mirror of
https://github.com/FH-Complete/FHC-Core.git
synced 2026-06-01 20:29:29 +00:00
Harald Bamberger
958 lines
35 KiB
PHP
958 lines
35 KiB
PHP
<?php
|
|
/**
|
|
* Copyright (C) 2024 fhcomplete.org
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
if (! defined('BASEPATH')) exit('No direct script access allowed');
|
|
|
|
class ProfilUpdate extends FHCAPI_Controller
|
|
{
|
|
|
|
public static $STATUS_PENDING = NULL;
|
|
public static $STATUS_ACCEPTED = NULL;
|
|
public static $STATUS_REJECTED = NULL;
|
|
|
|
public static $TOPICS = [];
|
|
|
|
/**
|
|
* Object initialization
|
|
*/
|
|
public function __construct()
|
|
{
|
|
parent::__construct([
|
|
'getStatus' => self::PERM_LOGGED,
|
|
'getTopic' => self::PERM_LOGGED,
|
|
'getProfilRequestFiles' => self::PERM_LOGGED,
|
|
'getProfilUpdateWithPermission' => ['student/stammdaten:r', 'mitarbeiter/stammdaten:r'],
|
|
'denyProfilRequest' => ['student/stammdaten:rw', 'mitarbeiter/stammdaten:rw'],
|
|
'acceptProfilRequest' => ['student/stammdaten:rw', 'mitarbeiter/stammdaten:rw'],
|
|
'selectProfilRequest' => self::PERM_LOGGED,
|
|
'insertProfilRequest' => self::PERM_LOGGED,
|
|
'updateProfilRequest' => self::PERM_LOGGED,
|
|
'deleteProfilRequest' => self::PERM_LOGGED,
|
|
'insertFile' => self::PERM_LOGGED,
|
|
'updateProfilbild' => self::PERM_LOGGED,
|
|
'show' => self::PERM_LOGGED,
|
|
]);
|
|
|
|
$this->load->config('cis');
|
|
|
|
// Load language phrases
|
|
$this->loadPhrases(
|
|
array(
|
|
'ui',
|
|
'global',
|
|
'person',
|
|
'profil',
|
|
'profilUpdate'
|
|
)
|
|
);
|
|
|
|
$this->load->model('person/Profil_update_model', 'ProfilUpdateModel');
|
|
$this->load->model('person/Kontakt_model', 'KontaktModel');
|
|
$this->load->model('person/Adresse_model', 'AdresseModel');
|
|
$this->load->model('person/Adressentyp_model', 'AdressenTypModel');
|
|
$this->load->model('person/Person_model', 'PersonModel');
|
|
$this->load->model('ressource/mitarbeiter_model', 'MitarbeiterModel');
|
|
$this->load->model('crm/Student_model', 'StudentModel');
|
|
$this->load->model('person/Benutzer_model', 'BenutzerModel');
|
|
$this->load->model('system/Sprache_model', 'SpracheModel');
|
|
$this->load->model('person/Profil_update_status_model', 'ProfilUpdateStatusModel');
|
|
$this->load->model('person/Profil_update_topic_model', 'ProfilUpdateTopicModel');
|
|
|
|
$this->load->library('DmsLib');
|
|
$this->load->library('PermissionLib');
|
|
|
|
//? put the uid and pid inside the controller for reusability
|
|
$this->uid = getAuthUID();
|
|
$this->pid = getAuthPersonID();
|
|
|
|
// setup the ProfilUpdate states
|
|
$this->ProfilUpdateStatusModel->addSelect(['status_kurzbz']);
|
|
$status_kurzbz = $this->ProfilUpdateStatusModel->load();
|
|
if (hasData($status_kurzbz)) {
|
|
list($status_pending, $status_accepted, $status_rejected) = getData($status_kurzbz);
|
|
|
|
self::$STATUS_PENDING = $status_pending->status_kurzbz;
|
|
self::$STATUS_ACCEPTED = $status_accepted->status_kurzbz;
|
|
self::$STATUS_REJECTED = $status_rejected->status_kurzbz;
|
|
}
|
|
// setup the ProfilUpdate topics
|
|
$this->ProfilUpdateTopicModel->addSelect(['topic_kurzbz']);
|
|
$topic_kurzbz = $this->ProfilUpdateTopicModel->load();
|
|
|
|
if (hasData($topic_kurzbz)) {
|
|
foreach (getData($topic_kurzbz) as $topic) {
|
|
self::$TOPICS[$topic->topic_kurzbz] = $topic->topic_kurzbz;
|
|
}
|
|
}
|
|
|
|
}
|
|
|
|
//------------------------------------------------------------------------------------------------------------------
|
|
// Public methods
|
|
|
|
public function getStatus()
|
|
{
|
|
$this->terminateWithSuccess([self::$STATUS_PENDING => self::$STATUS_PENDING, self::$STATUS_ACCEPTED => self::$STATUS_ACCEPTED, self::$STATUS_REJECTED => self::$STATUS_REJECTED]);
|
|
}
|
|
|
|
|
|
public function getTopic()
|
|
{
|
|
if(!count(self::$TOPICS)){
|
|
$this->terminateWithError('No topics found');
|
|
}
|
|
$this->terminateWithSuccess(self::$TOPICS);
|
|
}
|
|
|
|
public function show($dms_id)
|
|
{
|
|
|
|
$profil_update = $this->ProfilUpdateModel->loadWhere(['attachment_id' => $dms_id]);
|
|
$profil_update = hasData($profil_update) ? getData($profil_update)[0] : null;
|
|
|
|
//? checks if an profil update exists with the dms_id requested from the user
|
|
if ($profil_update) {
|
|
$is_mitarbeiter_profil_update = getData($this->MitarbeiterModel->isMitarbeiter($profil_update->uid));
|
|
$is_student_profil_update = getData($this->StudentModel->isStudent($profil_update->uid));
|
|
|
|
if (
|
|
$this->permissionlib->isBerechtigt('student/stammdaten:r') && $is_student_profil_update ||
|
|
$this->permissionlib->isBerechtigt('mitarbeiter/stammdaten:r') && $is_mitarbeiter_profil_update ||
|
|
$this->uid == $profil_update->uid
|
|
) {
|
|
// Get file to be downloaded from DMS
|
|
$download = $this->dmslib->download($dms_id);
|
|
$download = $this->getDataOrTerminateWithError($download);
|
|
// Download file
|
|
$this->outputFile($download);
|
|
|
|
|
|
} else {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_permission_error'));
|
|
}
|
|
|
|
} else {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_dms_error'));
|
|
}
|
|
|
|
}
|
|
|
|
public function selectProfilRequest()
|
|
{
|
|
|
|
$uid = $this->input->get('uid',true);
|
|
$id = $this->input->get('id',true);
|
|
$whereClause = ['uid' => $this->uid];
|
|
|
|
if (isset($uid))
|
|
$whereClause['uid'] = $uid;
|
|
if (isset($id))
|
|
$whereClause['id'] = $id;
|
|
|
|
$res = $this->ProfilUpdateModel->getProfilUpdatesWhere($whereClause);
|
|
$res = $this->getDataOrTerminateWithError($res);
|
|
$this->terminateWithSuccess($res);
|
|
|
|
}
|
|
|
|
public function insertProfilRequest()
|
|
{
|
|
|
|
$payload = $this->input->post('payload');
|
|
$topic = $this->input->post('topic',true);
|
|
$fileID = $this->input->post('fileID',true);
|
|
|
|
if(!isset($payload) || !isset($topic)){
|
|
$this->terminateWithError("required parameters are missing");
|
|
}
|
|
|
|
$identifier = array_key_exists("kontakt_id", $payload) ? "kontakt_id" : (array_key_exists("adresse_id", $payload) ? "adresse_id" : null);
|
|
|
|
$data = ["topic" => $topic, "uid" => $this->uid, "requested_change" => json_encode($payload), "insertamum" => "NOW()", "insertvon" => $this->uid, "status" => self::$STATUS_PENDING ?: 'Pending'];
|
|
|
|
//? insert fileID in the dataset if sent with post request
|
|
if (isset($fileID)) {
|
|
$data['attachment_id'] = $fileID;
|
|
}
|
|
|
|
//? loops over all updateRequests from a user to validate if the new request is valid
|
|
$res = $this->ProfilUpdateModel->getProfilUpdatesWhere(["uid" => $this->uid]);
|
|
$res = $this->getDataOrTerminateWithError($res);
|
|
|
|
//? the user cannot delete a zustelladresse/kontakt
|
|
if (isset($payload["delete"]) && $payload[$identifier == "kontakt_id" ? "zustellung" : "zustelladresse"]) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_deleteZustellung_error'));
|
|
}
|
|
|
|
//? if the user tries to delete a adresse, checks whether the adresse is a heimatadresse, if so an error is raised
|
|
if (isset($payload["delete"]) && $identifier == "adresse_id") {
|
|
$adr = $this->AdresseModel->load($payload[$identifier]);
|
|
$adr = $this->getDataOrTerminateWithError($adr)[0];
|
|
if ($adr->heimatadresse) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_deleteZustellung_error'));
|
|
}
|
|
}
|
|
|
|
if ($res) {
|
|
$pending_changes = array_filter($res, function ($element) {
|
|
return $element->status == (self::$STATUS_PENDING ?: "Pending");
|
|
});
|
|
foreach ($pending_changes as $update_request) {
|
|
$existing_change = $update_request->requested_change;
|
|
//? the user can add as many new kontakte/adressen as he likes
|
|
if (!isset($payload["add"]) && property_exists($existing_change, $identifier) && array_key_exists($identifier,$payload) && $existing_change->$identifier == $payload[$identifier]) {
|
|
//? the kontakt_id / adresse_id of a change has to be unique
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_changeTwice_error'));
|
|
}
|
|
|
|
//? if it is not updating any kontakt/adresse, the topic has to be unique
|
|
elseif (!$identifier && $update_request->topic == $topic) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_changeTopicTwice_error', ['0' => $update_request->topic]));
|
|
}
|
|
}
|
|
}
|
|
|
|
$insertID = $this->ProfilUpdateModel->insert($data);
|
|
|
|
if (isError($insertID)) {
|
|
$this->terminateWithError(getError($insertID));
|
|
} else {
|
|
|
|
$insertID = hasData($insertID) ? getData($insertID) : null;
|
|
//? sends emails to the correspondents of the $uid
|
|
$this->sendEmail_onProfilUpdate_insertion($this->uid, $insertID, $topic);
|
|
$this->terminateWithSuccess(success($insertID));
|
|
}
|
|
}
|
|
|
|
public function updateProfilRequest()
|
|
{
|
|
$topic = $this->input->post('topic', true);
|
|
$payload = $this->input->post('payload', true);
|
|
$ID = $this->input->post('ID', true);
|
|
$fileID = $this->input->post('fileID', true);//optional
|
|
|
|
if(!isset($topic) || !isset($payload) || !isset($ID)){
|
|
$this->terminateWithError("required parameters are missing");
|
|
}
|
|
|
|
$updateData = ["requested_change" => json_encode($payload), "updateamum" => "NOW()", "updatevon" => $this->uid];
|
|
if (isset($fileID)) {
|
|
$updateData['attachment_id'] = json_decode($fileID);
|
|
}
|
|
$updateID = $this->ProfilUpdateModel->update([$ID], $updateData);
|
|
//? insert fileID in the dataset if sent with post request
|
|
|
|
if (isError($updateID)) {
|
|
$this->terminateWithError(getError($updateID));
|
|
}
|
|
|
|
$updateID = $this->getDataOrTerminateWithError($updateID)[0];
|
|
|
|
$this->terminateWithSuccess(success($updateID));
|
|
}
|
|
|
|
public function deleteProfilRequest()
|
|
{
|
|
|
|
$requestID = $this->input->post('requestID', true);
|
|
$result = $this->ProfilUpdateModel->delete([$requestID]);
|
|
if (isError($result)) {
|
|
$this->terminateWithError(getError($result));
|
|
}
|
|
$this->terminateWithSuccess($result);
|
|
}
|
|
|
|
public function getProfilRequestFiles($id)
|
|
{
|
|
if(!$id){
|
|
$this->terminateWithError("parameter id is missing");
|
|
}
|
|
|
|
$this->ProfilUpdateModel->addSelect(["attachment_id"]);
|
|
$attachmentID = $this->ProfilUpdateModel->load([$id]);
|
|
if (isError($attachmentID)) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_loading_error'),self::ERROR_TYPE_GENERAL);
|
|
}
|
|
//? get the attachmentID
|
|
$dms_id = $this->getDataOrTerminateWithError($attachmentID)[0]->attachment_id;
|
|
|
|
//? get the name to the file
|
|
$this->DmsVersionModel->addSelect(["name", "dms_id"]);
|
|
$attachment = $this->DmsVersionModel->load([$dms_id, 0]);
|
|
if (isError($attachment)) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_dmsVersion_error'),self::ERROR_TYPE_GENERAL);
|
|
}
|
|
$attachment = $this->getDataOrTerminateWithError($attachment);
|
|
//? returns {name:..., dms_id:...}
|
|
$this->terminateWithSuccess($attachment);
|
|
}
|
|
|
|
public function denyProfilRequest()
|
|
{
|
|
$id = $this->input->post('profil_update_id', true);
|
|
$uid = $this->input->post('uid', true);
|
|
$topic = $this->input->post('topic', true);
|
|
$status_message = $this->input->post('status_message', true); //optional
|
|
|
|
if(!isset($id) || !isset($uid) || !isset($topic)){
|
|
$this->terminateWithError("parameter id, uid, topic or status_message is missing");
|
|
}
|
|
|
|
$is_mitarbeiter = $this->MitarbeiterModel->isMitarbeiter($uid);
|
|
$is_mitarbeiter = $this->getDataOrTerminateWithError($is_mitarbeiter);
|
|
|
|
$is_student = $this->StudentModel->isStudent($uid);
|
|
$is_student = $this->getDataOrTerminateWithError($is_student);
|
|
|
|
if (
|
|
$is_student && $this->permissionlib->isBerechtigt('student/stammdaten', "suid", $this->getOE_from_student($uid)) ||
|
|
$is_mitarbeiter && $this->permissionlib->isBerechtigt('mitarbeiter/stammdaten', "suid")
|
|
) {
|
|
$this->sendEmail_onProfilUpdate_response($uid, $topic, self::$STATUS_REJECTED);
|
|
$this->terminateWithSuccess($this->setStatusOnUpdateRequest($id, self::$STATUS_REJECTED, $status_message));
|
|
} else {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_permission_error'),self::ERROR_TYPE_GENERAL);
|
|
}
|
|
}
|
|
|
|
public function acceptProfilRequest()
|
|
{
|
|
$id = $this->input->post('profil_update_id', true);
|
|
$uid = $this->input->post('uid', true);
|
|
$topic = $this->input->post('topic', true);
|
|
$requested_change = $this->input->post('requested_change');
|
|
$status_message = $this->input->post('status_message', true); //optional
|
|
|
|
//? fetching person_id using UID
|
|
$personID = $this->PersonModel->getByUid($uid);
|
|
$personID = $this->getDataOrTerminateWithError($personID)[0]->person_id;
|
|
|
|
//! check for required information
|
|
if (!isset($id) || !isset($uid) || !isset($personID) || !isset($requested_change) || !isset($topic)) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_requiredInformation_error'));
|
|
}
|
|
|
|
$is_mitarbeiter = $this->MitarbeiterModel->isMitarbeiter($uid);
|
|
$is_mitarbeiter = $this->getDataOrTerminateWithError($is_mitarbeiter);
|
|
|
|
$is_student = $this->StudentModel->isStudent($uid);
|
|
$is_student = $this->getDataOrTerminateWithError($is_student);
|
|
|
|
|
|
//? check if the permissions are set correctly
|
|
if (
|
|
$is_student && $this->permissionlib->isBerechtigt('student/stammdaten', "suid", $this->getOE_from_student($uid)) ||
|
|
$is_mitarbeiter && $this->permissionlib->isBerechtigt('mitarbeiter/stammdaten', "suid")
|
|
) {
|
|
|
|
if (is_array($requested_change) && array_key_exists("adresse_id", $requested_change)) {
|
|
$insertID = $this->handleAdresse($requested_change, $personID);
|
|
$insertID = getData($insertID);
|
|
if (isset($insertID)) {
|
|
$requested_change['adresse_id'] = $insertID;
|
|
$update_res = $this->updateRequestedChange($id, $requested_change);
|
|
if (isError($update_res)) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_address_error', [$insertID]));
|
|
}
|
|
}
|
|
|
|
} else if (is_array($requested_change) && array_key_exists("kontakt_id", $requested_change)) {
|
|
$insertID = $this->handleKontakt($requested_change, $personID);
|
|
$insertID = getData($insertID);
|
|
if (isset($insertID)) {
|
|
$requested_change['kontakt_id'] = $insertID;
|
|
$update_res = $this->updateRequestedChange($id, $requested_change);
|
|
if (isError($update_res)) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_kontakt_error', [$insertID]));
|
|
}
|
|
}
|
|
|
|
|
|
} else {
|
|
switch ($topic) {
|
|
// mapping phrasen to database columns to make the update with the correct column names
|
|
case self::$TOPICS['Titel']:
|
|
$topic = "titelpre";
|
|
break;
|
|
case self::$TOPICS['Postnomen']:
|
|
$topic = "titelpost";
|
|
break;
|
|
case self::$TOPICS['Vorname']:
|
|
$topic = "vorname";
|
|
break;
|
|
case self::$TOPICS['Nachname']:
|
|
$topic = "nachname";
|
|
break;
|
|
default:
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_topic_error', [$topic]));
|
|
}
|
|
|
|
$result = $this->PersonModel->update($personID, [$topic => $requested_change["value"]]);
|
|
if (isError($result)) $this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_insert_error'));
|
|
|
|
}
|
|
$this->sendEmail_onProfilUpdate_response($uid, $topic, self::$STATUS_ACCEPTED);
|
|
|
|
$this->terminateWithSuccess($this->setStatusOnUpdateRequest($id, self::$STATUS_ACCEPTED, $status_message, $requested_change));
|
|
} else {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_permission_error'));
|
|
}
|
|
|
|
|
|
}
|
|
|
|
public function insertFile($replace)
|
|
{
|
|
$replace = json_decode($replace);
|
|
|
|
if (!count($_FILES)) {
|
|
$this->terminateWithError("No file available for upload");
|
|
}
|
|
|
|
//? if replace is set it contains the profil_update_id in which the attachment_id has to be replaced
|
|
if (isset($replace)) {
|
|
|
|
$this->ProfilUpdateModel->addSelect(["attachment_id"]);
|
|
$profilUpdate = $this->ProfilUpdateModel->load([$replace]);
|
|
if (isError($profilUpdate)) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_loading_error'));
|
|
}
|
|
//? get the attachmentID
|
|
$dms_id = $this->getDataOrTerminateWithError($profilUpdate)[0]->attachment_id;
|
|
|
|
//? delete old dms_file of Profil Update
|
|
$deleteOldFile_result = $this->deleteOldVersionFile($dms_id);
|
|
if(!$deleteOldFile_result){
|
|
$this->terminateWithError("error while deleting the old file");
|
|
}
|
|
}
|
|
|
|
|
|
$files = $_FILES['files'];
|
|
$file_count = count($files['name']);
|
|
|
|
$res = [];
|
|
|
|
for ($i = 0; $i < $file_count; $i++) {
|
|
$_FILES['files']['name'] = $files['name'][$i];
|
|
$_FILES['files']['type'] = $files['type'][$i];
|
|
$_FILES['files']['tmp_name'] = $files['tmp_name'][$i];
|
|
$_FILES['files']['error'] = $files['error'][$i];
|
|
$_FILES['files']['size'] = $files['size'][$i];
|
|
|
|
$dms = [
|
|
"kategorie_kurzbz" => "profil_aenderung",
|
|
"version" => 0,
|
|
"name" => $_FILES['files']['name'],
|
|
"mimetype" => $_FILES['files']['type'],
|
|
"beschreibung" => $this->uid . " Profil Änderung",
|
|
"insertvon" => $this->uid,
|
|
"insertamum" => "NOW()",
|
|
];
|
|
|
|
$tmp_res = $this->dmslib->upload($dms, 'files', array("jpg", "png", "pdf"));
|
|
|
|
if(isError($tmp_res)){
|
|
$this->addError(getError($tmp_res));
|
|
}
|
|
|
|
$tmp_res = $this->getDataOrTerminateWithError($tmp_res);
|
|
array_push($res, $tmp_res);
|
|
}
|
|
|
|
$this->terminateWithSuccess($res);
|
|
}
|
|
|
|
public function updateProfilbild()
|
|
{
|
|
|
|
$resize = function($filename, $width, $height){
|
|
// Hoehe und Breite neu berechnen
|
|
list($width_orig, $height_orig) = getimagesize($filename);
|
|
|
|
if ($width && ($width_orig < $height_orig))
|
|
{
|
|
$width = ($height / $height_orig) * $width_orig;
|
|
}
|
|
else
|
|
{
|
|
$height = ($width / $width_orig) * $height_orig;
|
|
}
|
|
|
|
$image_p = imagecreatetruecolor($width, $height);
|
|
|
|
$image = imagecreatefromjpeg($filename);
|
|
|
|
//Bild nur verkleinern aber nicht vergroessern
|
|
if($width_orig>$width || $height_orig>$height)
|
|
imagecopyresampled($image_p, $image, 0, 0, 0, 0, $width, $height, $width_orig, $height_orig);
|
|
else
|
|
$image_p = $image;
|
|
|
|
imagejpeg($image_p, $filename, 80);
|
|
|
|
@imagedestroy($image_p);
|
|
@imagedestroy($image);
|
|
};
|
|
|
|
if (!count($_FILES)) {
|
|
$this->terminateWithError("No file available for upload");
|
|
}
|
|
|
|
$files = $_FILES['files'];
|
|
|
|
$_FILES['files']['name'] = current($files['name']);
|
|
$_FILES['files']['type'] = current($files['type']);
|
|
$_FILES['files']['tmp_name'] = current($files['tmp_name']);
|
|
$_FILES['files']['error'] = current($files['error']);
|
|
$_FILES['files']['size'] = current($files['size']);
|
|
$_FILES['files']['tmp_name'] = current($files['tmp_name']);
|
|
|
|
$filename = $_FILES['files']['tmp_name'];
|
|
|
|
$ext = substr(current($files['name']), strrpos(current($files['name']), '.') + 1);
|
|
if($ext!='jpg' && $ext!='jpeg'){
|
|
$this->terminateWithError("Only jpg and jpeg files are allowed for profilbild upload");
|
|
}
|
|
|
|
// resize
|
|
$resize($filename, 827, 1063);
|
|
|
|
//akte
|
|
$fp = fopen($filename,'r');
|
|
//auslesen
|
|
$content = fread($fp, filesize($filename));
|
|
$base64_content = base64_encode($content);
|
|
$this->load->library('AkteLib');
|
|
$aktenInsertResult = $this->aktelib->add($this->pid,'Lichtbil',"Lichtbild_".$this->pid.".jpg","image/jpg",$fp,"Lichtbild gross");
|
|
fclose($fp);
|
|
if (isError($aktenInsertResult)) {
|
|
$this->terminateWithError(getError($aktenInsertResult));
|
|
}
|
|
|
|
// in person abspeichern
|
|
$resize($filename, 101, 130);
|
|
$fp = fopen($filename,'r');
|
|
$content = fread($fp, filesize($filename));
|
|
fclose($fp);
|
|
$base64_content = base64_encode($content);
|
|
$this->load->model('person/Person_model','PersonModel');
|
|
$personUpdate = $this->PersonModel->update($this->pid, ["foto"=>$base64_content]);
|
|
if(isError($personUpdate)){
|
|
$this->terminateWithError(getError($personUpdate));
|
|
}
|
|
|
|
|
|
// update foto status
|
|
$this->load->model('person/Fotostatusperson_model','FotostatusModel');
|
|
$fotoInsert = $this->FotostatusModel->insert(["person_id"=>$this->pid,"fotostatus_kurzbz"=>"hochgeladen","datum"=>date('Y-m-d'),"insertamum"=>date('Y-m-d H:i:s'),"insertvon"=>$this->uid,"updateamum"=>date('Y-m-d H:i:s'),"updatevon"=>$this->uid]);
|
|
if(isError($fotoInsert)){
|
|
$this->terminateWithError(getError($fotoInsert));
|
|
}
|
|
|
|
$this->terminateWithSuccess();
|
|
}
|
|
|
|
public function getProfilUpdateWithPermission($status = null)
|
|
{
|
|
// early return if no status has been passed as argument
|
|
if (!isset($status)) {
|
|
$this->terminateWithSuccess($this->ProfilUpdateModel->getProfilUpdateWithPermission());
|
|
}
|
|
|
|
// get the sprache of the user
|
|
$sprachenIndex = $this->SpracheModel->loadWhere(["sprache" => getUserLanguage()]);
|
|
$sprachenIndex = hasData($sprachenIndex) ? getData($sprachenIndex)[0]->index : null;
|
|
|
|
if (isset($sprachenIndex) && isset($status)) {
|
|
// get the corresponding status kurz_bz primary key out of the translation
|
|
$status = $this->ProfilUpdateStatusModel->execReadOnlyQuery("select * from public.tbl_profil_update_status where ? = ANY(bezeichnung_mehrsprachig)", [$status]);
|
|
$status = hasData($status) ? getData($status)[0]->status_kurzbz : null;
|
|
$res = $this->ProfilUpdateModel->getProfilUpdateWithPermission(isset($status) ? ['status' => $status] : null);
|
|
|
|
$this->terminateWithSuccess($res);
|
|
}
|
|
}
|
|
|
|
//------------------------------------------------------------------------------------------------------------------
|
|
// Private methods
|
|
|
|
|
|
private function sendEmail_onProfilUpdate_insertion($uid, $profil_update_id, $topic)
|
|
{
|
|
if($this->config->item('cis_send_profil_update_mails') === false)
|
|
{
|
|
return;
|
|
}
|
|
|
|
$this->load->helper('hlp_sancho_helper');
|
|
$emails = [];
|
|
|
|
$is_mitarbeiter = $this->MitarbeiterModel->isMitarbeiter($uid);
|
|
if (isError($is_mitarbeiter)) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_mitarbeiterCheck_error'));
|
|
}
|
|
$is_mitarbeiter = $this->getDataOrTerminateWithError($is_mitarbeiter);
|
|
|
|
//! if the $uid is a mitarbeiter and student, only the hr is notified by email
|
|
if ($is_mitarbeiter) {
|
|
//? user is not a student therefore he is a mitarbeiter, send email to Personalverwaltung
|
|
//? use constant variable MAIL_GST to mail to the personalverwaltung
|
|
$this->MitarbeiterModel->addSelect([TRUE]);
|
|
$this->MitarbeiterModel->addJoin("public.tbl_benutzer", "public.tbl_benutzer.uid = public.tbl_mitarbeiter.mitarbeiter_uid");
|
|
//? check if the the userID is a mitarbeiter and if the benutzer is active
|
|
$res = $this->MitarbeiterModel->loadWhere(["public.tbl_mitarbeiter.mitarbeiter_uid" => $uid, "public.tbl_benutzer.aktiv" => TRUE]);
|
|
if (isError($res)) {
|
|
$this->terminateWithError("was not able to query the mitarbeiter and benutzer by the uid: " . $uid);
|
|
}
|
|
if (hasData($res)) {
|
|
array_push($emails, MAIL_GST);
|
|
} else {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_mitarbeiterCheck_error'));
|
|
}
|
|
} else {
|
|
//? if it is not a mitarbeiter, check whether it is a student and send email to studiengang
|
|
$is_student = $this->StudentModel->isStudent($uid);
|
|
if (isError($is_student)) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_studentCheck_error'));
|
|
}
|
|
$is_student = $this->getDataOrTerminateWithError($is_student);
|
|
if ($is_student) {
|
|
//? Send email to the Studiengangsassistentinnen
|
|
$this->StudentModel->addSelect(["public.tbl_studiengang.email"]);
|
|
$this->StudentModel->addJoin("public.tbl_benutzer", "public.tbl_benutzer.uid = public.tbl_student.student_uid");
|
|
$this->StudentModel->addJoin("public.tbl_prestudent", "public.tbl_benutzer.person_id = public.tbl_prestudent.person_id");
|
|
$this->StudentModel->addJoin("public.tbl_prestudentstatus", "public.tbl_prestudentstatus.prestudent_id = public.tbl_prestudent.prestudent_id");
|
|
$this->StudentModel->addJoin("public.tbl_studiengang", "public.tbl_studiengang.studiengang_kz = public.tbl_prestudent.studiengang_kz");
|
|
$this->StudentModel->addGroupBy(["public.tbl_studiengang.email"]);
|
|
//* check if the benutzer itself is active
|
|
//* check if the student status is Student or Diplomand (active students)
|
|
$this->StudentModel->db->where_in("public.tbl_prestudentstatus.status_kurzbz", ['Student', 'Diplomand']);
|
|
$res = $this->StudentModel->loadWhere(["public.tbl_benutzer.aktiv" => TRUE, "public.tbl_student.student_uid" => $uid]);
|
|
if (isError($res)) {
|
|
$this->terminateWithError(getError($res));
|
|
} else {
|
|
$res = $this->getDataOrTerminateWithError($res);
|
|
foreach ($res as $emailObj) {
|
|
array_push($emails, $emailObj->email);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
$mail_res = [];
|
|
//? sending email
|
|
foreach ($emails as $email)
|
|
{
|
|
$href = $this->config->item('cis_vilesci_base_url') . $this->config->item('cis_vilesci_index_page') . '/Cis/ProfilUpdate/id/' . $profil_update_id;
|
|
array_push($mail_res, sendSanchoMail("profil_update", ['uid' => $uid, 'topic' => $topic, 'href' => $href], $email, ("Profil Änderung von " . $uid)));
|
|
}
|
|
foreach ($mail_res as $m_res) {
|
|
if (!$m_res) {
|
|
$this->addError($this->p->t('profilUpdate', 'profilUpdate_email_error'));
|
|
}
|
|
}
|
|
|
|
}
|
|
|
|
private function sendEmail_onProfilUpdate_response($uid, $topic, $status)
|
|
{
|
|
if($this->config->item('cis_send_profil_update_mails') === false)
|
|
{
|
|
return;
|
|
}
|
|
|
|
$this->load->helper('hlp_sancho_helper');
|
|
$email = $uid . "@" . DOMAIN;
|
|
|
|
|
|
function languageQuery($language)
|
|
{
|
|
return "select index from public.tbl_sprache where sprache = '" . $language . "'";
|
|
}
|
|
|
|
$this->ProfilUpdateStatusModel->addSelect(["bezeichnung_mehrsprachig[(" . languageQuery('German') . ")] as status_de", "bezeichnung_mehrsprachig[(" . languageQuery('English') . ")] as status_en"]);
|
|
|
|
$status_translation = $this->ProfilUpdateStatusModel->loadWhere(["status_kurzbz" => $status]);
|
|
if (isError($status_translation)) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'ProfilUpdateStatusTranslationError'));
|
|
}
|
|
|
|
$status_translation = hasData($status_translation) ? getData($status_translation)[0] : null;
|
|
if (isset($status_translation))
|
|
{
|
|
$href = $this->config->item('cis_base_url') . $this->config->item('cis_index_page') . '/Cis/Profil';
|
|
$mail_res = sendSanchoMail("profil_update_response", ['topic' => $topic, 'status_de' => $status_translation->status_de, 'status_en' => $status_translation->status_en, 'href' => $href], $email, ("Profil Änderung " . $status_translation->status_de . ' / Profile Update ' . $status_translation->status_en));
|
|
if (!$mail_res) {
|
|
$this->addError($this->p->t('profilUpdate', 'profilUpdate_email_error'));
|
|
}
|
|
}
|
|
}
|
|
|
|
private function setStatusOnUpdateRequest($id, $status, $status_message)
|
|
{
|
|
return $this->ProfilUpdateModel->update([$id], ["status" => $status, "status_timestamp" => "NOW()", "status_message" => $status_message]);
|
|
}
|
|
|
|
private function updateRequestedChange($id, $requested_change)
|
|
{
|
|
return $this->ProfilUpdateModel->update([$id], ['requested_change' => json_encode($requested_change)]);
|
|
}
|
|
|
|
private function deleteOldVersionFile($dms_id)
|
|
{
|
|
// starting the transaction
|
|
$this->db->trans_start();
|
|
|
|
|
|
if (!isset($dms_id)) {
|
|
return;
|
|
}
|
|
|
|
//? delete the file from the profilUpdate first
|
|
$profilUpdateFileDelete = $this->ProfilUpdateModel->removeFileFromProfilUpdate($dms_id);
|
|
if(isError($profilUpdateFileDelete)){
|
|
$this->terminateWithError(getError($profilUpdateFileDelete));
|
|
}
|
|
|
|
//? delete all the different versions of the dms_file
|
|
$dmsVersions = $this->DmsVersionModel->loadWhere(["dms_id" => $dms_id]);
|
|
$dmsVersions = $this->getDataOrTerminateWithError($dmsVersions);
|
|
|
|
|
|
|
|
$dms_versions = array_map(function ($item) {
|
|
return $item->version;
|
|
}, $dmsVersions);
|
|
|
|
|
|
$test_array = array();
|
|
foreach ($dms_versions as $version) {
|
|
|
|
$delete_result = $this->dmslib->removeVersion($dms_id, $version);
|
|
array_push($test_array, $delete_result);
|
|
|
|
if(isError($delete_result)){
|
|
$this->addError(getError($delete_result));
|
|
}
|
|
}
|
|
|
|
// transaction complete
|
|
$this->db->trans_complete();
|
|
|
|
if ($this->db->trans_status() === FALSE)
|
|
{
|
|
return false;
|
|
}
|
|
else
|
|
{
|
|
return true;
|
|
}
|
|
|
|
}
|
|
|
|
|
|
private function getOE_from_student($student_uid)
|
|
{
|
|
//? returns the oe_einheit eines Studenten
|
|
$query = "SELECT public.tbl_studiengang.oe_kurzbz
|
|
FROM public.tbl_student
|
|
JOIN public.tbl_studiengang ON tbl_student.studiengang_kz = public.tbl_studiengang.studiengang_kz
|
|
WHERE public.tbl_student.student_uid = ?;";
|
|
|
|
$res = $this->StudentModel->execReadOnlyQuery($query, [$student_uid]);
|
|
$res = $this->getDataOrTerminateWithError($res, $this->p->t('profilUpdate', 'profilUpdate_loadingOE_error'));
|
|
$res = array_map(
|
|
function ($item) {
|
|
return $item->oe_kurzbz;
|
|
},
|
|
$res
|
|
);
|
|
return $res;
|
|
}
|
|
|
|
private function handleAdresse($requested_change, $personID)
|
|
{
|
|
$this->AdressenTypModel->addSelect(["adressentyp_kurzbz"]);
|
|
$adr_kurzbz = $this->AdressenTypModel->loadWhere(["bezeichnung" => $requested_change['typ']]);
|
|
$adr_kurzbz = $this->getDataOrTerminateWithError($adr_kurzbz)[0]->adressentyp_kurzbz;
|
|
|
|
//? replace the address_typ with its correct kurzbz foreign key
|
|
$requested_change['typ'] = $adr_kurzbz;
|
|
|
|
$adresse_id = $requested_change["adresse_id"];
|
|
|
|
//? removes the adresse_id because we don't want to update the kontakt_id in the database
|
|
unset($requested_change["adresse_id"]);
|
|
|
|
//! ADD
|
|
if (array_key_exists('add', $requested_change) && $requested_change['add']) {
|
|
|
|
//? removes add flag
|
|
unset($requested_change['add']);
|
|
$requested_change['insertamum'] = "NOW()";
|
|
$requested_change['insertvon'] = getAuthUID();
|
|
$requested_change['person_id'] = $personID;
|
|
//TODO: zustelladresse, heimatadresse, rechnungsadresse und nation werden nicht beachtet
|
|
$insertID = $this->AdresseModel->insert($requested_change);
|
|
$insert_adresse_id = $insertID;
|
|
$insert_adresse_id = $this->getDataOrTerminateWithError($insert_adresse_id, $this->p->t('profilUpdate', 'profilUpdate_insertAdresse_error'));
|
|
if ($insert_adresse_id) {
|
|
$this->handleDupplicateZustellAdressen($requested_change['zustelladresse'], $insert_adresse_id, $personID);
|
|
}
|
|
}
|
|
//! DELETE
|
|
elseif (array_key_exists('delete', $requested_change) && $requested_change['delete']) {
|
|
$result = $this->AdresseModel->delete($adresse_id);
|
|
if (isError($result)) {
|
|
$this->terminateWithError(getError($result));
|
|
}
|
|
}
|
|
//! UPDATE
|
|
else {
|
|
$curadresse_res = $this->AdresseModel->load($adresse_id);
|
|
$curadresse = ($this->getDataOrTerminateWithError($curadresse_res))[0];
|
|
|
|
if($curadresse->heimatadresse)
|
|
{
|
|
$tmpadresse = array_merge((array) $curadresse, $requested_change);
|
|
unset($tmpadresse["adresse_id"]);
|
|
$tmpadresse['insertamum'] = "NOW()";
|
|
$tmpadresse['insertvon'] = getAuthUID();
|
|
$tmpadresse['person_id'] = $personID;
|
|
unset($tmpadresse["heimatadresse"]);
|
|
unset($tmpadresse["updateamum"]);
|
|
unset($tmpadresse["updatevon"]);
|
|
|
|
$tmpadresse_res = $this->AdresseModel->insert($tmpadresse);
|
|
$tmpadresse_id = $this->getDataOrTerminateWithError($tmpadresse_res, $this->p->t('profilUpdate', 'profilUpdate_insertAdresse_error'));
|
|
$this->handleDupplicateZustellAdressen($requested_change['zustelladresse'], $tmpadresse_id, $personID);
|
|
}
|
|
else
|
|
{
|
|
$requested_change['updateamum'] = "NOW()";
|
|
$requested_change['updatevon'] = getAuthUID();
|
|
|
|
$update_adresse_id = $this->AdresseModel->update($adresse_id, $requested_change);
|
|
$update_adresse_id = $this->getDataOrTerminateWithError($update_adresse_id, $this->p->t('profilUpdate', 'profilUpdate_updateAdresse_error'));
|
|
$this->handleDupplicateZustellAdressen($requested_change['zustelladresse'], $update_adresse_id, $personID);
|
|
}
|
|
}
|
|
return $insertID ?? null;
|
|
}
|
|
|
|
private function handleKontakt($requested_change, $personID)
|
|
{
|
|
$kontakt_id = $requested_change["kontakt_id"];
|
|
//? removes the kontakt_id because we don't want to update the kontakt_id in the database
|
|
unset($requested_change["kontakt_id"]);
|
|
|
|
//! ADD
|
|
if (array_key_exists('add', $requested_change) && $requested_change['add']) {
|
|
//? removes add flag
|
|
unset($requested_change['add']);
|
|
$requested_change['person_id'] = $personID;
|
|
$requested_change['insertamum'] = "NOW()";
|
|
$requested_change['insertvon'] = getAuthUID();
|
|
$insertID = $this->KontaktModel->insert($requested_change);
|
|
$insert_kontakt_id = $insertID;
|
|
$insert_kontakt_id = $this->getDataOrTerminateWithError($insert_kontakt_id, $this->p->t('profilUpdate', 'profilUpdate_insertKontakt_error'));
|
|
if ($insert_kontakt_id) {
|
|
$this->handleDupplicateZustellKontakte($requested_change['zustellung'], $insert_kontakt_id, $requested_change['kontakttyp'], $personID);
|
|
}
|
|
}
|
|
//! DELETE
|
|
elseif (array_key_exists('delete', $requested_change) && $requested_change['delete']) {
|
|
$result = $this->KontaktModel->delete($kontakt_id);
|
|
if (isError($result)) {
|
|
$this->terminateWithError(getError($result));
|
|
}
|
|
}
|
|
//! UPDATE
|
|
else {
|
|
$requested_change['updateamum'] = "NOW()";
|
|
$requested_change['updatevon'] = getAuthUID();
|
|
$update_kontakt_id = $this->KontaktModel->update($kontakt_id, $requested_change);
|
|
$update_kontakt_id = $this->getDataOrTerminateWithError($update_kontakt_id, $this->p->t('profilUpdate', 'profilUpdate_updateKontakt_error'));
|
|
if ($update_kontakt_id) {
|
|
$this->handleDupplicateZustellKontakte($requested_change['zustellung'], $update_kontakt_id, $requested_change['kontakttyp'], $personID);
|
|
}
|
|
}
|
|
return isset($insertID) ? $insertID : null;
|
|
}
|
|
|
|
private function handleDupplicateZustellAdressen($zustellung, $adresse_id, $person_id)
|
|
{
|
|
if ($zustellung) {
|
|
$this->PersonModel->addSelect("public.tbl_adresse.adresse_id");
|
|
$this->PersonModel->addJoin("public.tbl_adresse", "public.tbl_adresse.person_id = public.tbl_person.person_id");
|
|
$zustellAdressenArray = $this->PersonModel->loadWhere(["public.tbl_person.person_id" => $person_id, "zustelladresse" => TRUE]);
|
|
if (isError($zustellAdressenArray)) {
|
|
$this->terminateWithError($this->p->t('profilUpdate', 'profilUpdate_loadingZustellAdressen_error'));
|
|
}
|
|
$zustellAdressenArray = $this->getDataOrTerminateWithError($zustellAdressenArray);
|
|
|
|
if (count($zustellAdressenArray) > 0) {
|
|
|
|
$zustellAdressenArray = array_filter($zustellAdressenArray, function ($adresse) use ($adresse_id) {
|
|
|
|
return $adresse->adresse_id != $adresse_id;
|
|
});
|
|
|
|
$this->addMeta('bhzustelladressen', $zustellAdressenArray);
|
|
|
|
// remove the zustelladresse from all other zustelladressen
|
|
foreach ($zustellAdressenArray as $adresse) {
|
|
$this->AdresseModel->update($adresse->adresse_id, ["zustelladresse" => FALSE]);
|
|
}
|
|
|
|
}
|
|
}
|
|
}
|
|
|
|
private function handleDupplicateZustellKontakte($zustellung, $kontakt_id, $kontakttyp, $person_id)
|
|
{
|
|
if ($zustellung) {
|
|
$this->PersonModel->addSelect("public.tbl_kontakt.kontakt_id");
|
|
$this->PersonModel->addJoin("public.tbl_kontakt", "public.tbl_kontakt.person_id = public.tbl_person.person_id");
|
|
$zustellKontakteArray = $this->PersonModel->loadWhere([
|
|
"public.tbl_person.person_id" => $person_id,
|
|
"zustellung" => TRUE,
|
|
"kontakttyp" => $kontakttyp
|
|
]);
|
|
if (!isSuccess($zustellKontakteArray)) {
|
|
return error($this->p->t('profilUpdate', 'profilUpdate_loadingZustellkontakte_error'));
|
|
}
|
|
$zustellKontakteArray = hasData($zustellKontakteArray) ? getData($zustellKontakteArray) : null;
|
|
|
|
if ($zustellung && count($zustellKontakteArray) > 0) {
|
|
$zustellKontakteArray = array_filter($zustellKontakteArray, function ($kontakt) use ($kontakt_id) {
|
|
return $kontakt->kontakt_id != $kontakt_id;
|
|
});
|
|
foreach ($zustellKontakteArray as $kontakt) {
|
|
$this->KontaktModel->update($kontakt->kontakt_id, ["zustellung" => FALSE]);
|
|
}
|
|
|
|
}
|
|
}
|
|
}
|
|
|
|
}
|
|
|
|
|