Comunic/ComunicAPI
1
0
Fork 0
mirror of https://github.com/pierre42100/ComunicAPI synced 2025-11-04 12:14:12 +00:00
Code Issues Projects Releases Wiki Activity

Can create comments.

Browse Source
This commit is contained in:
Pierre
2018-01-31 06:47:25 +01:00
parent 6f792886e4
commit 8611d3fa1e
2 changed files with 76 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

50
RestControllers/commentsController.php
View File

@@ -7,6 +7,51 @@
class commentsController { class commentsController {
/**
* Create a comment
*
* @url POST /comments/create
*/
public function create(){
user_login_required();
//Get the ID of the associated post
$postID = getPostPostIDWithAccess("postID");
//Check if an image was included in the request
if(check_post_file("image")){
//Get comment content
$content = $this->get_comment_content("content", false);
//Save the image
$image_path = save_post_image("image", userID, "imgcommentaire", 700, 700);
}
//Else check the content of the comment before getting it
else
$content = $this->get_comment_content("content", true);
//Try to create the comment
$commentID = components()->comments->create(
$postID,
userID,
$content,
isset($image_path) ? $image_path : ""
);
//Check for errors
if($commentID < 1)
Rest_fatal_error(500, "An error occured while trying to create comment !");
//Success
return array(
"success" => "The comment was created!",
"commentID" => $commentID
);
}
/** /**
* Get informations about a single comment * Get informations about a single comment
* *
@@ -96,9 +141,10 @@ class commentsController {
* Get a comment content from $_POST field * Get a comment content from $_POST field
* *
* @param string $name The name of post field containing the commment content * @param string $name The name of post field containing the commment content
* @param bool $need_check TRUE if the comment content has to be checked / FALSE else
* @return string The comment content, if it passed security checks * @return string The comment content, if it passed security checks
*/ */
private function get_comment_content(string $name) : string { private function get_comment_content(string $name, bool $need_check = true) : string {
//Get comment content //Get comment content
if(!isset($_POST[$name])) if(!isset($_POST[$name]))
@@ -106,7 +152,7 @@ class commentsController {
$comment_content = (string) $_POST[$name]; $comment_content = (string) $_POST[$name];
//Perform security check //Perform security check
if(!check_string_before_insert($comment_content)) if(!check_string_before_insert($comment_content) && $need_check)
Rest_fatal_error(400, "Please check new comment content !"); Rest_fatal_error(400, "Please check new comment content !");
//Make the comment secure before insertion //Make the comment secure before insertion

28
classes/components/comments.php
View File

@@ -12,6 +12,34 @@ class Comments {
*/ */
const COMMENTS_TABLE = "commentaires"; const COMMENTS_TABLE = "commentaires";
/**
* Create a comment
*
* @param int $postID The ID of the associated post
* @param int $userID The ID of the associated user
* @param string $content The content of the comment
* @param string $image The path of an associated image (if any)
* @return int The ID of the created comment or 0 in case of failure
*/
public function create(int $postID, int $userID, string $content, string $image = "") : int {
//Generate data set
$data = array(
"ID_texte" => $postID,
"ID_personne" => $userID,
"date_envoi" => mysql_date(),
"commentaire" => $content,
"image_commentaire" => $image == "" ? "" : "file:".$image
);
//Insert it in the database
if(!CS::get()->db->addLine($this::COMMENTS_TABLE, $data))
return 0;
//Get the ID of the last inserted comment and return it
return CS::get()->db->getLastInsertedID();
}
/** /**
* Fetch the comments of a post * Fetch the comments of a post
* *