/modules/quiz.php

https://github.com/Jessicasoon/ProjectKentRidgeV2 · PHP · 1383 lines · 986 code · 166 blank · 231 comment · 155 complexity · fb7509bcc9bbd9e8c5b99ca2af656e6a MD5 · raw file 

    

  1. <?php
    2. 

  2. /**************************************************************************
    3. 

  3. Quiz Class: this class contains all the quiz operations on the database 
    4. 

  4.  -Function exist: return false when quizzes do not exist or are not published 
    5. 

  5.  -Function create: insert into table the newly created quiz then return back the quiz id for other purpose
    6. 

  6.  -Funtion update: update information of the quiz such as description, catrgory, picture, etc.
    7. 

  7.  -Function delete($memberID): check whether the current user is member-> delete questions, results and images
    8. 

  8.  -Function addResult: create a new result
    9. 

  9.  -Function updateResult: create a new result
    10. 

  10.  -Function removeResult: remove a new result
    11. 

  11.  -Function addQuestion: create a new question
    12. 

  12.  -Function update a question
    13. 

  13.  -Function remove a question
    14. 

  14.  -Function addQuestion: create a new option
    15. 

  15.  -Function update an option
    16. 

  16.  -Function remove an option
    17. 

  17.  -Function numQuestions: return the number of question in this quiz
    18. 

  18.  -Function isPublished: return the publish status of the quiz
    19. 

  19.  -Function checkPublish: check if quiz is ready to be published
    20. 

  20.  -Function: publish the quiz
    21. 

  21.  -Function: re-publish the quiz
    22. 

  22.  -Function: archive the quiz
    23. 

  23.  -Function: get the rating value by a member
    24. 

  24.  -Function getResults: get the list of results belonging to this quiz
    25. 

  25.  -Function getQuestions: get the list of questions belonging to this quiz
    26. 

  26.  -Function getOptions: get the list of options belonging to a question
    27. 

  27.  -Function getAttempts: get the list of attempts for this quiz
    28. 

  28.  -Function awardPoints: award points based on like(1), dislike(-1) or neutral(0)
    29. 

  29.  -Function creator: return the text name of the creator
    30. 

  30.  -Function category: return the quiz topic
    31. 

  31.  -Function isOwner: check if user is owner
    32. 

  32.  -Function hasTaken: check if a user has taken quiz
    33. 

  33.  -Function bindImagekey: bind a unikey with this quiz
    34. 

  34. ****************************************************************/
    35. 

  35. if(!class_exists("Quiz")){
    36. 

  36. class Quiz{
    37. 

  37. 	// Quiz data
    38. 

  38. 	public $quiz_id = NULL;
    39. 

  39. 	public $quiz_name = NULL;
    40. 

  40. 	public $quiz_description = NULL;
    41. 

  41. 	public $fk_quiz_cat = NULL;
    42. 

  42. 	public $quiz_picture = NULL;
    43. 

  43. 	public $creation_date = NULL;
    44. 

  44. 	public $fk_member_id = NULL;
    45. 

  45. 	public $quiz_score = NULL;
    46. 

  46. 	public $likes = NULL;
    47. 

  47. 	public $dislikes = NULL;
    48. 

  48. 	public $isPublished = NULL;
    49. 

  49. 	public $quiz_key = NULL;
    50. 

  50. 	
    51. 

  51. 	public $quiz_not_available = NULL;
    52. 

  52. 	
    53. 

  53. 	function __construct($quiz_id = NULL){
    54. 

  54. 		if($quiz_id != NULL && $quiz_id != ""){
    55. 

  55. 			require('quizrooDB.php');
    56. 

  56. 			// populate class with quiz data			
    57. 

  57. 			$queryQuiz = sprintf("SELECT * FROM q_quizzes WHERE quiz_id = %d", GetSQLValueString($quiz_id, "int"));
    58. 

  58. 			$getQuiz = mysql_query($queryQuiz, $quizroo) or die(mysql_error());
    59. 

  59. 			$row_getQuiz = mysql_fetch_assoc($getQuiz);
    60. 

  60. 			$totalRows_getQuiz = mysql_num_rows($getQuiz);
    61. 

  61. 			
    62. 

  62. 			if($totalRows_getQuiz != 0){		
    63. 

  63. 				$this->quiz_id 			= $quiz_id;
    64. 

  64. 				$this->quiz_name 		= $row_getQuiz['quiz_name'];
    65. 

  65. 				$this->quiz_description = $row_getQuiz['quiz_description'];
    66. 

  66. 				$this->fk_quiz_cat		= $row_getQuiz['fk_quiz_cat'];
    67. 

  67. 				$this->quiz_picture		= $row_getQuiz['quiz_picture'];
    68. 

  68. 				$this->creation_date	= $row_getQuiz['creation_date'];
    69. 

  69. 				$this->fk_member_id		= $row_getQuiz['fk_member_id'];
    70. 

  70. 				$this->quiz_score		= $row_getQuiz['quiz_score'];
    71. 

  71. 				$this->likes			= $row_getQuiz['likes'];
    72. 

  72. 				$this->dislikes			= $row_getQuiz['dislikes'];
    73. 

  73. 				$this->isPublished		= $row_getQuiz['isPublished'];
    74. 

  74. 				$this->quiz_key			= $row_getQuiz['quiz_key'];
    75. 

  75. 				return true;
    76. 

  76. 			}else{
    77. 

  77. 				$this->quiz_not_available = true;
    78. 

  78. 				return false;
    79. 

  79. 			}
    80. 

  80. 		}else{
    81. 

  81. 			$this->quiz_not_available = true;
    82. 

  82. 			return false;
    83. 

  83. 		}	
    84. 

  84. 	}
    85. 

  85. 	
    86. 

  86. 	function exists(){
    87. 

  87. 		if($this->quiz_not_available){
    88. 

  88. 			return false;
    89. 

  89. 		}else{
    90. 

  90. 			if($this->isPublished == 3){
    91. 

  91. 				return false;
    92. 

  92. 			}else{
    93. 

  93. 				return true;
    94. 

  94. 			}
    95. 

  95. 		}
    96. 

  96. 	}
    97. 

  97. 	
    98. 

  98. 	// create a new quiz
    99. 

  99. 	function create($title, $description, $cat, $picture, $member_id, $key){
    100. 

  100. 		require('quizrooDB.php');
    101. 

  101. 		
    102. 

  102. 		// insert into the quiz table (protect each insert from HTML Injection)
    103. 

  103. 		$insertSQL = sprintf("INSERT INTO q_quizzes(`quiz_name`, `quiz_description`, `fk_quiz_cat`, `quiz_picture`, `fk_member_id`, `quiz_key`) VALUES (%s, %s, %d, %s, %d, %s)",
    104. 

  104. 						   htmlentities(GetSQLValueString($title, "text")),
    105. 

  105. 						   htmlentities(GetSQLValueString($description, "text")),
    106. 

  106. 						   GetSQLValueString($cat, "int"),
    107. 

  107. 						   GetSQLValueString($picture, "text"),
    108. 

  108. 						   GetSQLValueString($member_id, "int"),
    109. 

  109. 						   GetSQLValueString($key, "text"));
    110. 

  110. 		mysql_query($insertSQL, $quizroo) or die(mysql_error());
    111. 

  111. 		
    112. 

  112. 		// find the quiz id
    113. 

  113. 		$querySQL = "SELECT LAST_INSERT_ID() AS insertID, creation_date FROM q_quizzes WHERE quiz_id = LAST_INSERT_ID()";
    114. 

  114. 		$resultID = mysql_query($querySQL, $quizroo) or die(mysql_error());
    115. 

  115. 		$row_resultID = mysql_fetch_assoc($resultID);
    116. 

  116. 		
    117. 

  117. 		$this->quiz_id = $row_resultID['insertID'];
    118. 

  118. 		$this->quiz_name = htmlentities($title);
    119. 

  119. 		$this->quiz_description = htmlentities($description);
    120. 

  120. 		$this->fk_quiz_cat = $cat;
    121. 

  121. 		$this->quiz_picture = $picture;
    122. 

  122. 		$this->creation_date = $row_resultID['creation_date'];
    123. 

  123. 		$this->fk_member_id = $member_id;
    124. 

  124. 		$this->quiz_key = $key;
    125. 

  125. 		
    126. 

  126. 		mysql_free_result($resultID);
    127. 

  127. 		
    128. 

  128. 		// update the keystore
    129. 

  129. 		$this->bindImagekey($key);
    130. 

  130. 		
    131. 

  131. 		return $this->quiz_id;
    132. 

  132. 	}
    133. 

  133. 	
    134. 

  134. 	// update the quiz
    135. 

  135. 	function update($title, $description, $cat, $picture, $memberID){
    136. 

  136. 		require('quizrooDB.php');
    137. 

  137. 		
    138. 

  138. 		// check if is member
    139. 

  139. 		if($this->isOwner($memberID)){
    140. 

  140. 			// insert into the quiz table
    141. 

  141. 			$insertSQL = sprintf("UPDATE q_quizzes SET `quiz_name`=%s, `quiz_description`=%s, `fk_quiz_cat`=%d, `quiz_picture`=%s WHERE `quiz_id` = %d",
    142. 

  142. 							   htmlentities(GetSQLValueString($title, "text")),
    143. 

  143. 							   htmlentities(GetSQLValueString($description, "text")),
    144. 

  144. 							   GetSQLValueString($cat, "int"),
    145. 

  145. 							   GetSQLValueString($picture, "text"),
    146. 

  146. 							   GetSQLValueString($this->quiz_id, "int"));
    147. 

  147. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    148. 

  148. 			
    149. 

  149. 			return $this->quiz_id;
    150. 

  150. 		}else{
    151. 

  151. 			return false;
    152. 

  152. 		}
    153. 

  153. 	}
    154. 

  154. 	
    155. 

  155. 	// delete the quiz
    156. 

  156. 	function deleteMulti($memberID){
    157. 

  157. 		require('quizrooDB.php');
    158. 

  158. 		
    159. 

  159. 		// check if is member
    160. 

  160. 		if($this->isOwner($memberID)){
    161. 

  161. 			// remove the questions
    162. 

  162. 			$questionList = explode(',', $this->getQuestions());
    163. 

  163. 			foreach($questionList as $question){
    164. 

  164. 				if($question != ""){
    165. 

  165. 					$this->removeQuestionMulti($question, $memberID);
    166. 

  166. 				}
    167. 

  167. 			}
    168. 

  168. 			
    169. 

  169. 			// remove the results
    170. 

  170. 			$resultList = explode(',', $this->getResultsMulti());
    171. 

  171. 			foreach($resultList as $result){
    172. 

  172. 				if($result != ""){
    173. 

  173. 					$this->removeResultMulti($result, $memberID);
    174. 

  174. 				}
    175. 

  175. 			}
    176. 

  176. 			
    177. 

  177. 			// clean images
    178. 

  178. 			if($this->quiz_key != ""){
    179. 

  179. 				foreach(glob("../quiz_images/".$this->quiz_key."*") as $filename){
    180. 

  180. 					unlink($filename);
    181. 

  181. 				}			
    182. 

  182. 			}			
    183. 

  183. 			
    184. 

  184. 			// remove the question
    185. 

  185. 			$insertSQL = sprintf("DELETE FROM q_quizzes WHERE `quiz_id` = %d", GetSQLValueString($this->quiz_id, "int"));
    186. 

  186. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    187. 

  187. 			
    188. 

  188. 			$removed_id = $this->quiz_id;
    189. 

  189. 			
    190. 

  190. 			$this->quiz_id 			= NULL;
    191. 

  191. 			$this->quiz_name 		= NULL;
    192. 

  192. 			$this->quiz_description = NULL;
    193. 

  193. 			$this->fk_quiz_cat		= NULL;
    194. 

  194. 			$this->quiz_picture		= NULL;
    195. 

  195. 			$this->creation_date	= NULL;
    196. 

  196. 			$this->fk_member_id		= NULL;
    197. 

  197. 			$this->quiz_score		= NULL;
    198. 

  198. 			$this->likes			= NULL;
    199. 

  199. 			$this->dislikes			= NULL;
    200. 

  200. 			$this->isPublished		= NULL;
    201. 

  201. 			$this->quiz_key			= NULL;
    202. 

  202. 			
    203. 

  203. 			return $removed_id;	
    204. 

  204. 		}else{
    205. 

  205. 			return false;
    206. 

  206. 		}
    207. 

  207. 	}
    208. 

  208. 

  209. 	// delete the quiz HAVE TO CHANGE YL
    210. 

  210. 	function deleteTest($memberID){
    211. 

  211. 		require('quizrooDB.php');
    212. 

  212. 		
    213. 

  213. 		// check if is member
    214. 

  214. 		if($this->isOwner($memberID)){
    215. 

  215. 			// remove the questions
    216. 

  216. 			$questionList = explode(',', $this->getQuestions());
    217. 

  217. 			foreach($questionList as $question){
    218. 

  218. 				if($question != ""){
    219. 

  219. 					$this->removeQuestionTest($question, $memberID);
    220. 

  220. 				}
    221. 

  221. 			}
    222. 

  222. 			
    223. 

  223. 			// remove the results
    224. 

  224. 			$resultList = explode(',', $this->getResultsTest());
    225. 

  225. 			foreach($resultList as $result){
    226. 

  226. 				if($result != ""){
    227. 

  227. 					$this->removeResultTest($result, $memberID);
    228. 

  228. 				}
    229. 

  229. 			}
    230. 

  230. 			
    231. 

  231. 			// clean images
    232. 

  232. 			if($this->quiz_key != ""){
    233. 

  233. 				foreach(glob("../quiz_images/".$this->quiz_key."*") as $filename){
    234. 

  234. 					unlink($filename);
    235. 

  235. 				}			
    236. 

  236. 			}			
    237. 

  237. 			
    238. 

  238. 			// remove the question
    239. 

  239. 			$insertSQL = sprintf("DELETE FROM q_quizzes WHERE `quiz_id` = %d", GetSQLValueString($this->quiz_id, "int"));
    240. 

  240. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    241. 

  241. 			
    242. 

  242. 			$removed_id = $this->quiz_id;
    243. 

  243. 			
    244. 

  244. 			$this->quiz_id 			= NULL;
    245. 

  245. 			$this->quiz_name 		= NULL;
    246. 

  246. 			$this->quiz_description = NULL;
    247. 

  247. 			$this->fk_quiz_cat		= NULL;
    248. 

  248. 			$this->quiz_picture		= NULL;
    249. 

  249. 			$this->creation_date	= NULL;
    250. 

  250. 			$this->fk_member_id		= NULL;
    251. 

  251. 			$this->quiz_score		= NULL;
    252. 

  252. 			$this->likes			= NULL;
    253. 

  253. 			$this->dislikes			= NULL;
    254. 

  254. 			$this->isPublished		= NULL;
    255. 

  255. 			$this->quiz_key			= NULL;
    256. 

  256. 			
    257. 

  257. 			return $removed_id;	
    258. 

  258. 		}else{
    259. 

  259. 			return false;
    260. 

  260. 		}
    261. 

  261. 	}
    262. 

  262. 	
    263. 

  263. 	// delete the quiz
    264. 

  264. 	function delete_NOTUSED($memberID){
    265. 

  265. 		require('quizrooDB.php');
    266. 

  266. 		
    267. 

  267. 		// check if is member
    268. 

  268. 		if($this->isOwner($memberID)){
    269. 

  269. 			// remove the questions
    270. 

  270. 			$questionList = explode(',', $this->getQuestions());
    271. 

  271. 			foreach($questionList as $question){
    272. 

  272. 				if($question != ""){
    273. 

  273. 					$this->removeQuestion_NOTUSED($question, $memberID);
    274. 

  274. 				}
    275. 

  275. 			}
    276. 

  276. 			
    277. 

  277. 			// remove the results
    278. 

  278. 			$resultList = explode(',', $this->getResults_NOTUSED());
    279. 

  279. 			foreach($resultList as $result){
    280. 

  280. 				if($result != ""){
    281. 

  281. 					$this->removeResult_NOTUSED($result, $memberID);
    282. 

  282. 				}
    283. 

  283. 			}
    284. 

  284. 			
    285. 

  285. 			// clean images
    286. 

  286. 			if($this->quiz_key != ""){
    287. 

  287. 				foreach(glob("../quiz_images/".$this->quiz_key."*") as $filename){
    288. 

  288. 					unlink($filename);
    289. 

  289. 				}			
    290. 

  290. 			}			
    291. 

  291. 			
    292. 

  292. 			// remove the question
    293. 

  293. 			$insertSQL = sprintf("DELETE FROM q_quizzes WHERE `quiz_id` = %d", GetSQLValueString($this->quiz_id, "int"));
    294. 

  294. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    295. 

  295. 			
    296. 

  296. 			$removed_id = $this->quiz_id;
    297. 

  297. 			
    298. 

  298. 			$this->quiz_id 			= NULL;
    299. 

  299. 			$this->quiz_name 		= NULL;
    300. 

  300. 			$this->quiz_description = NULL;
    301. 

  301. 			$this->fk_quiz_cat		= NULL;
    302. 

  302. 			$this->quiz_picture		= NULL;
    303. 

  303. 			$this->creation_date	= NULL;
    304. 

  304. 			$this->fk_member_id		= NULL;
    305. 

  305. 			$this->quiz_score		= NULL;
    306. 

  306. 			$this->likes			= NULL;
    307. 

  307. 			$this->dislikes			= NULL;
    308. 

  308. 			$this->isPublished		= NULL;
    309. 

  309. 			$this->quiz_key			= NULL;
    310. 

  310. 			
    311. 

  311. 			return $removed_id;	
    312. 

  312. 		}else{
    313. 

  313. 			return false;
    314. 

  314. 		}
    315. 

  315. 	}
    316. 

  316. 

  317. 	// create a new result
    318. 

  318. 	function addResultMulti($result_title, $result_description, $result_picture, $memberID){
    319. 

  319. 		require('quizrooDB.php');
    320. 

  320. 		
    321. 

  321. 		// check if is member
    322. 

  322. 		if($this->isOwner($memberID)){
    323. 

  323. 			// Insert the result
    324. 

  324. 			$insertSQL = sprintf("INSERT INTO q_results_multi(`result_title`, `result_description`, `result_picture`, `fk_quiz_id`) VALUES (%s, %s, %s, %d)",
    325. 

  325. 							   htmlentities(GetSQLValueString($result_title, "text")),
    326. 

  326. 							   htmlentities(GetSQLValueString($result_description, "text")),
    327. 

  327. 							   GetSQLValueString($result_picture, "text"),
    328. 

  328. 							   GetSQLValueString($this->quiz_id, "int"));
    329. 

  329. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    330. 

  330. 			
    331. 

  331. 			// find the result id
    332. 

  332. 			$querySQL = "SELECT LAST_INSERT_ID() AS insertID";
    333. 

  333. 			$resultID = mysql_query($querySQL, $quizroo) or die(mysql_error());
    334. 

  334. 			$row_resultID = mysql_fetch_assoc($resultID);
    335. 

  335. 			mysql_free_result($resultID);
    336. 

  336. 			
    337. 

  337. 			return $row_resultID['insertID'];
    338. 

  338. 		}else{
    339. 

  339. 			return false;
    340. 

  340. 		}
    341. 

  341. 	}
    342. 

  342. 

  343. 	// create a new result HAVE TO CHANGE YL
    344. 

  344. 	function addResultTest($result_title, $result_description, $result_picture, $result_max, $result_min, $memberID){
    345. 

  345. 		require('quizrooDB.php');
    346. 

  346. 		
    347. 

  347. 		// check if is member
    348. 

  348. 		if($this->isOwner($memberID)){
    349. 

  349. 			// Insert the result
    350. 

  350. 			$insertSQL = sprintf("INSERT INTO q_results_test(`result_title`, `result_description`, `result_picture`, `range_max`, `range_min`, `fk_quiz_id`) VALUES (%s, %s, %s, %d, %d, %d)",
    351. 

  351. 							   htmlentities(GetSQLValueString($result_title, "text")),
    352. 

  352. 							   htmlentities(GetSQLValueString($result_description, "text")),
    353. 

  353. 							   GetSQLValueString($result_picture, "text"),
    354. 

  354. 							   GetSQLValueString($result_max, "int"),
    355. 

  355. 							   GetSQLValueString($result_min, "int"),
    356. 

  356. 							   GetSQLValueString($this->quiz_id, "int"));
    357. 

  357. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    358. 

  358. 			
    359. 

  359. 			// find the result id
    360. 

  360. 			$querySQL = "SELECT LAST_INSERT_ID() AS insertID";
    361. 

  361. 			$resultID = mysql_query($querySQL, $quizroo) or die(mysql_error());
    362. 

  362. 			$row_resultID = mysql_fetch_assoc($resultID);
    363. 

  363. 			mysql_free_result($resultID);
    364. 

  364. 			
    365. 

  365. 			return $row_resultID['insertID'];
    366. 

  366. 		}else{
    367. 

  367. 			return false;
    368. 

  368. 		}
    369. 

  369. 	}
    370. 

  370. 	
    371. 

  371. 	// create a new result
    372. 

  372. 	function addResult_NOTUSED($result_title, $result_description, $result_picture, $memberID){
    373. 

  373. 		require('quizrooDB.php');
    374. 

  374. 		
    375. 

  375. 		// check if is member
    376. 

  376. 		if($this->isOwner($memberID)){
    377. 

  377. 			// Insert the result
    378. 

  378. 			$insertSQL = sprintf("INSERT INTO q_results(`result_title`, `result_description`, `result_picture`, `fk_quiz_id`) VALUES (%s, %s, %s, %d)",
    379. 

  379. 							   htmlentities(GetSQLValueString($result_title, "text")),
    380. 

  380. 							   htmlentities(GetSQLValueString($result_description, "text")),
    381. 

  381. 							   GetSQLValueString($result_picture, "text"),
    382. 

  382. 							   GetSQLValueString($this->quiz_id, "int"));
    383. 

  383. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    384. 

  384. 			
    385. 

  385. 			// find the result id
    386. 

  386. 			$querySQL = "SELECT LAST_INSERT_ID() AS insertID";
    387. 

  387. 			$resultID = mysql_query($querySQL, $quizroo) or die(mysql_error());
    388. 

  388. 			$row_resultID = mysql_fetch_assoc($resultID);
    389. 

  389. 			mysql_free_result($resultID);
    390. 

  390. 			
    391. 

  391. 			return $row_resultID['insertID'];
    392. 

  392. 		}else{
    393. 

  393. 			return false;
    394. 

  394. 		}
    395. 

  395. 	}
    396. 

  396. 	// create a new result
    397. 

  397. 	function updateResultMulti($result_title, $result_description, $result_picture, $result_id, $memberID){
    398. 

  398. 		require('quizrooDB.php');
    399. 

  399. 		
    400. 

  400. 		// check if is member
    401. 

  401. 		if($this->isOwner($memberID)){
    402. 

  402. 			// Insert the result
    403. 

  403. 			$insertSQL = sprintf("UPDATE q_results_multi SET `result_title` = %s, `result_description` = %s, `result_picture` = %s WHERE `result_id` = %d",
    404. 

  404. 							   htmlentities(GetSQLValueString($result_title, "text")),
    405. 

  405. 							   htmlentities(GetSQLValueString($result_description, "text")),
    406. 

  406. 							   GetSQLValueString($result_picture, "text"),
    407. 

  407. 							   GetSQLValueString($result_id, "int"));
    408. 

  408. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    409. 

  409. 			
    410. 

  410. 			return $result_id;
    411. 

  411. 		}else{
    412. 

  412. 			return false;
    413. 

  413. 		}
    414. 

  414. 	}
    415. 

  415. 	// create a new result HAVE TO CHANGE YL
    416. 

  416. 	function updateResultTest($result_title, $result_description, $result_picture, $result_id, $result_max, $result_min, $memberID){
    417. 

  417. 		require('quizrooDB.php');
    418. 

  418. 		
    419. 

  419. 		// check if is member
    420. 

  420. 		if($this->isOwner($memberID)){
    421. 

  421. 			// Insert the result
    422. 

  422. 			$insertSQL = sprintf("UPDATE q_results_test SET `result_title` = %s, `result_description` = %s, `result_picture` = %s, `range_max` = %d, `range_min` = %d WHERE `result_id` = %d",
    423. 

  423. 							   htmlentities(GetSQLValueString($result_title, "text")),
    424. 

  424. 							   htmlentities(GetSQLValueString($result_description, "text")),
    425. 

  425. 							   GetSQLValueString($result_picture, "text"),
    426. 

  426. 							   GetSQLValueString($result_max, "int"),
    427. 

  427. 							   GetSQLValueString($result_min, "int"),
    428. 

  428. 							   GetSQLValueString($result_id, "int"));
    429. 

  429. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    430. 

  430. 			
    431. 

  431. 			return $result_id;
    432. 

  432. 		}else{
    433. 

  433. 			return false;
    434. 

  434. 		}
    435. 

  435. 	}	
    436. 

  436. 	// create a new result
    437. 

  437. 	function updateResult_NOTUSED($result_title, $result_description, $result_picture, $result_id, $memberID){
    438. 

  438. 		require('quizrooDB.php');
    439. 

  439. 		
    440. 

  440. 		// check if is member
    441. 

  441. 		if($this->isOwner($memberID)){
    442. 

  442. 			// Insert the result
    443. 

  443. 			$insertSQL = sprintf("UPDATE q_results SET `result_title` = %s, `result_description` = %s, `result_picture` = %s WHERE `result_id` = %d",
    444. 

  444. 							   htmlentities(GetSQLValueString($result_title, "text")),
    445. 

  445. 							   htmlentities(GetSQLValueString($result_description, "text")),
    446. 

  446. 							   GetSQLValueString($result_picture, "text"),
    447. 

  447. 							   GetSQLValueString($result_id, "int"));
    448. 

  448. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    449. 

  449. 			
    450. 

  450. 			return $result_id;
    451. 

  451. 		}else{
    452. 

  452. 			return false;
    453. 

  453. 		}
    454. 

  454. 	}
    455. 

  455. 	
    456. 

  456. 	// remove a new result
    457. 

  457. 	function removeResultMulti($result_id, $memberID){
    458. 

  458. 		require('quizrooDB.php');
    459. 

  459. 		
    460. 

  460. 		// owner check
    461. 

  461. 		if($this->isOwner($memberID)){
    462. 

  462. 			// delete the result and also check if this results actually belongs to this quiz
    463. 

  463. 			$insertSQL = sprintf("DELETE FROM q_results_multi WHERE `result_id` = %d AND `result_id` IN(%s)", GetSQLValueString($result_id, "int"), $this->getResultsMulti());
    464. 

  464. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());	
    465. 

  465. 			return true;
    466. 

  466. 		}else{
    467. 

  467. 			return false;
    468. 

  468. 		}
    469. 

  469. 	}	
    470. 

  470. 	// remove a new result HAVE TO CHANGE YL
    471. 

  471. 	function removeResultTest($result_id, $memberID){
    472. 

  472. 		require('quizrooDB.php');
    473. 

  473. 		
    474. 

  474. 		// owner check
    475. 

  475. 		if($this->isOwner($memberID)){
    476. 

  476. 			// delete the result and also check if this results actually belongs to this quiz
    477. 

  477. 			$insertSQL = sprintf("DELETE FROM q_results_test WHERE `result_id` = %d AND `result_id` IN(%s)", GetSQLValueString($result_id, "int"), $this->getResultsTest());
    478. 

  478. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());	
    479. 

  479. 			return true;
    480. 

  480. 		}else{
    481. 

  481. 			return false;
    482. 

  482. 		}
    483. 

  483. 	}
    484. 

  484. 	// remove a new result
    485. 

  485. 	function removeResult_NOTUSED($result_id, $memberID){
    486. 

  486. 		require('quizrooDB.php');
    487. 

  487. 		
    488. 

  488. 		// owner check
    489. 

  489. 		if($this->isOwner($memberID)){
    490. 

  490. 			// delete the result and also check if this results actually belongs to this quiz
    491. 

  491. 			$insertSQL = sprintf("DELETE FROM q_results WHERE `result_id` = %d AND `result_id` IN(%s)", GetSQLValueString($result_id, "int"), $this->getResults_NOTUSED());
    492. 

  492. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());	
    493. 

  493. 			return true;
    494. 

  494. 		}else{
    495. 

  495. 			return false;
    496. 

  496. 		}
    497. 

  497. 	}
    498. 

  498. 	
    499. 

  499. 	// create a new question
    500. 

  500. 	function addQuestion($question, $memberID){
    501. 

  501. 		require('quizrooDB.php');
    502. 

  502. 		
    503. 

  503. 		// check if is member
    504. 

  504. 		if($this->isOwner($memberID)){
    505. 

  505. 			// insert the question
    506. 

  506. 			$insertSQL = sprintf("INSERT INTO q_questions(`question`, `fk_quiz_id`) VALUES (%s, %d)",
    507. 

  507. 						   htmlentities(GetSQLValueString($question, "text")),
    508. 

  508. 						   GetSQLValueString($this->quiz_id, "int"));
    509. 

  509. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    510. 

  510. 		
    511. 

  511. 			// find the question id
    512. 

  512. 			$querySQL = "SELECT LAST_INSERT_ID() AS insertID";
    513. 

  513. 			$resultID = mysql_query($querySQL, $quizroo) or die(mysql_error());
    514. 

  514. 			$row_resultID = mysql_fetch_assoc($resultID);
    515. 

  515. 			$currentQuestionID = $row_resultID['insertID'];
    516. 

  516. 			mysql_free_result($resultID);
    517. 

  517. 			
    518. 

  518. 			return $row_resultID['insertID'];
    519. 

  519. 		}else{
    520. 

  520. 			return false;
    521. 

  521. 		}
    522. 

  522. 	}
    523. 

  523. 	
    524. 

  524. 	// update a question
    525. 

  525. 	function updateQuestion($question, $question_id, $memberID){
    526. 

  526. 		require('quizrooDB.php');
    527. 

  527. 		
    528. 

  528. 		// check if is member
    529. 

  529. 		if($this->isOwner($memberID)){
    530. 

  530. 			// insert the question
    531. 

  531. 			$insertSQL = sprintf("UPDATE q_questions SET `question` = %s WHERE `question_id` = %d",
    532. 

  532. 						  htmlentities(GetSQLValueString($question, "text")),
    533. 

  533. 						   GetSQLValueString($question_id, "int"));
    534. 

  534. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    535. 

  535. 			
    536. 

  536. 			return $question_id;
    537. 

  537. 		}else{
    538. 

  538. 			return false;
    539. 

  539. 		}
    540. 

  540. 	}
    541. 

  541. 	// remove a new question
    542. 

  542. 	function removeQuestionMulti($question_id, $memberID){
    543. 

  543. 		require('quizrooDB.php');
    544. 

  544. 		
    545. 

  545. 		// owner check
    546. 

  546. 		if($this->isOwner($memberID)){
    547. 

  547. 			// delete the options and also check if this results actually belongs to this quiz
    548. 

  548. 			$insertSQL = sprintf("DELETE FROM q_options_multi WHERE `fk_question_id` = %d AND `fk_question_id` IN(%s)", GetSQLValueString($question_id, "int"), $this->getQuestions());
    549. 

  549. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());				
    550. 

  550. 			// delete the result and also check if this results actually belongs to this quiz
    551. 

  551. 			$insertSQL = sprintf("DELETE FROM q_questions WHERE `question_id` = %d AND `question_id` IN(%s)", GetSQLValueString($question_id, "int"), $this->getQuestions());
    552. 

  552. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());	
    553. 

  553. 			return true;
    554. 

  554. 		}else{
    555. 

  555. 			return false;
    556. 

  556. 		}
    557. 

  557. 	}
    558. 

  558. 	
    559. 

  559. 	// remove a new question HAVE TO CHANGE YL
    560. 

  560. 	function removeQuestionTest($question_id, $memberID){
    561. 

  561. 		require('quizrooDB.php');
    562. 

  562. 		
    563. 

  563. 		// owner check
    564. 

  564. 		if($this->isOwner($memberID)){
    565. 

  565. 			// delete the options and also check if this results actually belongs to this quiz
    566. 

  566. 			$insertSQL = sprintf("DELETE FROM q_options_test WHERE `fk_question_id` = %d AND `fk_question_id` IN(%s)", GetSQLValueString($question_id, "int"), $this->getQuestions());
    567. 

  567. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());				
    568. 

  568. 			// delete the result and also check if this results actually belongs to this quiz
    569. 

  569. 			$insertSQL = sprintf("DELETE FROM q_questions WHERE `question_id` = %d AND `question_id` IN(%s)", GetSQLValueString($question_id, "int"), $this->getQuestions());
    570. 

  570. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());	
    571. 

  571. 			return true;
    572. 

  572. 		}else{
    573. 

  573. 			return false;
    574. 

  574. 		}
    575. 

  575. 	}
    576. 

  576. 	
    577. 

  577. 	// remove a new question
    578. 

  578. 	function removeQuestion_NOTUSED($question_id, $memberID){
    579. 

  579. 		require('quizrooDB.php');
    580. 

  580. 		
    581. 

  581. 		// owner check
    582. 

  582. 		if($this->isOwner($memberID)){
    583. 

  583. 			// delete the options and also check if this results actually belongs to this quiz
    584. 

  584. 			$insertSQL = sprintf("DELETE FROM q_options WHERE `fk_question_id` = %d AND `fk_question_id` IN(%s)", GetSQLValueString($question_id, "int"), $this->getQuestions());
    585. 

  585. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());				
    586. 

  586. 			// delete the result and also check if this results actually belongs to this quiz
    587. 

  587. 			$insertSQL = sprintf("DELETE FROM q_questions WHERE `question_id` = %d AND `question_id` IN(%s)", GetSQLValueString($question_id, "int"), $this->getQuestions());
    588. 

  588. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());	
    589. 

  589. 			return true;
    590. 

  590. 		}else{
    591. 

  591. 			return false;
    592. 

  592. 		}
    593. 

  593. 	}
    594. 

  594. 

  595. 	// create a option
    596. 

  596. 	function addOptionMulti($option, $result, $weightage, $question, $memberID){
    597. 

  597. 		require('quizrooDB.php');
    598. 

  598. 		// check if is member
    599. 

  599. 		if($this->isOwner($memberID)){
    600. 

  600. 			// insert the option
    601. 

  601. 			$insertSQL = sprintf("INSERT INTO q_options_multi(`option`, `fk_result_id`, `option_weightage`, `fk_question_id`) VALUES (%s, %d, %d, %d)",
    602. 

  602. 						   htmlentities(GetSQLValueString($option, "text")),
    603. 

  603. 						   GetSQLValueString($result, "int"),
    604. 

  604. 						   GetSQLValueString($weightage, "int"),
    605. 

  605. 						   GetSQLValueString($question, "int"));
    606. 

  606. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    607. 

  607. 		
    608. 

  608. 			// find the question id
    609. 

  609. 			$querySQL = "SELECT LAST_INSERT_ID() AS insertID";
    610. 

  610. 			$resultID = mysql_query($querySQL, $quizroo) or die(mysql_error());
    611. 

  611. 			$row_resultID = mysql_fetch_assoc($resultID);
    612. 

  612. 			$currentQuestionID = $row_resultID['insertID'];
    613. 

  613. 			mysql_free_result($resultID);
    614. 

  614. 			
    615. 

  615. 			return $row_resultID['insertID'];
    616. 

  616. 		}else{
    617. 

  617. 			return false;
    618. 

  618. 		}
    619. 

  619. 	}
    620. 

  620. 	
    621. 

  621. 	// create a option
    622. 

  622. 	function addOption_NOTUSED($option, $result, $weightage, $question, $memberID){
    623. 

  623. 		require('quizrooDB.php');
    624. 

  624. 		
    625. 

  625. 		// check if is member
    626. 

  626. 		if($this->isOwner($memberID)){
    627. 

  627. 			// insert the option
    628. 

  628. 			$insertSQL = sprintf("INSERT INTO q_options(`option`, `fk_result`, `option_weightage`, `fk_question_id`) VALUES (%s, %d, %d, %d)",
    629. 

  629. 						   htmlentities(GetSQLValueString($option, "text")),
    630. 

  630. 						   GetSQLValueString($result, "int"),
    631. 

  631. 						   GetSQLValueString($weightage, "int"),
    632. 

  632. 						   GetSQLValueString($question, "int"));
    633. 

  633. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    634. 

  634. 		
    635. 

  635. 			// find the question id
    636. 

  636. 			$querySQL = "SELECT LAST_INSERT_ID() AS insertID";
    637. 

  637. 			$resultID = mysql_query($querySQL, $quizroo) or die(mysql_error());
    638. 

  638. 			$row_resultID = mysql_fetch_assoc($resultID);
    639. 

  639. 			$currentQuestionID = $row_resultID['insertID'];
    640. 

  640. 			mysql_free_result($resultID);
    641. 

  641. 			
    642. 

  642. 			return $row_resultID['insertID'];
    643. 

  643. 		}else{
    644. 

  644. 			return false;
    645. 

  645. 		}
    646. 

  646. 	}
    647. 

  647. 	
    648. 

  648. 	// create a option TEST
    649. 

  649. 	function addOptionTest($option, $result, $question, $memberID){
    650. 

  650. 		require('quizrooDB.php');
    651. 

  651. 		
    652. 

  652. 		// check if is member
    653. 

  653. 		if($this->isOwner($memberID)){
    654. 

  654. 		// insert the option
    655. 

  655. 			$insertSQL = sprintf("INSERT INTO q_options_test(`option`, `isCorrect`, `fk_question_id`) VALUES (%s, %d, %d)",
    656. 

  656. 						   htmlentities(GetSQLValueString($option, "text")),
    657. 

  657. 						   GetSQLValueString($result, "int"), //cannot insert if isCorrect = 0?
    658. 

  658. 						   GetSQLValueString($question, "int"));
    659. 

  659. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    660. 

  660. 

  661. 			// find the question id
    662. 

  662. 			$querySQL = "SELECT LAST_INSERT_ID() AS insertID";
    663. 

  663. 			$resultID = mysql_query($querySQL, $quizroo) or die(mysql_error());
    664. 

  664. 			$row_resultID = mysql_fetch_assoc($resultID);
    665. 

  665. 			$currentQuestionID = $row_resultID['insertID'];
    666. 

  666. 			mysql_free_result($resultID);
    667. 

  667. 			
    668. 

  668. 			return $row_resultID['insertID'];
    669. 

  669. 		}else{
    670. 

  670. 			return false;
    671. 

  671. 		}
    672. 

  672. 	}	
    673. 

  673. 	// update an option
    674. 

  674. 	function updateOptionMulti($option, $result, $weightage, $option_id, $memberID){
    675. 

  675. 		require('quizrooDB.php');
    676. 

  676. 		//$one = 1;
    677. 

  677. 		
    678. 

  678. 		// check if is member
    679. 

  679. 		if($this->isOwner($memberID)){
    680. 

  680. 			// insert the option
    681. 

  681. 			$insertSQL = sprintf("UPDATE q_options_multi SET `option`=%s, `fk_result_id`=%d, `option_weightage`=%d WHERE option_id=%d",
    682. 

  682. 						   htmlentities(GetSQLValueString($option, "text")),
    683. 

  683. 						   GetSQLValueString($result, "int"),
    684. 

  684. 						   GetSQLValueString($weightage, "int"),
    685. 

  685. 						   GetSQLValueString($option_id, "int"));
    686. 

  686. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    687. 

  687. 			
    688. 

  688. 			return $option_id;
    689. 

  689. 		}else{
    690. 

  690. 			return false;
    691. 

  691. 		}
    692. 

  692. 	}
    693. 

  693. 	
    694. 

  694. 	// update an option
    695. 

  695. 	function updateOption_NOTUSED($option, $result, $weightage, $option_id, $memberID){
    696. 

  696. 		require('quizrooDB.php');
    697. 

  697. 		
    698. 

  698. 		// check if is member
    699. 

  699. 		if($this->isOwner($memberID)){
    700. 

  700. 			// insert the option
    701. 

  701. 			$insertSQL = sprintf("UPDATE q_options SET `option`=%s, `fk_result`=%d, `option_weightage`=%d WHERE option_id=%d",
    702. 

  702. 						   htmlentities(GetSQLValueString($option, "text")),
    703. 

  703. 						   GetSQLValueString($result, "int"),
    704. 

  704. 						   GetSQLValueString($weightage, "int"),
    705. 

  705. 						   GetSQLValueString($option_id, "int"));
    706. 

  706. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    707. 

  707. 			
    708. 

  708. 			return $option_id;
    709. 

  709. 		}else{
    710. 

  710. 			return false;
    711. 

  711. 		}
    712. 

  712. 	}
    713. 

  713. 	
    714. 

  714. 	// update an option TEST
    715. 

  715. 	function updateOptionTest($option, $result, $option_id, $memberID){
    716. 

  716. 		require('quizrooDB.php');
    717. 

  717. 		
    718. 

  718. 		// check if is member
    719. 

  719. 		if($this->isOwner($memberID)){
    720. 

  720. 			// insert the option
    721. 

  721. 			$insertSQL = sprintf("UPDATE q_options_test SET `option`=%s, `isCorrect`=%d WHERE option_id=%d",
    722. 

  722. 						   htmlentities(GetSQLValueString($option, "text")),
    723. 

  723. 						   GetSQLValueString($result, "int"),
    724. 

  724. 						   GetSQLValueString($option_id, "int"));
    725. 

  725. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());
    726. 

  726. 			
    727. 

  727. 			return $option_id;
    728. 

  728. 		}else{
    729. 

  729. 			return false;
    730. 

  730. 		}
    731. 

  731. 	}
    732. 

  732. 	
    733. 

  733. 	// remove an option
    734. 

  734. 	function removeOptionMulti($option_id, $memberID){
    735. 

  735. 		require('quizrooDB.php');
    736. 

  736. 		
    737. 

  737. 		// owner check
    738. 

  738. 		if($this->isOwner($memberID)){
    739. 

  739. 			// delete the options and also check if this results actually belongs to this quiz
    740. 

  740. 			$insertSQL = sprintf("DELETE FROM q_options_multi WHERE `option_id` = %d AND `fk_question_id` IN(%s)", 
    741. 

  741. 						GetSQLValueString($option_id, "int"), 
    742. 

  742. 						htmlentities(GetSQLValueString($this->getQuestions())));
    743. 

  743. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());				
    744. 

  744. 			return true;
    745. 

  745. 		}else{
    746. 

  746. 			return false;
    747. 

  747. 		}
    748. 

  748. 	}	
    749. 

  749. 

  750. 	// remove an option HAVE TO CHANGE YL
    751. 

  751. 	function removeOptionTest($option_id, $memberID){
    752. 

  752. 		require('quizrooDB.php');
    753. 

  753. 		
    754. 

  754. 		// owner check
    755. 

  755. 		if($this->isOwner($memberID)){
    756. 

  756. 			// delete the options and also check if this results actually belongs to this quiz
    757. 

  757. 			$insertSQL = sprintf("DELETE FROM q_options_test WHERE `option_id` = %d AND `fk_question_id` IN(%s)", GetSQLValueString($option_id, "int"), $this->getQuestions());
    758. 

  758. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());				
    759. 

  759. 			return true;
    760. 

  760. 		}else{
    761. 

  761. 			return false;
    762. 

  762. 		}
    763. 

  763. 	}
    764. 

  764. 	
    765. 

  765. 	// remove an option
    766. 

  766. 	function removeOption_NOTUSED($option_id, $memberID){
    767. 

  767. 		require('quizrooDB.php');
    768. 

  768. 		
    769. 

  769. 		// owner check
    770. 

  770. 		if($this->isOwner($memberID)){
    771. 

  771. 			// delete the options and also check if this results actually belongs to this quiz
    772. 

  772. 			$insertSQL = sprintf("DELETE FROM q_options WHERE `option_id` = %d AND `fk_question_id` IN(%s)", GetSQLValueString($option_id, "int"), $this->getQuestions());
    773. 

  773. 			mysql_query($insertSQL, $quizroo) or die(mysql_error());				
    774. 

  774. 			return true;
    775. 

  775. 		}else{
    776. 

  776. 			return false;
    777. 

  777. 		}
    778. 

  778. 	}
    779. 

  779. 	
    780. 

  780. 	// return the number of question in this quiz
    781. 

  781. 	function numQuestions(){
    782. 

  782. 		require('quizrooDB.php');
    783. 

  783. 		$query = sprintf("SELECT question_id FROM q_questions WHERE fk_quiz_id = %d", GetSQLValueString($this->quiz_id, "int"));
    784. 

  784. 		$getQuery = mysql_query($query, $quizroo) or die(mysql_error());
    785. 

  785. 		$row_getQuery = mysql_fetch_assoc($getQuery);
    786. 

  786. 		return mysql_num_rows($getQuery);
    787. 

  787. 	}
    788. 

  788. 	
    789. 

  789. 	// return the publish status of the quiz
    790. 

  790. 	function isPublished(){
    791. 

  791. 		if($this->isPublished == 1){
    792. 

  792. 			return true;
    793. 

  793. 		}else{
    794. 

  794. 			return false;
    795. 

  795. 		}
    796. 

  796. 	}
    797. 

  797. 

  798. 	// check if quiz is ready to be published
    799. 

  799. 	function checkPublishMulti(){
    800. 

  800. 		require('variables.php');		
    801. 

  801. 		// check the number of results
    802. 

  802. 		$numResults = $this->getResultsMulti("count");
    803. 

  803. 		// check the number of questions
    804. 

  804. 		$numQuestions = $this->getQuestions("count");
    805. 

  805. 		// check the number of options
    806. 

  806. 		$listQuestion = explode(',', $this->getQuestions());
    807. 

  807. 		
    808. 

  808. 		if($numQuestions != 0){
    809. 

  809. 			$questionState = true;
    810. 

  810. 			$optionState = true;
    811. 

  811. 			foreach($listQuestion as $question){
    812. 

  812. 				// check the number of options for this question
    813. 

  813. 				$numOptions = $this->getOptionsMulti($question, "count");
    814. 

  814. 				if($numOptions < $VAR_QUIZ_MIN_OPTIONS){
    815. 

  815. 					$optionState = false;
    816. 

  816. 				}
    817. 

  817. 			}
    818. 

  818. 		}else{
    819. 

  819. 			$questionState = false;
    820. 

  820. 			$optionState = false;
    821. 

  821. 		}
    822. 

  822. 		//run through the checks, return false if failed
    823. 

  823. 		if($numResults < $VAR_QUIZ_MIN_RESULT || $numQuestions < $VAR_QUIZ_MIN_QUESTIONS || !$optionState){
    824. 

  824. 			return false;
    825. 

  825. 		}else{
    826. 

  826. 			return true;
    827. 

  827. 		}
    828. 

  828. 	}
    829. 

  829. 

  830. 	// check if quiz is ready to be published HAVE TO CHANGE YL
    831. 

  831. 	function checkPublishTest($mode){
    832. 

  832. 		require('variables.php');		
    833. 

  833. 		// check the number of results
    834. 

  834. 		$numResults = $this->getResultsTest("count");
    835. 

  835. 		// check the number of questions
    836. 

  836. 		$numQuestions = $this->getQuestions("count");
    837. 

  837. 		// check the number of options
    838. 

  838. 		$listQuestion = explode(',', $this->getQuestions());
    839. 

  839. 		
    840. 

  840. 		if($numQuestions != 0){
    841. 

  841. 			$questionState = true;
    842. 

  842. 			$optionState = true;
    843. 

  843. 			foreach($listQuestion as $question){
    844. 

  844. 				// check the number of options for this question
    845. 

  845. 				$numOptions = $this->getOptionsTest($question, "count");
    846. 

  846. 				if($numOptions < $VAR_QUIZ_MIN_OPTIONS){
    847. 

  847. 					$optionState = false;
    848. 

  848. 				}
    849. 

  849. 			}
    850. 

  850. 		}else{
    851. 

  851. 			$questionState = false;
    852. 

  852. 			$optionState = false;
    853. 

  853. 		}
    854. 

  854. 		// run through the checks, return false if failed
    855. 

  855. 		if($numQuestions < $VAR_QUIZ_MIN_QUESTIONS || !$optionState){
    856. 

  856. 				return false;
    857. 

  857. 		}else{
    858. 

  858. 				return true;
    859. 

  859. 		}
    860. 

  860. 		if($mode != 'test_simple'){
    861. 

  861. 			if($numResults < $VAR_QUIZ_MIN_RESULT){
    862. 

  862. 				return false;
    863. 

  863. 			}else{
    864. 

  864. 				return true;
    865. 

  865. 			}
    866. 

  866. 		}
    867. 

  867. 	}
    868. 

  868. 	
    869. 

  869. 	// check if quiz is ready to be published
    870. 

  870. 	function checkPublish_NOTUSED(){
    871. 

  871. 		require('variables.php');		
    872. 

  872. 		// check the number of results
    873. 

  873. 		$numResults = $this->getResults_NOTUSED("count");
    874. 

  874. 		// check the number of questions
    875. 

  875. 		$numQuestions = $this->getQuestions("count");
    876. 

  876. 		// check the number of options
    877. 

  877. 		$listQuestion = explode(',', $this->getQuestions());
    878. 

  878. 		
    879. 

  879. 		if($numQuestions != 0){
    880. 

  880. 			$questionState = true;
    881. 

  881. 			$optionState = true;
    882. 

  882. 			foreach($listQuestion as $question){
    883. 

  883. 				// check the number of options for this question
    884. 

  884. 				$numOptions = $this->getOptions_NOTUSED($question, "count");
    885. 

  885. 				if($numOptions < $VAR_QUIZ_MIN_OPTIONS){
    886. 

  886. 					$optionState = false;
    887. 

  887. 				}
    888. 

  888. 			}
    889. 

  889. 		}else{
    890. 

  890. 			$questionState = false;
    891. 

  891. 			$optionState = false;
    892. 

  892. 		}
    893. 

  893. 		// run through the checks, return false if failed
    894. 

  894. 		if($numResults < $VAR_QUIZ_MIN_RESULT || $numQuestions < $VAR_QUIZ_MIN_QUESTIONS || !$optionState){
    895. 

  895. 			return false;
    896. 

  896. 		}else{
    897. 

  897. 			return true;
    898. 

  898. 		}
    899. 

  899. 	}
    900. 

  900. 	
    901. 

  901. 	// publish the quiz
    902. 

  902. 	function publish($memberID){
    903. 

  903. 		require('quizrooDB.php');
    904. 

  904. 		require('variables.php');
    905. 

  905. 

  906. 		//***********************************************ADD BY LIEN************************************************//
    907. 

  907. 		$queryMode = sprintf("SELECT display_mode FROM q_quizzes WHERE quiz_id = %d", $this->quiz_id);
    908. 

  908. 		$resultMode =  mysql_query($queryMode, $quizroo) or die(mysql_error());
    909. 

  909. 		$row_resultMode = mysql_fetch_assoc($resultMode);
    910. 

  910. 		$resultforMode = array();
    911. 

  911. 		$mode = "";
    912. 

  912. 		do{
    913. 

  913. 			$resultforMode[] = array($row_resultMode['display_mode']);
    914. 

  914. 			if ($row_resultMode['display_mode'] == "multi_simple")
    915. 

  915. 				$mode = "simple";
    916. 

  916. 			if ($row_resultMode['display_mode'] == "multi_accurate")
    917. 

  917. 				$mode = "accurate";
    918. 

  918. 			if ($row_resultMode['display_mode'] == "test_simple")
    919. 

  919. 				$mode = "test_simple";	
    920. 

  920. 			if ($row_resultMode['display_mode'] == "test_custom")
    921. 

  921. 				$mode = "test_custom";				
    922. 

  922. 		}while($row_resultMode = mysql_fetch_assoc($resultMode));
    923. 

  923. 

  924. 		//***********************************************END OF ADD BY LIEN************************************************//
    925. 

  925. 		
    926. 

  926. 		// check ig quiz belongs to member
    927. 

  927. 		if($this->isOwner($memberID)){
    928. 

  928. 			// check if the quiz is already published
    929. 

  929. 			if(!$this->isPublished()){ 
    930. 

  930. 				// run through the checks, return false if failed
    931. 

  931. 				if($mode == "simple" || $mode == "accurate"){
    932. 

  932. 					if(!$this->checkPublishMulti()){
    933. 

  933. 						return -2;
    934. 

  934. 					}
    935. 

  935. 				}
    936. 

  936. 				else{
    937. 

  937. 					if(!$this->checkPublishTest($mode)){
    938. 

  938. 						return -2;
    939. 

  939. 					}				
    940. 

  940. 				}
    941. 

  941. 				
    942. 

  942. 				// check if coming from edits
    943. 

  943. 				if($this->isPublished == 0){				
    944. 

  944. 					// set the publish flag to 1 and award the first creation score
    945. 

  945. 					$query = sprintf("UPDATE q_quizzes SET isPublished = 1, quiz_score = %d WHERE quiz_id = %d", $GAME_BASE_POINT, $this->quiz_id);
    946. 

  946. 					mysql_query($query, $quizroo) or die(mysql_error());
    947. 

  947. 					$this->isPublished = 1;
    948. 

  948. 					
    949. 

  949. 					// check the current member stats (for level up calculation later)
    950. 

  950. 					$queryCheck = sprintf("SELECT `level`, quiztaker_score FROM `s_members` WHERE `member_id` = %d", $this->fk_member_id);
    951. 

  951. 					$getResults = mysql_query($queryCheck, $quizroo) or die(mysql_error());
    952. 

  952. 					$row_getResults = mysql_fetch_assoc($getResults);
    953. 

  953. 					$old_level = $row_getResults['level'];
    954. 

  954. 					$old_score = $row_getResults['quiztaker_score'];
    955. 

  955. 					mysql_free_result($getResults);
    956. 

  956. 					
    957. 

  957. 					// update the member's creation score
    958. 

  958. 					$query = sprintf("UPDATE s_members SET quizcreator_score = quizcreator_score + %d, quizcreator_score_today = quizcreator_score_today + %d WHERE member_id = %s", $GAME_BASE_POINT, $GAME_BASE_POINT, $this->fk_member_id);
    959. 

  959. 					mysql_query($query, $quizroo) or die(mysql_error());
    960. 

  960. 					
    961. 

  961. 					// check if the there is a levelup:
    962. 

  962. 					///////////////////////////////////////
    963. 

  963. 					
    964. 

  964. 					// check the level table 
    965. 

  965. 					$queryLevel = sprintf("SELECT id FROM `g_levels` WHERE points <= %d ORDER BY points DESC LIMIT 0, 1", $old_score + $GAME_BASE_POINT);
    966. 

  966. 					$getLevel = mysql_query($queryLevel, $quizroo) or die(mysql_error());
    967. 

  967. 					$row_getLevel = mysql_fetch_assoc($getLevel);
    968. 

  968. 					$new_level = $row_getLevel['id'];
    969. 

  969. 					
    970. 

  970. 					if($new_level > $old_level){ // a levelup has occurred
    971. 

  971. 						// update the member table to reflect the new level
    972. 

  972. 						$queryUpdate = sprintf("UPDATE s_members SET level = %d WHERE member_id = %s", $new_level, $this->fk_member_id);
    973. 

  973. 						mysql_query($queryUpdate, $quizroo) or die(mysql_error());	
    974. 

  974. 						
    975. 

  975. 						// return the ID of the level acheievement
    976. 

  976. 						return $new_level;	
    977. 

  977. 					}else{
    978. 

  978. 						return -1;
    979. 

  979. 					}
    980. 

  980. 				}else{
    981. 

  981. 					// set the publish flag to 1
    982. 

  982. 					$query = sprintf("UPDATE q_quizzes SET isPublished = 1 WHERE quiz_id = %d", $this->quiz_id);
    983. 

  983. 					mysql_query($query, $quizroo) or die(mysql_error());
    984. 

  984. 					$this->isPublished = 1;
    985. 

  985. 					
    986. 

  986. 					return -1;
    987. 

  987. 				}
    988. 

  988. 			}else{
    989. 

  989. 				// already published, do nothing
    990. 

  990. 				return -1;
    991. 

  991. 			}
    992. 

  992. 		}else{
    993. 

  993. 			return false;
    994. 

  994. 		}
    995. 

  995. 	}
    996. 

  996. 	
    997. 

  997. 	// re-publish the quiz
    998. 

  998. 	function republish($memberID){
    999. 

  999. 		require('quizrooDB.php');
    1000. 

  1000. 		require('variables.php');
    1001. 

  1001. 		
    1002. 

  1002. 		// check if the quiz is already published
    1003. 

  1003. 		if(!$this->isPublished() && $this->isOwner($memberID)){		
    1004. 

  1004. 			// set the publish flag to 1
    1005. 

  1005. 			$query = sprintf("UPDATE q_quizzes SET isPublished = 1 WHERE quiz_id = %d", $this->quiz_id);
    1006. 

  1006. 			mysql_query($query, $quizroo) or die(mysql_error());
    1007. 

  1007. 			
    1008. 

  1008. 			$this->isPublished = 1;
    1009. 

  1009. 			
    1010. 

  1010. 			return true;
    1011. 

  1011. 		}else{
    1012. 

  1012. 			return false;
    1013. 

  1013. 		}
    1014. 

  1014. 	}
    1015. 

  1015. 	
    1016. 

  1016. 	// unpublish the quiz
    1017. 

  1017. 	function unpublish($memberID){
    1018. 

  1018. 		require('quizrooDB.php');
    1019. 

  1019. 		require('variables.php');
    1020. 

  1020. 		
    1021. 

  1021. 		// check if the quiz is already published
    1022. 

  1022. 		if($this->isPublished() && $this->isOwner($memberID)){
    1023. 

  1023. 			// check if it's a draft or a published quiz
    1024. 

  1024. 			if($this->isPublished == 1){
    1025. 

  1025. 				// set the publish flag to 2
    1026. 

  1026. 				$query = sprintf("UPDATE q_quizzes SET isPublished = 2 WHERE quiz_id = %d", $this->quiz_id);
    1027. 

  1027. 				$this->isPublished = 2;
    1028. 

  1028. 			}else{
    1029. 

  1029. 				// set back to 0
    1030. 

  1030. 				$query = sprintf("UPDATE q_quizzes SET isPublished = 0 WHERE quiz_id = %d", $this->quiz_id);
    1031. 

  1031. 				$this->isPublished = 0;
    1032. 

  1032. 			}
    1033. 

  1033. 			mysql_query($query, $quizroo) or die(mysql_error());
    1034. 

  1034. 			
    1035. 

  1035. 			return true;
    1036. 

  1036. 		}else{
    1037. 

  1037. 			return false;
    1038. 

  1038. 		}
    1039. 

  1039. 	}
    1040. 

  1040. 	
    1041. 

  1041. 	// archive the quiz
    1042. 

  1042. 	function archive($memberID){
    1043. 

  1043. 		require('quizrooDB.php');
    1044. 

  1044. 		require('variables.php');
    1045. 

  1045. 		
    1046. 

  1046. 		// check if the quiz is already published
    1047. 

  1047. 		if($this->isOwner($memberID)){		
    1048. 

  1048. 			// set the publish flag to 0
    1049. 

  1049. 			$query = sprintf("UPDATE q_quizzes SET isPublished = 3 WHERE quiz_id = %d", $this->quiz_id);
    1050. 

  1050. 			mysql_query($query, $quizroo) or die(mysql_error());
    1051. 

  1051. 			
    1052. 

  1052. 			$this->isPublished = 3;
    1053. 

  1053. 			
    1054. 

  1054. 			return true;
    1055. 

  1055. 		}else{
    1056. 

  1056. 			return false;
    1057. 

  1057. 		}
    1058. 

  1058. 	}
    1059. 

  1059. 	
    1060. 

  1060. 	// get the rating value by a member
    1061. 

  1061. 	function getRating($member_id){
    1062. 

  1062. 		// find out the rating of this quiz
    1063. 

  1063. 		require('quizrooDB.php');
    1064. 

  1064. 		$query = sprintf("SELECT rating FROM q_store_rating WHERE fk_member_id = %s AND fk_quiz_id = %d", $member_id, $this->quiz_id);
    1065. 

  1065. 		$getQuery = mysql_query($query, $quizroo) or die(mysql_error());
    1066. 

  1066. 		$row_getQuery = mysql_fetch_assoc($getQuery);
    1067. 

  1067. 		$totalRows_getQuery = mysql_num_rows($getQuery);
    1068. 

  1068. 		
    1069. 

  1069. 		if($totalRows_getQuery != 0){
    1070. 

  1070. 			return $row_getQuery['rating'];
    1071. 

  1071. 		}else{
    1072. 

  1072. 			return 0;
    1073. 

  1073. 		}
    1074. 

  1074. 	}
    1075. 

  1075. 

  1076. 	// get the list of results belonging to this quiz
    1077. 

  1077. 	function getResultsMulti($type = NULL){
    1078. 

  1078. 		require('quizrooDB.php');
    1079. 

  1079. 		$query = sprintf("SELECT result_id FROM q_results_multi WHERE fk_quiz_id = %d", $this->quiz_id);
    1080. 

  1080. 		$getQuery = mysql_query($query, $quizroo) or die(mysql_error());
    1081. 

  1081. 		$row_getQuery = mysql_fetch_assoc($getQuery);
    1082. 

  1082. 		$totalRows_getQuery = mysql_num_rows($getQuery);
    1083. 

  1083. 		
    1084. 

  1084. 		if($type == "count"){
    1085. 

  1085. 			// return the count
    1086. 

  1086. 			return $totalRows_getQuery;
    1087. 

  1087. 		}else{
    1088. 

  1088. 			// return the list
    1089. 

  1089. 			if($totalRows_getQuery != 0){
    1090. 

  1090. 				$results = "";
    1091. 

  1091. 				do{
    1092. 

  1092. 					$results .= $row_getQuery['result_id'].",";
    1093. 

  1093. 				}while($row_getQuery = mysql_fetch_assoc($getQuery));
    1094. 

  1094. 				return substr($results, 0, -1);
    1095. 

  1095. 			}else{
    1096. 

  1096. 				return false;
    1097. 

  1097. 			}
    1098. 

  1098. 		}
    1099. 

  1099. 	}
    1100. 

  1100. 	
    1101. 

  1101. 	// get the list of results belonging to this quiz
    1102. 

  1102. 	function getResultsTest($type = NULL){
    1103. 

  1103. 		require('quizrooDB.php');
    1104. 

  1104. 		$query = sprintf("SELECT result_id FROM q_results_test WHERE fk_quiz_id = %d", $this->quiz_id);
    1105. 

  1105. 		$getQuery = mysql_query($query, $quizroo) or die(mysql_error());
    1106. 

  1106. 		$row_getQuery = mysql_fetch_assoc($getQuery);
    1107. 

  1107. 		$totalRows_getQuery = mysql_num_rows($getQuery);
    1108. 

  1108. 		
    1109. 

  1109. 		if($type == "count"){
    1110. 

  1110. 			// return the count
    1111. 

  1111. 			return $totalRows_getQuery;
    1112. 

  1112. 		}else{
    1113. 

  1113. 			// return the list
    1114. 

  1114. 			if($totalRows_getQuery != 0){
    1115. 

  1115. 				$results = "";
    1116. 

  1116. 				do{
    1117. 

  1117. 					$results .= $row_getQuery['result_id'].",";
    1118. 

  1118. 				}while($row_getQuery = mysql_fetch_assoc($getQuery));
    1119. 

  1119. 				return substr($results, 0, -1);
    1120. 

  1120. 			}else{
    1121. 

  1121. 				return false;
    1122. 

  1122. 			}
    1123. 

  1123. 		}
    1124. 

  1124. 	}
    1125. 

  1125. 	
    1126. 

  1126. 	// get the list of results belonging to this quiz
    1127. 

  1127. 	function getResults_NOTUSED($type = NULL){
    1128. 

  1128. 		require('quizrooDB.php');
    1129. 

  1129. 		$query = sprintf("SELECT result_id FROM q_results WHERE fk_quiz_id = %d", $this->quiz_id);
    1130. 

  1130. 		$getQuery = mysql_query($query, $quizroo) or die(mysql_error());
    1131. 

  1131. 		$row_getQuery = mysql_fetch_assoc($getQuery);
    1132. 

  1132. 		$totalRows_getQuery = mysql_num_rows($getQuery);
    1133. 

  1133. 		
    1134. 

  1134. 		if($type == "count"){
    1135. 

  1135. 			// return the count
    1136. 

  1136. 			return $totalRows_getQuery;
    1137. 

  1137. 		}else{
    1138. 

  1138. 			// return the list
    1139. 

  1139. 			if($totalRows_getQuery != 0){
    1140. 

  1140. 				$results = "";
    1141. 

  1141. 				do{
    1142. 

  1142. 					$results .= $row_getQuery['result_id'].",";
    1143. 

  1143. 				}while($row_getQuery = mysql_fetch_assoc($getQuery));
    1144. 

  1144. 				return substr($results, 0, -1);
    1145. 

  1145. 			}else{
    1146. 

  1146. 				return false;
    1147. 

  1147. 			}
    1148. 

  1148. 		}
    1149. 

  1149. 	}
    1150. 

  1150. 	
    1151. 

  1151. 	// get the list of questions belonging to this quiz
    1152. 

  1152. 	function getQuestions($type = NULL){
    1153. 

  1153. 		require('quizrooDB.php');
    1154. 

  1154. 		$query = sprintf("SELECT question_id FROM q_questions WHERE fk_quiz_id = %d", $this->quiz_id);
    1155. 

  1155. 		$getQuery = mysql_query($query, $quizroo) or die(mysql_error());
    1156. 

  1156. 		$row_getQuery = mysql_fetch_assoc($getQuery);
    1157. 

  1157. 		$totalRows_getQuery = mysql_num_rows($getQuery);
    1158. 

  1158. 		
    1159. 

  1159. 		if($type == "count"){
    1160. 

  1160. 			// return the count
    1161. 

  1161. 			return $totalRows_getQuery;
    1162. 

  1162. 		}else{
    1163. 

  1163. 			// return the list
    1164. 

  1164. 			if($totalRows_getQuery != 0){
    1165. 

  1165. 				$results = "";
    1166. 

  1166. 				do{
    1167. 

  1167. 					$results .= $row_getQuery['question_id'].",";
    1168. 

  1168. 				}while($row_getQuery = mysql_fetch_assoc($getQuery));
    1169. 

  1169. 				return substr($results, 0, -1);
    1170. 

  1170. 			}else{
    1171. 

  1171. 				return false;
    1172. 

  1172. 			}
    1173. 

  1173. 		}
    1174. 

  1174. 	}
    1175. 

  1175. 	
    1176. 

  1176. 	// get the list of options belonging to a question
    1177. 

  1177. 	function getOptions_NOTUSED($question_id, $type = NULL){
    1178. 

  1178. 		require('quizrooDB.php');
    1179. 

  1179. 		$query = sprintf("SELECT option_id FROM q_options WHERE fk_question_id = %d", $question_id);
    1180. 

  1180. 		$getQuery = mysql_query($query, $quizroo) or die(mysql_error());
    1181. 

  1181. 		$row_getQuery = mysql_fetch_assoc($getQuery);
    1182. 

  1182. 		$totalRows_getQuery = mysql_num_rows($getQuery);
    1183. 

  1183. 		
    1184. 

  1184. 		if($type == "count"){
    1185. 

  1185. 			// return the count
    1186. 

  1186. 			return $totalRows_getQuery;
    1187. 

  1187. 		}else{
    1188. 

  1188. 			if($totalRows_getQuery != 0){
    1189. 

  1189. 				$results = "";
    1190. 

  1190. 				do{
    1191. 

  1191. 					$results .= $row_getQuery['option_id'].",";
    1192. 

  1192. 				}while($row_getQuery = mysql_fetch_assoc($getQuery));
    1193. 

  1193. 				return substr($results, 0, -1);
    1194. 

  1194. 			}else{
    1195. 

  1195. 				return false;
    1196. 

  1196. 			}
    1197. 

  1197. 		}
    1198. 

  1198. 	}
    1199. 

  1199. 

  1200. 	// get the list of options belonging to a question
    1201. 

  1201. 	function getOptionsTest($question_id, $type = NULL){
    1202. 

  1202. 		require('quizrooDB.php');
    1203. 

  1203. 		$query = sprintf("SELECT option_id FROM q_options_test WHERE fk_question_id = %d", $question_id);
    1204. 

  1204. 		$getQuery = mysql_query($query, $quizroo) or die(mysql_error());
    1205. 

  1205. 		$row_getQuery = mysql_fetch_assoc($getQuery);
    1206. 

  1206. 		$totalRows_getQuery = mysql_num_rows($getQuery);
    1207. 

  1207. 		
    1208. 

  1208. 		if($type == "count"){
    1209. 

  1209. 			// return the count
    1210. 

  1210. 			return $totalRows_getQuery;
    1211. 

  1211. 		}else{
    1212. 

  1212. 			if($totalRows_getQuery != 0){
    1213. 

  1213. 				$results = "";
    1214. 

  1214. 				do{
    1215. 

  1215. 					$results .= $row_getQuery['option_id'].",";
    1216. 

  1216. 				}while($row_getQuery = mysql_fetch_assoc($getQuery));
    1217. 

  1217. 				return substr($results, 0, -1);
    1218. 

  1218. 			}else{
    1219. 

  1219. 				return false;
    1220. 

  1220. 			}
    1221. 

  1221. 		}
    1222. 

  1222. 	}
    1223. 

  1223. 	
    1224. 

  1224. 	// get the list of options belonging to a question
    1225. 

  1225. 	function getOptionsMulti($question_id, $type = NULL){
    1226. 

  1226. 		require('quizrooDB.php');
    1227. 

  1227. 		$query = sprintf("SELECT option_id FROM q_options_multi WHERE fk_question_id = %d", $question_id);
    1228. 

  1228. 		$getQuery = mysql_query($query, $quizroo) or die(mysql_error());
    1229. 

  1229. 		$row_getQuery = mysql_fetch_assoc($getQuery);
    1230. 

  1230. 		$totalRows_getQuery = mysql_num_rows($getQuery);
    1231. 

  1231. 		
    1232. 

  1232. 		if($type == "count"){
    1233. 

  1233. 			// return the count
    1234. 

  1234. 			return $totalRows_getQuery;
    1235. 

  1235. 		}else{
    1236. 

  1236. 			if($totalRows_getQuery != 0){
    1237. 

  1237. 				$results = "";
    1238. 

  1238. 				do{
    1239. 

  1239. 					$results .= $row_getQuery['option_id'].",";
    1240. 

  1240. 				}while($row_getQuery = mysql_fetch_assoc($getQuery));
    1241. 

  1241. 				return substr($results, 0, -1);
    1242. 

  1242. 			}else{
    1243. 

  1243. 				return false;
    1244. 

  1244. 			}
    1245. 

  1245. 		}
    1246. 

  1246. 	}
    1247. 

  1247. 

  1248. 	// get the list of attempts for this quiz
    1249. 

  1249. 	function getAttempts($unique = false){
    1250. 

  1250. 		require('quizrooDB.php');
    1251. 

  1251. 		if($unique){
    1252. 

  1252. 			$query = sprintf("SELECT COUNT(*) as count FROM (SELECT store_id FROM q_store_result WHERE fk_quiz_id = %s GROUP BY fk_member_id) t", $this->quiz_id);
    1253. 

  1253. 		}else{
    1254. 

  1254. 			$query = sprintf("SELECT COUNT(*) as count FROM (SELECT store_id FROM q_store_result WHERE fk_quiz_id = %s) t", $this->quiz_id);
    1255. 

  1255. 		}
    1256. 

  1256. 		$getQuery = mysql_query($query, $quizroo) or die(mysql_error());
    1257. 

  1257. 		$row_getQuery = mysql_fetch_assoc($getQuery);
    1258. 

  1258. 		$totalRows_getQuery = mysql_num_rows($getQuery);
    1259. 

  1259. 		
    1260. 

  1260. 		if($totalRows_getQuery == 0){
    1261. 

  1261. 			return 0;
    1262. 

  1262. 		}else{
    1263. 

  1263. 			return $row_getQuery['count'];
    1264. 

  1264. 		}
    1265. 

  1265. 	}
    1266. 

  1266. 	
    1267. 

  1267. 	// award points based on like(1), dislike(-1) or neutral(0)
    1268. 

  1268. 	function awardPoints($type, $member_id){
    1269. 

  1269. 		require('variables.php');
    1270. 

  1270. 		if($this->isPublished()){ // check if quiz is published
    1271. 

  1271. 			require('quizrooDB.php');
    1272. 

  1272. 				
    1273. 

  1273. 			// store the current level of the quiz creator
    1274. 

  1274. 			$creator_old_level = $this->creator('level');
    1275. 

  1275. 			$creator_old_rank = $this->creator('rank');
    1276. 

  1276. 			
    1277. 

  1277. 			switch($type){				
    1278. 

  1278. 				case -2: // penalty deduction for 'dislike' rating
    1279. 

  1279. 				
    1280. 

  1280. 				// check if taker has already disliked
    1281. 

  1281. 				if($this->getRating($member_id) != -1 && $GAME_ALLOW_DISLIKE){ // also check if dislikes are allowed by the system
    1282. 

  1282. 					// deduct the quiz score
    1283. 

  1283. 					if($this->quiz_score > 0){ // check if quiz score is more than 0
    1284. 

  1284. 						// deduct the quiz score and increment the dislike count
    1285. 

  1285. 						$query = sprintf("UPDATE q_quizzes SET quiz_score = quiz_score - %d, dislikes = dislikes + 1 WHERE quiz_id = %d", $GAME_BASE_POINT * 2, $this->quiz_id);
    1286. 

  1286. 						mysql_query($query, $quizroo) or die(mysql_error());
    1287. 

  1287. 		
    1288. 

  1288. 						// update the creator's points
    1289. 

  1289. 						$query = sprintf("UPDATE s_members SET quizcreator_score = quizcreator_score - %d, quizcreator_score_today = quizcreator_score_today - %d WHERE member_id = %s", $GAME_BASE_POINT * 2, $GAME_BASE_POINT * 2, $this->fk_member_id);
    1290. 

  1290. 						mysql_query($query, $quizroo) or die(mysql_error());
    1291. 

  1291. 					}
    1292. 

  1292. 					
    1293. 

  1293. 					// log the id of the awarder
    1294. 

  1294. 					if($this->getRating($member_id) != 0){ // check if member has rated before
    1295. 

  1295. 						// do an update if member has rated this quiz before
    1296. 

  1296. 						$query = sprintf("UPDATE q_store_rating SET rating = %d WHERE fk_quiz_id = %d AND fk_member_id = %s", -1, $this->quiz_id, $member_id);
    1297. 

  1297. 						mysql_query($query, $quizroo) or die(mysql_error());				
    1298. 

  1298. 					}else{
    1299. 

  1299. 						// do an insert if member is rating this quiz for the first time
    1300. 

  1300. 						$query = sprintf("INSERT INTO q_store_rating(fk_member_id, fk_quiz_id, rating) VALUES(%d, %d, %d)", $member_id, $this->quiz_id, -1);
    1301. 

  1301. 						mysql_query($query, $quizroo) or die(mysql_error());					
    1302. 

  1302. 					}				
    1303. 

  1303. 				}
    1304. 

  1304. 				
    1305. 

  1305. 				break; // end case -2
    1306. 

  1306. 				
    1307. 

  1307. 				case -1: // minus the point given during the 'like'
    1308. 

  1308. 				// we make sure quiz was already liked
    1309. 

  1309. 				if($this->getRating($member_id) == 1){
    1310. 

  1310. 					// deduct the quiz score
    1311. 

  1311. 					$query = sprintf("UPDATE q_quizzes SET quiz_score = quiz_score - %d, likes = likes - 1 WHERE quiz_id = %d", $GAME_BASE_POINT, $this->quiz_id);
    1312. 

  1312. 					mysql_query($query, $quizroo) or die(mysql_error());
    1313. 

  1313. 					
    1314. 

  1314. 					// update the creator's points
    1315. 

  1315. 					$query = sprintf("UPDATE s_members SET quizcreator_score = quizcreator_score - %d, quizcreator_score_today = quizcreator_score_today - %d WHERE member_id = %s", $GAME_BASE_POINT, $GAME_BASE_POINT, $this->fk_member_id);
    1316. 

  1316. 					mysql_query($query, $quizroo) or die(mysql_error());
    1317. 

  1317. 					
    1318. 

  1318. 					// update member has rating of this quiz
    1319. 

  1319. 					$query = sprintf("DELETE FROM q_store_rating WHERE fk_quiz_id = %d AND fk_member_id = %s", $this->quiz_id, $member_id);
    1320. 

  1320. 					mysql_query($query, $quizroo) or die(mysql_error());
    1321. 

  1321. 				}
    1322. 

  1322. 				
    1323. 

  1323. 				break; // end case -1
    1324. 

  1324. 							
    1325. 

  1325. 				case 0:	// award the base points or bonus award for 'like' rating		
    1326. 

  1326. 				case 1: // bonus award for 'like' rating
    1327. 

  1327. 				default:// default case for no type specified
    1328. 

  1328. 				
    1329. 

  1329. 				// check if taker has already liked
    1330. 

  1330. 				if($this->getRating($member_id) != 1){
    1331. 

  1331. 					// precheck the level table to see if there's a levelup
    1332. 

  1332. 					$queryCheck = sprintf("SELECT id FROM `g_levels` WHERE points <= (SELECT `quiztaker_score`+`quizcreator_score` FROM s_members WHERE member_id = %s)+%s ORDER BY points DESC LIMIT 0, 1", $this->fk_member_id, $GAME_BASE_POINT);
    1333. 

  1333. 					$getCheck = mysql_query($queryCheck, $quizroo) or die(mysql_error());
    1334. 

  1334. 					$row_getCheck = mysql_fetch_assoc($getCheck);
    1335. 

  1335. 					$creator_new_level = $row_getCheck['id'];
    1336. 

  1336. 					mysql_free_result($getCheck);
    1337. 

  1337. 					
    1338. 

  1338. 					// precheck the rank table to see if there's a leveluo
    1339. 

  1339. 					$queryCheck = sprintf("SELECT fk_id FROM `g_ranks` WHERE `min` <= %d ORDER BY `min` DESC LIMIT 0, 1", $creator_new_level);
    1340. 

  1340. 					$getCheck = mysql_query($queryCheck, $quizroo) or die(mysql_error());
    1341. 

  1341. 					$row_getCheck = mysql_fetch_assoc($getCheck);
    1342. 

  1342. 					$creator_new_rank = $row_getCheck['fk_id'];
    1343. 

  1343. 					mysql_free_result($getCheck);
    1344. 

  1344. 					
    1345. 

  1345. 					if($creator_new_level > $creator_old_level){ // a levelup has occurred, update the achievement log
    1346. 

  1346. 						$queryUpdate = sprintf("INSERT INTO g_achievements_log(fk_member_id, fk_achievement_id) VALUES(%d, %d)", $this->creator('member_id'), $creator_new_level);
    1347. 

  1347. 						mysql_query($queryUpdate, $quizroo) or die(mysql_error());
    1348. 

  1348. 						
    1349. 

  1349. 						if($creator_new_rank > $creator_old_rank){ // a rankup also occurred, update the achievement log
    1350. 

  1350. 							$queryUpdate = sprintf("INSERT INTO g_achievements_log(fk_member_id, fk_achievement_id) VALUES(%d, %d)", $this->creator('member_id'), $creator_new_level);
    1351. 

  1351. 							mysql_query($queryUpdate, $quizroo) or die(mysql_error());
    1352. 

  1352. 							
    1353. 

  1353. 							// update the creator's points and increment the level and rank
    1354. 

  1354. 							$query = sprintf("UPDATE s_members SET quizcreator_score = quizcreator_score + %d, quizcreator_score_today = quizcreator_score_today + %d, level = %d, rank = %d WHERE member_id = %s", $GAME_BASE_POINT, $GAME_BASE_POINT, $creator_new_level, $creator_new_rank, $this->fk_member_id);
    1355. 

  1355. 							mysql_query($query, $quizroo) or die(mysql_error());
    1356. 

  1356. 						}else{
    1357. 

  1357. 							// update the creator's points and increment the level
    1358. 

  1358. 							$query = sprintf("UPDATE s_members SET quizcreator_score = quizcreator_score + %d, quizcreator_score_today = quizcreator_score_today + %d, level = %d WHERE member_id = %s", $GAME_BASE_POINT, $GAME_BASE_POINT, $creator_new_level, $this->fk_member_id);
    1359. 

  1359. 							mysql_query($query, $quizroo) or die(mysql_error());
    1360. 

  1360. 						}
    1361. 

  1361. 					}else{
    1362. 

  1362. 						// no levelup, just update the creator's points
    1363. 

  1363. 						$query = sprintf("UPDATE s_members SET quizcreator_score = quizcreator_score + %d, quizcreator_score_today = quizcreator_score_today + %d WHERE member_id = %s", $GAME_BASE_POINT, $GAME_BASE_POINT, $this->fk_member_id);
    1364. 

  1364. 						mysql_query($query, $quizroo) or die(mysql_error());
    1365. 

  1365. 					}
    1366. 

  1366. 					
    1367. 

  1367. 					// update the quiz score
    1368. 

  1368. 					if($type == 1){ // also increment the like count
    1369. 

  1369. 						$query = sprintf("UPDATE q_quizzes SET quiz_score = quiz_score + %d, likes = likes + 1 WHERE quiz_id = %d", $GAME_BASE_POINT, $this->quiz_id);
    1370. 

  1370. 						mysql_query($query, $quizroo) or die(mysql_error());
    1371. 

  1371. 					}else{ // just update the score
    1372. 

  1372. 						$query = sprintf("UPDATE q_quizzes SET quiz_score = quiz_score + %d WHERE quiz_id = %d", $GAME_BASE_POINT, $this->quiz_id);
    1373. 

  1373. 						mysql_query($query, $quizroo) or die(mysql_error());
    1374. 

  1374. 					}
    1375. 

  1375. 					
    1376. 

  1376. 					if($type == 1){			
    1377. 

  1377. 						// log the id of the awarder
    1378. 

  1378. 						if($this->getRating($member_id) != 0){ // check if member has rated before
    1379. 

  1379. 							// do an update if member has rated this quiz before
    1380. 

  1380. 							$query = sprintf("UPDATE q_store_rating SET rating = %d WHERE fk_quiz_id = %d AND fk_member_id = %s", 1, $this->quiz_id, $member_id);
    1381. 

  1381. 							mysql_query($query, $quizroo) or die(mysql_error());				
    1382. 

  1382. 						}else{
    1383.