Commit | Line | Data |
---|---|---|
7d8b17cb | 1 | <?php |
2 | /*************************************************************************** | |
8d84c630 | 3 | * Copyright (C) 2003-2009 Polytechnique.org * |
7d8b17cb | 4 | * http://opensource.polytechnique.org/ * |
5 | * * | |
6 | * This program is free software; you can redistribute it and/or modify * | |
7 | * it under the terms of the GNU General Public License as published by * | |
8 | * the Free Software Foundation; either version 2 of the License, or * | |
9 | * (at your option) any later version. * | |
10 | * * | |
11 | * This program is distributed in the hope that it will be useful, * | |
12 | * but WITHOUT ANY WARRANTY; without even the implied warranty of * | |
13 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * | |
14 | * GNU General Public License for more details. * | |
15 | * * | |
16 | * You should have received a copy of the GNU General Public License * | |
17 | * along with this program; if not, write to the Free Software * | |
18 | * Foundation, Inc., * | |
19 | * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * | |
20 | ***************************************************************************/ | |
21 | ||
22 | class ProfileModule extends PLModule | |
23 | { | |
24 | function handlers() | |
25 | { | |
26 | return array( | |
eb5a266d SJ |
27 | 'photo' => $this->make_hook('photo', AUTH_PUBLIC), |
28 | 'photo/change' => $this->make_hook('photo_change', AUTH_MDP), | |
e49018a7 | 29 | |
eb5a266d SJ |
30 | 'fiche.php' => $this->make_hook('fiche', AUTH_PUBLIC), |
31 | 'profile' => $this->make_hook('profile', AUTH_PUBLIC), | |
32 | 'profile/private' => $this->make_hook('profile', AUTH_COOKIE), | |
33 | 'profile/ax' => $this->make_hook('ax', AUTH_COOKIE, 'admin'), | |
34 | 'profile/edit' => $this->make_hook('p_edit', AUTH_MDP), | |
35 | 'profile/ajax/address' => $this->make_hook('ajax_address', AUTH_COOKIE, 'user', NO_AUTH), | |
36 | 'profile/ajax/tel' => $this->make_hook('ajax_tel', AUTH_COOKIE, 'user', NO_AUTH), | |
37 | 'profile/ajax/medal' => $this->make_hook('ajax_medal', AUTH_COOKIE, 'user', NO_AUTH), | |
38 | 'profile/ajax/job' => $this->make_hook('ajax_job', AUTH_COOKIE, 'user', NO_AUTH), | |
39 | 'profile/ajax/secteur' => $this->make_hook('ajax_secteur', AUTH_COOKIE, 'user', NO_AUTH), | |
40 | 'profile/ajax/skill' => $this->make_hook('ajax_skill', AUTH_COOKIE, 'user', NO_AUTH), | |
41 | 'javascript/applis.js' => $this->make_hook('applis_js', AUTH_COOKIE), | |
42 | 'javascript/grades.js' => $this->make_hook('grades_js', AUTH_COOKIE), | |
43 | 'profile/medal' => $this->make_hook('medal', AUTH_PUBLIC), | |
44 | 'profile/orange' => $this->make_hook('p_orange', AUTH_MDP), | |
45 | 'profile/usage' => $this->make_hook('p_usage', AUTH_MDP), | |
e49018a7 | 46 | |
eb5a266d SJ |
47 | 'referent' => $this->make_hook('referent', AUTH_COOKIE), |
48 | 'emploi' => $this->make_hook('ref_search', AUTH_COOKIE), | |
49 | 'referent/search' => $this->make_hook('ref_search', AUTH_COOKIE), | |
50 | 'referent/ssect' => $this->make_hook('ref_sect', AUTH_COOKIE, 'user', NO_AUTH), | |
51 | 'referent/country' => $this->make_hook('ref_country', AUTH_COOKIE, 'user', NO_AUTH), | |
2f678da1 | 52 | |
eb5a266d | 53 | 'groupes-x' => $this->make_hook('xnet', AUTH_COOKIE), |
23fb3e6f | 54 | 'groupes-x/logo' => $this->make_hook('xnetlogo', AUTH_PUBLIC), |
926f16d7 | 55 | |
9db0a440 | 56 | 'vcard' => $this->make_hook('vcard', AUTH_COOKIE), |
eb5a266d SJ |
57 | 'admin/binets' => $this->make_hook('admin_binets', AUTH_MDP, 'admin'), |
58 | 'admin/medals' => $this->make_hook('admin_medals', AUTH_MDP, 'admin'), | |
59 | 'admin/formations' => $this->make_hook('admin_formations', AUTH_MDP, 'admin'), | |
60 | 'admin/sections' => $this->make_hook('admin_sections', AUTH_MDP, 'admin'), | |
61 | 'admin/secteurs' => $this->make_hook('admin_secteurs', AUTH_MDP, 'admin'), | |
62 | 'admin/trombino' => $this->make_hook('admin_trombino', AUTH_MDP, 'admin'), | |
63 | 'admin/ss_secteurs' => $this->make_hook('admin_ss_secteurs', AUTH_MDP, 'admin'), | |
64 | 'admin/fonctions' => $this->make_hook('admin_fonctions', AUTH_MDP, 'admin'), | |
92423144 | 65 | |
7d8b17cb | 66 | ); |
67 | } | |
68 | ||
e8599c21 | 69 | /* XXX COMPAT */ |
70 | function handler_fiche(&$page) | |
71 | { | |
5e2307dc | 72 | return $this->handler_profile($page, Env::v('user')); |
e8599c21 | 73 | } |
74 | ||
adbdf493 | 75 | function handler_photo(&$page, $x = null, $req = null) |
76 | { | |
954cfb01 | 77 | if (!$x || !($user = User::getSilent($x))) { |
adbdf493 | 78 | return PL_NOT_FOUND; |
79 | } | |
80 | ||
954cfb01 VZ |
81 | // Retrieve the photo and its mime type. |
82 | $photo_data = null; | |
83 | $photo_type = null; | |
adbdf493 | 84 | |
cab08090 | 85 | if ($req && S::logged()) { |
adbdf493 | 86 | include 'validations.inc.php'; |
954cfb01 VZ |
87 | $myphoto = PhotoReq::get_request($user->id()); |
88 | if ($myphoto) { | |
89 | $photo_data = $myphoto->data; | |
90 | $photo_type = $myphoto->mimetype; | |
91 | } | |
adbdf493 | 92 | } else { |
08cce2ff | 93 | $res = XDB::query( |
954cfb01 | 94 | "SELECT attachmime, attach, pub |
adbdf493 | 95 | FROM photo |
954cfb01 VZ |
96 | WHERE uid = {?}", $user->id()); |
97 | list($photo_type, $photo_data, $photo_pub) = $res->fetchOneRow(); | |
98 | if ($photo_pub != 'public' && !S::logged()) { | |
99 | $photo_type = $photo_data = null; | |
adbdf493 | 100 | } |
101 | } | |
954cfb01 VZ |
102 | |
103 | // Display the photo, or a default one when not available. | |
104 | if ($photo_type && $photo_data != null) { | |
105 | header('Content-type: image/' . $photo_type); | |
106 | echo $photo_data; | |
107 | } else { | |
108 | header('Content-type: image/png'); | |
109 | echo file_get_contents(dirname(__FILE__).'/../htdocs/images/none.png'); | |
110 | } | |
adbdf493 | 111 | exit; |
112 | } | |
113 | ||
85cc366b FB |
114 | function handler_medal(&$page, $mid) |
115 | { | |
bd6a5fe3 VZ |
116 | $thumb = ($mid == 'thumb'); |
117 | $mid = $thumb ? @func_get_arg(2) : $mid; | |
118 | ||
85cc366b FB |
119 | $res = XDB::query("SELECT img |
120 | FROM profile_medals | |
121 | WHERE id = {?}", | |
122 | $mid); | |
bd6a5fe3 VZ |
123 | $img = $thumb ? |
124 | dirname(__FILE__).'/../htdocs/images/medals/thumb/' . $res->fetchOneCell() : | |
125 | dirname(__FILE__).'/../htdocs/images/medals/' . $res->fetchOneCell(); | |
85cc366b FB |
126 | $type = mime_content_type($img); |
127 | header("Content-Type: $type"); | |
128 | echo file_get_contents($img); | |
129 | exit; | |
130 | } | |
131 | ||
fb9a56cb | 132 | function handler_photo_change(&$page) |
133 | { | |
ebfdf077 | 134 | global $globals; |
8b1f8e12 | 135 | $page->changeTpl('profile/trombino.tpl'); |
fb9a56cb | 136 | |
137 | require_once('validations.inc.php'); | |
138 | ||
54cabe90 | 139 | $trombi_x = '/home/web/trombino/photos' . S::v('promo') . '/' . S::user()->login() . '.jpg'; |
fb9a56cb | 140 | if (Env::has('upload')) { |
8827fc52 VZ |
141 | S::assert_xsrf_token(); |
142 | ||
954cfb01 | 143 | $upload = new PlUpload(S::user()->login(), 'photo'); |
abe7e055 | 144 | if (!$upload->upload($_FILES['userfile']) && !$upload->download(Env::v('photo'))) { |
a7d35093 | 145 | $page->trigError('Une erreur est survenue lors du téléchargement du fichier'); |
abe7e055 | 146 | } else { |
5daf68f6 | 147 | $myphoto = new PhotoReq(S::user(), $upload); |
abe7e055 | 148 | if ($myphoto->isValid()) { |
149 | $myphoto->submit(); | |
fb9a56cb | 150 | } |
fb9a56cb | 151 | } |
152 | } elseif (Env::has('trombi')) { | |
8827fc52 VZ |
153 | S::assert_xsrf_token(); |
154 | ||
954cfb01 | 155 | $upload = new PlUpload(S::user()->login(), 'photo'); |
abe7e055 | 156 | if ($upload->copyFrom($trombi_x)) { |
5daf68f6 | 157 | $myphoto = new PhotoReq(S::user(), $upload); |
abe7e055 | 158 | if ($myphoto->isValid()) { |
159 | $myphoto->commit(); | |
160 | $myphoto->clean(); | |
161 | } | |
fb9a56cb | 162 | } |
5e2307dc | 163 | } elseif (Env::v('suppr')) { |
8827fc52 VZ |
164 | S::assert_xsrf_token(); |
165 | ||
84868ee9 FB |
166 | XDB::execute('DELETE FROM photo |
167 | WHERE uid = {?}', | |
168 | S::v('uid')); | |
169 | XDB::execute('DELETE FROM requests | |
170 | WHERE user_id = {?} AND type="photo"', | |
171 | S::v('uid')); | |
ebfdf077 | 172 | $globals->updateNbValid(); |
5e2307dc | 173 | } elseif (Env::v('cancel')) { |
8827fc52 VZ |
174 | S::assert_xsrf_token(); |
175 | ||
84868ee9 FB |
176 | $sql = XDB::query('DELETE FROM requests |
177 | WHERE user_id={?} AND type="photo"', | |
178 | S::v('uid')); | |
ebfdf077 | 179 | $globals->updateNbValid(); |
fb9a56cb | 180 | } |
181 | ||
84868ee9 FB |
182 | $sql = XDB::query('SELECT COUNT(*) |
183 | FROM requests | |
184 | WHERE user_id={?} AND type="photo"', | |
abe7e055 | 185 | S::v('uid')); |
fb9a56cb | 186 | $page->assign('submited', $sql->fetchOneCell()); |
187 | $page->assign('has_trombi_x', file_exists($trombi_x)); | |
fb9a56cb | 188 | } |
189 | ||
e8599c21 | 190 | function handler_profile(&$page, $x = null) |
191 | { | |
54cabe90 VZ |
192 | // TODO/note for upcoming developers: |
193 | // We currently maintain both $user and $login; $user is the old way of | |
194 | // obtaining information, and eventually everything will be loaded | |
195 | // through $login. That is the reason why in the template $user is named | |
196 | // $x, and $login $user (sorry for the confusion). | |
197 | ||
198 | // Determines which user to display the profile of, and retrieves basic | |
199 | // information on this user. | |
e8599c21 | 200 | if (is_null($x)) { |
201 | return PL_NOT_FOUND; | |
202 | } | |
203 | ||
344234db VZ |
204 | $login = S::logged() ? User::get($x) : User::getSilent($x); |
205 | if (!$login) { | |
206 | return PL_NOT_FOUND; | |
e8599c21 | 207 | } |
208 | ||
54cabe90 VZ |
209 | // Now that we know this is the profile of an existing user, we can |
210 | // switch to the appropriate template. | |
211 | $page->changeTpl('profile/profile.tpl', SIMPLE); | |
212 | require_once 'user.func.inc.php'; | |
213 | ||
214 | // Determines the access level at which the profile will be displayed. | |
215 | if (!S::logged() || Env::v('view') == 'public') { | |
216 | $view = 'public'; | |
217 | } else if (S::logged() && Env::v('view') == 'ax') { | |
218 | $view = 'ax'; | |
219 | } else { | |
220 | $view = 'private'; | |
221 | } | |
222 | ||
223 | // Determines is the user is registered, and fetches the user infos in | |
224 | // the appropriate way. | |
344234db VZ |
225 | $res = XDB::query("SELECT perms IN ('admin','user','disabled') |
226 | FROM auth_user_md5 | |
227 | WHERE user_id = {?}", $login->id()); | |
54cabe90 VZ |
228 | if ($res->fetchOneCell()) { |
229 | $new = Env::v('modif') == 'new'; | |
230 | $user = get_user_details($login->login(), S::v('uid'), $view); | |
231 | } else { | |
232 | $new = false; | |
233 | $user = array(); | |
ba25f663 | 234 | if (S::logged()) { |
54cabe90 | 235 | pl_redirect('marketing/public/' . $login->login()); |
ba25f663 | 236 | } |
e8599c21 | 237 | } |
ba25f663 | 238 | |
54cabe90 | 239 | // Profile view are logged. |
e31c1c3e | 240 | if (S::logged()) { |
b8971a3e | 241 | S::logger()->log('view_profile', $login->login()); |
e31c1c3e | 242 | } |
e8599c21 | 243 | |
54cabe90 VZ |
244 | // Sets the title of the html page. |
245 | $page->setTitle($login->fullName()); | |
e8599c21 | 246 | |
54cabe90 VZ |
247 | // Prepares the display of the user's mugshot. |
248 | $photo = 'photo/' . $login->login() . ($new ? '/req' : ''); | |
249 | if (!isset($user['photo_pub']) || !has_user_right($user['photo_pub'], $view)) { | |
250 | $photo = ""; | |
251 | } | |
252 | $page->assign('photo_url', $photo); | |
e8599c21 | 253 | |
2f678da1 | 254 | if (!isset($user['y']) and !isset($user['x'])) { |
e8599c21 | 255 | list($user['x'], $user['y']) = getimagesize("images/none.png"); |
256 | } | |
2f678da1 | 257 | if (!isset($user['y']) or $user['y'] < 1) $user['y']=1; |
258 | if (!isset($user['x']) or $user['x'] < 1) $user['x']=1; | |
259 | if ($user['x'] > 240) { | |
e8599c21 | 260 | $user['y'] = (integer)($user['y']*240/$user['x']); |
261 | $user['x'] = 240; | |
262 | } | |
2f678da1 | 263 | if ($user['y'] > 300) { |
e8599c21 | 264 | $user['x'] = (integer)($user['x']*300/$user['y']); |
265 | $user['y'] = 300; | |
266 | } | |
2f678da1 | 267 | if ($user['x'] < 160) { |
e8599c21 | 268 | $user['y'] = (integer)($user['y']*160/$user['x']); |
269 | $user['x'] = 160; | |
270 | } | |
271 | ||
54cabe90 VZ |
272 | // Determines and displays the virtual alias. |
273 | global $globals; | |
08cce2ff | 274 | $res = XDB::query( |
54cabe90 VZ |
275 | "SELECT alias |
276 | FROM virtual | |
277 | INNER JOIN virtual_redirect USING (vid) | |
278 | INNER JOIN auth_user_quick ON (user_id = {?} AND emails_alias_pub = 'public') | |
279 | WHERE (redirect={?} OR redirect={?}) | |
280 | AND alias LIKE '%@{$globals->mail->alias_dom}'", | |
281 | $login->id(), | |
282 | $login->forlifeEmail(), | |
283 | // TODO(vzanotti): get ride of all @m4x.org addresses in the | |
284 | // virtual redirect base, and remove this über-ugly hack. | |
285 | $login->login() . '@' . $globals->mail->domain2); | |
e8599c21 | 286 | $page->assign('virtualalias', $res->fetchOneCell()); |
54cabe90 VZ |
287 | |
288 | // Adds miscellaneous properties to the display. | |
289 | // Adds the global user property array to the display. | |
290 | $page->assign_by_ref('x', $user); | |
291 | $page->assign_by_ref('user', $login); | |
292 | $page->assign('logged', has_user_right('private', $view)); | |
24f4c06a | 293 | $page->assign('view', $view); |
e8599c21 | 294 | |
c99ef281 | 295 | $page->addJsLink('close_on_esc.js'); |
54cabe90 VZ |
296 | if (isset($user['date'])) { |
297 | header('Last-Modified: ' . date('r', strtotime($user['date']))); | |
298 | } | |
e8599c21 | 299 | } |
300 | ||
5122b820 | 301 | function handler_ax(&$page, $user = null) |
302 | { | |
34ca2048 | 303 | $user = User::get($user); |
5122b820 | 304 | if (!$user) { |
305 | return PL_NOT_FOUND; | |
306 | } | |
34ca2048 VZ |
307 | |
308 | $res = XDB::query("SELECT matricule_ax | |
309 | FROM auth_user_md5 | |
310 | WHERE user_id = {?}", $user->id()); | |
5122b820 | 311 | $mat = $res->fetchOneCell(); |
312 | if (!intval($mat)) { | |
34ca2048 | 313 | $page->kill("Le matricule AX de {$user->login()} est inconnu"); |
5122b820 | 314 | } |
a3ad3d44 | 315 | http_redirect("http://www.polytechniciens.com/?page=AX_FICHE_ANCIEN&ancc_id=$mat"); |
5122b820 | 316 | } |
317 | ||
eb563236 | 318 | function handler_p_edit(&$page, $opened_tab = null, $mode = null, $success = null) |
2f678da1 | 319 | { |
320 | global $globals; | |
321 | ||
e1635d16 FB |
322 | // AX Synchronization |
323 | require_once 'synchro_ax.inc.php'; | |
2f678da1 | 324 | if (is_ax_key_missing()) { |
325 | $page->assign('no_private_key', true); | |
326 | } | |
5e2307dc | 327 | if (Env::v('synchro_ax') == 'confirm' && !is_ax_key_missing()) { |
b3bf7395 | 328 | ax_synchronize(S::user()->login(), S::v('uid')); |
a7d35093 | 329 | $page->trigSuccess('Ton profil a été synchronisé avec celui du site polytechniciens.com'); |
2f678da1 | 330 | } |
331 | ||
7bff4cb0 | 332 | // Build the page |
c6a7beb2 | 333 | $page->addJsLink('ajax.js'); |
46ae38a9 FB |
334 | $page->addJsLink('applis.js'); |
335 | $page->addJsLink('grades.js'); | |
16594a1a | 336 | $page->addJsLink('profile.js'); |
4b4b4b67 | 337 | $page->addJsLink('jquery.autocomplete.js'); |
6d20fb1d | 338 | $wiz = new PlWizard('Profil', PlPage::getCoreTpl('plwizard.tpl'), true, true); |
460d8f55 | 339 | $this->load('page.inc.php'); |
e1635d16 | 340 | $wiz->addPage('ProfileGeneral', 'Général', 'general'); |
0b14f91d | 341 | $wiz->addPage('ProfileAddresses', 'Adresses personnelles', 'adresses'); |
e1635d16 | 342 | $wiz->addPage('ProfileGroups', 'Groupes X - Binets', 'poly'); |
a7c28fff | 343 | $wiz->addPage('ProfileDecos', 'Décorations - Medailles', 'deco'); |
3950bc21 | 344 | $wiz->addPage('ProfileJobs', 'Informations professionnelles', 'emploi'); |
e1635d16 FB |
345 | $wiz->addPage('ProfileSkills', 'Compétences diverses', 'skill'); |
346 | $wiz->addPage('ProfileMentor', 'Mentoring', 'mentor'); | |
46ae38a9 | 347 | $wiz->apply($page, 'profile/edit', $opened_tab, $mode); |
35aedff2 | 348 | |
7bff4cb0 FB |
349 | // Misc checks |
350 | $res = XDB::query("SELECT user_id | |
351 | FROM auth_user_md5 | |
352 | WHERE user_id = {?} AND naissance = '0000-00-00'", S::i('uid')); | |
353 | if ($res->numRows()) { | |
a7d35093 | 354 | $page->trigWarning("Ta date de naissance n'est pas renseignée, ce qui t'empêcheras de réaliser" |
ec82a63f | 355 | . " la procédure de récupération de mot de passe si un jour tu le perdais."); |
7bff4cb0 FB |
356 | } |
357 | ||
46f272fe | 358 | $page->setTitle('Mon Profil'); |
eb563236 SJ |
359 | if (isset($success) && $success) { |
360 | $page->trigSuccess('Ton profil a bien été mis à jour.'); | |
361 | } | |
2f678da1 | 362 | } |
363 | ||
46ae38a9 FB |
364 | function handler_applis_js(&$page) |
365 | { | |
366 | header('Content-Type: text/javascript; charset=utf-8'); | |
367 | header('Expires: Mon, 26 Jul 1997 05:00:00 GMT'); | |
368 | header('Last-Modified:' . gmdate('D, d M Y H:i:s') . ' GMT'); | |
369 | header('Cache-Control: no-cache, must-revalidate'); | |
370 | header('Pragma: no-cache'); | |
371 | $page->changeTpl('profile/applis.js.tpl', NO_SKIN); | |
372 | require_once "applis.func.inc.php"; | |
373 | } | |
374 | ||
375 | function handler_grades_js(&$page) | |
376 | { | |
377 | header('Content-Type: text/javascript; charset=utf-8'); | |
378 | header('Expires: Mon, 26 Jul 1997 05:00:00 GMT'); | |
379 | header('Last-Modified:' . gmdate('D, d M Y H:i:s') . ' GMT'); | |
380 | header('Cache-Control: no-cache, must-revalidate'); | |
381 | header('Pragma: no-cache'); | |
382 | $page->changeTpl('profile/grades.js.tpl', NO_SKIN); | |
383 | $res = XDB::iterator("SELECT * | |
384 | FROM profile_medals_grades | |
385 | ORDER BY mid, pos"); | |
386 | $grades = array(); | |
387 | while ($tmp = $res->next()) { | |
388 | $grades[$tmp['mid']][] = $tmp; | |
389 | } | |
390 | $page->assign('grades', $grades); | |
391 | ||
392 | $res = XDB::iterator("SELECT *, FIND_IN_SET('validation', flags) AS validate | |
393 | FROM profile_medals | |
394 | ORDER BY type, text"); | |
395 | $mlist = array(); | |
396 | while ($tmp = $res->next()) { | |
397 | $mlist[$tmp['type']][] = $tmp; | |
398 | } | |
399 | $page->assign('medal_list', $mlist); | |
400 | } | |
401 | ||
c6a7beb2 FB |
402 | function handler_ajax_address(&$page, $adid) |
403 | { | |
46ae38a9 | 404 | header('Content-Type: text/html; charset=utf-8'); |
c6a7beb2 FB |
405 | $page->changeTpl('profile/adresses.address.tpl', NO_SKIN); |
406 | $page->assign('i', $adid); | |
407 | $page->assign('adr', array()); | |
c6a7beb2 FB |
408 | } |
409 | ||
410 | function handler_ajax_tel(&$page, $adid, $telid) | |
411 | { | |
46ae38a9 | 412 | header('Content-Type: text/html; charset=utf-8'); |
c6a7beb2 FB |
413 | $page->changeTpl('profile/adresses.tel.tpl', NO_SKIN); |
414 | $page->assign('i', $adid); | |
415 | $page->assign('adid', "addresses_$adid"); | |
416 | $page->assign('adpref', "addresses[$adid]"); | |
417 | $page->assign('t', $telid); | |
418 | $page->assign('tel', array()); | |
c6a7beb2 FB |
419 | } |
420 | ||
85cc366b FB |
421 | function handler_ajax_medal(&$page, $id) |
422 | { | |
46ae38a9 | 423 | header('Content-Type: text/html; charset=utf-8'); |
85cc366b FB |
424 | $page->changeTpl('profile/deco.medal.tpl', NO_SKIN); |
425 | $page->assign('id', $id); | |
426 | $page->assign('medal', array('valid' => 0, 'grade' => 0)); | |
85cc366b FB |
427 | } |
428 | ||
2dcac0f5 FB |
429 | function handler_ajax_job(&$page, $id) |
430 | { | |
46ae38a9 | 431 | header('Content-Type: text/html; charset=utf-8'); |
2dcac0f5 FB |
432 | $page->changeTpl('profile/jobs.job.tpl', NO_SKIN); |
433 | $page->assign('i', $id); | |
434 | $page->assign('job', array()); | |
2dcac0f5 | 435 | $page->assign('new', true); |
daa66175 SJ |
436 | $res = XDB::query("SELECT id, label |
437 | FROM emploi_secteur"); | |
438 | $page->assign('secteurs', $res->fetchAllAssoc()); | |
439 | $res = XDB::query("SELECT id, fonction_fr, FIND_IN_SET('titre', flags) AS title | |
440 | FROM fonctions_def | |
441 | ORDER BY id"); | |
442 | $page->assign('fonctions', $res->fetchAllAssoc()); | |
2dcac0f5 FB |
443 | } |
444 | ||
445 | function handler_ajax_secteur(&$page, $id, $sect, $ssect = -1) | |
446 | { | |
46ae38a9 | 447 | header('Content-Type: text/html; charset=utf-8'); |
2dcac0f5 FB |
448 | $res = XDB::iterator("SELECT id, label |
449 | FROM emploi_ss_secteur | |
450 | WHERE secteur = {?}", $sect); | |
451 | $page->changeTpl('profile/jobs.secteur.tpl', NO_SKIN); | |
452 | $page->assign('id', $id); | |
453 | $page->assign('ssecteurs', $res); | |
454 | $page->assign('sel', $ssect); | |
455 | } | |
456 | ||
f25e1a56 FB |
457 | function handler_ajax_skill(&$page, $cat, $id) |
458 | { | |
46ae38a9 | 459 | header('Content-Type: text/html; charset=utf-8'); |
f25e1a56 | 460 | $page->changeTpl('profile/skill.skill.tpl', NO_SKIN); |
f25e1a56 FB |
461 | $page->assign('cat', $cat); |
462 | $page->assign('id', $id); | |
463 | if ($cat == 'competences') { | |
464 | $page->assign('levels', array('initié' => 'initié', | |
465 | 'bonne connaissance' => 'bonne connaissance', | |
466 | 'expert' => 'expert')); | |
467 | } else { | |
468 | $page->assign('levels', array(1 => 'connaissance basique', | |
469 | 2 => 'maîtrise des bases', | |
470 | 3 => 'maîtrise limitée', | |
471 | 4 => 'maîtrise générale', | |
472 | 5 => 'bonne maîtrise', | |
473 | 6 => 'maîtrise complète')); | |
474 | } | |
475 | } | |
476 | ||
9b0fa329 | 477 | function handler_p_orange(&$page) |
478 | { | |
8b1f8e12 | 479 | $page->changeTpl('profile/orange.tpl'); |
9b0fa329 | 480 | |
481 | require_once 'validations.inc.php'; | |
9b0fa329 | 482 | |
08cce2ff | 483 | $res = XDB::query( |
2f678da1 | 484 | "SELECT u.promo, u.promo_sortie |
9b0fa329 | 485 | FROM auth_user_md5 AS u |
cab08090 | 486 | WHERE user_id={?}", S::v('uid')); |
9b0fa329 | 487 | |
2f678da1 | 488 | list($promo, $promo_sortie_old) = $res->fetchOneRow(); |
9b0fa329 | 489 | $page->assign('promo_sortie_old', $promo_sortie_old); |
490 | $page->assign('promo', $promo); | |
491 | ||
492 | if (!Env::has('promo_sortie')) { | |
fd8f77de | 493 | return; |
8827fc52 VZ |
494 | } else { |
495 | S::assert_xsrf_token(); | |
9b0fa329 | 496 | } |
497 | ||
5e2307dc | 498 | $promo_sortie = Env::i('promo_sortie'); |
9b0fa329 | 499 | |
500 | if ($promo_sortie < 1000 || $promo_sortie > 9999) { | |
a7d35093 | 501 | $page->trigError('L\'année de sortie doit être un nombre de quatre chiffres'); |
9b0fa329 | 502 | } |
503 | elseif ($promo_sortie < $promo + 3) { | |
a7d35093 | 504 | $page->trigError('Trop tôt'); |
9b0fa329 | 505 | } |
506 | elseif ($promo_sortie == $promo_sortie_old) { | |
a7d35093 | 507 | $page->trigWarning('Tu appartiens déjà à la promotion correspondante à cette année de sortie.'); |
9b0fa329 | 508 | } |
509 | elseif ($promo_sortie == $promo + 3) { | |
08cce2ff | 510 | XDB::execute( |
e1635d16 | 511 | "UPDATE auth_user_md5 set promo_sortie={?} |
cab08090 | 512 | WHERE user_id={?}", $promo_sortie, S::v('uid')); |
a7d35093 | 513 | $page->trigSuccess('Ton statut "orange" a été supprimé.'); |
9b0fa329 | 514 | $page->assign('promo_sortie_old', $promo_sortie); |
515 | } | |
516 | else { | |
517 | $page->assign('promo_sortie', $promo_sortie); | |
518 | ||
519 | if (Env::has('submit')) { | |
5daf68f6 | 520 | $myorange = new OrangeReq(S::user(), $promo_sortie); |
9b0fa329 | 521 | $myorange->submit(); |
522 | $page->assign('myorange', $myorange); | |
523 | } | |
524 | } | |
9b0fa329 | 525 | } |
526 | ||
2f678da1 | 527 | function handler_referent(&$page, $x = null) |
28e16d4d | 528 | { |
28e16d4d | 529 | require_once 'user.func.inc.php'; |
8b1f8e12 | 530 | $page->changeTpl('profile/fiche_referent.tpl', SIMPLE); |
28e16d4d | 531 | |
b3bf7395 VZ |
532 | $user = User::get($x); |
533 | if ($user == null) { | |
28e16d4d | 534 | return PL_NOT_FOUND; |
535 | } | |
536 | ||
b3bf7395 VZ |
537 | $res = XDB::query("SELECT cv FROM auth_user_md5 WHERE user_id = {?}", $user->id()); |
538 | $cv = $res->fetchOneCell(); | |
28e16d4d | 539 | |
b3bf7395 VZ |
540 | $page->assign_by_ref('user', $user); |
541 | $page->assign('cv', MiniWiki::WikiToHTML($cv, true)); | |
542 | $page->assign('adr_pro', get_user_details_pro($user->id())); | |
28e16d4d | 543 | |
544 | ///// recuperations infos referent | |
545 | ||
546 | //expertise | |
b3bf7395 | 547 | $res = XDB::query("SELECT expertise FROM mentor WHERE uid = {?}", $user->id()); |
28e16d4d | 548 | $page->assign('expertise', $res->fetchOneCell()); |
549 | ||
550 | //secteurs | |
551 | $secteurs = $ss_secteurs = Array(); | |
08cce2ff | 552 | $res = XDB::iterRow( |
28e16d4d | 553 | "SELECT s.label, ss.label |
554 | FROM mentor_secteurs AS m | |
555 | LEFT JOIN emploi_secteur AS s ON(m.secteur = s.id) | |
556 | LEFT JOIN emploi_ss_secteur AS ss ON(m.secteur = ss.secteur AND m.ss_secteur = ss.id) | |
b3bf7395 | 557 | WHERE uid = {?}", $user->id()); |
28e16d4d | 558 | while (list($sec, $ssec) = $res->next()) { |
559 | $secteurs[] = $sec; | |
560 | $ss_secteurs[] = $ssec; | |
561 | } | |
562 | $page->assign_by_ref('secteurs', $secteurs); | |
563 | $page->assign_by_ref('ss_secteurs', $ss_secteurs); | |
564 | ||
565 | //pays | |
08cce2ff | 566 | $res = XDB::query( |
28e16d4d | 567 | "SELECT gp.pays |
568 | FROM mentor_pays AS m | |
569 | LEFT JOIN geoloc_pays AS gp ON(m.pid = gp.a2) | |
b3bf7395 | 570 | WHERE uid = {?}", $user->id()); |
28e16d4d | 571 | $page->assign('pays', $res->fetchColumn()); |
572 | ||
c99ef281 | 573 | $page->addJsLink('close_on_esc.js'); |
28e16d4d | 574 | } |
575 | ||
ff3eb9b7 | 576 | function handler_ref_search(&$page, $action = null, $subaction = null) |
2f678da1 | 577 | { |
8f201b69 FB |
578 | $wp = new PlWikiPage('Docs.Emploi'); |
579 | $wp->buildCache(); | |
580 | ||
46f272fe | 581 | $page->setTitle('Conseil Pro'); |
2f678da1 | 582 | |
2f678da1 | 583 | //recuperation des noms de secteurs |
08cce2ff | 584 | $res = XDB::iterRow("SELECT id, label FROM emploi_secteur"); |
2f678da1 | 585 | $secteurs[''] = ''; |
586 | while (list($tmp_id, $tmp_label) = $res->next()) { | |
587 | $secteurs[$tmp_id] = $tmp_label; | |
588 | } | |
589 | $page->assign_by_ref('secteurs', $secteurs); | |
590 | ||
2f678da1 | 591 | // nb de mentors |
08cce2ff | 592 | $res = XDB::query("SELECT count(*) FROM mentor"); |
2f678da1 | 593 | $page->assign('mentors_number', $res->fetchOneCell()); |
594 | ||
2f678da1 | 595 | // On vient d'un formulaire |
ff3eb9b7 | 596 | $where = array(); |
597 | $pays_sel = XDB::escape(Env::v('pays_sel')); | |
598 | $secteur_sel = XDB::escape(Env::v('secteur')); | |
599 | $ss_secteur_sel = XDB::escape(Env::v('ss_secteur')); | |
600 | $expertise_champ = XDB::escape(Env::v('expertise')); | |
601 | ||
602 | if ($pays_sel != "''") { | |
603 | $where[] = "mp.pid = $pays_sel"; | |
604 | } | |
605 | if ($secteur_sel != "''") { | |
606 | $where[] = "ms.secteur = $secteur_sel"; | |
607 | if ($ss_secteur_sel != "''") { | |
608 | $where[] = "ms.ss_secteur = $ss_secteur_sel"; | |
2f678da1 | 609 | } |
610 | } | |
ff3eb9b7 | 611 | if ($expertise_champ != "''") { |
612 | $where[] = "MATCH(m.expertise) AGAINST($expertise_champ)"; | |
2f678da1 | 613 | } |
614 | ||
615 | if ($where) { | |
616 | $where = join(' AND ', $where); | |
617 | ||
e1635d16 FB |
618 | $set = new UserSet("INNER JOIN mentor AS m ON (m.uid = u.user_id) |
619 | LEFT JOIN mentor_pays AS mp ON (mp.uid = m.uid) | |
ff3eb9b7 | 620 | LEFT JOIN mentor_secteurs AS ms ON (ms.uid = m.uid)", |
621 | $where); | |
622 | $set->addMod('mentor', 'Référents'); | |
623 | $set->apply('referent/search', $page, $action, $subaction); | |
624 | if ($set->count() > 100) { | |
e1635d16 | 625 | $page->assign('recherche_trop_large', true); |
2f678da1 | 626 | } |
ff3eb9b7 | 627 | } |
e1635d16 | 628 | $page->changeTpl('profile/referent.tpl'); |
ff3eb9b7 | 629 | } |
2f678da1 | 630 | |
e1635d16 | 631 | function handler_ref_sect(&$page, $sect) |
ff3eb9b7 | 632 | { |
633 | header('Content-Type: text/html; charset=utf-8'); | |
05cb05c0 | 634 | $page->changeTpl('include/field.select.tpl', NO_SKIN); |
ff3eb9b7 | 635 | $page->assign('onchange', 'setSSecteurs()'); |
636 | $page->assign('id', 'ssect_field'); | |
637 | $page->assign('name', 'ss_secteur'); | |
638 | $it = XDB::iterator("SELECT id,label AS field | |
e1635d16 | 639 | FROM emploi_ss_secteur |
ff3eb9b7 | 640 | WHERE secteur = {?}", $sect); |
641 | $page->assign('list', $it); | |
642 | } | |
2f678da1 | 643 | |
ff3eb9b7 | 644 | function handler_ref_country(&$page, $sect, $ssect = '') |
645 | { | |
646 | header('Content-Type: text/html; charset=utf-8'); | |
05cb05c0 | 647 | $page->changeTpl('include/field.select.tpl', NO_SKIN); |
ff3eb9b7 | 648 | $page->assign('name', 'pays_sel'); |
649 | $where = ($ssect ? ' AND ms.ss_secteur = {?}' : ''); | |
650 | $it = XDB::iterator("SELECT a2 AS id, pays AS field | |
651 | FROM geoloc_pays AS g | |
652 | INNER JOIN mentor_pays AS mp ON (mp.pid = g.a2) | |
653 | INNER JOIN mentor_secteurs AS ms ON (ms.uid = mp.uid) | |
654 | WHERE ms.secteur = {?} $where | |
655 | GROUP BY a2 | |
656 | ORDER BY pays", $sect, $ssect); | |
657 | $page->assign('list', $it); | |
2f678da1 | 658 | } |
659 | ||
926f16d7 | 660 | function handler_p_usage(&$page) |
661 | { | |
8b1f8e12 | 662 | $page->changeTpl('profile/nomusage.tpl'); |
926f16d7 | 663 | |
664 | require_once 'validations.inc.php'; | |
926f16d7 | 665 | |
08cce2ff | 666 | $res = XDB::query( |
2f678da1 | 667 | "SELECT u.nom, u.nom_usage, u.flags, e.alias |
926f16d7 | 668 | FROM auth_user_md5 AS u |
2f678da1 | 669 | LEFT JOIN aliases AS e ON(u.user_id = e.id |
670 | AND FIND_IN_SET('usage', e.flags)) | |
cab08090 | 671 | WHERE user_id={?}", S::v('uid')); |
926f16d7 | 672 | |
2f678da1 | 673 | list($nom, $usage_old, $flags, $alias_old) = $res->fetchOneRow(); |
113f6de8 | 674 | $flags = new PlFlagSet($flags); |
926f16d7 | 675 | $page->assign('usage_old', $usage_old); |
676 | $page->assign('alias_old', $alias_old); | |
677 | ||
a953f7e7 | 678 | $nom_usage = mb_strtoupper(trim(Env::v('nom_usage'))); |
926f16d7 | 679 | $page->assign('usage_req', $nom_usage); |
680 | ||
681 | if (Env::has('submit') && ($nom_usage != $usage_old)) { | |
8827fc52 VZ |
682 | S::assert_xsrf_token(); |
683 | ||
926f16d7 | 684 | // on vient de recevoir une requete, differente de l'ancien nom d'usage |
685 | if ($nom_usage == $nom) { | |
44b071c2 SJ |
686 | $page->trigWarning('Le nom d\'usage que tu demandes est identique à ton nom à l\'X, ' |
687 | . 'aucune modification n\'a donc été effectuée.'); | |
926f16d7 | 688 | $page->assign('same', true); |
a7de4ef7 | 689 | } else { // le nom de mariage est distinct du nom à l'X |
926f16d7 | 690 | // on calcule l'alias pour l'afficher |
5e2307dc | 691 | $reason = Env::v('reason'); |
926f16d7 | 692 | if ($reason == 'other') { |
5e2307dc | 693 | $reason = Env::v('other_reason'); |
926f16d7 | 694 | } |
5daf68f6 | 695 | $myusage = new UsageReq(S::user(), $nom_usage, $reason); |
926f16d7 | 696 | $myusage->submit(); |
697 | $page->assign('myusage', $myusage); | |
698 | } | |
699 | } | |
926f16d7 | 700 | } |
701 | ||
a1d79217 | 702 | function handler_xnet(&$page) |
703 | { | |
8b1f8e12 | 704 | $page->changeTpl('profile/groupesx.tpl'); |
46f272fe | 705 | $page->setTitle('Promo, Groupes X, Binets'); |
e1635d16 | 706 | |
a1d79217 | 707 | $req = XDB::query(' |
e1635d16 | 708 | SELECT m.asso_id, a.nom, diminutif, a.logo IS NOT NULL AS has_logo, |
46e1d3ba | 709 | COUNT(e.eid) AS events, mail_domain AS lists |
e1635d16 | 710 | FROM groupex.membres AS m |
46e1d3ba | 711 | INNER JOIN groupex.asso AS a ON(m.asso_id = a.id) |
712 | LEFT JOIN groupex.evenements AS e ON(e.asso_id = m.asso_id AND e.archive = 0) | |
713 | WHERE uid = {?} GROUP BY m.asso_id ORDER BY a.nom', S::i('uid')); | |
a1d79217 | 714 | $page->assign('assos', $req->fetchAllAssoc()); |
715 | } | |
e1635d16 | 716 | |
23fb3e6f SJ |
717 | function handler_xnetlogo(&$page, $id) |
718 | { | |
719 | if (is_null($id)) { | |
720 | return PL_NOT_FOUND; | |
721 | } | |
722 | ||
723 | $res = XDB::query('SELECT logo, logo_mime | |
724 | FROM groupex.asso | |
725 | WHERE id = {?}', $id); | |
726 | list($logo, $logo_mime) = $res->fetchOneRow(); | |
727 | ||
728 | if (!empty($logo)) { | |
729 | header("Content-type: $mime"); | |
730 | echo $logo; | |
731 | } else { | |
732 | header('Content-type: image/jpeg'); | |
733 | readfile(dirname(__FILE__) . '/../htdocs/images/dflt_carre.jpg'); | |
734 | } | |
735 | ||
736 | exit; | |
737 | } | |
738 | ||
e49018a7 | 739 | function handler_vcard(&$page, $x = null) |
740 | { | |
741 | if (is_null($x)) { | |
742 | return PL_NOT_FOUND; | |
743 | } | |
744 | ||
745 | global $globals; | |
746 | ||
747 | if (substr($x, -4) == '.vcf') { | |
748 | $x = substr($x, 0, strlen($x) - 4); | |
749 | } | |
750 | ||
5d42c993 FB |
751 | $vcard = new VCard(); |
752 | $vcard->addUser($x); | |
753 | $vcard->show(); | |
e49018a7 | 754 | } |
92423144 | 755 | |
54cabe90 | 756 | function handler_admin_trombino(&$page, $login = null, $action = null) { |
8b1f8e12 | 757 | $page->changeTpl('profile/admin_trombino.tpl'); |
46f272fe | 758 | $page->setTitle('Administration - Trombino'); |
e1635d16 | 759 | |
54cabe90 VZ |
760 | if (!$login || !($user = User::get($login))) { |
761 | return PL_NOT_FOUND; | |
762 | } else { | |
763 | $page->assign_by_ref('user', $user); | |
764 | } | |
e1635d16 | 765 | |
92423144 | 766 | switch ($action) { |
92423144 | 767 | case "original": |
768 | header("Content-type: image/jpeg"); | |
54cabe90 | 769 | readfile("/home/web/trombino/photos" . $user->promo() . "/" . $user->login() . ".jpg"); |
92423144 | 770 | exit; |
771 | break; | |
e1635d16 | 772 | |
92423144 | 773 | case "new": |
8827fc52 VZ |
774 | S::assert_xsrf_token(); |
775 | ||
92423144 | 776 | $data = file_get_contents($_FILES['userfile']['tmp_name']); |
777 | list($x, $y) = getimagesize($_FILES['userfile']['tmp_name']); | |
778 | $mimetype = substr($_FILES['userfile']['type'], 6); | |
779 | unlink($_FILES['userfile']['tmp_name']); | |
780 | XDB::execute( | |
781 | "REPLACE INTO photo SET uid={?}, attachmime = {?}, attach={?}, x={?}, y={?}", | |
54cabe90 | 782 | $user->id(), $mimetype, $data, $x, $y); |
92423144 | 783 | break; |
e1635d16 | 784 | |
92423144 | 785 | case "delete": |
8827fc52 VZ |
786 | S::assert_xsrf_token(); |
787 | ||
54cabe90 | 788 | XDB::execute('DELETE FROM photo WHERE uid = {?}', $user->id()); |
92423144 | 789 | break; |
790 | } | |
92423144 | 791 | } |
792 | function handler_admin_binets(&$page, $action = 'list', $id = null) { | |
46f272fe | 793 | $page->setTitle('Administration - Binets'); |
92423144 | 794 | $page->assign('title', 'Gestion des binets'); |
795 | $table_editor = new PLTableEditor('admin/binets', 'binets_def', 'id'); | |
796 | $table_editor->add_join_table('binets_ins','binet_id',true); | |
a7de4ef7 | 797 | $table_editor->describe('text','intitulé',true); |
92423144 | 798 | $table_editor->apply($page, $action, $id); |
799 | } | |
800 | function handler_admin_formations(&$page, $action = 'list', $id = null) { | |
46f272fe | 801 | $page->setTitle('Administration - Formations'); |
92423144 | 802 | $page->assign('title', 'Gestion des formations'); |
803 | $table_editor = new PLTableEditor('admin/formations','applis_def','id'); | |
e1635d16 | 804 | $table_editor->add_join_table('applis_ins','aid',true); |
a7de4ef7 | 805 | $table_editor->describe('text','intitulé',true); |
92423144 | 806 | $table_editor->describe('url','site web',false); |
807 | $table_editor->apply($page, $action, $id); | |
e1635d16 | 808 | } |
b09690be | 809 | function handler_admin_sections(&$page, $action = 'list', $id = null) { |
46f272fe | 810 | $page->setTitle('Administration - Sections'); |
a20aab02 | 811 | $page->assign('title', 'Gestion des sections'); |
b09690be | 812 | $table_editor = new PLTableEditor('admin/sections','sections','id'); |
813 | $table_editor->describe('text','intitulé',true); | |
814 | $table_editor->apply($page, $action, $id); | |
e1635d16 | 815 | } |
a20aab02 | 816 | function handler_admin_ss_secteurs(&$page, $action = 'list', $id = null) { |
46f272fe | 817 | $page->setTitle('Administration - Sous-secteurs'); |
a20aab02 SJ |
818 | $page->assign('title', 'Gestion des sous-secteurs'); |
819 | $table_editor = new PLTableEditor('admin/ss_secteurs', 'emploi_ss_secteur', 'id', true); | |
820 | $table_editor->describe('label', 'intitulé', true); | |
821 | $table_editor->apply($page, $action, $id); | |
822 | } | |
823 | function handler_admin_fonctions(&$page, $action = 'list', $id = null) { | |
46f272fe | 824 | $page->setTitle('Administration - Fonctions'); |
a20aab02 SJ |
825 | $page->assign('title', 'Gestion des fonctions'); |
826 | $table_editor = new PLTableEditor('admin/fonctions', 'fonctions_def', 'id', true); | |
827 | $table_editor->describe('fonction_fr', 'intitulé', true); | |
828 | $table_editor->describe('fonction_en', 'intitulé (ang)', true); | |
829 | $table_editor->describe('flags', 'titre', true); | |
830 | $table_editor->apply($page, $action, $id); | |
831 | } | |
b09690be | 832 | function handler_admin_secteurs(&$page, $action = 'list', $id = null) { |
46f272fe | 833 | $page->setTitle('Administration - Secteurs'); |
a20aab02 SJ |
834 | $page->assign('title', 'Gestion des secteurs'); |
835 | $table_editor = new PLTableEditor('admin/secteurs', 'emploi_secteur', 'id', true); | |
836 | $table_editor->describe('label', 'intitulé', true); | |
b09690be | 837 | $table_editor->apply($page, $action, $id); |
e1635d16 | 838 | } |
92423144 | 839 | function handler_admin_medals(&$page, $action = 'list', $id = null) { |
46f272fe | 840 | $page->setTitle('Administration - Distinctions'); |
92423144 | 841 | $page->assign('title', 'Gestion des Distinctions'); |
842 | $table_editor = new PLTableEditor('admin/medals','profile_medals','id'); | |
a7de4ef7 | 843 | $table_editor->describe('text', 'intitulé', true); |
92423144 | 844 | $table_editor->describe('img', 'nom de l\'image', false); |
d02b8359 | 845 | $table_editor->describe('flags', 'valider', true); |
92423144 | 846 | $table_editor->apply($page, $action, $id); |
847 | if ($id && $action == 'edit') { | |
8b1f8e12 | 848 | $page->changeTpl('profile/admin_decos.tpl'); |
e1635d16 | 849 | |
92423144 | 850 | $mid = $id; |
e1635d16 | 851 | |
92423144 | 852 | if (Post::v('act') == 'del') { |
75a17710 FB |
853 | XDB::execute('DELETE FROM profile_medals_grades |
854 | WHERE mid={?} AND gid={?}', $mid, Post::i('gid')); | |
92423144 | 855 | } else { |
856 | foreach (Post::v('grades', array()) as $gid=>$text) { | |
154ee23a OLF |
857 | if ($gid === 0) { |
858 | if (!empty($text)) { | |
859 | $res = XDB::query('SELECT MAX(gid) | |
860 | FROM profile_medals_grades | |
861 | WHERE mid = {?}', $mid); | |
862 | $gid = $res->fetchOneCell() + 1; | |
863 | ||
864 | XDB::execute('INSERT INTO profile_medals_grades (mid, gid, text, pos) | |
865 | VALUES ({?}, {?}, {?}, {?})', | |
866 | $mid, $gid, $text, $_POST['pos']['0']); | |
867 | } | |
868 | } else { | |
869 | XDB::execute('UPDATE profile_medals_grades | |
870 | SET pos={?}, text={?} | |
871 | WHERE gid={?} AND mid={?}', $_POST['pos'][$gid], $text, $gid, $mid); | |
872 | } | |
92423144 | 873 | } |
874 | } | |
875 | $res = XDB::iterator('SELECT gid, text, pos FROM profile_medals_grades WHERE mid={?} ORDER BY pos', $mid); | |
876 | $page->assign('grades', $res); | |
877 | } | |
e1635d16 | 878 | } |
7d8b17cb | 879 | } |
880 | ||
a7de4ef7 | 881 | // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: |
7d8b17cb | 882 | ?> |