projects / platal.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Fix typo and improve validation text for addresses.
[platal.git] / modules / profile.php
1 <?php
2 /***************************************************************************
3 * Copyright (C) 2003-2011 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
22 class ProfileModule extends PLModule
23 {
24 function handlers()
25 {
26 return array(
27 'photo' => $this->make_hook('photo', AUTH_PUBLIC),
28 'photo/change' => $this->make_hook('photo_change', AUTH_MDP),
29
30 'fiche.php' => $this->make_hook('fiche', AUTH_PUBLIC),
31 'profile' => $this->make_hook('profile', AUTH_PUBLIC),
32 'profile/private' => $this->make_hook('profile', AUTH_COOKIE),
33 'profile/ax' => $this->make_hook('ax', AUTH_COOKIE, 'admin,edit_directory'),
34 'profile/edit' => $this->make_hook('p_edit', AUTH_MDP),
35 'profile/ajax/address' => $this->make_hook('ajax_address', AUTH_COOKIE, 'user', NO_AUTH),
36 'profile/ajax/address/del' => $this->make_hook('ajax_address_del', AUTH_MDP),
37 'profile/ajax/tel' => $this->make_hook('ajax_tel', AUTH_COOKIE, 'user', NO_AUTH),
38 'profile/ajax/edu' => $this->make_hook('ajax_edu', AUTH_COOKIE, 'user', NO_AUTH),
39 'profile/ajax/medal' => $this->make_hook('ajax_medal', AUTH_COOKIE, 'user', NO_AUTH),
40 'profile/networking' => $this->make_hook('networking', AUTH_PUBLIC),
41 'profile/ajax/job' => $this->make_hook('ajax_job', AUTH_COOKIE, 'user', NO_AUTH),
42 'profile/ajax/skill' => $this->make_hook('ajax_skill', AUTH_COOKIE, 'user', NO_AUTH),
43 'profile/ajax/deltaten' => $this->make_hook('ajax_deltaten', AUTH_COOKIE, 'user', NO_AUTH),
44 'profile/ajax/searchname' => $this->make_hook('ajax_searchname', AUTH_COOKIE, 'user', NO_AUTH),
45 'profile/ajax/buildnames' => $this->make_hook('ajax_buildnames', AUTH_COOKIE, 'user', NO_AUTH),
46 'profile/ajax/tree/jobterms' => $this->make_hook('ajax_tree_job_terms', AUTH_COOKIE, 'user', NO_AUTH),
47 'profile/jobterms' => $this->make_hook('jobterms', AUTH_COOKIE, 'user', NO_AUTH),
48 'javascript/education.js' => $this->make_hook('education_js', AUTH_COOKIE),
49 'javascript/grades.js' => $this->make_hook('grades_js', AUTH_COOKIE),
50 'profile/medal' => $this->make_hook('medal', AUTH_PUBLIC),
51
52 'referent' => $this->make_hook('referent', AUTH_COOKIE),
53 'referent/country' => $this->make_hook('ref_country', AUTH_COOKIE, 'user', NO_AUTH),
54 'referent/autocomplete' => $this->make_hook('ref_autocomplete', AUTH_COOKIE, 'user', NO_AUTH),
55
56 'groupes-x' => $this->make_hook('xnet', AUTH_COOKIE),
57 'groupes-x/logo' => $this->make_hook('xnetlogo', AUTH_PUBLIC),
58
59 'vcard' => $this->make_hook('vcard', AUTH_COOKIE, 'user', NO_HTTPS),
60 'admin/binets' => $this->make_hook('admin_binets', AUTH_MDP, 'admin'),
61 'admin/medals' => $this->make_hook('admin_medals', AUTH_MDP, 'admin'),
62 'admin/education' => $this->make_hook('admin_education', AUTH_MDP, 'admin'),
63 'admin/education_field' => $this->make_hook('admin_education_field', AUTH_MDP, 'admin'),
64 'admin/education_degree' => $this->make_hook('admin_education_degree', AUTH_MDP, 'admin'),
65 'admin/education_degree_set' => $this->make_hook('admin_education_degree_set', AUTH_MDP, 'admin'),
66 'admin/sections' => $this->make_hook('admin_sections', AUTH_MDP, 'admin'),
67 'admin/networking' => $this->make_hook('admin_networking', AUTH_MDP, 'admin'),
68 'admin/trombino' => $this->make_hook('admin_trombino', AUTH_MDP, 'admin'),
69 'admin/corps_enum' => $this->make_hook('admin_corps_enum', AUTH_MDP, 'admin'),
70 'admin/corps_rank' => $this->make_hook('admin_corps_rank', AUTH_MDP, 'admin'),
71 );
72 }
73
74 /* Function needed for compatibility reasons.
75 * TODO: removes calls to fiche.php?user=blah.machin.2083 and then removes this.
76 */
77 function handler_fiche($page)
78 {
79 return $this->handler_profile($page, Env::v('user'));
80 }
81
82 function handler_photo($page, $x = null, $req = null)
83 {
84 if (!$x || !($profile = Profile::get($x))) {
85 return PL_NOT_FOUND;
86 }
87
88 // Retrieve the photo and its mime type.
89 if ($req && S::logged()) {
90 $myphoto = PhotoReq::get_request($profile->id());
91 $photo = PlImage::fromData($myphoto->data, $myphoto->mimetype);
92 } else {
93 $photo = $profile->getPhoto(true, true);
94 }
95
96 // Display the photo, or a default one when not available.
97 $photo->send();
98 }
99
100 function handler_medal($page, $mid)
101 {
102 $thumb = ($mid == 'thumb');
103 $mid = $thumb ? @func_get_arg(2) : $mid;
104
105 $res = XDB::query("SELECT img
106 FROM profile_medal_enum
107 WHERE id = {?}",
108 $mid);
109 $img = $thumb ?
110 dirname(__FILE__).'/../htdocs/images/medals/thumb/' . $res->fetchOneCell() :
111 dirname(__FILE__).'/../htdocs/images/medals/' . $res->fetchOneCell();
112 pl_cached_content_headers(mime_content_type($img));
113 echo file_get_contents($img);
114 exit;
115 }
116
117 function handler_networking($page, $mid)
118 {
119 $res = XDB::query("SELECT icon
120 FROM profile_networking_enum
121 WHERE nwid = {?}",
122 $mid);
123 $img = dirname(__FILE__) . '/../htdocs/images/networking/' . $res->fetchOneCell();
124 pl_cached_content_headers(mime_content_type($img));
125 echo file_get_contents($img);
126 exit;
127 }
128
129 /** Tries to return the correct profile from a given hrpid.
130 */
131 private function findProfile($hrpid = null)
132 {
133 if (is_null($hrpid)) {
134 $user = S::user();
135 if (!$user->hasProfile()) {
136 return PL_NOT_FOUND;
137 } else {
138 $profile = $user->profile();
139 }
140 } else {
141 $profile = Profile::get($hrpid);
142 }
143
144 if (!$profile) {
145 return PL_NOT_FOUND;
146 } else if (!S::user()->canEdit($profile) && Platal::notAllowed()) {
147 return PL_FORBIDDEN;
148 }
149 return $profile;
150 }
151
152 function handler_photo_change($page, $hrpid = null)
153 {
154 global $globals;
155 $profile = $this->findProfile($hrpid);
156 if (! ($profile instanceof Profile) && ($profile == PL_NOT_FOUND || $profile == PL_FORBIDDEN)) {
157 return $profile;
158 }
159 if (is_null($hrpid)) {
160 pl_redirect('photo/change/' . $profile->hrid());
161 }
162
163 $page->changeTpl('profile/trombino.tpl');
164 $page->assign('hrpid', $profile->hrid());
165
166 $trombi_x = '/home/web/trombino/photos' . $profile->promo() . '/' . $profile->hrid() . '.jpg';
167 if (Env::has('upload')) {
168 S::assert_xsrf_token();
169
170 $upload = new PlUpload($profile->hrid(), 'photo');
171 if (!$upload->upload($_FILES['userfile']) && !$upload->download(Env::v('photo'))) {
172 $page->trigError('Une erreur est survenue lors du téléchargement du fichier');
173 } else {
174 $myphoto = new PhotoReq(S::user(), $profile, $upload);
175 if ($myphoto->isValid()) {
176 $myphoto->submit();
177 }
178 }
179 } elseif (Env::has('trombi')) {
180 S::assert_xsrf_token();
181
182 $upload = new PlUpload($profile->hrid(), 'photo');
183 if ($upload->copyFrom($trombi_x)) {
184 $myphoto = new PhotoReq(S::user(), $profile, $upload);
185 if ($myphoto->isValid()) {
186 $myphoto->commit();
187 $myphoto->clean();
188 }
189 }
190 } elseif (Env::v('suppr')) {
191 S::assert_xsrf_token();
192
193 XDB::execute('DELETE FROM profile_photos
194 WHERE pid = {?}',
195 $profile->id());
196 XDB::execute("DELETE FROM requests
197 WHERE pid = {?} AND type = 'photo'",
198 $profile->id());
199 $globals->updateNbValid();
200 $page->trigSuccess("Ta photo a bien été supprimée. Elle ne sera plus visible sur le site dans au plus une heure.");
201 } elseif (Env::v('cancel')) {
202 S::assert_xsrf_token();
203
204 $sql = XDB::query("DELETE FROM requests
205 WHERE pid = {?} AND type = 'photo'",
206 $profile->id());
207 $globals->updateNbValid();
208 }
209
210 $sql = XDB::query("SELECT COUNT(*)
211 FROM requests
212 WHERE pid = {?} AND type = 'photo'",
213 $profile->id());
214 $page->assign('submited', $sql->fetchOneCell());
215 $page->assign('has_trombi_x', file_exists($trombi_x));
216 }
217
218 function handler_profile($page, $id = null)
219 {
220 // Checks if the identifier corresponds to an actual profile. Numeric
221 // identifiers canonly be user by logged users.
222 if (is_null($id)) {
223 return PL_NOT_FOUND;
224 }
225
226 // Determines the access level at which the profile will be displayed.
227 if (!S::logged() || !S::user()->checkPerms('directory_ax') || Env::v('view') == 'public') {
228 $view = 'public';
229 } else if (!S::user()->checkPerms('directory_private') || Env::v('view') == 'ax') {
230 $view = 'ax';
231 } else {
232 $view = 'private';
233 }
234
235 // Display pending picture
236 if (S::logged() && Env::v('modif') == 'new') {
237 $page->assign('with_pending_pic', true);
238 }
239
240 $pid = (!is_numeric($id) || S::admin()) ? Profile::getPID($id) : null;
241 if (is_null($pid)) {
242 $owner = User::getSilent($id);
243 if ($owner) {
244 $profile = $owner->profile(true, Profile::FETCH_ALL, $view);
245 if ($profile) {
246 $pid = $profile->id();
247 }
248 }
249 } else {
250 // Fetches profile's and profile's owner information and redirects to
251 // marketing if the owner has not subscribed and the requirer has logged in.
252 $profile = Profile::get($pid, Profile::FETCH_ALL, $view);
253 $owner = $profile->owner();
254 }
255 if (is_null($pid)) {
256 if (S::logged()) {
257 $page->kill($id . " inconnu dans l'annuaire.");
258 }
259 return PL_NOT_FOUND;
260 }
261 // Now that we know this is an existing profile, we can switch to the
262 // appropriate template.
263 $page->changeTpl('profile/profile.tpl', SIMPLE);
264
265 // Profile view are logged.
266 if (S::logged()) {
267 S::logger()->log('view_profile', $profile->hrid());
268 }
269
270 // Sets the title of the html page.
271 $page->setTitle($profile->fullName());
272
273 // Determines and displays the virtual alias.
274 if (!is_null($owner) && $profile->alias_pub == 'public') {
275 $page->assign('virtualalias', $owner->emailAlias());
276 }
277
278 $page->assign_by_ref('profile', $profile);
279 $page->assign_by_ref('owner', $owner);
280 $page->assign('view', $view);
281 $page->assign('logged', S::logged());
282
283 header('Last-Modified: ' . date('r', strtotime($profile->last_change)));
284 }
285
286 function handler_ax($page, $user = null)
287 {
288 $user = Profile::get($user);
289 if (!$user) {
290 return PL_NOT_FOUND;
291 }
292 if (!$user->ax_id) {
293 $page->kill("Le matricule AX de {$user->hrid()} est inconnu");
294 }
295 http_redirect("http://www.polytechniciens.com/?page=AX_FICHE_ANCIEN&ancc_id=" . $user->ax_id);
296 }
297
298 function handler_p_edit($page, $hrpid = null, $opened_tab = null, $mode = null, $success = null)
299 {
300 global $globals;
301
302 if (in_array($hrpid, array('general', 'adresses', 'emploi', 'poly', 'deco', 'skill', 'mentor', 'deltaten'))) {
303 $aux = $opened_tab;
304 $opened_tab = $hrpid;
305 $hrpid = $aux;
306 $url_error = true;
307 } else {
308 $url_error = false;
309 }
310 $profile = $this->findProfile($hrpid);
311 if (! ($profile instanceof Profile) && ($profile == PL_NOT_FOUND || $profile == PL_FORBIDDEN)) {
312 return $profile;
313 }
314 if (is_null($hrpid) || $url_error) {
315 pl_redirect('profile/edit/' . $profile->hrid() . (is_null($opened_tab) ? '' : '/' . $opened_tab));
316 }
317
318 // Build the page
319 $page->addJsLink('education.js', true, false); /* dynamic content */
320 $page->addJsLink('grades.js', true, false); /* dynamic content */
321 $page->addJsLink('profile.js');
322 $wiz = new PlWizard('Profil', PlPage::getCoreTpl('plwizard.tpl'), true, true, false);
323 $wiz->addUserData('profile', $profile);
324 $wiz->addUserData('owner', $profile->owner());
325 $this->load('page.inc.php');
326 $wiz->addPage('ProfilePageGeneral', 'Général', 'general');
327 $wiz->addPage('ProfilePageAddresses', 'Adresses personnelles', 'adresses');
328 $wiz->addPage('ProfilePageJobs', 'Informations professionnelles', 'emploi');
329 if (S::user()->checkPerms(User::PERM_DIRECTORY_PRIVATE)) {
330 $wiz->addPage('ProfilePageGroups', 'Groupes X - Binets', 'poly');
331 }
332 $wiz->addPage('ProfilePageDecos', 'Décorations - Medailles', 'deco');
333 if (S::user()->checkPerms(User::PERM_DIRECTORY_PRIVATE)) {
334 $wiz->addPage('ProfilePageSkills', 'Compétences diverses', 'skill');
335 $wiz->addPage('ProfilePageMentor', 'Mentoring', 'mentor');
336 }
337 if (S::user()->checkPerms(User::PERM_DIRECTORY_PRIVATE) && $profile->isDeltatenEnabled(Profile::DELTATEN_OLD)) {
338 $wiz->addPage('ProfilePageDeltaten', 'Opération N N-10', 'deltaten');
339 }
340 $wiz->apply($page, 'profile/edit/' . $profile->hrid(), $opened_tab, $mode);
341
342 if (!$profile->birthdate) {
343 $page->trigWarning("Ta date de naissance n'est pas renseignée, ce qui t'empêcheras de réaliser"
344 . " la procédure de récupération de mot de passe si un jour tu le perdais.");
345 }
346
347 $page->setTitle('Mon Profil');
348 $page->assign('hrpid', $profile->hrid());
349 if (isset($success) && $success) {
350 $page->trigSuccess('Ton profil a bien été mis à jour.');
351 }
352 }
353
354 function handler_education_js($page)
355 {
356 pl_cached_content_headers("text/javascript", "utf-8");
357 $page->changeTpl('profile/education.js.tpl', NO_SKIN);
358 require_once 'education.func.inc.php';
359 }
360
361 function handler_grades_js($page)
362 {
363 pl_cached_content_headers("text/javascript", "utf-8");
364 $page->changeTpl('profile/grades.js.tpl', NO_SKIN);
365 $res = XDB::iterator("SELECT *
366 FROM profile_medal_grade_enum
367 ORDER BY mid, pos");
368 $grades = array();
369 while ($tmp = $res->next()) {
370 $grades[$tmp['mid']][] = $tmp;
371 }
372 $page->assign('grades', $grades);
373
374 $res = XDB::iterator("SELECT *, FIND_IN_SET('validation', flags) AS validate
375 FROM profile_medal_enum
376 ORDER BY type, text");
377 $mlist = array();
378 while ($tmp = $res->next()) {
379 $mlist[$tmp['type']][] = $tmp;
380 }
381 $page->assign('medal_list', $mlist);
382 }
383
384 function handler_ajax_address($page, $id, $pid)
385 {
386 pl_content_headers("text/html");
387 $page->changeTpl('profile/adresses.address.tpl', NO_SKIN);
388 $page->assign('i', $id);
389 $page->assign('address', array());
390 $page->assign('profile', Profile::get($pid));
391 $page->assign('isMe', true);
392 $page->assign('geocoding_removal', true);
393 }
394
395 function handler_ajax_tel($page, $prefid, $prefname, $telid, $subField, $mainField, $mainId)
396 {
397 pl_content_headers("text/html");
398 $page->changeTpl('profile/phone.tpl', NO_SKIN);
399 $page->assign('prefid', $prefid);
400 $page->assign('prefname', $prefname);
401 $page->assign('telid', $telid);
402 $phone = new Phone();
403 $page->assign('tel', $phone->toFormArray());
404 if ($mainField) {
405 $page->assign('subField', $subField);
406 $page->assign('mainField', $mainField);
407 $page->assign('mainId', $mainId);
408 }
409 }
410
411 function handler_ajax_edu($page, $eduid, $class)
412 {
413 pl_content_headers("text/html");
414 $page->changeTpl('profile/general.edu.tpl', NO_SKIN);
415 $res = XDB::iterator("SELECT id, field
416 FROM profile_education_field_enum
417 ORDER BY field");
418 $page->assign('edu_fields', $res->fetchAllAssoc());
419 $page->assign('eduid', $eduid);
420 $page->assign('class', $class);
421 require_once "education.func.inc.php";
422 }
423
424 function handler_ajax_medal($page, $i, $id)
425 {
426 pl_content_headers("text/html");
427 $page->changeTpl('profile/deco.medal.tpl', NO_SKIN);
428 $page->assign('id', $i);
429 $page->assign('medal', array('id' => $id, 'grade' => 0, 'valid' => 0));
430 }
431
432 function handler_ajax_job($page, $id, $pid)
433 {
434 pl_content_headers("text/html");
435 $page->changeTpl('profile/jobs.job.tpl', NO_SKIN);
436 $page->assign('i', $id);
437 $page->assign('job', array());
438 $page->assign('new', true);
439 $page->assign('profile', Profile::get($pid));
440 $page->assign('isMe', true);
441 $page->assign('geocoding_removal', true);
442 require_once "emails.combobox.inc.php";
443 fill_email_combobox($page, array('redirect', 'job', 'stripped_directory'));
444 }
445
446 /**
447 * Page for url "profile/ajax/tree/jobterms". Display a JSon page containing
448 * the sub-branches of a branch in the job terms tree.
449 * @param $page the Platal page
450 * @param $filter filter helps to display only jobterms that are contained in jobs or in mentors
451 *
452 * @param Env::i('jtid') job term id of the parent branch, if none trunk will be used
453 * @param Env::v('attrfunc') the name of a javascript function that will be called when a branch
454 * is chosen
455 * @param Env::v('treeid') tree id that will be given as first argument of attrfunc function
456 * the second argument will be the chosen job term id and the third one the chosen job full name.
457 */
458 function handler_ajax_tree_job_terms($page, $filter = JobTerms::ALL)
459 {
460 JobTerms::ajaxGetBranch($page, $filter);
461 }
462
463 function handler_ajax_skill($page, $cat, $id)
464 {
465 pl_content_headers("text/html");
466 $page->changeTpl('profile/skill.skill.tpl', NO_SKIN);
467 $page->assign('cat', $cat);
468 $page->assign('id', $id);
469 if ($cat == 'competences') {
470 $page->assign('levels', array('initié' => 'initié',
471 'bonne connaissance' => 'bonne connaissance',
472 'expert' => 'expert'));
473 } else {
474 $page->assign('levels', array(1 => 'connaissance basique',
475 2 => 'maîtrise des bases',
476 3 => 'maîtrise limitée',
477 4 => 'maîtrise générale',
478 5 => 'bonne maîtrise',
479 6 => 'maîtrise complète'));
480 }
481 }
482
483 function handler_ajax_searchname($page, $id, $isFemale)
484 {
485 pl_content_headers("text/html");
486 $page->changeTpl('profile/general.private_name.tpl', NO_SKIN);
487 $page->assign('other_names', array('nickname' => 'Surnom', 'firstname' => 'Autre prénom', 'lastname' => 'Autre nom'));
488 $page->assign('new_name', true);
489 $page->assign('isFemale', $isFemale);
490 $page->assign('id', $id);
491 }
492
493 function handler_ajax_buildnames($page, $data, $isFemale)
494 {
495 pl_content_headers("text/html");
496 $page->changeTpl('profile/general.buildnames.tpl', NO_SKIN);
497 require_once 'name.func.inc.php';
498 $page->assign('names', build_javascript_names($data, $isFemale));
499 }
500
501 function handler_referent($page, $pf)
502 {
503 $page->changeTpl('profile/fiche_referent.tpl', SIMPLE);
504
505 $pf = Profile::get($pf);
506 if (!$pf) {
507 return PL_NOT_FOUND;
508 }
509
510 $page->assign_by_ref('profile', $pf);
511
512 // Retrieves referents' countries.
513 $res = XDB::query(
514 "SELECT gc.country
515 FROM profile_mentor_country AS m
516 LEFT JOIN geoloc_countries AS gc ON (m.country = gc.iso_3166_1_a2)
517 WHERE pid = {?}", $pf->id());
518 $page->assign('pays', $res->fetchColumn());
519 }
520
521 function handler_ref_country($page)
522 {
523 pl_content_headers("text/html");
524 $page->changeTpl('include/field.select.tpl', NO_SKIN);
525 $page->assign('name', 'pays_sel');
526 $it = XDB::iterator("SELECT gc.iso_3166_1_a2 AS id, gc.country AS field
527 FROM geoloc_countries AS gc
528 INNER JOIN profile_mentor_country AS mp ON (mp.country = gc.iso_3166_1_a2)
529 GROUP BY iso_3166_1_a2
530 ORDER BY country");
531 $page->assign('list', $it);
532 }
533
534 /**
535 * Page for url "referent/autocomplete". Display an "autocomplete" page (plain/text with values
536 * separated by "|" chars) for jobterms in referent (mentor) search.
537 * @see handler_jobterms
538 */
539 function handler_ref_autocomplete($page)
540 {
541 $this->handler_jobterms($page, 'mentor');
542 }
543
544 /**
545 * Page for url "profile/jobterms" (function also used for "referent/autocomplete" @see
546 * handler_ref_autocomplete). Displays an "autocomplete" page (plain text with values
547 * separated by "|" chars) for jobterms to add in profile.
548 * @param $page the Platal page
549 * @param $type set to 'mentor' to display the number of mentors for each term and order
550 * by descending number of mentors.
551 *
552 * @param Env::v('q') the text that has been typed and to complete automatically
553 */
554 function handler_jobterms($page, $type = 'nomentor')
555 {
556 pl_content_headers("text/plain");
557
558 $q = Env::v('q').'%';
559 $tokens = JobTerms::tokenize($q);
560 if (count($tokens) == 0) {
561 exit;
562 }
563 sort($tokens);
564 $q_normalized = implode(' ', $tokens);
565
566 // try to look in cached results
567 $cache = XDB::query('SELECT result
568 FROM search_autocomplete
569 WHERE name = {?} AND
570 query = {?} AND
571 generated > NOW() - INTERVAL 1 DAY',
572 $type, $q_normalized);
573 if ($res = $cache->fetchOneCell()) {
574 echo $res;
575 die();
576 }
577
578 $joins = JobTerms::token_join_query($tokens, 'e');
579 if ($type == 'mentor') {
580 $count = ', COUNT(DISTINCT pid) AS nb';
581 $countjoin = ' INNER JOIN profile_job_term_relation AS r ON(r.jtid_1 = e.jtid) INNER JOIN profile_mentor_term AS m ON(r.jtid_2 = m.jtid)';
582 $countorder = 'nb DESC, ';
583 } else {
584 $count = $countjoin = $countorder = '';
585 }
586 $list = XDB::iterator('SELECT e.jtid AS id, e.full_name AS field'.$count.'
587 FROM profile_job_term_enum AS e '.$joins.$countjoin.'
588 GROUP BY e.jtid
589 ORDER BY '.$countorder.'field
590 LIMIT 11');
591 $nbResults = 0;
592 $res = '';
593 while ($result = $list->next()) {
594 $nbResults++;
595 if ($nbResults == 11) {
596 $res .= $q."|-1\n";
597 } else {
598 $res .= $result['field'].'|';
599 if ($count) {
600 $res .= $result['nb'].'|';
601 }
602 $res .= $result['id'];
603 }
604 $res .= "\n";
605 }
606 XDB::query('INSERT INTO search_autocomplete (name, query, result, generated)
607 VALUES ({?}, {?}, {?}, NOW())
608 ON DUPLICATE KEY UPDATE result = VALUES(result), generated = VALUES(generated)',
609 $type, $q_normalized, $res);
610 echo $res;
611 exit();
612 }
613
614 function handler_xnet($page)
615 {
616 $page->changeTpl('profile/groupesx.tpl');
617 $page->setTitle('Promo, Groupes X, Binets');
618
619 $req = XDB::query('
620 SELECT m.asso_id, a.nom, diminutif, a.logo IS NOT NULL AS has_logo,
621 COUNT(e.eid) AS events, mail_domain AS lists
622 FROM group_members AS m
623 INNER JOIN groups AS a ON(m.asso_id = a.id)
624 LEFT JOIN group_events AS e ON(e.asso_id = m.asso_id AND e.archive = 0)
625 WHERE m.uid = {?} GROUP BY m.asso_id ORDER BY a.nom', S::i('uid'));
626 $page->assign('assos', $req->fetchAllAssoc());
627 }
628
629 function handler_xnetlogo($page, $id)
630 {
631 if (is_null($id)) {
632 return PL_NOT_FOUND;
633 }
634
635 $res = XDB::query('SELECT logo, logo_mime
636 FROM groups
637 WHERE id = {?}', $id);
638 list($logo, $logo_mime) = $res->fetchOneRow();
639
640 if (!empty($logo)) {
641 pl_cached_dynamic_content_headers($logo_mime);
642 echo $logo;
643 } else {
644 pl_cached_dynamic_content_headers("image/jpeg");
645 readfile(dirname(__FILE__) . '/../htdocs/images/dflt_carre.jpg');
646 }
647
648 exit;
649 }
650
651 function handler_vcard($page, $x = null)
652 {
653 if (is_null($x)) {
654 return PL_NOT_FOUND;
655 }
656
657 global $globals;
658
659 if (substr($x, -4) == '.vcf') {
660 $x = substr($x, 0, strlen($x) - 4);
661 }
662
663 $vcard = new VCard();
664 $vcard->addProfile(Profile::get($x, Profile::FETCH_ALL));
665 $vcard->show();
666 }
667
668 function handler_admin_trombino($page, $login = null, $action = null) {
669 $page->changeTpl('profile/admin_trombino.tpl');
670 $page->setTitle('Administration - Trombino');
671
672 if (!$login || !($user = User::get($login))) {
673 return PL_NOT_FOUND;
674 } else {
675 $page->assign_by_ref('user', $user);
676 }
677
678 switch ($action) {
679 case "original":
680 PlImage::fromFile("/home/web/trombino/photos" . $user->promo() . "/" . $user->login() . ".jpg", "image/jpeg")->send();
681 exit;
682
683 case "new":
684 S::assert_xsrf_token();
685
686 $data = file_get_contents($_FILES['userfile']['tmp_name']);
687 list($x, $y) = getimagesize($_FILES['userfile']['tmp_name']);
688 $mimetype = substr($_FILES['userfile']['type'], 6);
689 unlink($_FILES['userfile']['tmp_name']);
690 XDB::execute('INSERT INTO profile_photos (pid, attachmime, attach, x, y)
691 VALUES ({?}, {?}, {?}, {?}, {?})
692 ON DUPLICATE KEY UPDATE attachmime = VALUES(attachmime), attach = VALUES(attach), x = VALUES(x), y = VALUES(y)',
693 $user->profile()->id(), $mimetype, $data, $x, $y);
694 break;
695
696 case "delete":
697 S::assert_xsrf_token();
698
699 XDB::execute('DELETE FROM profile_photos WHERE pid = {?}', $user->profile()->id());
700 break;
701 }
702 }
703 function handler_admin_binets($page, $action = 'list', $id = null) {
704 $page->setTitle('Administration - Binets');
705 $page->assign('title', 'Gestion des binets');
706 $table_editor = new PLTableEditor('admin/binets', 'profile_binet_enum', 'id');
707 $table_editor->add_join_table('profile_binets','binet_id',true);
708 $table_editor->describe('text','intitulé',true);
709 $table_editor->apply($page, $action, $id);
710 }
711 function handler_admin_education($page, $action = 'list', $id = null) {
712 $page->setTitle('Administration - Formations');
713 $page->assign('title', 'Gestion des formations');
714 $table_editor = new PLTableEditor('admin/education', 'profile_education_enum', 'id');
715 $table_editor->add_join_table('profile_education', 'eduid', true);
716 $table_editor->add_join_table('profile_education_degree', 'eduid', true);
717 $table_editor->describe('name', 'intitulé', true);
718 $table_editor->describe('url', 'site web', false, true);
719 $table_editor->apply($page, $action, $id);
720 }
721 function handler_admin_education_field($page, $action = 'list', $id = null) {
722 $page->setTitle('Administration - Domaines de formation');
723 $page->assign('title', 'Gestion des domaines de formation');
724 $table_editor = new PLTableEditor('admin/education_field', 'profile_education_field_enum', 'id', true);
725 $table_editor->add_join_table('profile_education', 'fieldid', true);
726 $table_editor->describe('field', 'domaine', true);
727 $table_editor->apply($page, $action, $id);
728 }
729 function handler_admin_education_degree($page, $action = 'list', $id = null) {
730 $page->setTitle('Administration - Niveau de formation');
731 $page->assign('title', 'Gestion des niveau de formation');
732 $table_editor = new PLTableEditor('admin/education_degree', 'profile_education_degree_enum', 'id');
733 $table_editor->add_join_table('profile_education_degree', 'degreeid', true);
734 $table_editor->add_join_table('profile_education', 'degreeid', true);
735 $table_editor->describe('degree', 'niveau', true);
736 $table_editor->apply($page, $action, $id);
737 }
738 function handler_admin_education_degree_set($page, $action = 'list', $id = null, $id2 = null) {
739 $page->setTitle('Administration - Correspondances formations - niveau de formation');
740 $page->assign('title', 'Gestion des correspondances formations - niveau de formation');
741 $table_editor = new PLTableEditor('admin/education_degree_set', 'profile_education_degree', 'eduid', true, 'degreeid');
742 $table_editor->describe('eduid', 'id formation', true);
743 $table_editor->describe('degreeid', 'id niveau', true);
744
745 // Adds fields to show the names of education
746 $table_editor->add_option_table('profile_education_enum','profile_education_enum.id = eduid');
747 $table_editor->add_option_field('profile_education_enum.name', 'edu_name', 'formation', null, 'degreeid');
748 // Adds fields to show the names of degrees
749 $table_editor->add_option_table('profile_education_degree_enum','profile_education_degree_enum.id = t.degreeid');
750 $table_editor->add_option_field('profile_education_degree_enum.degree', 'degree_name', 'niveau');
751
752 $table_editor->apply($page, $action, $id, $id2);
753 }
754 function handler_admin_sections($page, $action = 'list', $id = null) {
755 $page->setTitle('Administration - Sections');
756 $page->assign('title', 'Gestion des sections');
757 $table_editor = new PLTableEditor('admin/sections','profile_section_enum','id');
758 $table_editor->describe('text','intitulé',true);
759 $table_editor->apply($page, $action, $id);
760 }
761 function handler_admin_networking($page, $action = 'list', $id = null) {
762 $page->assign('xorg_title', 'Polytechnique.org - Administration - Networking');
763 $page->assign('title', 'Gestion des types de networking');
764 $table_editor = new PLTableEditor('admin/networking', 'profile_networking_enum', 'nwid');
765 $table_editor->describe('name', 'intitulé', true);
766 $table_editor->describe('icon', 'nom de l\'icône', false, true);
767 $table_editor->describe('filter', 'filtre', true);
768 $table_editor->describe('link', 'lien web', true);
769 $table_editor->apply($page, $action, $id);
770 }
771 function handler_admin_corps_enum($page, $action = 'list', $id = null) {
772 $page->setTitle('Administration - Corps');
773 $page->assign('title', 'Gestion des Corps');
774 $table_editor = new PLTableEditor('admin/corps_enum', 'profile_corps_enum', 'id');
775 $table_editor->describe('name', 'intitulé', true);
776 $table_editor->describe('abbreviation', 'abbréviation', true);
777 $table_editor->describe('still_exists', 'existe encore ?', true);
778 $table_editor->apply($page, $action, $id);
779 }
780 function handler_admin_corps_rank($page, $action = 'list', $id = null) {
781 $page->setTitle('Administration - Grade dans les Corps');
782 $page->assign('title', 'Gestion des grade dans les Corps');
783 $table_editor = new PLTableEditor('admin/corps_rank', 'profile_corps_rank_enum', 'id');
784 $table_editor->describe('name', 'intitulé', true);
785 $table_editor->describe('abbreviation', 'abbréviation', true);
786 $table_editor->apply($page, $action, $id);
787 }
788 function handler_admin_medals($page, $action = 'list', $id = null) {
789 $page->setTitle('Administration - Distinctions');
790 $page->assign('title', 'Gestion des Distinctions');
791 $table_editor = new PLTableEditor('admin/medals','profile_medal_enum','id');
792 $table_editor->describe('text', 'intitulé', true);
793 $table_editor->describe('img', 'nom de l\'image', false, true);
794 $table_editor->describe('flags', 'valider', true);
795 $table_editor->apply($page, $action, $id);
796 if ($id && $action == 'edit') {
797 $page->changeTpl('profile/admin_decos.tpl');
798
799 $mid = $id;
800
801 if (Post::v('act') == 'del') {
802 XDB::execute('DELETE FROM profile_medal_grade_enum
803 WHERE mid={?} AND gid={?}', $mid, Post::i('gid'));
804 } else {
805 foreach (Post::v('grades', array()) as $gid=>$text) {
806 if ($gid === 0) {
807 if (!empty($text)) {
808 $res = XDB::query('SELECT MAX(gid)
809 FROM profile_medal_grade_enum
810 WHERE mid = {?}', $mid);
811 $gid = $res->fetchOneCell() + 1;
812
813 XDB::execute('INSERT INTO profile_medal_grade_enum (mid, gid, text, pos)
814 VALUES ({?}, {?}, {?}, {?})',
815 $mid, $gid, $text, $_POST['pos']['0']);
816 }
817 } else {
818 XDB::execute('UPDATE profile_medal_grade_enum
819 SET pos={?}, text={?}
820 WHERE gid={?} AND mid={?}', $_POST['pos'][$gid], $text, $gid, $mid);
821 }
822 }
823 }
824 $res = XDB::iterator('SELECT gid, text, pos FROM profile_medal_grade_enum WHERE mid={?} ORDER BY pos', $mid);
825 $page->assign('grades', $res);
826 }
827 }
828 }
829
830 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
831 ?>
plat/al