phyks/bouffeatulm
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
8ac3a84f6a
bouffeatulm/index.php

783 lines
36 KiB
PHP
Raw Normal View History

Started to rebuild the app * Install.php page started * Will use RainTPL for templates handling
2013-08-07 20:32:44 +02:00
<?php
Started i18n system
2013-09-05 23:46:51 +02:00
// Error translation
$errors = array(
'unknown_username_password'=>array('fr'=>'Nom d\'utilisateur ou mot de passe inconnu.', 'en'=>'Unknown username or password.'),
'token_error'=>array('fr'=>'Erreur de token. Veuillez réessayer.', 'en'=>'Token error. Please resubmit the form.'),
'password_mismatch'=>array('fr'=>'Les deux mots de passe ne correspondent pas.', 'en'=>'The content of the two passwords fields doesn\'t match.'),
'user_already_exists'=>array('fr'=>'Un utilisateur avec le même login ou nom d\'affichage existe déjà. Choisissez un login ou un nom d\'affichage différent.', 'en'=>'A user with the same login or display name already exists. Choose a different login or display name.'),
'write_error_data'=>array('fr'=>'Le script ne peut pas écrire dans le dossier data/, vérifiez les permissions sur ce dossier.', 'en'=>'The script can\'t write in data/ dir, check permissions set on this folder.'),
'unable_write_config'=>array('fr'=>'Impossible d\'écrire le fichier data/config.php. Vérifiez les permissions.', 'en'=>'Unable to write data/config.php file. Check permissions.'),
'negative_amount'=>array('fr'=>'Montant négatif non autorisé.', 'en'=>'Negative amount not allowed.'),
Invoice management complete
2013-09-08 18:36:59 +02:00
'template_error'=>array('fr'=>'Template non disponible.', 'en'=>'Template not available.'),
No self bills
2013-09-15 16:28:44 +02:00
'unauthorized'=>array('fr'=>'Vous n\'avez pas le droit de faire cette action.', 'en'=>'You are not authorized to do that.'),
'no_users'=>array('fr'=>'Vous devez ajouter au moins un autre utilisateur.', 'en'=>'You must add at least one more user beside you.')
Started i18n system
2013-09-05 23:46:51 +02:00
);
Bug correction in invoice display
2013-09-08 16:12:30 +02:00
$localized = array(
'guest'=>array('fr'=>'invité', 'en'=>'guest')
);
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
// Include necessary files
Updated connexion form (may not work - not tested) * Remember me option * IP ban system (if IP differs from session stored one) * Ban system if too many attempts
2013-08-24 23:28:56 +02:00
if(!file_exists('data/config.php')) { header('location: install.php'); exit(); }
Settings modification working
2013-08-12 09:52:50 +02:00
require_once('data/config.php');
Connexion system working
2013-08-09 00:44:43 +02:00
require_once('inc/User.class.php');
Working on form to add invoices. Added a timezone option in install.php to add timezone support to the script (and throw away some errors)
2013-08-13 19:37:11 +02:00
require_once('inc/Invoices.class.php');
Started to work on Payback system
2013-09-10 23:07:39 +02:00
require_once('inc/Paybacks.class.php');
Connexion system working
2013-08-09 00:44:43 +02:00
require_once('inc/rain.tpl.class.php');
Settings modification working
2013-08-12 09:52:50 +02:00
require_once('inc/functions.php');
Prevents from adding two users with the same login + bug correction
2013-08-25 00:06:14 +02:00
require_once('inc/Ban.inc.php');
CSRF protection Added a simple CSRF protection
2013-08-24 23:53:52 +02:00
require_once('inc/CSRF.inc.php');
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
if(!empty($_GET['json'])) {
raintpl::$tpl_dir = 'tpl/json/';
$get_redir = 'json=1';
}
else {
raintpl::$tpl_dir = TEMPLATE_DIR;
$get_redir = '';
}
Connexion system working
2013-08-09 00:44:43 +02:00
raintpl::$cache_dir = 'tmp/';
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
// Define raintpl instance
Connexion system working
2013-08-09 00:44:43 +02:00
$tpl = new raintpl();
Remember last entered login in connection form
2013-08-09 23:47:01 +02:00
$tpl->assign('instance_title', htmlspecialchars(INSTANCE_TITLE));
Started index page ; connect/disconnect working ; started edit password page
2013-08-09 23:35:20 +02:00
$tpl->assign('connection', false);
Settings modification working
2013-08-12 09:52:50 +02:00
$tpl->assign('notice', nl2br(getNotice()));
Edit password almost working
2013-08-09 23:43:56 +02:00
$tpl->assign('error', '');
Settings modification working
2013-08-12 09:52:50 +02:00
$tpl->assign('base_url', htmlspecialchars(BASE_URL));
$tpl->assign('currency', htmlspecialchars(CURRENCY));
Updated connexion form (may not work - not tested) * Remember me option * IP ban system (if IP differs from session stored one) * Ban system if too many attempts
2013-08-24 23:28:56 +02:00
$tpl->assign('email_webmaster', htmlspecialchars(EMAIL_WEBMASTER));
Toggle to set password visible
2013-09-04 23:04:05 +02:00
Updated connexion form (may not work - not tested) * Remember me option * IP ban system (if IP differs from session stored one) * Ban system if too many attempts
2013-08-24 23:28:56 +02:00
// Set sessions parameters
ini_set('session.use_cookies', 1);
ini_set('session.use_only_cookies', 1);
ini_set('session.use_trans_sid', false);
session_name('bouffeatulm');
// Regenerate session if needed
$cookie = session_get_cookie_params();
$cookie_dir = ''; if(dirname($_SERVER['SCRIPT_NAME']) != '/') $cookie_dir = dirname($_SERVER['SCRIPT_NAME']);
session_set_cookie_params($cookie['lifetime'], $cookie_dir, $_SERVER['HTTP_HOST']);
session_regenerate_id(true);
Started index page ; connect/disconnect working ; started edit password page
2013-08-09 23:35:20 +02:00
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
// Handle current user status
Updated connexion form (may not work - not tested) * Remember me option * IP ban system (if IP differs from session stored one) * Ban system if too many attempts
2013-08-24 23:28:56 +02:00
if(session_id() == '') session_start();
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
$current_user = new User();
if(isset($_SESSION['current_user'])) {
$current_user->sessionRestore($_SESSION['current_user'], true);
}
else {
$current_user = false;
}
Secure vars to display
2013-08-26 21:21:52 +02:00
$tpl->assign('current_user', secureDisplay($current_user));
Connexion system working
2013-08-09 00:44:43 +02:00
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
if(!empty($_GET['json_token'])) {
$current_user = new User();
if($current_user->load(array('json_token'=>$_GET['json_token'], true)) === false) {
header('location: index.php?do=connect'.$get_redir);
exit();
}
else {
if(!empty($get_redir))
$get_redir .= '&';
$get_redir .= 'json_token='.$_GET['json_token'];
}
Connexion system working
2013-08-09 00:44:43 +02:00
}
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
else {
//If json token not available
// If not connected, redirect to connection page
if($current_user === false && (empty($_GET['do']) OR $_GET['do'] != 'connect')) {
header('location: index.php?do=connect&'.$get_redir);
exit();
}
// If IP has changed, logout
if($current_user !== false && user_ip() != $_SESSION['ip']) {
session_destroy();
header('location: index.php?do=connect&'.$get_redir);
exit();
}
Bug correction in login form
2013-08-25 22:36:46 +02:00
}
CSRF protection Added a simple CSRF protection
2013-08-24 23:53:52 +02:00
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
// Initialize empty $_GET['do'] if required to avoid error
Connexion system working
2013-08-09 00:44:43 +02:00
if(empty($_GET['do'])) {
$_GET['do'] = '';
}
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
// Check what to do
Connexion system working
2013-08-09 00:44:43 +02:00
switch($_GET['do']) {
case 'connect':
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
if($current_user !== false) {
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
header('location: index.php?'.$get_redir);
Updated connexion form (may not work - not tested) * Remember me option * IP ban system (if IP differs from session stored one) * Ban system if too many attempts
2013-08-24 23:28:56 +02:00
exit();
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
}
CSRF protection Added a simple CSRF protection
2013-08-24 23:53:52 +02:00
if(!empty($_POST['login']) && !empty($_POST['password']) && check_token(600, 'connection')) {
Settings modification working
2013-08-12 09:52:50 +02:00
$user = new User();
$user->setLogin($_POST['login']);
Updated connexion form (may not work - not tested) * Remember me option * IP ban system (if IP differs from session stored one) * Ban system if too many attempts
2013-08-24 23:28:56 +02:00
if(ban_canLogin() == false) {
Started i18n system
2013-09-05 23:46:51 +02:00
$error = $errors['unknown_username_password'][LANG];
Connexion system working
2013-08-09 00:44:43 +02:00
}
else {
Bug correction with recent load method refactor
2013-08-29 12:26:28 +02:00
$user = $user->exists($_POST['login']);
if($user !== false && $user->checkPassword($_POST['password'])) {
Updated connexion form (may not work - not tested) * Remember me option * IP ban system (if IP differs from session stored one) * Ban system if too many attempts
2013-08-24 23:28:56 +02:00
ban_loginOk();
$_SESSION['current_user'] = $user->sessionStore();
$_SESSION['ip'] = user_ip();
if(!empty($_POST['remember_me'])) { // Handle remember me cookie
$_SESSION['remember_me'] = 31536000;
}
else {
$_SESSION['remember_me'] = 0;
}
$cookie_dir = ''; if(dirname($_SERVER['SCRIPT_NAME']) != '/') $cookie_dir = dirname($_SERVER['SCRIPT_NAME']);
session_set_cookie_params($_SESSION['remember_me'], $cookie_dir, $_SERVER['HTTP_HOST']);
session_regenerate_id(true);
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
header('location: index.php?'.$get_redir);
Updated connexion form (may not work - not tested) * Remember me option * IP ban system (if IP differs from session stored one) * Ban system if too many attempts
2013-08-24 23:28:56 +02:00
exit();
}
else {
ban_loginFailed();
Started i18n system
2013-09-05 23:46:51 +02:00
$error = $errors['unknown_username_password'][LANG];
Updated connexion form (may not work - not tested) * Remember me option * IP ban system (if IP differs from session stored one) * Ban system if too many attempts
2013-08-24 23:28:56 +02:00
}
Connexion system working
2013-08-09 00:44:43 +02:00
}
}
Bug correction in login form
2013-08-25 22:36:46 +02:00
$tpl->assign('connection', true);
Remember last entered login in connection form
2013-08-09 23:47:01 +02:00
$tpl->assign('user_post', (!empty($_POST['login'])) ? htmlspecialchars($_POST['login']) : '');
CSRF protection Added a simple CSRF protection
2013-08-24 23:53:52 +02:00
$tpl->assign('token', generate_token('connection'));
$tpl->draw('connection');
Connexion system working
2013-08-09 00:44:43 +02:00
break;
case 'disconnect':
$current_user = false;
session_destroy();
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
header('location: index.php?do=connect&'.$get_redir);
Connexion system working
2013-08-09 00:44:43 +02:00
exit();
Started index page ; connect/disconnect working ; started edit password page
2013-08-09 23:35:20 +02:00
break;
Connexion system working
2013-08-09 00:44:43 +02:00
Started index page ; connect/disconnect working ; started edit password page
2013-08-09 23:35:20 +02:00
case 'password':
Edit password almost working
2013-08-09 23:43:56 +02:00
if(!empty($_POST['password']) && !empty($_POST['password_confirm'])) {
if($_POST['password'] == $_POST['password_confirm']) {
Bug corrections
2013-08-25 23:06:47 +02:00
if(check_token(600, 'password')) {
$current_user->setPassword($current_user->encrypt($_POST['password']));
$current_user->save();
Connexion system working
2013-08-09 00:44:43 +02:00
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
header('location: index.php?'.$get_redir);
Bug corrections
2013-08-25 23:06:47 +02:00
exit();
}
else {
Started i18n system
2013-09-05 23:46:51 +02:00
$tpl->assign('error', $errors['token_error'][LANG]);
Bug corrections
2013-08-25 23:06:47 +02:00
}
Edit password almost working
2013-08-09 23:43:56 +02:00
}
else {
Started i18n system
2013-09-05 23:46:51 +02:00
$tpl->assign('error', $errors['password_mismatch'][LANG]);
Edit password almost working
2013-08-09 23:43:56 +02:00
}
}
Started user management interface. Need PHP backend.
2013-08-10 23:58:40 +02:00
$tpl->assign('view', 'password');
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
$tpl->assign('json_token', htmlspecialchars($current_user->getJsonToken()));
Bug corrections
2013-08-25 23:06:47 +02:00
$tpl->assign('token', generate_token('password'));
Started index page ; connect/disconnect working ; started edit password page
2013-08-09 23:35:20 +02:00
$tpl->draw('edit_users');
break;
Started user management interface. Need PHP backend.
2013-08-10 23:58:40 +02:00
case 'edit_users':
case 'add_user':
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
if(!$current_user->getAdmin()) {
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
header('location: index.php?'.$get_redir);
Updated connexion form (may not work - not tested) * Remember me option * IP ban system (if IP differs from session stored one) * Ban system if too many attempts
2013-08-24 23:28:56 +02:00
exit();
Started user management interface. Need PHP backend.
2013-08-10 23:58:40 +02:00
}
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
Added a display name field to have a different login and displayed name for users
2013-08-13 17:58:14 +02:00
if(!empty($_POST['login']) && !empty($_POST['display_name']) && (!empty($_POST['password']) || !empty($_POST['user_id'])) && isset($_POST['admin'])) {
Bug corrections
2013-08-25 23:06:47 +02:00
if(check_token(600, 'edit_users')) {
CSRF protection Added a simple CSRF protection
2013-08-24 23:53:52 +02:00
$user = new User();
if(!empty($_POST['user_id'])) {
$user->setId($_POST['user_id']);
}
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
else {
$user->newJsonToken();
}
CSRF protection Added a simple CSRF protection
2013-08-24 23:53:52 +02:00
$user->setLogin($_POST['login']);
$user->setDisplayName($_POST['display_name']);
if(!empty($_POST['password'])) {
$user->setPassword($user->encrypt($_POST['password']));
}
$user->setAdmin($_POST['admin']);
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
Bug corrections
2013-08-25 23:06:47 +02:00
if(!empty($_POST['user_id']) || $user->isUnique()) {
Prevents from adding two users with the same login + bug correction
2013-08-25 00:06:14 +02:00
$user->save();
Cache system ; use a different cache file per user... will see how to improve it
2013-09-02 00:23:37 +02:00
// Clear the cache
Bug correction in settings
2013-09-21 14:36:30 +02:00
($cached_files = glob(raintpl::$cache_dir."*.rtpl.php")) or ($cached_files = array());
array_map("unlink", $cached_files);
Cache system ; use a different cache file per user... will see how to improve it
2013-09-02 00:23:37 +02:00
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
header('location: index.php?do=edit_users&'.$get_redir);
Prevents from adding two users with the same login + bug correction
2013-08-25 00:06:14 +02:00
exit();
}
else {
Started i18n system
2013-09-05 23:46:51 +02:00
$tpl->assign('error', $errors['user_already_exists'][LANG]);
Prevents from adding two users with the same login + bug correction
2013-08-25 00:06:14 +02:00
}
CSRF protection Added a simple CSRF protection
2013-08-24 23:53:52 +02:00
}
Bug corrections
2013-08-25 23:06:47 +02:00
else {
Started i18n system
2013-09-05 23:46:51 +02:00
$tpl->assign('error', $errors['token_error'][LANG]);
Bug corrections
2013-08-25 23:06:47 +02:00
}
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
}
Started user management interface. Need PHP backend.
2013-08-10 23:58:40 +02:00
if(!empty($_GET['user_id']) || $_GET['do'] == 'add_user') {
if(!empty($_GET['user_id'])) {
$user_id = (int) $_GET['user_id'];
$user = new User();
Refactor load method
2013-08-27 15:51:04 +02:00
$user = $user->load(array('id'=>$user_id), true);
Secure vars to display
2013-08-26 21:21:52 +02:00
$tpl->assign('user_data', $user->secureDisplay());
Started user management interface. Need PHP backend.
2013-08-10 23:58:40 +02:00
}
Settings modification working
2013-08-12 09:52:50 +02:00
$tpl->assign('user_id', (!empty($user_id) ? (int) $user_id : -1));
Started user management interface. Need PHP backend.
2013-08-10 23:58:40 +02:00
$tpl->assign('view', 'edit_user');
}
else {
$users_list = new User();
Refactor load method
2013-08-27 15:51:04 +02:00
$users_list = $users_list->load();
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
Secure vars to display
2013-08-26 21:21:52 +02:00
$tpl->assign('users', secureDisplay($users_list));
Started user management interface. Need PHP backend.
2013-08-10 23:58:40 +02:00
$tpl->assign('view', 'list_users');
}
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
$tpl->assign('login_post', (!empty($_POST['login']) ? htmlspecialchars($_POST['login']) : ''));
Added a display name field to have a different login and displayed name for users
2013-08-13 17:58:14 +02:00
$tpl->assign('display_name_post', (!empty($_POST['display_name']) ? htmlspecialchars($_POST['display_name']) : ''));
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
$tpl->assign('admin_post', (isset($_POST['admin']) ? (int) $_POST['admin'] : -1));
CSRF protection Added a simple CSRF protection
2013-08-24 23:53:52 +02:00
$tpl->assign('token', generate_token('edit_users'));
Started user management interface. Need PHP backend.
2013-08-10 23:58:40 +02:00
$tpl->draw('edit_users');
break;
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
case 'new_token':
if(!empty($_GET['user_id']) && $current_user->getAdmin()) {
$user_id = (int) $_GET['user_id'];
}
else {
$user_id = $current_user->getId();
}
$user = new User();
$user = $user->load(array('id'=>$user_id), true);
$user->newJsonToken();
$user->save();
$_SESSION['current_user'] = $user->sessionStore();
Bug correction in payback system
2013-09-14 23:21:49 +02:00
header('location: index.php?do=password&'.$get_redir);
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
exit();
break;
Started user management interface. Need PHP backend.
2013-08-10 23:58:40 +02:00
case 'delete_user':
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
if($_GET['user_id'] != $current_user->getId()) {
$user = new User();
Added deletion of user ability
2013-08-11 22:34:39 +02:00
$user->setId($_GET['user_id']);
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
$user->delete();
Bug correction in payback system
2013-09-14 23:21:49 +02:00
// Update concerned invoices
$invoices = new Invoice();
$invoices = $invoices->load();
if($invoices !== FALSE) {
foreach($invoices as $invoice) {
if($invoice->getBuyer() == $_GET['user_id']) {
Safe deletion of users
2013-09-15 16:19:37 +02:00
$invoice->delete();
Bug correction in payback system
2013-09-14 23:21:49 +02:00
}
if($invoice->getUsersIn()->inUsersIn($_GET['user_id'])) {
$users_in = $invoice->getUsersIn()->get();
unset($users_in[$_GET['user_id']]);
No self bills
2013-09-15 16:28:44 +02:00
if(empty($users_in) || array_keys($users_in) == array($invoice->getBuyer()))
Safe deletion of users
2013-09-15 16:19:37 +02:00
$invoice->delete();
else {
$invoice->setUsersIn($users_in);
$invoice->save();
}
Bug correction in payback system
2013-09-14 23:21:49 +02:00
}
}
}
// Update paybacks
$paybacks = new Payback();
$paybacks = $paybacks->load(array('from_user'=>(int) $_GET['user_id']));
if($paybacks !== FALSE) {
foreach($paybacks as $payback) {
Safe deletion of users
2013-09-15 16:19:37 +02:00
$payback->delete();
Bug correction in payback system
2013-09-14 23:21:49 +02:00
}
}
Safe deletion of users
2013-09-15 16:19:37 +02:00
$paybacks = new Payback();
Bug correction in payback system
2013-09-14 23:21:49 +02:00
$paybacks = $paybacks->load(array('to_user'=>(int) $_GET['user_id']));
if($paybacks !== FALSE) {
foreach($paybacks as $payback) {
Safe deletion of users
2013-09-15 16:19:37 +02:00
$payback->delete();
Bug correction in payback system
2013-09-14 23:21:49 +02:00
}
}
Cache system ; use a different cache file per user... will see how to improve it
2013-09-02 00:23:37 +02:00
// Clear the cache
Bug correction in settings
2013-09-21 14:36:30 +02:00
($cached_files = glob(raintpl::$cache_dir."*.rtpl.php")) or ($cached_files = array());
array_map("unlink", $cached_files);
Cache system ; use a different cache file per user... will see how to improve it
2013-09-02 00:23:37 +02:00
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
header('location: index.php?do=edit_users&'.$get_redir);
Currency choice in install.php + edit user available
2013-08-11 22:25:25 +02:00
exit();
}
Started user management interface. Need PHP backend.
2013-08-10 23:58:40 +02:00
break;
Settings modification working
2013-08-12 09:52:50 +02:00
case 'edit_notice':
if(isset($_POST['notice'])) {
setNotice($_POST['notice']);
Cache system ; use a different cache file per user... will see how to improve it
2013-09-02 00:23:37 +02:00
// Clear the cache
Bug correction in settings
2013-09-21 14:36:30 +02:00
($cached_files = glob(raintpl::$cache_dir."*.rtpl.php")) or ($cached_files = array());
array_map("unlink", $cached_files);
Settings modification working
2013-08-12 09:52:50 +02:00
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
header('location: index.php?'.$get_redir);
Settings modification working
2013-08-12 09:52:50 +02:00
exit();
}
$tpl->assign('show_settings', false);
$tpl->draw('settings');
break;
case 'settings':
i18n system improved. Templates are localized.
2013-09-05 23:57:47 +02:00
if(!empty($_POST['mysql_host']) && !empty($_POST['mysql_login']) && !empty($_POST['mysql_db']) && !empty($_POST['currency']) && !empty($_POST['instance_title']) && !empty($_POST['base_url']) && !empty($_POST['timezone']) && !empty($_POST['email_webmaster']) && !empty($_POST['template'])) {
Bug corrections
2013-08-25 23:06:47 +02:00
if(check_token(600, 'settings')) {
if(!is_writable('data/')) {
Started i18n system
2013-09-05 23:46:51 +02:00
$tpl>assign('error', $errors['write_error_data'][LANG]);
Bug corrections
2013-08-25 23:06:47 +02:00
}
else {
i18n system improved. Templates are localized.
2013-09-05 23:57:47 +02:00
if(!is_dir('tpl/'.$_POST['template'])) {
$tpl->assign('error', $errors['template_error'][LANG]);
Started i18n system
2013-09-05 23:46:51 +02:00
}
else {
$config = file('data/config.php');
foreach($config as $line_number=>$line) {
Bug correction in settings
2013-09-21 14:36:30 +02:00
if(strpos(trim($line), "MYSQL_HOST") !== false)
Started i18n system
2013-09-05 23:46:51 +02:00
$config[$line_number] = "\tdefine('MYSQL_HOST', '".$_POST['mysql_host']."');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), "MYSQL_LOGIN") !== false)
Started i18n system
2013-09-05 23:46:51 +02:00
$config[$line_number] = "\tdefine('MYSQL_LOGIN', '".$_POST['mysql_login']."');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), "MYSQL_PASSWORD") !== false && !empty($_POST['mysql_password']))
Started i18n system
2013-09-05 23:46:51 +02:00
$config[$line_number] = "\tdefine('MYSQL_PASSWORD', '".$_POST['mysql_password']."');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), "MYSQL_DB") !== false)
Started i18n system
2013-09-05 23:46:51 +02:00
$config[$line_number] = "\tdefine('MYSQL_DB', '".$_POST['mysql_db']."');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), "MYSQL_PREFIX") !== false && !empty($_POST['mysql_prefix']))
Started i18n system
2013-09-05 23:46:51 +02:00
$config[$line_number] = "\tdefine('MYSQL_PREFIX', '".$_POST['mysql_prefix']."');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), "INSTANCE_TITLE") !== false)
Started i18n system
2013-09-05 23:46:51 +02:00
$config[$line_number] = "\tdefine('INSTANCE_TITLE', '".$_POST['instance_title']."');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), "BASE_URL") !== false)
Started i18n system
2013-09-05 23:46:51 +02:00
$config[$line_number] = "\tdefine('BASE_URL', '".$_POST['base_url']."');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), "CURRENCY") !== false)
Started i18n system
2013-09-05 23:46:51 +02:00
$config[$line_number] = "\tdefine('CURRENCY', '".$_POST['currency']."');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), "EMAIL_WEBMASTER") !== false)
Started i18n system
2013-09-05 23:46:51 +02:00
$config[$line_number] = "\tdefine('EMAIL_WEBMASTER', '".$_POST['email_webmaster']."');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), "TEMPLATE_DIR") !== false)
i18n system improved. Templates are localized.
2013-09-05 23:57:47 +02:00
$config[$line_number] = "\tdefine('TEMPLATE_DIR', 'tpl/".$_POST['template']."/');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), "LANG") !== false)
i18n system improved. Templates are localized.
2013-09-05 23:57:47 +02:00
$config[$line_number] = "\tdefine('LANG', '".substr($_POST['template'], -2)."');\n";
Bug correction in settings
2013-09-21 14:36:30 +02:00
elseif(strpos(trim($line), 'date_default_timezone_set') !== false)
Started i18n system
2013-09-05 23:46:51 +02:00
$config[$line_number] = "\tdate_default_timezone_set('".$_POST['timezone']."');\n";
}
if(file_put_contents("data/config.php", $config)) {
// Clear the cache
Bug correction in settings
2013-09-21 14:36:30 +02:00
($cached_files = glob(raintpl::$cache_dir."*.rtpl.php")) or ($cached_files = array());
array_map("unlink", $cached_files);
Started i18n system
2013-09-05 23:46:51 +02:00
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
header('location: index.php?'.$get_redir);
Started i18n system
2013-09-05 23:46:51 +02:00
exit();
}
else {
$tpl->assign('error', $errors['unable_write_config'][LANG]);
}
}
Bug corrections
2013-08-25 23:06:47 +02:00
}
Settings modification working
2013-08-12 09:52:50 +02:00
}
else {
Started i18n system
2013-09-05 23:46:51 +02:00
$tpl->assign('error', $errors['token_error'][LANG]);
Settings modification working
2013-08-12 09:52:50 +02:00
}
}
Secure vars to display
2013-08-26 21:21:52 +02:00
$tpl->assign('mysql_host', htmlspecialchars(MYSQL_HOST));
$tpl->assign('mysql_login', htmlspecialchars(MYSQL_LOGIN));
$tpl->assign('mysql_db', htmlspecialchars(MYSQL_DB));
$tpl->assign('mysql_prefix', htmlspecialchars(MYSQL_PREFIX));
Improve "add invoice" form
2013-08-22 23:14:14 +02:00
$tpl->assign('timezone', @date_default_timezone_get());
Settings modification working
2013-08-12 09:52:50 +02:00
$tpl->assign('show_settings', true);
CSRF protection Added a simple CSRF protection
2013-08-24 23:53:52 +02:00
$tpl->assign('token', generate_token('settings'));
Started i18n system
2013-09-05 23:46:51 +02:00
$tpl->assign('templates', listTemplates('tpl/'));
Templates handling improved
2013-09-05 20:09:03 +02:00
$tpl->assign('current_template', trim(substr(TEMPLATE_DIR, 4), '/'));
Started i18n system
2013-09-05 23:46:51 +02:00
$tpl->assign('lang', LANG);
Settings modification working
2013-08-12 09:52:50 +02:00
$tpl->draw('settings');
break;
Working on form to add invoices. Added a timezone option in install.php to add timezone support to the script (and throw away some errors)
2013-08-13 19:37:11 +02:00
case 'new_invoice':
Prefill form for modifications of bills
2013-08-17 19:16:16 +02:00
case 'edit_invoice':
if(!empty($_GET['id'])) {
$invoice = new Invoice();
Design improvements
2013-08-30 20:07:52 +02:00
$invoice = $invoice->load(array('id'=>(int) $_GET['id']), true);
Prefill form for modifications of bills
2013-08-17 19:16:16 +02:00
Design improvements
2013-08-30 20:07:52 +02:00
$date_hour = $invoice->getDate('a');
$date_day = $invoice->getDate('d');
$date_month = $invoice->getDate('m');
$date_year = $invoice->getDate('Y');
Prefill form for modifications of bills
2013-08-17 19:16:16 +02:00
$amount = $invoice->getAmount();
$what = $invoice->getWhat();
Small improvements on template
2013-09-08 16:29:55 +02:00
$users_in = $invoice->getUsersIn()->get();
Prefill form for modifications of bills
2013-08-17 19:16:16 +02:00
}
if(!empty($_POST['what'])) $what = $_POST['what'];
if(!empty($_POST['amount'])) $amount = $_POST['amount'];
if(!empty($_POST['date_day'])) $date_day = $_POST['date_day'];
if(!empty($_POST['date_month'])) $date_month = $_POST['date_month'];
if(!empty($_POST['date_year'])) $date_year = $_POST['date_year'];
Small improvements on template
2013-09-08 16:29:55 +02:00
if(!empty($_POST['users_in'])) {
$users_in = array();
foreach($_POST['users_in'] as $user) {
$users_in[(int) $user] = (int) $_POST['guest_user_'.$user];
}
}
Prefill form for modifications of bills
2013-08-17 19:16:16 +02:00
Design improvements
2013-08-30 20:07:52 +02:00
if(!empty($_POST['what']) && !empty($_POST['amount']) && (float) $_POST['amount'] != 0 && !empty($_POST['date_hour']) && !empty($_POST['date_day']) && !empty($_POST['date_month']) && !empty($_POST['date_year']) && !empty($_POST['users_in'])) {
Bug corrections
2013-08-25 23:06:47 +02:00
if(check_token(600, 'new_invoice')) {
Design improvements
2013-08-30 20:07:52 +02:00
if($_POST['amount'] <= 0) {
Started i18n system
2013-09-05 23:46:51 +02:00
$tpl->assign('error', $errors['negative_amount'][LANG]);
Bug corrections
2013-08-25 23:06:47 +02:00
}
Design improvements
2013-08-30 20:07:52 +02:00
else {
No self bills
2013-09-15 16:28:44 +02:00
if(array_keys($users_in) == array($current_user->getId())) {
$tpl->assign('error', $errors['no_users'][LANG]);
}
else {
$invoice = new Invoice();
Design improvements
2013-08-30 20:07:52 +02:00
No self bills
2013-09-15 16:28:44 +02:00
if(!empty($_POST['id']))
$invoice->setId($_POST['id']);
Design improvements
2013-08-30 20:07:52 +02:00
No self bills
2013-09-15 16:28:44 +02:00
$invoice->setWhat($_POST['what']);
$invoice->setAmount($_POST['amount']);
$invoice->setBuyer($current_user->getId());
$invoice->setDate(0, int2ampm($_POST['date_hour']), $_POST['date_day'], $_POST['date_month'], $_POST['date_year']);
Design improvements
2013-08-30 20:07:52 +02:00
No self bills
2013-09-15 16:28:44 +02:00
$invoice->setUsersIn($users_in);
Working on form to add invoices. Added a timezone option in install.php to add timezone support to the script (and throw away some errors)
2013-08-13 19:37:11 +02:00
No self bills
2013-09-15 16:28:44 +02:00
$invoice->save();
Cache system ; use a different cache file per user... will see how to improve it
2013-09-02 00:23:37 +02:00
No self bills
2013-09-15 16:28:44 +02:00
// Clear the cache
Bug correction in settings
2013-09-21 14:36:30 +02:00
($cached_files = glob(raintpl::$cache_dir."*.rtpl.php")) or ($cached_files = array());
array_map("unlink", $cached_files);
Cache system ; use a different cache file per user... will see how to improve it
2013-09-02 00:23:37 +02:00
No self bills
2013-09-15 16:28:44 +02:00
header('location: index.php?'.$get_redir);
exit();
}
Design improvements
2013-08-30 20:07:52 +02:00
}
Bug corrections
2013-08-25 23:06:47 +02:00
}
else {
Started i18n system
2013-09-05 23:46:51 +02:00
$tpl->assign('error', $errors['token_error'][LANG]);
Bug corrections
2013-08-25 23:06:47 +02:00
}
Working on form to add invoices. Added a timezone option in install.php to add timezone support to the script (and throw away some errors)
2013-08-13 19:37:11 +02:00
}
$users_list = new User();
Refactor load method
2013-08-27 15:51:04 +02:00
$users_list = $users_list->load();
Working on form to add invoices. Added a timezone option in install.php to add timezone support to the script (and throw away some errors)
2013-08-13 19:37:11 +02:00
Secure vars to display
2013-08-26 21:21:52 +02:00
$tpl->assign('days', range(1,31));
Working on form to add invoices. Added a timezone option in install.php to add timezone support to the script (and throw away some errors)
2013-08-13 19:37:11 +02:00
$tpl->assign('months', range(1, 12));
$tpl->assign('years', range(date('Y') - 1, date('Y') + 1));
Design improvements
2013-08-30 20:07:52 +02:00
$tpl->assign('hour_post', (!empty($date_hour) ? (int) ampm2int($date_hour) : (int) ampm2int(date('a'))));
Prefill form for modifications of bills
2013-08-17 19:16:16 +02:00
$tpl->assign('day_post', (!empty($date_day) ? (int) $date_day : (int) date('d')));
$tpl->assign('month_post', (!empty($date_month) ? (int) $date_month : (int) date('m')));
$tpl->assign('year_post', (!empty($date_year) ? (int) $date_year : (int) date('Y')));
$tpl->assign('amount_post', (!empty($amount) ? (float) $amount : 0));
$tpl->assign('what_post', (!empty($what) ? htmlspecialchars($what) : ''));
Secure vars to display
2013-08-26 21:21:52 +02:00
$tpl->assign('users', secureDisplay($users_list));
Prefill form for modifications of bills
2013-08-17 19:16:16 +02:00
$tpl->assign('users_in', (!empty($users_in) ? $users_in : array()));
$tpl->assign('id', (!empty($_GET['id']) ? (int) $_GET['id'] : 0));
CSRF protection Added a simple CSRF protection
2013-08-24 23:53:52 +02:00
$tpl->assign('token', generate_token('new_invoice'));
Working on form to add invoices. Added a timezone option in install.php to add timezone support to the script (and throw away some errors)
2013-08-13 19:37:11 +02:00
$tpl->draw('new_invoice');
break;
Delete invoice ability. Need to think about storage system to finish invoice system...
2013-08-17 19:28:42 +02:00
case 'delete_invoice':
if(!empty($_GET['id'])) {
$invoice = new Invoice();
Invoice management complete
2013-09-08 18:36:59 +02:00
$invoice = $invoice->load(array('id'=>(int) $_GET['id']), true);
Delete invoice ability. Need to think about storage system to finish invoice system...
2013-08-17 19:28:42 +02:00
Invoice management complete
2013-09-08 18:36:59 +02:00
if($current_user->getAdmin() || $invoice->getBuyer() == $current_user->getId()) {
$invoice->delete();
Cache system ; use a different cache file per user... will see how to improve it
2013-09-02 00:23:37 +02:00
Delete paybacks and users in when deleting an invoice
2013-09-14 23:36:19 +02:00
// Delete related paybacks
$paybacks = new Payback();
$paybacks = $paybacks->load(array('invoice_id'=>(int) $_GET['id']));
if($paybacks !== false) {
foreach($paybacks as $payback) {
$payback->delete();
}
}
Invoice management complete
2013-09-08 18:36:59 +02:00
// Clear the cache
Bug correction in settings
2013-09-21 14:36:30 +02:00
($cached_files = glob(raintpl::$cache_dir."*.rtpl.php")) or ($cached_files = array());
array_map("unlink", $cached_files);
Invoice management complete
2013-09-08 18:36:59 +02:00
header('location: index.php?'.$get_redir);
exit();
}
else {
$tpl->assign('error', $errors['unauthorized']);
$tpl->draw('index');
}
}
else {
Started to write the code to handle json API
2013-09-06 20:07:28 +02:00
header('location: index.php?'.$get_redir);
Delete invoice ability. Need to think about storage system to finish invoice system...
2013-08-17 19:28:42 +02:00
exit();
}
break;
Payback base system now working
2013-09-11 00:51:45 +02:00
case 'confirm_payback':
No self bills
2013-09-15 16:28:44 +02:00
if(!empty($_GET['from']) && !empty($_GET['to']) && !empty($_GET['invoice_id']) && $_GET['from'] != $_GET['to']) {
Payback base system now working
2013-09-11 00:51:45 +02:00
if($_GET['to'] == $current_user->getId() || $current_user->getAdmin()) {
$invoice = new Invoice();
$invoice = $invoice->load(array('id'=>(int) $_GET['invoice_id']), true);
$payback = new Payback();
if(!empty($_GET['payback_id'])) {
$payback = $payback->load(array('id'=>(int) $_GET['payback_id']), true);
if($payback->getFrom() != $_GET['from'] || $payback->getTo() != $_GET['to']) {
$payback = new Payback();
}
}
Bug correction in payback system
2013-09-14 23:21:49 +02:00
else {
$payback = $payback->load(array('invoice_id'=>(int) $_GET['invoice_id'], 'to_user'=>(int) $_GET['to'], 'from_user'=>(int) $_GET['from']), true);
if($payback == false)
$payback = new Payback();
}
Payback base system now working
2013-09-11 00:51:45 +02:00
$payback->setDate(date('i'), date('G'), date('j'), date('n'), date('Y'));
$payback->setInvoice($_GET['invoice_id']);
Bug correction in payback system
2013-09-14 23:21:49 +02:00
$payback->setAmount($invoice->getAmountPerPerson($_GET['from']));
Payback base system now working
2013-09-11 00:51:45 +02:00
$payback->setFrom($_GET['from']);
$payback->setTo($_GET['to']);
$payback->save();
// Clear the cache
Bug correction in settings
2013-09-21 14:36:30 +02:00
($cached_files = glob(raintpl::$cache_dir."*.rtpl.php")) or ($cached_files = array());
array_map("unlink", $cached_files);
Payback base system now working
2013-09-11 00:51:45 +02:00
header('location: index.php');
exit();
}
else {
$tpl->assign('error', $errors['unauthorized']);
$tpl->draw('index');
}
}
else {
header('location: index.php?'.$get_redir);
}
break;
case 'delete_payback':
if(!empty($_GET['from']) && !empty($_GET['to']) && !empty($_GET['invoice_id'])) {
if($_GET['to'] == $current_user->getId() || $current_user->getAdmin()) {
$paybacks = new Payback();
$paybacks = $paybacks->load(array('to_user'=>(int) $_GET['to'], 'from_user'=> (int) $_GET['from'], 'invoice_id'=> (int) $_GET['invoice_id']));
Some lines forgotten in payback deletion system
2013-09-14 23:33:01 +02:00
if($paybacks !== false) {
Bug correction in payback system
2013-09-14 23:21:49 +02:00
foreach($paybacks as $payback) {
$payback->delete();
}
Payback base system now working
2013-09-11 00:51:45 +02:00
}
// Clear the cache
Bug correction in settings
2013-09-21 14:36:30 +02:00
($cached_files = glob(raintpl::$cache_dir."*.rtpl.php")) or ($cached_files = array());
array_map("unlink", $cached_files);
Payback base system now working
2013-09-11 00:51:45 +02:00
header('location: index.php');
exit();
}
else {
Link to confirm all paybacks between two people
2013-09-15 16:55:22 +02:00
header('location: index.php');
exit();
Payback base system now working
2013-09-11 00:51:45 +02:00
}
}
else {
header('location: index.php');
exit();
}
Link to confirm all paybacks between two people
2013-09-15 16:55:22 +02:00
break;
case 'payall':
if(!empty($_GET['from']) && !empty($_GET['to'])) {
if($_GET['to'] == $current_user->getId() || $current_user->getAdmin()) {
// Confirm all paybacks when to is buyer
$invoices = new Invoice();
$invoices = $invoices->load(array('buyer'=>(int) $_GET['to']));
if($invoices !== false) {
foreach($invoices as $invoice) {
$paybacks = new Payback();
$paybacks = $paybacks->load(array('invoice_id'=>$invoice->getId(), 'to_user'=>(int) $_GET['to'], 'from_user'=>(int) $_GET['from']));
if($paybacks === false) {
$payback = new Payback();
$payback->setTo($_GET['to']);
$payback->setFrom($_GET['from']);
$payback->setAmount($invoice->getAmountPerPerson($_GET['from']));
$payback->setInvoice($invoice->getId());
$payback->setDate(date('i'), date('G'), date('j'), date('n'), date('Y'));
$payback->save();
}
}
}
// Confirm all paybacks when from is buyer
$invoices = new Invoice();
$invoices = $invoices->load(array('buyer'=>(int) $_GET['from']));
if($invoices !== false) {
foreach($invoices as $invoice) {
$paybacks = new Payback();
$paybacks = $paybacks->load(array('invoice_id'=>$invoice->getId(), 'to_user'=>(int) $_GET['from'], 'from_user'=>(int) $_GET['to']));
if($paybacks === false) {
$payback = new Payback();
$payback->setTo($_GET['from']);
$payback->setFrom($_GET['to']);
$payback->setAmount($invoice->getAmountPerPerson($_GET['to']));
$payback->setInvoice($invoice->getId());
$payback->setDate(date('i'), date('G'), date('j'), date('n'), date('Y'));
$payback->save();
}
}
}
// Clear the cache
Bug correction in settings
2013-09-21 14:36:30 +02:00
($cached_files = glob(raintpl::$cache_dir."*.rtpl.php")) or ($cached_files = array());
array_map("unlink", $cached_files);
Link to confirm all paybacks between two people
2013-09-15 16:55:22 +02:00
header('location: index.php');
exit();
}
else {
header('location: index.php');
exit();
}
}
else {
header('location: index.php');
exit();
}
break;
Payback base system now working
2013-09-11 00:51:45 +02:00
Started index page ; connect/disconnect working ; started edit password page
2013-08-09 23:35:20 +02:00
default:
List of bills working on index page
2013-09-15 15:28:27 +02:00
if(empty($_GET['all']))
$_GET['all'] = 0;
Bug correction in User::isUnique method + Start of caching system
2013-09-01 23:09:37 +02:00
// Display cached page in priority
List of bills working on index page
2013-09-15 15:28:27 +02:00
if($cache = $tpl->cache('index', $expire_time = 600, $cache_id = $current_user->getLogin().$_GET['all'])) {
Bug correction in User::isUnique method + Start of caching system
2013-09-01 23:09:37 +02:00
echo $cache;
}
Invoice management complete
2013-09-08 18:36:59 +02:00
else {
Bug correction in User::isUnique method + Start of caching system
2013-09-01 23:09:37 +02:00
$users_list = new User();
$users_list = $users_list->load();
Working on form to add invoices. Added a timezone option in install.php to add timezone support to the script (and throw away some errors)
2013-08-13 19:37:11 +02:00
Bug correction in User::isUnique method + Start of caching system
2013-09-01 23:09:37 +02:00
$invoices_list = new Invoice();
List of bills working on index page
2013-09-15 15:28:27 +02:00
if(empty($_GET['all'])) {
$invoices_list = $invoices_list->load(array('date'=>array('>='.date('Y-m').'-01 00:00:00', 'AND', '<='.date('Y-m').'-31 23:59:59')));
$tpl->assign('all', 0);
}
else {
$invoices_list = $invoices_list->load();
$tpl->assign('all', 1);
}
Working on form to add invoices. Added a timezone option in install.php to add timezone support to the script (and throw away some errors)
2013-08-13 19:37:11 +02:00
Started to work on Payback system
2013-09-10 23:07:39 +02:00
if($invoices_list === false) $invoices_list = array();
$paybacks = array();
foreach($invoices_list as $invoice) {
$paybacks[$invoice->getId()] = new Payback();
Payback base system now working
2013-09-11 00:51:45 +02:00
$paybacks[$invoice->getId()] = $paybacks[$invoice->getId()]->load(array('invoice_id'=>$invoice->getId()), false, 'from_user');
Started to work on Payback system
2013-09-10 23:07:39 +02:00
}
Index page almost done. TODO : balance table
2013-09-12 18:44:04 +02:00
$balances = array();
foreach($users_list as $user1) {
foreach($users_list as $user2) {
if($user1->getId() == $user2->getId()) {
$balances[$user1->getId()][$user2->getId()] = 'X';
}
Index balance table working
2013-09-13 19:18:49 +02:00
if(!empty($balances[$user2->getId()][$user1->getId()])) {
// If the opposed element in the matrix exists
if(is_float($balances[$user2->getId()][$user1->getId()])) {
if($balances[$user2->getId()][$user1->getId()] >= 0) {
$balances[$user1->getId()][$user2->getId()] = '-';
}
else {
$balances[$user1->getId()][$user2->getId()] = -$balances[$user2->getId()][$user1->getId()];
$balances[$user2->getId()][$user1->getId()] = '-';
}
}
}
Index page almost done. TODO : balance table
2013-09-12 18:44:04 +02:00
else {
Index balance table working
2013-09-13 19:18:49 +02:00
// TODO : Optimize ?
$balances[$user1->getId()][$user2->getId()] = 0;
// First, get a list of all invoices paid by user2 and check if user1 was in
$invoices_list_balances = new Invoice();
$invoices_list_balances = $invoices_list_balances->load(array('buyer'=>$user2->getId()));
if($invoices_list_balances !== false) {
foreach($invoices_list_balances as $invoice) {
if($invoice->getUsersIn()->inUsersIn($user1->getId())) {
Bug correction in payback system
2013-09-14 23:21:49 +02:00
$balances[$user1->getId()][$user2->getId()] += $invoice->getAmountPerPerson($user1->getId());
Balance table fully functional
2013-09-15 16:39:16 +02:00
$payback_balance = new Payback();
$payback_balance = $payback_balance->load(array('invoice_id'=>$invoice->getId(), 'from_user'=>$user1->getId(), 'to_user'=>$user2->getId()), true);
if($payback_balance !== false)
$balances[$user1->getId()][$user2->getId()] -= $payback_balance->getAmount();
Index balance table working
2013-09-13 19:18:49 +02:00
}
}
}
// Then search for all invoices paid by 1 and check if user2 was in
$invoices_list_balances = new Invoice();
$invoices_list_balances = $invoices_list_balances->load(array('buyer'=>$user1->getId()));
if($invoices_list_balances !== false) {
foreach($invoices_list_balances as $invoice) {
if($invoice->getUsersIn()->inUsersIn($user2->getId())) {
Bug correction in payback system
2013-09-14 23:21:49 +02:00
$balances[$user1->getId()][$user2->getId()] -= $invoice->getAmountPerPerson($user2->getId());
Balance table fully functional
2013-09-15 16:39:16 +02:00
$payback_balance = new Payback();
$payback_balance = $payback_balance->load(array('invoice_id'=>$invoice->getId(), 'from_user'=>$user2->getId(), 'to_user'=>$user1->getId()), true);
if($payback_balance !== false)
$balances[$user1->getId()][$user2->getId()] += $payback_balance->getAmount();
Index balance table working
2013-09-13 19:18:49 +02:00
}
}
}
Balance table fully functional
2013-09-15 16:39:16 +02:00
if($balances[$user1->getId()][$user2->getId()] == 0) {
$balances[$user1->getId()][$user2->getId()] = '-';
$balances[$user2->getId()][$user1->getId()] = '-';
}
Index page almost done. TODO : balance table
2013-09-12 18:44:04 +02:00
}
}
}
Bug correction in User::isUnique method + Start of caching system
2013-09-01 23:09:37 +02:00
$tpl->assign('users', secureDisplay($users_list));
$tpl->assign('invoices', secureDisplay($invoices_list));
Started to work on Payback system
2013-09-10 23:07:39 +02:00
$tpl->assign('paybacks', secureDisplay($paybacks));
Index page almost done. TODO : balance table
2013-09-12 18:44:04 +02:00
$tpl->assign('balances', secureDisplay($balances));
Working on form to add invoices. Added a timezone option in install.php to add timezone support to the script (and throw away some errors)
2013-08-13 19:37:11 +02:00
Bug correction in User::isUnique method + Start of caching system
2013-09-01 23:09:37 +02:00
// Cache the page (1 month to make it almost permanent and only regenerate it upon new invoice)
List of bills working on index page
2013-09-15 15:28:27 +02:00
$tpl->cache('index', 108000, $current_user->getLogin().$_GET['all']);
Bug correction in User::isUnique method + Start of caching system
2013-09-01 23:09:37 +02:00
$tpl->draw('index');
break;
Invoice management complete
2013-09-08 18:36:59 +02:00
}
Connexion system working
2013-08-09 00:44:43 +02:00
}
Reference in New Issue Copy Permalink