eleith
/
vanilla-api-addon
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
This repository has been archived on 2020-11-15. You can view files and clone it, but cannot push or open issues or pull requests.
vanilla-api-addon/controllers/class.commentapicontroller.php

88 lines
2.1 KiB
PHP
Raw Blame History

<?php if (!defined('APPLICATION')) exit();
class CommentAPIController extends APIController
{
public $Uses = array('Form', 'Database', 'CategoryModel', 'DiscussionModel', 'CommentModel');
public function __construct()
{
parent::__construct();
if (isset($_POST['UserID'])){
Gdn::Session()->Start($_POST['UserID'], TRUE, TRUE);
}
}
public function Index()
{
$this->Render();
}
public function Add()
{
$Session = Gdn::Session();
$Errors = array();
// Set the model on the form.
$this->Form->SetModel($this->CommentModel);
if($this->Form->AuthenticatedPostBack() === TRUE)
{
$FormValues = $this->Form->FormValues();
// Check category permissions
if($Session->CheckPermission('Vanilla.Comments.Add', $FormValues['CategoryID']))
{
$CommentID = $this->CommentModel->Save($FormValues);
$this->SetJSON("CommentID", $CommentID);
}
else
$Errors[] = 'You do not have permission to add comments to this discussion';
}
else
$Errors[] = 'You do not have credentials to post as this user';
// Return the form errors
if(count($Errors) > 0)
$this->SetJSON("Errors", $Errors);
$this->Render();
}
/**
* Remove a comment.
* @param int The category id to remove the comment to.
*/
public function Remove()
{
$Session = Gdn::Session();
$Errors = array();
// Set the model on the form.
$this->Form->SetModel($this->CommentModel);
if($this->Form->AuthenticatedPostBack() === TRUE)
{
$FormValues = $this->Form->FormValues();
// Check category permissions
if(!$Session->CheckPermission('Vanilla.Discussions.Add', $FormValues['CategoryID']))
$Errors[] = 'You do not have permission to start discussions in this category';
else
$CommentID = $this->CommentModel->Delete($FormValues['CommentID']);
$this->SetJSON("removed", $CommentID);
}
else
$Errors[] = 'You do not have credentials to post as this user';
// Return the form errors
if(count($Errors) > 0)
$this->SetJSON("Errors", $Errors);
$this->Render();
Gdn::Session()->End();
}
}
?>
Reference in New Issue View Git Blame Copy Permalink