Koha-community/Koha
13
7
Fork 0
Code Issues Releases Wiki Activity
Koha/opac/opac-ratings-ajax.pl
Jonathan Druart 4390b7be04 Bug 28785: Adjust check_cookie_auth calls 
The previous patch makes check_cookie_auth return the session instead of
$sessionID, so we are adjusting the different calls to prevent
confusion.
However they are mainly used to check the authentication status and
don't care about this second variable.

Signed-off-by: Owen Leonard <oleonard@myacpl.org>
Signed-off-by: Martin Renvoize <martin.renvoize@ptfs-europe.com>

Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
2021-10-18 11:28:41 +02:00

116 lines
3.4 KiB
Perl
Executable file
Raw Blame History

#!/usr/bin/perl
# Copyright 2011 KohaAloha, NZ
#
# This file is part of Koha.
#
# Koha is free software; you can redistribute it and/or modify it
# under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 3 of the License, or
# (at your option) any later version.
#
# Koha is distributed in the hope that it will be useful, but
# WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with Koha; if not, see <http://www.gnu.org/licenses>.
=head1 DESCRIPTION
A script that takes an ajax json query, and then inserts or modifies a star-rating.
=cut
use Modern::Perl;
use CGI qw ( -utf8 );
use CGI::Cookie; # need to check cookies before having CGI parse the POST request
use C4::Auth qw( get_template_and_user check_cookie_auth );
use C4::Context;
use C4::Output qw( is_ajax output_ajax_with_http_headers );
use Koha::Ratings;
use JSON;
my $is_ajax = is_ajax();
my ( $query, $auth_status );
if ($is_ajax) {
( $query, $auth_status ) = &ajax_auth_cgi( {} );
}
else {
$query = CGI->new();
}
my $biblionumber = $query->param('biblionumber');
my $rating_value = $query->param('rating_value');
my $rating_old_value = $query->param('rating_old_value');
my ( $template, $loggedinuser, $cookie );
if ($is_ajax) {
$loggedinuser = C4::Context->userenv->{'number'};
}
else {
( $template, $loggedinuser, $cookie ) = get_template_and_user(
{
template_name => "opac-detail.tt",
query => $query,
type => "opac",
authnotrequired => 0, # auth required to add tags
}
);
}
my $rating;
$rating_value //= '';
if ( $rating_value eq '' ) {
my $rating = Koha::Ratings->find( { biblionumber => $biblionumber, borrowernumber => $loggedinuser } );
$rating->delete if $rating;
}
elsif ( $rating_value and !$rating_old_value ) {
Koha::Rating->new( { biblionumber => $biblionumber, borrowernumber => $loggedinuser, rating_value => $rating_value, })->store;
}
elsif ( $rating_value ne $rating_old_value ) {
my $rating = Koha::Ratings->find( { biblionumber => $biblionumber, borrowernumber => $loggedinuser });
$rating->rating_value($rating_value)->store if $rating
}
my $ratings = Koha::Ratings->search({ biblionumber => $biblionumber });
my $my_rating = $ratings->search({ borrowernumber => $loggedinuser })->next;
my $avg = $ratings->get_avg_rating;
my %js_reply = (
rating_total => $ratings->count,
rating_avg => $avg,
rating_avg_int => sprintf("%.0f", $avg),
rating_value => $my_rating ? $my_rating->rating_value : undef,
auth_status => $auth_status,
);
my $json_reply = JSON->new->encode( \%js_reply );
#### $rating
#### %js_reply
#### $json_reply
output_ajax_with_http_headers( $query, $json_reply );
exit;
# a ratings specific ajax return sub, returns CGI object, and an 'auth_success' value
sub ajax_auth_cgi {
my $needed_flags = shift;
my %cookies = CGI::Cookie->fetch;
my $input = CGI->new;
my $sessid = $cookies{'CGISESSID'}->value || $input->param('CGISESSID');
my ( $auth_status ) =
check_cookie_auth( $sessid, $needed_flags );
return $input, $auth_status;
}
View git blame Copy permalink