path)) { $request->path = ""; } $item = ORM::factory("item") ->where("relative_url_cache", $request->path) ->viewable() ->find(); if (!$item->loaded) { return rest::not_found("Resource: {$request->path} missing."); } $response_data = array("type" => $item->type, "path" => $item->relative_url(), "title" => $item->title, "thumb_url" => $item->thumb_url(), "url" => $item->abs_url(), "description" => $item->description, "internet_address" => $item->slug); $children = self::_get_children($item, $request); if (!empty($children)) { $response_data["children"] = $children; } return rest::success(array("resource" => $response_data)); } static function put($request) { if (empty($request->path)) { return rest::invalid_request(); } $item = ORM::factory("item") ->where("relative_url_cache", $request->path) ->viewable() ->find(); if (!$item->loaded) { return rest::not_found("Resource: {$request->path} missing."); } if (!access::can("edit", $item)) { return rest::not_found("Resource: {$request->path} permission denied."); } // Normalize the request $new_values = array(); $fields = array("title", "description", "name", "slug"); if ($item->is_album()) { $fields = array_merge($fields, array("sort_column", "sort_order")); } foreach ($fields as $field) { $new_values[$field] = !empty($request->$field) ? $request->$field : $item->$field; } if ($item->id == 1) { unset($new_values["name"]); } if ($item->id != 1 && ($new_values["name"] != $item->name || $new_values["slug"] != $item->slug)) { // Make sure that there's not a conflict $errors = item::check_for_conflicts($item, $new_values["name"], $new_values["slug"]); if (!empty($errors["name_conflict"])) { return rest::fail(t("Renaming %path failed: new name exists", array("path" => $request->path))); } if (!empty($errors["slug_conflict"])) { return rest::fail(t("Renaming %path failed: new internet address exists", array("path" => $request->path))); } } item::update($item, $new_values); log::success("content", "Updated $item->type", "type}s/$item->id\">view"); return rest::success(); } static function post($request) { if (empty($request->path)) { return rest::invalid_request(); } $components = explode("/", $request->path); $name = urldecode(array_pop($components)); $parent = ORM::factory("item") ->where("relative_url_cache", implode("/", $components)) ->viewable() ->find(); if (!$parent->loaded) { return rest::not_found("Resource: {$request->path} missing."); } if (!access::can("edit", $parent)) { return rest::not_found("Resource: {$request->path} permission denied."); } if (empty($_FILES["image"])) { $new_item = album::create( $parent, $name, empty($request->title) ? $name : $request->title, empty($request->description) ? null : $request->description, identity::active_user()->id, empty($request->slug) ? $name : $request->slug); $log_message = t("Added an album"); } else { $file_validation = new Validation($_FILES); $file_validation->add_rules( "image", "upload::valid", "upload::required", "upload::type[gif,jpg,jpeg,png,flv,mp4]"); if (!$file_validation->validate()) { $errors = $file_validation->errors(); return rest::fail( $errors["image"] == "type" ? "Upload failed: Unsupported file type" : "Upload failed: Uploaded file missing"); } $temp_filename = upload::save("image"); $name = substr(basename($temp_filename), 10); // Skip unique identifier Kohana adds $title = item::convert_filename_to_title($name); $path_info = @pathinfo($temp_filename); if (array_key_exists("extension", $path_info) && in_array(strtolower($path_info["extension"]), array("flv", "mp4"))) { $new_item = movie::create($parent, $temp_filename, $name, $title); $log_message = t("Added a movie"); } else { $new_item = photo::create($parent, $temp_filename, $name, $title); $log_message = t("Added a photo"); } } log::success("content", $log_message, "type}s/$new_item->id\">view"); return rest::success(array("path" => $new_item->relative_url())); } static function delete($request) { if (empty($request->path)) { return rest::invalid_request(); } $item = ORM::factory("item") ->where("relative_url_cache", $request->path) ->viewable() ->find(); if (!$item->loaded) { return rest::success(); } if (!access::can("edit", $item)) { return rest::not_found("Resource: {$request->path} permission denied."); } if ($item->id == 1) { return rest::invalid_request("Attempt to delete the root album"); } $item->delete(); if ($item->is_album()) { $msg = t("Deleted album %title", array("title" => html::purify($item->title))); } else { $msg = t("Deleted photo %title", array("title" => html::purify($item->title))); } log::success("content", $msg); return rest::success(); } private static function _get_children($item, $request) { $children = array(); $limit = empty($request->limit) ? null : $request->limit; $offset = empty($request->offset) ? null : $request->offset; $where = empty($request->filter) ? array() : array("type" => $request->filter); foreach ($item->viewable()->children($limit, $offset, $where) as $child) { $children[] = array("type" => $child->type, "has_children" => $child->children_count() > 0, "path" => $child->relative_url(), "thumb_url" => $child->thumb_url(true), "thumb_dimensions" => array("width" => $child->thumb_width, "height" => $child->thumb_height), "has_thumb" => $child->has_thumb(), "title" => $child->title); } return $children; } }