[platal.git] / modules / axletter.php

<?php
/***************************************************************************
 *  Copyright (C) 2003-2009 Polytechnique.org                              *
 *  http://opensource.polytechnique.org/                                   *
 *                                                                         *
 *  This program is free software; you can redistribute it and/or modify   *
 *  it under the terms of the GNU General Public License as published by   *
 *  the Free Software Foundation; either version 2 of the License, or      *
 *  (at your option) any later version.                                    *
 *                                                                         *
 *  This program is distributed in the hope that it will be useful,        *
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of         *
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          *
 *  GNU General Public License for more details.                           *
 *                                                                         *
 *  You should have received a copy of the GNU General Public License      *
 *  along with this program; if not, write to the Free Software            *
 *  Foundation, Inc.,                                                      *
 *  59 Temple Place, Suite 330, Boston, MA  02111-1307  USA                *
 ***************************************************************************/

class AXLetterModule extends PLModule
{
    function handlers()
    {
        return array(
            'ax'             => $this->make_hook('index',  AUTH_COOKIE),
            'ax/out'         => $this->make_hook('out',    AUTH_PUBLIC),
            'ax/show'        => $this->make_hook('show',   AUTH_COOKIE),
            'ax/edit'        => $this->make_hook('submit', AUTH_MDP),
            'ax/edit/cancel' => $this->make_hook('cancel', AUTH_MDP),
            'ax/edit/valid'  => $this->make_hook('valid',  AUTH_MDP),
            'admin/axletter' => $this->make_hook('admin',  AUTH_MDP, 'admin'),
        );
    }

    function handler_out(&$page, $hash = null)
    {
        if (!$hash) {
            if (!S::logged()) {
                return PL_DO_AUTH;
            } else {
                return $this->handler_index($page, 'out');
            }
        }
        $this->load('axletter.inc.php');
        $page->changeTpl('axletter/unsubscribe.tpl');
        $page->assign('success', AXLetter::unsubscribe($hash, true));
    }

    function handler_index(&$page, $action = null)
    {
        $this->load('axletter.inc.php');

        $page->changeTpl('axletter/index.tpl');
        $page->setTitle('Envois de l\'AX');

        switch ($action) {
          case 'in':  AXLetter::subscribe(); break;
          case 'out': AXLetter::unsubscribe(); break;
        }

        $perm = AXLetter::hasPerms();
        if ($perm) {
            $res = XDB::query("SELECT * FROM axletter_ins");
            $page->assign('count', $res->numRows());
            $page->assign('new', AXLetter::awaiting());
        }
        $page->assign('axs', AXLetter::subscriptionState());
        $page->assign('ax_list', AXLetter::listSent());
        $page->assign('ax_rights', $perm);
    }

    function handler_submit(&$page, $action = null)
    {
        $this->load('axletter.inc.php');
        if (!AXLetter::hasPerms()) {
            return PL_FORBIDDEN;
        }

        $page->changeTpl('axletter/edit.tpl');

        $saved      = Post::i('saved');
        $new        = false;
        $id         = Post::i('id');
        $short_name = trim(Post::v('short_name'));
        $subject    = trim(Post::v('subject'));
        $title      = trim(Post::v('title'));
        $body       = rtrim(Post::v('body'));
        $signature  = trim(Post::v('signature'));
        $promo_min  = Post::i('promo_min');
        $promo_max  = Post::i('promo_max');
        $subset_to  = preg_split("/[ ,;\:\n\r]+/", Post::v('subset_to'), -1, PREG_SPLIT_NO_EMPTY);
        $subset     = (count($subset_to) > 0);
        $subset_rm  = Post::b('subset_rm');
        $echeance   = Post::has('echeance_date') ?
              preg_replace('/^(\d\d\d\d)(\d\d)(\d\d)$/', '\1-\2-\3', Post::v('echeance_date')) . ' ' . Post::v('echeance_time')
            : Post::v('echeance');
        $echeance_date = Post::v('echeance_date');
        $echeance_time = Post::v('echeance_time');

        if (!$id) {
            $res = XDB::query("SELECT * FROM axletter WHERE FIND_IN_SET('new', bits)");
            if ($res->numRows()) {
                extract($res->fetchOneAssoc(), EXTR_OVERWRITE);
                $subset_to = ($subset ? explode("\n", $subset) : null);
                $subset = (count($subset_to) > 0);
                $saved = true;
            } else  {
                XDB::execute("INSERT INTO axletter SET id = NULL");
                $id  = XDB::insertId();
            }
            if (!$echeance || $echeance == '0000-00-00 00:00:00') {
                $saved = false;
                $new   = true;
            }
        } elseif (Post::has('valid')) {
            S::assert_xsrf_token();

            if (!$subject && $title) {
                $subject = $title;
            }
            if (!$title && $subject) {
                $title = $subject;
            }
            if (!$subject || !$title || !$body) {
                $page->trigError("L'article doit avoir un sujet et un contenu");
                Post::kill('valid');
            }
            if (($promo_min > $promo_max && $promo_max != 0)||
                ($promo_min != 0 && ($promo_min <= 1900 || $promo_min >= 2020)) ||
                ($promo_max != 0 && ($promo_max <= 1900 || $promo_max >= 2020)))
            {
                $page->trigError("L'intervalle de promotions n'est pas valide");
                Post::kill('valid');
            }
            if (empty($short_name)) {
                $page->trigError("L'annonce doit avoir un nom raccourci pour simplifier la navigation dans les archives");
                Post::kill('valid');
            } elseif (!preg_match('/^[a-z][-a-z0-9]*[a-z0-9]$/', $short_name)) {
                $page->trigError("Le nom raccourci n'est pas valide, il doit comporter au moins 2 caractères et n'être composé "
                          . "que de chiffres, lettres et tirets");
                Post::kill('valid');
            } elseif ($short_name != Post::v('old_short_name')) {
                $res = XDB::query("SELECT id FROM axletter WHERE short_name = {?}", $short_name);
                if ($res->numRows() && $res->fetchOneCell() != $id) {
                    $page->trigError("Le nom $short_name est déjà utilisé, merci d'en choisir un autre");
                    $short_name = Post::v('old_short_name');
                    if (empty($short_name)) {
                        Post::kill('valid');
                    }
                }
            }

            switch (@Post::v('valid')) {
              case 'Vérifier':
                // Same as 'preview', but performs a test of all provided emails
                if ($subset) {
                    require_once 'emails.inc.php';
                    $ids = ids_from_mails($subset_to);
                    $has_error = false;
                    foreach ($subset_to as $e) {
                        if (!array_key_exists($e, $ids)) {
                            if (!$has_error) {
                                $page->trigError("Emails inconnus :");
                                $has_error = true;
                            }
                            $page->trigError($e);
                        }
                    }
                }
                // XXX : no break here, since Vérifier is a subcase of Aperçu.
              case 'Aperçu':
                $this->load('axletter.inc.php');
                $al = new AXLetter(array($id, $short_name, $subject, $title, $body, $signature,
                                         $promo_min, $promo_max, $subset, $subset_rm, $echeance, 0, 'new'));
                $al->toHtml($page, S::v('prenom'), S::v('nom'), S::v('femme'));
                break;

              case 'Confirmer':
                XDB::execute("REPLACE INTO  axletter
                                       SET  id = {?}, short_name = {?}, subject = {?}, title = {?}, body = {?},
                                            signature = {?}, promo_min = {?}, promo_max = {?}, echeance = {?}, subset = {?}, subset_rm = {?}",
                             $id, $short_name, $subject, $title, $body, $signature, $promo_min, $promo_max, $echeance, $subset ? implode("\n", $subset_to) : null, $subset_rm);
                if (!$saved) {
                    global $globals;
                    $mailer = new PlMailer();
                    $mailer->setFrom("support@" . $globals->mail->domain);
                    $mailer->setSubject("Un nouveau projet d'email de l'AX vient d'être proposé");
                    $mailer->setTxtBody("Un nouvel email vient d'être rédigé en prévision d'un envoi prochain. Vous pouvez "
                                      . "le modifier jusqu'à ce qu'il soit verrouillé pour l'envoi\n\n"
                                      . "Le sujet de l'email : $subject\n"
                                      . "L'échéance d'envoi est fixée à $echeance.\n"
                                      . "L'email pourra néanmoins partir avant cette échéance si un administrateur de "
                                      . "Polytechnique.org le valide.\n\n"
                                      . "Pour modifier, valider ou annuler l'email :\n"
                                      . "https://www.polytechnique.org/ax/edit\n"
                                      . "-- \n"
                                      . "Association Polytechnique.org\n");
                    $res = XDB::iterRow("SELECT IF(u.nom_usage != '', u.nom_usage, u.nom) AS nom,
                                                u.prenom, a.alias AS bestalias
                                           FROM axletter_rights AS ar
                                     INNER JOIN auth_user_md5   AS u USING(user_id)
                                     INNER JOIN aliases         AS a ON (u.user_id = a.id
                                     AND FIND_IN_SET('bestalias', a.flags))");
                    while (list($nom, $prenom, $alias) = $res->next()) {
                        $mailer->addTo("$nom $prenom <$alias@{$globals->mail->domain}>");
                    }
                    $mailer->send();
                }
                $saved = true;
                $echeance_date = null;
                $echeance_time = null;
                pl_redirect('ax');
                break;
            }
        }
        $page->assign('id', $id);
        $page->assign('short_name', $short_name);
        $page->assign('subject', $subject);
        $page->assign('title', $title);
        $page->assign('body', $body);
        $page->assign('signature', $signature);
        $page->assign('promo_min', $promo_min);
        $page->assign('promo_max', $promo_max);
        $page->assign('subset_to', implode("\n", $subset_to));
        $page->assign('subset', $subset);
        $page->assign('subset_rm', $subset_rm);
        $page->assign('echeance', $echeance);
        $page->assign('echeance_date', $echeance_date);
        $page->assign('echeance_time', $echeance_time);
        $page->assign('saved', $saved);
        $page->assign('new', $new);
        $page->assign('is_xorg', S::admin());

        if (!$saved) {
            $select = '';
            for ($i = 0 ; $i < 24 ; $i++) {
                $stamp = sprintf('%02d:00:00', $i);
                if ($stamp == $echeance_time) {
                    $sel = ' selected="selected"';
                } else {
                    $sel = '';
                }
                $select .= "<option value=\"$stamp\"$sel>{$i}h</option>\n";
            }
            $page->assign('echeance_time', $select);
        }
    }

    function handler_cancel(&$page, $force = null)
    {
        $this->load('axletter.inc.php');
        if (!AXLetter::hasPerms() || !S::has_xsrf_token()) {
            return PL_FORBIDDEN;
        }

        $al = AXLetter::awaiting();
        if (!$al) {
            $page->kill("Aucune lettre en attente");
            return;
        }
        if (!$al->invalid()) {
            $page->kill("Une erreur est survenue lors de l'annulation de l'envoi");
            return;
        }

        $page->killSuccess("L'envoi de l'annonce {$al->title()} est annulé.");
    }

    function handler_valid(&$page, $force = null)
    {
        $this->load('axletter.inc.php');
        if (!AXLetter::hasPerms() || !S::has_xsrf_token()) {
            return PL_FORBIDDEN;
        }

        $al = AXLetter::awaiting();
        if (!$al) {
            $page->kill("Aucune lettre en attente");
            return;
        }
        if (!$al->valid()) {
            $page->kill("Une erreur est survenue lors de la validation de l'envoi");
            return;
        }

        $page->killSuccess("L'envoi de l'annonce aura lieu dans l'heure qui vient.");
    }

    function handler_show(&$page, $nid = 'last')
    {
        $this->load('axletter.inc.php');
        $page->changeTpl('axletter/show.tpl');

        try {
            $nl = new AXLetter($nid);
            if (Get::has('text')) {
                $nl->toText($page, S::v('prenom'), S::v('nom'), S::v('femme'));
            } else {
                $nl->toHtml($page, S::v('prenom'), S::v('nom'), S::v('femme'));
            }
            if (Post::has('send')) {
                $nl->sendTo(S::user()->login(), S::user()->bestEmail(),
                            S::v('prenom'), S::v('nom'),
                            S::v('femme'), S::v('mail_fmt') != 'texte');
            }
        } catch (MailNotFound $e) {
            return PL_NOT_FOUND;
        }
    }

    function handler_admin(&$page, $action = null, $uid = null)
    {
        $this->load('axletter.inc.php');
        if (Post::has('action')) {
            $action = Post::v('action');
            $uid    = Post::v('uid');
        }
        if ($uid) {
            S::assert_xsrf_token();

            $uids   = preg_split('/ *[,;\: ] */', $uid);
            foreach ($uids as $uid) {
                switch ($action) {
                  case 'add':
                    $res = AXLetter::grantPerms($uid);
                    break;
                  case 'del';
                    $res = AXLetter::revokePerms($uid);
                    break;
                }
                if (!$res) {
                    $page->trigError("Personne ne correspond à l'identifiant '$uid'");
                }
            }
        }

        $page->changeTpl('axletter/admin.tpl');
        $res = XDB::iterator("SELECT IF(u.nom_usage != '', u.nom_usage, u.nom) AS nom,
                                     u.prenom, u.promo, u.hruid
                                FROM axletter_rights AS ar
                          INNER JOIN auth_user_md5   AS u USING(user_id)");
        $page->assign('admins', $res);

        $importer = new CSVImporter('axletter_ins');
        $importer->registerFunction('user_id', 'email vers Id X.org', array($this, 'idFromMail'));
        $importer->forceValue('hash', array($this, 'createHash'));
        $importer->apply($page, "admin/axletter", array('user_id', 'email', 'prenom', 'nom', 'promo', 'flag', 'hash'));
    }

    function idFromMail($line, $key, $relation = null)
    {
        static $field;
        global $globals;
        if (!isset($field)) {
            $field = array('email', 'mail', 'login', 'bestalias', 'forlife', 'flag');
            foreach ($field as $fld) {
                if (isset($line[$fld])) {
                    $field = $fld;
                    break;
                }
            }
        }
        $email = $line[$field];
        if (strpos($email, '@') === false) {
            $user  = $email;
            $domain = $globals->mail->domain2;
        } else {
            list($user, $domain) = explode('@', $email);
        }
        if ($domain != $globals->mail->domain && $domain != $globals->mail->domain2
                && $domain != $globals->mail->alias_dom && $domain != $globals->mail->alias_dom2) {
            $res = XDB::query("SELECT uid FROM emails WHERE email = {?}", $email);
            if ($res->numRows() == 1) {
                return $res->fetchOneCell();
            }
            return '0';
        }
        list($user) = explode('+', $user);
        list($user) = explode('_', $user);
        if ($domain == $globals->mail->alias_dom || $domain == $globals->mail->alias_dom2) {
            $res = XDB::query("SELECT a.id
                                 FROM virtual          AS v
                           INNER JOIN virtual_redirect AS r USING(vid)
                           INNER JOIN aliases          AS a ON (a.type = 'a_vie'
                                                            AND r.redirect = CONCAT(a.alias, '@{$globals->mail->domain2}'))
                                WHERE v.alias = CONCAT({?}, '@{$globals->mail->alias_dom}')", $user);
            $id = $res->fetchOneCell();
            return $id ? $id : '0';
        }
        $res = XDB::query("SELECT id FROM aliases WHERE alias = {?}", $user);
        $id = $res->fetchOneCell();
        return $id ? $id : '0';
    }

    function createHash($line, $key, $relation)
    {
        $hash = implode(time(), $line) . rand();
        $hash = md5($hash);
        return $hash;
    }
}

// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
?>
Commit	Line	Data
8da0d3c1	1	<?php
8da0d3c1	2	/***************************************************************************
8d84c630	3	* Copyright (C) 2003-2009 Polytechnique.org *
8da0d3c1	4	* http://opensource.polytechnique.org/ *
	5	* *
	6	* This program is free software; you can redistribute it and/or modify *
	7	* it under the terms of the GNU General Public License as published by *
	8	* the Free Software Foundation; either version 2 of the License, or *
	9	* (at your option) any later version. *
	10	* *
	11	* This program is distributed in the hope that it will be useful, *
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of *
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
	14	* GNU General Public License for more details. *
	15	* *
	16	* You should have received a copy of the GNU General Public License *
	17	* along with this program; if not, write to the Free Software *
	18	* Foundation, Inc., *
	19	* 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
	20	***************************************************************************/
	21
	22	class AXLetterModule extends PLModule
	23	{
	24	function handlers()
	25	{
	26	return array(
eb5a266d	27	'ax' => $this->make_hook('index', AUTH_COOKIE),
a0f05027	28	'ax/out' => $this->make_hook('out', AUTH_PUBLIC),
8da0d3c1	29	'ax/show' => $this->make_hook('show', AUTH_COOKIE),
	30	'ax/edit' => $this->make_hook('submit', AUTH_MDP),
	31	'ax/edit/cancel' => $this->make_hook('cancel', AUTH_MDP),
	32	'ax/edit/valid' => $this->make_hook('valid', AUTH_MDP),
eb5a266d	33	'admin/axletter' => $this->make_hook('admin', AUTH_MDP, 'admin'),
8da0d3c1	34	);
	35	}
	36
030038cd	37	function handler_out(&$page, $hash = null)
a0f05027	38	{
	39	if (!$hash) {
	40	if (!S::logged()) {
	41	return PL_DO_AUTH;
	42	} else {
	43	return $this->handler_index($page, 'out');
	44	}
	45	}
460d8f55	46	$this->load('axletter.inc.php');
a0f05027	47	$page->changeTpl('axletter/unsubscribe.tpl');
	48	$page->assign('success', AXLetter::unsubscribe($hash, true));
	49	}
	50
	51	function handler_index(&$page, $action = null)
8da0d3c1	52	{
460d8f55	53	$this->load('axletter.inc.php');
8da0d3c1	54
8da0d3c1	55	$page->changeTpl('axletter/index.tpl');
46f272fe	56	$page->setTitle('Envois de l\'AX');
8da0d3c1	57
8da0d3c1	58	switch ($action) {
8da0d3c1	59	case 'in': AXLetter::subscribe(); break;
a0f05027	60	case 'out': AXLetter::unsubscribe(); break;
8da0d3c1	61	}
	62
	63	$perm = AXLetter::hasPerms();
	64	if ($perm) {
9b242f17	65	$res = XDB::query("SELECT * FROM axletter_ins");
9b242f17	66	$page->assign('count', $res->numRows());
a0f05027	67	$page->assign('new', AXLetter::awaiting());
8da0d3c1	68	}
	69	$page->assign('axs', AXLetter::subscriptionState());
	70	$page->assign('ax_list', AXLetter::listSent());
	71	$page->assign('ax_rights', $perm);
	72	}
	73
	74	function handler_submit(&$page, $action = null)
	75	{
460d8f55	76	$this->load('axletter.inc.php');
8da0d3c1	77	if (!AXLetter::hasPerms()) {
	78	return PL_FORBIDDEN;
	79	}
	80
	81	$page->changeTpl('axletter/edit.tpl');
	82
4ea58d4b VZ	83	$saved = Post::i('saved');
	84	$new = false;
	85	$id = Post::i('id');
	86	$short_name = trim(Post::v('short_name'));
	87	$subject = trim(Post::v('subject'));
	88	$title = trim(Post::v('title'));
	89	$body = rtrim(Post::v('body'));
	90	$signature = trim(Post::v('signature'));
	91	$promo_min = Post::i('promo_min');
	92	$promo_max = Post::i('promo_max');
4a08dc73	93	$subset_to = preg_split("/[ ,;\:\n\r]+/", Post::v('subset_to'), -1, PREG_SPLIT_NO_EMPTY);
180627f3	94	$subset = (count($subset_to) > 0);
1f58ab8e	95	$subset_rm = Post::b('subset_rm');
4ea58d4b VZ	96	$echeance = Post::has('echeance_date') ?
	97	preg_replace('/^(\d\d\d\d)(\d\d)(\d\d)$/', '\1-\2-\3', Post::v('echeance_date')) . ' ' . Post::v('echeance_time')
	98	: Post::v('echeance');
8da0d3c1	99	$echeance_date = Post::v('echeance_date');
	100	$echeance_time = Post::v('echeance_time');
	101
	102	if (!$id) {
	103	$res = XDB::query("SELECT * FROM axletter WHERE FIND_IN_SET('new', bits)");
	104	if ($res->numRows()) {
	105	extract($res->fetchOneAssoc(), EXTR_OVERWRITE);
c1134ef2	106	$subset_to = ($subset ? explode("\n", $subset) : null);
180627f3	107	$subset = (count($subset_to) > 0);
8da0d3c1	108	$saved = true;
	109	} else {
	110	XDB::execute("INSERT INTO axletter SET id = NULL");
	111	$id = XDB::insertId();
	112	}
	113	if (!$echeance \|\| $echeance == '0000-00-00 00:00:00') {
	114	$saved = false;
	115	$new = true;
	116	}
40d428d8 VZ	117	} elseif (Post::has('valid')) {
	118	S::assert_xsrf_token();
	119
8da0d3c1	120	if (!$subject && $title) {
	121	$subject = $title;
	122	}
	123	if (!$title && $subject) {
	124	$title = $subject;
	125	}
	126	if (!$subject \|\| !$title \|\| !$body) {
a7d35093	127	$page->trigError("L'article doit avoir un sujet et un contenu");
8da0d3c1	128	Post::kill('valid');
	129	}
	130	if (($promo_min > $promo_max && $promo_max != 0)\|\|
	131	($promo_min != 0 && ($promo_min <= 1900 \|\| $promo_min >= 2020)) \|\|
	132	($promo_max != 0 && ($promo_max <= 1900 \|\| $promo_max >= 2020)))
	133	{
a7d35093	134	$page->trigError("L'intervalle de promotions n'est pas valide");
8da0d3c1	135	Post::kill('valid');
8da0d3c1	136	}
4ea58d4b	137	if (empty($short_name)) {
a7d35093	138	$page->trigError("L'annonce doit avoir un nom raccourci pour simplifier la navigation dans les archives");
8da0d3c1	139	Post::kill('valid');
4ea58d4b	140	} elseif (!preg_match('/^[a-z][-a-z0-9]*[a-z0-9]$/', $short_name)) {
a7d35093	141	$page->trigError("Le nom raccourci n'est pas valide, il doit comporter au moins 2 caractères et n'être composé "
8da0d3c1	142	. "que de chiffres, lettres et tirets");
8da0d3c1	143	Post::kill('valid');
4ea58d4b VZ	144	} elseif ($short_name != Post::v('old_short_name')) {
4ea58d4b VZ	145	$res = XDB::query("SELECT id FROM axletter WHERE short_name = {?}", $short_name);
8da0d3c1	146	if ($res->numRows() && $res->fetchOneCell() != $id) {
a7d35093	147	$page->trigError("Le nom $short_name est déjà utilisé, merci d'en choisir un autre");
4ea58d4b VZ	148	$short_name = Post::v('old_short_name');
4ea58d4b VZ	149	if (empty($short_name)) {
8da0d3c1	150	Post::kill('valid');
	151	}
	152	}
	153	}
	154
	155	switch (@Post::v('valid')) {
813c44f7 RB	156	case 'Vérifier':
	157	// Same as 'preview', but performs a test of all provided emails
	158	if ($subset) {
	159	require_once 'emails.inc.php';
	160	$ids = ids_from_mails($subset_to);
	161	$has_error = false;
	162	foreach ($subset_to as $e) {
	163	if (!array_key_exists($e, $ids)) {
	164	if (!$has_error) {
	165	$page->trigError("Emails inconnus :");
	166	$has_error = true;
	167	}
	168	$page->trigError($e);
	169	}
	170	}
	171	}
	172	// XXX : no break here, since Vérifier is a subcase of Aperçu.
a7de4ef7	173	case 'Aperçu':
460d8f55	174	$this->load('axletter.inc.php');
4ea58d4b	175	$al = new AXLetter(array($id, $short_name, $subject, $title, $body, $signature,
1f58ab8e	176	$promo_min, $promo_max, $subset, $subset_rm, $echeance, 0, 'new'));
8da0d3c1	177	$al->toHtml($page, S::v('prenom'), S::v('nom'), S::v('femme'));
	178	break;
	179
	180	case 'Confirmer':
	181	XDB::execute("REPLACE INTO axletter
c6f2cafe	182	SET id = {?}, short_name = {?}, subject = {?}, title = {?}, body = {?},
1f58ab8e RB	183	signature = {?}, promo_min = {?}, promo_max = {?}, echeance = {?}, subset = {?}, subset_rm = {?}",
1f58ab8e RB	184	$id, $short_name, $subject, $title, $body, $signature, $promo_min, $promo_max, $echeance, $subset ? implode("\n", $subset_to) : null, $subset_rm);
9b242f17	185	if (!$saved) {
115c90db	186	global $globals;
9b242f17	187	$mailer = new PlMailer();
1d55fe45	188	$mailer->setFrom("support@" . $globals->mail->domain);
faefdbb7 SJ	189	$mailer->setSubject("Un nouveau projet d'email de l'AX vient d'être proposé");
faefdbb7 SJ	190	$mailer->setTxtBody("Un nouvel email vient d'être rédigé en prévision d'un envoi prochain. Vous pouvez "
9b242f17	191	. "le modifier jusqu'à ce qu'il soit verrouillé pour l'envoi\n\n"
faefdbb7	192	. "Le sujet de l'email : $subject\n"
9b242f17	193	. "L'échéance d'envoi est fixée à $echeance.\n"
faefdbb7	194	. "L'email pourra néanmoins partir avant cette échéance si un administrateur de "
9b242f17	195	. "Polytechnique.org le valide.\n\n"
faefdbb7	196	. "Pour modifier, valider ou annuler l'email :\n"
9b242f17	197	. "https://www.polytechnique.org/ax/edit\n"
	198	. "-- \n"
	199	. "Association Polytechnique.org\n");
	200	$res = XDB::iterRow("SELECT IF(u.nom_usage != '', u.nom_usage, u.nom) AS nom,
	201	u.prenom, a.alias AS bestalias
	202	FROM axletter_rights AS ar
	203	INNER JOIN auth_user_md5 AS u USING(user_id)
	204	INNER JOIN aliases AS a ON (u.user_id = a.id
	205	AND FIND_IN_SET('bestalias', a.flags))");
9b242f17	206	while (list($nom, $prenom, $alias) = $res->next()) {
	207	$mailer->addTo("$nom $prenom <$alias@{$globals->mail->domain}>");
	208	}
	209	$mailer->send();
	210	}
8da0d3c1	211	$saved = true;
	212	$echeance_date = null;
	213	$echeance_time = null;
	214	pl_redirect('ax');
	215	break;
	216	}
	217	}
	218	$page->assign('id', $id);
4ea58d4b	219	$page->assign('short_name', $short_name);
8da0d3c1	220	$page->assign('subject', $subject);
	221	$page->assign('title', $title);
	222	$page->assign('body', $body);
	223	$page->assign('signature', $signature);
	224	$page->assign('promo_min', $promo_min);
	225	$page->assign('promo_max', $promo_max);
2a3f4f57 RB	226	$page->assign('subset_to', implode("\n", $subset_to));
2a3f4f57 RB	227	$page->assign('subset', $subset);
1f58ab8e	228	$page->assign('subset_rm', $subset_rm);
8da0d3c1	229	$page->assign('echeance', $echeance);
	230	$page->assign('echeance_date', $echeance_date);
	231	$page->assign('echeance_time', $echeance_time);
	232	$page->assign('saved', $saved);
	233	$page->assign('new', $new);
dd70cd28	234	$page->assign('is_xorg', S::admin());
8da0d3c1	235
	236	if (!$saved) {
	237	$select = '';
8da0d3c1	238	for ($i = 0 ; $i < 24 ; $i++) {
	239	$stamp = sprintf('%02d:00:00', $i);
	240	if ($stamp == $echeance_time) {
	241	$sel = ' selected="selected"';
	242	} else {
	243	$sel = '';
	244	}
	245	$select .= "<option value=\"$stamp\"$sel>{$i}h</option>\n";
	246	}
	247	$page->assign('echeance_time', $select);
eaf30d86	248	}
8da0d3c1	249	}
	250
	251	function handler_cancel(&$page, $force = null)
	252	{
460d8f55	253	$this->load('axletter.inc.php');
fde3e90e	254	if (!AXLetter::hasPerms() \|\| !S::has_xsrf_token()) {
8da0d3c1	255	return PL_FORBIDDEN;
	256	}
	257
a0f05027	258	$al = AXLetter::awaiting();
fde3e90e	259	if (!$al) {
8da0d3c1	260	$page->kill("Aucune lettre en attente");
	261	return;
	262	}
8da0d3c1	263	if (!$al->invalid()) {
	264	$page->kill("Une erreur est survenue lors de l'annulation de l'envoi");
	265	return;
	266	}
	267
8f794f88	268	$page->killSuccess("L'envoi de l'annonce {$al->title()} est annulé.");
8da0d3c1	269	}
	270
	271	function handler_valid(&$page, $force = null)
	272	{
460d8f55	273	$this->load('axletter.inc.php');
fde3e90e	274	if (!AXLetter::hasPerms() \|\| !S::has_xsrf_token()) {
8da0d3c1	275	return PL_FORBIDDEN;
	276	}
	277
a0f05027	278	$al = AXLetter::awaiting();
a0f05027	279	if (!$al) {
8da0d3c1	280	$page->kill("Aucune lettre en attente");
	281	return;
	282	}
8da0d3c1	283	if (!$al->valid()) {
	284	$page->kill("Une erreur est survenue lors de la validation de l'envoi");
	285	return;
	286	}
	287
8f794f88	288	$page->killSuccess("L'envoi de l'annonce aura lieu dans l'heure qui vient.");
8da0d3c1	289	}
	290
	291	function handler_show(&$page, $nid = 'last')
	292	{
460d8f55	293	$this->load('axletter.inc.php');
8da0d3c1	294	$page->changeTpl('axletter/show.tpl');
8da0d3c1	295
4a71cf67 SJ	296	try {
	297	$nl = new AXLetter($nid);
	298	if (Get::has('text')) {
	299	$nl->toText($page, S::v('prenom'), S::v('nom'), S::v('femme'));
	300	} else {
	301	$nl->toHtml($page, S::v('prenom'), S::v('nom'), S::v('femme'));
	302	}
	303	if (Post::has('send')) {
	304	$nl->sendTo(S::user()->login(), S::user()->bestEmail(),
	305	S::v('prenom'), S::v('nom'),
	306	S::v('femme'), S::v('mail_fmt') != 'texte');
	307	}
	308	} catch (MailNotFound $e) {
	309	return PL_NOT_FOUND;
8da0d3c1	310	}
8da0d3c1	311	}
0d75939a	312
	313	function handler_admin(&$page, $action = null, $uid = null)
	314	{
460d8f55	315	$this->load('axletter.inc.php');
0d75939a	316	if (Post::has('action')) {
	317	$action = Post::v('action');
	318	$uid = Post::v('uid');
	319	}
40d428d8 VZ	320	if ($uid) {
	321	S::assert_xsrf_token();
	322
0d75939a	323	$uids = preg_split('/ [,;\: ] /', $uid);
	324	foreach ($uids as $uid) {
	325	switch ($action) {
	326	case 'add':
	327	$res = AXLetter::grantPerms($uid);
	328	break;
	329	case 'del';
	330	$res = AXLetter::revokePerms($uid);
	331	break;
	332	}
	333	if (!$res) {
a7d35093	334	$page->trigError("Personne ne correspond à l'identifiant '$uid'");
0d75939a	335	}
	336	}
	337	}
	338
	339	$page->changeTpl('axletter/admin.tpl');
	340	$res = XDB::iterator("SELECT IF(u.nom_usage != '', u.nom_usage, u.nom) AS nom,
90c614cd	341	u.prenom, u.promo, u.hruid
0d75939a	342	FROM axletter_rights AS ar
90c614cd	343	INNER JOIN auth_user_md5 AS u USING(user_id)");
0d75939a	344	$page->assign('admins', $res);
eaf30d86	345
0d75939a	346	$importer = new CSVImporter('axletter_ins');
	347	$importer->registerFunction('user_id', 'email vers Id X.org', array($this, 'idFromMail'));
	348	$importer->forceValue('hash', array($this, 'createHash'));
2f95cd8f	349	$importer->apply($page, "admin/axletter", array('user_id', 'email', 'prenom', 'nom', 'promo', 'flag', 'hash'));
0d75939a	350	}
0d75939a	351
f6eacab0	352	function idFromMail($line, $key, $relation = null)
0d75939a	353	{
0d75939a	354	static $field;
cbce77b7	355	global $globals;
0d75939a	356	if (!isset($field)) {
	357	$field = array('email', 'mail', 'login', 'bestalias', 'forlife', 'flag');
	358	foreach ($field as $fld) {
	359	if (isset($line[$fld])) {
	360	$field = $fld;
	361	break;
	362	}
	363	}
	364	}
	365	$email = $line[$field];
	366	if (strpos($email, '@') === false) {
	367	$user = $email;
cbce77b7	368	$domain = $globals->mail->domain2;
0d75939a	369	} else {
eaf30d86	370	list($user, $domain) = explode('@', $email);
cbce77b7	371	}
cbce77b7	372	if ($domain != $globals->mail->domain && $domain != $globals->mail->domain2
0d75939a	373	&& $domain != $globals->mail->alias_dom && $domain != $globals->mail->alias_dom2) {
cbce77b7	374	$res = XDB::query("SELECT uid FROM emails WHERE email = {?}", $email);
	375	if ($res->numRows() == 1) {
	376	return $res->fetchOneCell();
0d75939a	377	}
cbce77b7	378	return '0';
	379	}
	380	list($user) = explode('+', $user);
	381	list($user) = explode('_', $user);
	382	if ($domain == $globals->mail->alias_dom \|\| $domain == $globals->mail->alias_dom2) {
	383	$res = XDB::query("SELECT a.id
	384	FROM virtual AS v
	385	INNER JOIN virtual_redirect AS r USING(vid)
	386	INNER JOIN aliases AS a ON (a.type = 'a_vie'
	387	AND r.redirect = CONCAT(a.alias, '@{$globals->mail->domain2}'))
	388	WHERE v.alias = CONCAT({?}, '@{$globals->mail->alias_dom}')", $user);
	389	$id = $res->fetchOneCell();
	390	return $id ? $id : '0';
0d75939a	391	}
	392	$res = XDB::query("SELECT id FROM aliases WHERE alias = {?}", $user);
	393	$id = $res->fetchOneCell();
	394	return $id ? $id : '0';
	395	}
	396
f6eacab0	397	function createHash($line, $key, $relation)
0d75939a	398	{
5480a216	399	$hash = implode(time(), $line) . rand();
0d75939a	400	$hash = md5($hash);
	401	return $hash;
	402	}
8da0d3c1	403	}
8da0d3c1	404
a7de4ef7	405	// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
8da0d3c1	406	?>