render_result_xml($resultXML); } else { buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } exit; } if (BuckysFriend::isSentFriendRequest($userID, $friendID)) { if ($isAjax) { $resultXML = ['status' => 'error', 'message' => MSG_FRIEND_REQUEST_ALREADY_SENT]; render_result_xml($resultXML); } else { buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR); } exit; } if (BuckysFriend::isSentFriendRequest($friendID, $userID)) { if ($isAjax) { $resultXML = ['status' => 'error', 'message' => MSG_FRIEND_REQUEST_ALREADY_RECEIVED]; render_result_xml($resultXML); } else { buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_RECEIVED, MSG_TYPE_ERROR); } exit; } if (!BuckysUsersDailyActivity::checkUserDailyLimit($userID, "friendRequests")) { if ($isAjax) { $resultXML = ['status' => 'error', 'message' => sprintf(MSG_DAILY_FRIEND_REQUESTS_LIMIT_EXCEED_ERROR, USER_DAILY_LIMIT_FRIEND_REQUESTS)]; render_result_xml($resultXML); } else { buckys_redirect($return, sprintf(MSG_DAILY_FRIEND_REQUESTS_LIMIT_EXCEED_ERROR, USER_DAILY_LIMIT_FRIEND_REQUESTS), MSG_TYPE_ERROR); }
} else { //Check Friend Request if ($fid = BuckysFriend::isSentFriendRequest($userID, $profileID)) { ?> <a href="/myfriends.php?action=delete&friendID=<?php echo $profileID; echo buckys_get_token_param(); ?> &return=<?php echo base64_encode("/profile.php?user="******">Delete Friend Request</a> <br/> <?php } else { if ($fid = BuckysFriend::isSentFriendRequest($profileID, $userID)) { ?> <a href="/myfriends.php?action=accept&friendID=<?php echo $profileID; echo buckys_get_token_param(); ?> &return=<?php echo base64_encode("/profile.php?user="******">Approve Friend Request</a> <br/> <a href="/myfriends.php?action=decline&friendID=<?php echo $profileID; echo buckys_get_token_param(); ?> &return=<?php
//Check Friend Request if ($fid = BuckysFriend::isSentFriendRequest($userID, $row['userID'])) { ?> <a href="/myfriends.php?action=delete&friendID=<?php echo $row['userID']; echo buckys_get_token_param(); ?> &return=<?php echo base64_encode("/profile.php?user="******" data-type="buckys-ajax-link">Delete Friend Request</a> <br/> <?php } else { if ($fid = BuckysFriend::isSentFriendRequest($row['userID'], $userID)) { ?> <a href="/myfriends.php?action=accept&friendID=<?php echo $row['userID']; echo buckys_get_token_param(); ?> &return=<?php echo base64_encode("/profile.php?user="******" data-type="buckys-ajax-link">Approve Friend Request</a> <br/> <a href="/myfriends.php?action=decline&friendID=<?php echo $row['userID']; echo buckys_get_token_param(); ?>
//If the parameter is null, goto homepage if (!$profileID) { buckys_redirect('/index.php'); } //Getting UserData from Id $userData = BuckysUser::getUserData($profileID); //Goto Homepage if the userID is not correct if (!buckys_not_null($userData) || !BuckysUser::checkUserID($profileID, true)) { buckys_redirect('/index.php'); } $postType = isset($_GET['type']) ? $_GET['type'] : 'all'; if (!in_array($postType, ['all', 'user', 'friends'])) { $postType = 'all'; } //if logged user can see all resources of the current user $canViewPrivate = $userID == $profileID || BuckysFriend::isFriend($userID, $profileID) || BuckysFriend::isSentFriendRequest($profileID, $userID); $posts = BuckysPost::getPostsByUserID($profileID, $userID, BuckysPost::INDEPENDENT_POST_PAGE_ID, $canViewPrivate, $postID, null, $postType); /*if( !buckys_not_null($posts) ) { //Goto Index Page buckys_redirect('/index.php', MSG_INVALID_REQUEST, MSG_TYPE_ERROR); }*/ //Mark the notifications to read if ($postID) { BuckysActivity::markReadNotifications($userID, $postID); } buckys_enqueue_stylesheet('profile.css'); buckys_enqueue_stylesheet('posting.css'); buckys_enqueue_stylesheet('uploadify.css'); buckys_enqueue_stylesheet('jquery.Jcrop.css'); buckys_enqueue_stylesheet('publisher.css');
} } else { if ($_REQUEST['action'] == 'request') { if (!isset($_REQUEST['friendID']) || !isset($_REQUEST['friendIDHash']) || !buckys_check_id_encrypted($_REQUEST['friendID'], $_REQUEST['friendIDHash'])) { buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } if (!BuckysUser::checkUserID($_REQUEST['friendID'])) { buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } if (BuckysFriend::isFriend($userID, $_REQUEST['friendID'])) { buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } if (BuckysFriend::isSentFriendRequest($userID, $_REQUEST['friendID'])) { buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR); } if (BuckysFriend::isSentFriendRequest($_REQUEST['friendID'], $userID)) { buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR); } if (BuckysFriend::sendFriendRequest($userID, $_REQUEST['friendID'])) { buckys_redirect($return, MSG_FRIEND_REQUEST_SENT); } else { buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR); } } } } } } exit; } //Getting UserData from Id
public function addFriendAction() { $data = $_POST; $token = isset($data['TOKEN']) ? trim($data['TOKEN']) : null; $friendID = isset($data['friendID']) ? $data['friendID'] : null; if (!$token) { return ['STATUS_CODE' => STATUS_CODE_BAD_REQUEST, 'DATA' => buckys_api_get_error_result('Api token should not be blank')]; } if (!($userID = BuckysUsersToken::checkTokenValidity($token, "api"))) { return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result('Api token is not valid.')]; } if (!isset($friendID) || !BuckysUser::checkUserID($friendID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_INVALID_REQUEST)]; } if (BuckysFriend::isFriend($userID, $friendID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_INVALID_REQUEST)]; } if (BuckysFriend::isSentFriendRequest($userID, $friendID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_FRIEND_REQUEST_ALREADY_SENT)]; } if (BuckysFriend::isSentFriendRequest($friendID, $userID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_FRIEND_REQUEST_ALREADY_RECEIVED)]; } if (BuckysFriend::sendFriendRequest($userID, $friendID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => ["STATUS" => "SUCCESS", "MESSAGE" => MSG_FRIEND_REQUEST_SENT]]; } else { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result($db->getLastError())]; } }