Extra-Chill · homeboy-ci · Apr 11, 2026
diff --git a/homeboy.json b/homeboy.json
diff --git a/inc/Abilities/Bluesky/BlueskyDeleteAbility.php b/inc/Abilities/Bluesky/BlueskyDeleteAbility.php
@@ -13,10 +13,13 @@
 
 use DataMachine\Abilities\PermissionHelper;
 use DataMachineSocials\Handlers\Bluesky\BlueskyAuth;
+use DataMachineSocials\Abilities\Traits\HasCheckPermission;
 
 defined( 'ABSPATH' ) || exit;
 
 class BlueskyDeleteAbility {
+	use HasCheckPermission;
+
 
 	private static bool $registered = false;
 
@@ -73,10 +76,6 @@ private function registerAbilities(): void {
 		}
 	}
 
-	public function checkPermission(): bool {
-		return PermissionHelper::can_manage();
-	}
-
 	public function execute( array $input ): array|\WP_Error {
 		$auth = $this->getAuthProvider();
 		if ( ! $auth ) {

diff --git a/inc/Abilities/Bluesky/BlueskyPublishAbility.php b/inc/Abilities/Bluesky/BlueskyPublishAbility.php
@@ -434,4 +434,59 @@ private static function fetch_og_tags( string $url ): array|\WP_Error {
 
 		return $og;
 	}
+
+    public function checkPermission(): bool {
+		return PermissionHelper::can_manage();
+    }
+
+    private function getAuthProvider(): ?BlueskyAuth {
+		$auth_abilities = new \DataMachine\Abilities\AuthAbilities();
+		$provider       = $auth_abilities->getProvider( 'bluesky' );
+
+		if ( $provider instanceof BlueskyAuth ) {
+			return $provider;
+		}
+
+		return null;
+    }
+
+    public function execute( array $input ): array|\WP_Error {
+		$action = $input['action'] ?? 'list';
+
+		$auth = $this->getAuthProvider();
+		if ( ! $auth ) {
+			return new \WP_Error( 'missing_auth', 'Bluesky auth provider not available', array( 'status' => 401 ) );
+		}
+
+		$session = $auth->get_session();
+		if ( is_wp_error( $session ) ) {
+			return new \WP_Error( 'api_error', 'Bluesky session creation failed: ' . $session->get_error_message(), array( 'status' => 500 ) );
+		}
+
+		if ( empty( $session['accessJwt'] ) ) {
+			return new \WP_Error( 'missing_auth', 'Bluesky authentication failed (no access token in session)', array( 'status' => 401 ) );
+		}
+
+		$pds_url      = $session['pds_url'] ?? 'https://bsky.social';
+		$access_token = $session['accessJwt'];
+		$did          = $session['did'] ?? '';
+		$handle       = $session['handle'] ?? '';
+
+		switch ( $action ) {
+			case 'list':
+				return $this->listPosts( $pds_url, $access_token, $did ? $did : $handle, $input );
+
+			case 'get':
+				if ( empty( $input['post_uri'] ) ) {
+					return new \WP_Error( 'missing_param', 'post_uri is required for the get action', array( 'status' => 400 ) );
+				}
+				return $this->getPostThread( $pds_url, $access_token, $input['post_uri'] );
+
+			case 'profile':
+				return $this->getProfile( $pds_url, $access_token, $did ? $did : $handle );
+
+			default:
+				return new \WP_Error( 'api_error', "Unknown action: {$action}. Use list, get, or profile.", array( 'status' => 500 ) );
+		}
+    }
 }
diff --git a/inc/Abilities/Bluesky/BlueskyReadAbility.php b/inc/Abilities/Bluesky/BlueskyReadAbility.php
@@ -15,10 +15,13 @@
 use DataMachine\Abilities\PermissionHelper;
 use DataMachine\Core\HttpClient;
 use DataMachineSocials\Handlers\Bluesky\BlueskyAuth;
+use DataMachineSocials\Abilities\Traits\HasCheckPermission;
 
 defined( 'ABSPATH' ) || exit;
 
 class BlueskyReadAbility {
+	use HasCheckPermission;
+
 
 	private static bool $registered = false;
 
@@ -89,10 +92,6 @@ private function registerAbilities(): void {
 		}
 	}
 
-	public function checkPermission(): bool {
-		return PermissionHelper::can_manage();
-	}
-
 	public function execute( array $input ): array|\WP_Error {
 		$action = $input['action'] ?? 'list';
 

diff --git a/inc/Abilities/Bluesky/BlueskyUpdateAbility.php b/inc/Abilities/Bluesky/BlueskyUpdateAbility.php
@@ -14,10 +14,14 @@
 
 use DataMachine\Abilities\PermissionHelper;
 use DataMachineSocials\Handlers\Bluesky\BlueskyAuth;
+use DataMachineSocials\Abilities\Traits\HasCheckPermission;
+use DataMachineSocials\Abilities\Bluesky\BlueskyDeleteAbility;
 
 defined( 'ABSPATH' ) || exit;
 
 class BlueskyUpdateAbility {
+	use HasCheckPermission;
+
 
 	private static bool $registered = false;
 
@@ -79,10 +83,6 @@ private function registerAbilities(): void {
 		}
 	}
 
-	public function checkPermission(): bool {
-		return PermissionHelper::can_manage();
-	}
-
 	public function execute( array $input ): array|\WP_Error {
 		$action = $input['action'] ?? '';
 
@@ -117,21 +117,6 @@ public function execute( array $input ): array|\WP_Error {
 		}
 	}
 
-	private function getAuthProvider(): ?BlueskyAuth {
-		if ( ! class_exists( '\DataMachine\Abilities\AuthAbilities' ) ) {
-			return null;
-		}
-
-		$auth     = new \DataMachine\Abilities\AuthAbilities();
-		$provider = $auth->getProvider( 'bluesky' );
-
-		if ( ! $provider instanceof BlueskyAuth ) {
-			return null;
-		}
-
-		return $provider;
-	}
-
 	private function deletePost( array $session, string $post_uri ): array|\WP_Error {
 		$pds_url = $session['pds_url'];
 		$did     = $session['did'];

diff --git a/inc/Abilities/Facebook/FacebookDeleteAbility.php b/inc/Abilities/Facebook/FacebookDeleteAbility.php
@@ -13,10 +13,13 @@
 
 use DataMachine\Abilities\PermissionHelper;
 use DataMachineSocials\Handlers\Facebook\FacebookAuth;
+use DataMachineSocials\Abilities\Traits\HasCheckPermission;
 
 defined( 'ABSPATH' ) || exit;
 
 class FacebookDeleteAbility {
+	use HasCheckPermission;
+
 
 	private static bool $registered = false;
 
@@ -75,10 +78,6 @@ private function registerAbilities(): void {
 		}
 	}
 
-	public function checkPermission(): bool {
-		return PermissionHelper::can_manage();
-	}
-
 	public function execute( array $input ): array|\WP_Error {
 		$auth = $this->getAuthProvider();
 		if ( ! $auth ) {

diff --git a/inc/Abilities/Facebook/FacebookPublishAbility.php b/inc/Abilities/Facebook/FacebookPublishAbility.php
@@ -358,4 +358,71 @@ private static function post_comment( string $post_id, string $message, string $
 	private static function build_graph_url( string $path ): string {
 		return 'https://graph.facebook.com/v23.0/' . ltrim( $path, '/' );
 	}
+
+    private function getAuthProvider(): ?FacebookAuth {
+		if ( ! class_exists( '\DataMachine\Abilities\AuthAbilities' ) ) {
+			return null;
+		}
+
+		$auth     = new \DataMachine\Abilities\AuthAbilities();
+		$provider = $auth->getProvider( 'facebook' );
+
+		if ( ! $provider instanceof FacebookAuth ) {
+			return null;
+		}
+
+		return $provider;
+    }
+
+    public function execute( array $input ): array|\WP_Error {
+		$auth = $this->getAuthProvider();
+		if ( ! $auth ) {
+			return new \WP_Error( 'missing_auth', 'Facebook auth provider not available', array( 'status' => 401 ) );
+		}
+
+		$access_token = $auth->get_page_access_token();
+		if ( empty( $access_token ) ) {
+			return new \WP_Error( 'missing_auth', 'Facebook page access token unavailable', array( 'status' => 401 ) );
+		}
+
+		if ( empty( $input['post_id'] ) ) {
+			return new \WP_Error( 'missing_param', 'post_id is required', array( 'status' => 400 ) );
+		}
+
+		$url = self::GRAPH_API_URL . '/' . rawurlencode( $input['post_id'] );
+
+		$response = wp_remote_post(
+			$url,
+			array(
+				'timeout' => 30,
+				'body'    => array(
+					'access_token' => $access_token,
+					'method'       => 'DELETE',
+				),
+			)
+		);
+
+		if ( is_wp_error( $response ) ) {
+			return new \WP_Error( 'api_error', $response->get_error_message(), array( 'status' => 500 ) );
+		}
+
+		$status_code = wp_remote_retrieve_response_code( $response );
+		$body        = json_decode( wp_remote_retrieve_body( $response ), true );
+
+		if ( 200 === $status_code || ( isset( $body['success'] ) && $body['success'] ) ) {
+			return array(
+				'success' => true,
+				'data'    => array(
+					'post_id' => $input['post_id'],
+					'deleted' => true,
+				),
+			);
+		}
+
+		return new \WP_Error( 'api_error', $body['error']['message'] ?? 'Failed to delete post', array( 'status' => 500 ) );
+    }
+
+    public function checkPermission(): bool {
+		return PermissionHelper::can_manage();
+    }
 }
diff --git a/inc/Abilities/Facebook/FacebookReadAbility.php b/inc/Abilities/Facebook/FacebookReadAbility.php
@@ -15,10 +15,13 @@
 use DataMachine\Abilities\PermissionHelper;
 use DataMachine\Core\HttpClient;
 use DataMachineSocials\Handlers\Facebook\FacebookAuth;
+use DataMachineSocials\Abilities\Traits\HasCheckPermission;
 
 defined( 'ABSPATH' ) || exit;
 
 class FacebookReadAbility {
+	use HasCheckPermission;
+
 
 	private static bool $registered = false;
 
@@ -93,10 +96,6 @@ private function registerAbilities(): void {
 		}
 	}
 
-	public function checkPermission(): bool {
-		return PermissionHelper::can_manage();
-	}
-
 	public function execute( array $input ): array|\WP_Error {
 		$action = $input['action'] ?? 'list';
 

diff --git a/inc/Abilities/Facebook/FacebookUpdateAbility.php b/inc/Abilities/Facebook/FacebookUpdateAbility.php
@@ -14,10 +14,14 @@
 
 use DataMachine\Abilities\PermissionHelper;
 use DataMachineSocials\Handlers\Facebook\FacebookAuth;
+use DataMachineSocials\Abilities\Traits\HasCheckPermission;
+use DataMachineSocials\Abilities\Facebook\FacebookDeleteAbility;
 
 defined( 'ABSPATH' ) || exit;
 
 class FacebookUpdateAbility {
+	use HasCheckPermission;
+
 
 	private static bool $registered = false;
 
@@ -85,15 +89,6 @@ private function registerAbilities(): void {
 		}
 	}
 
-	/**
-	 * Permission callback.
-	 *
-	 * @return bool
-	 */
-	public function checkPermission(): bool {
-		return PermissionHelper::can_manage();
-	}
-
 	/**
 	 * Execute the update ability.
 	 *
@@ -141,26 +136,6 @@ public function execute( array $input ): array|\WP_Error {
 		}
 	}
 
-	/**
-	 * Get auth provider.
-	 *
-	 * @return FacebookAuth|null
-	 */
-	private function getAuthProvider(): ?FacebookAuth {
-		if ( ! class_exists( '\DataMachine\Abilities\AuthAbilities' ) ) {
-			return null;
-		}
-
-		$auth     = new \DataMachine\Abilities\AuthAbilities();
-		$provider = $auth->getProvider( 'facebook' );
-
-		if ( ! $provider instanceof FacebookAuth ) {
-			return null;
-		}
-
-		return $provider;
-	}
-
 	/**
 	 * Edit a post's message.
 	 *

diff --git a/inc/Abilities/Instagram/InstagramCommentReplyAbility.php b/inc/Abilities/Instagram/InstagramCommentReplyAbility.php
@@ -13,10 +13,14 @@
 
 use DataMachine\Abilities\PermissionHelper;
 use DataMachineSocials\Handlers\Instagram\InstagramAuth;
+use DataMachineSocials\Abilities\Traits\HasCheckPermission;
+use DataMachineSocials\Abilities\Instagram\InstagramDeleteAbility;
 
 defined( 'ABSPATH' ) || exit;
 
 class InstagramCommentReplyAbility {
+	use HasCheckPermission;
+
 
 	private static bool $registered = false;
 
@@ -82,10 +86,6 @@ private function registerAbilities(): void {
 		}
 	}
 
-	public function checkPermission(): bool {
-		return PermissionHelper::can_manage();
-	}
-
 	public function execute( array $input ): array|\WP_Error {
 		$auth = $this->getAuthProvider();
 		if ( ! $auth ) {
@@ -115,21 +115,6 @@ public function execute( array $input ): array|\WP_Error {
 		return $this->replyToComment( $access_token, $comment_id, $message );
 	}
 
-	private function getAuthProvider(): ?InstagramAuth {
-		if ( ! class_exists( '\DataMachine\Abilities\AuthAbilities' ) ) {
-			return null;
-		}
-
-		$auth     = new \DataMachine\Abilities\AuthAbilities();
-		$provider = $auth->getProvider( 'instagram' );
-
-		if ( ! $provider instanceof InstagramAuth ) {
-			return null;
-		}
-
-		return $provider;
-	}
-
 	private function replyToComment( string $access_token, string $comment_id, string $message ): array|\WP_Error {
 		$url = self::GRAPH_API_URL . '/' . rawurlencode( $comment_id ) . '/replies';