function watu_grades()
{
global $wpdb;
// select quiz
$quiz = $wpdb->get_row($wpdb->prepare("SELECT ID, name FROM " . WATU_EXAMS . " WHERE ID=%d", $_GET['quiz_id']));
if (empty($quiz->ID)) {
wp_die(__('Unrecognized quiz ID', 'watu'));
}
if (!empty($_POST['add'])) {
$wpdb->query($wpdb->prepare("INSERT INTO " . WATU_GRADES . " SET\n \t\texam_id=%d, gtitle=%s, gdescription=%s, gfrom=%d, gto=%d", $quiz->ID, $_POST['gtitle'], $_POST['gdesc'], $_POST['gfrom'], $_POST['gto']));
watu_redirect("admin.php?page=watu_grades&quiz_id=" . $quiz->ID);
}
if (!empty($_POST['save'])) {
$wpdb->query($wpdb->prepare("UPDATE " . WATU_GRADES . " SET\n \t\tgtitle=%s, gdescription=%s, gfrom=%d, gto=%d WHERE ID=%d", $_POST['gtitle'], $_POST['gdesc' . $_POST['id']], $_POST['gfrom'], $_POST['gto'], $_POST['id']));
watu_redirect("admin.php?page=watu_grades&quiz_id=" . $quiz->ID);
}
if (!empty($_POST['del'])) {
$wpdb->query($wpdb->prepare("DELETE FROM " . WATU_GRADES . " WHERE ID=%d", $_POST['id']));
}
// select grades
$grades = $wpdb->get_results($wpdb->prepare("SELECT * FROM " . WATU_GRADES . " WHERE exam_id=%d ORDER BY gto DESC", $quiz->ID));
include WATU_PATH . "/views/grades.html.php";
}
function watu_takings()
{
global $wpdb;
// select exam
$exam = $wpdb->get_row($wpdb->prepare("SELECT * FROM " . WATU_EXAMS . " WHERE ID=%d", $_GET['exam_id']));
$grades = $wpdb->get_results($wpdb->prepare("SELECT * FROM " . WATU_GRADES . " WHERE exam_id=%d order by gtitle ", $exam->ID));
// delete a taking
if (!empty($_GET['del_taking'])) {
$wpdb->query($wpdb->prepare("DELETE FROM " . WATU_TAKINGS . " WHERE ID=%d", $_GET['id']));
watu_redirect("admin.php?page=watu_takings&exam_id=" . $exam->ID);
}
// mass cleanup
if (!empty($_POST['delete_all_takings'])) {
$wpdb->query($wpdb->prepare("DELETE FROM " . WATU_TAKINGS . " WHERE exam_id=%d", $exam->ID));
}
// select taking records
$ob = empty($_GET['ob']) ? "tT.id" : $_GET['ob'];
$dir = !empty($_GET['dir']) ? $_GET['dir'] : "DESC";
$odir = $dir == 'ASC' ? 'DESC' : 'ASC';
$offset = empty($_GET['offset']) ? 0 : intval($_GET['offset']);
$limit_sql = empty($_GET['watu_export']) ? "Limit {$offset}, 10" : "";
// filter / search?
$filters = $joins = array();
$filter_sql = $left_join_sql = $role_join_sql = $group_join_sql = $left_join = "";
$join_sql = "LEFT JOIN {$wpdb->users} tU ON tU.ID=tT.user_id";
// display name
if (!empty($_GET['dn'])) {
switch ($_GET['dnf']) {
case 'contains':
$like = "%{$_GET['dn']}%";
break;
case 'starts':
$like = "{$_GET['dn']}%";
break;
case 'ends':
$like = "%{$_GET['dn']}";
break;
case 'equals':
default:
$like = $_GET['dn'];
break;
}
$joins[] = $wpdb->prepare(" display_name LIKE %s ", $like);
}
// email
if (!empty($_GET['email'])) {
switch ($_GET['emailf']) {
case 'contains':
$like = "%{$_GET['email']}%";
break;
case 'starts':
$like = "{$_GET['email']}%";
break;
case 'ends':
$like = "%{$_GET['email']}";
break;
case 'equals':
default:
$like = $_GET['email'];
break;
}
$joins[] = $wpdb->prepare(" user_email LIKE %s ", $like);
$filters[] = $wpdb->prepare(" ((user_id=0 AND email LIKE %s) OR (user_id!=0 AND user_email LIKE %s)) ", $like, $like);
$left_join = 'LEFT';
// when email is selected, do left join because it might be without logged user
}
// IP
if (!empty($_GET['ip'])) {
switch ($_GET['ipf']) {
case 'contains':
$like = "%{$_GET['ip']}%";
break;
case 'starts':
$like = "{$_GET['ip']}%";
break;
case 'ends':
$like = "%{$_GET['ip']}";
break;
case 'equals':
default:
$like = $_GET['ip'];
break;
}
$filters[] = $wpdb->prepare(" ip LIKE %s ", $like);
}
// Date
if (!empty($_GET['date'])) {
switch ($_GET['datef']) {
case 'after':
$filters[] = $wpdb->prepare(" date>%s ", $_GET['date']);
break;
case 'before':
$filters[] = $wpdb->prepare(" date<%s ", $_GET['date']);
break;
case 'equals':
default:
$filters[] = $wpdb->prepare(" date=%s ", $_GET['date']);
break;
}
}
// Points
if (!empty($_GET['points'])) {
switch ($_GET['pointsf']) {
case 'less':
$filters[] = $wpdb->prepare(" points<%d ", $_GET['points']);
break;
case 'more':
$filters[] = $wpdb->prepare(" points>%d ", $_GET['points']);
break;
case 'equals':
default:
$filters[] = $wpdb->prepare(" points=%d ", $_GET['points']);
break;
}
}
// construct filter & join SQLs
if (sizeof($filters)) {
$filter_sql = " AND " . implode(" AND ", $filters);
}
if (sizeof($joins)) {
$join_sql = " {$left_join} JOIN {$wpdb->users} tU ON tU.ID=tT.user_id AND " . implode(" AND ", $joins);
}
$takings = $wpdb->get_results($wpdb->prepare("SELECT SQL_CALC_FOUND_ROWS tT.*, tU.user_login as user_login \n\t\tFROM " . WATU_TAKINGS . " tT {$join_sql}\n\t\tWHERE exam_id=%d {$filter_sql} \n\t\tORDER BY {$ob} {$dir} {$limit_sql}", $exam->ID));
$count = $wpdb->get_var("SELECT FOUND_ROWS()");
// export CSV
if (!empty($_GET['watu_export'])) {
$newline = watu_define_newline();
$rows = array();
$rows[] = __("User or IP;Date;Points;Result/Grade", 'watu');
foreach ($takings as $taking) {
$row = ($taking->user_id ? $taking->user_login : $taking->ip) . ";" . date(get_option('date_format'), strtotime($taking->date)) . ";" . $taking->points . ";" . $taking->result;
$rows[] = $row;
}
// end foreach taking
$csv = implode($newline, $rows);
$now = gmdate('D, d M Y H:i:s') . ' GMT';
$filename = 'exam-' . $exam->ID . '-results.csv';
header('Content-Type: ' . watu_get_mime_type());
header('Expires: ' . $now);
header('Content-Disposition: attachment; filename="' . $filename . '"');
header('Pragma: no-cache');
echo $csv;
exit;
}
// this var will be added to links at the view
$filters_url = "dn=" . @$_GET['dn'] . "&dnf=" . @$_GET['dnf'] . "&email=" . @$_GET['email'] . "&emailf=" . @$_GET['emailf'] . "&ip=" . @$_GET['ip'] . "&ipf=" . @$_GET['ipf'] . "&date=" . @$_GET['date'] . "&datef=" . @$_GET['datef'] . "&points=" . @$_GET['points'] . "&pointsf=" . @$_GET['pointsf'] . "&grade=" . @$_GET['grade'];
$display_filters = (!sizeof($filters) and !sizeof($joins)) ? false : true;
wp_enqueue_script('thickbox', null, array('jquery'));
wp_enqueue_style('thickbox.css', '/' . WPINC . '/js/thickbox/thickbox.css', null, '1.0');
require WATU_PATH . "/views/takings.php";
}
