2010-07-28 21:49:58 +00:00
< ?
/*
This file is part of the 'Science Fair In A Box' project
SFIAB Website : http :// www . sfiab . ca
Copyright ( C ) 2010 Youth Science Ontario < info @ youthscienceontario . ca >
Copyright ( C ) 2010 James Grant < james @ lightbox . org >
This program is free software ; you can redistribute it and / or
modify it under the terms of the GNU General Public
License as published by the Free Software Foundation , version 2.
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the GNU
General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program ; see the file COPYING . If not , write to
the Free Software Foundation , Inc . , 59 Temple Place - Suite 330 ,
Boston , MA 02111 - 1307 , USA .
*/
?>
< ?
include " common.inc.php " ;
2010-12-02 17:25:23 +00:00
require_once ( " common.inc.functions.php " );
2010-08-24 16:04:12 +00:00
require_once ( " account.inc.php " );
require_once ( " user.inc.php " );
2010-09-28 20:09:31 +00:00
require_once ( " schedule.inc.php " );
2011-02-17 22:04:47 +00:00
require_once ( " register_participants.inc.php " );
2011-03-03 03:00:35 +00:00
require_once ( " projects.inc.php " );
2010-12-08 21:18:07 +00:00
if ( $_SERVER [ 'HTTPS' ] != " on " && ! $API_DONT_REQUIRE_SSL ) {
2010-08-24 16:04:12 +00:00
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " SSL is required for API access, please access the API over https " ;
echo json_encode ( $ret );
exit ;
2010-12-02 17:54:01 +00:00
}
2010-07-28 21:49:58 +00:00
$request = explode ( " / " , $_GET [ 'request' ]);
2010-08-24 16:04:12 +00:00
$ret = array ();
2010-07-28 21:49:58 +00:00
2010-12-02 17:25:23 +00:00
$logPath = get_logpath ();
$fout = fopen ( " $logPath /api.log " , " a " );
2010-12-02 17:50:16 +00:00
fwrite ( $fout , " --- request at " . date ( " Y-m-d H:i:s " ) . " --- \n " );
fwrite ( $fout , " \$ _GET = \n " . print_r ( $_GET , true ) . " \n " );
fwrite ( $fout , " \$ _POST = \n " . print_r ( $_POST , true ) . " \n " );
fwrite ( $fout , " \$ _SESSION = \n " . print_r ( $_SESSION , true ) . " \n " );
2010-12-02 17:25:23 +00:00
2010-07-28 21:49:58 +00:00
switch ( $request [ 0 ]) {
2010-10-01 17:13:48 +00:00
case 'config' :
2010-10-05 19:43:30 +00:00
switch ( $request [ 1 ]){
/* APIDOC : config / variables
description ( retreives the entire configuration variables , minus ones that cant be included ( like passwords )
return ( config array )
*/
case 'variables' :
$exclude = array ( " judge_registration_singlepassword " , " volunteer_registration_singlepassword " , " participant_registration_singlepassword " , " fairmanageremail " );
$configapi = $config ;
foreach ( $exclude AS $e ) {
unset ( $configapi [ $e ]);
}
$ret [ 'status' ] = " ok " ;
$ret [ 'config' ] = $configapi ;
break ;
/* APIDOC : config / divisions
description ( retreives the list of divisions )
return ( divisions array )
*/
case 'divisions' :
2010-10-05 20:24:43 +00:00
$divs = projectdivisions_load ();
$ret [ 'status' ] = " ok " ;
$ret [ 'divisions' ] = $divs ;
2010-10-05 19:43:30 +00:00
break ;
/* APIDOC : config / subdivisions
description ( retreives the list of subdivisions )
return ( subdivisions array )
*/
case 'subdivisions' :
2010-10-05 20:24:43 +00:00
$subdivs = projectsubdivisions_load ();
$ret [ 'status' ] = " ok " ;
$ret [ 'subdivisions' ] = $subdivs ;
2010-10-05 19:43:30 +00:00
break ;
/* APIDOC : config / categories
description ( retreives the list of age categories )
return ( categories array )
*/
case 'categories' :
2010-10-05 20:24:43 +00:00
$cats = projectcategories_load ();
$ret [ 'status' ] = " ok " ;
$ret [ 'categories' ] = $cats ;
2010-10-05 19:43:30 +00:00
break ;
2010-10-01 17:13:48 +00:00
}
break ;
2010-09-28 20:09:31 +00:00
case 'locations' :
switch ( $request [ 1 ]){
case 'list' :
/* APIDOC : locations / list
description ( lists locations at the current conference )
2010-09-28 20:24:32 +00:00
return ( locations array )
2010-09-28 20:09:31 +00:00
*/
$locationData = getLocationList ( $_SESSION [ 'conferences_id' ]);
if ( is_array ( $locationData )){
$ret [ 'status' ] = 'ok' ;
2010-09-28 20:24:32 +00:00
$ret [ 'locations' ] = $locationData ;
2010-09-28 20:09:31 +00:00
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = $locationData ;
}
break ;
default :
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = " Invalid API command ( { $request [ 1 ] } ) " ;
}
break ;
case " schedule " :
$u = user_load ( $_SESSION [ 'users_id' ]);
$school_id = null ;
if ( $u [ 'schools_id' ]) {
$school_id = $u [ 'schools_id' ];
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = " Not connected to a school " ;
break ;
}
switch ( $request [ 1 ]){
case 'list' :
/* APIDOC : events / list
description ( gets a list of all events at the current conference , and team information if applicable )
2010-09-28 20:24:32 +00:00
return ( events array )
2010-09-28 20:09:31 +00:00
*/
$eventData = getEventList ( $_SESSION [ 'conferences_id' ], $school_id );
if ( is_array ( $eventData )){
$ret [ 'status' ] = 'ok' ;
2010-09-28 20:24:32 +00:00
$ret [ 'events' ] = $eventData ;
2010-09-28 20:09:31 +00:00
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = $eventData ;
}
break ;
2010-09-29 21:23:54 +00:00
case 'register' :
/* APIDOC : schedule / register
description ( register a team for a scheduled event )
post ( team_id integer , schedule_id integer )
return ( results array )
*/
if ( ! array_key_exists ( 'team_id' , $_POST )){
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = 'team_id (integer) is required' ;
} else if ( ! array_key_exists ( 'schedule_id' , $_POST )){
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = 'schedule_id (integer) is required' ;
} else {
$ret [ 'status' ] = 'ok' ;
$ret [ 'registration' ] = registerTeamInEvent ( $_SESSION [ 'conferences_id' ], $_POST [ 'schedule_id' ], $_POST [ 'team_id' ]);
}
break ;
case 'unregister' :
/* APIDOC : schedule / register
description ( unregister a team for a scheduled event )
post ( team_id integer , schedule_id integer )
return ( results array )
*/
if ( ! array_key_exists ( 'team_id' , $_POST )){
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = 'team_id (integer) is required' ;
} else if ( ! array_key_exists ( 'schedule_id' , $_POST )){
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = 'schedule_id (integer) is required' ;
} else {
$ret [ 'status' ] = 'ok' ;
$ret [ 'registration' ] = unregisterTeamInEvent ( $_SESSION [ 'conferences_id' ], $_POST [ 'schedule_id' ], $_POST [ 'team_id' ]);
}
break ;
2010-09-28 20:09:31 +00:00
default :
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = " Invalid API command ( { $request [ 1 ] } ) " ;
}
break ;
2010-07-28 21:49:58 +00:00
case " conferences " :
2010-09-27 20:38:49 +00:00
/* APIDOC : conferences / switch
2010-09-27 19:52:43 +00:00
description ( switches the active conference )
post ( conferences_id integer )
return ( conferences_id integer )
*/
2010-09-02 17:38:13 +00:00
if ( $request [ 1 ] == " switch " ) {
if ( $_POST [ 'conferences_id' ]) {
//this makes sure its valid and sets teh session
switchConference ( $_POST [ 'conferences_id' ]);
2010-07-28 21:49:58 +00:00
2010-09-02 17:38:13 +00:00
//get rid of their current roles, and load their record for the new conference
if ( is_array ( $_SESSION [ 'roles' ])) {
$_SESSION [ 'roles' ] = array ();
user_conference_load ( $_SESSION [ 'accounts_id' ], $_SESSION [ 'conferences_id' ]);
}
$ret [ 'status' ] = " ok " ;
2010-09-07 19:59:37 +00:00
$ret [ 'conferences_id' ] = $_SESSION [ 'conferences_id' ];
2010-09-02 17:38:13 +00:00
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = 'conferences_id (integer) is required' ;
}
}
2010-09-27 20:38:49 +00:00
/* APIDOC : conferences
2010-09-27 19:52:43 +00:00
description ( lists all conferences )
return ( conferences array )
*/
2010-09-02 17:38:13 +00:00
else {
$ret [ 'status' ] = " ok " ;
$ret [ 'conferences' ] = array ();
$response = array ();
2010-11-25 20:47:32 +00:00
$q = mysql_query ( " SELECT id,name,type,status,copyoriginal,copyparent FROM conferences ORDER BY id " );
2010-09-02 17:38:13 +00:00
while ( $r = mysql_fetch_assoc ( $q )) {
$response [] = $r ;
}
$ret [ 'conferences' ] = $response ;
2010-07-28 21:49:58 +00:00
}
break ;
case " dates " :
2010-09-27 20:38:49 +00:00
/* APIDOC : dates
2010-09-27 19:52:43 +00:00
description ( list dates for active conference )
return ( dates array )
*/
2010-09-27 20:38:49 +00:00
/* APIDOC : dates /< conferences_id integer >
2010-09-27 19:52:43 +00:00
description ( list dates for specified conference )
return ( dates array )
*/
2010-07-28 21:49:58 +00:00
if ( $request [ 1 ]) {
2010-09-02 18:53:48 +00:00
$cid = intval ( $request [ 1 ]);
2010-07-28 21:49:58 +00:00
}
2010-09-02 18:53:48 +00:00
else
$cid = $_SESSION [ 'conferences_id' ];
$ret [ 'status' ] = " ok " ;
$ret [ 'dates' ] = array ();
$q = mysql_query ( " SELECT date,name,description FROM dates WHERE conferences_id=' $cid ' ORDER BY date " );
$dates = array ();
while ( $r = mysql_fetch_assoc ( $q )) {
$dates [] = $r ;
2010-07-28 21:49:58 +00:00
}
2010-09-02 18:53:48 +00:00
$ret [ 'conferences_id' ] = $cid ;
$ret [ 'dates' ] = $dates ;
2010-07-28 21:49:58 +00:00
break ;
2010-09-27 19:52:43 +00:00
case " account " :
2010-10-01 21:04:05 +00:00
switch ( $request [ 1 ]) {
/* APIDOC : account / create
description ( creates an account )
2011-02-23 16:42:08 +00:00
post ( username varchar ( 64 ), password varchar ( 64 ) optional , email varchar ( 64 ) optional )
2010-10-01 21:04:05 +00:00
return ( account array )
*/
case 'create' :
$user = trim ( $_POST [ 'username' ]);
$pass = trim ( $_POST [ 'password' ]);
$email = trim ( $_POST [ 'email' ]);
2011-02-23 16:42:08 +00:00
if ( $user ) {
if ( $pass ) $p = $pass ; else $p = NULL ;
$a = account_create ( $user , $p );
2010-10-01 21:04:05 +00:00
if ( is_array ( $a )) {
if ( $email )
account_set_email ( $a [ 'id' ], $email );
2011-02-23 16:42:08 +00:00
else if ( isEmailAddress ( $user ))
account_set_email ( $a [ 'id' ], $user );
2010-10-01 21:04:05 +00:00
$account = account_load ( $a [ 'id' ]);
$ret [ 'status' ] = " ok " ;
$ret [ 'account' ] = $account ;
2010-11-29 22:54:12 +00:00
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $a ;
2010-10-01 21:04:05 +00:00
}
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " username (varchar 64) and password (varchar 64) are required " ;
}
break ;
/* APIDOC : account / view
description ( view account information for currently logged in account )
return ( account array )
*/
case 'view' :
if ( isset ( $_SESSION [ 'accounts_id' ])) {
$a = account_load ( $_SESSION [ 'accounts_id' ]);
$ret [ 'status' ] = 'ok' ;
$ret [ 'account' ] = $a ;
2010-09-27 19:52:43 +00:00
}
else {
$ret [ 'status' ] = " error " ;
2010-10-01 21:04:05 +00:00
$ret [ 'error' ] = " You are not logged in " ;
2010-09-27 19:52:43 +00:00
}
2010-10-01 21:04:05 +00:00
break ;
2010-10-28 21:22:12 +00:00
/* APIDOC : account / edit
description ( edits an account )
post ( account array )
return ( account array )
*/
case 'edit' :
if ( isset ( $_SESSION [ 'accounts_id' ])) {
// grab the relevant keys from $_POST
$params = array ();
foreach ( $_POST as $key => $value ){
if ( in_array ( $key , array ( 'username' , 'password' , 'email' , 'link_username_to_email' ))){
$params [ $key ] = $_POST [ $key ];
}
}
if ( count ( $params ) > 0 ){
$result = account_update_info ( $params );
if ( $result == 'ok' ){
$a = account_load ( $_SESSION [ 'accounts_id' ]);
$ret [ 'status' ] = 'ok' ;
$ret [ 'account' ] = $a ;
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $result ;
}
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " No field values passed " ;
}
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " You are not logged in " ;
}
break ;
2010-10-01 21:04:05 +00:00
default :
2010-09-27 19:52:43 +00:00
$ret [ 'status' ] = " error " ;
2010-10-01 21:04:05 +00:00
$ret [ 'error' ] = " invalid account command " ;
2010-09-27 19:52:43 +00:00
}
break ;
2010-08-24 16:04:12 +00:00
case " auth " :
2010-09-27 20:38:49 +00:00
/* APIDOC : auth / login
2010-09-27 19:52:43 +00:00
description ( login to an account )
2010-11-16 04:29:16 +00:00
post ( username varchar ( 64 ), password varchar ( 64 ), conferences_id integer optional )
2010-09-27 19:52:43 +00:00
return ( account array , roles array , conferences_id integer )
*/
2010-08-24 16:04:12 +00:00
if ( $request [ 1 ] == " login " ) {
$user = $_POST [ 'username' ];
$pass = $_POST [ 'password' ];
2010-11-16 04:29:16 +00:00
$cid = $_POST [ 'conferences_id' ];
2010-08-24 16:04:12 +00:00
$accounts_id = try_login ( $user , $pass );
if ( $accounts_id == false ) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " Invalid Username/Password " ;
}
else {
$a = account_load ( $accounts_id );
$_SESSION [ 'username' ] = $a [ 'username' ];
$_SESSION [ 'email' ] = $a [ 'email' ];
$_SESSION [ 'accounts_id' ] = $accounts_id ;
$_SESSION [ 'superuser' ] = ( $a [ 'superuser' ] == 'yes' ) ? 'yes' : 'no' ;
2010-11-16 04:29:16 +00:00
if ( ! $cid ) $cid = $_SESSION [ 'conferences_id' ];
2011-02-23 21:12:12 +00:00
$u = user_load ( null , $accounts_id );
if ( is_array ( $u )){
2011-03-02 15:57:38 +00:00
$_SESSION [ 'users_id' ] = $u [ 'id' ];
2011-03-02 17:12:13 +00:00
$_SESSION [ 'roles' ] = $u [ 'roles' ];
2011-02-23 21:12:12 +00:00
$p = getProject ( $u [ 'id' ]);
if ( is_array ( $p )) {
2011-02-24 17:44:12 +00:00
$_SESSION [ 'registration_id' ] = $p [ 'registrations_id' ];
2011-02-23 21:12:12 +00:00
$_SESSION [ 'registration_number' ] = $p [ 'num' ];
} else
$_SESSION [ 'error' ] = " project not found " ;
}
2011-03-02 17:12:13 +00:00
else {
$_SESSION [ 'roles' ] = array ();
2011-02-23 21:12:12 +00:00
$_SESSION [ 'error' ] = " user not found " ;
2011-03-02 17:12:13 +00:00
}
2010-08-24 16:04:12 +00:00
2010-11-16 04:29:16 +00:00
$ret [ 'conferences_id' ] = $cid ;
2010-08-24 16:04:12 +00:00
$ret [ 'status' ] = " ok " ;
$ret [ 'account' ] = $a ;
2010-08-31 20:12:41 +00:00
//$ret['user']=user_load($_SESSION['users_id']);
2010-08-24 16:04:12 +00:00
$ret [ 'roles' ] = $_SESSION [ 'roles' ];
}
}
2010-09-27 20:38:49 +00:00
/* APIDOC : auth / logout
2010-09-27 19:52:43 +00:00
description ( logs out of an account )
return ( account array )
*/
else if ( $request [ 1 ] == " logout " ) {
2010-08-24 16:04:12 +00:00
unset ( $_SESSION [ 'username' ]);
unset ( $_SESSION [ 'email' ]);
unset ( $_SESSION [ 'accounts_id' ]);
unset ( $_SESSION [ 'superuser' ]);
unset ( $_SESSION [ 'roles' ]);
2010-08-31 20:50:11 +00:00
unset ( $_SESSION [ 'users_id' ]);
unset ( $_SESSION [ 'name' ]);
2011-02-24 17:44:12 +00:00
unset ( $_SESSION [ 'registration_id' ]);
2011-02-23 21:12:12 +00:00
unset ( $_SESSION [ 'registration_number' ]);
2010-08-24 16:04:12 +00:00
$ret [ 'status' ] = " ok " ;
}
2010-09-27 19:52:43 +00:00
else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " invalid auth command " ;
}
2010-08-24 16:04:12 +00:00
break ;
case " testauth " :
if ( $request [ 1 ]) {
$ok = api_user_auth_required ( $request [ 1 ]);
}
else {
$ok = api_user_auth_required ();
}
if ( $ok [ 'status' ] == " ok " ) {
$ret [ 'status' ] = 'ok' ;
}
else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $ok [ 'error' ];
}
break ;
2010-08-31 20:50:11 +00:00
case " scienceolympics " :
$chk = api_user_auth_required ( 'teacher' );
if ( $chk [ 'status' ] != " ok " ) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $chk [ 'error' ];
break ;
}
$u = user_load ( $_SESSION [ 'users_id' ]);
if ( ! $u [ 'schools_id' ]) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = 'Your teacher account is not attached to any school' ;
break ;
}
$school_id = $u [ 'schools_id' ];
require_once ( " so_teams.inc.php " );
2010-08-31 20:12:41 +00:00
switch ( $request [ 1 ]) {
case " teams " :
switch ( $request [ 2 ]) {
2010-09-27 20:45:57 +00:00
/* APIDOC : scienceolympics / teams / list
description ( lists the schools science olympics teams )
return ( teams array )
*/
2010-08-31 20:12:41 +00:00
case " list " :
$q = mysql_query ( " SELECT id,name FROM so_teams WHERE schools_id=' { $u [ 'schools_id' ] } ' AND conferences_id=' { $conference [ 'id' ] } ' " );
$ret [ 'status' ] = 'ok' ;
$teams = array ();
while ( $r = mysql_fetch_assoc ( $q )) {
$teams [] = $r ;
}
$ret [ 'teams' ] = $teams ;
break ;
2010-09-27 20:45:57 +00:00
/* APIDOC : scienceolympics / teams / add
description ( add a science olympics team to the logged in teacher ' s school )
post ( teamname varchar ( 64 ))
return ( team array );
*/
2010-08-31 20:12:41 +00:00
case " add " :
2010-08-31 20:50:11 +00:00
if ( $_POST [ 'teamname' ]) {
2010-09-27 20:45:57 +00:00
if ( $team = so_team_add ( $school_id , $conference [ 'id' ], $_POST [ 'teamname' ])) {
$ret [ 'team' ] = $team ;
2010-08-31 20:50:11 +00:00
$ret [ 'status' ] = " ok " ;
}
else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'could not add team' ;
}
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'teamname (varchar 64) is required' ;
}
2010-08-31 20:12:41 +00:00
break ;
2010-09-27 20:45:57 +00:00
/* APIDOC : scienceolympics / teams / edit
description ( edit a science olympics team )
post ( id integer , teamname varchar ( 64 ))
return ( team array );
*/
2010-08-31 20:12:41 +00:00
case " edit " :
2010-08-31 20:50:11 +00:00
if ( $_POST [ 'id' ] && $_POST [ 'teamname' ]) {
2010-09-27 20:45:57 +00:00
if ( $team = so_team_edit ( $school_id , $_POST [ 'id' ], $_POST [ 'teamname' ])) {
2010-08-31 20:50:11 +00:00
$ret [ 'status' ] = " ok " ;
2010-09-27 20:45:57 +00:00
$ret [ 'team' ] = $team ;
2010-08-31 20:50:11 +00:00
}
else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'could not edit team' ;
}
}
else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'id (integer), teamname (varchar 64) are required' ;
}
2010-08-31 20:12:41 +00:00
break ;
2010-09-27 20:45:57 +00:00
/* APIDOC : scienceolympics / teams / delete
description ( delete a science olympics team )
post ( id integer )
*/
2010-08-31 20:50:11 +00:00
case " delete " ;
if ( $_POST [ 'id' ]) {
if ( so_team_delete ( $school_id , $_POST [ 'id' ])) {
$ret [ 'status' ] = " ok " ;
}
else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'could not delete team' ;
}
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'id (integer) is required' ;
}
2010-08-31 20:12:41 +00:00
break ;
default :
$ret [ 'status' ] = " error " ;
2010-08-31 20:50:11 +00:00
$ret [ 'error' ] = " invalid scienceolympics/teams command ( { $request [ 2 ] } ) " ;
2010-08-31 20:12:41 +00:00
break ;
}
break ;
default :
$ret [ 'status' ] = " error " ;
2010-08-31 20:50:11 +00:00
$ret [ 'error' ] = " invalid scienceolympics command ( { $request [ 1 ] } ) " ;
2010-08-31 20:12:41 +00:00
break ;
}
2010-08-24 16:04:12 +00:00
break ;
2010-10-01 19:28:26 +00:00
case 'user' :
$chk = api_user_auth_required ();
if ( $chk [ 'status' ] != " ok " ) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $chk [ 'error' ];
break ;
}
switch ( $request [ 1 ]) {
/* APIDOC : user / view
description ( view user information for current conference )
return ( user array )
*/
case " view " :
if ( $u = user_load ( $_SESSION [ 'users_id' ])) {
2010-10-01 19:42:52 +00:00
//we dont need to send the 'orig' part of it
2010-10-01 19:28:26 +00:00
unset ( $u [ 'orig' ]);
$ret [ 'status' ] = " ok " ;
$ret [ 'user' ] = $u ;
}
else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " Error loading user " ;
}
break ;
2010-08-31 20:12:41 +00:00
2010-10-27 16:40:17 +00:00
/* APIDOC : user / edit
description ( edit user information for current conference )
post ( user array )
return ( user array )
*/
2010-10-01 19:42:52 +00:00
case " edit " :
if ( $origu = user_load ( $_SESSION [ 'users_id' ])) {
2010-11-16 21:19:16 +00:00
$u = json_decode ( $_POST [ 'user' ], true );
2010-10-01 19:42:52 +00:00
if ( ! is_array ( $u )) {
$ret [ 'status' ] = " error " ;
2010-11-16 21:19:16 +00:00
$ret [ 'error' ] = " user (array) is required. " ;
2010-10-01 19:42:52 +00:00
break ;
}
if ( $origu [ 'id' ] != $u [ 'id' ]) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " User ID mismatch " ;
break ;
}
$u [ 'orig' ] = $origu [ 'orig' ];
2010-11-17 21:02:32 +00:00
$result = user_save ( $u );
if ( $result == 'ok' ) {
2010-10-01 19:42:52 +00:00
$ret [ 'status' ] = " ok " ;
$ret [ 'user' ] = $u ;
} else {
$ret [ 'status' ] = " error " ;
2010-11-17 21:02:32 +00:00
$ret [ 'error' ] = $result ;
2010-10-01 19:42:52 +00:00
}
}
else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " Error loading user in order to edit " ;
}
break ;
2010-10-27 16:40:17 +00:00
/* APIDOC : user / connect_to_school
2010-10-28 21:22:12 +00:00
description ( connects the current user to the specified school using the school ' s access code )
2010-10-27 16:40:17 +00:00
post ( schools_id integer , accesscode varchar ( 16 ))
return ( school array )
*/
case 'connect_to_school' :
if ( $u = user_load ( $_SESSION [ 'users_id' ])) {
$schoolId = mysql_real_escape_string ( $_POST [ 'schools_id' ]);
$accesscode = mysql_real_escape_string ( $_POST [ 'accesscode' ]);
if ( user_set_school ( $u , $schoolId , $accesscode )){
$ret [ 'status' ] = " ok " ;
$ret [ 'school' ] = mysql_fetch_assoc ( mysql_query ( " SELECT school, phone, fax, address, city, province_code AS province, postalcode FROM schools WHERE id = $schoolId " ));
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " Error matching schools_id and accesscode " ;
}
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " Error loading user " ;
}
2010-11-23 20:58:38 +00:00
break ;
2010-12-01 19:40:45 +00:00
2010-11-23 20:58:38 +00:00
/* APIDOC : user / invite
description ( invites a user to play a particular role in the conference , creating an account for them , and giving them the specifed role )
post ( username varchar ( 64 ), password varchar ( 64 ), email varchar ( 64 ), roles_id integer )
return ( user array )
*/
case 'invite' :
// let's make sure we have all of the data posted
$ok = true ;
foreach ( array ( 'username' => 'varchar(64)' , 'password' => 'varchar(64)' , 'email' => 'varchar(64)' , 'roles_id' => 'integer' ) as $field => $format ){
if ( ! array_key_exists ( $field , $_POST )){
$ret [ 'status' ] == 'error' ;
$ret [ 'error' ] = " $field ( $format ) is required " ;
$ok = false ;
break ;
}
}
if ( $ok ){
$newUser = user_invite ( $_POST [ 'username' ], $_POST [ 'password' ], $_POST [ 'email' ], $_POST [ 'roles_id' ]);
if ( is_array ( $newUser )){
$ret [ 'status' ] = 'ok' ;
$ret [ 'user' ] = $newUser ;
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = $newUser ;
}
}
2010-12-01 19:40:45 +00:00
break ;
/* APIDOC : user / uninvite
description ( uninvite a user from a particular role in the conference , removing only the role , not the user )
post ( users_id integer , roles_id integer )
return ( user array )
*/
case 'uninvite' :
if ( ! array_key_exists ( 'users_id' , $_POST )){
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'parameter users_id required' ;
break ;
}
if ( ! array_key_exists ( 'roles_id' , $_POST )){
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'parameter roles_id required' ;
break ;
}
$result = user_uninvite ( $_POST [ 'users_id' ], $_POST [ 'roles_id' ]);
if ( is_array ( $result )){
$ret [ 'status' ] = 'ok' ;
$ret [ 'user' ] = $result ;
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = $result ;
}
break ;
2010-11-23 20:58:38 +00:00
2010-12-01 19:40:45 +00:00
/* APIDOC : user / list
description ( list users of the specified role in this conference that the current user has permission to view / modify )
post ( roles_id integer )
return ( list array )
*/
case 'list' :
if ( ! array_key_exists ( 'roles_id' , $_POST )){
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'parameter roles_id required' ;
} else {
$result = user_list_modifiable ( $_POST [ 'roles_id' ]);
if ( is_array ( $result )){
$ret [ 'status' ] = 'ok' ;
$ret [ 'list' ] = $result ;
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = $result ;
}
}
2010-10-27 16:40:17 +00:00
break ;
2011-02-24 17:44:12 +00:00
case 'displayname' :
$chk = api_user_auth_required ( 'participant' );
if ( $chk [ 'status' ] != " ok " ) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $chk [ 'error' ];
break ;
}
switch ( $request [ 2 ]){
/* APIDOC : user / displayname / get
description ( Get the current display name for this user , and whether or not it ' s been confirmed )
return ( displayname array )
*/
case 'get' :
$ret [ 'status' ] = 'ok' ;
$ret [ 'displayname' ] = array (
'name' => user_get_displayname ( $_SESSION [ 'users_id' ]),
'confirmed' => user_displayname_confirmed ( $_SESSION [ 'users_id' ])
);
break ;
/* APIDOC : user / displayname / confirm
description ( mark the display name as being correct )
*/
case 'confirm' :
user_confirm_displayname ( $_SESSION [ 'users_id' ]);
$ret [ 'status' ] = 'ok' ;
break ;
}
break ;
2010-10-01 19:42:52 +00:00
}
2010-10-01 19:28:26 +00:00
break ;
2010-10-06 21:01:17 +00:00
case " role " :
//these ones dont need to be authenticated
switch ( $request [ 1 ]) {
/* APIDOC : role / list
description ( list roles and their corresponding registration types )
return ( roles array )
*/
case " list " :
$q = mysql_query ( " SELECT * FROM roles ORDER BY name " );
2010-10-22 15:06:49 +00:00
$reqroles = array ();
2010-10-06 21:01:17 +00:00
while ( $r = mysql_fetch_assoc ( $q )) {
2011-03-03 02:18:15 +00:00
//if the whole type is not enabled, then report 'not available', no matter what the _registration_type says
if ( $config [ $r [ 'type' ] . " _enable " ] == " no " ) {
2010-10-06 21:01:17 +00:00
$r [ 'registration' ] = " not available " ;
2011-03-03 02:18:15 +00:00
}
else {
if ( $config [ $r [ 'type' ] . " _registration_type " ]) {
$r [ 'registration' ] = $config [ $r [ 'type' ] . " _registration_type " ];
}
else
$r [ 'registration' ] = " not available " ;
}
2010-10-22 15:06:49 +00:00
$reqroles [] = $r ;
2010-10-06 21:01:17 +00:00
}
$ret [ 'status' ] = " ok " ;
2010-10-22 15:06:49 +00:00
$ret [ 'roles' ] = $reqroles ;
2010-10-06 21:01:17 +00:00
break ;
/* APIDOC : role / add
post ( role_id integer , password varchar ( 64 ) optional )
description ( add a role for the user to the current conference . Depending on the registraiton type , an optional password ( singlepassword , schoolpassword , etc ) can be specified )
return ( role array )
*/
case " add " :
$chk = api_user_auth_required ();
if ( $chk [ 'status' ] != " ok " ) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $chk [ 'error' ];
break ;
}
$role_id = intval ( $_POST [ 'role_id' ]);
$password = trim ( $_POST [ 'password' ]);
if ( $password )
$addstatus = account_add_role ( $_SESSION [ 'accounts_id' ], $role_id , $conference [ 'id' ], $password );
else
$addstatus = account_add_role ( $_SESSION [ 'accounts_id' ], $role_id , $conference [ 'id' ]);
switch ( $addstatus ) {
2010-10-08 20:28:56 +00:00
case " ok " :
$ret [ 'status' ] = " ok " ;
2010-10-14 20:38:48 +00:00
updateSessionRoles ();
2010-10-08 20:28:56 +00:00
break ;
2010-10-06 21:01:17 +00:00
case " invalidrole " : $ret [ 'status' ] = " error " ; $ret [ 'error' ] = " Invalid role " ; break ;
case " invalidaccount " : $ret [ 'status' ] = " error " ; $ret [ 'error' ] = " Invalid account " ; break ;
case " invalidconference " : $ret [ 'status' ] = " error " ; $ret [ 'error' ] = " Invalid conference " ; break ;
case " invalidpassword " : $ret [ 'status' ] = " error " ; $ret [ 'error' ] = " Invalid password for role " ; break ;
default : $ret [ 'status' ] = " error " ; $ret [ 'error' ] = " unknown role add error " ;
}
break ;
/* APIDOC : role / remove
post ( role_id integer )
description ( remove a role from the user for the current conference )
return ( role array )
*/
case " remove " :
$chk = api_user_auth_required ();
if ( $chk [ 'status' ] != " ok " ) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $chk [ 'error' ];
break ;
}
$role_id = intval ( $_POST [ 'role_id' ]);
$removestatus = account_remove_role ( $_SESSION [ 'accounts_id' ], $role_id , $conference [ 'id' ]);
switch ( $removestatus ) {
2010-10-08 20:28:56 +00:00
case " ok " :
$ret [ 'status' ] = " ok " ;
2010-10-14 20:38:48 +00:00
updateSessionRoles ();
2010-10-08 20:28:56 +00:00
break ;
2010-10-06 21:01:17 +00:00
case " invalidrole " : $ret [ 'status' ] = " error " ; $ret [ 'error' ] = " Invalid role " ; break ;
case " invalidaccount " : $ret [ 'status' ] = " error " ; $ret [ 'error' ] = " Invalid account " ; break ;
case " invalidconference " : $ret [ 'status' ] = " error " ; $ret [ 'error' ] = " Invalid conference " ; break ;
default : $ret [ 'status' ] = " error " ; $ret [ 'error' ] = " unknown role remove error " ;
}
break ;
default :
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " invalid role command ( { $request [ 1 ] } ) " ;
}
break ;
2010-10-22 15:06:49 +00:00
case 'registration' :
switch ( $request [ 1 ]){
/* APIDOC : registration / fields
2010-10-22 15:12:45 +00:00
description ( retreives the list of fields to be asked for in order to complete registration for a specific set of roles . If an array of roles is passed in it retrieves the fields for those roles , if no roles are passed in , then it uses the roles from the currently logged in user )
2010-10-22 15:06:49 +00:00
post ( roles [] array ) optional
return ( fields array )
*/
case 'fields' :
2011-03-03 18:11:36 +00:00
if ( is_array ( $_POST [ 'roles' ])) {
$reqroles = $_POST [ 'roles' ];
} else {
$reqroles = json_decode ( $_POST [ 'roles' ], true );
}
2010-10-22 15:06:49 +00:00
if ( is_array ( $reqroles )) {
2010-10-25 23:12:35 +00:00
for ( $x = 0 ; $x < count ( $reqroles ); $x ++ ) {
if ( is_numeric ( $reqroles [ $x ]))
2010-10-25 23:58:48 +00:00
$reqroles [ $x ] = $roles_by_id [ $reqroles [ $x ]][ 'type' ];
2010-10-25 23:12:35 +00:00
if ( ! array_key_exists ( $reqroles [ $x ], $roles ))
unset ( $reqroles [ $x ]);
}
2010-10-22 15:06:49 +00:00
$ret [ 'status' ] = " ok " ;
2010-10-25 23:55:38 +00:00
$ret [ 'roles' ] = $reqroles ;
2010-10-22 15:06:49 +00:00
$ret [ 'fields' ] = user_get_fields ( $reqroles );
} else {
//load the currently logged in user
if ( $_SESSION [ 'users_id' ]) {
$u = user_load ( $_SESSION [ 'users_id' ]);
if ( is_array ( $u [ 'roles' ]) && count ( $u [ 'roles' ] > 0 )) {
$ret [ 'status' ] = " ok " ;
2010-10-25 23:55:38 +00:00
$ret [ 'roles' ] = array_keys ( $u [ 'roles' ]);
2010-10-22 15:06:49 +00:00
$ret [ 'fields' ] = user_get_fields ( array_keys ( $u [ 'roles' ]));
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " Currently logged in user has no roles " ;
}
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " No roles submitted and not logged in " ;
}
}
break ;
2010-11-18 17:00:26 +00:00
/* APIDOC : registration / dictionary
description ( retrieves a list of all user fields with their label and category information )
return ( dictionary array )
*/
case 'dictionary' :
$ret [ 'status' ] = 'ok' ;
if ( is_array ( $conference ) && array_key_exists ( 'id' , $conference )){
$ret [ 'dictionary' ] = user_get_field_info ();
} else {
$ret [ 'dictionary' ] = user_get_field_info ( true );
}
break ;
2010-10-22 15:06:49 +00:00
2011-03-02 23:52:44 +00:00
/* APIDOC : registration / view
description ( registration information about the currently logged in users registration )
2011-03-03 01:53:04 +00:00
object ( registration : { id , num , status , end , nummentors , students array of student , status array , project array })
2011-03-02 23:58:38 +00:00
object ( student : { id , accounts_id , username , firstname , lastname , complete })
2011-03-03 01:53:04 +00:00
object ( project : { id , projectnumber , title })
2011-03-02 23:52:44 +00:00
return ( registration array )
*/
case 'view' :
2011-03-02 23:56:13 +00:00
$chk = api_user_auth_required ( 'participant' );
if ( $chk [ 'status' ] != " ok " ) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $chk [ 'error' ];
break ;
}
2011-03-03 01:36:41 +00:00
if ( ! $_SESSION [ 'registration_id' ]) {
2011-03-02 23:56:13 +00:00
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " No registration has been created or joined yet " ;
break ;
}
2011-03-02 23:52:44 +00:00
// be logged in as a student in order to create a project
2011-03-03 01:36:41 +00:00
$r = getRegistration ( $_SESSION [ 'registration_id' ]);
2011-03-02 23:52:44 +00:00
if ( $r ) {
$ret [ 'status' ] = " ok " ;
$ret [ 'registration' ] = $r ;
}
else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = " Invalid registration id " ;
}
break ;
default :
2011-03-03 04:42:13 +00:00
/* COMMENTEDOUT because there ' s nothing to be saved !: registration / edit
description ( update registration information )
2011-03-02 23:52:44 +00:00
post ( registration array )
return ( registration array )
*/
2011-03-03 04:42:13 +00:00
/*
2011-03-02 23:52:44 +00:00
case 'edit' :
2011-03-02 23:56:13 +00:00
$chk = api_user_auth_required ( 'participant' );
if ( $chk [ 'status' ] != " ok " ) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $chk [ 'error' ];
break ;
}
2011-03-03 01:36:41 +00:00
if ( ! $_SESSION [ 'registration_id' ]) {
2011-03-02 23:56:13 +00:00
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " No registration has been created or joined yet " ;
break ;
}
2011-03-02 23:52:44 +00:00
// be logged in as a student in order to create a project
$r = json_decode ( $_POST [ 'registration' ], true );
if ( is_array ( $r )) {
$ret [ 'status' ] = 'ok' ;
$newreg = saveRegistrationData ( $r );
$ret [ 'registration' ] = $newreg ;
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = " registration array required " ;
}
break ;
2011-03-03 04:42:13 +00:00
*/
2011-03-02 23:56:13 +00:00
default :
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " invalid registration API command ( { $request [ 1 ] } ) " ;
2011-03-02 23:52:44 +00:00
}
break ;
2011-03-02 23:56:13 +00:00
case 'school' :
switch ( $request [ 1 ]){
/* APIDOC : school / list
description ( list schools )
return ( schools array )
*/
case 'list' :
$ret [ 'schools' ] = get_schools ( $conference [ 'id' ]);
$ret [ 'status' ] = 'ok' ;
break ;
default :
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " invalid school API command ( { $request [ 1 ] } ) " ;
}
break ;
2011-03-02 23:52:44 +00:00
2011-02-17 22:04:47 +00:00
case 'project' :
2011-02-23 19:30:50 +00:00
$chk = api_user_auth_required ( 'participant' );
2011-02-17 22:04:47 +00:00
if ( $chk [ 'status' ] != " ok " ) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $chk [ 'error' ];
break ;
}
2011-02-23 21:12:12 +00:00
/*
Originally , the student status was supposed to be complete before they could manage projects . Should
this still be true ? If so , this code needs to be unremarked , and the subsets within / project checked
to see if it applies to all of them . If not , the remove this currently remarked block .
*/
2011-02-17 22:04:47 +00:00
/*
$sStatus = studentStatus ();
if ( $sStatus != 'complete' ){
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " student information must be completed before managing projects - " . $sStatus ;
break ;
}
*/
switch ( $request [ 1 ]){
/* APIDOC : project / add
2011-02-28 19:00:24 +00:00
post ( project array optional )
description ( add a project . Will create a blank project if there ' s no input , otherwise , creates a project based on the project array passed in )
2011-02-17 22:04:47 +00:00
return ( project array )
*/
case 'add' :
// be logged in as a student in order to create a project
$user = user_load ( $_SESSION [ 'users_id' ]);
if ( ! $user || ! in_array ( 'participant' , $_SESSION [ 'roles' ])){
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = " You must be logged in as a participant to create a project " ;
break ;
}
// we start by creating a registration
2011-02-23 21:12:12 +00:00
$regdat = addRegistration ( $_SESSION [ 'users_id' ]);
if ( ! is_array ( $regdat )){
2011-02-17 22:04:47 +00:00
$ret [ 'status' ] = 'error' ;
2011-02-23 21:12:12 +00:00
$ret [ 'error' ] = $regdat ;
2011-02-17 22:04:47 +00:00
break ;
}
// now we add a project to that registration
2011-02-28 19:00:24 +00:00
$newproject = addProject ( $regdat [ 'registrations_id' ]);
if ( ! is_array ( $newproject )){
2011-02-17 22:04:47 +00:00
$ret [ 'status' ] = 'error' ;
2011-02-28 19:00:24 +00:00
$ret [ 'error' ] = $newproject ;
2011-02-17 22:04:47 +00:00
break ;
}
2011-02-18 16:14:23 +00:00
// if we got this far, then all's good and we can return the project data
2011-02-24 17:44:12 +00:00
$_SESSION [ 'registration_id' ] = $regdat [ 'registrations_id' ];
2011-02-23 21:12:12 +00:00
$_SESSION [ 'registration_number' ] = $regdat [ 'registration_number' ];
2011-02-28 19:00:24 +00:00
if ( $_POST [ 'project' ]) {
$project = json_decode ( $_POST [ 'project' ], true );
if ( ! is_array ( $project )) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " project needs to be a project array " ;
break ;
}
$project [ 'id' ] = $newproject [ 'id' ];
$message = saveProjectData ( $project );
if ( $message == 'success' ){
$ret [ 'status' ] = 'ok' ;
$ret [ 'project' ] = getProject ( $_SESSION [ 'users_id' ]);
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = $message ;
}
}
else {
$ret [ 'status' ] = 'ok' ;
$ret [ 'project' ] = getProject ( $_SESSION [ 'users_id' ]);
}
2011-02-18 16:14:23 +00:00
break ;
2011-02-18 16:37:11 +00:00
2011-02-18 16:56:35 +00:00
/* APIDOC : project / view
2011-03-02 17:18:13 +00:00
description ( Displays the current project information )
2011-02-18 16:56:35 +00:00
return ( project array )
2011-03-03 04:43:03 +00:00
object ( project : { project_id integer , projectdivisions_id integer , title varchar ( 255 ), language char ( 2 ), req_electricity enum ( 'no' , 'yes' ), req_table enum ( 'no' , 'yes' ), req_special varchar ( 128 ), summary text , nummentors integer , safetyquestions array of question , specialawards array of specialaward })
2011-03-03 02:57:40 +00:00
object ( question : { id , question , type , required , ord , answer })
2011-03-03 04:24:21 +00:00
object ( specialaward : { id , name , criteria , self_nominate , selected })
2011-02-18 16:56:35 +00:00
*/
case 'view' :
if ( $u = user_load ( $_SESSION [ 'users_id' ])) {
2011-02-18 20:48:56 +00:00
$p = getProject ( $_SESSION [ 'users_id' ]);
2011-02-18 17:12:32 +00:00
if ( is_array ( $p )) {
$ret [ 'status' ] = 'ok' ;
$ret [ 'project' ] = $p ;
}
else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'no project' ;
}
} else {
2011-02-18 16:56:35 +00:00
$ret [ 'status' ] = 'error' ;
2011-02-18 17:12:32 +00:00
$ret [ 'error' ] = 'unabe to load current user' ;
2011-02-18 16:56:35 +00:00
}
break ;
2011-02-17 22:04:47 +00:00
/* APIDOC : project / edit
2011-02-18 16:37:11 +00:00
post ( project array )
2011-03-02 17:18:13 +00:00
description ( Edit an existing project . " language " notes the language a participant wishes to be judged in . " req_electricity " notes whethor or not the project requires an electrical outlet . " req_table " states whether or not the project needs a table . " req_special " is a field for special requirements . )
2011-03-03 02:57:40 +00:00
object ( project : as per project / view )
object ( question : for sake of not re - transmitting all the safetyquestion text , the only fields required to save are { id , answer })
2011-03-03 04:24:21 +00:00
object ( specialaward : for sake of not re - transmitting all the specialaward text , the only fields required to save are { id , selected })
2011-02-18 16:37:11 +00:00
return ( project array )
2011-02-17 22:04:47 +00:00
*/
case 'edit' :
2011-02-18 16:37:11 +00:00
$project = json_decode ( $_POST [ 'project' ], true );
if ( ! is_array ( $project )) {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " project (array) is required. " ;
break ;
}
$message = saveProjectData ( $project );
2011-02-17 22:04:47 +00:00
if ( $message == 'success' ){
$ret [ 'status' ] = 'ok' ;
2011-02-25 16:19:15 +00:00
$ret [ 'project' ] = getProject ( $_SESSION [ 'users_id' ]);
2011-02-17 22:04:47 +00:00
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = $message ;
}
break ;
/* APIDOC : project / join
2011-02-18 20:25:47 +00:00
post ( registration_number integer , email varchar ( 64 ))
description ( join an existing project , identified and confirmed by the registration number and e - mail address stored in the registrations table )
2011-02-17 22:04:47 +00:00
*/
case 'join' :
2011-02-18 20:25:47 +00:00
if ( ! ( array_key_exists ( 'registration_number' , $_POST ) && array_key_exists ( 'email' , $_POST ))){
2011-02-18 19:19:56 +00:00
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " Missing required parameters " ;
break ;
}
2011-02-18 20:25:47 +00:00
$result = joinProject ( $_POST [ 'registration_number' ], $_POST [ 'email' ]);
2011-02-18 19:19:56 +00:00
if ( $result == " ok " ){
2011-02-24 17:44:12 +00:00
$_SESSION [ 'registration_id' ] = getRegistrationsId ( $_SESSION [ 'users_id' ]);
2011-02-23 21:12:12 +00:00
$_SESSION [ 'registration_number' ] = $_POST [ 'registration_number' ];
2011-02-18 19:19:56 +00:00
$ret [ 'status' ] = " ok " ;
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $result ;
}
2011-02-17 22:04:47 +00:00
break ;
/* APIDOC : project / remove
2011-02-18 20:25:47 +00:00
description ( remove the current user from an existing project . If no other users are in the project , then it is deleted . )
2011-02-17 22:04:47 +00:00
*/
case 'remove' :
2011-03-02 22:41:26 +00:00
$regId = getRegistrationsId ( $_SESSION [ 'users_id' ]);
if ( ! $regId ){
2011-02-18 20:25:47 +00:00
$ret [ 'status' ] = 'error' ;
2011-02-23 21:12:12 +00:00
$ret [ 'error' ] = 'current user not associated with a project' ;
2011-02-18 20:25:47 +00:00
break ;
}
2011-03-02 22:41:26 +00:00
$result = removeProject ( $regId );
2011-02-18 20:25:47 +00:00
if ( $result != 'ok' ){
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $result ;
break ;
}
2011-02-24 17:44:12 +00:00
unset ( $_SESSION [ 'registration_id' ]);
2011-02-23 21:12:12 +00:00
unset ( $_SESSION [ 'registration_number' ]);
2011-02-18 20:25:47 +00:00
$ret [ 'status' ] = 'ok' ;
2011-02-17 22:04:47 +00:00
break ;
2011-03-03 03:00:35 +00:00
case 'specialawards' :
switch ( $request [ 2 ]){
/* APIDOC : project / specialawards / view
description ( view the special awards available , flagged as whether or not they 're selected for this user' s project . )
*/
case 'view' :
$u = user_load ( $_SESSION [ 'users_id' ]);
$projectId = getProjectId ( $u [ 'registrations_id' ]);
if ( $projectId !== null ){
$ret [ 'status' ] = 'ok' ;
$ret [ 'awards' ] = getAwardListing ( $projectId );
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = 'could not load project for registriation id #' . $u [ 'registrations_id' ];
}
break ;
/* APIDOC : project / specialawards / edit
description : ( update the special awards assigned to this project )
post ( awards array )
description ( expects an array in the
*/
case 'edit' :
//$nominations = json_decode($_POST['awards'], true);
break ;
}
break ;
2011-02-17 22:04:47 +00:00
case 'mentor' :
switch ( $request [ 2 ]){
2011-02-21 19:42:13 +00:00
/* APIDOC : project / mentor / edit
2011-03-01 20:09:33 +00:00
post ( mentors array of mentor arrays )
2011-03-02 17:45:36 +00:00
object ( mentor : { id , firstname , lastname , email , phone , organization , position , description })
2011-03-02 17:18:13 +00:00
object ( mentors : { mentor , ... })
description ( edit a list of project mentors or add new ones if a mentor array has no id )
return ( mentors array of mentor arrays )
2011-02-21 19:42:13 +00:00
*/
case 'edit' :
2011-03-01 19:57:05 +00:00
if ( ! array_key_exists ( 'mentors' , $_POST )){
2011-02-21 19:42:13 +00:00
$ret [ 'status' ] = " error " ;
2011-03-01 19:57:05 +00:00
$ret [ 'error' ] = " mentors array parameter required " ;
2011-02-21 19:42:13 +00:00
break ;
}
2011-03-01 19:57:05 +00:00
$errors = array ();
2011-03-02 14:26:18 +00:00
$mentorList = json_decode ( $_POST [ 'mentors' ], true );
2011-03-02 17:39:13 +00:00
if ( ! is_array ( $mentorList )) {
2011-03-02 17:18:13 +00:00
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " mentors array parameter must be an array of mentors (or an empty array if no mentors) " ;
break ;
}
2011-03-01 19:57:05 +00:00
foreach ( $mentorList as $mentor ){
if ( ! is_array ( $mentor )){
$errors [] = " Invalid mentor data: $mentor " ;
continue ;
}
2011-03-02 17:18:13 +00:00
if ( $mentor [ 'id' ]) {
$result = saveMentorData ( $mentor );
}
else {
$result = addMentor ( $_SESSION [ 'registration_id' ]);
$mentor [ 'id' ] = $result [ 'id' ];
$result = saveMentorData ( $mentor );
}
2011-03-01 19:57:05 +00:00
if ( $result != 'ok' ) $errors [] = $result ;
}
if ( ! count ( $errors )){
2011-02-21 19:42:13 +00:00
$ret [ 'status' ] = 'ok' ;
2011-03-02 17:18:13 +00:00
$ret [ 'mentors' ] = getMentors ( $_SESSION [ 'registration_id' ]);
2011-02-21 19:42:13 +00:00
} else {
$ret [ 'status' ] = 'error' ;
2011-03-01 19:57:05 +00:00
$ret [ 'error' ] = '(' . implode ( '), (' , $errors ) . ')' ;
2011-02-21 19:42:13 +00:00
}
break ;
/* APIDOC : project / mentor / remove
post ( id integer )
description ( remove a project mentor with the specified id )
2011-02-17 22:04:47 +00:00
*/
case 'remove' :
2011-02-21 19:42:13 +00:00
if ( ! array_key_exists ( 'id' , $_POST )){
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " mentor id parameter required " ;
break ;
}
$result = removeMentor ( $_POST [ 'id' ]);
if ( $result == 'ok' ){
$ret [ 'status' ] = 'ok' ;
} else {
$ret [ 'status' ] = 'error' ;
$ret [ 'error' ] = $result ;
}
2011-02-17 22:04:47 +00:00
break ;
2011-02-21 19:42:13 +00:00
/* APIDOC : project / mentor / view
description ( list project mentors )
2011-03-02 17:18:13 +00:00
return ( mentors array of mentor arrays )
2011-02-17 22:04:47 +00:00
*/
2011-02-21 19:42:13 +00:00
case 'view' :
2011-02-24 17:44:12 +00:00
if ( ! array_key_exists ( 'registration_id' , $_SESSION )){
2011-02-21 19:42:13 +00:00
$ret [ 'status' ] = " error " ;
2011-02-23 21:12:12 +00:00
$ret [ 'error' ] = 'current user not associated with a project' ;
2011-02-21 19:42:13 +00:00
break ;
}
2011-02-24 17:44:12 +00:00
$result = getMentors ( $_SESSION [ 'registration_id' ]);
2011-02-21 19:42:13 +00:00
if ( is_array ( $result )){
$ret [ 'status' ] = 'ok' ;
$ret [ 'mentors' ] = $result ;
} else {
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = $result ;
}
2011-02-17 22:04:47 +00:00
break ;
2011-02-18 20:25:47 +00:00
default :
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " invalid project API command ( { $request [ 2 ] } ) " ;
2011-02-17 22:04:47 +00:00
}
break ;
2011-02-21 22:07:06 +00:00
/* APIDOC : project / signatureform
description ( generate and download the signature page PDF for the currently logged in user / project , as a BASE64 ENCODED string )
return ( pdf base64 encoded string )
*/
case 'signatureform' :
ob_start ();
//this tells it to simply return the [S]tring instead of outputting headers to force pdf display in a browser
$PDFDEST = " S " ;
include " register_participants_signature.php " ;
$c = ob_get_contents ();
ob_end_clean ();
$b64 = base64_encode ( $c );
2011-03-02 16:50:28 +00:00
$fptmp = fopen ( " tmp.pdf " , " w " );
fwrite ( $fptmp , $c );
fclose ( $fptmp );
/*
$fptmp = fopen ( " tmp.b64 " , " w " );
fwrite ( $fptmp , $b64 );
fclose ( $fptmp );
*/
2011-02-21 22:07:06 +00:00
$ret [ 'status' ] = " ok " ;
$ret [ 'pdf' ] = $b64 ;
break ;
2011-02-17 22:04:47 +00:00
default :
$ret [ 'status' ] = " error " ;
$ret [ 'error' ] = " invalid project API command ( { $request [ 1 ] } ) " ;
2010-10-27 16:40:17 +00:00
}
2011-02-17 22:04:47 +00:00
break ;
2010-10-27 16:40:17 +00:00
2010-07-28 21:49:58 +00:00
default :
$ret [ 'status' ] = " error " ;
2010-10-06 21:01:17 +00:00
$ret [ 'error' ] = " invalid API command ( { $request [ 0 ] } ) " ;
2010-07-28 21:49:58 +00:00
}
2010-12-02 17:50:16 +00:00
fwrite ( $fout , " result = \n " . print_r ( $ret , true ) . " \n " );
fclose ( $fout );
2010-07-28 21:49:58 +00:00
echo json_encode ( $ret );
?>