engelsystem/includes/pages/admin_questions.php

<?php

function admin_questions_title() {
  return _("Answer questions");
}

/**
 * Renders a hint for new questions to answer.
 */
function admin_new_questions() {
  global $privileges, $page;
  
  if ($page != "admin_questions") {
    if (in_array("admin_questions", $privileges)) {
      $new_messages = sql_num_query("SELECT * FROM `Questions` WHERE `AID` IS NULL");
      
      if ($new_messages > 0) {
        return '<a href="' . page_link_to("admin_questions") . '">' . _('There are unanswered questions!') . '</a>';
      }
    }
  }
  
  return null;
}

function admin_questions() {
  global $user;
  
  if (! isset($_REQUEST['action'])) {
    $unanswered_questions_table = [];
    $questions = sql_select("SELECT * FROM `Questions` WHERE `AID` IS NULL");
    foreach ($questions as $question) {
      $user_source = User($question['UID']);
      
      $unanswered_questions_table[] = [
          'from' => User_Nick_render($user_source),
          'question' => str_replace("\n", "<br />", $question['Question']),
          'answer' => form([
              form_textarea('answer', '', ''),
              form_submit('submit', _("Save")) 
          ], page_link_to('admin_questions') . '&action=answer&id=' . $question['QID']),
          'actions' => button(page_link_to("admin_questions") . '&action=delete&id=' . $question['QID'], _("delete"), 'btn-xs') 
      ];
    }
    
    $answered_questions_table = [];
    $questions = sql_select("SELECT * FROM `Questions` WHERE NOT `AID` IS NULL");
    foreach ($questions as $question) {
      $user_source = User($question['UID']);
      $answer_user_source = User($question['AID']);
      $answered_questions_table[] = [
          'from' => User_Nick_render($user_source),
          'question' => str_replace("\n", "<br />", $question['Question']),
          'answered_by' => User_Nick_render($answer_user_source),
          'answer' => str_replace("\n", "<br />", $question['Answer']),
          'actions' => button(page_link_to("admin_questions") . '&action=delete&id=' . $question['QID'], _("delete"), 'btn-xs') 
      ];
    }
    
    return page_with_title(admin_questions_title(), [
        '<h2>' . _("Unanswered questions") . '</h2>',
        table([
            'from' => _("From"),
            'question' => _("Question"),
            'answer' => _("Answer"),
            'actions' => '' 
        ], $unanswered_questions_table),
        '<h2>' . _("Answered questions") . '</h2>',
        table([
            'from' => _("From"),
            'question' => _("Question"),
            'answered_by' => _("Answered by"),
            'answer' => _("Answer"),
            'actions' => '' 
        ], $answered_questions_table) 
    ]);
  } else {
    switch ($_REQUEST['action']) {
      case 'answer':
        if (isset($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id'])) {
          $question_id = $_REQUEST['id'];
        } else {
          return error("Incomplete call, missing Question ID.", true);
        }
        
        $question = sql_select("SELECT * FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
        if (count($question) > 0 && $question[0]['AID'] == null) {
          $answer = trim(preg_replace("/([^\p{L}\p{P}\p{Z}\p{N}\n]{1,})/ui", '', strip_tags($_REQUEST['answer'])));
          
          if ($answer != "") {
            sql_query("UPDATE `Questions` SET `AID`='" . sql_escape($user['UID']) . "', `Answer`='" . sql_escape($answer) . "' WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
            engelsystem_log("Question " . $question[0]['Question'] . " answered: " . $answer);
            redirect(page_link_to("admin_questions"));
          } else {
            return error("Enter an answer!", true);
          }
        } else {
          return error("No question found.", true);
        }
        break;
      case 'delete':
        if (isset($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id'])) {
          $question_id = $_REQUEST['id'];
        } else {
          return error("Incomplete call, missing Question ID.", true);
        }
        
        $question = sql_select("SELECT * FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
        if (count($question) > 0) {
          sql_query("DELETE FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
          engelsystem_log("Question deleted: " . $question[0]['Question']);
          redirect(page_link_to("admin_questions"));
        } else {
          return error("No question found.", true);
        }
        break;
    }
  }
}
?>
admin questions 2011-06-03 00:22:11 +02:00			`<?php`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00
basic gettext integration 2013-11-25 21:04:58 +01:00			`function admin_questions_title() {`
			`return _("Answer questions");`
			`}`

reduce complexity of menu and hints 2016-11-15 16:28:20 +01:00			`/**`
			`* Renders a hint for new questions to answer.`
			`*/`
admin questions 2011-06-03 00:22:11 +02:00			`function admin_new_questions() {`
reduce complexity of menu and hints 2016-11-15 16:28:20 +01:00			`global $privileges, $page;`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00
reduce complexity of menu and hints 2016-11-15 16:28:20 +01:00			`if ($page != "admin_questions") {`
			`if (in_array("admin_questions", $privileges)) {`
			$new_messages = sql_num_query("SELECT * FROM `Questions` WHERE `AID` IS NULL");

			`if ($new_messages > 0) {`
reduce complexity of menu and hints 2016-11-15 16:31:55 +01:00			`return '<a href="' . page_link_to("admin_questions") . '">' . _('There are unanswered questions!') . '</a>';`
reduce complexity of menu and hints 2016-11-15 16:28:20 +01:00			`}`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`}`
#28 begin log 2012-12-26 14:02:27 +01:00			`}`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00
reduce complexity of menu and hints 2016-11-15 16:28:20 +01:00			`return null;`
admin questions 2011-06-03 00:22:11 +02:00			`}`

			`function admin_questions() {`
#28 begin log 2012-12-26 14:02:27 +01:00			`global $user;`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00
add basic bootstrap theme 2014-08-22 22:34:13 +02:00			`if (! isset($_REQUEST['action'])) {`
remove long array syntax 2016-09-30 17:08:20 +02:00			`$unanswered_questions_table = [];`
add basic bootstrap theme 2014-08-22 22:34:13 +02:00			$questions = sql_select("SELECT * FROM `Questions` WHERE `AID` IS NULL");
mysql to mysqli and a lot of cleanup and mvc 2013-09-18 01:38:36 +02:00			`foreach ($questions as $question) {`
			`$user_source = User($question['UID']);`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00
			`$unanswered_questions_table[] = [`
remove html templates 2014-08-23 19:15:10 +02:00			`'from' => User_Nick_render($user_source),`
			`'question' => str_replace("\n", "<br />", $question['Question']),`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`'answer' => form([`
more styling 2014-12-06 22:46:23 +01:00			`form_textarea('answer', '', ''),`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`form_submit('submit', _("Save"))`
			`], page_link_to('admin_questions') . '&action=answer&id=' . $question['QID']),`
			`'actions' => button(page_link_to("admin_questions") . '&action=delete&id=' . $question['QID'], _("delete"), 'btn-xs')`
			`];`
mysql to mysqli and a lot of cleanup and mvc 2013-09-18 01:38:36 +02:00			`}`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00
			`$answered_questions_table = [];`
add basic bootstrap theme 2014-08-22 22:34:13 +02:00			$questions = sql_select("SELECT * FROM `Questions` WHERE NOT `AID` IS NULL");
mysql to mysqli and a lot of cleanup and mvc 2013-09-18 01:38:36 +02:00			`foreach ($questions as $question) {`
			`$user_source = User($question['UID']);`
			`$answer_user_source = User($question['AID']);`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`$answered_questions_table[] = [`
remove html templates 2014-08-23 19:15:10 +02:00			`'from' => User_Nick_render($user_source),`
add basic bootstrap theme 2014-08-22 22:34:13 +02:00			`'question' => str_replace("\n", "<br />", $question['Question']),`
remove html templates 2014-08-23 19:15:10 +02:00			`'answered_by' => User_Nick_render($answer_user_source),`
add basic bootstrap theme 2014-08-22 22:34:13 +02:00			`'answer' => str_replace("\n", "<br />", $question['Answer']),`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`'actions' => button(page_link_to("admin_questions") . '&action=delete&id=' . $question['QID'], _("delete"), 'btn-xs')`
			`];`
mysql to mysqli and a lot of cleanup and mvc 2013-09-18 01:38:36 +02:00			`}`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00
			`return page_with_title(admin_questions_title(), [`
remove html templates 2014-08-23 19:15:10 +02:00			`'<h2>' . _("Unanswered questions") . '</h2>',`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`table([`
remove html templates 2014-08-23 19:15:10 +02:00			`'from' => _("From"),`
			`'question' => _("Question"),`
			`'answer' => _("Answer"),`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`'actions' => ''`
			`], $unanswered_questions_table),`
remove html templates 2014-08-23 19:15:10 +02:00			`'<h2>' . _("Answered questions") . '</h2>',`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`table([`
remove html templates 2014-08-23 19:15:10 +02:00			`'from' => _("From"),`
			`'question' => _("Question"),`
			`'answered_by' => _("Answered by"),`
			`'answer' => _("Answer"),`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`'actions' => ''`
			`], $answered_questions_table)`
			`]);`
#28 begin log 2012-12-26 14:02:27 +01:00			`} else {`
			`switch ($_REQUEST['action']) {`
add basic bootstrap theme 2014-08-22 22:34:13 +02:00			`case 'answer':`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`if (isset($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id'])) {`
make short variable names longer 2016-09-29 12:45:06 +02:00			`$question_id = $_REQUEST['id'];`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`} else {`
#28 begin log 2012-12-26 14:02:27 +01:00			`return error("Incomplete call, missing Question ID.", true);`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`}`

make short variable names longer 2016-09-29 12:45:06 +02:00			$question = sql_select("SELECT * FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
add basic bootstrap theme 2014-08-22 22:34:13 +02:00			`if (count($question) > 0 && $question[0]['AID'] == null) {`
#28 begin log 2012-12-26 14:02:27 +01:00			`$answer = trim(preg_replace("/([^\p{L}\p{P}\p{Z}\p{N}\n]{1,})/ui", '', strip_tags($_REQUEST['answer'])));`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00
#28 begin log 2012-12-26 14:02:27 +01:00			`if ($answer != "") {`
make short variable names longer 2016-09-29 12:45:06 +02:00			sql_query("UPDATE `Questions` SET `AID`='" . sql_escape($user['UID']) . "', `Answer`='" . sql_escape($answer) . "' WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
#28 begin log 2012-12-26 14:02:27 +01:00			`engelsystem_log("Question " . $question[0]['Question'] . " answered: " . $answer);`
replaced header with redirect function 2012-12-30 18:27:45 +01:00			`redirect(page_link_to("admin_questions"));`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`} else {`
			`return error("Enter an answer!", true);`
			`}`
			`} else {`
#28 begin log 2012-12-26 14:02:27 +01:00			`return error("No question found.", true);`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`}`
#28 begin log 2012-12-26 14:02:27 +01:00			`break;`
add basic bootstrap theme 2014-08-22 22:34:13 +02:00			`case 'delete':`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`if (isset($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id'])) {`
make short variable names longer 2016-09-29 12:45:06 +02:00			`$question_id = $_REQUEST['id'];`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`} else {`
#28 begin log 2012-12-26 14:02:27 +01:00			`return error("Incomplete call, missing Question ID.", true);`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`}`

make short variable names longer 2016-09-29 12:45:06 +02:00			$question = sql_select("SELECT * FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
#28 begin log 2012-12-26 14:02:27 +01:00			`if (count($question) > 0) {`
make short variable names longer 2016-09-29 12:45:06 +02:00			sql_query("DELETE FROM `Questions` WHERE `QID`='" . sql_escape($question_id) . "' LIMIT 1");
#28 begin log 2012-12-26 14:02:27 +01:00			`engelsystem_log("Question deleted: " . $question[0]['Question']);`
replaced header with redirect function 2012-12-30 18:27:45 +01:00			`redirect(page_link_to("admin_questions"));`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`} else {`
#28 begin log 2012-12-26 14:02:27 +01:00			`return error("No question found.", true);`
prohibit inline control structures on pages 2016-09-29 10:53:17 +02:00			`}`
#28 begin log 2012-12-26 14:02:27 +01:00			`break;`
			`}`
			`}`
admin questions 2011-06-03 00:22:11 +02:00			`}`
admin_questions: More templates + sql fixes 2011-06-03 20:24:36 +02:00			`?>`