engelsystem/includes/pages/admin_questions.php

<?php
function admin_questions_title() {
  return _("Answer questions");
}

function admin_new_questions() {
  global $user, $privileges;

  if (in_array("admin_questions", $privileges)) {
    $new_messages = sql_num_query("SELECT * FROM `Questions` WHERE `AID`=0");

    if ($new_messages > 0)
      return '<p class="info"><a href="' . page_link_to("admin_questions") . '">Es gibt unbeantwortete Fragen!</a></p><hr />';
  }

  return "";
}

function admin_questions() {
  global $user;

  if (!isset ($_REQUEST['action'])) {
    $open_questions = "";
    $questions = sql_select("SELECT * FROM `Questions` WHERE `AID`=0");
    foreach ($questions as $question) {
      $user_source = User($question['UID']);
      if($user_source === false)
        engelsystem_error("Unable to load user.");

      $open_questions .= template_render(
          '../templates/admin_question_unanswered.html', array (
            'question_nick' => User_Nick_render($user_source),
            'question_id'   => $question['QID'],
            'link'          => page_link_to("admin_questions"),
            'question'      => str_replace("\n", '<br />', $question['Question'])
          ));
    }

    $answered_questions = "";
    $questions = sql_select("SELECT * FROM `Questions` WHERE `AID`>0");

    foreach ($questions as $question) {
      $user_source = User($question['UID']);
      if($user_source === false)
        engelsystem_error("Unable to load user.");

      $answer_user_source = User($question['AID']);
      if($answer_user_source === false)
        engelsystem_error("Unable to load user.");

      $answered_questions .= template_render(
          '../templates/admin_question_answered.html', array (
            'question_id'   => $question['QID'],
            'question_nick' => User_Nick_render($user_source),
            'question'      => str_replace("\n", "<br />", $question['Question']),
            'answer_nick'   => User_Nick_render($answer_user_source),
            'answer'        => str_replace("\n", "<br />", $question['Answer']),
            'link'          => page_link_to("admin_questions"),
          ));
    }

    return template_render('../templates/admin_questions.html', array (
      'link' => page_link_to("admin_questions"),
      'open_questions' => $open_questions,
      'answered_questions' => $answered_questions
    ));
  } else {
    switch ($_REQUEST['action']) {
      case 'answer' :
        if (isset ($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id']))
          $id = $_REQUEST['id'];
        else
          return error("Incomplete call, missing Question ID.", true);

        $question = sql_select("SELECT * FROM `Questions` WHERE `QID`=" . sql_escape($id) . " LIMIT 1");
        if (count($question) > 0 && $question[0]['AID'] == "0") {
          $answer = trim(preg_replace("/([^\p{L}\p{P}\p{Z}\p{N}\n]{1,})/ui", '', strip_tags($_REQUEST['answer'])));

          if ($answer != "") {
            sql_query("UPDATE `Questions` SET `AID`=" . sql_escape($user['UID']) . ", `Answer`='" . sql_escape($answer) . "' WHERE `QID`=" . sql_escape($id) . " LIMIT 1");
            engelsystem_log("Question " . $question[0]['Question'] . " answered: " . $answer);
            redirect(page_link_to("admin_questions"));
          } else
            return error("Gib eine Antwort ein!", true);
        } else
          return error("No question found.", true);
        break;
      case 'delete' :
        if (isset ($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id']))
          $id = $_REQUEST['id'];
        else
          return error("Incomplete call, missing Question ID.", true);

        $question = sql_select("SELECT * FROM `Questions` WHERE `QID`=" . sql_escape($id) . " LIMIT 1");
        if (count($question) > 0) {
          sql_query("DELETE FROM `Questions` WHERE `QID`=" . sql_escape($id) . " LIMIT 1");
          engelsystem_log("Question deleted: " . $question[0]['Question']);
          redirect(page_link_to("admin_questions"));
        } else
          return error("No question found.", true);
        break;
    }
  }
}
?>
admin questions 14 years ago			`<?php`
basic gettext integration 11 years ago			`function admin_questions_title() {`
			`return _("Answer questions");`
			`}`

admin questions 14 years ago			`function admin_new_questions() {`
#28 begin log 12 years ago			`global $user, $privileges;`
admin questions 14 years ago
#28 begin log 12 years ago			`if (in_array("admin_questions", $privileges)) {`
			$new_messages = sql_num_query("SELECT * FROM `Questions` WHERE `AID`=0");
admin questions 14 years ago
#28 begin log 12 years ago			`if ($new_messages > 0)`
			`return '<p class="info"><a href="' . page_link_to("admin_questions") . '">Es gibt unbeantwortete Fragen!</a></p><hr />';`
			`}`
admin questions 14 years ago
#28 begin log 12 years ago			`return "";`
admin questions 14 years ago			`}`

			`function admin_questions() {`
#28 begin log 12 years ago			`global $user;`
admin questions 14 years ago
#28 begin log 12 years ago			`if (!isset ($_REQUEST['action'])) {`
			`$open_questions = "";`
			$questions = sql_select("SELECT * FROM `Questions` WHERE `AID`=0");
mysql to mysqli and a lot of cleanup and mvc 11 years ago			`foreach ($questions as $question) {`
			`$user_source = User($question['UID']);`
			`if($user_source === false)`
			`engelsystem_error("Unable to load user.");`

#28 begin log 12 years ago			`$open_questions .= template_render(`
			`'../templates/admin_question_unanswered.html', array (`
mysql to mysqli and a lot of cleanup and mvc 11 years ago			`'question_nick' => User_Nick_render($user_source),`
#28 begin log 12 years ago			`'question_id' => $question['QID'],`
			`'link' => page_link_to("admin_questions"),`
			`'question' => str_replace("\n", '<br />', $question['Question'])`
			`));`
mysql to mysqli and a lot of cleanup and mvc 11 years ago			`}`
admin questions 14 years ago
#28 begin log 12 years ago			`$answered_questions = "";`
			$questions = sql_select("SELECT * FROM `Questions` WHERE `AID`>0");
admin_questions: More templates + sql fixes 14 years ago
mysql to mysqli and a lot of cleanup and mvc 11 years ago			`foreach ($questions as $question) {`
			`$user_source = User($question['UID']);`
			`if($user_source === false)`
			`engelsystem_error("Unable to load user.");`

			`$answer_user_source = User($question['AID']);`
			`if($answer_user_source === false)`
			`engelsystem_error("Unable to load user.");`

#28 begin log 12 years ago			`$answered_questions .= template_render(`
			`'../templates/admin_question_answered.html', array (`
			`'question_id' => $question['QID'],`
mysql to mysqli and a lot of cleanup and mvc 11 years ago			`'question_nick' => User_Nick_render($user_source),`
#28 begin log 12 years ago			`'question' => str_replace("\n", "<br />", $question['Question']),`
mysql to mysqli and a lot of cleanup and mvc 11 years ago			`'answer_nick' => User_Nick_render($answer_user_source),`
#28 begin log 12 years ago			`'answer' => str_replace("\n", "<br />", $question['Answer']),`
			`'link' => page_link_to("admin_questions"),`
			`));`
mysql to mysqli and a lot of cleanup and mvc 11 years ago			`}`
admin questions 14 years ago
#28 begin log 12 years ago			`return template_render('../templates/admin_questions.html', array (`
			`'link' => page_link_to("admin_questions"),`
			`'open_questions' => $open_questions,`
			`'answered_questions' => $answered_questions`
			`));`
			`} else {`
			`switch ($_REQUEST['action']) {`
			`case 'answer' :`
			`if (isset ($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id']))`
			`$id = $_REQUEST['id'];`
			`else`
			`return error("Incomplete call, missing Question ID.", true);`
admin questions 14 years ago
#28 begin log 12 years ago			$question = sql_select("SELECT * FROM `Questions` WHERE `QID`=" . sql_escape($id) . " LIMIT 1");
			`if (count($question) > 0 && $question[0]['AID'] == "0") {`
			`$answer = trim(preg_replace("/([^\p{L}\p{P}\p{Z}\p{N}\n]{1,})/ui", '', strip_tags($_REQUEST['answer'])));`
admin questions 14 years ago
#28 begin log 12 years ago			`if ($answer != "") {`
			sql_query("UPDATE `Questions` SET `AID`=" . sql_escape($user['UID']) . ", `Answer`='" . sql_escape($answer) . "' WHERE `QID`=" . sql_escape($id) . " LIMIT 1");
			`engelsystem_log("Question " . $question[0]['Question'] . " answered: " . $answer);`
replaced header with redirect function 12 years ago			`redirect(page_link_to("admin_questions"));`
#28 begin log 12 years ago			`} else`
			`return error("Gib eine Antwort ein!", true);`
			`} else`
			`return error("No question found.", true);`
			`break;`
			`case 'delete' :`
			`if (isset ($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id']))`
			`$id = $_REQUEST['id'];`
			`else`
			`return error("Incomplete call, missing Question ID.", true);`
admin questions 14 years ago
#28 begin log 12 years ago			$question = sql_select("SELECT * FROM `Questions` WHERE `QID`=" . sql_escape($id) . " LIMIT 1");
			`if (count($question) > 0) {`
			sql_query("DELETE FROM `Questions` WHERE `QID`=" . sql_escape($id) . " LIMIT 1");
			`engelsystem_log("Question deleted: " . $question[0]['Question']);`
replaced header with redirect function 12 years ago			`redirect(page_link_to("admin_questions"));`
#28 begin log 12 years ago			`} else`
			`return error("No question found.", true);`
			`break;`
			`}`
			`}`
admin questions 14 years ago			`}`
admin_questions: More templates + sql fixes 14 years ago			`?>`