science-ation/admin/project_editor.php

446 lines
17 KiB
PHP
Raw Normal View History

<?
/*
This file is part of the 'Science Fair In A Box' project
SFIAB Website: http://www.sfiab.ca
2006-12-15 19:51:32 +00:00
Copyright (C) 2005-2006 Sci-Tech Ontario Inc <info@scitechontario.org>
Copyright (C) 2005-2006 James Grant <james@lightbox.org>
This program is free software; you can redistribute it and/or
modify it under the terms of the GNU General Public
License as published by the Free Software Foundation, version 2.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; see the file COPYING. If not, write to
the Free Software Foundation, Inc., 59 Temple Place - Suite 330,
Boston, MA 02111-1307, USA.
*/
// This file was modified Jan of 2014 by Richard Sin
// Project type has been added and can be toggled by configuration.
// Feedback box also has been added for flagging purposes
?>
<?
2010-01-24 06:47:17 +00:00
require_once('../common.inc.php');
require_once('../user.inc.php');
require_once('../register_participants.inc.php');
$auth_type = user_auth_required(array('fair','committee'), 'admin');
$registrations_id=intval($_GET['id']);
$action = $_GET['action'];
2010-01-24 06:47:17 +00:00
/* Extra restrictions for auth_type = fair */
if($auth_type == 'fair') {
$fairs_id = $_SESSION['fairs_id'];
if($registrations_id == -1 && ($action=='registration_load' || $action == 'registration_save')) {
/* we can't check the project it hasn't been created. */
} else {
/* Make sure they have permission to laod this student, check
the master copy of the fairs_id in the project */
2024-12-08 02:42:00 -05:00
$q=$pdo>prepare("SELECT * FROM projects WHERE
2010-01-24 06:47:17 +00:00
registrations_id='$registrations_id'
AND year='{$config['FAIRYEAR']}'
AND fairs_id=$fairs_id");
2024-12-08 02:42:00 -05:00
$q->execute();
if($q->rowCount()!= 1) {
2010-01-24 06:47:17 +00:00
echo "permission denied.";
exit;
}
/* Ok, they have permission */
}
}
switch($action) {
case 'project_load':
project_load();
break;
case 'project_regenerate_number':
/* Save first */
project_save();
/* Now generate */
2024-12-08 02:42:00 -05:00
$q=$pdo->prepare("SELECT id FROM projects WHERE registrations_id='{$registrations_id}' AND year='{$config['FAIRYEAR']}'");
$q->execute();
$i=$q->fetch(PDO::FETCH_ASSOC);;
$id = $i['id'];
2024-12-08 02:42:00 -05:00
$pdo->prepare("UPDATE projects SET projectnumber=NULL,projectsort=NULL,
projectnumber_seq='0',projectsort_seq='0'
WHERE id='$id'");
2024-12-08 02:42:00 -05:00
$pdo->execute();
echo $pdo->errorInfo();
list($pn,$ps,$pns,$pss) = generateProjectNumber($registrations_id);
// print("Generated Project Number [$pn]");
2024-12-08 02:42:00 -05:00
$pdo->prepare("UPDATE projects SET projectnumber='$pn',projectsort='$ps',
projectnumber_seq='$pns',projectsort_seq='$pss'
WHERE id='$id'");
2024-12-08 02:42:00 -05:00
$pdo->execute();
happy_("Generated and Saved Project Number: $pn");
break;
case 'project_save':
project_save();
break;
default:
break;
}
exit;
function project_save()
{
global $registrations_id, $config;
//first, lets make sure this project really does belong to them
2024-12-08 02:42:00 -05:00
$q=$pdo->prepare("SELECT * FROM projects WHERE registrations_id='{$registrations_id}' AND year='{$config['FAIRYEAR']}'");
$q->execute();
$projectinfo = $q->fetch(PDO::FETCH_OBJ);
if(!projectinfo) {
echo error(i18n("Invalid project to update"));
}
$summarywords=preg_split("/[\s,]+/",$_POST['summary']);
$summarywordcount=count($summarywords);
if($summarywordcount>$config['participant_project_summary_wordmax'])
$summarycountok=0;
else
$summarycountok=1;
//check if it is flagged then update it
if(empty($_POST['feedback'])) {
2024-12-08 02:42:00 -05:00
$stmt = $pdo->prepare("UPDATE projects SET ".
"flagged='0'".
"WHERE id='".intval($_POST['id'])."'");
2024-12-08 02:42:00 -05:00
$stmt->execute();
} else {
2024-12-08 02:42:00 -05:00
$stmt = $pdo->prepare("UPDATE projects SET ".
"flagged='1'".
"WHERE id='".intval($_POST['id'])."'");
2024-12-08 02:42:00 -05:00
$stmt->execute();
}
2024-12-08 02:42:00 -05:00
echo $pdo->errorInfo();
happy_("Flagging process successfully updated");
if($config['participant_project_title_charmax'] && strlen(stripslashes($_POST['title']))>$config['participant_project_title_charmax']) { //0 for no limit, eg 255 database field limit
$title=substr(stripslashes($_POST['title']),0,$config['participant_project_title_charmax']);
error_("Project title truncated to %1 characters",array($config['participant_project_title_charmax']));
} else
$title=stripslashes($_POST['title']);
2024-12-08 02:42:00 -05:00
$stmt = $pdo->prepare("UPDATE projects SET ".
"title='".iconv("UTF-8","ISO-8859-1//TRANSLIT",$title)."', ".
"projectdivisions_id='".intval($_POST['projectdivisions_id']."', ".
"projecttype='".stripslashes($_POST['projecttype'])."', ".
"language='".stripslashes($_POST['language'])."', ".
"req_table='".stripslashes($_POST['req_table'])."', ".
"req_electricity='".stripslashes($_POST['req_electricity'])."', ".
"req_special='".iconv("UTF-8","ISO-8859-1//TRANSLIT",stripslashes($_POST['req_special']))."', ".
"human_participants='".stripslashes($_POST['human_participants'])."', ".
"animal_participants='".stripslashes($_POST['animal_participants'])."', ".
"summary='".iconv("UTF-8","ISO-8859-1//TRANSLIT",stripslashes($_POST['summary']))."', ".
"summarycountok='$summarycountok',".
2024-12-08 02:42:00 -05:00
"feedback='".iconv("UTF-8","ISO-8859-1//TRANSLIT",stripslashes($_POST['feedback']))."', ".
"projectsort='".stripslashes($_POST['projectsort'])."'".
"WHERE id='".intval($_POST['id']))."'");
echo $pdo->errorInfo();
happy_("Project information successfully updated");
//check if they changed the project number
if($_POST['projectnumber']!=$projectinfo->projectnumber) {
//check if hte new one is available
2024-12-08 02:42:00 -05:00
$q=$pdo->prepare("SELECT * FROM projects WHERE year='".$config['FAIRYEAR']."' AND projectnumber='".$_POST['projectnumber']."'");
$q->execute();
if($q->rowCount()) {
error_("Could not change project number. %1 is already in use",array($_POST['projectnumber']));
} else {
2024-12-08 02:42:00 -05:00
$stmt = $pdo->prepare("UPDATE projects SET
projectnumber='".$_POST['projectnumber']."'
WHERE id='".$_POST['id']."'");
2024-12-08 02:42:00 -05:00
$stmt->execute();
happy_("Project number successfully changed to %1",array($_POST['projectnumber']));
}
}
}
function project_load()
{
global $registrations_id, $config;
//now lets find out their MAX grade, so we can pre-set the Age Category
2024-12-08 02:42:00 -05:00
$q=$pdo->prepare("SELECT MAX(grade) AS maxgrade FROM students WHERE registrations_id='".$registrations_id."'");
$q->execute();
$gradeinfo=$q->fetch(PDO::FETCH_OBJ);
//now lets grab all the age categories, so we can choose one based on the max grade
2024-12-08 02:42:00 -05:00
$q=$pdo->prepare("SELECT * FROM projectcategories WHERE year='".$config['FAIRYEAR']."' ORDER BY id");
$q->execute();
while($r=$q->fetch(PDO::FETCH_OBJ)) {
//save these in an array, just incase we need them later (FIXME: remove this array if we dont need it)
$agecategories[$r->id]['category']=$r->category;
$agecategories[$r->id]['mingrade']=$r->mingrade;
$agecategories[$r->id]['maxgrade']=$r->maxgrade;
if($gradeinfo->maxgrade >= $r->mingrade && $gradeinfo->maxgrade <= $r->maxgrade)
$projectcategories_id=$r->id;
}
//now select their project info
2024-12-08 02:42:00 -05:00
$q=$pdo->prepare("SELECT * FROM projects WHERE registrations_id='".$registrations_id."' AND year='".$config['FAIRYEAR']."'");
//check if it exists, if we didnt find any record, lets insert one
2024-12-08 02:42:00 -05:00
$q->execute();
$projectinfo=$q->fetch(PDO::FETCH_OBJ);
if(!$projectinfo) {
2024-12-08 02:42:00 -05:00
$stmt = $pdo->prepare("INSERT INTO projects (registrations_id,projectcategories_id,year) VALUES ('".$registrations_id."','$projectcategories_id','".$config['FAIRYEAR']."')");
//and then pull it back out
2024-12-08 02:42:00 -05:00
$stmt->execute();
$q=$pdo->prepare("SELECT * FROM projects WHERE registrations_id='".$registrations_id."' AND year='".$config['FAIRYEAR']."'");
$q->execute();
$projectinfo=$q->fetch(PDO::FETCH_OBJ);
}
//make sure that if they changed their grade on the student page, we update their projectcategories_id accordingly
if($projectcategories_id && $projectinfo->projectcategories_id!=$projectcategories_id) {
echo notice(i18n("Age category changed, updating to %1",array($agecategories[$projectcategories_id]['category'])));
2024-12-08 02:42:00 -05:00
$stmt = $pdo->prepare("UPDATE projects SET projectcategories_id='$projectcategories_id' WHERE id='$projectinfo->id'");
$stmt->execute();
}
//output the current status
?>
<script language="javascript" type="text/javascript">
function countwords()
{
var wordmax=<?=$config['participant_project_summary_wordmax'];?>;
var summaryobj=document.getElementById('summary');
var wordcountobj=document.getElementById('wordcount');
var wordcountmessageobj=document.getElementById('wordcountmessage');
var wordarray=summaryobj.value.replace(/\s+/g," ").split(" ");
var wordcount=wordarray.length;
if(wordcount>wordmax)
wordcountmessageobj.className="incomplete";
else
wordcountmessageobj.className="complete";
wordcountobj.innerHTML=wordcount;
}
</script>
<?
if(!$projectinfo) {
echo error(i18n("Invalid project to edit"));
exit;
}
?>
<form id="project_form">
<input type="hidden" name="id" value="<?=$projectinfo->id?>">
<table>
<tr> <td><?=i18n("Project Title")?>: </td>
2019-03-07 21:33:42 +00:00
<td><input type="text" name="title" size="50" value="<?=htmlspecialchars($projectinfo->title,null,"ISO8859-1")?>" /><?=REQUIREDFIELD?>
<?
if($config['participant_project_title_charmax'])
echo i18n("(Max %1 characters)",array($config['participant_project_title_charmax']));
?>
</td>
</tr><tr>
<td><?=i18n("Project Number")?>: </td>
<td><input type="text" name="projectnumber" size="10" value="<?=$projectinfo->projectnumber?>" />
<input type="button" id="project_regenerate_number" value="<?=i18n("Re-Generate Project Number")?>" />
</td>
</tr><tr>
<td><?=i18n("Project Sort")?>: </td>
<td><input type="text" name="projectsort" size="10" value="<?=$projectinfo->projectsort?>" /></td></tr>
<?
if($config['project_type'] == 'yes'){
2024-12-08 02:42:00 -05:00
$q=$pdo->prepare("SELECT * FROM projecttypes ORDER BY type");
$q->execute();
echo "<tr><td>".i18n("Project Type").": </td><td>";
echo "<select name=\"projecttype\">\n";
echo "<option value=\"\">".i18n("Select a project type")."</option>\n";
//FIXME: need to fix the loading glitch
2024-12-08 02:42:00 -05:00
while($r=$q->fetch(PDO::FETCH_OBJ))
{
if($r->type == $projectinfo->projecttype)
{
$sel="selected=\"selected\"";
}
else
{
$sel="";
}
2019-03-07 21:33:42 +00:00
echo "<option $sel value=\"$r->type\">".htmlspecialchars(i18n($r->type),null,"ISO8859-1")."</option>\n";
}
echo "</select>".REQUIREDFIELD."</td></tr>";
}
?>
<tr>
<td><?=i18n("Age Category")?>: </td>
<td><?=i18n($agecategories[$projectcategories_id]['category'])?> (<?=i18n("Grades %1-%2",array($agecategories[$projectcategories_id]['mingrade'],$agecategories[$projectcategories_id]['maxgrade']))?>)</td>
</tr><tr>
<td><?=i18n("Division")?>: </td>
<td>
<?
//###### Feature Specific - filtering divisions by category
if($config['filterdivisionbycategory']=="yes"){
2024-12-08 02:42:00 -05:00
$q=$pdo->prepare("SELECT projectdivisions.* FROM projectdivisions,projectcategoriesdivisions_link WHERE projectdivisions.id=projectdivisions_id AND projectcategories_id=".$projectcategories_id." AND projectdivisions.year='".$config['FAIRYEAR']."' AND projectcategoriesdivisions_link.year='".$config['FAIRYEAR']."' ORDER BY division");
$q->execute();
echo $pdo->errorInfo();
//###
} else
2024-12-08 02:42:00 -05:00
$q=$pdo->prepare("SELECT * FROM projectdivisions WHERE year='".$config['FAIRYEAR']."' ORDER BY division");
$q->execute();
echo "<select name=\"projectdivisions_id\">";
echo "<option value=\"\">".i18n("Select a division")."</option>\n";
2024-12-08 02:42:00 -05:00
while($r=$q->fetch(PDO::FETCH_OBJ)) {
if($r->id == $projectinfo->projectdivisions_id) $sel="selected=\"selected\""; else $sel="";
2019-03-07 21:33:42 +00:00
echo "<option $sel value=\"$r->id\">".htmlspecialchars(i18n($r->division),null,"ISO8859-1")."</option>\n";
}
echo "</select>".REQUIREDFIELD;
if($config['usedivisionselector']=="yes") {
?>
<script language="javascript" type="text/javascript">
function openDivSelWindow()
{
divselwin=window.open('register_participants_project_divisionselector.php','divsel','width=500,height=220,toolbar=no,location=no,directories=no,status=no,menubar=no,scrollbars=no')
if(divselwin.opener==null) divselwin.opener=self;
return false;
}
</script>
<?
}
echo "<br />";
echo i18n("WARNING! If you change the division you must manually change the project number too! It will NOT be assigned a new number automatically");
echo "</td></tr>";
echo "<tr><td>".i18n("Language").": </td><td>";
echo "<select name=\"language\">\n";
if($projectinfo->language)
$currentlang=$projectinfo->language;
else
$currentlang=$_SESSION['lang'];
foreach($config['languages'] AS $key=>$val) {
if($currentlang==$key) $selected="selected=\"selected\""; else $selected="";
echo "<option $selected value=\"$key\">$val</option>";
}
echo "</select>".REQUIREDFIELD;
echo "</td></tr>";
echo "<tr><td>".i18n("Requirements").": </td><td>";
echo "<table>";
if($config['participant_project_table']=="no") {
//if we arent asking them if they want a table or not, then we set it to 'yes' assuming everyone will get a table
echo " <input type=\"hidden\" name=\"req_table\" value=\"yes\" />";
} else {
echo "<tr>";
echo " <td>".i18n("Table").REQUIREDFIELD."</td>";
if($projectinfo->req_table=="yes") $check="checked=\"checked\""; else $check="";
echo " <td><input $check type=\"radio\" name=\"req_table\" value=\"yes\" />Yes</td>";
echo " <td width=\"20\">&nbsp;</td>";
if($projectinfo->req_table=="no") $check="checked=\"checked\""; else $check="";
echo " <td><input $check type=\"radio\" name=\"req_table\" value=\"no\" />No</td>";
echo "</tr>";
}
if($config['participant_project_electricity']=="no")
{
//if we arent asking them if they want electricity or not, then we set it to 'yes' assuming everyone will get electricity
echo " <input type=\"hidden\" name=\"req_electricity\" value=\"yes\" />";
}
else
{
echo "<tr>";
echo " <td>".i18n("Electricity").REQUIREDFIELD."</td>";
if($projectinfo->req_electricity=="yes") $check="checked=\"checked\""; else $check="";
echo " <td><input $check type=\"radio\" name=\"req_electricity\" value=\"yes\" />Yes</td>";
echo " <td width=\"20\">&nbsp;</td>";
if($projectinfo->req_electricity=="no") $check="checked=\"checked\""; else $check="";
echo " <td><input $check type=\"radio\" name=\"req_electricity\" value=\"no\" />No</td>";
echo "</tr>";
}
echo "<tr>";
echo " <td>".i18n("Special")."</td>";
echo " <td colspan=\"3\"><input type=\"text\" name=\"req_special\" value=\"$projectinfo->req_special\" /></td>";
echo "</tr>";
echo "</table>";
if($config['ethics_questions']=="yes")
// If we have set ethics questions to yes then ask the ethics questions!
{
echo "<tr><td>".i18n("Ethics Questions").":</td><td>";
echo "<table>";
echo "<tr>";
echo " <td>".i18n("My project involves human participants").REQUIREDFIELD."</td>";
if($projectinfo->human_participants=="yes") $check="checked=\"checked\""; else $check="";
echo " <td><input $check type=\"radio\" name=\"human_participants\" value=\"yes\" />Yes</td>";
echo " <td width=\"20\">&nbsp;</td>";
if($projectinfo->human_participants=="no") $check="checked=\"checked\""; else $check="";
echo " <td><input $check type=\"radio\" name=\"human_participants\" value=\"no\" />No</td>";
echo "</tr>";
echo "<tr>";
echo " <td>".i18n("My project involves animals").REQUIREDFIELD."</td>";
if($projectinfo->animal_participants=="yes") $check="checked=\"checked\""; else $check="";
echo " <td><input $check type=\"radio\" name=\"animal_participants\" value=\"yes\" />Yes</td>";
echo " <td width=\"20\">&nbsp;</td>";
if($projectinfo->animal_participants=="no") $check="checked=\"checked\""; else $check="";
echo " <td><input $check type=\"radio\" name=\"animal_participants\" value=\"no\" />No</td>";
echo "</tr>";
echo "</table>";
}
echo "</td></tr>";
2019-03-07 21:33:42 +00:00
echo "<tr><td>".i18n("Summary").": </td><td><textarea onchange='countwords()' onkeypress='countwords()' cols=\"60\" rows=\"12\" id=\"summary\" name=\"summary\">".htmlspecialchars($projectinfo->summary,null,"ISO8859-1")."</textarea>".REQUIREDFIELD."<br />";
$summarywords=preg_split("/[\s,]+/",$projectinfo->summary);
$summarywordcount=count($summarywords);
if($summarywordcount>$config['participant_project_summary_wordmax'])
echo "<div id=\"wordcountmessage\" class=\"incomplete\">";
else
echo "<div id=\"wordcountmessage\" class=\"complete\">";
echo "<span id=\"wordcount\">$summarywordcount</span>/";
echo i18n("%1 words maximum",array($config['participant_project_summary_wordmax']));
echo "</div>";
2019-03-07 21:33:42 +00:00
echo"<tr><td>".i18n("Feedback").": </td><td><textarea cols=\"60\" rows=\"4\" id=\"feedback\" name=\"feedback\">".htmlspecialchars($projectinfo->feedback,null,"ISO8859-1")."</textarea><br />";
?>
</td></tr>
</table>
<input type="button" id="project_save" value="<?=i18n("Save Project Information")?>" />
</form>
<?
}
?>