2004-12-18 06:06:46 +00:00
< ? php
/********************************************************/
/* code to view and approve new application data */
/********************************************************/
include ( " path.php " );
require ( BASE . " include/ " . " incl.php " );
2005-01-27 15:42:53 +00:00
require ( BASE . " include/ " . " screenshot.php " );
2004-12-18 06:06:46 +00:00
require ( BASE . " include/ " . " tableve.php " );
require ( BASE . " include/ " . " category.php " );
apidb_header ( " Admin Application Data Queue " );
2004-12-29 20:21:31 +00:00
// deny access if not admin
if ( ! havepriv ( " admin " ))
2004-12-18 06:06:46 +00:00
{
2004-12-29 20:21:31 +00:00
errorpage ( " Insufficient privileges. " );
2004-12-18 06:06:46 +00:00
exit ;
}
// shows the list of appdata in queue
if ( ! $_REQUEST [ 'queueId' ])
{
//get available appData
2005-01-12 16:22:55 +00:00
$sQuery = " SELECT * from appDataQueue; " ;
$hResult = query_appdb ( $sQuery );
2004-12-18 06:06:46 +00:00
2005-01-12 16:22:55 +00:00
if ( ! $hResult || ! mysql_num_rows ( $hResult ))
2004-12-18 06:06:46 +00:00
{
//no appData in queue
echo html_frame_start ( " " , " 90% " );
echo '<p><b>The App Data Queue is empty.</b></p>' , " \n " ;
echo '<p>There is nothing for you to do. Check back later.</p>' , " \n " ;
echo html_frame_end ( " " );
}
else
{
//help
echo " <div align=center><table width='90%' border=0 cellpadding=3 cellspacing=0><tr><td> \n \n " ;
2005-01-10 22:15:44 +00:00
echo " <p>This is a list of application data submitted by users. \n " ;
echo " Please inspect carefully this data before accepting it. \n " ;
2004-12-18 06:06:46 +00:00
echo " </td></tr></table></div> \n \n " ;
//show applist
echo html_frame_start ( " " , " 90% " , " " , 0 );
echo " <table width='100%' border=0 cellpadding=3 cellspacing=0> \n \n " ;
echo " <tr class=color4> \n " ;
echo " <td><font color=white>Submission Date</font></td> \n " ;
echo " <td><font color=white>Queue Id</font></td> \n " ;
2005-01-10 22:54:04 +00:00
echo " <td><font color=white>Name (e-mail)</font></td> \n " ;
2004-12-18 06:06:46 +00:00
echo " <td><font color=white>Application Name</font></td> \n " ;
echo " <td><font color=white>Version</font></td> \n " ;
echo " <td><font color=white>Type</font></td> \n " ;
echo " </tr> \n \n " ;
$c = 1 ;
2005-01-12 16:22:55 +00:00
while ( $ob = mysql_fetch_object ( $hResult ))
2004-12-18 06:06:46 +00:00
{
2004-12-19 19:30:27 +00:00
if ( $_SESSION [ 'current' ] -> is_maintainer ( $ob -> queueappId ,
$ob -> queueversionId )
|| havepriv ( " admin " ))
{
2004-12-18 06:06:46 +00:00
if ( $c % 2 == 1 ) { $bgcolor = 'color0' ; } else { $bgcolor = 'color1' ; }
echo " <tr class= $bgcolor > \n " ;
echo " <td> " . date ( " Y-n-t h:i:sa " , $ob -> submitTime ) . " </td> \n " ;
2004-12-23 01:13:26 +00:00
echo " <td><a href='adminAppDataQueue.php?queueId= $ob->queueId '> " . $ob -> queueId . " </a></td> \n " ;
if ( $ob -> userId )
2005-01-10 22:54:04 +00:00
echo " <td> " . lookupRealname ( $ob -> userId ) . " ( " . lookupEmail ( $ob -> userId ) . " )</td> \n " ;
2004-12-18 06:06:46 +00:00
else
echo " <td>Anonymous</td> \n " ;
2004-12-23 01:13:26 +00:00
echo " <td> " . appIdToName ( $ob -> appId ) . " </td> \n " ;
echo " <td> " . versionIdToName ( $ob -> versionId ) . " </td> \n " ;
echo " <td> " . $ob -> type . " </td> \n " ;
2004-12-18 06:06:46 +00:00
echo " </tr> \n \n " ;
$c ++ ;
}
}
echo " </table> \n \n " ;
echo html_frame_end ( " " );
}
} else // shows a particular appdata
{
2004-12-19 19:30:27 +00:00
if ( ! ( havepriv ( " admin " ) ||
$_SESSION [ 'current' ] -> is_maintainer ( $obj_row -> queueAppId ,
$obj_row -> queueVersionId )))
{
2005-01-10 22:15:44 +00:00
errorpage ( " You don't have sufficient privileges to use this page. " );
2004-12-18 06:06:46 +00:00
exit ;
}
2005-01-12 16:22:55 +00:00
$sQuery = " SELECT * FROM appDataQueue WHERE queueId=' " . $_REQUEST [ 'queueId' ] . " ' " ;
$hResult = query_appdb ( $sQuery );
$obj_row = mysql_fetch_object ( $hResult );
2004-12-18 06:06:46 +00:00
if ( ! $_REQUEST [ 'sub' ] == " inside_form " )
{
2004-12-23 01:13:26 +00:00
echo '<form name="qform" action="adminAppDataQueue.php" method="post">' , " \n " ;
2004-12-18 06:06:46 +00:00
// help
echo " <div align=center><table width='90%' border=0 cellpadding=3 cellspacing=0><tr><td> \n \n " ;
echo " Please enter an accurate and personalized reply anytime a submitted scrrenshot is rejected. \n " ;
echo " It is not polite to reject someones attempt at trying to help out without explaining why. \n " ;
echo " </td></tr></table></div> \n \n " ;
// view application details
echo html_frame_start ( " New Application Data Form " , 600 , " " , 0 );
echo " <table width='100%' border=0 cellpadding=2 cellspacing=0> \n " ;
// app name
echo '<tr valign=top><td class=color0><b>App Name</b></td>' , " \n " ;
2004-12-23 01:13:26 +00:00
echo " <td> " . appIdToName ( $obj_row -> appId ) . " </td></tr> \n " ;
2004-12-18 06:06:46 +00:00
// version
echo '<tr valign=top><td class=color0><b>App Version</b></td>' , " \n " ;
2004-12-23 01:13:26 +00:00
echo " <td> " . versionIdToName ( $obj_row -> versionId ) . " </td></tr> \n " ;
2004-12-18 06:06:46 +00:00
//dataDescription
echo '<tr valign=top><td class=color0><b>Description</b></td>' , " \n " ;
2004-12-23 01:13:26 +00:00
echo '<td><textarea name="description" rows=10 cols=35>' . stripslashes ( $obj_row -> description ) . '</textarea></td></tr>' , " \n " ;
2004-12-18 06:06:46 +00:00
//data
2004-12-23 01:13:26 +00:00
if ( $obj_row -> type == " image " )
2004-12-18 06:06:46 +00:00
{
2005-01-27 15:42:53 +00:00
$oScreenshot = new Screenshot ( $obj_row -> queueId , true );
2004-12-18 06:06:46 +00:00
echo '<tr valign=top><td class=color0><b>Submited image</b></td>' , " \n " ;
2004-12-23 01:13:26 +00:00
echo '<td>' ;
2005-01-27 15:42:53 +00:00
$imgSRC = '<img width="' . $oScreenshot -> oThumbnailImage -> width . '" height="' . $oScreenshot -> oThumbnailImage -> height . '" src="../appimage.php?queued=true&id=' . $obj_row -> queueId . '" />' ;
2004-12-23 01:13:26 +00:00
// generate random tag for popup window
$randName = generate_passwd ( 5 );
// set image link based on user pref
2005-01-27 15:42:53 +00:00
$img = '<a href="javascript:openWin(\'../appimage.php?queued=true&id=' . $obj_row -> queueId . '\',\'' . $randName . '\',' . $oScreenshot -> oScreenshotImage -> width . ',' . ( $oScreenshot -> oScreenshotImage -> height + 4 ) . ');">' . $imgSRC . '</a>' ;
2004-12-23 01:13:26 +00:00
if ( loggedin ())
{
if ( $_SESSION [ 'current' ] -> getpref ( " window:screenshot " ) == " no " )
{
2005-01-27 15:42:53 +00:00
$img = '<a href="../appimage.php?queued=true&id=' . $obj_row -> queueId . '">' . $imgSRC . '</a>' ;
2004-12-23 01:13:26 +00:00
}
}
echo $img ;
echo '</td></tr>' , " \n " ;
} elseif ( $obj_row -> type == " url " )
2004-12-18 06:06:46 +00:00
{
echo '<tr valign=top><td class=color0><b>Submitted link</b></td>' , " \n " ;
2004-12-23 01:13:26 +00:00
echo '<td><textarea name="content" rows=10 cols=35>' . stripslashes ( $obj_row -> url ) . '</textarea></td></tr>' , " \n " ;
2004-12-18 06:06:46 +00:00
}
//email response
echo '<tr valign=top><td class=color0><b>Email reply</b></td>' , " \n " ;
echo " <td><textarea name='replyText' rows=10 cols=35>Enter a personalized reason for acceptance or rejection of the submitted application data here</textarea></td></tr> \n " ;
/* Add button */
echo '<tr valign=top><td class=color3 align=center colspan=2>' , " \n " ;
echo '<input type=submit name=add value=" Add data to this application " class=button /> </td></tr>' , " \n " ;
/* Reject button */
echo '<tr valign=top><td class=color3 align=center colspan=2>' , " \n " ;
echo '<input type=submit name=reject value=" Reject this request " class=button /></td></tr>' , " \n " ;
echo '</table>' , " \n " ;
echo '<input type=hidden name="sub" value="inside_form" />' , " \n " ;
echo '<input type=hidden name="queueId" value="' . $_REQUEST [ 'queueId' ] . '" />' , " \n " ;
echo '</form>' ;
} elseif ( $_REQUEST [ 'add' ]) // we accepted the request
{
$statusMessage = " " ;
$goodtogo = 0 ;
2004-12-23 01:13:26 +00:00
if ( $obj_row -> type == " image " )
2004-12-18 06:06:46 +00:00
{
2005-01-12 16:22:55 +00:00
$sQuery = " INSERT INTO appData VALUES (null, " . $obj_row -> appId . " , " . $obj_row -> versionId . " , 'image', " .
2004-12-23 01:13:26 +00:00
" ' " . addslashes ( $_REQUEST [ 'description' ]) . " ', '') " ;
2005-01-12 16:22:55 +00:00
query_appdb ( $sQuery );
2005-01-27 15:42:53 +00:00
$iId = mysql_insert_id ();
2004-12-23 01:13:26 +00:00
// we move the content in the live directory
2005-01-27 15:42:53 +00:00
rename ( " ../data/queued/screenshots/ " . $obj_row -> queueId , " ../data/screenshots/ " . $iId );
rename ( " ../data/queued/screenshots/originals/ " . $obj_row -> queueId , " ../data/screenshots/originals/ " . $iId );
rename ( " ../data/queued/screenshots/thumbnails/ " . $obj_row -> queueId , " ../data/screenshots/thumbnails/ " . $iId );
2004-12-23 01:13:26 +00:00
// we have to update the entry now that we know its name
2005-01-27 15:42:53 +00:00
$sQuery = " UPDATE appData SET url = ' " . $iId . " ' WHERE id = ' " . $iId . " ' " ;
2004-12-23 01:13:26 +00:00
2004-12-18 06:06:46 +00:00
}
2004-12-23 01:13:26 +00:00
elseif ( $obj_row -> type == " url " ) {
$query = " INSERT INTO appData VALUES (null, " . $obj_row -> appId . " , " . $obj_row -> versionId . " , 'url', " .
2004-12-18 06:06:46 +00:00
" ' " . addslashes ( $_REQUEST [ 'description' ]) . " ', ' " . $obj_row -> url . " ') " ;
}
if ( debugging ()) addmsg ( " <p align=center><b>query:</b> $query </p> " , " green " );
2005-01-12 16:22:55 +00:00
if ( query_appdb ( $sQuery ))
2004-12-18 06:06:46 +00:00
{
$statusMessage = " <p>The application data was successfully added into the database</p> \n " ;
//delete the item from the queue
2005-01-12 16:22:55 +00:00
query_appdb ( " DELETE from appDataQueue where queueId = " . $obj_row -> queueId . " ; " );
//Send Status Email
if ( lookupEmail ( $obj_row -> userId ))
{
2004-12-18 06:06:46 +00:00
$ms = " Application Data Request Report \n " ;
$ms .= " ---------------------------------- \n \n " ;
2004-12-23 01:13:26 +00:00
$ms .= " Your submission of an application data for " . appIdToName ( $obj_row -> appId ) . versionIdToName ( $obj_row -> versionId ) . " has been accepted. " ;
2004-12-18 06:06:46 +00:00
$ms .= $_REQUEST [ 'replyText' ];
$ms .= " We appreciate your help in making the Application Database better for all users. \n \n " ;
$ms .= " Thanks! \n " ;
$ms .= " -The AppDB admins \n " ;
2004-12-23 01:13:26 +00:00
mail ( stripslashes ( lookupEmail ( $obj_row -> userId )), '[AppDB] Application Data Request Report' , $ms );
2005-01-12 16:22:55 +00:00
}
2004-12-18 06:06:46 +00:00
2005-01-12 16:22:55 +00:00
//done
echo html_frame_start ( " Submit App Data " , " 600 " );
echo " <p><b> $statusMessage </b></p> \n " ;
}
2004-12-18 06:06:46 +00:00
} elseif ( $_REQUEST [ 'reject' ])
{
if ( lookupEmail ( $obj_row -> userId ))
{
$ms = " Application Data Request Report \n " ;
$ms .= " ---------------------------------- \n \n " ;
$ms .= " Your submission of an application data for " . appIdToName ( $obj_row -> appId ) . versionIdToName ( $obj_row -> versionId ) . " was rejected. " ;
$ms .= $_REQUEST [ 'replyText' ];
$ms .= " " ;
$ms .= " -The AppDB admins \n " ;
2004-12-23 01:13:26 +00:00
mail ( stripslashes ( lookupEmail ( $obj_row -> userId )), '[AppDB] Application Data Request Report' , $ms );
2004-12-18 06:06:46 +00:00
}
//delete main item
2005-01-12 16:22:55 +00:00
$sQuery = " DELETE from appDataQueue where queueId = " . $obj_row -> queueId . " ; " ;
2004-12-23 01:13:26 +00:00
unlink ( " ../data/queued/screenshots/ " . $obj_row -> queueId );
2005-01-27 15:42:53 +00:00
unlink ( " ../data/queued/screenshots/originals/ " . $obj_row -> queueId );
unlink ( " ../data/queued/screenshots/thumbnails/ " . $obj_row -> queueId );
2004-12-23 01:13:26 +00:00
2005-01-12 16:22:55 +00:00
$hResult = query_appdb ( $sQuery );
2004-12-18 06:06:46 +00:00
echo html_frame_start ( " Delete application data submission " , 400 , " " , 0 );
2005-01-12 16:22:55 +00:00
if ( $result )
2004-12-18 06:06:46 +00:00
{
//success
echo " <p>Application data was successfully deleted from the Queue.</p> \n " ;
}
}
}
echo html_frame_end ( " " );
echo html_back_link ( 1 , 'adminAppDataQueue.php' );
apidb_footer ();
?>
