projects / platal.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Hide 'always-private' fields when profile is edited by an AX secretary.
[platal.git] / modules / profile.php
1 <?php
2 /***************************************************************************
3 * Copyright (C) 2003-2010 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
22 class ProfileModule extends PLModule
23 {
24 function handlers()
25 {
26 return array(
27 'photo' => $this->make_hook('photo', AUTH_PUBLIC),
28 'photo/change' => $this->make_hook('photo_change', AUTH_MDP),
29
30 'fiche.php' => $this->make_hook('fiche', AUTH_PUBLIC),
31 'profile' => $this->make_hook('profile', AUTH_PUBLIC),
32 'profile/private' => $this->make_hook('profile', AUTH_COOKIE),
33 'profile/ax' => $this->make_hook('ax', AUTH_COOKIE, 'admin'),
34 'profile/edit' => $this->make_hook('p_edit', AUTH_MDP),
35 'profile/ajax/address' => $this->make_hook('ajax_address', AUTH_COOKIE, 'user', NO_AUTH),
36 'profile/ajax/tel' => $this->make_hook('ajax_tel', AUTH_COOKIE, 'user', NO_AUTH),
37 'profile/ajax/edu' => $this->make_hook('ajax_edu', AUTH_COOKIE, 'user', NO_AUTH),
38 'profile/ajax/medal' => $this->make_hook('ajax_medal', AUTH_COOKIE, 'user', NO_AUTH),
39 'profile/networking' => $this->make_hook('networking', AUTH_PUBLIC),
40 'profile/ajax/job' => $this->make_hook('ajax_job', AUTH_COOKIE, 'user', NO_AUTH),
41 'profile/ajax/sector' => $this->make_hook('ajax_sector', AUTH_COOKIE, 'user', NO_AUTH),
42 'profile/ajax/sub_sector' => $this->make_hook('ajax_sub_sector', AUTH_COOKIE, 'user', NO_AUTH),
43 'profile/ajax/alternates' => $this->make_hook('ajax_alternates', AUTH_COOKIE, 'user', NO_AUTH),
44 'profile/ajax/skill' => $this->make_hook('ajax_skill', AUTH_COOKIE, 'user', NO_AUTH),
45 'profile/ajax/searchname' => $this->make_hook('ajax_searchname', AUTH_COOKIE, 'user', NO_AUTH),
46 'profile/ajax/buildnames' => $this->make_hook('ajax_buildnames', AUTH_COOKIE, 'user', NO_AUTH),
47 'profile/ajax/tree/jobterms' => $this->make_hook('ajax_tree_job_terms', AUTH_COOKIE, 'user', NO_AUTH),
48 'profile/jobterms' => $this->make_hook('jobterms', AUTH_COOKIE, 'user', NO_AUTH),
49 'javascript/education.js' => $this->make_hook('education_js', AUTH_COOKIE),
50 'javascript/grades.js' => $this->make_hook('grades_js', AUTH_COOKIE),
51 'profile/medal' => $this->make_hook('medal', AUTH_PUBLIC),
52 'profile/name_info' => $this->make_hook('name_info', AUTH_PUBLIC),
53
54 'referent' => $this->make_hook('referent', AUTH_COOKIE),
55 'referent/ssect' => $this->make_hook('ref_sect', AUTH_COOKIE, 'user', NO_AUTH),
56 'referent/country' => $this->make_hook('ref_country', AUTH_COOKIE, 'user', NO_AUTH),
57 'referent/autocomplete' => $this->make_hook('ref_autocomplete', AUTH_COOKIE, 'user', NO_AUTH),
58
59 'groupes-x' => $this->make_hook('xnet', AUTH_COOKIE),
60 'groupes-x/logo' => $this->make_hook('xnetlogo', AUTH_PUBLIC),
61
62 'vcard' => $this->make_hook('vcard', AUTH_COOKIE, 'user', NO_HTTPS),
63 'admin/binets' => $this->make_hook('admin_binets', AUTH_MDP, 'admin'),
64 'admin/medals' => $this->make_hook('admin_medals', AUTH_MDP, 'admin'),
65 'admin/education' => $this->make_hook('admin_education', AUTH_MDP, 'admin'),
66 'admin/education_field' => $this->make_hook('admin_education_field', AUTH_MDP, 'admin'),
67 'admin/education_degree' => $this->make_hook('admin_education_degree', AUTH_MDP, 'admin'),
68 'admin/education_degree_set' => $this->make_hook('admin_education_degree_set', AUTH_MDP, 'admin'),
69 'admin/sections' => $this->make_hook('admin_sections', AUTH_MDP, 'admin'),
70 'admin/networking' => $this->make_hook('admin_networking', AUTH_MDP, 'admin'),
71 'admin/trombino' => $this->make_hook('admin_trombino', AUTH_MDP, 'admin'),
72 'admin/sectors' => $this->make_hook('admin_sectors', AUTH_MDP, 'admin'),
73 'admin/corps_enum' => $this->make_hook('admin_corps_enum', AUTH_MDP, 'admin'),
74 'admin/corps_rank' => $this->make_hook('admin_corps_rank', AUTH_MDP, 'admin'),
75 'admin/names' => $this->make_hook('admin_names', AUTH_MDP, 'admin'),
76 );
77 }
78
79 /* Function needed for compatibility reasons.
80 * TODO: removes calls to fiche.php?user=blah.machin.2083 and then removes this.
81 */
82 function handler_fiche(&$page)
83 {
84 return $this->handler_profile($page, Env::v('user'));
85 }
86
87 function handler_photo(&$page, $x = null, $req = null)
88 {
89 if (!$x || !($profile = Profile::get($x))) {
90 return PL_NOT_FOUND;
91 }
92
93 // Retrieve the photo and its mime type.
94 if ($req && S::logged()) {
95 include 'validations.inc.php';
96 $myphoto = PhotoReq::get_request($profile->id());
97 $photo = PlImage::fromData($myphoto->data, $myphoto->mimetype);
98 } else {
99 $photo = $profile->getPhoto(true, true);
100 }
101
102 // Display the photo, or a default one when not available.
103 $photo->send();
104 }
105
106 function handler_medal(&$page, $mid)
107 {
108 $thumb = ($mid == 'thumb');
109 $mid = $thumb ? @func_get_arg(2) : $mid;
110
111 $res = XDB::query("SELECT img
112 FROM profile_medal_enum
113 WHERE id = {?}",
114 $mid);
115 $img = $thumb ?
116 dirname(__FILE__).'/../htdocs/images/medals/thumb/' . $res->fetchOneCell() :
117 dirname(__FILE__).'/../htdocs/images/medals/' . $res->fetchOneCell();
118 pl_cached_content_headers(mime_content_type($img));
119 echo file_get_contents($img);
120 exit;
121 }
122
123 function handler_name_info(&$page)
124 {
125 pl_content_headers("text/html");
126 $page->changeTpl('profile/name_info.tpl', SIMPLE);
127 $res = XDB::iterator("SELECT name, explanations,
128 FIND_IN_SET('public', flags) AS public,
129 FIND_IN_SET('has_particle', flags) AS has_particle
130 FROM profile_name_enum
131 WHERE NOT FIND_IN_SET('not_displayed', flags)
132 ORDER BY NOT FIND_IN_SET('public', flags)");
133 $page->assign('types', $res);
134 }
135
136 function handler_networking(&$page, $mid)
137 {
138 $res = XDB::query("SELECT icon
139 FROM profile_networking_enum
140 WHERE nwid = {?}",
141 $mid);
142 $img = dirname(__FILE__) . '/../htdocs/images/networking/' . $res->fetchOneCell();
143 pl_cached_content_headers(mime_content_type($img));
144 echo file_get_contents($img);
145 exit;
146 }
147
148 /** Tries to return the correct user from given hrpid
149 * Will redirect to $returnurl$hrpid if $hrpid was empty
150 */
151 private function findProfile($returnurl, $hrpid = null)
152 {
153 if (is_null($hrpid)) {
154 $user = S::user();
155 if (!$user->hasProfile()) {
156 return PL_NOT_FOUND;
157 } else {
158 pl_redirect($returnurl . $user->profile()->hrid());
159 }
160 } else {
161 $profile = Profile::get($hrpid);
162 if (!$profile) {
163 return PL_NOT_FOUND;
164 } else if (!S::user()->canEdit($profile) && Platal::notAllowed()) {
165 return PL_FORBIDDEN;
166 }
167 }
168 return $profile;
169 }
170
171 function handler_photo_change(&$page, $hrpid = null)
172 {
173 global $globals;
174 $profile = $this->findProfile('photo/change/', $hrpid);
175 if (! ($profile instanceof Profile) && ($profile == PL_NOT_FOUND || $profile == PL_FORBIDDEN)) {
176 return $profile;
177 }
178
179 $page->changeTpl('profile/trombino.tpl');
180 $page->assign('hrpid', $profile->hrid());
181
182 require_once('validations.inc.php');
183
184 $trombi_x = '/home/web/trombino/photos' . $profile->promo() . '/' . $profile->hrid() . '.jpg';
185 if (Env::has('upload')) {
186 S::assert_xsrf_token();
187
188 $upload = new PlUpload($profile->hrid(), 'photo');
189 if (!$upload->upload($_FILES['userfile']) && !$upload->download(Env::v('photo'))) {
190 $page->trigError('Une erreur est survenue lors du téléchargement du fichier');
191 } else {
192 $myphoto = new PhotoReq(S::user(), $profile, $upload);
193 if ($myphoto->isValid()) {
194 $myphoto->submit();
195 }
196 }
197 } elseif (Env::has('trombi')) {
198 S::assert_xsrf_token();
199
200 $upload = new PlUpload($profile->hrid(), 'photo');
201 if ($upload->copyFrom($trombi_x)) {
202 $myphoto = new PhotoReq(S::user(), $profile, $upload);
203 if ($myphoto->isValid()) {
204 $myphoto->commit();
205 $myphoto->clean();
206 }
207 }
208 } elseif (Env::v('suppr')) {
209 S::assert_xsrf_token();
210
211 XDB::execute('DELETE FROM profile_photos
212 WHERE pid = {?}',
213 $profile->id());
214 XDB::execute("DELETE FROM requests
215 WHERE pid = {?} AND type = 'photo'",
216 $profile->id());
217 $globals->updateNbValid();
218 $page->trigSuccess("Ta photo a bien été supprimée. Elle ne sera plus visible sur le site dans au plus une heure.");
219 } elseif (Env::v('cancel')) {
220 S::assert_xsrf_token();
221
222 $sql = XDB::query("DELETE FROM requests
223 WHERE pid = {?} AND type = 'photo'",
224 $profile->id());
225 $globals->updateNbValid();
226 }
227
228 $sql = XDB::query("SELECT COUNT(*)
229 FROM requests
230 WHERE pid = {?} AND type = 'photo'",
231 $profile->id());
232 $page->assign('submited', $sql->fetchOneCell());
233 $page->assign('has_trombi_x', file_exists($trombi_x));
234 }
235
236 function handler_profile(&$page, $id = null)
237 {
238 // Checks if the identifier corresponds to an actual profile. Numeric
239 // identifiers canonly be user by logged users.
240 if (is_null($id)) {
241 return PL_NOT_FOUND;
242 }
243 $pid = (!is_numeric($id) || S::admin()) ? Profile::getPID($id) : null;
244 if (is_null($pid)) {
245 if (S::logged()) {
246 $page->trigError($id . " inconnu dans l'annuaire.");
247 }
248 return PL_NOT_FOUND;
249 }
250
251 // Now that we know this is an existing profile, we can switch to the
252 // appropriate template.
253 $page->changeTpl('profile/profile.tpl', SIMPLE);
254
255 // Determines the access level at which the profile will be displayed.
256 if (!S::logged() || !S::user()->checkPerms('directory_ax') || Env::v('view') == 'public') {
257 $view = 'public';
258 } else if (!S::user()->checkPerms('directory_private') || Env::v('view') == 'ax') {
259 $view = 'ax';
260 } else {
261 $view = 'private';
262 }
263
264 // Display pending picture
265 if (S::logged() && Env::v('modif') == 'new') {
266 $page->assign('with_pending_pic', true);
267 }
268
269 // Fetches profile's and profile's owner information and redirects to
270 // marketing if the owner has not subscribed and the requirer has logged in.
271 $profile = Profile::get($pid, Profile::FETCH_ALL, $view);
272 $owner = $profile->owner();
273 if (S::logged() && !is_null($owner) && $owner->state == 'pending') {
274 pl_redirect('marketing/public/' . $profile->hrid());
275 }
276
277 // Profile view are logged.
278 if (S::logged()) {
279 S::logger()->log('view_profile', $profile->hrid());
280 }
281
282 // Sets the title of the html page.
283 $page->setTitle($profile->fullName());
284
285 // Determines and displays the virtual alias.
286 if (!is_null($owner) && $profile->alias_pub == 'public') {
287 $page->assign('virtualalias', $owner->emailAlias());
288 }
289
290 $page->assign_by_ref('profile', $profile);
291 $page->assign_by_ref('owner', $owner);
292 $page->assign('view', $view);
293 $page->assign('logged', S::logged());
294
295 $page->addJsLink('close_on_esc.js');
296 header('Last-Modified: ' . date('r', strtotime($profile->last_change)));
297 }
298
299 function handler_ax(&$page, $user = null)
300 {
301 $user = Profile::get($user);
302 if (!$user) {
303 return PL_NOT_FOUND;
304 }
305 if (!$user->ax_id) {
306 $page->kill("Le matricule AX de {$user->hrid()} est inconnu");
307 }
308 http_redirect("http://www.polytechniciens.com/?page=AX_FICHE_ANCIEN&ancc_id=" . $user->ax_id);
309 }
310
311 function handler_p_edit(&$page, $hrpid = null, $opened_tab = null, $mode = null, $success = null)
312 {
313 global $globals;
314
315 $profile = $this->findProfile('profile/edit/', $hrpid);
316 if (! ($profile instanceof Profile) && ($profile == PL_NOT_FOUND || $profile == PL_FORBIDDEN)) {
317 return $profile;
318 }
319
320 // Build the page
321 $page->addJsLink('ajax.js');
322 $page->addJsLink('education.js', false); /* dynamic content */
323 $page->addJsLink('grades.js', false); /* dynamic content */
324 $page->addJsLink('profile.js');
325 $page->addJsLink('jquery.autocomplete.js');
326 $wiz = new PlWizard('Profil', PlPage::getCoreTpl('plwizard.tpl'), true, true, false);
327 $wiz->addUserData('profile', $profile);
328 $wiz->addUserData('owner', $profile->owner());
329 $this->load('page.inc.php');
330 $wiz->addPage('ProfileSettingGeneral', 'Général', 'general');
331 $wiz->addPage('ProfileSettingAddresses', 'Adresses personnelles', 'adresses');
332 $wiz->addPage('ProfileSettingJobs', 'Informations professionnelles', 'emploi');
333 if (S::user()->checkPerms(User::PERM_DIRECTORY_PRIVATE)) {
334 $wiz->addPage('ProfileSettingGroups', 'Groupes X - Binets', 'poly');
335 }
336 $wiz->addPage('ProfileSettingDecos', 'Décorations - Medailles', 'deco');
337 if (S::user()->checkPerms(User::PERM_DIRECTORY_PRIVATE)) {
338 $wiz->addPage('ProfileSettingSkills', 'Compétences diverses', 'skill');
339 $wiz->addPage('ProfileSettingMentor', 'Mentoring', 'mentor');
340 }
341 $wiz->apply($page, 'profile/edit/' . $profile->hrid(), $opened_tab, $mode);
342
343 if (!$profile->birthdate) {
344 $page->trigWarning("Ta date de naissance n'est pas renseignée, ce qui t'empêcheras de réaliser"
345 . " la procédure de récupération de mot de passe si un jour tu le perdais.");
346 }
347
348 $page->setTitle('Mon Profil');
349 if (isset($success) && $success) {
350 $page->trigSuccess('Ton profil a bien été mis à jour.');
351 }
352 }
353
354 function handler_education_js(&$page)
355 {
356 pl_cached_content_headers("text/javascript", "utf-8");
357 $page->changeTpl('profile/education.js.tpl', NO_SKIN);
358 require_once 'education.func.inc.php';
359 }
360
361 function handler_grades_js(&$page)
362 {
363 pl_cached_content_headers("text/javascript", "utf-8");
364 $page->changeTpl('profile/grades.js.tpl', NO_SKIN);
365 $res = XDB::iterator("SELECT *
366 FROM profile_medal_grade_enum
367 ORDER BY mid, pos");
368 $grades = array();
369 while ($tmp = $res->next()) {
370 $grades[$tmp['mid']][] = $tmp;
371 }
372 $page->assign('grades', $grades);
373
374 $res = XDB::iterator("SELECT *, FIND_IN_SET('validation', flags) AS validate
375 FROM profile_medal_enum
376 ORDER BY type, text");
377 $mlist = array();
378 while ($tmp = $res->next()) {
379 $mlist[$tmp['type']][] = $tmp;
380 }
381 $page->assign('medal_list', $mlist);
382 }
383
384 function handler_ajax_address(&$page, $id)
385 {
386 pl_content_headers("text/html");
387 $page->changeTpl('profile/adresses.address.tpl', NO_SKIN);
388 $page->assign('i', $id);
389 $page->assign('address', array());
390 }
391
392 function handler_ajax_tel(&$page, $prefid, $prefname, $telid)
393 {
394 pl_content_headers("text/html");
395 $page->changeTpl('profile/phone.tpl', NO_SKIN);
396 $page->assign('prefid', $prefid);
397 $page->assign('prefname', $prefname);
398 $page->assign('telid', $telid);
399 $page->assign('tel', array());
400 }
401
402 function handler_ajax_edu(&$page, $eduid, $class)
403 {
404 pl_content_headers("text/html");
405 $page->changeTpl('profile/general.edu.tpl', NO_SKIN);
406 $res = XDB::iterator("SELECT id, field
407 FROM profile_education_field_enum
408 ORDER BY field");
409 $page->assign('edu_fields', $res->fetchAllAssoc());
410 $page->assign('eduid', $eduid);
411 $page->assign('class', $class);
412 require_once "education.func.inc.php";
413 }
414
415 function handler_ajax_medal(&$page, $id)
416 {
417 pl_content_headers("text/html");
418 $page->changeTpl('profile/deco.medal.tpl', NO_SKIN);
419 $page->assign('id', $id);
420 $page->assign('medal', array('valid' => 0, 'grade' => 0));
421 }
422
423 function handler_ajax_job(&$page, $id)
424 {
425 pl_content_headers("text/html");
426 $page->changeTpl('profile/jobs.job.tpl', NO_SKIN);
427 $page->assign('i', $id);
428 $page->assign('job', array());
429 $page->assign('new', true);
430 $res = XDB::query("SELECT id, name AS label
431 FROM profile_job_sector_enum");
432 $page->assign('sectors', $res->fetchAllAssoc());
433 require_once "emails.combobox.inc.php";
434 fill_email_combobox($page);
435 }
436
437 function handler_ajax_sector(&$page, $id, $jobid, $jobpref, $sect, $ssect = -1)
438 {
439 pl_content_headers("text/html");
440 $res = XDB::iterator("SELECT id, name, FIND_IN_SET('optgroup', flags) AS optgroup
441 FROM profile_job_subsector_enum
442 WHERE sectorid = {?}", $sect);
443 $page->changeTpl('profile/jobs.sector.tpl', NO_SKIN);
444 $page->assign('id', $id);
445 $page->assign('subSectors', $res);
446 $page->assign('sel', $ssect);
447 if ($id != -1) {
448 $page->assign('change', 1);
449 $page->assign('jobid', $jobid);
450 $page->assign('jobpref', $jobpref);
451 }
452 }
453 function handler_ajax_sub_sector(&$page, $id, $ssect, $sssect = -1)
454 {
455 pl_content_headers("text/html");
456 $res = XDB::iterator("SELECT id, name
457 FROM profile_job_subsubsector_enum
458 WHERE subsectorid = {?}", $ssect);
459 $page->changeTpl('profile/jobs.sub_sector.tpl', NO_SKIN);
460 $page->assign('id', $id);
461 $page->assign('subSubSectors', $res);
462 $page->assign('sel', $sssect);
463 }
464
465 /**
466 * Page for url "profile/ajax/tree/jobterms". Display a JSon page containing
467 * the sub-branches of a branch in the job terms tree.
468 * @param $page the Platal page
469 * @param $filter filter helps to display only jobterms that are contained in jobs or in mentors
470 *
471 * @param Env::i('jtid') job term id of the parent branch, if none trunk will be used
472 * @param Env::v('attrfunc') the name of a javascript function that will be called when a branch
473 * is chosen
474 * @param Env::v('treeid') tree id that will be given as first argument of attrfunc function
475 * the second argument will be the chosen job term id and the third one the chosen job full name.
476 */
477 function handler_ajax_tree_job_terms(&$page, $filter = JobTerms::ALL)
478 {
479 JobTerms::ajaxGetBranch(&$page, $filter);
480 }
481
482 function handler_ajax_alternates(&$page, $id, $sssect)
483 {
484 pl_content_headers("text/html");
485 $res = XDB::iterator('SELECT name
486 FROM profile_job_alternates
487 WHERE subsubsectorid = {?}
488 ORDER BY id',
489 $sssect);
490 $page->changeTpl('profile/jobs.alternates.tpl', NO_SKIN);
491 $alternates = '';
492 if ($res->total() > 0) {
493 $alternate = $res->next();
494 $alternates = $alternate['name'];
495 while ($alternate = $res->next()) {
496 $alternates .= ', ' . $alternate['name'];
497 }
498 }
499 $page->assign('alternates', $alternates);
500 }
501
502 function handler_ajax_skill(&$page, $cat, $id)
503 {
504 pl_content_headers("text/html");
505 $page->changeTpl('profile/skill.skill.tpl', NO_SKIN);
506 $page->assign('cat', $cat);
507 $page->assign('id', $id);
508 if ($cat == 'competences') {
509 $page->assign('levels', array('initié' => 'initié',
510 'bonne connaissance' => 'bonne connaissance',
511 'expert' => 'expert'));
512 } else {
513 $page->assign('levels', array(1 => 'connaissance basique',
514 2 => 'maîtrise des bases',
515 3 => 'maîtrise limitée',
516 4 => 'maîtrise générale',
517 5 => 'bonne maîtrise',
518 6 => 'maîtrise complète'));
519 }
520 }
521
522 function handler_ajax_searchname(&$page, $id, $isFemale)
523 {
524 pl_content_headers("text/html");
525 $page->changeTpl('profile/general.searchname.tpl', NO_SKIN);
526 $res = XDB::query("SELECT id, name, FIND_IN_SET('public', flags) AS pub
527 FROM profile_name_enum
528 WHERE NOT FIND_IN_SET('not_displayed', flags)
529 AND NOT FIND_IN_SET('always_displayed', flags)");
530 $page->assign('sn_type_list', $res->fetchAllAssoc());
531 $page->assign('isFemale', $isFemale);
532 $page->assign('i', $id);
533 }
534
535 function handler_ajax_buildnames(&$page, $data, $isFemale)
536 {
537 pl_content_headers("text/html");
538 $page->changeTpl('profile/general.buildnames.tpl', NO_SKIN);
539 require_once 'name.func.inc.php';
540 $page->assign('names', build_javascript_names($data, $isFemale));
541 }
542
543 function handler_referent(&$page, $pf)
544 {
545 $page->changeTpl('profile/fiche_referent.tpl', SIMPLE);
546
547 $pf = Profile::get($pf);
548 if (!$pf) {
549 return PL_NOT_FOUND;
550 }
551
552 $page->assign_by_ref('profile', $pf);
553
554 ///// recuperations infos referent
555
556 // Sectors
557 $sectors = $subSectors = Array();
558 $res = XDB::iterRow(
559 "SELECT s.name AS label, ss.name AS label
560 FROM profile_mentor_sector AS m
561 LEFT JOIN profile_job_sector_enum AS s ON(m.sectorid = s.id)
562 LEFT JOIN profile_job_subsector_enum AS ss ON(m.sectorid = ss.sectorid AND m.subsectorid = ss.id)
563 WHERE pid = {?}", $pf->id());
564 while (list($sector, $subSector) = $res->next()) {
565 $sectors[] = $sector;
566 $subSectors[] = $subSector;
567 }
568 $page->assign_by_ref('sectors', $sectors);
569 $page->assign_by_ref('subSectors', $subSectors);
570
571 // Countries.
572 $res = XDB::query(
573 "SELECT gc.countryFR
574 FROM profile_mentor_country AS m
575 LEFT JOIN geoloc_countries AS gc ON (m.country = gc.iso_3166_1_a2)
576 WHERE pid = {?}", $pf->id());
577 $page->assign('pays', $res->fetchColumn());
578
579 $page->addJsLink('close_on_esc.js');
580 }
581
582 function handler_ref_sect(&$page, $sect)
583 {
584 pl_content_headers("text/html");
585 $page->changeTpl('include/field.select.tpl', NO_SKIN);
586 $page->assign('onchange', 'setSSectors()');
587 $page->assign('id', 'ssect_field');
588 $page->assign('name', 'subSector');
589 $it = XDB::iterator("SELECT pjsse.id, pjsse.name AS field
590 FROM profile_job_subsector_enum AS pjsse
591 INNER JOIN profile_mentor_sector AS pms ON (pms.sectorid = pjsse.sectorid AND pms.subsectorid = pjsse.id)
592 WHERE pjsse.sectorid = {?}
593 GROUP BY pjsse.id
594 ORDER BY pjsse.name", $sect);
595 $page->assign('list', $it);
596 }
597
598 function handler_ref_country(&$page, $sect, $ssect = '')
599 {
600 pl_content_headers("text/html");
601 $page->changeTpl('include/field.select.tpl', NO_SKIN);
602 $page->assign('name', 'pays_sel');
603 $where = ($ssect ? ' AND ms.subsectorid = {?}' : '');
604 $it = XDB::iterator("SELECT gc.iso_3166_1_a2 AS id, gc.countryFR AS field
605 FROM geoloc_countries AS gc
606 INNER JOIN profile_mentor_country AS mp ON (mp.country = gc.iso_3166_1_a2)
607 INNER JOIN profile_mentor_sector AS ms ON (ms.pid = mp.pid)
608 WHERE ms.sectorid = {?} " . $where . "
609 GROUP BY iso_3166_1_a2
610 ORDER BY countryFR", $sect, $ssect);
611 $page->assign('list', $it);
612 }
613
614 /**
615 * Page for url "referent/autocomplete". Display an "autocomplete" page (plain/text with values
616 * separated by "|" chars) for jobterms in referent (mentor) search.
617 * @see handler_jobterms
618 */
619 function handler_ref_autocomplete(&$page)
620 {
621 $this->handler_jobterms(&$page, 'mentor');
622 }
623
624 /**
625 * Page for url "profile/jobterms" (function also used for "referent/autocomplete" @see
626 * handler_ref_autocomplete). Displays an "autocomplete" page (plain text with values
627 * separated by "|" chars) for jobterms to add in profile.
628 * @param $page the Platal page
629 * @param $type set to 'mentor' to display the number of mentors for each term and order
630 * by descending number of mentors.
631 *
632 * @param Env::v('q') the text that has been typed and to complete automatically
633 */
634 function handler_jobterms(&$page, $type = 'nomentor')
635 {
636 pl_content_headers("text/plain");
637
638 $q = Env::v('q').'%';
639 $tokens = JobTerms::tokenize($q);
640 if (count($tokens) == 0) {
641 exit;
642 }
643 sort($tokens);
644 $q_normalized = implode(' ', $tokens);
645
646 // try to look in cached results
647 $cache = XDB::query('SELECT result
648 FROM search_autocomplete
649 WHERE name = {?} AND
650 query = {?} AND
651 generated > NOW() - INTERVAL 1 DAY',
652 $type, $q_normalized);
653 if ($res = $cache->fetchOneCell()) {
654 echo $res;
655 die();
656 }
657
658 $joins = JobTerms::token_join_query($tokens, 'e');
659 if ($type == 'mentor') {
660 $count = ', COUNT(DISTINCT pid) AS nb';
661 $countjoin = ' INNER JOIN profile_job_term_relation AS r ON(r.jtid_1 = e.jtid) INNER JOIN profile_mentor_term AS m ON(r.jtid_2 = m.jtid)';
662 $countorder = 'nb DESC, ';
663 } else {
664 $count = $countjoin = $countorder = '';
665 }
666 $list = XDB::iterator('SELECT e.jtid AS id, e.full_name AS field'.$count.'
667 FROM profile_job_term_enum AS e '.$joins.$countjoin.'
668 GROUP BY e.jtid
669 ORDER BY '.$countorder.'field
670 LIMIT 11');
671 $nbResults = 0;
672 $res = '';
673 while ($result = $list->next()) {
674 $nbResults++;
675 if ($nbResults == 11) {
676 $res .= $q."|-1\n";
677 } else {
678 $res .= $result['field'].'|';
679 if ($count) {
680 $res .= $result['nb'].'|';
681 }
682 $res .= $result['id'];
683 }
684 $res .= "\n";
685 }
686 XDB::query('REPLACE INTO search_autocomplete
687 VALUES ({?}, {?}, {?}, NOW())',
688 $type, $q_normalized, $res);
689 echo $res;
690 exit();
691 }
692
693 function handler_xnet(&$page)
694 {
695 $page->changeTpl('profile/groupesx.tpl');
696 $page->setTitle('Promo, Groupes X, Binets');
697
698 $req = XDB::query('
699 SELECT m.asso_id, a.nom, diminutif, a.logo IS NOT NULL AS has_logo,
700 COUNT(e.eid) AS events, mail_domain AS lists
701 FROM group_members AS m
702 INNER JOIN groups AS a ON(m.asso_id = a.id)
703 LEFT JOIN group_events AS e ON(e.asso_id = m.asso_id AND e.archive = 0)
704 WHERE uid = {?} GROUP BY m.asso_id ORDER BY a.nom', S::i('uid'));
705 $page->assign('assos', $req->fetchAllAssoc());
706 }
707
708 function handler_xnetlogo(&$page, $id)
709 {
710 if (is_null($id)) {
711 return PL_NOT_FOUND;
712 }
713
714 $res = XDB::query('SELECT logo, logo_mime
715 FROM groups
716 WHERE id = {?}', $id);
717 list($logo, $logo_mime) = $res->fetchOneRow();
718
719 if (!empty($logo)) {
720 pl_cached_dynamic_content_headers($logo_mime);
721 echo $logo;
722 } else {
723 pl_cached_dynamic_content_headers("image/jpeg");
724 readfile(dirname(__FILE__) . '/../htdocs/images/dflt_carre.jpg');
725 }
726
727 exit;
728 }
729
730 function handler_vcard(&$page, $x = null)
731 {
732 if (is_null($x)) {
733 return PL_NOT_FOUND;
734 }
735
736 global $globals;
737
738 if (substr($x, -4) == '.vcf') {
739 $x = substr($x, 0, strlen($x) - 4);
740 }
741
742 $vcard = new VCard();
743 $vcard->addProfile(Profile::get($x));
744 $vcard->show();
745 }
746
747 function handler_admin_trombino(&$page, $login = null, $action = null) {
748 $page->changeTpl('profile/admin_trombino.tpl');
749 $page->setTitle('Administration - Trombino');
750
751 if (!$login || !($user = User::get($login))) {
752 return PL_NOT_FOUND;
753 } else {
754 $page->assign_by_ref('user', $user);
755 }
756
757 switch ($action) {
758 case "original":
759 PlImage::fromFile("/home/web/trombino/photos" . $user->promo() . "/" . $user->login() . ".jpg", "image/jpeg")->send();
760 exit;
761
762 case "new":
763 S::assert_xsrf_token();
764
765 $data = file_get_contents($_FILES['userfile']['tmp_name']);
766 list($x, $y) = getimagesize($_FILES['userfile']['tmp_name']);
767 $mimetype = substr($_FILES['userfile']['type'], 6);
768 unlink($_FILES['userfile']['tmp_name']);
769 XDB::execute(
770 "REPLACE INTO profile_photos SET pid={?}, attachmime = {?}, attach={?}, x={?}, y={?}",
771 $user->profile()->id(), $mimetype, $data, $x, $y);
772 break;
773
774 case "delete":
775 S::assert_xsrf_token();
776
777 XDB::execute('DELETE FROM profile_photos WHERE pid = {?}', $user->profile()->id());
778 break;
779 }
780 }
781 function handler_admin_names(&$page, $action = 'list', $id = null) {
782 $page->setTitle('Administration - Types de noms');
783 $page->assign('title', 'Gestion des types de noms');
784 $table_editor = new PLTableEditor('admin/names', 'profile_name_enum', 'id', true);
785 $table_editor->describe('name', 'Nom', true);
786 $table_editor->describe('explanations', 'Explications', true);
787 $table_editor->describe('type', 'Type', true);
788 $table_editor->describe('flags', 'Flags', true);
789 $table_editor->describe('score', 'Score', true);
790 $table_editor->apply($page, $action, $id);
791 }
792 function handler_admin_binets(&$page, $action = 'list', $id = null) {
793 $page->setTitle('Administration - Binets');
794 $page->assign('title', 'Gestion des binets');
795 $table_editor = new PLTableEditor('admin/binets', 'profile_binet_enum', 'id');
796 $table_editor->add_join_table('profile_binets','binet_id',true);
797 $table_editor->describe('text','intitulé',true);
798 $table_editor->apply($page, $action, $id);
799 }
800 function handler_admin_education(&$page, $action = 'list', $id = null) {
801 $page->setTitle('Administration - Formations');
802 $page->assign('title', 'Gestion des formations');
803 $table_editor = new PLTableEditor('admin/education', 'profile_education_enum', 'id');
804 $table_editor->add_join_table('profile_education', 'eduid', true);
805 $table_editor->add_join_table('profile_education_degree', 'eduid', true);
806 $table_editor->describe('name', 'intitulé', true);
807 $table_editor->describe('url', 'site web', false);
808 $table_editor->apply($page, $action, $id);
809 }
810 function handler_admin_education_field(&$page, $action = 'list', $id = null) {
811 $page->setTitle('Administration - Domaines de formation');
812 $page->assign('title', 'Gestion des domaines de formation');
813 $table_editor = new PLTableEditor('admin/education_field', 'profile_education_field_enum', 'id', true);
814 $table_editor->add_join_table('profile_education', 'fieldid', true);
815 $table_editor->describe('field', 'domaine', true);
816 $table_editor->apply($page, $action, $id);
817 }
818 function handler_admin_education_degree(&$page, $action = 'list', $id = null) {
819 $page->setTitle('Administration - Niveau de formation');
820 $page->assign('title', 'Gestion des niveau de formation');
821 $table_editor = new PLTableEditor('admin/education_degree', 'profile_education_degree_enum', 'id');
822 $table_editor->add_join_table('profile_education_degree', 'degreeid', true);
823 $table_editor->add_join_table('profile_education', 'degreeid', true);
824 $table_editor->describe('degree', 'niveau', true);
825 $table_editor->apply($page, $action, $id);
826 }
827 function handler_admin_education_degree_set(&$page, $action = 'list', $id = null) {
828 $page->setTitle('Administration - Correspondances formations - niveau de formation');
829 $page->assign('title', 'Gestion des correspondances formations - niveau de formation');
830 $table_editor = new PLTableEditor('admin/education_degree_set', 'profile_education_degree', 'eduid', true);
831 $table_editor->describe('eduid', 'id formation', true);
832 $table_editor->describe('degreeid', 'id niveau', true);
833
834 // Adds fields to show the names of education
835 $table_editor->add_option_table('profile_education_enum','profile_education_enum.id = eduid');
836 $table_editor->add_option_field('profile_education_enum.name', 'edu_name', 'formation', null, 'degreeid');
837 // Adds fields to show the names of degrees
838 $table_editor->add_option_table('profile_education_degree_enum','profile_education_degree_enum.id = t.degreeid');
839 $table_editor->add_option_field('profile_education_degree_enum.degree', 'degree_name', 'niveau');
840
841 $table_editor->apply($page, $action, $id);
842 }
843 function handler_admin_sections(&$page, $action = 'list', $id = null) {
844 $page->setTitle('Administration - Sections');
845 $page->assign('title', 'Gestion des sections');
846 $table_editor = new PLTableEditor('admin/sections','profile_section_enum','id');
847 $table_editor->describe('text','intitulé',true);
848 $table_editor->apply($page, $action, $id);
849 }
850 function handler_admin_sectors(&$page, $action = 'list', $id = null) {
851 $page->setTitle('Administration - Secteurs');
852 $page->assign('title', 'Gestion des secteurs');
853 $table_editor = new PLTableEditor('admin/sectors', 'profile_job_subsubsector_enum', 'id', true);
854 $table_editor->describe('sectorid', 'id du secteur', false);
855 $table_editor->describe('subsectorid', 'id du sous-secteur', false);
856 $table_editor->describe('name', 'nom', true);
857 $table_editor->describe('flags', 'affichage', true);
858 $table_editor->apply($page, $action, $id);
859 }
860 function handler_admin_networking(&$page, $action = 'list', $id = null) {
861 $page->assign('xorg_title', 'Polytechnique.org - Administration - Networking');
862 $page->assign('title', 'Gestion des types de networking');
863 $table_editor = new PLTableEditor('admin/networking', 'profile_networking_enum', 'nwid');
864 $table_editor->describe('name', 'intitulé', true);
865 $table_editor->describe('icon', 'nom de l\'icône', false);
866 $table_editor->describe('filter', 'filtre', true);
867 $table_editor->describe('link', 'lien web', true);
868 $table_editor->apply($page, $action, $id);
869 }
870 function handler_admin_corps_enum(&$page, $action = 'list', $id = null) {
871 $page->setTitle('Administration - Corps');
872 $page->assign('title', 'Gestion des Corps');
873 $table_editor = new PLTableEditor('admin/corps_enum', 'profile_corps_enum', 'id');
874 $table_editor->describe('name', 'intitulé', true);
875 $table_editor->describe('abbreviation', 'abbréviation', true);
876 $table_editor->describe('still_exists', 'existe encore ?', true);
877 $table_editor->apply($page, $action, $id);
878 }
879 function handler_admin_corps_rank(&$page, $action = 'list', $id = null) {
880 $page->setTitle('Administration - Grade dans les Corps');
881 $page->assign('title', 'Gestion des grade dans les Corps');
882 $table_editor = new PLTableEditor('admin/corps_rank', 'profile_corps_rank_enum', 'id');
883 $table_editor->describe('name', 'intitulé', true);
884 $table_editor->describe('abbreviation', 'abbréviation', true);
885 $table_editor->apply($page, $action, $id);
886 }
887 function handler_admin_medals(&$page, $action = 'list', $id = null) {
888 $page->setTitle('Administration - Distinctions');
889 $page->assign('title', 'Gestion des Distinctions');
890 $table_editor = new PLTableEditor('admin/medals','profile_medal_enum','id');
891 $table_editor->describe('text', 'intitulé', true);
892 $table_editor->describe('img', 'nom de l\'image', false);
893 $table_editor->describe('flags', 'valider', true);
894 $table_editor->apply($page, $action, $id);
895 if ($id && $action == 'edit') {
896 $page->changeTpl('profile/admin_decos.tpl');
897
898 $mid = $id;
899
900 if (Post::v('act') == 'del') {
901 XDB::execute('DELETE FROM profile_medal_grade_enum
902 WHERE mid={?} AND gid={?}', $mid, Post::i('gid'));
903 } else {
904 foreach (Post::v('grades', array()) as $gid=>$text) {
905 if ($gid === 0) {
906 if (!empty($text)) {
907 $res = XDB::query('SELECT MAX(gid)
908 FROM profile_medal_grade_enum
909 WHERE mid = {?}', $mid);
910 $gid = $res->fetchOneCell() + 1;
911
912 XDB::execute('INSERT INTO profile_medal_grade_enum (mid, gid, text, pos)
913 VALUES ({?}, {?}, {?}, {?})',
914 $mid, $gid, $text, $_POST['pos']['0']);
915 }
916 } else {
917 XDB::execute('UPDATE profile_medal_grade_enum
918 SET pos={?}, text={?}
919 WHERE gid={?} AND mid={?}', $_POST['pos'][$gid], $text, $gid, $mid);
920 }
921 }
922 }
923 $res = XDB::iterator('SELECT gid, text, pos FROM profile_medal_grade_enum WHERE mid={?} ORDER BY pos', $mid);
924 $page->assign('grades', $res);
925 }
926 }
927 }
928
929 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
930 ?>
plat/al