<?php
// SPDX-FileCopyrightText: 2021 Andrea Chirulescu <andrea.chirulescu@gmail.com>
// SPDX-FileCopyrightText: 2021 Harald Eilertsen <haraldei@anduin.net>
//
// SPDX-License-Identifier: AGPL-3.0-or-later
if ( !class_exists( 'GiglogAdmin_AdminPage' ) ) {
require_once __DIR__ . '/../../venue.php';
class GiglogAdmin_AdminPage {
static function render_html() {
?>
<div class="wrap">
<h1>Giglog Admin</h1>
<p>The available slots are marked with the green checkbox.
If you click on it, it will be assigned to you and if you no longer
wish to cover that concert, click on the red icon and you will be
unassigned. A mail should be sent to the admin when this happens,
but in order for the accreditation request to be sent, you have to
mail live@eternal-terror.com with the template containing concert
information. There might be some exceptions, but those are discussed
case by case. So whenever you want a concert, assign yourself and send
the template no later than 3 weeks before the concert.</p>
<p>Admin will try to keep the concert status updated so that you know
what the accreditation status is. You will get personal message if this
is really close to the concert date.</p>
<p><?php echo GiglogAdmin_AdminPage::get_filters() ?></p>
<p><?php echo GiglogAdmin_AdminPage::get_concerts() ?></p>
</div>
<?php
if (current_user_can('administrator'))
echo(GiglogAdmin_AdminPage::editforms()); //not sure why it doesn't show without the echo?
}
static function get_allvenues($invenue)
{
$select = '<select name="selectvenueadmin">';
$select .= '<option value="">Please Select..</option>';
foreach ( GiglogAdmin_Venue::all_venues() AS $venue ) {
if($invenue==$venue ->id() ) $select .= '<option value="' . $venue -> id(). '" selected="selected">'.$venue->name();
else $select .= '<option value="' . $venue->id() . '">'. $venue->name();
$select .='</option>';
}
$select .= '</select>';
return($select);
}
static function get_allbands($inband)
{
$select = '<select name="selectband">';
$select .= '<option value="">Please Select..</option>';
foreach ( GiglogAdmin_Band::all_bands() AS $band ) {
if($inband==$band ->id) $select .= '<option value="' . $band -> id. '" selected="selected">'.$band->vname;
else $select .= '<option value="' . $band -> id. '">'.$band->vname;
$select .='</option>';
}
$select .= '</select>';
return($select);
}
static function get_countries()
{
$select = '<select name="selectcountry">';
$select .= '<option value="">Please Select..</option>';
foreach ( GiglogAdmin_Band::all_countries() AS $country ) {
$select .= '<option value="' . $country->id. '">'. $country->cname;
$select .='</option>';
}
$select .= '</select>';
return($select);
}
static function get_filters()
{
$cities = array_merge(["ALL"], GiglogAdmin_Venue::all_cities());
$selected_city =
filter_input(INPUT_POST, "selectcity", FILTER_SANITIZE_SPECIAL_CHARS)
|| $cities[0];
$select = '<form method="POST" action="">FILTER DATA: <select name="selectcity">';
foreach ( $cities AS $city ) {
$select .= '<option value="' . $city . '"' . selected($city, $selected_city) . '>';
$select .= $city . '</option>';
}
$select .= '</select>';
if ( $selected_city != "ALL" ) {
//second drop down for venue
$venues = GiglogAdmin_Venue::venues_in_city($selected_city);
$venue_list = array_merge(
[0, "ALL"],
array_map(
function($v) { return [$v->id(), $v->name()]; },
$venues));
$selected_venue =
filter_input(INPUT_POST, "selectvenue", FILTER_SANITIZE_SPECIAL_CHARS)
|| $venues[0];
$select .= '<select name="selectvenue">';
foreach ( $venues AS $venue ) {
$select .= '<option value="' . $venue[0] . '"' . selected($venue, $selected_venue) . '>';
$select .= $venue[1] . '</option>';
}
$select .= '</select>';
}
//option to select own concerts only
$select .= '<input class="ownconc" type="checkbox" value="1"';
if(isset($_POST['my_checkbox'])) $select .=' checked="checked" ';
$select.=' name="my_checkbox">Show own concerts only</input>';
$select .= '<input type="submit" value="APPLY"></form>';
return $select;
}
static function editforms()
{
$cid = filter_input(INPUT_POST, "cid");
$editing = filter_input(INPUT_POST, "edit") == "EDIT";
if ($editing && !empty($cid)) //A bit overdoing with the checks if concert ID is empty both here and in find_cid. But based on that, things are NULL or not. Better ideas?
$c = GiglogAdmin_Concert::find_cid($cid);
else
$c = new GiglogAdmin_Concert();
$content='<form method="POST" action="" class="concedit" > Form to create/edit concerts, bands, venues<br>'
.'<input type="hidden" name="pid" value="' .$c->id(). '" />'
.'<label for="band">Band:</label>'.GiglogAdmin_AdminPage::get_allbands($c->band()).'<br>'
.'<label for="venue">Venue:</label>'.GiglogAdmin_AdminPage::get_allvenues($c->venue()).'<br>'
.'<label for="cdate">Date:</label><input type="date" id="cdate" name="cdate" value="'.$c->cdate().'"><br>'
.'<label for="ticket">Tickets:</label><input type="text" id="ticket" name="ticket" value="'.$c->tickets().'"><br>'
.'<label for="eventurl">Event link:</label><input type="text" id="eventurl" name="eventurl" value="'.$c->eventlink().'"><br>';
// actions differ if we update or create a concert, hence two buttons needed
if ($editing) {
$content.='<p><input type="submit" name="editconcert" value="Edit Concert"></p>';
}
else {
$content.='<p><input type="submit" name="newconcert" value="Create New Concert"></p>';
}
$content.='</form>';
$content.='<form method="POST" action="" class="bandedit" ><br>'
.'<label for="bandname">Band Name:</label><input type="text" id="bandname" name="bandname"><br>'
.'<label for="eventurl">Band Country:</label>'.GiglogAdmin_AdminPage::get_countries().'<br>'
.'<p><input type="submit" name="newband" value="Create New Band"></p>'
.'</form>';
$content.='<form method="POST" action="" class="bandedit" ><br>'
.'<label for="bandname">Venue Name:</label><input type="text" id="venuename" name="venuename"><br>'
.'<label for="eventurl">Venue City:</label><input type="text" id="venuecity" name="venuecity"><br>'
.'<p><input type="submit" name="newvenue" value="Create New Venue"></p>'
.'</form>';
return $content;
}
static function adminactions($concert_id)
{
global $wpdb;
$query = "SELECT id,wpgs_name from wpg_pressstatus" ;
$statuses = $wpdb->get_results($query);
$select =
'<form method="POST" action="">'
. '<input type="hidden" name="cid" value="' . $concert_id . '" />'
. '<select name="selectstatus">';
foreach ( $statuses AS $sts ) {
$select .= '<option value="' . $sts->id . '">' . $sts->wpgs_name . '</option>';
}
$select .=
'</select>'
. '<input type="submit" value="SetStatus">'
. '<input type="submit" name ="edit" value="EDIT">'
. '</form>';
return $select;
}
//function to calculate if the concert has been added in the past 10 days or before that and show a green NEW for the newest rows
static function getpublishstatus($concert_id)
{
global $wpdb;
$date1 = new DateTime("now");
$dsql = "select wpgcl_createddate from wpg_concertlogs where wpgcl_concertid=".$concert_id;
$results = $wpdb->get_results($dsql);
foreach ( $results AS $row ) {
//$x = strtotime($row -> filedate);
$x= date('Y-m-d H:i:s', strtotime($row -> wpgcl_createddate));
$date2 = new DateTime($x, new DateTimeZone('Europe/London'));
$dd = $date2 -> diff($date1) ->format("%a");
}
if ($dd <= 10) return ('<span style="color:green">NEW</span>');
}
static function get_concerts()
{
$hf_user = wp_get_current_user();
$hf_username = $hf_user->user_login;
$roles = ( array ) $hf_user->roles;
global $wpdb;
$content = '<table class="assignit">';
// $content .= '</tr><th>CITY</th><th>ID</th><th>BAND</th><th>VENUE</th><th>DATE</th></tr>';
$content .= '<tr class="assignithrow">
<th>CITY</th><th>BAND</th><th>VENUE</th><th>DATE</th><th> </th>
<th>PHOTO1</th><th>PHOTO2</th><th>TEXT1</th><th>TEXT2</th>
<th>STATUS</th>';
if (current_user_can('administrator')) //($hf_username == 'etadmin')
$content .= '<th>AdminOptions</th>';
$content .= '</tr>';
// Use the submitted "city" if any. Otherwise, use the default/static value.
$cty = filter_input( INPUT_POST, 'selectcity', FILTER_SANITIZE_SPECIAL_CHARS );
$cty = $cty ? $cty: 'ALL';
$venue = filter_input( INPUT_POST, 'selectvenue', FILTER_SANITIZE_SPECIAL_CHARS );
$venue = $venue ? $venue : '0';
$query = "SELECT wpgc.id, wpgb.wpgband_name as band, wpgv.wpgvenue_name as venue, wpgc.wpgconcert_date, wpgc.wpgconcert_tickets, wpgc.wpgconcert_event, wpgv.wpgvenue_city, wpgv.wpgvenue_webpage, wpgps.wpgs_name
FROM wpg_concerts wpgc, wpg_bands wpgb, wpg_venues wpgv, wpg_pressstatus wpgps, wpg_concertlogs wpgcl
where wpgc.band=wpgb.id
and wpgc.venue = wpgv.id
and wpgconcert_date >= CURDATE()
and wpgps.id = wpgcl.wpgcl_status
and wpgcl.wpgcl_concertid=wpgc.id";
$query .= ($cty == "ALL") ? "" : " and wpgv.wpgvenue_city='" .$cty ."'";
$query .= ($venue == "0") ? "" : " and wpgv.id='" .$venue ."'";
$query.= (empty($_POST['my_checkbox'])) ? "": " and (wpgcl_photo1 ='".$hf_username."' or wpgcl_photo2 ='".$hf_username."' or wpgcl_rev1 ='".$hf_username."' or wpgcl_rev2 ='".$hf_username."')";
$query .=" order by wpgv.wpgvenue_city, wpgconcert_date, wpgc.id" ;
$results = $wpdb->get_results($query);
$lastType = '';
foreach ( $results AS $row ) {
$content .= '<tr class="assignitr">';
if($lastType != '' && $lastType != $row->wpgvenue_city) {
$content .= '<td>'.$row->wpgvenue_city.'</td></tr><tr>';
}
if ($lastType == '' ) {
$content .= '<td>'.$row->wpgvenue_city.'</td></tr><tr>';
}
// Modify these to match the database structure
// $content .= '<td>' . $row->id. '</td>';
$content .= '<td></td>';
$content .= '<td>' . $row->band. '</td>';
$content .= '<td>' . $row->venue. '</td>';
$fdate = strtotime($row->wpgconcert_date);
$newformat = date('d.M.Y',$fdate);
//$content .= DATE_FORMAT($fdate,'%d.%b.%Y');
$content .= '<td>' .$newformat. '</td>';
$content .= '<td>'.GiglogAdmin_AdminPage::getpublishstatus($row->id ).'</td>';
$content .= '<td>'.GiglogAdmin_AdminPage::returnuser('photo1', $row->id ).'</td>';
$content .= '<td>'.GiglogAdmin_AdminPage::returnuser('photo2', $row->id ).'</td>';
$content .= '<td>'.GiglogAdmin_AdminPage::returnuser('rev1', $row->id ).'</td>';
$content .= '<td>'.GiglogAdmin_AdminPage::returnuser('rev2', $row->id ).'</td>';
$content .= '<td>'.$row -> wpgs_name.'</td>';
if (current_user_can('administrator')) {
$content .=
'<td class="adminbuttons">'
. GiglogAdmin_AdminPage::adminactions($row->id)
. '</td>';
}
$content .= '</tr>';
$lastType = $row->wpgvenue_city;
}
$content .= '</table>';
// return the table
return $content;
}
static function update()
{
global $wpdb;
if ('POST' !== $_SERVER['REQUEST_METHOD'])
return;
// Use the submitted "city" if any. Otherwise, use the default/static value.
$cty = filter_input( INPUT_POST, 'selectcity', FILTER_SANITIZE_SPECIAL_CHARS );
$cty = $cty ? $cty: 'ALL';
$venue = filter_input( INPUT_POST, 'selectvenue', FILTER_SANITIZE_SPECIAL_CHARS );
$venue = $venue ? $venue : '0';
if(isset($_POST['assignitem']))
{
GiglogAdmin_AdminPage::assignconcert($_POST['pid'],$_POST['cid']);
$url2=$_SERVER['REQUEST_URI'];
header("Refresh: 1; URL=$url2"); //reload page
}
if(isset($_POST['unassignitem']))
{
GiglogAdmin_AdminPage::unassignconcert($_POST['pid'],$_POST['cid']);
$url3=$_SERVER['REQUEST_URI'];
header("Refresh: 1; URL=$url3"); //reload page
}
//handling the admin drop down menu
if(isset($_POST['selectstatus']) && $_POST['edit']!="EDIT" && !empty($_POST['cid']))
{
$usql = "UPDATE wpg_concertlogs SET wpgcl_status=".$_POST['selectstatus']." WHERE wpgcl_concertid=".$_POST['cid'];
$uresults = $wpdb->get_results($usql);
//$url2=$_SERVER['REQUEST_URI']; //doesn't seem to be needed actually, leaving here just in case
//header("Refresh: 1; URL=$url2"); //reload page
}
if(isset($_POST['newconcert']))
{
IF (empty($_POST['selectband']) || empty($_POST['selectvenueadmin']) || empty($_POST['cdate']) || empty($_POST['ticket']) || empty($_POST['eventurl']))
echo '<script language="javascript">alert("You are missing a value, concert was not created"); </script>';
else
{
GiglogAdmin_Concert::find_or_create($_POST['selectband'], $_POST['selectvenueadmin'], $_POST['cdate'], $_POST['ticket'], $_POST['eventurl']);
echo '<script language="javascript">alert("Yey, concert created"); </script>';
}
}
if(isset($_POST['editconcert']))
{
IF (empty($_POST['selectband']) || empty($_POST['selectvenueadmin']) || empty($_POST['cdate']) || empty($_POST['ticket']) || empty($_POST['eventurl']))
echo '<script language="javascript">alert("You are missing a value, concert was not updated"); </script>';
else
{
GiglogAdmin_Concert::updatec($_POST['pid'],$_POST['selectband'], $_POST['selectvenueadmin'], $_POST['cdate'], $_POST['ticket'], $_POST['eventurl']);
echo '<script language="javascript">alert("Yey, concert updated"); </script>';
}
}
if(isset($_POST['newband']))
{
IF (empty($_POST['bandname'])) //country is not checked as it is set to Norway by default
echo '<script language="javascript">alert("You are missing a value, band was not created"); </script>';
else
{
GiglogAdmin_Band::create($_POST['bandname'],$_POST['selectcountry']);
echo '<script language="javascript">alert("Yey, band created"); </script>';
}
}
if(isset($_POST['newvenue']))
{
IF (empty($_POST['venuename']) || empty($_POST['venuecity']))
echo '<script language="javascript">alert("You are missing a value, venue was not created"); </script>';
else
{
GiglogAdmin_Venue::create($_POST['venuename'],$_POST['venuecity']);
echo '<script language="javascript">alert("Yey, venue created"); </script>';
}
}
}
static function assignconcert($p1, $c)
{
global $wpdb;
$hf_user = wp_get_current_user();
$hf_username = $hf_user->user_login;
$to = 'live@eternal-terror.com';
$subject = $hf_username.' has taken '.$p1. 'for a concert with id '.$c;
$body = 'The email body content';
$headers = array('Content-Type: text/html; charset=UTF-8');
if ($p1 == 'photo1') $usql = "UPDATE wpg_concertlogs SET wpgcl_photo1='".$hf_username."' WHERE wpgcl_concertid=".$c;
if ($p1 == 'photo2') $usql = "UPDATE wpg_concertlogs SET wpgcl_photo2='".$hf_username."' WHERE wpgcl_concertid=".$c;
if ($p1 == 'rev1') $usql = "UPDATE wpg_concertlogs SET wpgcl_rev1='".$hf_username."' WHERE wpgcl_concertid=".$c;
if ($p1 == 'rev2') $usql = "UPDATE wpg_concertlogs SET wpgcl_rev2='".$hf_username."' WHERE wpgcl_concertid=".$c;
$uresults = $wpdb->get_results($usql);
$wpdb->insert( 'wpg_logchanges', array (
'id' => '',
'userid' => $hf_username,
'action' => 'assigned '.$p1,
'concertid' => $c));
echo ($wpdb->last_error );
wp_mail( $to, $subject, $body, $headers );
}
static function unassignconcert($p1, $c)
{
global $wpdb;
$hf_user = wp_get_current_user();
$hf_username = $hf_user->user_login;
$to = 'live@eternal-terror.com';
$subject = $hf_username.' has UNASSINED '.$p1. 'for a concert with id '.$c;
$body = 'The email body content';
$headers = array('Content-Type: text/html; charset=UTF-8');
if ($p1 == 'photo1') $usql = "UPDATE wpg_concertlogs SET wpgcl_photo1='' WHERE wpgcl_concertid=".$c;
if ($p1 == 'photo2') $usql = "UPDATE wpg_concertlogs SET wpgcl_photo2='' WHERE wpgcl_concertid=".$c;
if ($p1 == 'rev1') $usql = "UPDATE wpg_concertlogs SET wpgcl_rev1='' WHERE wpgcl_concertid=".$c;
if ($p1 == 'rev2') $usql = "UPDATE wpg_concertlogs SET wpgcl_rev2='' WHERE wpgcl_concertid=".$c;
$uresults = $wpdb->get_results($usql);
$wpdb->insert( 'wpg_logchanges', array (
'id' => '',
'userid' => $hf_username,
'action' => 'unassigned '.$p1,
'concertid' => $c));
echo ($wpdb->last_error );
wp_mail( $to, $subject, $body, $headers );
}
static function returnuser($p1, $c)
{
global $wpdb;
$hf_user = wp_get_current_user();
$hf_username = $hf_user->user_login;
//PHOTO1
if ($p1 == 'photo1')
{
//checking if taken
$vquery0 = "select wpgcl_photo1 from wpg_concertlogs where wpgcl_concertid=".$c ;
$results = $wpdb->get_results($vquery0);
foreach ( $results AS $row ) $x= $row -> wpgcl_photo1;
if ($x !='' and $x!=$hf_username) { return ('<span class="takenby">Taken</span><div class="takenby">Taken by '.$x.'</div>'); }
else
if ($x==$hf_username) //if current user
return ('<form class="unassignit" method="POST" action=""> <input type="hidden" name="cid" value="' . $c. '" /><input type="hidden" name="pid" value="' . $p1. '" /><input type="submit" name="unassignitem" value=""/>
</form>');
else //not taken by anyone
return ('<form method="POST" action=""> <input type="hidden" name="cid" value="' . $c. '" /><input type="hidden" name="pid" value="' . $p1. '" /><input type="submit" name="assignitem" value=""/>
</form>');
}
//PHOTO2
if ($p1 == 'photo2')
{
$vquery0 = "select wpgcl_photo2 from wpg_concertlogs where wpgcl_concertid=".$c ;
$results = $wpdb->get_results($vquery0);
foreach ( $results AS $row ) $x= $row -> wpgcl_photo2;
if ($x !='' and $x!=$hf_username) { return ('<span class="takenby">Taken</span><div class="takenby">Taken by '.$x.'</div>'); }
else
if ($x==$hf_username) //if current user
return ('<form class="unassignit" method="POST" action=""> <input type="hidden" name="cid" value="' . $c. '" /><input type="hidden" name="pid" value="' . $p1. '" /><input type="submit" name="unassignitem" value=""/>
</form>');
else //not taken by anyone
return ('<form method="POST" action=""> <input type="hidden" name="cid" value="' . $c. '" /><input type="hidden" name="pid" value="' . $p1. '" /><input type="submit" name="assignitem" value=""/>
</form>');
}
//TEXT1
if ($p1 == 'rev1')
{
$vquery0 = "select wpgcl_rev1 from wpg_concertlogs where wpgcl_concertid=".$c ;
$results = $wpdb->get_results($vquery0);
foreach ( $results AS $row ) $x= $row -> wpgcl_rev1;
if ($x !='' and $x!=$hf_username) { return('<span class="takenby">Taken</span><div class="takenby">Taken by '.$x.'</div>'); }
else
if ($x==$hf_username) //if current user
return ('<form class="unassignit" method="POST" action=""> <input type="hidden" name="cid" value="' . $c. '" /><input type="hidden" name="pid" value="' . $p1. '" /><input type="submit" name="unassignitem" value=""/>
</form>');
else //not taken by anyone
return ('<form method="POST" action=""> <input type="hidden" name="cid" value="' . $c. '" /><input type="hidden" name="pid" value="' . $p1. '" /><input type="submit" name="assignitem" value=""/>
</form>');
}
//TEXT2
if ($p1 == 'rev2')
{
$vquery0 = "select wpgcl_rev2 from wpg_concertlogs where wpgcl_concertid=".$c ;
$results = $wpdb->get_results($vquery0);
foreach ( $results AS $row ) $x= $row -> wpgcl_rev2;
if ($x !='' and $x!=$hf_username) { return('<span class="takenby">Taken</span><div class="takenby">Taken by '.$x.'</div>'); }
else
if ($x==$hf_username) //if current user
return ('<form class="unassignit" method="POST" action=""> <input type="hidden" name="cid" value="' . $c. '" /><input type="hidden" name="pid" value="' . $p1. '" /><input type="submit" name="unassignitem" value=""/>
</form>');
else //not taken by anyone
return ('<form method="POST" action=""> <input type="hidden" name="cid" value="' . $c. '" /><input type="hidden" name="pid" value="' . $p1. '" /><input type="submit" name="assignitem" value=""/>
</form>');
}
}
}
}
?>