$user_id) { Blog::subscribeUser((int) $_GET['blog_id'], $user_id); } } } if (!empty($_POST['unregister'])) { if (isset($_POST['user']) && is_array($_POST['user'])) { foreach ($_POST['user'] as $index => $user_id) { Blog::unsubscribeUser($_GET['blog_id'], $user_id); } } } if (!empty($_GET['register'])) { Blog::subscribeUser((int) $_GET['blog_id'], (int) $_GET['user_id']); Display::addFlash( Display::return_message(get_lang('UserRegistered'), 'success') ); $flag = 1; } if (!empty($_GET['unregister'])) { Blog::unsubscribeUser($_GET['blog_id'], $_GET['user_id']); } if (isset($_GET['action']) && $_GET['action'] == 'manage_tasks') { if (isset($_GET['do']) && $_GET['do'] == 'delete') { Blog::deleteTask($blog_id, (int) $_GET['task_id']); Display::addFlash( Display::return_message(get_lang('TaskDeleted'), 'success') ); } if (isset($_GET['do']) && $_GET['do'] == 'delete_assignment') { Blog::deleteAssignedTask($blog_id, intval($_GET['task_id']), intval($_GET['user_id'])); Display::addFlash( Display::return_message(get_lang('TaskAssignmentDeleted'), 'success') ); } } if (isset($_GET['action']) && $_GET['action'] == 'view_post') { $task_id = (isset($_GET['task_id']) && is_numeric($_GET['task_id'])) ? $_GET['task_id'] : 0; if (isset($_GET['do']) && $_GET['do'] == 'delete_comment') { if (api_is_allowed('BLOG_'.$blog_id, 'article_comments_delete', $task_id)) { Blog::deleteComment($blog_id, (int) $_GET['post_id'], (int) $_GET['comment_id']); Display::addFlash( Display::return_message(get_lang('CommentDeleted'), 'success') ); } else { Display::addFlash( Display::return_message(get_lang('ActionNotAllowed'), 'error') ); } } if (isset($_GET['do']) && $_GET['do'] == 'delete_article') { if (api_is_allowed('BLOG_'.$blog_id, 'article_delete', $task_id)) { Blog::deletePost($blog_id, (int) $_GET['article_id']); $action = ''; // Article is gone, go to blog home Display::addFlash( Display::return_message(get_lang('BlogDeleted'), 'success') ); } else { Display::addFlash( Display::return_message(get_lang('ActionNotAllowed'), 'error') ); } } if (isset($_GET['do']) && $_GET['do'] == 'rate') { if (isset($_GET['type']) && $_GET['type'] == 'post') { if (api_is_allowed('BLOG_'.$blog_id, 'article_rate')) { Blog::addRating('post', $blog_id, (int) $_GET['post_id'], (int) $_GET['rating']); Display::addFlash( Display::return_message(get_lang('RatingAdded'), 'success') ); } } if (isset($_GET['type']) && $_GET['type'] == 'comment') { if (api_is_allowed('BLOG_'.$blog_id, 'article_comments_add')) { Blog::addRating('comment', $blog_id, (int) $_GET['comment_id'], (int) $_GET['rating']); Display::addFlash( Display::return_message(get_lang('RatingAdded'), 'success') ); } } } } /* DISPLAY */ // Set breadcrumb switch ($action) { case 'new_post': $nameTools = get_lang('NewPost'); break; case 'view_post': $nameTools = ''; break; case 'manage_tasks': $nameTools = get_lang('TaskManager'); break; case 'manage_members': $nameTools = get_lang('MemberManager'); break; case 'manage_rights': $nameTools = get_lang('RightsManager'); break; case 'view_search_result': $nameTools = get_lang('SearchResults'); break; case 'execute_task': $nameTools = get_lang('ExecuteThisTask'); break; default: $nameTools = Blog::getBlogTitle($blog_id); } $interbreadcrumb[] = [ 'url' => "blog.php?blog_id=$blog_id&".api_get_cidreq(), 'name' => Blog::getBlogTitle($blog_id), ]; $actionsLeft = Display::url( Display::return_icon('blog.png', get_lang('Home'), '', ICON_SIZE_MEDIUM), api_get_self().'?blog_id='.$blog_id.'&'.api_get_cidreq() ); if (api_is_allowed('BLOG_'.$blog_id, 'article_add')) { $actionsLeft .= Display::url( Display::return_icon('new_article.png', get_lang('NewPost'), '', ICON_SIZE_MEDIUM), api_get_self().'?action=new_post&blog_id='.$blog_id.'&'.api_get_cidreq() ); } if (api_is_allowed('BLOG_'.$blog_id, 'task_management')) { $actionsLeft .= Display::url( Display::return_icon('blog_tasks.png', get_lang('TaskManager'), '', ICON_SIZE_MEDIUM), api_get_self().'?action=manage_tasks&blog_id='.$blog_id.'&'.api_get_cidreq() ); } if (api_is_allowed('BLOG_'.$blog_id, 'member_management')) { $actionsLeft .= Display::url( Display::return_icon('blog_admin_users.png', get_lang('MemberManager'), '', ICON_SIZE_MEDIUM), api_get_self().'?action=manage_members&blog_id='.$blog_id.'&'.api_get_cidreq() ); } $titleBlog = Blog::getBlogTitle($blog_id); $descriptionBlog = Blog::getBlogSubtitle($blog_id); $idBlog = $blog_id; $searchBlog = isset($_GET['q']) ? Security::remove_XSS($_GET['q']) : ''; //calendar blog $month = isset($_GET['month']) ? (int) $_GET['month'] : (int) date('m'); $year = isset($_GET['year']) ? (int) $_GET['year'] : date('Y'); $calendarBlog = Blog::displayMiniMonthCalendar($month, $year, $blog_id); //task blogs $taskBlog = Blog::getPersonalTasksList(); if (isset($flag) && $flag == '1') { $action = "manage_tasks"; Blog::displayTaskAssignmentForm($blog_id); } $user_task = false; $course_id = api_get_course_int_id(); if (isset($_GET['task_id']) && is_numeric($_GET['task_id'])) { $task_id = (int) $_GET['task_id']; } else { $task_id = 0; $tbl_blogs_tasks_rel_user = Database::get_course_table(TABLE_BLOGS_TASKS_REL_USER); $sql = "SELECT COUNT(*) as number FROM ".$tbl_blogs_tasks_rel_user." WHERE c_id = $course_id AND blog_id = ".$blog_id." AND user_id = ".api_get_user_id()." AND task_id = ".$task_id; $result = Database::query($sql); $row = Database::fetch_array($result); if ($row['number'] == 1) { $user_task = true; } } $tpl = new Template($nameTools); $tpl->setHelp('Blogs'); $tpl->assign('title', $titleBlog); $tpl->assign('description', $descriptionBlog); $tpl->assign('id_blog', $idBlog); $tpl->assign('calendar', $calendarBlog); $tpl->assign('search', $searchBlog); $tpl->assign('task', $taskBlog); $blogLayout = null; switch ($action) { case 'new_post': $formAdd = ''; if (api_is_allowed('BLOG_'.$blog_id, 'article_add', $user_task ? $task_id : 0)) { $formAdd = Blog::displayPostCreateForm($blog_id); $tpl->assign('content', $formAdd); $blogLayout = $tpl->get_template('blog/layout.tpl'); } else { api_not_allowed(); } break; case 'view_post': $postArticle = Blog::getSinglePost($blog_id, intval($_GET['post_id'])); $tpl->assign('post', $postArticle); $blogLayout = $tpl->get_template('blog/post.tpl'); break; case 'edit_post': $task_id = (isset($_GET['task_id']) && is_numeric($_GET['task_id'])) ? $_GET['task_id'] : 0; if (api_is_allowed('BLOG_'.$blog_id, 'article_edit', $task_id)) { // we show the form if // 1. no post data // 2. there is post data and the required field is empty if (!$_POST || (!empty($_POST) && empty($_POST['post_title']))) { // if there is post data there is certainly an error in the form $formEdit = Blog::displayPostEditForm($blog_id, intval($_GET['post_id'])); $tpl->assign('content', $formEdit); $blogLayout = $tpl->get_template('blog/layout.tpl'); if ($_POST) { $post = Blog::getSinglePost($blog_id, intval($_GET['post_id'])); $tpl->assign('post', $post); $blogLayout = $tpl->get_template('blog/post.tpl'); } } } else { api_not_allowed(); } break; case 'manage_members': $manage = null; if (api_is_allowed('BLOG_'.$blog_id, 'member_management')) { $manage .= Blog::displayUserSubscriptionForm($blog_id); $manage .= Blog::displayUserUnsubscriptionForm($blog_id); } else { api_not_allowed(); } $tpl->assign('content', $manage); $blogLayout = $tpl->get_template('blog/layout.tpl'); break; case 'manage_rights': $manage = Blog::displayUserRightsForm($blog_id); $tpl->assign('content', $manage); $blogLayout = $tpl->get_template('blog/layout.tpl'); break; case 'manage_tasks': if (api_is_allowed('BLOG_'.$blog_id, 'task_management')) { $task = null; if (isset($_GET['do']) && $_GET['do'] == 'add') { $task .= Blog::displayTaskCreateForm($blog_id); } if (isset($_GET['do']) && $_GET['do'] == 'assign') { $task .= Blog::displayTaskAssignmentForm($blog_id); } if (isset($_GET['do']) && $_GET['do'] == 'edit') { $task .= Blog::displayTaskEditForm( $blog_id, intval($_GET['task_id']) ); } if (isset($_GET['do']) && $_GET['do'] == 'edit_assignment') { $task .= Blog::displayAssignedTaskEditForm( $blog_id, intval($_GET['task_id']), intval($_GET['user_id']) ); } $task .= Blog::displayTasksList($blog_id); $task .= Blog::displayAssignedTasksList($blog_id); $tpl->assign('content', $task); $blogLayout = $tpl->get_template('blog/layout.tpl'); } else { api_not_allowed(); } break; case 'execute_task': if (isset($_GET['post_id'])) { $post = Blog::getSinglePost($blog_id, intval($_GET['post_id'])); $tpl->assign('post', $post); $blogLayout = $tpl->get_template('blog/post.tpl'); } else { $taskPost = Blog::displayPostSelectionForTask($blog_id, intval($_GET['task_id'])); $tpl->assign('content', $taskPost); $blogLayout = $tpl->get_template('blog/layout.tpl'); } break; case 'view_search_result': $listArticles = Blog::getSearchResults($blog_id, Database::escape_string($_GET['q'])); $titleSearch = get_lang('SearchResults'); $tpl->assign('search', $titleSearch); $tpl->assign('articles', $listArticles); $blogLayout = $tpl->get_template('blog/blog.tpl'); break; case '': default: if (isset($_GET['filter']) && !empty($_GET['filter'])) { $listArticles = Blog::getDailyResults($blog_id, Database::escape_string($_GET['filter'])); $dateSearch = api_format_date($_GET['filter'], DATE_FORMAT_LONG); $titleSearch = get_lang('PostsOf').' '.$dateSearch; $tpl->assign('search', $titleSearch); $tpl->assign('articles', $listArticles); $blogLayout = $tpl->get_template('blog/blog.tpl'); } else { $listArticles = Blog::getPosts($blog_id); $tpl->assign('articles', $listArticles); $blogLayout = $tpl->get_template('blog/blog.tpl'); } break; } $content = $tpl->fetch($blogLayout); if ($actionsLeft) { $tpl->assign( 'actions', Display::return_introduction_section(TOOL_BLOGS."_$blog_id") .Display::toolbarAction('toolbar', [$actionsLeft]) ); } $tpl->assign('content', $content); $tpl->display_one_col_template();