1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
|
<?php
namespace JsonApi\Routes\Forum;
use JsonApi\Errors\RecordNotFoundException;
use Psr\Http\Message\ServerRequestInterface as Request;
use Psr\Http\Message\ResponseInterface as Response;
use JsonApi\Errors\AuthorizationFailedException;
use JsonApi\JsonApiController;
use JsonApi\Routes\ValidationTrait;
use Forum\Enum\SubscriptionNotificationType;
use Studip\Markup;
use Forum\Discussion;
use Forum\Posting;
use Forum\PostingRead;
use Forum\Subscription;
class PostingStore extends JsonApiController
{
use ValidationTrait;
protected $allowedIncludePaths = [
\JsonApi\Schemas\Forum\Posting::REL_DISCUSSION,
\JsonApi\Schemas\Forum\Posting::REL_POSTING,
\JsonApi\Schemas\Forum\Posting::REL_OPENGRAPH_URLS,
\JsonApi\Schemas\Forum\Posting::REL_AUTHOR,
\JsonApi\Schemas\Forum\Posting::REL_REACTIONS,
\JsonApi\Schemas\Forum\Posting::REL_REACTIONS_USER
];
public function __invoke(Request $request, Response $response, $args)
{
$json = $this->validate($request);
$user = $this->getUser($request);
$discussion = Discussion::find(self::arrayGet($json, 'data.relationships.discussion.data.id'));
$range = get_object_by_range_id($discussion->range_id);
if (!$discussion || !$range) {
throw new RecordNotFoundException();
}
if (
!Authority::canShowForum($user, $range) ||
$discussion->closed_at
) {
throw new AuthorizationFailedException();
}
$parent_id = self::arrayGet($json, 'data.relationships.posting.data.id');
$psoting = Posting::create([
'range_id' => $discussion->range_id,
'parent_id' => $parent_id ?? null,
'discussion_id' => $discussion->discussion_id,
'content' => Markup::purifyHtml(Markup::markAsHtml(self::arrayGet($json, 'data.attributes.content'))),
'anonymous' => (self::arrayGet($json, 'data.attributes.anonymous') && \Config::get()->FORUM_ANONYMOUS_POSTINGS),
'user_id' => $user->user_id
]);
$subscription = Subscription::findOneBySQL(
"user_id = :user_id AND subject_id IN (:subject_ids)",
[
'user_id' => $user->user_id,
'subject_ids' => [$discussion->discussion_id, $discussion->topic_id]
]
);
if (!$subscription) {
$subscription = new Subscription();
$subscription->user_id = $user->user_id;
$subscription->range_id = $discussion->range_id;
$subscription->subject_id = $discussion->discussion_id;
$subscription->subject = 'discussion';
$subscription->notification_type = SubscriptionNotificationType::All->value;
$subscription->store();
}
PostingRead::updateUserReadPoint($user->user_id, $discussion->discussion_id);
return $this->getCreatedResponse($psoting);
}
protected function validateResourceDocument($json, $data)
{
$required_keys = [
'data.attributes.content' => 'Missing `data.attributes.content`',
'data.attributes.anonymous' => 'Missing `data.attributes.anonymous`',
'data.relationships.discussion.data.id' => 'Missing `data.relationships.discussion.data.id`',
];
foreach ($required_keys as $key => $error_message) {
if (!self::arrayHas($json, $key)) {
return $error_message;
}
}
return null;
}
}
|
