p3k
/
Teacup
mirror of https://github.com/aaronpk/Teacup.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
73 Commits
2 Branches
2.1 MiB
Tree: 762f675725
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '762f675725'
${ noResults }
Teacup/controllers/controllers.php

431 lines
13 KiB
Raw Normal View History

add base project files copied from Quill
9 years ago
fix add-to-home login
7 years ago
add base project files copied from Quill
9 years ago
add pebble login flow
9 years ago
add base project files copied from Quill
9 years ago
properly handle backdated posts with timzone support
9 years ago
add base project files copied from Quill
9 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
render() method outputs directly
7 years ago
add base project files copied from Quill
9 years ago
add photo support to Teacup posts photos to the media endpoint if set
8 years ago
change login flow to support sites that don't have a micropub endpoint
9 years ago
add base project files copied from Quill
9 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
only enable appcache on the '/new' page
9 years ago
properly handle backdated posts with timzone support
9 years ago
enable opt-in to new h-food format disable appcache
8 years ago
add base project files copied from Quill
9 years ago
render() method outputs directly
7 years ago
add base project files copied from Quill
9 years ago
enable opt-in to new h-food format disable appcache
8 years ago
add base project files copied from Quill
9 years ago
render() method outputs directly
7 years ago
add base project files copied from Quill
9 years ago
render() method outputs directly
7 years ago
add base project files copied from Quill
9 years ago
set no-cache header on bookmark shortcut
9 years ago
add base project files copied from Quill
9 years ago
fix add-to-home login
7 years ago
add base project files copied from Quill
9 years ago
fix add-to-home login
7 years ago
add base project files copied from Quill
9 years ago
fix add-to-home login
7 years ago
add base project files copied from Quill
9 years ago
fix add-to-home login
7 years ago
add base project files copied from Quill
9 years ago
fix add-to-home login
7 years ago
enable opt-in to new h-food format disable appcache
8 years ago
add base project files copied from Quill
9 years ago
fix add-to-home login
7 years ago
add base project files copied from Quill
9 years ago
render() method outputs directly
7 years ago
add base project files copied from Quill
9 years ago
update post interface to show a list of buttons for different drink types
9 years ago
add base project files copied from Quill
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
properly handle backdated posts with timzone support
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
add back auto timezone for pebble posts that don't specify the date
9 years ago
fix error when retrieving options with no timezone
9 years ago
add back auto timezone for pebble posts that don't specify the date
9 years ago
enable opt-in to new h-food format disable appcache
8 years ago
add back auto timezone for pebble posts that don't specify the date
9 years ago
properly handle backdated posts with timzone support
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
tweaks to posting interface
9 years ago
also send text version of the post as summary
9 years ago
move pebble stuff to its own file
9 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
move pebble stuff to its own file
9 years ago
also send text version of the post as summary
9 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
also send text version of the post as summary
9 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
tweaks to posting interface
9 years ago
also send text version of the post as summary
9 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
tweaks to posting interface
9 years ago
also send text version of the post as summary
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
add photo support to Teacup posts photos to the media endpoint if set
8 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
add note about the "p3k-food" parameter. fix undefined $url variable error.
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
also send text version of the post as summary
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
properly handle backdated posts with timzone support
9 years ago
enable opt-in to new h-food format disable appcache
8 years ago
also send text version of the post as summary
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
add photo support to Teacup posts photos to the media endpoint if set
8 years ago
enable opt-in to new h-food format disable appcache
8 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
tweaks to posting interface
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
add note about the "p3k-food" parameter. fix undefined $url variable error.
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
add note about the "p3k-food" parameter. fix undefined $url variable error.
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
add note about the "p3k-food" parameter. fix undefined $url variable error.
9 years ago
Use only the hostname to identify users. Store posts in the database. Send the micropub request and log the response.
9 years ago
add base project files copied from Quill
9 years ago
add photo support to Teacup posts photos to the media endpoint if set
8 years ago
use `file` instead of `photo` for media endpoint
8 years ago
add photo support to Teacup posts photos to the media endpoint if set
8 years ago
use `file` instead of `photo` for media endpoint
8 years ago
add photo support to Teacup posts photos to the media endpoint if set
8 years ago
use `file` instead of `photo` for media endpoint
8 years ago
add photo support to Teacup posts photos to the media endpoint if set
8 years ago
use `file` instead of `photo` for media endpoint
8 years ago
properly handle backdated posts with timzone support
9 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
include the date last eaten as a subtitle
9 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
properly handle backdated posts with timzone support
9 years ago
move date to the top, populate via JS
9 years ago
properly handle backdated posts with timzone support
9 years ago
dynamically create the buttons based on what the user has entered in the past
9 years ago
show maps!
9 years ago
attempt to clean up map URLs
9 years ago
show maps!
9 years ago
attempt to clean up map URLs
9 years ago
show maps!
9 years ago
enable opt-in to new h-food format disable appcache
8 years ago
bump appcache
9 years ago
attempt an appcache
9 years ago
enable opt-in to new h-food format disable appcache
8 years ago
show maps!
9 years ago
render posts on permalinks and on the feed for a user page
9 years ago
adds paging support to user permalinks
9 years ago
render posts on permalinks and on the feed for a user page
9 years ago
adds paging support to user permalinks
9 years ago
don't error when viewing an empty feed
9 years ago
adds paging support to user permalinks
9 years ago
don't error when viewing an empty feed
9 years ago
adds paging support to user permalinks
9 years ago
don't error when viewing an empty feed
9 years ago
adds paging support to user permalinks
9 years ago
render posts on permalinks and on the feed for a user page
9 years ago
render() method outputs directly
7 years ago
render posts on permalinks and on the feed for a user page
9 years ago
adds paging support to user permalinks
9 years ago
render posts on permalinks and on the feed for a user page
9 years ago
add /pebble page to use as the client_id
9 years ago
render posts on permalinks and on the feed for a user page
9 years ago
render() method outputs directly
7 years ago
render posts on permalinks and on the feed for a user page
9 years ago
more strict matching of routes
9 years ago
 
  1. <?php
  2. use \Firebase\JWT\JWT;
  3. 

  4. function require_login(&$app) {
  5.   $params = $app->request()->params();
  6. 

  7.   if(!array_key_exists('user_id', $_SESSION)) {
  8.     $app->redirect('/');
  9.     return false;
  10.   } else {
  11.     return ORM::for_table('users')->find_one($_SESSION['user_id']);
  12.   }
  13. }
  14. 

  15. function get_login(&$app) {
  16.   if(array_key_exists('user_id', $_SESSION)) {
  17.     return ORM::for_table('users')->find_one($_SESSION['user_id']);
  18.   } else {
  19.     return false;
  20.   }
  21. }
  22. 

  23. function generate_login_token() {
  24.   return JWT::encode(array(
  25.     'user_id' => $_SESSION['user_id'],
  26.     'me' => $_SESSION['me'],
  27.     'created_at' => time()
  28.   ), Config::$jwtSecret);
  29. }
  30. 

  31. $app->get('/new', function() use($app) {
  32.   if($user=require_login($app)) {
  33. 

  34.     // Get the last post and set the timezone offset to match

  35.     $date_str = date('Y-m-d');
  36.     $time_str = date('H:i:s');
  37.     $tz_offset = '+0000';
  38. 

  39.     $last = ORM::for_table('entries')->where('user_id', $user->id)
  40.       ->order_by_desc('published')->find_one();
  41.     if(false && $last) {
  42.       $seconds = $last->tz_offset;
  43.       $tz_offset = tz_seconds_to_offset($seconds);
  44. 

  45.       // Create a date object in the local timezone given the offset

  46.       $date = new DateTime();
  47.       if($seconds > 0)
  48.         $date->add(new DateInterval('PT'.$seconds.'S'));
  49.       elseif($seconds < 0)
  50.         $date->sub(new DateInterval('PT'.abs($seconds).'S'));
  51.       $date_str = $date->format('Y-m-d');
  52.       $time_str = $date->format('H:i:s');
  53.     }
  54. 

  55.     // Initially populate the page with the list of options without considering location.

  56.     // This way if browser location is disabled or not available, or JS is disabled, there

  57.     // will still be a list of options presented on the page by the time it loads.

  58.     // Javascript will replace the options after location is available.

  59. 

  60.     render('new-post', array(
  61.       'title' => 'New Post',
  62.       'micropub_endpoint' => $user->micropub_endpoint,
  63.       'micropub_media_endpoint' => $user->micropub_media_endpoint,
  64.       'token_scope' => $user->token_scope,
  65.       'access_token' => $user->access_token,
  66.       'response_date' => $user->last_micropub_response_date,
  67.       'location_enabled' => $user->location_enabled,
  68.       'default_options' => get_entry_options($user->id),
  69.       'tz_offset' => $tz_offset,
  70.       'date_str' => $date_str,
  71.       'time_str' => $time_str,
  72.       'enable_array_micropub' => $user->enable_array_micropub
  73.     ));
  74.   }
  75. });
  76. 

  77. $app->get('/settings', function() use($app) {
  78.   if($user=require_login($app)) {
  79.     $html =     
  80.     $app->response()->body($html);
  81.   }
  82. });
  83. 

  84. $app->post('/prefs/enable-h-food', function() use($app){
  85.   if($user=require_login($app)) {
  86.     $user->enable_array_micropub = 1;
  87.     $user->save();
  88.   }
  89.   $app->redirect('/new', 302);
  90. });
  91. 

  92. $app->post('/prefs', function() use($app) {
  93.   if($user=require_login($app)) {
  94.     $params = $app->request()->params();
  95.     $user->location_enabled = $params['enabled'];
  96.     $user->save();
  97.   }
  98.   $app->response()->body(json_encode(array(
  99.     'result' => 'ok'
  100.   )));
  101. });
  102. 

  103. $app->get('/creating-a-token-endpoint', function() use($app) {
  104.   $app->redirect('http://indiewebcamp.com/token-endpoint', 301);
  105. });
  106. $app->get('/creating-a-micropub-endpoint', function() use($app) {
  107.   render('creating-a-micropub-endpoint', array('title' => 'Creating a Micropub Endpoint'));
  108. });
  109. 

  110. $app->get('/docs', function() use($app) {
  111.   render('docs', array('title' => 'Documentation'));
  112. });
  113. 

  114. $app->get('/add-to-home', function() use($app) {
  115.   $params = $app->request()->params();
  116.   header("Cache-Control: no-cache, must-revalidate");
  117. 

  118.   if(array_key_exists('token', $params) && !isset($_SESSION['add-to-home-started'])) {
  119. 

  120.     // Verify the token and sign the user in

  121.     try {
  122.       $data = JWT::decode($params['token'], Config::$jwtSecret, ['HS256']);
  123.       $_SESSION['user_id'] = $data->user_id;
  124.       $_SESSION['me'] = $data->me;
  125.       $app->redirect('/new', 302);
  126.     } catch(DomainException $e) {
  127.       header('X-Error: DomainException');
  128.       $app->redirect('/?error=domain', 302);
  129.     } catch(SignatureInvalidException $e) {
  130.       header('X-Error: SignatureInvalidException');
  131.       $app->redirect('/?error=invalid', 302);
  132.     } catch(ErrorException $e) {
  133.       $app->redirect('/?error=unknown', 302);
  134.     }
  135. 

  136.   } else {
  137.     if($user=require_login($app)) {
  138.       if(array_key_exists('start', $params)) {
  139.         $_SESSION['add-to-home-started'] = 1;
  140. 

  141.         $token = JWT::encode(array(
  142.           'user_id' => $_SESSION['user_id'],
  143.           'me' => $_SESSION['me'],
  144.           'created_at' => time()
  145.         ), Config::$jwtSecret);
  146. 

  147.         $app->redirect('/add-to-home?token='.$token, 302);
  148.       } else {
  149.         unset($_SESSION['add-to-home-started']);
  150.         render('add-to-home', array('title' => 'Teacup'));
  151.       }
  152.     }
  153.   }
  154. });
  155. 

  156. 

  157. $app->post('/post', function() use($app) {
  158.   if($user=require_login($app)) {
  159.     $params = $app->request()->params();
  160. 

  161.     // Remove any blank params

  162.     $params = array_filter($params, function($v){
  163.       return $v !== '';
  164.     });
  165. 

  166.     // Store the post in the database

  167.     $entry = ORM::for_table('entries')->create();
  168.     $entry->user_id = $user->id;
  169. 

  170.     $location = false;
  171.     if(k($params, 'location') && $location=parse_geo_uri($params['location'])) {
  172.       $entry->latitude = $location['latitude'];
  173.       $entry->longitude = $location['longitude'];
  174.     }
  175. 

  176.     if(k($params,'note_date')) {
  177.       // The post request is always going to have a date now

  178.       $date_string = $params['note_date'] . 'T' . $params['note_time'] . $params['note_tzoffset'];
  179.       $entry->published = date('Y-m-d H:i:s', strtotime($date_string));
  180.       $entry->tz_offset = tz_offset_to_seconds($params['note_tzoffset']);
  181.       $published = $date_string;
  182.     } else {
  183.       // Pebble doesn't send the date/time/timezone

  184.       $entry->published = date('Y-m-d H:i:s');
  185.       $published = date('c'); // for the micropub post

  186.       if($location && ($timezone=get_timezone($location['latitude'], $location['longitude']))) {
  187.         $entry->timezone = $timezone->getName();
  188.         $entry->tz_offset = $timezone->getOffset(new DateTime());
  189.         $now = new DateTime();
  190.         $now->setTimeZone(new DateTimeZone($entry->timezone));
  191.         $published = $now->format('c');
  192.       }
  193.     }
  194. 

  195. 

  196.     if(k($params, 'drank')) {
  197.       $entry->content = trim($params['drank']);
  198.       $type = 'drink';
  199.       $verb = 'drank';
  200.     } elseif(k($params, 'drink')) {
  201.       $entry->content = trim($params['drink']);
  202.       $type = 'drink';
  203.       $verb = 'drank';
  204.     } elseif(k($params, 'eat')) {
  205.       $entry->content = trim($params['eat']);
  206.       $type = 'eat';
  207.       $verb = 'ate';
  208.     } elseif(k($params, 'custom_drink')) {
  209.       $entry->content = trim($params['custom_drink']);
  210.       $type = 'drink';
  211.       $verb = 'drank';
  212.     } elseif(k($params, 'custom_eat')) {
  213.       $entry->content = trim($params['custom_eat']);
  214.       $type = 'eat';
  215.       $verb = 'ate';
  216.     }
  217. 

  218.     if($user->micropub_media_endpoint && k($params, 'note_photo')) {
  219.       $entry->photo_url = $params['note_photo'];
  220.     }
  221. 

  222.     $entry->type = $type;
  223. 

  224.     $entry->save();
  225. 

  226.     // Send to the micropub endpoint if one is defined, and store the result

  227.     $url = false;
  228. 

  229.     if($user->micropub_endpoint) {
  230.       $text_content = 'Just ' . $verb . ': ' . $entry->content;
  231. 

  232.       $mp_request = array(
  233.         'h' => 'entry',
  234.         'published' => $published,
  235.         'created' => $published,
  236.         'location' => k($params, 'location'),
  237.         'summary' => $text_content
  238.       );
  239.       if($entry->photo_url) {
  240.         $mp_request['photo'] = $entry->photo_url;
  241.       }
  242.       if($user->enable_array_micropub) {
  243.         $mp_request[$verb] = [
  244.           'type' => 'h-food',
  245.           'properties' => [
  246.             'name' => $entry->content
  247.           ]
  248.         ];
  249.       } else {
  250.         $mp_request['p3k-food'] = $entry->content;
  251.         $mp_request['p3k-type'] = $type;
  252.       }
  253. 

  254.       $r = micropub_post($user->micropub_endpoint, $mp_request, $user->access_token);
  255.       $request = $r['request'];
  256.       $response = $r['response'];
  257. 

  258.       $entry->micropub_response = $response;
  259. 

  260.       // Check the response and look for a "Location" header containing the URL

  261.       if($response && preg_match('/Location: (.+)/', $response, $match)) {
  262.         $url = $match[1];
  263.         $user->micropub_success = 1;
  264.         $entry->micropub_success = 1;
  265.         $entry->canonical_url = $url;
  266.       } else {
  267.         $entry->micropub_success = 0;
  268.       }
  269. 

  270.       $entry->save();
  271.     }
  272. 

  273.     if($url) {
  274.       $app->redirect($url);
  275.     } else {
  276.       // TODO: Redirect to an error page or show an error on the teacup post page

  277.       $url = Config::$base_url . $user->url . '/' . $entry->id;
  278.       $app->redirect($url);
  279.     }
  280.   }
  281. });
  282. 

  283. $app->post('/micropub/media', function() use($app) {
  284.   if($user=require_login($app)) {
  285.     $file = isset($_FILES['file']) ? $_FILES['file'] : null;
  286.     $error = validate_photo($file);
  287.     unset($_POST['null']);
  288. 

  289.     if(!$error) {
  290.       $file_path = $file['tmp_name'];
  291.       correct_photo_rotation($file_path);
  292.       $r = micropub_media_post($user->micropub_media_endpoint, $user->access_token, $file_path);
  293.     } else {
  294.       $r = array('error' => $error);
  295.     }
  296.     $response = $r['response'];
  297. 

  298.     $url = null;
  299.     if($response && preg_match('/Location: (.+)/', $response, $match)) {
  300.       $url = trim($match[1]);
  301.     } else {
  302.       $r['error'] = "No 'Location' header in response.";
  303.       $r['debug'] = $response;
  304.     }
  305. 

  306.     $app->response()['Content-type'] = 'application/json';
  307.     $app->response()->body(json_encode(array(
  308.       'location' => $url,
  309.       'error' => (isset($r['error']) ? $r['error'] : null),
  310.       'debug' => (isset($r['debug']) ? $r['debug'] : null),
  311.     )));
  312.   }
  313. });
  314. 

  315. $app->get('/micropub/config', function() use($app) {
  316.   if($user=require_login($app)) {
  317.     $config = get_micropub_config($user);
  318.     $app->response()['Content-type'] = 'application/json';
  319.     $app->response()->body(json_encode($config));
  320.   }
  321. });
  322. 

  323. $app->get('/options.json', function() use($app) {
  324.   if($user=require_login($app)) {
  325.     $params = $app->request()->params();
  326. 

  327.     $options = get_entry_options($user->id, k($params,'latitude'), k($params,'longitude'));
  328.     $html = partial('partials/entry-buttons', ['options'=>$options]);
  329. 

  330.     $app->response()['Content-type'] = 'application/json';
  331.     $app->response()->body(json_encode([
  332.       'buttons'=>$html
  333.     ]));
  334.   }
  335. });
  336. 

  337. $app->get('/map.png', function() use($app) {
  338.   $url = static_map_service($_SERVER['QUERY_STRING']);
  339.   $ch = curl_init($url);
  340.   curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
  341.   $img = curl_exec($ch);
  342.   header('Expires: ' . gmdate('D, d M Y H:i:s', strtotime('+30 days')) . ' GMT');
  343.   header('Pragma: cache');
  344.   header('Cache-Control: private');
  345.   $app->response()['Content-type'] = 'image/png';
  346.   $app->response()->body($img);
  347. });
  348. 

  349. /*
  350. $app->get('/teacup.appcache', function() use($app) {
  351.   $content = partial('appcache');
  352. 

  353.   $app->response()['Content-type'] = 'text/cache-manifest';
  354.   $app->response()->body($content);
  355. });
  356. */
  357. 

  358. $app->get('/:domain', function($domain) use($app) {
  359.   $params = $app->request()->params();
  360. 

  361.   $user = ORM::for_table('users')->where('url', $domain)->find_one();
  362.   if(!$user) {
  363.     $app->notFound();
  364.     return;
  365.   }
  366. 

  367.   $per_page = 10;
  368. 

  369.   $entries = ORM::for_table('entries')->where('user_id', $user->id);
  370.   if(array_key_exists('before', $params)) {
  371.     $entries->where_lte('id', $params['before']);
  372.   }
  373.   $entries = $entries->limit($per_page)->order_by_desc('published')->find_many();
  374. 

  375.   if(count($entries) > 1) {
  376.     $older = ORM::for_table('entries')->where('user_id', $user->id)
  377.       ->where_lt('id', $entries[count($entries)-1]->id)->order_by_desc('published')->find_one();
  378.   } else {
  379.     $older = null;
  380.   }
  381. 

  382.   if(count($entries) > 1) {
  383.     $newer = ORM::for_table('entries')->where('user_id', $user->id)
  384.       ->where_gte('id', $entries[0]->id)->order_by_asc('published')->offset($per_page)->find_one();
  385.   } else {
  386.     $newer = null;
  387.   }
  388. 

  389.   if(!$newer) {
  390.     // no new entry was found at the specific offset, so find the newest post to link to instead

  391.     $newer = ORM::for_table('entries')->where('user_id', $user->id)
  392.       ->order_by_desc('published')->limit(1)->find_one();
  393. 

  394.     if($newer && $newer->id == $entries[0]->id)
  395.       $newer = false;
  396.   }
  397. 

  398.   render('entries', array(
  399.     'title' => 'Teacup',
  400.     'entries' => $entries,
  401.     'user' => $user,
  402.     'older' => ($older ? $older->id : false),
  403.     'newer' => ($newer ? $newer->id : false)
  404.   ));
  405. })->conditions(array(
  406.   'domain' => '[a-zA-Z0-9\.-]+\.[a-z]+'
  407. ));
  408. 

  409. 

  410. $app->get('/:domain/:entry', function($domain, $entry_id) use($app) {
  411.   $user = ORM::for_table('users')->where('url', $domain)->find_one();
  412.   if(!$user) {
  413.     $app->notFound();
  414.     return;
  415.   }
  416. 

  417.   $entry = ORM::for_table('entries')->where('user_id', $user->id)->where('id', $entry_id)->find_one();
  418.   if(!$entry) {
  419.     $app->notFound();
  420.     return;
  421.   }
  422. 

  423.   render('entry', array(
  424.     'title' => 'Teacup',
  425.     'entry' => $entry,
  426.     'user' => $user
  427.   ));
  428. })->conditions(array(
  429.   'domain' => '[a-zA-Z0-9\.-]+\.[a-z]+',
  430.   'entry' => '\d+'
  431. ));