register_hook('MENU_ITEMS_ASSEMBLY', 'AFTER', $this, 'handleMenuAssembly'); $controller->register_hook('ACTION_ACT_PREPROCESS', 'BEFORE', $this, 'handlePreprocess'); $controller->register_hook('TPL_ACT_UNKNOWN', 'BEFORE', $this, 'handleUnknown'); } /** * Load the storage/registration helper. * * @return helper_plugin_usersettings|null */ protected function getHelper() { /** @var helper_plugin_usersettings|null $helper */ $helper = plugin_load('helper', 'usersettings'); return $helper; } // --------------------------------------------------------------------- // 1. The user-menu item // --------------------------------------------------------------------- /** * Insert the "Preferences" item into the user menu, just before the * "Update Profile" item. * * @param Doku_Event $event MENU_ITEMS_ASSEMBLY * @param mixed $param */ public function handleMenuAssembly(Doku_Event $event, $param) { if (!is_array($event->data) || ($event->data['view'] ?? '') !== 'user') { return; } try { $item = new \dokuwiki\plugin\usersettings\MenuItem(); } catch (\RuntimeException $e) { // anonymous visitor, or the action is disabled — no menu item return; } if (!isset($event->data['items']) || !is_array($event->data['items'])) { return; } $items =& $event->data['items']; // find the Profile item; default to appending if it is not present $pos = count($items); foreach ($items as $i => $existing) { if ($existing instanceof \dokuwiki\Menu\Item\Profile) { $pos = $i; break; } } array_splice($items, $pos, 0, [$item]); } // --------------------------------------------------------------------- // 2. Claiming the custom action + handling the save // --------------------------------------------------------------------- /** * Claim do=usersettings and, on a form submission, save and redirect. * * @param Doku_Event $event ACTION_ACT_PREPROCESS * @param mixed $param */ public function handlePreprocess(Doku_Event $event, $param) { if ($event->data !== self::ACTION) { return; } // Preventing the default makes DokuWiki keep the action and route it // through dokuwiki\Action\Plugin, which will fire TPL_ACT_UNKNOWN. $event->preventDefault(); $event->stopPropagation(); global $INPUT, $ID; $user = $INPUT->server->str('REMOTE_USER'); if ($user === '') { return; // anonymous — the rendered page shows a login notice } // not a save submission — nothing to do, the page will just render if (!$INPUT->post->bool('usersettings_save')) { return; } // CSRF protection; checkSecurityToken() shows its own error on failure if (!checkSecurityToken()) { return; } $ok = $this->saveSubmittedPreferences($user); msg($this->getLang($ok ? 'saved' : 'savefail'), $ok ? 1 : -1); // Post/Redirect/Get: a refresh must not re-submit the form send_redirect(wl($ID, ['do' => self::ACTION], true, '&')); } /** * Read the submitted toggle values for every registered toggle and store * them for the given user. * * Kept separate from handlePreprocess() so it carries no redirect and can * be exercised directly by tests. Checkboxes that are unchecked do not * appear in the POST data, so every registered toggle is read explicitly * rather than iterating whatever was submitted. * * @param string $user whose preferences are being written * @param string|null $actor who is making the change; defaults to $user * (the admin component passes the admin here) * @return bool */ public function saveSubmittedPreferences($user, $actor = null) { global $INPUT; if ($actor === null) { $actor = $user; } $helper = $this->getHelper(); if ($helper === null) { return false; } $values = []; foreach ($helper->getRegisteredToggles() as $key => $def) { if ($def['type'] === 'checkbox') { $values[$key] = $INPUT->post->bool($key) ? 1 : 0; } else { $values[$key] = $INPUT->post->str($key); } } return $helper->setPreferences($values, $user, $actor); } // --------------------------------------------------------------------- // 3. Rendering the settings page // --------------------------------------------------------------------- /** * Render the settings page for do=usersettings. * * @param Doku_Event $event TPL_ACT_UNKNOWN * @param mixed $param */ public function handleUnknown(Doku_Event $event, $param) { if ($event->data !== self::ACTION) { return; } $event->preventDefault(); $event->stopPropagation(); echo $this->renderSettingsPage(); } /** * Build the HTML of the settings page. * * @return string */ public function renderSettingsPage() { global $INPUT, $ID; $user = $INPUT->server->str('REMOTE_USER'); $html = '
'; $html .= '

' . hsc($this->getLang('heading')) . '

'; if ($user === '') { $html .= '

' . hsc($this->getLang('nologin')) . '

'; return $html . '
'; } $helper = $this->getHelper(); $toggles = $helper ? $helper->getRegisteredToggles() : []; if (empty($toggles)) { $html .= '

' . hsc($this->getLang('notoggles')) . '

'; return $html . ''; } $html .= '

' . hsc($this->getLang('intro')) . '

'; $action = wl($ID, ['do' => self::ACTION], false, '&'); $html .= '
'; $html .= formSecurityToken(false); foreach ($toggles as $key => $def) { $html .= $this->renderToggleRow($def, $helper->getPreference($key, $user)); } $html .= '
'; $html .= ''; $html .= '
'; $html .= '
'; return $html . ''; } /** * Render one toggle as a form row. Public so the admin component can * reuse it for its per-user edit form. * * @param array $def a normalised toggle definition * @param mixed $value the user's effective value for this toggle * @return string */ public function renderToggleRow(array $def, $value) { $key = hsc($def['key']); if ($def['type'] === 'select') { $id = 'us__' . $key; $html = '
'; $html .= ''; } else { $checked = empty($value) ? '' : ' checked="checked"'; $html = '
'; $html .= ''; } if ($def['desc'] !== '') { $html .= '
' . hsc($def['desc']) . '
'; } return $html . '
'; } }