<br/> <a
href="/photos.php?user=<?php
echo $userData['userID'];
?>
">View All Photos (<?php
echo BuckysPost::getNumberOfPhotosByUserID($userData['userID']);
?>
)</a>
<br/>
<!-- Friend Links -->
<?php
if (buckys_not_null($userID) && $userID != $profileID) {
//If this is not current logged user, Show Friends, Message Links
//Show Friend Links
if ($fid = BuckysFriend::isFriend($userID, $profileID)) {
?>
<a href="/myfriends.php?action=unfriend&friendID=<?php
echo $profileID;
echo buckys_get_token_param();
?>
&return=<?php
echo base64_encode("/profile.php?user="******">Unfriend</a>
<br/>
<?php
} else {
//Check Friend Request
if ($fid = BuckysFriend::isSentFriendRequest($userID, $profileID)) {
?>
} else {
buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR);
}
}
} else {
if ($_REQUEST['action'] == 'request') {
if (!isset($friendID) || !BuckysUser::checkUserID($friendID)) {
if ($isAjax) {
$resultXML = ['status' => 'error', 'message' => MSG_INVALID_REQUEST];
render_result_xml($resultXML);
} else {
buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
exit;
}
if (BuckysFriend::isFriend($userID, $friendID)) {
if ($isAjax) {
$resultXML = ['status' => 'error', 'message' => MSG_INVALID_REQUEST];
render_result_xml($resultXML);
} else {
buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
exit;
}
if (BuckysFriend::isSentFriendRequest($userID, $friendID)) {
if ($isAjax) {
$resultXML = ['status' => 'error', 'message' => MSG_FRIEND_REQUEST_ALREADY_SENT];
render_result_xml($resultXML);
} else {
buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR);
}
<p><?php
echo $row['gender'];
?>
</p>
<p><?php
echo $row['birthdate'] != '0000-00-00' ? date('F j, Y', strtotime($row['birthdate'])) : "";
?>
</p>
</div>
<div class="td td-friend-action">
<p>
<?php
if ($userID = buckys_is_logged_in()) {
if ($fid = BuckysFriend::isFriend($userID, $row['userID'])) {
?>
<a href="/myfriends.php?action=unfriend&friendID=<?php
echo $row['userID'];
echo buckys_get_token_param();
?>
&return=<?php
echo base64_encode("/profile.php?user="******"
data-type="buckys-ajax-link">Unfriend</a>
<br/>
<?php
} else {
//Check Friend Request
if ($fid = BuckysFriend::isSentFriendRequest($userID, $row['userID'])) {
echo $totalFriendsCount != 1 ? 's' : '';
?>
<a href="/friends.php?user=<?php
echo $userData['userID'];
?>
" class="view-all">(view all)</a></h3>
<?php
foreach ($friends as $row) {
render_profile_link($row, 'friendThumbnails');
}
?>
</div>
<br/>
<?php
if ($userID == $profileID || BuckysFriend::isFriend($userID, $profileID)) {
?>
<div class="info-box">
<h3>
<?php
if ($userID == $profileID) {
?>
New Post
<?php
} else {
?>
Posts on <?php
echo $userData['firstName'];
?>
's Profile
<?php
/**
* Like Post
*
* @param int $userID
* @param int $postID
* @param $action
* @param bool $checkToken
* @return bool|int|null|string
*/
public static function likePost($userID, $postID, $action, $checkToken = true)
{
global $db;
$post = BuckysPost::getPostById($postID);
if ($checkToken && !buckys_check_form_token('request')) {
buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
return false;
}
if (!$post || $post['poster'] == $userID) {
buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
return false;
}
if ($post['visibility'] == 0 && !BuckysFriend::isFriend($userID, $post['poster'])) {
buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
return false;
}
if (!BuckysUsersDailyActivity::checkUserDailyLimit($userID, 'likes')) {
buckys_add_message(sprintf(MSG_DAILY_LIKES_LIMIT_EXCEED_ERROR, USER_DAILY_LIMIT_LIKES), MSG_TYPE_ERROR);
return false;
}
//Check already like it or not
$query = $db->prepare("SELECT likeID FROM " . TABLE_POSTS_LIKES . " WHERE userID=%s AND postID=%s", $userID, $postID);
$likeId = $db->getVar($query);
if ($action == 'likePost') {
if ($likeId) {
buckys_add_message(MSG_ALREADY_LIKED_POST, MSG_TYPE_ERROR);
return false;
}
BuckysUsersDailyActivity::addLikes($userID);
//Like This post
$rs = $db->insertFromArray(TABLE_POSTS_LIKES, ['userID' => $userID, 'postID' => $postID]);
//Update likes on the posts table
$query = $db->prepare('UPDATE ' . TABLE_POSTS . ' SET `likes`=`likes` + 1 WHERE postID=%d', $postID);
$db->query($query);
//Add Activity
$activityId = BuckysActivity::addActivity($userID, $postID, 'post', 'like', $rs);
//Add Notification
BuckysActivity::addNotification($post['poster'], $activityId, BuckysActivity::NOTIFICATION_TYPE_LIKE_POST);
//Increase Hits
BuckysHit::addHit($postID, $userID);
//Update User Stats
BuckysUser::updateStats($post['poster'], 'likes', 1);
return $rs;
} else {
if ($action == 'unlikePost') {
if (!$likeId) {
buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
return false;
}
BuckysUsersDailyActivity::addLikes($userID);
$query = $db->prepare("DELETE FROM " . TABLE_POSTS_LIKES . " WHERE userID=%s AND postID=%s", $userID, $postID);
$db->query($query);
//Update likes on the posts table
$query = $db->prepare('UPDATE ' . TABLE_POSTS . ' SET `likes`=`likes` - 1 WHERE postID=%d', $postID);
$db->query($query);
//Increase Hits
BuckysHit::removeHit($postID, $userID);
//Update User Stats
BuckysUser::updateStats($post['poster'], 'likes', -1);
return true;
}
}
}
//If the parameter is null, goto homepage
if (!$profileID) {
buckys_redirect('/index.php');
}
//Getting UserData from Id
$userData = BuckysUser::getUserData($profileID);
//Goto Homepage if the userID is not correct
if (!buckys_not_null($userData) || !BuckysUser::checkUserID($profileID, true)) {
buckys_redirect('/index.php');
}
$postType = isset($_GET['type']) ? $_GET['type'] : 'all';
if (!in_array($postType, ['all', 'user', 'friends'])) {
$postType = 'all';
}
//if logged user can see all resources of the current user
$canViewPrivate = $userID == $profileID || BuckysFriend::isFriend($userID, $profileID) || BuckysFriend::isSentFriendRequest($profileID, $userID);
$posts = BuckysPost::getPostsByUserID($profileID, $userID, BuckysPost::INDEPENDENT_POST_PAGE_ID, $canViewPrivate, $postID, null, $postType);
/*if( !buckys_not_null($posts) )
{
//Goto Index Page
buckys_redirect('/index.php', MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}*/
//Mark the notifications to read
if ($postID) {
BuckysActivity::markReadNotifications($userID, $postID);
}
buckys_enqueue_stylesheet('profile.css');
buckys_enqueue_stylesheet('posting.css');
buckys_enqueue_stylesheet('uploadify.css');
buckys_enqueue_stylesheet('jquery.Jcrop.css');
buckys_enqueue_stylesheet('publisher.css');
} else {
if ($_REQUEST['action'] == 'delete') {
if (BuckysFriend::delete($userID, $_REQUEST['friendID'])) {
buckys_redirect($return, MSG_FRIEND_REQUEST_REMOVED);
} else {
buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR);
}
} else {
if ($_REQUEST['action'] == 'request') {
if (!isset($_REQUEST['friendID']) || !isset($_REQUEST['friendIDHash']) || !buckys_check_id_encrypted($_REQUEST['friendID'], $_REQUEST['friendIDHash'])) {
buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
if (!BuckysUser::checkUserID($_REQUEST['friendID'])) {
buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
if (BuckysFriend::isFriend($userID, $_REQUEST['friendID'])) {
buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
}
if (BuckysFriend::isSentFriendRequest($userID, $_REQUEST['friendID'])) {
buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR);
}
if (BuckysFriend::isSentFriendRequest($_REQUEST['friendID'], $userID)) {
buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR);
}
if (BuckysFriend::sendFriendRequest($userID, $_REQUEST['friendID'])) {
buckys_redirect($return, MSG_FRIEND_REQUEST_SENT);
} else {
buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR);
}
}
}
public function addFriendAction()
{
$data = $_POST;
$token = isset($data['TOKEN']) ? trim($data['TOKEN']) : null;
$friendID = isset($data['friendID']) ? $data['friendID'] : null;
if (!$token) {
return ['STATUS_CODE' => STATUS_CODE_BAD_REQUEST, 'DATA' => buckys_api_get_error_result('Api token should not be blank')];
}
if (!($userID = BuckysUsersToken::checkTokenValidity($token, "api"))) {
return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result('Api token is not valid.')];
}
if (!isset($friendID) || !BuckysUser::checkUserID($friendID)) {
return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_INVALID_REQUEST)];
}
if (BuckysFriend::isFriend($userID, $friendID)) {
return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_INVALID_REQUEST)];
}
if (BuckysFriend::isSentFriendRequest($userID, $friendID)) {
return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_FRIEND_REQUEST_ALREADY_SENT)];
}
if (BuckysFriend::isSentFriendRequest($friendID, $userID)) {
return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_FRIEND_REQUEST_ALREADY_RECEIVED)];
}
if (BuckysFriend::sendFriendRequest($userID, $friendID)) {
return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => ["STATUS" => "SUCCESS", "MESSAGE" => MSG_FRIEND_REQUEST_SENT]];
} else {
return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result($db->getLastError())];
}
}
if (trim($comment) == '') {
echo MSG_COMMENT_EMPTY;
exit;
}
//if Post Id was not set, show error
if (!$postID) {
echo MSG_INVALID_REQUEST;
exit;
}
//Check the post id is correct
if (!BuckysPost::checkPostID($postID)) {
echo MSG_POST_NOT_EXIST;
exit;
}
$post = BuckysPost::getPostById($postID);
if ($post['visibility'] == 0 && $userID != $post['poster'] && !BuckysFriend::isFriend($userID, $post['poster'])) {
//Only Friends can leave comments to private post
echo MSG_INVALID_REQUEST;
exit;
}
//If error, show it
if (!($commentID = BuckysComment::saveComments($userID, $postID, $comment))) {
echo $db->getLastError();
exit;
} else {
//Show Results
header('Content-type: application/xml');
$newComment = BuckysComment::getComment($commentID);
$newCount = BuckysComment::getPostCommentsCount($postID);
render_result_xml(array('newcomment' => render_single_comment($newComment, $userID, true), 'count' => $newCount > 1 ? $newCount . " comments" : $newCount . " comment"));
exit;
?>
<div class="imgWrap">
<img src="/images/badges/blue_wings.png" class="badge"/> <span
class="imgDescription">500 page followers</span>
</div>
<?php
}
?>
</div>
<div class="action">
<span class="friend-actions">
<?php
if (($userID = buckys_is_logged_in()) && $userID != $userData['userID']) {
if ($fid = BuckysFriend::isFriend($userID, $userData['userID'])) {
?>
<a href="/myfriends.php?action=unfriend&friendID=<?php
echo $userData['userID'];
echo buckys_get_token_param();
?>
&return=<?php
echo base64_encode("/profile.php?user="******"
data-type="buckys-ajax-link">Unfriend</a>
<br/>
<?php
} else {
//Check Friend Request
if ($fid = BuckysFriend::isSentFriendRequest($userID, $userData['userID'])) {
/**
* Like Post
*
*
* @param int $userID
* @param int $postID
*/
public function likePost($userID, $postID, $action)
{
global $db;
$post = BuckysPost::getPostById($postID);
if (!$post || $post['poster'] == $userID) {
buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
return false;
}
if ($post['visibility'] == 0 && !BuckysFriend::isFriend($userID, $post['poster'])) {
buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
return false;
}
//Check already like it or not
$query = $db->prepare("SELECT likeID FROM " . TABLE_POSTS_LIKES . " WHERE userID=%s AND postID=%s", $userID, $postID);
$likeId = $db->getVar($query);
if ($action == 'likePost') {
if ($likeId) {
buckys_add_message(MSG_ALREADY_LIKED_POST, MSG_TYPE_ERROR);
return false;
}
//Like This post
$rs = $db->insertFromArray(TABLE_POSTS_LIKES, array('userID' => $userID, 'postID' => $postID));
//Update likes on the posts table
$query = $db->prepare('UPDATE ' . TABLE_POSTS . ' SET `likes`=`likes` + 1 WHERE postID=%d', $postID);
$db->query($query);
//Add Activity
BuckysActivity::addActivity($userID, $postID, 'post', 'like', $rs);
//Increase Hits
BuckysHit::addHit($postID, $userID);
return $rs;
} else {
if ($action == 'unlikePost') {
if (!$likeId) {
buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR);
return false;
}
$query = $db->prepare("DELETE FROM " . TABLE_POSTS_LIKES . " WHERE userID=%s AND postID=%s", $userID, $postID);
$db->query($query);
//Update likes on the posts table
$query = $db->prepare('UPDATE ' . TABLE_POSTS . ' SET `likes`=`likes` - 1 WHERE postID=%d', $postID);
$db->query($query);
//Increase Hits
BuckysHit::removeHit($postID, $userID);
return true;
}
}
}
