bers' ) ) ) {
$retval = new WP_Error(
'bp_rest_member_invalid_id',
__( 'Invalid member ID.', 'buddypress' ),
array(
'status' => 404,
)
);
$this->user = bp_rest_get_user( $request->get_param( 'user_id' ) );
if ( $this->user instanceof WP_User ) {
$retval = true;
}
}
/**
* Filter the member avatar `get_item` permissions check.
*
* @since 5.0.0
*
* @param true|WP_Error $retval Returned value.
* @param WP_REST_Request $request The request sent to the API.
*/
return apply_filters( 'bp_rest_attachments_member_avatar_get_item_permissions_check', $retval, $request );
}
/**
* Upload a member avatar.
*
* @since 5.0.0
*
* @param WP_REST_Request $request Full details about the request.
* @return WP_REST_Response|WP_Error
*/
public function create_item( $request ) {
$request->set_param( 'context', 'edit' );
// Get the image file from $_FILES.
$files = $request->get_file_params();
if ( empty( $files ) ) {
return new WP_Error(
'bp_rest_attachments_member_avatar_no_image_file',
__( 'Sorry, you need an image file to upload.', 'buddypress' ),
array(
'status' => 500,
)
);
}
// Upload the avatar.
$avatar = $this->upload_avatar_from_file( $files );
if ( is_wp_error( $avatar ) ) {
return $avatar;
}
$retval = array(
$this->prepare_response_for_collection(
$this->prepare_item_for_response( $avatar, $request )
),
);
$response = rest_ensure_response( $retval );
/**
* Fires after a member avatar is uploaded via the REST API.
*
* @since 5.0.0
*
* @param stdClass $avatar Avatar object.
* @param WP_REST_Response $response The response data.
* @param WP_REST_Request $request The request sent to the API.
*/
do_action( 'bp_rest_attachments_member_avatar_create_item', $avatar, $response, $request );
return $response;
}
/**
* Checks if a given request has access to upload a member avatar.
*
* @since 5.0.0
*
* @param WP_REST_Request $request Full details about the request.
* @return true|WP_Error
*/
public function create_item_permissions_check( $request ) {
$retval = $this->get_item_permissions_check( $request );
if ( ! is_wp_error( $retval ) ) {
$args = array();
$error = new WP_Error(
'bp_rest_authorization_required',
__( 'Sorry, you are not allowed to perform this action.', 'buddypress' ),
array(
'status' => rest_authorization_required_code(),
)
);
if ( ! isset( $this->user->ID ) || ! isset( $this->object ) ) {
$retval = $error;
} else {
$args = array(
'item_id' => $this->user->ID,
'object' => $this->object,
);
if ( ! is_user_logged_in() ) {
$retval = new WP_Error(
'bp_rest_authorization_required',
__( 'Sorry, you need to be logged in to perform this action.', 'buddypress' ),
array(
'status' => rest_authorization_required_code(),
)
);
} elseif ( 'POST' === $request->get_method() && bp_disable_avatar_uploads() ) {
$retval = new WP_Error(
'bp_rest_attachments_member_avatar_disabled',
__( 'Sorry, member avatar upload is disabled.', 'buddypress' ),
array(
'status' => 500,
)
);
} elseif ( bp_attachments_current_user_can( 'edit_avatar', $args ) ) {
$retval = true;
} else {
$retval = $error;
}
}
}
/**
* Filter the member avatar `create_item` permissions check.
*
* @since 5.0.0
*
* @param true|WP_Error $retval Returned value.
* @param WP_REST_Request $request The request sent to the API.
*/
return apply_filters( 'bp_rest_attachments_member_avatar_create_item_permissions_check', $retval, $request );
}
/**
* Delete an existing member avatar.
*
* @since 5.0.0
*
* @param WP_REST_Request $request Full details about the request.
* @return WP_REST_Response|WP_Error
*/
public function delete_item( $request ) {
$request->set_param( 'context', 'edit' );
$user_id = (int) $this->user->ID;
if ( ! bp_get_user_has_avatar( $user_id ) ) {
return new WP_Error(
'bp_rest_attachments_member_avatar_no_uploaded_avatar',
__( 'Sorry, there are no uploaded avatars for this user on this site.', 'buddypress' ),
array(
'status' => 404,
)
);
}
$args = array();
foreach ( array( 'full', 'thumb' ) as $type ) {
$args[ $type ] = bp_core_fetch_avatar(
array(
'object' => $this->object,
'type' => $type,
'item_id' => $user_id,
'html' => false,
)
);
}
// Get the avatar object before deleting it.
$avatar = $this->get_avatar_object( $args );
$deleted = bp_core_delete_existing_avatar(
array(
'object' => $this->object,
'item_id' => $user_id,
)
);
if ( ! $deleted ) {
return new WP_Error(
'bp_rest_attachments_member_avatar_delete_failed',
__( 'Sorry, there was a problem deleting the avatar.', 'buddypress' ),
array(
'status' => 500,
)
);
}
// Build the response.
$response = new WP_REST_Response();
$response->set_data(
array(
'deleted' => true,
'previous' => $avatar,
)
);
/**
* Fires after a member avatar is deleted via the REST API.
*
* @since 5.0.0
*
* @param WP_REST_Response $response The response data.
* @param WP_REST_Request $request The request sent to the API.
*/
do_action( 'bp_rest_attachments_member_avatar_delete_item', $response, $request );
return $response;
}
/**
* Checks if a given request has access to delete member avatar.
*
* @since 5.0.0
*
* @param WP_REST_Request $request Full details about the request.
* @return true|WP_Error
*/
public function delete_item_permissions_check( $request ) {
$retval = $this->create_item_permissions_check( $request );
/**
* Filter the member avatar `delete_item` permissions check.
*
* @since 5.0.0
*
* @param true|WP_Error $retval Returned value.
* @param WP_REST_Request $request The request sent to the API.
*/
return apply_filters( 'bp_rest_attachments_member_avatar_delete_item_permissions_check', $retval, $request );
}
/**
* Prepares avatar data to return as an object.
*
* @since 5.0.0
*
* @param object $avatar Avatar object.
* @param WP_REST_Request $request Full details about the request.
* @return WP_REST_Response
*/
public function prepare_item_for_response( $avatar, $request ) {
$data = array(
'full' => $avatar->full,
'thumb' => $avatar->thumb,
);
$context = ! empty( $request->get_param( 'context' ) ) ? $request->get_param( 'context' ) : 'view';
$data = $this->add_additional_fields_to_object( $data, $request );
$data = $this->filter_response_by_context( $data, $context );
$response = rest_ensure_response( $data );
/**
* Filter a member avatar value returned from the API.
*
* @since 5.0.0
*
* @param WP_REST_Response $response Response.
* @param WP_REST_Request $request Request used to generate the response.
* @param object $avatar Avatar object.
*/
return apply_filters( 'bp_rest_attachments_member_avatar_prepare_value', $response, $request, $avatar );
}
/**
* Get the member avatar schema, conforming to JSON Schema.
*
* @since 5.0.0
*
* @return array
*/
public function get_item_schema() {
if ( is_null( $this->schema ) ) {
$this->schema = array(
'$schema' => 'http://json-schema.org/draft-04/schema#',
'title' => 'bp_attachments_member_avatar',
'type' => 'object',
'properties' => array(
'full' => array(
'context' => array( 'view', 'edit' ),
'description' => __( 'Full size of the image file.', 'buddypress' ),
'type' => 'string',
'format' => 'uri',
'readonly' => true,
),
'thumb' => array(
'context' => array( 'view', 'edit' ),
'description' => __( 'Thumb size of the image file.', 'buddypress' ),
'type' => 'string',
'format' => 'uri',
'readonly' => true,
),
),
);
}
/**
* Filters the attachments member avatar schema.
*
* @param array $schema The endpoint schema.
*/
return apply_filters( 'bp_rest_attachments_member_avatar_schema', $this->add_additional_fields_schema( $this->schema ) );
}
/**
* Get the query params for the `get_item`.
*
* @since 5.0.0
*
* @return array
*/
public function get_item_collection_params() {
$params = parent::get_collection_params();
$params['context']['default'] = 'view';
// Removing unused params.
unset( $params['search'], $params['page'], $params['per_page'] );
$params['html'] = array(
'description' => __( 'Whether to return an HTML element, vs a raw URL to an avatar.', 'buddypress' ),
'default' => false,
'type' => 'boolean',
'sanitize_callback' => 'rest_sanitize_boolean',
'validate_callback' => 'rest_validate_request_arg',
);
$params['alt'] = array(
'description' => __( 'The alt attribute for the element.', 'buddypress' ),
'default' => '',
'type' => 'string',
'sanitize_callback' => 'sanitize_text_field',
'validate_callback' => 'rest_validate_request_arg',
);
$params['no_gravatar'] = array(
'description' => __( 'Whether to disable the default Gravatar fallback.', 'buddypress' ),
'default' => false,
'type' => 'boolean',
'sanitize_callback' => 'rest_sanitize_boolean',
'validate_callback' => 'rest_validate_request_arg',
);
/**
* Filters the item collection query params.
*
* @param array $params Query params.
*/
return apply_filters( 'bp_rest_attachments_member_avatar_collection_params', $params );
}
}