path)) { return rest::invalid_request(); } $item = ORM::factory("item") ->where("relative_url_cache", $request->path) ->viewable() ->find(); if (!$item->loaded) { return rest::not_found("Resource: {$request->path} missing."); } $response_data = array("path" => $item->relative_url(), "title" => $item->title, "thumb_url" => $item->thumb_url(), "url" => $item->abs_url(), "description" => $item->description, "internet_address" => $item->slug); $children = self::_get_children($item, $request); if (!empty($children)) { $response_data["children"] = $children; } return rest::success(array($item->type => $response_data)); } static function put($request) { if (empty($request->path)) { return rest::invalid_request(); } $item = ORM::factory("item") ->where("relative_url_cache", $request->path) ->viewable() ->find(); if (!$item->loaded) { return rest::not_found("Resource: {$request->path} missing."); } if (!access::can("edit", $item)) { return rest::not_found("Resource: {$request->path} permission denied."); } // Normalize the request $new_values = array(); $fields = array("title", "description", "name", "slug"); if ($item->is_album()) { $fields = array_merge($fields, array("sort_column", "sort_order")); } foreach ($fields as $field) { $new_values[$field] = !empty($request->$field) ? $request->$field : $item->$field; } if ($item->id == 1) { unset($new_values["name"]); } if ($item->id != 1 && ($new_values["name"] != $item->name || $new_values["slug"] != $item->slug)) { // Make sure that there's not a conflict $errors = item::check_for_conflicts($item, $new_values["name"], $new_values["slug"]); if (!empty($errors["name_conflict"])) { return rest::fail(t("Renaming %path failed: new name exists", array("path" => $request->path))); } if (!empty($errors["slug_conflict"])) { return rest::fail(t("Renaming %path failed: new internet address exists", array("path" => $request->path))); } } item::update($item, $new_values); log::success("content", "Updated $item->type", "type}s/$item->id\">view"); return rest::success(); } static function delete($request) { if (empty($request->path)) { return rest::invalid_request(); } $item = ORM::factory("item") ->where("relative_url_cache", $request->path) ->viewable() ->find(); if (!$item->loaded) { return rest::success(); } if (!access::can("edit", $item)) { return rest::not_found("Resource: {$request->path} permission denied."); } if ($item->id == 1) { return rest::invalid_request("Attempt to delete the root album"); } $item->delete(); if ($item->is_album()) { $msg = t("Deleted album %title", array("title" => html::purify($item->title))); } else { $msg = t("Deleted photo %title", array("title" => html::purify($item->title))); } log::success("content", $msg); return rest::success(); } private static function _get_children($item, $request) { $children = array(); $limit = empty($request->limit) ? null : $request->limit; $offset = empty($request->offset) ? null : $request->offset; $where = empty($request->filter) ? array() : array("type" => $request->filter); foreach ($item->viewable()->children($limit, $offset, $where) as $child) { $children[] = array("type" => $child->type, "has_children" => $child->children_count() > 0, "path" => $child->relative_url(), "title" => $child->title); } return $children; } }