93 lines
3.0 KiB
PHP
93 lines
3.0 KiB
PHP
<?php
|
|
|
|
namespace OCA\Memories\Controller;
|
|
|
|
use OCA\Memories\Db\TimelineQuery;
|
|
use OCP\App\IAppManager;
|
|
use OCP\AppFramework\Controller;
|
|
use OCP\AppFramework\Http\RedirectResponse;
|
|
use OCP\AppFramework\Http\Template\PublicTemplateResponse;
|
|
use OCP\AppFramework\Http\TemplateResponse;
|
|
use OCP\AppFramework\Services\IInitialState;
|
|
use OCP\EventDispatcher\IEventDispatcher;
|
|
use OCP\IConfig;
|
|
use OCP\IDBConnection;
|
|
use OCP\IURLGenerator;
|
|
use OCP\IUserSession;
|
|
use OCP\Util;
|
|
|
|
class PublicAlbumController extends Controller
|
|
{
|
|
protected $appName;
|
|
protected IEventDispatcher $eventDispatcher;
|
|
protected IInitialState $initialState;
|
|
protected IAppManager $appManager;
|
|
protected IConfig $config;
|
|
protected IDBConnection $connection;
|
|
protected IUserSession $userSession;
|
|
protected IURLGenerator $urlGenerator;
|
|
|
|
public function __construct(
|
|
string $appName,
|
|
IEventDispatcher $eventDispatcher,
|
|
IInitialState $initialState,
|
|
IAppManager $appManager,
|
|
IConfig $config,
|
|
IDBConnection $connection,
|
|
IUserSession $userSession,
|
|
IURLGenerator $urlGenerator
|
|
) {
|
|
$this->appName = $appName;
|
|
$this->eventDispatcher = $eventDispatcher;
|
|
$this->initialState = $initialState;
|
|
$this->appManager = $appManager;
|
|
$this->config = $config;
|
|
$this->connection = $connection;
|
|
$this->userSession = $userSession;
|
|
$this->urlGenerator = $urlGenerator;
|
|
}
|
|
|
|
/**
|
|
* @PublicPage
|
|
*
|
|
* @NoCSRFRequired
|
|
*/
|
|
public function showShare(string $token)
|
|
{
|
|
// Validate token exists
|
|
$timelineQuery = new TimelineQuery($this->connection);
|
|
$album = $timelineQuery->getAlbumByLink($token);
|
|
if (!$album) {
|
|
return new TemplateResponse('core', '404', [], 'guest');
|
|
}
|
|
|
|
// Check if the current user has access to the album
|
|
// Just redirect to the user's page if the user is the owner or a collaborator
|
|
if ($user = $this->userSession->getUser()) {
|
|
$uid = $user->getUID();
|
|
$albumId = (int) $album['album_id'];
|
|
|
|
if ($uid === $album['user'] || $timelineQuery->userIsAlbumCollaborator($uid, $albumId)) {
|
|
$idStr = $album['user'].'/'.$album['name'];
|
|
$url = $this->urlGenerator->linkToRoute('memories.Page.albums', ['id' => $idStr]);
|
|
|
|
return new RedirectResponse($url);
|
|
}
|
|
}
|
|
|
|
// Browse anonymously if the album is accessed as a link
|
|
\OC_User::setIncognitoMode(true);
|
|
|
|
// Scripts
|
|
Util::addScript($this->appName, 'memories-main');
|
|
PageController::provideCommonInitialState($this->initialState);
|
|
|
|
$response = new PublicTemplateResponse($this->appName, 'main');
|
|
$response->setHeaderTitle($album['name']);
|
|
$response->setFooterVisible(false); // wth is that anyway?
|
|
$response->setContentSecurityPolicy(PageController::getCSP());
|
|
|
|
return $response;
|
|
}
|
|
}
|