engelsystem/includes/pages/admin_questions.php

<?php

/**
 * @return string
 */
function admin_questions_title()
{
    return _('Answer questions');
}

/**
 * Renders a hint for new questions to answer.
 *
 * @return string|null
 */
function admin_new_questions()
{
    global $privileges, $page;

    if ($page != 'admin_questions') {
        if (in_array('admin_questions', $privileges)) {
            $new_messages = sql_num_query('SELECT * FROM `Questions` WHERE `AID` IS NULL');

            if ($new_messages > 0) {
                return '<a href="' . page_link_to("admin_questions") . '">' . _('There are unanswered questions!') . '</a>';
            }
        }
    }

    return null;
}

/**
 * @return string
 */
function admin_questions()
{
    global $user;

    if (!isset($_REQUEST['action'])) {
        $unanswered_questions_table = [];
        $questions = sql_select("SELECT * FROM `Questions` WHERE `AID` IS NULL");
        foreach ($questions as $question) {
            $user_source = User($question['UID']);

            $unanswered_questions_table[] = [
                'from'     => User_Nick_render($user_source),
                'question' => str_replace("\n", '<br />', $question['Question']),
                'answer'   => form([
                    form_textarea('answer', '', ''),
                    form_submit('submit', _('Save'))
                ], page_link_to('admin_questions') . '&action=answer&id=' . $question['QID']),
                'actions'  => button(
                    page_link_to('admin_questions') . '&action=delete&id=' . $question['QID'],
                    _('delete'),
                    'btn-xs'
                )
            ];
        }

        $answered_questions_table = [];
        $questions = sql_select("SELECT * FROM `Questions` WHERE NOT `AID` IS NULL");
        foreach ($questions as $question) {
            $user_source = User($question['UID']);
            $answer_user_source = User($question['AID']);
            $answered_questions_table[] = [
                'from'        => User_Nick_render($user_source),
                'question'    => str_replace("\n", '<br />', $question['Question']),
                'answered_by' => User_Nick_render($answer_user_source),
                'answer'      => str_replace("\n", '<br />', $question['Answer']),
                'actions'     => button(
                    page_link_to('admin_questions') . '&action=delete&id=' . $question['QID'],
                    _('delete'),
                    'btn-xs'
                )
            ];
        }

        return page_with_title(admin_questions_title(), [
            '<h2>' . _('Unanswered questions') . '</h2>',
            table([
                'from'     => _('From'),
                'question' => _('Question'),
                'answer'   => _('Answer'),
                'actions'  => ''
            ], $unanswered_questions_table),
            '<h2>' . _('Answered questions') . '</h2>',
            table([
                'from'        => _('From'),
                'question'    => _('Question'),
                'answered_by' => _('Answered by'),
                'answer'      => _('Answer'),
                'actions'     => ''
            ], $answered_questions_table)
        ]);
    } else {
        switch ($_REQUEST['action']) {
            case 'answer':
                if (isset($_REQUEST['id']) && preg_match('/^[0-9]{1,11}$/', $_REQUEST['id'])) {
                    $question_id = $_REQUEST['id'];
                } else {
                    return error('Incomplete call, missing Question ID.', true);
                }

                $question = sql_select("SELECT * FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
                if (count($question) > 0 && $question[0]['AID'] == null) {
                    $answer = trim(
                        preg_replace("/([^\p{L}\p{P}\p{Z}\p{N}\n]{1,})/ui",
                            '',
                            strip_tags($_REQUEST['answer'])
                        ));

                    if ($answer != '') {
                        sql_query("
                            UPDATE `Questions`
                            SET `AID`='" . sql_escape($user['UID']) . "', `Answer`='" . sql_escape($answer) . "'
                            WHERE `QID`='" . sql_escape($question_id) . "'
                            LIMIT 1
                        ");
                        engelsystem_log('Question ' . $question[0]['Question'] . ' answered: ' . $answer);
                        redirect(page_link_to('admin_questions'));
                    } else {
                        return error('Enter an answer!', true);
                    }
                } else {
                    return error('No question found.', true);
                }
                break;
            case 'delete':
                if (isset($_REQUEST['id']) && preg_match('/^[0-9]{1,11}$/', $_REQUEST['id'])) {
                    $question_id = $_REQUEST['id'];
                } else {
                    return error('Incomplete call, missing Question ID.', true);
                }

                $question = sql_select("SELECT * FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
                if (count($question) > 0) {
                    sql_query("DELETE FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
                    engelsystem_log('Question deleted: ' . $question[0]['Question']);
                    redirect(page_link_to('admin_questions'));
                } else {
                    return error('No question found.', true);
                }
                break;
        }
    }

    return '';
}
admin questions 2011-06-03 00:22:11 +02:00			`<?php`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00
PPHDoc, formatting, fixes, cleanup 2017-01-03 03:22:48 +01:00			`/**`
			`* @return string`
			`*/`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`function admin_questions_title()`
			`{`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`return _('Answer questions');`
basic gettext integration 2013-11-25 21:04:58 +01:00			`}`

reduce complexity of menu and hints 2016-11-15 16:28:20 +01:00			`/**`
			`* Renders a hint for new questions to answer.`
PPHDoc, formatting, fixes, cleanup 2017-01-03 03:22:48 +01:00			`*`
			`* @return string\|null`
reduce complexity of menu and hints 2016-11-15 16:28:20 +01:00			`*/`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`function admin_new_questions()`
			`{`
			`global $privileges, $page;`
Formatting 2017-01-02 15:43:36 +01:00
Replaced " with ' 2017-01-03 14:12:17 +01:00			`if ($page != 'admin_questions') {`
			`if (in_array('admin_questions', $privileges)) {`
			$new_messages = sql_num_query('SELECT * FROM `Questions` WHERE `AID` IS NULL');
Formatting 2017-01-02 15:43:36 +01:00
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`if ($new_messages > 0) {`
			`return '<a href="' . page_link_to("admin_questions") . '">' . _('There are unanswered questions!') . '</a>';`
			`}`
			`}`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`}`
Formatting 2017-01-02 15:43:36 +01:00
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`return null;`
admin questions 2011-06-03 00:22:11 +02:00			`}`

PPHDoc, formatting, fixes, cleanup 2017-01-03 03:22:48 +01:00			`/**`
			`* @return string`
			`*/`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`function admin_questions()`
			`{`
			`global $user;`
Formatting 2017-01-02 15:43:36 +01:00
			`if (!isset($_REQUEST['action'])) {`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`$unanswered_questions_table = [];`
			$questions = sql_select("SELECT * FROM `Questions` WHERE `AID` IS NULL");
			`foreach ($questions as $question) {`
			`$user_source = User($question['UID']);`
Formatting 2017-01-02 15:43:36 +01:00
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`$unanswered_questions_table[] = [`
Formatting 2017-01-02 15:43:36 +01:00			`'from' => User_Nick_render($user_source),`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`'question' => str_replace("\n", '<br />', $question['Question']),`
Formatting 2017-01-02 15:43:36 +01:00			`'answer' => form([`
			`form_textarea('answer', '', ''),`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`form_submit('submit', _('Save'))`
Formatting 2017-01-02 15:43:36 +01:00			`], page_link_to('admin_questions') . '&action=answer&id=' . $question['QID']),`
			`'actions' => button(`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`page_link_to('admin_questions') . '&action=delete&id=' . $question['QID'],`
			`_('delete'),`
Formatting 2017-01-02 15:43:36 +01:00			`'btn-xs'`
			`)`
			`];`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`}`
Formatting 2017-01-02 15:43:36 +01:00
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`$answered_questions_table = [];`
			$questions = sql_select("SELECT * FROM `Questions` WHERE NOT `AID` IS NULL");
			`foreach ($questions as $question) {`
			`$user_source = User($question['UID']);`
			`$answer_user_source = User($question['AID']);`
			`$answered_questions_table[] = [`
Formatting 2017-01-02 15:43:36 +01:00			`'from' => User_Nick_render($user_source),`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`'question' => str_replace("\n", '<br />', $question['Question']),`
Formatting 2017-01-02 15:43:36 +01:00			`'answered_by' => User_Nick_render($answer_user_source),`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`'answer' => str_replace("\n", '<br />', $question['Answer']),`
Formatting 2017-01-02 15:43:36 +01:00			`'actions' => button(`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`page_link_to('admin_questions') . '&action=delete&id=' . $question['QID'],`
			`_('delete'),`
Formatting 2017-01-02 15:43:36 +01:00			`'btn-xs'`
			`)`
			`];`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`}`
Formatting 2017-01-02 15:43:36 +01:00
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`return page_with_title(admin_questions_title(), [`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`'<h2>' . _('Unanswered questions') . '</h2>',`
Formatting 2017-01-02 15:43:36 +01:00			`table([`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`'from' => _('From'),`
			`'question' => _('Question'),`
			`'answer' => _('Answer'),`
Formatting 2017-01-02 15:43:36 +01:00			`'actions' => ''`
			`], $unanswered_questions_table),`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`'<h2>' . _('Answered questions') . '</h2>',`
Formatting 2017-01-02 15:43:36 +01:00			`table([`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`'from' => _('From'),`
			`'question' => _('Question'),`
			`'answered_by' => _('Answered by'),`
			`'answer' => _('Answer'),`
Formatting 2017-01-02 15:43:36 +01:00			`'actions' => ''`
			`], $answered_questions_table)`
			`]);`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`} else {`
			`switch ($_REQUEST['action']) {`
Formatting 2017-01-02 15:43:36 +01:00			`case 'answer':`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`if (isset($_REQUEST['id']) && preg_match('/^[0-9]{1,11}$/', $_REQUEST['id'])) {`
Formatting 2017-01-02 15:43:36 +01:00			`$question_id = $_REQUEST['id'];`
			`} else {`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`return error('Incomplete call, missing Question ID.', true);`
Formatting 2017-01-02 15:43:36 +01:00			`}`

			$question = sql_select("SELECT * FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
			`if (count($question) > 0 && $question[0]['AID'] == null) {`
			`$answer = trim(`
			`preg_replace("/([^\p{L}\p{P}\p{Z}\p{N}\n]{1,})/ui",`
			`'',`
			`strip_tags($_REQUEST['answer'])`
			`));`

Replaced " with ' 2017-01-03 14:12:17 +01:00			`if ($answer != '') {`
Formatting 2017-01-02 15:43:36 +01:00			`sql_query("`
			UPDATE `Questions`
			SET `AID`='" . sql_escape($user['UID']) . "', `Answer`='" . sql_escape($answer) . "'
			WHERE `QID`='" . sql_escape($question_id) . "'
			`LIMIT 1`
			`");`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`engelsystem_log('Question ' . $question[0]['Question'] . ' answered: ' . $answer);`
			`redirect(page_link_to('admin_questions'));`
Formatting 2017-01-02 15:43:36 +01:00			`} else {`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`return error('Enter an answer!', true);`
Formatting 2017-01-02 15:43:36 +01:00			`}`
			`} else {`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`return error('No question found.', true);`
Formatting 2017-01-02 15:43:36 +01:00			`}`
			`break;`
			`case 'delete':`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`if (isset($_REQUEST['id']) && preg_match('/^[0-9]{1,11}$/', $_REQUEST['id'])) {`
Formatting 2017-01-02 15:43:36 +01:00			`$question_id = $_REQUEST['id'];`
			`} else {`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`return error('Incomplete call, missing Question ID.', true);`
Formatting 2017-01-02 15:43:36 +01:00			`}`

			$question = sql_select("SELECT * FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
			`if (count($question) > 0) {`
			sql_query("DELETE FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
Replaced " with ' 2017-01-03 14:12:17 +01:00			`engelsystem_log('Question deleted: ' . $question[0]['Question']);`
			`redirect(page_link_to('admin_questions'));`
Formatting 2017-01-02 15:43:36 +01:00			`} else {`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`return error('No question found.', true);`
Formatting 2017-01-02 15:43:36 +01:00			`}`
			`break;`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`}`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`}`
PPHDoc, formatting, fixes, cleanup 2017-01-03 03:22:48 +01:00
			`return '';`
admin questions 2011-06-03 00:22:11 +02:00			`}`