2019-08-21 22:56:46 +02:00
< ? php
include 'config.php' ;
if ( isset ( $_POST [ " leave_team " ])) {
2019-09-02 20:57:26 +02:00
for ( $i = 1 ; $i <= ( $_SESSION [ " role " ] == " PARTICIPANT " ? 6 : 2 ); ++ $i )
/** @noinspection SqlResolve */
$DB -> exec ( " UPDATE `teams` SET ` " . strtolower ( $_SESSION [ " role " ]) . " _ $i ` = NULL WHERE ` " . strtolower ( $_SESSION [ " role " ]) . " _ $i ` = " . $_SESSION [ " user_id " ] . " ; " );
$DB -> exec ( " UPDATE `users` SET `team_id` = NULL WHERE `id` = " . $_SESSION [ " user_id " ] . " ; " );
$DB -> exec ( " UPDATE `teams` SET `encadrant_1` = `encadrant_2`, `encadrant_2` = NULL WHERE `encadrant_1` IS NULL; " );
for ( $i = 1 ; $i <= 5 ; ++ $i ) {
/** @noinspection SqlResolve */
$DB -> exec ( " UPDATE `teams` SET `participant_ $i ` = `participant_ " . strval ( $i + 1 ) . " `, `participant_ " . strval ( $i + 1 ) . " ` = NULL WHERE `participant_ $i ` IS NULL; " );
}
$req = $DB -> query ( " SELECT `file_id` FROM `documents` WHERE `user` = ' " . $_SESSION [ " user_id " ] . " '; " );
while (( $data = $req -> fetch ()) !== false )
unlink ( " $URL_BASE /files/ " . $data [ " file_id " ]);
$DB -> exec ( " DELETE FROM `documents` WHERE `user` = ' " . $_SESSION [ " user_id " ] . " '; " );
if ( $DB -> exec ( " DELETE FROM `teams` WHERE `encadrant_1` IS NULL AND `participant_1` IS NULL; " ) > 0 ) {
2019-08-21 22:56:46 +02:00
$req = $DB -> query ( " SELECT `file_id` FROM `solutions` WHERE `team` = ' " . $_SESSION [ " team_id " ] . " '; " );
while (( $data = $req -> fetch ()) !== false )
unlink ( " $URL_BASE /files/ " . $data [ " file_id " ]);
2019-09-02 20:57:26 +02:00
$DB -> exec ( " DELETE FROM `solutions` WHERE `team` = " . $_SESSION [ " team_id " ] . " ; " );
2019-08-21 22:56:46 +02:00
$req = $DB -> query ( " SELECT `file_id` FROM `syntheses` WHERE `team` = ' " . $_SESSION [ " team_id " ] . " '; " );
while (( $data = $req -> fetch ()) !== false )
unlink ( " $URL_BASE /files/ " . $data [ " file_id " ]);
$DB -> exec ( " DELETE FROM `syntheses` WHERE `team` = " . $_SESSION [ " team_id " ] . " ; " );
2019-09-02 20:57:26 +02:00
}
unset ( $_SESSION [ " team_id " ]);
unset ( $_SESSION [ " team_validation_status " ]);
header ( " Location: $URL_BASE " );
exit ();
2019-08-21 22:56:46 +02:00
}
2019-08-26 12:16:39 +02:00
$tournaments_response = $DB -> query ( " SELECT `id`, `name` FROM `tournaments` WHERE `year` = ' $YEAR '; " );
2019-08-21 22:56:46 +02:00
if ( isset ( $_POST [ " send_document " ])) {
2019-09-02 20:57:26 +02:00
$error_message = sendDocument ();
2019-08-21 22:56:46 +02:00
}
if ( isset ( $_POST [ " request_validation " ])) {
2019-09-02 20:57:26 +02:00
if ( ! checkCanValidate ())
$error_message = " Votre équipe ne peut pas demander la validation : il manque soit des participants, soit des documents. " ;
else {
$DB -> exec ( " UPDATE `teams` SET `validation_status` = 'WAITING' WHERE `id` = " . $_SESSION [ " team_id " ] . " ; " );
$_SESSION [ " team_validation_status " ] = " WAITING " ;
}
2019-08-21 22:56:46 +02:00
}
if ( isset ( $_SESSION [ " user_id " ]) && isset ( $_SESSION [ " team_id " ])) {
2019-09-02 20:57:26 +02:00
$result = $DB -> query ( " SELECT * FROM `teams` WHERE `id` = ' " . $_SESSION [ " team_id " ] . " ' AND `year` = ' $YEAR '; " );
$team_data = $result -> fetch ();
$tournament_data = $DB -> query ( " SELECT `name`, `date_start` FROM `tournaments` WHERE `id` = ' " . $team_data [ " tournament " ] . " ' AND `year` = ' $YEAR '; " ) -> fetch ();
$documents_req = $DB -> prepare ( " SELECT `file_id`, `type`, COUNT(`type`) AS `version` FROM `documents` WHERE `user` = ? GROUP BY `type`, `uploaded_at` ORDER BY `type`, `uploaded_at` DESC; " );
2019-08-21 22:56:46 +02:00
$documents_req -> execute ([ $_SESSION [ " user_id " ]]);
}
2019-08-26 12:16:39 +02:00
if ( isset ( $_POST [ " team_edit " ])) {
$error_message = updateTeam ();
}
2019-09-02 20:57:26 +02:00
function sendDocument ()
{
2019-08-21 22:56:46 +02:00
global $LOCAL_PATH , $DB ;
2019-09-02 20:57:26 +02:00
2019-08-21 22:56:46 +02:00
$type = strtoupper ( htmlspecialchars ( $_POST [ " type " ]));
if ( ! isset ( $type ) || ( $type != " PARENTAL_CONSENT " && $type != " PHOTO_CONSENT " && $type != " SANITARY_PLUG " ))
2019-09-02 20:57:26 +02:00
return " Le type de document est invalide. Merci de ne pas formuler vos propres requêtes. " ;
2019-08-21 22:56:46 +02:00
$file = $_FILES [ " document " ];
2019-09-02 20:57:26 +02:00
2019-08-21 22:56:46 +02:00
if ( $file [ " size " ] > 5000000 || $file [ " error " ])
return " Une erreur est survenue. Merci de vérifier que le fichier pèse moins que 5 Mo. " ;
2019-09-02 20:57:26 +02:00
2019-08-21 22:56:46 +02:00
if ( finfo_file ( finfo_open ( FILEINFO_MIME_TYPE ), $file [ " tmp_name " ]) != 'application/pdf' )
return " Le fichier doit être au format PDF. " ;
2019-09-02 20:57:26 +02:00
2019-08-21 22:56:46 +02:00
if ( ! is_dir ( " $LOCAL_PATH /files " ) && ! mkdir ( " $LOCAL_PATH /files " ))
return " Les droits sont insuffisants. Veuillez contacter l'administrateur du serveur. " ;
2019-09-02 20:57:26 +02:00
2019-08-21 22:56:46 +02:00
$alphabet = " abcdefghijklmnopqrstuvwxyz0123456789 " ;
2019-09-02 20:57:26 +02:00
2019-08-21 22:56:46 +02:00
do {
$id = " " ;
for ( $i = 0 ; $i < 64 ; ++ $i ) {
$id .= $alphabet [ rand ( 0 , strlen ( $alphabet ) - 1 )];
}
2019-09-02 20:57:26 +02:00
} while ( file_exists ( " $LOCAL_PATH /files/ $id " ));
2019-08-21 22:56:46 +02:00
if ( ! rename ( $file [ " tmp_name " ], " $LOCAL_PATH /files/ $id " ))
return " Une erreur est survenue lors de l'envoi du fichier. " ;
2019-09-02 20:57:26 +02:00
2019-08-21 22:56:46 +02:00
$req = $DB -> prepare ( " INSERT INTO `documents`(`file_id`, `user`, `team`, `tournament`, `type`)
VALUES ( ? , ? , ? , ? , ? ); " );
$req -> execute ([ $id , $_SESSION [ " user_id " ], $_SESSION [ " team_id " ], $_SESSION [ " tournament_id " ], $type ]);
2019-09-02 20:57:26 +02:00
2019-08-21 22:56:46 +02:00
return false ;
}
2019-09-02 20:57:26 +02:00
function updateTeam ()
{
global $DB , $YEAR , $URL_BASE , $team_data ;
2019-08-26 12:16:39 +02:00
if ( $_SESSION [ " team_id " ] == NULL )
return " Vous n'êtes pas dans une équipe. " ;
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
$name = htmlspecialchars ( $_POST [ " name " ]);
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
if ( ! isset ( $name ) || $name == " " )
return " Vous devez spécifier un nom d'équipe. " ;
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
echo $team_data [ " id " ];
$result = $DB -> query ( " SELECT `id` FROM `teams` WHERE `name` = ' " . $name . " ' AND `id` != " . $team_data [ " id " ] . " AND `year` = ' $YEAR '; " );
if ( $result -> fetch ())
return " Une équipe existe déjà avec ce nom. " . $team_data [ " id " ];
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
$trigram = strtoupper ( htmlspecialchars ( $_POST [ " trigram " ]));
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
if ( ! preg_match ( " #^[A-Z][A-Z][A-Z] $ # " , $trigram ))
return " Le trigramme entré n'est pas valide. " ;
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
$result = $DB -> query ( " SELECT `id` FROM `teams` WHERE `trigram` = ' " . $trigram . " ' AND `id` != ' " . $team_data [ " id " ] . " ' AND `year` = ' $YEAR '; " );
if ( $result -> fetch ())
return " Une équipe a déjà choisi ce trigramme. " ;
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
$tournament_id = intval ( htmlspecialchars ( $_POST [ " tournament " ]));
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
$result = $DB -> query ( " SELECT `id`, `name` FROM `tournaments` WHERE `id` = ' " . $tournament_id . " ' AND `year` = ' $YEAR '; " );
$data = $result -> fetch ();
if ( $data === FALSE )
return " Le tournoi spécifié n'existe pas. " ;
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
$req = $DB -> prepare ( " UPDATE `teams` SET `name` = ?, `trigram` = ?, `tournament` = ? WHERE `id` = ?; " );
$req -> execute ([ $name , $trigram , $tournament_id , $team_data [ " id " ]]);
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
header ( " Location: $URL_BASE /mon_equipe " );
2019-09-02 20:57:26 +02:00
2019-08-26 12:16:39 +02:00
return false ;
}
2019-09-02 20:57:26 +02:00
function checkCanValidate () {
global $DB , $team_data , $tournament_data , $YEAR ;
$can_validate = $team_data [ " validation_status " ] == " NOT_READY " ;
$can_validate &= $team_data [ " encadrant_1 " ] != NULL ;
$can_validate &= $team_data [ " participant_4 " ] != NULL ;
for ( $i = 1 ; $i <= 2 ; ++ $i ) {
if ( $team_data [ " encadrant_ $i " ] === NULL )
continue ;
$req = $DB -> prepare ( " SELECT COUNT(`type`) AS `version` FROM `documents` WHERE `user` = ? AND `type` = ? GROUP BY `uploaded_at` ORDER BY `uploaded_at` DESC; " );
$req -> execute ([ $team_data [ " encadrant_ $i " ], " PHOTO_CONSENT " ]);
$d = $req -> fetch ();
$can_validate &= $d [ " version " ] > 0 ;
$req = $DB -> prepare ( " SELECT COUNT(`type`) AS `version` FROM `documents` WHERE `user` = ? AND `type` = ? GROUP BY `uploaded_at` ORDER BY `uploaded_at` DESC; " );
$req -> execute ([ $team_data [ " encadrant_ $i " ], " SANITARY_PLUG " ]);
$d = $req -> fetch ();
$can_validate &= $d [ " version " ] > 0 ;
}
for ( $i = 1 ; $i <= 6 ; ++ $i ) {
if ( $team_data [ " participant_ $i " ] === NULL )
continue ;
$req = $DB -> prepare ( " SELECT COUNT(`type`) AS `version` FROM `documents` WHERE `user` = ? AND `type` = ? GROUP BY `uploaded_at` ORDER BY `uploaded_at` DESC; " );
$req -> execute ([ $team_data [ " participant_ $i " ], " PHOTO_CONSENT " ]);
$d = $req -> fetch ();
$can_validate &= $d [ " version " ] > 0 ;
$req = $DB -> prepare ( " SELECT COUNT(`type`) AS `version` FROM `documents` WHERE `user` = ? AND `type` = ? GROUP BY `uploaded_at` ORDER BY `uploaded_at` DESC; " );
$req -> execute ([ $team_data [ " participant_ $i " ], " SANITARY_PLUG " ]);
$d = $req -> fetch ();
$can_validate &= $d [ " version " ] > 0 ;
$birth_date = $DB -> query ( " SELECT `birth_date` FROM `users` WHERE `id` = " . $team_data [ " participant_ $i " ] . " ; " ) -> fetch ()[ " birth_date " ];
if ( $birth_date > strval ( $YEAR - 18 ) . substr ( $tournament_data [ " date_start " ], 4 )) {
$req = $DB -> prepare ( " SELECT COUNT(`type`) AS `version` FROM `documents` WHERE `user` = ? AND `type` = ? GROUP BY `uploaded_at` ORDER BY `uploaded_at` DESC; " );
$req -> execute ([ $team_data [ " participant_ $i " ], " PARENTAL_CONSENT " ]);
$d = $req -> fetch ();
$can_validate &= $d [ " version " ] > 0 ;
}
}
return $can_validate ;
}
2019-08-21 22:56:46 +02:00
?>
< ? php include " header.php " ?>
< ? php if ( ! isset ( $_SESSION [ " user_id " ]) || ! isset ( $_SESSION [ " team_id " ]) || $_SESSION [ " team_id " ] == NULL ) {
2019-09-02 20:57:26 +02:00
echo " <h2>Vous devez être dans une équipe pour afficher cette page.</h2> " ;
include " footer.php " ;
return ;
2019-08-21 22:56:46 +02:00
} ?>
< ? php if ( isset ( $error_message )) {
if ( $error_message !== false ) {
echo " <h2>Erreur : " . $error_message . " </h2> " ;
2019-09-02 20:57:26 +02:00
} else {
2019-08-21 22:56:46 +02:00
echo " <h2>Le fichier a été correctement envoyé !</h2> " ;
}
2019-09-02 20:57:26 +02:00
} ?>
2019-08-21 22:56:46 +02:00
< h2 > Informations sur l ' équipe </ h2 >
2019-09-02 20:57:26 +02:00
Nom de l ' équipe : < ? = $team_data [ " name " ] ?> <br/>
Trigramme : < ? = $team_data [ " trigram " ] ?> <br/>
Tournoi : < a href = " <?= $tournament_data["name"] ?> " >< ? = $tournament_data [ " name " ] ?> </a><br/>
2019-08-21 22:56:46 +02:00
< ? php
for ( $i = 1 ; $i <= 2 ; ++ $i ) {
2019-09-02 20:57:26 +02:00
if ( $team_data [ " encadrant_ " . $i ] == NULL )
continue ;
$user_data = $DB -> query ( " SELECT `surname`, `first_name` FROM `users` WHERE `id` = " . $team_data [ " encadrant_ " . $i ] . " AND `year` = ' $YEAR '; " ) -> fetch ();
echo " Encadrant $i : " . $user_data [ " first_name " ] . " " . $user_data [ " surname " ] . " <br /> " ;
2019-08-21 22:56:46 +02:00
}
for ( $i = 1 ; $i <= 6 ; ++ $i ) {
2019-09-02 20:57:26 +02:00
if ( $team_data [ " participant_ " . $i ] == NULL )
continue ;
$user_data = $DB -> query ( " SELECT `surname`, `first_name` FROM `users` WHERE `id` = " . $team_data [ " participant_ " . $i ] . " AND `year` = ' $YEAR '; " ) -> fetch ();
echo " Participant $i : " . $user_data [ " first_name " ] . " " . $user_data [ " surname " ] . " <br /> " ;
2019-08-21 22:56:46 +02:00
}
?>
2019-09-02 20:57:26 +02:00
Code d ' accès : < strong >< ? php echo $team_data [ " access_code " ] ?> </strong><br/>
2019-08-26 12:16:39 +02:00
< ? php if ( isset ( $_GET [ " modifier " ])) { ?>
< form method = " POST " >
2019-09-02 20:57:26 +02:00
< input type = " hidden " name = " team_edit " value = " true " />
2019-08-26 12:16:39 +02:00
< table style = " width: 100%; " >
< tbody >
< tr >
< td style = " width: 30%; " >
< label for = " name " > Nom :</ label >
</ td >
< td style = " width: 70%; " >
2019-09-02 20:57:26 +02:00
< input style = " width: 100%; " type = " text " id = " name " name = " name " value = " <?= $team_data["name"] ?> " />
2019-08-26 12:16:39 +02:00
</ td >
</ tr >
< tr >
< td >
< label for = " trigram " > Trigramme :</ label >
</ td >
< td >
2019-09-02 20:57:26 +02:00
< input style = " width: 100%; " type = " text " id = " trigram " name = " trigram "
value = " <?= $team_data["trigram"] ?> " />
2019-08-26 12:16:39 +02:00
</ td >
</ tr >
< tr >
< td >
< label for = " tournament " > Tournoi :</ label >
</ td >
< td >
< select style = " width: 100%; " id = " tournament " name = " tournament " >
< ? php
while (( $data = $tournaments_response -> fetch ()) !== FALSE ) {
echo " <option value= \" " . $data [ " id " ] . " \" > " . $data [ " name " ] . " </option> \n " ;
}
?>
</ select >
</ td >
</ tr >
< tr >
< td colspan = " 2 " >
2019-09-02 20:57:26 +02:00
< input style = " width: 100%; " type = " submit " value = " Modifier l'équipe " />
2019-08-26 12:16:39 +02:00
</ td >
</ tr >
</ tbody >
</ table >
</ form >
< ? php } else { ?>
2019-09-02 20:57:26 +02:00
< ? php if ( $_SESSION [ " team_validation_status " ] == " NOT_READY " ) { ?>
<!-- suppress HtmlUnknownTarget -->
< a href = " <?= $URL_BASE ?>/mon_equipe/modifier " > Modifier mon équipe </ a >
< hr />
< h2 > Mes autorisations </ h2 >
< ? php
while (( $data = $documents_req -> fetch ()) !== false ) {
$file_id = $data [ " file_id " ];
$type = $data [ " type " ];
$version = $data [ " version " ];
switch ( $data [ " type " ]) {
case " PARENTAL_CONSENT " :
$name = " Autorisation parentale " ;
break ;
case " PHOTO_CONSENT " :
$name = " Autorisation de droit à l'image " ;
break ;
case " SANITARY_PLUG " :
$name = " Fiche sanitaire " ;
break ;
}
echo " $name : <a href= \" $URL_BASE /file/ $file_id\ " > Télécharger </ a >< br /> " ;
2019-08-21 22:56:46 +02:00
}
2019-09-02 20:57:26 +02:00
?>
< form method = " post " enctype = " multipart/form-data " >
< input type = " hidden " name = " MAX_FILE_SIZE " value = " 5000000 " />
< table style = " width: 100%; " >
< tbody >
< tr >
< td >
< label for = " type " > Type de document :</ label >
</ td >
< td >
< select style = " width: 100%; " id = " type " name = " type " >
< ? php if ( $_SESSION [ " birth_date " ] > strval ( $YEAR - 18 ) . substr ( $tournament_data [ " date_start " ], 4 )) { ?>
< option value = " parental_consent " > Autorisation parentale </ option >
< ? php } ?>
< option value = " photo_consent " > Autorisation de droit à l ' image </ option >
< option value = " sanitary_plug " > Fiche sanitaire </ option >
</ select >
</ td >
</ tr >
< tr >
< td >
< label for = " file " > Fichier :</ label >
</ td >
< td >
< input style = " width: 100%; " type = " file " id = " file " name = " document " />
</ td >
</ tr >
< tr >
< td colspan = " 2 " >
< input style = " width: 100%; " type = " submit " name = " send_document " value = " Envoyer le document " />
</ td >
</ tr >
</ tbody >
</ table >
</ form >
< hr />
< ? php if ( $team_data [ " validation_status " ] == " NOT_READY " ) { ?>
< table style = " width: 100%; " >
< tr >
< td style = " width: 50%; " >
< form method = " post " >
< input style = " width: 100%; " type = " submit " name = " leave_team " value = " Quitter l'équipe " />
</ form >
</ td >
< ? php
$can_validate = checkCanValidate ();
if ( $can_validate ) { ?>
< td style = " width: 50%; " >
< form method = " post " >
< input style = " width: 100%; " type = " submit " name = " request_validation "
value = " Demander la validation " />
</ form >
</ td >
< ? php } ?>
</ tr >
</ table >
< ? php } ?>
< ? php } ?>
2019-08-26 12:16:39 +02:00
< ? php } ?>
2019-08-21 22:56:46 +02:00
< ? php include " footer.php " ?>