Issues-373: added custom upload permissions

Author: atelomycterus

TopcoderEditorPlugin.php

@@ -339,11 +339,49 @@ protected function canUpload() {
             return $this->canUpload;
         } else {
             // Check config and user role upload permission
-            if (c('Garden.AllowFileUploads', true) &&
-                Gdn::session()->checkPermission('Garden.Uploads.Add', false)) {
-                // Check category-specific permission
-                $permissionCategory = CategoryModel::permissionCategory(Gdn::controller()->data('Category'));
-                $this->canUpload = val('AllowFileUploads', $permissionCategory, true);
+            if (c('Garden.AllowFileUploads', true)) {
+                if(Gdn::session()->checkPermission('Garden.Uploads.Add', false)) {
+                    $this->canUpload = true;
+                } else {
+                    $actionType = Gdn::controller()->data('ActionType');
+                    // Check category-specific permission
+                    if(Gdn::controller()->data('Category')) {
+                        $permissionCategory = CategoryModel::permissionCategory(Gdn::controller()->data('Category'));
+                        $discussionsUploads = CategoryModel::checkPermission($permissionCategory, 'Vanilla.Discussions.Uploads');
+                        $commentsUploads = CategoryModel::checkPermission($permissionCategory, 'Vanilla.Comments.Uploads');
+                        // User has both permissions
+                        if ($commentsUploads && $discussionsUploads) {
+                            $this->canUpload = true;
+                        } else {
+                            // Current Discussion mode
+                              switch ($actionType) {
+                                case 'NewDiscussion':
+                                    // Always true. User can change a category before posting discussion.
+                                    // Check upload permissions on the client
+                                    $this->canUpload = true;
+                                    break;
+                                case 'EditDiscussion':
+                                    $this->canUpload = $discussionsUploads;
+                                    break;
+                                case 'NewComment':
+                                case 'EditComment':
+                                    $this->canUpload = $commentsUploads;
+                                    break;
+                                default:
+                                    $this->canUpload = false;
+                            }
+                         }
+                    } else {
+                        // a category is not selected, check permission on the client
+                        switch ($actionType) {
+                            case 'NewDiscussion':
+                                $this->canUpload = true;
+                                break;
+                            default:
+                                $this->canUpload = false;
+                        }
+                    }
+                }
             } else {
                 $this->canUpload = false;
             }

js/easymde.min.js

@@ -17465,7 +17465,9 @@ function drawImage(editor) {
  */
 function drawUploadedImage(editor) {
     // TODO: Draw the image template with a fake url? ie: '![](importing foo.png...)'
-    editor.openBrowseFileWindow();
+    if(editor.options.uploadImage) {
+        editor.openBrowseFileWindow();
+    }
 }
 
 /**
@@ -18726,6 +18728,7 @@ EasyMDE.prototype.render = function (el) {
         extraKeys: keyMaps,
         lineWrapping: (options.lineWrapping === false) ? false : true,
         allowDropFileTypes: ['text/plain'],
+      //  dragDrop: (options.uploadImage != undefined)? options.uploadImage: false,
         placeholder: options.placeholder || el.getAttribute('placeholder') || '',
         styleSelectedText: (options.styleSelectedText != undefined) ? options.styleSelectedText : !isMobile(),
         scrollbarStyle: (options.scrollbarStyle != undefined) ? options.scrollbarStyle : 'native',
@@ -18940,6 +18943,7 @@ EasyMDE.prototype.clearAutosavedValue = function () {
 EasyMDE.prototype.openBrowseFileWindow = function (onSuccess, onError) {
     var self = this;
     var imageInput = this.gui.toolbar.getElementsByClassName('imageInput')[0];
+
     imageInput.click(); //dispatchEvent(new MouseEvent('click'));  // replaced with click() for IE11 compatibility.
     function onChange(event) {
         if (self.options.imageUploadFunction) {
@@ -19565,6 +19569,32 @@ EasyMDE.prototype.toTextArea = function () {
         this.clearAutosavedValue();
     }
 };
+EasyMDE.prototype.updateToolbar = function () {
+    var cm = this.codemirror;
+    var wrapper = cm.getWrapperElement();
+    var easyMDEContainer = wrapper.parentNode;
+
+    if (easyMDEContainer) {
+        var uploadImage = easyMDEContainer.querySelector('.upload-image');
+        if(uploadImage) {
+            uploadImage.style.display = this.options.uploadImage ? '' : 'none';
+        }
+
+        var insertImage = easyMDEContainer.querySelector('.image');
+        if(insertImage) {
+            insertImage.style.display = this.options.uploadImage ? 'none' : '';
+        }
+    }
+};
+
+EasyMDE.prototype.enableUploadImages = function (canUploadImages) {
+    var cm = this.codemirror;
+    this.options.uploadImage = canUploadImages;
+    cm.setOption('dragDrop', this.options.uploadImage);
+    this.updateStatusBar('upload-image', this.options.uploadImage?this.options.imageTexts.sbInit:'');
+    this.updateToolbar();
+};
+
 
 module.exports = EasyMDE;
 

js/topcodereditor.js

@@ -1,4 +1,5 @@
 (function($) {
+  var editor;
   $.fn.setAsEditor = function(selector) {
     selector = selector || '.BodyBox,.js-bodybox';
 
@@ -194,6 +195,25 @@
       var formData = new FormData();
       formData.append('file', file);
 
+      var $element = self.element;
+      var postForm = $element.closest('form');
+      var commentId = $(postForm).find('#Form_CommentID').val();
+      var discussionId = $(postForm).find('#Form_DiscussionID').val();
+      var categoryId = $(postForm).find('#Form_CategoryID').val();
+      var actionType = $(postForm).find('#Form_ActionType').val();
+      if(actionType != null) {
+        formData.append('actionType', actionType);
+      }
+      if(categoryId != null) {
+        formData.append('categoryID', categoryId);
+      }
+      if(commentId != null) {
+        formData.append('commentID', commentId);
+      }
+      if(discussionId != null) {
+        formData.append('discussionID', discussionId);
+      }
+
       var request = new XMLHttpRequest();
       request.upload.onprogress = function (event) {
         if (event.lengthComputable) {
@@ -453,7 +473,7 @@
         var $currentEditableTextarea = $(textareaObj);
         if ($currentEditableTextarea.length) {
           // instantiate new editor
-          var editor = new EasyMDE({
+          editor = new EasyMDE({
             shortcuts: {
               "mentions": "Ctrl-Space",
             },
@@ -472,8 +492,8 @@
                 className: "fa fa-at",
                 title: "Mention a Topcoder User",
 
-              }, "link", canUpload ? 'upload-image' : "image", "table", "horizontal-rule", "|", "fullscreen", "|", "guide"],
-            hideIcons: ["guide", "heading", "preview", "side-by-side"],
+              }, "link","upload-image" , "image", "table", "horizontal-rule", "|", "fullscreen", "|", "guide"],
+            hideIcons:  canUpload ? ["guide", "heading", "preview", "side-by-side"]: ["guide", "heading", "preview", "side-by-side", "upload-image"],
             insertTexts: {
               link: ['[', '](#url#)'],
               image: ['![](', '#url#)'],
@@ -493,13 +513,13 @@
               sbOnUploaded: 'Uploaded #image_name#',
               sizeUnits: ' B, KB, MB',
              },
-             uploadImage: canUpload,
-             imageMaxSize: maxUploadSize, //Maximum image size in bytes
-             imageAccept: allowedFileMimeTypeWithExts, //A comma-separated list of mime-types and extensions
-             imageUploadFunction: customUploadImage,
-             beforeUploadingImagesFunction: beforeUploadingImages,
-             errorCallback:  errorCallback,// A callback function used to define how to display an error message.
-             errorMessages: {
+            uploadImage: canUpload,
+            imageMaxSize: maxUploadSize, //Maximum image size in bytes
+            imageAccept: allowedFileMimeTypeWithExts, //A comma-separated list of mime-types and extensions
+            imageUploadFunction: customUploadImage,
+            beforeUploadingImagesFunction: beforeUploadingImages,
+            errorCallback:  errorCallback,// A callback function used to define how to display an error message.
+            errorMessages: {
                noFileGiven: 'Select a file.',
                typeNotAllowed: 'Uploading #image_name# was failed. The file type (#image_type#) is not supported.',
                fileTooLarge: 'Uploading #image_name# was failed. The file is too big (#image_size#).\n' +
@@ -557,6 +577,24 @@
     }
     // Multiple editors are supported on a page
     $('.BodyBox[format="Markdown"], .BodyBox[format="wysiwyg"],.js-bodybox[format="Markdown"], .js-bodybox[format="wysiwyg"]', e.target).setAsEditor();
+    var categorySelect = $(this).find('#DiscussionForm select');
+    if(categorySelect.length) {
+      var selectedOption = categorySelect.find('option:selected');
+      var uploads = selectedOption.attr("uploads");
+      editor.enableUploadImages(uploads === "1");
+    }
+    editor.updateToolbar();
+  });
+
+  $(document).on('change','#DiscussionForm select', function() {
+    var element = $(this).find('option:selected');
+    var categoryID = element.val();
+    if($(this).id != '#Form_CategoryID') {
+      var postForm = $(element).closest('form');
+      $(postForm).find('#Form_CategoryID').val(categoryID);
+    }
+    var uploads = element.attr("uploads");
+    editor.enableUploadImages(uploads === "1");
   });
 
   // Preview mode