middleware('auth'); } public function apiV1Add(Request $request) { abort_if(!config('instance.stories.enabled') || !$request->user(), 404); $this->validate($request, [ 'file.*' => function() { return [ 'required', 'mimes:image/jpeg,image/png', 'max:' . config('pixelfed.max_photo_size'), ]; }, ]); $user = $request->user(); if(Story::whereProfileId($user->profile_id)->where('expires_at', '>', now())->count() >= Story::MAX_PER_DAY) { abort(400, 'You have reached your limit for new Stories today.'); } $story = new Story(); $story->profile_id = $user->profile_id; $story->save(); $monthHash = substr(hash('sha1', date('Y').date('m')), 0, 12); $rid = Str::random(6).'.'.Str::random(9); $photo = $request->file('file'); $mimes = explode(',', config('pixelfed.media_types')); if(in_array($photo->getMimeType(), [ 'image/jpeg', 'image/png' ]) == false) { abort(400, 'Invalid media type'); return; } $storagePath = "public/_esm.t1/{$monthHash}/{$story->id}/{$rid}"; $path = $photo->store($storagePath); $story->path = $path; $story->local = true; $story->expires_at = now()->addHours(24); $story->save(); return [ 'code' => 200, 'msg' => 'Successfully added', 'media_url' => url(Storage::url($story->path)) ]; } public function apiV1Delete(Request $request, $id) { abort_if(!config('instance.stories.enabled') || !$request->user(), 404); $user = $request->user(); $story = Story::whereProfileId($user->profile_id) ->findOrFail($id); if(Storage::exists($story->path) == true) { Storage::delete($story->path); } $story->delete(); return [ 'code' => 200, 'msg' => 'Successfully deleted' ]; } public function apiV1Recent(Request $request) { abort_if(!config('instance.stories.enabled') || !$request->user(), 404); $profile = $request->user()->profile; $following = FollowerService::build()->profile($profile)->following(); $stories = Story::with('profile') ->whereIn('profile_id', $following) ->groupBy('profile_id') ->where('expires_at', '>', now()) ->orderByDesc('expires_at') ->take(9) ->get() ->map(function($s, $k) { return [ 'id' => (string) $s->id, 'photo' => $s->profile->avatarUrl(), 'name' => $s->profile->username, 'link' => $s->profile->url(), 'lastUpdated' => (int) $s->created_at->format('U'), 'seen' => $s->seen(), 'items' => [], 'pid' => (string) $s->profile->id ]; }); return response()->json($stories, 200, [], JSON_PRETTY_PRINT|JSON_UNESCAPED_SLASHES); } public function apiV1Fetch(Request $request, $id) { abort_if(!config('instance.stories.enabled') || !$request->user(), 404); $profile = $request->user()->profile; if($id == $profile->id) { $publicOnly = true; } else { $following = FollowerService::build()->profile($profile)->following(); $publicOnly = in_array($id, $following); } $stories = Story::whereProfileId($id) ->orderBy('expires_at', 'desc') ->where('expires_at', '>', now()) ->when(!$publicOnly, function($query, $publicOnly) { return $query->wherePublic(true); }) ->get() ->map(function($s, $k) { return [ 'id' => (string) $s->id, 'type' => 'photo', 'length' => 3, 'src' => url(Storage::url($s->path)), 'preview' => null, 'link' => null, 'linkText' => null, 'time' => $s->created_at->format('U'), 'expires_at' => (int) $s->expires_at->format('U'), 'seen' => $s->seen() ]; })->toArray(); return response()->json($stories, 200, [], JSON_PRETTY_PRINT|JSON_UNESCAPED_SLASHES); } public function apiV1Profile(Request $request, $id) { abort_if(!config('instance.stories.enabled') || !$request->user(), 404); $authed = $request->user()->profile; $profile = Profile::findOrFail($id); if($id == $authed->id) { $publicOnly = true; } else { $following = FollowerService::build()->profile($authed)->following(); $publicOnly = in_array($id, $following); } $stories = Story::whereProfileId($profile->id) ->orderBy('expires_at') ->where('expires_at', '>', now()) ->when(!$publicOnly, function($query, $publicOnly) { return $query->wherePublic(true); }) ->get() ->map(function($s, $k) { return [ 'id' => $s->id, 'type' => 'photo', 'length' => 3, 'src' => url(Storage::url($s->path)), 'preview' => null, 'link' => null, 'linkText' => null, 'time' => $s->created_at->format('U'), 'expires_at' => (int) $s->expires_at->format('U'), 'seen' => $s->seen() ]; })->toArray(); if(count($stories) == 0) { return []; } $cursor = count($stories) - 1; $stories = [[ 'id' => (string) $stories[$cursor]['id'], 'photo' => $profile->avatarUrl(), 'name' => $profile->username, 'link' => $profile->url(), 'lastUpdated' => (int) now()->format('U'), 'seen' => null, 'items' => $stories, 'pid' => (string) $profile->id ]]; return response()->json($stories, 200, [], JSON_PRETTY_PRINT|JSON_UNESCAPED_SLASHES); } public function apiV1Viewed(Request $request) { abort_if(!config('instance.stories.enabled') || !$request->user(), 404); $this->validate($request, [ 'id' => 'required|integer|min:1|exists:stories', ]); StoryView::firstOrCreate([ 'story_id' => $request->input('id'), 'profile_id' => $request->user()->profile_id ]); return ['code' => 200]; } public function compose(Request $request) { abort_if(!config('instance.stories.enabled') || !$request->user(), 404); return view('stories.compose'); } public function apiV1Exists(Request $request, $id) { abort_if(!config('instance.stories.enabled'), 404); $res = (bool) Story::whereProfileId($id) ->where('expires_at', '>', now()) ->count(); return response()->json($res); } public function iRedirect(Request $request) { $user = $request->user(); abort_if(!$user, 404); $username = $user->username; return redirect("/stories/{$username}"); } }