engelsystem/includes/pages/user_messages.php

134 lines
4.8 KiB
PHP
Raw Normal View History

2011-06-02 21:38:19 +02:00
<?php
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
function messages_title()
{
return _("Messages");
2013-11-25 21:04:58 +01:00
}
2017-01-02 03:57:23 +01:00
function user_unread_messages()
{
global $user;
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
if (isset($user)) {
$new_messages = sql_num_query("SELECT * FROM `Messages` WHERE isRead='N' AND `RUID`='" . sql_escape($user['UID']) . "'");
if ($new_messages > 0) {
return ' <span class="badge danger">' . $new_messages . '</span>';
}
}
2017-01-02 03:57:23 +01:00
return '';
2011-06-02 21:38:19 +02:00
}
2017-01-02 03:57:23 +01:00
function user_messages()
{
global $user;
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
if (! isset($_REQUEST['action'])) {
$users = sql_select("SELECT * FROM `User` WHERE NOT `UID`='" . sql_escape($user['UID']) . "' ORDER BY `Nick`");
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
$to_select_data = [
"" => _("Select recipient...")
];
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
foreach ($users as $u) {
$to_select_data[$u['UID']] = $u['Nick'];
}
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
$to_select = html_select_key('to', 'to', $to_select_data, '');
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
$messages = sql_select("SELECT * FROM `Messages` WHERE `SUID`='" . sql_escape($user['UID']) . "' OR `RUID`='" . sql_escape($user['UID']) . "' ORDER BY `isRead`,`Datum` DESC");
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
$messages_table = [
2015-12-29 18:13:05 +01:00
[
'news' => '',
'timestamp' => date("Y-m-d H:i"),
'from' => User_Nick_render($user),
'to' => $to_select,
'text' => form_textarea('text', '', ''),
2017-01-02 03:57:23 +01:00
'actions' => form_submit('submit', _("Save"))
]
2015-12-29 18:13:05 +01:00
];
2017-01-02 03:57:23 +01:00
foreach ($messages as $message) {
$sender_user_source = User($message['SUID']);
$receiver_user_source = User($message['RUID']);
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
$messages_table_entry = [
2014-08-23 17:24:11 +02:00
'new' => $message['isRead'] == 'N' ? '<span class="glyphicon glyphicon-envelope"></span>' : '',
'timestamp' => date("Y-m-d H:i", $message['Datum']),
'from' => User_Nick_render($sender_user_source),
'to' => User_Nick_render($receiver_user_source),
2017-01-02 03:57:23 +01:00
'text' => str_replace("\n", '<br />', $message['Text'])
];
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
if ($message['RUID'] == $user['UID']) {
if ($message['isRead'] == 'N') {
$messages_table_entry['actions'] = button(page_link_to("user_messages") . '&action=read&id=' . $message['id'], _("mark as read"), 'btn-xs');
}
} else {
$messages_table_entry['actions'] = button(page_link_to("user_messages") . '&action=delete&id=' . $message['id'], _("delete message"), 'btn-xs');
}
$messages_table[] = $messages_table_entry;
}
2015-12-29 18:13:05 +01:00
2017-01-02 03:57:23 +01:00
return page_with_title(messages_title(), [
2014-08-23 17:24:11 +02:00
msg(),
sprintf(_("Hello %s, here can you leave messages for other angels"), User_Nick_render($user)),
form([
table([
2014-08-23 17:24:11 +02:00
'new' => _("New"),
'timestamp' => _("Date"),
'from' => _("Transmitted"),
'to' => _("Recipient"),
'text' => _("Message"),
2017-01-02 03:57:23 +01:00
'actions' => ''
], $messages_table)
], page_link_to('user_messages') . '&action=send')
]);
2017-01-02 03:57:23 +01:00
} else {
switch ($_REQUEST['action']) {
2013-11-25 21:04:58 +01:00
case "read":
if (isset($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id'])) {
2017-01-02 03:57:23 +01:00
$message_id = $_REQUEST['id'];
} else {
2017-01-02 03:57:23 +01:00
return error(_("Incomplete call, missing Message ID."), true);
}
2015-12-29 18:13:05 +01:00
2016-09-29 12:45:06 +02:00
$message = sql_select("SELECT * FROM `Messages` WHERE `id`='" . sql_escape($message_id) . "' LIMIT 1");
if (count($message) > 0 && $message[0]['RUID'] == $user['UID']) {
2017-01-02 03:57:23 +01:00
sql_query("UPDATE `Messages` SET `isRead`='Y' WHERE `id`='" . sql_escape($message_id) . "' LIMIT 1");
redirect(page_link_to("user_messages"));
} else {
2017-01-02 03:57:23 +01:00
return error(_("No Message found."), true);
}
break;
2015-12-29 18:13:05 +01:00
2013-11-25 21:04:58 +01:00
case "delete":
if (isset($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id'])) {
2017-01-02 03:57:23 +01:00
$message_id = $_REQUEST['id'];
} else {
2017-01-02 03:57:23 +01:00
return error(_("Incomplete call, missing Message ID."), true);
}
2015-12-29 18:13:05 +01:00
2016-09-29 12:45:06 +02:00
$message = sql_select("SELECT * FROM `Messages` WHERE `id`='" . sql_escape($message_id) . "' LIMIT 1");
if (count($message) > 0 && $message[0]['SUID'] == $user['UID']) {
2017-01-02 03:57:23 +01:00
sql_query("DELETE FROM `Messages` WHERE `id`='" . sql_escape($message_id) . "' LIMIT 1");
redirect(page_link_to("user_messages"));
} else {
2017-01-02 03:57:23 +01:00
return error(_("No Message found."), true);
}
break;
2015-12-29 18:13:05 +01:00
2013-11-25 21:04:58 +01:00
case "send":
2014-01-07 15:50:16 +01:00
if (Message_send($_REQUEST['to'], $_REQUEST['text']) === true) {
2017-01-02 03:57:23 +01:00
redirect(page_link_to("user_messages"));
} else {
2017-01-02 03:57:23 +01:00
return error(_("Transmitting was terminated with an Error."), true);
}
break;
2015-12-29 18:13:05 +01:00
2013-11-25 21:04:58 +01:00
default:
return error(_("Wrong action."), true);
}
2017-01-02 03:57:23 +01:00
}
2011-06-02 21:38:19 +02:00
}