engelsystem/includes/pages/user_news.php

182 lines
6.8 KiB
PHP
Raw Normal View History

2011-06-02 01:45:46 +02:00
<?php
2017-01-02 03:57:23 +01:00
function user_news_comments_title()
{
return _("News comments");
2013-11-25 21:56:56 +01:00
}
2017-01-02 03:57:23 +01:00
function news_title()
{
return _("News");
2013-11-25 21:04:58 +01:00
}
2017-01-02 03:57:23 +01:00
function meetings_title()
{
return _("Meetings");
2013-11-25 21:04:58 +01:00
}
2017-01-02 03:57:23 +01:00
function user_meetings()
{
global $DISPLAY_NEWS;
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$html = '<div class="col-md-12"><h1>' . meetings_title() . '</h1>' . msg();
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['page']) && preg_match("/^[0-9]{1,}$/", $_REQUEST['page'])) {
$page = $_REQUEST['page'];
} else {
2017-01-02 03:57:23 +01:00
$page = 0;
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$news = sql_select("SELECT * FROM `News` WHERE `Treffen`=1 ORDER BY `Datum` DESC LIMIT " . sql_escape($page * $DISPLAY_NEWS) . ", " . sql_escape($DISPLAY_NEWS));
foreach ($news as $entry) {
$html .= display_news($entry);
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$dis_rows = ceil(sql_num_query("SELECT * FROM `News`") / $DISPLAY_NEWS);
$html .= '<div class="text-center">' . '<ul class="pagination">';
2017-01-02 15:43:36 +01:00
for ($i = 0; $i < $dis_rows; $i++) {
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['page']) && $i == $_REQUEST['page']) {
$html .= '<li class="active">';
2017-01-02 15:43:36 +01:00
} elseif (!isset($_REQUEST['page']) && $i == 0) {
2017-01-02 03:57:23 +01:00
$html .= '<li class="active">';
} else {
$html .= '<li>';
}
$html .= '<a href="' . page_link_to("user_meetings") . '&page=' . $i . '">' . ($i + 1) . '</a></li>';
}
2017-01-02 03:57:23 +01:00
$html .= '</ul></div></div>';
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
return $html;
2011-06-03 06:47:35 +02:00
}
2017-01-02 03:57:23 +01:00
function display_news($news)
{
global $privileges, $page;
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$html = '';
$html .= '<div class="panel' . ($news['Treffen'] == 1 ? ' panel-info' : ' panel-default') . '">';
$html .= '<div class="panel-heading">';
$html .= '<h3 class="panel-title">' . ($news['Treffen'] == 1 ? '[Meeting] ' : '') . ReplaceSmilies($news['Betreff']) . '</h3>';
$html .= '</div>';
$html .= '<div class="panel-body">' . ReplaceSmilies(nl2br($news['Text'])) . '</div>';
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$html .= '<div class="panel-footer text-muted">';
if (in_array("admin_news", $privileges)) {
2017-01-02 15:43:36 +01:00
$html .= '<div class="pull-right">'
. button_glyph(page_link_to("admin_news") . '&action=edit&id=' . $news['ID'], 'edit', 'btn-xs')
. '</div>';
2017-01-02 03:57:23 +01:00
}
$html .= '<span class="glyphicon glyphicon-time"></span> ' . date("Y-m-d H:i", $news['Datum']) . '&emsp;';
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$user_source = User($news['UID']);
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$html .= User_Nick_render($user_source);
if ($page != "news_comments") {
$html .= '&emsp;<a href="' . page_link_to("news_comments") . '&nid=' . $news['ID'] . '"><span class="glyphicon glyphicon-comment"></span> ' . _("Comments") . ' &raquo;</a> <span class="badge">' . sql_num_query("SELECT * FROM `NewsComments` WHERE `Refid`='" . sql_escape($news['ID']) . "'") . '</span>';
}
$html .= '</div>';
$html .= '</div>';
return $html;
2011-06-02 01:45:46 +02:00
}
2017-01-02 03:57:23 +01:00
function user_news_comments()
{
global $user;
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$html = '<div class="col-md-12"><h1>' . user_news_comments_title() . '</h1>';
2017-01-02 15:43:36 +01:00
if (
isset($_REQUEST["nid"])
&& preg_match("/^[0-9]{1,}$/", $_REQUEST['nid'])
&& sql_num_query("SELECT * FROM `News` WHERE `ID`='" . sql_escape($_REQUEST['nid']) . "' LIMIT 1") > 0
) {
2017-01-02 03:57:23 +01:00
$nid = $_REQUEST["nid"];
list($news) = sql_select("SELECT * FROM `News` WHERE `ID`='" . sql_escape($nid) . "' LIMIT 1");
if (isset($_REQUEST["text"])) {
$text = preg_replace("/([^\p{L}\p{P}\p{Z}\p{N}\n]{1,})/ui", '', strip_tags($_REQUEST['text']));
sql_query("INSERT INTO `NewsComments` (`Refid`, `Datum`, `Text`, `UID`) VALUES ('" . sql_escape($nid) . "', '" . date("Y-m-d H:i:s") . "', '" . sql_escape($text) . "', '" . sql_escape($user["UID"]) . "')");
engelsystem_log("Created news_comment: " . $text);
$html .= success(_("Entry saved."), true);
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$html .= display_news($news);
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$comments = sql_select("SELECT * FROM `NewsComments` WHERE `Refid`='" . sql_escape($nid) . "' ORDER BY 'ID'");
foreach ($comments as $comment) {
$user_source = User($comment['UID']);
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$html .= '<div class="panel panel-default">';
$html .= '<div class="panel-body">' . nl2br($comment['Text']) . '</div>';
$html .= '<div class="panel-footer text-muted">';
$html .= '<span class="glyphicon glyphicon-time"></span> ' . $comment['Datum'] . '&emsp;';
$html .= User_Nick_render($user_source);
$html .= '</div>';
$html .= '</div>';
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$html .= '<hr /><h2>' . _("New Comment:") . '</h2>';
$html .= form([
2017-01-02 15:43:36 +01:00
form_textarea('text', _("Message"), ''),
form_submit('submit', _("Save"))
], page_link_to('news_comments') . '&nid=' . $news['ID']);
2017-01-02 03:57:23 +01:00
} else {
$html .= _("Invalid request.");
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
return $html . '</div>';
2011-06-03 05:12:50 +02:00
}
2011-06-02 01:45:46 +02:00
2017-01-02 03:57:23 +01:00
function user_news()
{
global $DISPLAY_NEWS, $privileges, $user;
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$html = '<div class="col-md-12"><h1>' . news_title() . '</h1>' . msg();
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_POST["text"]) && isset($_POST["betreff"]) && in_array("admin_news", $privileges)) {
2017-01-02 15:43:36 +01:00
if (!isset($_POST["treffen"]) || !in_array("admin_news", $privileges)) {
2017-01-02 03:57:23 +01:00
$_POST["treffen"] = 0;
}
sql_query("INSERT INTO `News` (`Datum`, `Betreff`, `Text`, `UID`, `Treffen`) " . "VALUES ('" . sql_escape(time()) . "', '" . sql_escape($_POST["betreff"]) . "', '" . sql_escape($_POST["text"]) . "', '" . sql_escape($user['UID']) . "', '" . sql_escape($_POST["treffen"]) . "');");
engelsystem_log("Created news: " . $_POST["betreff"] . ", treffen: " . $_POST["treffen"]);
success(_("Entry saved."));
redirect(page_link_to('news'));
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['page']) && preg_match("/^[0-9]{1,}$/", $_REQUEST['page'])) {
$page = $_REQUEST['page'];
} else {
$page = 0;
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$news = sql_select("SELECT * FROM `News` ORDER BY `Datum` DESC LIMIT " . sql_escape($page * $DISPLAY_NEWS) . ", " . sql_escape($DISPLAY_NEWS));
foreach ($news as $entry) {
$html .= display_news($entry);
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$dis_rows = ceil(sql_num_query("SELECT * FROM `News`") / $DISPLAY_NEWS);
$html .= '<div class="text-center">' . '<ul class="pagination">';
2017-01-02 15:43:36 +01:00
for ($i = 0; $i < $dis_rows; $i++) {
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['page']) && $i == $_REQUEST['page']) {
$html .= '<li class="active">';
2017-01-02 15:43:36 +01:00
} elseif (!isset($_REQUEST['page']) && $i == 0) {
2017-01-02 03:57:23 +01:00
$html .= '<li class="active">';
} else {
$html .= '<li>';
}
$html .= '<a href="' . page_link_to("news") . '&page=' . $i . '">' . ($i + 1) . '</a></li>';
}
2017-01-02 03:57:23 +01:00
$html .= '</ul></div>';
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (in_array("admin_news", $privileges)) {
$html .= '<hr />';
$html .= '<h2>' . _("Create news:") . '</h2>';
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$html .= form([
2017-01-02 15:43:36 +01:00
form_text('betreff', _("Subject"), ''),
form_textarea('text', _("Message"), ''),
form_checkbox('treffen', _("Meeting"), false, 1),
form_submit('submit', _("Save"))
]);
2017-01-02 03:57:23 +01:00
}
return $html . '</div>';
2011-06-02 01:45:46 +02:00
}