function showChat($project_id) { global $base_URL; $messages = false; $result = mysql_do("SELECT * FROM chat_log WHERE project_id='{$project_id}' ORDER BY created DESC LIMIT 50;"); while ($query_data = mysql_fetch_array($result)) { $messages = true; $this_user = new User(); $this_user->populateFromId($query_data['user_id']); $result_2 = mysql_do("SELECT * FROM users_active WHERE user_id='{$this_user->id}' LIMIT 1;"); while ($query_data_2 = mysql_fetch_array($result_2)) { echo '<p><span class="date">' . $query_data['created'] . '</span> <span class="name"><a href="' . $base_URL . 'profile/' . $this_user->username . '" style="color: #' . $query_data_2['color'] . ';">' . $this_user->name . '</a></span>: <span class="message">' . $query_data['chat'] . '</span></p>'; } } if (!$messages) { echo '<p><span class="none">No chat messages yet.</span></p>'; } }
public function showComments($thread_id) { global $reply_depth; $this->comments = array(); $this->getComments($thread_id); $to_return = FALSE; if (count($this->comments) > 0) { $to_return = TRUE; foreach ($this->comments as $comment_id) { $this_comment = new Comment(); $this_comment->populateFromId($comment_id); $commenter = new User(); $commenter->populateFromId($this_comment->user_id); ?> <div class="comment" style="margin-left: <?php echo $reply_depth * 50; ?> "> <a name="comment_<?php echo $this_comment->id; ?> " /> <p class="by"><a href="<?php echo $base_URL; ?> profile/<?php echo $commenter->username; ?> "><?php echo $commenter->name; ?> </a> <?php if ($thread_id == 0) { ?> writes<?php } else { ?> replies<?php } ?> :</p> <p class="comment"><?php echo nl2br($this_comment->comment); ?> </p> <p class="time"><b>Time:</b> <?php echo $this_comment->created; ?> </p> <p class="classification"><b>Classification:</b> <?php echo $this_comment->classification; ?> </p> <p class="caveat"><b>Caveat:</b> <?php echo $this_comment->caveat; ?> </p> <?php $reply_id = rand(0, 10000000000); ?> <p class="replyTo"><a style="cursor: pointer;" onclick="new Effect.BlindDown(reply<?php echo $reply_id; ?> );">Reply</a></p> <div class="replyToThis" id="reply<?php echo $reply_id; ?> " style="display: none;"> <form method="post" class="edit" action="add_comment_action.php"> <input type="hidden" name="this_url" value="<?php echo $_SERVER['REQUEST_URI']; ?> " /> <input type="hidden" name="user_id" value="<?php echo $active_user->id; ?> " /> <input type="hidden" name="evidence_id" value="<?php echo $this->id; ?> " /> <input type="hidden" name="project_id" value="<?php echo $this->project_id; ?> " /> <input type="hidden" name="hypothesis_id" value="0" /> <input type="hidden" name="reply_to_id" value="<?php echo $this_comment->id; ?> " /> <p><textarea rows="8" name="comment" cols="60"></textarea></p> <p><b>Classification</b> <select name="classification"> <option value="U">Unclassified</option> <option value="C">Confidential</option> <option value="S">Secret</option> <option value="TS">Top Secret</option> </select> <b style="padding-left: 15px;">Caveat</b> <select name="caveat"> <option value="">(No caveat)</option> <option value="FOUO/AIUO">FOUO/AIUO</option> <option value="SI">SI</option> <option value="TK">TK</option> <option value="HCS">HCS</option> <option value="G">G</option> </select></p> <p class="submit"><input class="button" type="submit" value="Add Reply" /></p> </form> </div> </div> <?php $reply_depth++; $this->showComments($this_comment->id); $reply_depth--; } } return $to_return; }
** ** ACH is distributed in the hope that it will be useful, ** but WITHOUT ANY WARRANTY; without even the implied warranty of ** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ** GNU General Public License for more details. ** ** You should have received a copy of the GNU General Public License ** along with Open Source ACH. If not, see <http://www.gnu.org/licenses/>. //////////////////////////////////////////////////////////////////////////////// */ ?> <?php $active_evidence = new Evidence(); $active_evidence->populateFromId($_REQUEST['evidence_id']); $this_user = new User(); $this_user->populateFromId($active_evidence->user_id); ?> <div id="nonEdit"> <p><a onClick="document.getElementById('edit').style.display='block'; document.getElementById('nonEdit').style.display='none';">Edit evidence information</a><?php if ($active_project->user_id == $active_user->id) { ?> |<a style="color: #FF0000; padding-left: 10px;" onclick="javascript:confirm_delete_evidence(<?php echo $active_evidence->id; ?> );">Delete evidence record</a><?php } ?> </p>
public function mailEveryone($subject, $message) { // Sends a message to everyone in the group. $this->getUsers(); for ($i = 0; $i < count($this->users); $i++) { $this_user = new User(); $this_user->populateFromId($this->users[$i]); sendMail($this_user->email, $subject, $message); } }
<form style="margin: 0px;" method="post" class="edit" action="project_ratings_user_action.php"> <input type="hidden" name="project_id" value="<?php echo $active_project->id; ?> "> <p style="margin-bottom: 0px;">View others' personal matrices: <select name="ratings_user_id"><?php $active_project->getUsers(); for ($j = 0; $j < count($active_project->users); $j++) { if ($active_project->users[$j] != $active_user->id) { $this_user = new User(); $this_user->populateFromId($active_project->users[$j]); echo '<option value="' . $this_user->id . '">' . $this_user->name . '</a> '; } } ?> </select> <input type="submit" value="View..." /></p> </form> <?php } ?> </div>
} } if (count($active_project->users) == 0) { echo "None."; } ?> </p> <?php if ($active_project->open == "n") { ?> <p class="otherMembers"><b>View-Only Members:</b> <?php for ($j = 0; $j < count($active_project->users_view_only); $j++) { $this_user = new User(); $this_user->populateFromId($active_project->users_view_only[$j]); echo '<a href=' . $base_URL . '"/profile/' . $this_user->username . '">' . $this_user->name . '</a> '; } if (count($active_project->users_view_only) == 0) { echo "None."; } ?> <span class="showHideInviteViewer" id="showHideInviteViewer"><a class="inviteViewer" onclick="showInviteViewer();">Invite</a></span></p> <div class="inviteViewer" id="inviteViewer" style="display: none;"> <input type="hidden" name="project_id" value="<?php echo $active_project->id; ?>
public function displayInvitationNotices() { echo '<div class="invitationNotices">'; $result = mysql_do("SELECT * FROM invitation_notices WHERE user_id='{$this->id}' AND displayed='n'"); while ($query_data = mysql_fetch_array($result)) { $this_project = new Project(); $this_project->populateFromId($query_data['project_id']); $by_user = new User(); $by_user->populateFromId($query_data['by_user_id']); echo '<p class="' . $query_data['type'] . '">You have been '; if ($query_data['type'] == "approve") { echo 'approved'; } if ($query_data['type'] == "deny") { echo 'denied'; } echo ' access to project <a href="' . $base_URL . 'project/' . $this_project->id . '">' . $this_project->title . '</a> by <a href="' . $base_URL . 'profile/' . $by_user->username . '">' . $by_user->name . '</a>.'; } echo '</div>'; mysql_do("UPDATE invitation_notices SET displayed='y' WHERE user_id='{$this->id}';"); }
} ?> </p> <?php $this_project->getJoinRequests(); if (count($this_project->join_requests) > 0 && in_array($this_project->id, $active_user->owner_of_projects)) { ?> <p class="joinRequests"><b>Join Requests:</b></p> <ul class="joinRequests"> <?php for ($j = 0; $j < count($this_project->join_requests); $j++) { $this_user = new User(); $this_user->populateFromId($this_project->join_requests[$j]); echo '<li><a href="' . $base_URL . 'profile/' . $this_user->username . '">' . $this_user->name . '</a> <a class="approve" href="' . $base_URL . 'joinrequest/' . $this_user->id . '/' . $this_project->id . '/approve">Approve</a> <a class="deny" href="' . $base_URL . 'joinrequest/' . $this_user->id . '/' . $this_project->id . '/deny">Deny</a></li>'; } ?> </ul> <?php } ?> </div> <?php } } ?>
** ** ACH is distributed in the hope that it will be useful, ** but WITHOUT ANY WARRANTY; without even the implied warranty of ** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ** GNU General Public License for more details. ** ** You should have received a copy of the GNU General Public License ** along with Open Source ACH. If not, see <http://www.gnu.org/licenses/>. //////////////////////////////////////////////////////////////////////////////// */ ?> <?php $active_hypothesis = new Hypothesis(); $active_hypothesis->populateFromId($_REQUEST['hypothesis_id']); $this_user = new User(); $this_user->populateFromId($active_hypothesis->user_id); ?> <div id="nonEdit"> <?php if ($active_project->user_id == $active_user->id) { ?> <p><a onClick="document.getElementById('edit').style.display='block'; document.getElementById('nonEdit').style.display='none';">Edit hypothesis information</a> | <?php } if ($active_project->user_id == $active_user->id) { ?> <a style="color: #FF0000;" onclick="javascript:confirm_delete_hypothesis(<?php echo $active_hypothesis->id; ?> );">Delete hypothesis</a></p><?php
** ** You should have received a copy of the GNU General Public License ** along with Open Source ACH. If not, see <http://www.gnu.org/licenses/>. //////////////////////////////////////////////////////////////////////////////// */ include "code/includes.php"; include "parts/includes.php"; $project_id = $_REQUEST['id']; $this_project = new Project(); $this_project->populateFromId($project_id); if ($this_project->open == "y") { $result = mysql_do("INSERT INTO users_in_projects (project_id, user_id) VALUES ('{$project_id}', '{$active_user->id}')"); $this_project->mailEveryone("[ACH] New user in project '" . $this_project->title . "'", "Hello,\r\n\r\n" . $active_user->name . " has joined the project '" . $this_project->title . "':\r\n" . $base_URL . "project/" . $this_project->id . "\r\n\r\n - The ACH Bot"); } else { $result = mysql_do("INSERT INTO join_requests (user_id, project_id) VALUES ('{$active_user->id}', '{$project_id}')"); $project_owner = new User(); $project_owner->populateFromId($this_project->user_id); sendMail($project_owner->email, "[ACH] A user has requested to join your project", "Hello,\r\n\r\n" . $active_user->name . " has requested permission to join your project '" . $this_project->title . "'. To respond, please log into your ACH account here:\r\n" . $base_URL . "\r\n\r\nThanks!\r\n\r\n - The ACH Bot"); } ?> <html> <head> <title>Updating...</title> <meta http-equiv=Refresh content="0; url=project/<?php echo $project_id; ?> "> </head>
** but WITHOUT ANY WARRANTY; without even the implied warranty of ** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ** GNU General Public License for more details. ** ** You should have received a copy of the GNU General Public License ** along with Open Source ACH. If not, see <http://www.gnu.org/licenses/>. //////////////////////////////////////////////////////////////////////////////// */ ?> <h3>Compare User Matrices</h3> <?php $compare_user = new User(); $compare_user->populateFromId($_REQUEST['compare_user_id']); $compare_user_2 = new User(); if ($_REQUEST['compare_user_id_2']) { $compare_user_2->populateFromId($_REQUEST['compare_user_id_2']); ?> <p>Comparing the ratings of <b><?php echo $compare_user->name; ?> </b> with <b><?php echo $compare_user_2->name; ?> </b>.</p> <?php } else { $compare_user_2->populateFromId($active_user->id); ?> <p>Comparing your ratings with <b><?php echo $compare_user->name; ?>
if ($kind == "group") { $active_project->getDiagsGroup(); } else { if ($kind == "compare") { if (isset($_REQUEST['compare_user_id'])) { $compare_user = new User(); $compare_user->populateFromId($_REQUEST['compare_user_id']); $compare_user_2 = new User(); $compare_user_2->populateFromId($_REQUEST['compare_user_id_2']); } $active_project->getDiagsCompare($compare_user, $compare_user_2); } else { if ($kind == "user") { if (isset($_REQUEST['display_user_id'])) { $ratings_user = new User(); $ratings_user->populateFromId($_REQUEST['display_user_id']); } $active_project->getDiagsUser($ratings_user); } else { $active_project->getDiags(); } } } $evidence = array(); $evidence = $active_project->sortByFields($sort_field_1, $sort_field_1_dir, $sort_field_2, $sort_field_2_dir); ?> <table cellspacing="0" cellpadding="0" border="0" class="groupMatrix" id="groupMatrix"><thead><tr><th onclick="sortGroupTable('name');" class="hypothesis cursorHand <?php echo $active_project->getSortArrow("name");
** but WITHOUT ANY WARRANTY; without even the implied warranty of ** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ** GNU General Public License for more details. ** ** You should have received a copy of the GNU General Public License ** along with Open Source ACH. If not, see <http://www.gnu.org/licenses/>. //////////////////////////////////////////////////////////////////////////////// */ include "code/includes.php"; include "parts/includes.php"; $user_id = $_REQUEST['user_id']; $project_id = $_REQUEST['project_id']; $action = $_REQUEST['action']; $this_project = new Project(); $this_project->populateFromId($project_id); $this_user = new User(); $this_user->populateFromId($user_id); if ($active_user->id == $this_project->user_id) { if ($action == "approve") { $this_project->mailEveryone("[ACH] New user in project '" . $this_project->title . "'", "Hello,\r\n\r\n" . $this_user->name . " has joined the project '" . $this_project->title . "':\r\n " . $base_URL . "project/" . $this_project->id . "\r\n\r\n - The ACH Bot"); $result = mysql_do("INSERT INTO users_in_projects (project_id, user_id) VALUES ('{$project_id}', '{$user_id}')"); $result = mysql_do("INSERT INTO invitation_notices (user_id, by_user_id, project_Id, type, message) VALUES ('{$user_id}', '{$active_user->id}', '{$project_id}', 'approve', '');"); sendMail($this_user->email, "[ACH] Project join request approved.", "Hello,\r\n\r\nYou have been approved to join project '" . $this_project->title . "':\r\n " . $base_URL . "project/" . $this_project->id . "\r\n\r\n - The ACH Bot"); } else { if ($action == "deny") { $result = mysql_do("INSERT INTO invitation_notices (user_id, by_user_id, project_Id, type, message) VALUES ('{$user_id}', '{$active_user->id}', '{$project_id}', 'deny', '');"); sendMail($this_user->email, "[ACH] Project join request denied.", "Hello,\r\n\r\nYou have been denied access to project '" . $this_project->title . "'.\r\n\r\n - The ACH Bot"); } } mysql_do("DELETE FROM join_requests WHERE user_id='{$user_id}' AND project_id='{$project_id}'"); } ?>
** it under the terms of the GNU General Public License as published by ** the Free Software Foundation, either version 3 of the License, or ** (at your option) any later version. ** ** ACH is distributed in the hope that it will be useful, ** but WITHOUT ANY WARRANTY; without even the implied warranty of ** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ** GNU General Public License for more details. ** ** You should have received a copy of the GNU General Public License ** along with Open Source ACH. If not, see <http://www.gnu.org/licenses/>. //////////////////////////////////////////////////////////////////////////////// */ include_once "code/includes.php"; $project_id = $_REQUEST['project_id']; $active_users = getActiveUsers($project_id); print_r($active_users); if (empty($active_users)) { echo "No active users."; } ?> <ul> <?php for ($i = 0; $i < count($active_users); $i++) { $this_user = new User(); $this_user->populateFromId($active_users[$i]); echo "<li><p><a class='name' href='" . $base_URL . "profile/" . $this_user->username . "' style='color: #" . $this_user->color . ";'>" . $this_user->name . "</a><br />Viewing: <a href='" . $this_user->last_page . "'>" . $this_user->last_page . "</a></p></li>"; } ?> </ul>
//THIS FILE IS CALLED WHEN COMMENTS ARE POSTED TO MESSAGE BOARDS include "code/includes.php"; include "parts/includes.php"; $previous_page = $_REQUEST['this_url']; $this_comment = new Comment(); foreach ($_REQUEST as $field => $value) { $this_comment->{$field} = addslashes($value); } $this_comment->user_id = $active_user->id; $this_comment->insertNew(); setStatusMessage("Added!"); if ($_REQUEST['reply_to_id'] > 0) { $reply_comment = new Comment(); $reply_comment->populateFromId($_REQUEST['reply_to_id']); $this_user = new User(); $this_user->populateFromId($reply_comment->user_id); sendMail($this_user->email, "[ACH] Someone repied to your comment.", "Hello,\r\n\r\n" . $active_user->name . " has replied to your comment here:\r\n" . $base_URL . $previous_page . "#comment_" . $this_comment->id . "\r\n\r\n - The ACH Bot"); } ?> <html> <head> <title>Updating...</title> <meta http-equiv=Refresh content="0; url=<?php echo $previous_page; ?> #comment_<?php echo $this_comment->id; ?> "> </head>