public function getUpdate($ticketId)
{
$ticket = \App\Ticket::find($ticketId);
$formOptions = [];
$clients = \App\Client::orderBy('name', 'ASC')->get();
$formOptions['client'] = \App\Helpers\FormHelper::objectsToKeyValueArray($clients, 'id', 'name');
$formOptions['client'] = ['' => '--Not Assigned To Client--'] + $formOptions['client'];
$statuses = \App\Status::orderBy('weight', 'ASC')->get();
$formOptions['statuses'] = \App\Helpers\FormHelper::objectsToKeyValueArray($statuses, 'id', 'name');
$formOptions['priorities'] = array_combine(range(1, 10), range(1, 10));
$users = \App\User::all();
$formOptions['users'] = \App\Helpers\FormHelper::objectsToKeyValueArray($users, 'id', 'email');
return view('ticket.edit', ['ticket' => $ticket, 'formOptions' => $formOptions]);
}
public function run()
{
$id = isset($_GET['id']) ? intval($_GET['id']) : 0;
$registered = isset($_GET['registered']);
$changesSaved = isset($_GET['changesSaved']);
$token = TokenHelper::getOrGenerateCSRFToken();
$msg = ["class" => "", "text" => ""];
if ($registered) {
$msg = ["class" => "success", "text" => "Регистрация выполнена"];
} else {
if ($changesSaved) {
$msg = ["class" => "success", "text" => "Изменения сохранены"];
}
}
/* if method is POST then load Student from DB, update it with data
from $_POST and try to save it */
if (FormHelper::isFormSent()) {
if (isset($_COOKIE['auth'])) {
$student = $this->stg->getStudentByAuthToken($_COOKIE['auth']);
} else {
$student = new Student();
}
StudentHelper::fillStudentFromArrayAndCookies($_POST, $student);
if (!TokenHelper::isCSRFTokenSetAndValid()) {
$msg = ["class" => "danger", "text" => "Ошибка. Попробуйте сохранить данные ещё раз"];
} else {
TokenHelper::setCSRFToken($token);
$validator = new StudentValidator($this->stg);
$errors = $validator->validate($student);
if (count($errors) == 0) {
if (FormHelper::isEditable()) {
$redirectSuffix = "&changesSaved=1";
$this->stg->updateStudent($student);
} else {
$redirectSuffix = "®istered=1";
$student->auth = TokenHelper::generateToken();
$this->stg->addStudent($student);
setcookie('auth', $student->auth, time() + 10 * 365 * 24 * 60 * 60, '/', null, false, true);
}
$redirectTo = "student.php?id={$student->id}{$redirectSuffix}";
header("Location: {$redirectTo}");
}
}
} else {
if ($id > 0) {
$student = $this->stg->getStudentById($id);
} else {
if (isset($_COOKIE['auth'])) {
$student = $this->stg->getStudentByAuthToken($_COOKIE['auth']);
} else {
$student = new Student();
}
}
}
if ($student != null) {
if (!isset($_COOKIE['auth']) || isset($student->auth) && $student->auth != "" && $student->auth != $_COOKIE['auth']) {
header("{$_SERVER['SERVER_PROTOCOL']} 403 Access denied");
$errString = "Нет доступа";
include __DIR__ . '/../views/Error.php';
return;
}
if (isset($student->id) && $student->id > 0 || isset($_COOKIE['auth']) && $this->stg->doStudentExists($_COOKIE['auth'])) {
$title = "Студент: {$student->firstName} {$student->lastName}";
$saveButtonText = "Сохранить изменения";
} else {
$title = "Регистрация";
$saveButtonText = "Зарегистрироваться";
}
include __DIR__ . '/../views/ViewStudent.php';
} else {
header("{$_SERVER['SERVER_PROTOCOL']} 404 Student not found");
$errString = "Абитуриент с id={$id} не найден";
include __DIR__ . '/../views/Error.php';
}
}
