2022-08-12 06:03:06 +00:00
|
|
|
package photo
|
|
|
|
|
|
|
|
import (
|
|
|
|
"bytes"
|
Change Logs
* Add a ChangeLog table to collect historic updates to various database tables.
* Created, Updated (with field diffs) and Deleted actions are logged, as well
as certification photo approves/denies.
* Specific items added to the change log:
* When a user photo is marked Explicit by an admin
* When users block/unblock each other
* When photo comments are posted, edited, and deleted
* When forums are created, edited, and deleted
* When forum comments are created, edited and deleted
* When a new forum thread is created
* When a user uploads or removes their own certification photo
* When an admin approves or rejects a certification photo
* When a user uploads, modifies or deletes their gallery photos
* When a friend request is sent
* When a friend request is accepted, ignored, or rejected
* When a friendship is removed
2024-02-26 01:03:36 +00:00
|
|
|
"fmt"
|
2022-08-12 06:03:06 +00:00
|
|
|
"io"
|
|
|
|
"net/http"
|
|
|
|
"os"
|
|
|
|
"path/filepath"
|
|
|
|
|
2024-01-06 03:08:44 +00:00
|
|
|
"code.nonshy.com/nonshy/website/pkg/config"
|
2022-08-26 04:21:46 +00:00
|
|
|
"code.nonshy.com/nonshy/website/pkg/log"
|
|
|
|
"code.nonshy.com/nonshy/website/pkg/models"
|
|
|
|
"code.nonshy.com/nonshy/website/pkg/photo"
|
|
|
|
"code.nonshy.com/nonshy/website/pkg/session"
|
|
|
|
"code.nonshy.com/nonshy/website/pkg/templates"
|
2022-08-12 06:03:06 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
// Upload photos controller.
|
|
|
|
func Upload() http.HandlerFunc {
|
|
|
|
tmpl := templates.Must("photo/upload.html")
|
|
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
|
|
var vars = map[string]interface{}{
|
|
|
|
"Intent": r.FormValue("intent"),
|
|
|
|
"NeedsCrop": false,
|
|
|
|
}
|
|
|
|
|
|
|
|
// Query string parameters: what is the intent of this photo upload?
|
|
|
|
// - If profile picture, the user will crop their image before posting it.
|
|
|
|
// - If regular photo, user simply picks a picture and doesn't need to crop it.
|
|
|
|
if vars["Intent"] == "profile_pic" {
|
|
|
|
vars["NeedsCrop"] = true
|
|
|
|
}
|
|
|
|
|
|
|
|
user, err := session.CurrentUser(r)
|
|
|
|
if err != nil {
|
|
|
|
session.FlashError(w, r, "Unexpected error: couldn't get CurrentUser")
|
|
|
|
}
|
|
|
|
|
2022-08-21 22:40:24 +00:00
|
|
|
// Get the current user's quota.
|
|
|
|
var photoCount, photoQuota = photo.QuotaForUser(user)
|
|
|
|
vars["PhotoCount"] = photoCount
|
|
|
|
vars["PhotoQuota"] = photoQuota
|
|
|
|
|
2024-01-06 03:08:44 +00:00
|
|
|
// Is the user throttled from sharing a Site Gallery photo too frequently?
|
|
|
|
vars["SiteGalleryThrottled"] = models.IsSiteGalleryThrottled(user, nil)
|
|
|
|
vars["SiteGalleryThrottleLimit"] = config.SiteGalleryRateLimitMax
|
|
|
|
|
2023-06-22 03:46:27 +00:00
|
|
|
// If they do not have a profile picture currently set (and are not uploading one now),
|
|
|
|
// the front-end should point this out to them.
|
|
|
|
if (user.ProfilePhotoID == nil || *user.ProfilePhotoID == 0) && vars["Intent"] != "profile_pic" {
|
|
|
|
// If they have no photo at all, make the default intent to upload one.
|
|
|
|
if photoCount == 0 {
|
|
|
|
templates.Redirect(w, r.URL.Path+"?intent=profile_pic")
|
|
|
|
return
|
|
|
|
}
|
|
|
|
vars["NoProfilePicture"] = true
|
|
|
|
}
|
|
|
|
|
2022-08-12 06:03:06 +00:00
|
|
|
// Are they POSTing?
|
|
|
|
if r.Method == http.MethodPost {
|
|
|
|
var (
|
|
|
|
caption = r.PostFormValue("caption")
|
|
|
|
isExplicit = r.PostFormValue("explicit") == "true"
|
|
|
|
visibility = r.PostFormValue("visibility")
|
|
|
|
isGallery = r.PostFormValue("gallery") == "true"
|
|
|
|
cropCoords = r.PostFormValue("crop")
|
|
|
|
confirm1 = r.PostFormValue("confirm1") == "true"
|
|
|
|
confirm2 = r.PostFormValue("confirm2") == "true"
|
|
|
|
)
|
|
|
|
|
2024-01-06 03:08:44 +00:00
|
|
|
// Enforce that they can not override the Site Gallery throttle.
|
|
|
|
if vars["SiteGalleryThrottled"].(bool) && isGallery {
|
|
|
|
isGallery = false
|
|
|
|
}
|
|
|
|
|
2022-08-21 22:40:24 +00:00
|
|
|
// Are they at quota already?
|
|
|
|
if photoCount >= photoQuota {
|
|
|
|
session.FlashError(w, r, "You have too many photos to upload a new one. Please delete a photo to make room for a new one.")
|
2024-02-11 00:17:15 +00:00
|
|
|
templates.Redirect(w, "/u/"+user.Username+"/photos")
|
2022-08-21 22:40:24 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2022-08-12 06:03:06 +00:00
|
|
|
// They checked both boxes. The browser shouldn't allow them to
|
|
|
|
// post but validate it here anyway...
|
|
|
|
if !confirm1 || !confirm2 {
|
|
|
|
session.FlashError(w, r, "You must agree to the terms to upload this picture.")
|
|
|
|
templates.Redirect(w, r.URL.Path)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// Parse and validate crop coordinates.
|
|
|
|
var crop []int
|
2022-08-13 06:11:36 +00:00
|
|
|
if vars["NeedsCrop"] == true {
|
|
|
|
crop = photo.ParseCropCoords(cropCoords)
|
2022-08-12 06:03:06 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
log.Error("parsed crop coords: %+v", crop)
|
|
|
|
|
|
|
|
// Get their file upload.
|
|
|
|
file, header, err := r.FormFile("file")
|
|
|
|
if err != nil {
|
|
|
|
session.FlashError(w, r, "Error receiving your file: %s", err)
|
|
|
|
templates.Redirect(w, r.URL.Path)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2023-06-26 05:55:07 +00:00
|
|
|
// GIF can not be uploaded for a profile picture.
|
|
|
|
if filepath.Ext(header.Filename) == ".gif" && vars["Intent"] == "profile_pic" {
|
|
|
|
session.FlashError(w, r, "GIF images are not acceptable for your profile picture.")
|
|
|
|
templates.Redirect(w, r.URL.Path)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2022-08-12 06:03:06 +00:00
|
|
|
// Read the file contents.
|
|
|
|
log.Debug("Receiving uploaded file (%d bytes): %s", header.Size, header.Filename)
|
|
|
|
var buf bytes.Buffer
|
|
|
|
io.Copy(&buf, file)
|
|
|
|
|
|
|
|
filename, cropFilename, err := photo.UploadPhoto(photo.UploadConfig{
|
|
|
|
User: user,
|
|
|
|
Extension: filepath.Ext(header.Filename),
|
|
|
|
Data: buf.Bytes(),
|
|
|
|
Crop: crop,
|
|
|
|
})
|
|
|
|
if err != nil {
|
|
|
|
session.FlashError(w, r, "Error in UploadPhoto: %s", err)
|
|
|
|
templates.Redirect(w, r.URL.Path)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// Configuration for the DB entry.
|
|
|
|
ptmpl := models.Photo{
|
|
|
|
UserID: user.ID,
|
|
|
|
Filename: filename,
|
|
|
|
CroppedFilename: cropFilename,
|
|
|
|
Caption: caption,
|
|
|
|
Visibility: models.PhotoVisibility(visibility),
|
|
|
|
Gallery: isGallery,
|
|
|
|
Explicit: isExplicit,
|
|
|
|
}
|
|
|
|
|
|
|
|
// Get the filesize.
|
|
|
|
if stat, err := os.Stat(photo.DiskPath(filename)); err == nil {
|
|
|
|
ptmpl.Filesize = stat.Size()
|
|
|
|
}
|
|
|
|
|
|
|
|
// Create it in DB!
|
|
|
|
p, err := models.CreatePhoto(ptmpl)
|
|
|
|
if err != nil {
|
|
|
|
session.FlashError(w, r, "Couldn't create Photo in DB: %s", err)
|
|
|
|
} else {
|
|
|
|
log.Info("New photo! %+v", p)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Are we uploading a profile pic? If so, set the user's pic now.
|
2023-07-22 18:51:58 +00:00
|
|
|
if vars["Intent"] == "profile_pic" && cropFilename != "" {
|
2022-08-12 06:03:06 +00:00
|
|
|
log.Info("User %s is setting their profile picture", user.Username)
|
2022-08-13 06:11:36 +00:00
|
|
|
user.ProfilePhoto = *p
|
2022-08-12 06:03:06 +00:00
|
|
|
user.Save()
|
|
|
|
}
|
|
|
|
|
Change Logs
* Add a ChangeLog table to collect historic updates to various database tables.
* Created, Updated (with field diffs) and Deleted actions are logged, as well
as certification photo approves/denies.
* Specific items added to the change log:
* When a user photo is marked Explicit by an admin
* When users block/unblock each other
* When photo comments are posted, edited, and deleted
* When forums are created, edited, and deleted
* When forum comments are created, edited and deleted
* When a new forum thread is created
* When a user uploads or removes their own certification photo
* When an admin approves or rejects a certification photo
* When a user uploads, modifies or deletes their gallery photos
* When a friend request is sent
* When a friend request is accepted, ignored, or rejected
* When a friendship is removed
2024-02-26 01:03:36 +00:00
|
|
|
// ChangeLog entry.
|
|
|
|
models.LogCreated(user, "photos", p.ID, fmt.Sprintf(
|
|
|
|
"Uploaded a new photo.\n\n"+
|
|
|
|
"* Caption: %s\n"+
|
|
|
|
"* Visibility: %s\n"+
|
|
|
|
"* Gallery: %v\n"+
|
|
|
|
"* Explicit: %v",
|
|
|
|
p.Caption,
|
|
|
|
p.Visibility,
|
|
|
|
p.Gallery,
|
|
|
|
p.Explicit,
|
|
|
|
))
|
|
|
|
|
2023-03-17 03:04:43 +00:00
|
|
|
// Notify all of our friends that we posted a new picture.
|
|
|
|
go notifyFriendsNewPhoto(p, user)
|
|
|
|
|
2022-08-12 06:03:06 +00:00
|
|
|
session.Flash(w, r, "Your photo has been uploaded successfully.")
|
2024-02-11 00:17:15 +00:00
|
|
|
templates.Redirect(w, "/u/"+user.Username+"/photos")
|
2022-08-12 06:03:06 +00:00
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
if err := tmpl.Execute(w, r, vars); err != nil {
|
|
|
|
http.Error(w, err.Error(), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
})
|
|
|
|
}
|
2023-03-17 03:04:43 +00:00
|
|
|
|
|
|
|
// Create a notification for all our Friends about a new photo.
|
|
|
|
// Run in a background goroutine in case it takes a while.
|
|
|
|
func notifyFriendsNewPhoto(photo *models.Photo, currentUser *models.User) {
|
2023-08-15 01:50:34 +00:00
|
|
|
var (
|
|
|
|
friendIDs []uint64
|
|
|
|
notifyUserIDs []uint64
|
|
|
|
)
|
|
|
|
|
|
|
|
// Get the user's literal list of friends (with explicit opt-ins).
|
|
|
|
if photo.Explicit {
|
|
|
|
friendIDs = models.FriendIDsAreExplicit(currentUser.ID)
|
|
|
|
} else {
|
|
|
|
friendIDs = models.FriendIDs(currentUser.ID)
|
|
|
|
}
|
2023-03-17 03:04:43 +00:00
|
|
|
|
2023-08-15 01:50:34 +00:00
|
|
|
// Who to notify about this upload?
|
2023-03-17 03:04:43 +00:00
|
|
|
if photo.Visibility == models.PhotoPrivate {
|
|
|
|
// Private grantees
|
2023-08-05 01:54:04 +00:00
|
|
|
if photo.Explicit {
|
2023-08-15 01:50:34 +00:00
|
|
|
notifyUserIDs = models.PrivateGranteeAreExplicitUserIDs(currentUser.ID)
|
|
|
|
log.Info("Notify %d EXPLICIT private grantees about the new photo by %s", len(notifyUserIDs), currentUser.Username)
|
2023-08-05 01:54:04 +00:00
|
|
|
} else {
|
2023-08-15 01:50:34 +00:00
|
|
|
notifyUserIDs = models.PrivateGranteeUserIDs(currentUser.ID)
|
|
|
|
log.Info("Notify %d private grantees about the new photo by %s", len(notifyUserIDs), currentUser.Username)
|
2023-08-05 01:54:04 +00:00
|
|
|
}
|
2023-05-24 03:04:17 +00:00
|
|
|
} else if photo.Visibility == models.PhotoInnerCircle {
|
2023-05-24 18:27:42 +00:00
|
|
|
// Inner circle members. If the pic is also Explicit, further narrow to explicit friend IDs.
|
|
|
|
if photo.Explicit {
|
2023-08-15 01:50:34 +00:00
|
|
|
notifyUserIDs = models.FriendIDsInCircleAreExplicit(currentUser.ID)
|
|
|
|
log.Info("Notify %d EXPLICIT circle friends about the new photo by %s", len(notifyUserIDs), currentUser.Username)
|
2023-05-24 18:27:42 +00:00
|
|
|
} else {
|
2023-08-15 01:50:34 +00:00
|
|
|
notifyUserIDs = models.FriendIDsInCircle(currentUser.ID)
|
|
|
|
log.Info("Notify %d circle friends about the new photo by %s", len(notifyUserIDs), currentUser.Username)
|
2023-05-24 18:27:42 +00:00
|
|
|
}
|
2023-03-17 03:04:43 +00:00
|
|
|
} else {
|
2023-08-15 01:50:34 +00:00
|
|
|
// Friends only: we will notify exactly the friends we selected above.
|
|
|
|
notifyUserIDs = friendIDs
|
2023-03-17 03:04:43 +00:00
|
|
|
}
|
|
|
|
|
2023-08-15 01:50:34 +00:00
|
|
|
// Filter down the notifyUserIDs to only include the user's friends.
|
|
|
|
// Example: someone unlocked private photos for you, but you are not their friend.
|
|
|
|
// You should not get notified about their new private photos.
|
|
|
|
notifyUserIDs = models.FilterFriendIDs(notifyUserIDs, friendIDs)
|
|
|
|
|
2023-10-28 21:34:35 +00:00
|
|
|
// Filter down the notifyUserIDs further to respect their notification opt-out preferences.
|
|
|
|
notifyUserIDs = models.FilterPhotoUploadNotificationUserIDs(photo, notifyUserIDs)
|
|
|
|
|
2023-08-15 01:50:34 +00:00
|
|
|
for _, fid := range notifyUserIDs {
|
2023-03-17 03:04:43 +00:00
|
|
|
notif := &models.Notification{
|
|
|
|
UserID: fid,
|
|
|
|
AboutUser: *currentUser,
|
|
|
|
Type: models.NotificationNewPhoto,
|
|
|
|
TableName: "photos",
|
|
|
|
TableID: photo.ID,
|
|
|
|
}
|
|
|
|
if err := models.CreateNotification(notif); err != nil {
|
|
|
|
log.Error("Couldn't notify user %d about %s's new photo: %s", fid, currentUser.Username, err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|