WebSVN – LeadersLinked - Antes de SPA – Diff – /module/LeadersLinked/src/Controller/HomeController.php

+    }
+    public function postAction()
+    {
+        $request = $this->getRequest();
+        if ($request->isGet()) {
+            $currentUserPlugin = $this->plugin('currentUserPlugin');
+            $currentUser = $currentUserPlugin->getUser();
-    public function postAction()
-    {
-        $id = $this->params()->fromRoute('id');
+            $id = $this->params()->fromRoute('id');
-        $postMapper = PostMapper::getInstance($this->adapter);
+            $postMapper = PostMapper::getInstance($this->adapter);
-        $post = $postMapper->fetchOneByUuid($id);
+            $post = $postMapper->fetchOneByUuid($id);
-        if (!$post || $post->status != Post::STATUS_ACTIVE) {
+            if (!$post || $post->status != Post::STATUS_ACTIVE) {
-            $flashMessenger = $this->plugin('FlashMessenger');
+                $flashMessenger = $this->plugin('FlashMessenger');
-            if (!$id) {
+                if (!$id) {
+                    $flashMessenger->addErrorMessage('ERROR_POST_NOT_AVAILABLE');
-                $flashMessenger->addErrorMessage('ERROR_POST_NOT_AVAILABLE');
+                    return $this->redirect()->toRoute('dashboard');
+                }
+            }
+            $timestamp = time();
+            list($usec, $sec) = explode(' ', microtime());
-                return $this->redirect()->toRoute('dashboard');
+            $seed = intval($sec + ((float) $usec * 100000));
+            mt_srand($seed, MT_RAND_MT19937);
-            }
+            $rand =  mt_rand();
-        }
-        $this->layout()->setTemplate('layout/layout.phtml');
-        $viewModel = new ViewModel();
+            $password  = password_hash('user-' . $currentUser->uuid . '-post-' . $post->uuid . '-timestamp-' . $timestamp . '-rand-' . $rand . '-share-key-' . $currentUser->share_key) ;
-        $viewModel->setTemplate('leaders-linked/home/post.phtml');
-        $viewModel->setVariables([
-            'post' => $post,
-            'id' => $post->id,
-            'uuid' => $post->uuid,
-            'title' => $post->title,
+            $query = [
-            'description' => $post->description,
+                'user' => $currentUser->uuid,
-            'url' => $post->url,
+                'timestamp' => $timestamp,
-            'date' => $post->date,
+                'rand' => $rand,
-            'status' => $post->status,
-            'image' => $post->image,
+                'password' => $password,
+            ];
+            $share_url = $this->url()->fromRoute('share',  ['type' => 'post', 'code' => $post->uuid], ['force_canonical' => true, 'query' => $query ]);
+            $this->layout()->setTemplate('layout/layout.phtml');
+            $viewModel = new ViewModel();
+            $viewModel->setTemplate('leaders-linked/home/post.phtml');
+            $viewModel->setVariables([
+                'post' => $post,
+                'id' => $post->id,
+                'uuid' => $post->uuid,
+                'title' => $post->title,
+                'description' => $post->description,
+                'url' => $post->url,
+                'date' => $post->date,
+                'status' => $post->status,
+                'image' => $post->image,
-            'file' => $post->file,
+                'file' => $post->file,
-            'added_on' => $post->added_on,
+                'added_on' => $post->added_on,
+                'share_external_url' => $share_url,
+            ]);
+            return $viewModel;
+        } else {
+            $response = [
+                'success' => false,
+                'data' => 'ERROR_METHOD_NOT_ALLOWED'
-            'share_external_url' => $this->url()->fromRoute('share',  ['type' => 'post', 'code' => $post->uuid]),
+            ];
-        ]);
+            return new JsonModel($response);
         return $viewModel;
+    }
     public function shareAction()
     {
         $request = $this->getRequest();
         if ($request->isGet()) {
+            $currentUserPlugin = $this->plugin('currentUserPlugin');
+            $currentUser = $currentUserPlugin->getUser();
+            $code       = $this->params()->fromRoute('code');
+            $type       = $this->params()->fromRoute('type');
+            $user       = $this->params()->fromQuery('user');
+            $timestamp  = intval($this->params()->fromQuery('timestamp'), 10);
+            $rand       = intval($this->params()->fromQuery('rand'), 10);
+            $password   = $this->params()->fromQuery('password');
+            $checkpassword = '';
+            $userCheck = '';
+            if($user && $timestamp > 0 && $rand > 0 && $password) {
+                $userMapper = UserMapper::getInstance($this->adapter);
-            $currentUserPlugin = $this->plugin('currentUserPlugin');
+                $userCheck = $userMapper->fetchOneByUuid($user);
-            $currentUser = $currentUserPlugin->getUser();
+                if($userCheck) {
                     $checkpassword  = password_hash('user-' . $userCheck->uuid . '-'.$type.'-' . $code . '-timestamp-' . $timestamp . '-rand-' . $rand . '-share-key-' . $userCheck->share_key) ;
             $code = $this->params()->fromRoute('code');
             $type = $this->params()->fromRoute('type');
-            $user = $this->params()->fromQuery('user');
+            if(empty($password) || $password != $checkpassword) {
-            if(!$user) {
+                $data = [
+                    'success' => false,
+                    'data' => 'ERROR_UNAUTHORIZED'
+                ];
+                return new JsonModel($data);
+            }
                 $response = [
                     'success' => false,
             $share_url          = $base_share . $_SERVER['REQUEST_URI'];
             $share_image        = $base_share . '/images/ll-logo.png';
             $share_title        = '';
-            $share_description  = '';
-            /*
-            [fullpath]
-            chat=data/storage/chat/
-            group=data/storage/group/
-            user=data/storage/user/
-            image=data/storage/image/
-            job=data/storage/job/
-            company=data/storage/company/
-            feed=data/storage/feed/
-            post=data/storage/post/
-            /storage/type/feed/code/ef1038de-4f26-4253-a886-e125784ab604/filename/th-2400499377.png/
+            $share_description  = '';
-            *
             */
             if($type == 'feed' && $code ) {
+            if($currentUserPlugin->hasIdentity()) {
+                $currentUser = $currentUserPlugin->getUser();
+                if($userCheck && $userCheck->status == User::STATUS_ACTIVE && $userCheck->id != $currentUser->id ) {
+                    $connectionMapper = ConnectionMapper::getInstance($this->adapter);
+                    $connection = $connectionMapper->fetchOneByUserId1AndUserId2($currentUser->id, $userCheck->id);
+                    if($connection) {
+                        if($connection->status != Connection::STATUS_ACCEPTED) {
+                            $connectionMapper->approve($connection);
+                        }
+                    } else {
+                        $connection = new Connection();
+                        $connection->request_from = $currentUser->id;
+                        $connection->request_to = $userCheck->id;
+                        $connection->status = Connection::STATUS_ACCEPTED;
+                        $connectionMapper->insert($connection);
+                    }
+                }
                 $this->layout()->setTemplate('layout/layout.phtml');
-            if($currentUserPlugin->hasIdentity()) {
+            } else {
-                $this->layout()->setTemplate('layout/layout.phtml');
+                $this->cache->addItem('user_share_invitation', $user);
             } else {
                 $this->layout()->setTemplate('layout/share.phtml');
+        }
-    }
-    public function shareCallbackAction()
-    {
-        $request = $this->getRequest();
-        if ($request->isGet()) {
-            $currentUserPlugin = $this->plugin('currentUserPlugin');
-            $code = $this->params()->fromRoute('code');
-            $type = $this->params()->fromRoute('type');
-            $url_redirect = '';
-            $user_redirect = '';
-            if($type == 'feed' && $code ) {
-                $feedMapper =  FeedMapper::getInstance($this->adapter);
-                $feed = $feedMapper->fetchOneByUuid($code);
-                if($feed && $feed->status == Feed::STATUS_PUBLISHED) {
-                    $url_redirect = $this->url()->fromRoute('dashboard', ['feed' => $feed->uuid]);
-                }
-            } else if ($type == 'post' && $code) {
-                $postMapper = PostMapper::getInstance($this->adapter);
-                $post = $postMapper->fetchOneByUuid($code);
-                if($post && $post->status == Post::STATUS_ACTIVE) {
-                    $url_redirect = $this->url()->fromRoute('post', ['id' => $post->uuid]);
-                }
-            }
-            if($user) {
-                $userMapper = UserMapper::getInstance($this->adapter);
-                $user = $userMapper->fetchOneByUuid($user);
-                if($user && $user->status == User::STATUS_ACTIVE && $currentUserPlugin->hasIdentity()) {
-                    $currentUser = $currentUserPlugin->getUser();
-                    if($user->id != $currentUser->id) {
-                        $connectionMapper = ConnectionMapper::getInstance($this->adapter);
-                        $connection = $connectionMapper->fetchOneByUserId1AndUserId2($currentUser->id, $user->id);
-                        if($connection) {
-                            if($connection->status != Connection::STATUS_ACCEPTED) {
-                                $connectionMapper->approve($connection);
-                            }
-                        } else {
-                            $connection = new Connection();
-                            $connection->request_from = $currentUser->id;
-                            $connection->request_to = $user->id;
-                            $connection->status = Connection::STATUS_ACCEPTED;
-                            $connectionMapper->insert($connection);
-                        }
-                    }
-                }
-            }
-            if ($currentUserPlugin->hasIdentity()) {
-                if($url_redirect) {
-                    return $this->redirect()->toUrl($url_redirect);
-                } else {
-                    return $this->redirect()->toRoute('dashboard');
-                }
-            } else {
-                $this->cache->addItem('url_redirect', $url_redirect);
-                $this->cache->addItem('user_redirect', $user_redirect);
-                return $this->redirect()->toRoute('signin');
-            }
-        } else {
-            $response = [
-                'success' => false,
-                'data' => 'ERROR_METHOD_NOT_ALLOWED'
-            ];
-        }
+    }

Proyectos de Subversion LeadersLinked - Antes de SPA

(root)/module/LeadersLinked/src/Controller/HomeController.php – Rev 3357 → 3364