use of net.jforum.exceptions.AttachmentException in project jforum2 by rafaelsteil.
the class PostAction method editSave.
public void editSave() {
PostDAO postDao = DataAccessDriver.getInstance().newPostDAO();
PollDAO pollDao = DataAccessDriver.getInstance().newPollDAO();
TopicDAO topicDao = DataAccessDriver.getInstance().newTopicDAO();
Post post = postDao.selectById(this.request.getIntParameter("post_id"));
if (!PostCommon.canEditPost(post)) {
this.cannotEdit();
return;
}
boolean isModerator = SecurityRepository.canAccess(SecurityConstants.PERM_MODERATION_POST_EDIT);
String originalMessage = post.getText();
post = PostCommon.fillPostFromRequest(post, true);
// The user wants to preview the message before posting it?
if ("1".equals(this.request.getParameter("preview"))) {
this.context.put("preview", true);
Post postPreview = new Post(post);
this.context.put("postPreview", PostCommon.preparePostForDisplay(postPreview));
this.edit(true, post);
} else {
AttachmentCommon attachments = new AttachmentCommon(this.request, post.getForumId());
try {
attachments.preProcess();
} catch (AttachmentException e) {
JForumExecutionContext.enableRollback();
post.setText(this.request.getParameter("message"));
this.context.put("errorMessage", e.getMessage());
this.context.put("post", post);
this.edit(false, post);
return;
}
Topic t = TopicRepository.getTopic(new Topic(post.getTopicId()));
if (t == null) {
t = topicDao.selectById(post.getTopicId());
}
if (!TopicsCommon.isTopicAccessible(t.getForumId())) {
return;
}
if (t.getStatus() == Topic.STATUS_LOCKED && !SecurityRepository.canAccess(SecurityConstants.PERM_MODERATION_POST_EDIT)) {
this.topicLocked();
return;
}
postDao.update(post);
// Attachments
attachments.editAttachments(post.getId(), post.getForumId());
attachments.insertAttachments(post);
// The first message (the one which originated the topic) was changed
if (t.getFirstPostId() == post.getId()) {
t.setTitle(post.getSubject());
int newType = this.request.getIntParameter("topic_type");
boolean changeType = SecurityRepository.canAccess(SecurityConstants.PERM_CREATE_STICKY_ANNOUNCEMENT_TOPICS) && newType != t.getType();
if (changeType) {
t.setType(newType);
}
// Poll
Poll poll = PollCommon.fillPollFromRequest();
if (poll != null && !t.isVote()) {
// They added a poll
poll.setTopicId(t.getId());
if (!this.ensurePollMinimumOptions(post, poll)) {
return;
}
pollDao.addNew(poll);
t.setVoteId(poll.getId());
} else if (poll != null) {
if (!this.ensurePollMinimumOptions(post, poll)) {
return;
}
// They edited the poll in the topic
Poll existing = pollDao.selectById(t.getVoteId());
PollChanges changes = new PollChanges(existing, poll);
if (changes.hasChanges()) {
poll.setId(existing.getId());
poll.setChanges(changes);
pollDao.update(poll);
}
} else if (t.isVote()) {
// They deleted the poll from the topic
pollDao.delete(t.getVoteId());
t.setVoteId(0);
}
topicDao.update(t);
if (changeType) {
TopicRepository.addTopic(t);
} else {
TopicRepository.updateTopic(t);
}
}
if (SystemGlobals.getBoolValue(ConfigKeys.MODERATION_LOGGING_ENABLED) && isModerator && post.getUserId() != SessionFacade.getUserSession().getUserId()) {
ModerationHelper helper = new ModerationHelper();
this.request.addParameter("log_original_message", originalMessage);
ModerationLog log = helper.buildModerationLogFromRequest();
log.getPosterUser().setId(post.getUserId());
helper.saveModerationLog(log);
}
if (this.request.getParameter("notify") == null) {
topicDao.removeSubscription(post.getTopicId(), SessionFacade.getUserSession().getUserId());
}
String path = this.request.getContextPath() + "/posts/list/";
int start = ViewCommon.getStartPage();
if (start > 0) {
path += start + "/";
}
path += post.getTopicId() + SystemGlobals.getValue(ConfigKeys.SERVLET_EXTENSION) + "#" + post.getId();
JForumExecutionContext.setRedirect(path);
if (SystemGlobals.getBoolValue(ConfigKeys.POSTS_CACHE_ENABLED)) {
PostRepository.update(post.getTopicId(), PostCommon.preparePostForDisplay(post));
}
}
}
use of net.jforum.exceptions.AttachmentException in project jforum2 by rafaelsteil.
the class PostAction method insertSave.
public void insertSave() {
int forumId = this.request.getIntParameter("forum_id");
boolean firstPost = false;
if (!this.anonymousPost(forumId)) {
return;
}
Topic t = new Topic(-1);
t.setForumId(forumId);
boolean newTopic = (this.request.getParameter("topic_id") == null);
if (!TopicsCommon.isTopicAccessible(t.getForumId()) || this.isForumReadonly(t.getForumId(), newTopic)) {
return;
}
TopicDAO topicDao = DataAccessDriver.getInstance().newTopicDAO();
PostDAO postDao = DataAccessDriver.getInstance().newPostDAO();
PollDAO poolDao = DataAccessDriver.getInstance().newPollDAO();
ForumDAO forumDao = DataAccessDriver.getInstance().newForumDAO();
if (!newTopic) {
int topicId = this.request.getIntParameter("topic_id");
t = TopicRepository.getTopic(new Topic(topicId));
if (t == null) {
t = topicDao.selectById(topicId);
}
// Could not find the topic. The topicId sent was invalid
if (t == null || t.getId() == 0) {
newTopic = true;
} else {
if (!TopicsCommon.isTopicAccessible(t.getForumId())) {
return;
}
// Cannot insert new messages on locked topics
if (t.getStatus() == Topic.STATUS_LOCKED) {
this.topicLocked();
return;
}
}
}
// checking above set the newTopic var to true
if (newTopic) {
if (this.isReplyOnly(forumId)) {
this.replyOnly();
return;
}
if (this.request.getParameter("topic_type") != null) {
t.setType(this.request.getIntParameter("topic_type"));
if (t.getType() != Topic.TYPE_NORMAL && !SecurityRepository.canAccess(SecurityConstants.PERM_CREATE_STICKY_ANNOUNCEMENT_TOPICS)) {
t.setType(Topic.TYPE_NORMAL);
}
}
}
UserSession us = SessionFacade.getUserSession();
User u = DataAccessDriver.getInstance().newUserDAO().selectById(us.getUserId());
if ("1".equals(this.request.getParameter("quick")) && SessionFacade.isLogged()) {
this.request.addParameter("notify", u.isNotifyOnMessagesEnabled() ? "1" : null);
this.request.addParameter("attach_sig", u.getAttachSignatureEnabled() ? "1" : "0");
} else {
u.setId(us.getUserId());
u.setUsername(us.getUsername());
}
// Set the Post
Post p = PostCommon.fillPostFromRequest();
if (p.getText() == null || p.getText().trim().equals("")) {
this.insert();
return;
}
// Check the elapsed time since the last post from the user
int delay = SystemGlobals.getIntValue(ConfigKeys.POSTS_NEW_DELAY);
if (delay > 0) {
Long lastPostTime = (Long) SessionFacade.getAttribute(ConfigKeys.LAST_POST_TIME);
if (lastPostTime != null) {
if (System.currentTimeMillis() < (lastPostTime.longValue() + delay)) {
this.context.put("post", p);
this.context.put("start", this.request.getParameter("start"));
this.context.put("error", I18n.getMessage("PostForm.tooSoon"));
this.insert();
return;
}
}
}
p.setForumId(this.request.getIntParameter("forum_id"));
if (StringUtils.isBlank(p.getSubject())) {
p.setSubject(t.getTitle());
}
boolean needCaptcha = SystemGlobals.getBoolValue(ConfigKeys.CAPTCHA_POSTS) && request.getSessionContext().getAttribute(ConfigKeys.REQUEST_IGNORE_CAPTCHA) == null;
if (needCaptcha) {
if (!us.validateCaptchaResponse(this.request.getParameter("captcha_anwser"))) {
this.context.put("post", p);
this.context.put("start", this.request.getParameter("start"));
this.context.put("error", I18n.getMessage("CaptchaResponseFails"));
this.insert();
return;
}
}
boolean preview = "1".equals(this.request.getParameter("preview"));
if (!preview) {
AttachmentCommon attachments = new AttachmentCommon(this.request, forumId);
try {
attachments.preProcess();
} catch (AttachmentException e) {
JForumExecutionContext.enableRollback();
p.setText(this.request.getParameter("message"));
p.setId(0);
this.context.put("errorMessage", e.getMessage());
this.context.put("post", p);
this.insert();
return;
}
Forum forum = ForumRepository.getForum(forumId);
PermissionControl pc = SecurityRepository.get(us.getUserId());
// Moderators and admins don't need to have their messages moderated
boolean moderate = (forum.isModerated() && !pc.canAccess(SecurityConstants.PERM_MODERATION) && !pc.canAccess(SecurityConstants.PERM_ADMINISTRATION));
if (newTopic) {
t.setTime(new Date());
t.setTitle(this.request.getParameter("subject"));
t.setModerated(moderate);
t.setPostedBy(u);
t.setFirstPostTime(ViewCommon.formatDate(t.getTime()));
int topicId = topicDao.addNew(t);
t.setId(topicId);
firstPost = true;
}
if (!firstPost && pc.canAccess(SecurityConstants.PERM_REPLY_WITHOUT_MODERATION, Integer.toString(t.getForumId()))) {
moderate = false;
}
// Topic watch
if (this.request.getParameter("notify") != null) {
this.watch(topicDao, t.getId(), u.getId());
}
p.setTopicId(t.getId());
// add a poll
Poll poll = PollCommon.fillPollFromRequest();
if (poll != null && newTopic) {
poll.setTopicId(t.getId());
if (poll.getOptions().size() < 2) {
// it is not a valid poll, cancel the post
JForumExecutionContext.enableRollback();
p.setText(this.request.getParameter("message"));
p.setId(0);
this.context.put("errorMessage", I18n.getMessage("PostForm.needMorePollOptions"));
this.context.put("post", p);
this.context.put("poll", poll);
this.insert();
return;
}
poolDao.addNew(poll);
t.setVoteId(poll.getId());
}
// Save the remaining stuff
p.setModerate(moderate);
int postId = postDao.addNew(p);
if (newTopic) {
t.setFirstPostId(postId);
}
if (!moderate) {
t.setLastPostId(postId);
t.setLastPostBy(u);
t.setLastPostDate(p.getTime());
t.setLastPostTime(p.getFormatedTime());
}
topicDao.update(t);
attachments.insertAttachments(p);
if (!moderate) {
StringBuffer path = new StringBuffer(512);
path.append(this.request.getContextPath()).append("/posts/list/");
int start = ViewCommon.getStartPage();
path.append(this.startPage(t, start)).append("/").append(t.getId()).append(SystemGlobals.getValue(ConfigKeys.SERVLET_EXTENSION)).append('#').append(postId);
JForumExecutionContext.setRedirect(path.toString());
if (newTopic) {
// Notify "forum new topic" users
ForumCommon.notifyUsers(forum, t, p);
} else {
t.setTotalReplies(t.getTotalReplies() + 1);
TopicsCommon.notifyUsers(t, p);
}
// Update forum stats, cache and etc
t.setTotalViews(t.getTotalViews() + 1);
DataAccessDriver.getInstance().newUserDAO().incrementPosts(p.getUserId());
TopicsCommon.updateBoardStatus(t, postId, firstPost, topicDao, forumDao);
ForumRepository.updateForumStats(t, u, p);
int anonymousUser = SystemGlobals.getIntValue(ConfigKeys.ANONYMOUS_USER_ID);
if (u.getId() != anonymousUser) {
SessionFacade.getTopicsReadTime().put(new Integer(t.getId()), new Long(p.getTime().getTime()));
}
if (SystemGlobals.getBoolValue(ConfigKeys.POSTS_CACHE_ENABLED)) {
SimpleDateFormat df = new SimpleDateFormat(SystemGlobals.getValue(ConfigKeys.DATE_TIME_FORMAT));
p.setFormatedTime(df.format(p.getTime()));
PostRepository.append(p.getTopicId(), PostCommon.preparePostForDisplay(p));
}
} else {
JForumExecutionContext.setRedirect(this.request.getContextPath() + "/posts/waitingModeration/" + (firstPost ? 0 : t.getId()) + "/" + t.getForumId() + SystemGlobals.getValue(ConfigKeys.SERVLET_EXTENSION));
}
if (delay > 0) {
SessionFacade.setAttribute(ConfigKeys.LAST_POST_TIME, new Long(System.currentTimeMillis()));
}
} else {
this.context.put("preview", true);
this.context.put("post", p);
this.context.put("start", this.request.getParameter("start"));
Post postPreview = new Post(p);
this.context.put("postPreview", PostCommon.preparePostForDisplay(postPreview));
this.insert();
}
}
use of net.jforum.exceptions.AttachmentException in project jforum2 by rafaelsteil.
the class AttachmentCommon method preProcess.
public void preProcess() {
if (!this.canProceed) {
return;
}
String t = this.request.getParameter("total_files");
if (t == null || "".equals(t)) {
return;
}
int total = Integer.parseInt(t);
if (total < 1) {
return;
}
if (total > SystemGlobals.getIntValue(ConfigKeys.ATTACHMENTS_MAX_POST)) {
total = SystemGlobals.getIntValue(ConfigKeys.ATTACHMENTS_MAX_POST);
}
long totalSize = 0;
int userId = SessionFacade.getUserSession().getUserId();
Map extensions = this.am.extensionsForSecurity();
for (int i = 0; i < total; i++) {
FileItem item = (FileItem) this.request.getObjectParameter("file_" + i);
if (item == null) {
continue;
}
if (item.getName().indexOf('\000') > -1) {
logger.warn("Possible bad attachment (null char): " + item.getName() + " - user_id: " + SessionFacade.getUserSession().getUserId());
continue;
}
UploadUtils uploadUtils = new UploadUtils(item);
// Check if the extension is allowed
boolean containsExtension = extensions.containsKey(uploadUtils.getExtension());
boolean denyAll = extensions.containsKey(DENY_ALL);
boolean isAllowed = (!denyAll && !containsExtension) || (containsExtension && extensions.get(uploadUtils.getExtension()).equals(Boolean.TRUE));
if (!isAllowed) {
throw new BadExtensionException(I18n.getMessage("Attachments.badExtension", new String[] { uploadUtils.getExtension() }));
}
// Check comment length:
String comment = this.request.getParameter("comment_" + i);
if (comment.length() > 254) {
throw new AttachmentException("Comment too long.");
}
Attachment a = new Attachment();
a.setUserId(userId);
AttachmentInfo info = new AttachmentInfo();
info.setFilesize(item.getSize());
info.setComment(comment);
info.setMimetype(item.getContentType());
// Get only the filename, without the path (IE does that)
String realName = this.stripPath(item.getName());
info.setRealFilename(realName);
info.setUploadTimeInMillis(System.currentTimeMillis());
AttachmentExtension ext = this.am.selectExtension(uploadUtils.getExtension().toLowerCase());
if (ext.isUnknown()) {
ext.setExtension(uploadUtils.getExtension());
}
info.setExtension(ext);
String savePath = this.makeStoreFilename(info);
info.setPhysicalFilename(savePath);
a.setInfo(info);
filesToSave.put(uploadUtils, a);
totalSize += item.getSize();
}
// Check upload limits
QuotaLimit ql = this.getQuotaLimit(userId);
if (ql != null) {
if (ql.exceedsQuota(totalSize)) {
throw new AttachmentSizeTooBigException(I18n.getMessage("Attachments.tooBig", new Integer[] { new Integer(ql.getSizeInBytes() / 1024), new Integer((int) totalSize / 1024) }));
}
}
}
Aggregations