Add editing pastes

Author: vrumger

app/Http/Controllers/EditPasteController.php

@@ -0,0 +1,118 @@
+<?php
+
+namespace App\Http\Controllers;
+use Illuminate\Http\Request;
+use App\Http\Requests;
+use App\Paste;
+use Auth;
+use App\User;
+use \Input;
+use \Hash;
+use Session;
+use Cookie;
+use DB;
+use \Carbon;
+
+class EditPasteController extends Controller
+{
+  public function index($link, Request $request){
+    $paste = Paste::where('link', $link)->firstOrFail();
+
+    // Est-ce que l'utilisateur connecté est celui qui a écrit la paste ?
+    if (Auth::user() != $paste->user || $paste->userId == 0) {
+      return abort('404');
+    }
+
+    // Renvoi de la view
+    return view('paste/edit', [
+      'username' => ($paste->userId != 0) ? $paste->user->name : 'Guest',
+      'link' => $link,
+      'title' => ($paste->title != 'Untitled') ? $paste->title : '',
+      'content' => $paste->content,
+      'expiration' => $paste->expiration,
+      'privacy' => $paste->privacy,
+      'date' => $paste->created_at->format('M j, Y'),
+      'fulldate' => $paste->created_at->format('d/m/Y - H:i:s'),
+      'noSyntax' => $paste->noSyntax,
+    ]);
+  }
+
+	public function edit($link, Requests\EditPaste $request){
+    $paste = Paste::where('link', $link)->firstOrFail();
+
+    // Est-ce que l'utilisateur connecté est celui qui a écrit la paste ?
+    if (Auth::user() != $paste->user || $paste->userId == 0) {
+      return abort('404');
+    }
+
+    $title = (empty(trim(Input::get('pasteTitle')))) ? 'Untitled' : Input::get('pasteTitle');
+
+		$expiration = Input::get('expire');
+		$privacy = Input::get('privacy');
+
+		// Ici on vérifie que l'user a pas foutu le bronx dans les dropdown list
+		$possibleValuesPrivacy = array("link", "password", "private");
+		if (in_array($privacy, $possibleValuesPrivacy) == false) return view('paste/edit');
+
+		// Si l'user a choisi password-protected, on hash son pass, sinon on met 'disabled' dans la variable
+		if ($privacy == 'password') $password = bcrypt(Input::get('pastePassword'));
+		else $password = 'disabled';
+
+		$burnAfter = 0;
+		// Ici on génère le timestamp d'expiration
+		switch ($expiration) {
+			case 'never':
+        $timestampExp = 0;
+        break;
+			case 'burn':
+        $timestampExp = date('Y-m-d H:i:s', time());
+        $burnAfter = 1;
+			  break;
+			case '10m':
+        $timestampExp = date('Y-m-d H:i:s', time()+600);
+        break;
+			case '1h':
+        $timestampExp = date('Y-m-d H:i:s', time()+3600);
+        break;
+			case '1d':
+        $timestampExp = date('Y-m-d H:i:s', time()+86400);
+        break;
+			case '1w':
+        $timestampExp = date('Y-m-d H:i:s', time()+604800);
+        break;
+			default:
+        die("User input error.");
+        break;
+		}
+
+    $paste->title = $title;
+    $paste->content = Input::get('pasteContent');
+		$paste->expiration = $timestampExp;
+		$paste->privacy = $privacy;
+		$paste->password = $password;
+		$paste->noSyntax = Input::has('noSyntax');
+    $paste->burnAfter = $burnAfter;
+
+    $paste->save();
+
+    return redirect('/'.$link);
+  }
+
+  public function password($link, Request $request){
+    $paste = Paste::where('link', $link)->firstOrFail();
+    $messages = array(
+      'pastePassword.required' => 'Please enter a password',
+    );
+    $this->validate($request, [
+      'pastePassword' => 'required',
+    ], $messages);
+
+    if (Hash::check(Input::get('pastePassword'), $paste->password)) {
+      Cookie::queue($paste->link, Input::get('pastePassword'), 15);
+      return redirect('/'.$link);
+    }
+    else {
+      return view('paste/password', ['link' => $paste->link, 'wrongPassword' => true]);
+    }
+  }
+}

app/Http/Requests/EditPaste.php

@@ -0,0 +1,43 @@
+<?php
+
+namespace App\Http\Requests;
+
+use Illuminate\Foundation\Http\FormRequest;
+
+class EditPaste extends FormRequest
+{
+    /**
+     * Determine if the user is authorized to make this request.
+     *
+     * @return bool
+     */
+    public function authorize()
+    {
+        return true;
+    }
+
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array
+     */
+    public function rules()
+    {
+        return [
+            'pasteTitle' => 'max:70',
+            'pasteContent' => 'required',
+            'pastePassword' => 'required_if:privacy,password',
+            'expire' => 'required',
+        ];
+    }
+
+    public function messages()
+    {
+        return [
+            'pasteContent.required' => 'Your paste cannot be empty.',
+            'pastePassword.required_if' => 'Please enter a password.',
+            'pasteTitle.max' => 'Title must not exceed 70 characters.',
+            'expire.required' => 'Paste expiration is required.',
+        ];
+    }
+}

resources/views/paste/edit.blade.php

@@ -0,0 +1,121 @@
+@extends('default')
+
+@section('pagetitle') Edit {{  $title  }} - EdPaste @endsection
+
+@section('navbar')
+<li class="nav-item active"><a href="#" class="nav-link">Home</a></li>
+@if (Auth::check())
+<li class="nav-item"><a href="/users/dashboard" class="nav-link">Dashboard</a></li>
+<li class="nav-item"><a href="/users/account" class="nav-link">My Account</a></li>
+<li class="nav-item"><a href=" /logout" class="nav-link">Logout <i>({{ Auth::user()->name }})</i></a></li>
+@else
+<li class="nav-item"><a href="/login" class="nav-link">Login</a></li>
+<li class="nav-item"><a href="/register" class="nav-link">Register</a></li>
+@endif
+@endsection
+
+@section('script')
+<script src="../jquery.autogrowtextarea.min.js"></script>
+<script>
+	function checkvalue(value)
+	{
+		if(value==="password")
+			document.getElementById('passwordInput').style.display='block';
+		else
+			document.getElementById('passwordInput').style.display='none';
+	}
+</script>
+@endsection
+
+@section('content')
+<div class="container">
+	<form action="/edit/{{ $link }}" method="post" accept-charset="utf-8">
+		{{ csrf_field() }}
+		{{-- Ca c'est pour éviter que les navigateurs préremplissent les champs --}}
+		<input style="display:none" type="text" name="fakeusernameremembered"/>
+		<input style="display:none" type="password" name="fakepasswordremembered"/>
+
+		<div class="row">
+			<div class="form-group col-xs-12 @if ($errors->has('pasteTitle')) has-error @endif">
+				<label for="pasteTitle">Title</label>
+				<input type="text" class="form-control" name="pasteTitle" id="pasteTitle" placeholder="Title (optional)" maxlength="70" value="{{ old('pasteTitle') ? old('pasteTitle') : $title }}">
+				@if ($errors->has('pasteTitle'))
+				<span class="help-block">
+					<strong>{{ $errors->first('pasteTitle') }}</strong>
+				</span>
+				@endif
+			</div>
+		</div>
+		<div class="row">
+			<div class="form-group col-xs-12 @if ($errors->has('pasteContent')) has-error @endif">
+				<label for="pasteContent">Content</label>
+				<script type="text/javascript">
+					$(document).ready(function(){
+						$("#pasteContent").autoGrow();
+					});
+				</script>
+				<textarea class="form-control input-sm" name="pasteContent" id="pasteContent" rows="15" placeholder="Paste your text here..." style="font-family: monospace;">{{ old('pasteContent') ? old('pasteContent') : $content }}</textarea>
+				@if ($errors->has('pasteContent'))
+				<span class="help-block">
+					<strong>{{ $errors->first('pasteContent') }}</strong>
+				</span>
+				@endif
+			</div>
+		</div>
+		<div class="row">
+			<div class="form-group col-sm-3 @if ($errors->has('expire')) has-error @endif">
+				<label for="expire">Paste expiration</label>
+				<select class="form-control" name="expire" id="expire">
+                    <option disabled selected></option>
+					<option value="never">Never</option>
+					<option value="burn">Burn after reading</option>
+					<option value="10m">10 minutes</option>
+					<option value="1h">1 hour</option>
+					<option value="1d">1 day</option>
+					<option value="1w">1 week</option>
+				</select>
+                @if ($errors->has('expire'))
+				<span class="help-block">
+					<strong>{{ $errors->first('expire') }}</strong>
+				</span>
+				@endif
+			</div>
+			<div class="form-group col-sm-3 @if ($errors->has('pastePassword')) has-error @endif">
+				<label for="privacy">Privacy</label>
+				<select class="form-control" name="privacy" id="privacy" onchange='checkvalue(this.value)'>
+					<option value="link" {{ $privacy == "link" ? 'selected' : '' }}>Unlisted, access with link</option>
+					<option value="password" {{ $privacy == "password" || $errors->has('pastePassword') ? 'selected' : '' }}>Password-protected</option>
+					<option value="private" {{ $privacy == "private" ? 'selected' : '' }}>Private, only me</option>
+				</select>
+			</div>
+			{{-- Ce truc n'apparait que si "Password-protected" est séléctionné plus haut --}}
+			<div class="form-group col-sm-2 @if ($errors->has('pastePassword')) has-error @endif" id="passwordInput" @if (!$errors->has('pastePassword')) style="display:none;" @endif>
+				<label for="pastePassword">Password</label>
+				<input type="password" class="form-control" name="pastePassword" id="pastePassword" placeholder="Enter a password..." maxlength="40">
+				@if ($errors->has('pastePassword'))
+				<span class="help-block">
+					<strong>{{ $errors->first('pastePassword') }}</strong>
+				</span>
+				@endif
+			</div>
+		</div>
+		<div class="row">
+			<div class="form-group text-center">
+				<script>
+					$(function () {
+						$('[data-toggle="tooltip"]').tooltip()
+					})
+				</script>
+				{{-- La tooltip n'apparaît que pour les users non-id et le btn devient danger si y'a des erreurs --}}
+				<div class="checkbox">
+					<label><input type="checkbox" name="noSyntax" @if ($noSyntax) checked @endif>Disable syntax highlighting</label>
+				</div>
+				<button type="submit" id="submit" class="btn @if (count($errors) > 0) btn-danger @else btn-outline-success @endif  btn-lg" @if (!Auth::check()) data-toggle="tooltip" data-placement="top" title="Registered users have access to other privacy tools" @endif>Submit</button>
+			</div>
+		</div>
+
+	</div>
+</div>
+</form>
+</div>
+@endsection

resources/views/paste/view.blade.php

@@ -130,7 +130,9 @@
 	{{-- N'est formaté que si le SH est activé --}}
 	<div class="row" @if ($noSyntax == true) style="margin-bottom:20px;" @endif>
 		<div class="col-sm-12">
-			<label for="paste"><i>@if ($noSyntax == false) Syntax-highlighted @else Plain-text @endif</i></label>@if ($privacy != "Password-protected") <i class="pull-right"><a href="/raw/{{ $link }}">Raw paste</a> @endif </i>
+			<label for="paste"><i>@if ($noSyntax == false) Syntax-highlighted @else Plain-text @endif</i></label>
+			@if ($privacy != "Password-protected") <i class="pull-right"><a href="/raw/{{ $link }}">Raw paste</a> @endif </i>
+			@if ($sameUser) <i class="pull-right" style="margin-right: 10px;"><a href="/edit/{{ $link }}">Edit paste</a> @endif </i>
 			<pre id="paste"><code>@if ($noSyntax == true)<i>@endif{{ $content }} @if ($noSyntax == true)</i>@endif</code></pre>
 		</div>
 	</div>

routes/web.php

@@ -19,6 +19,8 @@
 Route::post('/', 'PasteController@submit');
 Route::get('/{link}', 'PasteController@view')->where('link', '[a-zA-Z0-9]+');
 Route::post('/{link}', 'PasteController@view')->where('link', '[a-zA-Z0-9]+');
+Route::get('/edit/{link}', 'EditPasteController@index')->where('link', '[a-zA-Z0-9]+');
+Route::post('/edit/{link}', 'EditPasteController@edit')->where('link', '[a-zA-Z0-9]+');
 Route::get('/raw/{link}', 'PasteController@raw')->where('link', '[a-zA-Z0-9]+');
 // Route::post('/{link}', 'PasteController@password')->where('link', '[a-zA-Z0-9]+');
 Route::get('users/dashboard', 'UserController@dashboard');