2011-05-15 01:32:47 +02:00
< ? php
2014-09-04 17:52:18 +02:00
/**
* This software is governed by the CeCILL - B license . If a copy of this license
* is not distributed with this file , you can obtain one at
* http :// www . cecill . info / licences / Licence_CeCILL - B_V1 - en . txt
*
* Authors of STUdS ( initial project ) : Guilhem BORGHESI ( borghesi @ unistra . fr ) and Raphaël DROZ
* Authors of Framadate / OpenSondate : Framasoft ( https :// github . com / framasoft )
*
2014-07-04 11:21:31 +02:00
* =============================
2014-09-04 17:52:18 +02:00
*
* Ce logiciel est régi par la licence CeCILL - B . Si une copie de cette licence
* ne se trouve pas avec ce fichier vous pouvez l ' obtenir sur
* http :// www . cecill . info / licences / Licence_CeCILL - B_V1 - fr . txt
*
2014-07-04 11:21:31 +02:00
* Auteurs de STUdS ( projet initial ) : Guilhem BORGHESI ( borghesi @ unistra . fr ) et Raphaël DROZ
2014-09-04 17:52:18 +02:00
* Auteurs de Framadate / OpenSondage : Framasoft ( https :// github . com / framasoft )
2014-07-04 11:21:31 +02:00
*/
2014-12-25 00:55:52 +01:00
use Framadate\Services\LogService ;
2014-12-16 00:02:01 +01:00
use Framadate\Services\PollService ;
2014-12-17 13:17:08 +01:00
use Framadate\Services\InputService ;
2014-12-23 00:58:00 +01:00
use Framadate\Services\MailService ;
2015-10-13 01:03:41 +02:00
use Framadate\Services\NotificationService ;
2015-10-28 17:30:42 +01:00
use Framadate\Services\SecurityService ;
2014-12-17 13:17:08 +01:00
use Framadate\Message ;
2014-12-17 13:47:14 +01:00
use Framadate\Utils ;
2015-04-05 17:44:29 +02:00
use Framadate\Editable ;
2014-09-04 17:52:18 +02:00
include_once __DIR__ . '/app/inc/init.php' ;
2014-12-17 13:17:08 +01:00
/* Variables */
2014-12-12 13:43:43 +01:00
/* --------- */
2014-12-23 00:58:00 +01:00
2014-12-17 13:47:14 +01:00
$poll_id = null ;
2014-12-17 23:20:12 +01:00
$poll = null ;
2014-12-17 13:17:08 +01:00
$message = null ;
2014-12-17 23:43:06 +01:00
$editingVoteId = 0 ;
2015-10-28 17:30:42 +01:00
$accessGranted = true ;
$resultPubliclyVisible = true ;
$slots = array ();
$votes = array ();
$comments = array ();
2014-12-14 00:16:49 +01:00
2014-12-16 00:02:01 +01:00
/* Services */
/*----------*/
2015-01-03 17:24:39 +01:00
2015-01-06 23:52:52 +01:00
$logService = new LogService ();
2014-12-25 00:55:52 +01:00
$pollService = new PollService ( $connect , $logService );
2014-12-17 13:17:08 +01:00
$inputService = new InputService ();
2014-12-23 00:58:00 +01:00
$mailService = new MailService ( $config [ 'use_smtp' ]);
2015-10-13 01:03:41 +02:00
$notificationService = new NotificationService ( $mailService );
2015-10-28 17:30:42 +01:00
$securityService = new SecurityService ();
2014-12-23 00:58:00 +01:00
2014-12-16 00:02:01 +01:00
2014-12-12 13:43:43 +01:00
/* PAGE */
/* ---- */
2011-05-15 03:56:54 +02:00
2015-04-07 17:09:18 +02:00
if ( ! empty ( $_GET [ 'poll' ])) {
$poll_id = filter_input ( INPUT_GET , 'poll' , FILTER_VALIDATE_REGEXP , [ 'options' => [ 'regexp' => POLL_REGEX ]]);
if ( strlen ( $poll_id ) === 16 ) {
$poll = $pollService -> findById ( $poll_id );
}
2014-09-04 17:52:18 +02:00
}
2014-12-12 13:43:43 +01:00
if ( ! $poll ) {
2015-04-07 20:06:24 +02:00
$smarty -> assign ( 'error' , __ ( 'Error' , 'This poll doesn\'t exist !' ));
2014-12-12 13:43:43 +01:00
$smarty -> display ( 'error.tpl' );
exit ;
2011-05-15 03:56:54 +02:00
}
2014-12-17 13:39:12 +01:00
// -------------------------------
2015-10-28 17:30:42 +01:00
// Password verification
2014-12-17 13:39:12 +01:00
// -------------------------------
2015-10-28 17:30:42 +01:00
// TEMP, for testing purpose
if ( isset ( $_GET [ 'reset' ]) && $_GET [ 'reset' ]) {
unset ( $_SESSION [ 'poll_security' ]);
2014-12-16 00:45:16 +01:00
}
2015-10-28 17:30:42 +01:00
if ( ! is_null ( $poll -> password_hash )) {
2014-12-17 13:39:12 +01:00
2015-10-28 17:30:42 +01:00
// If we came from password submission
$password = isset ( $_POST [ 'password' ]) ? $_POST [ 'password' ] : null ;
if ( ! empty ( $password )) {
$securityService -> submitPollAccess ( $poll , $password );
}
2014-12-17 13:17:08 +01:00
2015-10-28 17:30:42 +01:00
if ( ! $securityService -> canAccessPoll ( $poll )) {
$accessGranted = false ;
2014-12-17 13:17:08 +01:00
}
2015-10-28 17:30:42 +01:00
$resultPubliclyVisible = $poll -> results_publicly_visible ;
if ( ! $accessGranted && ! empty ( $password )) {
$message = new Message ( 'danger' , __ ( 'Password' , 'Wrong password' ));
} else if ( ! $accessGranted && ! $resultPubliclyVisible ) {
$message = new Message ( 'danger' , __ ( 'Password' , 'You have to provide a password to access the poll.' ));
} else if ( ! $accessGranted && $resultPubliclyVisible ) {
$message = new Message ( 'danger' , __ ( 'Password' , 'You have to provide a password so you can participate to the poll.' ));
}
}
// We allow actions only if access is granted
if ( $accessGranted ) {
// -------------------------------
// A vote is going to be edited
// -------------------------------
if ( ! empty ( $_GET [ 'vote' ])) {
$editingVoteId = filter_input ( INPUT_GET , 'vote' , FILTER_VALIDATE_REGEXP , [ 'options' => [ 'regexp' => POLL_REGEX ]]);
2014-12-17 13:17:08 +01:00
}
2014-12-16 00:45:16 +01:00
2015-10-28 17:30:42 +01:00
// -------------------------------
// Something to save (edit or add)
// -------------------------------
if ( ! empty ( $_POST [ 'save' ])) { // Save edition of an old vote
$name = $inputService -> filterName ( $_POST [ 'name' ]);
$editedVote = filter_input ( INPUT_POST , 'save' , FILTER_VALIDATE_INT );
$choices = $inputService -> filterArray ( $_POST [ 'choices' ], FILTER_VALIDATE_REGEXP , [ 'options' => [ 'regexp' => CHOICE_REGEX ]]);
if ( empty ( $editedVote )) {
$message = new Message ( 'danger' , __ ( 'Error' , 'Something is going wrong...' ));
}
if ( count ( $choices ) != count ( $_POST [ 'choices' ])) {
$message = new Message ( 'danger' , __ ( 'Error' , 'There is a problem with your choices' ));
}
if ( $message == null ) {
// Update vote
$result = $pollService -> updateVote ( $poll_id , $editedVote , $name , $choices );
if ( $result ) {
if ( $poll -> editable == Editable :: EDITABLE_BY_OWN ) {
$editedVoteUniqId = filter_input ( INPUT_POST , 'edited_vote' , FILTER_VALIDATE_REGEXP , [ 'options' => [ 'regexp' => POLL_REGEX ]]);
$urlEditVote = Utils :: getUrlSondage ( $poll_id , false , $editedVoteUniqId );
$message = new Message ( 'success' , __ ( 'studs' , 'Your vote has been registered successfully, but be careful: regarding this poll options, you need to keep this personal link to edit your own vote:' ), $urlEditVote );
} else {
$message = new Message ( 'success' , __ ( 'studs' , 'Update vote succeeded' ));
}
$notificationService -> sendUpdateNotification ( $poll , NotificationService :: UPDATE_VOTE , $name );
2015-04-07 17:58:45 +02:00
} else {
2015-10-28 17:30:42 +01:00
$message = new Message ( 'danger' , __ ( 'Error' , 'Update vote failed' ));
2015-04-07 17:58:45 +02:00
}
2014-12-16 00:45:16 +01:00
}
2015-10-28 17:30:42 +01:00
} elseif ( isset ( $_POST [ 'save' ])) { // Add a new vote
$name = $inputService -> filterName ( $_POST [ 'name' ]);
$choices = $inputService -> filterArray ( $_POST [ 'choices' ], FILTER_VALIDATE_REGEXP , [ 'options' => [ 'regexp' => CHOICE_REGEX ]]);
2014-12-17 13:17:08 +01:00
2015-10-28 17:30:42 +01:00
if ( $name == null ) {
$message = new Message ( 'danger' , __ ( 'Error' , 'The name is invalid.' ));
}
if ( count ( $choices ) != count ( $_POST [ 'choices' ])) {
$message = new Message ( 'danger' , __ ( 'Error' , 'There is a problem with your choices' ));
}
2014-12-16 00:45:16 +01:00
2015-10-28 17:30:42 +01:00
if ( $message == null ) {
// Add vote
$result = $pollService -> addVote ( $poll_id , $name , $choices );
if ( $result ) {
if ( $poll -> editable == Editable :: EDITABLE_BY_OWN ) {
$urlEditVote = Utils :: getUrlSondage ( $poll_id , false , $result -> uniqId );
$message = new Message ( 'success' , __ ( 'studs' , 'Your vote has been registered successfully, but be careful: regarding this poll options, you need to keep this personal link to edit your own vote:' ), $urlEditVote );
} else {
$message = new Message ( 'success' , __ ( 'studs' , 'Adding the vote succeeded' ));
}
$notificationService -> sendUpdateNotification ( $poll , NotificationService :: ADD_VOTE , $name );
2015-04-05 17:44:29 +02:00
} else {
2015-10-28 17:30:42 +01:00
$message = new Message ( 'danger' , __ ( 'Error' , 'Adding vote failed' ));
2015-04-05 17:44:29 +02:00
}
2014-12-16 00:45:16 +01:00
}
}
}
2014-12-17 13:47:14 +01:00
2014-12-12 13:43:43 +01:00
// Retrieve data
2015-10-28 17:30:42 +01:00
if ( $resultPubliclyVisible ) {
$slots = $pollService -> allSlotsByPoll ( $poll );
$votes = $pollService -> allVotesByPollId ( $poll_id );
$comments = $pollService -> allCommentsByPollId ( $poll_id );
}
2014-10-21 01:31:26 +02:00
2014-12-12 13:43:43 +01:00
// Assign data to template
$smarty -> assign ( 'poll_id' , $poll_id );
$smarty -> assign ( 'poll' , $poll );
2015-04-07 20:06:24 +02:00
$smarty -> assign ( 'title' , __ ( 'Generic' , 'Poll' ) . ' - ' . $poll -> title );
2015-03-13 12:56:45 +01:00
$smarty -> assign ( 'expired' , strtotime ( $poll -> end_date ) < time ());
2015-05-29 17:46:29 +02:00
$smarty -> assign ( 'deletion_date' , strtotime ( $poll -> end_date ) + PURGE_DELAY * 86400 );
2014-12-27 00:00:14 +01:00
$smarty -> assign ( 'slots' , $poll -> format === 'D' ? $pollService -> splitSlots ( $slots ) : $slots );
2014-12-17 13:17:08 +01:00
$smarty -> assign ( 'votes' , $pollService -> splitVotes ( $votes ));
2014-12-27 00:19:48 +01:00
$smarty -> assign ( 'best_choices' , $pollService -> computeBestChoices ( $votes ));
2014-12-15 13:49:25 +01:00
$smarty -> assign ( 'comments' , $comments );
2014-12-16 00:45:16 +01:00
$smarty -> assign ( 'editingVoteId' , $editingVoteId );
2014-12-17 13:17:08 +01:00
$smarty -> assign ( 'message' , $message );
2014-12-17 23:43:06 +01:00
$smarty -> assign ( 'admin' , false );
2015-04-06 12:39:58 +02:00
$smarty -> assign ( 'hidden' , $poll -> hidden );
2015-10-28 17:30:42 +01:00
$smarty -> assign ( 'accessGranted' , $accessGranted );
$smarty -> assign ( 'resultPubliclyVisible' , $resultPubliclyVisible );
2014-09-04 17:52:18 +02:00
2014-12-12 13:43:43 +01:00
$smarty -> display ( 'studs.tpl' );