projects / platal.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Auto-redirects HTML pages to HTTPS
[platal.git] / modules / events.php
1 <?php
2 /***************************************************************************
3 * Copyright (C) 2003-2007 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
22 class EventsModule extends PLModule
23 {
24 function handlers()
25 {
26 return array(
27 'events' => $this->make_hook('ev', AUTH_COOKIE),
28 'rss' => $this->make_hook('rss', AUTH_PUBLIC, 'user', NO_HTTPS),
29 'events/preview' => $this->make_hook('preview', AUTH_PUBLIC, 'user', NO_AUTH),
30 'events/photo' => $this->make_hook('photo', AUTH_PUBLIC),
31 'events/submit' => $this->make_hook('ev_submit', AUTH_MDP),
32 'admin/events' => $this->make_hook('admin_events', AUTH_MDP, 'admin'),
33
34 'ajax/tips' => $this->make_hook('tips', AUTH_COOKIE, 'user', NO_AUTH),
35 'admin/tips' => $this->make_hook('admin_tips', AUTH_MDP, 'admin'),
36 );
37 }
38
39 private function get_tips($exclude = null)
40 {
41 global $globals;
42 // Add a new special tip when changing plat/al version
43 if ($globals->version != S::v('last_version') && is_null($exclude)) {
44 XDB::execute('UPDATE auth_user_quick
45 SET last_version = {?}
46 WHERE user_id = {?}',
47 $globals->version, S::i('uid'));
48 return array('id' => 0,
49 'titre' => 'Bienvenue sur la nouvelle version du site !',
50 'text' => 'Le site a été mis à jour depuis ta dernière visite vers la version ' . $globals->version
51 . '. Nous t\'invitons à en découvrir les nouveautés en te rendant sur '
52 . '<a href="banana/xorg.m4x.innovation">nos forums</a> ou en consultant '
53 . '<a href="changelog">la liste exhaustive des modifications</a>',
54 'priorite' => 255,
55 'promo_min' => 0,
56 'promo_max' => 0,
57 'state' => 'active',
58 'special' => true);
59 }
60
61 $exclude = is_null($exclude) ? '' : ' AND id != ' . $exclude . ' ';
62 $priority = rand(0, 510);
63 do {
64 $priority = (int)($priority/2);
65 $res = XDB::query("SELECT *
66 FROM tips
67 WHERE (peremption = '0000-00-00' OR peremption > CURDATE())
68 AND (promo_min = 0 OR promo_min <= {?})
69 AND (promo_max = 0 OR promo_max >= {?})
70 AND (priorite >= {?})
71 AND (state = 'active')
72 $exclude
73 ORDER BY RAND()
74 LIMIT 1",
75 S::i('promo'), S::i('promo'), $priority);
76 } while ($priority && !$res->numRows());
77 if (!$res->numRows()) {
78 return null;
79 }
80 return $res->fetchOneAssoc();
81 }
82
83 private function get_events($where, $order, array &$array, $name)
84 {
85 // affichage des evenements
86 // annonces promos triées par présence d'une limite sur les promos
87 // puis par dates croissantes d'expiration
88 $promo = S::v('promo');
89 $uid = S::i('uid');
90 $sql = "SELECT e.id,e.titre, ev.user_id IS NULL AS nonlu
91 FROM evenements AS e
92 LEFT JOIN evenements_vus AS ev ON (e.id = ev.evt_id AND ev.user_id = {?})
93 WHERE FIND_IN_SET('valide', e.flags) AND peremption >= NOW()
94 AND (e.promo_min = 0 || e.promo_min <= {?})
95 AND (e.promo_max = 0 || e.promo_max >= {?})
96 AND $where
97 ORDER BY $order";
98 $sum = XDB::iterator($sql, $uid, $promo, $promo);
99 if (!$sum->total()) {
100 return false;
101 }
102 $sql = "SELECT e.id,e.titre,e.texte,e.post_id,a.user_id,a.nom,a.prenom,a.promo,l.alias AS forlife,
103 p.x, p.y, p.attach IS NOT NULL AS img
104 FROM evenements AS e
105 LEFT JOIN evenements_photo AS p ON (e.id = p.eid)
106 INNER JOIN auth_user_md5 AS a ON e.user_id=a.user_id
107 INNER JOIN aliases AS l ON ( a.user_id=l.id AND l.type='a_vie' )
108 LEFT JOIN evenements_vus AS ev ON (e.id = ev.evt_id AND ev.user_id = {?})
109 WHERE FIND_IN_SET('valide', e.flags) AND peremption >= NOW()
110 AND (e.promo_min = 0 || e.promo_min <= {?})
111 AND (e.promo_max = 0 || e.promo_max >= {?})
112 AND ev.user_id IS NULL
113 AND $where
114 ORDER BY $order";
115 $evt = XDB::iterator($sql, $uid, $promo, $promo);
116 $array[$name] = array('events' => $evt, 'summary' => $sum);
117 return true;
118 }
119
120 private function upload_image(PlatalPage &$page, PlUpload &$upload)
121 {
122 if (@!$_FILES['image']['tmp_name'] && !Env::v('image_url')) {
123 return true;
124 }
125 if (!$upload->upload($_FILES['image']) && !$upload->download(Env::v('image_url'))) {
126 $page->trig('Impossible de télécharger l\'image');
127 return false;
128 } elseif (!$upload->isType('image')) {
129 $page->trig('Le fichier n\'est pas une image valide au format JPEG, GIF ou PNG');
130 $upload->rm();
131 return false;
132 } elseif (!$upload->resizeImage(200, 300, 100, 100, 32284)) {
133 $page->trig('Impossible de retraiter l\'image');
134 return false;
135 }
136 return true;
137 }
138
139 function handler_ev(&$page, $action = 'list', $eid = null, $pound = null)
140 {
141 $page->changeTpl('events/index.tpl');
142 $page->addJsLink('ajax.js');
143 $page->assign('tips', $this->get_tips());
144
145 $res = XDB::query('SELECT date, naissance FROM auth_user_md5
146 WHERE user_id={?}', S::v('uid'));
147 list($date, $naissance) = $res->fetchOneRow();
148
149 // incitation à mettre à jour la fiche
150
151 $d2 = mktime(0, 0, 0, substr($date, 5, 2), substr($date, 8, 2),
152 substr($date, 0, 4));
153 if( (time() - $d2) > 60 * 60 * 24 * 400 ) {
154 // si fiche date de + de 400j;
155 $page->assign('fiche_incitation', $date);
156 }
157
158 // Souhaite bon anniversaire
159
160 if (substr($naissance, 5) == date('m-d')) {
161 $page->assign('birthday', date('Y') - substr($naissance, 0, 4));
162 }
163
164 // incitation à mettre une photo
165
166 $res = XDB::query('SELECT COUNT(*) FROM photo
167 WHERE uid={?}', S::v('uid'));
168 $page->assign('photo_incitation', $res->fetchOneCell() == 0);
169
170 // Incitation à se géolocaliser
171 require_once 'geoloc.inc.php';
172 $res = localize_addresses(S::v('uid', -1));
173 $page->assign('geoloc_incitation', count($res));
174
175 // ajout du lien RSS
176 if (S::has('core_rss_hash')) {
177 $page->setRssLink('Polytechnique.org :: News',
178 '/rss/'.S::v('forlife') .'/'.S::v('core_rss_hash').'/rss.xml');
179 }
180
181 // cache les evenements lus et raffiche les evenements a relire
182 if ($action == 'read' && $eid) {
183 XDB::execute('DELETE evenements_vus.*
184 FROM evenements_vus AS ev
185 INNER JOIN evenements AS e ON e.id = ev.evt_id
186 WHERE peremption < NOW()');
187 XDB::execute('REPLACE INTO evenements_vus VALUES({?},{?})',
188 $eid, S::v('uid'));
189 pl_redirect('events#'.$pound);
190 }
191
192 if ($action == 'unread' && $eid) {
193 XDB::execute('DELETE FROM evenements_vus
194 WHERE evt_id = {?} AND user_id = {?}',
195 $eid, S::v('uid'));
196 pl_redirect('events#newsid'.$eid);
197 }
198
199 $array = array();
200 $this->get_events('FIND_IN_SET(\'important\', e.flags)', 'e.creation_date DESC', $array, 'important');
201 $this->get_events('e.creation_date > DATE_SUB(CURDATE(), INTERVAL 2 DAY)
202 AND NOT FIND_IN_SET(\'important\', e.flags)',
203 'e.creation_date DESC', $array, 'news');
204 $this->get_events('e.peremption < DATE_ADD(CURDATE(), INTERVAL 2 DAY)
205 AND e.creation_date <= DATE_SUB(CURDATE(), INTERVAL 2 DAY)
206 AND NOT FIND_IN_SET(\'important\', e.flags)',
207 'e.peremption, e.creation_date DESC', $array, 'end');
208 $this->get_events('e.peremption >= DATE_ADD(CURDATE(), INTERVAL 2 DAY)
209 AND e.creation_date <= DATE_SUB(CURDATE(), INTERVAL 2 DAY)
210 AND NOT FIND_IN_SET(\'important\', e.flags)',
211 'e.peremption, e.creation_date DESC', $array, 'body');
212 $page->assign_by_ref('events', $array);
213 }
214
215 function handler_photo(&$page, $eid = null, $valid = null)
216 {
217 if ($eid && $eid != 'valid') {
218 $res = XDB::query("SELECT * FROM evenements_photo WHERE eid = {?}", $eid);
219 if ($res->numRows()) {
220 $photo = $res->fetchOneAssoc();
221 header('Content-Type: image/' . $photo['attachmime']);
222 echo $photo['attach'];
223 exit;
224 }
225 } elseif ($eid == 'valid') {
226 require_once 'validations.inc.php';
227 $valid = Validate::get_request_by_id($valid);
228 if ($valid && $valid->img) {
229 header('Content-Type: image/' . $valid->imgtype);
230 echo $valid->img;
231 exit;
232 }
233 } else {
234 $upload = new PlUpload(S::v('forlife'), 'event');
235 if ($upload->exists() && $upload->isType('image')) {
236 header('Content-Type: ' . $upload->contentType());
237 echo $upload->getContents();
238 exit;
239 }
240 }
241 global $globals;
242 header('Content-Type: image/png');
243 echo file_get_contents($globals->spoolroot . '/htdocs/images/logo.png');
244 exit;
245 }
246
247 function handler_rss(&$page, $user = null, $hash = null)
248 {
249 require_once 'rss.inc.php';
250
251 $uid = init_rss('events/rss.tpl', $user, $hash);
252
253 $rss = XDB::iterator(
254 'SELECT e.id, e.titre, e.texte, e.creation_date, e.post_id, p.attachmime IS NOT NULL AS photo,
255 IF(u2.nom_usage = "", u2.nom, u2.nom_usage) AS nom, u2.prenom, u2.promo
256 FROM auth_user_md5 AS u
257 INNER JOIN evenements AS e ON ( (e.promo_min = 0 || e.promo_min <= u.promo)
258 AND (e.promo_max = 0 || e.promo_max >= u.promo) )
259 LEFT JOIN evenements_photo AS p ON (p.eid = e.id)
260 INNER JOIN auth_user_md5 AS u2 ON (u2.user_id = e.user_id)
261 WHERE u.user_id = {?} AND FIND_IN_SET("valide", e.flags)
262 AND peremption >= NOW()', $uid);
263 $page->assign('rss', $rss);
264 }
265
266 function handler_preview(&$page)
267 {
268 $page->changeTpl('events/preview.tpl', NO_SKIN);
269 $texte = Get::v('texte');
270 if (!is_utf8($texte)) {
271 $texte = utf8_encode($texte);
272 }
273 if (strpos($_SERVER['HTTP_REFERER'], 'admin') === false) {
274 $texte = MiniWiki::WikiToHTML($texte);
275 }
276 $titre = Get::v('titre');
277 if (!is_utf8($titre)) {
278 $titre = utf8_encode($titre);
279 }
280 $page->assign('texte_html', $texte);
281 $page->assign('titre', $titre);
282 header('Content-Type: text/html; charset=utf-8');
283 }
284
285 function handler_ev_submit(&$page)
286 {
287 $page->changeTpl('events/submit.tpl');
288 $page->addJsLink('ajax.js');
289
290 require_once('wiki.inc.php');
291 wiki_require_page('Xorg.Annonce');
292
293 $titre = Post::v('titre');
294 $texte = Post::v('texte');
295 $promo_min = Post::i('promo_min');
296 $promo_max = Post::i('promo_max');
297 $peremption = Post::i('peremption');
298 $valid_mesg = Post::v('valid_mesg');
299 $action = Post::v('action');
300 $upload = new PlUpload(S::v('forlife'), 'event');
301 $this->upload_image($page, $upload);
302
303 if (($promo_min > $promo_max && $promo_max != 0)||
304 ($promo_min != 0 && ($promo_min <= 1900 || $promo_min >= 2020)) ||
305 ($promo_max != 0 && ($promo_max <= 1900 || $promo_max >= 2020)))
306 {
307 $page->trig("L'intervalle de promotions n'est pas valide");
308 $action = null;
309 }
310
311 $texte_catch_url = MiniWiki::WikiToHTML($texte);
312
313 $page->assign('titre', $titre);
314 $page->assign('texte', $texte);
315 $page->assign('texte_html', $texte_catch_url);
316 $page->assign('promo_min', $promo_min);
317 $page->assign('promo_max', $promo_max);
318 $page->assign('peremption', $peremption);
319 $page->assign('valid_mesg', $valid_mesg);
320 $page->assign('action', strtolower($action));
321 $page->assign_by_ref('upload', $upload);
322
323 if ($action == 'Supprimer l\'image') {
324 $upload->rm();
325 $page->assign('action', false);
326 } elseif ($action && (!trim($texte) || !trim($titre))) {
327 $page->trig("L'article doit avoir un titre et un contenu");
328 } elseif ($action) {
329 $texte = $texte_catch_url;
330 require_once 'validations.inc.php';
331 $evtreq = new EvtReq($titre, $texte, $promo_min, $promo_max,
332 $peremption, $valid_mesg, S::v('uid'), $upload);
333 $evtreq->submit();
334 $page->assign('ok', true);
335 } elseif (!Env::v('preview')) {
336 $upload->rm();
337 }
338 }
339
340 function handler_tips(&$page, $tips = null)
341 {
342 header('Content-Type: text/html; charset="UTF-8"');
343 $page->changeTpl('include/tips.tpl', NO_SKIN);
344 $page->assign('tips', $this->get_tips($tips));
345 }
346
347 function handler_admin_tips(&$page, $action = 'list', $id = null)
348 {
349 $page->assign('xorg_title', 'Polytechnique.org - Administration - Astuces');
350 $page->assign('title', 'Gestion des Astuces');
351 $table_editor = new PLTableEditor('admin/tips', 'tips', 'id');
352 $table_editor->describe('peremption', 'date de péremption', true);
353 $table_editor->describe('promo_min', 'promo. min (0 aucune)', false);
354 $table_editor->describe('promo_max', 'promo. max (0 aucune)', false);
355 $table_editor->describe('titre', 'titre', true);
356 $table_editor->describe('state', 'actif', true);
357 $table_editor->describe('text', 'texte (html) de l\'astuce', false);
358 $table_editor->describe('priorite', '0<=priorité<=255', true);
359 $table_editor->list_on_edit(false);
360 $table_editor->apply($page, $action, $id);
361 if (($action == 'edit' && !is_null($id)) || $action == 'update') {
362 $page->changeTpl('events/admin_tips.tpl');
363 }
364 }
365
366 function handler_admin_events(&$page, $action = 'list', $eid = null)
367 {
368 $page->changeTpl('events/admin.tpl');
369 $page->addJsLink('ajax.js');
370 $page->assign('xorg_title','Polytechnique.org - Administration - Evenements');
371 $page->register_modifier('hde', 'html_entity_decode');
372
373 $arch = $action == 'archives';
374 $page->assign('action', $action);
375
376 $upload = new PlUpload(S::v('forlife'), 'event');
377 if ((Env::has('preview') || Post::v('action') == "Proposer") && $eid) {
378 $action = 'edit';
379 $this->upload_image($page, $upload);
380 }
381
382 if (Post::v('action') == 'Pas d\'image' && $eid) {
383 $upload->rm();
384 XDB::execute("DELETE FROM evenements_photo WHERE eid = {?}", $eid);
385 $action = 'edit';
386 } elseif (Post::v('action') == 'Supprimer l\'image' && $eid) {
387 $upload->rm();
388 $action = 'edit';
389 } elseif (Post::v('action') == "Proposer" && $eid) {
390 $promo_min = Post::i('promo_min');
391 $promo_max = Post::i('promo_max');
392 if (($promo_min != 0 && ($promo_min <= 1900 || $promo_min >= 2020)) ||
393 ($promo_max != 0 && ($promo_max <= 1900 || $promo_max >= 2020 || $promo_max < $promo_min)))
394 {
395 $page->trig("L'intervalle de promotions $promo_min -> $promo_max n'est pas valide");
396 $action = 'edit';
397 } else {
398 $res = XDB::query('SELECT flags FROM evenements WHERE id = {?}', $eid);
399 $flags = new FlagSet($res->fetchOneCell());
400 if (Post::v('important')) {
401 $flags->addFlag('important');
402 } else {
403 $flags->rmFlag('important');
404 }
405 XDB::execute('UPDATE evenements
406 SET creation_date = creation_date,
407 titre={?}, texte={?}, peremption={?}, promo_min={?}, promo_max={?},
408 flags = {?}
409 WHERE id = {?}',
410 Post::v('titre'), Post::v('texte'), Post::v('peremption'),
411 Post::v('promo_min'), Post::v('promo_max'),
412 $flags->flags(), $eid);
413 if ($upload->exists() && list($x, $y, $type) = $upload->imageInfo()) {
414 XDB::execute('REPLACE INTO evenements_photo
415 SET eid = {?}, attachmime = {?}, x = {?}, y = {?}, attach = {?}',
416 $eid, $type, $x, $y, $upload->getContents());
417 $upload->rm();
418 }
419 }
420 }
421
422 if ($action == 'edit') {
423 $res = XDB::query('SELECT titre, texte, peremption, promo_min, promo_max, FIND_IN_SET(\'important\', flags),
424 attach IS NOT NULL
425 FROM evenements AS e
426 LEFT JOIN evenements_photo AS p ON(e.id = p.eid)
427 WHERE id={?}', $eid);
428 list($titre, $texte, $peremption, $promo_min, $promo_max, $important, $img) = $res->fetchOneRow();
429 $page->assign('titre',$titre);
430 $page->assign('texte',$texte);
431 $page->assign('texte_html', pl_entity_decode($texte));
432 $page->assign('promo_min',$promo_min);
433 $page->assign('promo_max',$promo_max);
434 $page->assign('peremption',$peremption);
435 $page->assign('important', $important);
436 $page->assign('eid', $eid);
437 $page->assign('img', $img);
438 $page->assign_by_ref('upload', $upload);
439
440 $select = "";
441 for ($i = 1 ; $i < 30 ; $i++) {
442 $p_stamp=date("Ymd",time()+3600*24*$i);
443 $year=substr($p_stamp,0,4);
444 $month=substr($p_stamp,4,2);
445 $day=substr($p_stamp,6,2);
446
447 $select .= "<option value=\"$p_stamp\""
448 . (($p_stamp == strtr($peremption, array("-" => ""))) ? " selected" : "")
449 . "> $day / $month / $year</option>\n";
450 }
451 $page->assign('select',$select);
452 } else {
453 switch ($action) {
454 case 'delete':
455 XDB::execute('DELETE from evenements
456 WHERE id = {?}', $eid);
457 break;
458
459 case "archive":
460 XDB::execute('UPDATE evenements
461 SET creation_date = creation_date, flags = CONCAT(flags,",archive")
462 WHERE id = {?}', $eid);
463 break;
464
465 case "unarchive":
466 XDB::execute('UPDATE evenements
467 SET creation_date = creation_date, flags = REPLACE(flags,"archive","")
468 WHERE id = {?}', $eid);
469 $action = 'archives';
470 $arch = true;
471 break;
472
473 case "valid":
474 XDB::execute('UPDATE evenements
475 SET creation_date = creation_date, flags = CONCAT(flags,",valide")
476 WHERE id = {?}', $eid);
477 break;
478
479 case "unvalid":
480 XDB::execute('UPDATE evenements
481 SET creation_date = creation_date, flags = REPLACE(flags,"valide", "")
482 WHERE id = {?}', $eid);
483 break;
484 }
485
486 $pid = ($eid && $action == 'preview') ? $eid : -1;
487 $sql = "SELECT e.id, e.titre, e.texte,e.id = $pid AS preview,
488 DATE_FORMAT(e.creation_date,'%d/%m/%Y %T') AS creation_date,
489 DATE_FORMAT(e.peremption,'%d/%m/%Y') AS peremption,
490 e.promo_min, e.promo_max,
491 FIND_IN_SET('valide', e.flags) AS fvalide,
492 FIND_IN_SET('archive', e.flags) AS farch,
493 u.promo, u.nom, u.prenom, a.alias AS forlife
494 FROM evenements AS e
495 INNER JOIN auth_user_md5 AS u ON(e.user_id = u.user_id)
496 INNER JOIN aliases AS a ON (u.user_id = a.id AND a.type='a_vie')
497 WHERE ".($arch ? "" : "!")."FIND_IN_SET('archive',e.flags)
498 ORDER BY FIND_IN_SET('valide',e.flags), e.peremption DESC";
499 $page->assign('evs', XDB::iterator($sql));
500 }
501 $page->assign('arch', $arch);
502 $page->assign('admin_evts', true);
503 }
504 }
505
506 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
507 ?>
plat/al