/*
* Copyright (C) 2008-2017, Juick
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as
* published by the Free Software Foundation, either version 3 of the
* License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see .
*/
package com.juick.server.api;
import com.juick.Message;
import com.juick.Reaction;
import com.juick.Status;
import com.juick.User;
import com.juick.server.CommandsManager;
import com.juick.model.CommandResult;
import com.juick.server.util.*;
import com.juick.service.MessagesService;
import com.juick.service.SubscriptionService;
import com.juick.service.UserService;
import org.apache.commons.lang3.StringUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.http.HttpStatus;
import org.springframework.http.MediaType;
import org.springframework.web.bind.annotation.*;
import org.springframework.web.multipart.MultipartFile;
import javax.inject.Inject;
import javax.validation.constraints.NotNull;
import java.net.URI;
import java.net.URL;
import java.util.List;
/**
* Created by vt on 24/11/2016.
*/
@RestController
public class Post {
private static Logger logger = LoggerFactory.getLogger(Post.class);
@Inject
private UserService userService;
@Inject
private MessagesService messagesService;
@Inject
private SubscriptionService subscriptionService;
@Value("${upload_tmp_dir:#{systemEnvironment['TEMP'] ?: '/tmp'}}")
private String tmpDir;
@Value("${img_path:#{systemEnvironment['TEMP'] ?: '/tmp'}}")
private String imgDir;
@Inject
CommandsManager commandsManager;
@RequestMapping(value = "/api/post", method = RequestMethod.POST, produces = MediaType.APPLICATION_JSON_UTF8_VALUE)
@ResponseStatus(value = HttpStatus.OK)
public CommandResult doPostMessage(
@RequestParam(required = false, defaultValue = StringUtils.EMPTY) String body,
@RequestParam(required = false) String img,
@RequestParam(required = false) MultipartFile attach) throws Exception {
User visitor = UserUtils.getCurrentUser();
if (visitor.isAnonymous())
throw new HttpForbiddenException();
if (body.length() > 4096) {
throw new HttpBadRequestException();
}
body = body.replace("\r", StringUtils.EMPTY);
URI attachmentFName = HttpUtils.receiveMultiPartFile(attach, tmpDir);
if (StringUtils.isBlank(attachmentFName.toString()) && img != null && img.length() > 10) {
URI juickUri = URI.create(img);
if (juickUri.getScheme().equals("juick")) {
attachmentFName = juickUri;
} else {
try {
URL imgUrl = new URL(img);
attachmentFName = HttpUtils.downloadImage(imgUrl, tmpDir);
} catch (Exception e) {
logger.error("DOWNLOAD ERROR", e);
throw new HttpBadRequestException();
}
}
}
if (StringUtils.isBlank(body) && StringUtils.isBlank(attachmentFName.toString())) {
// Should be there for compatibility
throw new HttpBadRequestException();
}
return commandsManager.processCommand(visitor, body, attachmentFName);
}
@RequestMapping(value = "/api/comment", method = RequestMethod.POST, produces = MediaType.APPLICATION_JSON_UTF8_VALUE)
public CommandResult doPostComment(
@RequestParam(defaultValue = "0") int mid,
@RequestParam(defaultValue = "0") int rid,
@RequestParam(required = false, defaultValue = StringUtils.EMPTY) String body,
@RequestParam(required = false) String img,
@RequestParam(required = false) MultipartFile attach)
throws Exception {
User visitor = UserUtils.getCurrentUser();
int vuid = visitor.getUid();
if (vuid == 0) {
throw new HttpForbiddenException();
}
if (mid == 0) {
throw new HttpBadRequestException();
}
com.juick.Message msg = messagesService.getMessage(mid);
if (msg == null) {
throw new HttpNotFoundException();
}
com.juick.Message reply = null;
if (rid > 0) {
reply = messagesService.getReply(mid, rid);
if (reply == null) {
throw new HttpNotFoundException();
}
}
if (body.length() > 4096) {
throw new HttpBadRequestException();
}
body = body.replace("\r", StringUtils.EMPTY);
if ((msg.ReadOnly && msg.getUser().getUid() != vuid) || userService.isInBLAny(msg.getUser().getUid(), vuid)
|| (reply != null && userService.isInBLAny(reply.getUser().getUid(), vuid))) {
throw new HttpForbiddenException();
}
URI attachmentFName = HttpUtils.receiveMultiPartFile(attach, tmpDir);
if (StringUtils.isBlank(attachmentFName.toString()) && img != null && img.length() > 10) {
try {
attachmentFName = HttpUtils.downloadImage(new URL(img), tmpDir);
} catch (Exception e) {
logger.error("DOWNLOAD ERROR", e);
throw new HttpBadRequestException();
}
}
if (StringUtils.isBlank(body) && StringUtils.isBlank(attachmentFName.toString())) {
// Should be there for compatibility
throw new HttpBadRequestException();
}
return commandsManager.processCommand(visitor, String.format("#%d/%d %s", mid, rid, body),
attachmentFName);
}
@PostMapping("/api/like")
@ResponseStatus(value = HttpStatus.OK)
public Status doPostRecomm(@RequestParam Integer mid) throws Exception {
com.juick.User visitor = UserUtils.getCurrentUser();
if (visitor.isAnonymous()) {
throw new HttpForbiddenException();
}
com.juick.Message msg = messagesService.getMessage(mid);
if (msg == null) {
throw new HttpNotFoundException();
}
if (msg.getUser().getUid() == visitor.getUid()) {
throw new HttpForbiddenException();
}
CommandResult status = commandsManager.processCommand(visitor, String.format("! #%d", mid),
URI.create(StringUtils.EMPTY));
return Status.getStatus(status.getText());
}
@PostMapping("/api/subscribe")
@ResponseStatus(value = HttpStatus.OK)
public Status doPostSubscribe(@RequestParam Integer mid) throws Exception {
com.juick.User visitor = UserUtils.getCurrentUser();
if (visitor.isAnonymous()) {
throw new HttpForbiddenException();
}
com.juick.Message msg = messagesService.getMessage(mid);
if (msg == null) {
throw new HttpNotFoundException();
}
if (msg.getUser().getUid() == visitor.getUid()) {
throw new HttpForbiddenException();
}
CommandResult status = commandsManager.processCommand(visitor, String.format("S #%d", mid),
URI.create(StringUtils.EMPTY));
return Status.getStatus(status.getText());
}
@GetMapping("/api/reactions")
@ResponseStatus(value = HttpStatus.OK)
public List reactionsList() {
return messagesService.listReactions();
}
@PostMapping("/api/react")
@ResponseStatus(value = HttpStatus.OK)
public Status doPostReact(@RequestParam Integer mid,@RequestParam @NotNull int reactionId,
@RequestParam (required = false, defaultValue = "1") int count) {
logger.info("got reaction with type: {}", reactionId);
com.juick.User visitor = UserUtils.getCurrentUser();
if (visitor.isAnonymous()) {
throw new HttpForbiddenException();
}
com.juick.Message msg = messagesService.getMessage(mid);
if (msg == null) {
throw new HttpNotFoundException();
}
if (msg.getUser().getUid() == visitor.getUid()) {
throw new HttpForbiddenException();
}
MessagesService.RecommendStatus recommendStatus = MessagesService.RecommendStatus.Error;
for (int i = 0; i < count; i++)
recommendStatus = messagesService.likeMessage(mid, visitor.getUid(),
reactionId);
return recommendStatus == MessagesService.RecommendStatus.Error ? Status.ERROR :Status.OK;
}
@PostMapping("/api/update")
public CommandResult updateMessage(@RequestParam Integer mid,
@RequestParam(required = false, defaultValue = "0") Integer rid,
@RequestParam String body) {
User visitor = UserUtils.getCurrentUser();
User author = rid == 0 ? messagesService.getMessageAuthor(mid) : messagesService.getReply(mid, rid).getUser();
if (visitor.equals(author)) {
if (messagesService.updateMessage(mid, rid, body)) {
Message result = rid == 0 ? messagesService.getMessage(mid) : messagesService.getReply(mid, rid);
return CommandResult.build(result, "Message updated", StringUtils.EMPTY);
}
throw new HttpBadRequestException();
}
throw new HttpForbiddenException();
}
}