Merge pull request #19 from JKoblitz/guests

Projects

Author: Julia Koblitz

addons/auth/add-user.php

@@ -8,7 +8,7 @@
 
 <form action="#" method="post">
 
-    <div class="form-row row-eq-spacing-sm">
+    <div class="form-row row-eq-spacing">
         <div class="col">
             <label class="required" for="username">Username </label>
             <input class="form-control" type="text" id="username" name="username" required>
@@ -20,7 +20,7 @@
     </div>
 
 
-    <div class="form-row row-eq-spacing-sm">
+    <div class="form-row row-eq-spacing">
         <div class="col-sm-2">
             <?php
             $title = $data['academic_title'] ?? '';
@@ -49,7 +49,7 @@
 
 
 
-    <div class="form-row row-eq-spacing-sm">
+    <div class="form-row row-eq-spacing">
         <div class="col-sm">
             <label for="dept"><?= lang('Department', 'Abteilung') ?></label>
             <select name="values[dept]" id="dept" class="form-control">

addons/auth/forgot-password.php

@@ -0,0 +1,40 @@
+<h1>
+    <?= lang('Forgot password', 'Passwort vergessen') ?>
+</h1>
+
+<?php if ($_SERVER['REQUEST_METHOD'] === 'POST') { ?>
+    <form action="#" method="post">
+        <input type="hidden" name="username" value="<?=$user['username']?>">
+        <div class="form-group">
+            <label class="required" for="password"><?= lang('New password', 'Neues Password') ?></label>
+            <input class="form-control" type="password" id="password" name="password" required>
+        </div>
+        <button class="btn"><?= lang('Reset password', 'Passwort zurücksetzen') ?></button>
+    </form>
+<?php } else { ?>
+    <form action="#" method="post">
+        <div class="row row-eq-spacing">
+            <div class="col-sm">
+                <label class="required" for="username">Username </label>
+                <input class="form-control" type="text" id="username" name="values[username]" required>
+            </div>
+            <div class="col-sm">
+                <label for="mail" class="required">Mail</label>
+                <input type="text" name="values[mail]" id="mail" class="form-control" value="" required>
+            </div>
+        </div>
+
+        <div class="row row-eq-spacing">
+            <div class="col-sm">
+                <label class="required" for="first"><?= lang('First name', 'Vorname') ?></label>
+                <input type="text" name="values[first]" id="first" class="form-control" value="" required>
+            </div>
+            <div class="col-sm">
+                <label class="required" for="last"><?= lang('Last name', 'Nachname') ?></label>
+                <input type="text" name="values[last]" id="last" class="form-control" value="" required>
+            </div>
+        </div>
+
+        <button class="btn"><?= lang('Reset password', 'Passwort zurücksetzen') ?></button>
+    </form>
+<?php } ?>

addons/auth/index.php

@@ -8,6 +8,56 @@
 });
 
 
+Route::get('/auth/reset-password', function () {
+    include_once BASEPATH . "/php/init.php";
+    if (isset($_SESSION['loggedin']) && $_SESSION['loggedin'] === true  && isset($_SESSION['username']) && !empty($_SESSION['username'])) {
+        header("Location: " . ROOTPATH . "/profile/$_SESSION[username]");
+        die;
+    }
+    $breadcrumb = [
+        ['name' => lang('Forgot password', 'Passwort vergessen')]
+    ];
+    include BASEPATH . "/header.php";
+
+    include BASEPATH . "/addons/auth/forgot-password.php";
+    include BASEPATH . "/footer.php";
+});
+
+Route::post('/auth/reset-password', function () {
+    include_once BASEPATH . "/php/init.php";
+    if (isset($_SESSION['loggedin']) && $_SESSION['loggedin'] === true  && isset($_SESSION['username']) && !empty($_SESSION['username'])) {
+        header("Location: " . ROOTPATH . "/profile/$_SESSION[username]");
+        die;
+    }
+
+    // check type of request 
+    if (isset($_POST['password']) && isset($_POST['username'])) {
+        // reset password
+        $osiris->persons->updateOne(
+            ['username' => $_POST['username']],
+            ['$set' => ['password' => $_POST['password']]]
+        );
+        header("Location: " . ROOTPATH . "/user/login");
+        die;
+    } else {
+        $values = $_POST['values'];
+        // check if data is correct and user can be found.
+        $user = $osiris->persons->findOne($values);
+        if (empty($user)) {
+            header("Location: " . ROOTPATH . "/auth/reset-password?msg=user+could+not+be+found");
+            die;
+        }
+    }
+
+    $breadcrumb = [
+        ['name' => lang('Forgot password', 'Passwort vergessen')]
+    ];
+    include BASEPATH . "/header.php";
+    include BASEPATH . "/addons/auth/forgot-password.php";
+    include BASEPATH . "/footer.php";
+});
+
+
 Route::post('/auth/new-user', function () {
     include_once BASEPATH . "/php/init.php";
 

addons/guestforms/form.php

@@ -20,7 +20,11 @@
         <i class="ph ph-user-circle-plus text-osiris"></i>
         <?= lang('Guest Forms', 'Gast anmelden') ?>
     </h1>
-
+    <div class="alert danger mb-20">
+    <p class="text-danger lead">
+        Achtung! Dies ist nur ein Prototyp für die Entwicklung! Bitte noch nicht verwenden!
+    </p>
+</div>
     <form action="<?= ROOTPATH ?>/guests/save" method="post" class="">
         <p class="text-muted">ID: <?= $id ?></p>
 
@@ -58,7 +62,7 @@
                     <select class="form-control" id="username" name="values[user]" autocomplete="off" required>
                         <?php
                         foreach ($osiris->persons->find(['username'=>['$ne'=>null]], ['sort' => ["last" => 1]]) as $j) { ?>
-                            <option value="<?= $j['_id'] ?>" <?= $j['_id'] == ($form['supervisor']['user'] ?? $_SESSION['username']) ? 'selected' : '' ?>><?= $j['last'] ?>, <?= $j['first'] ?></option>
+                            <option value="<?= $j['username'] ?>" <?= $j['username'] == ($form['supervisor']['user'] ?? $_SESSION['username']) ? 'selected' : '' ?>><?= $j['last'] ?>, <?= $j['first'] ?></option>
                         <?php } ?>
                     </select>
                 </div>
@@ -196,7 +200,11 @@
         </div>
             <button type="submit" class="btn primary">
                 <i class="ph ph-user-plus"></i>
-                <?= lang('Save guest', 'Gast anlegen') ?>
+                <?php if (empty($form)){ 
+                    echo lang('Save guest', 'Gast anlegen');
+                } else {
+                    echo lang('Save guest', 'Gast speichern');
+                } ?>
             </button>
 
     </form>

addons/guestforms/index.php

@@ -68,51 +68,119 @@
         echo "no values given";
         die;
     }
-    $values = validateValues($_POST['values'], $DB);
+
+    $values = $_POST['values'];
+    // get supervisor first, otherwise users are converted into authors
+    $supervisor = $DB->getPerson($values['user']);
+    if (empty($supervisor)) die('Supervisor does not exist');
+    // remove supervisor from OG dataset
+    unset($values['user']);
+
+    // standardize inputs
+    $values = validateValues($values, $DB);
     // dump($_POST);
     if (!isset($values['id'])) {
         echo "no id given";
         die;
     }
     $id = $values['id'];
 
-    // add information on creating process
-    $values['created'] = date('Y-m-d');
-    $values['created_by'] = strtolower($_SESSION['username']);
+    $finished = false;
+    $guest_exist = $collection->findOne(['id' => $id]);
+    if (!empty($guest_exist)) {
+        $finished = $guest_exist['legal']['general'] ?? false;
+    } else {
+        // add information on creating process
+        $values['created'] = date('Y-m-d');
+        $values['created_by'] = strtolower($_SESSION['username']);
+
+        // check if check boxes are checked
+        $values['legal']['general'] = $values['legal']['general'] ?? false;
+        $values['legal']['data_security'] = $values['legal']['data_security'] ?? false;
+        $values['legal']['data_protection'] = $values['legal']['data_protection'] ?? false;
+        $values['legal']['safety_instruction'] = $values['legal']['safety_instruction'] ?? false;
+
+        // add supervisor information
+        $values['supervisor'] = [
+            "user" => $supervisor['username'],
+            "name" => $supervisor['displayname']
+        ];
+    }
 
-    // check if check boxes are checked
-    $values['legal']['general'] = $values['legal']['general'] ?? false;
-    $values['legal']['data_security'] = $values['legal']['data_security'] ?? false;
-    $values['legal']['data_protection'] = $values['legal']['data_protection'] ?? false;
-    $values['legal']['safety_instruction'] = $values['legal']['safety_instruction'] ?? false;
+    // dump($values, true);
+    if (!$finished) {
+        // send data to guest server
+        $URL = GUEST_SERVER . '/api/post';
+        $postData = $values;
+        $postData['secret'] = GUEST_FORM_SECRET_KEY;
+        $postRes = CallAPI('JSON', $URL, $postData);
+        $postRes = json_decode($postRes, true);
+        if ($postRes['message'] != 'Success') {
+            die($postRes['message']);
+        }
+    }
 
+    // check if guest already exists:
+    if (!empty($guest_exist)) {
+        $id = $guest_exist['id'];
+        $collection->updateOne(
+            ['id' => $id],
+            ['$set' => $values]
+        );
+    } else {
+        $insertOneResult  = $collection->insertOne($values);
+    }
 
-    // add supervisor information
-    $supervisor = $DB->getPerson($values['user']);
-    if (empty($supervisor)) die('Supervisor does not exist');
-    $values['supervisor'] = [
-        "user" => $supervisor['_id'],
-        "name" => $supervisor['displayname']
-    ];
+    header("Location: " . ROOTPATH . "/guests/view/$id?msg=success");
+}, 'login');
 
-    unset($values['user']);
+
+
+
+
+Route::post('/guests/synchronize/([a-z0-9]*)', function ($id) {
+    include_once BASEPATH . "/php/init.php";
+
+    $collection = $osiris->guests;
+
+    // send data to guest server
+    $URL = GUEST_SERVER . '/api/get/' . $id;
+    if (!str_contains($URL, '//')) $URL = "https://" . $URL;
+    $postData = [];
+    $postData['secret'] = GUEST_FORM_SECRET_KEY;
+    $postRes = CallAPI('GET', $URL, $postData);
+    $values = json_decode($postRes, true);
 
     // check if guest already exists:
     $guest_exist = $collection->findOne(['id' => $id]);
     if (!empty($guest_exist)) {
-        $id = $guest_exist['id'];
         $collection->updateOne(
             ['id' => $id],
             ['$set' => $values]
         );
 
         header("Location: " . ROOTPATH . "/guests/view/$id?msg=success");
         die;
+    } else {
+        header("Location: " . ROOTPATH . "/guests?msg=guest+not+found");
+        die;
     }
+}, 'login');
+
+
+/**
+ * Update data points within 
+ */
+Route::post('/guests/update/([a-z0-9]*)', function ($id) {
+    include_once BASEPATH . "/php/init.php";
+
+    $collection = $osiris->guests;
+    $values = $_POST['values'];
 
-    // dump($values);
-    // die;
-    $insertOneResult  = $collection->insertOne($values);
+    $collection->updateOne(
+        ['id' => $id],
+        ['$set' => $values]
+    );
 
     header("Location: " . ROOTPATH . "/guests/view/$id?msg=success");
 }, 'login');

addons/guestforms/list.php

@@ -4,6 +4,13 @@
 </h1>
 
 
+<div class="alert danger mb-20">
+    <p class="text-danger lead">
+        Achtung! Dies ist nur ein Prototyp für die Entwicklung! Bitte noch nicht verwenden!
+    </p>
+</div>
+
+
 <a href="<?= ROOTPATH ?>/guests/new" class="btn osiris">
     <i class="ph ph-plus"></i>
     <?= lang('Add new guest', 'Neuen Gast anmelden') ?>
@@ -19,7 +26,7 @@
             <th><?= lang('Affiliation', 'Affiliation') ?></th>
             <th><?= lang('Time of stay', 'Zeitraum des Aufenthalts') ?></th>
             <th><?= lang('Supervisor', 'Betreuer:in') ?></th>
-            <th><?=lang('Complete', 'Vollständig')?></th>
+            <th><?= lang('Complete', 'Vollständig') ?></th>
         </tr>
     </thead>
     <tbody>
@@ -44,7 +51,7 @@
                 </td>
                 <td>
                     <?php
-                    $finished = (isset($entry['legal']['general']) && $entry['legal']['general']);
+                    $finished = ($entry['legal']['general'] ?? false);
                     echo bool_icon($finished);
                     ?>