58 lines
1.9 KiB
PHP
58 lines
1.9 KiB
PHP
<?php
|
|
|
|
namespace Aowow;
|
|
|
|
if (!defined('AOWOW_REVISION'))
|
|
die('illegal access');
|
|
|
|
|
|
class ProfilePinResponse extends TextResponse
|
|
{
|
|
protected bool $requiresLogin = true;
|
|
|
|
protected array $expectedGET = array(
|
|
'id' => ['filter' => FILTER_CALLBACK, 'options' => [self::class, 'checkIdList'] ],
|
|
'user' => ['filter' => FILTER_CALLBACK, 'options' => [Util::class, 'validateUsername']]
|
|
);
|
|
|
|
public function __construct(string $rawParam)
|
|
{
|
|
parent::__construct($rawParam);
|
|
|
|
if (!Cfg::get('PROFILER_ENABLE'))
|
|
$this->generate404();
|
|
}
|
|
|
|
/* params
|
|
id: <prId1,prId2,..,prIdN>
|
|
user: <string> [optional]
|
|
return: null
|
|
*/
|
|
protected function generate() : void // (un)favorite
|
|
{
|
|
if (!$this->assertGET('id'))
|
|
{
|
|
trigger_error('ProfilePinResponse - profileId empty', E_USER_ERROR);
|
|
return;
|
|
}
|
|
|
|
$uid = 0;
|
|
if (!$this->_get['user'] || User::$username == $this->_get['user'])
|
|
$uid = User::$id;
|
|
else if ($this->_get['user'] && User::isInGroup(U_GROUP_ADMIN | U_GROUP_BUREAU))
|
|
$uid = DB::Aowow()->selectCell('SELECT `id` FROM ::account WHERE LOWER(`username`) = LOWER(%s)', $this->_get['user']);
|
|
|
|
if (!$uid)
|
|
{
|
|
trigger_error('ProfilePinResponse - user "'.$this->_get['user'].'" does not exist', E_USER_ERROR);
|
|
return;
|
|
}
|
|
|
|
// since only one character can be pinned at a time we can reset everything
|
|
DB::Aowow()->qry('UPDATE ::account_profiles SET `extraFlags` = `extraFlags` & ~%i WHERE `accountId` = %i', PROFILER_CU_PINNED, $uid);
|
|
// and set a single char if necessary (Replace, because this entry may not exist yet)
|
|
DB::Aowow()->qry('REPLACE INTO ::account_profiles (`accountId`, `profileId`, `extraFlags`) VALUES (%i, %i, %i)', $uid, $this->_get['id'][0], PROFILER_CU_PINNED);
|
|
}
|
|
}
|
|
|
|
?>
|