254.         $_SESSION['add-to-home-started'] = true;
  255. 

  256.         $token = JWT::encode(array(
  257.           'user_id' => $_SESSION['user_id'],
  258.           'me' => $_SESSION['me'],
  259.           'created_at' => time()
  260.         ), Config::$jwtSecret);
  261. 

  262.         $app->redirect('/add-to-home?token='.$token, 301);
  263.       } else {
  264.         unset($_SESSION['add-to-home-started']);
  265.         $html = render('add-to-home', array('title' => 'Quill'));
  266.         $app->response()->body($html);
  267.       }
  268.     }
  269.   }
  270. });
  271. 

  272. $app->get('/email', function() use($app) {
  273.   if($user=require_login($app)) {
  274. 

  275.     $test_response = '';
  276.     if($user->last_micropub_response) {
  277.       try {
  278.         if(@json_decode($user->last_micropub_response)) {
  279.           $d = json_decode($user->last_micropub_response);
  280.           $test_response = $d->response;
  281.         }
  282.       } catch(Exception $e) {
  283.       }
  284.     }
  285. 

  286.     if(!$user->email_username) {
  287.       $host = parse_url($user->url, PHP_URL_HOST);
  288.       $user->email_username = $host . '.' . rand(100000,999999);
  289.       $user->save();
  290.     }
  291. 

  292.     $html = render('email', array(
  293.       'title' => 'Post-by-Email',
  294.       'micropub_endpoint' => $user->micropub_endpoint,
  295.       'test_response' => $test_response,
  296.       'user' => $user
  297.     ));
  298.     $app->response()->body($html);
  299.   }
  300. });
  301. 

  302. $app->get('/settings', function() use($app) {
  303.   if($user=require_login($app)) {
  304.     $html = render('settings', array('title' => 'Settings', 'include_facebook' => true, 'authorizing' => false));
  305.     $app->response()->body($html);
  306.   }
  307. });
  308. 

  309. $app->post('/settings/html-content', function() use($app) {
  310.   if($user=require_login($app)) {
  311.     $params = $app->request()->params();
  312.     $user->micropub_optin_html_content = $params['html'] ? 1 : 0;
  313.     $user->save();
  314.     $app->response()->body(json_encode(array(
  315.       'html' => $user->micropub_optin_html_content
  316.     )));
  317.   }
  318. });
  319. $app->get('/settings/html-content', function() use($app) {
  320.   if($user=require_login($app)) {
  321.     $app->response()->body(json_encode(array(
  322.       'html' => $user->micropub_optin_html_content
  323.     )));
  324.   }
  325. });
  326. 

  327. $app->get('/favorite-popup', function() use($app) {
  328.   if($user=require_login($app)) {
  329.     $params = $app->request()->params();
  330. 

  331.     $html = $app->render('favorite-popup.php', array(
  332.       'url' => $params['url'],
  333.       'token' => $params['token']
  334.     ));
  335.     $app->response()->body($html);
  336.   }
  337. });
  338. 

  339. function create_favorite(&$user, $url) {
  340.   $micropub_request = array(
  341.     'like-of' => $url
  342.   );
  343.   $r = micropub_post_for_user($user, $micropub_request);
  344. 

  345.   $facebook_id = false;
  346.   $instagram_id = false;
  347.   $tweet_id = false;
  348. 

  349.   /*
  350.   // Facebook likes are posted via Javascript, so pass the FB ID to the javascript code

  351.   if(preg_match('/https?:\/\/(?:www\.)?facebook\.com\/(?:[^\/]+)\/posts\/(\d+)/', $url, $match)) {
  352.     $facebook_id = $match[1];
  353.   }
  354. 

  355.   if(preg_match('/https?:\/\/(?:www\.)?facebook\.com\/photo\.php\?fbid=(\d+)/', $url, $match)) {
  356.     $facebook_id = $match[1];
  357.   }
  358.   */
  359. 

  360.   if(preg_match('/https?:\/\/(?:www\.)?instagram\.com\/p\/([^\/]+)/', $url, $match)) {
  361.     $instagram_id = $match[1];
  362.     if($user->instagram_access_token) {
  363.       $instagram = instagram_client();
  364.       $instagram->setAccessToken($user->instagram_access_token);
  365.       $ch = curl_init('https://api.instagram.com/v1/media/shortcode/' . $instagram_id . '?access_token=' . $user->instagram_access_token);
  366.       curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  367.       $result = json_decode(curl_exec($ch));
  368. 

  369.       $result = $instagram->likeMedia($result->data->id);
  370.     } else {
  371.       // TODO: indicate that the instagram post couldn't be liked because no access token was available

  372.     }
  373.   }
  374. 

  375.   if($user->twitter_access_token && preg_match('/https?:\/\/(?:www\.)?twitter\.com\/[^\/]+\/status(?:es)?\/(\d+)/', $url, $match)) {
  376.     $tweet_id = $match[1];
  377.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret,
  378.       $user->twitter_access_token, $user->twitter_token_secret);
  379.     $result = $twitter->post('favorites/create', array(
  380.       'id' => $tweet_id
  381.     ));
  382.   }
  383. 

  384.   return $r;
  385. }
  386. 

  387. function create_repost(&$user, $url) {
  388.   $micropub_request = array(
  389.     'repost-of' => $url
  390.   );
  391.   $r = micropub_post_for_user($user, $micropub_request);
  392. 

  393.   $tweet_id = false;
  394. 

  395.   if($user->twitter_access_token && preg_match('/https?:\/\/(?:www\.)?twitter\.com\/[^\/]+\/status(?:es)?\/(\d+)/', $url, $match)) {
  396.     $tweet_id = $match[1];
  397.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret,
  398.       $user->twitter_access_token, $user->twitter_token_secret);
  399.     $result = $twitter->post('statuses/retweet/'.$tweet_id);
  400.   }
  401. 

  402.   return $r;
  403. }
  404. 

  405. $app->get('/favorite.js', function() use($app) {
  406.   $app->response()->header("Content-type", "text/javascript");
  407.   if($user=require_login($app, false)) {
  408.     $params = $app->request()->params();
  409. 

  410.     if(array_key_exists('url', $params)) {
  411.       $r = create_favorite($user, $params['url']);
  412. 

  413.       $app->response()->body($app->render('favorite-js.php', array(
  414.         'url' => $params['url'],
  415.         'like_url' => $r['location'],
  416.         'error' => $r['error'],
  417.         // 'facebook_id' => $facebook_id

  418.       )));
  419.     } else {
  420.       $app->response()->body('alert("no url");');
  421.     }
  422. 

  423.   } else {
  424.     $app->response()->body('alert("invalid token");');
  425.   }
  426. });
  427. 

  428. $app->post('/favorite', function() use($app) {
  429.   if($user=require_login($app)) {
  430.     $params = $app->request()->params();
  431. 

  432.     $r = create_favorite($user, $params['url']);
  433. 

  434.     $app->response()->body(json_encode(array(
  435.       'location' => $r['location'],
  436.       'error' => $r['error']
  437.     )));
  438.   }
  439. });
  440. 

  441. $app->post('/repost', function() use($app) {
  442.   if($user=require_login($app)) {
  443.     $params = $app->request()->params();
  444. 

  445.     $r = create_repost($user, $params['url']);
  446. 

  447.     $app->response()->body(json_encode(array(
  448.       'location' => $r['location'],
  449.       'error' => $r['error']
  450.     )));
  451.   }
  452. });
  453. 

  454. $app->get('/micropub/syndications', function() use($app) {
  455.   if($user=require_login($app)) {
  456.     $data = get_micropub_config($user, ['q'=>'syndicate-to']);
  457.     $app->response()->body(json_encode(array(
  458.       'targets' => $data['targets'],
  459.       'response' => $data['response']
  460.     )));
  461.   }
  462. });
  463. 

  464. $app->post('/micropub/post', function() use($app) {
  465.   if($user=require_login($app)) {
  466.     $params = $app->request()->params();
  467. 

  468.     // Remove any blank params

  469.     $params = array_filter($params, function($v){
  470.       return $v !== '';
  471.     });
  472. 

  473.     $r = micropub_post_for_user($user, $params);
  474. 

  475.     $app->response()->body(json_encode(array(
  476.       'request' => htmlspecialchars($r['request']),
  477.       'response' => htmlspecialchars($r['response']),
  478.       'location' => $r['location'],
  479.       'error' => $r['error'],
  480.       'curlinfo' => $r['curlinfo']
  481.     )));
  482.   }
  483. });
  484. 

  485. $app->post('/micropub/multipart', function() use($app) {
  486.   if($user=require_login($app)) {
  487.     // var_dump($app->request()->post());

  488.     //

  489.     // Since $app->request()->post() with multipart is always

  490.     // empty (bug in Slim?) We're using the raw $_POST here.

  491.     // PHP empties everything in $_POST if the file upload size exceeds

  492.     // that is why we have to test if the variables exist first.

  493. 

  494.     $file = isset($_FILES['photo']) ? $_FILES['photo'] : null;
  495. 

  496.     if($file) {
  497.       $error = validate_photo($file);
  498. 

  499.       unset($_POST['null']);
  500. 

  501.       if(!$error) {
  502.         $file_path = $file['tmp_name'];
  503.         correct_photo_rotation($file_path);
  504.         $r = micropub_post_for_user($user, $_POST, $file_path);
  505.       } else {
  506.         $r = array('error' => $error);
  507.       }
  508.     } else {
  509.       unset($_POST['null']);
  510.       $r = micropub_post_for_user($user, $_POST);
  511.     }
  512. 

  513.     // Populate the error if there was no location header.

  514.     if(empty($r['location']) && empty($r['error'])) {
  515.       $r['error'] = "No 'Location' header in response.";
  516.     }
  517. 

  518.     $app->response()->body(json_encode(array(
  519.       'response' => (isset($r['response']) ? htmlspecialchars($r['response']) : null),
  520.       'location' => (isset($r['location']) ? $r['location'] : null),
  521.       'error' => (isset($r['error']) ? $r['error'] : null),
  522.     )));
  523.   }
  524. });
  525. 

  526. $app->post('/micropub/media', function() use($app) {
  527.   if($user=require_login($app)) {
  528.     $file = isset($_FILES['photo']) ? $_FILES['photo'] : null;
  529.     $error = validate_photo($file);
  530.     unset($_POST['null']);
  531. 

  532.     if(!$error) {
  533.       $file_path = $file['tmp_name'];
  534.       correct_photo_rotation($file_path);
  535.       $r = micropub_media_post_for_user($user, $file_path);
  536.     } else {
  537.       $r = array('error' => $error);
  538.     }
  539. 

  540.     if(empty($r['location']) && empty($r['error'])) {
  541.       $r['error'] = "No 'Location' header in response.";
  542.     }
  543. 

  544.     $app->response()->body(json_encode(array(
  545.       'location' => (isset($r['location']) ? $r['location'] : null),
  546.       'error' => (isset($r['error']) ? $r['error'] : null),
  547.     )));
  548.   }
  549. });
  550. 

  551. $app->post('/micropub/postjson', function() use($app) {
  552.   if($user=require_login($app)) {
  553.     $params = $app->request()->params();
  554. 

  555.     $r = micropub_post_for_user($user, json_decode($params['data'], true), null, true);
  556. 

  557.     $app->response()->body(json_encode(array(
  558.       'location' => $r['location'],
  559.       'error' => $r['error'],
  560.       'response' => $r['response']
  561.     )));
  562.   }
  563. });
  564. 

  565. /*
  566. $app->post('/auth/facebook', function() use($app) {
  567.   if($user=require_login($app, false)) {
  568.     $params = $app->request()->params();
  569.     // User just auth'd with facebook, store the access token

  570.     $user->facebook_access_token = $params['fb_token'];
  571.     $user->save();
  572. 

  573.     $app->response()->body(json_encode(array(
  574.       'result' => 'ok'
  575.     )));
  576.   } else {
  577.     $app->response()->body(json_encode(array(
  578.       'result' => 'error'
  579.     )));
  580.   }
  581. });
  582. */
  583. 

  584. $app->post('/auth/twitter', function() use($app) {
  585.   if($user=require_login($app, false)) {
  586.     $params = $app->request()->params();
  587.     // User just auth'd with twitter, store the access token

  588.     $user->twitter_access_token = $params['twitter_token'];
  589.     $user->twitter_token_secret = $params['twitter_secret'];
  590.     $user->save();
  591. 

  592.     $app->response()->body(json_encode(array(
  593.       'result' => 'ok'
  594.     )));
  595.   } else {
  596.     $app->response()->body(json_encode(array(
  597.       'result' => 'error'
  598.     )));
  599.   }
  600. });
  601. 

  602. function getTwitterLoginURL(&$twitter) {
  603.   $request_token = $twitter->getRequestToken(Config::$base_url . 'auth/twitter/callback');
  604.   $_SESSION['twitter_auth'] = $request_token;
  605.   return $twitter->getAuthorizeURL($request_token['oauth_token']);
  606. }
  607. 

  608. $app->get('/auth/twitter', function() use($app) {
  609.   $params = $app->request()->params();
  610.   if($user=require_login($app, false)) {
  611. 

  612.     // If there is an existing Twitter token, check if it is valid

  613.     // Otherwise, generate a Twitter login link

  614.     $twitter_login_url = false;
  615.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret,
  616.       $user->twitter_access_token, $user->twitter_token_secret);
  617. 

  618.     if(array_key_exists('login', $params)) {
  619.       $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret);
  620.       $twitter_login_url = getTwitterLoginURL($twitter);
  621.     } else {
  622.       if($user->twitter_access_token) {
  623.         if ($twitter->get('account/verify_credentials')) {
  624.           $app->response()->body(json_encode(array(
  625.             'result' => 'ok'
  626.           )));
  627.           return;
  628.         } else {
  629.           // If the existing twitter token is not valid, generate a login link

  630.           $twitter_login_url = getTwitterLoginURL($twitter);
  631.         }
  632.       } else {
  633.         $twitter_login_url = getTwitterLoginURL($twitter);
  634.       }
  635.     }
  636. 

  637.     $app->response()->body(json_encode(array(
  638.       'url' => $twitter_login_url
  639.     )));
  640. 

  641.   } else {
  642.     $app->response()->body(json_encode(array(
  643.       'result' => 'error'
  644.     )));
  645.   }
  646. });
  647. 

  648. $app->get('/auth/twitter/callback', function() use($app) {
  649.   if($user=require_login($app)) {
  650.     $params = $app->request()->params();
  651. 

  652.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret,
  653.       $_SESSION['twitter_auth']['oauth_token'], $_SESSION['twitter_auth']['oauth_token_secret']);
  654.     $credentials = $twitter->getAccessToken($params['oauth_verifier']);
  655. 

  656.     $user->twitter_access_token = $credentials['oauth_token'];
  657.     $user->twitter_token_secret = $credentials['oauth_token_secret'];
  658.     $user->twitter_username = $credentials['screen_name'];
  659.     $user->save();
  660. 

  661.     $app->redirect('/settings');
  662.   }
  663. });
  664. 

  665. $app->get('/auth/instagram', function() use($app) {
  666.   if($user=require_login($app, false)) {
  667. 

  668.     $instagram = instagram_client();
  669. 

  670.     // If there is an existing Instagram auth token, check if it's valid

  671.     if($user->instagram_access_token) {
  672.       $instagram->setAccessToken($user->instagram_access_token);
  673.       $igUser = $instagram->getUser();
  674. 

  675.       if($igUser && $igUser->meta->code == 200) {
  676.         $app->response()->body(json_encode(array(
  677.           'result' => 'ok',
  678.           'username' => $igUser->data->username,
  679.           'url' => $instagram->getLoginUrl(array('basic','likes'))
  680.         )));
  681.         return;
  682.       }
  683.     }
  684. 

  685.     $app->response()->body(json_encode(array(
  686.       'result' => 'error',
  687.       'url' => $instagram->getLoginUrl(array('basic','likes'))
  688.     )));
  689.   }
  690. });
  691. 

  692. $app->get('/auth/instagram/callback', function() use($app) {
  693.   if($user=require_login($app)) {
  694.     $params = $app->request()->params();
  695. 

  696.     $instagram = instagram_client();
  697.     $data = $instagram->getOAuthToken($params['code']);
  698.     $user->instagram_access_token = $data->access_token;
  699.     $user->save();
  700. 

  701.     $app->redirect('/settings');
  702.   }
  703. });