diff --git a/server_files/classes/User.php b/server_files/classes/User.php index 161195b..381e71c 100644 --- a/server_files/classes/User.php +++ b/server_files/classes/User.php @@ -90,7 +90,7 @@ class User { global $DB, $YEAR; $admins = []; - $req = $DB->query("SELECT * FROM `users` WHERE `role` = 'ORGANIZER' OR `role` = 'ADMIN' AND `year` = $YEAR;"); + $req = $DB->query("SELECT * FROM `users` WHERE `role` = 'ORGANIZER' OR `role` = 'ADMIN' AND `year` = $YEAR ORDER BY `role`, `surname`, `first_name`;"); while (($data = $req->fetch()) !== false) { $admin = new User(); diff --git a/server_files/controllers/ajouter_tournoi.php b/server_files/controllers/ajouter_tournoi.php index 8778156..4efc6f2 100644 --- a/server_files/controllers/ajouter_tournoi.php +++ b/server_files/controllers/ajouter_tournoi.php @@ -3,8 +3,6 @@ if (!isset($_SESSION["role"]) || $_SESSION["role"] != Role::ADMIN) require_once "server_files/403.php"; -$orgas_response = $DB->query("SELECT `id`, `surname`, `first_name` FROM `users` WHERE (`role` = 'ORGANIZER' OR `role` = 'ADMIN') AND `year` = '$YEAR';"); - $has_error = false; $error_message = null; diff --git a/server_files/controllers/informations.php b/server_files/controllers/informations.php index e41ef18..c00e109 100644 --- a/server_files/controllers/informations.php +++ b/server_files/controllers/informations.php @@ -5,17 +5,20 @@ if (!isset($_SESSION["role"])) $id = $_GET["id"]; $user = User::fromId($id); +$team = Team::fromId($user->getTeamId()); if ($_SESSION["role"] != Role::ADMIN) { - if ($user->getId() != $_SESSION["user_id"]) + if ($_SESSION["role"] == Role::ORGANIZER) { + if (($user->getRole() == Role::PARTICIPANT || $user->getRole() == Role::PARTICIPANT) && ($team == null || $team->getTournamentId() == null || !Tournament::fromId($team->getTournamentId())->organize($_SESSION["user_id"]))) + require_once "server_files/403.php"; + } + elseif ($user->getId() != $_SESSION["user_id"]) require_once "server_files/403.php"; } if ($user === null) require_once "server_files/404.php"; -$team = Team::fromId($user->getTeamId()); - if ($team != null) { $documents = $user->getAllDocuments($team->getTournamentId()); $payment = $user->getPayment(); diff --git a/server_files/controllers/organisateurs.php b/server_files/controllers/organisateurs.php index 446dccc..bfe340e 100644 --- a/server_files/controllers/organisateurs.php +++ b/server_files/controllers/organisateurs.php @@ -1,6 +1,6 @@ getOrganizers(); $teams = $tournament->getAllTeams(); -$orgas_response = $DB->query("SELECT `id`, `surname`, `first_name` FROM `users` WHERE (`role` = 'ORGANIZER' OR `role` = 'ADMIN') AND `year` = '$YEAR';"); class UpdateTournament { @@ -106,6 +105,7 @@ class UpdateTournament $tournament->setInscriptionDate("$this->date_inscription $this->time_inscription"); $tournament->setSolutionsDate("$this->date_solutions $this->time_solutions"); $tournament->setSynthesesDate("$this->date_syntheses $this->time_syntheses"); + $tournament->setDescription($this->description); foreach ($this->organizers as $organizer) { if (!$tournament->organize($organizer->getId())) diff --git a/server_files/views/ajouter_tournoi.php b/server_files/views/ajouter_tournoi.php index 538fba7..bf5ae09 100644 --- a/server_files/views/ajouter_tournoi.php +++ b/server_files/views/ajouter_tournoi.php @@ -18,7 +18,7 @@ if (isset($tournament) && !$has_error) { ?>