X-Git-Url: http://git.polytechnique.org/?a=blobdiff_plain;f=modules%2Fprofile.php;h=c72a9c0ef4ee278646dd457773df1c01c4625413;hb=bd6a5fe3b1ad4c41568bd665bdb0ecfa7c7a5f02;hp=b86cbdcbd456db7789f8de0b6632806b021c4a52;hpb=2f678da163eb9d8720145557a569aba7364f05c4;p=platal.git diff --git a/modules/profile.php b/modules/profile.php index b86cbdc..c72a9c0 100644 --- a/modules/profile.php +++ b/modules/profile.php @@ -1,6 +1,6 @@ $this->make_hook('fiche', AUTH_PUBLIC), 'profile' => $this->make_hook('profile', AUTH_PUBLIC), + 'profile/private' => $this->make_hook('profile', AUTH_COOKIE), + 'profile/ax' => $this->make_hook('ax', AUTH_COOKIE, 'admin'), 'profile/edit' => $this->make_hook('p_edit', AUTH_MDP), + 'profile/ajax/address' => $this->make_hook('ajax_address', AUTH_COOKIE, 'user', NO_AUTH), + 'profile/ajax/tel' => $this->make_hook('ajax_tel', AUTH_COOKIE, 'user', NO_AUTH), + 'profile/ajax/medal' => $this->make_hook('ajax_medal', AUTH_COOKIE, 'user', NO_AUTH), + 'profile/ajax/job' => $this->make_hook('ajax_job', AUTH_COOKIE, 'user', NO_AUTH), + 'profile/ajax/secteur' => $this->make_hook('ajax_secteur', AUTH_COOKIE, 'user', NO_AUTH), + 'profile/ajax/skill' => $this->make_hook('ajax_skill', AUTH_COOKIE, 'user', NO_AUTH), + 'javascript/applis.js' => $this->make_hook('applis_js', AUTH_COOKIE), + 'javascript/grades.js' => $this->make_hook('grades_js', AUTH_COOKIE), + 'profile/medal' => $this->make_hook('medal', AUTH_PUBLIC), 'profile/orange' => $this->make_hook('p_orange', AUTH_MDP), 'profile/usage' => $this->make_hook('p_usage', AUTH_MDP), 'referent' => $this->make_hook('referent', AUTH_COOKIE), + 'emploi' => $this->make_hook('ref_search', AUTH_COOKIE), 'referent/search' => $this->make_hook('ref_search', AUTH_COOKIE), + 'referent/ssect' => $this->make_hook('ref_sect', AUTH_COOKIE, 'user', NO_AUTH), + 'referent/country' => $this->make_hook('ref_country', AUTH_COOKIE, 'user', NO_AUTH), - 'trombi' => $this->make_hook('trombi', AUTH_COOKIE), + 'groupes-x' => $this->make_hook('xnet', AUTH_COOKIE), + + 'vcard' => $this->make_hook('vcard', AUTH_COOKIE, 'user', NO_HTTPS), + 'admin/binets' => $this->make_hook('admin_binets', AUTH_MDP, 'admin'), + 'admin/medals' => $this->make_hook('admin_medals', AUTH_MDP, 'admin'), + 'admin/formations' => $this->make_hook('admin_formations', AUTH_MDP, 'admin'), + 'admin/sections' => $this->make_hook('admin_sections', AUTH_MDP, 'admin'), + 'admin/secteurs' => $this->make_hook('admin_secteurs', AUTH_MDP, 'admin'), + 'admin/trombino' => $this->make_hook('admin_trombino', AUTH_MDP, 'admin'), - 'vcard' => $this->make_hook('vcard', AUTH_COOKIE), ); } /* XXX COMPAT */ function handler_fiche(&$page) { - return $this->handler_profile($page, Env::get('user')); - } - - - function _trombi_getlist($offset, $limit) - { - global $globals; - - $where = ( $this->promo > 0 ? "WHERE promo='{$this->promo}'" : "" ); - - $res = $globals->xdb->query( - "SELECT COUNT(*) - FROM auth_user_md5 AS u - RIGHT JOIN photo AS p ON u.user_id=p.uid - $where"); - $pnb = $res->fetchOneCell(); - - $res = $globals->xdb->query( - "SELECT promo, user_id, a.alias AS forlife, - IF (nom_usage='', nom, nom_usage) AS nom, prenom - FROM photo AS p - INNER JOIN auth_user_md5 AS u ON u.user_id=p.uid - INNER JOIN aliases AS a ON ( u.user_id=a.id AND a.type='a_vie' ) - $where - ORDER BY promo, nom, prenom LIMIT {?}, {?}", $offset*$limit, $limit); - - return array($pnb, $res->fetchAllAssoc()); + return $this->handler_profile($page, Env::v('user')); } function handler_photo(&$page, $x = null, $req = null) @@ -80,26 +75,24 @@ class ProfileModule extends PLModule return PL_NOT_FOUND; } - global $globals; - - $res = $globals->xdb->query("SELECT id, pub FROM aliases + $res = XDB::query("SELECT id, pub FROM aliases LEFT JOIN photo ON(id = uid) WHERE alias = {?}", $x); list($uid, $photo_pub) = $res->fetchOneRow(); - if ($req && logged()) { + if ($req && S::logged()) { include 'validations.inc.php'; $myphoto = PhotoReq::get_request($uid); Header('Content-type: image/'.$myphoto->mimetype); echo $myphoto->data; } else { - $res = $globals->xdb->query( + $res = XDB::query( "SELECT attachmime, attach FROM photo WHERE uid={?}", $uid); if ((list($type, $data) = $res->fetchOneRow()) - && ($photo_pub == 'public' || logged())) { + && ($photo_pub == 'public' || S::logged())) { Header("Content-type: image/$type"); echo $data; } else { @@ -110,54 +103,73 @@ class ProfileModule extends PLModule exit; } - function handler_photo_change(&$page) + function handler_medal(&$page, $mid) { - global $globals; + $thumb = ($mid == 'thumb'); + $mid = $thumb ? @func_get_arg(2) : $mid; + + $res = XDB::query("SELECT img + FROM profile_medals + WHERE id = {?}", + $mid); + $img = $thumb ? + dirname(__FILE__).'/../htdocs/images/medals/thumb/' . $res->fetchOneCell() : + dirname(__FILE__).'/../htdocs/images/medals/' . $res->fetchOneCell(); + $type = mime_content_type($img); + header("Content-Type: $type"); + echo file_get_contents($img); + exit; + } - $page->changeTpl('trombino.tpl'); + function handler_photo_change(&$page) + { + $page->changeTpl('profile/trombino.tpl'); require_once('validations.inc.php'); - $trombi_x = '/home/web/trombino/photos'.Session::get('promo') - .'/'.Session::get('forlife').'.jpg'; + $trombi_x = '/home/web/trombino/photos'.S::v('promo') + .'/'.S::v('forlife').'.jpg'; if (Env::has('upload')) { - $file = isset($_FILES['userfile']['tmp_name']) - ? $_FILES['userfile']['tmp_name'] - : Env::get('photo'); - if ($data = file_get_contents($file)) { - if ($myphoto = new PhotoReq(Session::getInt('uid'), $data)) { + $upload = new PlUpload(S::v('forlife'), 'photo'); + if (!$upload->upload($_FILES['userfile']) && !$upload->download(Env::v('photo'))) { + $page->trig('Une erreur est survenue lors du téléchargement du fichier'); + } else { + $myphoto = new PhotoReq(S::v('uid'), $upload); + if ($myphoto->isValid()) { $myphoto->submit(); } - } else { - $page->trig('Fichier inexistant ou vide'); } } elseif (Env::has('trombi')) { - $myphoto = new PhotoReq(Session::getInt('uid'), - file_get_contents($trombi_x)); - if ($myphoto) { - $myphoto->commit(); - $myphoto->clean(); + $upload = new PlUpload(S::v('forlife'), 'photo'); + if ($upload->copyFrom($trombi_x)) { + $myphoto = new PhotoReq(S::v('uid'), $upload); + if ($myphoto->isValid()) { + $myphoto->commit(); + $myphoto->clean(); + } } - } elseif (Env::get('suppr')) { - $globals->xdb->execute('DELETE FROM photo WHERE uid = {?}', - Session::getInt('uid')); - $globals->xdb->execute('DELETE FROM requests - WHERE user_id = {?} AND type="photo"', - Session::getInt('uid')); - } elseif (Env::get('cancel')) { - $sql = $globals->xdb->query('DELETE FROM requests - WHERE user_id={?} AND type="photo"', - Session::getInt('uid')); - } - - $sql = $globals->xdb->query('SELECT COUNT(*) FROM requests - WHERE user_id={?} AND type="photo"', - Session::getInt('uid')); + } elseif (Env::v('suppr')) { + XDB::execute('DELETE FROM photo + WHERE uid = {?}', + S::v('uid')); + XDB::execute('DELETE FROM requests + WHERE user_id = {?} AND type="photo"', + S::v('uid')); + update_NbValid(); + } elseif (Env::v('cancel')) { + $sql = XDB::query('DELETE FROM requests + WHERE user_id={?} AND type="photo"', + S::v('uid')); + update_NbValid(); + } + + $sql = XDB::query('SELECT COUNT(*) + FROM requests + WHERE user_id={?} AND type="photo"', + S::v('uid')); $page->assign('submited', $sql->fetchOneCell()); $page->assign('has_trombi_x', file_exists($trombi_x)); - - return PL_OK; } function handler_profile(&$page, $x = null) @@ -169,36 +181,49 @@ class ProfileModule extends PLModule global $globals; require_once 'user.func.inc.php'; - $page->changeTpl('fiche.tpl'); - $page->assign('simple', true); + $page->changeTpl('profile/profile.tpl', SIMPLE); $view = 'private'; - if (!logged() || Env::get('view') == 'public') $view = 'public'; - if (logged() && Env::get('view') == 'ax') $view = 'ax'; + if (!S::logged() || Env::v('view') == 'public') $view = 'public'; + if (S::logged() && Env::v('view') == 'ax') $view = 'ax'; if (is_numeric($x)) { - $res = $globals->xdb->query( - "SELECT alias + $res = XDB::query( + "SELECT alias FROM aliases AS a INNER JOIN auth_user_md5 AS u ON (a.id=u.user_id AND a.type='a_vie') WHERE matricule={?}", $x); $login = $res->fetchOneCell(); } else { - $login = get_user_forlife($x); + $login = get_user_forlife($x, S::logged() ? '_default_user_callback' + : '_silent_user_callback'); } if (empty($login)) { - return PL_NOT_FOUND; + $user = get_not_registered_user($x, true); + if ($user->total() != 1) { + return PL_NOT_FOUND; + } + $user = $user->next(); + if (S::logged()) { + pl_redirect('marketing/public/' . $user['user_id']); + } + $user['forlife'] = $x; + } else { + $new = Env::v('modif') == 'new'; + $user = get_user_details($login, S::v('uid'), $view); } - $new = Env::get('modif') == 'new'; - $user = get_user_details($login, Session::getInt('uid'), $view); - $title = $user['prenom'] . ' ' . empty($user['nom_usage']) ? $user['nom'] : $user['nom_usage']; + if (S::logged()) { + $_SESSION['log']->log('view_profile', $login); + } + + $title = $user['prenom'] . ' ' . ( empty($user['nom_usage']) ? $user['nom'] : $user['nom_usage'] ); $page->assign('xorg_title', $title); // photo - $photo = $globals->baseurl.'/photo/'.$user['forlife'].($new ? '/req' : ''); + $photo = 'photo/'.$user['forlife'].($new ? '/req' : ''); if (!isset($user['y']) and !isset($user['x'])) { list($user['x'], $user['y']) = getimagesize("images/none.png"); @@ -226,204 +251,255 @@ class ProfileModule extends PLModule $page->assign_by_ref('x', $user); $page->assign('photo_url', $photo); // alias virtual - $res = $globals->xdb->query( + $res = XDB::query( "SELECT alias FROM virtual INNER JOIN virtual_redirect USING(vid) INNER JOIN auth_user_quick ON ( user_id = {?} AND emails_alias_pub = 'public' ) WHERE ( redirect={?} OR redirect={?} ) AND alias LIKE '%@{$globals->mail->alias_dom}'", - Session::getInt('uid'), + S::v('uid'), $user['forlife'].'@'.$globals->mail->domain, $user['forlife'].'@'.$globals->mail->domain2); $page->assign('virtualalias', $res->fetchOneCell()); + $page->assign('view', $view); - $page->addJsLink('javascript/close_on_esc.js'); + $page->addJsLink('close_on_esc.js'); + header('Last-Modified: ' . date('r', strtotime($user['date']))); + } - return PL_OK; + function handler_ax(&$page, $user = null) + { + require_once 'user.func.inc.php'; + $user = get_user_forlife($user); + if (!$user) { + return PL_NOT_FOUND; + } + $res = XDB::query('SELECT matricule_ax + FROM auth_user_md5 AS u + INNER JOIN aliases AS a ON (a.type = "a_vie" AND a.id = u.user_id) + WHERE a.alias = {?}', $user); + $mat = $res->fetchOneCell(); + if (!intval($mat)) { + $page->kill("Le matricule AX de $user est inconnu"); + } + http_redirect("http://www.polytechniciens.com/?page=AX_FICHE_ANCIEN&anc_id=$mat"); } - function handler_p_edit(&$page, $opened_tab = 'general') + function handler_p_edit(&$page, $opened_tab = null, $mode = null) { global $globals; - $page->changeTpl('profil.tpl'); - - $page->addCssLink('css/profil.css'); - $page->assign('xorg_title', 'Polytechnique.org - Mon Profil'); - - require_once 'tabs.inc.php'; - require_once 'profil.func.inc.php'; + // AX Synchronization require_once 'synchro_ax.inc.php'; - - if (Post::has('register_from_ax_question')) { - $globals->xdb->query('UPDATE auth_user_quick - SET profile_from_ax = 1 - WHERE user_id = {?}', - Session::getInt('uid')); - } - if (is_ax_key_missing()) { $page->assign('no_private_key', true); } + if (Env::v('synchro_ax') == 'confirm' && !is_ax_key_missing()) { + ax_synchronize(S::v('bestalias'), S::v('uid')); + $page->trig('Ton profil a été synchronisé avec celui du site polytechniciens.com'); + } + + // Build the page + $page->addJsLink('ajax.js'); + $page->addJsLink('profile.js'); + $page->addJsLink('applis.js'); + $page->addJsLink('grades.js'); + $wiz = new PlWizard('Profil', 'core/plwizard.tpl', true, true); + require_once dirname(__FILE__) . '/profile/page.inc.php'; + $wiz->addPage('ProfileGeneral', 'Général', 'general'); + $wiz->addPage('ProfileAddresses', 'Adresses personnelles', 'adresses'); + $wiz->addPage('ProfileGroups', 'Groupes X - Binets', 'poly'); + $wiz->addPage('ProfileDecos', 'Décorations - Medailles', 'deco'); + $wiz->addPage('ProfileJobs', 'Informations professionnelles', 'emploi'); + $wiz->addPage('ProfileSkills', 'Compétences diverses', 'skill'); + $wiz->addPage('ProfileMentor', 'Mentoring', 'mentor'); + $wiz->apply($page, 'profile/edit', $opened_tab, $mode); + + // Misc checks + $res = XDB::query("SELECT user_id + FROM auth_user_md5 + WHERE user_id = {?} AND naissance = '0000-00-00'", S::i('uid')); + if ($res->numRows()) { + $page->trig("Ta date de naissance n'est pas renseignée, ce qui t'empêcheras de réaliser" + . " la procédure de récupération de mot de passe si un jour tu le perdais"); + } + + $page->assign('xorg_title', 'Polytechnique.org - Mon Profil'); + } - if (Env::get('synchro_ax') == 'confirm' && !is_ax_key_missing()) { - ax_synchronize(Session::get('bestalias'), Session::getInt('uid')); - $page->trig('Ton profil a été synchronisé avec celui du site polytechniciens.com'); - } - - // pour tous les tabs, la date de naissance pour verifier - // quelle est bien rentree et la date. - $res = $globals->xdb->query( - "SELECT naissance, DATE_FORMAT(date, '%d.%m.%Y') - FROM auth_user_md5 - WHERE user_id={?}", Session::getInt('uid')); - list($naissance, $date_modif_profil) = $res->fetchOneRow(); - - // lorsqu'on n'a pas la date de naissance en base de données - if (!$naissance) { - // la date de naissance n'existait pas et vient d'être soumise dans la variable - if (Env::has('birth')) { - //en cas d'erreur : - if (!ereg('[0-3][0-9][0-1][0-9][1][9]([0-9]{2})', Env::get('birth'))) { - $page->assign('etat_naissance', 'query'); - $page->trig('Date de naissance incorrecte ou incohérente.'); - return PL_OK; - } - - //sinon - $birth = sprintf("%s-%s-%s", substr(Env::get('birth'), 4, 4), - substr(Env::get('birth'), 2, 2), - substr(Env::get('birth'), 0, 2)); - $globals->xdb->execute("UPDATE auth_user_md5 - SET naissance={?} - WHERE user_id={?}", $birth, - Session::getInt('uid')); - $page->assign('etat_naissance', 'ok'); - return PL_OK; - } - - $page->assign('etat_naissance', 'query'); - return PL_OK; // on affiche le formulaire pour naissance - } - - //doit-on faire un update ? - if (Env::has('modifier') || Env::has('suivant')) { - require_once "profil/get_{$opened_tab}.inc.php"; - require_once "profil/verif_{$opened_tab}.inc.php"; + function handler_applis_js(&$page) + { + header('Content-Type: text/javascript; charset=utf-8'); + header('Expires: Mon, 26 Jul 1997 05:00:00 GMT'); + header('Last-Modified:' . gmdate('D, d M Y H:i:s') . ' GMT'); + header('Cache-Control: no-cache, must-revalidate'); + header('Pragma: no-cache'); + $page->changeTpl('profile/applis.js.tpl', NO_SKIN); + require_once "applis.func.inc.php"; + } - if($page->nb_errs()) { - require_once "profil/assign_{$opened_tab}.inc.php"; - $page->assign('onglet', $opened_tab); - $page->assign('onglet_tpl', "profil/$opened_tab.tpl"); - return PL_OK; - } + function handler_grades_js(&$page) + { + header('Content-Type: text/javascript; charset=utf-8'); + header('Expires: Mon, 26 Jul 1997 05:00:00 GMT'); + header('Last-Modified:' . gmdate('D, d M Y H:i:s') . ' GMT'); + header('Cache-Control: no-cache, must-revalidate'); + header('Pragma: no-cache'); + $page->changeTpl('profile/grades.js.tpl', NO_SKIN); + $res = XDB::iterator("SELECT * + FROM profile_medals_grades + ORDER BY mid, pos"); + $grades = array(); + while ($tmp = $res->next()) { + $grades[$tmp['mid']][] = $tmp; + } + $page->assign('grades', $grades); + + $res = XDB::iterator("SELECT *, FIND_IN_SET('validation', flags) AS validate + FROM profile_medals + ORDER BY type, text"); + $mlist = array(); + while ($tmp = $res->next()) { + $mlist[$tmp['type']][] = $tmp; + } + $page->assign('medal_list', $mlist); + } - $date=date("Y-m-j");//nouvelle date de mise a jour + function handler_ajax_address(&$page, $adid) + { + header('Content-Type: text/html; charset=utf-8'); + $page->changeTpl('profile/adresses.address.tpl', NO_SKIN); + $page->assign('i', $adid); + $page->assign('adr', array()); + } - //On sauvegarde l'uid pour l'AX - /* on sauvegarde les changements dans user_changes : - * on a juste besoin d'insérer le user_id de la personne dans la table - */ - $globals->xdb->execute('REPLACE INTO user_changes SET user_id={?}', - Session::getInt('uid')); + function handler_ajax_tel(&$page, $adid, $telid) + { + header('Content-Type: text/html; charset=utf-8'); + $page->changeTpl('profile/adresses.tel.tpl', NO_SKIN); + $page->assign('i', $adid); + $page->assign('adid', "addresses_$adid"); + $page->assign('adpref', "addresses[$adid]"); + $page->assign('t', $telid); + $page->assign('tel', array()); + } - if (!Session::has('suid')) { - require_once 'notifs.inc.php'; - register_watch_op(Session::getInt('uid'), WATCH_FICHE); - } + function handler_ajax_medal(&$page, $id) + { + header('Content-Type: text/html; charset=utf-8'); + $page->changeTpl('profile/deco.medal.tpl', NO_SKIN); + $page->assign('id', $id); + $page->assign('medal', array('valid' => 0, 'grade' => 0)); + } - // mise a jour des champs relatifs au tab ouvert - require_once "profil/update_{$opened_tab}.inc.php"; + function handler_ajax_job(&$page, $id) + { + header('Content-Type: text/html; charset=utf-8'); + $page->changeTpl('profile/jobs.job.tpl', NO_SKIN); + $page->assign('i', $id); + $page->assign('job', array()); + $page->assign('new', true); + $page->assign('secteurs', XDB::iterator("SELECT id, label + FROM emploi_secteur")); + $page->assign('fonctions', XDB::iterator("SELECT id, fonction_fr, FIND_IN_SET('titre', flags) AS title + FROM fonctions_def + ORDER BY id")); + } - $log =& Session::getMixed('log'); - $log->log('profil', $opened_tab); - $page->assign('etat_update', 'ok'); - } + function handler_ajax_secteur(&$page, $id, $sect, $ssect = -1) + { + header('Content-Type: text/html; charset=utf-8'); + $res = XDB::iterator("SELECT id, label + FROM emploi_ss_secteur + WHERE secteur = {?}", $sect); + $page->changeTpl('profile/jobs.secteur.tpl', NO_SKIN); + $page->assign('id', $id); + $page->assign('ssecteurs', $res); + $page->assign('sel', $ssect); + } - if (Env::has('suivant')) { - redirect($globals->baseurl . '/profile/edit/' . - get_next_tab($opened_tab)); + function handler_ajax_skill(&$page, $cat, $id) + { + header('Content-Type: text/html; charset=utf-8'); + $page->changeTpl('profile/skill.skill.tpl', NO_SKIN); + $page->assign('cat', $cat); + $page->assign('id', $id); + if ($cat == 'competences') { + $page->assign('levels', array('initié' => 'initié', + 'bonne connaissance' => 'bonne connaissance', + 'expert' => 'expert')); + } else { + $page->assign('levels', array(1 => 'connaissance basique', + 2 => 'maîtrise des bases', + 3 => 'maîtrise limitée', + 4 => 'maîtrise générale', + 5 => 'bonne maîtrise', + 6 => 'maîtrise complète')); } - - require_once "profil/get_{$opened_tab}.inc.php"; - require_once "profil/verif_{$opened_tab}.inc.php"; - require_once "profil/assign_{$opened_tab}.inc.php"; - - $page->assign('onglet', $opened_tab); - $page->assign('onglet_tpl', "profil/$opened_tab.tpl"); - - return PL_OK; } function handler_p_orange(&$page) { - global $globals; - - $page->changeTpl('orange.tpl'); + $page->changeTpl('profile/orange.tpl'); require_once 'validations.inc.php'; require_once 'xorg.misc.inc.php'; - $res = $globals->xdb->query( + $res = XDB::query( "SELECT u.promo, u.promo_sortie FROM auth_user_md5 AS u - WHERE user_id={?}", Session::getInt('uid')); + WHERE user_id={?}", S::v('uid')); list($promo, $promo_sortie_old) = $res->fetchOneRow(); $page->assign('promo_sortie_old', $promo_sortie_old); $page->assign('promo', $promo); if (!Env::has('promo_sortie')) { - return PL_OK; + return; } - $promo_sortie = Env::getInt('promo_sortie'); + $promo_sortie = Env::i('promo_sortie'); if ($promo_sortie < 1000 || $promo_sortie > 9999) { - $page->trig('L\'année de sortie doit être un nombre de quatre chiffres'); + $page->trig('L\'année de sortie doit être un nombre de quatre chiffres'); } elseif ($promo_sortie < $promo + 3) { - $page->trig('Trop tôt'); + $page->trig('Trop tôt'); } elseif ($promo_sortie == $promo_sortie_old) { - $page->trig('Tu appartiens déjà à la promotion correspondante à cette année de sortie.'); + $page->trig('Tu appartiens déjà à la promotion correspondante à cette année de sortie.'); } elseif ($promo_sortie == $promo + 3) { - $globals->xdb->execute( - "UPDATE auth_user_md5 set promo_sortie={?} - WHERE user_id={?}", $promo_sortie, Session::getInt('uid')); - $page->trig('Ton statut "orange" a été supprimé.'); + XDB::execute( + "UPDATE auth_user_md5 set promo_sortie={?} + WHERE user_id={?}", $promo_sortie, S::v('uid')); + $page->trig('Ton statut "orange" a été supprimé.'); $page->assign('promo_sortie_old', $promo_sortie); } else { $page->assign('promo_sortie', $promo_sortie); if (Env::has('submit')) { - $myorange = new OrangeReq(Session::getInt('uid'), + $myorange = new OrangeReq(S::v('uid'), $promo_sortie); $myorange->submit(); $page->assign('myorange', $myorange); } } - - return PL_OK; } function handler_referent(&$page, $x = null) { - global $globals; - require_once 'user.func.inc.php'; if (is_null($x)) { return PL_NOT_FOUND; } - $page->changeTpl('fiche_referent.tpl'); - $page->assign('simple', true); + $page->changeTpl('profile/fiche_referent.tpl', SIMPLE); - $res = $globals->xdb->query( + $res = XDB::query( "SELECT prenom, nom, user_id, promo, cv, a.alias AS bestalias FROM auth_user_md5 AS u INNER JOIN aliases AS a ON (u.user_id=a.id @@ -441,19 +517,19 @@ class ProfileModule extends PLModule $page->assign('prenom', $prenom); $page->assign('nom', $nom); $page->assign('promo', $promo); - $page->assign('cv', $cv); + $page->assign('cv', MiniWiki::WikiToHTML($cv, true)); $page->assign('bestalias', $bestalias); $page->assign('adr_pro', get_user_details_pro($user_id)); ///// recuperations infos referent //expertise - $res = $globals->xdb->query("SELECT expertise FROM mentor WHERE uid = {?}", $user_id); + $res = XDB::query("SELECT expertise FROM mentor WHERE uid = {?}", $user_id); $page->assign('expertise', $res->fetchOneCell()); //secteurs $secteurs = $ss_secteurs = Array(); - $res = $globals->xdb->iterRow( + $res = XDB::iterRow( "SELECT s.label, ss.label FROM mentor_secteurs AS m LEFT JOIN emploi_secteur AS s ON(m.secteur = s.id) @@ -467,155 +543,119 @@ class ProfileModule extends PLModule $page->assign_by_ref('ss_secteurs', $ss_secteurs); //pays - $res = $globals->xdb->query( + $res = XDB::query( "SELECT gp.pays FROM mentor_pays AS m LEFT JOIN geoloc_pays AS gp ON(m.pid = gp.a2) WHERE uid = {?}", $user_id); $page->assign('pays', $res->fetchColumn()); - $page->addJsLink('javascript/close_on_esc.js'); - return PL_OK; + $page->addJsLink('close_on_esc.js'); } - function handler_ref_search(&$page) + function handler_ref_search(&$page, $action = null, $subaction = null) { - global $globals; - - $page->changeTpl('referent.tpl'); - + require_once 'wiki.inc.php'; + wiki_require_page('Docs.Emploi'); $page->assign('xorg_title', 'Polytechnique.org - Conseil Pro'); - $secteur_sel = Post::get('secteur'); - $ss_secteur_sel = Post::get('ss_secteur'); - $pays_sel = Post::get('pays', '00'); - $expertise_champ = Post::get('expertise'); - - $page->assign('pays_sel', $pays_sel); - $page->assign('expertise_champ', $expertise_champ); - $page->assign('secteur_sel', $secteur_sel); - $page->assign('ss_secteur_sel', $ss_secteur_sel); - //recuperation des noms de secteurs - $res = $globals->xdb->iterRow("SELECT id, label FROM emploi_secteur"); + $res = XDB::iterRow("SELECT id, label FROM emploi_secteur"); $secteurs[''] = ''; while (list($tmp_id, $tmp_label) = $res->next()) { $secteurs[$tmp_id] = $tmp_label; } $page->assign_by_ref('secteurs', $secteurs); - //on recupere les sous-secteurs si necessaire - $ss_secteurs[''] = ''; - if (!empty($secteur_sel)) { - $res = $globals->xdb->iterRow("SELECT id, label FROM emploi_ss_secteur - WHERE secteur = {?}", $secteur_sel); - while (list($tmp_id, $tmp_label) = $res->next()) { - $ss_secteurs[$tmp_id] = $tmp_label; - } - } - $page->assign_by_ref('ss_secteurs', $ss_secteurs); - - //recuperation des noms de pays - $res = $globals->xdb->iterRow("SELECT a2, pays FROM geoloc_pays - WHERE pays <> '' ORDER BY pays"); - $pays['00'] = ''; - while (list($tmp_id, $tmp_label) = $res->next()) { - $pays[$tmp_id] = $tmp_label; - } - $page->assign_by_ref('pays', $pays); - // nb de mentors - $res = $globals->xdb->query("SELECT count(*) FROM mentor"); + $res = XDB::query("SELECT count(*) FROM mentor"); $page->assign('mentors_number', $res->fetchOneCell()); - if (!Env::has('Chercher')) { - return PL_OK; - } - // On vient d'un formulaire - $where = array(); - - if ($pays_sel != '00') { - $where[] = "mp.pid = '".addslashes($pays_sel)."'"; - } - if ($secteur_sel) { - $where[] = "ms.secteur = '".addslashes($secteur_sel)."'"; - if ($ss_secteur_sel) { - $where[] = "ms.ss_secteur = '".addslashes($ss_secteur_sel)."'"; + $where = array(); + $pays_sel = XDB::escape(Env::v('pays_sel')); + $secteur_sel = XDB::escape(Env::v('secteur')); + $ss_secteur_sel = XDB::escape(Env::v('ss_secteur')); + $expertise_champ = XDB::escape(Env::v('expertise')); + + if ($pays_sel != "''") { + $where[] = "mp.pid = $pays_sel"; + } + if ($secteur_sel != "''") { + $where[] = "ms.secteur = $secteur_sel"; + if ($ss_secteur_sel != "''") { + $where[] = "ms.ss_secteur = $ss_secteur_sel"; } } - if ($expertise_champ) { - $where[] = "MATCH(m.expertise) AGAINST('".addslashes($expertise_champ)."')"; + if ($expertise_champ != "''") { + $where[] = "MATCH(m.expertise) AGAINST($expertise_champ)"; } if ($where) { $where = join(' AND ', $where); - $sql = "SELECT m.uid, a.prenom, a.nom, a.promo, - l.alias AS bestalias, m.expertise, mp.pid, - ms.secteur, ms.ss_secteur - FROM mentor AS m - LEFT JOIN auth_user_md5 AS a ON(m.uid = a.user_id) - INNER JOIN aliases AS l ON (a.user_id=l.id AND - FIND_IN_SET('bestalias', l.flags)) - LEFT JOIN mentor_pays AS mp ON(m.uid = mp.uid) - LEFT JOIN mentor_secteurs AS ms ON(m.uid = ms.uid) - WHERE $where - GROUP BY uid - ORDER BY RAND({?})"; - $res = $globals->xdb->iterator($sql, Session::getInt('uid')); - - if ($res->total() == 0) { + $set = new UserSet("INNER JOIN mentor AS m ON (m.uid = u.user_id) + LEFT JOIN mentor_pays AS mp ON (mp.uid = m.uid) + LEFT JOIN mentor_secteurs AS ms ON (ms.uid = m.uid)", + $where); + $set->addMod('mentor', 'Référents'); + $set->apply('referent/search', $page, $action, $subaction); + if ($set->count() > 100) { $page->assign('recherche_trop_large', true); - return PL_OK; } - - $nb_max_res_total = 100; - $nb_max_res_ppage = 10; - - $curpage = Env::getInt('curpage', 1); - $personnes = array(); - $i = 0; - - while (($pers = $res->next()) && count($personnes) < $nb_max_res_total) { - $the_page = intval($i / $nb_max_res_ppage) + 1; - if ($the_page == $curpage) { - $personnes[] = $pers; - } - $i ++; - } - - $page->assign('personnes', $personnes); - $page->assign('curpage', $curpage); - $page->assign('nb_pages_total', - intval($res->total() / $nb_max_res_ppage) + 1); } + $page->changeTpl('profile/referent.tpl'); + } - return PL_OK; + function handler_ref_sect(&$page, $sect) + { + header('Content-Type: text/html; charset=utf-8'); + $page->changeTpl('include/field.select.tpl', NO_SKIN); + $page->assign('onchange', 'setSSecteurs()'); + $page->assign('id', 'ssect_field'); + $page->assign('name', 'ss_secteur'); + $it = XDB::iterator("SELECT id,label AS field + FROM emploi_ss_secteur + WHERE secteur = {?}", $sect); + $page->assign('list', $it); } - function handler_p_usage(&$page) + function handler_ref_country(&$page, $sect, $ssect = '') { - global $globals; + header('Content-Type: text/html; charset=utf-8'); + $page->changeTpl('include/field.select.tpl', NO_SKIN); + $page->assign('name', 'pays_sel'); + $where = ($ssect ? ' AND ms.ss_secteur = {?}' : ''); + $it = XDB::iterator("SELECT a2 AS id, pays AS field + FROM geoloc_pays AS g + INNER JOIN mentor_pays AS mp ON (mp.pid = g.a2) + INNER JOIN mentor_secteurs AS ms ON (ms.uid = mp.uid) + WHERE ms.secteur = {?} $where + GROUP BY a2 + ORDER BY pays", $sect, $ssect); + $page->assign('list', $it); + } - $page->changeTpl('nomusage.tpl'); + function handler_p_usage(&$page) + { + $page->changeTpl('profile/nomusage.tpl'); require_once 'validations.inc.php'; require_once 'xorg.misc.inc.php'; - $res = $globals->xdb->query( + $res = XDB::query( "SELECT u.nom, u.nom_usage, u.flags, e.alias FROM auth_user_md5 AS u LEFT JOIN aliases AS e ON(u.user_id = e.id AND FIND_IN_SET('usage', e.flags)) - WHERE user_id={?}", Session::getInt('uid')); + WHERE user_id={?}", S::v('uid')); list($nom, $usage_old, $flags, $alias_old) = $res->fetchOneRow(); $flags = new flagset($flags); $page->assign('usage_old', $usage_old); $page->assign('alias_old', $alias_old); - $nom_usage = replace_accent(trim(Env::get('nom_usage'))); + $nom_usage = replace_accent(trim(Env::v('nom_usage'))); $nom_usage = strtoupper($nom_usage); $page->assign('usage_req', $nom_usage); @@ -623,56 +663,32 @@ class ProfileModule extends PLModule // on vient de recevoir une requete, differente de l'ancien nom d'usage if ($nom_usage == $nom) { $page->assign('same', true); - } else { // le nom de mariage est distinct du nom à l'X + } else { // le nom de mariage est distinct du nom à l'X // on calcule l'alias pour l'afficher - $reason = Env::get('reason'); + $reason = Env::v('reason'); if ($reason == 'other') { - $reason = Env::get('other_reason'); + $reason = Env::v('other_reason'); } - $myusage = new UsageReq(Session::getInt('uid'), $nom_usage, $reason); + $myusage = new UsageReq(S::v('uid'), $nom_usage, $reason); $myusage->submit(); $page->assign('myusage', $myusage); } } - - return PL_OK; } - function handler_trombi(&$page, $promo = null) + function handler_xnet(&$page) { - require_once 'trombi.inc.php'; - - $page->changeTpl('trombipromo.tpl'); - $page->assign('xorg_title', 'Polytechnique.org - Trombi Promo'); - - if (is_null($promo)) { - return PL_OK; - } - - $this->promo = $promo = intval($promo); - - if ($promo >= 1900 && $promo < intval(date('Y')) - || ($promo == -1 && has_perms())) - { - $trombi = new Trombi(array($this, '_trombi_getlist')); - $trombi->hidePromo(); - $trombi->setAdmin(); - $page->assign_by_ref('trombi', $trombi); - } else { - $page->trig('Promotion incorrecte (saisir au format YYYY). Recommence.'); - } - - return PL_OK; - } - - function format_adr($params, &$smarty) - { - // $adr1, $adr2, $adr3, $postcode, $city, $region, $country - extract($params['adr']); - $adr = $adr1; - $adr = trim("$adr\n$adr2"); - $adr = trim("$adr\n$adr3"); - return quoted_printable_encode(";;$adr;$city;$region;$postcode;$country"); + $page->changeTpl('profile/groupesx.tpl'); + $page->assign('xorg_title', 'Polytechnique.org - Promo, Groupes X, Binets'); + + $req = XDB::query(' + SELECT m.asso_id, a.nom, diminutif, a.logo IS NOT NULL AS has_logo, + COUNT(e.eid) AS events, mail_domain AS lists + FROM groupex.membres AS m + INNER JOIN groupex.asso AS a ON(m.asso_id = a.id) + LEFT JOIN groupex.evenements AS e ON(e.asso_id = m.asso_id AND e.archive = 0) + WHERE uid = {?} GROUP BY m.asso_id ORDER BY a.nom', S::i('uid')); + $page->assign('assos', $req->fetchAllAssoc()); } function handler_vcard(&$page, $x = null) @@ -687,39 +703,110 @@ class ProfileModule extends PLModule $x = substr($x, 0, strlen($x) - 4); } - new_nonhtml_page('vcard.tpl', AUTH_COOKIE); - require_once 'xorg.misc.inc.php'; - require_once 'user.func.inc.php'; - - $page->register_modifier('qp_enc', 'quoted_printable_encode'); - $page->register_function('format_adr', array($this, 'format_adr')); - - $login = get_user_forlife($x); - $user = get_user_details($login); - - // alias virtual - $res = $globals->xdb->query( - "SELECT alias - FROM virtual - INNER JOIN virtual_redirect USING(vid) - INNER JOIN auth_user_quick ON ( user_id = {?} AND emails_alias_pub = 'public' ) - WHERE ( redirect={?} OR redirect={?} ) - AND alias LIKE '%@{$globals->mail->alias_dom}'", - Session::getInt('uid'), - $user['forlife'].'@'.$globals->mail->domain, - $user['forlife'].'@'.$globals->mail->domain2); - - $user['virtualalias'] = $res->fetchOneCell(); - - $page->assign_by_ref('vcard', $user); + $vcard = new VCard($x); + $vcard->do_page($page); + } - header("Pragma: "); - header("Cache-Control: "); - header("Content-type: text/x-vcard\n"); - header("Content-Transfer-Encoding: Quoted-Printable\n"); + function handler_admin_trombino(&$page, $uid = null, $action = null) { + $page->changeTpl('profile/admin_trombino.tpl'); + $page->assign('xorg_title','Polytechnique.org - Administration - Trombino'); + $page->assign('uid', $uid); - return PL_OK; + $q = XDB::query( + "SELECT a.alias,promo + FROM auth_user_md5 AS u + INNER JOIN aliases AS a ON ( u.user_id = a.id AND type='a_vie' ) + WHERE user_id = {?}", $uid); + list($forlife, $promo) = $q->fetchOneRow(); + + switch ($action) { + + case "original": + header("Content-type: image/jpeg"); + readfile("/home/web/trombino/photos".$promo."/".$forlife.".jpg"); + exit; + break; + + case "new": + $data = file_get_contents($_FILES['userfile']['tmp_name']); + list($x, $y) = getimagesize($_FILES['userfile']['tmp_name']); + $mimetype = substr($_FILES['userfile']['type'], 6); + unlink($_FILES['userfile']['tmp_name']); + XDB::execute( + "REPLACE INTO photo SET uid={?}, attachmime = {?}, attach={?}, x={?}, y={?}", + $uid, $mimetype, $data, $x, $y); + break; + + case "delete": + XDB::execute('DELETE FROM photo WHERE uid = {?}', $uid); + break; + } + + $page->assign('forlife', $forlife); + } + function handler_admin_binets(&$page, $action = 'list', $id = null) { + $page->assign('xorg_title','Polytechnique.org - Administration - Binets'); + $page->assign('title', 'Gestion des binets'); + $table_editor = new PLTableEditor('admin/binets', 'binets_def', 'id'); + $table_editor->add_join_table('binets_ins','binet_id',true); + $table_editor->describe('text','intitulé',true); + $table_editor->apply($page, $action, $id); + } + function handler_admin_formations(&$page, $action = 'list', $id = null) { + $page->assign('xorg_title','Polytechnique.org - Administration - Formations'); + $page->assign('title', 'Gestion des formations'); + $table_editor = new PLTableEditor('admin/formations','applis_def','id'); + $table_editor->add_join_table('applis_ins','aid',true); + $table_editor->describe('text','intitulé',true); + $table_editor->describe('url','site web',false); + $table_editor->apply($page, $action, $id); + } + function handler_admin_sections(&$page, $action = 'list', $id = null) { + $page->assign('xorg_title','Polytechnique.org - Administration - Sections'); + $page->assign('title', 'Gestion des Sections'); + $table_editor = new PLTableEditor('admin/sections','sections','id'); + $table_editor->describe('text','intitulé',true); + $table_editor->apply($page, $action, $id); + } + function handler_admin_secteurs(&$page, $action = 'list', $id = null) { + $page->assign('xorg_title','Polytechnique.org - Administration - Secteurs'); + $page->assign('title', 'Gestion des Secteurs'); + $table_editor = new PLTableEditor('admin/secteurs','emploi_secteur','id'); + $table_editor->describe('label','intitulé',true); + $table_editor->apply($page, $action, $id); + } + function handler_admin_medals(&$page, $action = 'list', $id = null) { + $page->assign('xorg_title','Polytechnique.org - Administration - Distinctions'); + $page->assign('title', 'Gestion des Distinctions'); + $table_editor = new PLTableEditor('admin/medals','profile_medals','id'); + $table_editor->describe('text', 'intitulé', true); + $table_editor->describe('img', 'nom de l\'image', false); + $table_editor->describe('flags', 'valider', true); + $table_editor->apply($page, $action, $id); + if ($id && $action == 'edit') { + $page->changeTpl('profile/admin_decos.tpl'); + + $mid = $id; + + if (Post::v('act') == 'del') { + XDB::execute('DELETE FROM profile_medals_grades + WHERE mid={?} AND gid={?}', $mid, Post::i('gid')); + } elseif (Post::v('act') == 'new') { + XDB::execute('INSERT INTO profile_medals_grades (mid,gid) + VALUES ({?},{?})', + $mid, max(array_keys(Post::v('grades', array(0))))+1); + } else { + foreach (Post::v('grades', array()) as $gid=>$text) { + XDB::execute('UPDATE profile_medals_grades + SET pos={?}, text={?} + WHERE gid={?} AND mid={?}', $_POST['pos'][$gid], $text, $gid, $mid); + } + } + $res = XDB::iterator('SELECT gid, text, pos FROM profile_medals_grades WHERE mid={?} ORDER BY pos', $mid); + $page->assign('grades', $res); + } } } +// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: ?>