projects / platal.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Fix 'perms' field in auth groupex
[platal.git] / modules / events.php
1 <?php
2 /***************************************************************************
3 * Copyright (C) 2003-2008 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
22 class EventsModule extends PLModule
23 {
24 function handlers()
25 {
26 return array(
27 'events' => $this->make_hook('ev', AUTH_COOKIE),
28 'rss' => $this->make_hook('rss', AUTH_PUBLIC, 'user', NO_HTTPS),
29 'events/preview' => $this->make_hook('preview', AUTH_PUBLIC, 'user', NO_AUTH),
30 'events/photo' => $this->make_hook('photo', AUTH_PUBLIC),
31 'events/submit' => $this->make_hook('ev_submit', AUTH_MDP),
32 'admin/events' => $this->make_hook('admin_events', AUTH_MDP, 'admin'),
33
34 'ajax/tips' => $this->make_hook('tips', AUTH_COOKIE, 'user', NO_AUTH),
35 'admin/tips' => $this->make_hook('admin_tips', AUTH_MDP, 'admin'),
36 );
37 }
38
39 private function get_tips($exclude = null)
40 {
41 global $globals;
42 // Add a new special tip when changing plat/al version
43 if ($globals->version != S::v('last_version') && is_null($exclude)) {
44 XDB::execute('UPDATE auth_user_quick
45 SET last_version = {?}
46 WHERE user_id = {?}',
47 $globals->version, S::i('uid'));
48 return array('id' => 0,
49 'titre' => 'Bienvenue sur la nouvelle version du site !',
50 'text' => 'Le site a été mis à jour depuis ta dernière visite vers la version ' . $globals->version
51 . '.<br /> Nous t\'invitons à <a href="review">faire un tour d\'horizon des '
52 . 'nouveautés</a>.<br /><br />'
53 . 'Tu peux également retrouver ces informations sur <a href="banana/xorg.m4x.innovation">'
54 . 'les fora</a>, ou sur <a href="changelog">la liste exhaustive des modifications</a>.',
55 'priorite' => 255,
56 'promo_min' => 0,
57 'promo_max' => 0,
58 'state' => 'active',
59 'special' => true);
60 }
61
62 $exclude = is_null($exclude) ? '' : ' AND id != ' . $exclude . ' ';
63 $priority = rand(0, 510);
64 do {
65 $priority = (int)($priority/2);
66 $res = XDB::query("SELECT *
67 FROM tips
68 WHERE (peremption = '0000-00-00' OR peremption > CURDATE())
69 AND (promo_min = 0 OR promo_min <= {?})
70 AND (promo_max = 0 OR promo_max >= {?})
71 AND (priorite >= {?})
72 AND (state = 'active')
73 $exclude
74 ORDER BY RAND()
75 LIMIT 1",
76 S::i('promo'), S::i('promo'), $priority);
77 } while ($priority && !$res->numRows());
78 if (!$res->numRows()) {
79 return null;
80 }
81 return $res->fetchOneAssoc();
82 }
83
84 private function upload_image(PlatalPage &$page, PlUpload &$upload)
85 {
86 if (@!$_FILES['image']['tmp_name'] && !Env::v('image_url')) {
87 return true;
88 }
89 if (!$upload->upload($_FILES['image']) && !$upload->download(Env::v('image_url'))) {
90 $page->trig('Impossible de télécharger l\'image');
91 return false;
92 } elseif (!$upload->isType('image')) {
93 $page->trig('Le fichier n\'est pas une image valide au format JPEG, GIF ou PNG.');
94 $upload->rm();
95 return false;
96 } elseif (!$upload->resizeImage(200, 300, 100, 100, 32284)) {
97 $page->trig('Impossible de retraiter l\'image');
98 return false;
99 }
100 return true;
101 }
102
103 function handler_ev(&$page, $action = 'list', $eid = null, $pound = null)
104 {
105 $page->changeTpl('events/index.tpl');
106 $page->addJsLink('ajax.js');
107 $page->assign('tips', $this->get_tips());
108
109 $res = XDB::query('SELECT date, naissance FROM auth_user_md5
110 WHERE user_id={?}', S::v('uid'));
111 list($date, $naissance) = $res->fetchOneRow();
112
113 // incitation à mettre à jour la fiche
114
115 $d2 = mktime(0, 0, 0, substr($date, 5, 2), substr($date, 8, 2),
116 substr($date, 0, 4));
117 if( (time() - $d2) > 60 * 60 * 24 * 400 ) {
118 // si fiche date de + de 400j;
119 $page->assign('fiche_incitation', $date);
120 }
121
122 // Souhaite bon anniversaire
123
124 if (substr($naissance, 5) == date('m-d')) {
125 $page->assign('birthday', date('Y') - substr($naissance, 0, 4));
126 }
127
128 // incitation à mettre une photo
129
130 $res = XDB::query('SELECT COUNT(*) FROM photo
131 WHERE uid={?}', S::v('uid'));
132 $page->assign('photo_incitation', $res->fetchOneCell() == 0);
133
134 // Incitation à se géolocaliser
135 require_once 'geoloc.inc.php';
136 $res = localize_addresses(S::v('uid', -1));
137 $page->assign('geoloc_incitation', count($res));
138
139 // ajout du lien RSS
140 if (S::has('core_rss_hash')) {
141 $page->setRssLink('Polytechnique.org :: News',
142 '/rss/'.S::v('forlife') .'/'.S::v('core_rss_hash').'/rss.xml');
143 }
144
145 // cache les evenements lus et raffiche les evenements a relire
146 if ($action == 'read' && $eid) {
147 XDB::execute('DELETE evenements_vus.*
148 FROM evenements_vus AS ev
149 INNER JOIN evenements AS e ON e.id = ev.evt_id
150 WHERE peremption < NOW()');
151 XDB::execute('REPLACE INTO evenements_vus VALUES({?},{?})',
152 $eid, S::v('uid'));
153 pl_redirect('events#'.$pound);
154 }
155
156 if ($action == 'unread' && $eid) {
157 XDB::execute('DELETE FROM evenements_vus
158 WHERE evt_id = {?} AND user_id = {?}',
159 $eid, S::v('uid'));
160 pl_redirect('events#newsid'.$eid);
161 }
162
163 $array = array();
164 $it = XDB::iterator("SELECT e.id,e.titre,e.texte,e.post_id,a.user_id,a.nom,a.prenom,a.promo,l.alias AS forlife,
165 p.x, p.y, p.attach IS NOT NULL AS img, FIND_IN_SET('wiki', e.flags) AS wiki,
166 FIND_IN_SET('important', e.flags) AS important,
167 e.creation_date > DATE_SUB(CURDATE(), INTERVAL 2 DAY) AS news,
168 e.peremption < DATE_ADD(CURDATE(), INTERVAL 2 DAY) AS end,
169 ev.user_id IS NULL AS nonlu
170 FROM evenements AS e
171 LEFT JOIN evenements_photo AS p ON (e.id = p.eid)
172 INNER JOIN auth_user_md5 AS a ON e.user_id=a.user_id
173 INNER JOIN aliases AS l ON ( a.user_id=l.id AND l.type='a_vie' )
174 LEFT JOIN evenements_vus AS ev ON (e.id = ev.evt_id AND ev.user_id = {?})
175 WHERE FIND_IN_SET('valide', e.flags) AND peremption >= NOW()
176 AND (e.promo_min = 0 || e.promo_min <= {?})
177 AND (e.promo_max = 0 || e.promo_max >= {?})
178 ORDER BY important DESC, news DESC, end DESC, e.peremption, e.creation_date DESC",
179 S::i('uid'), S::i('promo'), S::i('promo'));
180 $cats = array('important', 'news', 'end', 'body');
181 $body = $it->next();
182 foreach ($cats as $cat) {
183 $data = array();
184 if (!$body) {
185 continue;
186 }
187 do {
188 if ($cat == 'body' || $body[$cat]) {
189 $data[] = $body;
190 } else {
191 break;
192 }
193 $body = $it->next();
194 } while ($body);
195 if (!empty($data)) {
196 $array[$cat] = $data;
197 }
198 }
199 $page->assign_by_ref('events', $array);
200 }
201
202 function handler_photo(&$page, $eid = null, $valid = null)
203 {
204 if ($eid && $eid != 'valid') {
205 $res = XDB::query("SELECT * FROM evenements_photo WHERE eid = {?}", $eid);
206 if ($res->numRows()) {
207 $photo = $res->fetchOneAssoc();
208 header('Content-Type: image/' . $photo['attachmime']);
209 echo $photo['attach'];
210 exit;
211 }
212 } elseif ($eid == 'valid') {
213 require_once 'validations.inc.php';
214 $valid = Validate::get_request_by_id($valid);
215 if ($valid && $valid->img) {
216 header('Content-Type: image/' . $valid->imgtype);
217 echo $valid->img;
218 exit;
219 }
220 } else {
221 $upload = new PlUpload(S::v('forlife'), 'event');
222 if ($upload->exists() && $upload->isType('image')) {
223 header('Content-Type: ' . $upload->contentType());
224 echo $upload->getContents();
225 exit;
226 }
227 }
228 global $globals;
229 header('Content-Type: image/png');
230 echo file_get_contents($globals->spoolroot . '/htdocs/images/logo.png');
231 exit;
232 }
233
234 function handler_rss(&$page, $user = null, $hash = null)
235 {
236 require_once 'rss.inc.php';
237
238 $uid = init_rss('events/rss.tpl', $user, $hash);
239
240 $rss = XDB::iterator(
241 'SELECT e.id, e.titre, e.texte, e.creation_date, e.post_id, p.attachmime IS NOT NULL AS photo,
242 IF(u2.nom_usage = "", u2.nom, u2.nom_usage) AS nom, u2.prenom, u2.promo,
243 FIND_IN_SET(\'wiki\', e.flags) AS wiki
244 FROM auth_user_md5 AS u
245 INNER JOIN evenements AS e ON ( (e.promo_min = 0 || e.promo_min <= u.promo)
246 AND (e.promo_max = 0 || e.promo_max >= u.promo) )
247 LEFT JOIN evenements_photo AS p ON (p.eid = e.id)
248 INNER JOIN auth_user_md5 AS u2 ON (u2.user_id = e.user_id)
249 WHERE u.user_id = {?} AND FIND_IN_SET("valide", e.flags)
250 AND peremption >= NOW()', $uid);
251 $page->assign('rss', $rss);
252 }
253
254 function handler_preview(&$page)
255 {
256 $page->changeTpl('events/preview.tpl', NO_SKIN);
257 $texte = Get::v('texte');
258 if (!is_utf8($texte)) {
259 $texte = utf8_encode($texte);
260 }
261 $titre = Get::v('titre');
262 if (!is_utf8($titre)) {
263 $titre = utf8_encode($titre);
264 }
265 $page->assign('texte', $texte);
266 $page->assign('titre', $titre);
267 header('Content-Type: text/html; charset=utf-8');
268 }
269
270 function handler_ev_submit(&$page)
271 {
272 $page->changeTpl('events/submit.tpl');
273 $page->addJsLink('ajax.js');
274
275 require_once('wiki.inc.php');
276 wiki_require_page('Xorg.Annonce');
277
278 $titre = Post::v('titre');
279 $texte = Post::v('texte');
280 $promo_min = Post::i('promo_min');
281 $promo_max = Post::i('promo_max');
282 $peremption = Post::i('peremption');
283 $valid_mesg = Post::v('valid_mesg');
284 $action = Post::v('action');
285 $upload = new PlUpload(S::v('forlife'), 'event');
286 $this->upload_image($page, $upload);
287
288 if (($promo_min > $promo_max && $promo_max != 0)||
289 ($promo_min != 0 && ($promo_min <= 1900 || $promo_min >= 2020)) ||
290 ($promo_max != 0 && ($promo_max <= 1900 || $promo_max >= 2020)))
291 {
292 $page->trig("L'intervalle de promotions n'est pas valide");
293 $action = null;
294 }
295
296 $page->assign('titre', $titre);
297 $page->assign('texte', $texte);
298 $page->assign('promo_min', $promo_min);
299 $page->assign('promo_max', $promo_max);
300 $page->assign('peremption', $peremption);
301 $page->assign('valid_mesg', $valid_mesg);
302 $page->assign('action', strtolower($action));
303 $page->assign_by_ref('upload', $upload);
304
305 if ($action == 'Supprimer l\'image') {
306 $upload->rm();
307 $page->assign('action', false);
308 } elseif ($action && (!trim($texte) || !trim($titre))) {
309 $page->trig("L'article doit avoir un titre et un contenu");
310 } elseif ($action) {
311 require_once 'validations.inc.php';
312 $evtreq = new EvtReq($titre, $texte, $promo_min, $promo_max,
313 $peremption, $valid_mesg, S::v('uid'), $upload);
314 $evtreq->submit();
315 $page->assign('ok', true);
316 } elseif (!Env::v('preview')) {
317 $upload->rm();
318 }
319 }
320
321 function handler_tips(&$page, $tips = null)
322 {
323 header('Content-Type: text/html; charset="UTF-8"');
324 $page->changeTpl('include/tips.tpl', NO_SKIN);
325 $page->assign('tips', $this->get_tips($tips));
326 }
327
328 function handler_admin_tips(&$page, $action = 'list', $id = null)
329 {
330 $page->assign('xorg_title', 'Polytechnique.org - Administration - Astuces');
331 $page->assign('title', 'Gestion des Astuces');
332 $table_editor = new PLTableEditor('admin/tips', 'tips', 'id');
333 $table_editor->describe('peremption', 'date de péremption', true);
334 $table_editor->describe('promo_min', 'promo. min (0 aucune)', false);
335 $table_editor->describe('promo_max', 'promo. max (0 aucune)', false);
336 $table_editor->describe('titre', 'titre', true);
337 $table_editor->describe('state', 'actif', true);
338 $table_editor->describe('text', 'texte (html) de l\'astuce', false);
339 $table_editor->describe('priorite', '0<=priorité<=255', true);
340 $table_editor->list_on_edit(false);
341 $table_editor->apply($page, $action, $id);
342 if (($action == 'edit' && !is_null($id)) || $action == 'update') {
343 $page->changeTpl('events/admin_tips.tpl');
344 }
345 }
346
347 function handler_admin_events(&$page, $action = 'list', $eid = null)
348 {
349 $page->changeTpl('events/admin.tpl');
350 $page->addJsLink('ajax.js');
351 $page->assign('xorg_title','Polytechnique.org - Administration - Evenements');
352 $page->register_modifier('hde', 'html_entity_decode');
353
354 $arch = $action == 'archives';
355 $page->assign('action', $action);
356
357 $upload = new PlUpload(S::v('forlife'), 'event');
358 if ((Env::has('preview') || Post::v('action') == "Proposer") && $eid) {
359 $action = 'edit';
360 $this->upload_image($page, $upload);
361 }
362
363 if (Post::v('action') == 'Pas d\'image' && $eid) {
364 $upload->rm();
365 XDB::execute("DELETE FROM evenements_photo WHERE eid = {?}", $eid);
366 $action = 'edit';
367 } elseif (Post::v('action') == 'Supprimer l\'image' && $eid) {
368 $upload->rm();
369 $action = 'edit';
370 } elseif (Post::v('action') == "Proposer" && $eid) {
371 $promo_min = Post::i('promo_min');
372 $promo_max = Post::i('promo_max');
373 if (($promo_min != 0 && ($promo_min <= 1900 || $promo_min >= 2020)) ||
374 ($promo_max != 0 && ($promo_max <= 1900 || $promo_max >= 2020 || $promo_max < $promo_min)))
375 {
376 $page->trig("L'intervalle de promotions $promo_min -> $promo_max n'est pas valide");
377 $action = 'edit';
378 } else {
379 $res = XDB::query('SELECT flags FROM evenements WHERE id = {?}', $eid);
380 $flags = new FlagSet($res->fetchOneCell());
381 $flags->addFlag('wiki');
382 if (Post::v('important')) {
383 $flags->addFlag('important');
384 } else {
385 $flags->rmFlag('important');
386 }
387
388 XDB::execute('UPDATE evenements
389 SET creation_date = creation_date,
390 titre={?}, texte={?}, peremption={?}, promo_min={?}, promo_max={?},
391 flags = {?}
392 WHERE id = {?}',
393 Post::v('titre'), Post::v('texte'), Post::v('peremption'),
394 Post::v('promo_min'), Post::v('promo_max'),
395 $flags->flags(), $eid);
396 if ($upload->exists() && list($x, $y, $type) = $upload->imageInfo()) {
397 XDB::execute('REPLACE INTO evenements_photo
398 SET eid = {?}, attachmime = {?}, x = {?}, y = {?}, attach = {?}',
399 $eid, $type, $x, $y, $upload->getContents());
400 $upload->rm();
401 }
402 }
403 }
404
405 if ($action == 'edit') {
406 $res = XDB::query('SELECT titre, texte, peremption, promo_min, promo_max, FIND_IN_SET(\'important\', flags),
407 attach IS NOT NULL
408 FROM evenements AS e
409 LEFT JOIN evenements_photo AS p ON(e.id = p.eid)
410 WHERE id={?}', $eid);
411 list($titre, $texte, $peremption, $promo_min, $promo_max, $important, $img) = $res->fetchOneRow();
412 $page->assign('titre',$titre);
413 $page->assign('texte',$texte);
414 $page->assign('promo_min',$promo_min);
415 $page->assign('promo_max',$promo_max);
416 $page->assign('peremption',$peremption);
417 $page->assign('important', $important);
418 $page->assign('eid', $eid);
419 $page->assign('img', $img);
420 $page->assign_by_ref('upload', $upload);
421
422 $select = "";
423 for ($i = 1 ; $i < 30 ; $i++) {
424 $p_stamp=date("Ymd",time()+3600*24*$i);
425 $year=substr($p_stamp,0,4);
426 $month=substr($p_stamp,4,2);
427 $day=substr($p_stamp,6,2);
428
429 $select .= "<option value=\"$p_stamp\""
430 . (($p_stamp == strtr($peremption, array("-" => ""))) ? " selected" : "")
431 . "> $day / $month / $year</option>\n";
432 }
433 $page->assign('select',$select);
434 } else {
435 switch ($action) {
436 case 'delete':
437 XDB::execute('DELETE from evenements
438 WHERE id = {?}', $eid);
439 break;
440
441 case "archive":
442 XDB::execute('UPDATE evenements
443 SET creation_date = creation_date, flags = CONCAT(flags,",archive")
444 WHERE id = {?}', $eid);
445 break;
446
447 case "unarchive":
448 XDB::execute('UPDATE evenements
449 SET creation_date = creation_date, flags = REPLACE(flags,"archive","")
450 WHERE id = {?}', $eid);
451 $action = 'archives';
452 $arch = true;
453 break;
454
455 case "valid":
456 XDB::execute('UPDATE evenements
457 SET creation_date = creation_date, flags = CONCAT(flags,",valide")
458 WHERE id = {?}', $eid);
459 break;
460
461 case "unvalid":
462 XDB::execute('UPDATE evenements
463 SET creation_date = creation_date, flags = REPLACE(flags,"valide", "")
464 WHERE id = {?}', $eid);
465 break;
466 }
467
468 $pid = ($eid && $action == 'preview') ? $eid : -1;
469 $sql = "SELECT e.id, e.titre, e.texte,e.id = $pid AS preview,
470 DATE_FORMAT(e.creation_date,'%d/%m/%Y %T') AS creation_date,
471 DATE_FORMAT(e.peremption,'%d/%m/%Y') AS peremption,
472 e.promo_min, e.promo_max,
473 FIND_IN_SET('valide', e.flags) AS fvalide,
474 FIND_IN_SET('archive', e.flags) AS farch,
475 u.promo, u.nom, u.prenom, a.alias AS forlife,
476 FIND_IN_SET('wiki', e.flags) AS wiki
477 FROM evenements AS e
478 INNER JOIN auth_user_md5 AS u ON(e.user_id = u.user_id)
479 INNER JOIN aliases AS a ON (u.user_id = a.id AND a.type='a_vie')
480 WHERE ".($arch ? "" : "!")."FIND_IN_SET('archive',e.flags)
481 ORDER BY FIND_IN_SET('valide',e.flags), e.peremption DESC";
482 $page->assign('evs', XDB::iterator($sql));
483 }
484 $page->assign('arch', $arch);
485 $page->assign('admin_evts', true);
486 }
487 }
488
489 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
490 ?>
plat/al