summaryrefslogtreecommitdiff
path: root/IkiWiki/Plugin/remove.pm
blob: f263db9b82e53ede60ff2e5dc494536993a31615 (plain) 
    

  1. #!/usr/bin/perl
    2. 

  2. package IkiWiki::Plugin::remove;
    3. 

  3. 

  4. use warnings;
    5. 

  5. use strict;
    6. 

  6. use IkiWiki 2.00;
    7. 

  7. 

  8. sub import { #{{{
    9. 

  9.     hook(type => "formbuilder_setup", id => "remove", call => \&formbuilder_setup);
    10. 

  10.     hook(type => "formbuilder", id => "remove", call => \&formbuilder);
    11. 

  11.     hook(type => "sessioncgi", id => "remove", call => \&sessioncgi);
    12. 

  12. 

  13. } # }}}
    14. 

  14. 

  15. sub check_canremove ($$$$) {
    16. 

  16.     my $page=shift;
    17. 

  17.     my $q=shift;
    18. 

  18.     my $session=shift;
    19. 

  19.     my $attachment=shift;
    20. 

  20. 

  21.     # Must be a known source file.
    22. 

  22.     if (! exists $pagesources{$page}) {
    23. 

  23.         error(sprintf(gettext("%s does not exist"),
    24. 

  24.             htmllink("", "", $page, noimageinline => 1)));
    25. 

  25.     }
    26. 

  26. 

  27.     # Must exist on disk, and be a regular file.
    28. 

  28.     my $file=$pagesources{$page};
    29. 

  29.     if (! -e "$config{srcdir}/$file") {
    30. 

  30.         error(sprintf(gettext("%s is not in the srcdir, so it cannot be deleted"), $file));
    31. 

  31.     }
    32. 

  32.     elsif (-l "$config{srcdir}/$file" && ! -f _) {
    33. 

  33.         error(sprintf(gettext("%s is not a file"), $file));
    34. 

  34.     }
    35. 

  35.     
    36. 

  36.     # Must be editiable.
    37. 

  37.     IkiWiki::check_canedit($page, $q, $session);
    38. 

  38. 

  39.     # This is sorta overkill, but better safe
    40. 

  40.     # than sorry. If a user can't upload an
    41. 

  41.     # attachment, don't let them delete it.
    42. 

  42.     if ($attachment) {
    43. 

  43.         IkiWiki::Plugin::attachment::check_canattach($session, $page, $file);
    44. 

  44.     }
    45. 

  45. }
    46. 

  46. 

  47. sub formbuilder_setup (@) { #{{{
    48. 

  48.     my %params=@_;
    49. 

  49.     my $form=$params{form};
    50. 

  50.     my $q=$params{cgi};
    51. 

  51. 

  52.     if (defined $form->field("do") && $form->field("do") eq "edit") {
    53. 

  53.         # Removal button for the page, and also for attachments.
    54. 

  54.         push @{$params{buttons}}, "Remove";
    55. 

  55.         $form->tmpl_param("field-remove" => '<input name="_submit" type="submit" value="Remove Attachments" />');
    56. 

  56.     }
    57. 

  57. } #}}}
    58. 

  58. 

  59. sub confirmation_form ($$) { #{{{ 
    60. 

  60.     my $q=shift;
    61. 

  61.     my $session=shift;
    62. 

  62. 

  63.     eval q{use CGI::FormBuilder};
    64. 

  64.     error($@) if $@;
    65. 

  65.     my $f = CGI::FormBuilder->new(
    66. 

  66.         name => "remove",
    67. 

  67.         header => 0,
    68. 

  68.         charset => "utf-8",
    69. 

  69.         method => 'POST',
    70. 

  70.         javascript => 0,
    71. 

  71.         params => $q,
    72. 

  72.         action => $config{cgiurl},
    73. 

  73.         stylesheet => IkiWiki::baseurl()."style.css",
    74. 

  74.         fields => [qw{do page}],
    75. 

  75.     );
    76. 

  76.     
    77. 

  77.     $f->field(name => "do", type => "hidden", value => "remove", force => 1);
    78. 

  78. 

  79.     return $f, ["Remove", "Cancel"];
    80. 

  80. } #}}}
    81. 

  81. 

  82. sub removal_confirm ($$@) {
    83. 

  83.     my $q=shift;
    84. 

  84.     my $session=shift;
    85. 

  85.     my $attachment=shift;
    86. 

  86.     my @pages=@_;
    87. 

  87. 

  88.     check_canremove($_, $q, $session, $attachment) foreach @pages;
    89. 

  89. 

  90.     # Save current form state to allow returning to it later
    91. 

  91.     # without losing any edits.
    92. 

  92.     # (But don't save what button was submitted, to avoid
    93. 

  93.     # looping back to here.)
    94. 

  94.     # Note: "_submit" is CGI::FormBuilder internals.
    95. 

  95.     $q->param(-name => "_submit", -value => "");
    96. 

  96.     $session->param(postremove => scalar $q->Vars);
    97. 

  97.     IkiWiki::cgi_savesession($session);
    98. 

  98.     
    99. 

  99.     my ($f, $buttons)=confirmation_form($q, $session);
    100. 

  100.     $f->title(sprintf(gettext("confirm removal of %s"),
    101. 

  101.         join(", ", map { IkiWiki::pagetitle($_) } @pages)));
    102. 

  102.     $f->field(name => "page", type => "hidden", value => \@pages, force => 1);
    103. 

  103.     if (defined $attachment) {
    104. 

  104.         $f->field(name => "attachment", type => "hidden",
    105. 

  105.             value => $attachment, force => 1);
    106. 

  106.     }
    107. 

  107. 

  108.     IkiWiki::showform($f, $buttons, $session, $q);
    109. 

  109.     exit 0;
    110. 

  110. }
    111. 

  111. 

  112. sub postremove ($) {
    113. 

  113.     my $session=shift;
    114. 

  114. 

  115.     # Load saved form state and return to edit form.
    116. 

  116.     my $postremove=CGI->new($session->param("postremove"));
    117. 

  117.     $session->clear("postremove");
    118. 

  118.     IkiWiki::cgi_savesession($session);
    119. 

  119.     IkiWiki::cgi($postremove, $session);
    120. 

  120. }
    121. 

  121. 

  122. sub formbuilder (@) { #{{{
    123. 

  123.     my %params=@_;
    124. 

  124.     my $form=$params{form};
    125. 

  125. 

  126.     if (defined $form->field("do") && $form->field("do") eq "edit") {
    127. 

  127.         my $q=$params{cgi};
    128. 

  128.         my $session=$params{session};
    129. 

  129. 

  130.         if ($form->submitted eq "Remove") {
    131. 

  131.             removal_confirm($q, $session, 0, $form->field("page"));
    132. 

  132.         }
    133. 

  133.         elsif ($form->submitted eq "Remove Attachments") {
    134. 

  134.             my @selected=$q->param("attachment_select");
    135. 

  135.             if (! @selected) {
    136. 

  136.                 error(gettext("Please select the attachments to remove."));
    137. 

  137.             }
    138. 

  138.             removal_confirm($q, $session, 1, @selected);
    139. 

  139.         }
    140. 

  140.     }
    141. 

  141. } #}}}
    142. 

  142. 

  143. sub sessioncgi ($$) { #{{{
    144. 

  144.         my $q=shift;
    145. 

  145. 

  146.     if ($q->param("do") eq 'remove') {
    147. 

  147.             my $session=shift;
    148. 

  148.         my ($form, $buttons)=confirmation_form($q, $session);
    149. 

  149.         IkiWiki::decode_form_utf8($form);
    150. 

  150. 

  151.         if ($form->submitted eq 'Cancel') {
    152. 

  152.             postremove($session);
    153. 

  153.         }
    154. 

  154.         elsif ($form->submitted eq 'Remove' && $form->validate) {
    155. 

  155.             my @pages=$q->param("page");
    156. 

  156.     
    157. 

  157.             # Validate removal by checking that the page exists,
    158. 

  158.             # and that the user is allowed to edit(/remove) it.
    159. 

  159.             my @files;
    160. 

  160.             foreach my $page (@pages) {
    161. 

  161.                 check_canremove($page, $q, $session, $q->param("attachment"));
    162. 

  162.                 
    163. 

  163.                 # This untaint is safe because of the
    164. 

  164.                 # checks performed above, which verify the
    165. 

  165.                 # page is a normal file, etc.
    166. 

  166.                 push @files, IkiWiki::possibly_foolish_untaint($pagesources{$page});
    167. 

  167.             }
    168. 

  168. 

  169.             # Do removal, and update the wiki.
    170. 

  170.             require IkiWiki::Render;
    171. 

  171.             if ($config{rcs}) {
    172. 

  172.                 IkiWiki::disable_commit_hook();
    173. 

  173.                 foreach my $file (@files) {
    174. 

  174.                     my $token=IkiWiki::rcs_prepedit($file);
    175. 

  175.                     IkiWiki::rcs_remove($file);
    176. 

  176.                     IkiWiki::rcs_commit($file, gettext("removed"),
    177. 

  177.                         $token, $session->param("name"), $ENV{REMOTE_ADDR});
    178. 

  178.                 }
    179. 

  179.                 IkiWiki::enable_commit_hook();
    180. 

  180.                 IkiWiki::rcs_update();
    181. 

  181.             }
    182. 

  182.             else {
    183. 

  183.                 foreach my $file (@files) {
    184. 

  184.                     IkiWiki::prune("$config{srcdir}/$file");
    185. 

  185.                 }
    186. 

  186.             }
    187. 

  187.             IkiWiki::refresh();
    188. 

  188.             IkiWiki::saveindex();
    189. 

  189. 

  190.             if ($q->param("attachment")) {
    191. 

  191.                 # Attachments were deleted, so redirect
    192. 

  192.                 # back to the edit form.
    193. 

  193.                 postremove($session);
    194. 

  194.             }
    195. 

  195.             else {
    196. 

  196.                 # The page is gone, so redirect to parent
    197. 

  197.                 # of the page.
    198. 

  198.                 my $parent=IkiWiki::dirname($pages[0]);
    199. 

  199.                 if (! exists $pagesources{$parent}) {
    200. 

  200.                     $parent="index";
    201. 

  201.                 }
    202. 

  202.                 IkiWiki::redirect($q, $config{url}."/".htmlpage($parent));
    203. 

  203.             }
    204. 

  204.         }
    205. 

  205.         else {
    206. 

  206.             IkiWiki::showform($form, $buttons, $session, $q);
    207. 

  207.         }
    208. 

  208. 

  209.         exit 0;
    210. 

  210.     }
    211. 

  211. }
    212. 

  212. 

  213. 1
    214.
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-01 16:57:14 +0000