PageRenderTime 62ms CodeModel.GetById 27ms RepoModel.GetById 1ms app.codeStats 0ms

/calendar.php

https://bitbucket.org/ryanhowdy/family-connections
PHP | 1204 lines | 866 code | 158 blank | 180 comment | 88 complexity | 5af236c55617adaab25796ca1ea1fb9f MD5 | raw file
Possible License(s): Apache-2.0, GPL-2.0 
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * Calendar
    4. 

  4.  * 
    5. 

  5.  * PHP versions 4 and 5
    6. 

  6.  * 
    7. 

  7.  * @category  FCMS
    8. 

  8.  * @package   FamilyConnections
    9. 

  9.  * @author    Ryan Haudenschilt <r.haudenschilt@gmail.com> 
    10. 

  10.  * @copyright 2007 Haudenschilt LLC
    11. 

  11.  * @license   http://www.gnu.org/licenses/gpl-2.0.html GPLv2
    12. 

  12.  * @link      http://www.familycms.com/wiki/
    13. 

  13.  */
    14. 

  14. session_start();
    15. 

  15. 

  16. define('URL_PREFIX', '');
    17. 

  17. define('GALLERY_PREFIX', 'gallery/');
    18. 

  18. 

  19. require 'fcms.php';
    20. 

  20. 

  21. load('datetime', 'calendar');
    22. 

  22. 

  23. init();
    24. 

  24. 

  25. // Globals
    26. 

  26. $calendar = new Calendar($fcmsUser->id);
    27. 

  27. 

  28. $TMPL = array(
    29. 

  29.     'currentUserId' => $fcmsUser->id,
    30. 

  30.     'sitename'      => getSiteName(),
    31. 

  31.     'nav-link'      => getNavLinks(),
    32. 

  32.     'pagetitle'     => T_('Calendar'),
    33. 

  33.     'path'          => URL_PREFIX,
    34. 

  34.     'displayname'   => $fcmsUser->displayName,
    35. 

  35.     'version'       => getCurrentVersion(),
    36. 

  36.     'year'          => date('Y')
    37. 

  37. );
    38. 

  38. 

  39. control();
    40. 

  40. exit();
    41. 

  41. 

  42. 

  43. /**
    44. 

  44.  * control 
    45. 

  45.  * 
    46. 

  46.  * The controlling structure for this script.
    47. 

  47.  * 
    48. 

  48.  * @return void
    49. 

  49.  */
    50. 

  50. function control ()
    51. 

  51. {
    52. 

  52.     if (isset($_GET['export']))
    53. 

  53.     {
    54. 

  54.         displayExportSubmit();
    55. 

  55.     }
    56. 

  56.     elseif (isset($_GET['import']))
    57. 

  57.     {
    58. 

  58.         displayImportForm();
    59. 

  59.     }
    60. 

  60.     else if (isset($_POST['import']))
    61. 

  61.     {
    62. 

  62.         displayImportSubmit();
    63. 

  63.     }
    64. 

  64.     elseif (isset($_GET['invite']))
    65. 

  65.     {
    66. 

  66.         displayInvitationForm();
    67. 

  67.     }
    68. 

  68.     elseif (isset($_POST['submit-invite']))
    69. 

  69.     {
    70. 

  70.         displayInvitationSubmit();
    71. 

  71.     }
    72. 

  72.     elseif (isset($_GET['add']))
    73. 

  73.     {
    74. 

  74.         displayAddForm();
    75. 

  75.     }
    76. 

  76.     elseif (isset($_POST['add']))
    77. 

  77.     {
    78. 

  78.         displayAddSubmit();
    79. 

  79.     }
    80. 

  80.     elseif (isset($_GET['edit']))
    81. 

  81.     {
    82. 

  82.         displayEditForm();
    83. 

  83.     }
    84. 

  84.     elseif (isset($_POST['edit']))
    85. 

  85.     {
    86. 

  86.         displayEditSubmit();
    87. 

  87.     }
    88. 

  88.     elseif (isset($_GET['event']))
    89. 

  89.     {
    90. 

  90.         if (isset($_POST['attend_submit']))
    91. 

  91.         {
    92. 

  92.             displayAttendSubmit();
    93. 

  93.         }
    94. 

  94.         else
    95. 

  95.         {
    96. 

  96.             displayEvent();
    97. 

  97.         }
    98. 

  98.     }
    99. 

  99.     elseif (isset($_POST['delete']))
    100. 

  100.     {
    101. 

  101.         if (!isset($_POST['confirmed']))
    102. 

  102.         {
    103. 

  103.             displayDeleteConfirmationForm();
    104. 

  104.         }
    105. 

  105.         else
    106. 

  106.         {
    107. 

  107.             displayDeleteSubmit();
    108. 

  108.         }
    109. 

  109.     }
    110. 

  110.     elseif (isset($_GET['category']))
    111. 

  111.     {
    112. 

  112.         if (isset($_POST['delcat']))
    113. 

  113.         {
    114. 

  114.             displayDeleteCategorySubmit();
    115. 

  115.         }
    116. 

  116.         elseif ($_GET['category'] == 'add')
    117. 

  117.         {
    118. 

  118.             if (isset($_POST['addcat']))
    119. 

  119.             {
    120. 

  120.                 displayAddCategorySubmit();
    121. 

  121.             }
    122. 

  122.             else
    123. 

  123.             {
    124. 

  124.                 displayAddCategoryForm();
    125. 

  125.             }
    126. 

  126.         }
    127. 

  127.         elseif ($_GET['category'] == 'edit')
    128. 

  128.         {
    129. 

  129.             if (isset($_POST['editcat']))
    130. 

  130.             {
    131. 

  131.                 displayEditCategorySubmit();
    132. 

  132.             }
    133. 

  133.             else
    134. 

  134.             {
    135. 

  135.                 displayEditCategoryForm();
    136. 

  136.             }
    137. 

  137.         }
    138. 

  138.         else
    139. 

  139.         {
    140. 

  140.             displayCalendar();
    141. 

  141.         }
    142. 

  142.     }
    143. 

  143.     elseif (isset($_GET['view']))
    144. 

  144.     {
    145. 

  145.         displayCalendarDay();
    146. 

  146.     }
    147. 

  147.     else
    148. 

  148.     {
    149. 

  149.         displayCalendar();
    150. 

  150.     }
    151. 

  151. }
    152. 

  152. 

  153. /**
    154. 

  154.  * displayExportSubmit 
    155. 

  155.  * 
    156. 

  156.  * @return void
    157. 

  157.  */
    158. 

  158. function displayExportSubmit ()
    159. 

  159. {
    160. 

  160.     global $calendar;
    161. 

  161. 

  162.     $cal  = $calendar->exportCalendar();
    163. 

  163.     $date = fixDate('Y-m-d', $calendar->tzOffset);
    164. 

  164. 

  165.     header("Cache-control: private");
    166. 

  166.     header("Content-type: text/plain");
    167. 

  167.     header("Content-disposition: ics; filename=FCMS_Calendar_$date.ics; size=".strlen($cal));
    168. 

  168.     echo $cal;
    169. 

  169. }
    170. 

  170. 

  171. /**
    172. 

  172.  * displayHeader 
    173. 

  173.  * 
    174. 

  174.  * @return void
    175. 

  175.  */
    176. 

  176. function displayHeader ()
    177. 

  177. {
    178. 

  178.     global $TMPL, $fcmsUser;
    179. 

  179. 

  180.     $TMPL['javascript'] = '
    181. 

  181. <script type="text/javascript" src="ui/js/livevalidation.js"></script>
    182. 

  182. <link rel="stylesheet" type="text/css" href="ui/datechooser.css"/>
    183. 

  183. <script type="text/javascript" src="ui/js/datechooser.js"></script>
    184. 

  184. <script type="text/javascript">
    185. 

  185. //<![CDATA[
    186. 

  186. Event.observe(window, \'load\', function() {
    187. 

  187.     initChatBar(\''.T_('Chat').'\', \''.$TMPL['path'].'\');
    188. 

  188.     initHideAdd();
    189. 

  189.     initCalendarHighlight();
    190. 

  190.     initDisableTimes();
    191. 

  191.     initHideMoreDetails(\''.T_('Add More Details').'\');
    192. 

  192.     initCalendarClickRow();
    193. 

  193.     initAttendingEvent();
    194. 

  194.     initInviteAll();
    195. 

  195.     initInviteAttending();
    196. 

  196.     // Datpicker
    197. 

  197.     var objDatePicker = new DateChooser();
    198. 

  198.     objDatePicker.setUpdateField({\'sday\':\'j\', \'smonth\':\'n\', \'syear\':\'Y\'});
    199. 

  199.     objDatePicker.setIcon(\''.$TMPL['path'].'ui/themes/default/images/datepicker.jpg\', \'syear\');
    200. 

  200.     // Delete Confirmation
    201. 

  201.     if ($(\'delcal\')) {
    202. 

  202.         var item = $(\'delcal\');
    203. 

  203.         item.onclick = function() { return confirm(\''.T_('Are you sure you want to DELETE this?').'\'); };
    204. 

  204.         var hid = document.createElement(\'input\');
    205. 

  205.         hid.setAttribute(\'type\', \'hidden\');
    206. 

  206.         hid.setAttribute(\'name\', \'confirmed\');
    207. 

  207.         hid.setAttribute(\'value\', \'true\');
    208. 

  208.         item.insert({\'after\':hid});
    209. 

  209.     }
    210. 

  210.     return true;
    211. 

  211. });
    212. 

  212. //]]>
    213. 

  213. </script>';
    214. 

    215. 

  215.     include_once getTheme($fcmsUser->id).'header.php';
    216. 

  216. 

  217.     echo '
    218. 

  218.         <div id="calendar-section" class="centercontent">';
    219. 

  219. }
    220. 

  220. 

  221. /**
    222. 

  222.  * displayFooter 
    223. 

  223.  * 
    224. 

  224.  * @return void
    225. 

  225.  */
    226. 

  226. function displayFooter ()
    227. 

  227. {
    228. 

  228.     global $TMPL, $fcmsUser;
    229. 

  229. 

  230.     echo '
    231. 

  231.         </div><!-- /calendar-section -->';
    232. 

    233. 

  233.     include_once getTheme($fcmsUser->id).'footer.php';
    234. 

  234. }
    235. 

  235. 

  236. /**
    237. 

  237.  * displayAddForm 
    238. 

  238.  * 
    239. 

  239.  * @return void
    240. 

  240.  */
    241. 

  241. function displayAddForm ()
    242. 

  242. {
    243. 

  243.     global $fcmsUser, $calendar;
    244. 

  244. 

  245.     displayHeader();
    246. 

  246. 

  247.     if (checkAccess($fcmsUser->id) > 5)
    248. 

  248.     {
    249. 

  249.         $calendar->displayCalendarMonth();
    250. 

  250.         displayFooter();
    251. 

  251.         return;
    252. 

  252.     }
    253. 

  253. 

  254.     $date = strip_tags($_GET['add']);
    255. 

  255. 

  256.     $calendar->displayAddForm($date);
    257. 

  257.     displayFooter();
    258. 

  258. }
    259. 

  259. 

  260. /**
    261. 

  261.  * displayAddSubmit 
    262. 

  262.  * 
    263. 

  263.  * @return void
    264. 

  264.  */
    265. 

  265. function displayAddSubmit ()
    266. 

  266. {
    267. 

  267.     global $calendar, $fcmsUser;
    268. 

  268. 

  269.     $timeStart = "NULL";
    270. 

  270.     if (isset($_POST['timestart']) and !isset($_POST['all-day']))
    271. 

  271.     {
    272. 

  272.         $timeStart = "'".escape_string($_POST['timestart'])."'";
    273. 

  273.     }
    274. 

  274. 

  275.     $timeEnd = "NULL";
    276. 

  276.     if (isset($_POST['timeend']) and !isset($_POST['all-day']))
    277. 

  277.     {
    278. 

  278.         $timeEnd = "'".escape_string($_POST['timeend'])."'";
    279. 

  279.     }
    280. 

  280. 

  281.     $repeat = "NULL";
    282. 

  282.     if (isset($_POST['repeat-yearly']))
    283. 

  283.     {
    284. 

  284.         $repeat = "'yearly'";
    285. 

  285.     }
    286. 

  286. 

  287.     $private = 0;
    288. 

  288.     if (isset($_POST['private']))
    289. 

  289.     {
    290. 

  290.         $private = 1;
    291. 

  291.     }
    292. 

  292. 

  293.     $invite = 0;
    294. 

  294.     if (isset($_POST['invite']))
    295. 

  295.     {
    296. 

  296.         $invite = 1;
    297. 

  297.     }
    298. 

  298. 

  299.     // Can't make a yearly event also an invitation
    300. 

  300.     $notify_user_changed_event = 0;
    301. 

  301.     if ($repeat == "'yearly'" && $invite == 1)
    302. 

  302.     {
    303. 

  303.         // Let's turn off the invitation, submit the event and tell the user what we did
    304. 

  304.         $invite = 0;
    305. 

  305.         $notify_user_changed_event = 1;
    306. 

  306.     }
    307. 

  307. 

  308.     $sql = "INSERT INTO `fcms_calendar` (
    309. 

  309.                 `date`, `time_start`, `time_end`, `date_added`, `title`, `desc`, `created_by`, 
    310. 

  310.                 `category`, `repeat`, `private`, `invite`
    311. 

  311.             ) 
    312. 

  312.             VALUES (
    313. 

  313.                 '".escape_string($_POST['date'])."', 
    314. 

  314.                 $timeStart, 
    315. 

  315.                 $timeEnd, 
    316. 

  316.                 NOW(),
    317. 

  317.                 '".escape_string($_POST['title'])."', 
    318. 

  318.                 '".escape_string($_POST['desc'])."', 
    319. 

  319.                 '$fcmsUser->id', 
    320. 

  320.                 '".escape_string($_POST['category'])."', 
    321. 

  321.                 $repeat, 
    322. 

  322.                 '$private', 
    323. 

  323.                 '$invite'
    324. 

  324.             )";
    325. 

    326. 

  326.     if (!mysql_query($sql))
    327. 

  327.     {
    328. 

  328.         displayHeader();
    329. 

  329.         displaySqlError($sql, mysql_error());
    330. 

  330.         displayFooter();
    331. 

  331.         return;
    332. 

  332.     }
    333. 

  333. 

  334.     $id = mysql_insert_id();
    335. 

  335. 

  336.     // Display the invitation screen
    337. 

  337.     if ($invite == 1)
    338. 

  338.     {
    339. 

  339.         header("Location: calendar.php?invite=$id");
    340. 

  340.         return;
    341. 

  341.     }
    342. 

  342. 

  343.     // Finish adding, show the event
    344. 

  344.     displayHeader();
    345. 

  345. 

  346.     // Did the user try to make a yearly event also an invitation?
    347. 

  347.     if ($notify_user_changed_event == 1)
    348. 

  348.     {
    349. 

  349.         echo '
    350. 

  350.                 <div class="error-alert">
    351. 

  351.                     <h3>'.T_('You cannot invite guests to a repeating event.').'</h3>
    352. 

  352.                     <p>'.T_('Your event was created, but no invitations were sent.').'</p>
    353. 

  353.                     <p>'.T_('Please create a new non-repeating event and invite guests to that.').'</p>
    354. 

  354.                 </div>';
    355. 

  355.     }
    356. 

  356.     else
    357. 

  357.     {
    358. 

  358.         displayOkMessage();
    359. 

  359.     }
    360. 

  360. 

  361.     $calendar->displayEvent($id);
    362. 

  362.     displayFooter();
    363. 

  363. }
    364. 

  364. 

  365. /**
    366. 

  366.  * displayEditForm 
    367. 

  367.  * 
    368. 

  368.  * @return void
    369. 

  369.  */
    370. 

  370. function displayEditForm ()
    371. 

  371. {
    372. 

  372.     global $fcmsUser, $calendar;
    373. 

  373. 

  374.     displayHeader();
    375. 

  375. 

  376.     if (checkAccess($fcmsUser->id) > 5)
    377. 

  377.     {
    378. 

  378.         $calendar->displayCalendarMonth();
    379. 

  379.         displayFooter();
    380. 

  380.         return;
    381. 

  381.     }
    382. 

  382. 

  383.     $id = (int)$_GET['edit'];
    384. 

  384. 

  385.     $calendar->displayEditForm($id);
    386. 

  386. 

  387.     displayFooter();
    388. 

  388. }
    389. 

  389. 

  390. /**
    391. 

  391.  * displayEditSubmit 
    392. 

  392.  * 
    393. 

  393.  * @return void
    394. 

  394.  */
    395. 

  395. function displayEditSubmit ()
    396. 

  396. {
    397. 

  397.     global $calendar;
    398. 

  398. 

  399.     $id        = (int)$_POST['id'];
    400. 

  400.     $year      = (int)$_POST['syear'];
    401. 

  401.     $month     = (int)$_POST['smonth']; 
    402. 

  402.     $month     = str_pad($month, 2, "0", STR_PAD_LEFT);
    403. 

  403.     $day       = (int)$_POST['sday'];
    404. 

  404.     $day       = str_pad($day, 2, "0", STR_PAD_LEFT);
    405. 

  405.     $date      = "$year-$month-$day";
    406. 

  406.     $title     = strip_tags($_POST['title']);
    407. 

  407.     $title     = escape_string($title);
    408. 

  408.     $desc      = strip_tags($_POST['desc']);
    409. 

  409.     $desc      = escape_string($desc);
    410. 

  410.     $category  = strip_tags($_POST['category']);
    411. 

  411.     $category  = escape_string($category);
    412. 

  412.     $timeStart = "NULL";
    413. 

  413.     $timeEnd   = "NULL";
    414. 

  414.     $repeat    = "NULL";
    415. 

  415.     $private   = 0;
    416. 

  416.     $invite    = 0;
    417. 

  417. 

  418. 

  419.     if (isset($_POST['timestart']) and !isset($_POST['all-day']))
    420. 

  420.     {
    421. 

  421.         $timeStart = "'".escape_string($_POST['timestart'])."'";
    422. 

  422.     }
    423. 

  423.     if (isset($_POST['timeend']) and !isset($_POST['all-day']))
    424. 

  424.     {
    425. 

  425.         $timeEnd = "'".escape_string($_POST['timeend'])."'";
    426. 

  426.     }
    427. 

  427.     if (isset($_POST['repeat-yearly']))
    428. 

  428.     {
    429. 

  429.         $repeat = "'yearly'";
    430. 

  430.     }
    431. 

  431.     if (isset($_POST['private']))
    432. 

  432.     {
    433. 

  433.         $private = 1;
    434. 

  434.     }
    435. 

  435.     if (isset($_POST['invite']))
    436. 

  436.     {
    437. 

  437.         $invite = 1;
    438. 

  438.     }
    439. 

  439. 

  440.     // Can't make a yearly event also an invitation
    441. 

  441.     $notify_user_changed_event = 0;
    442. 

  442.     if ($repeat == "'yearly'" && $invite == 1)
    443. 

  443.     {
    444. 

  444.         // Let's turn off the invitation, submit the event and tell the user what we did
    445. 

  445.         $invite = 0;
    446. 

  446.         $notify_user_changed_event = 1;
    447. 

  447.     }
    448. 

  448. 

  449.     $sql = "UPDATE `fcms_calendar` 
    450. 

  450.             SET `date`      = '$date', 
    451. 

  451.                 `time_start`= $timeStart, 
    452. 

  452.                 `time_end`  = $timeEnd, 
    453. 

  453.                 `title`     = '$title', 
    454. 

  454.                 `desc`      = '$desc', 
    455. 

  455.                 `category`  = '$category', 
    456. 

  456.                 `repeat`    = $repeat, 
    457. 

  457.                 `private`   = '$private',
    458. 

  458.                 `invite`    = '$invite' 
    459. 

  459.             WHERE id = '$id'";
    460. 

    461. 

  461.     if (!mysql_query($sql))
    462. 

  462.     {
    463. 

  463.         displayHeader();
    464. 

  464.         displaySqlError($sql, mysql_error());
    465. 

  465.         displayFooter();
    466. 

  466.         return;
    467. 

  467.     }
    468. 

  468. 

  469.     // Display the invitation screen
    470. 

  470.     if ($invite == 1)
    471. 

  471.     {
    472. 

  472.         header("Location: calendar.php?invite=$id");
    473. 

  473.         return;
    474. 

  474.     }
    475. 

  475. 

  476.     displayHeader();
    477. 

  477. 

  478.     // Did the user try to make a yearly event also an invitation?
    479. 

  479.     if ($notify_user_changed_event == 1)
    480. 

  480.     {
    481. 

  481.         echo '
    482. 

  482.                 <div class="error-alert">
    483. 

  483.                     <h3>'.T_('You cannot invite guests to a repeating event.').'</h3>
    484. 

  484.                     <p>'.T_('The changes to this  event have been saved, but no invitations were sent.').'</p>
    485. 

  485.                     <p>'.T_('Please create a new non-repeating event and invite guests to that.').'</p>
    486. 

  486.                 </div>';
    487. 

  487.         $calendar->displayEvent($id);
    488. 

  488.     }
    489. 

  489.     else
    490. 

  490.     {
    491. 

  491.         displayOkMessage();
    492. 

  492.         $calendar->displayCalendarMonth();
    493. 

  493.     }
    494. 

  494. 

  495.     displayFooter();
    496. 

  496. }
    497. 

  497. 

  498. /**
    499. 

  499.  * displayEvent 
    500. 

  500.  * 
    501. 

  501.  * @return void
    502. 

  502.  */
    503. 

  503. function displayEvent ()
    504. 

  504. {
    505. 

  505.     global $fcmsUser, $calendar;
    506. 

  506. 

  507.     displayHeader();
    508. 

  508. 

  509.     if (checkAccess($fcmsUser->id) > 5)
    510. 

  510.     {
    511. 

  511.         $calendar->displayCalendarMonth();
    512. 

  512.         displayFooter();
    513. 

  513.         return;
    514. 

  514.     }
    515. 

  515. 

  516.     if (ctype_digit($_GET['event']))
    517. 

  517.     {
    518. 

  518.         $id = (int)$_GET['event'];
    519. 

  519.         $calendar->displayEvent($id);
    520. 

  520.     }
    521. 

  521.     elseif (strlen($_GET['event']) >= 8 && substr($_GET['event'], 0, 8) == 'birthday')
    522. 

  522.     {
    523. 

  523.         $id = substr($_GET['event'], 8);
    524. 

  524.         $id = (int)$id;
    525. 

  525.         $calendar->displayBirthdayEvent($id);
    526. 

  526.     }
    527. 

  527.     else
    528. 

  528.     {
    529. 

  529.         echo '<div class="info-alert"><h2>'.T_('I can\'t seem to find that calendar event.').'</h2>';
    530. 

  530.         echo '<p>'.T_('Please double check and try again.').'</p></div>';
    531. 

  531.     }
    532. 

  532. 

  533.     displayFooter();
    534. 

  534. }
    535. 

  535. 

  536. /**
    537. 

  537.  * displayImportForm 
    538. 

  538.  * 
    539. 

  539.  * @return void
    540. 

  540.  */
    541. 

  541. function displayImportForm ()
    542. 

  542. {
    543. 

  543.     global $calendar;
    544. 

  544. 

  545.     displayHeader();
    546. 

  546.     $calendar->displayImportForm();
    547. 

  547.     displayFooter();
    548. 

  548. }
    549. 

  549. 

  550. /**
    551. 

  551.  * displayImportSubmit 
    552. 

  552.  * 
    553. 

  553.  * @return void
    554. 

  554.  */
    555. 

  555. function displayImportSubmit ()
    556. 

  556. {
    557. 

  557.     global $calendar;
    558. 

  558. 

  559.     displayHeader();
    560. 

  560. 

  561.     $file_name = $_FILES["file"]["tmp_name"];
    562. 

  562. 

  563.     if ($calendar->importCalendar($file_name))
    564. 

  564.     {
    565. 

  565.         displayOkMessage();
    566. 

  566.         $calendar->displayCalendarMonth();
    567. 

  567.     }
    568. 

  568. 

  569.     displayFooter();
    570. 

  570. }
    571. 

  571. 

  572. /**
    573. 

  573.  * displayDeleteConfirmationForm 
    574. 

  574.  * 
    575. 

  575.  * @return void
    576. 

  576.  */
    577. 

  577. function displayDeleteConfirmationForm ()
    578. 

  578. {
    579. 

  579.     displayHeader();
    580. 

  580. 

  581.     echo '
    582. 

  582.             <div class="info-alert">
    583. 

  583.                 <form action="calendar.php" method="post">
    584. 

  584.                     <h2>'.T_('Are you sure you want to DELETE this?').'</h2>
    585. 

  585.                     <p><b><i>'.T_('This can NOT be undone.').'</i></b></p>
    586. 

  586.                     <div>
    587. 

  587.                         <input type="hidden" name="id" value="'.(int)$_POST['id'].'"/>
    588. 

  588.                         <input type="hidden" name="confirmed" value="1"/>
    589. 

  589.                         <input style="float:left;" type="submit" id="delconfirm" name="delete" value="'.T_('Yes').'"/>
    590. 

  590.                         <a style="float:right;" href="calendar.php">'.T_('Cancel').'</a>
    591. 

  591.                     </div>
    592. 

  592.                 </form>
    593. 

  593.             </div>';
    594. 

    595. 

  595.     displayFooter();
    596. 

  596. }
    597. 

  597. 

  598. /**
    599. 

  599.  * displayDeleteSubmit 
    600. 

  600.  * 
    601. 

  601.  * @return void
    602. 

  602.  */
    603. 

  603. function displayDeleteSubmit ()
    604. 

  604. {
    605. 

  605.     global $calendar;
    606. 

  606. 

  607.     displayHeader();
    608. 

  608. 

  609.     $sql = "DELETE FROM `fcms_calendar` 
    610. 

  610.             WHERE id = '".(int)$_POST['id']."'";
    611. 

  611.     if (!mysql_query($sql))
    612. 

  612.     {
    613. 

  613.         displaySqlError($sql, mysql_error());
    614. 

  614.         displayFooter();
    615. 

  615.         return;
    616. 

  616.     }
    617. 

  617. 

  618.     displayOkMessage(T_('Calendar Entry Deleted Successfully.'));
    619. 

  619.     $calendar->displayCalendarMonth();
    620. 

  620.     displayFooter();
    621. 

  621. }
    622. 

  622. 

  623. /**
    624. 

  624.  * displayAddCategoryForm 
    625. 

  625.  * 
    626. 

  626.  * @return void
    627. 

  627.  */
    628. 

  628. function displayAddCategoryForm ()
    629. 

  629. {
    630. 

  630.     global $calendar;
    631. 

  631. 

  632.     displayHeader();
    633. 

  633.     $calendar->displayCategoryForm();
    634. 

  634.     displayFooter();
    635. 

  635. }
    636. 

  636. 

  637. /**
    638. 

  638.  * displayAddCategorySubmit 
    639. 

  639.  * 
    640. 

  640.  * @return void
    641. 

  641.  */
    642. 

  642. function displayAddCategorySubmit ()
    643. 

  643. {
    644. 

  644.     global $calendar, $fcmsUser;
    645. 

  645. 

  646.     displayHeader();
    647. 

  647. 

  648.     $name   = strip_tags($_POST['name']);
    649. 

  649.     $name   = escape_string($name);
    650. 

  650.     $colors = 'none';
    651. 

  651. 

  652.     if (isset($_POST['colors']))
    653. 

  653.     {
    654. 

  654.         $colors = escape_string($_POST['colors']);
    655. 

  655.     }
    656. 

  656. 

  657.     $sql = "INSERT INTO `fcms_category` (`name`, `type`, `user`, `date`, `color`)
    658. 

  658.             VALUES (
    659. 

  659.                 '$name', 
    660. 

  660.                 'calendar',
    661. 

  661.                 '$fcmsUser->id', 
    662. 

  662.                 NOW(),
    663. 

  663.                 '$colors'
    664. 

  664.             )";
    665. 

    666. 

  666.     if (!mysql_query($sql))
    667. 

  667.     {
    668. 

  668.         displaySqlError($sql, mysql_error());
    669. 

  669.         displayFooter();
    670. 

  670.         return;
    671. 

  671.     }
    672. 

  672. 

  673.     displayOkMessage();
    674. 

  674.     $calendar->displayCalendarMonth();
    675. 

  675.     displayFooter();
    676. 

  676. }
    677. 

  677. 

  678. /**
    679. 

  679.  * displayEditCategorySubmit 
    680. 

  680.  * 
    681. 

  681.  * @return void
    682. 

  682.  */
    683. 

  683. function displayEditCategorySubmit ()
    684. 

  684. {
    685. 

  685.     global $calendar;
    686. 

  686. 

  687.     displayHeader();
    688. 

  688. 

  689.     $id     = (int)$_POST['id'];
    690. 

  690.     $name   = strip_tags($_POST['name']);
    691. 

  691.     $name   = escape_string($name);
    692. 

  692.     $colors = strip_tags($_POST['colors']);
    693. 

  693.     $colors = escape_string($colors);
    694. 

  694. 

  695.     $sql = "UPDATE `fcms_category`
    696. 

  696.             SET
    697. 

  697.                 `name`  = '$name',
    698. 

  698.                 `color` = '$colors'
    699. 

  699.             WHERE `id`  = '$id'";
    700. 

    701. 

  701.     if (!mysql_query($sql))
    702. 

  702.     {
    703. 

  703.         displaySqlError($sql, mysql_error());
    704. 

  704.         displayFooter();
    705. 

  705.         return;
    706. 

  706.     }
    707. 

  707. 

  708.     displayOkMessage();
    709. 

  709.     $calendar->displayCalendarMonth();
    710. 

  710.     displayFooter();
    711. 

  711. }
    712. 

  712. 

  713. /**
    714. 

  714.  * displayEditCategoryForm 
    715. 

  715.  * 
    716. 

  716.  * @return void
    717. 

  717.  */
    718. 

  718. function displayEditCategoryForm ()
    719. 

  719. {
    720. 

  720.     global $calendar;
    721. 

  721. 

  722.     displayHeader();
    723. 

  723. 

  724.     $id = (int)$_GET['id'];
    725. 

  725. 

  726.     $calendar->displayCategoryForm($id);
    727. 

  727.     displayFooter();
    728. 

  728. }
    729. 

  729. 

  730. /**
    731. 

  731.  * displayDeleteCategorySubmit 
    732. 

  732.  * 
    733. 

  733.  * @return void
    734. 

  734.  */
    735. 

  735. function displayDeleteCategorySubmit ()
    736. 

  736. {
    737. 

  737.     global $calendar;
    738. 

  738. 

  739.     displayHeader();
    740. 

  740. 

  741.     $sql = "DELETE FROM `fcms_category` 
    742. 

  742.             WHERE `id` = '".(int)$_POST['id']."'";
    743. 

    744. 

  744.     if (!mysql_query($sql))
    745. 

  745.     {
    746. 

  746.         displaySqlError($sql, mysql_error());
    747. 

  747.         displayFooter();
    748. 

  748.         return;
    749. 

  749.     }
    750. 

  750. 

  751.     displayOkMessage();
    752. 

  752.     $calendar->displayCalendarMonth();
    753. 

  753.     displayFooter();
    754. 

  754. }
    755. 

  755. 

  756. /**
    757. 

  757.  * displayCalendarDay 
    758. 

  758.  * 
    759. 

  759.  * @return void
    760. 

  760.  */
    761. 

  761. function displayCalendarDay ()
    762. 

  762. {
    763. 

  763.     global $calendar;
    764. 

  764. 

  765.     displayHeader();
    766. 

  766. 

  767.     $year  = (int)$_GET['year'];
    768. 

  768.     $month = (int)$_GET['month']; 
    769. 

  769.     $month = str_pad($month, 2, "0", STR_PAD_LEFT);
    770. 

  770.     $day   = (int)$_GET['day'];
    771. 

  771.     $day   = str_pad($day, 2, "0", STR_PAD_LEFT);
    772. 

  772. 

  773.     $calendar->displayCalendarDay($month, $year, $day);
    774. 

  774.     displayFooter();
    775. 

  775. }
    776. 

  776. 

  777. /**
    778. 

  778.  * displayCalendar 
    779. 

  779.  * 
    780. 

  780.  * @return void
    781. 

  781.  */
    782. 

  782. function displayCalendar ()
    783. 

  783. {
    784. 

  784.     global $calendar;
    785. 

  785. 

  786.     displayHeader();
    787. 

  787. 

  788.     // Use the supplied date, if available
    789. 

  789.     if (isset($_GET['year']) && isset($_GET['month']) && isset($_GET['day']))
    790. 

  790.     {
    791. 

  791.         $year  = (int)$_GET['year'];
    792. 

  792.         $month = (int)$_GET['month']; 
    793. 

  793.         $month = str_pad($month, 2, "0", STR_PAD_LEFT);
    794. 

  794.         $day   = (int)$_GET['day'];
    795. 

  795.         $day   = str_pad($day, 2, "0", STR_PAD_LEFT);
    796. 

  796. 

  797.         $calendar->displayCalendarMonth($month, $year, $day);
    798. 

  798.     }
    799. 

  799.     // use today's date
    800. 

  800.     else
    801. 

  801.     {
    802. 

  802.         $calendar->displayCalendarMonth();
    803. 

  803.     }
    804. 

  804. 

  805.     displayFooter();
    806. 

  806. }
    807. 

  807. 

  808. /**
    809. 

  809.  * displayInvitationForm 
    810. 

  810.  * 
    811. 

  811.  * Used for both creating and editing an invitation.
    812. 

  812.  * 
    813. 

  813.  * @param int $calendarId The calendar entry id
    814. 

  814.  * @param int $errors     Any errors from previous form
    815. 

  815.  * 
    816. 

  816.  * @return void
    817. 

  817.  */
    818. 

  818. function displayInvitationForm ($calendarId = 0, $errors = 0)
    819. 

  819. {
    820. 

  820.     global $fcmsUser;
    821. 

  821. 

  822.     displayHeader();
    823. 

  823. 

  824.     $calendarId = (int)$calendarId;
    825. 

  825. 

  826.     if (isset($_GET['invite']))
    827. 

  827.     {
    828. 

  828.         $calendarId = (int)$_GET['invite'];
    829. 

  829.     }
    830. 

  830. 

  831.     if ($calendarId == 0)
    832. 

  832.     {
    833. 

  833.         echo '<p class="error-alert">'.T_('Invalid ID.').'</p>';
    834. 

  834.         displayFooter();
    835. 

  835.         return;
    836. 

  836.     }
    837. 

  837. 

  838.     // Get calendar invite options
    839. 

  839.     $sql = "SELECT `id`, `date`, `time_start`, `time_end`, `date_added`, 
    840. 

  840.                 `title`, `desc`, `created_by`, `category`, `repeat`, `private`
    841. 

  841.             FROM `fcms_calendar` 
    842. 

  842.             WHERE `id` = '$calendarId' 
    843. 

  843.             LIMIT 1";
    844. 

    845. 

  845.     $result = mysql_query($sql);
    846. 

  846.     if (!$result)
    847. 

  847.     {
    848. 

  848.         displaySqlError($sql, mysql_error());
    849. 

  849.         displayFooter();
    850. 

  850.         return;
    851. 

  851.     }
    852. 

  852.     $event = mysql_fetch_array($result);
    853. 

  853. 

  854.     // only creator, or admin can edit this invitation
    855. 

  855.     if ($event['created_by'] != $fcmsUser->id && getAccessLevel($fcmsUser->id) > 1)
    856. 

  856.     {
    857. 

  857.         echo '<p class="error-alert">'.T_('You do not have permission to perform this task.').'</p>';
    858. 

  858.         displayFooter();
    859. 

  859.         return;
    860. 

  860.     }
    861. 

  861. 

  862.     // Get members
    863. 

  863.     $sql = "SELECT `id`, `email` 
    864. 

  864.             FROM `fcms_users` 
    865. 

  865.             WHERE `activated` > 0
    866. 

  866.             AND `password` != 'NONMEMBER'";
    867. 

    868. 

  868.     $result = mysql_query($sql);
    869. 

  869.     if (!$result)
    870. 

  870.     {
    871. 

  871.         displaySqlError($sql, mysql_error());
    872. 

  872.         displayFooter();
    873. 

  873.         return;
    874. 

  874.     }
    875. 

  875.     while ($r = mysql_fetch_array($result))
    876. 

  876.     {
    877. 

  877.         $members[$r['id']] = array(
    878. 

  878.             'name'  => getUserDisplayName($r['id'], 2),
    879. 

  879.             'email' => $r['email']
    880. 

  880.         );
    881. 

  881.     }
    882. 

  882.     asort($members);
    883. 

  883. 

  884.     $rows = '';
    885. 

  885.     foreach ($members as $id => $arr)
    886. 

  886.     {
    887. 

  887.         if ($id == $fcmsUser->id)
    888. 

  888.         {
    889. 

  889.             continue;
    890. 

  890.         }
    891. 

  891. 

  892.         $rows .= '<tr>';
    893. 

  893.         $rows .= '<td class="chk"><input type="checkbox" id="member'.(int)$id.'" name="member[]" value="'.(int)$id.'"/></td>';
    894. 

  894.         $rows .= '<td>'.cleanOutput($members[$id]['name']).'</td>';
    895. 

  895.         $rows .= '<td>'.cleanOutput($members[$id]['email']);
    896. 

  896.         $rows .= '<input type="hidden" name="id'.(int)$id.'" value="'.cleanOutput($members[$id]['email']).'"/></td></tr>';
    897. 

  897.     }
    898. 

  898. 

  899.     // Display the form
    900. 

  900.     echo '
    901. 

  901.             <form id="invite-form" method="post" action="calendar.php?event='.$calendarId.'">
    902. 

  902.                 <fieldset>
    903. 

  903.                     <legend><span>'.T_('Choose Guests').'</span></legend>
    904. 

  904.                     <h3>'.T_('Invite Members').'</h3>
    905. 

  905.                     <p>
    906. 

  906.                         <input type="checkbox" id="all-members" name="all-members" value="yes"/>
    907. 

  907.                         <label for="all-members">'.T_('Invite all Members?').'</label>
    908. 

  908.                     </p>
    909. 

  909.                     <div id="invite-members-list">
    910. 

  910.                         <table id="invite-table" cellspacing="0" cellpadding="0">
    911. 

  911.                             <thead>
    912. 

  912.                                 <tr>
    913. 

  913.                                     <th class="chk"></td> 
    914. 

  914.                                     <th>'.T_('Name').'</td> 
    915. 

  915.                                     <th>'.T_('Email').'</td> 
    916. 

  916.                                 </tr>
    917. 

  917.                             </thead>
    918. 

  918.                             <tbody>
    919. 

  919.                                 '.$rows.'
    920. 

  920.                             </tbody>
    921. 

  921.                         </table>
    922. 

  922.                     </div>
    923. 

  923.                     <h3>'.T_('Invite Non Members').'</h3>
    924. 

  924.                     <span>'.T_('Enter list of emails to invite. One email per line.').'</span>
    925. 

  925.                     <textarea name="non-member-emails" id="non-member-emails" rows="10" cols="63"></textarea>
    926. 

  926.                     <p style="clear:both">
    927. 

  927.                         <input type="hidden" name="calendar" value="'.$calendarId.'"/>
    928. 

  928.                         <input class="sub1" type="submit" id="submit-invite" name="submit-invite" value="'.T_('Send Invitations').'"/> 
    929. 

  929.                         '.T_('or').'&nbsp;
    930. 

  930.                         <a href="calendar.php">'.T_('Cancel').'</a>
    931. 

  931.                     </p>
    932. 

  932.                 </fieldset>
    933. 

  933.             </form>';
    934. 

    935. 

  935.     displayFooter();
    936. 

  936. }
    937. 

  937. 

  938. /**
    939. 

  939.  * displayInvitationSubmit 
    940. 

  940.  * 
    941. 

  941.  * @return void
    942. 

  942.  */
    943. 

  943. function displayInvitationSubmit ()
    944. 

  944. {
    945. 

  945.     global $fcmsUser, $calendar;
    946. 

  946. 

  947.     displayHeader();
    948. 

  948. 

  949.     $calendarId = (int)$_POST['calendar'];
    950. 

  950. 

  951.     // make sure the user submitted atleast one email address
    952. 

  952.     if (!isset($_POST['all-members']) && !isset($_POST['email']) && !isset($_POST['non-member-emails']))
    953. 

  953.     {
    954. 

  954.         $error = T_('You must invite at least one guest.');
    955. 

  955.         displayInvitationForm($calendarId, $error);
    956. 

  956.         return;
    957. 

  957.     }
    958. 

  958. 

  959.     // Get any invitations already sent for this event
    960. 

  960.     $invitations = getInvitations($calendarId, true);
    961. 

  961.     if ($invitations === false)
    962. 

  962.     {
    963. 

  963.         displayFooter();
    964. 

  964.         return;
    965. 

  965.     }
    966. 

  966. 

  967.     if (!isset($invitations['_current_user']))
    968. 

  968.     {
    969. 

  969.         // add the current user (host) to the invite as attending
    970. 

  970.         $sql = "INSERT INTO `fcms_invitation` (`event_id`, `user`, `created`, `updated`, `attending`)
    971. 

  971.                 VALUES ('$calendarId', '$fcmsUser->id', NOW(), NOW(), 1)";
    972. 

  972.         if (!mysql_query($sql))
    973. 

  973.         {
    974. 

  974.             displaySqlError($sql, mysql_error());
    975. 

  975.             displayFooter();
    976. 

  976.             return;
    977. 

  977.         }
    978. 

  978.     }
    979. 

  979. 

  980.     // Get the calendar event title
    981. 

  981.     $sql = "SELECT `title` FROM `fcms_calendar` WHERE `id` = '$calendarId'";
    982. 

  982. 

  983.     $result = mysql_query($sql);
    984. 

  984.     if (!$result)
    985. 

  985.     {
    986. 

  986.         displaySqlError($sql, mysql_error());
    987. 

  987.         displayFooter();
    988. 

  988.         return;
    989. 

  989.     }
    990. 

  990. 

  991.     $r     = mysql_fetch_array($result);
    992. 

  992.     $title = $r['title'];
    993. 

  993. 

  994.     $invitees   = array();
    995. 

  995.     $nonMembers = array();
    996. 

  996.     $members    = array();
    997. 

  997. 

  998.     // get emails from textarea
    999. 

  999.     if (isset($_POST['non-member-emails']))
    1000. 

  1000.     {
    1001. 

  1001.         $nonMembers = explode("\n", $_POST['non-member-emails']);
    1002. 

  1002.     }
    1003. 

  1003. 

  1004.     // get any members that have been invited
    1005. 

  1005.     if (isset($_POST['all-members']))
    1006. 

  1006.     {
    1007. 

  1007.         $sql = "SELECT `id`, `email` 
    1008. 

  1008.                 FROM `fcms_users` 
    1009. 

  1009.                 WHERE `activated` > 0
    1010. 

  1010.                 AND `password` != 'NONMEMBER'
    1011. 

  1011.                 AND `id` != $fcmsUser->id";
    1012. 

    1013. 

  1013.         $result = mysql_query($sql);
    1014. 

  1014.         if (!$result)
    1015. 

  1015.         {
    1016. 

  1016.             displaySqlError($sql, mysql_error());
    1017. 

  1017.             displayFooter();
    1018. 

  1018.             return;
    1019. 

  1019.         }
    1020. 

  1020.         while ($r = mysql_fetch_array($result))
    1021. 

  1021.         {
    1022. 

  1022.             array_push($members, array('id' => $r['id'], 'email' => $r['email']));
    1023. 

  1023.         }
    1024. 

  1024.     }
    1025. 

  1025.     elseif (isset($_POST['member']))
    1026. 

  1026.     {
    1027. 

  1027.         foreach ($_POST['member'] as $id)
    1028. 

  1028.         {
    1029. 

  1029.             array_push($members, array('id' => $id, 'email' => $_POST["id$id"]));
    1030. 

  1030.         }
    1031. 

  1031.     }
    1032. 

  1032. 

  1033.     // merge all emails into one big list
    1034. 

  1034.     $invitees = array_merge($nonMembers, $members);
    1035. 

  1035. 

  1036.     // Create the invite and send the emails to each invitee
    1037. 

  1037.     foreach ($invitees as $invitee)
    1038. 

  1038.     {
    1039. 

  1039.         if (empty($invitee))
    1040. 

  1040.         {
    1041. 

  1041.             continue;
    1042. 

  1042.         }
    1043. 

  1043. 

  1044.         // create a code for this user
    1045. 

  1045.         $code = uniqid('');
    1046. 

  1046. 

  1047.         $user     = 0;
    1048. 

  1048.         $email    = '';
    1049. 

  1049.         $toEmail  = '';
    1050. 

  1050.         $toName   = '';
    1051. 

  1051.         $fromName = getUserDisplayName($fcmsUser->id);
    1052. 

  1052.         $url      = getDomainAndDir();
    1053. 

  1053. 

  1054.         // member
    1055. 

  1055.         if (is_array($invitee))
    1056. 

  1056.         {
    1057. 

  1057.             $user    = (int)$invitee['id'];
    1058. 

  1058.             $toEmail = rtrim($invitee['email']);
    1059. 

  1059.             $toName  = getUserDisplayName($user);
    1060. 

  1060.             $email   = "NULL";
    1061. 

  1061.             $url    .= 'calendar.php?event='.$calendarId;
    1062. 

  1062.         }
    1063. 

  1063.         // non member
    1064. 

  1064.         else
    1065. 

  1065.         {
    1066. 

  1066.             $user    = 0;
    1067. 

  1067.             $toEmail = rtrim($invitee);
    1068. 

  1068.             $toName  = $toEmail;
    1069. 

  1069.             $email   = escape_string($toEmail);
    1070. 

  1070.             $email   = "'$email'";
    1071. 

  1071.             $url    .= 'invitation.php?event='.$calendarId.'&code='.$code;
    1072. 

  1072.         }
    1073. 

  1073. 

  1074.         // Skip email address that have already been invited
    1075. 

  1075.         if (isset($invitations[$toEmail]))
    1076. 

  1076.         {
    1077. 

  1077.             continue;
    1078. 

  1078.         }
    1079. 

  1079. 

  1080.         // add an invitation to db
    1081. 

  1081.         $sql = "INSERT INTO `fcms_invitation` (`event_id`, `user`, `email`, `created`, `updated`, `code`)
    1082. 

  1082.                 VALUES ('$calendarId', '$user', $email, NOW(), NOW(), '$code')";
    1083. 

    1084. 

  1084.         if (!mysql_query($sql))
    1085. 

  1085.         {
    1086. 

  1086.             displaySqlError($sql, mysql_error());
    1087. 

  1087.             displayFooter();
    1088. 

  1088.             return;
    1089. 

  1089.         }
    1090. 

  1090. 

  1091.         // Send email invitation
    1092. 

  1092.         $subject = sprintf(T_pgettext('%s is the title of an event', 'Invitation: %s'), $title);
    1093. 

  1093. 

  1094.         $msg = sprintf(T_pgettext('%s is the name of a person, like Dear Bob,', 'Dear %s,'), $toName).'
    1095. 

    1096. 

  1096. '.sprintf(T_pgettext('The first %s is the name of a person, the second is the title of an event', '%s has invited you to %s.'), $fromName, $title).'
    1097. 

  1097. 

  1098. '.T_('Please visit the link below to view the rest of this invitation.').'
    1099. 

  1099. 

  1100. '.$url.'
    1101. 

  1101. 

  1102. ----
    1103. 

  1103. '.T_('This is an automated response, please do not reply.').'
    1104. 

  1104. 

  1105. ';
    1106. 

  1106.         $email_headers = getEmailHeaders();
    1107. 

  1107.         mail($toEmail, $subject, $msg, $email_headers);
    1108. 

  1108.     }
    1109. 

  1109. 

  1110.     displayOkMessage();
    1111. 

  1111.     $calendar->displayEvent($calendarId);
    1112. 

  1112.     displayFooter();
    1113. 

  1113. }
    1114. 

  1114. 

  1115. /**
    1116. 

  1116.  * displayAttendSubmit 
    1117. 

  1117.  * 
    1118. 

  1118.  * When a user submits the form telling whether they will be
    1119. 

  1119.  * attending an event or not.
    1120. 

  1120.  * 
    1121. 

  1121.  * @return void
    1122. 

  1122.  */
    1123. 

  1123. function displayAttendSubmit ()
    1124. 

  1124. {
    1125. 

  1125.     global $fcmsUser, $calendar;
    1126. 

  1126. 

  1127.     displayHeader();
    1128. 

  1128. 

  1129.     $calendarId = (int)$_GET['event'];
    1130. 

  1130.     $id         = (int)$_POST['id'];
    1131. 

  1131.     $attending  = isset($_POST['attending']) ? (int)$_POST['attending'] : "NULL";
    1132. 

  1132.     $response   = escape_string($_POST['response']);
    1133. 

  1133. 

  1134.     $sql = "UPDATE `fcms_invitation`
    1135. 

  1135.             SET `response` = '$response',
    1136. 

  1136.                 `attending` = $attending,
    1137. 

  1137.                 `updated` = NOW()
    1138. 

  1138.             WHERE `id` = '$id'";
    1139. 

  1139.     if (!mysql_query($sql))
    1140. 

  1140.     {
    1141. 

  1141.         displaySqlError($sql, mysql_error());
    1142. 

  1142.         displayFooter();
    1143. 

  1143.         exit();
    1144. 

  1144.     }
    1145. 

  1145. 

  1146.     $calendar->displayEvent($calendarId);
    1147. 

  1147.     displayFooter();
    1148. 

  1148. }
    1149. 

  1149. 

  1150. /**
    1151. 

  1151.  * getInvitations 
    1152. 

  1152.  * 
    1153. 

  1153.  * Returns an array of invitations that have been sent for this event.
    1154. 

  1154.  * Including whether or not the invitee has responded.
    1155. 

  1155.  * 
    1156. 

  1156.  * Will also add a key of _current_user if the current user is included.
    1157. 

  1157.  * 
    1158. 

  1158.  * @param int     $eventId    The calendar event id
    1159. 

  1159.  * @param boolean $keyByEmail Whether or not to key the array by email or 0,1,2 etc.
    1160. 

  1160.  * 
    1161. 

  1161.  * @return array
    1162. 

  1162.  */
    1163. 

  1163. function getInvitations ($eventId, $keyByEmail = false)
    1164. 

  1164. {
    1165. 

  1165.     global $fcmsUser;
    1166. 

  1166. 

  1167.     $sql = "SELECT i.`id`, i.`user`, i.`email`, i.`attending`, i.`response`, i.`updated`,
    1168. 

  1168.                 u.`email` AS user_email
    1169. 

  1169.             FROM `fcms_invitation` AS i
    1170. 

  1170.             LEFT JOIN `fcms_users` AS u
    1171. 

  1171.             ON i.`user` = u.`id`
    1172. 

  1172.             WHERE `event_id` = '$eventId'
    1173. 

  1173.             ORDER BY `updated` DESC";
    1174. 

    1175. 

  1175.     $result = mysql_query($sql);
    1176. 

  1176.     if (!$result)
    1177. 

  1177.     {
    1178. 

  1178.         displaySqlError($sql, mysql_error());
    1179. 

  1179.         return false;
    1180. 

  1180.     }
    1181. 

  1181. 

  1182.     $data = array();
    1183. 

  1183. 

  1184.     while ($r = mysql_fetch_assoc($result))
    1185. 

  1185.     {
    1186. 

  1186.         if ($fcmsUser->id == $r['user'])
    1187. 

  1187.         {
    1188. 

  1188.             $data['_current_user'] = $r;
    1189. 

  1189.         }
    1190. 

  1190. 

  1191.         if ($keyByEmail)
    1192. 

  1192.         {
    1193. 

  1193.             $email = isset($r['email']) ? $r['email'] : $r['user_email'];
    1194. 

  1194. 

  1195.             $data[$email] = $r;
    1196. 

  1196.         }
    1197. 

  1197.         else
    1198. 

  1198.         {
    1199. 

  1199.             $data[] = $r;
    1200. 

  1200.         }
    1201. 

  1201.     }
    1202. 

  1202. 

  1203.     return $data;
    1204. 

  1204. }
    1205. 

  1205.