2 /***************************************************************************
3 * Copyright (C) 2003-2007 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
22 function gpex_prepare_param($name, $val, &$to_hash, $charset)
24 $val = iconv('UTF-8', $charset, $val);
26 return '&' . $name . '=' . urlencode($val);
29 function gpex_make($chlg, $privkey, $datafields, $charset)
31 $tohash = "1$chlg$privkey";
33 $fieldarr = explode(',', $datafields);
35 $res = XDB
::query("SELECT matricule, matricule_ax, promo,
36 promo_sortie, flags, deces, nom,
37 prenom, nationalite, section,
39 FROM auth_user_md5 WHERE user_id = {?}",
41 $personnal_data = $res->fetchOneAssoc();
43 foreach ($fieldarr as $val) {
44 /* on verifie qu'on n'a pas demandé une variable inexistante ! */
46 $params .= gpex_prepare_param($val, S
::v($val), $tohash, $charset);
47 } else if (isset($personnal_data[$val])) {
48 $params .= gpex_prepare_param($val, $personnal_data[$val], $tohash, $charset);
49 } else if ($val == 'username') {
50 $res = XDB
::query("SELECT alias FROM aliases
51 WHERE id = {?} AND FIND_IN_SET('bestalias', flags)",
53 $min_username = $res->fetchOneCell();
54 $params .= gpex_prepare_param($val, $min_username, $tohash, $charset);
55 } else if ($val == 'grpauth') {
56 if (isset($_GET['group'])) {
57 $res = XDB
::query("SELECT perms
59 INNER JOIN groupex.asso ON(id = asso_id)
60 WHERE uid = {?} AND diminutif = {?}",
61 S
::v('uid'), $_GET['group']);
62 $perms = $res->fetchOneCell();
64 // if no group asked, return main rights
65 $perms = Session
::has_perms()?
'admin':'membre';
67 $params .= gpex_prepare_param($val, $perms, $tohash, $charset);
72 return array($auth, "&auth=" . $auth . $params);
75 /* cree les parametres de l'URL de retour avec les champs demandes */
76 function gpex_make_params($chlg, $privkey, $datafields, $charset)
78 list ($auth, $param) = gpex_make($chlg, $privkey, $datafields, $charset);
82 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: