engelsystem/includes/pages/user_messages.php

<?php

use Engelsystem\Database\DB;
use Engelsystem\Models\User\User;

/**
 * @return string
 */
function messages_title()
{
    return __('Messages');
}

/**
 * @return string
 */
function user_unread_messages()
{
    $user = auth()->user();

    if ($user) {
        $new_messages = count(DB::select(
            'SELECT `id` FROM `Messages` WHERE isRead=\'N\' AND `RUID`=?',
            [$user->id]
        ));
        if ($new_messages > 0) {
            return ' <span class="badge danger">' . $new_messages . '</span>';
        }
    }
    return '';
}

/**
 * @return string
 */
function user_messages()
{
    $user = auth()->user();
    $request = request();

    if (!$request->has('action')) {
        /** @var User[] $users */
        $users = User::query()
            ->whereKeyNot($user->id)
            ->orderBy('name')
            ->get(['id', 'name']);

        $to_select_data = [
            '' => __('Select recipient...')
        ];

        foreach ($users as $u) {
            $to_select_data[$u->id] = $u->name;
        }

        $to_select = html_select_key('to', 'to', $to_select_data, '');

        $messages = DB::select('
            SELECT *
            FROM `Messages`
            WHERE `SUID`=?
            OR `RUID`=?
            ORDER BY `isRead`,`Datum` DESC
        ',
            [
                $user->id,
                $user->id,
            ]
        );

        $messages_table = [
            [
                'news'      => '',
                'timestamp' => date('Y-m-d H:i'),
                'from'      => User_Nick_render($user),
                'to'        => $to_select,
                'text'      => form_textarea('text', '', ''),
                'actions'   => form_submit('submit', __('Save'))
            ]
        ];

        foreach ($messages as $message) {
            $sender_user_source = User::find($message['SUID']);
            $receiver_user_source = User::find($message['RUID']);

            $messages_table_entry = [
                'new'       => $message['isRead'] == 'N' ? '<span class="glyphicon glyphicon-envelope"></span>' : '',
                'timestamp' => date('Y-m-d H:i', $message['Datum']),
                'from'      => User_Nick_render($sender_user_source),
                'to'        => User_Nick_render($receiver_user_source),
                'text'      => nl2br(htmlspecialchars($message['Text']))
            ];

            if ($message['RUID'] == $user->id) {
                if ($message['isRead'] == 'N') {
                    $messages_table_entry['actions'] = button(
                        page_link_to('user_messages', ['action' => 'read', 'id' => $message['id']]),
                        __('mark as read'),
                        'btn-xs'
                    );
                }
            } else {
                $messages_table_entry['actions'] = button(
                    page_link_to('user_messages', ['action' => 'delete', 'id' => $message['id']]),
                    __('delete message'),
                    'btn-xs'
                );
            }
            $messages_table[] = $messages_table_entry;
        }

        return page_with_title(messages_title(), [
            msg(),
            sprintf(__('Hello %s, here can you leave messages for other angels'), User_Nick_render($user)),
            form([
                table([
                    'new'       => __('New'),
                    'timestamp' => __('Date'),
                    'from'      => __('Transmitted'),
                    'to'        => __('Recipient'),
                    'text'      => __('Message'),
                    'actions'   => ''
                ], $messages_table)
            ], page_link_to('user_messages', ['action' => 'send']))
        ]);
    } else {
        switch ($request->input('action')) {
            case 'read':
                if ($request->has('id') && preg_match('/^\d{1,11}$/', $request->input('id'))) {
                    $message_id = $request->input('id');
                } else {
                    return error(__('Incomplete call, missing Message ID.'), true);
                }

                $message = DB::selectOne(
                    'SELECT `RUID` FROM `Messages` WHERE `id`=? LIMIT 1',
                    [$message_id]
                );
                if (!empty($message) && $message['RUID'] == $user->id) {
                    DB::update(
                        'UPDATE `Messages` SET `isRead`=\'Y\' WHERE `id`=? LIMIT 1',
                        [$message_id]
                    );
                    redirect(page_link_to('user_messages'));
                } else {
                    return error(__('No Message found.'), true);
                }
                break;

            case 'delete':
                if ($request->has('id') && preg_match('/^\d{1,11}$/', $request->input('id'))) {
                    $message_id = $request->input('id');
                } else {
                    return error(__('Incomplete call, missing Message ID.'), true);
                }

                $message = DB::selectOne(
                    'SELECT `SUID` FROM `Messages` WHERE `id`=? LIMIT 1',
                    [$message_id]
                );
                if (!empty($message) && $message['SUID'] == $user->id) {
                    DB::delete('DELETE FROM `Messages` WHERE `id`=? LIMIT 1', [$message_id]);
                    redirect(page_link_to('user_messages'));
                } else {
                    return error(__('No Message found.'), true);
                }
                break;

            case 'send':
                if (Message_send($request->input('to'), $request->input('text'))) {
                    redirect(page_link_to('user_messages'));
                } else {
                    return error(__('Transmitting was terminated with an Error.'), true);
                }
                break;

            default:
                return error(__('Wrong action.'), true);
        }
    }

    return '';
}
user messages 2011-06-02 21:38:19 +02:00			`<?php`
put message input to the top 2015-12-29 18:13:05 +01:00
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			`use Engelsystem\Database\DB;`
Changed more functions :tada: 2018-10-09 21:47:31 +02:00			`use Engelsystem\Models\User\User;`
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00
PPHDoc, formatting, fixes, cleanup 2017-01-03 03:22:48 +01:00			`/**`
			`* @return string`
			`*/`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`function messages_title()`
			`{`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`return __('Messages');`
basic gettext integration 2013-11-25 21:04:58 +01:00			`}`

PPHDoc, formatting, fixes, cleanup 2017-01-03 03:22:48 +01:00			`/**`
			`* @return string`
			`*/`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`function user_unread_messages()`
			`{`
Replaced `Auth()` with `auth()` 2018-10-31 12:48:22 +01:00			`$user = auth()->user();`
Formatting 2017-01-02 15:43:36 +01:00
Replaced some global `$user` variables 2018-10-08 21:15:56 +02:00			`if ($user) {`
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			`$new_messages = count(DB::select(`
			'SELECT `id` FROM `Messages` WHERE isRead=\'N\' AND `RUID`=?',
Replaced some global `$user` variables 2018-10-08 21:15:56 +02:00			`[$user->id]`
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			`));`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`if ($new_messages > 0) {`
			`return ' <span class="badge danger">' . $new_messages . '</span>';`
			`}`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`}`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`return '';`
user messages 2011-06-02 21:38:19 +02:00			`}`

PPHDoc, formatting, fixes, cleanup 2017-01-03 03:22:48 +01:00			`/**`
			`* @return string`
			`*/`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`function user_messages()`
			`{`
Changed more functions :tada: 2018-10-09 21:47:31 +02:00			`$user = auth()->user();`
Changed $_GET, $_POST and $_REQUEST to use the Request object 2017-07-18 21:38:53 +02:00			`$request = request();`
Formatting 2017-01-02 15:43:36 +01:00
Changed $_GET, $_POST and $_REQUEST to use the Request object 2017-07-18 21:38:53 +02:00			`if (!$request->has('action')) {`
Replaced more user related stuff (Contains some buggy stuff too...) 2018-10-11 01:26:34 +02:00			`/** @var User[] $users */`
			`$users = User::query()`
			`->whereKeyNot($user->id)`
			`->orderBy('name')`
			`->get(['id', 'name']);`
Formatting 2017-01-02 15:43:36 +01:00
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`$to_select_data = [`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`'' => __('Select recipient...')`
Formatting 2017-01-02 15:43:36 +01:00			`];`

PSR-2 formatting 2017-01-02 03:57:23 +01:00			`foreach ($users as $u) {`
Replaced more user related stuff (Contains some buggy stuff too...) 2018-10-11 01:26:34 +02:00			`$to_select_data[$u->id] = $u->name;`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`}`
Formatting 2017-01-02 15:43:36 +01:00
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`$to_select = html_select_key('to', 'to', $to_select_data, '');`
Formatting 2017-01-02 15:43:36 +01:00
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			`$messages = DB::select('`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`SELECT *`
			FROM `Messages`
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			WHERE `SUID`=?
			OR `RUID`=?
Replaced " with ' 2017-01-03 14:12:17 +01:00			ORDER BY `isRead`,`Datum` DESC
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			`',`
			`[`
Changed more functions :tada: 2018-10-09 21:47:31 +02:00			`$user->id,`
			`$user->id,`
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			`]`
			`);`
Formatting 2017-01-02 15:43:36 +01:00
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`$messages_table = [`
Formatting 2017-01-02 15:43:36 +01:00			`[`
			`'news' => '',`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`'timestamp' => date('Y-m-d H:i'),`
Formatting 2017-01-02 15:43:36 +01:00			`'from' => User_Nick_render($user),`
			`'to' => $to_select,`
			`'text' => form_textarea('text', '', ''),`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`'actions' => form_submit('submit', __('Save'))`
Formatting 2017-01-02 15:43:36 +01:00			`]`
			`];`

PSR-2 formatting 2017-01-02 03:57:23 +01:00			`foreach ($messages as $message) {`
Changed more functions :tada: 2018-10-09 21:47:31 +02:00			`$sender_user_source = User::find($message['SUID']);`
			`$receiver_user_source = User::find($message['RUID']);`
Formatting 2017-01-02 15:43:36 +01:00
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`$messages_table_entry = [`
Formatting 2017-01-02 15:43:36 +01:00			`'new' => $message['isRead'] == 'N' ? '<span class="glyphicon glyphicon-envelope"></span>' : '',`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`'timestamp' => date('Y-m-d H:i', $message['Datum']),`
Formatting 2017-01-02 15:43:36 +01:00			`'from' => User_Nick_render($sender_user_source),`
			`'to' => User_Nick_render($receiver_user_source),`
Don't strip characters from direct messages 2018-12-28 22:32:36 +01:00			`'text' => nl2br(htmlspecialchars($message['Text']))`
Formatting 2017-01-02 15:43:36 +01:00			`];`

Changed more functions :tada: 2018-10-09 21:47:31 +02:00			`if ($message['RUID'] == $user->id) {`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`if ($message['isRead'] == 'N') {`
Formatting 2017-01-02 15:43:36 +01:00			`$messages_table_entry['actions'] = button(`
#337: Added routing 2017-08-28 16:21:10 +02:00			`page_link_to('user_messages', ['action' => 'read', 'id' => $message['id']]),`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`__('mark as read'),`
Formatting 2017-01-02 15:43:36 +01:00			`'btn-xs'`
			`);`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`}`
			`} else {`
Formatting 2017-01-02 15:43:36 +01:00			`$messages_table_entry['actions'] = button(`
#337: Added routing 2017-08-28 16:21:10 +02:00			`page_link_to('user_messages', ['action' => 'delete', 'id' => $message['id']]),`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`__('delete message'),`
Formatting 2017-01-02 15:43:36 +01:00			`'btn-xs'`
			`);`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`}`
			`$messages_table[] = $messages_table_entry;`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`}`
Formatting 2017-01-02 15:43:36 +01:00
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`return page_with_title(messages_title(), [`
Formatting 2017-01-02 15:43:36 +01:00			`msg(),`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`sprintf(__('Hello %s, here can you leave messages for other angels'), User_Nick_render($user)),`
Formatting 2017-01-02 15:43:36 +01:00			`form([`
			`table([`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`'new' => __('New'),`
			`'timestamp' => __('Date'),`
			`'from' => __('Transmitted'),`
			`'to' => __('Recipient'),`
			`'text' => __('Message'),`
Formatting 2017-01-02 15:43:36 +01:00			`'actions' => ''`
			`], $messages_table)`
#337: Added routing 2017-08-28 16:21:10 +02:00			`], page_link_to('user_messages', ['action' => 'send']))`
Formatting 2017-01-02 15:43:36 +01:00			`]);`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`} else {`
Changed $_GET, $_POST and $_REQUEST to use the Request object 2017-07-18 21:38:53 +02:00			`switch ($request->input('action')) {`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`case 'read':`
Changed $_GET, $_POST and $_REQUEST to use the Request object 2017-07-18 21:38:53 +02:00			`if ($request->has('id') && preg_match('/^\d{1,11}$/', $request->input('id'))) {`
			`$message_id = $request->input('id');`
Formatting 2017-01-02 15:43:36 +01:00			`} else {`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`return error(__('Incomplete call, missing Message ID.'), true);`
Formatting 2017-01-02 15:43:36 +01:00			`}`

dried code by introducing selectOne for select queries with only one result line expected 2017-07-28 20:11:09 +02:00			`$message = DB::selectOne(`
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			'SELECT `RUID` FROM `Messages` WHERE `id`=? LIMIT 1',
			`[$message_id]`
			`);`
Changed more functions :tada: 2018-10-09 21:47:31 +02:00			`if (!empty($message) && $message['RUID'] == $user->id) {`
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			`DB::update(`
			'UPDATE `Messages` SET `isRead`=\'Y\' WHERE `id`=? LIMIT 1',
			`[$message_id]`
			`);`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`redirect(page_link_to('user_messages'));`
Formatting 2017-01-02 15:43:36 +01:00			`} else {`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`return error(__('No Message found.'), true);`
Formatting 2017-01-02 15:43:36 +01:00			`}`
			`break;`

Replaced " with ' 2017-01-03 14:12:17 +01:00			`case 'delete':`
Changed $_GET, $_POST and $_REQUEST to use the Request object 2017-07-18 21:38:53 +02:00			`if ($request->has('id') && preg_match('/^\d{1,11}$/', $request->input('id'))) {`
			`$message_id = $request->input('id');`
Formatting 2017-01-02 15:43:36 +01:00			`} else {`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`return error(__('Incomplete call, missing Message ID.'), true);`
Formatting 2017-01-02 15:43:36 +01:00			`}`

dried code by introducing selectOne for select queries with only one result line expected 2017-07-28 20:11:09 +02:00			`$message = DB::selectOne(`
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			'SELECT `SUID` FROM `Messages` WHERE `id`=? LIMIT 1',
			`[$message_id]`
			`);`
Changed more functions :tada: 2018-10-09 21:47:31 +02:00			`if (!empty($message) && $message['SUID'] == $user->id) {`
Changed from mysqli to PDO, some refactorings, faster sql queries 2017-01-21 13:58:53 +01:00			DB::delete('DELETE FROM `Messages` WHERE `id`=? LIMIT 1', [$message_id]);
Replaced " with ' 2017-01-03 14:12:17 +01:00			`redirect(page_link_to('user_messages'));`
Formatting 2017-01-02 15:43:36 +01:00			`} else {`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`return error(__('No Message found.'), true);`
Formatting 2017-01-02 15:43:36 +01:00			`}`
			`break;`

Replaced " with ' 2017-01-03 14:12:17 +01:00			`case 'send':`
Changed $_GET, $_POST and $_REQUEST to use the Request object 2017-07-18 21:38:53 +02:00			`if (Message_send($request->input('to'), $request->input('text'))) {`
Replaced " with ' 2017-01-03 14:12:17 +01:00			`redirect(page_link_to('user_messages'));`
Formatting 2017-01-02 15:43:36 +01:00			`} else {`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`return error(__('Transmitting was terminated with an Error.'), true);`
Formatting 2017-01-02 15:43:36 +01:00			`}`
			`break;`

			`default:`
Replaced gettext translation `_()` with `__()` that uses the Translator class 2018-08-29 21:55:32 +02:00			`return error(__('Wrong action.'), true);`
mysql to mysqli and a lot of cleanup and mvc 2013-09-18 01:38:36 +02:00			`}`
PSR-2 formatting 2017-01-02 03:57:23 +01:00			`}`
PPHDoc, formatting, fixes, cleanup 2017-01-03 03:22:48 +01:00
			`return '';`
user messages 2011-06-02 21:38:19 +02:00			`}`