2 # Copyright © 2006-2008 Joey Hess <joey@ikiwiki.info>
3 # Copyright © 2008 Simon McVittie <http://smcv.pseudorandom.co.uk/>
4 # Licensed under the GNU GPL, version 2, or any later version published by the
5 # Free Software Foundation
6 package IkiWiki::Plugin::comments;
12 use POSIX qw(strftime);
14 use constant PREVIEW => "Preview";
15 use constant POST_COMMENT => "Post comment";
16 use constant CANCEL => "Cancel";
22 hook(type => "checkconfig", id => 'comments', call => \&checkconfig);
23 hook(type => "getsetup", id => 'comments', call => \&getsetup);
24 hook(type => "preprocess", id => 'comment', call => \&preprocess);
25 # here for backwards compatability with old comments
26 hook(type => "preprocess", id => '_comment', call => \&preprocess);
27 hook(type => "sessioncgi", id => 'comment', call => \&sessioncgi);
28 hook(type => "htmlize", id => "_comment", call => \&htmlize);
29 hook(type => "htmlize", id => "_comment_pending",
30 call => \&htmlize_pending);
31 hook(type => "pagetemplate", id => "comments", call => \&pagetemplate);
32 hook(type => "formbuilder_setup", id => "comments",
33 call => \&formbuilder_setup);
34 # Load goto to fix up user page links for logged-in commenters
35 IkiWiki::loadplugin("goto");
36 IkiWiki::loadplugin("inline");
46 comments_pagespec => {
48 example => 'blog/* and !*/Discussion',
49 description => 'PageSpec of pages where comments are allowed',
50 link => 'ikiwiki/PageSpec',
54 comments_closed_pagespec => {
56 example => 'blog/controversial or blog/flamewar',
57 description => 'PageSpec of pages where posting new comments is not allowed',
58 link => 'ikiwiki/PageSpec',
62 comments_pagename => {
64 default => 'comment_',
65 description => 'Base name for comments, e.g. "comment_" for pages like "sandbox/comment_12"',
66 safe => 0, # manual page moving required
69 comments_allowdirectives => {
72 description => 'Interpret directives in comments?',
76 comments_allowauthor => {
79 description => 'Allow anonymous commenters to set an author name?',
86 description => 'commit comments to the VCS',
87 # old uncommitted comments are likely to cause
88 # confusion if this is changed
95 $config{comments_commit} = 1
96 unless defined $config{comments_commit};
97 $config{comments_pagespec} = ''
98 unless defined $config{comments_pagespec};
99 $config{comments_closed_pagespec} = ''
100 unless defined $config{comments_closed_pagespec};
101 $config{comments_pagename} = 'comment_'
102 unless defined $config{comments_pagename};
107 return $params{content};
110 sub htmlize_pending {
112 return sprintf(gettext("this comment needs %s"),
114 IkiWiki::cgiurl(do => "commentmoderation").'">'.
115 gettext("moderation").'</a>');
118 # FIXME: copied verbatim from meta
121 if (exists $IkiWiki::Plugin::htmlscrubber::{safe_url_regexp} &&
122 defined $IkiWiki::Plugin::htmlscrubber::safe_url_regexp) {
123 return $url=~/$IkiWiki::Plugin::htmlscrubber::safe_url_regexp/;
132 my $page = $params{page};
134 my $format = $params{format};
135 if (defined $format && ! exists $IkiWiki::hooks{htmlize}{$format}) {
136 error(sprintf(gettext("unsupported page format %s"), $format));
139 my $content = $params{content};
140 if (! defined $content) {
141 error(gettext("comment must have content"));
143 $content =~ s/\\"/"/g;
145 $content = IkiWiki::filter($page, $params{destpage}, $content);
147 if ($config{comments_allowdirectives}) {
148 $content = IkiWiki::preprocess($page, $params{destpage},
152 # no need to bother with htmlize if it's just HTML
153 $content = IkiWiki::htmlize($page, $params{destpage}, $format, $content)
156 IkiWiki::run_hooks(sanitize => sub {
159 destpage => $params{destpage},
164 # set metadata, possibly overriding [[!meta]] directives from the
170 my $commentauthorurl;
172 if (defined $params{username}) {
173 $commentuser = $params{username};
175 my $oiduser = eval { IkiWiki::openiduser($commentuser) };
177 if (defined $oiduser) {
178 # looks like an OpenID
179 $commentauthorurl = $commentuser;
180 $commentauthor = $oiduser;
181 $commentopenid = $commentuser;
184 $commentauthorurl = IkiWiki::cgiurl(
186 page => IkiWiki::userpage($commentuser)
189 $commentauthor = $commentuser;
193 if (defined $params{ip}) {
194 $commentip = $params{ip};
196 $commentauthor = gettext("Anonymous");
199 $commentstate{$page}{commentuser} = $commentuser;
200 $commentstate{$page}{commentopenid} = $commentopenid;
201 $commentstate{$page}{commentip} = $commentip;
202 $commentstate{$page}{commentauthor} = $commentauthor;
203 $commentstate{$page}{commentauthorurl} = $commentauthorurl;
204 if (! defined $pagestate{$page}{meta}{author}) {
205 $pagestate{$page}{meta}{author} = $commentauthor;
207 if (! defined $pagestate{$page}{meta}{authorurl}) {
208 $pagestate{$page}{meta}{authorurl} = $commentauthorurl;
211 if ($config{comments_allowauthor}) {
212 if (defined $params{claimedauthor}) {
213 $pagestate{$page}{meta}{author} = $params{claimedauthor};
216 if (defined $params{url}) {
217 my $url=$params{url};
219 eval q{use URI::Heuristic};
221 $url=URI::Heuristic::uf_uristr($url);
225 $pagestate{$page}{meta}{authorurl} = $url;
230 $pagestate{$page}{meta}{author} = $commentauthor;
231 $pagestate{$page}{meta}{authorurl} = $commentauthorurl;
234 if (defined $params{subject}) {
235 # decode title the same way meta does
236 eval q{use HTML::Entities};
237 $pagestate{$page}{meta}{title} = decode_entities($params{subject});
240 if ($params{page} =~ m/\/\Q$config{comments_pagename}\E\d+_/) {
241 $pagestate{$page}{meta}{permalink} = urlto(IkiWiki::dirname($params{page}), undef, 1).
242 "#".page_to_id($params{page});
245 eval q{use Date::Parse};
247 my $time = str2time($params{date});
248 $IkiWiki::pagectime{$page} = $time if defined $time;
254 sub sessioncgi ($$) {
258 my $do = $cgi->param('do');
259 if ($do eq 'comment') {
260 editcomment($cgi, $session);
262 elsif ($do eq 'commentmoderation') {
263 commentmoderation($cgi, $session);
265 elsif ($do eq 'commentsignin') {
266 IkiWiki::cgi_signin($cgi, $session);
271 # Mostly cargo-culted from IkiWiki::plugin::editpage
272 sub editcomment ($$) {
276 IkiWiki::decode_cgi_utf8($cgi);
278 eval q{use CGI::FormBuilder};
281 my @buttons = (POST_COMMENT, PREVIEW, CANCEL);
282 my $form = CGI::FormBuilder->new(
283 fields => [qw{do sid page subject editcontent type author url}],
286 required => [qw{editcontent}],
289 action => $config{cgiurl},
292 template => { template('editcomment.tmpl') },
295 IkiWiki::decode_form_utf8($form);
296 IkiWiki::run_hooks(formbuilder_setup => sub {
297 shift->(title => "comment", form => $form, cgi => $cgi,
298 session => $session, buttons => \@buttons);
300 IkiWiki::decode_form_utf8($form);
302 my $type = $form->param('type');
303 if (defined $type && length $type && $IkiWiki::hooks{htmlize}{$type}) {
304 $type = IkiWiki::possibly_foolish_untaint($type);
307 $type = $config{default_pageext};
312 if (exists $IkiWiki::hooks{htmlize}) {
313 foreach my $key (grep { !/^_/ } keys %{$IkiWiki::hooks{htmlize}}) {
314 push @page_types, [$key, $IkiWiki::hooks{htmlize}{$key}{longname} || $key];
317 @page_types=sort @page_types;
319 $form->field(name => 'do', type => 'hidden');
320 $form->field(name => 'sid', type => 'hidden', value => $session->id,
322 $form->field(name => 'page', type => 'hidden');
323 $form->field(name => 'subject', type => 'text', size => 72);
324 $form->field(name => 'editcontent', type => 'textarea', rows => 10);
325 $form->field(name => "type", value => $type, force => 1,
326 type => 'select', options => \@page_types);
328 $form->tmpl_param(username => $session->param('name'));
330 if ($config{comments_allowauthor} and
331 ! defined $session->param('name')) {
332 $form->tmpl_param(allowauthor => 1);
333 $form->field(name => 'author', type => 'text', size => '40');
334 $form->field(name => 'url', type => 'text', size => '40');
337 $form->tmpl_param(allowauthor => 0);
338 $form->field(name => 'author', type => 'hidden', value => '',
340 $form->field(name => 'url', type => 'hidden', value => '',
344 if (! defined $session->param('name')) {
345 # Make signinurl work and return here.
346 $form->tmpl_param(signinurl => IkiWiki::cgiurl(do => 'commentsignin'));
347 $session->param(postsignin => $ENV{QUERY_STRING});
348 IkiWiki::cgi_savesession($session);
351 # The untaint is OK (as in editpage) because we're about to pass
352 # it to file_pruned anyway
353 my $page = $form->field('page');
354 $page = IkiWiki::possibly_foolish_untaint($page);
355 if (! defined $page || ! length $page ||
356 IkiWiki::file_pruned($page)) {
357 error(gettext("bad page name"));
360 my $baseurl = urlto($page, undef, 1);
362 $form->title(sprintf(gettext("commenting on %s"),
363 IkiWiki::pagetitle($page)));
365 $form->tmpl_param('helponformattinglink',
366 htmllink($page, $page, 'ikiwiki/formatting',
368 linktext => 'FormattingHelp'),
369 allowdirectives => $config{allow_directives});
371 if ($form->submitted eq CANCEL) {
372 # bounce back to the page they wanted to comment on, and exit.
373 # CANCEL need not be considered in future
374 IkiWiki::redirect($cgi, urlto($page, undef, 1));
378 if (not exists $pagesources{$page}) {
379 error(sprintf(gettext(
380 "page '%s' doesn't exist, so you can't comment"),
384 if (pagespec_match($page, $config{comments_closed_pagespec},
385 location => $page)) {
386 error(sprintf(gettext(
387 "comments on page '%s' are closed"),
391 # Set a flag to indicate that we're posting a comment,
392 # so that postcomment() can tell it should match.
394 IkiWiki::check_canedit($page, $cgi, $session);
397 my $content = "[[!comment format=$type\n";
399 # FIXME: handling of double quotes probably wrong?
400 if (defined $session->param('name')) {
401 my $username = $session->param('name');
402 $username =~ s/"/"/g;
403 $content .= " username=\"$username\"\n";
405 elsif (defined $ENV{REMOTE_ADDR}) {
406 my $ip = $ENV{REMOTE_ADDR};
407 if ($ip =~ m/^([.0-9]+)$/) {
408 $content .= " ip=\"$1\"\n";
412 if ($config{comments_allowauthor}) {
413 my $author = $form->field('author');
414 if (defined $author && length $author) {
415 $author =~ s/"/"/g;
416 $content .= " claimedauthor=\"$author\"\n";
418 my $url = $form->field('url');
419 if (defined $url && length $url) {
420 $url =~ s/"/"/g;
421 $content .= " url=\"$url\"\n";
425 my $subject = $form->field('subject');
426 if (defined $subject && length $subject) {
427 $subject =~ s/"/"/g;
430 $subject = "comment ".(num_comments($page, $config{srcdir}) + 1);
432 $content .= " subject=\"$subject\"\n";
434 $content .= " date=\"" . decode_utf8(strftime('%Y-%m-%dT%H:%M:%SZ', gmtime)) . "\"\n";
436 my $editcontent = $form->field('editcontent') || '';
437 $editcontent =~ s/\r\n/\n/g;
438 $editcontent =~ s/\r/\n/g;
439 $editcontent =~ s/"/\\"/g;
440 $content .= " content=\"\"\"\n$editcontent\n\"\"\"]]\n";
442 my $location=unique_comment_location($page, $content, $config{srcdir});
444 # This is essentially a simplified version of editpage:
445 # - the user does not control the page that's created, only the parent
446 # - it's always a create operation, never an edit
447 # - this means that conflicts should never happen
448 # - this means that if they do, rocks fall and everyone dies
450 if ($form->submitted eq PREVIEW) {
451 my $preview=previewcomment($content, $location, $page, time);
452 IkiWiki::run_hooks(format => sub {
453 $preview = shift->(page => $page,
454 content => $preview);
456 $form->tmpl_param(page_preview => $preview);
459 $form->tmpl_param(page_preview => "");
462 if ($form->submitted eq POST_COMMENT && $form->validate) {
463 IkiWiki::checksessionexpiry($cgi, $session);
466 my $ok=IkiWiki::check_content(content => $form->field('editcontent'),
467 subject => $form->field('subject'),
468 $config{comments_allowauthor} ? (
469 author => $form->field('author'),
470 url => $form->field('url'),
480 $location=unique_comment_location($page, $content, $config{srcdir}, "._comment_pending");
481 writefile("$location._comment_pending", $config{srcdir}, $content);
483 # Refresh so anything that deals with pending
484 # comments can be updated.
485 require IkiWiki::Render;
487 IkiWiki::saveindex();
489 IkiWiki::printheader($session);
490 print IkiWiki::misctemplate(gettext(gettext("comment stored for moderation")),
492 gettext("Your comment will be posted after moderator review").
497 # FIXME: could probably do some sort of graceful retry
498 # on error? Would require significant unwinding though
499 my $file = "$location._comment";
500 writefile($file, $config{srcdir}, $content);
504 if ($config{rcs} and $config{comments_commit}) {
505 my $message = gettext("Added a comment");
506 if (defined $form->field('subject') &&
507 length $form->field('subject')) {
509 gettext("Added a comment: %s"),
510 $form->field('subject'));
513 IkiWiki::rcs_add($file);
514 IkiWiki::disable_commit_hook();
515 $conflict = IkiWiki::rcs_commit_staged($message,
516 $session->param('name'), $ENV{REMOTE_ADDR});
517 IkiWiki::enable_commit_hook();
518 IkiWiki::rcs_update();
521 # Now we need a refresh
522 require IkiWiki::Render;
524 IkiWiki::saveindex();
526 # this should never happen, unless a committer deliberately
527 # breaks it or something
528 error($conflict) if defined $conflict;
530 # Jump to the new comment on the page.
531 # The trailing question mark tries to avoid broken
532 # caches and get the most recent version of the page.
533 IkiWiki::redirect($cgi, urlto($page, undef, 1).
534 "?updated#".page_to_id($location));
538 IkiWiki::showform ($form, \@buttons, $session, $cgi,
539 forcebaseurl => $baseurl);
545 sub commentmoderation ($$) {
549 IkiWiki::needsignin($cgi, $session);
550 if (! IkiWiki::is_admin($session->param("name"))) {
551 error(gettext("you are not logged in as an admin"));
554 IkiWiki::decode_cgi_utf8($cgi);
556 if (defined $cgi->param('sid')) {
557 IkiWiki::checksessionexpiry($cgi, $session);
559 my $rejectalldefer=$cgi->param('rejectalldefer');
563 foreach my $id (keys %vars) {
564 if ($id =~ /(.*)\._comment(?:_pending)?$/) {
565 my $action=$cgi->param($id);
566 next if $action eq 'Defer' && ! $rejectalldefer;
568 # Make sure that the id is of a legal
570 my ($f) = $id =~ /$config{wiki_file_regexp}/;
571 if (! defined $f || ! length $f ||
572 IkiWiki::file_pruned($f)) {
573 error("illegal file");
576 my $page=IkiWiki::dirname($f);
577 my $file="$config{srcdir}/$f";
580 $file="$config{wikistatedir}/comments_pending/".$f;
583 if ($action eq 'Accept') {
584 my $content=eval { readfile($file) };
585 next if $@; # file vanished since form was displayed
586 my $dest=unique_comment_location($page, $content, $config{srcdir})."._comment";
587 writefile($dest, $config{srcdir}, $content);
588 if ($config{rcs} and $config{comments_commit}) {
589 IkiWiki::rcs_add($dest);
594 require IkiWiki::Render;
595 IkiWiki::prune($file);
601 if ($config{rcs} and $config{comments_commit}) {
602 my $message = gettext("Comment moderation");
603 IkiWiki::disable_commit_hook();
604 $conflict=IkiWiki::rcs_commit_staged($message,
605 $session->param('name'), $ENV{REMOTE_ADDR});
606 IkiWiki::enable_commit_hook();
607 IkiWiki::rcs_update();
610 # Now we need a refresh
611 require IkiWiki::Render;
613 IkiWiki::saveindex();
615 error($conflict) if defined $conflict;
620 my ($id, $dir, $ctime)=@{$_};
621 my $content=readfile("$dir/$id");
622 my $preview=previewcomment($content, $id,
628 } sort { $b->[2] <=> $a->[2] } comments_pending();
630 my $template=template("commentmoderation.tmpl");
633 comments => \@comments,
635 IkiWiki::printheader($session);
636 my $out=$template->output;
637 IkiWiki::run_hooks(format => sub {
638 $out = shift->(page => "", content => $out);
640 print IkiWiki::misctemplate(gettext("comment moderation"), $out);
644 sub formbuilder_setup (@) {
647 my $form=$params{form};
648 if ($form->title eq "preferences" &&
649 IkiWiki::is_admin($params{session}->param("name"))) {
650 push @{$params{buttons}}, "Comment Moderation";
651 if ($form->submitted && $form->submitted eq "Comment Moderation") {
652 commentmoderation($params{cgi}, $params{session});
657 sub comments_pending () {
660 eval q{use File::Find};
663 my $find_comments=sub {
666 return unless -d $dir;
670 my $file=decode_utf8($_);
671 $file=~s/^\Q$dir\E\/?//;
672 return if ! length $file || IkiWiki::file_pruned($file)
673 || -l $_ || -d _ || $file !~ /\Q$extension\E$/;
674 my ($f) = $file =~ /$config{wiki_file_regexp}/; # untaint
676 my $ctime=(stat($_))[10];
677 push @ret, [$f, $dir, $ctime];
683 $find_comments->($config{srcdir}, "._comment_pending");
685 $find_comments->("$config{wikistatedir}/comments_pending/",
691 sub previewcomment ($$$) {
697 my $preview = IkiWiki::htmlize($location, $page, '_comment',
698 IkiWiki::linkify($location, $page,
699 IkiWiki::preprocess($location, $page,
700 IkiWiki::filter($location, $page, $content), 0, 1)));
702 my $template = template("comment.tmpl");
703 $template->param(content => $preview);
704 $template->param(ctime => displaytime($time, undef, 1));
705 $template->param(html5 => $config{html5});
707 IkiWiki::run_hooks(pagetemplate => sub {
708 shift->(page => $location,
710 template => $template);
713 $template->param(have_actions => 0);
715 return $template->output;
718 sub commentsshown ($) {
721 return ! pagespec_match($page, "comment(*)",
722 location => $page) &&
723 pagespec_match($page, $config{comments_pagespec},
727 sub commentsopen ($) {
730 return length $config{cgiurl} > 0 &&
731 (! length $config{comments_closed_pagespec} ||
732 ! pagespec_match($page, $config{comments_closed_pagespec},
736 sub pagetemplate (@) {
739 my $page = $params{page};
740 my $template = $params{template};
741 my $shown = ($template->query(name => 'commentslink') ||
742 $template->query(name => 'commentsurl') ||
743 $template->query(name => 'atomcommentsurl') ||
744 $template->query(name => 'comments')) &&
745 commentsshown($page);
747 if ($template->query(name => 'comments')) {
748 my $comments = undef;
750 $comments = IkiWiki::preprocess_inline(
751 pages => "comment($page)",
752 template => 'comment',
756 destpage => $params{destpage},
757 feedfile => 'comments',
762 if (defined $comments && length $comments) {
763 $template->param(comments => $comments);
766 if ($shown && commentsopen($page)) {
767 $template->param(addcommenturl => addcommenturl($page));
772 if ($template->query(name => 'commentsurl')) {
773 $template->param(commentsurl =>
774 urlto($page, undef, 1).'#comments');
777 if ($template->query(name => 'atomcommentsurl') && $config{usedirs}) {
778 # This will 404 until there are some comments, but I
779 # think that's probably OK...
780 $template->param(atomcommentsurl =>
781 urlto($page, undef, 1).'comments.atom');
784 if ($template->query(name => 'commentslink')) {
785 my $num=num_comments($page, $config{srcdir});
788 $link = htmllink($page, $params{destpage}, $page,
789 linktext => sprintf(ngettext("%i comment", "%i comments", $num), $num),
790 anchor => "comments",
794 elsif (commentsopen($page)) {
795 $link = "<a href=\"".addcommenturl($page)."\">".
796 #translators: Here "Comment" is a verb;
797 #translators: the user clicks on it to
798 #translators: post a comment.
802 $template->param(commentslink => $link)
807 # everything below this point is only relevant to the comments
809 if (!exists $commentstate{$page}) {
813 if ($template->query(name => 'commentid')) {
814 $template->param(commentid => page_to_id($page));
817 if ($template->query(name => 'commentuser')) {
818 $template->param(commentuser =>
819 $commentstate{$page}{commentuser});
822 if ($template->query(name => 'commentopenid')) {
823 $template->param(commentopenid =>
824 $commentstate{$page}{commentopenid});
827 if ($template->query(name => 'commentip')) {
828 $template->param(commentip =>
829 $commentstate{$page}{commentip});
832 if ($template->query(name => 'commentauthor')) {
833 $template->param(commentauthor =>
834 $commentstate{$page}{commentauthor});
837 if ($template->query(name => 'commentauthorurl')) {
838 $template->param(commentauthorurl =>
839 $commentstate{$page}{commentauthorurl});
842 if ($template->query(name => 'removeurl') &&
843 IkiWiki::Plugin::remove->can("check_canremove") &&
844 length $config{cgiurl}) {
845 $template->param(removeurl => IkiWiki::cgiurl(do => 'remove',
847 $template->param(have_actions => 1);
851 sub addcommenturl ($) {
854 return IkiWiki::cgiurl(do => 'comment', page => $page);
857 sub num_comments ($$) {
861 my @comments=glob("$dir/$page/$config{comments_pagename}*._comment");
865 sub unique_comment_location ($$$$) {
867 eval q{use Digest::MD5 'md5_hex'};
869 my $content_md5=md5_hex(Encode::encode_utf8(shift));
871 my $ext=shift || "._comment";
874 my $i = num_comments($page, $dir);
877 $location = "$page/$config{comments_pagename}${i}_${content_md5}";
878 } while (-e "$dir/$location$ext");
884 # Converts a comment page name into a unique, legal html id
885 # attribute value, that can be used as an anchor to link to the
889 eval q{use Digest::MD5 'md5_hex'};
892 return "comment-".md5_hex(Encode::encode_utf8(($page)));
895 package IkiWiki::PageSpec;
897 sub match_postcomment ($$;@) {
901 if (! $postcomment) {
902 return IkiWiki::FailReason->new("not posting a comment");
904 return match_glob($page, $glob, @_);
907 sub match_comment ($$;@) {
911 if (! IkiWiki::isinternal($page)) {
912 return IkiWiki::FailReason->new("$page is not a comment");
914 my $type=IkiWiki::pagetype($IkiWiki::pagesources{$page});
915 if (defined $type && $type ne "_comment") {
916 return IkiWiki::FailReason->new("$page is not a comment");
919 return match_glob($page, "$glob/*", internal => 1, @_);
922 sub match_comment_pending ($$;@) {
926 if (! IkiWiki::isinternal($page)) {
927 return IkiWiki::FailReason->new("$page is not a pending comment");
929 my $type=IkiWiki::pagetype($IkiWiki::pagesources{$page});
930 if (defined $type && $type ne "_comment_pending") {
931 return IkiWiki::FailReason->new("$page is not a pending comment");
934 return match_glob($page, "$glob/*", internal => 1, @_);
projects / ikiwiki.git / blob