/**
* Approve / unapprove an existing report
*
* @param int report_id - the id of the report to be approved.
*
* @return
*/
public function _approve_report($response_type)
{
$form = array('action' => '', 'report_id' => '');
$errors = $form;
if ($_POST) {
$post = Validation::factory($_POST);
// Add some filters
$post->pre_filter('trim', TRUE);
// Add some rules, the input field, followed by a list
// of checks, carried out in order
$post->add_rules('action', 'required', 'alpha', 'length[1,1]');
$post->add_rules('report_id', 'required', 'numeric');
if ($post->validate()) {
$incident_id = $post->report_id;
$update = new Incident_Model($incident_id);
if ($update->loaded == true) {
if ($update->incident_active == 0) {
$update->incident_active = '1';
} else {
$update->incident_active = '0';
}
// Tag this as a report that needs to be sent
// out as an alert
if ($update->incident_alert_status != '2') {
// 2 = report that has had an alert sent
$update->incident_alert_status = '1';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $incident_id;
$verify->verified_status = '0';
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
} else {
//TODO i18nize the string
$this->error_messages .= "Report ID is required.";
$this->ret_value = 1;
}
} else {
//TODO i18nize the string
$this->error_messages .= "Report ID is required.";
$this->ret_value = 1;
}
} else {
$this->ret_value = 3;
}
return $this->api_actions->_response($this->ret_value, $response_type, $this->error_messages);
}
/**
* The actual reporting -
*
* @return int
*/
private function _submit_report()
{
// setup and initialize form field names
$form = array('location_id' => '', 'incident_id' => '', 'incident_title' => '', 'incident_description' => '', 'incident_date' => '', 'incident_hour' => '', 'incident_minute' => '', 'incident_ampm' => '', 'latitude' => '', 'longitude' => '', 'location_name' => '', 'country_id' => '', 'incident_category' => '', 'incident_news' => array(), 'incident_video' => array(), 'incident_photo' => array(), 'person_first' => '', 'person_last' => '', 'person_email' => '', 'incident_active ' => '', 'incident_verified' => '', 'incident_source' => '', 'incident_information' => '');
$errors = $form;
// check, has the form been submitted, if so, setup validation
if ($_POST) {
// Instantiate Validation, use $post, so we don't overwrite $_POST fields with our own things
$post = Validation::factory(array_merge($_POST, $_FILES));
// Add some filters
$post->pre_filter('trim', TRUE);
// Add some rules, the input field, followed by a list of
//checks, carried out in order
$post->add_rules('location_id', 'numeric');
$post->add_rules('incident_id', 'required', 'numeric');
$post->add_rules('incident_title', 'required', 'length[3,200]');
$post->add_rules('incident_description', 'required');
$post->add_rules('incident_date', 'required', 'date_mmddyyyy');
$post->add_rules('incident_hour', 'required', 'between[0,23]');
if ($this->api_service->verify_array_index($_POST, 'incident_ampm')) {
if ($_POST['incident_ampm'] != "am" && $_POST['incident_ampm'] != "pm") {
$post->add_error('incident_ampm', 'values');
}
}
$post->add_rules('latitude', 'required', 'between[-90,90]');
$post->add_rules('longitude', 'required', 'between[-180,180]');
$post->add_rules('location_name', 'required', 'length[3,200]');
$post->add_rules('incident_category', 'required', 'length[1,100]');
// Validate Personal Information
if (!empty($post->person_first)) {
$post->add_rules('person_first', 'length[3,100]');
}
if (!empty($post->person_last)) {
$post->add_rules('person_last', 'length[3,100]');
}
if (!empty($post->person_email)) {
$post->add_rules('person_email', 'email', 'length[3,100]');
}
$post->add_rules('incident_active', 'required', 'between[0,1]');
$post->add_rules('incident_verified', 'required', 'length[0,1]');
$post->add_rules('incident_source', 'numeric', 'length[1,1]');
$post->add_rules('incident_information', 'numeric', 'length[1,1]');
// Test to see if things passed the rule checks
if ($post->validate()) {
$incident_id = $post->incident_id;
$location_id = $post->location_id;
// SAVE INCIDENT
// SAVE LOCATION (***IF IT DOES NOT EXIST***)
$location = new Location_Model($location_id);
$location->location_name = $post->location_name;
$location->latitude = $post->latitude;
$location->longitude = $post->longitude;
$location->location_date = date("Y-m-d H:i:s", time());
$location->save();
$incident = new Incident_Model($incident_id);
$incident->location_id = $location->id;
$incident->user_id = 0;
$incident->incident_title = $post->incident_title;
$incident->incident_description = $post->incident_description;
$incident_date = explode("/", $post->incident_date);
/**
* where the $_POST['date'] is a value posted by form in
* mm/dd/yyyy format
*/
$incident_date = $incident_date[2] . "-" . $incident_date[0] . "-" . $incident_date[1];
$incident_time = $post->incident_hour . ":" . $post->incident_minute . ":00 " . $post->incident_ampm;
$incident->incident_date = date("Y-m-d H:i:s", strtotime($incident_date . " " . $incident_time));
$incident->incident_datemodify = date("Y-m-d H:i:s", time());
// Incident Evaluation Info
$incident->incident_active = $post->incident_active;
$incident->incident_verified = $post->incident_verified;
$incident->incident_source = $post->incident_source;
$incident->incident_information = $post->incident_information;
$incident->save();
// Record Approval/Verification Action
$verify = new Verify_Model();
$verify->incident_id = $incident->id;
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
if ($post->incident_active == 1) {
$verify->verified_status = '1';
} elseif ($post->incident_verified == 1) {
$verify->verified_status = '2';
} elseif ($post->incident_active == 1 && $post->incident_verified == 1) {
$verify->verified_status = '3';
} else {
$verify->verified_status = '0';
}
$verify->save();
// SAVE CATEGORIES
//check if data is csv or a single value.
$pos = strpos($post->incident_category, ",");
if ($pos === false) {
//for backward compactibility. will drop support for it in the future.
if (@unserialize($post->incident_category)) {
$categories = unserialize($post->incident_category);
} else {
$categories = array($post->incident_category);
}
} else {
$categories = explode(",", $post->incident_category);
}
if (!empty($categories) and is_array($categories)) {
// STEP 3: SAVE CATEGORIES
ORM::factory('Incident_Category')->where('incident_id', $incident->id)->delete_all();
// Delete Previous Entries
foreach ($categories as $item) {
$incident_category = new Incident_Category_Model();
$incident_category->incident_id = $incident->id;
$incident_category->category_id = $item;
$incident_category->save();
}
}
// STEP 4: SAVE MEDIA
// a. News
if (!empty($post->incident_news) && is_array($post->incident_news)) {
ORM::factory('Media')->where('incident_id', $incident->id)->where('media_type <> 1')->delete_all();
// Delete Previous Entries
foreach ($post->incident_news as $item) {
if (!empty($item)) {
$news = new Media_Model();
$news->location_id = $location->id;
$news->incident_id = $incident->id;
$news->media_type = 4;
// News
$news->media_link = $item;
$news->media_date = date("Y-m-d H:i:s", time());
$news->save();
}
}
}
// b. Video
if (!empty($post->incident_video) && is_array($post->incident_video)) {
foreach ($post->incident_video as $item) {
if (!empty($item)) {
$video = new Media_Model();
$video->location_id = $location->id;
$video->incident_id = $incident->id;
$video->media_type = 2;
// Video
$video->media_link = $item;
$video->media_date = date("Y-m-d H:i:s", time());
$video->save();
}
}
}
// c. Photos
if (!empty($post->incident_photo)) {
$filenames = upload::save('incident_photo');
$i = 1;
foreach ($filenames as $filename) {
$new_filename = $incident->id . "_" . $i . "_" . time();
// Resize original file... make sure its max 408px wide
Image::factory($filename)->resize(408, 248, Image::AUTO)->save(Kohana::config('upload.directory', TRUE) . $new_filename . ".jpg");
// Create thumbnail
Image::factory($filename)->resize(70, 41, Image::HEIGHT)->save(Kohana::config('upload.directory', TRUE) . $new_filename . "_t.jpg");
// Remove the temporary file
unlink($filename);
// Save to DB
$photo = new Media_Model();
$photo->location_id = $location->id;
$photo->incident_id = $incident->id;
$photo->media_type = 1;
// Images
$photo->media_link = $new_filename . ".jpg";
$photo->media_thumb = $new_filename . "_t.jpg";
$photo->media_date = date("Y-m-d H:i:s", time());
$photo->save();
$i++;
}
}
// SAVE PERSONAL INFORMATION IF ITS FILLED UP
if (!empty($post->person_first) or !empty($post->person_last)) {
ORM::factory('Incident_Person')->where('incident_id', $incident->id)->delete_all();
$person = new Incident_Person_Model();
$person->location_id = $location->id;
$person->incident_id = $incident->id;
$person->person_first = $post->person_first;
$person->person_last = $post->person_last;
$person->person_email = $post->person_email;
$person->person_date = date("Y-m-d H:i:s", time());
$person->save();
}
return $this->response(0);
//success
} else {
// populate the error fields, if any
$errors = arr::overwrite($errors, $post->errors('report'));
foreach ($errors as $error_item => $error_description) {
if (!is_array($error_description)) {
$this->error_messages .= $error_description;
if ($error_description != end($errors)) {
$this->error_messages .= " - ";
}
}
}
//FAILED!!! //validation error
return $this->response(1, $this->error_messages);
}
} else {
// Not sent by post method.
return $this->response(3);
}
}
/**
* Edit a report
* @param bool|int $id The id no. of the report
* @param bool|string $saved
*/
function edit($id = false, $saved = false)
{
$db = new Database();
$this->template->content = new View('admin/reports_edit');
$this->template->content = View::factory('simplegroups/reports_edit');
$this->template->content->title = Kohana::lang('ui_admin.create_report');
// setup and initialize form field names
$form = array('location_id' => '', 'form_id' => '', 'locale' => '', 'incident_title' => '', 'incident_description' => '', 'incident_date' => '', 'incident_hour' => '', 'incident_minute' => '', 'incident_ampm' => '', 'latitude' => '', 'longitude' => '', 'geometry' => array(), 'location_name' => '', 'country_id' => '', 'incident_category' => array(), 'incident_group_category' => array(), 'incident_news' => array(), 'incident_video' => array(), 'incident_photo' => array(), 'incident_status' => array(), 'phone_number' => '', 'person_first' => '', 'person_last' => '', 'person_email' => '', 'custom_field' => array(), 'incident_active' => '', 'incident_verified' => '', 'incident_zoom' => '');
// copy the form as errors, so the errors will be stored with keys corresponding to the form field names
$errors = $form;
$form_error = FALSE;
$form_saved = $saved;
// Initialize Default Values
$form['locale'] = Kohana::config('locale.language');
//$form['latitude'] = Kohana::config('settings.default_lat');
//$form['longitude'] = Kohana::config('settings.default_lon');
$form['country_id'] = Kohana::config('settings.default_country');
$form['incident_date'] = date("m/d/Y", time());
$form['incident_hour'] = date('h');
$form['incident_minute'] = date('i');
$form['incident_ampm'] = date('a');
// initialize custom field array
$form['custom_field'] = $this->_get_custom_form_fields($id, '', true);
$number_of_message_sender = null;
// Locale (Language) Array
$this->template->content->locale_array = Kohana::config('locale.all_languages');
// Create Categories
$this->template->content->categories = $this->_get_categories();
$this->template->content->group_categories = $this->_get_group_categories();
$this->template->content->new_categories_form = $this->_new_categories_form_arr();
$this->template->content->group_name = $this->group->name;
// Time formatting
$this->template->content->hour_array = $this->_hour_array();
$this->template->content->minute_array = $this->_minute_array();
$this->template->content->ampm_array = $this->_ampm_array();
$this->template->content->stroke_width_array = $this->_stroke_width_array();
// Get Countries
$countries = array();
foreach (ORM::factory('country')->orderby('country')->find_all() as $country) {
// Create a list of all categories
$this_country = $country->country;
if (strlen($this_country) > 35) {
$this_country = substr($this_country, 0, 35) . "...";
}
$countries[$country->id] = $this_country;
}
$this->template->content->countries = $countries;
//GET custom forms
$forms = array();
foreach (ORM::factory('form')->where('form_active', 1)->find_all() as $custom_forms) {
$forms[$custom_forms->id] = $custom_forms->form_title;
}
$this->template->content->forms = $forms;
// Retrieve thumbnail photos (if edit);
//XXX: fix _get_thumbnails
$this->template->content->incident = $this->_get_thumbnails($id);
// Are we creating this report from SMS/Email/Twitter?
// If so retrieve message
if (isset($_GET['mid']) && !empty($_GET['mid'])) {
$message_id = $_GET['mid'];
$service_id = "";
$message = ORM::factory('message', $message_id);
//figure out the group number that sent the message
$number_items = ORM::factory("simplegroups_groups_number")->join("simplegroups_groups_message", "simplegroups_groups_message.number_id", "simplegroups_groups_numbers.id")->where("simplegroups_groups_message.message_id", $message_id)->find_all();
foreach ($number_items as $number_item) {
$number_of_message_sender = $number_item;
}
if ($message->loaded == true && $message->message_type == 1) {
$service_id = $message->reporter->service_id;
// Has a report already been created for this Message?
if ($message->incident_id != 0) {
// Redirect to report
url::redirect('admin/simplegroups/reports/edit/' . $message->incident_id);
}
$this->template->content->show_messages = true;
$incident_description = $message->message;
if (!empty($message->message_detail)) {
$incident_description .= "\n\n~~~~~~~~~~~~~~~~~~~~~~~~~\n\n" . $message->message_detail;
}
$form['incident_description'] = $incident_description;
$form['incident_date'] = date('m/d/Y', strtotime($message->message_date));
$form['incident_hour'] = date('h', strtotime($message->message_date));
$form['incident_minute'] = date('i', strtotime($message->message_date));
$form['incident_ampm'] = date('a', strtotime($message->message_date));
$form['person_first'] = $message->reporter->reporter_first;
$form['person_last'] = $message->reporter->reporter_last;
// Does the sender of this message have a location?
if ($message->reporter->location->loaded) {
$form['latitude'] = $message->reporter->location->latitude;
$form['longitude'] = $message->reporter->location->longitude;
$form['location_name'] = $message->reporter->location->location_name;
}
// Retrieve Last 5 Messages From this account
$this->template->content->all_messages = ORM::factory('message')->where('reporter_id', $message->reporter_id)->orderby('message_date', 'desc')->limit(5)->find_all();
} else {
$message_id = "";
$this->template->content->show_messages = false;
}
} else {
$this->template->content->show_messages = false;
}
// Are we creating this report from a Newsfeed?
if (isset($_GET['fid']) && !empty($_GET['fid'])) {
$feed_item_id = $_GET['fid'];
$feed_item = ORM::factory('feed_item', $feed_item_id);
if ($feed_item->loaded == true) {
// Has a report already been created for this Feed item?
if ($feed_item->incident_id != 0) {
// Redirect to report
url::redirect('admin/simplegroups/reports/edit/' . $feed_item->incident_id);
}
$form['incident_title'] = $feed_item->item_title;
$form['incident_description'] = $feed_item->item_description;
$form['incident_date'] = date('m/d/Y', strtotime($feed_item->item_date));
$form['incident_hour'] = date('h', strtotime($feed_item->item_date));
$form['incident_minute'] = date('i', strtotime($feed_item->item_date));
$form['incident_ampm'] = date('a', strtotime($feed_item->item_date));
// News Link
$form['incident_news'][0] = $feed_item->item_link;
// Does this newsfeed have a geolocation?
if ($feed_item->location_id) {
$form['location_id'] = $feed_item->location_id;
$form['latitude'] = $feed_item->location->latitude;
$form['longitude'] = $feed_item->location->longitude;
$form['location_name'] = $feed_item->location->location_name;
}
} else {
$feed_item_id = "";
}
}
// check, has the form been submitted, if so, setup validation
if ($_POST) {
// Instantiate Validation, use $post, so we don't overwrite $_POST fields with our own things
$post = Validation::factory(array_merge($_POST, $_FILES));
// Add some filters
$post->pre_filter('trim', TRUE);
// Add some rules, the input field, followed by a list of checks, carried out in order
// $post->add_rules('locale','required','alpha_dash','length[5]');
$post->add_rules('location_id', 'numeric');
$post->add_rules('message_id', 'numeric');
$post->add_rules('incident_title', 'required', 'length[3,200]');
$post->add_rules('incident_description', 'required');
$post->add_rules('incident_status', 'required');
$post->add_rules('incident_date', 'required', 'date_mmddyyyy');
$post->add_rules('incident_hour', 'required', 'between[1,12]');
$post->add_rules('incident_minute', 'required', 'between[0,59]');
if ($_POST['incident_ampm'] != "am" && $_POST['incident_ampm'] != "pm") {
$post->add_error('incident_ampm', 'values');
}
$post->add_rules('latitude', 'required', 'between[-90,90]');
// Validate for maximum and minimum latitude values
$post->add_rules('longitude', 'required', 'between[-180,180]');
// Validate for maximum and minimum longitude values
$post->add_rules('location_name', 'required', 'length[3,200]');
//XXX: Hack to validate for no checkboxes checked
if (!isset($_POST['incident_category'])) {
$post->incident_category = "";
$post->add_error('incident_category', 'required');
} else {
$post->add_rules('incident_category.*', 'required', 'numeric');
}
// Validate only the fields that are filled in
if (!empty($_POST['incident_news'])) {
foreach ($_POST['incident_news'] as $key => $url) {
if (!empty($url) and !(bool) filter_var($url, FILTER_VALIDATE_URL, FILTER_FLAG_HOST_REQUIRED)) {
$post->add_error('incident_news', 'url');
}
}
}
// Validate only the fields that are filled in
if (!empty($_POST['incident_video'])) {
foreach ($_POST['incident_video'] as $key => $url) {
if (!empty($url) and !(bool) filter_var($url, FILTER_VALIDATE_URL, FILTER_FLAG_HOST_REQUIRED)) {
$post->add_error('incident_video', 'url');
}
}
}
// Validate photo uploads
$post->add_rules('incident_photo', 'upload::valid', 'upload::type[gif,jpg,png]', 'upload::size[2M]');
// Validate Personal Information
if (!empty($_POST['person_first'])) {
$post->add_rules('person_first', 'length[3,100]');
}
if (!empty($_POST['person_last'])) {
$post->add_rules('person_last', 'length[3,100]');
}
if (!empty($_POST['person_email'])) {
$post->add_rules('person_email', 'email', 'length[3,100]');
}
// Validate Custom Fields
if (isset($post->custom_field) && !$this->_validate_custom_form_fields($post->custom_field)) {
$post->add_error('custom_field', 'values');
}
$post->add_rules('incident_active', 'required', 'between[0,1]');
$post->add_rules('incident_verified', 'required', 'length[0,1]');
//$post->add_rules('incident_source','numeric', 'length[1,1]');
//$post->add_rules('incident_information','numeric', 'length[1,1]');
// Action::report_submit_admin - Report Posted
Event::run('ushahidi_action.report_submit_admin', $post);
// Test to see if things passed the rule checks
if ($post->validate()) {
// Yes! everything is valid
$location_id = $post->location_id;
// STEP 1: SAVE LOCATION
$location = new Location_Model($location_id);
$location->location_name = $post->location_name;
$location->latitude = $post->latitude;
$location->longitude = $post->longitude;
$location->location_date = date("Y-m-d H:i:s", time());
$location->save();
// STEP 2: SAVE INCIDENT
$incident = new Incident_Model($id);
$incident->location_id = $location->id;
//$incident->locale = $post->locale;
$incident->form_id = $post->form_id;
$incident->user_id = $_SESSION['auth_user']->id;
$incident->incident_title = $post->incident_title;
$incident->incident_description = $post->incident_description;
$incident->incident_status = $post->incident_status;
$incident_date = explode("/", $post->incident_date);
// where the $_POST['date'] is a value posted by form in mm/dd/yyyy format
$incident_date = $incident_date[2] . "-" . $incident_date[0] . "-" . $incident_date[1];
$incident_time = $post->incident_hour . ":" . $post->incident_minute . ":00 " . $post->incident_ampm;
$incident->incident_date = date("Y-m-d H:i:s", strtotime($incident_date . " " . $incident_time));
$is_new = false;
// Is this new or edit?
if ($id) {
$incident->incident_datemodify = date("Y-m-d H:i:s", time());
} else {
$incident->incident_dateadd = date("Y-m-d H:i:s", time());
$is_new = true;
}
// Is this an Email, SMS, Twitter submitted report?
//XXX: We may get rid of incident_mode altogether... ???
//$_POST
if (!empty($service_id)) {
if ($service_id == 1) {
// SMS
$incident->incident_mode = 2;
} elseif ($service_id == 2) {
// Email
$incident->incident_mode = 3;
} elseif ($service_id == 3) {
// Twitter
$incident->incident_mode = 4;
} elseif ($service_id == 4) {
// Laconica
$incident->incident_mode = 5;
}
}
// Incident Evaluation Info
$incident->incident_active = $post->incident_active;
$incident->incident_verified = $post->incident_verified;
//$incident->incident_source = $post->incident_source;
//$incident->incident_information = $post->incident_information;
//$incident->incident_zoom = (int) $post->incident_zoom;
//Save
$incident->save();
// Tag this as a report that needs to be sent out as an alert
if ($incident->incident_active == '1' and $incident->incident_alert_status != '2') {
// 2 = report that has had an alert sent
$incident->incident_alert_status = '1';
$incident->save();
}
// Remove alert if report is unactivated and alert hasn't yet been sent
if ($incident->incident_active == '0' and $incident->incident_alert_status == '1') {
$incident->incident_alert_status = '0';
$incident->save();
}
// Record Approval/Verification Action
$verify = new Verify_Model();
$verify->incident_id = $incident->id;
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
if ($post->incident_active == 1) {
$verify->verified_status = '1';
} elseif ($post->incident_verified == 1) {
$verify->verified_status = '2';
} elseif ($post->incident_active == 1 && $post->incident_verified == 1) {
$verify->verified_status = '3';
} else {
$verify->verified_status = '0';
}
$verify->save();
//STEP 2.5: SAVE THE GROUP ASSOCIATION
if ($is_new) {
$group_incident = ORM::factory("simplegroups_groups_incident");
$group_incident->incident_id = $incident->id;
$group_incident->simplegroups_groups_id = $this->group->id;
if ($number_of_message_sender) {
$group_incident->number_id = $number_of_message_sender->id;
}
$group_incident->save();
}
// STEP 2b: SAVE INCIDENT GEOMETRIES
ORM::factory('geometry')->where('incident_id', $incident->id)->delete_all();
if (isset($post->geometry)) {
foreach ($post->geometry as $item) {
if (!empty($item)) {
//Decode JSON
$item = json_decode($item);
//++ TODO - validate geometry
$geometry = isset($item->geometry) ? mysql_escape_string($item->geometry) : "";
$label = isset($item->label) ? mysql_escape_string(substr($item->label, 0, 150)) : "";
$comment = isset($item->comment) ? mysql_escape_string(substr($item->comment, 0, 255)) : "";
$color = isset($item->color) ? mysql_escape_string(substr($item->color, 0, 6)) : "";
$strokewidth = (isset($item->strokewidth) and (double) $item->strokewidth) ? (double) $item->strokewidth : "2.5";
if ($geometry) {
//++ Can't Use ORM for this
$sql = "INSERT INTO " . Kohana::config('database.default.table_prefix') . "geometry (\n\t\t\t\t\t\t\tincident_id, geometry, geometry_label, geometry_comment, geometry_color, geometry_strokewidth ) \n\t\t\t\t\t\t\tVALUES( " . $incident->id . ",\n\t\t\t\t\t\t\tGeomFromText( '" . $geometry . "' ),'" . $label . "','" . $comment . "','" . $color . "','" . $strokewidth . "')";
$db->query($sql);
}
}
}
}
// STEP 3: SAVE CATEGORIES
ORM::factory('Incident_Category')->where('incident_id', $incident->id)->delete_all();
// Delete Previous Entries
foreach ($post->incident_category as $item) {
$incident_category = new Incident_Category_Model();
$incident_category->incident_id = $incident->id;
$incident_category->category_id = $item;
$incident_category->save();
}
// STEP 3.1: SAVE GROUP CATEGORIES
ORM::factory('simplegroups_incident_category')->where('incident_id', $incident->id)->delete_all();
// Delete Previous Entries
if (isset($post->incident_group_category)) {
foreach ($post->incident_group_category as $item) {
$incident_group_category = ORM::factory('simplegroups_incident_category');
$incident_group_category->incident_id = $incident->id;
$incident_group_category->simplegroups_category_id = $item;
$incident_group_category->save();
}
}
// STEP 4: SAVE MEDIA
ORM::factory('Media')->where('incident_id', $incident->id)->where('media_type <> 1')->delete_all();
// Delete Previous Entries
// a. News
foreach ($post->incident_news as $item) {
if (!empty($item)) {
$news = new Media_Model();
$news->location_id = $location->id;
$news->incident_id = $incident->id;
$news->media_type = 4;
// News
$news->media_link = $item;
$news->media_date = date("Y-m-d H:i:s", time());
$news->save();
}
}
// b. Video
foreach ($post->incident_video as $item) {
if (!empty($item)) {
$video = new Media_Model();
$video->location_id = $location->id;
$video->incident_id = $incident->id;
$video->media_type = 2;
// Video
$video->media_link = $item;
$video->media_date = date("Y-m-d H:i:s", time());
$video->save();
}
}
// c. Photos
$filenames = upload::save('incident_photo');
$i = 1;
foreach ($filenames as $filename) {
$new_filename = $incident->id . "_" . $i . "_" . time();
// Resize original file... make sure its max 408px wide
Image::factory($filename)->save(Kohana::config('upload.directory', TRUE) . $new_filename . ".jpg");
// Create thumbnail
Image::factory($filename)->resize(70, 41, Image::HEIGHT)->save(Kohana::config('upload.directory', TRUE) . $new_filename . "_t.jpg");
// Remove the temporary file
unlink($filename);
// Save to DB
$photo = new Media_Model();
$photo->location_id = $location->id;
$photo->incident_id = $incident->id;
$photo->media_type = 1;
// Images
$photo->media_link = $new_filename . ".jpg";
$photo->media_thumb = $new_filename . "_t.jpg";
$photo->media_date = date("Y-m-d H:i:s", time());
$photo->save();
$i++;
}
// STEP 5: SAVE PERSONAL INFORMATION
ORM::factory('Incident_Person')->where('incident_id', $incident->id)->delete_all();
// Delete Previous Entries
$person = new Incident_Person_Model();
$person->location_id = $location->id;
$person->incident_id = $incident->id;
$person->person_first = $post->person_first;
$person->person_last = $post->person_last;
$person->person_email = $post->person_email;
$person->person_date = date("Y-m-d H:i:s", time());
$person->save();
if ($is_new) {
groups::forward_incident_to_own_instance($incident->id, $this->group->id);
}
// STEP 6a: SAVE LINK TO REPORTER MESSAGE
// We're creating a report from a message with this option
if (isset($message_id) && $message_id != "") {
$savemessage = ORM::factory('message', $message_id);
if ($savemessage->loaded == true) {
$savemessage->incident_id = $incident->id;
$savemessage->save();
}
}
// STEP 6b: SAVE LINK TO NEWS FEED
// We're creating a report from a newsfeed with this option
if (isset($feed_item_id) && $feed_item_id != "") {
$savefeed = ORM::factory('feed_item', $feed_item_id);
if ($savefeed->loaded == true) {
$savefeed->incident_id = $incident->id;
$savefeed->location_id = $location->id;
$savefeed->save();
}
}
// STEP 7: SAVE CUSTOM FORM FIELDS
if (isset($post->custom_field)) {
foreach ($post->custom_field as $key => $value) {
$form_response = ORM::factory('form_response')->where('form_field_id', $key)->where('incident_id', $incident->id)->find();
if ($form_response->loaded == true) {
$form_response->form_field_id = $key;
$form_response->form_response = $value;
$form_response->save();
} else {
$form_response = new Form_Response_Model();
$form_response->form_field_id = $key;
$form_response->incident_id = $incident->id;
$form_response->form_response = $value;
$form_response->save();
}
}
}
// Action::report_edit - Edited a Report
Event::run('ushahidi_action.report_edit', $incident);
// SAVE AND CLOSE?
if ($post->save == 1) {
url::redirect('admin/simplegroups/reports/edit/' . $incident->id . '/saved');
} else {
url::redirect('admin/simplegroups/reports/');
}
} else {
// repopulate the form fields
$form = arr::overwrite($form, $post->as_array());
// populate the error fields, if any
$errors = arr::overwrite($errors, $post->errors('report'));
$form_error = TRUE;
}
} else {
if ($id) {
//make sure the group user is allowed to see this report
$count = ORM::factory("simplegroups_groups_incident")->where(array("incident_id" => $id, "simplegroups_groups_id" => $this->group->id))->count_all();
if ($count == 0) {
url::redirect(url::site() . 'admin/simplegroups/reports');
}
// Retrieve Current Incident
$incident = ORM::factory('incident', $id);
if ($incident->loaded == true) {
// Retrieve Categories
$incident_category = array();
foreach ($incident->incident_category as $category) {
$incident_category[] = $category->category_id;
}
// Retrieve Group Categories
$incident_group_category = array();
$incident_group_categories = ORM::factory("simplegroups_category")->join("simplegroups_incident_category", "simplegroups_category.id", "simplegroups_incident_category.simplegroups_category_id")->where("simplegroups_incident_category.incident_id", $id)->find_all();
foreach ($incident_group_categories as $category) {
$incident_group_category[] = $category->id;
}
// Retrieve Media
$incident_news = array();
$incident_video = array();
$incident_photo = array();
foreach ($incident->media as $media) {
if ($media->media_type == 4) {
$incident_news[] = $media->media_link;
} elseif ($media->media_type == 2) {
$incident_video[] = $media->media_link;
} elseif ($media->media_type == 1) {
$incident_photo[] = $media->media_link;
}
}
// Get Geometries via SQL query as ORM can't handle Spatial Data
$sql = "SELECT AsText(geometry) as geometry, geometry_label, \n\t\t\t\tgeometry_comment, geometry_color, geometry_strokewidth \n\t\t\t\tFROM " . Kohana::config('database.default.table_prefix') . "geometry \n\t\t\t\tWHERE incident_id=" . $id;
$query = $db->query($sql);
foreach ($query as $item) {
$form['geometry'][] = $item;
}
// Combine Everything
$incident_arr = array('location_id' => $incident->location->id, 'form_id' => $incident->form_id, 'locale' => $incident->locale, 'incident_title' => $incident->incident_title, 'incident_description' => $incident->incident_description, 'incident_date' => date('m/d/Y', strtotime($incident->incident_date)), 'incident_hour' => date('h', strtotime($incident->incident_date)), 'incident_minute' => date('i', strtotime($incident->incident_date)), 'incident_ampm' => date('a', strtotime($incident->incident_date)), 'latitude' => $incident->location->latitude, 'longitude' => $incident->location->longitude, 'location_name' => $incident->location->location_name, 'country_id' => $incident->location->country_id, 'incident_category' => $incident_category, 'incident_group_category' => $incident_group_category, 'incident_news' => $incident_news, 'incident_video' => $incident_video, 'incident_photo' => $incident_photo, 'person_first' => $incident->incident_person->person_first, 'person_last' => $incident->incident_person->person_last, 'person_email' => $incident->incident_person->person_email, 'custom_field' => $this->_get_custom_form_fields($id, $incident->form_id, true), 'incident_active' => $incident->incident_active, 'incident_verified' => $incident->incident_verified, 'incident_status' => $incident->incident_status);
// Merge To Form Array For Display
$form = arr::overwrite($form, $incident_arr);
} else {
// Redirect
url::redirect('admin/simplegroups/reports/');
}
} else {
//this is a new report with no id
//check to see if we need to add some group categories that default on
//first find out what's out there.
//check and see if we need to tag this with a catgory
//find all the categories for this group with tag by default turned on
$categories = ORM::factory("simplegroups_category")->where("simplegroups_groups_id", $this->group->id)->where("selected_by_default", "1")->where("applies_to_report", "1")->find_all();
$default_categories = array();
foreach ($categories as $category) {
$default_categories[$category->id] = $category->id;
}
if (isset($message) && $message->loaded) {
//if a messge was used in the creation of this report we're gonna copy the appropriate categories over
//figure out what categories this has
$message_cats = ORM::factory("simplegroups_category")->join("simplegroups_message_category", "simplegroups_message_category.simplegroups_category_id", "simplegroups_category.id")->where('simplegroups_message_category.message_id', $message->id)->where("simplegroups_category.applies_to_report", "1")->find_all();
foreach ($message_cats as $message_cat) {
$default_categories[$message_cat->id] = $message_cat->id;
}
}
$form['incident_group_category'] = $default_categories;
}
}
$this->template->content->id = $id;
$this->template->content->form = $form;
$this->template->content->errors = $errors;
$this->template->content->form_error = $form_error;
$this->template->content->form_saved = $form_saved;
// Retrieve Custom Form Fields Structure
$disp_custom_fields = $this->_get_custom_form_fields($id, $form['form_id'], false);
$this->template->content->disp_custom_fields = $disp_custom_fields;
// Retrieve Previous & Next Records
$incident_date = date("c");
if (isset($incident)) {
$incident_date = $incident->incident_date;
}
$previous = ORM::factory('incident')->join("simplegroups_groups_incident", "incident.id", "simplegroups_groups_incident.incident_id")->where('incident.incident_date < ', $incident_date)->where("simplegroups_groups_incident.simplegroups_groups_id", $this->group->id)->orderby('incident.incident_date', 'desc')->find();
$previous_url = $previous->loaded ? url::base() . 'admin/simplegroups/reports/edit/' . $previous->id : url::base() . 'admin/simplegroups/reports/';
$next = ORM::factory('incident')->join("simplegroups_groups_incident", "incident.id", "simplegroups_groups_incident.incident_id")->where("simplegroups_groups_incident.simplegroups_groups_id", $this->group->id)->where('incident.incident_date > ', $incident_date)->orderby('incident.incident_date', 'asc')->find();
$next_url = $next->loaded ? url::base() . 'admin/simplegroups/reports/edit/' . $next->id : url::base() . 'admin/simplegroups/reports/';
$this->template->content->previous_url = $previous_url;
$this->template->content->next_url = $next_url;
// Javascript Header
$this->template->map_enabled = TRUE;
$this->template->colorpicker_enabled = TRUE;
$this->template->treeview_enabled = TRUE;
$this->template->editor_enabled = TRUE;
$this->template->js = new View('reports_submit_edit_js');
$this->template->js->edit_mode = TRUE;
$this->template->js->default_map = Kohana::config('settings.default_map');
$this->template->js->default_zoom = Kohana::config('settings.default_zoom');
if (!$form['latitude'] || !$form['latitude']) {
$this->template->js->latitude = Kohana::config('settings.default_lat');
$this->template->js->longitude = Kohana::config('settings.default_lon');
} else {
$this->template->js->latitude = $form['latitude'];
$this->template->js->longitude = $form['longitude'];
}
$this->template->js->incident_zoom = Kohana::config('settings.default_zoom');
$this->template->js->geometries = $form['geometry'];
// Inline Javascript
$this->template->content->date_picker_js = $this->_date_picker_js();
$this->template->content->color_picker_js = $this->_color_picker_js();
$this->template->content->new_category_toggle_js = $this->_new_category_toggle_js();
}
/**
* Edit a report
* @param bool|int $id The id no. of the report
* @param bool|string $saved
*/
function edit($id = false, $saved = false)
{
$this->template->content = new View('admin/reports_edit');
$this->template->content->title = Kohana::lang('ui_admin.create_report');
// setup and initialize form field names
$form = array('location_id' => '', 'form_id' => '', 'locale' => '', 'incident_title' => '', 'incident_description' => '', 'incident_date' => '', 'incident_hour' => '', 'incident_minute' => '', 'incident_ampm' => '', 'latitude' => '', 'longitude' => '', 'location_name' => '', 'country_id' => '', 'incident_category' => array(), 'incident_news' => array(), 'incident_video' => array(), 'incident_photo' => array(), 'person_first' => '', 'person_last' => '', 'person_email' => '', 'custom_field' => array(), 'incident_active' => '', 'incident_verified' => '', 'incident_source' => '', 'incident_information' => '');
// copy the form as errors, so the errors will be stored with keys corresponding to the form field names
$errors = $form;
$form_error = FALSE;
if ($saved == 'saved') {
$form_saved = TRUE;
} else {
$form_saved = FALSE;
}
// Initialize Default Values
$form['locale'] = Kohana::config('locale.language');
//$form['latitude'] = Kohana::config('settings.default_lat');
//$form['longitude'] = Kohana::config('settings.default_lon');
$form['country_id'] = Kohana::config('settings.default_country');
$form['incident_date'] = date("m/d/Y", time());
$form['incident_hour'] = date('g');
$form['incident_minute'] = date('i');
$form['incident_ampm'] = date('a');
// initialize custom field array
$form['custom_field'] = $this->_get_custom_form_fields($id, '', true);
// Locale (Language) Array
$this->template->content->locale_array = Kohana::config('locale.all_languages');
// Create Categories
$this->template->content->categories = $this->_get_categories();
$this->template->content->new_categories_form = $this->_new_categories_form_arr();
// Time formatting
$this->template->content->hour_array = $this->_hour_array();
$this->template->content->minute_array = $this->_minute_array();
$this->template->content->ampm_array = $this->_ampm_array();
// Get Countries
$countries = array();
foreach (ORM::factory('country')->orderby('country')->find_all() as $country) {
// Create a list of all categories
$this_country = $country->country;
if (strlen($this_country) > 35) {
$this_country = substr($this_country, 0, 35) . "...";
}
$countries[$country->id] = $this_country;
}
$this->template->content->countries = $countries;
//GET custom forms
$forms = array();
foreach (ORM::factory('form')->find_all() as $custom_forms) {
$forms[$custom_forms->id] = $custom_forms->form_title;
}
$this->template->content->forms = $forms;
// Retrieve thumbnail photos (if edit);
//XXX: fix _get_thumbnails
$this->template->content->incident = $this->_get_thumbnails($id);
// Are we creating this report from SMS/Email/Twitter?
// If so retrieve message
if (isset($_GET['mid']) && !empty($_GET['mid'])) {
$message_id = $_GET['mid'];
$service_id = "";
$message = ORM::factory('message', $message_id);
if ($message->loaded == true && $message->message_type == 1) {
$service_id = $message->reporter->service_id;
// Has a report already been created for this Message?
if ($message->incident_id != 0) {
// Redirect to report
url::redirect('admin/reports/edit/' . $message->incident_id);
}
$this->template->content->show_messages = true;
$incident_description = $message->message;
if (!empty($message->message_detail)) {
$incident_description .= "\n\n~~~~~~~~~~~~~~~~~~~~~~~~~\n\n" . $message->message_detail;
}
$form['incident_description'] = $incident_description;
$form['incident_date'] = date('m/d/Y', strtotime($message->message_date));
$form['incident_hour'] = date('h', strtotime($message->message_date));
$form['incident_minute'] = date('i', strtotime($message->message_date));
$form['incident_ampm'] = date('a', strtotime($message->message_date));
$form['person_first'] = $message->reporter->reporter_first;
$form['person_last'] = $message->reporter->reporter_last;
// Retrieve Last 5 Messages From this account
$this->template->content->all_messages = ORM::factory('message')->where('reporter_id', $message->reporter_id)->orderby('message_date', 'desc')->limit(5)->find_all();
} else {
$message_id = "";
$this->template->content->show_messages = false;
}
} else {
$this->template->content->show_messages = false;
}
// Are we creating this report from a Newsfeed?
if (isset($_GET['fid']) && !empty($_GET['fid'])) {
$feed_item_id = $_GET['fid'];
$feed_item = ORM::factory('feed_item', $feed_item_id);
if ($feed_item->loaded == true) {
// Has a report already been created for this Feed item?
if ($feed_item->incident_id != 0) {
// Redirect to report
url::redirect('admin/reports/edit/' . $feed_item->incident_id);
}
$form['incident_title'] = $feed_item->item_title;
$form['incident_description'] = $feed_item->item_description;
$form['incident_date'] = date('m/d/Y', strtotime($feed_item->item_date));
$form['incident_hour'] = date('h', strtotime($feed_item->item_date));
$form['incident_minute'] = date('i', strtotime($feed_item->item_date));
$form['incident_ampm'] = date('a', strtotime($feed_item->item_date));
// News Link
$form['incident_news'][0] = $feed_item->item_link;
// Does this newsfeed have a geolocation?
if ($feed_item->location_id) {
$form['location_id'] = $feed_item->location_id;
$form['latitude'] = $feed_item->location->latitude;
$form['longitude'] = $feed_item->location->longitude;
$form['location_name'] = $feed_item->location->location_name;
}
} else {
$feed_item_id = "";
}
}
// check, has the form been submitted, if so, setup validation
if ($_POST) {
// Instantiate Validation, use $post, so we don't overwrite $_POST fields with our own things
$post = Validation::factory(array_merge($_POST, $_FILES));
// Add some filters
$post->pre_filter('trim', TRUE);
// Add some rules, the input field, followed by a list of checks, carried out in order
// $post->add_rules('locale','required','alpha_dash','length[5]');
$post->add_rules('location_id', 'numeric');
$post->add_rules('message_id', 'numeric');
$post->add_rules('incident_title', 'required', 'length[3,200]');
$post->add_rules('incident_description', 'required');
$post->add_rules('incident_date', 'required', 'date_mmddyyyy');
$post->add_rules('incident_hour', 'required', 'between[1,12]');
$post->add_rules('incident_minute', 'required', 'between[0,59]');
if ($_POST['incident_ampm'] != "am" && $_POST['incident_ampm'] != "pm") {
$post->add_error('incident_ampm', 'values');
}
$post->add_rules('latitude', 'required', 'between[-90,90]');
// Validate for maximum and minimum latitude values
$post->add_rules('longitude', 'required', 'between[-180,180]');
// Validate for maximum and minimum longitude values
$post->add_rules('location_name', 'required', 'length[3,200]');
//XXX: Hack to validate for no checkboxes checked
if (!isset($_POST['incident_category'])) {
$post->incident_category = "";
$post->add_error('incident_category', 'required');
} else {
$post->add_rules('incident_category.*', 'required', 'numeric');
}
// Validate only the fields that are filled in
if (!empty($_POST['incident_news'])) {
foreach ($_POST['incident_news'] as $key => $url) {
if (!empty($url) and !(bool) filter_var($url, FILTER_VALIDATE_URL, FILTER_FLAG_HOST_REQUIRED)) {
$post->add_error('incident_news', 'url');
}
}
}
// Validate only the fields that are filled in
if (!empty($_POST['incident_video'])) {
foreach ($_POST['incident_video'] as $key => $url) {
if (!empty($url) and !(bool) filter_var($url, FILTER_VALIDATE_URL, FILTER_FLAG_HOST_REQUIRED)) {
$post->add_error('incident_video', 'url');
}
}
}
// Validate photo uploads
$post->add_rules('incident_photo', 'upload::valid', 'upload::type[gif,jpg,png]', 'upload::size[2M]');
// Validate Personal Information
if (!empty($_POST['person_first'])) {
$post->add_rules('person_first', 'length[3,100]');
}
if (!empty($_POST['person_last'])) {
$post->add_rules('person_last', 'length[3,100]');
}
if (!empty($_POST['person_email'])) {
$post->add_rules('person_email', 'email', 'length[3,100]');
}
// Validate Custom Fields
if (isset($post->custom_field) && !$this->_validate_custom_form_fields($post->custom_field)) {
$post->add_error('custom_field', 'values');
}
$post->add_rules('incident_active', 'required', 'between[0,1]');
$post->add_rules('incident_verified', 'required', 'length[0,1]');
$post->add_rules('incident_source', 'numeric', 'length[1,1]');
$post->add_rules('incident_information', 'numeric', 'length[1,1]');
// Test to see if things passed the rule checks
if ($post->validate()) {
// Yes! everything is valid
$location_id = $post->location_id;
// STEP 1: SAVE LOCATION
$location = new Location_Model($location_id);
$location->location_name = $post->location_name;
$location->latitude = $post->latitude;
$location->longitude = $post->longitude;
$location->location_date = date("Y-m-d H:i:s", time());
$location->save();
// STEP 2: SAVE INCIDENT
$incident = new Incident_Model($id);
$incident->location_id = $location->id;
//$incident->locale = $post->locale;
$incident->form_id = $post->form_id;
$incident->user_id = $_SESSION['auth_user']->id;
$incident->incident_title = $post->incident_title;
$incident->incident_description = $post->incident_description;
$incident_date = explode("/", $post->incident_date);
// where the $_POST['date'] is a value posted by form in mm/dd/yyyy format
$incident_date = $incident_date[2] . "-" . $incident_date[0] . "-" . $incident_date[1];
$incident_time = $post->incident_hour . ":" . $post->incident_minute . ":00 " . $post->incident_ampm;
$incident->incident_date = date("Y-m-d H:i:s", strtotime($incident_date . " " . $incident_time));
// Is this new or edit?
if ($id) {
$incident->incident_datemodify = date("Y-m-d H:i:s", time());
} else {
$incident->incident_dateadd = date("Y-m-d H:i:s", time());
}
// Is this an Email, SMS, Twitter submitted report?
//XXX: We may get rid of incident_mode altogether... ???
//$_POST
if (!empty($service_id)) {
if ($service_id == 1) {
// SMS
$incident->incident_mode = 2;
} elseif ($service_id == 2) {
// Email
$incident->incident_mode = 3;
} elseif ($service_id == 3) {
// Twitter
$incident->incident_mode = 4;
} elseif ($service_id == 4) {
// Laconica
$incident->incident_mode = 5;
}
}
// Incident Evaluation Info
$incident->incident_active = $post->incident_active;
$incident->incident_verified = $post->incident_verified;
$incident->incident_source = $post->incident_source;
$incident->incident_information = $post->incident_information;
//Save
$incident->save();
// Record Approval/Verification Action
$verify = new Verify_Model();
$verify->incident_id = $incident->id;
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
if ($post->incident_active == 1) {
$verify->verified_status = '1';
} elseif ($post->incident_verified == 1) {
$verify->verified_status = '2';
} elseif ($post->incident_active == 1 && $post->incident_verified == 1) {
$verify->verified_status = '3';
} else {
$verify->verified_status = '0';
}
$verify->save();
// STEP 3: SAVE CATEGORIES
ORM::factory('Incident_Category')->where('incident_id', $incident->id)->delete_all();
// Delete Previous Entries
foreach ($post->incident_category as $item) {
$incident_category = new Incident_Category_Model();
$incident_category->incident_id = $incident->id;
$incident_category->category_id = $item;
$incident_category->save();
}
// STEP 4: SAVE MEDIA
ORM::factory('Media')->where('incident_id', $incident->id)->where('media_type <> 1')->delete_all();
// Delete Previous Entries
// a. News
foreach ($post->incident_news as $item) {
if (!empty($item)) {
$news = new Media_Model();
$news->location_id = $location->id;
$news->incident_id = $incident->id;
$news->media_type = 4;
// News
$news->media_link = $item;
$news->media_date = date("Y-m-d H:i:s", time());
$news->save();
}
}
// b. Video
foreach ($post->incident_video as $item) {
if (!empty($item)) {
$video = new Media_Model();
$video->location_id = $location->id;
$video->incident_id = $incident->id;
$video->media_type = 2;
// Video
$video->media_link = $item;
$video->media_date = date("Y-m-d H:i:s", time());
$video->save();
}
}
// c. Photos
$filenames = upload::save('incident_photo');
$i = 1;
foreach ($filenames as $filename) {
$new_filename = $incident->id . "_" . $i . "_" . time();
// Resize original file... make sure its max 408px wide
Image::factory($filename)->resize(408, 248, Image::AUTO)->save(Kohana::config('upload.directory', TRUE) . $new_filename . ".jpg");
// Create thumbnail
Image::factory($filename)->resize(70, 41, Image::HEIGHT)->save(Kohana::config('upload.directory', TRUE) . $new_filename . "_t.jpg");
// Remove the temporary file
unlink($filename);
// Save to DB
$photo = new Media_Model();
$photo->location_id = $location->id;
$photo->incident_id = $incident->id;
$photo->media_type = 1;
// Images
$photo->media_link = $new_filename . ".jpg";
$photo->media_thumb = $new_filename . "_t.jpg";
$photo->media_date = date("Y-m-d H:i:s", time());
$photo->save();
$i++;
}
// STEP 5: SAVE PERSONAL INFORMATION
ORM::factory('Incident_Person')->where('incident_id', $incident->id)->delete_all();
// Delete Previous Entries
$person = new Incident_Person_Model();
$person->location_id = $location->id;
$person->incident_id = $incident->id;
$person->person_first = $post->person_first;
$person->person_last = $post->person_last;
$person->person_email = $post->person_email;
$person->person_date = date("Y-m-d H:i:s", time());
$person->save();
// STEP 6a: SAVE LINK TO REPORTER MESSAGE
// We're creating a report from a message with this option
if (isset($message_id) && $message_id != "") {
$savemessage = ORM::factory('message', $message_id);
if ($savemessage->loaded == true) {
$savemessage->incident_id = $incident->id;
$savemessage->save();
}
}
// STEP 6b: SAVE LINK TO NEWS FEED
// We're creating a report from a newsfeed with this option
if (isset($feed_item_id) && $feed_item_id != "") {
$savefeed = ORM::factory('feed_item', $feed_item_id);
if ($savefeed->loaded == true) {
$savefeed->incident_id = $incident->id;
$savefeed->location_id = $location->id;
$savefeed->save();
}
}
// STEP 7: SAVE CUSTOM FORM FIELDS
if (isset($post->custom_field)) {
foreach ($post->custom_field as $key => $value) {
$form_response = ORM::factory('form_response')->where('form_field_id', $key)->where('incident_id', $incident->id)->find();
if ($form_response->loaded == true) {
$form_response->form_field_id = $key;
$form_response->form_response = $value;
$form_response->save();
} else {
$form_response = new Form_Response_Model();
$form_response->form_field_id = $key;
$form_response->incident_id = $incident->id;
$form_response->form_response = $value;
$form_response->save();
}
}
}
// SAVE AND CLOSE?
if ($post->save == 1) {
url::redirect('admin/reports/edit/' . $incident->id . '/saved');
} else {
url::redirect('admin/reports/');
}
} else {
// repopulate the form fields
$form = arr::overwrite($form, $post->as_array());
// populate the error fields, if any
$errors = arr::overwrite($errors, $post->errors('report'));
$form_error = TRUE;
}
} else {
if ($id) {
// Retrieve Current Incident
$incident = ORM::factory('incident', $id);
if ($incident->loaded == true) {
// Retrieve Categories
$incident_category = array();
foreach ($incident->incident_category as $category) {
$incident_category[] = $category->category_id;
}
// Retrieve Media
$incident_news = array();
$incident_video = array();
$incident_photo = array();
foreach ($incident->media as $media) {
if ($media->media_type == 4) {
$incident_news[] = $media->media_link;
} elseif ($media->media_type == 2) {
$incident_video[] = $media->media_link;
} elseif ($media->media_type == 1) {
$incident_photo[] = $media->media_link;
}
}
// Combine Everything
$incident_arr = array('location_id' => $incident->location->id, 'form_id' => $incident->form_id, 'locale' => $incident->locale, 'incident_title' => $incident->incident_title, 'incident_description' => $incident->incident_description, 'incident_date' => date('m/d/Y', strtotime($incident->incident_date)), 'incident_hour' => date('h', strtotime($incident->incident_date)), 'incident_minute' => date('i', strtotime($incident->incident_date)), 'incident_ampm' => date('A', strtotime($incident->incident_date)), 'latitude' => $incident->location->latitude, 'longitude' => $incident->location->longitude, 'location_name' => $incident->location->location_name, 'country_id' => $incident->location->country_id, 'incident_category' => $incident_category, 'incident_news' => $incident_news, 'incident_video' => $incident_video, 'incident_photo' => $incident_photo, 'person_first' => $incident->incident_person->person_first, 'person_last' => $incident->incident_person->person_last, 'person_email' => $incident->incident_person->person_email, 'custom_field' => $this->_get_custom_form_fields($id, $incident->form_id, true), 'incident_active' => $incident->incident_active, 'incident_verified' => $incident->incident_verified, 'incident_source' => $incident->incident_source, 'incident_information' => $incident->incident_information);
// Merge To Form Array For Display
$form = arr::overwrite($form, $incident_arr);
} else {
// Redirect
url::redirect('admin/reports/');
}
}
}
$this->template->content->id = $id;
$this->template->content->form = $form;
$this->template->content->errors = $errors;
$this->template->content->form_error = $form_error;
$this->template->content->form_saved = $form_saved;
// Retrieve Custom Form Fields Structure
$disp_custom_fields = $this->_get_custom_form_fields($id, $form['form_id'], false);
$this->template->content->disp_custom_fields = $disp_custom_fields;
// Retrieve Previous & Next Records
$previous = ORM::factory('incident')->where('id < ', $id)->orderby('id', 'desc')->find();
$previous_url = $previous->loaded ? url::base() . 'admin/reports/edit/' . $previous->id : url::base() . 'admin/reports/';
$next = ORM::factory('incident')->where('id > ', $id)->orderby('id', 'desc')->find();
$next_url = $next->loaded ? url::base() . 'admin/reports/edit/' . $next->id : url::base() . 'admin/reports/';
$this->template->content->previous_url = $previous_url;
$this->template->content->next_url = $next_url;
// Javascript Header
$this->template->map_enabled = TRUE;
$this->template->colorpicker_enabled = TRUE;
$this->template->treeview_enabled = TRUE;
$this->template->js = new View('admin/reports_edit_js');
$this->template->js->default_map = Kohana::config('settings.default_map');
$this->template->js->default_zoom = Kohana::config('settings.default_zoom');
if (!$form['latitude'] || !$form['latitude']) {
$this->template->js->latitude = Kohana::config('settings.default_lat');
$this->template->js->longitude = Kohana::config('settings.default_lon');
} else {
$this->template->js->latitude = $form['latitude'];
$this->template->js->longitude = $form['longitude'];
}
// Inline Javascript
$this->template->content->date_picker_js = $this->_date_picker_js();
$this->template->content->color_picker_js = $this->_color_picker_js();
$this->template->content->new_category_toggle_js = $this->_new_category_toggle_js();
}
/**
* Function to record the verification/approval actions
*
* @param mixed $incident
*/
public static function verify_approve($incident)
{
// @todo Exception handling
$verify = new Verify_Model();
$verify->incident_id = $incident->id;
// Record 'Verified By' Action
$verify->user_id = 0;
if (Auth::instance()->get_user() instanceof User_Model) {
$verify->user_id = Auth::instance()->get_user()->id;
}
$verify->verified_date = date("Y-m-d H:i:s", time());
if ($incident->incident_active == 1) {
$verify->verified_status = '1';
} elseif ($incident->incident_verified == 1) {
$verify->verified_status = '2';
} elseif ($incident->incident_active == 1 and $incident->incident_verified == 1) {
$verify->verified_status = '3';
} else {
$verify->verified_status = '0';
}
// Save
$verify->save();
}
/**
* Verify or unverify an existing report
* @param int report_id - the id of the report to be verified
* unverified.
*/
private function _verify_report()
{
$form = array('incident_id' => '');
$ret_value = 0;
// Will hold the return value; start off with a "no error" value
if ($_POST) {
$post = Validation::factory($_POST);
// Add some filters
$post->pre_filter('trim', TRUE);
// Add some rules, the input field, followed by a list of
//checks, carried out in order
$post->add_rules('incident_id', 'required', 'numeric');
if ($post->validate()) {
$incident_id = $post->incident_id;
$update = new Incident_Model($incident_id);
if ($update->loaded == true) {
if ($update->incident_verified == '1') {
$update->incident_verified = '0';
$verify->verified_status = '0';
} else {
$update->incident_verified = '1';
$verify->verified_status = '2';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $incident_id;
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
} else {
//TODO i18nize the string
$this->error_messages .= "Could not verify this report " . $post->incident_id;
$ret_value = 1;
}
} else {
//TODO i18nize the string
$this->error_messages .= "Incident ID is required.";
$ret_value = 1;
}
} else {
$ret_value = 3;
}
$this->response_data = $this->response($ret_value, $this->error_messages);
}
/**
* Function to record the verification/approval actions
*
* @param mixed $incident
*/
public static function verify_approve($incident)
{
// @todo Exception handling
$verify = new Verify_Model();
$verify->incident_id = $incident->id;
// Record 'Verified By' Action
$verify->user_id = $_SESSION['auth_user']->id;
$verify->verified_date = date("Y-m-d H:i:s", time());
if ($incident->incident_active == 1) {
$verify->verified_status = '1';
} elseif ($incident->incident_verified == 1) {
$verify->verified_status = '2';
} elseif ($incident->incident_active == 1 and $incident->incident_verified == 1) {
$verify->verified_status = '3';
} else {
$verify->verified_status = '0';
}
// Save
$verify->save();
}
/**
* Lists the reports.
*
* @param int $page
*/
public function index($page = 1)
{
// If user doesn't have access, redirect to dashboard
if (!admin::permissions($this->user, "reports_view")) {
url::redirect(url::site() . 'admin/dashboard');
}
$this->template->content = new View('admin/reports');
$this->template->content->title = Kohana::lang('ui_admin.reports');
//hook into the event for the reports::fetch_incidents() method
Event::add('ushahidi_filter.fetch_incidents_set_params', array($this, '_add_incident_filters'));
$status = "0";
if (!empty($_GET['status'])) {
$status = $_GET['status'];
if (strtolower($status) == 'a') {
array_push($this->params, 'i.incident_active = 0');
} elseif (strtolower($status) == 'v') {
array_push($this->params, 'i.incident_verified = 0');
} else {
$status = "0";
}
}
// Get Search Keywords (If Any)
if (isset($_GET['k'])) {
// Brute force input sanitization
// Phase 1 - Strip the search string of all non-word characters
$keyword_raw = isset($_GET['k']) ? preg_replace('#/\\w+/#', '', $_GET['k']) : "";
// Strip any HTML tags that may have been missed in Phase 1
$keyword_raw = strip_tags($keyword_raw);
// Phase 3 - Invoke Kohana's XSS cleaning mechanism just incase an outlier wasn't caught
// in the first 2 steps
$keyword_raw = $this->input->xss_clean($keyword_raw);
$filter = " (" . $this->_get_searchstring($keyword_raw) . ")";
array_push($this->params, $filter);
} else {
$keyword_raw = "";
}
// Check, has the form been submitted?
$form_error = FALSE;
$form_saved = FALSE;
$form_action = "";
if ($_POST) {
$post = Validation::factory($_POST);
// Add some filters
$post->pre_filter('trim', TRUE);
// Add some rules, the input field, followed by a list of checks, carried out in order
$post->add_rules('action', 'required', 'alpha', 'length[1,1]');
$post->add_rules('incident_id.*', 'required', 'numeric');
if ($post->validate()) {
// Approve Action
if ($post->action == 'a') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == TRUE) {
$update->incident_active = $update->incident_active == 0 ? '1' : '0';
// Tag this as a report that needs to be sent out as an alert
if ($update->incident_alert_status != '2') {
// 2 = report that has had an alert sent
$update->incident_alert_status = '1';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $item;
$verify->verified_status = '1';
// Record 'Verified By' Action
$verify->user_id = $_SESSION['auth_user']->id;
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
// Action::report_approve - Approve a Report
Event::run('ushahidi_action.report_approve', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.approved'));
} elseif ($post->action == 'u') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == TRUE) {
$update->incident_active = '0';
// If Alert hasn't been sent yet, disable it
if ($update->incident_alert_status == '1') {
$update->incident_alert_status = '0';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $item;
$verify->verified_status = '0';
// Record 'Verified By' Action
$verify->user_id = $_SESSION['auth_user']->id;
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
// Action::report_unapprove - Unapprove a Report
Event::run('ushahidi_action.report_unapprove', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.unapproved'));
} elseif ($post->action == 'v') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
$verify = new Verify_Model();
if ($update->loaded == TRUE) {
if ($update->incident_verified == '1') {
$update->incident_verified = '0';
$verify->verified_status = '0';
} else {
$update->incident_verified = '1';
$verify->verified_status = '2';
}
$update->save();
$verify->incident_id = $item;
// Record 'Verified By' Action
$verify->user_id = $_SESSION['auth_user']->id;
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
}
}
// Set the form action
$form_action = strtoupper(Kohana::lang('ui_admin.verified_unverified'));
} elseif ($post->action == 'd') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == TRUE) {
$incident_id = $update->id;
$location_id = $update->location_id;
$update->delete();
// Delete Location
ORM::factory('location')->where('id', $location_id)->delete_all();
// Delete Categories
ORM::factory('incident_category')->where('incident_id', $incident_id)->delete_all();
// Delete Translations
ORM::factory('incident_lang')->where('incident_id', $incident_id)->delete_all();
// Delete Photos From Directory
foreach (ORM::factory('media')->where('incident_id', $incident_id)->where('media_type', 1) as $photo) {
deletePhoto($photo->id);
}
// Delete Media
ORM::factory('media')->where('incident_id', $incident_id)->delete_all();
// Delete Sender
ORM::factory('incident_person')->where('incident_id', $incident_id)->delete_all();
// Delete relationship to SMS message
$updatemessage = ORM::factory('message')->where('incident_id', $incident_id)->find();
if ($updatemessage->loaded == TRUE) {
$updatemessage->incident_id = 0;
$updatemessage->save();
}
// Delete Comments
ORM::factory('comment')->where('incident_id', $incident_id)->delete_all();
// Delete form responses
ORM::factory('form_response')->where('incident_id', $incident_id)->delete_all();
// Action::report_delete - Deleted a Report
Event::run('ushahidi_action.report_delete', $incident_id);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.deleted'));
}
$form_saved = TRUE;
} else {
$form_error = TRUE;
}
}
// Fetch all incidents
$all_incidents = reports::fetch_incidents();
// Pagination
$pagination = new Pagination(array('style' => 'front-end-reports', 'query_string' => 'page', 'items_per_page' => (int) Kohana::config('settings.items_per_page'), 'total_items' => $all_incidents->count()));
Event::run('ushahidi_filter.pagination', $pagination);
// Reports
$incidents = Incident_Model::get_incidents(reports::$params, $pagination);
Event::run('ushahidi_filter.filter_incidents', $incidents);
$this->template->content->countries = Country_Model::get_countries_list();
$this->template->content->incidents = $incidents;
$this->template->content->pagination = $pagination;
$this->template->content->form_error = $form_error;
$this->template->content->form_saved = $form_saved;
$this->template->content->form_action = $form_action;
// Total Reports
$this->template->content->total_items = $pagination->total_items;
// Status Tab
$this->template->content->status = $status;
// Javascript Header
$this->template->js = new View('admin/reports_js');
}
/**
* Lists the reports.
* @param int $page
*/
public function index($page = 1)
{
// If user doesn't have access, redirect to dashboard
if (!admin::permissions($this->user, "reports_view")) {
url::redirect(url::site() . 'admin/dashboard');
}
$this->template->content = new View('admin/reports');
$this->template->content->title = Kohana::lang('ui_admin.reports');
if (!empty($_GET['status'])) {
$status = $_GET['status'];
if (strtolower($status) == 'a') {
$filter = 'incident_active = 0';
} elseif (strtolower($status) == 'v') {
$filter = 'incident_verified = 0';
} else {
$status = "0";
$filter = '1=1';
}
} else {
$status = "0";
$filter = "1=1";
}
// Get Search Keywords (If Any)
if (isset($_GET['k'])) {
// Brute force input sanitization
// Phase 1 - Strip the search string of all non-word characters
$keyword_raw = preg_replace('/[^\\w+]\\w*/', '', $_GET['k']);
// Strip any HTML tags that may have been missed in Phase 1
$keyword_raw = strip_tags($keyword_raw);
// Phase 3 - Invoke Kohana's XSS cleaning mechanism just incase an outlier wasn't caught
// in the first 2 steps
$keyword_raw = $this->input->xss_clean($keyword_raw);
$filter .= " AND (" . $this->_get_searchstring($keyword_raw) . ")";
} else {
$keyword_raw = "";
}
// Check, has the form been submitted?
$form_error = FALSE;
$form_saved = FALSE;
$form_action = "";
if ($_POST) {
$post = Validation::factory($_POST);
// Add some filters
$post->pre_filter('trim', TRUE);
// Add some rules, the input field, followed by a list of checks, carried out in order
$post->add_rules('action', 'required', 'alpha', 'length[1,1]');
$post->add_rules('incident_id.*', 'required', 'numeric');
if ($post->validate()) {
// Approve Action
if ($post->action == 'a') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == TRUE) {
$update->incident_active = $update->incident_active == 0 ? '1' : '0';
// Tag this as a report that needs to be sent out as an alert
if ($update->incident_alert_status != '2') {
// 2 = report that has had an alert sent
$update->incident_alert_status = '1';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $item;
$verify->verified_status = '1';
// Record 'Verified By' Action
$verify->user_id = $_SESSION['auth_user']->id;
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
// Action::report_approve - Approve a Report
Event::run('ushahidi_action.report_approve', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.approved'));
} elseif ($post->action == 'u') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == true) {
$update->incident_active = '0';
// If Alert hasn't been sent yet, disable it
if ($update->incident_alert_status == '1') {
$update->incident_alert_status = '0';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $item;
$verify->verified_status = '0';
// Record 'Verified By' Action
$verify->user_id = $_SESSION['auth_user']->id;
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
// Action::report_unapprove - Unapprove a Report
Event::run('ushahidi_action.report_unapprove', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.unapproved'));
} elseif ($post->action == 'v') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
$verify = new Verify_Model();
if ($update->loaded == true) {
if ($update->incident_verified == '1') {
$update->incident_verified = '0';
$verify->verified_status = '0';
} else {
$update->incident_verified = '1';
$verify->verified_status = '2';
}
$update->save();
$verify->incident_id = $item;
// Record 'Verified By' Action
$verify->user_id = $_SESSION['auth_user']->id;
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
}
}
// Set the form action
$form_action = strtoupper(Kohana::lang('ui_admin.verified_unverified'));
} elseif ($post->action == 'd') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == true) {
$incident_id = $update->id;
$location_id = $update->location_id;
$update->delete();
// Delete Location
ORM::factory('location')->where('id', $location_id)->delete_all();
// Delete Categories
ORM::factory('incident_category')->where('incident_id', $incident_id)->delete_all();
// Delete Translations
ORM::factory('incident_lang')->where('incident_id', $incident_id)->delete_all();
// Delete Photos From Directory
foreach (ORM::factory('media')->where('incident_id', $incident_id)->where('media_type', 1) as $photo) {
deletePhoto($photo->id);
}
// Delete Media
ORM::factory('media')->where('incident_id', $incident_id)->delete_all();
// Delete Sender
ORM::factory('incident_person')->where('incident_id', $incident_id)->delete_all();
// Delete relationship to SMS message
$updatemessage = ORM::factory('message')->where('incident_id', $incident_id)->find();
if ($updatemessage->loaded == true) {
$updatemessage->incident_id = 0;
$updatemessage->save();
}
// Delete Comments
ORM::factory('comment')->where('incident_id', $incident_id)->delete_all();
// Delete form responses
ORM::factory('form_response')->where('incident_id', $incident_id)->delete_all();
// Action::report_delete - Deleted a Report
Event::run('ushahidi_action.report_delete', $incident_id);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.deleted'));
}
$form_saved = TRUE;
} else {
$form_error = TRUE;
}
}
// Pagination
$pagination = new Pagination(array('query_string' => 'page', 'items_per_page' => $this->items_per_page, 'total_items' => ORM::factory('incident')->join('location', 'incident.location_id', 'location.id', 'INNER')->where($filter)->count_all()));
$incidents = ORM::factory('incident')->join('location', 'incident.location_id', 'location.id', 'INNER')->where($filter)->orderby('incident_dateadd', 'desc')->find_all($this->items_per_page, $pagination->sql_offset);
$location_ids = array();
foreach ($incidents as $incident) {
$location_ids[] = $incident->location_id;
}
// Check if location_ids is not empty
if (count($location_ids) > 0) {
$locations_result = ORM::factory('location')->in('id', implode(',', $location_ids))->find_all();
$locations = array();
$country_ids = array();
foreach ($locations_result as $loc) {
$locations[$loc->id] = $loc->location_name;
$country_ids[$loc->id]['country_id'] = $loc->country_id;
}
} else {
$locations = array();
}
$this->template->content->locations = $locations;
$this->template->content->country_ids = $country_ids;
// GET countries
$countries = array();
foreach (ORM::factory('country')->orderby('country')->find_all() as $country) {
// Create a list of all categories
$this_country = $country->country;
if (strlen($this_country) > 35) {
$this_country = substr($this_country, 0, 35) . "...";
}
$countries[$country->id] = $this_country;
}
$this->template->content->countries = $countries;
$this->template->content->incidents = $incidents;
$this->template->content->pagination = $pagination;
$this->template->content->form_error = $form_error;
$this->template->content->form_saved = $form_saved;
$this->template->content->form_action = $form_action;
// Total Reports
$this->template->content->total_items = $pagination->total_items;
// Status Tab
$this->template->content->status = $status;
// Javascript Header
$this->template->js = new View('admin/reports_js');
}
/**
* Function to record the verification/approval actions
*
* @param mixed $incident
*/
public static function verify_approve($incident)
{
// @todo Exception handling
$verify = new Verify_Model();
$verify->incident_id = $incident->id;
// Record 'Verified By' Action
$verify->user_id = 0;
if (Auth::instance()->get_user() instanceof User_Model) {
$verify->user_id = Auth::instance()->get_user()->id;
}
$verify->verified_date = date("Y-m-d H:i:s", time());
// JP: With the logic that was here before, the verified status would never become 3. I reordered the ifs and elseifs to fix this.
if ($incident->incident_active == 1 and $incident->incident_verified == 1) {
$verify->verified_status = '3';
} elseif ($incident->incident_verified == 1) {
$verify->verified_status = '2';
} elseif ($incident->incident_active == 1) {
$verify->verified_status = '1';
} else {
$verify->verified_status = '0';
}
// Save
$verify->save();
}
/**
* Lists the reports.
* @param int $page
*/
function index($page = 1)
{
// If user doesn't have access, redirect to dashboard
if (!admin::permissions($this->user, "reports_view")) {
url::redirect(url::site() . 'admin/dashboard');
}
$this->template->content = new View('adminmap/adminmap_reports');
$this->template->content->title = Kohana::lang('ui_admin.reports');
if (!empty($_GET['status'])) {
$status = $_GET['status'];
if (strtolower($status) == 'a') {
$filter = 'incident.incident_active = 0';
} elseif (strtolower($status) == 'v') {
$filter = 'incident.incident_verified = 0';
} else {
$status = "0";
$filter = '1=1';
}
} else {
$status = "0";
$filter = "1=1";
}
// check, has the form been submitted?
$form_error = FALSE;
$form_saved = FALSE;
$form_action = "";
if ($_POST) {
$post = Validation::factory($_POST);
// Add some filters
$post->pre_filter('trim', TRUE);
// Add some rules, the input field, followed by a list of checks, carried out in order
$post->add_rules('action', 'required', 'alpha', 'length[1,1]');
$post->add_rules('incident_id.*', 'required', 'numeric');
if ($post->validate()) {
if ($post->action == 'a') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == true) {
if ($update->incident_active == 0) {
$update->incident_active = '1';
} else {
$update->incident_active = '0';
}
// Tag this as a report that needs to be sent out as an alert
if ($update->incident_alert_status != '2') {
// 2 = report that has had an alert sent
$update->incident_alert_status = '1';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $item;
$verify->verified_status = '1';
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
// Action::report_approve - Approve a Report
Event::run('ushahidi_action.report_approve', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.approved'));
} elseif ($post->action == 'u') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == true) {
$update->incident_active = '0';
// If Alert hasn't been sent yet, disable it
if ($update->incident_alert_status == '1') {
$update->incident_alert_status = '0';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $item;
$verify->verified_status = '0';
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
// Action::report_unapprove - Unapprove a Report
Event::run('ushahidi_action.report_unapprove', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.unapproved'));
} elseif ($post->action == 'v') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
$verify = new Verify_Model();
if ($update->loaded == true) {
if ($update->incident_verified == '1') {
$update->incident_verified = '0';
$verify->verified_status = '0';
} else {
$update->incident_verified = '1';
$verify->verified_status = '2';
}
$update->save();
$verify->incident_id = $item;
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
}
}
$form_action = "VERIFIED";
} elseif ($post->action == 'd') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == true) {
$incident_id = $update->id;
$location_id = $update->location_id;
$update->delete();
// Delete Location
ORM::factory('location')->where('id', $location_id)->delete_all();
// Delete Categories
ORM::factory('incident_category')->where('incident_id', $incident_id)->delete_all();
// Delete Translations
ORM::factory('incident_lang')->where('incident_id', $incident_id)->delete_all();
// Delete Photos From Directory
foreach (ORM::factory('media')->where('incident_id', $incident_id)->where('media_type', 1) as $photo) {
deletePhoto($photo->id);
}
// Delete Media
ORM::factory('media')->where('incident_id', $incident_id)->delete_all();
// Delete Sender
ORM::factory('incident_person')->where('incident_id', $incident_id)->delete_all();
// Delete relationship to SMS message
$updatemessage = ORM::factory('message')->where('incident_id', $incident_id)->find();
if ($updatemessage->loaded == true) {
$updatemessage->incident_id = 0;
$updatemessage->save();
}
// Delete Comments
ORM::factory('comment')->where('incident_id', $incident_id)->delete_all();
// Action::report_delete - Deleted a Report
Event::run('ushahidi_action.report_delete', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.deleted'));
}
$form_saved = TRUE;
} else {
$form_error = TRUE;
}
}
$db = new Database();
// Category ID
$category_ids = array();
if (isset($_GET['c']) and !empty($_GET['c'])) {
$category_ids = explode(",", $_GET['c']);
//get rid of that trailing ","
} else {
$category_ids = array("0");
}
// logical operator
$logical_operator = "or";
if (isset($_GET['lo']) and !empty($_GET['lo'])) {
$logical_operator = $_GET['lo'];
}
$show_unapproved = "3";
//1 show only approved, 2 show only unapproved, 3 show all
//figure out if we're showing unapproved stuff or what.
if (isset($_GET['u']) and !empty($_GET['u'])) {
$show_unapproved = (int) $_GET['u'];
}
$approved_text = "";
if ($show_unapproved == 1) {
$approved_text = "incident.incident_active = 1 ";
} else {
if ($show_unapproved == 2) {
$approved_text = "incident.incident_active = 0 ";
} else {
if ($show_unapproved == 3) {
$approved_text = " (incident.incident_active = 0 OR incident.incident_active = 1) ";
}
}
}
// Start Date
$start_date = (isset($_GET['s']) and !empty($_GET['s'])) ? (int) $_GET['s'] : "0";
// End Date
$end_date = (isset($_GET['e']) and !empty($_GET['e'])) ? (int) $_GET['e'] : "0";
$filter .= $start_date ? " AND incident.incident_date >= '" . date("Y-m-d H:i:s", $start_date) . "'" : "";
$filter .= $end_date ? " AND incident.incident_date <= '" . date("Y-m-d H:i:s", $end_date) . "'" : "";
$location_where = "";
// Break apart location variables, if necessary
$southwest = array();
if (isset($_GET['sw'])) {
$southwest = explode(",", $_GET['sw']);
}
$northeast = array();
if (isset($_GET['ne'])) {
$northeast = explode(",", $_GET['ne']);
}
if (count($southwest) == 2 and count($northeast) == 2) {
$lon_min = (double) $southwest[0];
$lon_max = (double) $northeast[0];
$lat_min = (double) $southwest[1];
$lat_max = (double) $northeast[1];
$location_where = ' AND (location.latitude >=' . $lat_min . ' AND location.latitude <=' . $lat_max . ' AND location.longitude >=' . $lon_min . ' AND location.longitude <=' . $lon_max . ') ';
}
$reports_count = adminmap_reports::get_reports_count($category_ids, $approved_text, $location_where . " AND " . $filter, $logical_operator);
// Pagination
$pagination = new Pagination(array('query_string' => 'page', 'items_per_page' => (int) Kohana::config('settings.items_per_page'), 'total_items' => $reports_count));
$incidents = adminmap_reports::get_reports($category_ids, $approved_text, $location_where . " AND " . $filter, $logical_operator, "incident.incident_date", "asc", (int) Kohana::config('settings.items_per_page_admin'), $pagination->sql_offset);
//GET countries
$countries = array();
foreach (ORM::factory('country')->orderby('country')->find_all() as $country) {
// Create a list of all categories
$this_country = $country->country;
if (strlen($this_country) > 35) {
$this_country = substr($this_country, 0, 35) . "...";
}
$countries[$country->id] = $this_country;
}
$this->template->content->countries = $countries;
$this->template->content->incidents = $incidents;
$this->template->content->pagination = $pagination;
$this->template->content->form_error = $form_error;
$this->template->content->form_saved = $form_saved;
$this->template->content->form_action = $form_action;
// Total Reports
$this->template->content->total_items = $pagination->total_items;
// Status Tab
$this->template->content->status = $status;
// Javascript Header
$this->template->js = new View('admin/reports_js');
}
/**
* Lists the reports.
* @param int $page
*/
function index($page = 1)
{
$auth = new auth();
if (!($auth and $auth->logged_in('superadmin'))) {
url::redirect('admin/dashboard');
}
$this->template->content = new View('simplegroups/reportssuper');
$this->template->content->title = Kohana::lang('ui_admin.reports');
if (!empty($_GET['status'])) {
$status = $_GET['status'];
if (strtolower($status) == 'a') {
$filter = 'incident_active = 0';
} elseif (strtolower($status) == 'v') {
$filter = 'incident_verified = 0';
} else {
$status = "0";
$filter = '1=1';
}
} else {
$status = "0";
$filter = "1=1";
}
// Get Search Keywords (If Any)
if (isset($_GET['k'])) {
// Brute force input sanitization
// Phase 1 - Strip the search string of all non-word characters
$keyword_raw = preg_replace('/[^\\w+]\\w*/', '', $_GET['k']);
// Strip any HTML tags that may have been missed in Phase 1
$keyword_raw = strip_tags($keyword_raw);
// Phase 3 - Invoke Kohana's XSS cleaning mechanism just incase an outlier wasn't caught
// in the first 2 steps
$keyword_raw = $this->input->xss_clean($keyword_raw);
$filter .= " AND (" . $this->_get_searchstring($keyword_raw) . ")";
} else {
$keyword_raw = "";
}
// check, has the form been submitted?
$form_error = FALSE;
$form_saved = FALSE;
$form_action = "";
if ($_POST) {
$post = Validation::factory($_POST);
// Add some filters
$post->pre_filter('trim', TRUE);
// Add some rules, the input field, followed by a list of checks, carried out in order
$post->add_rules('action', 'required', 'alpha', 'length[1,1]');
$post->add_rules('incident_id.*', 'required', 'numeric');
if ($post->validate()) {
if ($post->action == 'a') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == true) {
if ($update->incident_active == 0) {
$update->incident_active = '1';
} else {
$update->incident_active = '0';
}
// Tag this as a report that needs to be sent out as an alert
if ($update->incident_alert_status != '2') {
// 2 = report that has had an alert sent
$update->incident_alert_status = '1';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $item;
$verify->verified_status = '1';
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
// Action::report_approve - Approve a Report
Event::run('ushahidi_action.report_approve', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.approved'));
} elseif ($post->action == 'u') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == true) {
$update->incident_active = '0';
// If Alert hasn't been sent yet, disable it
if ($update->incident_alert_status == '1') {
$update->incident_alert_status = '0';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $item;
$verify->verified_status = '0';
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
// Action::report_unapprove - Unapprove a Report
Event::run('ushahidi_action.report_unapprove', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.unapproved'));
} elseif ($post->action == 'v') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
$verify = new Verify_Model();
if ($update->loaded == true) {
if ($update->incident_verified == '1') {
$update->incident_verified = '0';
$verify->verified_status = '0';
} else {
$update->incident_verified = '1';
$verify->verified_status = '2';
}
$update->save();
$verify->incident_id = $item;
$verify->user_id = $_SESSION['auth_user']->id;
// Record 'Verified By' Action
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
}
}
$form_action = "VERIFIED";
} elseif ($post->action == 'd') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == true) {
$incident_id = $update->id;
$location_id = $update->location_id;
$update->delete();
// Delete Location
ORM::factory('location')->where('id', $location_id)->delete_all();
// Delete Categories
ORM::factory('incident_category')->where('incident_id', $incident_id)->delete_all();
// Delete Translations
ORM::factory('incident_lang')->where('incident_id', $incident_id)->delete_all();
// Delete Photos From Directory
foreach (ORM::factory('media')->where('incident_id', $incident_id)->where('media_type', 1) as $photo) {
deletePhoto($photo->id);
}
// Delete Media
ORM::factory('media')->where('incident_id', $incident_id)->delete_all();
// Delete Sender
ORM::factory('incident_person')->where('incident_id', $incident_id)->delete_all();
// Delete relationship to SMS message
$updatemessage = ORM::factory('message')->where('incident_id', $incident_id)->find();
if ($updatemessage->loaded == true) {
$updatemessage->incident_id = 0;
$updatemessage->save();
}
// Delete Comments
ORM::factory('comment')->where('incident_id', $incident_id)->delete_all();
//Delete Group
ORM::factory("simplegroups_groups_incident")->where('incident_id', $incident_id)->delete_all();
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.deleted'));
}
$form_saved = TRUE;
} else {
$form_error = TRUE;
}
}
$db = new Database();
// Category ID
$category_ids = array();
if (isset($_GET['c']) and !empty($_GET['c'])) {
$category_ids = explode(",", $_GET['c']);
//get rid of that trailing ","
} else {
$category_ids = array("0");
}
// logical operator
$logical_operator = "or";
if (isset($_GET['lo']) and !empty($_GET['lo'])) {
$logical_operator = $_GET['lo'];
}
$show_unapproved = "3";
//1 show only approved, 2 show only unapproved, 3 show all
//figure out if we're showing unapproved stuff or what.
if (isset($_GET['u']) and !empty($_GET['u'])) {
$show_unapproved = (int) $_GET['u'];
}
$approved_text = "";
if ($show_unapproved == 1) {
$approved_text = "incident.incident_active = 1 ";
} else {
if ($show_unapproved == 2) {
$approved_text = "incident.incident_active = 0 ";
} else {
if ($show_unapproved == 3) {
$approved_text = " (incident.incident_active = 0 OR incident.incident_active = 1) ";
}
}
}
$location_where = "";
// Break apart location variables, if necessary
$southwest = array();
if (isset($_GET['sw'])) {
$southwest = explode(",", $_GET['sw']);
}
$northeast = array();
if (isset($_GET['ne'])) {
$northeast = explode(",", $_GET['ne']);
}
if (count($southwest) == 2 and count($northeast) == 2) {
$lon_min = (double) $southwest[0];
$lon_max = (double) $northeast[0];
$lat_min = (double) $southwest[1];
$lat_max = (double) $northeast[1];
$location_where = ' AND (location.latitude >=' . $lat_min . ' AND location.latitude <=' . $lat_max . ' AND location.longitude >=' . $lon_min . ' AND location.longitude <=' . $lon_max . ') ';
}
$group = 0;
//figure out if we're showing unapproved stuff or what.
if (isset($_GET['sg']) and !empty($_GET['sg'])) {
$group = (int) $_GET['sg'];
}
$group_where = " (1=1) ";
if ($group != 0) {
$group_where = " (simplegroups_groups_incident.simplegroups_groups_id = " . $group . ") ";
}
$reports_count = groups::get_reports_count($category_ids, $approved_text, $location_where . " AND " . $filter . " AND " . $group_where, $logical_operator);
// Pagination
$pagination = new Pagination(array('query_string' => 'page', 'items_per_page' => (int) Kohana::config('settings.items_per_page'), 'total_items' => $reports_count));
$incidents = groups::get_reports($category_ids, $approved_text, $location_where . " AND " . $filter . " AND " . $group_where, $logical_operator, "incident.incident_date", "asc", (int) Kohana::config('settings.items_per_page_admin'), $pagination->sql_offset);
$location_ids = array();
foreach ($incidents as $incident) {
$location_ids[] = $incident->location_id;
}
//check if location_ids is not empty
if (count($location_ids) > 0) {
$locations_result = ORM::factory('location')->in('id', implode(',', $location_ids))->find_all();
$locations = array();
foreach ($locations_result as $loc) {
$locations[$loc->id] = $loc->location_name;
}
} else {
$locations = array();
}
$this->template->content->locations = $locations;
//GET countries
$countries = array();
foreach (ORM::factory('country')->orderby('country')->find_all() as $country) {
// Create a list of all categories
$this_country = $country->country;
if (strlen($this_country) > 35) {
$this_country = substr($this_country, 0, 35) . "...";
}
$countries[$country->id] = $this_country;
}
$this->template->content->countries = $countries;
$this->template->content->incidents = $incidents;
$this->template->content->pagination = $pagination;
$this->template->content->form_error = $form_error;
$this->template->content->form_saved = $form_saved;
$this->template->content->form_action = $form_action;
// Total Reports
$this->template->content->total_items = $pagination->total_items;
// Status Tab
$this->template->content->status = $status;
// Javascript Header
$this->template->js = new View('simplegroups/reports_js');
}
/**
* Lists the reports.
*
* @param int $page
*/
public function index($page = 1)
{
// If user doesn't have access, redirect to dashboard
if (!admin::permissions($this->user, "reports_view")) {
url::redirect(url::site() . 'admin/dashboard');
}
$this->template->content = new View('admin/reports');
$this->template->content->title = Kohana::lang('ui_admin.reports');
// Database table prefix
$table_prefix = Kohana::config('database.default.table_prefix');
// Hook into the event for the reports::fetch_incidents() method
Event::add('ushahidi_filter.fetch_incidents_set_params', array($this, '_add_incident_filters'));
$status = "0";
if (!empty($_GET['status'])) {
$status = $_GET['status'];
if (strtolower($status) == 'a') {
array_push($this->params, 'i.incident_active = 0');
} elseif (strtolower($status) == 'v') {
array_push($this->params, 'i.incident_verified = 0');
} elseif (strtolower($status) == 'o') {
array_push($this->params, 'ic.category_id = 5');
} else {
$status = "0";
}
}
// Get Search Keywords (If Any)
if (isset($_GET['k'])) {
// Brute force input sanitization
// Phase 1 - Strip the search string of all non-word characters
$keyword_raw = isset($_GET['k']) ? preg_replace('#/\\w+/#', '', $_GET['k']) : "";
// Strip any HTML tags that may have been missed in Phase 1
$keyword_raw = strip_tags($keyword_raw);
// Phase 3 - Invoke Kohana's XSS cleaning mechanism just incase an outlier wasn't caught
// in the first 2 steps
$keyword_raw = $this->input->xss_clean($keyword_raw);
$filter = " (" . $this->_get_searchstring($keyword_raw) . ")";
array_push($this->params, $filter);
} else {
$keyword_raw = "";
}
// Check, has the form been submitted?
$form_error = FALSE;
$form_saved = FALSE;
$form_action = "";
if ($_POST) {
$post = Validation::factory($_POST);
// Add some filters
$post->pre_filter('trim', TRUE);
// Add some rules, the input field, followed by a list of checks,
// carried out in order
$post->add_rules('action', 'required', 'alpha', 'length[1,1]');
$post->add_rules('incident_id.*', 'required', 'numeric');
if ($post->validate()) {
// Approve Action
if ($post->action == 'a') {
foreach ($post->incident_id as $item) {
// Database instance
$db = new Database();
// Query to check if this report is uncategorized i.e categoryless
$query = "SELECT ic.* FROM " . $table_prefix . "incident_category ic " . "INNER JOIN " . $table_prefix . "category c ON c.id = ic.category_id " . "INNER JOIN " . $table_prefix . "incident i ON i.id=ic.incident_id " . "WHERE c.category_title =\"NONE\" AND c.category_trusted = '1' " . "AND ic.incident_id = {$item}";
$result = $db->query($query);
// Only approve the report IF it's not uncategorized
// i.e the query returns a null set
if (count($result) == 0) {
$update = new Incident_Model($item);
if ($update->loaded == TRUE) {
$update->incident_active = $update->incident_active == 0 ? '1' : '0';
// Tag this as a report that needs to be sent out as an alert
if ($update->incident_alert_status != '2') {
// 2 = report that has had an alert sent
$update->incident_alert_status = '1';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $item;
$verify->verified_status = '1';
// Record 'Verified By' Action
$verify->user_id = $_SESSION['auth_user']->id;
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
// Action::report_approve - Approve a Report
Event::run('ushahidi_action.report_approve', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.approved'));
}
} elseif ($post->action == 'u') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded == TRUE) {
$update->incident_active = '0';
// If Alert hasn't been sent yet, disable it
if ($update->incident_alert_status == '1') {
$update->incident_alert_status = '0';
}
$update->save();
$verify = new Verify_Model();
$verify->incident_id = $item;
$verify->verified_status = '0';
// Record 'Verified By' Action
$verify->user_id = $_SESSION['auth_user']->id;
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
// Action::report_unapprove - Unapprove a Report
Event::run('ushahidi_action.report_unapprove', $update);
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.unapproved'));
} elseif ($post->action == 'v') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
$verify = new Verify_Model();
if ($update->loaded == TRUE) {
if ($update->incident_verified == '1') {
$update->incident_verified = '0';
$verify->verified_status = '0';
} else {
$update->incident_verified = '1';
$verify->verified_status = '2';
}
$update->save();
$verify->incident_id = $item;
// Record 'Verified By' Action
$verify->user_id = $_SESSION['auth_user']->id;
$verify->verified_date = date("Y-m-d H:i:s", time());
$verify->save();
}
}
// Set the form action
$form_action = strtoupper(Kohana::lang('ui_admin.verified_unverified'));
} elseif ($post->action == 'd') {
foreach ($post->incident_id as $item) {
$update = new Incident_Model($item);
if ($update->loaded) {
$update->delete();
}
}
$form_action = strtoupper(Kohana::lang('ui_admin.deleted'));
}
$form_saved = TRUE;
} else {
$form_error = TRUE;
}
}
// Fetch all incidents
$all_incidents = reports::fetch_incidents();
// Pagination
$pagination = new Pagination(array('style' => 'front-end-reports', 'query_string' => 'page', 'items_per_page' => (int) Kohana::config('settings.items_per_page'), 'total_items' => $all_incidents->count()));
Event::run('ushahidi_filter.pagination', $pagination);
// Reports
$incidents = Incident_Model::get_incidents(reports::$params, $pagination);
Event::run('ushahidi_filter.filter_incidents', $incidents);
$this->template->content->countries = Country_Model::get_countries_list();
$this->template->content->incidents = $incidents;
$this->template->content->pagination = $pagination;
$this->template->content->form_error = $form_error;
$this->template->content->form_saved = $form_saved;
$this->template->content->form_action = $form_action;
// Total Reports
$this->template->content->total_items = $pagination->total_items;
// Status Tab
$this->template->content->status = $status;
// Javascript Header
$this->template->js = new View('admin/reports_js');
}