PageRenderTime 48ms CodeModel.GetById 20ms RepoModel.GetById 0ms app.codeStats 0ms

/controllers/project.php

https://github.com/mbmccormick/issuebox
PHP | 215 lines | 174 code | 41 blank | 0 comment | 16 complexity | 0711f5af0061164ecf486d920359adb1 MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3.     function project_view()
    4. 

  4.     {
    5. 

  5.         Security_Authorize();
    6. 

  6.         
    7. 

  7.         $result = mysql_query("SELECT * FROM project WHERE id='" . params('id') . "'");
    8. 

  8.         $project = mysql_fetch_array($result);
    9. 

  9.         
    10. 

  10.         if ($project != null)
    11. 

  11.         {
    12. 

  12.             $result = mysql_query("SELECT * FROM issue WHERE projectid='$project[id]' ORDER BY isurgent DESC, number ASC");
    13. 

  13.             while($row = mysql_fetch_array($result))
    14. 

  14.             {
    15. 

  15.                 $sql = mysql_query("SELECT COUNT(*) AS rowcount FROM comment WHERE issueid='$row[id]'");
    16. 

  16.                 $return = mysql_fetch_array($sql);
    17. 

  17.                 $count = $return[rowcount];
    18. 

  18.                 
    19. 

  19.                 $sql = mysql_query("SELECT id, username FROM user WHERE id='$row[createdby]'");
    20. 

  20.                 $user = mysql_fetch_array($sql);
    21. 

  21.                 
    22. 

  22.                 if ($row[isclosed] == "0")
    23. 

  23.                     $body .= "<div class='list-item issue open'>\n";
    24. 

  24.                 else
    25. 

  25.                     $body .= "<div class='list-item issue closed' style='display: none;'>\n";
    26. 

  26.                 
    27. 

  27.                 $body .= "<table cellpadding='0' cellspacing='0' style='width: 100%;'>\n";
    28. 

  28.                 $body .= "<tr>\n";
    29. 

  29.                 $body .= "<td valign='middle'>\n";
    30. 

  30.                 $body .= "<h3>#$row[number]&nbsp;&nbsp;<a href='/issue/$row[id]'>" . FriendlyString($row[title], 62) . "</a></h3>";
    31. 

  31.                 $body .= "</td>\n";
    32. 

  32.                 $body .= "<td valign='middle' align='right'>\n";
    33. 

  33.                 if ($row[isurgent] == "1")
    34. 

  34.                     $body .= "<em class='urgent-indicator'>Urgent</em>";
    35. 

  35.                 if ($row[isclosed] == "1")
    36. 

  36.                     $body .= "<em class='closed-indicator'>Closed</em>";
    37. 

  37.                 $body .= "</td>\n";
    38. 

  38.                 $body .= "</tr>\n";
    39. 

  39.                 $body .= "</table>\n";
    40. 

  40.                 $body .= "<div id='issue$row[number]' class='wikiStyle truncate'>" . $row[body] . "</div>\n";
    41. 

  41.                 $body .= "<br />\n";
    42. 

  42.                 $body .= "<div class='options'>\n";
    43. 

  43.                 if ($count == 1)
    44. 

  44.                     $body .= "<a href='/issue/$row[id]'>$count comment</a>\n";
    45. 

  45.                 else
    46. 

  46.                     $body .= "<a href='/issue/$row[id]'>$count comments</a>\n";
    47. 

  47.                 $body .= "&nbsp;Created " . FriendlyDate(1, strtotime($row[createddate])) . " by <a href='/user/$user[id]'>$user[username]</a>";
    48. 

  48.                 $body .= "</div>\n";
    49. 

  49.                 
    50. 

  50.                 $body .= "</div>\n";
    51. 

  51.             }
    52. 

  52.             
    53. 

  53.             set("title", $project[name]);
    54. 

  54.             set("body", $body);
    55. 

  55.             set("project", $project);
    56. 

  56.             return html("project/view.php");
    57. 

  57.         }
    58. 

  58.         else
    59. 

  59.         {
    60. 

  60.             set("title", "Project Not Found");
    61. 

  61.             set("type", "project");
    62. 

  62.             return html("common/notfound.php");
    63. 

  63.         }
    64. 

  64.     }
    65. 

  65.     
    66. 

  66.     function project_list()
    67. 

  67.     {
    68. 

  68.         Security_Authorize();
    69. 

  69.     
    70. 

  70.         $result = mysql_query("SELECT * FROM project ORDER BY name ASC");
    71. 

  71.         while($row = mysql_fetch_array($result))
    72. 

  72.         {
    73. 

  73.             $sql = mysql_query("SELECT COUNT(*) AS rowcount FROM issue WHERE projectid='$row[id]' AND isclosed='0'");
    74. 

  74.             $return = mysql_fetch_array($sql);
    75. 

  75.             $open = $return['rowcount'];
    76. 

  76.             
    77. 

  77.             $sql = mysql_query("SELECT COUNT(*) AS rowcount FROM issue WHERE projectid='$row[id]' AND isclosed='1'");
    78. 

  78.             $return = mysql_fetch_array($sql);
    79. 

  79.             $closed = $return['rowcount'];
    80. 

  80.             
    81. 

  81.             $sql = mysql_query("SELECT COUNT(*) AS rowcount FROM issue WHERE projectid='$row[id]' AND isclosed='0' AND isurgent='1'");
    82. 

  82.             $return = mysql_fetch_array($sql);
    83. 

  83.             $urgent = $return['rowcount'];
    84. 

  84.                                 
    85. 

  85.             $body .= "<div class='list-item project'>\n";
    86. 

  86.             $body .= "<table cellpadding='0' cellspacing='0' style='width: 100%;'><tr>\n";
    87. 

  87.             
    88. 

  88.             $body .= "<td width='100%'>\n";
    89. 

  89.             $body .= "<h3><a href='/project/$row[id]'>" . FriendlyString($row['name'], 40) . "</a></h3><br />\n";
    90. 

  90.             $body .= "<p>" . FriendlyString($row['description'], 85) . "</p>\n";
    91. 

  91.             $body .= "</td>\n";
    92. 

  92.             
    93. 

  93.             $body .= "<td>\n";
    94. 

  94.             $body .= "<div class='counter'>\n";
    95. 

  95.             if ($urgent > 0)
    96. 

  96.                 $body .= "<big class='urgent'>$open</big>\n";
    97. 

  97.             else
    98. 

  98.                 $body .= "<big>$open</big>\n";
    99. 

  99.             $body .= "Open Issues\n";
    100. 

  100.             $body .= "</div>\n";
    101. 

  101.             $body .= "</td>\n";
    102. 

  102.             
    103. 

  103.             $body .= "<td>\n";
    104. 

  104.             $body .= "<div class='counter'>\n";
    105. 

  105.             $body .= "<big>$closed</big>\n";
    106. 

  106.             $body .= "Closed Issues\n";
    107. 

  107.             $body .= "</div>\n";
    108. 

  108.             $body .= "</td>\n";    
    109. 

  109.             
    110. 

  110.             $body .= "</tr></table>\n";
    111. 

  111.             $body .= "</div>\n";
    112. 

  112.         }
    113. 

  113.         
    114. 

  114.         if (mysql_num_rows($result) == 0)
    115. 

  115.         {
    116. 

  116.             $body .= "<div class='list-item project'>\n";
    117. 

  117.             $body .= "<p>There are currently no projects to display.</p>\n";
    118. 

  118.             $body .= "</div>\n";
    119. 

  119.         }
    120. 

  120.         
    121. 

  121.         set("title", "Projects");
    122. 

  122.         set("body", $body);
    123. 

  123.         return html("project/list.php");
    124. 

  124.     }
    125. 

  125.     
    126. 

  126.     function project_add()
    127. 

  127.     {
    128. 

  128.         Security_Authorize();
    129. 

  129.     
    130. 

  130.         set("title", "New Project");
    131. 

  131.         return html("project/add.php");
    132. 

  132.     }
    133. 

  133.     
    134. 

  134.     function project_add_post()
    135. 

  135.     {
    136. 

  136.         Security_Authorize();
    137. 

  137.         
    138. 

  138.         $now = date("Y-m-d H:i:s");
    139. 

  139.         $sql = "INSERT INTO project (name, description, createdby, createddate) VALUES
    140. 

  140.                 ('" . mysql_real_escape_string($_POST[name]) . "', '" . mysql_real_escape_string($_POST[description]) . "', '$_SESSION[CurrentUser_ID]', '" . $now . "')";
    141. 

  141.         if (!mysql_query($sql))
    142. 

  142.         {
    143. 

  143.             die('Error: ' . mysql_error());
    144. 

  144.         }
    145. 

  145.         
    146. 

  146.         $sql = mysql_query("SELECT * FROM project WHERE id='" . mysql_insert_id() . "'");
    147. 

  147.         $result = mysql_fetch_array($sql);
    148. 

  148.         
    149. 

  149.         LogActivity(1, $result[id], 1);
    150. 

  150.         
    151. 

  151.         header("Location: /&success=Your project was created successfully!");
    152. 

  152.         exit;
    153. 

  153.     }
    154. 

  154.     
    155. 

  155.     function project_edit()
    156. 

  156.     {
    157. 

  157.         Security_Authorize();
    158. 

  158.     
    159. 

  159.         $result = mysql_query("SELECT * FROM project WHERE id='" . params('id') . "'");
    160. 

  160.         $project = mysql_fetch_array($result);
    161. 

  161.         
    162. 

  162.         if ($project != null)
    163. 

  163.         {
    164. 

  164.             set("title", "Edit Project");
    165. 

  165.             set("project", $project);
    166. 

  166.             return html("project/edit.php");
    167. 

  167.         }
    168. 

  168.         else
    169. 

  169.         {
    170. 

  170.             set("title", "Project Not Found");
    171. 

  171.             set("type", "project");
    172. 

  172.             return html("common/notfound.php");
    173. 

  173.         }
    174. 

  174.     }
    175. 

  175.     
    176. 

  176.     function project_edit_post()
    177. 

  177.     {
    178. 

  178.         Security_Authorize();
    179. 

  179.         
    180. 

  180.         $now = date("Y-m-d H:i:s");
    181. 

  181.         
    182. 

  182.         $sql = "UPDATE project SET name='" . mysql_real_escape_string($_POST[name]) . "', description='" . mysql_real_escape_string($_POST[description]) . "' WHERE id='" . params('id') . "'";
    183. 

  183.         mysql_query($sql);
    184. 

  184.         
    185. 

  185.         LogActivity(1, params('id'), 2);
    186. 

  186.         
    187. 

  187.         header("Location: /project/" . params('id') . "&success=Your project was updated successfully!");
    188. 

  188.         exit;
    189. 

  189.     }
    190. 

  190.     
    191. 

  191.     function project_delete()
    192. 

  192.     {
    193. 

  193.         Security_Authorize();
    194. 

  194.     
    195. 

  195.         $sql = "DELETE FROM project WHERE id='" . params('id') . "'";    
    196. 

  196.         mysql_query($sql);
    197. 

  197.         
    198. 

  198.         $sql = "SELECT * FROM issue WHERE projectid='" . params('id') . "'";    
    199. 

  199.         $result = mysql_query($sql);
    200. 

  200.         while($row = mysql_fetch_array($result))
    201. 

  201.         {
    202. 

  202.             $sql = "DELETE FROM comment WHERE issueid='" . params('id') . "'";    
    203. 

  203.             mysql_query($sql);
    204. 

  204.         }
    205. 

  205.         
    206. 

  206.         $sql = "DELETE FROM issue WHERE projectid='" . params('id') . "'";    
    207. 

  207.         mysql_query($sql);
    208. 

  208. 

  209.         PurgeActivity(1, params('id'));
    210. 

  210.         
    211. 

  211.         header("Location: /&success=Your project was deleted successfully!");
    212. 

  212.         exit;
    213. 

  213.     }
    214. 

  214. 

  215. ?>
    216.