function display_user($user_id = "", $email_changed = false)
{
global $THEUSER, $PAGE, $DATA, $this_page, $who;
// We're either going to be:
// Displaying the details of a user who's just been edited
// (their user_id will be in $user_id now).
// Viewing THEUSER's own data.
// Viewing someone else's data (their id will be in the GET string
// user_id variable).
// We could do something cleverer so that if THEUSER has sufficient
// privileges we display more data when they're viewing someone else's info
// than what your average punter sees.
// If $user_id is a user id, we've just edited that user's info.
// FIRST: Work out whose info we're going to show.
$edited = false;
// Have we just edited someone's info?
if (is_numeric($user_id) && $user_id == $THEUSER->user_id()) {
// Display this user's just edited info.
$display = "this user";
$edited = true;
} elseif (is_numeric($user_id)) {
// Display someone else's just edited info.
$display = "another user";
$edited = true;
} elseif (is_numeric(get_http_var("u"))) {
// Display someone else's info.
$user_id = get_http_var("u");
$display = "another user";
} elseif ($THEUSER->isloggedin()) {
// Display this user's info.
$display = "this user";
$user_id = $THEUSER->user_id();
} else {
// Nothing to show!
$URL = new URL('userlogin');
$URL->insert(array('ret' => '/user/'));
$loginurl = $URL->generate();
header("Location: {$loginurl}");
exit;
}
// SECOND: Get the data for whoever we're going to show.
$db = new ParlDB();
if ($display == "another user") {
// Viewing someone else's info.
$USER = new USER();
$valid = $USER->init($user_id);
if ($valid && $USER->confirmed() && !$USER->deleted()) {
// Don't want to display unconfirmed or deleted users.
$name = $USER->firstname() . " " . $USER->lastname();
$url = $USER->url();
if ($USER->emailpublic() == true) {
$email = $USER->email();
}
$status = $USER->status();
$registrationtime = $USER->registrationtime();
// Change the page title to reflect whose info we're viewing.
$DATA->set_page_metadata($this_page, "title", "{$name}");
$q = $db->query('select count(*) as c from video_timestamps where deleted=0 and user_id= ' . $USER->user_id());
$video = $q->field(0, 'c');
} else {
// This user_id doesn't exist.
$display = "none";
}
} elseif ($display == "this user") {
// Display THEUSER's info.
$name = $THEUSER->firstname() . " " . $THEUSER->lastname();
$url = $THEUSER->url();
if ($edited) {
// We want to show all the info to the user.
$email = $THEUSER->email();
$emailpublic = $THEUSER->emailpublic() == true ? "Yes" : "No";
$optin = $THEUSER->optin() == true ? "Yes" : "No";
$postcode = $THEUSER->postcode();
} else {
// We're showing them how they're seen to other people.
if ($THEUSER->emailpublic()) {
$email = $THEUSER->email();
}
$registrationtime = $THEUSER->registrationtime();
$status = $THEUSER->status();
}
$q = $db->query('select count(*) as c from video_timestamps where deleted=0 and user_id= ' . $THEUSER->user_id());
$video = $q->field(0, 'c');
// Change the page title to make it clear we're viewing THEUSER's
// own info. Make them less worried about other people seeing some of the
// info that shouldn't be public.
$DATA->set_page_metadata($this_page, "title", "Your details");
} else {
// There's nothing to display!
}
// THIRD: Print out what we've got.
$PAGE->page_start();
if ($display != "none") {
$PAGE->stripe_start();
if (isset($registrationtime)) {
// Make registration time more user-friendly.
list($date, $time) = explode(' ', $registrationtime);
$registrationtime = format_date($date, LONGDATEFORMAT);
}
if ($edited && (!$email_changed || $display == 'another user')) {
print "\t\t\t\t<p><strong>" . ucfirst($who) . " details have been updated:</strong></p>\n";
} elseif ($edited && $email_changed) {
print "\t\t\t\t<p><strong>" . ucfirst($who) . " details have been updated and we've sent a confirmation email to your new email address:</strong></p>\n";
}
if ($this_page == 'userviewself' && !$edited) {
$EDITURL = new URL('useredit');
?>
<p><strong>This is how other people see you.</strong> <a href="<?php
echo $EDITURL->generate();
?>
">Edit your details</a>.</p>
<?php
}
?>
<div class="row">
<span class="label">Name</span>
<span class="formw"><?php
if (substr($name, -3) == ' MP') {
print '<a href="/mp/' . make_member_url(substr($name, 0, -3)) . '">';
}
echo _htmlentities($name);
if (substr($name, -3) == ' MP') {
print '</a>';
}
?>
</span>
</div>
<div class="row">
<span class="label">Email</span>
<span class="formw"><?php
if (isset($email)) {
$escaped_email = str_replace('@', '@', _htmlentities($email));
?>
<a href="mailto:<?php
echo $escaped_email . "\">" . $escaped_email;
?>
</a><?php
} else {
?>
Not public<?php
}
?>
</span>
</div>
<?php
if (isset($email) && $email_changed) {
?>
<div class="row">
<strong>We won't update your email till you click the confirmation link we've sent you.</strong>
</div>
<?php
}
if (isset($postcode)) {
if ($postcode == '') {
$postcode = 'none';
}
?>
<div class="row"> <br>
<span class="label">UK Postcode</span>
<span class="formw"><?php
echo _htmlentities($postcode);
?>
<small>(not public)</small></span>
</div>
<?php
}
if (isset($url)) {
if ($url == '') {
$url = 'none';
} else {
$url = '<a href="' . _htmlentities($url) . '">' . _htmlentities($url) . '</a>';
}
?>
<div class="row">
<span class="label">Website</span>
<span class="formw"><?php
echo $url;
?>
</span>
</div>
<?php
}
if (isset($emailpublic)) {
?>
<div class="row"> <br>Let other people see your email address? <strong><?php
echo _htmlentities($emailpublic);
?>
</strong></div>
<?php
}
if (isset($optin)) {
?>
<div class="row">Receive TheyWorkForYou.com emails? <strong><?php
echo _htmlentities($optin);
?>
</strong></div>
<?php
}
if (isset($status)) {
?>
<div class="row">
<span class="label">Status</span>
<span class="formw"><?php
echo _htmlentities($status);
?>
</span>
</div>
<?php
}
if (isset($registrationtime)) {
?>
<div class="row">
<span class="label">Joined</span>
<span class="formw"><?php
echo _htmlentities($registrationtime);
?>
</span>
</div>
<?php
}
if (isset($video)) {
echo '<div class="row"><span class="label">Videos timestamped</span>
<span class="formw">', $video, '</span></div>';
}
if ($edited && $this_page == 'userviewself') {
$EDITURL = new URL('useredit');
$VIEWURL = new URL('userviewself');
?>
<p> <br><a href="<?php
echo $EDITURL->generate();
?>
">Edit again</a> or <a href="<?php
echo $VIEWURL->generate();
?>
">see how others see you</a>.</p>
<?php
}
$PAGE->stripe_end();
# Email alerts
if ($this_page == 'userviewself') {
$PAGE->stripe_start();
print '<h3>Your email alerts</h3>';
\MySociety\TheyWorkForYou\Utility\Alert::manage($THEUSER->email());
$PAGE->stripe_end();
}
if (!$edited) {
$args = array('user_id' => $user_id, 'page' => get_http_var('p'));
$COMMENTLIST = new COMMENTLIST();
$COMMENTLIST->display('user', $args);
}
} else {
$message = array('title' => 'Sorry...', 'text' => "We don't have a user ID, so we can't show you anyone's details.");
$PAGE->message($message);
}
$PAGE->page_end();
}
public function send_already_signedup_email($details)
{
$data = array('to' => $details['email'], 'template' => 'alert_already_signedup');
$criteria = \MySociety\TheyWorkForYou\Utility\Alert::detailsToCriteria($details);
$this->criteria = $criteria;
$merge = array('FIRSTNAME' => 'THEY WORK FOR YOU', 'LASTNAME' => ' ALERT ALREADY SIGNED UP', 'CRITERIA' => $this->criteria_pretty());
$success = send_template_email($data, $merge);
if ($success) {
return true;
} else {
return false;
}
}