p3k
/
Quill
mirror of https://github.com/aaronpk/Quill.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
325 Commits
3 Branches
595 MiB
Tree: 97d85c64d4
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '97d85c64d4'
${ noResults }
Quill/controllers/controllers.php

1038 lines
31 KiB
Raw Normal View History

Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
show RSVP field when replying to events closes #71
7 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
10 years ago
lock to JWT 2.* version
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
10 years ago
replace redirects with http 302
7 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
10 years ago
replace redirects with http 302
7 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
10 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
10 years ago
replace redirects with http 302
7 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
fix autosubmit vulnerability for "favorite" bookmarklet closes #69
7 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
10 years ago
fix autosubmit vulnerability for "favorite" bookmarklet closes #69
7 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
10 years ago
add dashboard with links to all post types
8 years ago
add tags, slug and status field to quill editor
7 years ago
add dashboard with links to all post types
8 years ago
disable post type buttons if the server doesn't support them
6 years ago
add dashboard with links to all post types
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add tags, slug and status field to quill editor
7 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
support media endpoint, autosave notes in local storage * looks for a media endpoint in the micropub config * if media endpoint is available, both the note interface and the editor will upload files to it instead of posting the photo directly * the note interface autosaves in-progress notes in localstorage
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
10 years ago
add a dropdown to choose post visibility
5 years ago
Added authorizing false so it would not show the Savant3:: error
9 years ago
add tweet text length countdown on note interface
8 years ago
Added authorizing false so it would not show the Savant3:: error
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
query the media endpoint for the last photo uploaded
7 years ago
switch to q=source for querying the media endpoint https://github.com/indieweb/micropub-extensions/issues/14
4 years ago
query the media endpoint for the last photo uploaded
7 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
10 years ago
add tags, slug and status field to quill editor
7 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
10 years ago
Added authorizing false so it would not show the Savant3:: error
9 years ago
use `mp-syndicate-to` by default, add setting * adds setting to choose the property to use for the syndication targets * all existing users default to the old value `syndicate-to` * new users default to `mp-syndicate-to` closes #66
7 years ago
Added authorizing false so it would not show the Savant3:: error
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
10 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
fix autosubmit vulnerability for "favorite" bookmarklet closes #69
7 years ago
limit autosubmit tokens to the same user
7 years ago
fix autosubmit vulnerability for "favorite" bookmarklet closes #69
7 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
add tags, slug and status field to quill editor
7 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
fix autosubmit vulnerability for "favorite" bookmarklet closes #69
7 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
crude UI for creating events
8 years ago
add channel selection to event interface
4 years ago
add tags, slug and status field to quill editor
7 years ago
crude UI for creating events
8 years ago
add channel selection to event interface
4 years ago
crude UI for creating events
8 years ago
add interface for posting travel itinerary
8 years ago
add tags, slug and status field to quill editor
7 years ago
add interface for posting travel itinerary
8 years ago
Adds possibility to post photos. With this it is possible to post a photo note with a description, nothing more. It doesn't move the file in the file system, just posts it from the temp location to the users server. It also does validate for file size, content type and max upload size and shows the errors to the user. If everything goes according to plan the response from the users server is shown, together with a link with the posted photos URL.
9 years ago
add tags, slug and status field to quill editor
7 years ago
Adds possibility to post photos. With this it is possible to post a photo note with a description, nothing more. It doesn't move the file in the file system, just posts it from the temp location to the users server. It also does validate for file size, content type and max upload size and shows the errors to the user. If everything goes according to plan the response from the users server is shown, together with a link with the posted photos URL.
9 years ago
add h-review interface
8 years ago
add tags, slug and status field to quill editor
7 years ago
add h-review interface
8 years ago
add a page to convert a tweet to a micropub post
2 years ago
add repost form
9 years ago
support editing reposts
7 years ago
add repost form
9 years ago
support editing reposts
7 years ago
also support finding the repost URL from an h-cite
7 years ago
support editing reposts
7 years ago
add repost form
9 years ago
add tags, slug and status field to quill editor
7 years ago
add repost form
9 years ago
support editing reposts
7 years ago
Added authorizing false so it would not show the Savant3:: error
9 years ago
support editing reposts
7 years ago
add repost form
9 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
10 years ago
send proper content type headers
8 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
10 years ago
store the user's timezone after their location is found
7 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
lock to JWT 2.* version
9 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
lock to JWT 2.* version
9 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
lock to JWT 2.* version
9 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
replace redirects with http 302
7 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
replace redirects with http 302
7 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
replace redirects with http 302
7 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
add interface for posting travel itinerary
8 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
replace redirects with http 302
7 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
add tags, slug and status field to quill editor
7 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
add post-by-email support to quill
9 years ago
add tags, slug and status field to quill editor
7 years ago
add post-by-email support to quill
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
10 years ago
add tags, slug and status field to quill editor
7 years ago
remove facebook/instagram stuff
8 years ago
if no syndication targets are found, hide the section add syndication reload button to the settings screen
6 years ago
add channel selection to event interface
4 years ago
remove facebook/instagram stuff
8 years ago
add tags, slug and status field to quill editor
7 years ago
allow only mp-syndicate-to and syndicate-to
7 years ago
use `mp-syndicate-to` by default, add setting * adds setting to choose the property to use for the syndication targets * all existing users default to the old value `syndicate-to` * new users default to `mp-syndicate-to` closes #66
7 years ago
add tags, slug and status field to quill editor
7 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
10 years ago
add banner to opt in to html content change
9 years ago
send proper content type headers
8 years ago
add banner to opt in to html content change
9 years ago
send proper content type headers
8 years ago
add banner to opt in to html content change
9 years ago
add a page to convert a tweet to a micropub post
2 years ago
fix in-reply-to on twitter import
2 years ago
add a page to convert a tweet to a micropub post
2 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
send syndication URL for twitter likes/reposts likes and reposts the tweet on twitter first, then sends a syndication URL in the micropub endpoint
7 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
remove facebook/instagram stuff
8 years ago
add repost form
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
send syndication URL for twitter likes/reposts likes and reposts the tweet on twitter first, then sends a syndication URL in the micropub endpoint
7 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
send syndication URL for twitter likes/reposts likes and reposts the tweet on twitter first, then sends a syndication URL in the micropub endpoint
7 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
10 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
quill should send an array when editing
7 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
add repost form
9 years ago
send syndication URL for twitter likes/reposts likes and reposts the tweet on twitter first, then sends a syndication URL in the micropub endpoint
7 years ago
add repost form
9 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
add repost form
9 years ago
send syndication URL for twitter likes/reposts likes and reposts the tweet on twitter first, then sends a syndication URL in the micropub endpoint
7 years ago
add repost form
9 years ago
send syndication URL for twitter likes/reposts likes and reposts the tweet on twitter first, then sends a syndication URL in the micropub endpoint
7 years ago
add repost form
9 years ago
support editing reposts
7 years ago
actually post likes from the form
10 years ago
show error messages when editing favorites
7 years ago
fixy
7 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
show error messages when editing favorites
7 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
show error messages when editing favorites
7 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
actually post likes from the form
10 years ago
send proper content type headers
8 years ago
actually post likes from the form
10 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
show error messages when editing favorites
7 years ago
actually post likes from the form
10 years ago
add repost form
9 years ago
support editing reposts
7 years ago
support posting code snippets
6 years ago
improvements to login UI, upgrades libraries makes the login experience a bit friendlier to non-developer users
6 years ago
support posting code snippets
6 years ago
support editing reposts
7 years ago
add repost form
9 years ago
send proper content type headers
8 years ago
add repost form
9 years ago
support editing reposts
7 years ago
add repost form
9 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
reset reply context state when URL is removed
8 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
use XRay to parse tweets
7 years ago
replace external XRay.p3k.io call with the XRay library
7 years ago
use XRay to parse tweets
7 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
replace external XRay.p3k.io call with the XRay library
7 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
use XRay to parse tweets
7 years ago
replace external XRay.p3k.io call with the XRay library
7 years ago
show RSVP field when replying to events closes #71
7 years ago
use XRay to parse tweets
7 years ago
fix for #83
7 years ago
use XRay to parse tweets
7 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
fix for no author url
7 years ago
fix check for author info
7 years ago
clean up mentions list
7 years ago
fix check for author info
7 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
show RSVP field when replying to events closes #71
7 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
clean up mentions list
7 years ago
show syndication links with icons in reply context
7 years ago
clean up mentions list
7 years ago
show syndication links with icons in reply context
7 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
show syndication links with icons in reply context
7 years ago
clean up note UI, show reply context * shows reply context of the URL you're replying to * autocomplete nicknames from the post when replying * moved debug info to the settings screen to clean up the UI
8 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
improvements to login UI, upgrades libraries makes the login experience a bit friendlier to non-developer users
6 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
improvements to login UI, upgrades libraries makes the login experience a bit friendlier to non-developer users
6 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
improvements to login UI, upgrades libraries makes the login experience a bit friendlier to non-developer users
6 years ago
basic editing support * new route `/edit?url=` intended to be used as an edit button target, which detects the type of post and redirects to the appropriate editing interface * implemented the edit interface for favorites
7 years ago
set timezone of itinerary legs based on airport location
6 years ago
switch to local rendering of static map
2 years ago
fix map
2 years ago
switch to local rendering of static map
2 years ago
 
  1. <?php
  2. use Abraham\TwitterOAuth\TwitterOAuth;
  3. use IndieWeb\DateFormatter;
  4. 

  5. function require_login(&$app, $redirect=true) {
  6.   $params = $app->request()->params();
  7.   if(array_key_exists('token', $params)) {
  8.     try {
  9.       $data = JWT::decode($params['token'], Config::$jwtSecret, array('HS256'));
  10.       $_SESSION['user_id'] = $data->user_id;
  11.       $_SESSION['me'] = $data->me;
  12.     } catch(DomainException $e) {
  13.       if($redirect) {
  14.         header('X-Error: DomainException');
  15.         $app->redirect('/', 302);
  16.       } else {
  17.         return false;
  18.       }
  19.     } catch(UnexpectedValueException $e) {
  20.       if($redirect) {
  21.         header('X-Error: UnexpectedValueException');
  22.         $app->redirect('/', 302);
  23.       } else {
  24.         return false;
  25.       }
  26.     }
  27.   }
  28. 

  29.   if(!array_key_exists('user_id', $_SESSION)) {
  30.     if($redirect)
  31.       $app->redirect('/', 302);
  32.     return false;
  33.   } else {
  34.     return ORM::for_table('users')->find_one($_SESSION['user_id']);
  35.   }
  36. }
  37. 

  38. function generate_login_token($opts=[]) {
  39.   return JWT::encode(array_merge([
  40.     'user_id' => $_SESSION['user_id'],
  41.     'me' => $_SESSION['me'],
  42.     'created_at' => time()
  43.   ], $opts), Config::$jwtSecret);
  44. }
  45. 

  46. $app->get('/dashboard', function() use($app) {
  47.   if($user=require_login($app)) {
  48.     render('dashboard', array(
  49.       'title' => 'Dashboard',
  50.       'authorizing' => false,
  51.       'user' => $user,
  52.     ));
  53.   }
  54. });
  55. 

  56. $app->get('/new', function() use($app) {
  57.   if($user=require_login($app)) {
  58.     $params = $app->request()->params();
  59. 

  60.     $entry = false;
  61.     $in_reply_to = '';
  62. 

  63.     if(array_key_exists('reply', $params))
  64.        $in_reply_to = $params['reply'];
  65. 

  66.     render('new-post', array(
  67.       'title' => 'New Post',
  68.       'in_reply_to' => $in_reply_to,
  69.       'micropub_endpoint' => $user->micropub_endpoint,
  70.       'media_endpoint' => $user->micropub_media_endpoint,
  71.       'micropub_scope' => $user->micropub_scope,
  72.       'micropub_access_token' => $user->micropub_access_token,
  73.       'response_date' => $user->last_micropub_response_date,
  74.       'syndication_targets' => json_decode($user->syndication_targets, true),
  75.       'supported_visibility' => json_decode($user->supported_visibility, true),
  76.       'location_enabled' => $user->location_enabled,
  77.       'user' => $user,
  78.       'authorizing' => false
  79.     ));
  80.   }
  81. });
  82. 

  83. $app->get('/new/last-photo.json', function() use($app) {
  84.   if($user=require_login($app)) {
  85.     $url = null;
  86. 

  87.     if($user->micropub_media_endpoint) {
  88.       // Request the last file uploaded from the media endpoint

  89.       $response = micropub_get($user->micropub_media_endpoint, ['q'=>'source', 'limit'=>1], $user->micropub_access_token);
  90.       if(isset($response['data']['items'])) {
  91.         $items = $response['data']['items'];
  92.         if(isset($items[0])) {
  93.           $item = $items[0];
  94.           // Only show the file if it was uploaded in the last 5 minutes or if no published date available

  95.           $show = !isset($item['published']) || (strtotime($item['published']) >= (time()-300));
  96.           if($show && isset($item['url'])) {
  97.             $url = $item['url'];
  98.           }
  99.         }
  100.       }
  101.     }
  102. 

  103.     $app->response()['Content-type'] = 'application/json';
  104.     $app->response()->body(json_encode(array(
  105.       'url' => $url
  106.     )));
  107.   }
  108. });
  109. 

  110. $app->get('/bookmark', function() use($app) {
  111.   if($user=require_login($app)) {
  112.     $params = $app->request()->params();
  113. 

  114.     $url = '';
  115.     $name = '';
  116.     $content = '';
  117.     $tags = '';
  118. 

  119.     if(array_key_exists('url', $params))
  120.       $url = $params['url'];
  121. 

  122.     if(array_key_exists('name', $params))
  123.       $name = $params['name'];
  124. 

  125.     if(array_key_exists('content', $params))
  126.       $content = $params['content'];
  127. 

  128.     render('new-bookmark', array(
  129.       'title' => 'New Bookmark',
  130.       'bookmark_url' => $url,
  131.       'bookmark_name' => $name,
  132.       'bookmark_content' => $content,
  133.       'bookmark_tags' => $tags,
  134.       'token' => generate_login_token(),
  135.       'syndication_targets' => json_decode($user->syndication_targets, true),
  136.       'user' => $user,
  137.       'authorizing' => false
  138.     ));
  139.   }
  140. });
  141. 

  142. $app->get('/favorite', function() use($app) {
  143.   if($user=require_login($app)) {
  144.     $params = $app->request()->params();
  145. 

  146.     $like_of = '';
  147. 

  148.     if(array_key_exists('url', $params))
  149.       $like_of = $params['url'];
  150. 

  151.     // Check if there was a login token in the query string and whether it has autosubmit=true

  152.     $autosubmit = false;
  153. 

  154.     if(array_key_exists('token', $params)) {
  155.       try {
  156.         $data = JWT::decode($params['token'], Config::$jwtSecret, ['HS256']);
  157.         if(isset($data->autosubmit) && $data->autosubmit) {
  158.           // Only allow this token to be used for the user who created it

  159.           if($data->user_id == $_SESSION['user_id']) {
  160.             $autosubmit = true;
  161.           }
  162.         }
  163.       } catch(Exception $e) {
  164.       }
  165.     }
  166. 

  167.     if(array_key_exists('edit', $params)) {
  168.       $edit_data = get_micropub_source($user, $params['edit'], 'like-of');
  169.       $url = $params['edit'];
  170.       if(isset($edit_data['like-of'])) {
  171.         $like_of = $edit_data['like-of'][0];
  172.       }
  173.     } else {
  174.       $edit_data = false;
  175.       $url = false;
  176.     }
  177. 

  178.     render('new-favorite', array(
  179.       'title' => 'New Favorite',
  180.       'like_of' => $like_of,
  181.       'token' => generate_login_token(['autosubmit'=>true]),
  182.       'authorizing' => false,
  183.       'autosubmit' => $autosubmit,
  184.       'url' => $url
  185.     ));
  186.   }
  187. });
  188. 

  189. $app->get('/event', function() use($app) {
  190.   if($user=require_login($app)) {
  191.     $params = $app->request()->params();
  192. 

  193.     $channels = $user->channels ? json_decode($user->channels, true) : [];
  194. 

  195.     render('event', array(
  196.       'title' => 'Event',
  197.       'channels' => $channels,
  198.       'authorizing' => false
  199.     ));
  200.   }
  201. });
  202. 

  203. $app->get('/itinerary', function() use($app) {
  204.   if($user=require_login($app)) {
  205.     $params = $app->request()->params();
  206. 

  207.     render('new-itinerary', array(
  208.       'title' => 'Itinerary',
  209.       'authorizing' => false
  210.     ));
  211.   }
  212. });
  213. 

  214. $app->get('/photo', function() use($app) {
  215.   if($user=require_login($app)) {
  216.     $params = $app->request()->params();
  217. 

  218.     render('photo', array(
  219.       'title' => 'New Photo',
  220.       'note_content' => '',
  221.       'authorizing' => false
  222.     ));
  223.   }
  224. });
  225. 

  226. $app->get('/review', function() use($app) {
  227.   if($user=require_login($app)) {
  228.     $params = $app->request()->params();
  229. 

  230.     render('review', array(
  231.       'title' => 'Review',
  232.       'authorizing' => false
  233.     ));
  234.   }
  235. });
  236. 

  237. 

  238. $app->get('/twitter', function() use($app) {
  239.   if($user=require_login($app)) {
  240.     $params = $app->request()->params();
  241.     
  242.     $tweet_url = '';
  243.     
  244.     if(array_key_exists('tweet_url', $params))
  245.       $tweet_url = $params['tweet_url'];
  246.     
  247.     render('twitter', array(
  248.       'title' => 'Import Tweet',
  249.       'tweet_url' => $tweet_url,
  250.       'authorizing' => false
  251.     ));
  252.   }
  253. });
  254. 

  255. $app->get('/repost', function() use($app) {
  256.   if($user=require_login($app)) {
  257.     $params = $app->request()->params();
  258. 

  259.     $repost_of = '';
  260. 

  261.     if(array_key_exists('url', $params))
  262.       $repost_of = $params['url'];
  263. 

  264.     if(array_key_exists('edit', $params)) {
  265.       $edit_data = get_micropub_source($user, $params['edit'], 'repost-of');
  266.       $url = $params['edit'];
  267.       if(isset($edit_data['repost-of'])) {
  268.         $repost = $edit_data['repost-of'][0];
  269.         if(is_string($edit_data['repost-of'][0])) {
  270.           $repost_of = $repost;
  271.         } elseif(is_array($repost)) {
  272.           if(array_key_exists('type', $repost) && in_array('h-cite', $repost)) {
  273.             if(array_key_exists('url', $repost['properties'])) {
  274.               $repost_of = $repost['properties']['url'][0];
  275.             }
  276.           } else {
  277.             // Error

  278.           }
  279.         } else {
  280.           // Error: don't know what type of post this is

  281.         }
  282.       }
  283.     } else {
  284.       $edit_data = false;
  285.       $url = false;
  286.     }
  287. 

  288.     render('new-repost', array(
  289.       'title' => 'New Repost',
  290.       'repost_of' => $repost_of,
  291.       'token' => generate_login_token(),
  292.       'authorizing' => false,
  293.       'url' => $url,
  294.     ));
  295.   }
  296. });
  297. 

  298. $app->post('/prefs', function() use($app) {
  299.   if($user=require_login($app)) {
  300.     $params = $app->request()->params();
  301.     $user->location_enabled = $params['enabled'];
  302.     $user->save();
  303.   }
  304.   $app->response()['Content-type'] = 'application/json';
  305.   $app->response()->body(json_encode(array(
  306.     'result' => 'ok'
  307.   )));
  308. });
  309. 

  310. $app->post('/prefs/timezone', function() use($app) {
  311.   // Called when the interface finds the user's location.

  312.   // Look up the timezone for this location and store it as their default.

  313.   $timezone = false;
  314.   if($user=require_login($app)) {
  315.     $params = $app->request()->params();
  316.     $timezone = p3k\Timezone::timezone_for_location($params['latitude'], $params['longitude']);
  317.     if($timezone) {
  318.       $user->default_timezone = $timezone;
  319.       $user->save();
  320.     }
  321.   }
  322.   $app->response()['Content-type'] = 'application/json';
  323.   $app->response()->body(json_encode(array(
  324.     'result' => 'ok',
  325.     'timezone' => $timezone,
  326.   )));
  327. });
  328. 

  329. $app->get('/add-to-home', function() use($app) {
  330.   $params = $app->request()->params();
  331.   header("Cache-Control: no-cache, must-revalidate");
  332. 

  333.   if(array_key_exists('token', $params) && !session('add-to-home-started')) {
  334.     unset($_SESSION['add-to-home-started']);
  335. 

  336.     // Verify the token and sign the user in

  337.     try {
  338.       $data = JWT::decode($params['token'], Config::$jwtSecret, array('HS256'));
  339.       $_SESSION['user_id'] = $data->user_id;
  340.       $_SESSION['me'] = $data->me;
  341.       $app->redirect('/new', 302);
  342.     } catch(DomainException $e) {
  343.       header('X-Error: DomainException');
  344.       $app->redirect('/', 302);
  345.     } catch(UnexpectedValueException $e) {
  346.       header('X-Error: UnexpectedValueException');
  347.       $app->redirect('/', 302);
  348.     }
  349. 

  350.   } else {
  351. 

  352.     if($user=require_login($app)) {
  353.       if(array_key_exists('start', $params)) {
  354.         $_SESSION['add-to-home-started'] = true;
  355. 

  356.         $token = JWT::encode(array(
  357.           'user_id' => $_SESSION['user_id'],
  358.           'me' => $_SESSION['me'],
  359.           'created_at' => time()
  360.         ), Config::$jwtSecret);
  361. 

  362.         $app->redirect('/add-to-home?token='.$token, 302);
  363.       } else {
  364.         unset($_SESSION['add-to-home-started']);
  365.         render('add-to-home', array('title' => 'Quill'));
  366.       }
  367.     }
  368.   }
  369. });
  370. 

  371. $app->get('/email', function() use($app) {
  372.   if($user=require_login($app)) {
  373. 

  374.     if(!$user->email_username) {
  375.       $host = parse_url($user->url, PHP_URL_HOST);
  376.       $user->email_username = $host . '.' . rand(100000,999999);
  377.       $user->save();
  378.     }
  379. 

  380.     render('email', array(
  381.       'title' => 'Post-by-Email',
  382.       'micropub_endpoint' => $user->micropub_endpoint,
  383.       'user' => $user
  384.     ));
  385.   }
  386. });
  387. 

  388. $app->get('/settings', function() use($app) {
  389.   if($user=require_login($app)) {
  390.     render('settings', [
  391.       'title' => 'Settings',
  392.       'user' => $user,
  393.       'syndication_targets' => json_decode($user->syndication_targets, true),
  394.       'channels' => json_decode($user->channels, true),
  395.       'authorizing' => false
  396.     ]);
  397.   }
  398. });
  399. 

  400. $app->post('/settings/save', function() use($app) {
  401.   if($user=require_login($app)) {
  402.     $params = $app->request()->params();
  403. 

  404.     if(array_key_exists('html_content', $params))
  405.       $user->micropub_optin_html_content = $params['html_content'] ? 1 : 0;
  406. 

  407.     if(array_key_exists('slug_field', $params) && $params['slug_field'])
  408.       $user->micropub_slug_field = $params['slug_field'];
  409. 

  410.     if(array_key_exists('syndicate_field', $params) && $params['syndicate_field']) {
  411.       if(in_array($params['syndicate_field'], ['syndicate-to','mp-syndicate-to']))
  412.         $user->micropub_syndicate_field = $params['syndicate_field'];
  413.     }
  414. 

  415.     $user->save();
  416.     $app->response()['Content-type'] = 'application/json';
  417.     $app->response()->body(json_encode(array(
  418.       'result' => 'ok'
  419.     )));
  420.   }
  421. });
  422. 

  423. $app->post('/settings/html-content', function() use($app) {
  424.   if($user=require_login($app)) {
  425.     $params = $app->request()->params();
  426.     $user->micropub_optin_html_content = $params['html'] ? 1 : 0;
  427.     $user->save();
  428.     $app->response()['Content-type'] = 'application/json';
  429.     $app->response()->body(json_encode(array(
  430.       'html' => $user->micropub_optin_html_content
  431.     )));
  432.   }
  433. });
  434. $app->get('/settings/html-content', function() use($app) {
  435.   if($user=require_login($app)) {
  436.     $app->response()['Content-type'] = 'application/json';
  437.     $app->response()->body(json_encode(array(
  438.       'html' => $user->micropub_optin_html_content
  439.     )));
  440.   }
  441. });
  442. 

  443. $app->post('/twitter/preview', function() use($app) {
  444.   if($user=require_login($app)) {
  445.     $params = $app->request()->params();
  446.     
  447.     if($user->twitter_access_token) {
  448.       $xray_opts['twitter_api_key'] = Config::$twitterClientID;
  449.       $xray_opts['twitter_api_secret'] = Config::$twitterClientSecret;
  450.       $xray_opts['twitter_access_token'] = $user->twitter_access_token;
  451.       $xray_opts['twitter_access_token_secret'] = $user->twitter_token_secret;
  452.     }
  453.     
  454.     $tweet_url = $params['tweet_url'];
  455.     
  456.     // Pass to X-Ray to download all the twitter data in a useful format

  457.     $xray = new p3k\XRay();
  458.     $xray->http = new p3k\HTTP('Quill ('.Config::$base_url.')');
  459.     $data = $xray->parse($tweet_url, $xray_opts);
  460.     
  461.     $postdata = tweet_to_micropub_request($data['data']);
  462.     
  463.     $response = [
  464.       'json' => json_encode($postdata, JSON_PRETTY_PRINT+JSON_UNESCAPED_SLASHES)
  465.     ];
  466.     
  467.     $app->response()['Content-type'] = 'application/json';
  468.     $app->response()->body(json_encode($response));
  469.   }
  470. });
  471. 

  472. $app->post('/twitter', function() use($app) {
  473.   if($user=require_login($app)) {
  474.     $params = $app->request()->params();
  475. 

  476.     if($user->twitter_access_token) {
  477.       $xray_opts['twitter_api_key'] = Config::$twitterClientID;
  478.       $xray_opts['twitter_api_secret'] = Config::$twitterClientSecret;
  479.       $xray_opts['twitter_access_token'] = $user->twitter_access_token;
  480.       $xray_opts['twitter_access_token_secret'] = $user->twitter_token_secret;
  481.     }
  482.     
  483.     $tweet_url = $params['tweet_url'];
  484.     
  485.     // Pass to X-Ray to download all the twitter data in a useful format

  486.     $xray = new p3k\XRay();
  487.     $xray->http = new p3k\HTTP('Quill ('.Config::$base_url.')');
  488.     $data = $xray->parse($tweet_url, $xray_opts);
  489.     
  490.     $location = null;
  491.     
  492.     if(isset($data['data']) && $data['data']['type'] == 'entry') {
  493.       $tweet = $data['data'];
  494.       
  495.       $postdata = tweet_to_micropub_request($tweet);
  496. 

  497.       $r = micropub_post_for_user($user, $postdata, null, true);
  498. 

  499.       $app->response()['Content-type'] = 'application/json';
  500.       $app->response()->body(json_encode([
  501.         'location' => (isset($r['location']) && $r['location'] ? Mf2\resolveUrl($user->micropub_endpoint, $r['location']) : null),
  502.         'error' => $r['error'],
  503.         'response' => $r['response']
  504.       ]));
  505.     } else {
  506.       $app->response()['Content-type'] = 'application/json';
  507. 

  508.       $app->response()->body(json_encode([
  509.         'location' => null,
  510.         'error' => 'Error fetching tweet',
  511.       ]));
  512.     }
  513.   }
  514. });
  515. 

  516. function tweet_to_micropub_request($tweet) {
  517.   // Convert to a micropub post

  518.   $postdata = [
  519.     'type' => ['h-entry'],
  520.     'properties' => [
  521.       'content' => [$tweet['content']['text']],
  522.       'published' => [$tweet['published']],
  523.       'syndication' => [$tweet['url']],
  524.     ]
  525.   ];
  526.   if(isset($tweet['in-reply-to']))
  527.     $postdata['properties']['in-reply-to'] = $tweet['in-reply-to'];
  528.   if(isset($tweet['category']))
  529.     $postdata['properties']['category'] = $tweet['category'];
  530.   if(isset($tweet['photo']))
  531.     $postdata['properties']['photo'] = $tweet['photo'];
  532.   if(isset($tweet['video']))
  533.     $postdata['properties']['video'] = $tweet['video'];
  534.     
  535.   return $postdata;
  536. }
  537. 

  538. function create_favorite(&$user, $url) {
  539. 

  540.   $tweet_id = false;
  541.   $twitter_syndication = false;
  542. 

  543.   // POSSE favorites to Twitter

  544.   if($user->twitter_access_token && preg_match('/https?:\/\/(?:www\.)?twitter\.com\/[^\/]+\/status(?:es)?\/(\d+)/', $url, $match)) {
  545.     $tweet_id = $match[1];
  546.     $twitter = new TwitterOAuth(Config::$twitterClientID, Config::$twitterClientSecret,
  547.       $user->twitter_access_token, $user->twitter_token_secret);
  548.     $result = $twitter->post('favorites/create', array(
  549.       'id' => $tweet_id
  550.     ));
  551.     if(property_exists($result, 'id_str')) {
  552.       $twitter_syndication = 'https://twitter.com/'.$user->twitter_username.'/status/'.$result->id_str;
  553.     }
  554.   }
  555. 

  556.   $micropub_request = array(
  557.     'like-of' => $url
  558.   );
  559.   if($twitter_syndication) {
  560.     $micropub_request['syndication'] = $twitter_syndication;
  561.   }
  562.   $r = micropub_post_for_user($user, $micropub_request);
  563. 

  564.   return $r;
  565. }
  566. 

  567. function edit_favorite(&$user, $post_url, $like_of) {
  568.   $micropub_request = [
  569.     'action' => 'update',
  570.     'url' => $post_url,
  571.     'replace' => [
  572.       'like-of' => [$like_of]
  573.     ]
  574.   ];
  575.   $r = micropub_post_for_user($user, $micropub_request, null, true);
  576.   return $r;
  577. }
  578. 

  579. function create_repost(&$user, $url) {
  580. 

  581.   $tweet_id = false;
  582.   $twitter_syndication = false;
  583. 

  584.   if($user->twitter_access_token && preg_match('/https?:\/\/(?:www\.)?twitter\.com\/[^\/]+\/status(?:es)?\/(\d+)/', $url, $match)) {
  585.     $tweet_id = $match[1];
  586.     $twitter = new TwitterOAuth(Config::$twitterClientID, Config::$twitterClientSecret,
  587.       $user->twitter_access_token, $user->twitter_token_secret);
  588.     $result = $twitter->post('statuses/retweet/'.$tweet_id);
  589.     if(property_exists($result, 'id_str')) {
  590.       $twitter_syndication = 'https://twitter.com/'.$user->twitter_username.'/status/'.$result->id_str;
  591.     }
  592.   }
  593. 

  594.   $micropub_request = array(
  595.     'repost-of' => $url
  596.   );
  597.   if($twitter_syndication) {
  598.     $micropub_request['syndication'] = $twitter_syndication;
  599.   }
  600.   $r = micropub_post_for_user($user, $micropub_request);
  601. 

  602.   return $r;
  603. }
  604. 

  605. function edit_repost(&$user, $post_url, $repost_of) {
  606.   $micropub_request = [
  607.     'action' => 'update',
  608.     'url' => $post_url,
  609.     'replace' => [
  610.       'repost-of' => [$repost_of]
  611.     ]
  612.   ];
  613.   $r = micropub_post_for_user($user, $micropub_request, null, true);
  614.   return $r;
  615. }
  616. 

  617. $app->post('/favorite', function() use($app) {
  618.   if($user=require_login($app)) {
  619.     $params = $app->request()->params();
  620. 

  621.     $error = false;
  622. 

  623.     if(isset($params['edit']) && $params['edit']) {
  624.       $r = edit_favorite($user, $params['edit'], $params['like_of']);
  625.       if(isset($r['location']) && $r['location'])
  626.         $location = $r['location'];
  627.       elseif(in_array($r['code'], [200,201,204]))
  628.         $location = $params['edit'];
  629.       elseif(in_array($r['code'], [401,403])) {
  630.         $location = false;
  631.         $error = 'Your Micropub endpoint denied the request. Check that Quill is authorized to update posts.';
  632.       } else {
  633.         $location = false;
  634.         $error = 'Your Micropub endpoint did not return a location header or a recognized response code';
  635.       }
  636.     } else {
  637.       $r = create_favorite($user, $params['like_of']);
  638.       $location = $r['location'];
  639.     }
  640. 

  641.     $app->response()['Content-type'] = 'application/json';
  642.     $app->response()->body(json_encode(array(
  643.       'location' => $location,
  644.       'error' => $r['error'],
  645.       'error_details' => $error,
  646.     )));
  647.   }
  648. });
  649. 

  650. $app->post('/repost', function() use($app) {
  651.   if($user=require_login($app)) {
  652.     $params = $app->request()->params();
  653. 

  654.     $error = false;
  655. 

  656.     if(isset($params['edit']) && $params['edit']) {
  657.       $r = edit_repost($user, $params['edit'], $params['repost_of']);
  658.       if(isset($r['location']) && $r['location'])
  659.         $location = $r['location'];
  660.       elseif(in_array($r['code'], [200,201,204]))
  661.         $location = $params['edit'];
  662.       elseif(in_array($r['code'], [401,403])) {
  663.         $location = false;
  664.         $error = 'Your Micropub endpoint denied the request. Check that Quill is authorized to update posts.';
  665.       } else {
  666.         $location = false;
  667.         $error = 'Your Micropub endpoint did not return a location header or a recognized response code';
  668.       }
  669.     } else {
  670.       $r = create_repost($user, $params['repost_of']);
  671.       $location = $r['location'];
  672.     }
  673. 

  674.     $app->response()['Content-type'] = 'application/json';
  675.     $app->response()->body(json_encode(array(
  676.       'location' => $location,
  677.       'error' => $r['error'],
  678.       'error_details' => $error,
  679.     )));
  680.   }
  681. });
  682. 

  683. $app->get('/code', function() use($app) {
  684.   if($user=require_login($app)) {
  685.     $params = $app->request()->params();
  686. 

  687.     $edit_data = ['content'=>'','name'=>''];
  688. 

  689.     if(array_key_exists('edit', $params)) {
  690.       $source = get_micropub_source($user, $params['edit'], ['content','name']);
  691.       if(isset($source['content']) && is_array($source['content']) && isset($source['content'][0]))
  692.         $edit_data['content'] = $source['content'][0];
  693.       if(isset($source['name']) && is_array($source['name']) && isset($source['name'][0]))
  694.         $edit_data['name'] = $source['name'][0];
  695.       $url = $params['edit'];
  696.     } else {
  697.       $url = false;
  698.     }
  699. 

  700.     $languages = [
  701.       'php' => ['php'],
  702.       'ruby' => ['rb'],
  703.       'python' => ['py'],
  704.       'perl' => ['pl'],
  705.       'javascript' => ['js'],
  706.       'html' => ['html','htm'],
  707.       'css' => ['css'],
  708.       'bash' => ['sh'],
  709.       'nginx' => ['conf'],
  710.       'apache' => [],
  711.       'text' => ['txt'],
  712.     ];
  713.     ksort($languages);
  714.     $language_map = [];
  715.     foreach($languages as $lang=>$exts) {
  716.       foreach($exts as $ext)
  717.         $language_map[$ext] = $lang;
  718.     }
  719. 

  720.     render('new-code', array(
  721.       'title' => 'New Code Snippet',
  722.       'url' => $url,
  723.       'edit_data' => $edit_data,
  724.       'token' => generate_login_token(),
  725.       'languages' => $languages,
  726.       'language_map' => $language_map,
  727.       'my_hostname' => parse_url($user->url, PHP_URL_HOST),
  728.       'authorizing' => false,
  729.     ));
  730.   }
  731. });
  732. 

  733. $app->post('/code', function() use($app) {
  734.   if($user=require_login($app)) {
  735.     $params = $app->request()->params();
  736. 

  737.     $error = false;
  738. 

  739.     if(isset($params['edit']) && $params['edit']) {
  740.       $micropub_request = [
  741.         'action' => 'update',
  742.         'url' => $params['edit'],
  743.         'replace' => [
  744.           'content' => [$params['content']]
  745.         ]
  746.       ];
  747.       if(isset($params['name']) && $params['name']) {
  748.         $micropub_request['replace']['name'] = [$params['name']];
  749.       }
  750.       $r = micropub_post_for_user($user, $micropub_request, null, true);
  751. 

  752.       if(isset($r['location']) && $r['location'])
  753.         $location = $r['location'];
  754.       elseif(in_array($r['code'], [200,201,204]))
  755.         $location = $params['edit'];
  756.       elseif(in_array($r['code'], [401,403])) {
  757.         $location = false;
  758.         $error = 'Your Micropub endpoint denied the request. Check that Quill is authorized to update posts.';
  759.       } else {
  760.         $location = false;
  761.         $error = 'Your Micropub endpoint did not return a location header or a recognized response code';
  762.       }
  763.     } else {
  764.       $micropub_request = array(
  765.         'p3k-content-type' => 'code/' . $params['language'],
  766.         'content' => $params['content'],
  767.       );
  768.       if(isset($params['name']) && $params['name'])
  769.         $micropub_request['name'] = $params['name'];
  770. 

  771.       $r = micropub_post_for_user($user, $micropub_request);
  772. 

  773.       $location = $r['location'];
  774.     }
  775. 

  776.     $app->response()['Content-type'] = 'application/json';
  777.     $app->response()->body(json_encode(array(
  778.       'location' => $location,
  779.       'error' => $r['error'],
  780.       'error_details' => $error,
  781.     )));
  782.   }
  783. });
  784. 

  785. $app->get('/reply/preview', function() use($app) {
  786.   if($user=require_login($app)) {
  787.     $params = $app->request()->params();
  788. 

  789.     if(!isset($params['url']) || !$params['url']) {
  790.       return '';
  791.     }
  792. 

  793.     $reply_url = trim($params['url']);
  794. 

  795.     if(preg_match('/twtr\.io\/([0-9a-z]+)/i', $reply_url, $match)) {
  796.       $twtr = 'https://twitter.com/_/status/' . sxg_to_num($match[1]);
  797.       $ch = curl_init($twtr);
  798.       curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  799.       curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
  800.       curl_exec($ch);
  801.       $expanded_url = curl_getinfo($ch, CURLINFO_EFFECTIVE_URL);
  802.       if($expanded_url) $reply_url = $expanded_url;
  803.     }
  804. 

  805.     $entry = false;
  806. 

  807.     $xray_opts = [];
  808. 

  809.     if(preg_match('/twitter\.com\/(?:[^\/]+)\/statuse?s?\/(.+)/', $reply_url, $match)) {
  810.       if($user->twitter_access_token) {
  811.         $xray_opts['twitter_api_key'] = Config::$twitterClientID;
  812.         $xray_opts['twitter_api_secret'] = Config::$twitterClientSecret;
  813.         $xray_opts['twitter_access_token'] = $user->twitter_access_token;
  814.         $xray_opts['twitter_access_token_secret'] = $user->twitter_token_secret;
  815.       }
  816.     }
  817. 

  818.     // Pass to X-Ray to see if it can expand the entry

  819.     $xray = new p3k\XRay();
  820.     $xray->http = new p3k\HTTP('Quill ('.Config::$base_url.')');
  821.     $data = $xray->parse($reply_url, $xray_opts);
  822.     if($data && isset($data['data'])) {
  823.       if($data['data']['type'] == 'entry') {
  824.         $entry = $data['data'];
  825.       } elseif($data['data']['type'] == 'event') {
  826.         $entry = $data['data'];
  827.         $content = '';
  828.         if(isset($entry['start']) && isset($entry['end'])) {
  829.           $formatted = DateFormatter::format($entry['start'], $entry['end'], false);
  830.           if($formatted)
  831.             $content .= $formatted;
  832.           else {
  833.             $start = new DateTime($entry['start']);
  834.             $end = new DateTime($entry['end']);
  835.             if($start && $end)
  836.               $content .= 'from '.$start->format('Y-m-d g:ia').' to '.$end->format('Y-m-d g:ia');
  837.           }
  838.         } elseif(isset($entry['start'])) {
  839.           $formatted = DateFormatter::format($entry['start'], false, false);
  840.           if($formatted)
  841.             $content .= $formatted;
  842.           else {
  843.             $start = new DateTime($entry['start']);
  844.             if($start)
  845.               $content .= $start->format('Y-m-d g:ia');
  846.           }
  847.         }
  848. 

  849.         $entry['content']['text'] = $content;
  850.       }
  851.       // Create a nickname based on the author URL

  852.       if($entry && array_key_exists('author', $entry)) {
  853.         if($entry['author']['url']) {
  854.           if(!isset($entry['author']['nickname']) || !$entry['author']['nickname'])
  855.             $entry['author']['nickname'] = display_url($entry['author']['url']);
  856.         }
  857.       }
  858.     }
  859. 

  860.     $mentions = [];
  861.     if($entry) {
  862.       if(array_key_exists('author', $entry) && isset($entry['author']['nickname'])) {
  863.         // Find all @-names in the post, as well as the author name

  864.         $mentions[] = strtolower($entry['author']['nickname']);
  865.       }
  866. 

  867.       if(isset($entry['content']) && $entry['content'] && isset($entry['content']['text'])) {
  868.         if(preg_match_all('/(^|(?<=[\s\/]))@([a-z0-9_]+([a-z0-9_\.]*)?)/i', $entry['content']['text'], $matches)) {
  869.           foreach($matches[0] as $nick) {
  870.             if(trim($nick,'@') != $user->twitter_username && trim($nick,'@') != display_url($user->url))
  871.               $mentions[] = strtolower(trim($nick,'@'));
  872.           }
  873.         }
  874.       }
  875. 

  876.       $mentions = array_values(array_unique($mentions));
  877.     }
  878. 

  879.     $syndications = [];
  880.     if($entry && isset($entry['syndication'])) {
  881.       foreach($entry['syndication'] as $s) {
  882.         $host = parse_url($s, PHP_URL_HOST);
  883.         switch($host) {
  884.           case 'twitter.com':
  885.           case 'www.twitter.com':
  886.             $icon = 'twitter.ico'; break;
  887.           case 'facebook.com':
  888.           case 'www.facebook.com':
  889.             $icon = 'facebook.ico'; break;
  890.           case 'github.com':
  891.           case 'www.github.com':
  892.             $icon = 'github.ico'; break;
  893.           default:
  894.             $icon = 'default.png'; break;
  895.         }
  896.         $syndications[] = [
  897.           'url' => $s,
  898.           'icon' => $icon
  899.         ];
  900.       }
  901.     }
  902. 

  903.     $app->response()['Content-type'] = 'application/json';
  904.     $app->response()->body(json_encode([
  905.       'canonical_reply_url' => $reply_url,
  906.       'entry' => $entry,
  907.       'mentions' => $mentions,
  908.       'syndications' => $syndications,
  909.     ]));
  910.   }
  911. });
  912. 

  913. $app->get('/edit', function() use($app) {
  914.   if($user=require_login($app)) {
  915.     $params = $app->request()->params();
  916. 

  917.     if(!isset($params['url']) || !$params['url']) {
  918.       $app->response()->body('no URL specified');
  919.     }
  920. 

  921.     // Query the micropub endpoint for the source properties

  922.     $source = micropub_get($user->micropub_endpoint, [
  923.         'q' => 'source',
  924.         'url' => $params['url']
  925.       ], $user->micropub_access_token);
  926. 

  927.     $data = $source['data'];
  928. 

  929.     if(array_key_exists('error', $data)) {
  930.       render('edit/error', [
  931.         'title' => 'Error',
  932.         'summary' => 'Your Micropub endpoint returned an error:',
  933.         'error' => $data['error'],
  934.         'error_description' => $data['error_description']
  935.       ]);
  936.       return;
  937.     }
  938. 

  939.     if(!array_key_exists('properties', $data) || !array_key_exists('type', $data)) {
  940.       render('edit/error', [
  941.         'title' => 'Error',
  942.         'summary' => '',
  943.         'error' => 'Invalid Response',
  944.         'error_description' => 'Your endpoint did not return "properties" and "type" in the response.'
  945.       ]);
  946.       return;
  947.     }
  948. 

  949.     // Start checking for content types

  950.     $type = $data['type'][0];
  951.     $error = false;
  952.     $url = false;
  953. 

  954.     if($type == 'h-review') {
  955.       $url = '/review';
  956.     } elseif($type == 'h-event') {
  957.       $url = '/event';
  958.     } elseif($type != 'h-entry') {
  959.       $error = 'This type of post is not supported by any of Quill\'s editing interfaces. Type: '.$type;
  960.     } else {
  961.       if(array_key_exists('bookmark-of', $data['properties'])) {
  962.         $url = '/bookmark';
  963.       } elseif(array_key_exists('like-of', $data['properties'])) {
  964.         $url = '/favorite';
  965.       } elseif(array_key_exists('repost-of', $data['properties'])) {
  966.         $url = '/repost';
  967.       }
  968.     }
  969. 

  970.     if($error) {
  971.       render('edit/error', [
  972.         'title' => 'Error',
  973.         'summary' => '',
  974.         'error' => 'There was a problem!',
  975.         'error_description' => $error
  976.       ]);
  977.       return;
  978.     }
  979. 

  980.     // Until all interfaces are complete, show an error here for unsupported ones

  981.     if(!in_array($url, ['/favorite','/repost','/code'])) {
  982.       render('edit/error', [
  983.         'title' => 'Not Yet Supported',
  984.         'summary' => '',
  985.         'error' => 'Not Yet Supported',
  986.         'error_description' => 'Editing is not yet supported for this type of post.'
  987.       ]);
  988.       return;
  989.     }
  990. 

  991.     $app->redirect($url . '?edit=' . $params['url'], 302);
  992.   }
  993. });
  994. 

  995. $app->get('/airport-info', function() use($app){
  996.   if($user=require_login($app)) {
  997.     $params = $app->request()->params();
  998.     if(!isset($params['code'])) return;
  999. 

  1000.     $ch = curl_init('https://atlas.p3k.io/api/timezone?airport='.urlencode($params['code']));
  1001.     curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  1002.     $data = json_decode(curl_exec($ch), true);
  1003. 

  1004.     if(!$data)
  1005.       $response = ['error' => 'unknown'];
  1006.     else {
  1007.       $response = $data;
  1008.     }
  1009. 

  1010.     $app->response()['Content-type'] = 'application/json';
  1011.     $app->response()->body(json_encode($response));
  1012.   }
  1013. });
  1014. 

  1015. $app->get('/map-img', function() use($app) {
  1016. 

  1017.   $params = $app->request()->params();
  1018. 

  1019.   $app->response()['Content-type'] = 'image/png';
  1020. 

  1021.   $params = [
  1022.     'marker[]' => 'lat:'.$params['lat'].';lng:'.$params['lng'].';icon:small-blue-cutout',
  1023.     'basemap' => 'custom',
  1024.     'width' => $params['w'],
  1025.     'height' => $params['h'],
  1026.     'zoom' => $params['z'],
  1027.     'attribution' => 'mapbox',
  1028.     'tileurl' => Config::$mapTileURL,
  1029.     'token' => Config::$atlasToken,
  1030.   ];
  1031. 

  1032.   $ch = curl_init('https://atlas.p3k.io/map/img');
  1033.   curl_setopt($ch, CURLOPT_RETURNTRANSFER, false);
  1034.   curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($params));
  1035.   curl_exec($ch);
  1036. 

  1037. });
  1038.