Changeset 4218 for extensions/event_cats/include/evntcats_admin_funcs.inc.php

Timestamp:

Nov 6, 2009, 2:37:20 AM (15 years ago)

Author:

LucMorizur

Message:

[Event Cats] Modify entry in DB should be OK (not tested).

File:

• extensions/event_cats/include/evntcats_admin_funcs.inc.php (modified) (7 diffs)

extensions/event_cats/include/evntcats_admin_funcs.inc.php

@@ -65 +65 @@
  * ec_create_user_OK()
  * Creates new generic user and eventually new group as described in $_POST.
+ * Assumes that the validity of the different indexes of $_POST it uses, have
+ * already been checked.
  *
  * @param
@@ -74 +76 @@
   global $page;
   
-  // This function assumes that the validity of the different indexes it uses,
-  // have been checked before it is used.
+  // This function assumes that the validity of the different indexes of
+  // $_POST it uses, have already been checked.
   
   // User creation, as generic
@@ -189 +191 @@
 
 /*
- * ec_create_entry_OK()
+ * ec_create_modify_entry_OK()
  * returns true or false whether the creation of a new entry described by
  * $_POST was OK or not.
@@ -198 +200 @@
  *   true if creation was OK ; false if not
  */
-function ec_create_entry_OK() {
+function ec_create_modify_entry_OK() {
   global $page, $ec_lists;
   
-  // $_POST validity checks : creation prevented in case of bad arguments
-  if (
-    !isset($_POST['ec_in_up_code']) or
-    !ereg('^[a-zA-Z0-9_-]{4,32}$', $_POST['ec_in_up_code'])
-  ) return ec_end1('ec_in_up_code', 'ec_bad_argument7');
-  
-  foreach ($ec_lists['ec_table'] as $ec_entry)
-   if ($_POST['ec_in_up_code'] == $ec_entry['code'])
-    return ec_end1('ec_in_up_code', 'ec_bad_argument2');
-  
-  if (
-    !isset($_POST['ec_sel_user']) or (
-      $_POST['ec_sel_user'] != 'new' and
-      $_POST['ec_sel_user'] != 'old'
-    )
-  ) return ec_end1('ec_sel_user', 'ec_bad_argument1');
-  
-  if ($_POST['ec_sel_user'] == 'new') {
-    if (
-      !isset($_POST['login']) or
-      $_POST['login'] == ''
-    ) return ec_end1('login', 'ec_bad_argument1');
-    if (in_array($_POST['login'], $ec_lists['user_ids']))
-     return ec_end1('login', 'ec_bad_argument3');
-  }
-  else {
-    if (!isset($_POST['ec_in_up_usr_list']))
-     return ec_end1('login', 'ec_bad_argument1');
-    $ec_user_id = $_POST['ec_in_up_usr_list'];
-    if (!array_key_exists($ec_user_id, $ec_lists['user_ids']))
-     return ec_end1('ec_in_up_usr_list', 'ec_bad_argument6');
-  }
-  
-  // code and user_id (if needed) are OK, creation can be done
-  
-  // User and eventually group creation, if needed
-  if ($_POST['ec_sel_user'] == 'new')
-   if (!($ec_user_id = ec_create_user_OK())) return false;
+  // $_POST validity checks : action prevented in case of bad arguments
+  
+  if (!isset($_POST['ec_act1']))
+   return ec_end1('ec_act1', 'ec_bad_argument1');
+  
+  if (!isset($_POST['ec_input_action']))
+   return ec_end1('ec_input_action', 'ec_bad_argument1');
+  
+  $is_creation = true;
+  $action = 'ec_ok';
+  $arg1 = '';
+  $arg2 = '';
+  switch ($_POST['ec_act1']) {
+    
+    case 'create':
+      
+      if (
+        !isset($_POST['ec_in_up_code']) or
+        !ereg('^[a-zA-Z0-9_-]{4,32}$', $_POST['ec_in_up_code'])
+      ) return ec_end1('ec_in_up_code', 'ec_bad_argument7');
+      else $ec_code = $_POST['ec_in_up_code'];
+      
+      foreach ($ec_lists['ec_table'] as $ec_entry)
+       if ($ec_code == $ec_entry['code'])
+        return ec_end1('ec_in_up_code', 'ec_bad_argument2');
+      
+      if (
+        !isset($_POST['ec_sel_user']) or (
+          $_POST['ec_sel_user'] != 'new' and
+          $_POST['ec_sel_user'] != 'old'
+        )
+      ) return ec_end1('ec_sel_user', 'ec_bad_argument1');
+    
+    case 'modify_entry_submit':
+      
+      $ec_user_id = '';
+      if (isset($_POST['ec_sel_user'])) {
+        if ($_POST['ec_sel_user'] == 'new') {
+          if (
+            !isset($_POST['login']) or
+            $_POST['login'] == ''
+          ) return ec_end1('login', 'ec_bad_argument1');
+          if (in_array($_POST['login'], $ec_lists['user_ids']))
+           return ec_end1('login', 'ec_bad_argument3');
+        }
+        elseif ($_POST['ec_sel_user'] == 'old') {
+          if (!isset($_POST['ec_in_up_usr_list']))
+           return ec_end1('login', 'ec_bad_argument1');
+          $ec_user_id = $_POST['ec_in_up_usr_list'];
+          if (!array_key_exists($ec_user_id, $ec_lists['user_ids']))
+           return ec_end1('ec_in_up_usr_list', 'ec_bad_argument6');
+        }
+        else $action = 'ec_nok';
+      }
+      else $action = 'ec_nok';
+      
+     if ($_POST['ec_act1'] == 'create') break;
+      
+      $is_creation = false;
+      
+    case 'duplicate_entry_submit':
+      
+      if (
+        !isset($_POST['ec_entry_sel']) or
+        !array_key_exists($_POST['ec_entry_sel'], $ec_lists['ec_table'])
+      ) return ec_end1('ec_entry_sel', 'ec_bad_argument5');
+      
+     if ($_POST['ec_act1'] == 'modify_entry_submit') break;
+      
+      build_ec_duplicable_codes();
+      if (!array_key_exists($_POST['ec_entry_sel'],
+       $ec_lists['duplicable_codes']['ids'])
+      ) return ec_end1('ec_entry_sel', 'ec_bad_argument5');
+      $ec_code    = $ec_lists['ec_table'][$_POST['ec_entry_sel']]['code'];
+      $ec_user_id = $ec_lists['ec_table'][$_POST['ec_entry_sel']]['user_id'];
+      
+    break;
+    default: ec_end1('ec_act1', 'ec_bad_argument1');
+  }
   
   // Preparation of $arg1, $arg2 and $forced
-  $arg1 = ''; $arg2 = '';
-  if (isset($_POST['ec_input_action'])) switch ($_POST['ec_input_action']) {
+  switch ($_POST['ec_input_action']) {
     // case 'home':  // Home : nothing to do : "arg"s are ''
+    // case 'refused': $_POST['ec_sel_user'] unset, nothing to do
     case 'add_p': // Additional Page
       if (isset($_POST['ec_in_up_aps'])) $arg2 = $_POST['ec_in_up_aps'];
@@ -261 +304 @@
     default: ec_end1('ec_input_action', 'ec_bad_argument1');
   }
-  else ec_end1('ec_input_action', 'ec_bad_argument1');
-  $forced = (isset($_POST['ec_in_up_forced'])) ? 'true' : 'false';
-  
-  // Now we have the code, the user_id, arg1, arg2, and forced arguments
-  if (
-    pwg_query("
-      INSERT INTO `".EVNTCATS_TABLE."` (
-        `code`,
-        `user_id`,
-        `action`,
-        `arg1`, `arg2`, `forced`
-      )
-      VALUES (
-        '".$_POST['ec_in_up_code']."',
-        '".$ec_user_id."',
-        'ec_ok',
-        '".$arg1."', '".$arg2."', '".$forced."'
-      );
-    ") === false
-  ) {
-    $page['errors'][] =
-     l10n('ec_entry_create_pb').
-     'MySQL error '.mysql_errno().', "'.mysql_error().'"'
-    ;
-    return false;
-  }
-  else {
-    build_ec_lists();
-    $forced = ($forced == 'false') ? '' : l10n('ec_cnfrm_forced');
-    $page['infos'][] =
-     l10n('ec_entry_create_OK').mysql_insert_id().' : '.
-     $_POST['ec_in_up_code'].' => '.
-     $ec_lists['user_ids'][$ec_user_id].$forced
-    ;
-    return true;
-  }
-}
-
-/*
- * ec_duplicate_entry_OK()
- * returns true or false whether the duplication of an existing entry which #
- * is given by $_POST['ec_entry_sel'] was OK or not.
- *
- * @param
- *   no param
- * @return
- *   true if creation was OK ; false if not
- */
-function ec_duplicate_entry_OK() {
-  global $page, $ec_lists;
-  
-  build_ec_duplicable_codes();
-  if (array_key_exists($_POST['ec_entry_sel'],
-   $ec_lists['duplicable_codes']['ids'])) {
-    $arg1 = ''; $arg2 = '';
-    switch ($_POST['ec_input_action']) {
-      // case 'home':  // Home : nothing to do : "arg"s are ''
-      case 'add_p':
-        if (array_key_exists($_POST['ec_in_up_aps'],$ec_lists['add_pages'])) {
-         $arg2 = $_POST['ec_in_up_aps']; }
-        else return ec_end1('ec_in_up_aps', 'ec_bad_argument4');
-      case 'img':
-      case 'cat':
-        if (array_key_exists($_POST['ec_in_up_cat'],
-         $ec_lists['categories'])) {
-          if ($_POST['ec_input_action'] == 'img') {
-            if (
-             ec_image_exists($_POST['ec_in_up_cat'], $_POST['ec_in_up_img'])
-            ) $arg2 = $_POST['ec_in_up_img'];
-            else return ec_end1('ec_in_up_img', 'ec_bad_argument4');
-          }
-          $arg1 = $_POST['ec_in_up_cat'];
-        }
-        else return ec_end1('ec_in_up_cat', 'ec_bad_argument4');
-      break;
-      default: return ec_end1('ec_input_action', 'ec_bad_argument1');
-    }
+  
+  if (isset($_POST['ec_in_up_forced'])) {
+    if ($_POST['ec_act1'] == 'duplicate_entry_submit')
+     ec_end1('ec_in_up_forced', 'ec_bad_argument1');
+    if (!$is_creation) {
+      if (
+        $t1 = mysql_fetch_row(pwg_query("
+          SELECT `code`
+          FROM `".EVNTCATS_TABLE."`
+          WHERE `id` = '".$_POST['ec_entry_sel']."'
+        ")) === false
+      ) die('Code not found in DB ?!');
+      $r = pwg_query("
+        SELECT `id`
+        FROM `".EVNTCATS_TABLE."`
+        WHERE `code` = '".$t1[0]."'
+         AND `id` <> '".$_POST['ec_entry_sel']."'
+      ");
+      while ($t2 = mysql_fetch_row($r)) if (!ec_delete_entry_OK($t2[0]))
+       return false;
+    }
+    $forced = 'true';
+  }
+  else $forced = 'false';
+  
+  // User and eventually group creation, if needed
+  if ($_POST['ec_act1'] != 'duplicate_entry_submit')
+   if ($_POST['ec_sel_user'] == 'new')
+    if (!($ec_user_id = ec_create_user_OK())) return false;
+  
+  // Now we have all infos
+  if ($is_creation) {
     if (
       pwg_query("
-        INSERT INTO `".EVNTCATS_TABLE."`
-         (`code`, `user_id`, `action`, `arg1`, `arg2`)
+        INSERT INTO `".EVNTCATS_TABLE."` (
+          `code`,
+          `user_id`,
+          `action`,
+          `arg1`, `arg2`, `forced`
+        )
         VALUES (
-          '".$ec_lists['ec_table'][$_POST['ec_entry_sel']]['code']."',
-          '".$ec_lists['ec_table'][$_POST['ec_entry_sel']]['user_id']."',
-          'ec_ok',
-          '".$arg1."',
-          '".$arg2."'
+          '".$ec_code."',
+          '".$ec_user_id."',
+          '".$action."',
+          '".$arg1."', '".$arg2."', '".$forced."'
         );
       ") === false
     ) {
       $page['errors'][] =
-       l10n('ec_entry_dup_nok_pre1').
-       $_POST['ec_entry_sel'].
-       l10n('ec_entry_dup_nok_end1').
+       l10n('ec_entry_create_pb').
        'MySQL error '.mysql_errno().', "'.mysql_error().'"'
       ;
@@ -360 +359 @@
     }
     else {
+      build_ec_lists();
+      $forced = ($forced == 'false') ? '' : l10n('ec_cnfrm_forced');
       $page['infos'][] =
-       l10n('ec_entry_dup_ok_pre').
-       $_POST['ec_entry_sel'].' ('.
-       $ec_lists['ec_table'][$_POST['ec_entry_sel']]['code'].')'.
-       l10n('ec_entry_dup_ok_end')
+       l10n('ec_entry_create_OK').mysql_insert_id().' : '.
+       $_POST['ec_in_up_code'].' => '.
+       $ec_lists['user_ids'][$ec_user_id].$forced
       ;
-      build_ec_table();
-      return true;
-    }
-  }
-  else return ec_end1('ec_entry_sel', 'ec_bad_argument5');
-}
-
-/*
- * ec_modify_entry_OK()
- * returns true or false whether the modification of an existing entry which #
- * is given by $_POST['ec_entry_sel'] was OK or not.
- *
- * @param
- *   no param
- * @return
- *   true if modification was OK ; false if not
- */
-function ec_modify_entry_OK() {
-  global $page;
-  $page['errors'][] = 'Y\'a pas eu une erreur ?...';
-  return false;
+    }
+  }
+  else {
+    if (
+      pwg_query("
+        UPDATE `".EVNTCATS_TABLE."`
+        SET
+          `user_id` = '".$ec_user_id."',
+          `action`  = '".$action."',
+          `arg1`    = '".$arg1."',
+          `arg2`    = '".$arg2."',
+          `forced`  = '".$forced."'
+        WHERE `id`  = '".$_POST['ec_entry_sel']."'
+      ") === false
+    ) {
+      $page['errors'][] =
+       l10n('ec_entry_create_pb').
+       'MySQL error '.mysql_errno().', "'.mysql_error().'"'
+      ;
+      return false;
+    }
+    else {
+      $page['infos'][] = l10n('ec_entry_modify_OK').$_POST['ec_entry_sel'];
+      build_ec_lists();
+    }
+  }
+  return true;
 }
 
@@ -405 +411 @@
 
 /*
- * ec_delete_entry()
- * tries to delete an existing entry which # is given by
- * $_POST['ec_entry_sel'].
- *
- * @param
- *   no param
- * @return
- *   no return value : modifies $page['errors'] or $page['infos']
- */
-function ec_delete_entry() {
-  global $page, $ec_lists;
-  if (array_key_exists($_POST['ec_entry_sel'], $ec_lists['ec_table'])) {
-    if (!pwg_query('
-      DELETE FROM `'.EVNTCATS_TABLE.'`
-      WHERE `id` = '.$_POST['ec_entry_sel']
-    )) {
-      $page['errors'][] =
-        l10n('ec_entry_del_nok_pre').
-        $_POST['ec_entry_sel'].
-        l10n('ec_entry_del_nok_end').
-        'MySQL error '.mysql_errno().', "'.mysql_error().'"'
-      ;
-    }
-    else {
-      $page['infos'][] =
-        l10n('ec_entry_del_ok_pre').
-        $_POST['ec_entry_sel'].
-        l10n('ec_entry_del_ok_end');
-      build_ec_table();
-    }
-  }
-  else ec_end1('ec_entry_sel', 'ec_bad_argument1');
+ * ec_delete_entry_OK($ec_id)
+ * tries to delete an existing entry.
+ *
+ * @param
+ *   $ec_id : the entry to be deleted
+ * @return
+ *   true or false whether deleting succeeded.
+ */
+function ec_delete_entry_OK($ec_id) {
+  global $page;
+  if (!pwg_query("
+    DELETE FROM `".EVNTCATS_TABLE."`
+    WHERE `id` = ".$ec_id
+  )) {
+    $page['errors'][] =
+     l10n('ec_entry_del_nok_pre').
+     $ec_id.
+     l10n('ec_entry_del_nok_end').
+     'MySQL error '.mysql_errno().', "'.mysql_error().'"';
+    return false;
+  }
+  else $page['infos'][] =
+   l10n('ec_entry_del_ok_pre').
+   $ec_id.
+   l10n('ec_entry_del_ok_end');
+  return true;
 }