Changeset 4436 for extensions/event_cats/include/evntcats_admin_funcs.inc.php

Timestamp:

Dec 7, 2009, 12:20:39 AM (14 years ago)

Author:

LucMorizur

Message:

[Event Cats] Add new group/user association to posted cat/AP ; fix bugs 1306 and 1305

File:

• extensions/event_cats/include/evntcats_admin_funcs.inc.php (modified) (12 diffs)

extensions/event_cats/include/evntcats_admin_funcs.inc.php

@@ -100 +100 @@
   // $_POST it uses, have already been checked.
   
-  // Check if a category id has been posted, and if yes if this category is
-  // private.
-  /* $cat_assoc_needed = (
-  ); */
-  
-  // Check if an add. p. id has been posted, and if yes if this add. p. is
-  // private.
-  /* $ap_assoc_needed = (
-  ); */
-  
   // User creation, as generic
   $ec_user_id = false;
   $page['errors'] = register_user(
-   $_POST['login'], $_POST['password'], '', false
+    $_POST['login'], $_POST['password'], '', false
   );
   if (
@@ -135 +125 @@
    $page['errors'][] = sprintf(l10n('ec_user_generic_pb'), $_POST['login']);
   
-  // New group creation if required,
-  // and association with user_id at the same time
+  // New group creation if required, and association with user_id, and if
+  // needed category or add. p., at the same time
   if (
     isset($_POST['ec_in_up_newgroup']) and
@@ -153 +143 @@
       "))) and
       $t2++ == 0 // The check is executed twice at maximum
-    )  // Cannot be executed twice
+    )
       $t4 = pwg_query("
         INSERT INTO `".GROUPS_TABLE."` (`name`, `is_default`)
         VALUES ('".$_POST['groupname']."', 'false');
-      ");
+      "); // Cannot be executed twice
     if ($t4)
      $page['infos'][] =
@@ -180 +170 @@
     // If a category id has been posted, the newly created group must be
     // allowed to navigate in this category
-    if (isset($_POST['ec_in_up_cat'])) {
+    // We are in the group creation block, thus the we know this group cannot
+    // be associated to any category
+    if (
+      isset($_POST['ec_in_up_cat']) and
+      array_key_exists($_POST['ec_in_up_cat'], $ec_lists['categories'])
+    ) {
       if (mysql_num_rows(pwg_query("
         SELECT `id`
@@ -208 +203 @@
          );
         else
-         $page['errors'][] =
-          sprintf(l10n('ec_group_create_pb'), $_POST['groupname']).' (3) : '.
-          'MySQL error '.mysql_errno().', "'.mysql_error().'"';
+         $page['errors'][] = sprintf(
+          l10n('ec_assoc_pb'),
+          $_POST['groupname'],$ec_lists['categories'][$_POST['ec_in_up_cat']]
+         ).' : MySQL error '.mysql_errno().', "'.mysql_error().'"';
       }
     }
@@ -216 +212 @@
     // If an add. p. id has been posted, the newly created group must be
     // allowed to navigate in this additional page
-    
-    /*
-    
-    
-    
-    
-    */
+    if (
+      isset($_POST['ec_in_up_aps']) and
+      array_key_exists($_POST['ec_in_up_aps'], $ec_lists['add_pages'])
+    ) {
+      $granted_groups = array();
+      $title_arr = array_from_query("
+        SELECT `title`
+        FROM `".ADD_PAGES_TABLE."`
+        WHERE `id` = ".$_POST['ec_in_up_aps'].";
+      ", 'title');
+      $t_user = (is_in($title_arr[0], '/user_id=')) ?
+       explode('/user_id=', $title_arr[0]) : array($title_arr[0]);
+      if (is_in($t_user[0], '/group_id=')) {
+        $t_group = explode('/group_id=', $t_user[0]);
+        $granted_groups = explode(',', $t_group[1]);
+      }
+      else $t_group[0] = $t_user[0];
+      if (!in_array($t3[0], $granted_groups)) {
+        $granted_groups[] = $t3[0];
+        $t_group[1] = implode(',', $granted_groups);
+        $t_user[0] = implode('/group_id=', $t_group);
+        if (pwg_query("
+          UPDATE `".ADD_PAGES_TABLE."`
+            SET `title` = '".implode('/user_id=', $t_user)."'
+            WHERE `id` = ".$_POST['ec_in_up_aps'].";
+        ") === false)
+         $page['errors'][] = sprintf(
+          l10n('ec_assoc_pb'),
+          $_POST['groupname'],$ec_lists['add_pages'][$_POST['ec_in_up_aps']]
+         ).' : MySQL error '.mysql_errno().', "'.mysql_error().'"';
+        else $page['infos'][] = sprintf(
+         l10n('ec_group_create_OK2'),
+         $_POST['groupname'],$ec_lists['add_pages'][$_POST['ec_in_up_aps']]
+        );
+      }
+    }
   }
   else {
     // If a category id has been posted, the newly created user must be
-    // allowed to navigate in this category
-    
-    // If an add. p. id has been posted, the newly created user must be
-    // allowed to navigate in this additional page => not possible to
-    // allow individually => must give a warning message ?
-    
+    // allowed to navigate in this category, if it is not the case yet
+    if (
+      isset($_POST['ec_in_up_cat']) and
+      array_key_exists($_POST['ec_in_up_cat'], $ec_lists['categories'])
+    ) {
+      $private_uppercats = array_from_query("
+        SELECT `id`
+        FROM `".CATEGORIES_TABLE."`
+        WHERE `id` IN (".
+          implode(',', get_uppercat_ids(array($_POST['ec_in_up_cat']))).
+        ")
+        AND `status` = 'private';
+      ", 'id');
+      // We must not reinsert already existing lines in user_access table
+      $granteds = array();
+      foreach ($private_uppercats as $cat_id)
+       $granteds[$cat_id] = array();
+      $result = pwg_query("
+        SELECT `user_id`, `cat_id`
+        FROM `".USER_ACCESS_TABLE."`
+        WHERE `cat_id` IN (".implode(',', $private_uppercats).")
+          AND `user_id` = '$ec_user_id';
+      ");
+      while ($row = mysql_fetch_array($result))
+       $granteds[$row['cat_id']][] = $row['user_id'];
+      $inserts = array();
+      foreach ($private_uppercats as $cat_id)
+       if (!in_array($ec_user_id, $granteds[$cat_id]))
+        $inserts[] = array(
+          'user_id' => $ec_user_id,
+          'cat_id'  => $cat_id
+        );
+      if (count($inserts) != 0) {
+        mass_inserts(USER_ACCESS_TABLE, array('user_id','cat_id'), $inserts);
+        if (mysql_errno() == 0)
+         $page['infos'][] = sprintf(
+           l10n('ec_group_create_OK2'),
+           $_POST['login'], $ec_lists['categories'][$_POST['ec_in_up_cat']]
+         );
+        else
+         $page['errors'][] = sprintf(
+          l10n('ec_assoc_pb'),
+          $_POST['login'], $ec_lists['categories'][$_POST['ec_in_up_cat']]
+         ).' : MySQL error '.mysql_errno().', "'.mysql_error().'"';
+      }
+    }
+      
+    // If an add. p. id has been posted, the newly created user should be
+    // allowed to navigate in this additional page => give a warning message
+    if (
+      isset($_POST['ec_in_up_aps']) and
+      array_key_exists($_POST['ec_in_up_aps'], $ec_lists['add_pages'])
+    ) $page['errors'][] = sprintf(
+      l10n('ec_user_access_AP'),
+      $ec_lists['add_pages'][$_POST['ec_in_up_aps']],
+      $_POST['login']
+    );
   }
   return $ec_user_id;
@@ -294 +370 @@
  */
 function ec_create_modify_entry_OK() {
-  global $page, $ec_lists, $ec_debug;
+  global $page, $ec_lists;
   
   // $_POST validity checks : action prevented in case of bad arguments
@@ -476 +552 @@
   $arg2p = ($arg2 == 'NULL') ? 'IS NULL' : ' = '.$arg2;
   $ec_user_idp = ($ec_user_id == 'NULL') ? 'IS NULL' : ' = '.$ec_user_id;
-  if (($t1 = mysql_fetch_row(pwg_query(// $q =
-  "
+  if (($t1 = mysql_fetch_row(pwg_query("
     SELECT `id`
     FROM `".EVNTCATS_TABLE."`
@@ -510 +585 @@
      return false;
   }
-  
-  $ec_debug[] = array(
-    'del_other' => $del_other,
-    'code' => $ec_code,
-    'user_id' => $ec_user_id,
-    'user_idp' => $ec_user_idp,
-    'action' => $action,
-    'arg1' => $arg1,
-    'arg2' => $arg2,
-    'arg1p' => $arg1p,
-    'arg2p' => $arg2p,
-    'forced' => $forced,
-    'comment' => $comment,
-  );
   
   // Action !
@@ -554 +615 @@
       $forced = ($forced == 'false') ? '' : l10n('ec_cnfrm_forced');
       $page['infos'][] =
-       sprintf(l10n('ec_entry_create_OK'), mysql_insert_id()).' : '.
+       sprintf(l10n('ec_entry_create_OK'), mysql_insert_id()).
        $ec_code.' => '.
        $ec_lists['user_ids'][$ec_user_id].$forced
@@ -600 +661 @@
 function ec_delete_entry_OK($ec_id) {
   global $page;
+  if (count($t = mysql_fetch_row(pwg_query("
+    SELECT `code`
+    FROM `".EVNTCATS_TABLE."`
+    WHERE `id` = $ec_id;
+  "))) == 0) {
+    $page['errors'][] = sprintf(l10n('ec_entry_dont_exist'), $ec_id);
+    return false;
+  }
   if (pwg_query("
     DELETE FROM `".EVNTCATS_TABLE."`
@@ -610 +679 @@
     return false;
   }
-  else $page['infos'][] = sprintf(l10n('ec_entry_del_ok'), $ec_id);
+  $page['infos'][] = sprintf(l10n('ec_entry_del_ok'), $ec_id, $t[0]);
   return true;
 }