} else { // Redirect to Home if user has no permission to view return $app->response->redirect($app->urlFor('home')); } } else { // Redirect to Home if no valid attachment was found with this id return $app->response->redirect($app->urlFor('home')); } })->name('home.view.attachment'); $app->get('/submission/create/:id', $authenticated(), function ($queueId) use($app) { if (!is_numeric($queueId)) { $app->flash('global', 'Invalid Queue Id'); return $app->response->redirect($app->urlFor('home')); } $userQueues = $app->auth->queues->sortBy('name'); $mycourses = Course::where('id_coordinator', $app->auth->id_user)->with('queues')->get()->sortBy('name'); $queue = Queue::with('elements', 'queueable')->find(intval($queueId)); $app->render('home.view.createSubmission.html.twig', ['userqueues' => $userQueues, 'mycourses' => $mycourses, 'queue' => $queue]); })->name('home.view.submission.create'); $app->post('/submission/addcomment/:id', $authenticated(), function ($subId) use($app) { if (!isset($subId) || !is_numeric($subId)) { $app->flash('global', 'Invalid Submission Id'); return $app->response->redirect($app->urlFor('home')); } $request = $app->request; $comment = trim(strip_tags($request->post('comment'))); if (!empty($comment) && strlen($comment) <= 200) { $submission = Submission::find(intval($subId))->load('user', 'queue', 'queue.queueable'); $submission->comments()->save(new Comment(['comment' => $comment, 'id_user' => $app->auth->id_user, 'created_at' => date('Y-m-d G:i:s')])); // If the user adding the comment is not the submission creator // Notify submission creator of new comment
Name: admin.saveCourse */ $app->post('/admin/course/save', $authorizationCheck(['ADMIN']), function () use($app) { $request = $app->request; $courseId = strip_tags(trim($request->post('courseId'))); $name = strip_tags(trim($request->post('name'))); $description = strip_tags(trim($request->post('description'))); $coordinator = strip_tags(trim($request->post('coordinator'))); // Get the id of the user that is adding this course $addedby = $app->auth->id_user; $v = $app->validation; $v->validate(['name|Name' => [$name, 'required|max(80)'], 'description|Description' => [$description, 'required|max(200)'], 'coordinator|Coordinator' => [$coordinator, 'required']]); if (isset($courseId) && !empty($courseId)) { // Course Id provided, so we are updating an existing course // Ensure user id is valide or redirect user $course = Course::where('id_course', $courseId)->first(); if (empty($course)) { // No course was found with this id, redirect to admin courses page $app->flash('global', 'Invalid Course Id'); return $app->response->redirect($app->urlFor('admin.courses')); } // Check field validation results if ($v->passes()) { $course->update(['id_course' => $courseId, 'name' => $name, 'description' => $description, 'id_coordinator' => $coordinator]); $app->flash('global', 'Course Info Saved'); return $app->response->redirect($app->urlFor('admin.editCourse', array('id' => $course->id_course))); } else { // Update User Validation Failed // // // Retrieve a collection of users that have the 'INSTRUCTOR' role.