X-Git-Url: http://git.polytechnique.org/?a=blobdiff_plain;f=modules%2Fadmin.php;h=b0ac1efcf5b71dc6497fb5926a8f0e523b615bd8;hb=1d10d3fd659fa8eb7c663d6bb599bc8bbc0feeb3;hp=451b74e8e817b85125cabf3c9d3c2b02a957fe52;hpb=e7ae7df9ae05251891de4f101d31af256777f852;p=platal.git
diff --git a/modules/admin.php b/modules/admin.php
index 451b74e..b0ac1ef 100644
--- a/modules/admin.php
+++ b/modules/admin.php
@@ -24,38 +24,33 @@ class AdminModule extends PLModule
function handlers()
{
return array(
- 'admin' => $this->make_hook('default', AUTH_MDP, 'admin'),
- 'admin/auth-groupes-x' => $this->make_hook('authgroupesx', AUTH_MDP, 'admin'),
+ 'phpinfo' => $this->make_hook('phpinfo', AUTH_MDP, 'admin'),
+ 'admin' => $this->make_hook('default', AUTH_MDP, 'admin'),
'admin/ax-xorg' => $this->make_hook('ax_xorg', AUTH_MDP, 'admin'),
- 'admin/binets' => $this->make_hook('binets', AUTH_MDP, 'admin'),
'admin/deaths' => $this->make_hook('deaths', AUTH_MDP, 'admin'),
- 'admin/medals' => $this->make_hook('medals', AUTH_MDP, 'admin'),
'admin/downtime' => $this->make_hook('downtime', AUTH_MDP, 'admin'),
- 'admin/events' => $this->make_hook('events', AUTH_MDP, 'admin'),
- 'admin/formations' => $this->make_hook('formations', AUTH_MDP, 'admin'),
- 'admin/geoloc' => $this->make_hook('geoloc', AUTH_MDP, 'admin'),
- 'admin/geoloc/dynamap' => $this->make_hook('geoloc_dynamap', AUTH_MDP, 'admin'),
- 'admin/groupes-x' => $this->make_hook('groupesx', AUTH_MDP, 'admin'),
'admin/homonyms' => $this->make_hook('homonyms', AUTH_MDP, 'admin'),
- 'admin/lists' => $this->make_hook('lists', AUTH_MDP, 'admin'),
'admin/logger' => $this->make_hook('logger', AUTH_MDP, 'admin'),
'admin/logger/actions' => $this->make_hook('logger_actions', AUTH_MDP, 'admin'),
- 'admin/newsletter' => $this->make_hook('newsletter', AUTH_MDP, 'admin'),
- 'admin/newsletter/categories' => $this->make_hook('newsletter_cat', AUTH_MDP, 'admin'),
- 'admin/newsletter/edit' => $this->make_hook('newsletter_edit', AUTH_MDP, 'admin'),
- 'admin/payments' => $this->make_hook('payments', AUTH_MDP, 'admin'),
'admin/postfix/blacklist' => $this->make_hook('postfix_blacklist', AUTH_MDP, 'admin'),
'admin/postfix/delayed' => $this->make_hook('postfix_delayed', AUTH_MDP, 'admin'),
'admin/postfix/regexp_bounces' => $this->make_hook('postfix_regexpsbounces', AUTH_MDP, 'admin'),
'admin/postfix/whitelist' => $this->make_hook('postfix_whitelist', AUTH_MDP, 'admin'),
'admin/skins' => $this->make_hook('skins', AUTH_MDP, 'admin'),
'admin/synchro_ax' => $this->make_hook('synchro_ax', AUTH_MDP, 'admin'),
- 'admin/trombino' => $this->make_hook('trombino', AUTH_MDP, 'admin'),
'admin/user' => $this->make_hook('user', AUTH_MDP, 'admin'),
'admin/validate' => $this->make_hook('validate', AUTH_MDP, 'admin'),
+ 'admin/validate/answers' => $this->make_hook('validate_answers', AUTH_MDP, 'admin'),
+ 'admin/wiki' => $this->make_hook('wiki', AUTH_MDP, 'admin'),
);
}
+ function handler_phpinfo(&$page)
+ {
+ phpinfo();
+ exit;
+ }
+
function handler_default(&$page)
{
$page->changeTpl('admin/index.tpl');
@@ -105,22 +100,253 @@ class AdminModule extends PLModule
$page->assign('bre', XDB::iterator("SELECT * FROM emails_bounces_re ORDER BY pos"));
}
- function handler_logger(&$page) {
- $page->changeTpl('logger-view.tpl');
- $page->assign('xorg_title','Polytechnique.org - Administration - Logs des sessions');
- require_once('diogenes/diogenes.logger-view.inc.php');
+ // {{{ logger view
+
+ /** Retrieves the available days for a given year and month.
+ * Obtain a list of days of the given month in the given year
+ * that are within the range of dates that we have log entries for.
+ *
+ * @param integer year
+ * @param integer month
+ * @return array days in that month we have log entries covering.
+ * @private
+ */
+ function _getDays($year, $month)
+ {
+ // give a 'no filter' option
+ $months[0] = "----";
+
+ if ($year && $month) {
+ $day_max = Array(-1, 31, checkdate(2, 29, $year) ? 29 : 28 , 31,
+ 30, 31, 30, 31, 31, 30, 31, 30, 31);
+ $res = XDB::query("SELECT YEAR (MAX(start)), YEAR (MIN(start)),
+ MONTH(MAX(start)), MONTH(MIN(start)),
+ DAYOFMONTH(MAX(start)),
+ DAYOFMONTH(MIN(start))
+ FROM logger.sessions");
+ list($ymax, $ymin, $mmax, $mmin, $dmax, $dmin) = $res->fetchOneRow();
+
+ if (($year < $ymin) || ($year == $ymin && $month < $mmin)) {
+ return array();
+ }
+
+ if (($year > $ymax) || ($year == $ymax && $month > $mmax)) {
+ return array();
+ }
+
+ $min = ($year==$ymin && $month==$mmin) ? intval($dmin) : 1;
+ $max = ($year==$ymax && $month==$mmax) ? intval($dmax) : $day_max[$month];
+
+ for($i = $min; $i<=$max; $i++) {
+ $days[$i] = $i;
+ }
+ }
+ return $days;
+ }
+
+
+ /** Retrieves the available months for a given year.
+ * Obtains a list of month numbers that are within the timeframe that
+ * we have log entries for.
+ *
+ * @param integer year
+ * @return array List of month numbers we have log info for.
+ * @private
+ */
+ function _getMonths($year)
+ {
+ // give a 'no filter' option
+ $months[0] = "----";
+
+ if ($year) {
+ $res = XDB::query("SELECT YEAR (MAX(start)), YEAR (MIN(start)),
+ MONTH(MAX(start)), MONTH(MIN(start))
+ FROM logger.sessions");
+ list($ymax, $ymin, $mmax, $mmin) = $res->fetchOneRow();
+
+ if (($year < $ymin) || ($year > $ymax)) {
+ return array();
+ }
+
+ $min = $year == $ymin ? intval($mmin) : 1;
+ $max = $year == $ymax ? intval($mmax) : 12;
- if (!Env::has('logauth')) {
- $_REQUEST['logauth'] = 'native';
+ for($i = $min; $i<=$max; $i++) {
+ $months[$i] = $i;
+ }
}
+ return $months;
+ }
+
- $logview = new DiogenesLoggerView;
- $logview->run($page);
+ /** Retrieves the available years.
+ * Obtains a list of years that we have log entries covering.
+ *
+ * @return array years we have log entries for.
+ * @private
+ */
+ function _getYears()
+ {
+ // give a 'no filter' option
+ $years[0] = "----";
+
+ // retrieve available years
+ $res = XDB::query("select YEAR(MAX(start)), YEAR(MIN(start)) FROM logger.sessions");
+ list($max, $min) = $res->fetchOneRow();
- $page->fakeDiogenes();
+ for($i = intval($min); $i<=$max; $i++) {
+ $years[$i] = $i;
+ }
+ return $years;
}
- function handler_user(&$page, $login = false) {
+
+ /** Make a where clause to get a user's sessions.
+ * Prepare the where clause request that will retrieve the sessions.
+ *
+ * @param $year INTEGER Only get log entries made during the given year.
+ * @param $month INTEGER Only get log entries made during the given month.
+ * @param $day INTEGER Only get log entries made during the given day.
+ * @param $uid INTEGER Only get log entries referring to the given user ID.
+ *
+ * @return STRING the WHERE clause of a query, including the 'WHERE' keyword
+ * @private
+ */
+ function _makeWhere($year, $month, $day, $uid)
+ {
+ // start constructing the "where" clause
+ $where = array();
+
+ if ($uid)
+ array_push($where, "uid='$uid'");
+
+ // we were given at least a year
+ if ($year) {
+ if ($day) {
+ $dmin = mktime(0, 0, 0, $month, $day, $year);
+ $dmax = mktime(0, 0, 0, $month, $day+1, $year);
+ } elseif ($month) {
+ $dmin = mktime(0, 0, 0, $month, 1, $year);
+ $dmax = mktime(0, 0, 0, $month+1, 1, $year);
+ } else {
+ $dmin = mktime(0, 0, 0, 1, 1, $year);
+ $dmax = mktime(0, 0, 0, 1, 1, $year+1);
+ }
+ $where[] = "start >= " . date("Ymd000000", $dmin);
+ $where[] = "start < " . date("Ymd000000", $dmax);
+ }
+
+ if (!empty($where)) {
+ return ' WHERE ' . implode($where, " AND ");
+ } else {
+ return '';
+ }
+ // WE know it's totally reversed, so better use array_reverse than a SORT BY start DESC
+ }
+
+ // }}}
+
+ function handler_logger(&$page, $action = null, $arg = null) {
+ if ($action == 'session') {
+
+ // we are viewing a session
+ $res = XDB::query("SELECT ls.*, a.alias AS username, sa.alias AS suer
+ FROM logger.sessions AS ls
+ LEFT JOIN aliases AS a ON (a.id = ls.uid AND a.type='a_vie')
+ LEFT JOIN aliases AS sa ON (sa.id = ls.suid AND sa.type='a_vie')
+ WHERE ls.id = {?}", $arg);
+
+ $page->assign('session', $a = $res->fetchOneAssoc());
+
+ $res = XDB::iterator('SELECT a.text, e.data, UNIX_TIMESTAMP(e.stamp) AS stamp
+ FROM logger.events AS e
+ LEFT JOIN logger.actions AS a ON e.action=a.id
+ WHERE e.session={?}', $arg);
+ while ($myarr = $res->next()) {
+ $page->append('events', $myarr);
+ }
+
+ } else {
+ $loguser = $action == 'user' ? $arg : Env::v('loguser');
+
+ $res = XDB::query('SELECT id FROM aliases WHERE alias={?}',
+ $loguser);
+ $loguid = $res->fetchOneCell();
+
+ if ($loguid) {
+ $year = Env::i('year');
+ $month = Env::i('month');
+ $day = Env::i('day');
+ } else {
+ $year = Env::i('year', intval(date('Y')));
+ $month = Env::i('month', intval(date('m')));
+ $day = Env::i('day', intval(date('d')));
+ }
+
+ if (!$year)
+ $month = 0;
+ if (!$month)
+ $day = 0;
+
+ // smarty assignments
+ // retrieve available years
+ $page->assign('years', $this->_getYears());
+ $page->assign('year', $year);
+
+ // retrieve available months for the current year
+ $page->assign('months', $this->_getMonths($year));
+ $page->assign('month', $month);
+
+ // retrieve available days for the current year and month
+ $page->assign('days', $this->_getDays($year, $month));
+ $page->assign('day', $day);
+
+ $page->assign('loguser', $loguser);
+ // smarty assignments
+
+ if ($loguid || $year) {
+
+ // get the requested sessions
+ $where = $this->_makeWhere($year, $month, $day, $loguid);
+ $select = "SELECT s.id, UNIX_TIMESTAMP(s.start) as start, s.uid,
+ a.alias as username
+ FROM logger.sessions AS s
+ LEFT JOIN aliases AS a ON (a.id = s.uid AND a.type='a_vie')
+ $where
+ ORDER BY start DESC";
+ $res = XDB::iterator($select);
+
+ $sessions = array();
+ while ($mysess = $res->next()) {
+ $mysess['events'] = array();
+ $sessions[$mysess['id']] = $mysess;
+ }
+ array_reverse($sessions);
+
+ // attach events
+ $sql = "SELECT s.id, a.text
+ FROM logger.sessions AS s
+ LEFT JOIN logger.events AS e ON(e.session=s.id)
+ INNER JOIN logger.actions AS a ON(a.id=e.action)
+ $where";
+
+ $res = XDB::iterator($sql);
+ while ($event = $res->next()) {
+ array_push($sessions[$event['id']]['events'], $event['text']);
+ }
+ $page->assign_by_ref('sessions', $sessions);
+ } else {
+ $page->assign('msg_nofilters', "Sélectionner une annuée et/ou un utilisateur");
+ }
+ }
+
+ $page->changeTpl('logger-view.tpl');
+
+ $page->assign('xorg_title','Polytechnique.org - Administration - Logs des sessions');
+ }
+
+ function handler_user(&$page, $login = false)
+ {
$page->changeTpl('admin/utilisateurs.tpl');
$page->assign('xorg_title','Polytechnique.org - Administration - Edit/Su/Log');
require_once("emails.inc.php");
@@ -132,12 +358,15 @@ class AdminModule extends PLModule
if (Env::has('user_id')) {
$login = get_user_login(Env::i('user_id'));
+ if (empty($login)) {
+ $login = Env::i('user_id');
+ }
} elseif (Env::has('login')) {
$login = get_user_login(Env::v('login'));
}
if(Env::has('logs_button') && $login) {
- pl_redirect("admin/logger?login=$login&year=".date('Y')."&month=".date('m'));
+ pl_redirect("admin/logger?loguser=$login&year=".date('Y')."&month=".date('m'));
}
if (Env::has('ax_button') && $login) {
@@ -155,12 +384,23 @@ class AdminModule extends PLModule
}
if ($login) {
- $r = XDB::query("SELECT *, a.alias AS forlife, u.flags AS sexe
- FROM auth_user_md5 AS u
- INNER JOIN aliases AS a ON ( a.id = u.user_id AND a.alias={?} AND type!='homonyme' )", $login);
+ if (is_numeric($login)) {
+ $r = XDB::query("SELECT *, a.alias AS forlife, u.flags AS sexe,
+ (year(naissance) > promo - 15 or year(naissance) < promo - 25) AS naiss_err
+ FROM auth_user_md5 AS u
+ LEFT JOIN aliases AS a ON (a.id = u.user_id AND type= 'a_vie')
+ WHERE u.user_id = {?}", $login);
+ } else {
+ $r = XDB::query("SELECT *, a.alias AS forlife, u.flags AS sexe,
+ (year(naissance) > promo - 15 or year(naissance) < promo - 25) AS naiss_err
+ FROM auth_user_md5 AS u
+ INNER JOIN aliases AS a ON ( a.id = u.user_id AND a.alias={?} AND type!='homonyme' )", $login);
+ }
$mr = $r->fetchOneAssoc();
- $redirect = new Redirect($mr['user_id']);
+ if (!is_numeric($login)) { //user has a forlife
+ $redirect = new Redirect($mr['user_id']);
+ }
// Check if there was a submission
foreach($_POST as $key => $val) {
@@ -183,8 +423,13 @@ class AdminModule extends PLModule
case "del_alias":
if (!empty($val)) {
- XDB::execute("DELETE FROM aliases WHERE id={?} AND alias={?}
- AND type!='a_vie' AND type!='homonyme'", $mr['user_id'], $val);
+ XDB::execute("DELETE FROM aliases
+ WHERE id={?} AND alias={?}
+ AND type!='a_vie' AND type!='homonyme'", $mr['user_id'], $val);
+ XDB::execute("UPDATE emails
+ SET rewrite = ''
+ WHERE uid = {?} AND rewrite LIKE CONCAT({?}, '@%')",
+ $mr['user_id'], $val);
fix_bestalias($mr['user_id']);
$page->trig($val." a été supprimé");
}
@@ -219,6 +464,7 @@ class AdminModule extends PLModule
require_once('secure_hash.inc.php');
$pass_encrypted = Env::v('newpass_clair') != "********" ? hash_encrypt(Env::v('newpass_clair')) : Env::v('passw');
$naiss = Env::v('naissanceN');
+ $deces = Env::v('decesN');
$perms = Env::v('permsN');
$prenm = Env::v('prenomN');
$nom = Env::v('nomN');
@@ -228,6 +474,7 @@ class AdminModule extends PLModule
$query = "UPDATE auth_user_md5 SET
naissance = '$naiss',
+ deces = '$deces',
password = '$pass_encrypted',
perms = '$perms',
prenom = '".addslashes($prenm)."',
@@ -250,13 +497,12 @@ class AdminModule extends PLModule
$page->trig("updaté correctement.");
}
if (Env::v('nomusageN') != $mr['nom_usage']) {
- require_once('nomusage.inc.php');
set_new_usage($mr['user_id'], Env::v('nomusageN'), make_username(Env::v('prenomN'), Env::v('nomusageN')));
}
- $r = XDB::query("SELECT *, a.alias AS forlife, u.flags AS sexe
- FROM auth_user_md5 AS u
- INNER JOIN aliases AS a ON (u.user_id=a.id)
- WHERE user_id = {?}", $mr['user_id']);
+ $r = XDB::query("SELECT *, a.alias AS forlife, u.flags AS sexe
+ FROM auth_user_md5 AS u
+ LEFT JOIN aliases AS a ON (a.id = u.user_id AND type= 'a_vie')
+ WHERE u.user_id = {?}", $mr['user_id']);
$mr = $r->fetchOneAssoc();
break;
@@ -289,9 +535,9 @@ class AdminModule extends PLModule
FROM aliases
WHERE id = {?} AND type!='homonyme'
ORDER BY type!= 'a_vie'", $mr["user_id"]));
- $page->assign('xorgmails', $xorgmails);
- $page->assign('email_panne', $email_panne);
- $page->assign('emails',$redirect->emails);
+ if ($mr['perms'] != 'pending') {
+ $page->assign('emails',$redirect->emails);
+ }
$page->assign('mr',$mr);
}
@@ -300,7 +546,7 @@ class AdminModule extends PLModule
$page->changeTpl('admin/homonymes.tpl');
$page->assign('xorg_title','Polytechnique.org - Administration - Homonymes');
require_once("homonymes.inc.php");
-
+
if ($target) {
if (! list($prenom,$nom,$forlife,$loginbis) = select_if_homonyme($target)) {
$target=0;
@@ -311,13 +557,13 @@ class AdminModule extends PLModule
$page->assign('loginbis',$loginbis);
}
}
-
+
$page->assign('op',$op);
$page->assign('target',$target);
-
+
// on a un $target valide, on prepare les mails
if ($target) {
-
+
// on examine l'op a effectuer
switch ($op) {
case 'mail':
@@ -334,7 +580,7 @@ class AdminModule extends PLModule
break;
}
}
-
+
if ($op == 'list') {
$res = XDB::iterator(
"SELECT a.alias AS homonyme,s.id AS user_id,s.alias AS forlife,
@@ -354,11 +600,11 @@ class AdminModule extends PLModule
$page->assign_by_ref('hnymes',$hnymes);
}
}
-
+
function handler_ax_xorg(&$page) {
$page->changeTpl('admin/ax-xorg.tpl');
$page->assign('xorg_title','Polytechnique.org - Administration - AX/X.org');
-
+
// liste des différences
$res = XDB::query(
'SELECT u.promo,u.nom AS nom,u.prenom AS prenom,ia.nom AS nomax,ia.prenom AS prenomax,u.matricule AS mat,ia.matricule_ax AS matax
@@ -369,7 +615,7 @@ class AdminModule extends PLModule
OR u.prenom != ia.prenom OR (u.promo != ia.promo AND u.promo != ia.promo+1 AND u.promo != ia.promo-1)
ORDER BY u.promo,u.nom,u.prenom');
$page->assign('diffs', $res->fetchAllAssoc());
-
+
// gens à l'ax mais pas chez nous
$res = XDB::query(
'SELECT ia.promo,ia.nom,ia.nom_patro,ia.prenom
@@ -377,25 +623,25 @@ class AdminModule extends PLModule
LEFT JOIN auth_user_md5 AS u ON u.matricule_ax = ia.matricule_ax
WHERE u.nom IS NULL');
$page->assign('mank', $res->fetchAllAssoc());
-
+
// gens chez nous et pas à l'ax
$res = XDB::query('SELECT promo,nom,prenom FROM auth_user_md5 WHERE matricule_ax IS NULL');
$page->assign('plus', $res->fetchAllAssoc());
}
-
+
function handler_deaths(&$page, $promo = 0, $validate = false) {
$page->changeTpl('admin/deces_promo.tpl');
$page->assign('xorg_title','Polytechnique.org - Administration - Deces');
-
+
if (!$promo)
$promo = Env::i('promo');
if (Env::has('sub10')) $promo -= 10;
if (Env::has('sub01')) $promo -= 1;
if (Env::has('add01')) $promo += 1;
if (Env::has('add10')) $promo += 10;
-
+
$page->assign('promo',$promo);
-
+
if ($validate) {
$new_deces = array();
$res = XDB::iterRow("SELECT user_id,matricule,nom,prenom,deces FROM auth_user_md5 WHERE promo = {?}", $promo);
@@ -413,22 +659,22 @@ class AdminModule extends PLModule
}
$page->assign('new_deces',$new_deces);
}
-
+
$res = XDB::iterator('SELECT matricule, nom, prenom, deces FROM auth_user_md5 WHERE promo = {?} ORDER BY nom,prenom', $promo);
$page->assign('decedes', $res);
}
-
+
function handler_synchro_ax(&$page, $user = null, $action = null) {
$page->changeTpl('admin/synchro_ax.tpl');
$page->assign('xorg_title','Polytechnique.org - Administration - Synchro AX');
-
+
require_once('synchro_ax.inc.php');
-
+
if (is_ax_key_missing()) {
$page->assign('no_private_key', true);
$page->run();
}
-
+
require_once('user.func.inc.php');
if ($user)
@@ -440,16 +686,16 @@ class AdminModule extends PLModule
return;
}
}
-
+
if (Env::has('mat')) {
$res = XDB::query(
- "SELECT alias
+ "SELECT alias
FROM aliases AS a
INNER JOIN auth_user_md5 AS u ON (a.id=u.user_id AND a.type='a_vie')
WHERE matricule={?}", Env::i('mat'));
$login = $res->fetchOneCell();
}
-
+
if ($login) {
if ($action == 'import') {
ax_synchronize($login, S::v('uid'));
@@ -459,299 +705,57 @@ class AdminModule extends PLModule
$userax= get_user_ax($user['matricule_ax']);
require_once 'profil.func.inc.php';
$diff = diff_user_details($userax, $user, 'ax');
-
+
$page->assign('x', $user);
$page->assign('diff', $diff);
}
}
-
- function handler_events(&$page, $arch) {
- $page->changeTpl('admin/evenements.tpl');
- $page->assign('xorg_title','Polytechnique.org - Administration - Evenements');
-
- $arch = $arch == 'archives';
- $evid = Post::i('evt_id');
- $page->assign('arch', $arch);
-
- switch(Post::v('action')) {
- case "Proposer":
- XDB::execute('UPDATE evenements SET titre={?}, texte={?}, peremption={?}, promo_min={?}, promo_max={?} WHERE id = {?}',
- Post::v('titre'), Post::v('texte'), Post::v('peremption'), Post::v('promo_min'), Post::v('promo_max'), $evid);
- break;
-
- case "Valider":
- XDB::execute('UPDATE evenements SET creation_date = creation_date, flags = CONCAT(flags,",valide") WHERE id = {?}', $evid);
- break;
-
- case "Invalider":
- XDB::execute('UPDATE evenements SET creation_date = creation_date, flags = REPLACE(flags,"valide", "") WHERE id = {?}', $evid);
- break;
-
- case "Supprimer":
- XDB::execute('DELETE from evenements WHERE id = {?}', $evid);
- break;
-
- case "Archiver":
- XDB::execute('UPDATE evenements SET creation_date = creation_date, flags = CONCAT(flags,",archive") WHERE id = {?}', $evid);
- break;
-
- case "Desarchiver":
- XDB::execute('UPDATE evenements SET creation_date = creation_date, flags = REPLACE(flags,"archive","") WHERE id = {?}', $evid);
- break;
-
- case "Editer":
- $res = XDB::query('SELECT titre, texte, peremption, promo_min, promo_max FROM evenements WHERE id={?}', $evid);
- list($titre, $texte, $peremption, $promo_min, $promo_max) = $res->fetchOneRow();
- $page->assign('mode', 'edit');
- $page->assign('titre',$titre);
- $page->assign('texte',$texte);
- $page->assign('promo_min',$promo_min);
- $page->assign('promo_max',$promo_max);
- $page->assign('peremption',$peremption);
-
- $select = "";
- for ($i = 1 ; $i < 30 ; $i++) {
- $p_stamp=date("Ymd",time()+3600*24*$i);
- $year=substr($p_stamp,0,4);
- $month=substr($p_stamp,4,2);
- $day=substr($p_stamp,6,2);
-
- $select .= "\n";
- }
- $page->assign('select',$select);
-
- break;
- }
-
- if ($action != "Editer") {
-
- $sql = "SELECT e.id, e.titre, e.texte,
- DATE_FORMAT(e.creation_date,'%d/%m/%Y %T') AS creation_date,
- DATE_FORMAT(e.peremption,'%d/%m/%Y') AS peremption,
- e.promo_min, e.promo_max,
- FIND_IN_SET('valide', e.flags) AS fvalide,
- FIND_IN_SET('archive', e.flags) AS farch,
- u.promo, u.nom, u.prenom, a.alias AS forlife
- FROM evenements AS e
- INNER JOIN auth_user_md5 AS u ON(e.user_id = u.user_id)
- INNER JOIN aliases AS a ON (u.user_id = a.id AND a.type='a_vie')
- WHERE ".($arch ? "" : "!")."FIND_IN_SET('archive',e.flags)
- ORDER BY FIND_IN_SET('valide',e.flags), peremption";
- $page->assign('evs', XDB::iterator($sql));
- }
- }
-
- function handler_newsletter(&$page, $new = false) {
- $page->changeTpl('admin/newsletter.tpl');
- $page->assign('xorg_title','Polytechnique.org - Administration - Newsletter : liste');
- require_once("newsletter.inc.php");
-
- if($new) {
- insert_new_nl();
- pl_redirect("admin/newsletter");
- }
-
- $page->assign_by_ref('nl_list', get_nl_slist());
- }
-
- function handler_newsletter_edit(&$page, $nid = 'last', $aid = null, $action = 'edit') {
- $page->changeTpl('admin/newsletter_edit.tpl');
- $page->assign('xorg_title','Polytechnique.org - Administration - Newsletter : Edition');
- require_once("newsletter.inc.php");
-
- $nl = new NewsLetter($nid);
-
- if($action == 'delete') {
- $nl->delArticle($aid);
- pl_redirect("admin/newsletter/edit/$nid");
- }
-
- if($aid == 'update') {
- $nl->_title = Post::v('title');
- $nl->_date = Post::v('date');
- $nl->_head = Post::v('head');
- $nl->save();
- }
-
- if(Post::v('save')) {
- $art = new NLArticle(Post::v('title'), Post::v('body'), Post::v('append'),
- $aid, Post::v('cid'), Post::v('pos'));
- $nl->saveArticle($art);
- pl_redirect("admin/newsletter/edit/$nid");
- }
-
- if($action == 'edit') {
- $eaid = $aid;
- if(Post::has('title')) {
- $art = new NLArticle(Post::v('title'), Post::v('body'), Post::v('append'),
- $eaid, Post::v('cid'), Post::v('pos'));
- } else {
- $art = ($eaid == 'new') ? new NLArticle() : $nl->getArt($eaid);
- }
- $page->assign('art', $art);
- }
-
- $page->assign_by_ref('nl',$nl);
- }
-
- function handler_lists(&$page) {
- $page->changeTpl('admin/lists.tpl');
- $page->assign('xorg_title','Polytechnique.org - Administration - Mailing lists');
- require_once 'lists.inc.php';
-
- $client =& lists_xmlrpc(S::v('uid'), S::v('password'));
- $listes = $client->get_all_lists();
- $page->assign_by_ref('listes',$listes);
- }
-
- function handler_validate(&$page) {
+
+ function handler_validate(&$page, $action = 'list', $id = null) {
$page->changeTpl('admin/valider.tpl');
$page->assign('xorg_title','Polytechnique.org - Administration - Valider une demande');
require_once("validations.inc.php");
-
+
+ if ($action == 'edit' and !is_null($id)) {
+ $page->assign('preview_id', $id);
+ }
+
if(Env::has('uid') && Env::has('type') && Env::has('stamp')) {
- $req = Validate::get_request(Env::v('uid'), Env::v('type'), Env::v('stamp'));
+ $req = Validate::get_typed_request(Env::v('uid'), Env::v('type'), Env::v('stamp'));
if($req) { $req->handle_formu(); }
}
-
- $page->assign('vit', new ValidateIterator());
- }
-
- function handler_geoloc(&$page, $action = false) {
- $page->changeTpl('admin/geoloc.tpl');
- require_once("geoloc.inc.php");
- $page->assign('xorg_title','Polytechnique.org - Administration - Geolocalisation');
-
- $nb_synchro = 0;
-
- if (Env::has('id') && is_numeric(Env::v('id'))) {
- if (synchro_city(Env::v('id'))) $nb_synchro ++;
- }
-
- if ($action == 'missinglat') {
- $res = XDB::iterRow("SELECT id FROM geoloc_city WHERE lat = 0 AND lon = 0");
- while ($a = $res->next()) if (synchro_city($a[0])) $nb_synchro++;
- }
-
- if ($nb_synchro)
- $page->trig(($nb_synchro > 1)?($nb_synchro." villes ont été synchronisées"):"Une ville a été synchronisée");
-
- $res = XDB::query("SELECT COUNT(*) FROM geoloc_city WHERE lat = 0 AND lon = 0");
- $page->assign("nb_missinglat", $res->fetchOneCell());
- }
-
- function handler_geoloc_dynamap(&$page, $action = false) {
- $page->changeTpl('admin/geoloc_dynamap.tpl');
-
- if ($action == 'cities_not_on_map') {
- require_once('geoloc.inc.php');
- if (!fix_cities_not_on_map(20))
- $page->trig("Impossible d'accéder au webservice");
- else
- $refresh = true;
- }
-
- if ($action == 'smallest_maps') {
- require_once('geoloc.inc.php');
- set_smallest_levels();
- }
-
- if ($action == 'precise_coordinates') {
- XDB::execute("UPDATE adresses AS a INNER JOIN geoloc_city AS c ON(a.cityid = c.id) SET a.glat = c.lat / 100000, a.glng = c.lon / 100000");
- }
-
- if ($action == 'newmaps') {
- require_once('geoloc.inc.php');
- if (!get_new_maps(Env::v('url')))
- $page->trig("Impossible d'accéder aux nouvelles cartes");
- }
-
- $countMissing = XDB::query("SELECT COUNT(*) FROM geoloc_city AS c LEFT JOIN geoloc_city_in_maps AS m ON(c.id = m.city_id) WHERE m.city_id IS NULL");
- $missing = $countMissing->fetchOneCell();
-
- $countNoSmallest = XDB::query("SELECT SUM(IF(infos = 'smallest',1,0)) AS n FROM geoloc_city_in_maps GROUP BY city_id ORDER BY n");
- $noSmallest = $countNoSmallest->fetchOneCell() == 0;
-
- $countNoCoordinates = XDB::query("SELECT COUNT(*) FROM adresses WHERE cityid IS NOT NULL AND glat = 0 AND glng = 0");
- $noCoordinates = $countNoCoordinates->fetchOneCell();
-
- if (isset($refresh) && $missing) {
- $page->assign("xorg_extra_header", "");
- }
- $page->assign("nb_cities_not_on_map", $missing);
- $page->assign("no_smallest", $noSmallest);
- $page->assign("no_coordinates", $noCoordinates);
- }
-
- function handler_trombino(&$page, $uid = null, $action = null) {
- $page->changeTpl('admin/admin_trombino.tpl');
- $page->assign('xorg_title','Polytechnique.org - Administration - Trombino');
- $page->assign('uid', $uid);
-
- $q = XDB::query(
- "SELECT a.alias,promo
- FROM auth_user_md5 AS u
- INNER JOIN aliases AS a ON ( u.user_id = a.id AND type='a_vie' )
- WHERE user_id = {?}", $uid);
- list($forlife, $promo) = $q->fetchOneRow();
-
- switch ($action) {
-
- case "original":
- header("Content-type: image/jpeg");
- readfile("/home/web/trombino/photos".$promo."/".$forlife.".jpg");
- exit;
- break;
-
- case "new":
- $data = file_get_contents($_FILES['userfile']['tmp_name']);
- list($x, $y) = getimagesize($_FILES['userfile']['tmp_name']);
- $mimetype = substr($_FILES['userfile']['type'], 6);
- unlink($_FILES['userfile']['tmp_name']);
- XDB::execute(
- "REPLACE INTO photo SET uid={?}, attachmime = {?}, attach={?}, x={?}, y={?}",
- $uid, $mimetype, $data, $x, $y);
- break;
-
- case "delete":
- XDB::execute('DELETE FROM photo WHERE uid = {?}', $uid);
- break;
+
+ $r = XDB::iterator('SHOW COLUMNS FROM requests_answers');
+ while (($a = $r->next()) && $a['Field'] != 'category');
+ $page->assign('categories', $categories = explode(',', str_replace("'", '', substr($a['Type'], 5, -1))));
+
+ $hidden = array();
+ if (Post::has('hide')) {
+ $hide = array();
+ foreach ($categories as $cat)
+ if (!Post::v($cat)) {
+ $hidden[$cat] = 1;
+ $hide[] = $cat;
+ }
+ setcookie('hide_requests', join(',',$hide), time()+(count($hide)?25920000:(-3600)), '/', '', 0);
+ } elseif (Env::has('hide_requests')) {
+ foreach (explode(',',Env::v('hide_requests')) as $hide_type)
+ $hidden[$hide_type] = true;
}
-
- $page->assign('forlife', $forlife);
+ $page->assign('hide_requests', $hidden);
+
+ $page->assign('vit', new ValidateIterator());
}
-
- function handler_binets(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
- $page->assign('xorg_title','Polytechnique.org - Administration - Binets');
- $page->assign('title', 'Gestion des binets');
- $table_editor = new PLTableEditor('admin/binets', 'binets_def', 'id');
- $table_editor->add_join_table('binets_ins','binet_id',true);
- $table_editor->describe('text','intitulé',true);
+ function handler_validate_answers(&$page, $action = 'list', $id = null) {
+ $page->assign('xorg_title','Polytechnique.org - Administration - Réponses automatiques de validation');
+ $page->assign('title', 'Gestion des réponses automatiques');
+ $table_editor = new PLTableEditor('admin/validate/answers','requests_answers','id');
+ $table_editor->describe('category','catégorie',true);
+ $table_editor->describe('title','titre',true);
+ $table_editor->describe('answer','texte',false);
$table_editor->apply($page, $action, $id);
}
- function handler_formations(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
- $page->assign('xorg_title','Polytechnique.org - Administration - Formations');
- $page->assign('title', 'Gestion des formations');
- $table_editor = new PLTableEditor('admin/formations','applis_def','id');
- $table_editor->add_join_table('applis_ins','aid',true);
- $table_editor->describe('text','intitulé',true);
- $table_editor->describe('url','site web',false);
- $table_editor->apply($page, $action, $id);
- }
- function handler_groupesx(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
- $page->assign('xorg_title','Polytechnique.org - Administration - Groupes X');
- $page->assign('title', 'Gestion des Groupes X');
- $table_editor = new PLTableEditor('admin/groupes-x','groupesx_def','id');
- $table_editor->add_join_table('groupesx_ins','gid',true);
- $table_editor->describe('text','intitulé',true);
- $table_editor->describe('url','site web',false);
- $table_editor->apply($page, $action, $id);
- }
function handler_skins(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
$page->assign('xorg_title','Polytechnique.org - Administration - Skins');
$page->assign('title', 'Gestion des skins');
$table_editor = new PLTableEditor('admin/skins','skins','id');
@@ -762,45 +766,31 @@ class AdminModule extends PLModule
$table_editor->describe('date','date',false);
$table_editor->describe('ext','extension du screenshot',false);
$table_editor->apply($page, $action, $id);
- }
- function handler_authgroupesx(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
- $page->assign('xorg_title','Polytechnique.org - Administration - Auth groupes X');
- $page->assign('title', 'Gestion de l\'authentification centralisée');
- $table_editor = new PLTableEditor('admin/auth-groupes-x','groupesx_auth','id');
- $table_editor->describe('name','nom',true);
- $table_editor->describe('privkey','clé privée',false);
- $table_editor->describe('datafields','champs renvoyés',true);
- $table_editor->apply($page, $action, $id);
- }
+ }
function handler_postfix_blacklist(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
$page->assign('xorg_title','Polytechnique.org - Administration - Postfix : Blacklist');
$page->assign('title', 'Blacklist de postfix');
$table_editor = new PLTableEditor('admin/postfix/blacklist','postfix_blacklist','email', true);
$table_editor->describe('reject_text','Texte de rejet',true);
$table_editor->describe('email','email',true);
$table_editor->apply($page, $action, $id);
- }
+ }
function handler_postfix_whitelist(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
$page->assign('xorg_title','Polytechnique.org - Administration - Postfix : Whitelist');
$page->assign('title', 'Whitelist de postfix');
$table_editor = new PLTableEditor('admin/postfix/whitelist','postfix_whitelist','email', true);
$table_editor->describe('email','email',true);
$table_editor->apply($page, $action, $id);
- }
+ }
function handler_logger_actions(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
$page->assign('xorg_title','Polytechnique.org - Administration - Actions');
$page->assign('title', 'Gestion des actions de logger');
$table_editor = new PLTableEditor('admin/logger/actions','logger.actions','id');
$table_editor->describe('text','intitulé',true);
$table_editor->describe('description','description',true);
$table_editor->apply($page, $action, $id);
- }
+ }
function handler_downtime(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
$page->assign('xorg_title','Polytechnique.org - Administration - Coupures');
$page->assign('title', 'Gestion des coupures');
$table_editor = new PLTableEditor('admin/downtime','coupures','id');
@@ -810,58 +800,48 @@ class AdminModule extends PLModule
$table_editor->describe('services','services affectés',true);
$table_editor->describe('description','description',false);
$table_editor->apply($page, $action, $id);
- }
- function handler_newsletter_cat(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
- $page->assign('xorg_title','Polytechnique.org - Administration - Newsletter : Catégories');
- $page->assign('title', 'Gestion des catégories de la newsletter');
- $table_editor = new PLTableEditor('admin/newsletter/categories','newsletter_cat','cid');
- $table_editor->describe('titre','intitulé',true);
- $table_editor->describe('pos','position',true);
- $table_editor->apply($page, $action, $id);
- }
- function handler_payments(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
- $page->assign('xorg_title','Polytechnique.org - Administration - Paiements');
- $page->assign('title', 'Gestion des télépaiements');
- $table_editor = new PLTableEditor('admin/payments','paiement.paiements','id');
- $table_editor->add_join_table('paiement.transactions','ref',true);
- $table_editor->describe('text','intitulé',true);
- $table_editor->describe('url','site web',false);
- $table_editor->describe('montant_def','montant par défaut',false);
- $table_editor->describe('montant_min','montant minimum',false);
- $table_editor->describe('montant_max','montant maximum',false);
- $table_editor->describe('mail','email contact',true);
- $table_editor->describe('confirmation','message confirmation',false);
- $table_editor->apply($page, $action, $id);
- }
- function handler_medals(&$page, $action = 'list', $id = null) {
- require_once('../classes/PLTableEditor.php');
- $page->assign('xorg_title','Polytechnique.org - Administration - Distinctions');
- $page->assign('title', 'Gestion des Distinctions');
- $table_editor = new PLTableEditor('admin/medals','profile_medals','id');
- $table_editor->describe('text', 'intitulé', true);
- $table_editor->describe('img', 'nom de l\'image', false);
- $table_editor->apply($page, $action, $id);
- if ($id && $action == 'edit') {
- $page->changeTpl('admin/gerer_decos.tpl');
-
- $mid = $id;
-
- if (Post::v('act') == 'del') {
- XDB::execute('DELETE FROM profile_medals_grades WHERE mid={?} AND gid={?}', $mid, Post::i('gid'));
- } elseif (Post::v('act') == 'new') {
- XDB::execute('INSERT INTO profile_medals_grades (mid,gid) VALUES({?},{?})',
- $mid, max(array_keys(Post::v('grades', array(0))))+1);
- } else {
- foreach (Post::v('grades', array()) as $gid=>$text) {
- XDB::execute('UPDATE profile_medals_grades SET pos={?}, text={?} WHERE gid={?}', $_POST['pos'][$gid], $text, $gid);
+ }
+ function handler_wiki(&$page, $action='list') {
+ require_once 'wiki.inc.php';
+
+ // update wiki perms
+ if ($action == 'update') {
+ $perms_read = Post::v('read');
+ $perms_edot = Post::v('edit');
+ if ($perms_read || $perms_edit) {
+ foreach ($_POST as $wiki_page => $val) if ($val == 'on') {
+ $wiki_page = str_replace('_', '/', $wiki_page);
+ if (!$perms_read || !$perms_edit)
+ list($perms0, $perms1) = wiki_get_perms($wiki_page);
+ if ($perms_read)
+ $perms0 = $perms_read;
+ if ($perms_edit)
+ $perms1 = $perms_edit;
+ wiki_set_perms($wiki_page, $perms0, $perms1);
}
}
- $res = XDB::iterator('SELECT gid, text, pos FROM profile_medals_grades WHERE mid={?} ORDER BY pos', $mid);
- $page->assign('grades', $res);
}
- }
+
+ $perms = wiki_perms_options();
+
+ // list wiki pages and their perms
+ $wiki_pages = array();
+ $dir = wiki_work_dir();
+ if (is_dir($dir)) {
+ if ($dh = opendir($dir)) {
+ while (($file = readdir($dh)) !== false) if (substr($file,0,1) >= 'A' && substr($file,0,1) <= 'Z') {
+ list($read,$edit) = wiki_get_perms($file);
+ $wiki_pages[$file] = array('read' => $perms[$read], 'edit' => $perms[$edit]);
+ }
+ closedir($dh);
+ }
+ }
+ ksort($wiki_pages);
+
+ $page->changeTpl('admin/wiki.tpl');
+ $page->assign('wiki_pages', $wiki_pages);
+ $page->assign('perms_opts', $perms);
+ }
}
?>