p3k
/
Quill
mirror of https://github.com/aaronpk/Quill.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
66 Commits
3 Branches
4.1 MiB
Tree: ae126d26ca
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ae126d26ca'
${ noResults }
Quill/controllers/controllers.php

618 lines
18 KiB
Raw Normal View History

Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
new JWT library
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add reply={url} query param for posting a note Support reply bookmarklets, and hopefully the Firefox Social API "Share" provider too.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
9 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
10 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
adds bookmark posting interface with bookmarklet. now any URL can auto-login given a login token.
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Adds possibility to post photos. With this it is possible to post a photo note with a description, nothing more. It doesn't move the file in the file system, just posts it from the temp location to the users server. It also does validate for file size, content type and max upload size and shows the errors to the user. If everything goes according to plan the response from the users server is shown, together with a link with the posted photos URL.
8 years ago
add repost form
8 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
add repost form
8 years ago
remember if the user checks the "location" checkbox and always find their location in the future if so
10 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
add privacy policy stub
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
add privacy policy stub
9 years ago
removes top nav bar from design. new logo. adds a mechanism to add the post interface to your home screen.
10 years ago
add post-by-email support to quill
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Added authorizing false so it would not show the Savant3:: error
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
add repost form
8 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Adds possibility to post photos. With this it is possible to post a photo note with a description, nothing more. It doesn't move the file in the file system, just posts it from the temp location to the users server. It also does validate for file size, content type and max upload size and shows the errors to the user. If everything goes according to plan the response from the users server is shown, together with a link with the posted photos URL.
8 years ago
add repost form
8 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
actually post likes from the form
9 years ago
Adds possibility to post photos. With this it is possible to post a photo note with a description, nothing more. It doesn't move the file in the file system, just posts it from the temp location to the users server. It also does validate for file size, content type and max upload size and shows the errors to the user. If everything goes according to plan the response from the users server is shown, together with a link with the posted photos URL.
8 years ago
add repost form
8 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Adds support for querying your micropub endpoint to check for syndication targets. This changes the value of "in-reply-to" to use hyphens instead of underscore separators!! Also shows you the full request made to your micropub endpoint.
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
Support for "likes" and adding "settings" page * Supports a bookmarklet to create "like" posts. * Beginning a "settings" page to connect silo profiles for POSSEing likes to twitter, facebook and instagram
9 years ago
adds instagram auth
9 years ago
new "favorite" form with bookmarklet * disable facebook liking for now since it was getting complicated * new page for creating a favorite, can pass in a URL parameter too * bookmarklet code added to the "favorite" page
9 years ago
adds instagram auth
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds instagram auth
9 years ago
Working app! Copied signin logic from OwnYourGram. New "post" interface for writing a simple text post. Also supports browser geolocation.
10 years ago
adds instagram auth
9 years ago
 
  1. <?php
  2. use Firebase\JWT\JWT;
  3. 

  4. function require_login(&$app, $redirect=true) {
  5.   $params = $app->request()->params();
  6.   if(array_key_exists('token', $params)) {
  7.     try {
  8.       $data = JWT::decode($params['token'], Config::$jwtSecret);
  9.       $_SESSION['user_id'] = $data->user_id;
  10.       $_SESSION['me'] = $data->me;
  11.     } catch(DomainException $e) {
  12.       if($redirect) {
  13.         header('X-Error: DomainException');
  14.         $app->redirect('/', 301);
  15.       } else {
  16.         return false;
  17.       }
  18.     } catch(UnexpectedValueException $e) {
  19.       if($redirect) {
  20.         header('X-Error: UnexpectedValueException');
  21.         $app->redirect('/', 301);
  22.       } else {
  23.         return false;
  24.       }
  25.     }
  26.   }
  27. 

  28.   if(!array_key_exists('user_id', $_SESSION)) {
  29.     if($redirect)
  30.       $app->redirect('/');
  31.     return false;
  32.   } else {
  33.     return ORM::for_table('users')->find_one($_SESSION['user_id']);
  34.   }
  35. }
  36. 

  37. function generate_login_token() {
  38.   return JWT::encode(array(
  39.     'user_id' => $_SESSION['user_id'],
  40.     'me' => $_SESSION['me'],
  41.     'created_at' => time()
  42.   ), Config::$jwtSecret);
  43. }
  44. 

  45. $app->get('/new', function() use($app) {
  46.   if($user=require_login($app)) {
  47.     $params = $app->request()->params();
  48. 

  49.     $entry = false;
  50.     $photo_url = false;
  51.     $in_reply_to = '';
  52. 

  53.     if(array_key_exists('reply', $params))
  54.        $in_reply_to = $params['reply'];
  55. 

  56.     $test_response = '';
  57.     if($user->last_micropub_response) {
  58.       try {
  59.         if(@json_decode($user->last_micropub_response)) {
  60.           $d = json_decode($user->last_micropub_response);
  61.           $test_response = $d->response;
  62.         }
  63.       } catch(Exception $e) {
  64.       }
  65.     }
  66. 

  67.     $html = render('new-post', array(
  68.       'title' => 'New Post',
  69.       'in_reply_to' => $in_reply_to,
  70.       'micropub_endpoint' => $user->micropub_endpoint,
  71.       'micropub_scope' => $user->micropub_scope,
  72.       'micropub_access_token' => $user->micropub_access_token,
  73.       'response_date' => $user->last_micropub_response_date,
  74.       'syndication_targets' => json_decode($user->syndication_targets, true),
  75.       'test_response' => $test_response,
  76.       'location_enabled' => $user->location_enabled,
  77.       'authorizing' => false
  78.     ));
  79.     $app->response()->body($html);
  80.   }
  81. });
  82. 

  83. $app->get('/bookmark', function() use($app) {
  84.   if($user=require_login($app)) {
  85.     $params = $app->request()->params();
  86. 

  87.     $url = '';
  88.     $name = '';
  89.     $content = '';
  90.     $tags = '';
  91. 

  92.     if(array_key_exists('url', $params))
  93.       $url = $params['url'];
  94. 

  95.     if(array_key_exists('name', $params))
  96.       $name = $params['name'];
  97. 

  98.     if(array_key_exists('content', $params))
  99.       $content = $params['content'];
  100. 

  101.     $html = render('new-bookmark', array(
  102.       'title' => 'New Bookmark',
  103.       'bookmark_url' => $url,
  104.       'bookmark_name' => $name,
  105.       'bookmark_content' => $content,
  106.       'bookmark_tags' => $tags,
  107.       'token' => generate_login_token(),
  108.       'syndication_targets' => json_decode($user->syndication_targets, true),
  109.       'authorizing' => false
  110.     ));
  111.     $app->response()->body($html);
  112.   }
  113. });
  114. 

  115. $app->get('/favorite', function() use($app) {
  116.   if($user=require_login($app)) {
  117.     $params = $app->request()->params();
  118. 

  119.     $url = '';
  120. 

  121.     if(array_key_exists('url', $params))
  122.       $url = $params['url'];
  123. 

  124.     $html = render('new-favorite', array(
  125.       'title' => 'New Favorite',
  126.       'url' => $url,
  127.       'token' => generate_login_token(),
  128.       'authorizing' => false
  129.     ));
  130.     $app->response()->body($html);
  131.   }
  132. });
  133. 

  134. $app->get('/photo', function() use($app) {
  135.   if($user=require_login($app)) {
  136.     $params = $app->request()->params();
  137. 

  138.     $html = render('photo', array(
  139.       'title' => 'New Photo',
  140.       'note_content' => '',
  141.       'authorizing' => false
  142.     ));
  143.     $app->response()->body($html);
  144.   }
  145. });
  146. 

  147. $app->get('/repost', function() use($app) {
  148.   if($user=require_login($app)) {
  149.     $params = $app->request()->params();
  150. 

  151.     $url = '';
  152. 

  153.     if(array_key_exists('url', $params))
  154.       $url = $params['url'];
  155. 

  156.     $html = render('new-repost', array(
  157.       'title' => 'New Repost',
  158.       'url' => $url,
  159.       'token' => generate_login_token(),
  160.       'authorizing' => false
  161.     ));
  162.     $app->response()->body($html);
  163.   }
  164. });
  165. 

  166. $app->post('/prefs', function() use($app) {
  167.   if($user=require_login($app)) {
  168.     $params = $app->request()->params();
  169.     $user->location_enabled = $params['enabled'];
  170.     $user->save();
  171.   }
  172.   $app->response()->body(json_encode(array(
  173.     'result' => 'ok'
  174.   )));
  175. });
  176. 

  177. $app->get('/creating-a-token-endpoint', function() use($app) {
  178.   $app->redirect('http://indiewebcamp.com/token-endpoint', 301);
  179. });
  180. $app->get('/creating-a-micropub-endpoint', function() use($app) {
  181.   $html = render('creating-a-micropub-endpoint', array('title' => 'Creating a Micropub Endpoint', 'authorizing' => false));
  182.   $app->response()->body($html);
  183. });
  184. 

  185. $app->get('/docs', function() use($app) {
  186.   $html = render('docs', array('title' => 'Documentation', 'authorizing' => false));
  187.   $app->response()->body($html);
  188. });
  189. 

  190. $app->get('/privacy', function() use($app) {
  191.   $html = render('privacy', array('title' => 'Quill Privacy Policy', 'authorizing' => false));
  192.   $app->response()->body($html);
  193. });
  194. 

  195. $app->get('/add-to-home', function() use($app) {
  196.   $params = $app->request()->params();
  197. 

  198.   if(array_key_exists('token', $params) && !session('add-to-home-started')) {
  199. 

  200.     // Verify the token and sign the user in

  201.     try {
  202.       $data = JWT::decode($params['token'], Config::$jwtSecret);
  203.       $_SESSION['user_id'] = $data->user_id;
  204.       $_SESSION['me'] = $data->me;
  205.       $app->redirect('/new', 301);
  206.     } catch(DomainException $e) {
  207.       header('X-Error: DomainException');
  208.       $app->redirect('/', 301);
  209.     } catch(UnexpectedValueException $e) {
  210.       header('X-Error: UnexpectedValueException');
  211.       $app->redirect('/', 301);
  212.     }
  213. 

  214.   } else {
  215. 

  216.     if($user=require_login($app)) {
  217.       if(array_key_exists('start', $params)) {
  218.         $_SESSION['add-to-home-started'] = true;
  219.         
  220.         $token = JWT::encode(array(
  221.           'user_id' => $_SESSION['user_id'],
  222.           'me' => $_SESSION['me'],
  223.           'created_at' => time()
  224.         ), Config::$jwtSecret);
  225. 

  226.         $app->redirect('/add-to-home?token='.$token, 301);
  227.       } else {
  228.         unset($_SESSION['add-to-home-started']);
  229.         $html = render('add-to-home', array('title' => 'Quill'));
  230.         $app->response()->body($html);
  231.       }
  232.     }
  233.   }
  234. });
  235. 

  236. $app->get('/email', function() use($app) {
  237.   if($user=require_login($app)) {
  238. 

  239.     $test_response = '';
  240.     if($user->last_micropub_response) {
  241.       try {
  242.         if(@json_decode($user->last_micropub_response)) {
  243.           $d = json_decode($user->last_micropub_response);
  244.           $test_response = $d->response;
  245.         }
  246.       } catch(Exception $e) {
  247.       }
  248.     }
  249. 

  250.     if(!$user->email_username) {
  251.       $host = parse_url($user->url, PHP_URL_HOST);
  252.       $user->email_username = $host . '.' . rand(100000,999999);
  253.       $user->save();
  254.     }
  255. 

  256.     $html = render('email', array(
  257.       'title' => 'Post-by-Email',
  258.       'micropub_endpoint' => $user->micropub_endpoint,
  259.       'test_response' => $test_response,
  260.       'user' => $user
  261.     ));
  262.     $app->response()->body($html);    
  263.   }
  264. });
  265. 

  266. $app->get('/settings', function() use($app) {
  267.   if($user=require_login($app)) {
  268.     $html = render('settings', array('title' => 'Settings', 'include_facebook' => true, 'authorizing' => false));
  269.     $app->response()->body($html);
  270.   }
  271. });
  272. 

  273. $app->get('/favorite-popup', function() use($app) {
  274.   if($user=require_login($app)) {
  275.     $params = $app->request()->params();
  276. 

  277.     $html = $app->render('favorite-popup.php', array(
  278.       'url' => $params['url'], 
  279.       'token' => $params['token']
  280.     ));
  281.     $app->response()->body($html);
  282.   }
  283. });
  284. 

  285. function create_favorite(&$user, $url) {
  286.   $micropub_request = array(
  287.     'like-of' => $url
  288.   );
  289.   $r = micropub_post_for_user($user, $micropub_request);
  290. 

  291.   $facebook_id = false;
  292.   $instagram_id = false;
  293.   $tweet_id = false;
  294. 

  295.   /*
  296.   // Facebook likes are posted via Javascript, so pass the FB ID to the javascript code

  297.   if(preg_match('/https?:\/\/(?:www\.)?facebook\.com\/(?:[^\/]+)\/posts\/(\d+)/', $url, $match)) {
  298.     $facebook_id = $match[1];
  299.   }
  300. 

  301.   if(preg_match('/https?:\/\/(?:www\.)?facebook\.com\/photo\.php\?fbid=(\d+)/', $url, $match)) {
  302.     $facebook_id = $match[1];
  303.   }
  304.   */
  305. 

  306.   if(preg_match('/https?:\/\/(?:www\.)?instagram\.com\/p\/([^\/]+)/', $url, $match)) {
  307.     $instagram_id = $match[1];
  308.     if($user->instagram_access_token) {
  309.       $instagram = instagram_client();
  310.       $instagram->setAccessToken($user->instagram_access_token);
  311.       $ch = curl_init('https://api.instagram.com/v1/media/shortcode/' . $instagram_id . '?access_token=' . $user->instagram_access_token);
  312.       curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  313.       $result = json_decode(curl_exec($ch));
  314. 

  315.       $result = $instagram->likeMedia($result->data->id);
  316.     } else {
  317.       // TODO: indicate that the instagram post couldn't be liked because no access token was available

  318.     }
  319.   }
  320. 

  321.   if($user->twitter_access_token && preg_match('/https?:\/\/(?:www\.)?twitter\.com\/[^\/]+\/status(?:es)?\/(\d+)/', $url, $match)) {
  322.     $tweet_id = $match[1];
  323.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret, 
  324.       $user->twitter_access_token, $user->twitter_token_secret);
  325.     $result = $twitter->post('favorites/create', array(
  326.       'id' => $tweet_id
  327.     ));
  328.   }
  329. 

  330.   return $r;
  331. }
  332. 

  333. function create_photo(&$user, $params, $file) {
  334.   $error = validate_photo($file);
  335. 

  336.   if(!$error) {
  337.     $file_path = $file['tmp_name'];
  338.     $micropub_request = array('content' => $params['note_content']);
  339.     $r = micropub_post_for_user($user, $micropub_request, $file_path);
  340.   } else {
  341.     $r = array('error' => $error);
  342.   }
  343. 

  344.   return $r;
  345. }
  346. 

  347. function create_repost(&$user, $url) {
  348.   $micropub_request = array(
  349.     'repost-of' => $url
  350.   );
  351.   $r = micropub_post_for_user($user, $micropub_request);
  352. 

  353.   $tweet_id = false;
  354. 

  355.   if($user->twitter_access_token && preg_match('/https?:\/\/(?:www\.)?twitter\.com\/[^\/]+\/status(?:es)?\/(\d+)/', $url, $match)) {
  356.     $tweet_id = $match[1];
  357.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret, 
  358.       $user->twitter_access_token, $user->twitter_token_secret);
  359.     $result = $twitter->post('statuses/retweet/'.$tweet_id);
  360.   }
  361. 

  362.   return $r;
  363. }
  364. 

  365. $app->get('/favorite.js', function() use($app) {
  366.   $app->response()->header("Content-type", "text/javascript");
  367.   if($user=require_login($app, false)) {
  368.     $params = $app->request()->params();
  369. 

  370.     if(array_key_exists('url', $params)) {
  371.       $r = create_favorite($user, $params['url']);
  372. 

  373.       $app->response()->body($app->render('favorite-js.php', array(
  374.         'url' => $params['url'], 
  375.         'like_url' => $r['location'], 
  376.         'error' => $r['error'],
  377.         // 'facebook_id' => $facebook_id

  378.       )));
  379.     } else {
  380.       $app->response()->body('alert("no url");');
  381.     }
  382. 

  383.   } else {
  384.     $app->response()->body('alert("invalid token");');
  385.   }
  386. });
  387. 

  388. $app->post('/favorite', function() use($app) {
  389.   if($user=require_login($app)) {
  390.     $params = $app->request()->params();
  391. 

  392.     $r = create_favorite($user, $params['url']);
  393. 

  394.     $app->response()->body(json_encode(array(
  395.       'location' => $r['location'],
  396.       'error' => $r['error']
  397.     )));
  398.   }
  399. });
  400. 

  401. $app->post('/photo', function() use($app) {
  402.   if($user=require_login($app)) {
  403. 

  404.     // var_dump($app->request()->post());

  405.     //

  406.     // Since $app->request()->post() with multipart is always

  407.     // empty (bug in Slim?) We're using the raw $_POST here

  408.     // until this gets fixed.

  409.     // PHP empties everything in $_POST if the file upload size exceeds

  410.     // that is why we have to test if the variables exist first.

  411. 

  412.     $note_content = isset($_POST['note_content']) ? $_POST['note_content'] : null;
  413.     $params = array('note_content' => $note_content);
  414.     $file = isset($_FILES['note_photo']) ? $_FILES['note_photo'] : null;
  415. 

  416.     $r = create_photo($user, $params, $file);
  417. 

  418.     // Populate the error if there was no location header.

  419.     if(empty($r['location']) && empty($r['error'])) {
  420.       $r['error'] = "No 'Location' header in response.";
  421.     }
  422. 

  423.     $html = render('photo', array(
  424.       'title' => 'Photo posted',
  425.       'note_content' => $params['note_content'],
  426.       'location' => (isset($r['location']) ? $r['location'] : null),
  427.       'error' => (isset($r['error']) ? $r['error'] : null),
  428.       'response' => (isset($r['response']) ? htmlspecialchars($r['response']) : null),
  429.       'authorizing' => false
  430.     ));
  431.     $app->response()->body($html);
  432.   }
  433. });
  434. 

  435. $app->post('/repost', function() use($app) {
  436.   if($user=require_login($app)) {
  437.     $params = $app->request()->params();
  438. 

  439.     $r = create_repost($user, $params['url']);
  440. 

  441.     $app->response()->body(json_encode(array(
  442.       'location' => $r['location'],
  443.       'error' => $r['error']
  444.     )));
  445.   }
  446. });
  447. 

  448. $app->get('/micropub/syndications', function() use($app) {
  449.   if($user=require_login($app)) {
  450.     $data = get_syndication_targets($user);
  451.     $app->response()->body(json_encode(array(
  452.       'targets' => $data['targets'],
  453.       'response' => $data['response']
  454.     )));
  455.   }
  456. });
  457. 

  458. $app->post('/micropub/post', function() use($app) {
  459.   if($user=require_login($app)) {
  460.     $params = $app->request()->params();
  461. 

  462.     // Remove any blank params

  463.     $params = array_filter($params, function($v){
  464.       return $v !== '';
  465.     });
  466. 

  467.     $r = micropub_post_for_user($user, $params);
  468. 

  469.     $app->response()->body(json_encode(array(
  470.       'request' => htmlspecialchars($r['request']),
  471.       'response' => htmlspecialchars($r['response']),
  472.       'location' => $r['location'],
  473.       'error' => $r['error'],
  474.       'curlinfo' => $r['curlinfo']
  475.     )));
  476.   }
  477. });
  478. 

  479. /*
  480. $app->post('/auth/facebook', function() use($app) {
  481.   if($user=require_login($app, false)) {
  482.     $params = $app->request()->params();
  483.     // User just auth'd with facebook, store the access token

  484.     $user->facebook_access_token = $params['fb_token'];
  485.     $user->save();
  486. 

  487.     $app->response()->body(json_encode(array(
  488.       'result' => 'ok'
  489.     )));
  490.   } else {
  491.     $app->response()->body(json_encode(array(
  492.       'result' => 'error'
  493.     )));
  494.   }
  495. });
  496. */
  497. 

  498. $app->post('/auth/twitter', function() use($app) {
  499.   if($user=require_login($app, false)) {
  500.     $params = $app->request()->params();
  501.     // User just auth'd with twitter, store the access token

  502.     $user->twitter_access_token = $params['twitter_token'];
  503.     $user->twitter_token_secret = $params['twitter_secret'];
  504.     $user->save();
  505. 

  506.     $app->response()->body(json_encode(array(
  507.       'result' => 'ok'
  508.     )));
  509.   } else {
  510.     $app->response()->body(json_encode(array(
  511.       'result' => 'error'
  512.     )));
  513.   }
  514. });
  515. 

  516. function getTwitterLoginURL(&$twitter) {
  517.   $request_token = $twitter->getRequestToken(Config::$base_url . 'auth/twitter/callback');
  518.   $_SESSION['twitter_auth'] = $request_token;
  519.   return $twitter->getAuthorizeURL($request_token['oauth_token']);
  520. }
  521. 

  522. $app->get('/auth/twitter', function() use($app) {
  523.   $params = $app->request()->params();
  524.   if($user=require_login($app, false)) {
  525. 

  526.     // If there is an existing Twitter token, check if it is valid

  527.     // Otherwise, generate a Twitter login link

  528.     $twitter_login_url = false;
  529.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret, 
  530.       $user->twitter_access_token, $user->twitter_token_secret);
  531. 

  532.     if(array_key_exists('login', $params)) {
  533.       $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret);
  534.       $twitter_login_url = getTwitterLoginURL($twitter);
  535.     } else {
  536.       if($user->twitter_access_token) {
  537.         if ($twitter->get('account/verify_credentials')) {
  538.           $app->response()->body(json_encode(array(
  539.             'result' => 'ok'
  540.           )));
  541.           return;
  542.         } else {
  543.           // If the existing twitter token is not valid, generate a login link

  544.           $twitter_login_url = getTwitterLoginURL($twitter);
  545.         }
  546.       } else {
  547.         $twitter_login_url = getTwitterLoginURL($twitter);
  548.       }
  549.     }
  550. 

  551.     $app->response()->body(json_encode(array(
  552.       'url' => $twitter_login_url
  553.     )));
  554. 

  555.   } else {
  556.     $app->response()->body(json_encode(array(
  557.       'result' => 'error'
  558.     )));
  559.   }
  560. });
  561. 

  562. $app->get('/auth/twitter/callback', function() use($app) {
  563.   if($user=require_login($app)) {
  564.     $params = $app->request()->params();
  565. 

  566.     $twitter = new \TwitterOAuth\Api(Config::$twitterClientID, Config::$twitterClientSecret, 
  567.       $_SESSION['twitter_auth']['oauth_token'], $_SESSION['twitter_auth']['oauth_token_secret']);
  568.     $credentials = $twitter->getAccessToken($params['oauth_verifier']);
  569. 

  570.     $user->twitter_access_token = $credentials['oauth_token'];
  571.     $user->twitter_token_secret = $credentials['oauth_token_secret'];
  572.     $user->twitter_username = $credentials['screen_name'];
  573.     $user->save();
  574. 

  575.     $app->redirect('/settings');
  576.   }
  577. });
  578. 

  579. $app->get('/auth/instagram', function() use($app) {
  580.   if($user=require_login($app, false)) {
  581. 

  582.     $instagram = instagram_client();
  583. 

  584.     // If there is an existing Instagram auth token, check if it's valid

  585.     if($user->instagram_access_token) {
  586.       $instagram->setAccessToken($user->instagram_access_token);
  587.       $igUser = $instagram->getUser();
  588. 

  589.       if($igUser && $igUser->meta->code == 200) {
  590.         $app->response()->body(json_encode(array(
  591.           'result' => 'ok',
  592.           'username' => $igUser->data->username,
  593.           'url' => $instagram->getLoginUrl(array('basic','likes'))
  594.         )));
  595.         return;
  596.       }
  597.     }
  598. 

  599.     $app->response()->body(json_encode(array(
  600.       'result' => 'error',
  601.       'url' => $instagram->getLoginUrl(array('basic','likes'))
  602.     )));
  603.   }
  604. });
  605. 

  606. $app->get('/auth/instagram/callback', function() use($app) {
  607.   if($user=require_login($app)) {
  608.     $params = $app->request()->params();
  609. 

  610.     $instagram = instagram_client();
  611.     $data = $instagram->getOAuthToken($params['code']);
  612.     $user->instagram_access_token = $data->access_token;
  613.     $user->save();
  614. 

  615.     $app->redirect('/settings');
  616.   }
  617. });
  618.