projects / platal.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge remote branch 'origin/xorg/maint' into xorg/master
[platal.git] / modules / xnetgrp.php
1 <?php
2 /***************************************************************************
3 * Copyright (C) 2003-2011 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
5 * *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
10 * *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
15 * *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
18 * Foundation, Inc., *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
21
22
23 class XnetGrpModule extends PLModule
24 {
25 function handlers()
26 {
27 return array(
28 '%grp' => $this->make_hook('index', AUTH_PUBLIC),
29 '%grp/asso.php' => $this->make_hook('index', AUTH_PUBLIC),
30 '%grp/logo' => $this->make_hook('logo', AUTH_PUBLIC),
31 '%grp/site' => $this->make_hook('site', AUTH_PUBLIC),
32 '%grp/edit' => $this->make_hook('edit', AUTH_PASSWD, 'groupadmin'),
33 '%grp/mail' => $this->make_hook('mail', AUTH_PASSWD, 'groupadmin'),
34 '%grp/forum' => $this->make_hook('forum', AUTH_PASSWD, 'groupmember'),
35 '%grp/former_users' => $this->make_hook('former_users', AUTH_PASSWD, 'admin'),
36 '%grp/annuaire' => $this->make_hook('annuaire', AUTH_PASSWD, 'groupannu'),
37 '%grp/annuaire/vcard' => $this->make_hook('vcard', AUTH_PASSWD, 'groupmember:groupannu'),
38 '%grp/annuaire/csv' => $this->make_hook('csv', AUTH_PASSWD, 'groupmember:groupannu'),
39 '%grp/directory/sync' => $this->make_hook('directory_sync', AUTH_PASSWD, 'groupadmin'),
40 '%grp/directory/unact' => $this->make_hook('non_active', AUTH_PASSWD, 'groupadmin'),
41 '%grp/trombi' => $this->make_hook('trombi', AUTH_PASSWD, 'groupannu'),
42 '%grp/geoloc' => $this->make_hook('geoloc', AUTH_PASSWD, 'groupannu'),
43 '%grp/subscribe' => $this->make_hook('subscribe', AUTH_PASSWD, 'groups'),
44 '%grp/subscribe/valid' => $this->make_hook('subscribe_valid', AUTH_PASSWD, 'groupadmin'),
45 '%grp/unsubscribe' => $this->make_hook('unsubscribe', AUTH_PASSWD, 'groupmember'),
46
47 '%grp/change_rights' => $this->make_hook('change_rights', AUTH_PASSWD, 'groups'),
48 '%grp/admin/annuaire' => $this->make_hook('admin_annuaire', AUTH_PASSWD, 'groupadmin'),
49 '%grp/member' => $this->make_hook('admin_member', AUTH_PASSWD, 'groupadmin'),
50 '%grp/member/new' => $this->make_hook('admin_member_new', AUTH_PASSWD, 'groupadmin'),
51 '%grp/member/new/ajax' => $this->make_hook('admin_member_new_ajax', AUTH_PASSWD, 'groups', NO_AUTH),
52 '%grp/member/del' => $this->make_hook('admin_member_del', AUTH_PASSWD, 'groupadmin'),
53 '%grp/member/suggest' => $this->make_hook('admin_member_suggest', AUTH_PASSWD, 'groupadmin'),
54
55 '%grp/rss' => $this->make_token_hook('rss', AUTH_PUBLIC),
56 '%grp/announce/new' => $this->make_hook('edit_announce', AUTH_PASSWD, 'groupadmin'),
57 '%grp/announce/edit' => $this->make_hook('edit_announce', AUTH_PASSWD, 'groupadmin'),
58 '%grp/announce/photo' => $this->make_hook('photo_announce', AUTH_PUBLIC),
59 '%grp/admin/announces' => $this->make_hook('admin_announce', AUTH_PASSWD, 'groupadmin'),
60 );
61 }
62
63 function handler_index($page, $arg = null)
64 {
65 global $globals, $platal;
66 if (!is_null($arg)) {
67 return PL_NOT_FOUND;
68 }
69 $page->changeTpl('xnetgrp/asso.tpl');
70
71 if (S::logged()) {
72 if (Env::has('read')) {
73 XDB::query('DELETE r.*
74 FROM group_announces_read AS r
75 INNER JOIN group_announces AS a ON (a.id = r.announce_id)
76 WHERE expiration < CURRENT_DATE()');
77 XDB::query('INSERT INTO group_announces_read
78 VALUES ({?}, {?})',
79 Env::i('read'), S::i('uid'));
80 pl_redirect("");
81 }
82 if (Env::has('unread')) {
83 XDB::query('DELETE FROM group_announces_read
84 WHERE announce_id = {?} AND uid = {?}',
85 Env::i('unread'), S::i('uid'));
86 pl_redirect("#art" . Env::i('unread'));
87 }
88
89 /* TODO: refines this filter on promotions by using userfilter. */
90 $user = S::user();
91 if ($user->hasProfile()) {
92 $promo = XDB::format('{?}', $user->profile()->entry_year);
93 $minCondition = ' OR promo_min <= ' . $promo;
94 $maxCondition = ' OR promo_max >= ' . $promo;
95 } else {
96 $minCondition = '';
97 $maxCondition = '';
98 }
99 $arts = XDB::iterator('SELECT a.*, FIND_IN_SET(\'photo\', a.flags) AS photo
100 FROM group_announces AS a
101 LEFT JOIN group_announces_read AS r ON (r.uid = {?} AND r.announce_id = a.id)
102 WHERE asso_id = {?} AND expiration >= CURRENT_DATE()
103 AND (promo_min = 0' . $minCondition . ')
104 AND (promo_max = 0' . $maxCondition . ')
105 AND r.announce_id IS NULL
106 ORDER BY a.expiration',
107 S::i('uid'), $globals->asso('id'));
108 $index = XDB::iterator('SELECT a.id, a.titre, r.uid IS NULL AS nonlu
109 FROM group_announces AS a
110 LEFT JOIN group_announces_read AS r ON (a.id = r.announce_id AND r.uid = {?})
111 WHERE asso_id = {?} AND expiration >= CURRENT_DATE()
112 AND (promo_min = 0' . $minCondition . ')
113 AND (promo_max = 0' . $maxCondition . ')
114 ORDER BY a.expiration',
115 S::i('uid'), $globals->asso('id'));
116 $page->assign('article_index', $index);
117 } else {
118 $arts = XDB::iterator("SELECT *, FIND_IN_SET('photo', flags) AS photo
119 FROM group_announces
120 WHERE asso_id = {?} AND expiration >= CURRENT_DATE()
121 AND FIND_IN_SET('public', flags)",
122 $globals->asso('id'));
123 $payments = XDB::fetchAllAssoc("SELECT id, text
124 FROM payments
125 WHERE asso_id = {?} AND NOT FIND_IN_SET('old', flags) AND FIND_IN_SET('public', flags)
126 ORDER BY id DESC",
127 $globals->asso('id'));
128 $page->assign('payments', $payments);
129 }
130 if (may_update()) {
131 $subs_valid = XDB::query("SELECT uid
132 FROM group_member_sub_requests
133 WHERE asso_id = {?}",
134 $globals->asso('id'));
135 $page->assign('requests', $subs_valid->numRows());
136 }
137
138 if (!S::hasAuthToken()) {
139 $page->setRssLink("Polytechnique.net :: {$globals->asso("nom")} :: News publiques",
140 $platal->ns . "rss/rss.xml");
141 } else {
142 $page->setRssLink("Polytechnique.net :: {$globals->asso("nom")} :: News",
143 $platal->ns . 'rss/' . S::v('hruid') . '/' . S::user()->token . '/rss.xml');
144 }
145
146 $page->assign('articles', $arts);
147 }
148
149 function handler_logo($page)
150 {
151 global $globals;
152 $globals->asso()->getLogo()->send();
153 }
154
155 function handler_site($page)
156 {
157 global $globals;
158 $site = $globals->asso('site');
159 if (!$site) {
160 $page->trigError('Le groupe n\'a pas de site web.');
161 return $this->handler_index($page);
162 }
163 http_redirect($site);
164 exit;
165 }
166
167 function handler_edit($page)
168 {
169 global $globals;
170 $page->changeTpl('xnetgrp/edit.tpl');
171 $error = false;
172
173 if (S::admin()) {
174 $domains = XDB::iterator('SELECT *
175 FROM group_dom
176 ORDER BY nom');
177 $page->assign('domains', $domains);
178 $page->assign('super', true);
179 }
180
181 if (Post::has('submit')) {
182 S::assert_xsrf_token();
183
184 $flags = new PlFlagSet('wiki_desc');
185 $flags->addFlag('notif_unsub', Post::i('notif_unsub') == 1);
186 $site = Post::t('site');
187 if ($site && ($site != "http://")) {
188 $scheme = parse_url($site, PHP_URL_SCHEME);
189 if (!$scheme) {
190 $site = "http://" . $site;
191 }
192 } else {
193 $site = "";
194 }
195 if (S::admin()) {
196 $page->assign('super', true);
197
198 if (Post::v('mail_domain') && (strstr(Post::v('mail_domain'), '.') === false)) {
199 $page->trigError('Le domaine doit être un FQDN (aucune modification effectuée)&nbsp;!!!');
200 $error = true;
201 }
202 if (Post::t('nom') == '' || Post::t('diminutif') == '') {
203 $page->trigError('Ni le nom ni le diminutif du groupe ne peuvent être vide.');
204 $error = true;
205 }
206 if ($error) {
207 $page->assign('nom', Post::t('nom'));
208 $page->assign('diminutif', Post::t('diminutif'));
209 $page->assign('mail_domain', Post::t('mail_domain'));
210 $page->assign('cat', Post::v('cat'));
211 $page->assign('dom', Post::v('dom'));
212 $page->assign('ax', Post::v('ax'));
213 $page->assign('axDate', Post::t('axDate'));
214 $page->assign('site', $site);
215 $page->assign('resp', Post::t('resp'));
216 $page->assign('mail', Post::t('mail'));
217 $page->assign('phone', Post::t('phone'));
218 $page->assign('fax', Post::t('fax'));
219 $page->assign('address', Post::t('address'));
220 $page->assign('forum', Post::t('forum'));
221 $page->assign('inscriptible', Post::v('inscriptible'));
222 $page->assign('sub_url', Post::t('sub_url'));
223 $page->assign('unsub_url', Post::t('unsub_url'));
224 $page->assign('welcome_msg', Post::t('welcome_msg'));
225 $page->assign('pub', Post::v('pub'));
226 $page->assign('notif_unsub', Post::i('notif_unsub'));
227 $page->assign('descr', Post::t('descr'));
228 $page->assign('error', $error);
229 return;
230 }
231
232 $axDate = make_datetime(Post::v('axDate'));
233 if (Post::t('axDate') != '') {
234 $axDate = make_datetime(Post::v('axDate'))->format('Y-m-d');
235 } else {
236 $axDate = null;
237 }
238 XDB::execute(
239 "UPDATE groups
240 SET nom={?}, diminutif={?}, cat={?}, dom={?},
241 descr={?}, site={?}, mail={?}, resp={?},
242 forum={?}, mail_domain={?}, ax={?}, axDate = {?}, pub={?},
243 sub_url={?}, inscriptible={?}, unsub_url={?},
244 flags = {?}, welcome_msg = {?}
245 WHERE id={?}",
246 Post::v('nom'), Post::v('diminutif'),
247 Post::v('cat'), (Post::i('dom') == 0) ? null : Post::i('dom'),
248 Post::v('descr'), $site,
249 Post::v('mail'), Post::v('resp'),
250 Post::v('forum'), Post::v('mail_domain'),
251 Post::has('ax'), $axDate, Post::v('pub'),
252 Post::v('sub_url'), Post::v('inscriptible'),
253 Post::v('unsub_url'), $flags, Post::t('welcome_msg'),
254 $globals->asso('id'));
255 if (Post::v('mail_domain')) {
256 XDB::execute('INSERT IGNORE INTO email_virtual_domains (name)
257 VALUES ({?})',
258 Post::t('mail_domain'));
259 XDB::execute('UPDATE email_virtual_domains
260 SET aliasing = id
261 WHERE name = {?}',
262 Post::t('mail_domain'));
263 }
264 } else {
265 XDB::execute(
266 "UPDATE groups
267 SET descr={?}, site={?}, mail={?}, resp={?},
268 forum={?}, pub= {?}, sub_url={?},
269 unsub_url = {?}, flags = {?}, welcome_msg = {?}
270 WHERE id={?}",
271 Post::v('descr'), $site,
272 Post::v('mail'), Post::v('resp'),
273 Post::v('forum'), Post::v('pub'),
274 Post::v('sub_url'), Post::v('unsub_url'),
275 $flags, Post::t('welcome_msg'),
276 $globals->asso('id'));
277 }
278
279 Phone::deletePhones(0, Phone::LINK_GROUP, $globals->asso('id'));
280 $phone = new Phone(array('link_type' => 'group', 'link_id' => $globals->asso('id'), 'id' => 0,
281 'type' => 'fixed', 'display' => Post::v('phone'), 'pub' => 'public'));
282 $fax = new Phone(array('link_type' => 'group', 'link_id' => $globals->asso('id'), 'id' => 1,
283 'type' => 'fax', 'display' => Post::v('fax'), 'pub' => 'public'));
284 $phone->save();
285 $fax->save();
286 Address::deleteAddresses(null, Address::LINK_GROUP, null, $globals->asso('id'));
287 $address = new Address(array('groupid' => $globals->asso('id'), 'type' => Address::LINK_GROUP, 'text' => Post::v('address')));
288 $address->save();
289
290 if ($_FILES['logo']['name']) {
291 $upload = PlUpload::get($_FILES['logo'], $globals->asso('id'), 'asso.logo', true);
292 if (!$upload) {
293 $page->trigError("Impossible de télécharger le logo.");
294 } else {
295 XDB::execute('UPDATE groups
296 SET logo = {?}, logo_mime = {?}
297 WHERE id = {?}', $upload->getContents(), $upload->contentType(),
298 $globals->asso('id'));
299 $upload->rm();
300 }
301 }
302
303 pl_redirect('../' . Post::v('diminutif', $globals->asso('diminutif')) . '/edit');
304 }
305 $page->assign('error', $error);
306 $page->assign('cat', $globals->asso('cat'));
307 $page->assign('dom', $globals->asso('dom'));
308 $page->assign('ax', $globals->asso('ax'));
309 $page->assign('inscriptible', $globals->asso('inscriptible'));
310 $page->assign('pub', $globals->asso('pub'));
311 $page->assign('notif_unsub', $globals->asso('notif_unsub'));
312 }
313
314 function handler_mail($page)
315 {
316 global $globals;
317
318 $page->changeTpl('xnetgrp/mail.tpl');
319 $mmlist = new MMList(S::user(), $globals->asso('mail_domain'));
320 $page->assign('listes', $mmlist->get_lists());
321 $page->assign('user', S::user());
322
323 if (Post::has('send')) {
324 S::assert_xsrf_token();
325 $from = Post::v('from');
326 $sujet = Post::v('sujet');
327 $body = Post::v('body');
328
329 $mls = array_keys(Env::v('ml', array()));
330 $mbr = array_keys(Env::v('membres', array()));
331
332 $this->load('mail.inc.php');
333 set_time_limit(120);
334 $tos = get_all_redirects($mbr, $mls, $mmlist);
335
336 $upload = PlUpload::get($_FILES['uploaded'], S::user()->login(), 'xnet.emails', true);
337 if (!$upload && @$_FILES['uploaded']['name'] && PlUpload::$lastError != null) {
338 $page->trigError(PlUpload::$lastError);
339 return;
340 }
341
342 send_xnet_mails($from, $sujet, $body, Env::v('wiki'), $tos, Post::v('replyto'), $upload, @$_FILES['uploaded']['name']);
343 if ($upload) {
344 $upload->rm();
345 }
346 $page->killSuccess("Email envoyé&nbsp;!");
347 $page->assign('sent', true);
348 }
349 }
350
351 function handler_forum($page, $group = null, $artid = null)
352 {
353 global $globals;
354 $page->changeTpl('xnetgrp/forum.tpl');
355 if (!$globals->asso('forum')) {
356 return PL_NOT_FOUND;
357 }
358 require_once 'banana/forum.inc.php';
359 $get = array();
360 get_banana_params($get, $globals->asso('forum'), $group, $artid);
361 run_banana($page, 'ForumsBanana', $get);
362 }
363
364 function handler_annuaire($page, $action = null, $subaction = null)
365 {
366 global $globals;
367
368 __autoload('userset');
369 $admins = false;
370 if ($action == 'admins') {
371 $admins = true;
372 $action = $subaction;
373 }
374 $view = new UserSet(new UFC_Group($globals->asso('id'), $admins));
375 $view->addMod('groupmember', 'Annuaire');
376 $view->addMod('trombi', 'Trombinoscope');
377 $view->addMod('map', 'Planisphère');
378 $view->apply('annuaire', $page, $action);
379 $page->assign('only_admin', $admins);
380 $page->changeTpl('xnetgrp/annuaire.tpl');
381 }
382
383 function handler_former_users($page)
384 {
385 global $globals;
386 require_once 'userset.inc.php';
387
388 $view = new UserSet(new UFC_GroupFormerMember($globals->asso('id')));
389 $view->addMod('groupmember', 'Anciens membres', true, array('noadmin' => true));
390 $view->apply('former_users', $page);
391 $page->changeTpl('xnetgrp/former_users.tpl');
392 }
393
394 function handler_trombi($page)
395 {
396 pl_redirect('annuaire/trombi');
397 }
398
399 function handler_geoloc($page)
400 {
401 pl_redirect('annuaire/geoloc');
402 }
403
404 function handler_vcard($page, $photos = null)
405 {
406 global $globals;
407 $vcard = new VCard($photos == 'photos', 'Membre du groupe ' . $globals->asso('nom'));
408 $vcard->addProfiles($globals->asso()->getMembersFilter()->getProfiles(null, Profile::FETCH_ALL));
409 $vcard->show();
410 }
411
412 function handler_csv($page, $filename = null)
413 {
414 global $globals;
415 if (is_null($filename)) {
416 $filename = $globals->asso('diminutif') . '.csv';
417 }
418 $users = $globals->asso()->getMembersFilter(null, new UFO_Name())->getUsers();
419 pl_cached_content_headers('text/x-csv', 1);
420 $page->changeTpl('xnetgrp/annuaire-csv.tpl', NO_SKIN);
421 $page->assign('users', $users);
422 }
423
424 function handler_directory_sync($page)
425 {
426 global $globals;
427 require_once 'emails.inc.php';
428
429 $page->changeTpl('xnetgrp/sync.tpl');
430 Platal::load('lists', 'lists.inc.php');
431
432 if (Env::has('add_users')) {
433 S::assert_xsrf_token();
434
435 $users = array_keys(Env::v('add_users'));
436 $former_users = XDB::fetchColumn('SELECT uid
437 FROM group_former_members
438 WHERE remember = TRUE AND uid IN {?}',
439 $users);
440 $new_users = array_diff($users, $former_users);
441
442 foreach ($former_users as $uid) {
443 $user = User::getSilentWithUID($uid);
444 $page->trigWarning($user->fullName() . ' est un ancien membre du groupe qui ne souhaite pas y revenir.');
445 }
446 if (count($former_users) > 1) {
447 $page->trigWarning('S\'ils souhaitent revenir dans le groupe, il faut qu\'ils en fassent la demande sur la page d\'accueil du groupe.');
448 } elseif (count($former_users)) {
449 $page->trigWarning('S\'il souhaite revenir dans le groupe, il faut qu\'il en fasse la demande sur la page d\'accueil du groupe.');
450 }
451
452 $data = array();
453 foreach ($new_users as $uid) {
454 $data[] = XDB::format('({?}, {?})', $globals->asso('id'), $uid);
455 }
456 XDB::rawExecute('INSERT INTO group_members (asso_id, uid)
457 VALUES ' . implode(',', $data));
458 }
459
460 if (Env::has('add_nonusers')) {
461 S::assert_xsrf_token();
462
463 $nonusers = array_keys(Env::v('add_nonusers'));
464 foreach ($nonusers as $email) {
465 if ($user = User::getSilent($email) || !isvalid_email($email)) {
466 continue;
467 }
468
469 list($local_part, $domain) = explode('@', strtolower($email));
470 $hruid = User::makeHrid($local_part, $domain, 'ext');
471 if ($user = User::getSilent($hruid)) {
472 continue;
473 }
474
475 $parts = explode('.', $local_part);
476 if (count($parts) == 1) {
477 $lastname = $display_name = $full_name = $directory_name = ucfirst($local_part);
478 $firstname = '';
479 } else {
480 $firstname = ucfirst($parts[0]);
481 $lastname = ucwords(implode(' ', array_slice($parts, 1)));
482 $display_name = $firstname;
483 $full_name = $firstname . ' ' . $lastname;
484 $directory_name = strtoupper($lastname) . ' ' . $firstname;
485 }
486 XDB::execute('INSERT INTO accounts (hruid, display_name, full_name, directory_name, firstname, lastname, email, type, state)
487 VALUES ({?}, {?}, {?}, {?}, {?}, {?}, {?}, \'xnet\', \'disabled\')',
488 $hruid, $display_name, $full_name, $directory_name, $firstname, $lastname, $email);
489 $uid = XDB::insertId();
490 XDB::execute('INSERT INTO group_members (asso_id, uid)
491 VALUES ({?}, {?})',
492 $globals->asso('id'), $uid);
493 }
494 }
495
496 if (Env::has('add_users') || Env::has('add_nonusers')) {
497 $page->trigSuccess('Ajouts réalisés avec succès.');
498 }
499
500 $user = S::user();
501 $client = new MMList($user, $globals->asso('mail_domain'));
502 $lists = $client->get_lists();
503 $members = array();
504 foreach ($lists as $list) {
505 $details = $client->get_members($list['list']);
506 $members = array_merge($members, list_extract_members($details[1]));
507 }
508 $members = array_unique($members);
509 $uids = array();
510 $users = array();
511 $nonusers = array();
512 foreach ($members as $email) {
513 if ($user = User::getSilent($email)) {
514 $uids[] = $user->id();
515 } else {
516 $nonusers[] = $email;
517 }
518 }
519
520 $aliases = iterate_list_alias($globals->asso('mail_domain'));
521 foreach ($aliases as $alias) {
522 list($local_part, $domain) = explode('@', $alias);
523 $aliases_members = list_alias_members($local_part, $domain);
524 $users = array_merge($users, $aliases_members['users']);
525 $nonusers = array_merge($nonusers, $aliases_members['nonusers']);
526 }
527 foreach ($users as $user) {
528 $uids[] = $user->id();
529 }
530 $nonusers = array_unique($nonusers);
531 $uids = array_unique($uids);
532 if (count($uids)) {
533 $uids = XDB::fetchColumn('SELECT a.uid
534 FROM accounts AS a
535 WHERE a.uid IN {?} AND NOT EXISTS (SELECT *
536 FROM group_members AS g
537 WHERE a.uid = g.uid AND g.asso_id = {?})',
538 $uids, $globals->asso('id'));
539
540 $users = User::getBulkUsersWithUIDs($uids);
541 usort($users, 'User::compareDirectoryName');
542 } else {
543 $users = array();
544 }
545 sort($nonusers);
546
547 $page->assign('users', $users);
548 $page->assign('nonusers', $nonusers);
549 }
550
551 function handler_non_active($page)
552 {
553 global $globals;
554 $page->changeTpl('xnetgrp/non_active.tpl');
555
556 $uids = XDB::fetchColumn('SELECT g.uid
557 FROM group_members AS g
558 INNER JOIN accounts AS a ON (a.uid = g.uid)
559 LEFT JOIN register_pending_xnet AS p ON (p.uid = g.uid)
560 WHERE a.uid = g.uid AND g.asso_id = {?} AND a.type = \'xnet\' AND a.state = \'disabled\' AND p.uid IS NULL',
561 $globals->asso('id'));
562 foreach ($uids as $key => $uid) {
563 if (AccountReq::isPending($uid) || BulkAccountsReq::isPending($uid)) {
564 unset($uids[$key]);
565 }
566 }
567
568 if (Post::has('enable_accounts')) {
569 S::assert_xsrf_token();
570
571 $uids_to_enable = array_intersect(array_keys(Post::v('enable_accounts')), $uids);
572
573 $user = S::user();
574 $group = Platal::globals()->asso('nom');
575 $request = new BulkAccountsReq($user, $uids_to_enable, $group);
576 $request->submit();
577 $page->trigSuccess('Un email va bientôt être envoyé aux personnes sélectionnées pour l\'activation de leur compte.');
578
579 foreach ($uids as $key => $uid) {
580 if (in_array($uid, $uids_to_enable)) {
581 unset($uids[$key]);
582 }
583 }
584 }
585
586 $users = User::getBulkUsersWithUIDs($uids);
587 $page->assign('users', $users);
588 }
589
590 private function removeSubscriptionRequest($uid)
591 {
592 global $globals;
593 XDB::execute("DELETE FROM group_member_sub_requests
594 WHERE asso_id = {?} AND uid = {?}",
595 $globals->asso('id'), $uid);
596 }
597
598 private function validSubscription(User $user)
599 {
600 global $globals;
601 $this->removeSubscriptionRequest($user->id());
602 Group::subscribe($globals->asso('id'), $user->id());
603
604 if (XDB::affectedRows() == 1) {
605 $mailer = new PlMailer();
606 $mailer->addTo($user->forlifeEmail());
607 $mailer->setFrom('"' . S::user()->fullName() . '" <' . S::user()->forlifeEmail() . '>');
608 $mailer->setSubject('[' . $globals->asso('nom') . '] Demande d\'inscription');
609 $message = ($user->isFemale() ? 'Chère' : 'Cher') . " Camarade,\n"
610 . "\n"
611 . " Suite à ta demande d'adhésion à " . $globals->asso('nom')
612 . ", j'ai le plaisir de t'annoncer que ton inscription a été validée !\n"
613 . (is_null($globals->asso('welcome_msg')) ? '' : "\n" . $globals->asso('welcome_msg') . "\n")
614 . "\n"
615 . "Bien cordialement,\n"
616 . "-- \n"
617 . S::user()->fullName() . '.';
618 $mailer->setTxtBody(wordwrap($message, 72));
619 $mailer->send();
620 }
621 }
622
623 function handler_subscribe($page, $u = null)
624 {
625 global $globals;
626 $page->changeTpl('xnetgrp/inscrire.tpl');
627
628 if (!$globals->asso('inscriptible'))
629 $page->kill("Il n'est pas possible de s'inscire en ligne à ce "
630 ."groupe. Essaie de joindre le contact indiqué "
631 ."sur la page de présentation.");
632
633 if (!is_null($u) && may_update()) {
634 $user = User::get($u);
635 if (!$user) {
636 return PL_NOT_FOUND;
637 } else {
638 $page->assign('user', $user);
639 }
640
641 // Retrieves the subscription status, and the reason.
642 $res = XDB::query("SELECT reason
643 FROM group_member_sub_requests
644 WHERE asso_id = {?} AND uid = {?}",
645 $globals->asso('id'), $user->id());
646 $reason = ($res->numRows() ? $res->fetchOneCell() : null);
647
648 $res = XDB::query("SELECT COUNT(*)
649 FROM group_members
650 WHERE asso_id = {?} AND uid = {?}",
651 $globals->asso('id'), $user->id());
652 $already_member = ($res->fetchOneCell() > 0);
653
654 // Handles the membership request.
655 if ($already_member) {
656 $this->removeSubscriptionRequest($user->id());
657 $page->kill($user->fullName() . ' est déjà membre du groupe&nbsp;!');
658 } elseif (Env::has('accept')) {
659 S::assert_xsrf_token();
660
661 $this->validSubscription($user);
662 pl_redirect("member/" . $user->login());
663 } elseif (Env::has('refuse')) {
664 S::assert_xsrf_token();
665
666 $this->removeSubscriptionRequest($user->id());
667 $mailer = new PlMailer();
668 $mailer->addTo($user->forlifeEmail());
669 $mailer->setFrom('"' . S::user()->fullName() . '" <' . S::user()->forlifeEmail() . '>');
670 $mailer->setSubject('['.$globals->asso('nom').'] Demande d\'inscription annulée');
671 $mailer->setTxtBody(Env::v('motif'));
672 $mailer->send();
673 $page->killSuccess("La demande de {$user->fullName()} a bien été refusée.");
674 } else {
675 $page->assign('show_form', true);
676 $page->assign('reason', $reason);
677 }
678 return;
679 }
680
681 if (is_member()) {
682 $page->kill("Tu es déjà membre&nbsp;!");
683 return;
684 }
685
686 $res = XDB::query("SELECT uid
687 FROM group_member_sub_requests
688 WHERE uid = {?} AND asso_id = {?}",
689 S::i('uid'), $globals->asso('id'));
690 if ($res->numRows() != 0) {
691 $page->kill("Tu as déjà demandé ton inscription à ce groupe. Cette demande est actuellement en attente de validation.");
692 return;
693 }
694
695 if (Post::has('inscrire')) {
696 S::assert_xsrf_token();
697
698 XDB::execute("INSERT INTO group_member_sub_requests (asso_id, uid, ts, reason)
699 VALUES ({?}, {?}, NOW(), {?})",
700 $globals->asso('id'), S::i('uid'), Post::v('message'));
701 XDB::execute('DELETE FROM group_former_members
702 WHERE uid = {?} AND asso_id = {?}',
703 S::i('uid'), $globals->asso('id'));
704 $uf = New UserFilter(New UFC_Group($globals->asso('id'), true));
705 $admins = $uf->iterUsers();
706 $admin = $admins->next();
707 $to = $admin->bestEmail();
708 while ($admin = $admins->next()) {
709 $to .= ', ' . $admin->bestEmail();
710 }
711
712 $append = "\n"
713 . "-- \n"
714 . "Ce message a été envoyé suite à la demande d'inscription de\n"
715 . S::user()->fullName(true) . "\n"
716 . "Via le site www.polytechnique.net. Tu peux choisir de valider ou\n"
717 . "de refuser sa demande d'inscription depuis la page :\n"
718 . "http://www.polytechnique.net/" . $globals->asso("diminutif") . "/subscribe/" . S::user()->login() . "\n"
719 . "\n"
720 . "En cas de problème, contacter l'équipe de Polytechnique.org\n"
721 . "à l'adresse : support@polytechnique.org\n";
722
723 if (!$to) {
724 $to = ($globals->asso('mail') != '') ? $globals->asso('mail') . ', ' : '';
725 $to .= 'support@polytechnique.org';
726 $append = "\n-- \nLe groupe ".$globals->asso("nom")
727 ." n'a pas d'administrateur, l'équipe de"
728 ." Polytechnique.org a été prévenue et va rapidement"
729 ." résoudre ce problème.\n";
730 }
731
732 $mailer = new PlMailer();
733 $mailer->addTo($to);
734 $mailer->setFrom('"' . S::user()->fullName() . '" <' . S::user()->forlifeEmail() . '>');
735 $mailer->setSubject('['.$globals->asso('nom').'] Demande d\'inscription');
736 $mailer->setTxtBody(Post::v('message').$append);
737 $mailer->send();
738 }
739 }
740
741 function handler_subscribe_valid($page)
742 {
743 global $globals;
744
745 if (Post::has('valid')) {
746 S::assert_xsrf_token();
747 $subs = Post::v('subs');
748 if (is_array($subs)) {
749 $users = array();
750 foreach ($subs as $hruid => $val) {
751 if ($val == '1') {
752 $user = User::get($hruid);
753 if ($user) {
754 $this->validSubscription($user);
755 }
756 }
757 }
758 }
759 }
760
761 $it = XDB::iterator('SELECT s.uid, a.hruid, s.ts AS date
762 FROM group_member_sub_requests AS s
763 INNER JOIN accounts AS a ON(s.uid = a.uid)
764 WHERE s.asso_id = {?}
765 ORDER BY s.ts', $globals->asso('id'));
766 $page->changeTpl('xnetgrp/subscribe-valid.tpl');
767 $page->assign('valid', $it);
768 }
769
770 function handler_change_rights($page)
771 {
772 if (Env::has('right') && (may_update() || S::suid())) {
773 switch (Env::v('right')) {
774 case 'admin':
775 Platal::session()->stopSUID();
776 break;
777 case 'anim':
778 Platal::session()->doSelfSuid();
779 may_update(true);
780 is_member(true);
781 break;
782 case 'member':
783 Platal::session()->doSelfSuid();
784 may_update(false, true);
785 is_member(true);
786 break;
787 case 'logged':
788 Platal::session()->doSelfSuid();
789 may_update(false, true);
790 is_member(false, true);
791 break;
792 }
793 }
794 http_redirect($_SERVER['HTTP_REFERER']);
795 }
796
797 function handler_admin_annuaire($page)
798 {
799 global $globals;
800
801 $this->load('mail.inc.php');
802 $page->changeTpl('xnetgrp/annuaire-admin.tpl');
803 $user = S::user();
804 $mmlist = new MMList($user, $globals->asso('mail_domain'));
805 $lists = $mmlist->get_lists();
806 if (!$lists) $lists = array();
807 $listes = array_map(create_function('$arr', 'return $arr["list"];'), $lists);
808
809 $subscribers = array();
810
811 foreach ($listes as $list) {
812 list(,$members) = $mmlist->get_members($list);
813 $mails = array_map(create_function('$arr', 'return $arr[1];'), $members);
814 $subscribers = array_unique(array_merge($subscribers, $mails));
815 }
816
817 $not_in_group_x = array();
818 $not_in_group_ext = array();
819
820 foreach ($subscribers as $mail) {
821 $uf = new UserFilter(new PFC_And(new UFC_Group($globals->asso('id')),
822 new UFC_Email($mail)));
823 if ($uf->getTotalCount() == 0) {
824 if (User::isForeignEmailAddress($mail)) {
825 $not_in_group_ext[] = $mail;
826 } else {
827 $not_in_group_x[] = $mail;
828 }
829 }
830 }
831
832 $page->assign('not_in_group_ext', $not_in_group_ext);
833 $page->assign('not_in_group_x', $not_in_group_x);
834 $page->assign('lists', $lists);
835 }
836
837 function handler_admin_member_new($page, $email = null)
838 {
839 global $globals;
840
841 $page->changeTpl('xnetgrp/membres-add.tpl');
842
843 if (is_null($email)) {
844 return;
845 }
846
847 S::assert_xsrf_token();
848 $suggest_account_activation = false;
849
850 // FS#703 : $_GET is urldecoded twice, hence
851 // + (the data) => %2B (in the url) => + (first decoding) => ' ' (second decoding)
852 // Since there can be no spaces in emails, we can fix this with :
853 $email = str_replace(' ', '+', $email);
854 $is_valid_email = isvalid_email($email);
855
856 // X not registered to main site.
857 if (Env::v('x') && Env::i('userid') && $is_valid_email) {
858 $user = User::getSilentWithUID(Env::i('userid'));
859 if (!$user) {
860 $page->trigError('Utilisateur invalide.');
861 return;
862 }
863
864 // User has an account but is not yet registered.
865 if ($user->state == 'pending') {
866 // Add email in account table.
867 XDB::query('UPDATE accounts
868 SET email = {?}
869 WHERE uid = {?} AND email IS NULL',
870 Post::t('email'), $user->id());
871 // Add email for marketing if required.
872 if (Env::v('market')) {
873 $market = Marketing::get($user->uid, $email);
874 if (!$market) {
875 $market = new Marketing($user->uid, $email, 'group', $globals->asso('nom'),
876 Env::v('market_from'), S::v('uid'));
877 $market->add();
878 }
879 }
880 }
881 } else {
882 $user = User::getSilent($email);
883
884 // Wrong email and no user: failure.
885 if (is_null($user) && !$is_valid_email) {
886 $page->trigError('«&nbsp;<strong>' . $email . '</strong>&nbsp;» n\'est pas une adresse email valide.');
887 return;
888 }
889
890 // Deals with xnet accounts.
891 if (is_null($user) || $user->type == 'xnet') {
892 // User is of type xnet. There are 3 possible cases:
893 // * the email is not known yet: we create a new account and
894 // propose to send an email to the user so he can activate
895 // his account,
896 // * the email is known but the user was not contacted in order to
897 // activate yet: we propose to send an email to the user so he
898 // can activate his account,
899 // * the email is known and the user was already contacted or has
900 // an active account: nothing to be done.
901 list($mbox, $domain) = explode('@', strtolower($email));
902 $hruid = User::makeHrid($mbox, $domain, 'ext');
903 // User might already have an account (in another group for example).
904 $user = User::getSilent($hruid);
905
906 // If the user has no account yet, creates new account: build names from email address.
907 if (empty($user)) {
908 $parts = explode('.', $mbox);
909 if (count($parts) == 1) {
910 $lastname = $display_name = $full_name = $directory_name = ucfirst($mbox);
911 $firstname = '';
912 } else {
913 $firstname = ucfirst($parts[0]);
914 $lastname = ucwords(implode(' ', array_slice($parts, 1)));
915 $display_name = $firstname;
916 $full_name = "$firstname $lastname";
917 $directory_name = strtoupper($lastname) . " " . $firstname;
918 }
919 XDB::execute('INSERT INTO accounts (hruid, display_name, full_name, directory_name, firstname, lastname, email, type, state)
920 VALUES ({?}, {?}, {?}, {?}, {?}, {?}, {?}, \'xnet\', \'disabled\')',
921 $hruid, $display_name, $full_name, $directory_name, $firstname, $lastname, $email);
922 $user = User::getSilent($hruid);
923 }
924
925 $suggest_account_activation = $this->suggest($user);
926 }
927 }
928
929 if ($user) {
930 // First check if the user used to be in this group.
931 XDB::rawExecute('DELETE FROM group_former_members
932 WHERE remember AND DATE_SUB(NOW(), INTERVAL 1 YEAR) > unsubsciption_date');
933 $former_member = XDB::fetchOneCell('SELECT remember
934 FROM group_former_members
935 WHERE uid = {?} AND asso_id = {?}',
936 $user->id(), $globals->asso('id'));
937 if ($former_member === 1) {
938 $page->trigError($user->fullName() . ' est un ancien membre du groupe qui ne souhaite pas y revenir. S\'il souhaite revenir dans le groupe, il faut qu\'il en fasse la demande sur la page d\'accueil du groupe.');
939 return;
940 } elseif (!is_null($former_member) && Post::i('force_continue') == 0) {
941 $page->trigWarning($user->fullName() . ' est un ancien membre du groupe qui s\'est récemment désinscrit. Malgré cela, si tu penses qu\'il souhaite revenir, cliquer sur « Ajouter » l\'ajoutera bien au groupe cette fois.');
942 $page->assign('force_continue', 1);
943 return;
944 }
945
946 Group::subscribe($globals->asso('id'), $user->id());
947 $this->removeSubscriptionRequest($user->id());
948 if ($suggest_account_activation) {
949 pl_redirect('member/suggest/' . $user->login() . '/' . $email . '/' . $globals->asso('nom'));
950 } else {
951 pl_redirect('member/' . $user->login());
952 }
953 }
954 }
955
956 // Check if the user has a pending or active account, and thus if we should her account's activation.
957 private function suggest(PlUser $user)
958 {
959 $active = XDB::fetchOneCell('SELECT state = \'active\'
960 FROM accounts
961 WHERE uid = {?}',
962 $user->id());
963 $pending = XDB::fetchOneCell('SELECT uid
964 FROM register_pending_xnet
965 WHERE uid = {?}',
966 $user->id());
967 $requested = AccountReq::isPending($user->id()) || BulkAccountsReq::isPending($user->id());
968
969 if ($active || $pending || $requested) {
970 return false;
971 }
972 return true;
973 }
974
975 function handler_admin_member_suggest($page, $hruid, $email)
976 {
977 $page->changeTpl('xnetgrp/membres-suggest.tpl');
978
979 // FS#703 : $_GET is urldecoded twice, hence
980 // + (the data) => %2B (in the url) => + (first decoding) => ' ' (second decoding)
981 // Since there can be no spaces in emails, we can fix this with :
982 $email = str_replace(' ', '+', $email);
983
984 if (Post::has('suggest')) {
985 if (Post::t('suggest') == 'yes') {
986 $user = S::user();
987 $request = new AccountReq($user, $hruid, $email, Platal::globals()->asso('nom'));
988 $request->submit();
989 $page->trigSuccessRedirect('Un email va bien être envoyé à ' . $email . ' pour l\'activation de son compte.',
990 Platal::globals()->asso('diminutif') . '/member/' . $hruid);
991 } else {
992 pl_redirect('member/' . $hruid);
993 }
994 }
995 $page->assign('email', $email);
996 $page->assign('hruid', $hruid);
997 }
998
999 function handler_admin_member_new_ajax($page)
1000 {
1001 pl_content_headers("text/html");
1002 $page->changeTpl('xnetgrp/membres-new-search.tpl', NO_SKIN);
1003 $users = array();
1004 if (Env::has('login')) {
1005 $user = User::getSilent(Env::t('login'));
1006 if ($user && $user->state != 'pending') {
1007 $users = array($user);
1008 }
1009 }
1010 if (empty($users)) {
1011 list($lastname, $firstname) = str_replace(array('-', ' ', "'"), '%', array(Env::t('nom'), Env::t('prenom')));
1012 $cond = new PFC_And(new PFC_Not(new UFC_Registered()));
1013 if (!empty($lastname)) {
1014 $cond->addChild(new UFC_NameTokens($lastname, array(), false, false, Profile::LASTNAME));
1015 }
1016 if (!empty($firstname)) {
1017 $cond->addChild(new UFC_NameTokens($firstname, array(), false, false, Profile::FIRSTNAME));
1018 }
1019 if (Env::t('promo')) {
1020 $cond->addChild(new UFC_Promo('=', UserFilter::DISPLAY, Env::t('promo')));
1021 }
1022 $uf = new UserFilter($cond);
1023 $users = $uf->getUsers(new PlLimit(30));
1024 if ($uf->getTotalCount() > 30) {
1025 $page->assign('too_many', true);
1026 $users = array();
1027 }
1028 }
1029 $page->assign('users', $users);
1030 }
1031
1032 function unsubscribe(PlUser $user, $remember = false)
1033 {
1034 global $globals;
1035 Group::unsubscribe($globals->asso('id'), $user->id(), $remember);
1036
1037 if ($globals->asso('notif_unsub')) {
1038 $mailer = new PlMailer('xnetgrp/unsubscription-notif.mail.tpl');
1039 $admins = $globals->asso()->iterAdmins();
1040 while ($admin = $admins->next()) {
1041 $mailer->addTo($admin);
1042 }
1043 $mailer->assign('group', $globals->asso('nom'));
1044 $mailer->assign('user', $user);
1045 $mailer->assign('selfdone', $user->id() == S::i('uid'));
1046 $mailer->send();
1047 }
1048
1049 $domain = $globals->asso('mail_domain');
1050 if (!$domain) {
1051 return true;
1052 }
1053
1054 $mmlist = new MMList(S::user(), $domain);
1055 $listes = $mmlist->get_lists($user->forlifeEmail());
1056
1057 $may_update = may_update();
1058 $warning = false;
1059 if (is_array($listes)) {
1060 foreach ($listes as $liste) {
1061 if ($liste['sub'] == 2) {
1062 if ($may_update) {
1063 $mmlist->mass_unsubscribe($liste['list'], Array($user->forlifeEmail()));
1064 } else {
1065 $mmlist->unsubscribe($liste['list']);
1066 }
1067 } elseif ($liste['sub']) {
1068 Platal::page()->trigWarning($user->fullName() . " a une"
1069 ." demande d'inscription en cours sur la"
1070 ." liste {$liste['list']}@ !");
1071 $warning = true;
1072 }
1073 }
1074 }
1075
1076 XDB::execute('DELETE v
1077 FROM email_virtual AS v
1078 INNER JOIN email_virtual_domains AS d ON (v.domain = d.id)
1079 WHERE v.redirect = {?} AND d.name = {?}',
1080 $user->forlifeEmail(), $domain);
1081 return !$warning;
1082 }
1083
1084 function handler_unsubscribe($page)
1085 {
1086 $page->changeTpl('xnetgrp/membres-del.tpl');
1087 $user = S::user();
1088 if (empty($user)) {
1089 return PL_NOT_FOUND;
1090 }
1091 $page->assign('self', true);
1092 $page->assign('user', $user);
1093
1094 if (!Post::has('confirm')) {
1095 return;
1096 } else {
1097 S::assert_xsrf_token();
1098 }
1099
1100 $hasSingleGroup = ($user->groupCount() == 1);
1101
1102 if ($this->unsubscribe($user, Post::b('remember'))) {
1103 $page->trigSuccess('Tu as été désinscrit du groupe avec succès.');
1104 } else {
1105 $page->trigWarning('Tu as été désinscrit du groupe, mais des erreurs se sont produites lors des désinscriptions des alias et des listes de diffusion.');
1106 }
1107
1108 // If user is of type xnet account and this was her last group, disable the account.
1109 if ($user->type == 'xnet' && $hasSingleGroup) {
1110 $user->clear(true);
1111 }
1112 $page->assign('is_member', is_member(true));
1113 }
1114
1115 function handler_admin_member_del($page, $user = null)
1116 {
1117 $page->changeTpl('xnetgrp/membres-del.tpl');
1118 $user = User::getSilent($user);
1119 if (empty($user)) {
1120 return PL_NOT_FOUND;
1121 }
1122
1123 global $globals;
1124
1125 if (!$user->inGroup($globals->asso('id'))) {
1126 pl_redirect('annuaire');
1127 }
1128
1129 $page->assign('self', false);
1130 $page->assign('user', $user);
1131
1132 if (!Post::has('confirm')) {
1133 return;
1134 } else {
1135 S::assert_xsrf_token();
1136 }
1137
1138 $hasSingleGroup = ($user->groupCount() == 1);
1139
1140 if ($this->unsubscribe($user)) {
1141 $page->trigSuccess("{$user->fullName()} a été désinscrit du groupe&nbsp;!");
1142 } else {
1143 $page->trigWarning("{$user->fullName()} a été désinscrit du groupe, mais des erreurs subsistent&nbsp;!");
1144 }
1145
1146 // If user is of type xnet account and this was her last group, disable the account.
1147 if ($user->type == 'xnet' && $hasSingleGroup) {
1148 $user->clear(true);
1149 }
1150 }
1151
1152 private function changeLogin(PlPage $page, PlUser $user, $login)
1153 {
1154 // Search the user's uid.
1155 $xuser = User::getSilent($login);
1156 if (!$xuser) {
1157 $accounts = User::getPendingAccounts($login);
1158 if (!$accounts) {
1159 $page->trigError("L'identifiant $login ne correspond à aucun X.");
1160 return false;
1161 } else if (count($accounts) > 1) {
1162 $page->trigError("L'identifiant $login correspond à plusieurs camarades.");
1163 return false;
1164 }
1165 $xuser = User::getSilent($accounts[0]['uid']);
1166 }
1167
1168 if (!$xuser) {
1169 return false;
1170 }
1171
1172 if ($user->mergeIn($xuser)) {
1173 return $xuser->login();
1174 }
1175 return $user->login();
1176 }
1177
1178 function handler_admin_member($page, $user)
1179 {
1180 global $globals;
1181
1182 $user = User::getSilent($user);
1183 if (empty($user)) {
1184 return PL_NOT_FOUND;
1185 }
1186
1187 if (!$user->inGroup($globals->asso('id'))) {
1188 pl_redirect('annuaire');
1189 }
1190
1191 $page->changeTpl('xnetgrp/membres-edit.tpl');
1192
1193 $mmlist = new MMList(S::user(), $globals->asso('mail_domain'));
1194
1195 if (Post::has('change')) {
1196 require_once 'emails.inc.php';
1197 S::assert_xsrf_token();
1198
1199 // Convert user status to X
1200 if (!Post::blank('login_X')) {
1201 $forlife = $this->changeLogin($page, $user, Post::t('login_X'));
1202 if ($forlife) {
1203 pl_redirect('member/' . $forlife);
1204 }
1205 }
1206
1207 // Update user info
1208 if ($user->type == 'virtual' || ($user->type == 'xnet' && !$user->perms)) {
1209 $lastname = Post::s('lastname');
1210 if (Post::s('type') != 'virtual') {
1211 $firstname = Post::s('firstname');
1212 $full_name = $firstname . ' ' . $lastname;
1213 $directory_name = mb_strtoupper($lastname) . ' ' . $firstname;
1214 } else {
1215 $firstname = '';
1216 $full_name = $lastname;
1217 $directory_name = mb_strtoupper($lastname);
1218 }
1219 XDB::query('UPDATE accounts
1220 SET full_name = {?}, directory_name = {?}, display_name = {?},
1221 firstname = {?}, lastname = {?}, sex = {?}, email = {?}, type = {?}
1222 WHERE uid = {?}',
1223 $full_name, $directory_name, Post::t('display_name'), $firstname, $lastname,
1224 (Post::t('sex') == 'male') ? 'male' : 'female', Post::t('email'),
1225 (Post::t('type') == 'xnet') ? 'xnet' : 'virtual', $user->id());
1226 } else if (!$user->perms && Post::has('email') && require_email_update($user, Post::t('email'))) {
1227 XDB::query('UPDATE accounts
1228 SET email = {?}
1229 WHERE uid = {?}',
1230 Post::t('email'), $user->id());
1231 $listClient = new MMList(S::user());
1232 $listClient->change_user_email($user->forlifeEmail(), Post::t('email'));
1233 update_alias_user($user->forlifeEmail(), Post::t('email'));
1234 }
1235 if (XDB::affectedRows()) {
1236 $page->trigSuccess('Données de l\'utilisateur mises à jour.');
1237 }
1238
1239 if (($user->type == 'xnet' && !$user->perms)) {
1240 if (Post::b('suggest')) {
1241 $request = new AccountReq(S::user(), $user->hruid, Post::t('email'), $globals->asso('nom'));
1242 $request->submit();
1243 $page->trigSuccess('Le compte va bientôt être activé.');
1244 }
1245 if (Post::b('again')) {
1246 $data = XDB::fetchOneAssoc('SELECT hash, group_name, sender_name, email
1247 FROM register_pending_xnet
1248 WHERE uid = {?}',
1249 $user->id());
1250
1251 $mailer = new PlMailer('xnet/account.mail.tpl');
1252 $mailer->addCc('validation+xnet_account@polytechnique.org');
1253 $mailer->setTo($data['email']);
1254 $mailer->assign('hash', $data['hash']);
1255 $mailer->assign('email', $data['email']);
1256 $mailer->assign('group', $data['group_name']);
1257 $mailer->assign('sender_name', $data['sender_name']);
1258 $mailer->assign('again', true);
1259 $mailer->send();
1260 $page->trigSuccess('Relance effectuée avec succès.');
1261 }
1262 }
1263
1264 // Update group params for user
1265 $perms = Post::v('group_perms');
1266 $comm = Post::t('comm');
1267 $position = (Post::t('group_position') == '') ? null : Post::v('group_position');
1268 if ($user->group_perms != $perms || $user->group_comm != $comm || $user->group_position != $position) {
1269 XDB::query('UPDATE group_members
1270 SET perms = {?}, comm = {?}, position = {?}
1271 WHERE uid = {?} AND asso_id = {?}',
1272 ($perms == 'admin') ? 'admin' : 'membre', $comm, $position,
1273 $user->id(), $globals->asso('id'));
1274 if (XDB::affectedRows()) {
1275 if ($perms != $user->group_perms) {
1276 $page->trigSuccess('Permissions modifiées&nbsp;!');
1277 }
1278 if ($comm != $user->group_comm) {
1279 $page->trigSuccess('Commentaire mis à jour.');
1280 }
1281 if ($position != $user->group_position) {
1282 $page->trigSuccess('Poste mis à jour.');
1283 }
1284 }
1285 }
1286
1287 // Gets user info again as they might have change
1288 $user = User::getSilent($user->id());
1289
1290 // Update ML subscriptions
1291 foreach (Env::v('ml1', array()) as $ml => $state) {
1292 $ask = empty($_REQUEST['ml2'][$ml]) ? 0 : 2;
1293 if ($ask == $state) {
1294 continue;
1295 }
1296 if ($state == '1') {
1297 $page->trigWarning("{$user->fullName()} a "
1298 ."actuellement une demande d'inscription en "
1299 ."cours sur <strong>$ml@</strong> !!!");
1300 } elseif ($ask) {
1301 $mmlist->mass_subscribe($ml, Array($user->forlifeEmail()));
1302 $page->trigSuccess("{$user->fullName()} a été abonné à $ml@.");
1303 } else {
1304 $mmlist->mass_unsubscribe($ml, Array($user->forlifeEmail()));
1305 $page->trigSuccess("{$user->fullName()} a été désabonné de $ml@.");
1306 }
1307 }
1308
1309 // Change subscriptioin to aliases
1310 foreach (Env::v('ml3', array()) as $ml => $state) {
1311 require_once 'emails.inc.php';
1312 $ask = !empty($_REQUEST['ml4'][$ml]);
1313 list($local_part, ) = explode('@', $ml);
1314 if ($ask == $state) {
1315 continue;
1316 }
1317 if ($ask) {
1318 add_to_list_alias($user->id(), $local_part, $globals->asso('mail_domain'));
1319 $page->trigSuccess("{$user->fullName()} a été abonné à $ml.");
1320 } else {
1321 delete_from_list_alias($user->id(), $local_part, $globals->asso('mail_domain'));
1322 $page->trigSuccess("{$user->fullName()} a été désabonné de $ml.");
1323 }
1324 }
1325
1326 if ($globals->asso('has_nl')) {
1327 $nl = NewsLetter::forGroup($globals->asso('shortname'));
1328 // Updates group's newsletter subscription.
1329 if (Post::i('newsletter') == 1) {
1330 $nl->subscribe($user);
1331 } else {
1332 $nl->unsubscribe(null, $user->id());
1333 }
1334 }
1335 }
1336
1337 $res = XDB::rawFetchAllAssoc('SHOW COLUMNS FROM group_members LIKE \'position\'');
1338 $positions = str_replace(array('enum(', ')', '\''), '', $res[0]['Type']);
1339 if ($globals->asso('has_nl')) {
1340 $nl = NewsLetter::forGroup($globals->asso('shortname'));
1341 $nl_registered = $nl->subscriptionState($user);
1342 } else {
1343 $nl_registered = false;
1344 }
1345
1346 $page->assign('user', $user);
1347 $page->assign('suggest', $this->suggest($user));
1348 $page->assign('listes', $mmlist->get_lists($user->forlifeEmail()));
1349 $page->assign('alias', $user->emailGroupAliases($globals->asso('mail_domain')));
1350 $page->assign('positions', explode(',', $positions));
1351 $page->assign('nl_registered', $nl_registered);
1352 $page->assign('pending_xnet_account', XDB::fetchOneCell('SELECT 1
1353 FROM register_pending_xnet
1354 WHERE uid = {?}',
1355 $user->id()));
1356 }
1357
1358 function handler_rss(PlPage $page, PlUser $user)
1359 {
1360 global $globals;
1361 $page->assign('asso', $globals->asso());
1362
1363 $this->load('feed.inc.php');
1364 $feed = new XnetGrpEventFeed();
1365 return $feed->run($page, $user, false);
1366 }
1367
1368 private function upload_image(PlPage $page, PlUpload $upload)
1369 {
1370 if (@!$_FILES['image']['tmp_name'] && !Env::v('image_url')) {
1371 return true;
1372 }
1373 if (!$upload->upload($_FILES['image']) && !$upload->download(Env::v('image_url'))) {
1374 $page->trigError('Impossible de télécharger l\'image');
1375 return false;
1376 } elseif (!$upload->isType('image')) {
1377 $page->trigError('Le fichier n\'est pas une image valide au format JPEG, GIF ou PNG.');
1378 $upload->rm();
1379 return false;
1380 } elseif (!$upload->resizeImage(80, 100, 100, 100, 32284)) {
1381 $page->trigError('Impossible de retraiter l\'image');
1382 return false;
1383 }
1384 return true;
1385 }
1386
1387 function handler_photo_announce($page, $eid = null) {
1388 if ($eid) {
1389 $res = XDB::query('SELECT *
1390 FROM group_announces_photo
1391 WHERE eid = {?}', $eid);
1392 if ($res->numRows()) {
1393 $photo = $res->fetchOneAssoc();
1394 pl_cached_dynamic_content_headers("image/" . $photo['attachmime']);
1395 echo $photo['attach'];
1396 exit;
1397 }
1398 } else {
1399 $upload = new PlUpload(S::user()->login(), 'xnetannounce');
1400 if ($upload->exists() && $upload->isType('image')) {
1401 pl_cached_dynamic_content_headers($upload->contentType());
1402 echo $upload->getContents();
1403 exit;
1404 }
1405 }
1406 global $globals;
1407 pl_cached_dynamic_content_headers("image/png");
1408 echo file_get_contents($globals->spoolroot . '/htdocs/images/logo.png');
1409 exit;
1410 }
1411
1412 function handler_edit_announce($page, $aid = null)
1413 {
1414 global $globals, $platal;
1415 $page->changeTpl('xnetgrp/announce-edit.tpl');
1416 $page->assign('new', is_null($aid));
1417 $art = array();
1418
1419 if (Post::v('valid') == 'Visualiser' || Post::v('valid') == 'Enregistrer'
1420 || Post::v('valid') == 'Supprimer l\'image' || Post::v('valid') == 'Pas d\'image') {
1421 S::assert_xsrf_token();
1422
1423 if (!is_null($aid)) {
1424 $art['id'] = $aid;
1425 }
1426 $art['titre'] = Post::v('titre');
1427 $art['texte'] = Post::v('texte');
1428 $art['contacts'] = Post::v('contacts');
1429 $art['promo_min'] = Post::i('promo_min');
1430 $art['promo_max'] = Post::i('promo_max');
1431 $art['nom'] = S::v('nom');
1432 $art['prenom'] = S::v('prenom');
1433 $art['promo'] = S::v('promo');
1434 $art['hruid'] = S::user()->login();
1435 $art['uid'] = S::user()->id();
1436 $art['expiration'] = Post::v('expiration');
1437 $art['public'] = Post::has('public');
1438 $art['xorg'] = Post::has('xorg');
1439 $art['nl'] = Post::has('nl');
1440 $art['event'] = Post::v('event');
1441 $upload = new PlUpload(S::user()->login(), 'xnetannounce');
1442 $this->upload_image($page, $upload);
1443
1444 $art['contact_html'] = $art['contacts'];
1445 if ($art['event']) {
1446 $art['contact_html'] .= "\n{$globals->baseurl}/{$platal->ns}events/sub/{$art['event']}";
1447 }
1448
1449 if (!$art['public'] &&
1450 (($art['promo_min'] > $art['promo_max'] && $art['promo_max'] != 0) ||
1451 ($art['promo_min'] != 0 && ($art['promo_min'] <= 1900 || $art['promo_min'] >= 2020)) ||
1452 ($art['promo_max'] != 0 && ($art['promo_max'] <= 1900 || $art['promo_max'] >= 2020))))
1453 {
1454 $page->trigError("L'intervalle de promotions est invalide.");
1455 Post::kill('valid');
1456 }
1457
1458 if (!trim($art['titre']) || !trim($art['texte'])) {
1459 $page->trigError("L'article doit avoir un titre et un contenu.");
1460 Post::kill('valid');
1461 }
1462
1463 if (Post::v('valid') == 'Supprimer l\'image') {
1464 $upload->rm();
1465 Post::kill('valid');
1466 }
1467 $art['photo'] = $upload->exists() || Post::i('photo');
1468 if (Post::v('valid') == 'Pas d\'image' && !is_null($aid)) {
1469 XDB::query('DELETE FROM group_announces_photo
1470 WHERE eid = {?}', $aid);
1471 $upload->rm();
1472 Post::kill('valid');
1473 $art['photo'] = false;
1474 }
1475 }
1476
1477 if (Post::v('valid') == 'Enregistrer') {
1478 $promo_min = ($art['public'] ? 0 : $art['promo_min']);
1479 $promo_max = ($art['public'] ? 0 : $art['promo_max']);
1480 $flags = new PlFlagSet();
1481 if ($art['public']) {
1482 $flags->addFlag('public');
1483 }
1484 if ($art['photo']) {
1485 $flags->addFlag('photo');
1486 }
1487 if (is_null($aid)) {
1488 $fulltext = $art['texte'];
1489 if (!empty($art['contact_html'])) {
1490 $fulltext .= "\n\n'''Contacts :'''\\\\\n" . $art['contact_html'];
1491 }
1492 $post = null;
1493 if ($globals->asso('forum')) {
1494 require_once 'banana/forum.inc.php';
1495 $banana = new ForumsBanana(S::user());
1496 $post = $banana->post($globals->asso('forum'), null,
1497 $art['titre'], MiniWiki::wikiToText($fulltext, false, 0, 80));
1498 }
1499 XDB::query('INSERT INTO group_announces (uid, asso_id, create_date, titre, texte, contacts,
1500 expiration, promo_min, promo_max, flags, post_id)
1501 VALUES ({?}, {?}, NOW(), {?}, {?}, {?}, {?}, {?}, {?}, {?}, {?})',
1502 S::i('uid'), $globals->asso('id'), $art['titre'], $art['texte'], $art['contact_html'],
1503 $art['expiration'], $promo_min, $promo_max, $flags, $post);
1504 $aid = XDB::insertId();
1505 if ($art['photo']) {
1506 list($imgx, $imgy, $imgtype) = $upload->imageInfo();
1507 XDB::execute('INSERT INTO group_announces_photo
1508 SET eid = {?}, attachmime = {?}, x = {?}, y = {?}, attach = {?}',
1509 $aid, $imgtype, $imgx, $imgy, $upload->getContents());
1510 }
1511 if ($art['xorg']) {
1512 $article = new EvtReq("[{$globals->asso('nom')}] " . $art['titre'], $fulltext,
1513 $art['promo_min'], $art['promo_max'], $art['expiration'], "", S::user(),
1514 $upload);
1515 $article->submit();
1516 $page->trigWarning("L'affichage sur la page d'accueil de Polytechnique.org est en attente de validation.");
1517 } else if ($upload && $upload->exists()) {
1518 $upload->rm();
1519 }
1520 if ($art['nl']) {
1521 $article = new NLReq(S::user(), $globals->asso('nom') . " : " .$art['titre'],
1522 $art['texte'], $art['contact_html']);
1523 $article->submit();
1524 $page->trigWarning("La parution dans la Lettre Mensuelle est en attente de validation.");
1525 }
1526 } else {
1527 XDB::query('UPDATE group_announces
1528 SET titre = {?}, texte = {?}, contacts = {?}, expiration = {?},
1529 promo_min = {?}, promo_max = {?}, flags = {?}
1530 WHERE id = {?} AND asso_id = {?}',
1531 $art['titre'], $art['texte'], $art['contacts'], $art['expiration'],
1532 $promo_min, $promo_max, $flags,
1533 $art['id'], $globals->asso('id'));
1534 if ($art['photo'] && $upload->exists()) {
1535 list($imgx, $imgy, $imgtype) = $upload->imageInfo();
1536 XDB::execute('INSERT INTO group_announces_photo (eid, attachmime, attach, x, y)
1537 VALUES ({?}, {?}, {?}, {?}, {?})
1538 ON DUPLICATE KEY UPDATE attachmime = VALUES(attachmime), attach = VALUES(attach), x = VALUES(x), y = VALUES(y)',
1539 $aid, $imgtype, $upload->getContents(), $imgx, $imgy);
1540 $upload->rm();
1541 }
1542 }
1543 }
1544 if (Post::v('valid') == 'Enregistrer' || Post::v('valid') == 'Annuler') {
1545 pl_redirect("");
1546 }
1547
1548 if (empty($art) && !is_null($aid)) {
1549 $res = XDB::query("SELECT *, FIND_IN_SET('public', flags) AS public,
1550 FIND_IN_SET('photo', flags) AS photo
1551 FROM group_announces
1552 WHERE asso_id = {?} AND id = {?}",
1553 $globals->asso('id'), $aid);
1554 if ($res->numRows()) {
1555 $art = $res->fetchOneAssoc();
1556 $art['contact_html'] = $art['contacts'];
1557 } else {
1558 $page->kill("Aucun article correspond à l'identifiant indiqué.");
1559 }
1560 }
1561
1562 if (is_null($aid)) {
1563 $events = XDB::iterator("SELECT *
1564 FROM group_events
1565 WHERE asso_id = {?} AND archive = 0",
1566 $globals->asso('id'));
1567 if ($events->total()) {
1568 $page->assign('events', $events);
1569 }
1570 }
1571
1572 $art['contact_html'] = @MiniWiki::WikiToHTML($art['contact_html']);
1573 $page->assign('art', $art);
1574 $page->assign_by_ref('upload', $upload);
1575 }
1576
1577 function handler_admin_announce($page)
1578 {
1579 global $globals;
1580 $page->changeTpl('xnetgrp/announce-admin.tpl');
1581
1582 if (Env::has('del')) {
1583 S::assert_xsrf_token();
1584 XDB::execute('DELETE FROM group_announces
1585 WHERE id = {?} AND asso_id = {?}',
1586 Env::i('del'), $globals->asso('id'));
1587 }
1588 $res = XDB::iterator('SELECT id, titre, expiration, expiration < CURRENT_DATE() AS perime
1589 FROM group_announces
1590 WHERE asso_id = {?}
1591 ORDER BY expiration DESC',
1592 $globals->asso('id'));
1593 $page->assign('articles', $res);
1594 }
1595 }
1596
1597 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
1598 ?>
plat/al