<?php
declare(strict_types=1);
namespace App\Http\Controllers;
use App\Classes\Validator;
use App\Models\Flood;
use App\Models\Guestbook;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\View\View;
class GuestbookController extends Controller
{
/**
* Главная страница
*
* @return View
*/
public function index(): View
{
$posts = Guestbook::query()
->orderByDesc('created_at')
->with('user', 'editUser')
->paginate(10);
return view('guestbook/index', compact('posts'));
}
/**
* Добавление сообщения
*
* @param Request $request
* @param Validator $validator
* @param Flood $flood
*
* @return RedirectResponse
*/
public function add(Request $request, Validator $validator, Flood $flood): RedirectResponse
{
$msg = $request->input('msg');
$user = getUser();
$validator->equal($request->input('_token'), csrf_token(), ['msg' => __('validator.token')])
->length($msg, 5, setting('guesttextlength'), ['msg' => __('validator.text')])
->false($flood->isFlood(), ['msg' => __('validator.flood', ['sec' => $flood->getPeriod()])]);
/* Проверка для гостей */
if (! $user && setting('bookadds')) {
$validator->true(captchaVerify(), ['protect' => __('validator.captcha')]);
$validator->true(strpos($msg ?? '', '//') === false, ['msg' => __('guestbook.without_links')]);
$validator->length($request->input('guest_name'), 3, 20, ['guest_name' => __('users.name_short_or_long')], false);
} else {
$validator->true($user, ['msg' => __('main.not_authorized')]);
}
if ($validator->isValid()) {
$msg = antimat($msg);
$guestName = $request->input('guest_name');
if ($user) {
$guestName = null;
$bookscores = setting('bookscores') ? 1 : 0;
$user->increment('allguest');
$user->increment('point', $bookscores);
$user->increment('money', 5);
}
Guestbook::query()->create([
'user_id' => $user->id ?? null,
'text' => $msg,
'ip' => getIp(),
'brow' => getBrowser(),
'guest_name' => $guestName,
'created_at' => SITETIME,
]);
clearCache('statGuestbook');
$flood->saveState();
sendNotify($msg, '/guestbook', __('index.guestbook'));
setFlash('success', __('main.message_added_success'));
} else {
setInput($request->all());
setFlash('danger', $validator->getErrors());
}
return redirect()->back()->withInput();
}
/**
* Редактирование сообщения
*
* @param int $id
* @param Request $request
* @param Validator $validator
*
* @return View|RedirectResponse
*/
public function edit(int $id, Request $request, Validator $validator)
{
if (! $user = getUser()) {
abort(403);
}
$msg = $request->input('msg');
/** @var Guestbook $post */
$post = Guestbook::query()->where('user_id', $user->id)->find($id);
if (! $post) {
abort(404, __('main.message_not_found'));
}
if ($post->created_at + 600 < SITETIME) {
abort(200, __('main.editing_impossible'));
}
if ($request->isMethod('post')) {
$validator->equal($request->input('_token'), csrf_token(), ['msg' => __('validator.token')])
->length($msg, 5, setting('guesttextlength'), ['msg' => __('validator.text')]);
if ($validator->isValid()) {
$post->update([
'text' => antimat($msg),
'edit_user_id' => $user->id,
'updated_at' => SITETIME,
]);
setFlash('success', __('main.message_edited_success'));
return redirect('guestbook');
}
setInput($request->all());
setFlash('danger', $validator->getErrors());
}
return view('guestbook/edit', compact('post'));
}
}