2 |
28 |
--------------------------------------------------------------------------------
/docs/INSTALLATION_FIVE_MINUTES.md:
--------------------------------------------------------------------------------
1 | # Five Minute Installation of Engelsystem
2 | ### Prerequisites
3 | Please check out the docs for more information [the documentation here](/docs/).
4 |
5 | 1.1 PHP 5.4.x (cgi-fcgi)
6 | 1.2 MySQL-Server 5.5.x pr MariaDB
7 | 1.3 Webserver ( Apache/Nginx/lighttpd)
8 |
9 | ### Step 1: Download or Clone the repository
10 | - ```$ git clone --recursive https://github.com/fossasia/engelsystem.git```
11 |
12 | ### Step 2: Create a Mysql Database
13 | - Using the MySQL Client
14 | - ```$ mysql -u root -p```
15 | - ```mysql> CREATE DATABASE engelsystem;```
16 |
17 | ### Step 3: Set up config.php
18 | - Go to **engelsystem/config** and copy MySQL-Connection Settings from default config-sample into config.php. Modify the new file to match your MySQL credentials so that the system could access the database on the localserver.
19 |
20 | ### Step 4: Upload the files
21 | -Move the app to your /var/www/html/ directory by typing ```sudo mv ./engelsystem /var/www/html``` and we can view engelsystem on localhost/ after configuring document root [documentation here](/docs/CONFIGURATION_DOCUMENT_ROOT.md)
22 |
23 | ### Step 5: Run the Install Script
24 | - Visit localhost/ on your browser you will be redirected to install script.
25 |
26 | Once you have filled the information and clicked install engelsystem. We are redirected to login page where we can login with the credentials with admin rights.
27 |
--------------------------------------------------------------------------------
/test/model/Shifts_model_test.php:
--------------------------------------------------------------------------------
1 | getTimestamp();
11 | $shift_id['title'] = "";
12 | $shift_id['shifttype_id'] = null;
13 | $shift_id['URL'] = null;
14 | $shift_id['PSID'] = null;
15 | $shift_id['created_by_user_id'] = null;
16 | $shift_id['created_at_timestamp'] = time();
17 | $this->shift_id1 = Shift_create($shift_id);
18 | }
19 |
20 | public function test_Shift_create() {
21 | $count = count(Shifts());
22 | $this->assertNotFalse(Shift_create($shift_id));
23 |
24 | // There should be one more Shift entry now
25 | $this->assertEquals(count(Shifts()), $count + 1);
26 |
27 | }
28 |
29 | public function test_Shifts() {
30 | $this->create_shift();
31 | $Shift = Shifts($this->shift_id1);
32 | $this->assertNotFalse($Shift);
33 | $this->assertTrue(count(Shifts()) > 0);
34 | $this->assertNotNull($Shift);
35 | $this->assertEquals($Shift['title'], '');
36 | $this->assertEquals(count(Shifts()), 0);
37 | $this->assertNull(Shifts(- 1));
38 | }
39 |
40 | public function teardown() {
41 | if ($this->shift_id != null)
42 | Shift_delete($this->shift_id);
43 | }
44 | }
45 | ?>
--------------------------------------------------------------------------------
/includes/helper/message_helper.php:
--------------------------------------------------------------------------------
1 | ' . $msg . '';
22 | } else {
23 | if (! isset($_SESSION['msg']))
24 | $_SESSION['msg'] = "";
25 | $_SESSION['msg'] .= info($msg, true);
26 | }
27 | }
28 |
29 | /**
30 | * Renders an error message
31 | */
32 | function error($msg, $immediatly = false) {
33 | if ($immediatly) {
34 | if ($msg == "")
35 | return "";
36 | return 'Credits
3 |
4 |
27 |
5 |
14 | Source code
6 |7 | The original system was written by cookie. It was then completely rewritten and greatly enhanced by msquare and mortzu of planet 8 | cyborg, jplitza and gnomus. 9 |
10 |11 | Please look at the contributor list on github for a more complete version. 12 |
13 |
15 |
20 | Hosting
16 |
17 | Webspace, development platform and domain is currently provided by would you buy this? (ichdasich)
and adminstrated by mortzu, derf and ichdasich.
18 |
21 |
26 | Translation
22 |23 | Many thanks for the german translation: e7p 24 |
25 |' . $msg . '
';
37 | } else {
38 | if (! isset($_SESSION['msg']))
39 | $_SESSION['msg'] = "";
40 | $_SESSION['msg'] .= error($msg, true);
41 | }
42 | }
43 |
44 | /**
45 | * Renders a success message
46 | */
47 | function success($msg, $immediatly = false) {
48 | if ($immediatly) {
49 | if ($msg == "")
50 | return "";
51 | return '' . $msg . '
';
52 | } else {
53 | if (! isset($_SESSION['msg']))
54 | $_SESSION['msg'] = "";
55 | $_SESSION['msg'] .= success($msg, true);
56 | }
57 | }
58 |
59 | ?>
--------------------------------------------------------------------------------
/includes/view/Questions_view.php:
--------------------------------------------------------------------------------
1 | ' . _("delete") . '';
6 | $question['Question'] = str_replace("\n", '', $question['Question']); 7 | } 8 | 9 | foreach ($answered_questions as &$question) { 10 | $question['Question'] = str_replace("\n", '
', $question['Question']); 11 | $question['Answer'] = str_replace("\n", '
', $question['Answer']); 12 | $question['actions'] = '' . _("delete") . ''; 13 | } 14 | 15 | return page_with_title(questions_title(), array( 16 | msg(), 17 | '
' . _("Open questions") . '
', 18 | table(array( 19 | 'Question' => _("Question"), 20 | 'actions' => "" 21 | ), $open_questions), 22 | '' . _("Answered questions") . '
', 23 | table(array( 24 | 'Question' => _("Question"), 25 | 'answer_user' => _("Answered by"), 26 | 'Answer' => _("Answer"), 27 | 'actions' => "" 28 | ), $answered_questions), 29 | '' . _("Ask an archangel") . '
', 30 | form(array( 31 | form_textarea('question', _("Your Question:"), ""), 32 | form_submit('submit', _("Save")) 33 | ), $ask_action) 34 | )); 35 | } 36 | ?> -------------------------------------------------------------------------------- /docs/DATABASE_MIGRATIONS.md: -------------------------------------------------------------------------------- 1 | ## Steps to run database migration 2 | 3 | #### Installing Phinx 4 | To install Phinx, simply require it using Composer: 5 | - $ php composer.phar require robmorgan/phinx 6 | 7 | Then run Composer: 8 | - $ php composer.phar install --no-dev 9 | 10 | Create a folder in your project directory called migrations with adequate permissions. It is where your migration files will live and should be writable. 11 | - $ php vendor/bin/phinx init 12 | 13 | #### Creating a New Migration 14 | - $ php vendor/bin/phinx create MyNewMigration 15 | 16 | This will create a new migration in the format YYYYMMDDHHMMSS_my_new_migration.php where the first 14 characters are replaced with the current timestamp down to the second. 17 | 18 | #### The Migrate Command 19 | 20 | The Migrate command runs all of the available migrations, optionally up to a specific version. 21 | - $ phinx migrate -e development 22 | 23 | To migrate to a specific version then use the --target parameter or -t for short. 24 | - $ phinx migrate -e development -t 20110103081132 25 | 26 | #### The Rollback Command 27 | 28 | You can rollback to the previous migration by using the rollback command with no arguments. 29 | - $ phinx rollback -e development 30 | 31 | #### The Status Command 32 | 33 | The Status command prints a list of all migrations, along with their current status. You can use this command to determine which migrations have been run. 34 | - $ phinx status -e development 35 | 36 | #### Writing Migrations 37 | More information on writing migrations is available here: 38 | - http://docs.phinx.org/en/latest/migrations.html#the-abstractmigration-class -------------------------------------------------------------------------------- /includes/model/UserGroups_model.php: -------------------------------------------------------------------------------- 1 | 59 | -------------------------------------------------------------------------------- /test/model/NewsComments_model_test.php: -------------------------------------------------------------------------------- 1 | news_id = insert_news_val('Subject1', 'Message1', 1, 0); 12 | $this->news_id2 = insert_news_val('Subject2', 'Message2', 1, 1); 13 | $this->newscomm_id = insert_news($news_id['ID'], 'Comment1', 1); 14 | $this->newscomm_id2 = insert_news($news_id2['ID'], 'comment2', 1); 15 | } 16 | 17 | public function test_News_Comments_create() { 18 | $count_news = count(select_news()); 19 | $this->assertNotFalse(insert_news_val('Subject3', 'Message3', 1, 1)); 20 | $count_newscomm = count(select_newscomments_by_id($news_id['ID'])); 21 | $this->assertNotFalse(insert_news($news_id['ID'], 'Comment3', 1)); 22 | 23 | // There should be one more News entry now 24 | $this->assertEquals(count(select_news()), $count_news + 1); 25 | 26 | // There should be one more NewsComments entry now 27 | $this->assertEquals(count(select_newscomments_by_id($news_id['ID'])), $count_newscomm + 1); 28 | } 29 | 30 | public function test_NewsComments() { 31 | $this->create_News_and_comments(); 32 | $NewsComments = select_newscomments_by_id($this->news_id['ID']); 33 | $this->assertNotFalse($NewsComments); 34 | $this->assertNotNull($NewsComments); 35 | $this->assertTrue(count(select_newscomments_by_id($this->news_id['ID'])) > 0); 36 | $this->assertEquals($NewsComments['Text'], 'Comment1'); 37 | $this->assertNull(select_newscomments_by_id(-1)); 38 | } 39 | 40 | } 41 | ?> -------------------------------------------------------------------------------- /includes/controller/user_atom_controller.php: -------------------------------------------------------------------------------- 1 | 24 |
' . $name);
76 | return $items;
77 | }
78 | ?>
79 |
--------------------------------------------------------------------------------
/includes/model/Settings_model.php:
--------------------------------------------------------------------------------
1 |
67 |
--------------------------------------------------------------------------------
/includes/controller/admin_cgroups_controller.php:
--------------------------------------------------------------------------------
1 | 0){
30 | $name = strip_request_item('Name');
31 | }
32 | else {
33 | $ok = false;
34 | $msg .= error(_("Please enter your Group Name."), true);
35 | }
36 |
37 | if (isset($_REQUEST['UID']))
38 | $uid = strip_request_item('UID');
39 | else {
40 | $ok = false;
41 | $msg .= error(_("Please enter your Group UID."), true);
42 | }
43 |
44 | // set privileges
45 | foreach ($privilege_source as $selected_privileges_id)
46 | if (isset($_REQUEST['privilege_types_' . $selected_privilege_id['id'] ]))
47 | $selected_privileges[] = $selected_privileges_id['id'];
48 |
49 | }
50 |
51 | if ($ok) {
52 | create_new_group($name, $uid);
53 | foreach ($selected_privileges as $priv)
54 | insert_into_group_privileges($uid, $priv);
55 | success(_("New Group Created."));
56 | redirect(page_link_to('admin_cgroups'));
57 | }
58 |
59 | return page_with_title(admin_cgroups_title(), array(
60 | msg(),
61 | form(array(
62 | form_text('Name', _("Group Name"), $name),
63 | form_text('UID', _("User ID"), $uid),
64 | form_checkboxes('privilege_types', _("What Privileges do you want to provide?") , $privilege_types, $selected_privileges),
65 | form_submit('submit', _("Save"))
66 | ))
67 | ));
68 |
69 | }
70 |
71 | ?>
72 |
--------------------------------------------------------------------------------
/includes/controller/admin_news_controller.php:
--------------------------------------------------------------------------------
1 | ' . _("Edit news entry") . '
' . msg(); 9 | if (isset($_REQUEST['id']) && preg_match("/^[0-9]{1,11}$/", $_REQUEST['id'])) 10 | $id = $_REQUEST['id']; 11 | else 12 | return error("Incomplete call, missing News ID.", true); 13 | 14 | $news = News_by_id($id); 15 | if (count($news) > 0) { 16 | switch ($_REQUEST["action"]) { 17 | default: 18 | redirect(page_link_to('news')); 19 | case 'edit': 20 | list($news) = $news; 21 | 22 | $user_source = User($news['UID']); 23 | if ($user_source === false) 24 | engelsystem_error("Unable to load user."); 25 | 26 | $html .= form(array( 27 | form_info(_("Date"), date("Y-m-d H:i", $news['Datum'])), 28 | form_info(_("Author"), User_Nick_render($user_source)), 29 | form_text('eBetreff', _("Subject"), $news['Betreff']), 30 | form_textarea('eText', _("Message"), $news['Text']), 31 | form_checkbox('eTreffen', _("Meeting"), $news['Treffen'] == 1, 1), 32 | form_submit('submit', _("Save")) 33 | ), page_link_to('admin_news&action=save&id=' . $id)); 34 | 35 | $html .= ' ' . _("Delete") . ''; 36 | break; 37 | 38 | case 'save': 39 | list($news) = $news; 40 | News_update($_POST["eBetreff"], $_POST["eText"], $_POST["eTreffen"], $id, $user); 41 | engelsystem_log("News updated: " . $_POST["eBetreff"]); 42 | success(_("News entry updated.")); 43 | redirect(page_link_to("news")); 44 | break; 45 | 46 | case 'delete': 47 | list($news) = $news; 48 | delete_by_id($id); 49 | engelsystem_log("News deleted: " . $news['Betreff']); 50 | success(_("News entry deleted.")); 51 | redirect(page_link_to("news")); 52 | break; 53 | } 54 | } else 55 | return error("No News found.", true); 56 | } 57 | return $html . ''; 58 | } 59 | ?> 60 | -------------------------------------------------------------------------------- /includes/model/Questions_model.php: -------------------------------------------------------------------------------- 1 | 87 | -------------------------------------------------------------------------------- /Readme-De.md: -------------------------------------------------------------------------------- 1 | # Installation eines frischen Engelsystems 2 | [](https://codeclimate.com/github/fossasia/engelsystem) 3 | [](https://travis-ci.org/fossasia/engelsystem) 4 | [](https://www.codacy.com/app/dishant-khanna1807/engelsystem_2?utm_source=github.com&utm_medium=referral&utm_content=fossasia/engelsystem&utm_campaign=Badge_Grade) 5 | [](https://circleci.com/gh/fossasia/engelsystem/tree/development) 6 | [](https://www.versioneye.com/user/projects/577c9495b50608003eee0161) 7 | [](https://gemnasium.com/github.com/fossasia/engelsystem) 8 | ## Mindestvorrausetzungen (bzw. getestet unter): 9 | * PHP 5.4.x (cgi-fcgi) 10 | * MySQL-Server 5.5.x 11 | * Webserver mit PHP-Anbindung, z.B. lighttpd, nginx oder Apache 12 | 13 | ## Vorgehen: 14 | * Klonen des `master` inkl. submodules in lokales Verzeichnis: `git clone --recursive https://github.com/fossasia/engelsystem.git` 15 | * Der Webserver muss Schreibrechte auf das Verzeichnis `import` bekommen, für alle anderen Dateien reichen Leserechte. 16 | * Der Webserver muss auf `public` als http-root zeigen. 17 | 18 | * Empfehlung: Dirlisting sollte deaktiviert sein. 19 | * Es muss eine MySQL-Datenbank angelegt werden und ein User existieren, der alle Rechte auf dieser Datenbank besitzt. 20 | * Es muss die db/install.sql und die db/update.sql importiert/ausgeführt werden. 21 | * Erstelle bei Bedarf eine config/config.php, die die Werte (z.B. DB-Zugang) aus der config/config-sample.default.php überschreibt. 22 | * Engelsystem im Browser aufrufen, Anmeldung mit admin:asdfasdf vornehmen und Admin-Passwort ändern. 23 | 24 | Das Engelsystem ist jetzt einsatzbereit. 25 | 26 | ## Session Einstellungen: 27 | * Einstellungen für Cookies und Sessions bitte in der PHP Config des Servers vornehmen. 28 | * Sowohl Apache als auch nginx bieten Möglichkeiten für verschiedene Konfigurationen pro VirtualHost an 29 | 30 | Fehler bitte auf Github melden: https://github.com/fossasia/engelsystem/issues 31 | -------------------------------------------------------------------------------- /docs/INSTALLATION_LOCAL.md: -------------------------------------------------------------------------------- 1 | #Installation of Engelsystem 2 | 3 | ##Requirements: 4 | 5 | 1.Setup LAMP 6 | 7 | > 1.1 PHP 5.4.x (cgi-fcgi) 8 | > 9 | > 1.2 MySQL-Server 5.5.x pr MariaDB 10 | > 11 | > 1.3 Webserver ( Apache/Nginx/lighttpd) 12 | 13 | 2.Install GIT 14 | 15 | ##Steps: 16 | 17 | * clone the repository (the recursive parameter allows us to clone the submodules): git clone --recursive [*https://github.com/fossasia/engelsystem.git*](https://github.com/fossasia/engelsystem.git) 18 | 19 | * Next, configure your MySQL Engelsystem database: 20 | 21 | ** mysql -u root -p** 22 | 23 | ** \[Enter your password\]** 24 | 25 | ** CREATE DATABASE engelsystem;** 26 | 27 | ** exit;** 28 | 29 | * Go to **engelsystem/config** and copy MySQL-Connection Settings from default config-sample into config.php. Modify the new file to match your MySQL credentials so that the system could access the database on the localserver. 30 | 31 | * Move the app to your **/var/www/html/** directory by typing **mv ./engelsystem /var/www/html** 32 | 33 | * To login, type use the following credentials: 34 | 35 | *Username:* **admin** 36 | 37 | *Password:* **asdfasdf** 38 | 39 | * We must make sure to point our apache2 document root to the Engelsystem directory to prevent any user from accessing anything other than the public/ directory for security reasons. Do this by modifying the apache2 configuration file: 40 | 41 | **apt-get install nano -y** 42 | 43 | **nano /etc/apache2/sites-available/000-default.conf** 44 | 45 | * Change **DocumentRoot /var/www/html** into **DocumentRoot /var/www/html/engelsystem/public**. Restart apache by, 46 | 47 | > **service apache2 restart** 48 | 49 | ## Setting up Captcha 50 | * For setting up captcha for the online server, we need to signup for reCaptcha API keys. The keys are unique to the domain or domains you specify, and their respective sub-domains. Specifying more than one domain could come in handy in the case that you serve your website from multiple top level domains (for example: yoursite.com, yoursite.net). 51 | By default, all keys work on "localhost" (or "127.0.0.1"), so you can always develop and test on your local machine. 52 | 53 | ##Session Settings: 54 | 55 | - Make sure the config allows for sessions. 56 | 57 | - Both Apache and Nginx allow for different VirtualHost configurations. 58 | 59 | For more information on deploying the system please visit, https://codefungsoc2k16.wordpress.com/2016/05/20/deploy-engelsystem-on-your-localserver/ 60 | -------------------------------------------------------------------------------- /includes/view/UserDriverLicenses_view.php: -------------------------------------------------------------------------------- 1 | 37 | $(function() { 38 | if($("#wants_to_drive").is(":checked")) 39 | $("#driving_license").show(); 40 | else 41 | $("#driving_license").hide(); 42 | 43 | $("#wants_to_drive").click( 44 | function(e) { 45 | if($("#wants_to_drive").is(":checked")) 46 | $("#driving_license").show(); 47 | else 48 | $("#driving_license").hide(); 49 | } 50 | ); 51 | }); 52 | ' 53 | ]); 54 | } 55 | 56 | ?> -------------------------------------------------------------------------------- /themes/base.less: -------------------------------------------------------------------------------- 1 | @import "../vendor/bootstrap/less/bootstrap"; 2 | 3 | @icon-font-path: "../fonts/"; 4 | 5 | body { 6 | padding-top: 50px; 7 | } 8 | 9 | .footer a { 10 | color: @text-muted; 11 | } 12 | 13 | #shifts { 14 | td { 15 | &.free { 16 | border: 1px solid @brand-danger; 17 | .bg-danger(); 18 | } 19 | &.occupied { 20 | border: 1px solid @brand-success; 21 | .bg-success(); 22 | } 23 | &.collides { 24 | border: 1px solid @brand-warning; 25 | .bg-warning(); 26 | } 27 | &.own { 28 | border: 1px solid @gray-light; 29 | } 30 | } 31 | } 32 | 33 | .row-day { 34 | border-top: 2px solid @gray-light; 35 | } 36 | 37 | .row-header { 38 | min-width: 90px; 39 | } 40 | 41 | .space-top { 42 | margin-top: 15px; 43 | } 44 | 45 | .messages { 46 | &:focus { 47 | outline: none; 48 | } 49 | a:focus { 50 | outline: none; 51 | } 52 | } 53 | 54 | .messages span.text-danger { 55 | animation: pulse 1s infinite; 56 | -webkit-animation: pulse 1s infinite; 57 | -moz-animation: pulse 1s infinite; 58 | } 59 | 60 | @keyframes pulse { 61 | 0% { 62 | transform: rotate(0deg); 63 | } 64 | 10% { 65 | transform: rotate(5deg) translateY(-2px); 66 | } 67 | 20% { 68 | transform: rotate(-5deg); 69 | } 70 | 30% { 71 | transform: rotate(5deg) translateY(-2px);; 72 | } 73 | 40% { 74 | transform: rotate(-5deg); 75 | } 76 | 50% { 77 | transform: rotate(0deg) translateY(-2px); 78 | } 79 | 75% { 80 | transform: rotate(0deg) translateY(0px); 81 | } 82 | } 83 | 84 | @-webkit-keyframes pulse { 85 | 0% { 86 | transform: rotate(0deg); 87 | } 88 | 10% { 89 | transform: rotate(5deg) translateY(-2px); 90 | } 91 | 20% { 92 | transform: rotate(-5deg); 93 | } 94 | 30% { 95 | transform: rotate(5deg) translateY(-2px); 96 | } 97 | 40% { 98 | transform: rotate(-5deg); 99 | } 100 | 50% { 101 | transform: rotate(0deg) translateY(-2px); 102 | } 103 | 75% { 104 | transform: rotate(0deg) translateY(0px); 105 | } 106 | } 107 | 108 | @-moz-keyframes pulse { 109 | 0% { 110 | transform: rotate(0deg); 111 | } 112 | 10% { 113 | transform: rotate(5deg) translateY(-2px); 114 | } 115 | 20% { 116 | transform: rotate(-5deg); 117 | } 118 | 30% { 119 | transform: rotate(5deg) translateY(-2px); 120 | } 121 | 40% { 122 | transform: rotate(-5deg); 123 | } 124 | 50% { 125 | transform: rotate(0deg) translateY(-2px); 126 | } 127 | 75% { 128 | transform: rotate(0deg) translateY(0px); 129 | } 130 | } 131 | -------------------------------------------------------------------------------- /config/config-sample.default.php: -------------------------------------------------------------------------------- 1 | 2 AND HOUR(FROM_UNIXTIME(`Shifts`.`end`)) < 6) 45 | OR (HOUR(FROM_UNIXTIME(`Shifts`.`start`)) > 2 AND HOUR(FROM_UNIXTIME(`Shifts`.`start`)) < 6) 46 | OR (HOUR(FROM_UNIXTIME(`Shifts`.`start`)) <= 2 AND HOUR(FROM_UNIXTIME(`Shifts`.`end`)) >= 6) 47 | ))*(`Shifts`.`end` - `Shifts`.`start`)*(1 - 3 * `ShiftEntry`.`freeloaded`) 48 | )"; 49 | 50 | // voucher calculation 51 | $voucher_settings = array( 52 | "initial_vouchers" => 2, 53 | "shifts_per_voucher" => 1 54 | ); 55 | 56 | // weigh every shift the same 57 | // $shift_sum_formula = "SUM(`end` - `start`)"; 58 | 59 | // For accessing stats 60 | $api_key = ""; 61 | 62 | // MySQL-Connection Settings 63 | $DB_HOST = "localhost"; 64 | $DB_USER = "username_here"; 65 | $DB_PASSWORD = "password_here"; 66 | $DB_NAME = "database_name_here"; 67 | 68 | /** reCaptcha Settings 69 | * Visit http://www.google.com/recaptcha/admin#whyrecaptcha for generating reCaptcha keys for your website. 70 | */ 71 | define('capflg', ''); // Set reCaptch enalble or disable. true = enable , false = disable. 72 | define('CAPTCHA_KEY_PUBLIC', ''); // Public/Data-site key 73 | define('CAPTCHA_KEY_PRIVATE', ''); // Private/Secret Key 74 | ?> 75 | -------------------------------------------------------------------------------- /includes/model/News_model.php: -------------------------------------------------------------------------------- 1 | 94 | -------------------------------------------------------------------------------- /includes/model/UserDriverLicenses_model.php: -------------------------------------------------------------------------------- 1 | 0) 12 | return $user_driver_license[0]; 13 | return null; 14 | } 15 | 16 | /** 17 | * Create a user's driver license entry 18 | * 19 | * @param bool $user_id 20 | * @param bool $has_car 21 | * @param bool $has_license_car 22 | * @param bool $has_license_3_5t_transporter 23 | * @param bool $has_license_7_5t_truck 24 | * @param bool $has_license_12_5t_truck 25 | * @param bool $has_license_forklift 26 | */ 27 | function UserDriverLicenses_create($user_id, $has_car, $has_license_car, $has_license_3_5t_transporter, $has_license_7_5t_truck, $has_license_12_5t_truck, $has_license_forklift) { 28 | return sql_query(" 29 | INSERT INTO `UserDriverLicenses` SET 30 | `user_id`=" . sql_escape($user_id) . ", 31 | `has_car`=" . sql_bool($has_car) . ", 32 | `has_license_car`=" . sql_bool($has_license_car) . ", 33 | `has_license_3_5t_transporter`=" . sql_bool($has_license_3_5t_transporter) . ", 34 | `has_license_7_5t_truck`=" . sql_bool($has_license_7_5t_truck) . ", 35 | `has_license_12_5t_truck`=" . sql_bool($has_license_12_5t_truck) . ", 36 | `has_license_forklift`=" . sql_bool($has_license_forklift)); 37 | } 38 | 39 | /** 40 | * Update a user's driver license entry 41 | * 42 | * @param bool $user_id 43 | * @param bool $has_car 44 | * @param bool $has_license_car 45 | * @param bool $has_license_3_5t_transporter 46 | * @param bool $has_license_7_5t_truck 47 | * @param bool $has_license_12_5t_truck 48 | * @param bool $has_license_forklift 49 | */ 50 | function UserDriverLicenses_update($user_id, $has_car, $has_license_car, $has_license_3_5t_transporter, $has_license_7_5t_truck, $has_license_12_5t_truck, $has_license_forklift) { 51 | return sql_query("UPDATE `UserDriverLicenses` SET 52 | `has_car`=" . sql_bool($has_car) . ", 53 | `has_license_car`=" . sql_bool($has_license_car) . ", 54 | `has_license_3_5t_transporter`=" . sql_bool($has_license_3_5t_transporter) . ", 55 | `has_license_7_5t_truck`=" . sql_bool($has_license_7_5t_truck) . ", 56 | `has_license_12_5t_truck`=" . sql_bool($has_license_12_5t_truck) . ", 57 | `has_license_forklift`=" . sql_bool($has_license_forklift) . " 58 | WHERE `user_id`='" . sql_escape($user_id) . "'"); 59 | } 60 | 61 | /** 62 | * Delete a user's driver license entry 63 | * 64 | * @param int $user_id 65 | */ 66 | function UserDriverLicenses_delete($user_id) { 67 | return sql_query("DELETE FROM `UserDriverLicenses` WHERE `user_id`=" . sql_escape($user_id)); 68 | } 69 | ?> -------------------------------------------------------------------------------- /templates/user_shifts.html: -------------------------------------------------------------------------------- 1 | 12 | 13 | 14 | 59 | 60 | 61 | 67 | -------------------------------------------------------------------------------- /codecov.yml: -------------------------------------------------------------------------------- 1 | codecov: 2 | branch: development 3 | token: ab8e0fae-2c7c-4792-9696-84ec3c8488d1 4 | bot: null 5 | ci: null 6 | strict_yaml_branch: null 7 | max_report_age: null 8 | notify: 9 | after_n_builds: null 10 | countdown: null 11 | require_ci_to_pass: yes 12 | archive: 13 | uploads: yes 14 | 15 | coverage: 16 | precision: 2 17 | round: down 18 | range: "70...100" 19 | 20 | notify: 21 | slack: 22 | default: 23 | url: null 24 | threshold: null 25 | branches: null 26 | attachments: "sunburst, diff" 27 | only_pulls: null 28 | message: null 29 | flags: null 30 | paths: null 31 | 32 | hipchat: 33 | default: 34 | url: null 35 | notify: no 36 | threshold: null 37 | branches: null 38 | card: yes 39 | only_pulls: null 40 | message: null 41 | flags: null 42 | paths: null 43 | 44 | gitter: 45 | default: 46 | url: null 47 | threshold: null 48 | branches: null 49 | message: null 50 | only_pulls: null 51 | flags: null 52 | paths: null 53 | 54 | webhook: 55 | default: 56 | url: null 57 | threshold: null 58 | branches: null 59 | only_pulls: null 60 | flags: null 61 | paths: null 62 | 63 | irc: 64 | default: 65 | server: null 66 | branches: null 67 | threshold: null 68 | message: null 69 | flags: null 70 | paths: null 71 | 72 | status: 73 | project: 74 | default: 75 | target: auto 76 | threshold: null 77 | branches: null 78 | base: auto 79 | set_pending: yes 80 | if_no_uploads: error 81 | if_not_found: success 82 | if_ci_failed: error 83 | only_pulls: null 84 | flags: null 85 | paths: null 86 | 87 | patch: 88 | default: 89 | target: auto 90 | branches: null 91 | set_pending: yes 92 | base: auto 93 | if_no_uploads: success 94 | if_not_found: success 95 | if_ci_failed: error 96 | only_pulls: null 97 | flags: null 98 | paths: null 99 | 100 | changes: 101 | default: 102 | branches: null 103 | base: auto 104 | set_pending: yes 105 | if_no_uploads: error 106 | if_not_found: success 107 | if_ci_failed: error 108 | only_pulls: null 109 | flags: null 110 | paths: null 111 | flags: 112 | default: 113 | branches: null 114 | ignore: null 115 | 116 | fixes: null 117 | 118 | ignore: null 119 | 120 | comment: 121 | layout: "header, diff, changes, sunburst, uncovered" 122 | branches: null 123 | behavior: default 124 | flags: null 125 | paths: null 126 | -------------------------------------------------------------------------------- /includes/controller/admin_free_controller.php: -------------------------------------------------------------------------------- 1 | 'alle Typen' 26 | ); 27 | foreach ($angel_types_source as $angel_type) 28 | $angel_types[$angel_type['id']] = $angel_type['name']; 29 | 30 | $users = User_select_free($angeltypesearch); 31 | $free_users_table = array(); 32 | if ($search == "") 33 | $tokens = array(); 34 | else 35 | $tokens = explode(" ", $search); 36 | foreach ($users as $usr) { 37 | if (count($tokens) > 0) { 38 | $match = false; 39 | $index = join("", $usr); 40 | foreach ($tokens as $t) 41 | if (stristr($index, trim($t))) { 42 | $match = true; 43 | break; 44 | } 45 | if (! $match) 46 | continue; 47 | } 48 | 49 | $free_users_table[] = array( 50 | 'name' => User_Nick_render($usr), 51 | 'shift_state' => User_shift_state_render($usr), 52 | 'dect' => $usr['DECT'], 53 | 'jabber' => $usr['jabber'], 54 | 'email' => $usr['email'], 55 | 'actions' => in_array('admin_user', $privileges) ? button(page_link_to('admin_user') . '&id=' . $usr['UID'], _("edit"), 'btn-xs') : '' 56 | ); 57 | } 58 | return page_with_title(admin_free_title(), array( 59 | form(array( 60 | div('row', array( 61 | div('col-md-4', array( 62 | form_text('search', _("Search"), $search) 63 | )), 64 | div('col-md-4', array( 65 | form_select('angeltype', _("Angeltype"), $angel_types, $_REQUEST['angeltype']) 66 | )), 67 | div('col-md-2', array( 68 | form_checkbox('confirmed_only', _("Only confirmed"), isset($_REQUEST['confirmed_only'])) 69 | )), 70 | div('col-md-2', array( 71 | form_submit('submit', _("Search")) 72 | )) 73 | )) 74 | )), 75 | table(array( 76 | 'name' => _("Nick"), 77 | 'shift_state' => '', 78 | 'dect' => _("DECT"), 79 | 'jabber' => _("Jabber"), 80 | 'email' => _("E-Mail"), 81 | 'actions' => '' 82 | ), $free_users_table) 83 | )); 84 | } 85 | ?> 86 | -------------------------------------------------------------------------------- /templates/layout.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 |
28 |
39 |
40 |
41 |
42 |
43 |
44 |
45 |
46 |
51 |
52 |
53 |
54 |
--------------------------------------------------------------------------------
/includes/view/ShiftTypes_view.php:
--------------------------------------------------------------------------------
1 | ' . $shifttype['name'] . '';
7 | return $shifttype['name'];
8 | }
9 |
10 | function ShiftType_delete_view($shifttype) {
11 | return page_with_title(sprintf(_("Delete shifttype %s"), $shifttype['name']), array(
12 | info(sprintf(_("Do you want to delete shifttype %s?"), $shifttype['name']), true),
13 | buttons(array(
14 | button(page_link_to('shifttypes'), _("cancel"), 'cancel'),
15 | button(page_link_to('shifttypes') . '&action=delete&shifttype_id=' . $shifttype['id'] . '&confirmed', _("delete"), 'ok')
16 | ))
17 | ));
18 | }
19 |
20 | function ShiftType_edit_view($name, $angeltype_id, $angeltypes, $description, $shifttype_id) {
21 | $angeltypes_select = [
22 | '' => _('All')
23 | ];
24 | foreach ($angeltypes as $angeltype)
25 | $angeltypes_select[$angeltype['id']] = $angeltype['name'];
26 |
27 | return page_with_title($shifttype_id ? _('Edit shifttype') : _('Create shifttype'), [
28 | msg(),
29 | buttons([
30 | button(page_link_to('shifttypes'), shifttypes_title(), 'back')
31 | ]),
32 | form([
33 | form_text('name', _('Name'), $name),
34 | form_select('angeltype_id', _('Angeltype'), $angeltypes_select, $angeltype_id),
35 | form_textarea('description', _('Description'), $description),
36 | form_info('', _('Please use markdown for the description.')),
37 | form_submit('submit', _('Save'))
38 | ])
39 | ]);
40 | }
41 |
42 | function ShiftType_view($shifttype, $angeltype) {
43 | $parsedown = new Parsedown();
44 | $title = $shifttype['name'];
45 | if ($angeltype)
46 | $title .= ' ' . sprintf(_('for team %s'), $angeltype['name']) . '';
47 | return page_with_title($title, [
48 | msg(),
49 | buttons([
50 | button(page_link_to('shifttypes'), shifttypes_title(), 'back'),
51 | $angeltype ? button(page_link_to('angeltypes') . '&action=view&angeltype_id=' . $angeltype['id'], $angeltype['name']) : '',
52 | button(page_link_to('shifttypes') . '&action=edit&shifttype_id=' . $shifttype['id'], _('edit'), 'edit'),
53 | button(page_link_to('shifttypes') . '&action=delete&shifttype_id=' . $shifttype['id'], _('delete'), 'delete')
54 | ]),
55 | $parsedown->parse($shifttype['description'])
56 | ]);
57 | }
58 |
59 | function ShiftTypes_list_view($shifttypes) {
60 | foreach ($shifttypes as &$shifttype) {
61 | $shifttype['name'] = '' . $shifttype['name'] . '';
62 | $shifttype['actions'] = table_buttons([
63 | button(page_link_to('shifttypes') . '&action=edit&shifttype_id=' . $shifttype['id'], _('edit'), 'btn-xs'),
64 | button(page_link_to('shifttypes') . '&action=delete&shifttype_id=' . $shifttype['id'], _('delete'), 'btn-xs')
65 | ]);
66 | }
67 |
68 | return page_with_title(shifttypes_title(), [
69 | msg(),
70 | buttons([
71 | button(page_link_to('shifttypes') . '&action=edit', _('New shifttype'), 'add')
72 | ]),
73 | table([
74 | 'name' => _('Name'),
75 | 'actions' => ''
76 | ], $shifttypes)
77 | ]);
78 | }
79 |
80 | ?>
--------------------------------------------------------------------------------
/docs/INSTALLATION_SERVER.md:
--------------------------------------------------------------------------------
1 | #Installation of Engelsystem on a Server
2 |
3 | ## Requirements:
4 | * PHP 5.4.x (cgi-fcgi)
5 | * MySQL-Server 5.5.x
6 | * Webserver, i.e. lighttpd, nginx, or Apache
7 | * Session Settings: Make sure the config allows for sessions. Both Apache and Nginx allow for different VirtualHost configurations.
8 |
9 | ##Installation Steps:
10 |
11 | * clone the repository (the recursive parameter allows us to clone the submodules): git clone --recursive [*https://github.com/fossasia/engelsystem.git*](https://github.com/fossasia/engelsystem.git)
12 |
13 | * Compress the downloaded repository in .zip format
14 |
15 | * Upload the compressed file to the server either using the file manager of the CPanel (or Vista Panel) provided by the hosting server or use any FTP client (E.g. FileZilla, etc.)
16 |
17 | * Extract the components in the directory (public\_html)
18 |
19 | * Next, configure your Engelsystem database:
20 |
21 | 1. Create a database for the Engelsystem (give any name to it)
22 |
23 | 2. Open phpMyAdmin on the server to create tables in the database
24 |
25 | 3. In phpMyAdmin select the database created and click on the import tab to import the tables and schema for the Engelsystem
26 |
27 | 4. Import the “install.sql” and “update.sql” to finish configuring the database for the Engelsystem
28 |
29 |
30 | * We must make sure to point our Apache document root to the Engelsystem directory to prevent any user from accessing anything other than the public/ directory for security reasons. Do this by modifying the Apache configuration file using the SSH access and edit the following file:
31 |
32 | \#vim /var/cpanel/userdata/USERNAME/DOMAINNAME.COM
33 |
34 | Change USERNAME with the CPanel username and DOMAINNAME with the primary domainname.
35 |
36 | * After editing file, search for text *documentroot* and change the path as:
37 |
38 | documentroot: /home/USERNAME/public\_html/\[Engelsystem directory\]/public
39 |
40 | * After making changed, we need to rebuid Apache configuration file and restart Apache server. Use the following command to do it.
41 |
42 | \# /scripts/rebuildhttpdconf
43 |
44 | \# service httpd restart
45 | The changes will be permanently updated. Check your site for reflecting changes. For more help on changing the documentroot in CPanel, please visit [here](http://tecadmin.net/how-to-change-document-root-of-primary-domain-in-cpanel/) .
46 |
47 | ## Setting up Captcha
48 |
49 | * For setting up captcha for the online server, we need to signup for reCaptcha API keys. The keys are unique to the domain or domains you specify, and their respective sub-domains. Specifying more than one domain could come in handy in the case that you serve your website from multiple top level domains (for example: yoursite.com, yoursite.net).
50 | * Visit the link,http://www.google.com/recaptcha/admin#whyrecaptcha , and sign up for the reCaptcha API keys.
51 | * After we sign-up for the reCaptcha for the domain, we'll be provided with 2 keys, Public Key(DataSite Key) and a Private Key (Secret key).
52 | * We must change the existing keys, Do this by modifying the file `config.php`.
53 | * User can enable/disable reCaptcha by setting `capflg` in `config.php` as `true`/`false`.
54 |
55 | If you made it this far without any issues, **congratulations!** You have successfully set up Engelsystem on your domain and can use it to manage your event.
56 |
57 | ##Session Settings
58 |
59 | - Make sure the config allows for sessions.
60 | - Both Apache and Nginx allow for different VirtualHost configurations.
61 |
62 |
--------------------------------------------------------------------------------
/includes/sys_auth.php:
--------------------------------------------------------------------------------
1 | 0) {
10 | // User is logged in , make data available and update timestamp
11 | list ($user) = $user;
12 | sql_query("UPDATE `User` SET " . "`lastLogIn` = '" . time() . "'" . " WHERE `UID` = '" . sql_escape($_SESSION['uid']) . "' LIMIT 1;");
13 | } else
14 | unset($_SESSION['uid']);
15 | }
16 |
17 | $privileges = isset($user) ? privileges_for_user($user['UID']) : privileges_for_group(- 1);
18 | }
19 |
20 | // generate a salt (random string) of arbitrary length suitable for the use with crypt()
21 | function generate_salt($length = 16) {
22 | $alphabet = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
23 | $salt = "";
24 | for($i = 0; $i < $length; $i ++) {
25 | $salt .= $alphabet[rand(0, strlen($alphabet) - 1)];
26 | }
27 | return $salt;
28 | }
29 |
30 | // set the password of a user
31 | function set_password($uid, $password) {
32 | return sql_query("UPDATE `User` SET `Passwort` = '" . sql_escape(crypt($password, CRYPT_ALG . '$' . generate_salt(16) . '$')) . "', `password_recovery_token`=NULL WHERE `UID` = " . intval($uid) . " LIMIT 1");
33 | }
34 |
35 | // verify a password given a precomputed salt.
36 | // if $uid is given and $salt is an old-style salt (plain md5), we convert it automatically
37 | function verify_password($password, $salt, $uid = false) {
38 | $correct = false;
39 | if (substr($salt, 0, 1) == '$') // new-style crypt()
40 | $correct = crypt($password, $salt) == $salt;
41 | elseif (substr($salt, 0, 7) == '{crypt}') // old-style crypt() with DES and static salt - not used anymore
42 | $correct = crypt($password, '77') == $salt;
43 | elseif (strlen($salt) == 32) // old-style md5 without salt - not used anymore
44 | $correct = md5($password) == $salt;
45 |
46 | if ($correct && substr($salt, 0, strlen(CRYPT_ALG)) != CRYPT_ALG && $uid) {
47 | // this password is stored in another format than we want it to be.
48 | // let's update it!
49 | // we duplicate the query from the above set_password() function to have the extra safety of checking the old hash
50 | sql_query("UPDATE `User` SET `Passwort` = '" . sql_escape(crypt($password, CRYPT_ALG . '$' . generate_salt() . '$')) . "' WHERE `UID` = " . intval($uid) . " AND `Passwort` = '" . sql_escape($salt) . "' LIMIT 1");
51 | }
52 | return $correct;
53 | }
54 |
55 | function privileges_for_user($user_id) {
56 | $privileges = array ();
57 | $user_privs = sql_select("SELECT `Privileges`.`name` FROM `User` JOIN `UserGroups` ON (`User`.`UID` = `UserGroups`.`uid`) JOIN `GroupPrivileges` ON (`UserGroups`.`group_id` = `GroupPrivileges`.`group_id`) JOIN `Privileges` ON (`GroupPrivileges`.`privilege_id` = `Privileges`.`id`) WHERE `User`.`UID`='" . sql_escape($user_id) . "'");
58 | foreach ($user_privs as $user_priv)
59 | $privileges[] = $user_priv['name'];
60 | return $privileges;
61 | }
62 |
63 | function privileges_for_group($group_id) {
64 | $privileges = array ();
65 | $groups_privs = sql_select("SELECT * FROM `GroupPrivileges` JOIN `Privileges` ON (`GroupPrivileges`.`privilege_id` = `Privileges`.`id`) WHERE `group_id`='" . sql_escape($group_id) . "'");
66 | foreach ($groups_privs as $guest_priv)
67 | $privileges[] = $guest_priv['name'];
68 | return $privileges;
69 | }
70 | ?>
71 |
--------------------------------------------------------------------------------
/public/maintenance.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | %content%
29 |
30 |
38 |
31 |
32 | 36 |
37 | 32 | 36 |
30 |
59 |
60 |
61 |
62 |
63 |
64 |
65 |
70 |
71 |
72 |
73 |
--------------------------------------------------------------------------------
/includes/controller/admin_groups_controller.php:
--------------------------------------------------------------------------------
1 | $group['Name'],
22 | 'privileges' => join(', ', $privileges_html),
23 | 'actions' => button(page_link_to('admin_groups') . '&action=edit&id=' . $group['UID'], _("edit"), 'btn-xs')
24 | );
25 | }
26 |
27 | return page_with_title(admin_groups_title(), array(
28 | table(array(
29 | 'name' => _("Name"),
30 | 'privileges' => _("Privileges"),
31 | 'actions' => ''
32 | ), $groups_table)
33 | ));
34 | } else {
35 | switch ($_REQUEST["action"]) {
36 | case 'edit':
37 | if (isset($_REQUEST['id']) && preg_match("/^-[0-9]{1,11}$/", $_REQUEST['id']))
38 | $id = $_REQUEST['id'];
39 | else
40 | return error("Incomplete call, missing Groups ID.", true);
41 |
42 | $room = Groups_by_id($id);
43 | if (count($room) > 0) {
44 | list($room) = $room;
45 | $privileges = Privileges_Group_by_id($id);
46 | $privileges_html = "";
47 | $privileges_form = array();
48 | foreach ($privileges as $priv) {
49 | $privileges_form[] = form_checkbox('privileges[]', $priv['desc'] . ' (' . $priv['name'] . ')', $priv['group_id'] != "", $priv['id']);
50 | $privileges_html .= sprintf('
31 |
51 |
32 |
50 |
33 |
49 | 34 | 35 |
36 |
37 |
45 | 38 | The ENGELSYSTEM is in maintenance mode. 39 |
40 |This may be due to...
41 |
42 | ...archangels closing the gates of heaven.
...somebody's stolen the power chord and now the battery is empty.
...DHCP decided to give me another ip address.
43 |
46 |
47 |
48 |
52 |
58 |
53 |
56 |
57 | ", $question['Question']), 33 | 'answer' => form(array( 34 | form_textarea('answer', '', ''), 35 | form_submit('submit', _("Save")) 36 | ), page_link_to('admin_questions') . '&action=answer&id=' . $question['QID']), 37 | 'actions' => button(page_link_to("admin_questions") . '&action=delete&id=' . $question['QID'], _("delete"), 'btn-xs') 38 | ); 39 | } 40 | 41 | $answered_questions_table = array(); 42 | $questions = Questions(); 43 | foreach ($questions as $question) { 44 | $user_source = User($question['UID']); 45 | if ($user_source === false) 46 | engelsystem_error("Unable to load user."); 47 | 48 | $answer_user_source = User($question['AID']); 49 | if ($answer_user_source === false) 50 | engelsystem_error("Unable to load user."); 51 | $answered_questions_table[] = array( 52 | 'from' => User_Nick_render($user_source), 53 | 'question' => str_replace("\n", "
", $question['Question']), 54 | 'answered_by' => User_Nick_render($answer_user_source), 55 | 'answer' => str_replace("\n", "
", $question['Answer']), 56 | 'actions' => button(page_link_to("admin_questions") . '&action=delete&id=' . $question['QID'], _("delete"), 'btn-xs') 57 | ); 58 | } 59 | 60 | return page_with_title(admin_questions_title(), array( 61 | '