No OneTemporary
Actions

Size

32 KB

Referenced Files

None

Subscribers

None

View Options

	diff --git a/src/applications/legalpad/controller/LegalpadDocumentCommentController.php b/src/applications/legalpad/controller/LegalpadDocumentCommentController.php
	index f0f557d67f..530696437b 100644
	--- a/src/applications/legalpad/controller/LegalpadDocumentCommentController.php
	+++ b/src/applications/legalpad/controller/LegalpadDocumentCommentController.php
	@@ -1,78 +1,72 @@
	<?php

	final class LegalpadDocumentCommentController extends LegalpadController {

	- private $id;
	-
	- public function willProcessRequest(array $data) {
	- $this->id = $data['id'];
	- }
	-
	- public function processRequest() {
	- $request = $this->getRequest();
	- $user = $request->getUser();
	+ public function handleRequest(AphrontRequest $request) {
	+ $viewer = $request->getViewer();
	+ $id = $request->getURIData('id');

	if (!$request->isFormPost()) {
	return new Aphront400Response();
	}

	$document = id(new LegalpadDocumentQuery())
	- ->setViewer($user)
	- ->withIDs(array($this->id))
	+ ->setViewer($viewer)
	+ ->withIDs(array($id))
	->needDocumentBodies(true)
	->executeOne();

	if (!$document) {
	return new Aphront404Response();
	}

	$is_preview = $request->isPreviewRequest();

	$draft = PhabricatorDraft::buildFromRequest($request);

	$document_uri = $this->getApplicationURI('view/'.$document->getID());

	$comment = $request->getStr('comment');

	$xactions = array();

	if (strlen($comment)) {
	$xactions[] = id(new LegalpadTransaction())
	->setTransactionType(PhabricatorTransactions::TYPE_COMMENT)
	->attachComment(
	id(new LegalpadTransactionComment())
	->setDocumentID($document->getID())
	->setLineNumber(0)
	->setLineLength(0)
	->setContent($comment));
	}

	$editor = id(new LegalpadDocumentEditor())
	- ->setActor($user)
	+ ->setActor($viewer)
	->setContentSourceFromRequest($request)
	->setContinueOnNoEffect($request->isContinueRequest())
	->setIsPreview($is_preview);

	try {
	$xactions = $editor->applyTransactions($document, $xactions);
	} catch (PhabricatorApplicationTransactionNoEffectException $ex) {
	return id(new PhabricatorApplicationTransactionNoEffectResponse())
	->setCancelURI($document_uri)
	->setException($ex);
	}

	if ($draft) {
	$draft->replaceOrDelete();
	}

	if ($request->isAjax() && $is_preview) {
	return id(new PhabricatorApplicationTransactionResponse())
	- ->setViewer($user)
	+ ->setViewer($viewer)
	->setTransactions($xactions)
	->setIsPreview($is_preview);
	} else {
	return id(new AphrontRedirectResponse())->setURI($document_uri);
	}
	}

	}
	diff --git a/src/applications/legalpad/controller/LegalpadDocumentDoneController.php b/src/applications/legalpad/controller/LegalpadDocumentDoneController.php
	index e6601ba072..b12e3f65ad 100644
	--- a/src/applications/legalpad/controller/LegalpadDocumentDoneController.php
	+++ b/src/applications/legalpad/controller/LegalpadDocumentDoneController.php
	@@ -1,22 +1,21 @@
	<?php

	final class LegalpadDocumentDoneController extends LegalpadController {

	public function shouldAllowPublic() {
	return true;
	}

	- public function processRequest() {
	- $request = $this->getRequest();
	- $viewer = $request->getUser();
	+ public function handleRequest(AphrontRequest $request) {
	+ $viewer = $request->getViewer();

	return $this->newDialog()
	->setTitle(pht('Verify Signature'))
	->appendParagraph(
	pht(
	'Thank you for signing this document. Please check your email '.
	'to verify your signature and complete the process.'))
	->addCancelButton('/', pht('Okay'));
	}

	}
	diff --git a/src/applications/legalpad/controller/LegalpadDocumentEditController.php b/src/applications/legalpad/controller/LegalpadDocumentEditController.php
	index 140a26a670..edbaaf99e2 100644
	--- a/src/applications/legalpad/controller/LegalpadDocumentEditController.php
	+++ b/src/applications/legalpad/controller/LegalpadDocumentEditController.php
	@@ -1,262 +1,262 @@
	<?php

	final class LegalpadDocumentEditController extends LegalpadController {

	public function handleRequest(AphrontRequest $request) {
	- $user = $request->getUser();
	-
	+ $viewer = $request->getViewer();
	$id = $request->getURIData('id');
	+
	if (!$id) {
	$is_create = true;

	$this->requireApplicationCapability(
	LegalpadCreateDocumentsCapability::CAPABILITY);

	- $document = LegalpadDocument::initializeNewDocument($user);
	+ $document = LegalpadDocument::initializeNewDocument($viewer);
	$body = id(new LegalpadDocumentBody())
	- ->setCreatorPHID($user->getPHID());
	+ ->setCreatorPHID($viewer->getPHID());
	$document->attachDocumentBody($body);
	$document->setDocumentBodyPHID(PhabricatorPHIDConstants::PHID_VOID);
	} else {
	$is_create = false;

	$document = id(new LegalpadDocumentQuery())
	- ->setViewer($user)
	+ ->setViewer($viewer)
	->needDocumentBodies(true)
	->requireCapabilities(
	array(
	PhabricatorPolicyCapability::CAN_VIEW,
	PhabricatorPolicyCapability::CAN_EDIT,
	))
	->withIDs(array($id))
	->executeOne();
	if (!$document) {
	return new Aphront404Response();
	}
	}

	$e_title = true;
	$e_text = true;

	$title = $document->getDocumentBody()->getTitle();
	$text = $document->getDocumentBody()->getText();
	$v_signature_type = $document->getSignatureType();
	$v_preamble = $document->getPreamble();
	$v_require_signature = $document->getRequireSignature();

	$errors = array();
	$can_view = null;
	$can_edit = null;
	if ($request->isFormPost()) {

	$xactions = array();

	$title = $request->getStr('title');
	if (!strlen($title)) {
	$e_title = pht('Required');
	$errors[] = pht('The document title may not be blank.');
	} else {
	$xactions[] = id(new LegalpadTransaction())
	->setTransactionType(LegalpadTransaction::TYPE_TITLE)
	->setNewValue($title);
	}

	$text = $request->getStr('text');
	if (!strlen($text)) {
	$e_text = pht('Required');
	$errors[] = pht('The document may not be blank.');
	} else {
	$xactions[] = id(new LegalpadTransaction())
	->setTransactionType(LegalpadTransaction::TYPE_TEXT)
	->setNewValue($text);
	}

	$can_view = $request->getStr('can_view');
	$xactions[] = id(new LegalpadTransaction())
	->setTransactionType(PhabricatorTransactions::TYPE_VIEW_POLICY)
	->setNewValue($can_view);
	$can_edit = $request->getStr('can_edit');
	$xactions[] = id(new LegalpadTransaction())
	->setTransactionType(PhabricatorTransactions::TYPE_EDIT_POLICY)
	->setNewValue($can_edit);

	if ($is_create) {
	$v_signature_type = $request->getStr('signatureType');
	$xactions[] = id(new LegalpadTransaction())
	->setTransactionType(LegalpadTransaction::TYPE_SIGNATURE_TYPE)
	->setNewValue($v_signature_type);
	}

	$v_preamble = $request->getStr('preamble');
	$xactions[] = id(new LegalpadTransaction())
	->setTransactionType(LegalpadTransaction::TYPE_PREAMBLE)
	->setNewValue($v_preamble);

	$v_require_signature = $request->getBool('requireSignature', 0);
	if ($v_require_signature) {
	- if (!$user->getIsAdmin()) {
	+ if (!$viewer->getIsAdmin()) {
	$errors[] = pht('Only admins may require signature.');
	}
	$individual = LegalpadDocument::SIGNATURE_TYPE_INDIVIDUAL;
	if ($v_signature_type != $individual) {
	$errors[] = pht(
	'Only documents with signature type "individual" may require '.
	'signing to use Phabricator.');
	}
	}
	- if ($user->getIsAdmin()) {
	+ if ($viewer->getIsAdmin()) {
	$xactions[] = id(new LegalpadTransaction())
	->setTransactionType(LegalpadTransaction::TYPE_REQUIRE_SIGNATURE)
	->setNewValue($v_require_signature);
	}

	if (!$errors) {
	$editor = id(new LegalpadDocumentEditor())
	->setContentSourceFromRequest($request)
	->setContinueOnNoEffect(true)
	- ->setActor($user);
	+ ->setActor($viewer);

	$xactions = $editor->applyTransactions($document, $xactions);

	return id(new AphrontRedirectResponse())
	->setURI($this->getApplicationURI('view/'.$document->getID()));
	}
	}

	if ($errors) {
	// set these to what was specified in the form on post
	$document->setViewPolicy($can_view);
	$document->setEditPolicy($can_edit);
	}

	$form = id(new AphrontFormView())
	- ->setUser($user)
	+ ->setUser($viewer)
	->appendChild(
	id(new AphrontFormTextControl())
	->setID('document-title')
	->setLabel(pht('Title'))
	->setError($e_title)
	->setValue($title)
	->setName('title'));

	if ($is_create) {
	$form->appendChild(
	id(new AphrontFormSelectControl())
	->setLabel(pht('Who Should Sign?'))
	->setName(pht('signatureType'))
	->setValue($v_signature_type)
	->setOptions(LegalpadDocument::getSignatureTypeMap()));
	$show_require = true;
	$caption = pht('Applies only to documents individuals sign.');
	} else {
	$form->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Who Should Sign?'))
	->setValue($document->getSignatureTypeName()));
	$individual = LegalpadDocument::SIGNATURE_TYPE_INDIVIDUAL;
	$show_require = $document->getSignatureType() == $individual;
	$caption = null;
	}

	if ($show_require) {
	$form
	->appendChild(
	id(new AphrontFormCheckboxControl())
	- ->setDisabled(!$user->getIsAdmin())
	+ ->setDisabled(!$viewer->getIsAdmin())
	->setLabel(pht('Require Signature'))
	->addCheckbox(
	'requireSignature',
	'requireSignature',
	pht('Should signing this document be required to use Phabricator?'),
	$v_require_signature)
	->setCaption($caption));
	}

	$form
	->appendChild(
	id(new PhabricatorRemarkupControl())
	- ->setUser($user)
	+ ->setUser($viewer)
	->setID('preamble')
	->setLabel(pht('Preamble'))
	->setValue($v_preamble)
	->setName('preamble')
	->setCaption(
	pht('Optional help text for users signing this document.')))
	->appendChild(
	id(new PhabricatorRemarkupControl())
	- ->setUser($user)
	+ ->setUser($viewer)
	->setID('document-text')
	->setLabel(pht('Document Body'))
	->setError($e_text)
	->setValue($text)
	->setHeight(AphrontFormTextAreaControl::HEIGHT_VERY_TALL)
	->setName('text'));

	$policies = id(new PhabricatorPolicyQuery())
	- ->setViewer($user)
	+ ->setViewer($viewer)
	->setObject($document)
	->execute();

	$form
	->appendChild(
	id(new AphrontFormPolicyControl())
	- ->setUser($user)
	+ ->setUser($viewer)
	->setCapability(PhabricatorPolicyCapability::CAN_VIEW)
	->setPolicyObject($document)
	->setPolicies($policies)
	->setName('can_view'))
	->appendChild(
	id(new AphrontFormPolicyControl())
	- ->setUser($user)
	+ ->setUser($viewer)
	->setCapability(PhabricatorPolicyCapability::CAN_EDIT)
	->setPolicyObject($document)
	->setPolicies($policies)
	->setName('can_edit'));

	$crumbs = $this->buildApplicationCrumbs($this->buildSideNav());
	$submit = new AphrontFormSubmitControl();
	if ($is_create) {
	$submit->setValue(pht('Create Document'));
	$submit->addCancelButton($this->getApplicationURI());
	$title = pht('Create Document');
	$short = pht('Create');
	} else {
	$submit->setValue(pht('Save Document'));
	$submit->addCancelButton(
	$this->getApplicationURI('view/'.$document->getID()));
	$title = pht('Edit Document');
	$short = pht('Edit');

	$crumbs->addTextCrumb(
	$document->getMonogram(),
	$this->getApplicationURI('view/'.$document->getID()));
	}

	$form
	->appendChild($submit);

	$form_box = id(new PHUIObjectBoxView())
	->setHeaderText($title)
	->setFormErrors($errors)
	->setForm($form);

	$crumbs->addTextCrumb($short);

	$preview = id(new PHUIRemarkupPreviewPanel())
	->setHeader(pht('Document Preview'))
	->setPreviewURI($this->getApplicationURI('document/preview/'))
	->setControlID('document-text')
	->addClass('phui-document-view');

	return $this->buildApplicationPage(
	array(
	$crumbs,
	$form_box,
	$preview,
	),
	array(
	'title' => $title,
	));
	}

	}
	diff --git a/src/applications/legalpad/controller/LegalpadDocumentListController.php b/src/applications/legalpad/controller/LegalpadDocumentListController.php
	index 3229107658..cbd92f87a9 100644
	--- a/src/applications/legalpad/controller/LegalpadDocumentListController.php
	+++ b/src/applications/legalpad/controller/LegalpadDocumentListController.php
	@@ -1,42 +1,38 @@
	<?php

	final class LegalpadDocumentListController extends LegalpadController {

	- private $queryKey;
	-
	public function shouldAllowPublic() {
	return true;
	}

	- public function willProcessRequest(array $data) {
	- $this->queryKey = idx($data, 'queryKey');
	- }
	+ public function handleRequest(AphrontRequest $request) {
	+ $querykey = $request->getURIData('queryKey');

	- public function processRequest() {
	$controller = id(new PhabricatorApplicationSearchController())
	- ->setQueryKey($this->queryKey)
	+ ->setQueryKey($querykey)
	->setSearchEngine(new LegalpadDocumentSearchEngine())
	->setNavigation($this->buildSideNav());

	return $this->delegateToController($controller);
	}

	protected function buildApplicationCrumbs() {
	$crumbs = parent::buildApplicationCrumbs();

	$can_create = $this->hasApplicationCapability(
	LegalpadCreateDocumentsCapability::CAPABILITY);

	$crumbs->addAction(
	id(new PHUIListItemView())
	->setName(pht('Create Document'))
	->setHref($this->getApplicationURI('create/'))
	->setIcon('fa-plus-square')
	->setDisabled(!$can_create)
	->setWorkflow(!$can_create));


	return $crumbs;
	}

	}
	diff --git a/src/applications/legalpad/controller/LegalpadDocumentManageController.php b/src/applications/legalpad/controller/LegalpadDocumentManageController.php
	index f24c0d03ce..9fc773258f 100644
	--- a/src/applications/legalpad/controller/LegalpadDocumentManageController.php
	+++ b/src/applications/legalpad/controller/LegalpadDocumentManageController.php
	@@ -1,207 +1,201 @@
	<?php

	final class LegalpadDocumentManageController extends LegalpadController {

	- private $id;
	-
	- public function willProcessRequest(array $data) {
	- $this->id = $data['id'];
	- }
	-
	- public function processRequest() {
	- $request = $this->getRequest();
	- $user = $request->getUser();
	+ public function handleRequest(AphrontRequest $request) {
	+ $viewer = $request->getViewer();
	+ $id = $request->getURIData('id');

	// NOTE: We require CAN_EDIT to view this page.

	$document = id(new LegalpadDocumentQuery())
	- ->setViewer($user)
	- ->withIDs(array($this->id))
	+ ->setViewer($viewer)
	+ ->withIDs(array($id))
	->needDocumentBodies(true)
	->needContributors(true)
	->requireCapabilities(
	array(
	PhabricatorPolicyCapability::CAN_VIEW,
	PhabricatorPolicyCapability::CAN_EDIT,
	))
	->executeOne();
	if (!$document) {
	return new Aphront404Response();
	}

	$subscribers = PhabricatorSubscribersQuery::loadSubscribersForPHID(
	$document->getPHID());

	$document_body = $document->getDocumentBody();

	$engine = id(new PhabricatorMarkupEngine())
	- ->setViewer($user);
	+ ->setViewer($viewer);
	$engine->addObject(
	$document_body,
	LegalpadDocumentBody::MARKUP_FIELD_TEXT);
	$timeline = $this->buildTransactionTimeline(
	$document,
	new LegalpadTransactionQuery(),
	$engine);

	$title = $document_body->getTitle();

	$header = id(new PHUIHeaderView())
	->setHeader($title)
	- ->setUser($user)
	+ ->setUser($viewer)
	->setPolicyObject($document);

	$actions = $this->buildActionView($document);
	$properties = $this->buildPropertyView($document, $engine, $actions);

	$comment_form_id = celerity_generate_unique_node_id();

	$add_comment = $this->buildAddCommentView($document, $comment_form_id);

	$crumbs = $this->buildApplicationCrumbs($this->buildSideNav());
	$crumbs->addTextCrumb(
	$document->getMonogram(),
	'/'.$document->getMonogram());
	$crumbs->addTextCrumb(pht('Manage'));

	$object_box = id(new PHUIObjectBoxView())
	->setHeader($header)
	->addPropertyList($properties)
	->addPropertyList($this->buildDocument($engine, $document_body));

	$content = array(
	$crumbs,
	$object_box,
	$timeline,
	$add_comment,
	);

	return $this->buildApplicationPage(
	$content,
	array(
	'title' => $title,
	'pageObjects' => array($document->getPHID()),
	));
	}

	private function buildDocument(
	PhabricatorMarkupEngine
	$engine, LegalpadDocumentBody $body) {

	$view = new PHUIPropertyListView();
	$view->addClass('legalpad');
	$view->addSectionHeader(pht('Document'));
	$view->addTextContent(
	$engine->getOutput($body, LegalpadDocumentBody::MARKUP_FIELD_TEXT));

	return $view;

	}

	private function buildActionView(LegalpadDocument $document) {
	- $user = $this->getRequest()->getUser();
	+ $viewer = $this->getViewer();

	$actions = id(new PhabricatorActionListView())
	- ->setUser($user)
	+ ->setUser($viewer)
	->setObjectURI($this->getRequest()->getRequestURI())
	->setObject($document);

	$can_edit = PhabricatorPolicyFilter::hasCapability(
	- $user,
	+ $viewer,
	$document,
	PhabricatorPolicyCapability::CAN_EDIT);

	$doc_id = $document->getID();

	$actions->addAction(
	id(new PhabricatorActionView())
	->setIcon('fa-pencil-square')
	->setName(pht('View/Sign Document'))
	->setHref('/'.$document->getMonogram()));

	$actions->addAction(
	id(new PhabricatorActionView())
	->setIcon('fa-pencil')
	->setName(pht('Edit Document'))
	->setHref($this->getApplicationURI('/edit/'.$doc_id.'/'))
	->setDisabled(!$can_edit)
	->setWorkflow(!$can_edit));

	$actions->addAction(
	id(new PhabricatorActionView())
	->setIcon('fa-terminal')
	->setName(pht('View Signatures'))
	->setHref($this->getApplicationURI('/signatures/'.$doc_id.'/')));

	return $actions;
	}

	private function buildPropertyView(
	LegalpadDocument $document,
	PhabricatorMarkupEngine $engine,
	PhabricatorActionListView $actions) {

	- $user = $this->getRequest()->getUser();
	+ $viewer = $this->getViewer();

	$properties = id(new PHUIPropertyListView())
	- ->setUser($user)
	+ ->setUser($viewer)
	->setObject($document)
	->setActionList($actions);

	$properties->addProperty(
	pht('Signature Type'),
	$document->getSignatureTypeName());

	$properties->addProperty(
	pht('Last Updated'),
	- phabricator_datetime($document->getDateModified(), $user));
	+ phabricator_datetime($document->getDateModified(), $viewer));

	$properties->addProperty(
	pht('Updated By'),
	- $user->renderHandle($document->getDocumentBody()->getCreatorPHID()));
	+ $viewer->renderHandle($document->getDocumentBody()->getCreatorPHID()));

	$properties->addProperty(
	pht('Versions'),
	$document->getVersions());

	if ($document->getContributors()) {
	$properties->addProperty(
	pht('Contributors'),
	- $user
	+ $viewer
	->renderHandleList($document->getContributors())
	->setAsInline(true));
	}

	$properties->invokeWillRenderEvent();

	return $properties;
	}

	private function buildAddCommentView(
	LegalpadDocument $document,
	$comment_form_id) {
	- $user = $this->getRequest()->getUser();
	+ $viewer = $this->getViewer();

	- $draft = PhabricatorDraft::newFromUserAndKey($user, $document->getPHID());
	+ $draft = PhabricatorDraft::newFromUserAndKey($viewer, $document->getPHID());

	$is_serious = PhabricatorEnv::getEnvConfig('phabricator.serious-business');

	$title = $is_serious
	? pht('Add Comment')
	: pht('Debate Legislation');

	$form = id(new PhabricatorApplicationTransactionCommentView())
	- ->setUser($user)
	+ ->setUser($viewer)
	->setObjectPHID($document->getPHID())
	->setFormID($comment_form_id)
	->setHeaderText($title)
	->setDraft($draft)
	->setSubmitButtonName(pht('Add Comment'))
	->setAction($this->getApplicationURI('/comment/'.$document->getID().'/'))
	->setRequestURI($this->getRequest()->getRequestURI());

	return $form;

	}

	}
	diff --git a/src/applications/legalpad/controller/LegalpadDocumentSignatureListController.php b/src/applications/legalpad/controller/LegalpadDocumentSignatureListController.php
	index 945ad2dc39..5330049aae 100644
	--- a/src/applications/legalpad/controller/LegalpadDocumentSignatureListController.php
	+++ b/src/applications/legalpad/controller/LegalpadDocumentSignatureListController.php
	@@ -1,86 +1,80 @@
	<?php

	final class LegalpadDocumentSignatureListController extends LegalpadController {

	- private $documentID;
	- private $queryKey;
	private $document;

	- public function willProcessRequest(array $data) {
	- $this->documentID = idx($data, 'id');
	- $this->queryKey = idx($data, 'queryKey');
	- }
	-
	- public function processRequest() {
	- $request = $this->getRequest();
	- $user = $request->getUser();
	+ public function handleRequest(AphrontRequest $request) {
	+ $viewer = $request->getViewer();
	+ $id = $request->getURIData('id');
	+ $querykey = $request->getURIData('queryKey');

	- if ($this->documentID) {
	+ if ($id) {
	$document = id(new LegalpadDocumentQuery())
	- ->setViewer($user)
	- ->withIDs(array($this->documentID))
	+ ->setViewer($viewer)
	+ ->withIDs(array($id))
	->requireCapabilities(
	array(
	PhabricatorPolicyCapability::CAN_VIEW,
	PhabricatorPolicyCapability::CAN_EDIT,
	))
	->executeOne();
	if (!$document) {
	return new Aphront404Response();
	}

	$this->document = $document;
	}

	$engine = id(new LegalpadDocumentSignatureSearchEngine());

	if ($this->document) {
	$engine->setDocument($this->document);
	}

	$controller = id(new PhabricatorApplicationSearchController())
	- ->setQueryKey($this->queryKey)
	+ ->setQueryKey($querykey)
	->setSearchEngine($engine)
	->setNavigation($this->buildSideNav());

	return $this->delegateToController($controller);
	}

	public function buildSideNav($for_app = false) {
	- $user = $this->getRequest()->getUser();
	+ $viewer = $this->getViewer();

	$nav = new AphrontSideNavFilterView();
	$nav->setBaseURI(new PhutilURI($this->getApplicationURI()));

	$engine = id(new LegalpadDocumentSignatureSearchEngine())
	- ->setViewer($user);
	+ ->setViewer($viewer);

	if ($this->document) {
	$engine->setDocument($this->document);
	}

	$engine->addNavigationItems($nav->getMenu());

	return $nav;
	}

	protected function buildApplicationCrumbs() {
	$crumbs = parent::buildApplicationCrumbs();

	if ($this->document) {
	$crumbs->addTextCrumb(
	$this->document->getMonogram(),
	'/'.$this->document->getMonogram());
	$crumbs->addTextCrumb(
	pht('Manage'),
	$this->getApplicationURI('view/'.$this->document->getID().'/'));
	} else {
	$crumbs->addTextCrumb(
	pht('Signatures'),
	'/legalpad/signatures/');
	}

	return $crumbs;
	}

	}
	diff --git a/src/applications/legalpad/controller/LegalpadDocumentSignatureVerificationController.php b/src/applications/legalpad/controller/LegalpadDocumentSignatureVerificationController.php
	index a940eb646f..b50b91e896 100644
	--- a/src/applications/legalpad/controller/LegalpadDocumentSignatureVerificationController.php
	+++ b/src/applications/legalpad/controller/LegalpadDocumentSignatureVerificationController.php
	@@ -1,97 +1,91 @@
	<?php

	final class LegalpadDocumentSignatureVerificationController
	extends LegalpadController {

	- private $code;
	-
	public function shouldAllowPublic() {
	return true;
	}

	- public function willProcessRequest(array $data) {
	- $this->code = $data['code'];
	- }
	-
	- public function processRequest() {
	- $request = $this->getRequest();
	- $viewer = $request->getUser();
	+ public function handleRequest(AphrontRequest $request) {
	+ $viewer = $request->getViewer();
	+ $code = $request->getURIData('code');

	// NOTE: We're using the omnipotent user to handle logged-out signatures
	// and corporate signatures.
	$signature = id(new LegalpadDocumentSignatureQuery())
	->setViewer(PhabricatorUser::getOmnipotentUser())
	- ->withSecretKeys(array($this->code))
	+ ->withSecretKeys(array($code))
	->executeOne();

	if (!$signature) {
	return $this->newDialog()
	->setTitle(pht('Unable to Verify Signature'))
	->appendParagraph(
	pht(
	'The signature verification code is incorrect, or the signature '.
	'has been invalidated. Make sure you followed the link in the '.
	'email correctly.'))
	->addCancelButton('/', pht('Rats!'));
	}

	if ($signature->isVerified()) {
	return $this->newDialog()
	->setTitle(pht('Signature Already Verified'))
	->appendParagraph(pht('This signature has already been verified.'))
	->addCancelButton('/', pht('Okay'));
	}

	if ($request->isFormPost()) {
	$signature
	->setVerified(LegalpadDocumentSignature::VERIFIED)
	->save();

	return $this->newDialog()
	->setTitle(pht('Signature Verified'))
	->appendParagraph(pht('The signature is now verified.'))
	->addCancelButton('/', pht('Okay'));
	}

	$document_link = phutil_tag(
	'a',
	array(
	'href' => '/'.$signature->getDocument()->getMonogram(),
	'target' => '_blank',
	),
	$signature->getDocument()->getTitle());

	$signed_at = phabricator_datetime($signature->getDateCreated(), $viewer);

	$name = $signature->getSignerName();
	$email = $signature->getSignerEmail();

	$form = id(new AphrontFormView())
	->setUser($viewer)
	->appendRemarkupInstructions(
	pht('Please verify this document signature.'))
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Document'))
	->setValue($document_link))
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Signed At'))
	->setValue($signed_at))
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Name'))
	->setValue($name))
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Email'))
	->setValue($email));

	return $this->newDialog()
	->setTitle(pht('Verify Signature?'))
	->appendChild($form->buildLayoutView())
	->addCancelButton('/')
	->addSubmitButton(pht('Verify Signature'));
	}

	}
	diff --git a/src/applications/legalpad/controller/LegalpadDocumentSignatureViewController.php b/src/applications/legalpad/controller/LegalpadDocumentSignatureViewController.php
	index 6d58d1b693..6f2c447b71 100644
	--- a/src/applications/legalpad/controller/LegalpadDocumentSignatureViewController.php
	+++ b/src/applications/legalpad/controller/LegalpadDocumentSignatureViewController.php
	@@ -1,112 +1,106 @@
	<?php

	final class LegalpadDocumentSignatureViewController extends LegalpadController {

	- private $id;
	-
	- public function willProcessRequest(array $data) {
	- $this->id = $data['id'];
	- }
	-
	- public function processRequest() {
	- $request = $this->getRequest();
	- $viewer = $request->getUser();
	+ public function handleRequest(AphrontRequest $request) {
	+ $viewer = $request->getViewer();
	+ $id = $request->getURIData('id');

	$signature = id(new LegalpadDocumentSignatureQuery())
	->setViewer($viewer)
	- ->withIDs(array($this->id))
	+ ->withIDs(array($id))
	->executeOne();
	if (!$signature) {
	return new Aphront404Response();
	}


	// NOTE: In order to see signature details (which include the relatively
	// internal-feeling "notes" field) you must be able to edit the document.
	// Essentially, this power is for document managers. Notably, this prevents
	// users from seeing notes about their own exemptions by guessing their
	// signature ID. This is purely a policy check.

	$document = id(new LegalpadDocumentQuery())
	->setViewer($viewer)
	->withIDs(array($signature->getDocument()->getID()))
	->requireCapabilities(
	array(
	PhabricatorPolicyCapability::CAN_VIEW,
	PhabricatorPolicyCapability::CAN_EDIT,
	))
	->executeOne();
	if (!$document) {
	return new Aphront404Response();
	}


	$document_id = $signature->getDocument()->getID();
	$next_uri = $this->getApplicationURI('signatures/'.$document_id.'/');

	$data = $signature->getSignatureData();

	$exemption_phid = $signature->getExemptionPHID();
	$actor_phid = idx($data, 'actorPHID');
	$handles = $this->loadViewerHandles(
	array(
	$exemption_phid,
	$actor_phid,
	));
	$exemptor_handle = $handles[$exemption_phid];
	$actor_handle = $handles[$actor_phid];

	$form = id(new AphrontFormView())
	->setUser($viewer);

	if ($signature->getExemptionPHID()) {
	$form
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Exemption By'))
	->setValue($exemptor_handle->renderLink()))
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Notes'))
	->setValue(idx($data, 'notes')));
	}

	$type_corporation = LegalpadDocument::SIGNATURE_TYPE_CORPORATION;
	if ($signature->getSignatureType() == $type_corporation) {
	$form
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Signing User'))
	->setValue($actor_handle->renderLink()))
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Company Name'))
	->setValue(idx($data, 'name')))
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Address'))
	->setValue(phutil_escape_html_newlines(idx($data, 'address'))))
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Contact Name'))
	->setValue(idx($data, 'contact.name')))
	->appendChild(
	id(new AphrontFormMarkupControl())
	->setLabel(pht('Contact Email'))
	->setValue(
	phutil_tag(
	'a',
	array(
	'href' => 'mailto:'.idx($data, 'email'),
	),
	idx($data, 'email'))));
	}

	return $this->newDialog()
	->setTitle(pht('Signature Details'))
	->setWidth(AphrontDialogView::WIDTH_FORM)
	->appendChild($form->buildLayoutView())
	->addCancelButton($next_uri, pht('Close'));
	}

	}

File Metadata

Mime Type: text/x-diff
Expires: Tue, Jun 10, 4:12 AM (17 h, 16 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 140236
Default Alt Text: (32 KB)

No OneTemporaryActions

View Options

File Metadata

Event Timeline

No OneTemporary
Actions