1 # GNU MediaGoblin -- federated, autonomous media hosting
2 # Copyright (C) 2011 Free Software Foundation, Inc
4 # This program is free software: you can redistribute it and/or modify
5 # it under the terms of the GNU Affero General Public License as published by
6 # the Free Software Foundation, either version 3 of the License, or
7 # (at your option) any later version.
9 # This program is distributed in the hope that it will be useful,
10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 # GNU Affero General Public License for more details.
14 # You should have received a copy of the GNU Affero General Public License
15 # along with this program. If not, see <http://www.gnu.org/licenses/>.
20 from string
import split
21 from cgi
import FieldStorage
22 from datetime
import datetime
24 from werkzeug
.utils
import secure_filename
26 from mediagoblin
import messages
27 from mediagoblin
import mg_globals
28 from mediagoblin
.util
import (
29 render_to_response
, redirect
, clean_html
, convert_to_tag_list_of_dicts
,
30 media_tags_as_string
, cleaned_markdown_conversion
)
31 from mediagoblin
.util
import pass_to_ugettext
as _
32 from mediagoblin
.edit
import forms
33 from mediagoblin
.edit
.lib
import may_edit_media
34 from mediagoblin
.decorators
import require_active_login
, get_user_media_entry
39 def edit_media(request
, media
):
40 if not may_edit_media(request
, media
):
41 return exc
.HTTPForbidden()
46 description
=media
['description'],
47 tags
=media_tags_as_string(media
['tags']))
49 if len(media
['attachment_files']):
50 defaults
['attachment_name'] = media
['attachment_files'][0]['name']
52 form
= forms
.EditForm(
56 if request
.method
== 'POST' and form
.validate():
57 # Make sure there isn't already a MediaEntry with such a slug
59 existing_user_slug_entries
= request
.db
.MediaEntry
.find(
60 {'slug': request
.POST
['slug'],
61 'uploader': media
['uploader'],
62 '_id': {'$ne': media
['_id']}}).count()
64 if existing_user_slug_entries
:
65 form
.slug
.errors
.append(
66 _(u
'An entry with that slug already exists for this user.'))
68 media
['title'] = unicode(request
.POST
['title'])
69 media
['description'] = unicode(request
.POST
.get('description'))
70 media
['tags'] = convert_to_tag_list_of_dicts(
71 request
.POST
.get('tags'))
73 media
['description_html'] = cleaned_markdown_conversion(
76 if 'attachment_name' in request
.POST
:
77 media
['attachment_files'][0]['name'] = \
78 request
.POST
['attachment_name']
80 if 'attachment_delete' in request
.POST \
81 and 'y' == request
.POST
['attachment_delete']:
82 del media
['attachment_files'][0]
84 media
['slug'] = unicode(request
.POST
['slug'])
87 return redirect(request
, "mediagoblin.user_pages.media_home",
88 user
=media
.uploader()['username'], media
=media
['slug'])
90 if request
.user
['is_admin'] \
91 and media
['uploader'] != request
.user
['_id'] \
92 and request
.method
!= 'POST':
94 request
, messages
.WARNING
,
95 _("You are editing another user's media. Proceed with caution."))
97 return render_to_response(
99 'mediagoblin/edit/edit.html',
104 @get_user_media_entry
105 @require_active_login
106 def edit_attachments(request
, media
):
107 if mg_globals
.app_config
['allow_attachments']:
108 form
= forms
.EditAttachmentsForm()
110 # Add any attachements
111 if ('attachment_file' in request
.POST
112 and isinstance(request
.POST
['attachment_file'], FieldStorage
)
113 and request
.POST
['attachment_file'].file):
115 attachment_public_filepath \
116 = mg_globals
.public_store
.get_unique_filepath(
117 ['media_entries', unicode(media
['_id']), 'attachment',
118 secure_filename(request
.POST
['attachment_file'].filename
)])
120 attachment_public_file
= mg_globals
.public_store
.get_file(
121 attachment_public_filepath
, 'wb')
124 attachment_public_file
.write(
125 request
.POST
['attachment_file'].file.read())
127 request
.POST
['attachment_file'].file.close()
129 media
['attachment_files'].append(dict(
130 name
=request
.POST
['attachment_name'] \
131 or request
.POST
['attachment_file'].filename
,
132 filepath
=attachment_public_filepath
,
133 created
=datetime
.utcnow()
138 messages
.add_message(
139 request
, messages
.SUCCESS
,
140 "You added the attachment %s!" \
141 % (request
.POST
['attachment_name']
142 or request
.POST
['attachment_file'].filename
))
144 return redirect(request
, 'mediagoblin.user_pages.media_home',
145 user
=media
.uploader()['username'],
147 return render_to_response(
149 'mediagoblin/edit/attachments.html',
153 return exc
.HTTPForbidden()
156 @require_active_login
157 def edit_profile(request
):
158 # admins may edit any user profile given a username in the querystring
159 edit_username
= request
.GET
.get('username')
160 if request
.user
['is_admin'] and request
.user
['username'] != edit_username
:
161 user
= request
.db
.User
.find_one({'username': edit_username
})
162 # No need to warn again if admin just submitted an edited profile
163 if request
.method
!= 'POST':
164 messages
.add_message(
165 request
, messages
.WARNING
,
166 _("You are editing a user's profile. Proceed with caution."))
170 form
= forms
.EditProfileForm(request
.POST
,
174 if request
.method
== 'POST' and form
.validate():
175 user
['url'] = unicode(request
.POST
['url'])
176 user
['bio'] = unicode(request
.POST
['bio'])
178 user
['bio_html'] = cleaned_markdown_conversion(user
['bio'])
182 messages
.add_message(request
,
185 return redirect(request
,
186 'mediagoblin.user_pages.user_home',
189 return render_to_response(
191 'mediagoblin/edit/edit_profile.html',