PageRenderTime 57ms CodeModel.GetById 29ms RepoModel.GetById 0ms app.codeStats 0ms

/editor/view-form.php

https://bitbucket.org/3tierlogic/3tl.tabbuilder
PHP | 272 lines | 187 code | 62 blank | 23 comment | 31 complexity | bbdddacac06464aebf41879c504fb9c4 MD5 | raw file
    

  1. <?php

    2. 

  2. 

    3. 

  3. 	// this file is responsible for displaying "contest form" on facebook

    4. 

  4. 

    5. 

  5. 	//facebook application

    6. 

  6. 	//@author: Muhammad Nouman

    7. 

  7. 

    8. 

  8. 	header('P3P: CP="CAO PSA OUR"');  // this is IE session issue fix

    9. 

  9. 

    10. 

  10. 	// includes

    11. 

  11. 	require_once('config.php');

    12. 

  12. 	require_once('functions.php');

    13. 

  13. 

    14. 

  14. 	session_start();

    15. 

  15. 

    16. 

  16. 	$appId = $_SESSION['appId'];

    17. 

  17. 	$secret = $_SESSION['appSecret'];

    18. 

  18. 	$page_id = $_SESSION['page_id'];

    19. 

  19. 	$app_link = $_SESSION['appLink'];

    20. 

  20. 

    21. 

  21. 	if ( ! isset( $appId ) || ! isset( $secret ) || ! isset( $page_id ) ) exit();

    22. 

  22. 

    23. 

  23. 

    24. 

  24. 	// get values from the sting and then search the db to get correct app secret

    25. 

  25. 	$fbconfig['appid' ] = $appId;

    26. 

  26. 	$fbconfig['api'] = $appId;

    27. 

  27. 	$fbconfig['secret'] = $secret;

    28. 

  28. 

    29. 

  29. 

    30. 

  30. 	//try to include the facebook base file

    31. 

  31. 	try{

    32. 

  32. 		include_once "facebook/fb_sdk/facebook.php";

    33. 

  33. 	}

    34. 

  34. 	catch ( Exception $o ) {

    35. 

  35. 		error_log($o);

    36. 

  36. 	}

    37. 

  37. 	$user = null; //facebook user uid

    38. 

  38. 

    39. 

  39. 

    40. 

  40. 	// Create our Application instance.

    41. 

  41. 	$facebook = new Facebook(array(

    42. 

  42. 		'appId'  => $fbconfig['appid'],

    43. 

  43. 		'secret' => $fbconfig['secret'],

    44. 

  44. 		'cookie' => true

    45. 

  45. 	));

    46. 

  46. 

    47. 

  47. 

    48. 

  48. 	// If the user is from safari and session is not valid, this the session bug, fixed here

    49. 

  49. 	if ( ! count($_COOKIE) > 0 && strpos($_SERVER['HTTP_USER_AGENT'], 'Safari') && empty($data) )

    50. 

  50. 	{

    51. 

  51. 		$signed_var = $_GET["request_var"];

    52. 

  52. 		$secret = $fbconfig['secret'];  //get app secret from db

    53. 

  53. 		include_once('facebook/fb_sdk/sig_control.php');

    54. 

  54. 		$data=parse_signed_request($signed_var, $secret);

    55. 

  55. 		$page_id=$data["page"]["id"];

    56. 

  56. 		$page_data = json_decode(file_get_contents("https://graph.facebook.com/$page_id"));

    57. 

  57. 		$page_link=$page_data->link;

    58. 

  58. 		echo $page_id;

    59. 

  59. 		echo $page_link;

    60. 

  60. 		$fbconfig['pageUrl']    =   $page_data->link;

    61. 

  61. 		$fbconfig['appPageUrl'] =   "{$fbconfig['pageUrl']}?sk=app_{$fbconfig['appid' ]}&app_data=true";

    62. 

  62. 		$loginUrl   = $facebook->getLoginUrl(

    63. 

  63. 				array(

    64. 

  64. 					'scope'         => 'user_location,user_birthday,email,publish_actions',

    65. 

  65. 					'redirect_uri'  => $fbconfig['appPageUrl'],

    66. 

  66. 				)

    67. 

  67. 		); 

    68. 

  68. 		// if the user session is not valid on safari then we will redirect to get the authorization

    69. 

  69. 		echo "<script type='text/javascript'>top.location.href = '$loginUrl';</script>";

    70. 

  70. 	}

    71. 

  71. 

    72. 

  72. 

    73. 

  73. 	// We get user info from API using this code

    74. 

  74. 	$user = $facebook->getUser();

    75. 

  75. 	if ( $user ) {

    76. 

  76. 		try {

    77. 

  77. 			$user_info = $facebook->api('/me');

    78. 

  78. 		}

    79. 

  79. 		catch ( FacebookApiException $e ) {

    80. 

  80. 			//print_r( $user_info );

    81. 

  81. 			$user = null;

    82. 

  82. 		}

    83. 

  83. 	}

    84. 

  84. 

    85. 

  85. 

    86. 

  86. 	// get tab to show

    87. 

  87. 	$query = "SELECT id FROM pages WHERE fan_page_id = '" . $page_id . "' AND app_id = '" . $appId . "'

    88. 

  88. 							AND published = '1' LIMIT 1 ";

    89. 

  89. 	$query = mysql_query( $query ) or exit( mysql_error() );

    90. 

  90. 	if ( mysql_num_rows( $query ) > 0 ) {

    91. 

  91. 		$tabId = mysql_result( $query, 0 );

    92. 

  92. 		$tab = ars_getPageInfo( $tabId );

    93. 

  93. 	}

    94. 

  94. 

    95. 

  95. 

    96. 

  96. 	// get contest properties

    97. 

  97. 	$query = "SELECT * FROM sp_campaign_info WHERE campaign_sid = '".$tab['id']."' LIMIT 1 ";

    98. 

  98. 	$query = mysql_query( $query ) or exit( mysql_error() );

    99. 

  99. 	if ( mysql_num_rows( $query ) > 0 )

    100. 

  100. 		$contestProperties = mysql_fetch_assoc( $query );

    101. 

  101. 

    102. 

  102. 

    103. 

  103. 	// FUNCTION CHECKS, IF A USER CAN ENTER A CONTEST

    104. 

  104. 	function contestAvailable( $user_info, $contestProperties ) {

    105. 

  105. 		$allow_child = $allow_start = $allow_end = $allow_entries = false;

    106. 

  106. 

    107. 

  107. 		// get user birthday

    108. 

  108. 		function getMinDate( $birthday ) {

    109. 

  109. 			$year = (int) substr( $birthday, 6 ) + 18;

    110. 

  110. 			$month = substr( $birthday, 0, 2 );

    111. 

  111. 			$day = substr( $birthday, 3, 2 );

    112. 

  112. 			return strtotime( $year . '-' . $month . '-' . $day );

    113. 

  113. 		}

    114. 

  114. 

    115. 

  115. 		// check age (over 18 years old)

    116. 

  116. 		if ( $contestProperties['campaign_is_allow_child'] == '0' )      // children are allowed

    117. 

  117. 			$allow_child = true;

    118. 

  118. 		elseif ( strlen( $user_info['birthday'] ) < 10 )                                   // birthday wasn't set

    119. 

  119. 			$allow_child = true;

    120. 

  120. 		elseif ( getMinDate( $user_info['birthday'] ) < time() )                // user is over 18

    121. 

  121. 			$allow_child = true;

    122. 

  122. 		else

    123. 

  123. 			$allow_child = false;

    124. 

  124. 

    125. 

  125. 		// check contest start date

    126. 

  126. 		if ( strtotime( $contestProperties['campaign_start_time'] ) < time() )

    127. 

  127. 			$allow_start = true;

    128. 

  128. 

    129. 

  129. 		// check contest end date

    130. 

  130. 		if ( strtotime( $contestProperties['campaign_end_time'] ) > time() )

    131. 

  131. 			$allow_end = true;

    132. 

  132. 

    133. 

  133. 		// check entries number

    134. 

  134. 		$query = "SELECT * FROM sp_campaign_result WHERE cpresult_user_id = '".$user_info['id']."'

    135. 

  135. 								AND campaign_sid = '".$contestProperties['campaign_sid']."' ";

    136. 

  136. 		$query = mysql_query( $query ) or exit( mysql_error() );

    137. 

  137. 		if ( mysql_num_rows( $query ) < $contestProperties['campaign_is_check_reentry'] )

    138. 

  138. 			$allow_entries = true;

    139. 

  139. 

    140. 

  140. 		// return result

    141. 

  141. 		if ( ! $allow_entries ) $error = 'We have already received your entry.<br /> Thanks for participating!';

    142. 

  142. 		elseif ( ! $allow_start ) $error = 'Sorry, the contest hasn\'t started yet.';

    143. 

  143. 		elseif ( ! $allow_end ) $error = 'Sorry, the contest has already ended.';

    144. 

  144. 		elseif ( ! $allow_child ) $error = 'Sorry, you must be over 18 years old to participate in the contest.';

    145. 

  145. 		else $error = '';

    146. 

  146. 

    147. 

  147. 		return $error;

    148. 

  148. 	} // contestAvailable()

    149. 

  149. 

    150. 

  150. 

    151. 

  151. ?><!doctype html>

    152. 

  152. <html lang="en-US" xmlns:fb="https://www.facebook.com/2008/fbml">

    153. 

  153. <head>

    154. 

  154. <meta charset="UTF-8" />

    155. 

  155. <title><?php echo $tab['name']; ?></title>

    156. 

  156. <link rel="stylesheet" href="css/style.css?v=1.01" />

    157. 

  157. <script src="js/jquery.1.7.js"></script>

    158. 

  158. <script src="js/jquery.countdown.min.js"></script>

    159. 

  159. <script src="js/fb.js"></script>

    160. 

  160. <script src="js/both.js"></script>

    161. 

  161. <script src="js/jquery.validate.js"></script>

    162. 

  162. <script src="https://widgets.twimg.com/j/2/widget.js"></script>

    163. 

  163. <script src="https://apis.google.com/js/plusone.js"></script>

    164. 

  164. <script src="https://maps.google.com/maps/api/js?sensor=false"></script>

    165. 

  165. <style>* { margin: 0; padding: 0; }</style>

    166. 

  166. <script>

    167. 

  167. $(window).load( function() {

    168. 

  168. 

    169. 

  169. 	// DISPLAY WIDGETS

    170. 

  170. 	displayWidgetsOnload( $('.pageBody') );

    171. 

  171. 

    172. 

  172. 

    173. 

  173. 	// FORM AUTOFILLING

    174. 

  174. 	var $birthDate = $('#user_fb_birthday').html();

    175. 

  175. 	if ( $birthDate != '' ) {

    176. 

  176. 		var $birthMonth = $birthDate.substr( 0, 2 );

    177. 

  177. 		var $birthDay = $birthDate.substr( 3, 2 );

    178. 

  178. 		var $birthYear = $birthDate.substr( 6 );

    179. 

  179. 

    180. 

  180. 		if ( $('[name="Birthday_Month"]').length )

    181. 

  181. 			$('[name="Birthday_Month"]').val( $birthMonth );

    182. 

  182. 

    183. 

  183. 		if ( $('[name="Birthday_Day"]').length )

    184. 

  184. 			$('[name="Birthday_Day"]').val( $birthDay );

    185. 

  185. 

    186. 

  186. 		if ( $('[name="Birthday_Year"]').length )

    187. 

  187. 			$('[name="Birthday_Year"]').val( $birthYear );

    188. 

  188. 	} // birthdate

    189. 

  189. 

    190. 

  190. 	if ( $('[name="Gender"]').length )

    191. 

  191. 		$('[name="Gender"]').val( $('#user_fb_gender').html() );

    192. 

  192. 

    193. 

  193. 	if ( $('[name="First_Name"]').length )

    194. 

  194. 		$('[name="First_Name"]').val( $('#user_fb_first_name').html() );

    195. 

  195. 

    196. 

  196. 	if ( $('[name="Last_Name"]').length )

    197. 

  197. 		$('[name="Last_Name"]').val( $('#user_fb_last_name').html() );

    198. 

  198. 

    199. 

  199. 	if ( $('[name="City"]').length )

    200. 

  200. 		$('[name="City"]').val( $('#user_fb_location').html() );

    201. 

  201. 

    202. 

  202. 	if ( $('[name="Email"]').length )

    203. 

  203. 		$('[name="Email"]').val( $('#user_fb_email').html() );

    204. 

  204. 

    205. 

  205. 

    206. 

  206. 	// CONTEST IS NOT AVAILABLE

    207. 

  207. 	if ( $('#contest_available').html() != '' ) {

    208. 

  208. 		var $myAlert = new myAlert();

    209. 

  209. 		$myAlert.show( $('body'), $('.appName').html(), $('#contest_available').html(), true );

    210. 

  210. 	}

    211. 

  211. 

    212. 

  212. 

    213. 

  213. }); // onload

    214. 

  214. </script>

    215. 

  215. 

    216. 

  216. </head>

    217. 

  217. 

    218. 

  218. 

    219. 

  219. 

    220. 

  220. <body class="fb-view">

    221. 

  221. 

    222. 

  222. 	<!-- include Javascript SDK -->

    223. 

  223. 	<div id="fb-root"></div>

    224. 

  224. 	<script>jsSDK();</script>

    225. 

  225. 

    226. 

  226. 

    227. 

  227. 	<div id="includes">

    228. 

  228. 		<div class="appId"><?php echo $appId; ?></div>

    229. 

  229. 		<div class="pageId"><?php echo $page_id; ?></div>

    230. 

  230. 		<div class="signedRequest"><?php echo $signed_request; ?></div>

    231. 

  231. 		<div class="appLink"><?php echo $_SESSION['appLink']; ?></div>

    232. 

  232. 		<div class="appName"><?php echo $tab['name']; ?></div>

    233. 

  233. 		<div id="contest_available"><?php echo contestAvailable( $user_info, $contestProperties ); ?></div>

    234. 

  234. 		<div id="user_fb_first_name"><?php echo $user_info["first_name"]; ?></div>

    235. 

  235. 		<div id="user_fb_last_name"><?php echo $user_info["last_name"]; ?></div>

    236. 

  236. 		<div id="user_fb_birthday"><?php echo $user_info["birthday"]; ?></div>

    237. 

  237. 		<div id="user_fb_location"><?php echo $user_info["location"]["name"]; ?></div>

    238. 

  238. 		<div id="user_fb_gender"><?php echo $user_info["gender"]; ?></div>

    239. 

  239. 		<div id="user_fb_email"><?php echo $user_info["email"]; ?></div>

    240. 

  240. 	</div><!-- / .includes -->

    241. 

  241. 

    242. 

  242. 

    243. 

  243. 	<form method="post"

    244. 

  244. 		action="<?php if ( $tab['ugc'] == '1' ) echo 'view-ugc-form.php'; else echo 'view-thank.php'; ?>">

    245. 

  245. 		<?php echo $tab['content_contest_form']; ?>

    246. 

  246. 		<input type="hidden" name="user_fb_id" value="<?php echo $user_info["id"]; ?>" />

    247. 

  247. 		<input type="hidden" name="campaign_id" value="<?php echo $tab['id']; ?>" />

    248. 

  248. 	</form>

    249. 

  249. 

    250. 

  250. 

    251. 

  251. 	<script>

    252. 

  252. 

    253. 

  253. 		window.fbAsyncInit = function() {

    254. 

  254. 			FB.init({

    255. 

  255. 				appId  : $appId,

    256. 

  256. 				status : true,

    257. 

  257. 				cookie : true,

    258. 

  258. 				xfbml  : true

    259. 

  259. 			});

    260. 

  260. 		};

    261. 

  261. 

    262. 

  262. 		(function() {

    263. 

  263. 			var e = document.createElement('script');

    264. 

  264. 			e.src = document.location.protocol + '//connect.facebook.net/en_US/all.js#xfbml=1&appId=<?php echo $appId; ?>';

    265. 

  265. 			e.async = true;

    266. 

  266. 			document.getElementById('fb-root').appendChild(e);

    267. 

  267. 		}());

    268. 

  268. 

    269. 

  269. 	</script>

    270. 

  270. 

    271. 

  271. </body>

    272. 

  272. </html>
    273.