Koha-community/Koha
13
7
Fork 0
Code Issues Releases Wiki Activity
Koha/opac/opac-ratings-ajax.pl
Jonathan Druart e20270fec4 Bug 11944: use CGI( -utf8 ) everywhere 
Signed-off-by: Paola Rossi <paola.rossi@cineca.it>
Signed-off-by: Bernardo Gonzalez Kriegel <bgkriegel@gmail.com>
Signed-off-by: Dobrica Pavlinusic <dpavlin@rot13.org>

Signed-off-by: Martin Renvoize <martin.renvoize@ptfs-europe.com>
Signed-off-by: Tomas Cohen Arazi <tomascohen@gmail.com>
2015-01-13 13:07:21 -03:00

115 lines
3.1 KiB
Perl
Executable file
Raw Blame History

#!/usr/bin/perl
# Copyright 2011 KohaAloha, NZ
#
# This file is part of Koha.
#
# Koha is free software; you can redistribute it and/or modify it under the
# terms of the GNU General Public License as published by the Free Software
# Foundation; either version 2 of the License, or (at your option) any later
# version.
#
# Koha is distributed in the hope that it will be useful, but WITHOUT ANY
# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
# A PARTICULAR PURPOSE. See the GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License along
# with Koha; if not, write to the Free Software Foundation, Inc.,
# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
=head1 DESCRIPTION
A script that takes an ajax json query, and then inserts or modifies a star-rating.
=cut
use strict;
use warnings;
use CGI qw ( -utf8 );
use CGI::Cookie; # need to check cookies before having CGI parse the POST request
use C4::Auth qw(:DEFAULT check_cookie_auth);
use C4::Context;
use C4::Debug;
use C4::Output qw(:html :ajax pagination_bar);
use C4::Ratings;
use JSON;
my $is_ajax = is_ajax();
my ( $query, $auth_status );
if ($is_ajax) {
( $query, $auth_status ) = &ajax_auth_cgi( {} );
}
else {
$query = CGI->new();
}
my $biblionumber = $query->param('biblionumber');
my $rating_value = $query->param('rating_value');
my $rating_old_value = $query->param('rating_old_value');
my ( $template, $loggedinuser, $cookie );
if ($is_ajax) {
$loggedinuser = C4::Context->userenv->{'number'};
}
else {
( $template, $loggedinuser, $cookie ) = get_template_and_user(
{
template_name => "opac-detail.tt",
query => $query,
type => "opac",
authnotrequired => 0, # auth required to add tags
debug => 1,
}
);
}
my $rating;
undef $rating_value if $rating_value eq '';
if ( !$rating_value ) {
#### delete
$rating = DelRating( $biblionumber, $loggedinuser );
}
elsif ( $rating_value and !$rating_old_value ) {
#### insert
$rating = AddRating( $biblionumber, $loggedinuser, $rating_value );
}
elsif ( $rating_value ne $rating_old_value ) {
#### mod
$rating = ModRating( $biblionumber, $loggedinuser, $rating_value );
}
my %js_reply = (
rating_total => $rating->{'rating_total'},
rating_avg => $rating->{'rating_avg'},
rating_avg_int => $rating->{'rating_avg_int'},
rating_value => $rating->{'rating_value'},
auth_status => $auth_status,
);
my $json_reply = JSON->new->encode( \%js_reply );
#### $rating
#### %js_reply
#### $json_reply
output_ajax_with_http_headers( $query, $json_reply );
exit;
# a ratings specific ajax return sub, returns CGI object, and an 'auth_success' value
sub ajax_auth_cgi {
my $needed_flags = shift;
my %cookies = fetch CGI::Cookie;
my $input = CGI->new;
my $sessid = $cookies{'CGISESSID'}->value || $input->param('CGISESSID');
my ( $auth_status, $auth_sessid ) =
check_cookie_auth( $sessid, $needed_flags );
return $input, $auth_status;
}
View git blame Copy permalink