-
Notifications
You must be signed in to change notification settings - Fork 3
/
ConsoleController.php
1711 lines (1606 loc) · 76.5 KB
/
ConsoleController.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
<?php
class ConsoleController extends BaseController {
public function get_logout() {
//Log the user out
Auth::consoleuser()->logout();
//Redirect to the login page with a message
return Redirect::route('index')->with('topmessage', 'Logged out of the console successfully.');
}
public function get_login()
{
// *****SSO******
$config = require app_path() . '/config/packages/vatsim/sso/config.php';
$key = $config['key'];
$base = $config['base'];
$method = $config['method'];
$secret = $config['secret'];
$cert = $config['cert'];
$return = $config['return'];
return VatsimSSO::login(
$return,
function($key, $secret, $cert) {
Session::put('vatsimauth', compact('key', 'secret'));
return Redirect::to($cert);
},
function($error) {
Redirect::route('index')->with('topmessage','Could not authenticate: ' . $error['message']);
}
);
// return View::make('console.login');
}
public function post_validatelogin() {
$session = Session::get('vatsimauth');
return VatsimSSO::validate(
$session['key'],
$session['secret'],
Input::get('oauth_verifier'),
function($user, $request) {
// At this point we can remove the session data.
Session::forget('vatsimauth');
//Verify that our user is a console user
$find = ConsoleUser::where('cid', '=', $user->id)->where('access', '>', -1)->count();
if ($find == 0)
return Redirect::route('index')->with('topmessage', 'Member not authorised to use VA Auditors Console');
Auth::consoleuser()->loginUsingId($user->id);
//Update the timestamp (for updated at which is used for last time logged in)
ConsoleUser::find(Auth::consoleuser()->get()->cid)->touch();
return Redirect::route('console');
},
function($error) {
Redirect::route('index')->with('topmessage','Could not authenticate: ' . $error['message']);
}
);
}
public function post_login() {;
$cid = Input::get('cid');
$password = Input::get('password');
$validator = Validator::make(
array(
'Cid' => $cid,
'Password' => $password,
),
array(
'Cid' => 'required|integer',
'Password' => '',
),
array (
'Cid.required' => 'Please enter your VATSIM CID.',
'Cid.integer' => 'Invalid CID.',
'Password.required' => 'You must enter a password.',
)
);
if ($validator->fails())
{
// The given data did not pass validation
$messages = $validator->messages();
$errorStr = '';
$count = count($messages);
$i = 0;
foreach ($messages->all(':message') as $message)
{
$i++;
$errorStr .= '<span>' . $message . '</span>';
if ($i != $count) {
$errorStr .= '<br /><hr />';
}
}
return Redirect::route('consolelogin')->with('message', $errorStr)->with('cid', $cid);
}
else {
$consoleuser = ConsoleUser::where('cid', '=', $cid)->where('access', '>', -1)->first();
//If there is not a password set for the user then log them in and redirect them to their profile page to set a password
if (empty($consoleuser->password) && $password == "initial") {
Auth::consoleuser()->loginUsingId($cid);
return Redirect::route('consoleprofile')->with('message', 'Verify your details and create a password for your account.');
}
if (!empty($consoleuser)) {
//User with the provided CID exists. Now let's run the password
if (Hash::check($password, $consoleuser->password)) {
//Credentials were valid. Let's login the user
Auth::consoleuser()->loginUsingId($cid);
//Check if there was a request url
$requesturl = Input::get('requesturl');
if (!empty($requesturl))
return Redirect::to($requesturl);
else
return Redirect::route('console');
}
else {
//Bad Password
return Redirect::route('consolelogin')->with('message', 'Invalid Password. ')->with('cid', $cid);
}
}
else {
//Bad CID
return Redirect::route('consolelogin')->with('message', 'Invalid CID. ')->with('cid', $cid);
}
}
}
public function get_index() {
//Determine and fetch unread helpdesk updates to be displayed in the dashboard.
$cid = Auth::consoleuser()->get('cid');
$unAssignedTickets = Ticket::where('status', '=', '1')->where('assigned', '=', '0')->get();
//Fetch our two most recent audit logs
$auditLogs = AuditLog::orderBy('created_at', 'DESC')->get();
$i = 0;
//Declare the two auditlog variables before in case laravel gets mad because they are not being called if there are no audit logs filed.
$auditLog1 = '';
$auditLog2 = '';
foreach($auditLogs as $auditLog) {
if ($i == 0)
$auditLog1 = $auditLog;
if ($i == 1)
$auditLog2 = $auditLog;
if ($i > 1)
break;
$i++;
}
$pendingVAs = User::where('status', '=', '0')->orderBy('awaiting_response', 'ASC')->orderBy('created_at', 'DESC')->get();
$activeBroadcasts = Broadcast::where('status', '=', '1')->orderBy('created_at', 'DESC')->get();
return View::make('console.index')->with(array('pendingVAs' => $pendingVAs, 'activeBroadcasts' => $activeBroadcasts, 'tickets' => $unAssignedTickets, 'auditLog1' => $auditLog1, 'auditLog2' => $auditLog2));
}
public function get_broadcasts() {
$broadcasts = Broadcast::orderBy('status', 'DESC')->orderBy('created_at', 'DESC')->get();
return View::make('console.broadcasts')->with(array('broadcasts' => $broadcasts));
}
public function post_broadcastsnew() {
$content = Input::get('inputContent');
$subject = Input::get('inputSubject');
$broadcast = new Broadcast;
$broadcast->content = $content;
$broadcast->subject = $subject;
//Todo finish this
$broadcast->author = Auth::consoleuser()->get()->cid;
//Make this broadcast active
$broadcast->status = '1';
$broadcast->save();
return Redirect::route('consolebroadcasts')->with('message', 'New Broadcast Created Successfully.');
}
public function get_broadcastsremove($id) {
Broadcast::destroy($id);
return Redirect::route('consolebroadcasts')->with('message', 'Broadcast Removed Successfully.');
}
public function get_broadcastsvis($id) {
$broadcast = Broadcast::find($id);
if ($broadcast->status == 0) {
$broadcast->status = 1;
}
else {
$broadcast->status = 0;
}
$broadcast->save();
return Redirect::route('consolebroadcasts')->with('message', 'Broadcast Visibility Successfully Updated');
}
public function post_ajaxsearch() {
$data = Input::get('data');
parse_str($data, $post);
$query = $post['searchInput'];
$like = '%' . $query . '%';
if (is_Numeric($query)) {
//Since it is numeric we are probably sorting by a CID. Let's try to find VAs by CID with this number
$vas = User::where('cid', 'like', $like)->orderBy('cid', 'ASC')->get();
}
else {
//Hmm maybe they are trying to find a VA by name or by the name of the owner or URL
$vas = User::where('name', 'like', $like)->orWhere('url', 'like', $like)->orWhere('email', 'like', $like)->orWhere('vaname', 'like', $like)->orWhere('url', 'like', $like)->orderBy('vaname', 'ASC')->get();
}
if (count($vas) > 0) {
//Format our output
$send = '';
foreach ($vas as $va) {
$status = User::formatUserStatus($va->status);
$flags = "";
if ($va->awaiting_response == 1)
$flags = '<span class="label label-warning"><i class="fa fa-info fa-fw"></i> Awaiting Response</span>';
$send .= "<tr><td>$va->vaname</td><td>$status</td><td>$flags</td><td>$va->url</td><td>$va->cid</td><td>$va->name</td><td>$va->created_at</td><td><a class=\"searchEditVABtn\" href=\"" . URL::route('console') . "/va/" . $va->cid . "\"><i class=\"fa fa-edit fa-fw\"</a></td></tr>";
}
}
else {
$send = '0';
}
echo $send;
}
public function get_va($id) {
//Is someone trying to pass something other than an integer?
if (!is_numeric($id)) {
return Redirect::route('console');
}
$va = User::findOrFail($id);
//Do we have a banner?
//Ugh laravel gets mad when we don't so let's just set it as empty for now.
$banner = '';
if ($va->banner) {
$banner = User::getBannerUrl($va->cid);
}
//Pull our banner directory from settings
$banner_maxwidth = Setting::fetch('banner_maxwidth');
$banner_maxheight = Setting::fetch('banner_maxheight');
//Pull our audit log
$audit_log = AuditLog::where('va', '=', $va->cid)->orderBy('created_at', 'DESC')->get();
//Pull our tickets created by this VA
$tickets = Ticket::where('vid', '=', $id)->orderBy('updated_at', 'DESC')->get();
//Pull our hidden categories
$hiddenCategories = Category::where('hidden', '=', 1)->get();
//Create an array of hidden category ids
$hiddenCategoryIds = array();
foreach ($hiddenCategories as $hiddenCategory) {
$hiddenCategoryIds[] = $hiddenCategory->id;
}
$categories = $va->categories;
$categories = explode(',', $categories);
//Get rid of the empty array pair
array_pop($categories);
$currentHiddenCategories = array();
foreach ($categories as $category) {
if (in_array($category, $hiddenCategoryIds))
$currentHiddenCategories[] = $category;
}
//Get all of our non hidden categories
$allcategories = Category::where('hidden', '=', 0)->get();
//Max categories
$max_categories = Setting::fetch('max_categories');
//Pull our email templates
$emailTemplates = EmailTemplate::where('author', '=', Auth::consoleuser()->get()->cid)->orderBy('name', 'DESC')->get();
$sharedEmailTemplates = EmailTemplate::where('author', '!=', Auth::consoleuser()->get()->cid)->where('public', '=', '1')->orderBy('name', 'DESC')->get();
return View::make('console.va')->with(array('va' => $va, 'banner' => $banner, 'audit_log' => $audit_log, 'banner_maxwidth' => $banner_maxwidth, 'banner_maxheight' => $banner_maxheight, 'tickets' => $tickets, 'emailTemplates' => $emailTemplates, 'sharedEmailTemplates' => $sharedEmailTemplates, 'hiddenCategories' => $hiddenCategories, 'currentHiddenCategories' => $currentHiddenCategories, 'categories' => $allcategories, 'currentCategories' => $categories, 'max_categories' => $max_categories));
}
public function get_vaupdatestatus($id, $status) {
//Verify the VA exists
$va = User::findOrFail($id);
//Verify the status is a valid number
$possibleStatus = array('-1', '0', '1');
if (in_array($status, $possibleStatus)) {
//Update the VA
$va->status = $status;
$va->save();
//Add an auditor note detailing this status change
//and just for good measure...
$statusname = AuditLog::getStatusName($status);
$reason = Input::get('inputReason');
if (!empty($reason))
AuditLog::createNotation($id, "VA status changed to <strong>" . $statusname . "</strong>. Reason: " . $reason . "");
else
AuditLog::createNotation($id, "VA status changed to <strong>" . $statusname . "</strong>");
//If they are approving a VA then we need to send the VA approved email
if ($status == 1) {
//Great, now let's send our VA approved email to the member.
$template = SystemEmailTemplate::find('va_approved');
$subject = $template->subject;
$email = $va->email;
$content = EmailTemplate::replaceContent($template->content, $id);
//Send our email
$data = array('name' => $va->name, 'email' => $email, 'subject' => $subject);
//Alright. Time to do some email sending.
Mail::send('email.default', array("content" => $content), function($message) use ($data) {
$message->to($data['email'], $data['name'])->subject($data['subject']);
});
return Redirect::to('console/va/' . $id . '#status')->with('message', 'VA Approved and Email sent to VA informing them of their acceptance.');
}
$inputSubmitSendEmail = Input::get('inputSubmitSendEmail');
if ($status == -1 && !empty($inputSubmitSendEmail)) {
//Alright they filled out the email form and want to send a rejection email. Let's pull our data
$subject = Input::get('inputSubject');
$body = Input::get('inputBody');
$body = EmailTemplate::replaceContent($body, $id);
//Send our email
$data = array('name' => $va->name, 'email' => $va->email, 'subject' => $subject);
Mail::send('email.default', array("content" => $body), function($message) use ($data) {
$message->to($data['email'], $data['name'])->subject($data['subject']);
});
return Redirect::to('console/va/' . $id . '#status')->with('message', 'VA Rejected and email sent to VA informing them of the denial rationale.');
}
//Finally redirect to the page
return Redirect::to('console/va/' . $id . '#status');
}
else
App::abort('404', 'Invalid Status');
}
public function get_vaupdatelinkbackstatus($id, $status) {
//Verify the VA exists
$va = User::findOrFail($id);
//Verify the status is valid
$possibleStatus = array('0', '1');
if (in_array($status, $possibleStatus)) {
//Update the linkback status
$va->linkbackstatus = $status;
//Save
$va->save();
//Finally redirect to the page
return Redirect::to('console/va/' . $id . '#status');
}
else {
App::abort('404', 'Invalid Linkback Status');
}
}
public function get_helpdesk($filter) {
$filter = strtolower($filter);
//Make sure our filter is valid
if ($filter != "open" && $filter != "closed" && $filter != "assigned") {
//Shit, that's bad. Throw a 404.
App::abort(404, 'Invalid helpdesk filter');
}
//Create our subheader based on the URL parameter and fetch the relevant list of tickets
switch($filter){
case 'open':
$subheader = "Open Tickets";
$tickets = Ticket::where('status', '=', '1')->orderBy('updated_at', 'DESC')->get();
break;
case 'closed':
$subheader = "Closed Tickets";
$tickets = Ticket::where('status', '=', '0')->orderBy('updated_at', 'DESC')->get();
break;
case 'assigned':
$subheader = "Assigned Tickets";
$tickets = Ticket::where('assigned', '=', Auth::consoleuser()->get()->cid)->where('status', '=', '1')->orderBy('updated_at', 'DESC')->get();
break;
}
//Get the replies
$repliescount = array();
foreach ($tickets as $ticket) {
$repliescount[$ticket->id] = Ticket::find($ticket->id)->replies()->count();
}
return View::make('console.helpdesk')->with(array('subheader' => $subheader, 'tickets' => $tickets, 'repliescount' => $repliescount));
}
public function get_helpdeskview($id) {
//Find the ticket or fail
$ticket = Ticket::findOrFail($id);
//Find the replies
$replies = Ticket::find($id)->replies;
//Get a list of auditors (who still have access and not ourselves), for our assign ticket select
$auditors = ConsoleUser::where('access', '>', '-1')->where('cid', '!=', Auth::consoleuser()->get()->cid)->orderBy('name', 'ASC')->get();
//Make the view
return View::make('console.helpdeskview')->with(array('ticket' => $ticket, 'replies' => $replies, 'auditors' => $auditors));
}
public function post_helpdeskreply($id) {
//Find the ticket to reply to or fail
$ticket = Ticket::findOrFail($id);
//Update the timestamps for the ticket
$ticket->touch();
//We have client side verification here so if they modified the JS and submitted an empty reply screw them and just abort.
$content = Input::get('inputReplyContent');
if (empty($content))
App::abort('404', 'Page not found. Reply content not sent.');
//Create a new instance of TicketReply
$reply = new TicketReply();
$reply->tid = $id;
$reply->author = Auth::consoleuser()->get()->cid;
$reply->staff = 1;
$reply->content = $content;
$reply->save();
//Figure out what button was clicked, be it reply, reply and open, or reply and close
if (Input::get('replyAndOpenSubmit')) {
$ticket->status = 1;
$ticket->save();
//Declare the success message
$message = "Your ticket reply was successfully submitted and the ticket was reopened.";
}
else if (Input::get('replyAndCloseSubmit')) {
$ticket->status = 0;
$ticket->save();
//Declare the success message
$message = "Your ticket reply was successfully submitted and the ticket was closed.";
}
else {
//Declare the success message
$message = "Your ticket reply was successfully submitted.";
}
//Email the VA advising them that there is a new response
if ($ticket->vid == -1) {
$data = array();
$data['subject'] = "VATSIM VA New Ticket Update";
$data['email'] = $ticket->email;
$data['name'] = $ticket->name;
if (!empty($data['email'])) {
$body = "Hello " . $data['name'] . ",<br /><br />There has been an update to your " . $ticket->subject . " ticket by Auditor " . ConsoleUser::getName(Auth::consoleuser()->get()->cid) . ". <br /><br />" . $content . "<br /><br /><br /> <strong>Do not reply to this email. If you wish to reply to this ticket, please do so through your account online.</strong>";
Mail::send('email.default', array("content" => $body), function($message) use ($data) {
$message->to($data['email'], $data['name'])->subject($data['subject']);
});
}
}
else {
$va = User::where('cid', '=', $ticket->vid)->first();
$data = array();
$data['va'] = $va;
$data['subject'] = "VATSIM VA New Ticket Update";
if (!empty($va->email)) {
$body = "Hello " . User::getFirstName($ticket->vid) . ",<br /><br />There has been an update to your " . $ticket->subject . " ticket by Auditor " . ConsoleUser::getName(Auth::consoleuser()->get()->cid) . ". <br /><br />" . $content . "<br /><br /><br /> <strong>Do not reply to this email. If you wish to reply to this ticket, please do so through your account online.</strong>";
Mail::send('email.default', array("content" => $body), function($message) use ($data) {
$message->to($data['va']->email, $data['va']->name)->subject($data['subject']);
});
}
}
//All set now just redirect back to the ticket page with the message
return Redirect::to('console/helpdesk/view/' . $id)->with(array('scrollTo' => '#ticketReply' . $reply->id, 'message' => $message));
}
public function get_helpdeskclose($id) {
//Verify this is a valid ticket id
$ticket = Ticket::findOrFail($id);
$ticket->status = 0;
$ticket->save();
//That was easy. Now just redirect back
return Redirect::to('console/helpdesk/view/' . $id)->with('message', 'Ticket status successfully changed to closed.');
}
public function get_helpdeskopen($id) {
//Verify this is a valid ticket id
$ticket = Ticket::findOrFail($id);
$ticket->status = 1;
$ticket->save();
//That was easy. Now just redirect back
return Redirect::to('console/helpdesk/view/' . $id)->with('message', 'Ticket status successfully changed to open.');
}
public function get_post_helpdeskassign($id, $cid=""){
//Verify the ticket exists
$ticket = Ticket::findOrFail($id);
//Check to see if the CID is passed via the URL or if it is sent in the post form data
if (!empty($cid)) {
//Verify the console user exists
$user = ConsoleUser::findOrFail($cid);
}
else {
$cid = Input::get('assignToTicketSelect');
$user = ConsoleUser::where('cid', '=', $cid)->where('access', '>', '-1')->count();
if ($user == 0)
App::abort('404', 'Console User model not found');
}
//Update the ticket
$ticket->assigned = $cid;
$ticket->save();
//That was easy. Now just redirect back
return Redirect::to('console/helpdesk/view/' . $id)->with('message', 'Ticket successfully assigned to ' . ConsoleUser::getName($cid));
}
public function get_helpdeskdelete($id) {
//Verify the ticket exists
$ticket = Ticket::findOrFail($id);
//Now delete the replies to start
Ticket::find($id)->replies()->delete();
//And finally the ticket
$ticket->delete();
//That was easy. Now just redirect back to the dashboard with a message
return Redirect::route('console')->with('message', 'Ticket successfully deleted.');
}
public function get_emailtemplates() {
$myTemplates = EmailTemplate::where('author', '=', Auth::consoleuser()->get()->cid)->orderBy('name', 'ASC')->get();
$sharedTemplates = EmailTemplate::sharedTemplates();
if (Auth::consoleuser()->get()->access > 0) {
$systemTemplates = SystemEmailTemplate::orderBy('id', 'ASC')->get();
return View::make('console.emailtemplates')->with(array('myTemplates' => $myTemplates, 'sharedTemplates' => $sharedTemplates, 'systemTemplates' => $systemTemplates));
}
return View::make('console.emailtemplates')->with(array('myTemplates' => $myTemplates, 'sharedTemplates' => $sharedTemplates));
}
public function post_emailtemplatenew() {
//Get our input fields
$name = Input::get('inputName');
$subject = Input::get('inputSubject');
$content = Input::get('inputContent');
$public = Input::get('inputPublic');
//No need to run the validator for this. Let's just check and see if the fields are empty.
if (empty($name))
return Redirect::route('consoleemailtemplates')->with(array('error' => 'Please enter a template name.', 'inputContent' => $content, 'inputSubject' => $subject));
if (empty($subject))
return Redirect::route('consoleemailtemplates')->with(array('error' => 'Please enter a subject.', 'inputContent' => $content, 'inputName' => $name));
if (empty($content))
return Redirect::route('consoleemailtemplates')->with(array('error' => 'Please compose a body.', 'inputSubject' => $subject, 'inputName' => $name));
//Create the record in the database
if ($public != 1)
$public = 0;
$template = new EmailTemplate();
$template->name = $name;
$template->author = Auth::consoleuser()->get()->cid;
$template->subject = $subject;
$template->content = $content;
$template->public = $public;
$template->save();
return Redirect::route('consoleemailtemplates')->with('message', 'New Template Created Successfully.');
}
public function get_emailtemplateedit($id) {
//Verify we are editing our own template (unless we our access level is > 0)
if (Auth::consoleuser()->get()->access < 1) {
$check = EmailTemplate::where('id', '=', $id)->where('author', '=', Auth::consoleuser()->get()->cid)->count();
if ($check < 1) {
return Redirect::route('consoleemailtemplates')->with('error', 'Unauthorized template edit');
}
}
//All clear let's query the db and return the view
$template = EmailTemplate::findOrFail($id);
return View::make('console.emailtemplateedit')->with(array('template' => $template));
}
public function post_emailtemplateedit($id) {
//Verify we are editing our own template (unless we our access level is > 0)
if (Auth::consoleuser()->get()->access < 1) {
$check = EmailTemplate::where('id', '=', $id)->where('author', '=', Auth::consoleuser()->get()->cid)->count();
if ($check < 1) {
return Redirect::route('consoleemailtemplates')->with('error', 'Unauthorized template edit');
}
}
//Pull our fields
$name = Input::get('inputName');
$subject = Input::get('inputSubject');
$content = Input::get('inputContent');
$public = Input::get('inputPublic');
if (empty($name) || empty($subject) || empty($content))
return Redirect::to('console/emailtemplates/edit/' . $id)->with('error', 'Please complete all of the required fields.');
if ($public != 1)
$public = 0;
//All clear let's update the db
$template = EmailTemplate::findOrFail($id);
$template->name = $name;
$template->subject = $subject;
$template->content = $content;
$template->public = $public;
$template->save();
return Redirect::route('consoleemailtemplates')->with('message', 'Template Updated.');
}
public function post_emailtemplatedelete() {
//Get our id
$id = Input::get('id');
//Verify that the id is valid and the template is owned by the member trying to delete it or they are level 1 access
if (Auth::consoleuser()->get()->access > 0)
$query = EmailTemplate::where('id', '=', $id)->count();
else
$query = EmailTemplate::where('id', '=', $id)->where('author', '=', Auth::consoleuser()->get()->cid)->count();
if ($query > 0) {
//Count is greater than 0 let's delete the record;
EmailTemplate::where('id', '=', $id)->delete();
}
}
public function post_vaedit() {
//Declare our variables
$va = Input::get('va');
$field = Input::get('field');
$value = Input::get('value');
//Create an array of the displayed names with the current database columns to match
$fieldarray = array();
$fieldarray['cid'] = 'cid';
$fieldarray['name'] = 'name';
$fieldarray['startdate'] = 'startdate';
$fieldarray['email'] = 'email';
$fieldarray['url'] = 'url';
$fieldarray['linkback url'] = 'vatsimimagepagelink';
$fieldarray['city'] = 'city';
$fieldarray['state'] = 'stateprovince';
$fieldarray['postal'] = 'zip';
$fieldarray['country'] = 'country';
$fieldarray['description'] = 'description';
if (!array_key_exists($field, $fieldarray)) {
//Return 0 to the client
echo '0';
}
else {
$field = $fieldarray[$field];
//fetch our va
$va = User::findOrFail($va);
//update the property
$va->$field = $value;
//push to the db
$va->save();
//Return 1 to the client;
echo '1';
}
}
public function post_createauditlog() {
//Get our data
$va = Input::get('va');
$content = Input::get('content');
$content = nl2br($content);
//Ensure that some idiot didn't try to remove the clientside verification and the content is not in fact empty
if (!empty($content)) {
//Ensure some idiot didn't try to change the va to some nonexistent VA
User::findOrFail($va);
//Create our notation
AuditLog::createNotation($va, $content);
//Return one to the client
echo 1;
}
}
public function post_uploadbanner() {
//Verify we have a file
if (Input::hasFile('inputBanner')) {
//Pull our VA CID from the hidden input
$va = Input::get('va');
$cid = $va;
//Ensure this is a valid VA or fail with a model not found
User::findOrFail($va);
//Get our file
$banner = Input::file('inputBanner');
//Create an array of acceptable mimetypes
$mimetypes = array('image/jpeg', 'image/png');
if (in_array($banner->getMimeType(), $mimetypes)) {
switch ($banner->getMimeType()) {
case('image/jpeg'):
$extension = ".jpg";
break;
case('image/png'):
$extension = ".png";
break;
}
//Get our image height min and max
$maxheight = Setting::fetch('banner_maxheight');
$maxwidth = Setting::fetch('banner_maxwidth');
list($width, $height) = getimagesize($banner);
//Is the width or height larger than the max?
if ($width > $maxwidth || $height > $maxheight) {
App::abort(400, 'Image is larger than the max width: ' . $maxwidth . 'px or max height: ' . $maxheight . 'px');
}
//Mime check passed continue to move the image from tmp directory to /banners
$destinationPath = public_path() . Setting::fetch('banner_directory');
$fileName = $va . $extension;
$banner->move($destinationPath, $fileName);
//Finally update the db with the new banner name.
$va = User::where('cid', '=', $va)->first();
$va->banner = $fileName;
$va->save();
//Redirect the user back to the VA Profile
return Redirect::to('console/va/' . $cid . '#banner')->with('message', 'Banner Uploaded Successfully.');
}
}
}
public function post_removebanner() {
//Get our VA
$cid = Input::get('va');
//Ensure this is a valid VA or fail with a model not found
$va = User::findOrFail($cid);
if (!$va->banner) {
App::abort('404');
}
$public_path = public_path();
$banner_directory = Setting::fetch('banner_directory');
$path = $public_path . $banner_directory . '/' . $va->banner;
//Delete the image
unlink($path);
//Update the database
$va->banner = '';
$va->save();
return Redirect::to('console/va/' . $cid . '#banner')->with('message', 'Banner Removed Successfully.');
}
public function post_findlinkback() {
$va = Input::get('va');
$response = User::testLinkBack($va);
//This will return a boolean either true or false based on if the link is found using cURL
if ($response) {
$response = 1;
}
else {
$response = 0;
}
return $response;
}
public function get_categories() {
//Potential parents are nonchild categories.
$potentialparents = Category::where('parentid', '=', '')->get();
$children = Category::where('parentid', '!=', '')->get();
$parentsarray = Array();
foreach ($children as $child) {
if (!in_array($child->parentid, $parentsarray))
//If the parent is not already in the array add it.
$parentsarray[$child->id] = $child->parentid;
}
return View::make('console.categories')->with(array('potentialparents' => $potentialparents, 'children' => $children, 'parentsarray' => $parentsarray));
}
public function post_categoriesnew() {
$name = Input::get('inputCategoryName');
$hidden = Input::get('categoryHidden');
//There is front end validation that name is not empty, but let's make sure someone isn't screwing with us.
if (empty($name)) {
return Redirect::route('consolecategories')->with('message', 'Please enter a category name');
}
$parent = Input::get('inputCategoryParent');
if (!empty($parent)) {
//Fetch a list of potential parents in order to verify this input
$potentialparents = Category::where('parentid', '=', '');
$parents = array();
foreach($potentialparents as $potentialparent) {
$parents[$potentialparent->id] = $potentialparent->name;
}
//Check the array keys
if (!array_key_exists($parent, $parents))
Redirect::route('consolecategories')->with('message', 'Invalid Parent.');
}
//Good our validation is done let's create the new category
$category = new Category;
$category->name = $name;
if (!empty($parent))
$category->parentid = $parent;
if ($hidden == 1)
$category->hidden = 1;
else
$category->hidden = 0;
//Save our data
$category->save();
return Redirect::route('consolecategories')->with('message', 'New Category Created Successfully');;
}
public function post_categoriesdeletechild() {
$i = 0;
$id = Input::get('id');
//Verify this is a valid ID and is in fact a child
$category = Category::where('id', '=', $id)->firstOrFail();
if (!empty($category->parentid)) {
$category->delete();
//Now to remove all of the VAs that currently have that category selected
$vas = User::where('categories', 'like', '%' . $id . ',%')->get();
if (!empty($vas)) {
//Another check to verify we have the correct VAs then let's update the categories without the removed category
foreach ($vas as $va) {
$categoryarray = explode(',', $va->categories);
$key = array_search($id, $categoryarray);
if ($key) {
//Remove the array key/value pair.
unset($categoryarray[$key]);
//Convert the array back into a comma delimited list
$i = 0;
foreach ($categoryarray as $vacategory) {
//Continue if we just reach a category with a value of ,
if ($i > 0)
$categorylist .= $vacategory . ',';
else
$categorylist = $vacategory . ',';
$i++;
}
//Make sure our string doesn't have two commas at the end
$categorylist = rtrim($categorylist, ',,');
//Add back the one comma at the end if removed
if (substr($categorylist, '-1') != ',')
$categorylist = $categorylist . ',';
//Finally update the va record
$va->categories = $categorylist;
$va->save();
}
}
}
}
echo $i;
}
public function post_categoriesdeleteparent() {
$id = Input::get('id');
$hasChildren = Input::get('hasChildren');
//Sanitize our id (ensure a category exists with this id
$check = Category::findOrFail($id);
$vas = User::where('categories', 'like', '%' . $id . ',%')->get();
if (!empty($vas)) {
//Another check to verify we have the correct VAs then let's update the categories without the removed category
foreach ($vas as $va) {
$categoryarray = explode(',', $va->categories);
$key = array_search($id, $categoryarray);
if ($key) {
//Remove the array key/value pair.
unset($categoryarray[$key]);
//Convert the array back into a comma delimited list
$i = 0;
foreach ($categoryarray as $vacategory) {
//Continue if we just reach a category with a value of ,
if ($i > 0)
$categorylist .= $vacategory . ',';
else
$categorylist = $vacategory . ',';
$i++;
}
//Make sure our string doesn't have two commas at the end
$categorylist = rtrim($categorylist, ',,');
//Add back the one comma at the end if removed
if (substr($categorylist, '-1') != ',')
$categorylist = $categorylist . ',';
//Finally update the va record
$va->categories = $categorylist;
$va->save();
}
}
//If we don't have any children then we won't be executing the next code block and we need to return 0 children to the client
if (!$hasChildren)
echo 0;
}
//Let's figure out if we are working with any children here
if ($hasChildren) {
//Now to do the same with the children categories. It would be a really complex query to get only VAs with any of the child categories in the categories list so we will just sort through them all
//Get a list of children categories
$childrenquery = Category::where('parentid', '=', $id)->get();
$children = array();
foreach ($childrenquery as $child) {
$children[] = $child->id;
}
$childrencount = count($children);
$vas = User::get();
if (!empty($vas)) {
foreach ($vas as $va) {
$categoryarray = explode(',', $va->categories);
//For each child category id we will need to check this. Painful as hell, yeah I know
foreach($children as $child) {
$key = array_search($child, $categoryarray);
if ($key) {
//Remove the array key/value pair.
unset($categoryarray[$key]);
//Convert the array back into a comma delimited list
$i = 0;
foreach ($categoryarray as $vacategory) {
//Continue if we just reach a category with a value of ,
if ($i > 0)
$categorylist .= $vacategory . ',';
else
$categorylist = $vacategory . ',';
$i++;
}
//Make sure our string doesn't have two commas at the end
$categorylist = rtrim($categorylist, ',,');
//Add back the one comma at the end if removed
if (substr($categorylist, '-1') != ',')
$categorylist = $categorylist . ',';
//Finally update the va record
$va->categories = $categorylist;
$va->save();
}
}
}
}
//Delete our parent category and the children. Let's start with the children first.
$query = Category::where('parentid', '=', $id)->delete();
//Finally delete our parent
echo $childrencount;
}
$query2 = Category::where('id', '=', $id)->delete();
//Hopefully all went well.
}
public function get_categoriesedit($id) {
if (empty($id) || is_int($id)) {
//Oops, no id...
App:abort(404, 'Category ID parameter not found');
}
//Pull the category
$category = Category::findOrFail($id);
//Get a list of potential parents (excluding this category of course)
$potentialParents = Category::where('parentid', '=', '')->where('id', '!=', $id)->get();
return View::make('console.categoriesedit')->with(array('category' => $category, 'potentialParents' => $potentialParents));
}
public function post_categoriesedit($id) {
//Get our fields
$name = Input::get('categoryName');
$parent = Input::get('categoryParent');
$validator = Validator::make(
array(
'id' => $id,
'name' => $name,
'parent' => $parent,
),
array(
'id' => 'required|integer',
'name' => 'required',
'parent' => 'integer'
),
array (
'id.required' => 'The category ID was not included with the request. This is an internal error. ',
'id.integer' => 'Invalid category ID format. This is an internal error.',
'name.required' => 'You forgot to enter a name. Please enter a name and try again.',
)
);
if ($validator->fails())
{
// The given data did not pass validation
$messages = $validator->messages();
$errorStr = '';
$count = count($messages);
$i = 0;
foreach ($messages->all(':message') as $message)
{
$i++;
$errorStr .= '<span>' . $message . '</span>';
if ($i != $count) {
$errorStr .= '<br /><hr />';
}
}
return Redirect::to('console/categories/edit/' . $id)->with('message', $errorStr);
}
//Great all of our validation is done. Hey, not so fast. Let's make sure that we are in fact modifying a valid category and the parent exists
//Pull the category
$category = Category::findOrFail($id);
if ($parent != 0)
$check = Category::where('id', '=', $parent)->where('parentid', '=', '0')->firstOrFail();
$category->name = $name;
$category->parentid = $parent;
if (Input::get('categoryHidden') == 1)
$category->hidden = 1;
else
$category->hidden = 0;
$category->save();
//Great, all done. Now to redirect the user.
return Redirect::route('consolecategories')->with('message', 'Category successfully updated.');
}
public function get_auditmanagers() {
//Get a list of audit managers that are currently active
$auditors = ConsoleUser::where('access', '>=', '0')->get();
$inactiveAuditors = ConsoleUser::where('access', '=', '-1')->get();
//Return our view
return View::make('console.auditmanagers')->with(array('auditors' => $auditors, 'inactiveAuditors' => $inactiveAuditors));
}
public function post_auditmanagersadd() {
//Get our values
$cid = Input::get('inputCid');
$name = Input::get('inputName');
$access = Input::get('inputAccess');
//Create our validator
$validator = Validator::make(array(
'cid' => $cid,
'name' => $name,
'access' => $access,
),
array(
'cid' => 'integer|required|unique:consoleusers',
'name' => 'required',
'access' => 'integer|in:0,1'
));
if ($validator->fails()) {
return Redirect::route('consoleauditmanagers')->withErrors($validator);
}
//Great validation passed now just to insert our new data
$consoleuser = new ConsoleUser();
$consoleuser->cid = $cid;