Home Explore Help
Register Sign In
biodantas
/
gnu-social
forked from diogo/gnu-social
Watch 1
Star 0
Fork 0
Files
Branch: Nodeinfo
Branches Tags
gnu-social
/
actions
/
block.php

block.php 7.1 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Block a user action class.
    4. 

  4.  *
    5. 

  5.  * PHP version 5
    6. 

  6.  *
    7. 

  7.  * @category Action
    8. 

  8.  * @package  StatusNet
    9. 

  9.  * @author   Evan Prodromou <evan@status.net>
    10. 

  10.  * @author   Robin Millette <millette@status.net>
    11. 

  11.  * @license  http://www.fsf.org/licensing/licenses/agpl.html AGPLv3
    12. 

  12.  * @link     http://status.net/
    13. 

  13.  *
    14. 

  14.  * StatusNet - the distributed open-source microblogging tool
    15. 

  15.  * Copyright (C) 2008, 2009, StatusNet, Inc.
    16. 

  16.  *
    17. 

  17.  * This program is free software: you can redistribute it and/or modify
    18. 

  18.  * it under the terms of the GNU Affero General Public License as published by
    19. 

  19.  * the Free Software Foundation, either version 3 of the License, or
    20. 

  20.  * (at your option) any later version.
    21. 

  21.  *
    22. 

  22.  * This program is distributed in the hope that it will be useful,
    23. 

  23.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    24. 

  24.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    25. 

  25.  * GNU Affero General Public License for more details.
    26. 

  26.  *
    27. 

  27.  * You should have received a copy of the GNU Affero General Public License
    28. 

  28.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
    29. 

  29.  */
    30. 

  30. 

  31. if (!defined('STATUSNET') && !defined('LACONICA')) {
    32. 

  32.     exit(1);
    33. 

  33. }
    34. 

  34. 

  35. /**
    36. 

  36.  * Block a user action class.
    37. 

  37.  *
    38. 

  38.  * @category Action
    39. 

  39.  * @package  StatusNet
    40. 

  40.  * @author   Evan Prodromou <evan@status.net>
    41. 

  41.  * @author   Robin Millette <millette@status.net>
    42. 

  42.  * @license  http://www.fsf.org/licensing/licenses/agpl.html AGPLv3
    43. 

  43.  * @link     http://status.net/
    44. 

  44.  */
    45. 

  45. class BlockAction extends ProfileFormAction
    46. 

  46. {
    47. 

  47.     var $profile = null;
    48. 

  48. 

  49.     /**
    50. 

  50.      * Take arguments for running
    51. 

  51.      *
    52. 

  52.      * @param array $args $_REQUEST args
    53. 

  53.      *
    54. 

  54.      * @return boolean success flag
    55. 

  55.      */
    56. 

  56.     function prepare(array $args = array())
    57. 

  57.     {
    58. 

  58.         if (!parent::prepare($args)) {
    59. 

  59.             return false;
    60. 

  60.         }
    61. 

  61. 

  62.         $cur = common_current_user();
    63. 

  63. 

  64.         assert(!empty($cur)); // checked by parent
    65. 

  65. 

  66.         if ($cur->hasBlocked($this->profile)) {
    67. 

  67.             // TRANS: Client error displayed when blocking a user that has already been blocked.
    68. 

  68.             $this->clientError(_('You already blocked that user.'));
    69. 

  69.         }
    70. 

  70. 

  71.         return true;
    72. 

  72.     }
    73. 

  73. 

  74.     /**
    75. 

  75.      * Handle request
    76. 

  76.      *
    77. 

  77.      * @param array $args $_REQUEST args; handled in prepare()
    78. 

  78.      *
    79. 

  79.      * @return void
    80. 

  80.      */
    81. 

  81.     function handle()
    82. 

  82.     {
    83. 

  83.         if ($_SERVER['REQUEST_METHOD'] == 'POST') {
    84. 

  84.             if ($this->arg('no')) {
    85. 

  85.                 $this->returnToPrevious();
    86. 

  86.             } elseif ($this->arg('yes')) {
    87. 

  87.                 $this->handlePost();
    88. 

  88.                 $this->returnToPrevious();
    89. 

  89.             } else {
    90. 

  90.                 $this->showPage();
    91. 

  91.             }
    92. 

  92.         } else {
    93. 

  93.             $this->showPage();
    94. 

  94.         }
    95. 

  95.     }
    96. 

  96. 

  97.     function showContent() {
    98. 

  98.         $this->areYouSureForm();
    99. 

  99.     }
    100. 

  100. 

  101.     function title() {
    102. 

  102.         // TRANS: Title for block user page.
    103. 

  103.         return _('Block user');
    104. 

  104.     }
    105. 

  105. 

  106.     function showNoticeForm() {
    107. 

  107.         // nop
    108. 

  108.     }
    109. 

  109. 

  110.     /**
    111. 

  111.      * Confirm with user.
    112. 

  112.      *
    113. 

  113.      * Shows a confirmation form.
    114. 

  114.      *
    115. 

  115.      * @return void
    116. 

  116.      */
    117. 

  117.     function areYouSureForm()
    118. 

  118.     {
    119. 

  119.         // @fixme if we ajaxify the confirmation form, skip the preview on ajax hits
    120. 

  120.         $profile = new ArrayWrapper(array($this->profile));
    121. 

  121.         $preview = new ProfileList($profile, $this);
    122. 

  122.         $preview->show();
    123. 

  123. 

  124. 

  125.         $id = $this->profile->id;
    126. 

  126.         $this->elementStart('form', array('id' => 'block-' . $id,
    127. 

  127.                                            'method' => 'post',
    128. 

  128.                                            'class' => 'form_settings form_entity_block',
    129. 

  129.                                            'action' => common_local_url('block')));
    130. 

  130.         $this->elementStart('fieldset');
    131. 

  131.         $this->hidden('token', common_session_token());
    132. 

  132.         // TRANS: Legend for block user form.
    133. 

  133.         $this->element('legend', _('Block user'));
    134. 

  134.         $this->element('p', null,
    135. 

  135.                        // TRANS: Explanation of consequences when blocking a user on the block user page.
    136. 

  136.                        _('Are you sure you want to block this user? '.
    137. 

  137.                          'Afterwards, they will be unsubscribed from you, '.
    138. 

  138.                          'unable to subscribe to you in the future, and '.
    139. 

  139.                          'you will not be notified of any @-replies from them.'));
    140. 

  140.         $this->element('input', array('id' => 'blockto-' . $id,
    141. 

  141.                                       'name' => 'profileid',
    142. 

  142.                                       'type' => 'hidden',
    143. 

  143.                                       'value' => $id));
    144. 

  144.         foreach ($this->args as $k => $v) {
    145. 

  145.             if (substr($k, 0, 9) == 'returnto-') {
    146. 

  146.                 $this->hidden($k, $v);
    147. 

  147.             }
    148. 

  148.         }
    149. 

  149.         $this->submit('form_action-no',
    150. 

  150.                       // TRANS: Button label on the user block form.
    151. 

  151.                       _m('BUTTON','No'),
    152. 

  152.                       'submit form_action-primary',
    153. 

  153.                       'no',
    154. 

  154.                       // TRANS: Submit button title for 'No' when blocking a user.
    155. 

  155.                       _('Do not block this user.'));
    156. 

  156.         $this->submit('form_action-yes',
    157. 

  157.                       // TRANS: Button label on the user block form.
    158. 

  158.                       _m('BUTTON','Yes'),
    159. 

  159.                       'submit form_action-secondary',
    160. 

  160.                       'yes',
    161. 

  161.                       // TRANS: Submit button title for 'Yes' when blocking a user.
    162. 

  162.                       _('Block this user.'));
    163. 

  163.         $this->elementEnd('fieldset');
    164. 

  164.         $this->elementEnd('form');
    165. 

  165.     }
    166. 

  166. 

  167.     /**
    168. 

  168.      * Actually block a user.
    169. 

  169.      *
    170. 

  170.      * @return void
    171. 

  171.      */
    172. 

  172. 

  173.     function handlePost()
    174. 

  174.     {
    175. 

  175.         $cur = common_current_user();
    176. 

  176. 

  177.         if (Event::handle('StartBlockProfile', array($cur, $this->profile))) {
    178. 

  178.             $result = $cur->block($this->profile);
    179. 

  179.             if ($result) {
    180. 

  180.                 Event::handle('EndBlockProfile', array($cur, $this->profile));
    181. 

  181.             }
    182. 

  182.         }
    183. 

  183. 

  184.         if (!$result) {
    185. 

  185.             // TRANS: Server error displayed when blocking a user fails.
    186. 

  186.             $this->serverError(_('Failed to save block information.'));
    187. 

  187.         }
    188. 

  188.     }
    189. 

  189. 

  190.     function showScripts()
    191. 

  191.     {
    192. 

  192.         parent::showScripts();
    193. 

  193.         $this->autofocus('form_action-yes');
    194. 

  194.     }
    195. 

  195. 

  196.     /**
    197. 

  197.      * Override for form session token checks; on our first hit we're just
    198. 

  198.      * requesting confirmation, which doesn't need a token. We need to be
    199. 

  199.      * able to take regular GET requests from email!
    200. 

  200.      *
    201. 

  201.      * @throws ClientException if token is bad on POST request or if we have
    202. 

  202.      *         confirmation parameters which could trigger something.
    203. 

  203.      */
    204. 

  204.     function checkSessionToken()
    205. 

  205.     {
    206. 

  206.         if ($_SERVER['REQUEST_METHOD'] == 'POST' ||
    207. 

  207.             $this->arg('yes') ||
    208. 

  208.             $this->arg('no')) {
    209. 

  209. 

  210.             return parent::checkSessionToken();
    211. 

  211.         }
    212. 

  212.     }
    213. 

  213. 

  214.     /**
    215. 

  215.      * If we reached this form without returnto arguments, return to the
    216. 

  216.      * current user's subscription list.
    217. 

  217.      *
    218. 

  218.      * @return string URL
    219. 

  219.      */
    220. 

  220.     function defaultReturnTo()
    221. 

  221.     {
    222. 

  222.         $user = common_current_user();
    223. 

  223.         if ($user) {
    224. 

  224.             return common_local_url('subscribers',
    225. 

  225.                                     array('nickname' => $user->nickname));
    226. 

  226.         } else {
    227. 

  227.             return common_local_url('public');
    228. 

  228.         }
    229. 

  229.     }
    230. 

  230. }
    231. 

  231.