/**
* @Request({"permissions": "array"}, csrf=true)
* @Response("json")
*/
public function saveAction($permissions = [])
{
foreach ($this->roles->findAll() as $role) {
$role->setPermissions(isset($permissions[$role->getId()]) ? $permissions[$role->getId()] : []);
$this->roles->save($role);
}
return $this['request']->isXmlHttpRequest() ? ['message' => __('Permissions saved!')] : $this->redirect('@system/permission');
}
/**
* @Request({"order": "array"}, csrf=true)
* @Response("json")
*/
public function priorityAction($order)
{
foreach ($order as $id => $priority) {
$role = $this->roles->find($id);
if ($role) {
$this->roles->save($role, compact('priority'));
}
}
return $order;
}
/**
* Constructor.
*
* @param EntityManager $manager
* @param Metadata $metadata
* @param array $mapping
*/
public function __construct(EntityManager $manager, Metadata $metadata, array $mapping)
{
$this->manager = $manager;
$this->metadata = $metadata;
if (!($this->name = $mapping['name'])) {
throw new \InvalidArgumentException('The parameter "name" may not be omitted in relations.');
}
$this->targetEntity = $mapping['targetEntity'];
$this->targetRepository = $manager->getRepository($this->targetEntity);
$this->targetMetadata = $this->targetRepository->getMetadata();
}
/**
* @Request({"id": "int"}, csrf=true)
*/
public function deleteAction($id)
{
try {
if (!($menu = $this->menus->find($id))) {
throw new Exception(__('Invalid menu id'));
}
$this->menus->delete($menu);
$this['db']->delete('@system_menu_item', ['menu_id' => $id]);
} catch (Exception $e) {
$this['message']->error($e->getMessage());
}
return $this->redirect('@system/menu');
}
/**
* @Route("/{id}", name="@page/id", requirements={"id"="\d+"})
* @Response("extension://page/views/index.razr")
*/
public function indexAction($id = 0)
{
if (!($page = $this->pages->where(compact('id'))->where(['status' => Page::STATUS_PUBLISHED])->first())) {
throw new NotFoundHttpException(__('Page not found!'));
}
if (!$page->hasAccess($this['user'])) {
if (!$this['user']->isAuthenticated()) {
return $this->redirect('@system/auth/login', ['redirect' => $this['url']->current()]);
}
throw new AccessDeniedHttpException(__('Unable to access this page!'));
}
$page->setContent($this['content']->applyPlugins($page->getContent(), ['page' => $page, 'markdown' => $page->get('markdown')]));
return ['head.title' => __($page->getTitle()), 'page' => $page];
}
/**
* @Request({"ids": "int[]"}, csrf=true)
*/
public function deleteAction($ids = [])
{
foreach ($ids as $id) {
if ($alias = $this->aliases->find($id)) {
$this->aliases->delete($alias);
}
}
$this['message']->success(_c('{0} No alias deleted.|{1} Alias deleted.|]1,Inf[ Aliases deleted.', count($ids)));
return $this->redirect('@system/alias');
}
/**
* @Request({"position", "order": "array"}, csrf=true)
* @Response("json")
*/
public function reorderAction($position, $order = [])
{
$widgets = $this->widgets->findAll();
foreach ($order as $priority => $data) {
$id = $data['id'];
if (isset($widgets[$id])) {
$this->widgets->save($widgets[$id], compact('position', 'priority'));
}
}
return ['message' => __('Widgets updated.')];
}
/**
* @Route("/feed")
* @Route("/feed/{type}")
*/
public function feedAction($type = '')
{
$feed = $this['feed']->create($type ?: $this->extension->getParams('feed.type'), ['title' => $this['option']->get('system:app.site_title'), 'link' => $this['url']->route('@blog/site', [], true), 'description' => $this['option']->get('system:app.site_description'), 'element' => ['language', $this['option']->get('system:app.locale')], 'selfLink' => $this['url']->route('@blog/site/feed', [], true)]);
if ($last = $this->posts->query()->where(['status = ?', 'date < ?'], [Post::STATUS_PUBLISHED, new \DateTime()])->limit(1)->orderBy('modified', 'DESC')->first()) {
$feed->setDate($last->getModified());
}
foreach ($this->posts->query()->where(['status = ?', 'date < ?'], [Post::STATUS_PUBLISHED, new \DateTime()])->related('user')->limit($this->extension->getParams('feed.limit'))->orderBy('date', 'DESC')->get() as $post) {
$feed->addItem($feed->createItem(['title' => $post->getTitle(), 'link' => $this['url']->route('@blog/id', ['id' => $post->getId()], true), 'description' => $this['content']->applyPlugins($post->getContent(), ['post' => $post, 'markdown' => $post->get('markdown'), 'readmore' => true]), 'date' => $post->getDate(), 'author' => [$post->getUser()->getName(), $post->getUser()->getEmail()], 'id' => $this['url']->route('@blog/id', ['id' => $post->getId()], true)]));
}
return $this['response']->create($feed->generate(), Response::HTTP_OK, ['Content-Type' => $feed->getMIMEType()]);
}
/**
* @Request({"status": "int", "ids": "int[]"}, csrf=true)
* @Response("json")
*/
public function statusAction($status, $ids = [])
{
foreach ($ids as $id) {
if ($comment = $this->comments->find($id) and $comment->getStatus() != $status) {
$previous = $comment->getStatus();
$comment->setStatus($status);
$this->comments->save($comment);
$this['events']->dispatch('system.comment.spam_mark', new MarkSpamEvent($comment, $previous));
}
}
return ['message' => _c('{0} No comment status updated.|{1} Comment status updated.|]1,Inf[ Comment statuses updated.', count($ids))];
}
/**
* Gets the user roles.
*
* @param User $user
* @return array
*/
protected function getRoles(User $user = null)
{
$roles = $this->roles->where(['id <> ?'], [Role::ROLE_ANONYMOUS])->orderBy('priority')->get();
foreach ($roles as $role) {
if ($role->isAuthenticated()) {
$role->disabled = true;
}
if ($user && $user->getId() == $this['user']->getId() && $user->isAdministrator() && $role->isAdministrator()) {
$role->disabled = true;
}
}
return $roles;
}
/**
* @Request({"status": "int", "ids": "int[]"}, csrf=true)
* @Response("json")
*/
public function statusAction($status, $ids = [])
{
foreach ($ids as $id) {
if ($page = $this->pages->find($id) and $page->getStatus() != $status) {
$page->setStatus($status);
$this->pages->save($page);
}
}
if ($status == Page::STATUS_PUBLISHED) {
$message = _c('{0} No page published.|{1} Page published.|]1,Inf[ Pages published.', count($ids));
} else {
$message = _c('{0} No page unpublished.|{1} Page unpublished.|]1,Inf[ Pages unpublished.', count($ids));
}
return compact('message');
}
/**
* @Request({"status": "int", "menu": "int", "id": "int[]"}, csrf=true)
*/
public function statusAction($status, $menuId, $ids = [])
{
try {
if (!($menu = $this->menus->find($menuId))) {
throw new Exception(__('Invalid menu.'));
}
foreach ($ids as $id) {
if ($item = $this->items->find($id) and $item->getStatus() != $status) {
$this->items->save($item, compact('status'));
}
}
if ($status == Item::STATUS_ENABLED) {
$message = _c('{0} No menu item enabled.|{1} Menu item enabled.|]1,Inf[ Menu items enabled.', count($ids));
} else {
$message = _c('{0} No menu item disabled.|{1} Menu item disabled.|]1,Inf[ Menu items disabled.', count($ids));
}
$this['message']->success($message);
} catch (Exception $e) {
$this['message']->error($e->getMessage());
}
return $this->redirect('@system/menu', ['id' => $menuId]);
}
/**
* @Route("/feed")
* @Route("/feed/{type}")
*/
public function feedAction($type = '')
{
$feed = $this->getFeed($type);
$feed->setTitle($this['option']->get('system:app.site_title'));
$feed->setLink($this['url']->route('@blog/site/index', [], true));
$feed->setDescription($this['option']->get('system:app.site_description'));
$feed->setChannelElement('language', $this['option']->get('system:app.locale'));
if ($last = $this->posts->query()->where(['status = ?', 'date < ?'], [Post::STATUS_PUBLISHED, new \DateTime()])->limit(1)->orderBy('modified', 'DESC')->first()) {
$feed->setDate($last->getModified()->format(DATE_RSS));
}
$feed->setSelfLink($this['url']->route('@blog/site/feed', [], true));
foreach ($this->posts->query()->where(['status = ?', 'date < ?'], [Post::STATUS_PUBLISHED, new \DateTime()])->related('user')->limit($this->extension->getParams('feed.limit'))->orderBy('date', 'DESC')->get() as $post) {
$item = $feed->createNewItem();
$item->setTitle($post->getTitle());
$item->setLink($this['url']->route('@blog/id', ['id' => $post->getId()], true));
$item->setDescription($this['content']->applyPlugins($post->getContent(), ['post' => $post, 'markdown' => $post->get('markdown'), 'readmore' => true]));
$item->setDate($post->getDate()->format(DATE_RSS));
$item->setAuthor($post->getUser()->getName(), $post->getUser()->getEmail());
$item->setId($this['url']->route('@blog/id', ['id' => $post->getId()], true), true);
$feed->addItem($item);
}
return $this['response']->create($feed->generateFeed(), Response::HTTP_OK, array('Content-Type' => $feed->getMIMEType()));
}
/**
* @Request({"user": "******"})
* @Response("json")
*/
public function registerAction($data)
{
$response = ['success' => false];
$errors = [];
try {
if ($this['user']->isAuthenticated() || $this['option']->get('system:user.registration', 'admin') == 'admin') {
return $this->redirect('/');
}
if (!$this['csrf']->validate($this['request']->request->get('_csrf'))) {
throw new Exception(__('Invalid token. Please try again.'));
}
$name = trim(@$data['name']);
$username = trim(@$data['username']);
$email = trim(@$data['email']);
$password = @$data['password'];
if (empty($name)) {
$errors[] = ['field' => 'name', 'message' => __('Name required.')];
}
if (empty($password)) {
$errors[] = ['field' => 'password', 'message' => __('Password required.')];
}
if (strlen($username) < 3 || !preg_match('/^[a-zA-Z0-9_\\-]+$/', $username)) {
$errors[] = ['field' => 'username', 'message' => __('Username is invalid.')];
}
if (!filter_var($email, FILTER_VALIDATE_EMAIL)) {
$errors[] = ['field' => 'email', 'message' => __('Email is invalid.')];
}
if ($this->users->query()->orWhere(['username = :username', 'email = :username'], ['username' => $username])->first()) {
$errors[] = ['field' => 'username', 'message' => __('Username not available.'), 'dynamic' => true];
}
if ($this->users->query()->orWhere(['username = :email', 'email = :email'], ['email' => $email])->first()) {
$errors[] = ['field' => 'email', 'message' => __('Email not available.'), 'dynamic' => true];
}
if (count($errors)) {
throw new Exception(__('Signup failed'));
}
$user = new User();
$user->setRegistered(new \DateTime());
$user->setName($name);
$user->setUsername($username);
$user->setEmail($email);
$user->setPassword($this['auth.password']->hash($password));
$user->setStatus(UserInterface::STATUS_BLOCKED);
$user->setRoles($this->roles->where(['id' => RoleInterface::ROLE_AUTHENTICATED])->get());
$token = $this['auth.random']->generateString(32);
$admin = $this['option']->get('system:user.registration') == 'approval';
if ($verify = $this['option']->get('system:user.require_verification')) {
$user->setActivation($token);
} elseif ($admin) {
$user->setActivation($token);
$user->set('verified', true);
} else {
$user->setStatus(UserInterface::STATUS_ACTIVE);
}
$this->users->save($user);
if ($verify) {
$this->sendVerificationMail($user);
$response['success'] = __('Your user account has been created. Complete your registration, by clicking the link provided in the mail that has been sent to you.');
} elseif ($admin) {
$this->sendApproveMail($user);
$response['success'] = __('Your user account has been created and is pending approval by the site administrator.');
} else {
$this->sendWelcomeEmail($user);
$response['success'] = __('Your user account has been created.');
}
if (!$response['success']) {
$response['success'] = true;
}
if (!$this['request']->isXmlHttpRequest()) {
$this['message']->success($response['success']);
return $this->redirect('@system/auth/login');
}
} catch (Exception $e) {
if (!$this['request']->isXmlHttpRequest()) {
foreach ($errors as $error) {
$this['message']->error($error['message']);
}
} else {
$response['errors'] = $errors;
}
}
return $this['request']->isXmlHttpRequest() ? $response : $this->redirect(count($errors) ? '@system/registration' : '@system/auth/login');
}