BaseController:subclass("CommentController", {registry = {}, models = {"comment", "pages"}}) local function process_md(input) local md = require("md") local content = "" local callback = function(s) content = content .. s end md.to_html(input, callback) return content end local function sendmail(to, subject, content) LOG_DEBUG("Sending email to %s", to) local setting = JSON.decodeFile(SMTP_SETTING) local socket = require 'socket' local smtp = require 'socket.smtp' local ssl = require 'ssl' local https = require 'ssl.https' local ltn12 = require 'ltn12' local sslCreate = function() local sock = socket.tcp() return setmetatable({ connect = function(_, host, port) local r, e = sock:connect(host, port) if not r then return r, e end sock = ssl.wrap(sock, {mode='client', protocol='tlsv1_2'}) return sock:dohandshake() end }, { __index = function(t,n) return function(_, ...) return sock[n](sock, ...) end end }) end local setting = JSON.decodeFile(SMTP_SETTING) if not setting then return false end local from = "" local msg = { headers = { from = string.format("QuickTalk <%s>", from), to = string.format("%s <%s>",to,to), subject = subject }, body = content } LOG_INFO("Send mail on server %s user %s port %d: %s", setting.server, setting.user, setting.port, JSON.encode(msg)) local ok, err = smtp.send { from = string.format("<%s>",from), rcpt = string.format('<%s>', to), source = smtp.message(msg), user = setting.user, password = setting.password, server = setting.server, port = math.floor(setting.port), create = sslCreate } if not ok then return false end return true end function CommentController:index(...) if (REQUEST.method == "OPTIONS") then result("") return false end if not REQUEST.json then fail("Invalid request") return false end local rq = (JSON.decodeString(REQUEST.json)) if (rq) then local pages, order = self.pages:find({where = {uri =}}) if not pages or #order == 0 then fail("Be the first to comment") else local pid = pages[1].id local comments, order = self.comment:find({ where = { pid = pid, rid = 0 }, order = {"time$asc"}, fields = {"id", "time", "name", "rid", "pid", "content"} }) if not comments or #order == 0 then fail("Be the first to comment") else for idx, v in pairs(order) do local data = comments[v] data.content = process_md(data.content) data.children = {} -- find all the replies to this thread local sub_comments, suborder = self.comment:find({ where = { pid = pid, rid = }, order = {"time$asc"} }) if sub_comments and #suborder ~= 0 then for i, subc in pairs(suborder) do sub_comments[subc].content = process_md(sub_comments[subc].content) end data.children = sub_comments end end result(comments) end end else fail("Invalid request") end return false end function CommentController:post(...) if (REQUEST.method == "OPTIONS") then result("") return false end if not REQUEST.json then fail("Invalid request") return false end local rq = (JSON.decodeString(REQUEST.json)) if rq then local pages, order = self.pages:find({where =}) if not pages or #order == 0 then -- insert data if self.pages:create( then = self.pages.db:lastInsertID() else fail("Unable to initialize comment thread for page: " .. return false end else = pages[1].id end -- now insert the comment rq.comment.time = os.time("!*t")) if (self.comment:create(rq.comment)) then = self.comment.db:lastInsertID() rq.comment.content = process_md(rq.comment.content) -- notify the author if then sendmail(, .. " has commented on one of your pages", .. " has commented on your page: " .. .. ".\nBest regards,\nEmail automatically sent by QuickTalk API") end -- send mail to all users of current page local cmts, cmti = self.comment:find( { where = { pid =, ["email$ne"] = }, fields = {"id", "email"} }) -- check duplicate email if cmts and #cmti > 0 then local sent = {} for idx, v in pairs(cmti) do if not sent[cmts[v].email] then sendmail(cmts[v].email, .. " has written something on a page that you've commented on", .. " has written something on a page that you've commented. \nPlease visit this page: " .. " for updates on the discussion.\nBest regards,\nEmail automatically sent by QuickTalk API") sent[cmts[v].email] = true end end end = "" result(rq.comment) else fail("Unable to save comment") end else fail("Invalid request") end return false end function CommentController:preview(...) if (REQUEST.method == "OPTIONS") then result("") return false end if not REQUEST.json then fail("Invalid request") return false end local rq = (JSON.decodeString(REQUEST.json)) if (rq and then result(process_md( else fail("Invalid request") end return false end