Context Navigation

source: extensions/community/main.inc.php @ 12153

Last change on this file since 12153 was 11726, checked in by plg, 13 years ago
bug 2374 fixed: pLoader can now create albums
File size: 13.0 KB

Line
1	<?php
2	/*
3	Plugin Name: Community
4	Version: auto
5	Description: Non admin users can add photos
6	Plugin URI: http://piwigo.org/ext/extension_view.php?eid=303
7	Author: plg
8	Author URI: http://piwigo.wordpress.com
9	*/
10
11	if (!defined('PHPWG_ROOT_PATH'))
12	{
13	die('Hacking attempt!');
14	}
15
16	define('COMMUNITY_PATH' , PHPWG_PLUGINS_PATH.basename(dirname(__FILE__)).'/');
17
18	global $prefixeTable;
19	define('COMMUNITY_PERMISSIONS_TABLE', $prefixeTable.'community_permissions');
20	define('COMMUNITY_PENDINGS_TABLE', $prefixeTable.'community_pendings');
21
22	include_once(COMMUNITY_PATH.'include/functions_community.inc.php');
23
24	/* Plugin admin */
25	add_event_handler('get_admin_plugin_menu_links', 'community_admin_menu');
26	function community_admin_menu($menu)
27	{
28	global $page;
29
30	$query = '
31	SELECT
32	COUNT(*)
33	FROM '.COMMUNITY_PENDINGS_TABLE.'
34	WHERE state = \'moderation_pending\'
35	;';
36	$result = pwg_query($query);
37	list($page['community_nb_pendings']) = pwg_db_fetch_row($result);
38
39	$name = 'Community';
40	if ($page['community_nb_pendings'] > 0)
41	{
42	$style = 'background-color:#666;';
43	$style.= 'color:white;';
44	$style.= 'padding:1px 5px;';
45	$style.= '-moz-border-radius:10px;';
46	$style.= '-webkit-border-radius:10px;';
47	$style.= '-border-radius:10px;';
48	$style.= 'margin-left:5px;';
49
50	$name.= '<span style="'.$style.'">'.$page['community_nb_pendings'].'</span>';
51
52	if (defined('IN_ADMIN') and IN_ADMIN and $page['page'] == 'intro')
53	{
54	global $template;
55
56	$template->set_prefilter('intro', 'community_pendings_on_intro');
57	$template->assign(
58	array(
59	'COMMUNITY_PENDINGS' => sprintf(
60	'<a href="%s">'.l10n('%u pending photos').'</a>',
61	get_root_url().'admin.php?page=plugin-community-pendings',
62	$page['community_nb_pendings']
63	),
64	)
65	);
66	}
67	}
68
69	array_push(
70	$menu,
71	array(
72	'NAME' => $name,
73	'URL' => get_root_url().'admin.php?page=plugin-community'
74	)
75	);
76
77	return $menu;
78	}
79
80	function community_pendings_on_intro($content, &$smarty)
81	{
82	$pattern = '#<li>\s*{\$DB_ELEMENTS\}#ms';
83	$replacement = '<li>{$COMMUNITY_PENDINGS}</li><li>{$DB_ELEMENTS}';
84	return preg_replace($pattern, $replacement, $content);
85	}
86
87	add_event_handler('init', 'community_load_language');
88	function community_load_language()
89	{
90	if (!defined('IN_ADMIN') or !IN_ADMIN)
91	{
92	load_language('admin.lang');
93	}
94
95	load_language('plugin.lang', COMMUNITY_PATH);
96	}
97
98
99	add_event_handler('loc_end_section_init', 'community_section_init');
100	function community_section_init()
101	{
102	global $tokens, $page;
103
104	if ($tokens[0] == 'add_photos')
105	{
106	$page['section'] = 'add_photos';
107	}
108	}
109
110	add_event_handler('loc_end_index', 'community_index');
111	function community_index()
112	{
113	global $page;
114
115	if (isset($page['section']) and $page['section'] == 'add_photos')
116	{
117	include(COMMUNITY_PATH.'add_photos.php');
118	}
119	}
120
121	add_event_handler('blockmanager_apply' , 'community_gallery_menu');
122	function community_gallery_menu($menu_ref_arr)
123	{
124	global $conf, $user;
125
126	// conditional : depending on community permissions, display the "Add
127	// photos" link in the gallery menu
128	$user_permissions = community_get_user_permissions($user['id']);
129
130	if (count($user_permissions['upload_categories']) == 0 and !$user_permissions ['create_whole_gallery'])
131	{
132	return;
133	}
134
135	$menu = & $menu_ref_arr[0];
136
137	if (($block = $menu->get_block('mbMenu')) != null )
138	{
139	load_language('plugin.lang', COMMUNITY_PATH);
140
141	array_splice(
142	$block->data,
143	count($block->data),
144	0,
145	array(
146	'' => array(
147	'URL' => make_index_url(array('section' => 'add_photos')),
148	'TITLE' => l10n('Upload your own photos'),
149	'NAME' => l10n('Upload Photos')
150	)
151	)
152	);
153	}
154	}
155
156
157	add_event_handler('ws_invoke_allowed', 'community_switch_user_to_admin', EVENT_HANDLER_PRIORITY_NEUTRAL, 3);
158	function community_switch_user_to_admin($res, $methodName, $params)
159	{
160	global $user, $community;
161
162	if (is_admin())
163	{
164	return $res;
165	}
166
167	$community = array('method' => $methodName);
168
169	if ('pwg.images.addSimple' == $community['method'])
170	{
171	$community['category'] = $params['category'];
172	}
173	elseif ('pwg.images.add' == $community['method'])
174	{
175	$community['category'] = $params['categories'];
176	$community['md5sum'] = $params['original_sum'];
177	}
178
179	// $print_params = $params;
180	// unset($print_params['data']);
181	// file_put_contents('/tmp/community.log', '['.$methodName.'] '.json_encode($print_params)."\n" ,FILE_APPEND);
182
183	// conditional : depending on community permissions, display the "Add
184	// photos" link in the gallery menu
185	$user_permissions = community_get_user_permissions($user['id']);
186
187	if (count($user_permissions['upload_categories']) == 0 and !$user_permissions ['create_whole_gallery'])
188	{
189	return $res;
190	}
191
192	// if level of trust is low, then we have to set level to 16
193
194	$methods = array();
195	$methods[] = 'pwg.tags.add';
196	$methods[] = 'pwg.images.exist';
197	$methods[] = 'pwg.images.add';
198	$methods[] = 'pwg.images.addSimple';
199	$methods[] = 'pwg.images.addChunk';
200	$methods[] = 'pwg.images.checkUpload';
201	$methods[] = 'pwg.images.checkFiles';
202	$methods[] = 'pwg.images.setInfo';
203
204	if (in_array($methodName, $methods))
205	{
206	$user['status'] = 'admin';
207	}
208
209	if ('pwg.categories.add' == $methodName)
210	{
211	if (in_array($params['parent'], $user_permissions['create_categories']))
212	{
213	$user['status'] = 'admin';
214	}
215	}
216
217	return $res;
218	}
219
220	add_event_handler('ws_add_methods', 'community_ws_replace_methods', EVENT_HANDLER_PRIORITY_NEUTRAL+5);
221	function community_ws_replace_methods($arr)
222	{
223	global $conf, $user;
224
225	$service = &$arr[0];
226
227	if (is_admin())
228	{
229	return;
230	}
231
232	$user_permissions = community_get_user_permissions($user['id']);
233
234	if (count($user_permissions['permission_ids']) == 0)
235	{
236	return;
237	}
238
239	// the plugin Community is activated, the user has upload permissions, we
240	// use a specific function to list available categories, assuming the use
241	// want to list categories where upload is possible for him
242
243	$service->addMethod(
244	'pwg.categories.getList',
245	'community_ws_categories_getList',
246	array(
247	'cat_id' => array('default'=>0),
248	'recursive' => array('default'=>false),
249	'public' => array('default'=>false),
250	),
251	'retrieves a list of categories'
252	);
253
254	$service->addMethod(
255	'pwg.tags.getAdminList',
256	'community_ws_tags_getAdminList',
257	array(),
258	'administration method only'
259	);
260	}
261
262	/**
263	* returns a list of categories (web service method)
264	*/
265	function community_ws_categories_getList($params, &$service)
266	{
267	global $user, $conf;
268
269	$where = array('1=1');
270	$join_type = 'LEFT';
271	$join_user = $user['id'];
272
273	if (!$params['recursive'])
274	{
275	if ($params['cat_id']>0)
276	$where[] = '(id_uppercat='.(int)($params['cat_id']).'
277	OR id='.(int)($params['cat_id']).')';
278	else
279	$where[] = 'id_uppercat IS NULL';
280	}
281	else if ($params['cat_id']>0)
282	{
283	$where[] = 'uppercats '.DB_REGEX_OPERATOR.' \'(^\|,)'.
284	(int)($params['cat_id'])
285	.'(,\|$)\'';
286	}
287
288	if ($params['public'])
289	{
290	$where[] = 'status = "public"';
291	$where[] = 'visible = "true"';
292
293	$join_user = $conf['guest_id'];
294	}
295
296	$user_permissions = community_get_user_permissions($user['id']);
297	$upload_categories = $user_permissions['upload_categories'];
298	if (count($upload_categories) == 0)
299	{
300	$upload_categories = array(-1);
301	}
302
303	$where[] = 'id IN ('.implode(',', $upload_categories).')';
304
305	$query = '
306	SELECT
307	id,
308	name,
309	permalink,
310	uppercats,
311	global_rank,
312	comment,
313	nb_images,
314	count_images AS total_nb_images,
315	date_last,
316	max_date_last,
317	count_categories AS nb_categories
318	FROM '.CATEGORIES_TABLE.'
319	'.$join_type.' JOIN '.USER_CACHE_CATEGORIES_TABLE.' ON id=cat_id AND user_id='.$join_user.'
320	WHERE '. implode('
321	AND ', $where);
322
323	$result = pwg_query($query);
324
325	$cats = array();
326	while ($row = pwg_db_fetch_assoc($result))
327	{
328	$row['url'] = make_index_url(
329	array(
330	'category' => $row
331	)
332	);
333	foreach( array('id','nb_images','total_nb_images','nb_categories') as $key)
334	{
335	$row[$key] = (int)$row[$key];
336	}
337
338	$row['name'] = strip_tags(
339	trigger_event(
340	'render_category_name',
341	$row['name'],
342	'ws_categories_getList'
343	)
344	);
345
346	$row['comment'] = strip_tags(
347	trigger_event(
348	'render_category_description',
349	$row['comment'],
350	'ws_categories_getList'
351	)
352	);
353
354	array_push($cats, $row);
355	}
356	usort($cats, 'global_rank_compare');
357	return array(
358	'categories' => new PwgNamedArray(
359	$cats,
360	'category',
361	array(
362	'id',
363	'url',
364	'nb_images',
365	'total_nb_images',
366	'nb_categories',
367	'date_last',
368	'max_date_last',
369	)
370	)
371	);
372	}
373
374	function community_ws_tags_getAdminList($params, &$service)
375	{
376	$tags = get_available_tags();
377
378	// keep orphan tags
379	include_once(PHPWG_ROOT_PATH.'admin/include/functions.php');
380	$orphan_tags = get_orphan_tags();
381	if (count($orphan_tags) > 0)
382	{
383	$orphan_tag_ids = array();
384	foreach ($orphan_tags as $tag)
385	{
386	$orphan_tag_ids[] = $tag['id'];
387	}
388
389	$query = '
390	SELECT *
391	FROM '.TAGS_TABLE.'
392	WHERE id IN ('.implode(',', $orphan_tag_ids).')
393	;';
394	$result = pwg_query($query);
395	while ($row = pwg_db_fetch_assoc($result))
396	{
397	$tags[] = $row;
398	}
399	}
400
401	usort($tags, 'tag_alpha_compare');
402
403	return array(
404	'tags' => new PwgNamedArray(
405	$tags,
406	'tag',
407	array(
408	'name',
409	'id',
410	'url_name',
411	)
412	)
413	);
414	}
415
416	add_event_handler('sendResponse', 'community_sendResponse');
417	function community_sendResponse($encodedResponse)
418	{
419	global $community, $user;
420
421	if (!isset($community['method']))
422	{
423	return;
424	}
425
426	if ('pwg.images.addSimple' == $community['method'])
427	{
428	$response = json_decode($encodedResponse);
429	$image_id = $response->result->image_id;
430	}
431	elseif ('pwg.images.add' == $community['method'])
432	{
433	$query = '
434	SELECT
435	id
436	FROM '.IMAGES_TABLE.'
437	WHERE md5sum = \''.$community['md5sum'].'\'
438	ORDER BY id DESC
439	LIMIT 1
440	;';
441	list($image_id) = pwg_db_fetch_row(pwg_query($query));
442	}
443	else
444	{
445	return;
446	}
447
448	$image_ids = array($image_id);
449
450	// $category_id is set in the photos_add_direct_process.inc.php included script
451	$category_infos = get_cat_info($community['category']);
452
453	// should the photos be moderated?
454	//
455	// if one of the user community permissions is not moderated on the path
456	// to gallery root, then the upload is not moderated. For example, if the
457	// user is allowed to upload to events/parties with no admin moderation,
458	// then he's not moderated when uploading in
459	// events/parties/happyNewYear2011
460	$moderate = true;
461
462	$user_permissions = community_get_user_permissions($user['id']);
463	$query = '
464	SELECT
465	cp.category_id,
466	c.uppercats
467	FROM '.COMMUNITY_PERMISSIONS_TABLE.' AS cp
468	LEFT JOIN '.CATEGORIES_TABLE.' AS c ON category_id = c.id
469	WHERE cp.id IN ('.implode(',', $user_permissions['permission_ids']).')
470	AND cp.moderated = \'false\'
471	;';
472	$result = pwg_query($query);
473	while ($row = pwg_db_fetch_assoc($result))
474	{
475	if (empty($row['category_id']))
476	{
477	$moderate = false;
478	}
479	elseif (preg_match('/^'.$row['uppercats'].'(,\|$)/', $category_infos['uppercats']))
480	{
481	$moderate = false;
482	}
483	}
484
485	if ($moderate)
486	{
487	$inserts = array();
488
489	$query = '
490	SELECT
491	id,
492	date_available
493	FROM '.IMAGES_TABLE.'
494	WHERE id IN ('.implode(',', $image_ids).')
495	;';
496	$result = pwg_query($query);
497	while ($row = pwg_db_fetch_assoc($result))
498	{
499	array_push(
500	$inserts,
501	array(
502	'image_id' => $row['id'],
503	'added_on' => $row['date_available'],
504	'state' => 'moderation_pending',
505	)
506	);
507	}
508
509	mass_inserts(
510	COMMUNITY_PENDINGS_TABLE,
511	array_keys($inserts[0]),
512	$inserts
513	);
514
515	// the level of a user upload photo with moderation is 16
516	$level = 16;
517	}
518	else
519	{
520	// the level of a user upload photo with no moderation is 0
521	$level = 0;
522	}
523
524	$query = '
525	UPDATE '.IMAGES_TABLE.'
526	SET level = '.$level.'
527	WHERE id IN ('.implode(',', $image_ids).')
528	;';
529	pwg_query($query);
530
531	invalidate_user_cache();
532	}
533
534	add_event_handler('delete_user', 'community_delete_user');
535	function community_delete_user($user_id)
536	{
537	$query = '
538	DELETE
539	FROM '.COMMUNITY_PERMISSIONS_TABLE.'
540	WHERE user_id = '.$user_id.'
541	;';
542	pwg_query($query);
543
544	community_reject_user_pendings($user_id);
545	}
546
547	add_event_handler('delete_categories', 'community_delete_category');
548	function community_delete_category($category_ids)
549	{
550	// $category_ids includes all the sub-category ids
551	$query = '
552	DELETE
553	FROM '.COMMUNITY_PERMISSIONS_TABLE.'
554	WHERE category_id IN ('.implode(',', $category_ids).')
555	;';
556	pwg_query($query);
557
558	community_update_cache_key();
559	}
560
561	add_event_handler('invalidate_user_cache', 'community_refresh_cache_update_time');
562	function community_refresh_cache_update_time()
563	{
564	community_update_cache_key();
565	}
566	?>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: