projects / platal.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Php 5.3...
[platal.git] / modules / xnet.php
1 <?php
2 /***************************************************************************
3 * Copyright (C) 2003-2011 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
22 class XnetModule extends PLModule
23 {
24 function handlers()
25 {
26 return array(
27 'index' => $this->make_hook('index', AUTH_PUBLIC),
28 'exit' => $this->make_hook('exit', AUTH_PUBLIC),
29
30 'admin' => $this->make_hook('admin', AUTH_MDP, 'admin'),
31 'groups' => $this->make_hook('groups', AUTH_PUBLIC),
32 'groupes.php' => $this->make_hook('groups2', AUTH_PUBLIC),
33 'plan' => $this->make_hook('plan', AUTH_PUBLIC),
34 'photo' => $this->make_hook('photo', AUTH_MDP),
35 'autologin' => $this->make_hook('autologin', AUTH_MDP),
36 'login/ext' => $this->make_hook('login_ext', AUTH_PUBLIC),
37 'register/ext' => $this->make_hook('register_ext', AUTH_PUBLIC),
38 'edit' => $this->make_hook('edit', AUTH_MDP, 'user'),
39
40 'Xnet' => $this->make_wiki_hook(),
41 );
42 }
43
44 function handler_photo($page, $x = null)
45 {
46 if (!$x || !($profile = Profile::get($x))) {
47 return PL_NOT_FOUND;
48 }
49
50 // Retrieve the photo and its mime type.
51 $photo = $profile->getPhoto(true, true);
52
53 // Display the photo, or a default one when not available.
54 $photo->send();
55 }
56
57 function handler_index($page)
58 {
59 $page->nomenu = true;
60 $page->changeTpl('xnet/index.tpl');
61 }
62
63 function handler_exit($page)
64 {
65 Platal::session()->stopSUID();
66 Platal::session()->destroy();
67 $page->changeTpl('xnet/deconnexion.tpl');
68 }
69
70 function handler_admin($page)
71 {
72 $page->changeTpl('xnet/admin.tpl');
73
74 if (Get::has('del')) {
75 $res = XDB::query('SELECT id, nom, mail_domain
76 FROM groups WHERE diminutif={?}',
77 Get::v('del'));
78 list($id, $nom, $domain) = $res->fetchOneRow();
79 $page->assign('nom', $nom);
80 if ($id && Post::has('del')) {
81 S::assert_xsrf_token();
82
83 XDB::query('DELETE FROM group_members WHERE asso_id={?}', $id);
84 $page->trigSuccess('membres supprimés');
85
86 if ($domain) {
87 XDB::execute('DELETE v
88 FROM email_virtual AS v
89 INNER JOIN email_virtual_domains AS d ON (v.domain = d.id)
90 WHERE d.name = {?}',
91 $domain);
92 XDB::execute('DELETE FROM email_virtual_domains
93 WHERE name = {?}', $domain);
94 $page->trigSuccess('suppression des alias mails');
95
96 $mmlist = new MMList(S::v('uid'), S::v('password'), $domain);
97 if ($listes = $mmlist->get_lists()) {
98 foreach ($listes as $l) {
99 $mmlist->delete_list($l['list'], true);
100 }
101 $page->trigSuccess('mail lists surpprimées');
102 }
103 }
104
105 XDB::query('DELETE FROM groups WHERE id={?}', $id);
106 $page->trigSuccess("Groupe $nom supprimé");
107 Get::kill('del');
108 }
109 if (!$id) {
110 Get::kill('del');
111 }
112 }
113
114 if (Post::has('diminutif') && Post::v('diminutif') != "") {
115 S::assert_xsrf_token();
116
117 $res = XDB::query('SELECT COUNT(*)
118 FROM groups
119 WHERE diminutif = {?}',
120 Post::v('diminutif'));
121
122 if ($res->fetchOneCell() == 0) {
123 XDB::execute('INSERT INTO groups (id, diminutif)
124 VALUES (NULL, {?})',
125 Post::v('diminutif'));
126 pl_redirect(Post::v('diminutif') . '/edit');
127 } else {
128 $page->trigError('Le diminutif demandé est déjà pris.');
129 }
130 }
131
132 $res = XDB::query('SELECT nom, diminutif
133 FROM groups
134 ORDER BY nom');
135 $page->assign('assos', $res->fetchAllAssoc());
136 }
137
138 function handler_plan($page)
139 {
140 $page->changeTpl('xnet/plan.tpl');
141
142 $page->setType('plan');
143
144 $res = XDB::iterator(
145 'SELECT dom.id, dom.nom as domnom, groups.diminutif, groups.nom
146 FROM group_dom AS dom
147 INNER JOIN groups ON dom.id = groups.dom
148 WHERE FIND_IN_SET("GroupesX", dom.cat) AND FIND_IN_SET("GroupesX", groups.cat)
149 ORDER BY dom.nom, groups.nom');
150 $groupesx = array();
151 while ($tmp = $res->next()) { $groupesx[$tmp['id']][] = $tmp; }
152 $page->assign('groupesx', $groupesx);
153
154 $res = XDB::iterator(
155 'SELECT dom.id, dom.nom as domnom, groups.diminutif, groups.nom
156 FROM group_dom AS dom
157 INNER JOIN groups ON dom.id = groups.dom
158 WHERE FIND_IN_SET("Binets", dom.cat) AND FIND_IN_SET("Binets", groups.cat)
159 ORDER BY dom.nom, groups.nom');
160 $binets = array();
161 while ($tmp = $res->next()) { $binets[$tmp['id']][] = $tmp; }
162 $page->assign('binets', $binets);
163
164 $res = XDB::iterator(
165 'SELECT diminutif, nom
166 FROM groups
167 WHERE cat LIKE "%Promotions%"
168 ORDER BY diminutif');
169 $page->assign('promos', $res);
170
171 $res = XDB::iterator(
172 'SELECT diminutif, nom
173 FROM groups
174 WHERE FIND_IN_SET("Institutions", cat)
175 ORDER BY diminutif');
176 $page->assign('inst', $res);
177 }
178
179 function handler_groups2($page)
180 {
181 $this->handler_groups($page, Get::v('cat'), Get::v('dom'));
182 }
183
184 function handler_groups($page, $cat = null, $dom = null)
185 {
186 if (!$cat) {
187 $this->handler_index($page);
188 }
189
190 $cat = mb_strtolower($cat);
191
192 $page->changeTpl('xnet/groupes.tpl');
193 $page->assign('cat', $cat);
194 $page->assign('dom', $dom);
195
196 $res = XDB::query("SELECT id,nom
197 FROM group_dom
198 WHERE FIND_IN_SET({?}, cat)
199 ORDER BY nom", $cat);
200 $doms = $res->fetchAllAssoc();
201 $page->assign('doms', $doms);
202
203 if (empty($doms)) {
204 $res = XDB::query("SELECT diminutif, nom, site
205 FROM groups
206 WHERE FIND_IN_SET({?}, cat)
207 ORDER BY nom", $cat);
208 $page->assign('gps', $res->fetchAllAssoc());
209 } elseif (!is_null($dom)) {
210 $res = XDB::query("SELECT diminutif, nom, site
211 FROM groups
212 WHERE FIND_IN_SET({?}, cat) AND dom={?}
213 ORDER BY nom", $cat, $dom);
214 $page->assign('gps', $res->fetchAllAssoc());
215 }
216
217 $page->setType($cat);
218 }
219
220 function handler_autologin($page)
221 {
222 $allkeys = func_get_args();
223 unset($allkeys[0]);
224 $url = join('/',$allkeys);
225 pl_content_headers("text/javascript");
226 echo '$.ajax({ url: "'.$url.'?forceXml=1", dataType: "xml", success: function(xml) { $("body",xml).insertBefore("body"); $("body:eq(1)").remove(); }});';
227 exit;
228 }
229
230 function handler_login_ext($page)
231 {
232 if (!S::logged()) {
233 $page->changeTpl('xnet/login.tpl');
234 } else {
235 pl_redirect('');
236 }
237 }
238
239 function handler_register_ext($page, $hash = null)
240 {
241 XDB::execute('DELETE FROM register_pending_xnet
242 WHERE DATE_SUB(NOW(), INTERVAL 1 MONTH) > date');
243 $res = XDB::fetchOneAssoc('SELECT uid, hruid
244 FROM register_pending_xnet
245 WHERE hash = {?}',
246 $hash);
247
248 if (is_null($hash) || is_null($res)) {
249 $page->trigErrorRedirect('Cette adresse n\'existe pas ou n\'existe plus sur le serveur.', '');
250 }
251
252 if (Post::has('pwhash') && Post::t('pwhash')) {
253 XDB::query('UPDATE accounts
254 SET password = {?}, state = \'active\'
255 WHERE uid = {?} AND state = \'pending\' AND type = \'xnet\'',
256 Post::t('pwhash'), $res['uid']);
257 XDB::query('DELETE FROM register_pending_xnet
258 WHERE uid = {?}',
259 $res['uid']);
260
261 S::logger($res['uid'])->log('passwd', '');
262
263 // Try to start a session (so the user don't have to log in); we will use
264 // the password available in Post:: to authenticate the user.
265 Post::kill('wait');
266 Platal::session()->startAvailableAuth();
267
268 $page->changeTpl('xnet/register.success.tpl');
269 $page->assign('hruid', $res['hruid']);
270 } else {
271 $page->changeTpl('platal/password.tpl');
272 $page->assign('xnet', true);
273 $page->assign('hruid', $res['hruid']);
274 }
275 }
276
277 function handler_edit($page)
278 {
279 global $globals;
280
281 $user = S::user();
282 if (empty($user)) {
283 return PL_NOT_FOUND;
284 }
285 if ($user->type != 'xnet') {
286 pl_redirect('index');
287 }
288
289 $page->changeTpl('xnet/edit.tpl');
290 if (Post::has('change')) {
291 S::assert_xsrf_token();
292
293 if ($user->groupCount() == 0 && Post::t('delete') == 'OUI') {
294 XDB::execute('DELETE FROM accounts
295 WHERE uid = {?}',
296 $user->id());
297 pl_redirect('index');
298 }
299
300 // Convert user status to X
301 if (!Post::blank('login_X')) {
302 $forlife = $this->changeLogin($page, $user, Post::t('login_X'));
303 if ($forlife) {
304 pl_redirect('index');
305 }
306 }
307
308 // Update user info
309 XDB::query('UPDATE accounts
310 SET full_name = {?}, directory_name = {?}, display_name = {?},
311 sex = {?}, email = {?}
312 WHERE uid = {?}',
313 Post::t('full_name'), Post::t('directory_name'), Post::t('display_name'),
314 (Post::t('sex') == 'male') ? 'male' : 'female', Post::t('email'), $user->id());
315 // If user is of type xnet and new password is given.
316 if (!Post::blank('pwhash')) {
317 XDB::query('UPDATE accounts
318 SET password = {?}
319 WHERE uid = {?}',
320 Post::t('pwhash'), $user->id());
321 }
322 if (XDB::affectedRows()) {
323 $page->trigSuccess('Données mises à jour.');
324 }
325 }
326
327 $page->addJsLink('password.js');
328 $page->assign('user', $user);
329 }
330 }
331
332 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
333 ?>
plat/al