diff --git a/controllers/EditAsset.php b/controllers/EditAsset.php index 98e2269..a057529 100644 --- a/controllers/EditAsset.php +++ b/controllers/EditAsset.php @@ -22,8 +22,14 @@ class EditAsset extends HTMLController if (!($user->isAdmin() || $asset->isOwnedBy($user))) throw new NotAllowedException(); - if (isset($_REQUEST['delete'])) - throw new Exception('Not implemented.'); + if (isset($_REQUEST['delete']) && Session::validateSession('get')) + { + $redirectUrl = BASEURL . '/' . $asset->getSubdir(); + $asset->delete(); + + header('Location: ' . $redirectUrl); + exit; + } if (!empty($_POST)) { diff --git a/controllers/ViewPhoto.php b/controllers/ViewPhoto.php index 5e29ea8..81b909a 100644 --- a/controllers/ViewPhoto.php +++ b/controllers/ViewPhoto.php @@ -21,39 +21,14 @@ class ViewPhoto extends HTMLController parent::__construct($photo->getTitle() . ' - ' . SITE_TITLE); - $author = $photo->getAuthor(); - - if (isset($_REQUEST['confirm_delete']) || isset($_REQUEST['delete_confirmed'])) - $this->handleConfirmDelete($user, $author, $photo); - else - $this->handleViewPhoto($user, $author, $photo); - } - - private function handleConfirmDelete(User $user, User $author, Asset $photo) - { - if (!($user->isAdmin() || $user->getUserId() === $author->getUserId())) - throw new NotAllowedException(); - - if (isset($_REQUEST['confirm_delete'])) - { - $page = new ConfirmDeletePage($photo->getImage()); - $this->page->adopt($page); - } - elseif (isset($_REQUEST['delete_confirmed'])) - { - $album_url = $photo->getSubdir(); - $photo->delete(); - - header('Location: ' . BASEURL . '/' . $album_url); - exit; - } - } - - private function handleViewPhoto(User $user, User $author, Asset $photo) - { if (!empty($_POST)) $this->handleTagging($photo->getImage()); + else + $this->handleViewPhoto($photo); + } + private function handleViewPhoto(Asset $photo) + { $page = new PhotoPage($photo->getImage()); // Exif data? @@ -75,9 +50,6 @@ class ViewPhoto extends HTMLController if ($next_url) $page->setNextPhotoUrl($next_url); - if ($user->isAdmin() || $user->getUserId() === $author->getUserId()) - $page->setIsAssetOwner(true); - $this->page->adopt($page); $this->page->setCanonicalUrl($photo->getPageUrl()); } diff --git a/models/Asset.php b/models/Asset.php index 4a799f7..31041b3 100644 --- a/models/Asset.php +++ b/models/Asset.php @@ -289,6 +289,16 @@ class Asset return $this->date_captured; } + public function getDeleteUrl() + { + return BASEURL . '/editasset/?id=' . $this->id_asset . '&delete'; + } + + public function getEditUrl() + { + return BASEURL . '/editasset/?id=' . $this->id_asset; + } + public function getFilename() { return $this->filename; diff --git a/templates/EditAssetForm.php b/templates/EditAssetForm.php index d791dcd..7028842 100644 --- a/templates/EditAssetForm.php +++ b/templates/EditAssetForm.php @@ -23,7 +23,10 @@ class EditAssetForm extends Template