function simulate_main()
{
if (isset($_SESSION["simulate"])) {
$user = churchcore_getPersonById($_SESSION["simulate"]);
$user->auth = getUserAuthorization($user->id);
$_SESSION["user"] = $user;
unset($_SESSION["simulate"]);
if (isset($_SESSION["back"])) {
header("Location: ?q=" . $_SESSION["back"]);
unset($_SESSION["back"]);
} else {
header("Location: ?q=" . $_GET["link"]);
}
}
if (isset($_GET["id"])) {
$res = churchcore_getPersonById($_GET["id"]);
if ($res != false) {
_simulateUser($res);
header("Location: ?q=" . $_GET["location"]);
return "";
}
}
$model = new CTForm("SimulateUserForm", "prooveEmail");
$model->setHeader("Benutzer simulieren", t("simulate.information.text") . " " . t("please.enter.valid.email") . ":");
$model->addField("email", "", "EMAIL", "EMail");
$model->addButton("Simulieren", "ok");
return $model->render();
}
function login_main()
{
global $q, $config;
$txt = "";
if (isset($config["admin_message"]) && $config["admin_message"] != "") {
addErrorMessage($config["admin_message"]);
}
if (isset($_GET["message"]) && $_GET["message"] != "") {
addInfoMessage($_GET["message"]);
}
// Sicherstellen, dass keiner eingelogt ist!
if (!userLoggedIn()) {
if (isset($config["login_message"])) {
addInfoMessage($config["login_message"], true);
}
$model = new CTForm("LoginForm", "prooveLogin", "Login");
$model->setHeader(t("login.headline"), t("please.fill.following.fields"));
$model->addField("email", "", "INPUT_REQUIRED", t("email.or.username"), true);
$model->addField("password", "", "PASSWORD", t("password"));
if (!isset($config["show_remember_me"]) || $config["show_remember_me"] == 1) {
$model->addField("rememberMe", "", "CHECKBOX", t("remember.me"));
}
$model->addButton(t("login"), "ok");
if (isset($_GET["newpwd"])) {
$res = db_query("select count(*) c from {cdb_person} where email='" . $_GET["email"] . "' and archiv_yn=0")->fetch();
if ($_GET["email"] == "" || $res->c == 0) {
$txt .= '<div class="alert alert-error"><p>Bitte ein gültige EMail-Adresse angeben,
an die das neue Passwort gesendet werden kann!
Diese Adresse muss im System schon eingerichtet sein.
<p>Falls die E-Mail-Adresse schon eingerichtet sein sollte,
wende Dich bitte an <a href="' . variable_get("site_mail") . '">' . variable_get("site_mail") . '</a>.</div>';
} else {
$newpwd = random_string(8);
$scrambled_password = scramble_password($newpwd);
db_query("update {cdb_person} set password='******' where email='" . $_GET["email"] . "'");
$content = "<h3>Hallo!</h3><p>Ein neues Passwort wurde für die E-Mail-Adresse <i>" . $_GET["email"] . "</i> angefordert: {$newpwd}";
churchcore_systemmail($_GET["email"], "[" . variable_get('site_name') . "] Neues Passwort", $content, true, 1);
churchcore_sendMails(1);
$txt .= '<div class="alert alert-info">Hinweis: Ein neues Passwort wurde nun an <i>' . $_GET["email"] . '</i> gesendet.</div>';
ct_log("Neues Passwort angefordert " . $_GET["email"], 2, "-1", "login");
}
} else {
if (isset($_POST["email"]) && isset($_POST["password"]) && isset($_POST["directtool"])) {
include_once CHURCHCORE . "/churchcore_db.php";
$sql = "select * from {cdb_person} where email=:email and active_yn=1 and archiv_yn=0";
$res = db_query($sql, array(":email" => $_POST["email"]))->fetch();
if ($res == false) {
drupal_json_output(jsend()->fail("Unbekannte E-Mail-Adresse"));
} else {
if (user_check_password($_POST["password"], $res)) {
login_user($res);
ct_log("Login durch Direct-Tool " . $_POST["directtool"] . " mit " . $_POST["email"], 2, "-1", "login");
drupal_json_output(jsend()->success());
} else {
drupal_json_output(jsend()->fail("Falsches Passwort"));
}
}
return;
} else {
if (isset($_GET["loginstr"]) && $_GET["loginstr"] != "" && isset($_GET["id"])) {
// L�sche alte cc_loginurrls die �lter sind als 14 tage
db_query("delete from {cc_loginstr} where DATEDIFF( current_date, create_date ) > 13");
$sql = "select * from {cc_loginstr} where loginstr=:loginstr and person_id=:id";
$res = db_query($sql, array(":loginstr" => $_GET["loginstr"], ":id" => $_GET["id"]))->fetch();
if ($res == false) {
$txt .= '<div class="alert alert-info">Fehler: Der verwendete Login-Link ist nicht mehr aktuell und kann deshalb nicht mehr verwendet werden. Bitte mit E-Mail-Adresse und Passwort anmelden!</div>';
} else {
// Nehme den LoginStr heraus, damit er nicht mi�braucht werden kann.
$sql = "delete from {cc_loginstr} where loginstr=:loginstr and person_id=:id";
$res = db_query($sql, array(":loginstr" => $_GET["loginstr"], ":id" => $_GET["id"]));
ct_log("Login User " . $_GET["id"] . " erfolgreich mit loginstr ", 2, "-1", "login");
$res = churchcore_getPersonById($_GET["id"]);
login_user($res);
}
}
}
}
$txt .= $model->render();
$txt .= '<script>jQuery("#newpwd").click(function(k,a) {
if (confirm("' . t('want.to.receive.new.password') . '")) {
window.location.href="?newpwd=true&email="+jQuery("#LoginForm_email").val()+"&q=' . $q . '";
}
});</script>';
} else {
// Wenn man sich ummelden m�chte und zur Familie geh�rt (also gleiche E-Mail-Adresse)
if (isset($_GET["family_id"])) {
if (isset($_SESSION["family"][$_GET["family_id"]])) {
//logout_current_user();
login_user($_SESSION["family"][$_GET["family_id"]]);
$txt .= '<div class="alert alert-info">Ummelden erfolgreich! Du arbeitest nun mit der Berechtigung von ' . $_SESSION["user"]->vorname . ' ' . $_SESSION["user"]->name . '.</div>';
} else {
$txt .= '<div class="alert alert-info">Ummelden zu Id:' . $_GET["family_id"] . ' hat nicht funktioniert, Session ist leer!</div>';
}
} else {
$txt .= '<div class="alert alert-info"><i>Hinweis:</i> Du bist angemeldet als ' . $_SESSION["user"]->vorname . ', weiter geht es <a href="?q=home">hier</a>!</div>';
}
}
return $txt;
}
/**
* info for pending requests
* TODO: rename churchservice_openservice_rememberdays, f.e. to sendOpenServiceRememberMail
* TODO: could sql queries be reduced?
*/
function churchservice_openservice_rememberdays()
{
global $base_url;
include_once "churchservice_db.php";
$delay = (int) getConf('churchservice_openservice_rememberdays');
$dt = new datetime();
// get ONE eventService needed to send (not yet send or still pending).
// from persons having an email ??und auch gemappt wurde??.
// $sql = "SELECT es.id, p.id p_id, p.vorname, p.email, es.modified_pid,
// IF (password IS NULL AND loginstr IS NULL AND lastlogin IS NULL,1,0) AS invite
// FROM {cs_eventservice} es, {cs_event} e, {cc_cal} cal, {cs_service} s, {cdb_person} p
// WHERE e.valid_yn=1 AND e.cc_cal_id=cal.id AND es.valid_yn=1 AND es.zugesagt_yn=0
// AND es.cdb_person_id IS NOT NULL AND es.service_id=s.id AND s.sendremindermails_yn=1
// AND es.event_id=e.id AND e.Startdate>=current_date
// AND ((es.mailsenddate IS NULL) OR (DATEDIFF(current_date,es.mailsenddate)>=$delay))
// AND p.email!='' AND p.id=es.cdb_person_id LIMIT 1";
$sql = "SELECT es.id, p.id p_id, p.vorname, p.spitzname, p.name, p.email, es.modified_pid,\n IF (password IS NULL AND loginstr IS NULL AND lastlogin IS NULL,1,0) AS invite\n FROM {cs_eventservice} es, {cs_event} e, {cc_cal} cal, {cs_service} s, {cdb_person} p\n WHERE e.valid_yn=1 AND e.cc_cal_id=cal.id AND es.valid_yn=1 AND es.zugesagt_yn=0\n AND es.cdb_person_id IS NOT NULL AND es.service_id=s.id AND s.sendremindermails_yn=1\n AND es.event_id=e.id AND e.Startdate>=current_date\n AND ((es.mailsenddate IS NULL) OR (DATEDIFF(current_date,es.mailsenddate)>={$delay}))\n AND p.email!='' AND p.id=es.cdb_person_id\n GROUP BY p_id";
//group to get each person only once, so querying all together dont interfere with the other services of the same person
$usersToMail = db_query($sql);
$i = 0;
// process only 15 services to prevent too many mails at once
while ($i++ < 15 && ($u = $usersToMail->fetch())) {
$data = array('inviter' => churchcore_getPersonById($u->modified_pid), 'url' => "{$base_url}?q=home&id={$u->p_id}&loginstr=" . churchcore_createOnTimeLoginKey($u->p_id), 'requestedServices' => array(), 'approvedServices' => array(), 'user' => $u, 'nickname' => $u->spitzname ? $u->spitzname : $u->vorname);
// Person was not yet invited -> send invitation.
if ($u->invite == 1) {
include_once CHURCHDB . '/churchdb_ajax.php';
churchdb_invitePersonToSystem($u->p_id);
}
$servicesOfPerson = db_query("\n SELECT es.id AS id, es.zugesagt_yn AS approved, cal.bezeichnung AS event, DATE_FORMAT(e.startdate, '%d.%m.%Y %H:%i') AS datum,\n e.id AS event_id, s.bezeichnung AS service, sg.bezeichnung AS servicegroup, es.mailsenddate\n FROM {cs_eventservice} es, {cs_event} e, {cc_cal} cal, {cs_service} s, {cs_servicegroup} sg\n WHERE e.valid_yn=1 AND cal.id=e.cc_cal_id AND es.valid_yn=1 AND es.cdb_person_id=:p_id\n AND s.sendremindermails_yn=1 AND es.event_id=e.id AND es.service_id=s.id AND sg.id=s.servicegroup_id\n AND e.startdate>=current_date\n ORDER BY e.startdate", array(":p_id" => $u->p_id));
foreach ($servicesOfPerson as $s) {
if ($s->approved == 1) {
$data['approvedServices'][] = $s;
} else {
$data['requestedServices'][] = $s;
}
db_update("cs_eventservice")->fields(array("mailsenddate" => $dt->format('Y-m-d H:i:s')))->condition('id', $s->id, "=")->execute();
}
$lang = getUserLanguage($u->p_id);
$content = getTemplateContent('email/openServiceReminder', 'churchservice', $data, null, $lang);
churchservice_send_mail("[" . getConf('site_name') . "] " . t2($lang, 'there.are.pending.services'), $content, $u->email);
$usersToMail->next();
}
}
/**
* main function for login
* @return string
*/
function login_main()
{
global $q, $config, $user;
$txt = "";
if ($t = getConf("admin_message")) {
addErrorMessage($t);
}
if ($t = getVar("message")) {
addInfoMessage($t);
}
// Sicherstellen, dass keiner eingelogt ist!
if (!userLoggedIn()) {
if ($t = getVar("login_message")) {
addInfoMessage($t, true);
}
$form = new CTForm("LoginForm", "validateLogin", "Login");
$form->setHeader(t("login.headline"), t("please.fill.following.fields"));
$form->addField("email", "", "INPUT_REQUIRED", t("email.or.username"), true);
if (getVar("email")) {
$form->fields["email"]->setValue(getVar("email"));
}
$form->addField("password", "", "PASSWORD", t("password"));
// TODO: when is this false?
if (getConf("show_remember_me", 1) == 1) {
$form->addField("rememberMe", "", "CHECKBOX", t("remember.me"));
}
$form->addButton(t("login"), "ok");
// access through externale tools through GET and additional direct
// POST so no GET is used , so it is not visible in the URL
if (getVar("email", false, $_POST) && getVar("password", false, $_POST) && getVar("directtool", false, $_POST)) {
include_once CHURCHCORE . "/churchcore_db.php";
$email = getVar("email", false, $_POST);
$password = getVar("password", false, $_POST);
$directTool = getVar("directtool", false, $_POST);
$res = db_query("SELECT * FROM {cdb_person}\n WHERE email=:email AND active_yn=1 AND archiv_yn=0", array(":email" => $email))->fetch();
if (!$res) {
drupal_json_output(jsend()->fail(t('email.unknown')));
} else {
if (user_check_password($password, $res)) {
login_user($res, null, false);
ct_log("Login by Direct-Tool {$directTool} with {$email}", 2, "-1", "login");
drupal_json_output(jsend()->success());
} else {
drupal_json_output(jsend()->fail(t('wrong.password')));
}
}
return;
} else {
if (($loginstr = getVar("loginstr")) && ($id = getVar('id'))) {
// delete login strings older then 14 days
db_query("DELETE FROM {cc_loginstr}\n WHERE DATEDIFF( current_date, create_date ) > 13");
$res = db_query("SELECT * FROM {cc_loginstr}\n WHERE loginstr=:loginstr AND person_id=:id", array(":loginstr" => $loginstr, ":id" => $id))->fetch();
if (!$res) {
$txt .= '<div class="alert alert-info">' . t('login.string.too.old') . '</div>';
} else {
// delete current loginKey to prevent misuse
$res = db_query("DELETE FROM {cc_loginstr}\n WHERE loginstr=:loginstr AND person_id=:id", array(":loginstr" => $loginstr, ":id" => $id));
ct_log("Login User {$id} erfolgreich mit loginstr ", 2, "-1", "login");
$res = churchcore_getPersonById($id);
login_user($res);
}
}
}
$txt .= $form->render();
$txt .= '<script>jQuery("#newpwd").click(function(k,a) {
if (confirm("' . t('want.to.receive.new.password') . '")) {
window.location.href="?q=login/newpwd&email="+jQuery("#LoginForm_email").val();
}
});</script>';
} else {
// switch to another family user (same email)
if ($familyId = getVar("family_id")) {
if (isset($_SESSION["family"][$familyId])) {
// logout_current_user();
login_user($_SESSION["family"][$familyId]);
$txt .= '<div class="alert alert-info">' . t('user.succesfully.changed.now.you.work.with.permissions.of.x', $_SESSION["user"]->vorname . ' ' . $_SESSION["user"]->name) . '</div>';
} else {
$txt .= "<div class='alert alert-info'>" . t('user.change.to.familyX.failed.session.is.empty', $familyId) . "</div>";
}
} else {
if (getVar("directtool", false, $_POST)) {
drupal_json_output(jsend()->success("Already logged in"));
} else {
$txt .= '<div class="alert alert-info">' . t('you.are.logged.in.as.x.click.y.to.continue', $_SESSION["user"]->vorname, '<a href="?q=home">' . t('home') . '</a>') . '</div>';
}
}
}
return $txt;
}
/**
* update event service
*
* @param array $params
* @throws CTNoPermission
* @return array
*/
function churchservice_updateEventService($params)
{
global $user, $base_url;
$id = $params["id"];
$name = isset($params["name"]) ? $params["name"] : null;
$cdb_person_id = isset($params["cdb_person_id"]) ? $params["cdb_person_id"] : null;
$reason = isset($params["reason"]) ? $params["reason"] : null;
$zugesagt_yn = $params["zugesagt_yn"];
include_once CHURCHSERVICE . "/churchservice_db.php";
$res = array();
if ($name == "null") {
$name = null;
}
if ($cdb_person_id == "null") {
$cdb_person_id = null;
}
// look if event is still valid
$arr = db_query("SELECT * FROM {cs_eventservice} WHERE id=:id", array(":id" => $id))->fetch();
if (!$arr) {
return "Entry not found, id not valid!";
}
if ($arr->valid_yn != 1 && !isset($params["valid_yn"])) {
return "Eintrag konnte nicht angepasst werden, da veraltet. Bitte neu laden!";
}
// check auth
$auth = churchservice_getAuthorization();
// Es ist trotzdem erlaubt, wenn die PersonId eingetragen ist, dann wurde er ja angefragt
if (!isset($auth["editservice"][$arr->service_id]) && !isset($auth["memberservice"][$arr->service_id]) && !churchService_adminOfEvent($arr->event_id) && $arr->cdb_person_id != $user->id) {
throw new CTNoPermission("editservice", "churchservice");
}
// Wenn die neue �nderung vom gleichen User kommt und noch kein Cron gelaufen ist,
// Oder wenn valid_yn valide ist, denn dann soll es upgedates werden!
// brauchen wir kein neuen Insert, sondern machen nur ein Update.
// Denn wahrscheinlich war es vorher nur ein Versehen.
// TODO: translation correct?
// if changing user is the same as last time and cron had not yet run
// or if valid_yn is valide (update wished), we dont need an insert, only an update,
// because the last edit probably was a mistake
$dt = new datetime();
if ($arr->modified_pid == $user->id && $arr->mailsenddate == null || isset($params["valid_yn"])) {
$valid_yn = 1;
if (isset($params["valid_yn"])) {
$valid_yn = $params["valid_yn"];
}
db_update("cs_eventservice")->fields(array("name" => $name, "cdb_person_id" => $cdb_person_id, "valid_yn" => $valid_yn, "zugesagt_yn" => $zugesagt_yn, "reason" => $reason, "mailsenddate" => null, "modified_date" => $dt->format('Y-m-d H:i:s'), "modified_pid" => $user->id))->condition("id", $id, "=")->execute();
$new_id = $id;
} else {
// new entry for edit
$new_id = db_insert("cs_eventservice")->fields(array("event_id" => $arr->event_id, "service_id" => $arr->service_id, "valid_yn" => 1, "counter" => $arr->counter, "name" => $name, "cdb_person_id" => $cdb_person_id, "zugesagt_yn" => $zugesagt_yn, "reason" => $reason, "modified_date" => $dt->format('Y-m-d H:i:s'), "modified_pid" => $user->id))->execute();
//if all ok set existing entry to old
db_update("cs_eventservice")->fields(array("valid_yn" => 0))->condition("id", $id, "=")->execute();
}
include_once CHURCHCORE . "/churchcore_db.php";
$leader = churchcore_getPersonById($arr->modified_pid);
$event = db_query("SELECT e.startdate datum, c.bezeichnung FROM {cs_event} e, {cc_cal} c\n WHERE e.cc_cal_id=c.id and e.id=:event_id", array(":event_id" => $arr->event_id))->fetch();
$service = churchcore_getTableData("cs_service", "", "id=" . $arr->service_id);
if ($event && $service) {
$service = $service[$arr->service_id];
$subject = "[" . readConf('site_name', "ChurchTools") . "] ";
$txt = "";
// confirm
if ($zugesagt_yn == 1) {
$txt .= t("surname.name.has.approved.name.for.service.x.for.date.event", $user->vorname, $user->name, $service->bezeichnung, $event->datum, $event->bezeichnung, $name);
$subject .= t("surname.name.has.approved.a.request", $user->vorname, $user->name);
} else {
if ($name) {
$txt .= t("surname.name.has.proposed.name.for.service.x.for.date.event", $user->vorname, $user->name, $service->bezeichnung, $event->datum, $event->bezeichnung, $name);
$subject .= t("surname.name.has.proposed.someone", $user->vorname, $user->name);
} else {
$txt .= t("surname.name.has.canceled.the.service.x.for.date.event", $user->vorname, $user->name, $service->bezeichnung, $event->datum, $event->bezeichnung);
$subject .= t("surname.name.has.canceled.a.request", $user->vorname, $user->name);
}
}
if ($reason != null) {
$txt .= "<p>Folgendes wurde als Grund angegeben: " . $reason;
}
ct_notify("service", $arr->service_id, $txt);
if ($leader != null) {
// send mail, if someone other then the inquirer himself confirmed or canceled
//TODO: maybe use asker, better to understand for nonenglish programmers
//TODO: use email template
if (!empty($leader->email) && $user != null && $leader->id != $user->id) {
$setting = churchcore_getUserSettings("churchservice", $leader->id);
if (isset($setting["informInquirer"]) && $setting["informInquirer"] == 1) {
$txt = "<h3>Hallo " . $leader->vorname . ",</h3><p>\n " . $txt;
$txt .= '<p><a href="' . $base_url . '?q=churchservice&id=' . $arr->event_id . '" class="btn btn-primary">Event aufrufen</a>';
churchservice_send_mail($subject, $txt, $leader->email);
}
}
if (!isset($setting["informInquirer"])) {
churchcore_saveUserSetting("churchservice", $leader->id, "informInquirer", 0);
}
}
}
$arr = db_query("SELECT es.*, concat(p.vorname,' ',p.name) as modifieduser FROM {cs_eventservice} es, {cdb_person} p \n WHERE p.id=es.modified_pid and es.id=:id", array(":id" => $new_id))->fetch();
$res["eventservice"] = churchservice_extractEventServiceData($arr);
$res["result"] = true;
return $res;
}
/**
* TODO: too much code in churchresource_updateBooking, split it up
* FIXME: the changes for using email template are breaking logging in case no email is send
* otherwise logging of complete mails dont seems useful => only log important things in a short text?
*
* @param array $params
* @return multitype:multitype:unknown
*/
function churchresource_updateBooking($params, $sendEMails = true)
{
global $base_url, $user;
$oldBooking = getBooking($params["id"]);
$bUser = churchcore_getPersonById($oldBooking->person_id);
$ressources = churchcore_getTableData("cr_resource", "resourcetype_id,sortkey,bezeichnung");
$i = new CTInterface();
$i->setParam("resource_id");
$i->setParam("status_id");
$i->addTypicalDateFields();
$i->setParam("text", false);
$i->setParam("location", false);
$i->setParam("note", false);
if (empty($params["text"])) {
$res = db_query('SELECT text FROM {cr_booking}
WHERE id=:id', array(":id" => $params["id"]))->fetch();
$params["text"] = $res->text;
}
$i->setParam("person_id", false);
$id = db_update("cr_booking")->fields($i->getDBInsertArrayFromParams($params))->condition("id", $params["id"], "=")->execute(false);
$changes = null;
$exceptions = churchcore_getTableData("cr_exception", null, "booking_id=" . $params["id"]);
// look which exceptions are already saved in DB.
if (isset($params["exceptions"])) {
foreach ($params["exceptions"] as $exception) {
$current_exc = null;
// It is not possible to search exceptions by id, because ChurchCal Exc have other IDs
if ($exceptions) {
foreach ($exceptions as $e) {
if (churchcore_isSameDay($e->except_date_start, $exception["except_date_start"]) && churchcore_isSameDay($e->except_date_end, $exception["except_date_end"])) {
$current_exc = $e;
}
}
}
if ($current_exc) {
$exceptions[$current_exc->id]->exists = true;
} else {
$changes["add_exception"][] = $exception;
}
}
}
// delete removed exceptions from DB.
if ($exceptions) {
foreach ($exceptions as $e) {
if (!isset($e->exists)) {
$changes["del_exception"][] = (array) $e;
}
}
}
// get all additions
$additions = churchcore_getTableData("cr_addition", null, "booking_id=" . $params["id"]);
// look which additions are already saved in DB.
if (isset($params["additions"])) {
foreach ($params["additions"] as $addition) {
$current_add = null;
// It is not possible to search additions by id, because ChurchCal adds have other IDs
if ($additions) {
foreach ($additions as $a) {
if (churchcore_isSameDay($a->add_date, $addition["add_date"]) && $a->with_repeat_yn == $addition["with_repeat_yn"]) {
$current_add = $a;
}
}
}
if ($current_add) {
$additions[$current_add->id]->exists = true;
} else {
$changes["add_addition"][] = $addition;
}
}
}
// delete removed additions from DB.
if ($additions) {
foreach ($additions as $a) {
// churchresource_delAddition($a->id);
if (!isset($a->exists)) {
$changes["del_addition"][] = (array) $a;
}
}
}
// save new exceptions
$res_exceptions = array();
$res_additions = array();
$days = array();
$resources = churchcore_getTableData("cr_resource");
//TODO: only get needed resource_id
if ($changes) {
if (isset($changes["add_exception"])) {
foreach ($changes["add_exception"] as $exc) {
// Check, if exception not alreay in DB (only possible when coming from Cal)
$db = db_query("SELECT id FROM {cr_exception}\n WHERE booking_id=:booking_id AND except_date_start=:start", array(":booking_id" => $params["id"], ":start" => $exc["except_date_start"]))->fetch();
if (!$db) {
$id = addException($params["id"], $exc["except_date_start"], $exc["except_date_end"], $user->id);
if (isset($exc["id"])) {
$res_exceptions[$exc["id"]] = $id;
}
$days[] = $exc["except_date_start"];
}
}
if ($sendEMails && getConf("churchresource_send_emails", true) && count($days) && $bUser) {
$data = array('canceled' => true, 'surname' => $bUser->vorname, 'name' => $bUser->name, 'nickname' => $bUser->spitzname ? $bUser->spitzname : $bUser->vorname, 'user' => $user, 'resource' => $resources[$params["resource_id"]]->bezeichnung, 'booking' => $booking, 'days' => implode(", ", $days), 'person' => $bUser, 'contact' => getConf('site_mail'));
$lang = getUserLanguage($oldBooking->person_id);
$content = getTemplateContent('email/bookingRequest', 'churchresource', $data, null, $lang);
churchresource_send_mail("[" . getConf('site_name') . "] " . t2($lang, 'updated.booking.request') . ": " . $params["text"], $content, $bUser->email);
}
}
if (isset($changes["del_exception"])) {
foreach ($changes["del_exception"] as $exc) {
$db = db_query("SELECT id FROM {cr_exception}\n WHERE booking_id=:booking_id AND except_date_start=:start", array(":booking_id" => $params["id"], ":start" => $exc["except_date_start"]))->fetch();
if ($db) {
churchresource_delException(array("id" => $db->id));
}
}
}
if (isset($changes["add_addition"])) {
foreach ($changes["add_addition"] as $add) {
$db = db_query("SELECT id FROM {cr_addition}\n WHERE booking_id=:booking_id AND add_date=:date", array(":booking_id" => $params["id"], ":date" => $add["add_date"]))->fetch();
if (!$db) {
$id = addAddition($params["id"], $add["add_date"], $add["with_repeat_yn"], $user->id);
if (isset($add["id"])) {
$res_additions[$add["id"]] = $id;
}
}
}
}
if (isset($changes["del_addition"])) {
foreach ($changes["del_addition"] as $add) {
$db = db_query("SELECT id FROM {cr_addition}\n WHERE booking_id=:booking_id AND add_date=:date", array(":booking_id" => $params["id"], ":date" => $add["add_date"]))->fetch();
if ($db != false) {
churchresource_delAddition($db->id);
}
}
}
}
// FIXME: check logic for correct function; i am not sure what should happen exactly in which cases
// TODO: maybe use $params as data and add further values
$booking = getBooking($params["id"]);
$changedFields = churchcore_getFieldChanges(getBookingFields(), $oldBooking, $booking, false);
$data = array('enddate' => churchcore_stringToDateDe($params["enddate"]), 'startdate' => churchcore_stringToDateDe($params["startdate"]), 'resource' => $resources[$params["resource_id"]]->bezeichnung, 'changes' => str_replace("\n", "<br>", $changedFields), 'booking' => $booking, 'bookingUrl' => $base_url . "?q=churchresource&id=" . $params["id"], 'text' => $params['text'], 'note' => isset($params['location']) ? $params['location'] : "", 'pending' => $params["status_id"] == CR_PENDING, 'approved' => $params["status_id"] == CR_APPROVED && ($oldBooking->status_id != CR_APPROVED || $changedFields != null), 'canceled' => $params["status_id"] == CR_CANCELED, 'deleted' => $params["status_id"] == CR_DELETED, 'contact' => getConf('site_mail'));
$logInfo = ' :: ' . t('bookingX.for.resource.on.datetime', $params["text"], $resources[$params["resource_id"]]->bezeichnung, $params["startdate"], isset($params['location']) ? $params['location'] : "");
$subject = t('booking.request.updated');
if ($data['pending']) {
$logInfo = t('booking.updated') . $logInfo;
} elseif ($data['approved']) {
$logInfo = t('booking.approved') . $logInfo;
} elseif ($data['canceled']) {
$logInfo = t('booking.canceled') . $logInfo;
} elseif ($data['deleted']) {
$logInfo = t('booking.deleted') . $logInfo;
}
if ($sendEMails && getConf("churchresource_send_emails", true)) {
if (($params["status_id"] != $oldBooking->status_id || $changedFields != null) && $bUser) {
$adminmails = explode(",", $resources[$params["resource_id"]]->admin_person_ids);
// if current user is not resource admin OR is not the booking creating user
if (!in_array($user->id, $adminmails) || $user->id != $bUser->id) {
$content = getTemplateContent('email/bookingUpdated', 'churchresource', $data);
churchresource_send_mail("[" . getConf('site_name') . "] {$subject}: " . $params["text"], $content, $bUser->email);
}
}
}
if ($changedFields) {
cr_log("UPDATE BOOKING\n" . $logInfo, 3, $booking->id);
}
return array("exceptions" => $res_exceptions, "additions" => $res_additions);
}
/**
* Infos f�r noch zu best�tigende Dienste
*/
function churchservice_openservice_rememberdays()
{
global $base_url;
include_once "churchservice_db.php";
$delay = readConf('churchservice_openservice_rememberdays');
$dt = new datetime();
// Checken, ob EIN EventService noch nicht gesendet wurde, bzw. schon so alt ist.
// Pr�fe dabei, ob die Person eine EMail-Adresse hat und auch gemappt wurde.
$sql = "SELECT es.id, p.id p_id, p.vorname, p.email, es.modified_pid, if (password is null and loginstr is null and lastlogin is null,1,0) as invite \n FROM {cs_eventservice} es, {cs_event} e, {cc_cal} cal, {cs_service} s, {cdb_person} p \n where e.valid_yn=1 and e.cc_cal_id=cal.id and es.valid_yn=1 and es.zugesagt_yn=0 and es.cdb_person_id is not null\n and es.service_id=s.id and s.sendremindermails_yn=1 \n and es.event_id=e.id and e.Startdate>=current_date\n and ((es.mailsenddate is null) or (datediff(current_date,es.mailsenddate)>={$delay}))\n and p.email!='' and p.id=es.cdb_person_id limit 1";
$res = db_query($sql)->fetch();
$sql2 = "SELECT es.id id, cal.bezeichnung event, DATE_FORMAT(e.startdate, '%d.%m.%Y %H:%i') datum, e.id event_id,\n s.bezeichnung service, sg.bezeichnung servicegroup, es.mailsenddate\n FROM {cs_eventservice} es, {cs_event} e, {cc_cal} cal, {cs_service} s, {cs_servicegroup} sg \n where e.valid_yn=1 and cal.id=e.cc_cal_id and es.valid_yn=1 and es.zugesagt_yn=:zugesagt and es.cdb_person_id=:p_id\n and s.sendremindermails_yn=1 \n and es.event_id=e.id and es.service_id=s.id and sg.id=s.servicegroup_id\n and e.startdate>=current_date\n order by e.startdate";
$i = 0;
// Lasse 15 EventServices durch, dann warten bis n�chste Cron, sonst werden es zu viele Mails
while ($res && $i < 15) {
// Wenn einer vorhanden ist, dann suche nach weiteren offenen Diensten f�r die Person
$txt = "<h3>Hallo " . $res->vorname . ",</h3><p>";
$inviter = churchcore_getPersonById($res->modified_pid);
$txt .= "Du wurdest in dem Dienstplan auf " . readConf('site_name', 'ChurchTools');
if ($inviter != null) {
$txt .= ' von <i>' . $inviter->vorname . " " . $inviter->name . "</i>";
}
$txt .= " zu Diensten vorgeschlagen. <br/>Zum Zu- oder Absagen bitte hier klicken:";
$loginstr = churchcore_createOnTimeLoginKey($res->p_id);
$txt .= '<p><a href="' . $base_url . '?q=home&id=' . $res->p_id . '&loginstr=' . $loginstr . '" class="btn btn-primary">%sitename</a>';
$txt .= "<p><p><b>Folgende Dienst-Termine sind von Dir noch nicht bearbeitet:</b><ul>";
$arr = db_query($sql2, array(":p_id" => $res->p_id, ":zugesagt" => 0));
foreach ($arr as $res2) {
$txt .= "<li> " . $res2->datum . " " . $res2->event . ": " . $res2->service . " (" . $res2->servicegroup . ")";
db_update("cs_eventservice")->fields(array("mailsenddate" => $dt->format('Y-m-d H:i:s')))->condition('id', $res2->id, "=")->execute();
}
$txt .= '</ul>';
$arr = db_query($sql2, array(":p_id" => $res->p_id, ":zugesagt" => 1));
$txt2 = "";
foreach ($arr as $res2) {
$txt2 .= "<li> " . $res2->datum . " - " . $res2->event . ": " . $res2->service . " (" . $res2->servicegroup . ")";
if ($res2->mailsenddate == null) {
$txt2 .= " NEU!";
}
db_update("cs_eventservice")->fields(array("mailsenddate" => $dt->format('Y-m-d H:i:s')))->condition('id', $res2->id, "=")->execute();
}
if ($txt2 != "") {
$txt .= "<p><p><b>Bei folgenden Diensten hast Du schon zugesagt:</b><ul>" . $txt2;
$txt .= "</ul>";
}
// Person wurde noch nicht eingeladen, also schicke gleich eine Einladung mit!
if ($res->invite == 1) {
include_once CHURCHDB . '/churchdb_ajax.php';
churchdb_invitePersonToSystem($res->p_id);
$txt .= "<p><b>Da Du noch nicht kein Zugriff auf das System hast, bekommst Du noch eine separate E-Mail, mit der Du Dich dann anmelden kannst!.</b>";
}
churchservice_send_mail("[" . readConf('site_name', 'ChurchTools') . "] Es sind noch Dienste offen", $txt, $res->email);
$i = $i + 1;
$res = db_query($sql)->fetch();
}
}
function churchresource_updateBooking($params, $changes = null)
{
global $base_url, $user;
// Only bigchange, when I get repeat_id. Otherwise it is only a time shift.
$bigchange = isset($params["repeat_id"]);
$old_arr = getBooking($params["id"]);
$buser = churchcore_getPersonById($old_arr->person_id);
$ressources = churchcore_getTableData("cr_resource", "resourcetype_id,sortkey,bezeichnung");
$i = new CTInterface();
$i->setParam("resource_id");
$i->setParam("status_id");
if ($bigchange) {
$i->addTypicalDateFields();
$i->setParam("text");
$i->setParam("location");
$i->setParam("note");
} else {
$i->setParam("startdate");
$i->setParam("enddate");
$res = db_query('select * from {cr_booking} where id=:id', array(":id" => $params["id"]))->fetch();
$params["text"] = $res->text;
}
$i->setParam("person_id");
$id = db_update("cr_booking")->fields($i->getDBInsertArrayFromParams($params))->condition("id", $params["id"], "=")->execute(false);
// No changes mean not from Cal, so I have to check changes manuelly
if (is_null($changes) && $bigchange) {
// Hole alle Exceptions aus der DB
$exc = churchcore_getTableData("cr_exception", null, "booking_id=" . $params["id"]);
// Vergleiche erst mal welche schon in der DB sind oder noch nicht in der DB sind.
if (isset($params["exceptions"])) {
foreach ($params["exceptions"] as $exception) {
$current_exc = null;
// Look for Exc. This is not possible to make by id, cause ChurchCal Exc have other IDs
if ($exc != false) {
foreach ($exc as $e) {
if (churchcore_isSameDay($e->except_date_start, $exception["except_date_start"]) && churchcore_isSameDay($e->except_date_end, $exception["except_date_end"])) {
$current_exc = $e;
}
}
}
if ($current_exc != null) {
$exc[$current_exc->id]->vorhanden = true;
} else {
$changes["add_exception"][] = $exception;
}
}
}
// L�sche nun alle, die in der DB sind, aber nicht mehr vorhanden sind.
if ($exc != false) {
foreach ($exc as $e) {
if (!isset($e->vorhanden)) {
$changes["del_exception"][] = (array) $e;
}
}
}
// Hole alle Additions aus der DB
$add = churchcore_getTableData("cr_addition", null, "booking_id=" . $params["id"]);
// Vergleiche erst mal welche schon in der DB sind oder noch nicht in der DB sind.
if (isset($params["additions"])) {
foreach ($params["additions"] as $addition) {
$current_add = null;
// Look for additions. This is not possible to make by id, cause ChurchCal Additions have other IDs
if ($add != false) {
foreach ($add as $a) {
if (churchcore_isSameDay($a->add_date, $addition["add_date"]) && $a->with_repeat_yn == $addition["with_repeat_yn"]) {
$current_add = $a;
}
}
}
if ($current_add != null) {
$add[$current_add->id]->vorhanden = true;
} else {
$changes["add_addition"][] = $addition;
}
}
}
// L�sche nun alle, die in der DB sind, aber nicht mehr vorhanden sind.
if ($add != false) {
foreach ($add as $a) {
if (!isset($a->vorhanden)) {
//churchresource_delAddition($a->id);
$changes["del_addition"][] = (array) $a;
}
}
}
}
// New Exception-Ids will be saved here
$res_exceptions = array();
$res_additions = array();
$days = array();
// Now do the changes!
if ($changes != null) {
if (isset($changes["add_exception"])) {
foreach ($changes["add_exception"] as $exc) {
// Check, if exception not alreay in DB (only when coming from Cal it is possible)
$db = db_query("select id from {cr_exception} where booking_id=:booking_id and except_date_start=:start", array(":booking_id" => $params["id"], ":start" => $exc["except_date_start"]))->fetch();
if ($db == false) {
$id = addException($params["id"], $exc["except_date_start"], $exc["except_date_end"], $user->id);
if (isset($exc["id"])) {
$res_exceptions[$exc["id"]] = $id;
}
$days[] = $exc["except_date_start"];
}
}
if (count($days) > 0 && $buser != null) {
$txt = "<h3>Hallo " . $buser->vorname . "!</h3><p>Bei Deiner Serien-Buchungsanfrage '" . $params["text"] . "' fuer " . $ressources[$params["resource_id"]]->bezeichnung . " mussten leider von " . $user->vorname . " " . $user->name . " folgende Tage abgelehnt werden: <b>" . implode(", ", $days) . "</b><p>";
churchresource_send_mail("[" . variable_get('site_name') . "] Aktualisierung der Buchungsanfrage: " . $params["text"], $txt, $buser->email);
}
}
if (isset($changes["del_exception"])) {
foreach ($changes["del_exception"] as $exc) {
$db = db_query("select id from {cr_exception} where booking_id=:booking_id and except_date_start=:start", array(":booking_id" => $params["id"], ":start" => $exc["except_date_start"]))->fetch();
if ($db != false) {
churchresource_delException(array("id" => $db->id));
}
}
}
if (isset($changes["add_addition"])) {
foreach ($changes["add_addition"] as $add) {
$db = db_query("select id from {cr_addition} where booking_id=:booking_id and add_date=:date", array(":booking_id" => $params["id"], ":date" => $add["add_date"]))->fetch();
if ($db == false) {
$id = addAddition($params["id"], $add["add_date"], $add["with_repeat_yn"], $user->id);
if (isset($add["id"])) {
$res_additions[$add["id"]] = $id;
}
}
}
}
if (isset($changes["del_addition"])) {
foreach ($changes["del_addition"] as $add) {
$db = db_query("select id from {cr_addition} where booking_id=:booking_id and add_date=:date", array(":booking_id" => $params["id"], ":date" => $add["add_date"]))->fetch();
if ($db != false) {
churchresource_delAddition($db->id);
}
}
}
}
$txt = "";
$info = "'" . $params["text"] . "' fuer " . $ressources[$params["resource_id"]]->bezeichnung . " (" . $params["startdate"] . "h";
if ($params["location"] != "") {
$info = $info . " in " . $params["location"];
}
$info = $info . ")";
$arr = getBooking($params["id"]);
$changes = churchcore_getFieldChanges(getBookingFields(), $old_arr, $arr, false);
if ($params["status_id"] == 1) {
$txt = " wurde aktualisiert und wartet auf Genehmigung.";
} else {
if ($params["status_id"] == 2 && ($old_arr->status_id != 2 || $changes != null)) {
$txt = " wurde von {$user->vorname} {$user->name} genehmigt!<p>";
} else {
if ($params["status_id"] == 3) {
$txt = " wurde leider abgelehnt, bitte suche Dir einen anderen Termin.<p>";
} else {
if ($params["status_id"] == 99) {
$txt = " wurde geloescht, bei Fragen dazu melde Dich bitte bei: " . variable_get('site_mail', 'Gemeinde-Buero unter info@elim-hamburg.de oder 040-2271970') . "<p>";
}
}
}
}
if ($txt != "" && $buser != null) {
$txt = "<h3>Hallo " . $buser->vorname . "!</h3><p>Deine Buchungsanfrage " . $info . $txt;
if ($changes != null) {
$txt .= "<p><b>Folgende Anpassung an der Buchung wurden vorgenommen:</b><br/>" . str_replace("\n", "<br>", $changes);
}
if ($params["status_id"] < 3) {
$txt .= '<p><a class="btn" href="' . $base_url . "?q=churchresource&id=" . $params["id"] . '">Zur Buchungsanfrage »</a>';
}
$adminmails = explode(",", $ressources[$params["resource_id"]]->admin_person_ids);
// Wenn der aktuelle User nicht Admin ist ODER wenn der Benutzer nicht der ist, der die Buchung erstellt hat.
if (!in_array($user->id, $adminmails) || $user->id != $buser->id) {
churchresource_send_mail("[" . variable_get('site_name', 'ChurchTools') . "] Aktualisierung der Buchungsanfrage: " . $params["text"], $txt, $buser->email);
}
}
if ($changes != null) {
cr_log("UPDATE BOOKING\n" . $txt, 3, $arr->id);
}
$res = array("exceptions" => $res_exceptions, "additions" => $res_additions);
return $res;
}
