X-Git-Url: http://git.polytechnique.org/?a=blobdiff_plain;f=modules%2Fxnet.php;h=ea1d55c9f5d06ebd247a8fcca3267eceba5568db;hb=ee71865181e96e7b0754ef9e7da4b3cb26f4c1d7;hp=2b6e9b46a3a2106f45cdfc5f2034fb13efafc70f;hpb=d83a1b04f399c65be114718d4301bb7dc1c8a7cc;p=platal.git diff --git a/modules/xnet.php b/modules/xnet.php index 2b6e9b4..ea1d55c 100644 --- a/modules/xnet.php +++ b/modules/xnet.php @@ -1,6 +1,6 @@ $this->make_hook('index', AUTH_PUBLIC), - 'login' => $this->make_hook('login', AUTH_MDP), - 'exit' => $this->make_hook('exit', AUTH_PUBLIC), - - 'admin' => $this->make_hook('admin', AUTH_MDP, 'admin'), - 'groups' => $this->make_hook('groups', AUTH_PUBLIC), - 'groupes.php' => $this->make_hook('groups2', AUTH_PUBLIC), - 'plan' => $this->make_hook('plan', AUTH_PUBLIC), + 'index' => $this->make_hook('index', AUTH_PUBLIC), + 'exit' => $this->make_hook('exit', AUTH_PUBLIC), + + 'admin' => $this->make_hook('admin', AUTH_MDP, 'admin'), + 'groups' => $this->make_hook('groups', AUTH_PUBLIC), + 'groupes.php' => $this->make_hook('groups2', AUTH_PUBLIC), + 'plan' => $this->make_hook('plan', AUTH_PUBLIC), + 'photo' => $this->make_hook('photo', AUTH_MDP), + 'autologin' => $this->make_hook('autologin', AUTH_MDP), ); } - function handler_index(&$page) + function handler_photo(&$page, $x = null) { - $page->nomenu = true; - $page->changeTpl('xnet/index.tpl'); + if (is_null($x)) { + return PL_NOT_FOUND; + } + + $res = XDB::query("SELECT attachmime, attach + FROM aliases + INNER JOIN photo ON(id = uid) + WHERE alias = {?}", $x); + + if ((list($type, $data) = $res->fetchOneRow())) { + pl_cached_dynamic_content_headers("image/$type"); + echo $data; + } else { + pl_cached_dynamic_content_headers("image/png"); + echo file_get_contents(dirname(__FILE__).'/../htdocs/images/none.png'); + } + exit; } - function handler_login(&$page) + function handler_index(&$page) { - pl_redirect(''); + $page->nomenu = true; + $page->changeTpl('xnet/index.tpl'); } function handler_exit(&$page) { - XnetSession::destroy(); + Platal::session()->stopSUID(); + Platal::session()->destroy(); $page->changeTpl('xnet/deconnexion.tpl'); } function handler_admin(&$page) { - new_admin_page('xnet/admin.tpl'); + $page->changeTpl('xnet/admin.tpl'); if (Get::has('del')) { $res = XDB::query('SELECT id, nom, mail_domain - FROM groupex.asso WHERE diminutif={?}', + FROM #groupex#.asso WHERE diminutif={?}', Get::v('del')); list($id, $nom, $domain) = $res->fetchOneRow(); $page->assign('nom', $nom); if ($id && Post::has('del')) { - XDB::query('DELETE FROM groupex.membres WHERE asso_id={?}', $id); - $page->trig('membres supprimés'); + S::assert_xsrf_token(); + + XDB::query('DELETE FROM #groupex#.membres WHERE asso_id={?}', $id); + $page->trigSuccess('membres supprimés'); if ($domain) { XDB::query('DELETE FROM virtual_domains WHERE domain={?}', $domain); XDB::query('DELETE FROM virtual, virtual_redirect USING virtual INNER JOIN virtual_redirect USING (vid) WHERE alias LIKE {?}', '%@'.$domain); - $page->trig('suppression des alias mails'); + $page->trigSuccess('suppression des alias mails'); $mmlist = new MMList(S::v('uid'), S::v('password'), $domain); if ($listes = $mmlist->get_lists()) { foreach ($listes as $l) { $mmlist->delete_list($l['list'], true); } - $page->trig('mail lists surpprimées'); + $page->trigSuccess('mail lists surpprimées'); } } - XDB::query('DELETE FROM groupex.asso WHERE id={?}', $id); - $page->trig("Groupe $nom supprimé"); + XDB::query('DELETE FROM #groupex#.asso WHERE id={?}', $id); + $page->trigSuccess("Groupe $nom supprimé"); Get::kill('del'); } if (!$id) { @@ -91,13 +111,27 @@ class XnetModule extends PLModule } } - if (Post::has('diminutif')) { - XDB::query('INSERT INTO groupex.asso (id,diminutif) - VALUES(NULL,{?})', Post::v('diminutif')); - pl_redirect('../'.Post::v('diminutif').'/edit'); + if (Post::has('diminutif') && Post::v('diminutif') != "") { + S::assert_xsrf_token(); + + $res = XDB::query('SELECT COUNT(*) + FROM #groupex#.asso + WHERE diminutif = {?}', + Post::v('diminutif')); + + if ($res->fetchOneCell() == 0) { + XDB::execute('INSERT INTO #groupex#.asso (id, diminutif) + VALUES (NULL, {?})', + Post::v('diminutif')); + pl_redirect('../' . Post::v('diminutif') . '/edit'); + } else { + $page->trigError('Le diminutif demandé est déjà pris.'); + } } - $res = XDB::query('SELECT nom,diminutif FROM groupex.asso ORDER by NOM'); + $res = XDB::query('SELECT nom, diminutif + FROM #groupex#.asso + ORDER BY nom'); $page->assign('assos', $res->fetchAllAssoc()); } @@ -109,8 +143,8 @@ class XnetModule extends PLModule $res = XDB::iterator( 'SELECT dom.id, dom.nom as domnom, asso.diminutif, asso.nom - FROM groupex.dom - INNER JOIN groupex.asso ON dom.id = asso.dom + FROM #groupex#.dom + INNER JOIN #groupex#.asso ON dom.id = asso.dom WHERE FIND_IN_SET("GroupesX", dom.cat) AND FIND_IN_SET("GroupesX", asso.cat) ORDER BY dom.nom, asso.nom'); $groupesx = array(); @@ -119,8 +153,8 @@ class XnetModule extends PLModule $res = XDB::iterator( 'SELECT dom.id, dom.nom as domnom, asso.diminutif, asso.nom - FROM groupex.dom - INNER JOIN groupex.asso ON dom.id = asso.dom + FROM #groupex#.dom + INNER JOIN #groupex#.asso ON dom.id = asso.dom WHERE FIND_IN_SET("Binets", dom.cat) AND FIND_IN_SET("Binets", asso.cat) ORDER BY dom.nom, asso.nom'); $binets = array(); @@ -129,14 +163,14 @@ class XnetModule extends PLModule $res = XDB::iterator( 'SELECT asso.diminutif, asso.nom - FROM groupex.asso + FROM #groupex#.asso WHERE cat LIKE "%Promotions%" ORDER BY diminutif'); $page->assign('promos', $res); $res = XDB::iterator( 'SELECT asso.diminutif, asso.nom - FROM groupex.asso + FROM #groupex#.asso WHERE FIND_IN_SET("Institutions", cat) ORDER BY diminutif'); $page->assign('inst', $res); @@ -153,32 +187,46 @@ class XnetModule extends PLModule $this->handler_index(&$page); } - $cat = strtolower($cat); + $cat = mb_strtolower($cat); $page->changeTpl('xnet/groupes.tpl'); $page->assign('cat', $cat); $page->assign('dom', $dom); - $res = XDB::query("SELECT id,nom FROM groupex.dom - WHERE FIND_IN_SET({?}, cat) - ORDER BY nom", $cat); + $res = XDB::query("SELECT id,nom + FROM #groupex#.dom + WHERE FIND_IN_SET({?}, cat) + ORDER BY nom", $cat); $doms = $res->fetchAllAssoc(); $page->assign('doms', $doms); if (empty($doms)) { - $res = XDB::query("SELECT diminutif, nom FROM groupex.asso - WHERE FIND_IN_SET({?}, cat) - ORDER BY nom", $cat); + $res = XDB::query("SELECT diminutif, nom, site + FROM #groupex#.asso + WHERE FIND_IN_SET({?}, cat) + ORDER BY nom", $cat); $page->assign('gps', $res->fetchAllAssoc()); } elseif (!is_null($dom)) { - $res = XDB::query("SELECT diminutif, nom FROM groupex.asso - WHERE FIND_IN_SET({?}, cat) AND dom={?} - ORDER BY nom", $cat, $dom); + $res = XDB::query("SELECT diminutif, nom, site + FROM #groupex#.asso + WHERE FIND_IN_SET({?}, cat) AND dom={?} + ORDER BY nom", $cat, $dom); $page->assign('gps', $res->fetchAllAssoc()); } $page->setType($cat); } + + function handler_autologin(&$page) + { + $allkeys = func_get_args(); + unset($allkeys[0]); + $url = join('/',$allkeys); + pl_content_headers("text/javascript"); + echo '$.ajax({ url: "'.$url.'?forceXml=1", dataType: "xml", success: function(xml) { $("body",xml).insertBefore("body"); $("body:eq(1)").remove(); }});'; + exit; + } } +// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: ?>