summaryrefslogtreecommitdiffstats
path: root/includes/admin
Commit message (Collapse)AuthorAgeFilesLines
* Filtered out concerts older than todayAndreaChirulescu2022-03-271-1/+1
| | | | Concerts should show with upper case
* Move update new venue form to class.Harald Eilertsen2022-03-122-18/+20
| | | | Also fix nonce checking.
* Move update edit concert form code to class.Harald Eilertsen2022-03-122-57/+73
| | | | | | Also ensure that nonce checking is performed before both adding and editing concerts, and escape concert data before outputing it in the form.
* Security: Escape event and link urls before using.Harald Eilertsen2022-03-121-2/+2
|
* ConcertsTable: Initialize more properties in constructor.Harald Eilertsen2022-03-121-0/+5
|
* Security: Escape band and venue name in concerts table.Harald Eilertsen2022-03-121-2/+2
|
* ConcertsTable: Initialize page_no on construct.Harald Eilertsen2022-03-121-1/+1
| | | | | Just to make sure it has a default value and is guaranteed initialized befor it is being used.
* Security: Add CSRF checks when updating concerts table.Harald Eilertsen2022-03-121-1/+17
|
* Move code to update concert table to concert table class.Harald Eilertsen2022-03-102-108/+107
| | | | | | Puts everything that belongs together into the same place. This means the concerts table is getting a tad large, but let's refactor that later.
* Drop some unused variables from the admin page update.Harald Eilertsen2022-03-101-7/+0
|
* Refactor gig import code.Harald Eilertsen2022-03-101-63/+64
| | | | | | | | | Split into two functions, and drop the nesting of the ifs. Technically the ifs didn't need to be nested in the first place, since each error case would break the execution flow using `continue` anyways. Throw parsing errors instead of having to keep pass all the state into the function that only need to parse one line.
* Fix misc errors detected by psalm.Harald Eilertsen2022-03-101-17/+34
| | | | | - Lacking type info in venue.php - Potentially dereference null-objects in giglog_admin_page.php
* Security: Escape imported dates before outputing in error messages.Harald Eilertsen2022-03-101-3/+2
|
* Fix more psalm issuesHarald Eilertsen2022-03-093-1/+5
|
* Merge remote-tracking branch 'andrea/andreaschanges' into devHarald Eilertsen2022-03-093-26/+83
|\ | | | | | | And fixup most whitespace issues while at it.
| * import giglog checks for empty values and ivnalid dateAndreaChirulescu2022-03-011-32/+53
| |
| * iCal file download fixes to generate one file per concertAndreaChirulescu2022-02-274-325/+209
| | | | | | | | giglog import fixes to catch errors and ignore old concerts
| * beginning of ical setup with kigkonsults calendarAndreaChirulescu2022-02-211-0/+162
| |
| * Pagination fix to resest page if out of rangeAndreaChirulescu2022-02-131-1/+6
| |
* | Fix various psalm errors.Harald Eilertsen2022-03-094-3/+5
| |
* | Some cleanup in render_concerts_tableHarald Eilertsen2022-02-221-33/+23
|/
* Fix so pagination remembers filters in shortcode too.Harald Eilertsen2022-02-131-4/+4
|
* Remember filter settings when paginating.Harald Eilertsen2022-02-131-33/+60
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This patch does changes quite a bit of how things work under the hood. It changes the filter settings from using POST to using query args in a GET request instead. This has some challenges: 1. The query args from the form will overwrite any query args in the original URL, so we have to keep the query args that was passed in as hidden fields in the form. 2. Since we try to keep the passed in query args, we need to filter out the query args that we expect to set in the form, otherwise query args that are dropped by the form will still be present as hidden args. Not too happy about how this works tbh, but at least it seems to work reasonably well for now. I've also renamed the args set by the form to make the URL a bit nicer, i.e "city" instead of "selectcity" etc for the query arg keys. I've also refactored quite a bit to make the code more manageable. Like using the view helper to create the month selector, so it's consistent with the others, and remembers it's selection. (I also simplified it to simply list the months from jan to dec, instead of starting at the current month. If it's important to keep the old behaviour I'll change it back.) There's a few problems still with this implementation. 1. It only works in the admin-section for now. Not sure why. Probably because shortcodes... 2. In the admin section it gains the `cid` and `pid` query args that should not be there. Not sure why. 3. If we change the filters while being on a page larger than the total number of pages after the filter change, we stay on the page even if it's not a valid page after the filter change. This should be trivial to fix.
* Refactor rendering of the concerts table.Harald Eilertsen2022-02-121-58/+79
| | | | | | | | The main render function was getting too large and difficult to work with. Splitting it up a little to make it more manageable. Also fix styling to make the pagination links fall on one line a bit nicer.
* Fix pagination of concert table.Harald Eilertsen2022-02-121-6/+7
| | | | | | | There's potential vulnerabilities here still, and I'm unsure if get_permalink() is entirely safe to use in this context. Seems to do the right thing, but the docs for the function indicates it has some edge cases.
* More indentation and format if statements.Harald Eilertsen2022-02-121-124/+134
|
* more pagination details fixesAndreaChirulescu2022-02-111-26/+57
|
* css small fixed for table displayAndreaChirulescu2022-02-092-75/+116
| | | | added pagination to concert list
* Added a div to make table scrollable on mobilesAndreaChirulescu2021-09-241-2/+2
|
* Changed order of date column in concerts tableAndreaChirulescu2021-09-191-4/+3
|
* Padding in table so text doesn't connect between cellsAndreaChirulescu2021-09-191-2/+2
| | | | Added a paragraph to have a bit of space under filters
* Add CSRF checks to new venue formHarald Eilertsen2021-09-172-0/+8
|
* Move New Venue form to a separate partial.Harald Eilertsen2021-09-173-9/+45
|
* Return better error for failed CSRF check on import.Harald Eilertsen2021-09-171-2/+2
|
* Add CSRF checks for edit concert form.Harald Eilertsen2021-09-172-1/+9
|
* Clean up, fix and rename db tables.Harald Eilertsen2021-09-161-49/+19
| | | | | | | | | | | | | | | | | This patch got a bit more involved than what was originally planned, but since we're messing with the tables I decided to do it all right away. - Moves the constraint definition to the CREATE TABLE statement for the concerts table. This replaces the existing KEY definition that it had. - Make sure the venues table is created before the concerts table so that the above mentioned constraint definition works. - Rename the tables. Use the wpdb-prefix and make the name a bit prettier. This caused some changes in the Concert and Venue classes, and for slightly silly reasons some test classes. The code actually turned out better (for the most part), but some refactoring can still be done. The column names remains unchanged for now.
* Reinsert created and updated columns for venues.Harald Eilertsen2021-09-161-0/+2
| | | | Was accidentally dropped during rewrite of base schema.
* Facelift of database table creation to use create tables instead of ↵AndreaChirulescu2021-09-131-323/+17
| | | | versioning. First attempt
* tests: Make an actual test for ConcertsTableHarald Eilertsen2021-09-111-3/+3
| | | | | | | | | | | There's a bit of setup to make this work as it should, we need to ensure that the current user and current screen is set to proper values so that the WordPress api's `is_admin()` and `current_user_can()` work as they should. This first test just tests that all the expected forms are being rendered for the admin user accessing the table through the site admin interface.
* Fix indentation again.Harald Eilertsen2021-09-091-8/+10
|
* changes reagding mail sending on concert status changesAndreaChirulescu2021-09-071-14/+13
|
* Fixed wording in mails sent when concerts are assigned/unassingedAndreaChirulescu2021-09-061-4/+29
| | | | Added mailing for when concert status changes. Not sure how to get line break in text mails AND concert status as text
* fixed proper class naming for Apply buttonAndreaChirulescu2021-09-061-1/+1
|
* removed some extra characters that got lost in table HTMLAndreaChirulescu2021-09-061-1/+1
|
* Fix indentation and whitespace, add braces where missing.Harald Eilertsen2021-09-061-41/+46
|
* Merge remote-tracking branch 'andrea/andreaschanges' into devHarald Eilertsen2021-09-051-4/+5
|\
| * added images for checkbox and rediconAndreaChirulescu2021-09-051-4/+5
| | | | | | | | added class for City dropdown form
* | security: Add proper CSRF checking for the import_gigs form.Harald Eilertsen2021-09-051-3/+7
|/
* used auto ident this timeAndreaChirulescu2021-09-051-165/+165
|
* used is_admin() to check if user shoudl see xtra columnsAndreaChirulescu2021-09-051-184/+184
| | | | Re-idented the file