gosora/routes/panel/forums.go

package panel

import (
	"database/sql"
	"errors"
	"net/http"
	"strconv"
	"strings"

	c "github.com/Azareal/Gosora/common"
	p "github.com/Azareal/Gosora/common/phrases"
)

func Forums(w http.ResponseWriter, r *http.Request, user c.User) c.RouteError {
	basePage, ferr := buildBasePage(w, r, &user, "forums", "forums")
	if ferr != nil {
		return ferr
	}
	if !user.Perms.ManageForums {
		return c.NoPermissions(w, r, user)
	}
	basePage.Header.AddScript("Sortable-1.4.0/Sortable.min.js")
	basePage.Header.AddScriptAsync("panel_forums.js")

	// TODO: Paginate this?
	var forumList []interface{}
	forums, err := c.Forums.GetAll()
	if err != nil {
		return c.InternalError(err, w, r)
	}

	// ? - Should we generate something similar to the forumView? It might be a little overkill for a page which is rarely loaded in comparison to /forums/
	for _, f := range forums {
		if f.Name != "" && f.ParentID == 0 {
			fadmin := c.ForumAdmin{f.ID, f.Name, f.Desc, f.Active, f.Preset, f.TopicCount, c.PresetToLang(f.Preset)}
			if fadmin.Preset == "" {
				fadmin.Preset = "custom"
			}
			forumList = append(forumList, fadmin)
		}
	}

	if r.FormValue("created") == "1" {
		basePage.AddNotice("panel_forum_created")
	} else if r.FormValue("deleted") == "1" {
		basePage.AddNotice("panel_forum_deleted")
	} else if r.FormValue("updated") == "1" {
		basePage.AddNotice("panel_forum_updated")
	}

	pi := c.PanelPage{basePage, forumList, nil}
	return renderTemplate("panel", w, r, basePage.Header, c.Panel{basePage, "", "", "panel_forums", &pi})
}

func ForumsCreateSubmit(w http.ResponseWriter, r *http.Request, user c.User) c.RouteError {
	_, ferr := c.SimplePanelUserCheck(w, r, &user)
	if ferr != nil {
		return ferr
	}
	if !user.Perms.ManageForums {
		return c.NoPermissions(w, r, user)
	}

	fname := r.PostFormValue("name")
	fdesc := r.PostFormValue("desc")
	fpreset := c.StripInvalidPreset(r.PostFormValue("preset"))
	factive := r.PostFormValue("active")
	active := (factive == "on" || factive == "1")

	fid, err := c.Forums.Create(fname, fdesc, active, fpreset)
	if err != nil {
		return c.InternalError(err, w, r)
	}
	err = c.AdminLogs.Create("create", fid, "forum", user.LastIP, user.ID)
	if err != nil {
		return c.InternalError(err, w, r)
	}

	http.Redirect(w, r, "/panel/forums/?created=1", http.StatusSeeOther)
	return nil
}

// TODO: Revamp this
func ForumsDelete(w http.ResponseWriter, r *http.Request, user c.User, sfid string) c.RouteError {
	basePage, ferr := buildBasePage(w, r, &user, "delete_forum", "forums")
	if ferr != nil {
		return ferr
	}
	if !user.Perms.ManageForums {
		return c.NoPermissions(w, r, user)
	}

	fid, err := strconv.Atoi(sfid)
	if err != nil {
		return c.LocalError("The provided Forum ID is not a valid number.", w, r, user)
	}
	forum, err := c.Forums.Get(fid)
	if err == sql.ErrNoRows {
		return c.LocalError("The forum you're trying to delete doesn't exist.", w, r, user)
	} else if err != nil {
		return c.InternalError(err, w, r)
	}

	confirmMsg := p.GetTmplPhrasef("panel_forum_delete_are_you_sure", forum.Name)
	yousure := c.AreYouSure{"/panel/forums/delete/submit/" + strconv.Itoa(fid), confirmMsg}

	pi := c.PanelPage{basePage, tList, yousure}
	if c.RunPreRenderHook("pre_render_panel_delete_forum", w, r, &user, &pi) {
		return nil
	}
	return renderTemplate("panel_are_you_sure", w, r, basePage.Header, &pi)
}

func ForumsDeleteSubmit(w http.ResponseWriter, r *http.Request, user c.User, sfid string) c.RouteError {
	_, ferr := c.SimplePanelUserCheck(w, r, &user)
	if ferr != nil {
		return ferr
	}
	if !user.Perms.ManageForums {
		return c.NoPermissions(w, r, user)
	}

	fid, err := strconv.Atoi(sfid)
	if err != nil {
		return c.LocalError("The provided Forum ID is not a valid number.", w, r, user)
	}
	err = c.Forums.Delete(fid)
	if err == sql.ErrNoRows {
		return c.LocalError("The forum you're trying to delete doesn't exist.", w, r, user)
	} else if err != nil {
		return c.InternalError(err, w, r)
	}
	err = c.AdminLogs.Create("delete", fid, "forum", user.LastIP, user.ID)
	if err != nil {
		return c.InternalError(err, w, r)
	}

	http.Redirect(w, r, "/panel/forums/?deleted=1", http.StatusSeeOther)
	return nil
}

func ForumsOrderSubmit(w http.ResponseWriter, r *http.Request, user c.User) c.RouteError {
	_, ferr := c.SimplePanelUserCheck(w, r, &user)
	if ferr != nil {
		return ferr
	}
	js := r.PostFormValue("js") == "1"
	if !user.Perms.ManageForums {
		return c.NoPermissionsJSQ(w, r, user, js)
	}
	sitems := strings.TrimSuffix(strings.TrimPrefix(r.PostFormValue("items"), "{"), "}")
	//fmt.Printf("sitems: %+v\n", sitems)

	updateMap := make(map[int]int)
	for index, sfid := range strings.Split(sitems, ",") {
		fid, err := strconv.Atoi(sfid)
		if err != nil {
			return c.LocalErrorJSQ("Invalid integer in forum list", w, r, user, js)
		}
		updateMap[fid] = index
	}
	c.Forums.UpdateOrder(updateMap)

	err := c.AdminLogs.Create("reorder", 0, "forum", user.LastIP, user.ID)
	if err != nil {
		return c.InternalErrorJSQ(err, w, r, js)
	}

	return successRedirect("/panel/forums/", w, r, js)
}

func ForumsEdit(w http.ResponseWriter, r *http.Request, user c.User, sfid string) c.RouteError {
	basePage, ferr := buildBasePage(w, r, &user, "edit_forum", "forums")
	if ferr != nil {
		return ferr
	}
	if !user.Perms.ManageForums {
		return c.NoPermissions(w, r, user)
	}

	fid, err := strconv.Atoi(sfid)
	if err != nil {
		return c.SimpleError(p.GetErrorPhrase("url_id_must_be_integer"), w, r, basePage.Header)
	}
	basePage.Header.AddScriptAsync("panel_forum_edit.js")

	forum, err := c.Forums.Get(fid)
	if err == sql.ErrNoRows {
		return c.LocalError("The forum you're trying to edit doesn't exist.", w, r, user)
	} else if err != nil {
		return c.InternalError(err, w, r)
	}
	if forum.Preset == "" {
		forum.Preset = "custom"
	}

	glist, err := c.Groups.GetAll()
	if err != nil {
		return c.InternalError(err, w, r)
	}

	var gplist []c.GroupForumPermPreset
	for gid, group := range glist {
		if gid == 0 {
			continue
		}
		forumPerms, err := c.FPStore.Get(fid, group.ID)
		if err == sql.ErrNoRows {
			forumPerms = c.BlankForumPerms()
		} else if err != nil {
			return c.InternalError(err, w, r)
		}
		preset := c.ForumPermsToGroupForumPreset(forumPerms)
		gplist = append(gplist, c.GroupForumPermPreset{group, preset, preset == "default"})
	}

	if r.FormValue("updated") == "1" {
		basePage.AddNotice("panel_forum_updated")
	}

	pi := c.PanelEditForumPage{basePage, forum.ID, forum.Name, forum.Desc, forum.Active, forum.Preset, gplist}
	return renderTemplate("panel", w, r, basePage.Header, c.Panel{basePage, "", "", "panel_forum_edit", &pi})
}

func ForumsEditSubmit(w http.ResponseWriter, r *http.Request, user c.User, sfid string) c.RouteError {
	_, ferr := c.SimplePanelUserCheck(w, r, &user)
	if ferr != nil {
		return ferr
	}
	if !user.Perms.ManageForums {
		return c.NoPermissions(w, r, user)
	}
	js := r.PostFormValue("js") == "1"

	fid, err := strconv.Atoi(sfid)
	if err != nil {
		return c.LocalErrorJSQ("The provided Forum ID is not a valid number.", w, r, user, js)
	}
	forum, err := c.Forums.Get(fid)
	if err == sql.ErrNoRows {
		return c.LocalErrorJSQ("The forum you're trying to edit doesn't exist.", w, r, user, js)
	} else if err != nil {
		return c.InternalErrorJSQ(err, w, r, js)
	}

	fname := r.PostFormValue("forum_name")
	fdesc := r.PostFormValue("forum_desc")
	fpreset := c.StripInvalidPreset(r.PostFormValue("forum_preset"))
	factive := r.PostFormValue("forum_active")

	active := false
	if factive == "" {
		active = forum.Active
	} else if factive == "1" || factive == "Show" {
		active = true
	}

	err = forum.Update(fname, fdesc, active, fpreset)
	if err != nil {
		return c.InternalErrorJSQ(err, w, r, js)
	}
	err = c.AdminLogs.Create("edit", fid, "forum", user.LastIP, user.ID)
	if err != nil {
		return c.InternalError(err, w, r)
	}

	// ? Should we redirect to the forum editor instead?
	return successRedirect("/panel/forums/", w, r, js)
}

func ForumsEditPermsSubmit(w http.ResponseWriter, r *http.Request, user c.User, sfid string) c.RouteError {
	_, ferr := c.SimplePanelUserCheck(w, r, &user)
	if ferr != nil {
		return ferr
	}
	if !user.Perms.ManageForums {
		return c.NoPermissions(w, r, user)
	}
	js := r.PostFormValue("js") == "1"

	fid, err := strconv.Atoi(sfid)
	if err != nil {
		return c.LocalErrorJSQ("The provided Forum ID is not a valid number.", w, r, user, js)
	}

	gid, err := strconv.Atoi(r.PostFormValue("gid"))
	if err != nil {
		return c.LocalErrorJSQ("Invalid Group ID", w, r, user, js)
	}

	forum, err := c.Forums.Get(fid)
	if err == sql.ErrNoRows {
		return c.LocalErrorJSQ("This forum doesn't exist", w, r, user, js)
	} else if err != nil {
		return c.InternalErrorJSQ(err, w, r, js)
	}

	permPreset := c.StripInvalidGroupForumPreset(r.PostFormValue("perm_preset"))
	err = forum.SetPreset(permPreset, gid)
	if err != nil {
		return c.LocalErrorJSQ(err.Error(), w, r, user, js)
	}
	err = c.AdminLogs.Create("edit", fid, "forum", user.LastIP, user.ID)
	if err != nil {
		return c.InternalError(err, w, r)
	}

	return successRedirect("/panel/forums/edit/"+strconv.Itoa(fid)+"?updated=1", w, r, js)
}

// A helper function for the Advanced portion of the Forum Perms Editor
func forumPermsExtractDash(paramList string) (fid int, gid int, err error) {
	params := strings.Split(paramList, "-")
	if len(params) != 2 {
		return fid, gid, errors.New("Parameter count mismatch")
	}

	fid, err = strconv.Atoi(params[0])
	if err != nil {
		return fid, gid, errors.New("The provided Forum ID is not a valid number.")
	}

	gid, err = strconv.Atoi(params[1])
	if err != nil {
		err = errors.New("The provided Group ID is not a valid number.")
	}

	return fid, gid, err
}

func ForumsEditPermsAdvance(w http.ResponseWriter, r *http.Request, user c.User, paramList string) c.RouteError {
	basePage, ferr := buildBasePage(w, r, &user, "edit_forum", "forums")
	if ferr != nil {
		return ferr
	}
	if !user.Perms.ManageForums {
		return c.NoPermissions(w, r, user)
	}

	fid, gid, err := forumPermsExtractDash(paramList)
	if err != nil {
		return c.LocalError(err.Error(), w, r, user)
	}

	forum, err := c.Forums.Get(fid)
	if err == sql.ErrNoRows {
		return c.LocalError("The forum you're trying to edit doesn't exist.", w, r, user)
	} else if err != nil {
		return c.InternalError(err, w, r)
	}

	if forum.Preset == "" {
		forum.Preset = "custom"
	}

	fp, err := c.FPStore.Get(fid, gid)
	if err == sql.ErrNoRows {
		fp = c.BlankForumPerms()
	} else if err != nil {
		return c.InternalError(err, w, r)
	}

	var formattedPermList []c.NameLangToggle
	// TODO: Load the phrases in bulk for efficiency?
	// TODO: Reduce the amount of code duplication between this and the group editor. Also, can we grind this down into one line or use a code generator to stay current more easily?
	addToggle := func(permStr string, perm bool) {
		formattedPermList = append(formattedPermList, c.NameLangToggle{permStr, p.GetPermPhrase(permStr), perm})
	}
	addToggle("ViewTopic", fp.ViewTopic)
	addToggle("LikeItem", fp.LikeItem)
	addToggle("CreateTopic", fp.CreateTopic)
	//<--
	addToggle("EditTopic", fp.EditTopic)
	addToggle("DeleteTopic", fp.DeleteTopic)
	addToggle("CreateReply", fp.CreateReply)
	addToggle("EditReply", fp.EditReply)
	addToggle("DeleteReply", fp.DeleteReply)
	addToggle("PinTopic", fp.PinTopic)
	addToggle("CloseTopic", fp.CloseTopic)
	addToggle("MoveTopic", fp.MoveTopic)

	if r.FormValue("updated") == "1" {
		basePage.AddNotice("panel_forum_perms_updated")
	}

	pi := c.PanelEditForumGroupPage{basePage, forum.ID, gid, forum.Name, forum.Desc, forum.Active, forum.Preset, formattedPermList}
	return renderTemplate("panel", w, r, basePage.Header, c.Panel{basePage, "", "", "panel_forum_edit_perms", &pi})
}

func ForumsEditPermsAdvanceSubmit(w http.ResponseWriter, r *http.Request, user c.User, paramList string) c.RouteError {
	_, ferr := c.SimplePanelUserCheck(w, r, &user)
	if ferr != nil {
		return ferr
	}
	if !user.Perms.ManageForums {
		return c.NoPermissions(w, r, user)
	}
	js := r.PostFormValue("js") == "1"

	fid, gid, err := forumPermsExtractDash(paramList)
	if err != nil {
		return c.LocalError(err.Error(), w, r, user)
	}

	forum, err := c.Forums.Get(fid)
	if err == sql.ErrNoRows {
		return c.LocalError("The forum you're trying to edit doesn't exist.", w, r, user)
	} else if err != nil {
		return c.InternalError(err, w, r)
	}

	fp, err := c.FPStore.GetCopy(fid, gid)
	if err == sql.ErrNoRows {
		fp = *c.BlankForumPerms()
	} else if err != nil {
		return c.InternalError(err, w, r)
	}

	extractPerm := func(name string) bool {
		pvalue := r.PostFormValue("forum-perm-" + name)
		return (pvalue == "1")
	}

	// TODO: Generate this code?
	fp.ViewTopic = extractPerm("ViewTopic")
	fp.LikeItem = extractPerm("LikeItem")
	fp.CreateTopic = extractPerm("CreateTopic")
	fp.EditTopic = extractPerm("EditTopic")
	fp.DeleteTopic = extractPerm("DeleteTopic")
	fp.CreateReply = extractPerm("CreateReply")
	fp.EditReply = extractPerm("EditReply")
	fp.DeleteReply = extractPerm("DeleteReply")
	fp.PinTopic = extractPerm("PinTopic")
	fp.CloseTopic = extractPerm("CloseTopic")
	fp.MoveTopic = extractPerm("MoveTopic")

	err = forum.SetPerms(&fp, "custom", gid)
	if err != nil {
		return c.LocalErrorJSQ(err.Error(), w, r, user, js)
	}
	err = c.AdminLogs.Create("edit", fid, "forum", user.LastIP, user.ID)
	if err != nil {
		return c.InternalError(err, w, r)
	}

	return successRedirect("/panel/forums/edit/perms/"+strconv.Itoa(fid)+"-"+strconv.Itoa(gid)+"?updated=1", w, r, js)
}