mohsen
/
sevomin
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
102 Commits
2 Branches
42 MiB
Tree: 8d30778fad
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8d30778fad'
${ noResults }
sevomin/Sevomin.News/app_code/handlers/CommentHandler.cs

186 lines
6.5 KiB
Raw Normal View History

Start news project
11 years ago
 
  1. using System;
  2. using System.Configuration;
  3. using System.Linq;
  4. using System.Net.Mail;
  5. using System.Text.RegularExpressions;
  6. using System.Web;
  7. using System.Web.WebPages;
  8. 

  9. public class CommentHandler : IHttpHandler
  10. {
  11.     public void ProcessRequest(HttpContext context)
  12.     {
  13.         Post post = Storage.GetAllPosts().SingleOrDefault(p => p.ID == context.Request["postId"]);
  14. 

  15.         if (post == null)
  16.             throw new HttpException(404, "The post does not exist");
  17. 

  18.         string mode = context.Request["mode"];
  19. 

  20.         if (mode == "save" && context.Request.HttpMethod == "POST" && post.AreCommentsOpen(new HttpContextWrapper(context)) && Blog.MatchesUniqueId(context))
  21.         {
  22.             Save(context, post);
  23.         }
  24.         else if (mode == "delete")
  25.         {
  26.             Delete(context, post);
  27.         }
  28.         else if (mode == "approve")
  29.         {
  30.             Approve(context, post);
  31.         }
  32.     }
  33. 

  34.     private static void Save(HttpContext context, Post post)
  35.     {
  36.         string name = context.Request.Form["name"];
  37.         string email = context.Request.Form["email"];
  38.         string website = context.Request.Form["website"];
  39.         string content = context.Request.Form["content"];
  40. 

  41.         Validate(name, email, content);
  42. 

  43.         Comment comment = new Comment()
  44.         {
  45.             Author = name.Trim(),
  46.             Email = email.Trim(),
  47.             Website = GetUrl(website),
  48.             Ip = context.Request.UserHostAddress,
  49.             UserAgent = context.Request.UserAgent,
  50.             IsAdmin = context.User.Identity.IsAuthenticated,
  51.             Content = HttpUtility.HtmlEncode(content.Trim()).Replace("\n", "<br />"),
  52.             IsApproved = !Blog.ModerateComments,
  53.         };
  54. 

  55.         post.Comments.Add(comment);
  56.         Storage.Save(post);
  57. 

  58.         if (!context.User.Identity.IsAuthenticated)
  59.             System.Threading.ThreadPool.QueueUserWorkItem((s) => SendEmail(comment, post, context.Request));
  60. 

  61.         RenderComment(context, comment);
  62.     }
  63. 

  64.     private static void RenderComment(HttpContext context, Comment comment)
  65.     {
  66.         var page = (WebPage)WebPageBase.CreateInstanceFromVirtualPath("~/themes/" + Blog.Theme + "/comment.cshtml");
  67.         page.Context = new HttpContextWrapper(context);
  68.         page.ExecutePageHierarchy(new WebPageContext(page.Context, page: null, model: comment), context.Response.Output);
  69.     }
  70. 

  71.     private static void SendEmail(Comment comment, Post post, HttpRequest request)
  72.     {
  73.         try
  74.         {
  75.             MailMessage mail = new MailMessage();
  76.             mail.From = new MailAddress(comment.Email, comment.Author);
  77.             mail.ReplyToList.Add(comment.Email);
  78.             mail.To.Add(ConfigurationManager.AppSettings.Get("blog:email"));
  79.             mail.Subject = "Blog comment: " + post.Title;
  80.             mail.IsBodyHtml = true;
  81. 

  82.             string absoluteUrl = request.Url.Scheme + "://" + request.Url.Authority;
  83.             string deleteUrl = absoluteUrl + request.RawUrl + "?postId=" + post.ID + "&commentId=" + comment.ID + "&mode=delete";
  84.             string approveUrl = absoluteUrl + request.RawUrl + "?postId=" + post.ID + "&commentId=" + comment.ID + "&mode=approve";
  85.             mail.Body = "<div style=\"font: 11pt/1.5 calibri, arial;\">" +
  86.                             comment.Author + " on <a href=\"" + absoluteUrl + post.Url + "\">" + post.Title + "</a>:<br /><br />" +
  87.                             comment.Content + "<br /><br />" +
  88.                             (Blog.ModerateComments ? "<a href=\"" + approveUrl + "\">Approve comment</a> | " : string.Empty) +
  89.                             "<a href=\"" + deleteUrl + "\">Delete comment</a>" +
  90.                             "<br /><br /><hr />" +
  91.                             "Website: " + comment.Website + "<br />" +
  92.                             "E-mail: " + comment.Email + "<br />" +
  93.                             "IP-address: " + comment.Ip +
  94.                         "</div>";
  95. 

  96. 

  97.             SmtpClient client = new SmtpClient();
  98.             client.Send(mail);
  99.         }
  100.         catch
  101.         { }
  102.     }
  103. 

  104.     private static void Validate(string name, string email, string content)
  105.     {
  106.         bool isName = !string.IsNullOrEmpty(name);
  107.         bool isMail = !string.IsNullOrEmpty(email) && Regex.IsMatch(email, @"^([\w\.\-]+)@([\w\-]+)((\.(\w){2,3})+)$");
  108.         bool isContent = !string.IsNullOrEmpty(content);
  109. 

  110.         if (!isName || !isMail || !isContent)
  111.         {
  112.             if (!isName)
  113.                 HttpContext.Current.Response.Status = "403 Please enter a valid name";
  114.             else if (!isMail)
  115.                 HttpContext.Current.Response.Status = "403 Please enter a valid e-mail address";
  116.             else if (!isContent)
  117.                 HttpContext.Current.Response.Status = "403 Please enter a valid comment";
  118. 

  119.             HttpContext.Current.Response.End();
  120.         }
  121.     }
  122. 

  123.     private static string GetUrl(string website)
  124.     {
  125.         if (!website.Contains("://"))
  126.             website = "http://" + website;
  127. 

  128.         Uri url;
  129.         if (Uri.TryCreate(website, UriKind.Absolute, out url))
  130.             return url.ToString();
  131. 

  132.         return string.Empty;
  133.     }
  134. 

  135.     private static void Delete(HttpContext context, Post post)
  136.     {
  137.         if (!context.User.Identity.IsAuthenticated)
  138.             throw new HttpException(403, "No access");
  139. 

  140.         string commentId = context.Request["commentId"];
  141.         Comment comment = post.Comments.SingleOrDefault(c => c.ID == commentId);
  142. 

  143.         if (comment != null)
  144.         {
  145.             post.Comments.Remove(comment);
  146.             Storage.Save(post);
  147.         }
  148.         else
  149.         {
  150.             throw new HttpException(404, "Comment could not be found");
  151.         }
  152. 

  153.         if (context.Request.HttpMethod == "GET")
  154.         {
  155.             context.Response.Redirect(post.AbsoluteUrl.ToString() + "#comments", true);
  156.         }
  157.     }
  158. 

  159.     private static void Approve(HttpContext context, Post post)
  160.     {
  161.         if (!context.User.Identity.IsAuthenticated)
  162.             throw new HttpException(403, "No access");
  163. 

  164.         string commentId = context.Request["commentId"];
  165.         Comment comment = post.Comments.SingleOrDefault(c => c.ID == commentId);
  166. 

  167.         if (comment != null)
  168.         {
  169.             comment.IsApproved = true;
  170.             Storage.Save(post);
  171.         }
  172.         else
  173.         {
  174.             throw new HttpException(404, "Comment could not be found");
  175.         }
  176. 

  177.         if (context.Request.HttpMethod == "GET")
  178.         {
  179.             context.Response.Redirect(post.AbsoluteUrl.ToString() + "#comments", true);
  180.         }
  181.     }
  182. 

  183.     public bool IsReusable
  184.     {
  185.         get { return false; }
  186.     }
  187. }