misuzu/src/Http/Handlers/AssetsHandler.php

<?php
namespace Misuzu\Http\Handlers;

use RuntimeException;
use Misuzu\GitInfo;
use Misuzu\Users\UserInfo;
use Misuzu\Users\Assets\StaticUserImageAsset;
use Misuzu\Users\Assets\UserAssetScalableInterface;
use Misuzu\Users\Assets\UserAvatarAsset;
use Misuzu\Users\Assets\UserBackgroundAsset;
use Misuzu\Users\Assets\UserImageAssetInterface;

final class AssetsHandler extends Handler {
    private function canViewAsset($request, UserInfo $assetUser): bool {
        return !$this->context->hasActiveBan($assetUser) || (
            $this->context->isLoggedIn()
            && parse_url($request->getHeaderFirstLine('Referer'), PHP_URL_PATH) === url('user-profile')
            && perms_check_user(MSZ_PERMS_USER, $this->context->getActiveUser()->getId(), MSZ_PERM_USER_MANAGE_USERS)
        );
    }

    private function serveUserAsset($response, $request, UserImageAssetInterface $assetInfo): void {
        $contentType = $assetInfo->getMimeType();
        $publicPath = $assetInfo->getPublicPath();
        $fileName = $assetInfo->getFileName();

        if($assetInfo instanceof UserAssetScalableInterface) {
            $dimensions = (int)($request->getParam('res', FILTER_SANITIZE_NUMBER_INT) ?? $request->getParam('r', FILTER_SANITIZE_NUMBER_INT));

            if($dimensions > 0) {
                $assetInfo->ensureScaledExists($dimensions);
                $contentType = $assetInfo->getScaledMimeType($dimensions);
                $publicPath = $assetInfo->getPublicScaledPath($dimensions);
                $fileName = $assetInfo->getScaledFileName($dimensions);
            }
        }

        $response->accelRedirect($publicPath);
        $response->setContentType($contentType);
        $response->setFileName($fileName, false);
    }

    public function serveAvatar($response, $request, string $fileName) {
        $userId = (int)pathinfo($fileName, PATHINFO_FILENAME);
        $type = pathinfo($fileName, PATHINFO_EXTENSION);

        if($type !== '' && $type !== 'png')
            return 404;

        $assetInfo = new StaticUserImageAsset(MSZ_PUBLIC . '/images/no-avatar.png', MSZ_PUBLIC);

        try {
            $userInfo = $this->context->getUsers()->getUser($userId, 'id');

            if(!$this->canViewAsset($request, $userInfo)) {
                $assetInfo = new StaticUserImageAsset(MSZ_PUBLIC . '/images/banned-avatar.png', MSZ_PUBLIC);
            } else {
                $userAssetInfo = new UserAvatarAsset($userInfo);
                if($userAssetInfo->isPresent())
                    $assetInfo = $userAssetInfo;
            }
        } catch(RuntimeException $ex) {}

        $this->serveUserAsset($response, $request, $assetInfo);
    }

    public function serveProfileBackground($response, $request, string $fileName) {
        $userId = (int)pathinfo($fileName, PATHINFO_FILENAME);
        $type = pathinfo($fileName, PATHINFO_EXTENSION);

        if($type !== '' && $type !== 'png')
            return 404;

        try {
            $userInfo = $this->context->getUsers()->getUser($userId, 'id');
        } catch(RuntimeException $ex) {}

        if(!empty($userInfo)) {
            $userAssetInfo = new UserBackgroundAsset($userInfo);
            if($userAssetInfo->isPresent() && $this->canViewAsset($request, $userInfo))
                $assetInfo = $userAssetInfo;
        }

        if(!isset($assetInfo)) {
            $response->setContent('');
            return 404;
        }

        $this->serveUserAsset($response, $request, $assetInfo);
    }

    public function serveLegacy($response, $request) {
        $assetUserId = $request->getParam('u', FILTER_SANITIZE_NUMBER_INT);

        switch($request->getParam('m')) {
            case 'avatar':
                $this->serveAvatar($response, $request, $assetUserId);
                return;
            case 'background':
                $this->serveProfileBackground($response, $request, $assetUserId);
                return;
        }

        $response->setContent('');
        return 404;
    }
}
Imported into new repository. 2022-09-13 13:14:49 +00:00			`<?php`
			`namespace Misuzu\Http\Handlers;`

Normalised custom exception usage in user classes. Also updated the Index library to include the MediaType fix. 2023-07-22 15:02:41 +00:00			`use RuntimeException;`
Imported into new repository. 2022-09-13 13:14:49 +00:00			`use Misuzu\GitInfo;`
Rewrote the user information class. This one took multiple days and it pretty invasive into the core of Misuzu so issue might (will) arise, there's also some features that have gone temporarily missing in the mean time and some inefficiencies introduced that will be fixed again at a later time. The old class isn't gone entirely because I still have to figure out what I'm gonna do about validation, but for the most part this knocks out one of the "layers of backwards compatibility", as I've been referring to it, and is moving us closer to a future where Flashii actually gets real updates. If you run into anything that's broken and you're inhibited from reporting it through the forum, do it through chat or mail me at flashii-issues@flash.moe. 2023-08-02 22:12:47 +00:00			`use Misuzu\Users\UserInfo;`
Imported into new repository. 2022-09-13 13:14:49 +00:00			`use Misuzu\Users\Assets\StaticUserImageAsset;`
			`use Misuzu\Users\Assets\UserAssetScalableInterface;`
Rewrote the user information class. This one took multiple days and it pretty invasive into the core of Misuzu so issue might (will) arise, there's also some features that have gone temporarily missing in the mean time and some inefficiencies introduced that will be fixed again at a later time. The old class isn't gone entirely because I still have to figure out what I'm gonna do about validation, but for the most part this knocks out one of the "layers of backwards compatibility", as I've been referring to it, and is moving us closer to a future where Flashii actually gets real updates. If you run into anything that's broken and you're inhibited from reporting it through the forum, do it through chat or mail me at flashii-issues@flash.moe. 2023-08-02 22:12:47 +00:00			`use Misuzu\Users\Assets\UserAvatarAsset;`
			`use Misuzu\Users\Assets\UserBackgroundAsset;`
			`use Misuzu\Users\Assets\UserImageAssetInterface;`
Imported into new repository. 2022-09-13 13:14:49 +00:00
			`final class AssetsHandler extends Handler {`
Rewrote the user information class. This one took multiple days and it pretty invasive into the core of Misuzu so issue might (will) arise, there's also some features that have gone temporarily missing in the mean time and some inefficiencies introduced that will be fixed again at a later time. The old class isn't gone entirely because I still have to figure out what I'm gonna do about validation, but for the most part this knocks out one of the "layers of backwards compatibility", as I've been referring to it, and is moving us closer to a future where Flashii actually gets real updates. If you run into anything that's broken and you're inhibited from reporting it through the forum, do it through chat or mail me at flashii-issues@flash.moe. 2023-08-02 22:12:47 +00:00			`private function canViewAsset($request, UserInfo $assetUser): bool {`
Added new banning system. it actually works and isn't confusing this time around! 2023-07-26 18:19:46 +00:00			`return !$this->context->hasActiveBan($assetUser) \|\| (`
Rewrote the user information class. This one took multiple days and it pretty invasive into the core of Misuzu so issue might (will) arise, there's also some features that have gone temporarily missing in the mean time and some inefficiencies introduced that will be fixed again at a later time. The old class isn't gone entirely because I still have to figure out what I'm gonna do about validation, but for the most part this knocks out one of the "layers of backwards compatibility", as I've been referring to it, and is moving us closer to a future where Flashii actually gets real updates. If you run into anything that's broken and you're inhibited from reporting it through the forum, do it through chat or mail me at flashii-issues@flash.moe. 2023-08-02 22:12:47 +00:00			`$this->context->isLoggedIn()`
Imported into new repository. 2022-09-13 13:14:49 +00:00			`&& parse_url($request->getHeaderFirstLine('Referer'), PHP_URL_PATH) === url('user-profile')`
Rewrote the user information class. This one took multiple days and it pretty invasive into the core of Misuzu so issue might (will) arise, there's also some features that have gone temporarily missing in the mean time and some inefficiencies introduced that will be fixed again at a later time. The old class isn't gone entirely because I still have to figure out what I'm gonna do about validation, but for the most part this knocks out one of the "layers of backwards compatibility", as I've been referring to it, and is moving us closer to a future where Flashii actually gets real updates. If you run into anything that's broken and you're inhibited from reporting it through the forum, do it through chat or mail me at flashii-issues@flash.moe. 2023-08-02 22:12:47 +00:00			`&& perms_check_user(MSZ_PERMS_USER, $this->context->getActiveUser()->getId(), MSZ_PERM_USER_MANAGE_USERS)`
Imported into new repository. 2022-09-13 13:14:49 +00:00			`);`
			`}`

			`private function serveUserAsset($response, $request, UserImageAssetInterface $assetInfo): void {`
			`$contentType = $assetInfo->getMimeType();`
			`$publicPath = $assetInfo->getPublicPath();`
			`$fileName = $assetInfo->getFileName();`

			`if($assetInfo instanceof UserAssetScalableInterface) {`
			`$dimensions = (int)($request->getParam('res', FILTER_SANITIZE_NUMBER_INT) ?? $request->getParam('r', FILTER_SANITIZE_NUMBER_INT));`

			`if($dimensions > 0) {`
			`$assetInfo->ensureScaledExists($dimensions);`
			`$contentType = $assetInfo->getScaledMimeType($dimensions);`
			`$publicPath = $assetInfo->getPublicScaledPath($dimensions);`
			`$fileName = $assetInfo->getScaledFileName($dimensions);`
			`}`
			`}`

			`$response->accelRedirect($publicPath);`
			`$response->setContentType($contentType);`
			`$response->setFileName($fileName, false);`
			`}`

			`public function serveAvatar($response, $request, string $fileName) {`
Index updates + floatval, intval -> casts. 2023-01-01 19:06:01 +00:00			`$userId = (int)pathinfo($fileName, PATHINFO_FILENAME);`
Imported into new repository. 2022-09-13 13:14:49 +00:00			`$type = pathinfo($fileName, PATHINFO_EXTENSION);`

			`if($type !== '' && $type !== 'png')`
			`return 404;`

			`$assetInfo = new StaticUserImageAsset(MSZ_PUBLIC . '/images/no-avatar.png', MSZ_PUBLIC);`

			`try {`
Rewrote the user information class. This one took multiple days and it pretty invasive into the core of Misuzu so issue might (will) arise, there's also some features that have gone temporarily missing in the mean time and some inefficiencies introduced that will be fixed again at a later time. The old class isn't gone entirely because I still have to figure out what I'm gonna do about validation, but for the most part this knocks out one of the "layers of backwards compatibility", as I've been referring to it, and is moving us closer to a future where Flashii actually gets real updates. If you run into anything that's broken and you're inhibited from reporting it through the forum, do it through chat or mail me at flashii-issues@flash.moe. 2023-08-02 22:12:47 +00:00			`$userInfo = $this->context->getUsers()->getUser($userId, 'id');`
Imported into new repository. 2022-09-13 13:14:49 +00:00
			`if(!$this->canViewAsset($request, $userInfo)) {`
			`$assetInfo = new StaticUserImageAsset(MSZ_PUBLIC . '/images/banned-avatar.png', MSZ_PUBLIC);`
Rewrote the user information class. This one took multiple days and it pretty invasive into the core of Misuzu so issue might (will) arise, there's also some features that have gone temporarily missing in the mean time and some inefficiencies introduced that will be fixed again at a later time. The old class isn't gone entirely because I still have to figure out what I'm gonna do about validation, but for the most part this knocks out one of the "layers of backwards compatibility", as I've been referring to it, and is moving us closer to a future where Flashii actually gets real updates. If you run into anything that's broken and you're inhibited from reporting it through the forum, do it through chat or mail me at flashii-issues@flash.moe. 2023-08-02 22:12:47 +00:00			`} else {`
			`$userAssetInfo = new UserAvatarAsset($userInfo);`
			`if($userAssetInfo->isPresent())`
			`$assetInfo = $userAssetInfo;`
Imported into new repository. 2022-09-13 13:14:49 +00:00			`}`
Normalised custom exception usage in user classes. Also updated the Index library to include the MediaType fix. 2023-07-22 15:02:41 +00:00			`} catch(RuntimeException $ex) {}`
Imported into new repository. 2022-09-13 13:14:49 +00:00
			`$this->serveUserAsset($response, $request, $assetInfo);`
			`}`

			`public function serveProfileBackground($response, $request, string $fileName) {`
Index updates + floatval, intval -> casts. 2023-01-01 19:06:01 +00:00			`$userId = (int)pathinfo($fileName, PATHINFO_FILENAME);`
Imported into new repository. 2022-09-13 13:14:49 +00:00			`$type = pathinfo($fileName, PATHINFO_EXTENSION);`

			`if($type !== '' && $type !== 'png')`
			`return 404;`

			`try {`
Rewrote the user information class. This one took multiple days and it pretty invasive into the core of Misuzu so issue might (will) arise, there's also some features that have gone temporarily missing in the mean time and some inefficiencies introduced that will be fixed again at a later time. The old class isn't gone entirely because I still have to figure out what I'm gonna do about validation, but for the most part this knocks out one of the "layers of backwards compatibility", as I've been referring to it, and is moving us closer to a future where Flashii actually gets real updates. If you run into anything that's broken and you're inhibited from reporting it through the forum, do it through chat or mail me at flashii-issues@flash.moe. 2023-08-02 22:12:47 +00:00			`$userInfo = $this->context->getUsers()->getUser($userId, 'id');`
Normalised custom exception usage in user classes. Also updated the Index library to include the MediaType fix. 2023-07-22 15:02:41 +00:00			`} catch(RuntimeException $ex) {}`
Imported into new repository. 2022-09-13 13:14:49 +00:00
Rewrote the user information class. This one took multiple days and it pretty invasive into the core of Misuzu so issue might (will) arise, there's also some features that have gone temporarily missing in the mean time and some inefficiencies introduced that will be fixed again at a later time. The old class isn't gone entirely because I still have to figure out what I'm gonna do about validation, but for the most part this knocks out one of the "layers of backwards compatibility", as I've been referring to it, and is moving us closer to a future where Flashii actually gets real updates. If you run into anything that's broken and you're inhibited from reporting it through the forum, do it through chat or mail me at flashii-issues@flash.moe. 2023-08-02 22:12:47 +00:00			`if(!empty($userInfo)) {`
			`$userAssetInfo = new UserBackgroundAsset($userInfo);`
			`if($userAssetInfo->isPresent() && $this->canViewAsset($request, $userInfo))`
			`$assetInfo = $userAssetInfo;`
			`}`

			`if(!isset($assetInfo)) {`
Imported into new repository. 2022-09-13 13:14:49 +00:00			`$response->setContent('');`
			`return 404;`
			`}`

Rewrote the user information class. This one took multiple days and it pretty invasive into the core of Misuzu so issue might (will) arise, there's also some features that have gone temporarily missing in the mean time and some inefficiencies introduced that will be fixed again at a later time. The old class isn't gone entirely because I still have to figure out what I'm gonna do about validation, but for the most part this knocks out one of the "layers of backwards compatibility", as I've been referring to it, and is moving us closer to a future where Flashii actually gets real updates. If you run into anything that's broken and you're inhibited from reporting it through the forum, do it through chat or mail me at flashii-issues@flash.moe. 2023-08-02 22:12:47 +00:00			`$this->serveUserAsset($response, $request, $assetInfo);`
Imported into new repository. 2022-09-13 13:14:49 +00:00			`}`

			`public function serveLegacy($response, $request) {`
Fixed various errors and oversights caught by phpstan. 2023-07-18 22:24:23 +00:00			`$assetUserId = $request->getParam('u', FILTER_SANITIZE_NUMBER_INT);`
Imported into new repository. 2022-09-13 13:14:49 +00:00
			`switch($request->getParam('m')) {`
			`case 'avatar':`
			`$this->serveAvatar($response, $request, $assetUserId);`
			`return;`
			`case 'background':`
			`$this->serveProfileBackground($response, $request, $assetUserId);`
			`return;`
			`}`

			`$response->setContent('');`
			`return 404;`
			`}`
			`}`