[platal.git] / modules / axletter.php

<?php
/***************************************************************************
 *  Copyright (C) 2003-2010 Polytechnique.org                              *
 *  http://opensource.polytechnique.org/                                   *
 *                                                                         *
 *  This program is free software; you can redistribute it and/or modify   *
 *  it under the terms of the GNU General Public License as published by   *
 *  the Free Software Foundation; either version 2 of the License, or      *
 *  (at your option) any later version.                                    *
 *                                                                         *
 *  This program is distributed in the hope that it will be useful,        *
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of         *
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          *
 *  GNU General Public License for more details.                           *
 *                                                                         *
 *  You should have received a copy of the GNU General Public License      *
 *  along with this program; if not, write to the Free Software            *
 *  Foundation, Inc.,                                                      *
 *  59 Temple Place, Suite 330, Boston, MA  02111-1307  USA                *
 ***************************************************************************/

class AXLetterModule extends PLModule
{
    function handlers()
    {
        return array(
            'ax'             => $this->make_hook('index',  AUTH_COOKIE),
            'ax/out'         => $this->make_hook('out',    AUTH_PUBLIC),
            'ax/show'        => $this->make_hook('show',   AUTH_COOKIE),
            'ax/edit'        => $this->make_hook('submit', AUTH_MDP),
            'ax/edit/cancel' => $this->make_hook('cancel', AUTH_MDP),
            'ax/edit/valid'  => $this->make_hook('valid',  AUTH_MDP),
            'admin/axletter' => $this->make_hook('admin',  AUTH_MDP, 'admin'),
        );
    }

    function handler_out(&$page, $hash = null)
    {
        if (!$hash) {
            if (!S::logged()) {
                return PL_DO_AUTH;
            } else {
                return $this->handler_index($page, 'out');
            }
        }
        $this->load('axletter.inc.php');
        $page->changeTpl('axletter/unsubscribe.tpl');
        $page->assign('success', AXLetter::unsubscribe($hash, true));
    }

    function handler_index(&$page, $action = null)
    {
        $this->load('axletter.inc.php');

        $page->changeTpl('axletter/index.tpl');
        $page->setTitle('Envois de l\'AX');

        switch ($action) {
          case 'in':  AXLetter::subscribe(); break;
          case 'out': AXLetter::unsubscribe(); break;
        }

        $perm = AXLetter::hasPerms();
        if ($perm) {
            $res = XDB::query("SELECT * FROM axletter_ins");
            $page->assign('count', $res->numRows());
            $page->assign('new', AXLetter::awaiting());
        }
        $page->assign('axs', AXLetter::subscriptionState());
        $page->assign('ax_list', AXLetter::listSent());
        $page->assign('ax_rights', $perm);
    }

    function handler_submit(&$page, $action = null)
    {
        $this->load('axletter.inc.php');
        if (!AXLetter::hasPerms()) {
            return PL_FORBIDDEN;
        }

        $page->changeTpl('axletter/edit.tpl');

        $saved      = Post::i('saved');
        $new        = false;
        $id         = Post::i('id');
        $short_name = trim(Post::v('short_name'));
        $subject    = trim(Post::v('subject'));
        $title      = trim(Post::v('title'));
        $body       = rtrim(Post::v('body'));
        $signature  = trim(Post::v('signature'));
        $promo_min  = Post::i('promo_min');
        $promo_max  = Post::i('promo_max');
        $subset_to  = preg_split("/[ ,;\:\n\r]+/", Post::v('subset_to'), -1, PREG_SPLIT_NO_EMPTY);
        $subset     = (count($subset_to) > 0);
        $subset_rm  = Post::b('subset_rm');
        $echeance   = Post::has('echeance_date') ?
              preg_replace('/^(\d\d\d\d)(\d\d)(\d\d)$/', '\1-\2-\3', Post::v('echeance_date')) . ' ' . Post::v('echeance_time')
            : Post::v('echeance');
        $echeance_date = Post::v('echeance_date');
        $echeance_time = Post::v('echeance_time');

        if (!$id) {
            $res = XDB::query("SELECT * FROM axletter WHERE FIND_IN_SET('new', bits)");
            if ($res->numRows()) {
                extract($res->fetchOneAssoc(), EXTR_OVERWRITE);
                $subset_to = ($subset ? explode("\n", $subset) : null);
                $subset = (count($subset_to) > 0);
                $saved = true;
            } else  {
                XDB::execute("INSERT INTO axletter SET id = NULL");
                $id  = XDB::insertId();
            }
            if (!$echeance || $echeance == '0000-00-00 00:00:00') {
                $saved = false;
                $new   = true;
            }
        } elseif (Post::has('valid')) {
            S::assert_xsrf_token();

            if (!$subject && $title) {
                $subject = $title;
            }
            if (!$title && $subject) {
                $title = $subject;
            }
            if (!$subject || !$title || !$body) {
                $page->trigError("L'article doit avoir un sujet et un contenu");
                Post::kill('valid');
            }
            if (($promo_min > $promo_max && $promo_max != 0)||
                ($promo_min != 0 && ($promo_min <= 1900 || $promo_min >= 2020)) ||
                ($promo_max != 0 && ($promo_max <= 1900 || $promo_max >= 2020)))
            {
                $page->trigError("L'intervalle de promotions n'est pas valide");
                Post::kill('valid');
            }
            if (empty($short_name)) {
                $page->trigError("L'annonce doit avoir un nom raccourci pour simplifier la navigation dans les archives");
                Post::kill('valid');
            } elseif (!preg_match('/^[a-z][-a-z0-9]*[a-z0-9]$/', $short_name)) {
                $page->trigError("Le nom raccourci n'est pas valide, il doit comporter au moins 2 caractères et n'être composé "
                          . "que de chiffres, lettres et tirets");
                Post::kill('valid');
            } elseif ($short_name != Post::v('old_short_name')) {
                $res = XDB::query("SELECT id FROM axletter WHERE short_name = {?}", $short_name);
                if ($res->numRows() && $res->fetchOneCell() != $id) {
                    $page->trigError("Le nom $short_name est déjà utilisé, merci d'en choisir un autre");
                    $short_name = Post::v('old_short_name');
                    if (empty($short_name)) {
                        Post::kill('valid');
                    }
                }
            }

            switch (@Post::v('valid')) {
              case 'Aperçu':
                $this->load('axletter.inc.php');
                $al = new AXLetter(array($id, $short_name, $subject, $title, $body, $signature,
                                         $promo_min, $promo_max, $subset, $subset_rm, $echeance, 0, 'new'));
                $al->toHtml($page, S::v('prenom'), S::v('nom'), S::v('femme'));
                break;

              case 'Confirmer':
                XDB::execute("REPLACE INTO  axletter
                                       SET  id = {?}, short_name = {?}, subject = {?}, title = {?}, body = {?},
                                            signature = {?}, promo_min = {?}, promo_max = {?}, echeance = {?}, subset = {?}, subset_rm = {?}",
                             $id, $short_name, $subject, $title, $body, $signature, $promo_min, $promo_max, $echeance, $subset ? implode("\n", $subset_to) : null, $subset_rm);
                if (!$saved) {
                    global $globals;
                    $mailer = new PlMailer();
                    $mailer->setFrom("support@" . $globals->mail->domain);
                    $mailer->setSubject("Un nouveau projet d'email de l'AX vient d'être proposé");
                    $mailer->setTxtBody("Un nouvel email vient d'être rédigé en prévision d'un envoi prochain. Vous pouvez "
                                      . "le modifier jusqu'à ce qu'il soit verrouillé pour l'envoi\n\n"
                                      . "Le sujet de l'email : $subject\n"
                                      . "L'échéance d'envoi est fixée à $echeance.\n"
                                      . "L'email pourra néanmoins partir avant cette échéance si un administrateur de "
                                      . "Polytechnique.org le valide.\n\n"
                                      . "Pour modifier, valider ou annuler l'email :\n"
                                      . "https://www.polytechnique.org/ax/edit\n"
                                      . "-- \n"
                                      . "Association Polytechnique.org\n");
                    $res = XDB::iterRow("SELECT IF(u.nom_usage != '', u.nom_usage, u.nom) AS nom,
                                                u.prenom, a.alias AS bestalias
                                           FROM axletter_rights AS ar
                                     INNER JOIN auth_user_md5   AS u USING(user_id)
                                     INNER JOIN aliases         AS a ON (u.user_id = a.id
                                     AND FIND_IN_SET('bestalias', a.flags))");
                    while (list($nom, $prenom, $alias) = $res->next()) {
                        $mailer->addTo("$nom $prenom <$alias@{$globals->mail->domain}>");
                    }
                    $mailer->send();
                }
                $saved = true;
                $echeance_date = null;
                $echeance_time = null;
                pl_redirect('ax');
                break;
            }
        }
        $page->assign('id', $id);
        $page->assign('short_name', $short_name);
        $page->assign('subject', $subject);
        $page->assign('title', $title);
        $page->assign('body', $body);
        $page->assign('signature', $signature);
        $page->assign('promo_min', $promo_min);
        $page->assign('promo_max', $promo_max);
        $page->assign('subset_to', implode("\n", $subset_to));
        $page->assign('subset', $subset);
        $page->assign('subset_rm', $subset_rm);
        $page->assign('echeance', $echeance);
        $page->assign('echeance_date', $echeance_date);
        $page->assign('echeance_time', $echeance_time);
        $page->assign('saved', $saved);
        $page->assign('new', $new);
        $page->assign('is_xorg', S::admin());

        if (!$saved) {
            $select = '';
            for ($i = 0 ; $i < 24 ; $i++) {
                $stamp = sprintf('%02d:00:00', $i);
                if ($stamp == $echeance_time) {
                    $sel = ' selected="selected"';
                } else {
                    $sel = '';
                }
                $select .= "<option value=\"$stamp\"$sel>{$i}h</option>\n";
            }
            $page->assign('echeance_time', $select);
        }
    }

    function handler_cancel(&$page, $force = null)
    {
        $this->load('axletter.inc.php');
        if (!AXLetter::hasPerms() || !S::has_xsrf_token()) {
            return PL_FORBIDDEN;
        }

        $al = AXLetter::awaiting();
        if (!$al) {
            $page->kill("Aucune lettre en attente");
            return;
        }
        if (!$al->invalid()) {
            $page->kill("Une erreur est survenue lors de l'annulation de l'envoi");
            return;
        }

        $page->killSuccess("L'envoi de l'annonce {$al->title()} est annulé.");
    }

    function handler_valid(&$page, $force = null)
    {
        $this->load('axletter.inc.php');
        if (!AXLetter::hasPerms() || !S::has_xsrf_token()) {
            return PL_FORBIDDEN;
        }

        $al = AXLetter::awaiting();
        if (!$al) {
            $page->kill("Aucune lettre en attente");
            return;
        }
        if (!$al->valid()) {
            $page->kill("Une erreur est survenue lors de la validation de l'envoi");
            return;
        }

        $page->killSuccess("L'envoi de l'annonce aura lieu dans l'heure qui vient.");
    }

    function handler_show(&$page, $nid = 'last')
    {
        $this->load('axletter.inc.php');
        $page->changeTpl('axletter/show.tpl');

        try {
            $nl = new AXLetter($nid);
            if (Get::has('text')) {
                $nl->toText($page, S::v('prenom'), S::v('nom'), S::v('femme'));
            } else {
                $nl->toHtml($page, S::v('prenom'), S::v('nom'), S::v('femme'));
            }
            if (Post::has('send')) {
                $nl->sendTo(S::user()->login(), S::user()->bestEmail(),
                            S::v('prenom'), S::v('nom'),
                            S::v('femme'), S::v('mail_fmt') != 'texte');
            }
        } catch (MailNotFound $e) {
            return PL_NOT_FOUND;
        }
    }

    function handler_admin(&$page, $action = null, $uid = null)
    {
        $this->load('axletter.inc.php');
        if (Post::has('action')) {
            $action = Post::v('action');
            $uid    = Post::v('uid');
        }
        if ($uid) {
            S::assert_xsrf_token();

            $uids   = preg_split('/ *[,;\: ] */', $uid);
            foreach ($uids as $uid) {
                switch ($action) {
                  case 'add':
                    $res = AXLetter::grantPerms($uid);
                    break;
                  case 'del';
                    $res = AXLetter::revokePerms($uid);
                    break;
                }
                if (!$res) {
                    $page->trigError("Personne ne correspond à l'identifiant '$uid'");
                }
            }
        }

        $page->changeTpl('axletter/admin.tpl');
        $res = XDB::iterator("SELECT IF(u.nom_usage != '', u.nom_usage, u.nom) AS nom,
                                     u.prenom, u.promo, u.hruid
                                FROM axletter_rights AS ar
                          INNER JOIN auth_user_md5   AS u USING(user_id)");
        $page->assign('admins', $res);

        $importer = new CSVImporter('axletter_ins');
        $importer->registerFunction('user_id', 'email vers Id X.org', array($this, 'idFromMail'));
        $importer->forceValue('hash', array($this, 'createHash'));
        $importer->apply($page, "admin/axletter", array('user_id', 'email', 'prenom', 'nom', 'promo', 'flag', 'hash'));
    }

    function idFromMail($line, $key, $relation = null)
    {
        static $field;
        global $globals;
        if (!isset($field)) {
            $field = array('email', 'mail', 'login', 'bestalias', 'forlife', 'flag');
            foreach ($field as $fld) {
                if (isset($line[$fld])) {
                    $field = $fld;
                    break;
                }
            }
        }
        $email = $line[$field];
        if (strpos($email, '@') === false) {
            $user  = $email;
            $domain = $globals->mail->domain2;
        } else {
            list($user, $domain) = explode('@', $email);
        }
        if ($domain != $globals->mail->domain && $domain != $globals->mail->domain2
                && $domain != $globals->mail->alias_dom && $domain != $globals->mail->alias_dom2) {
            $res = XDB::query("SELECT uid FROM emails WHERE email = {?}", $email);
            if ($res->numRows() == 1) {
                return $res->fetchOneCell();
            }
            return '0';
        }
        list($user) = explode('+', $user);
        list($user) = explode('_', $user);
        if ($domain == $globals->mail->alias_dom || $domain == $globals->mail->alias_dom2) {
            $res = XDB::query("SELECT a.id
                                 FROM virtual          AS v
                           INNER JOIN virtual_redirect AS r USING(vid)
                           INNER JOIN aliases          AS a ON (a.type = 'a_vie'
                                                            AND r.redirect = CONCAT(a.alias, '@{$globals->mail->domain2}'))
                                WHERE v.alias = CONCAT({?}, '@{$globals->mail->alias_dom}')", $user);
            $id = $res->fetchOneCell();
            return $id ? $id : '0';
        }
        $res = XDB::query("SELECT id FROM aliases WHERE alias = {?}", $user);
        $id = $res->fetchOneCell();
        return $id ? $id : '0';
    }

    function createHash($line, $key, $relation)
    {
        $hash = implode(time(), $line) . rand();
        $hash = md5($hash);
        return $hash;
    }
}

// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
?>
Commit	Line	Data
8da0d3c1	1	<?php
8da0d3c1	2	/***************************************************************************
9f5bd98e	3	* Copyright (C) 2003-2010 Polytechnique.org *
8da0d3c1	4	* http://opensource.polytechnique.org/ *
	5	* *
	6	* This program is free software; you can redistribute it and/or modify *
	7	* it under the terms of the GNU General Public License as published by *
	8	* the Free Software Foundation; either version 2 of the License, or *
	9	* (at your option) any later version. *
	10	* *
	11	* This program is distributed in the hope that it will be useful, *
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of *
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
	14	* GNU General Public License for more details. *
	15	* *
	16	* You should have received a copy of the GNU General Public License *
	17	* along with this program; if not, write to the Free Software *
	18	* Foundation, Inc., *
	19	* 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
	20	***************************************************************************/
	21
	22	class AXLetterModule extends PLModule
	23	{
	24	function handlers()
	25	{
	26	return array(
eb5a266d	27	'ax' => $this->make_hook('index', AUTH_COOKIE),
a0f05027	28	'ax/out' => $this->make_hook('out', AUTH_PUBLIC),
8da0d3c1	29	'ax/show' => $this->make_hook('show', AUTH_COOKIE),
	30	'ax/edit' => $this->make_hook('submit', AUTH_MDP),
	31	'ax/edit/cancel' => $this->make_hook('cancel', AUTH_MDP),
	32	'ax/edit/valid' => $this->make_hook('valid', AUTH_MDP),
eb5a266d	33	'admin/axletter' => $this->make_hook('admin', AUTH_MDP, 'admin'),
8da0d3c1	34	);
	35	}
	36
030038cd	37	function handler_out(&$page, $hash = null)
a0f05027	38	{
	39	if (!$hash) {
	40	if (!S::logged()) {
	41	return PL_DO_AUTH;
	42	} else {
	43	return $this->handler_index($page, 'out');
	44	}
	45	}
460d8f55	46	$this->load('axletter.inc.php');
a0f05027	47	$page->changeTpl('axletter/unsubscribe.tpl');
	48	$page->assign('success', AXLetter::unsubscribe($hash, true));
	49	}
	50
	51	function handler_index(&$page, $action = null)
8da0d3c1	52	{
460d8f55	53	$this->load('axletter.inc.php');
8da0d3c1	54
8da0d3c1	55	$page->changeTpl('axletter/index.tpl');
46f272fe	56	$page->setTitle('Envois de l\'AX');
8da0d3c1	57
8da0d3c1	58	switch ($action) {
8da0d3c1	59	case 'in': AXLetter::subscribe(); break;
a0f05027	60	case 'out': AXLetter::unsubscribe(); break;
8da0d3c1	61	}
	62
	63	$perm = AXLetter::hasPerms();
	64	if ($perm) {
9b242f17	65	$res = XDB::query("SELECT * FROM axletter_ins");
9b242f17	66	$page->assign('count', $res->numRows());
a0f05027	67	$page->assign('new', AXLetter::awaiting());
8da0d3c1	68	}
	69	$page->assign('axs', AXLetter::subscriptionState());
	70	$page->assign('ax_list', AXLetter::listSent());
	71	$page->assign('ax_rights', $perm);
	72	}
	73
	74	function handler_submit(&$page, $action = null)
	75	{
460d8f55	76	$this->load('axletter.inc.php');
8da0d3c1	77	if (!AXLetter::hasPerms()) {
	78	return PL_FORBIDDEN;
	79	}
	80
	81	$page->changeTpl('axletter/edit.tpl');
	82
4ea58d4b VZ	83	$saved = Post::i('saved');
	84	$new = false;
	85	$id = Post::i('id');
	86	$short_name = trim(Post::v('short_name'));
	87	$subject = trim(Post::v('subject'));
	88	$title = trim(Post::v('title'));
	89	$body = rtrim(Post::v('body'));
	90	$signature = trim(Post::v('signature'));
	91	$promo_min = Post::i('promo_min');
	92	$promo_max = Post::i('promo_max');
4a08dc73	93	$subset_to = preg_split("/[ ,;\:\n\r]+/", Post::v('subset_to'), -1, PREG_SPLIT_NO_EMPTY);
180627f3	94	$subset = (count($subset_to) > 0);
1f58ab8e	95	$subset_rm = Post::b('subset_rm');
4ea58d4b VZ	96	$echeance = Post::has('echeance_date') ?
	97	preg_replace('/^(\d\d\d\d)(\d\d)(\d\d)$/', '\1-\2-\3', Post::v('echeance_date')) . ' ' . Post::v('echeance_time')
	98	: Post::v('echeance');
8da0d3c1	99	$echeance_date = Post::v('echeance_date');
	100	$echeance_time = Post::v('echeance_time');
	101
	102	if (!$id) {
	103	$res = XDB::query("SELECT * FROM axletter WHERE FIND_IN_SET('new', bits)");
	104	if ($res->numRows()) {
	105	extract($res->fetchOneAssoc(), EXTR_OVERWRITE);
c1134ef2	106	$subset_to = ($subset ? explode("\n", $subset) : null);
180627f3	107	$subset = (count($subset_to) > 0);
8da0d3c1	108	$saved = true;
	109	} else {
	110	XDB::execute("INSERT INTO axletter SET id = NULL");
	111	$id = XDB::insertId();
	112	}
	113	if (!$echeance \|\| $echeance == '0000-00-00 00:00:00') {
	114	$saved = false;
	115	$new = true;
	116	}
40d428d8 VZ	117	} elseif (Post::has('valid')) {
	118	S::assert_xsrf_token();
	119
8da0d3c1	120	if (!$subject && $title) {
	121	$subject = $title;
	122	}
	123	if (!$title && $subject) {
	124	$title = $subject;
	125	}
	126	if (!$subject \|\| !$title \|\| !$body) {
a7d35093	127	$page->trigError("L'article doit avoir un sujet et un contenu");
8da0d3c1	128	Post::kill('valid');
	129	}
	130	if (($promo_min > $promo_max && $promo_max != 0)\|\|
	131	($promo_min != 0 && ($promo_min <= 1900 \|\| $promo_min >= 2020)) \|\|
	132	($promo_max != 0 && ($promo_max <= 1900 \|\| $promo_max >= 2020)))
	133	{
a7d35093	134	$page->trigError("L'intervalle de promotions n'est pas valide");
8da0d3c1	135	Post::kill('valid');
8da0d3c1	136	}
4ea58d4b	137	if (empty($short_name)) {
a7d35093	138	$page->trigError("L'annonce doit avoir un nom raccourci pour simplifier la navigation dans les archives");
8da0d3c1	139	Post::kill('valid');
4ea58d4b	140	} elseif (!preg_match('/^[a-z][-a-z0-9]*[a-z0-9]$/', $short_name)) {
a7d35093	141	$page->trigError("Le nom raccourci n'est pas valide, il doit comporter au moins 2 caractères et n'être composé "
8da0d3c1	142	. "que de chiffres, lettres et tirets");
8da0d3c1	143	Post::kill('valid');
4ea58d4b VZ	144	} elseif ($short_name != Post::v('old_short_name')) {
4ea58d4b VZ	145	$res = XDB::query("SELECT id FROM axletter WHERE short_name = {?}", $short_name);
8da0d3c1	146	if ($res->numRows() && $res->fetchOneCell() != $id) {
a7d35093	147	$page->trigError("Le nom $short_name est déjà utilisé, merci d'en choisir un autre");
4ea58d4b VZ	148	$short_name = Post::v('old_short_name');
4ea58d4b VZ	149	if (empty($short_name)) {
8da0d3c1	150	Post::kill('valid');
	151	}
	152	}
	153	}
	154
	155	switch (@Post::v('valid')) {
a7de4ef7	156	case 'Aperçu':
460d8f55	157	$this->load('axletter.inc.php');
4ea58d4b	158	$al = new AXLetter(array($id, $short_name, $subject, $title, $body, $signature,
1f58ab8e	159	$promo_min, $promo_max, $subset, $subset_rm, $echeance, 0, 'new'));
8da0d3c1	160	$al->toHtml($page, S::v('prenom'), S::v('nom'), S::v('femme'));
	161	break;
	162
	163	case 'Confirmer':
	164	XDB::execute("REPLACE INTO axletter
c6f2cafe	165	SET id = {?}, short_name = {?}, subject = {?}, title = {?}, body = {?},
1f58ab8e RB	166	signature = {?}, promo_min = {?}, promo_max = {?}, echeance = {?}, subset = {?}, subset_rm = {?}",
1f58ab8e RB	167	$id, $short_name, $subject, $title, $body, $signature, $promo_min, $promo_max, $echeance, $subset ? implode("\n", $subset_to) : null, $subset_rm);
9b242f17	168	if (!$saved) {
115c90db	169	global $globals;
9b242f17	170	$mailer = new PlMailer();
1d55fe45	171	$mailer->setFrom("support@" . $globals->mail->domain);
faefdbb7 SJ	172	$mailer->setSubject("Un nouveau projet d'email de l'AX vient d'être proposé");
faefdbb7 SJ	173	$mailer->setTxtBody("Un nouvel email vient d'être rédigé en prévision d'un envoi prochain. Vous pouvez "
9b242f17	174	. "le modifier jusqu'à ce qu'il soit verrouillé pour l'envoi\n\n"
faefdbb7	175	. "Le sujet de l'email : $subject\n"
9b242f17	176	. "L'échéance d'envoi est fixée à $echeance.\n"
faefdbb7	177	. "L'email pourra néanmoins partir avant cette échéance si un administrateur de "
9b242f17	178	. "Polytechnique.org le valide.\n\n"
faefdbb7	179	. "Pour modifier, valider ou annuler l'email :\n"
9b242f17	180	. "https://www.polytechnique.org/ax/edit\n"
	181	. "-- \n"
	182	. "Association Polytechnique.org\n");
	183	$res = XDB::iterRow("SELECT IF(u.nom_usage != '', u.nom_usage, u.nom) AS nom,
	184	u.prenom, a.alias AS bestalias
	185	FROM axletter_rights AS ar
	186	INNER JOIN auth_user_md5 AS u USING(user_id)
	187	INNER JOIN aliases AS a ON (u.user_id = a.id
	188	AND FIND_IN_SET('bestalias', a.flags))");
9b242f17	189	while (list($nom, $prenom, $alias) = $res->next()) {
	190	$mailer->addTo("$nom $prenom <$alias@{$globals->mail->domain}>");
	191	}
	192	$mailer->send();
	193	}
8da0d3c1	194	$saved = true;
	195	$echeance_date = null;
	196	$echeance_time = null;
	197	pl_redirect('ax');
	198	break;
	199	}
	200	}
	201	$page->assign('id', $id);
4ea58d4b	202	$page->assign('short_name', $short_name);
8da0d3c1	203	$page->assign('subject', $subject);
	204	$page->assign('title', $title);
	205	$page->assign('body', $body);
	206	$page->assign('signature', $signature);
	207	$page->assign('promo_min', $promo_min);
	208	$page->assign('promo_max', $promo_max);
2a3f4f57 RB	209	$page->assign('subset_to', implode("\n", $subset_to));
2a3f4f57 RB	210	$page->assign('subset', $subset);
1f58ab8e	211	$page->assign('subset_rm', $subset_rm);
8da0d3c1	212	$page->assign('echeance', $echeance);
	213	$page->assign('echeance_date', $echeance_date);
	214	$page->assign('echeance_time', $echeance_time);
	215	$page->assign('saved', $saved);
	216	$page->assign('new', $new);
dd70cd28	217	$page->assign('is_xorg', S::admin());
8da0d3c1	218
	219	if (!$saved) {
	220	$select = '';
8da0d3c1	221	for ($i = 0 ; $i < 24 ; $i++) {
	222	$stamp = sprintf('%02d:00:00', $i);
	223	if ($stamp == $echeance_time) {
	224	$sel = ' selected="selected"';
	225	} else {
	226	$sel = '';
	227	}
	228	$select .= "<option value=\"$stamp\"$sel>{$i}h</option>\n";
	229	}
	230	$page->assign('echeance_time', $select);
eaf30d86	231	}
8da0d3c1	232	}
	233
	234	function handler_cancel(&$page, $force = null)
	235	{
460d8f55	236	$this->load('axletter.inc.php');
fde3e90e	237	if (!AXLetter::hasPerms() \|\| !S::has_xsrf_token()) {
8da0d3c1	238	return PL_FORBIDDEN;
	239	}
	240
a0f05027	241	$al = AXLetter::awaiting();
fde3e90e	242	if (!$al) {
8da0d3c1	243	$page->kill("Aucune lettre en attente");
	244	return;
	245	}
8da0d3c1	246	if (!$al->invalid()) {
	247	$page->kill("Une erreur est survenue lors de l'annulation de l'envoi");
	248	return;
	249	}
	250
8f794f88	251	$page->killSuccess("L'envoi de l'annonce {$al->title()} est annulé.");
8da0d3c1	252	}
	253
	254	function handler_valid(&$page, $force = null)
	255	{
460d8f55	256	$this->load('axletter.inc.php');
fde3e90e	257	if (!AXLetter::hasPerms() \|\| !S::has_xsrf_token()) {
8da0d3c1	258	return PL_FORBIDDEN;
	259	}
	260
a0f05027	261	$al = AXLetter::awaiting();
a0f05027	262	if (!$al) {
8da0d3c1	263	$page->kill("Aucune lettre en attente");
	264	return;
	265	}
8da0d3c1	266	if (!$al->valid()) {
	267	$page->kill("Une erreur est survenue lors de la validation de l'envoi");
	268	return;
	269	}
	270
8f794f88	271	$page->killSuccess("L'envoi de l'annonce aura lieu dans l'heure qui vient.");
8da0d3c1	272	}
	273
	274	function handler_show(&$page, $nid = 'last')
	275	{
460d8f55	276	$this->load('axletter.inc.php');
8da0d3c1	277	$page->changeTpl('axletter/show.tpl');
8da0d3c1	278
4a71cf67 SJ	279	try {
	280	$nl = new AXLetter($nid);
	281	if (Get::has('text')) {
	282	$nl->toText($page, S::v('prenom'), S::v('nom'), S::v('femme'));
	283	} else {
	284	$nl->toHtml($page, S::v('prenom'), S::v('nom'), S::v('femme'));
	285	}
	286	if (Post::has('send')) {
	287	$nl->sendTo(S::user()->login(), S::user()->bestEmail(),
	288	S::v('prenom'), S::v('nom'),
	289	S::v('femme'), S::v('mail_fmt') != 'texte');
	290	}
	291	} catch (MailNotFound $e) {
	292	return PL_NOT_FOUND;
8da0d3c1	293	}
8da0d3c1	294	}
0d75939a	295
	296	function handler_admin(&$page, $action = null, $uid = null)
	297	{
460d8f55	298	$this->load('axletter.inc.php');
0d75939a	299	if (Post::has('action')) {
	300	$action = Post::v('action');
	301	$uid = Post::v('uid');
	302	}
40d428d8 VZ	303	if ($uid) {
	304	S::assert_xsrf_token();
	305
0d75939a	306	$uids = preg_split('/ [,;\: ] /', $uid);
	307	foreach ($uids as $uid) {
	308	switch ($action) {
	309	case 'add':
	310	$res = AXLetter::grantPerms($uid);
	311	break;
	312	case 'del';
	313	$res = AXLetter::revokePerms($uid);
	314	break;
	315	}
	316	if (!$res) {
a7d35093	317	$page->trigError("Personne ne correspond à l'identifiant '$uid'");
0d75939a	318	}
	319	}
	320	}
	321
	322	$page->changeTpl('axletter/admin.tpl');
	323	$res = XDB::iterator("SELECT IF(u.nom_usage != '', u.nom_usage, u.nom) AS nom,
90c614cd	324	u.prenom, u.promo, u.hruid
0d75939a	325	FROM axletter_rights AS ar
90c614cd	326	INNER JOIN auth_user_md5 AS u USING(user_id)");
0d75939a	327	$page->assign('admins', $res);
eaf30d86	328
0d75939a	329	$importer = new CSVImporter('axletter_ins');
	330	$importer->registerFunction('user_id', 'email vers Id X.org', array($this, 'idFromMail'));
	331	$importer->forceValue('hash', array($this, 'createHash'));
2f95cd8f	332	$importer->apply($page, "admin/axletter", array('user_id', 'email', 'prenom', 'nom', 'promo', 'flag', 'hash'));
0d75939a	333	}
0d75939a	334
f6eacab0	335	function idFromMail($line, $key, $relation = null)
0d75939a	336	{
0d75939a	337	static $field;
cbce77b7	338	global $globals;
0d75939a	339	if (!isset($field)) {
	340	$field = array('email', 'mail', 'login', 'bestalias', 'forlife', 'flag');
	341	foreach ($field as $fld) {
	342	if (isset($line[$fld])) {
	343	$field = $fld;
	344	break;
	345	}
	346	}
	347	}
	348	$email = $line[$field];
	349	if (strpos($email, '@') === false) {
	350	$user = $email;
cbce77b7	351	$domain = $globals->mail->domain2;
0d75939a	352	} else {
eaf30d86	353	list($user, $domain) = explode('@', $email);
cbce77b7	354	}
cbce77b7	355	if ($domain != $globals->mail->domain && $domain != $globals->mail->domain2
0d75939a	356	&& $domain != $globals->mail->alias_dom && $domain != $globals->mail->alias_dom2) {
cbce77b7	357	$res = XDB::query("SELECT uid FROM emails WHERE email = {?}", $email);
	358	if ($res->numRows() == 1) {
	359	return $res->fetchOneCell();
0d75939a	360	}
cbce77b7	361	return '0';
	362	}
	363	list($user) = explode('+', $user);
	364	list($user) = explode('_', $user);
	365	if ($domain == $globals->mail->alias_dom \|\| $domain == $globals->mail->alias_dom2) {
	366	$res = XDB::query("SELECT a.id
	367	FROM virtual AS v
	368	INNER JOIN virtual_redirect AS r USING(vid)
	369	INNER JOIN aliases AS a ON (a.type = 'a_vie'
	370	AND r.redirect = CONCAT(a.alias, '@{$globals->mail->domain2}'))
	371	WHERE v.alias = CONCAT({?}, '@{$globals->mail->alias_dom}')", $user);
	372	$id = $res->fetchOneCell();
	373	return $id ? $id : '0';
0d75939a	374	}
	375	$res = XDB::query("SELECT id FROM aliases WHERE alias = {?}", $user);
	376	$id = $res->fetchOneCell();
	377	return $id ? $id : '0';
	378	}
	379
f6eacab0	380	function createHash($line, $key, $relation)
0d75939a	381	{
5480a216	382	$hash = implode(time(), $line) . rand();
0d75939a	383	$hash = md5($hash);
	384	return $hash;
	385	}
8da0d3c1	386	}
8da0d3c1	387
a7de4ef7	388	// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
8da0d3c1	389	?>