diff options
Diffstat (limited to 'public/report')
| -rw-r--r-- | public/report/index.php | 112 | ||||
| -rw-r--r-- | public/report/list.php | 69 | ||||
| -rw-r--r-- | public/report/send.php | 35 |
3 files changed, 216 insertions, 0 deletions
diff --git a/public/report/index.php b/public/report/index.php new file mode 100644 index 0000000..e040123 --- /dev/null +++ b/public/report/index.php @@ -0,0 +1,112 @@ +<?php +include_once "../../src/accounts.php"; +include_once "../../src/config.php"; +include_once "../../src/partials.php"; +include_once "../../src/utils.php"; +include_once "../../src/alert.php"; + +if (!authorize_user(true)) { + exit; +} + +$db = new PDO(DB_URL, DB_USER, DB_PASS); +$report = null; +$report_id = $_GET["id"] ?? ""; + +if ($report_id != "") { + $stmt = $db->prepare("SELECT * FROM reports WHERE id = ? AND sender_id = ?"); + $stmt->execute([$report_id, $_SESSION["user_id"]]); + + if ($row = $stmt->fetch(PDO::FETCH_ASSOC)) { + $report = $row; + + if (CLIENT_REQUIRES_JSON) { + json_response([ + "status_code" => 201, + "message" => null, + "data" => $report + ], 201); + exit; + } + } else { + generate_alert("/report", "Report ID #" . $_GET["id"] . " not found or not accessable"); + exit; + } +} + +$contents = ""; + +if ($contents == "") { + if (isset($_GET["user_id"])) { + $contents = "Hi! I want to report user ID #" . $_GET["user_id"] . " because..."; + } else if (isset($_GET["emote_id"])) { + $contents = "Hi! I want to report emote ID #" . $_GET["emote_id"] . " because..."; + } +} +?> + +<html> + +<head> + <title><?php echo $report == null ? "Send a message to MODS" : "A message to MODS" ?> - alright.party</title> + <link rel="stylesheet" href="/static/style.css"> +</head> + +<body> + <div class="container"> + <div class="wrapper"> + <?php html_navigation_bar() ?> + + <section class="content" style="width: 25%;"> + <?php display_alert() ?> + <section class="box"> + <div class="box navtab"> + <?php echo $report == null ? "Send a message to MODS" : "A message to MODS" ?> + </div> + <?php if ($report == null) { + echo '' ?> + <div class="box content"> + <form action="/report/send.php" method="POST"> + <textarea name="contents" style="resize: none;height:250px;" autofocus + required><?php echo $contents; ?></textarea> + <button type="submit">Send</button> + </form> + </div> <?php ; + } else { + echo '' ?> + <div class="box content"> + <textarea name="contents" style="resize: none;height:250px;" + disabled><?php echo $report["contents"]; ?></textarea> + </div> + </section> + <section class="box"> + <p>Reported <?php echo format_timestamp(time() - strtotime($report["sent_at"])) ?> ago</p> + <p>Status: + <?php echo $report["resolved_by"] == null ? "<b style='color:red;'>Unresolved</b>" : "<b style='color:green;'>Resolved</b>" ?> + </p> + </section> + <?php + if ($report["response_message"]) { + ?> + <section class="box"> + <div class="box navtab"> + Response from MOD + </div> + <div class="box content"> + <textarea name="contents" style="resize: none;height:250px;" + disabled><?php echo $report["response_message"]; ?></textarea> + </div> + </section> + <?php + } + ?> + <?php ; + } + ?> + </section> + </section> + </div> + </div> +</body> + +</html>
\ No newline at end of file diff --git a/public/report/list.php b/public/report/list.php new file mode 100644 index 0000000..128f994 --- /dev/null +++ b/public/report/list.php @@ -0,0 +1,69 @@ +<?php +include_once "../../src/accounts.php"; +include_once "../../src/config.php"; +include_once "../../src/partials.php"; +include_once "../../src/utils.php"; + +if (!authorize_user(true)) { + exit; +} + +$db = new PDO(DB_URL, DB_USER, DB_PASS); + +$stmt = $db->prepare("SELECT * FROM reports WHERE sender_id = ? ORDER BY sent_at DESC"); +$stmt->execute([$_SESSION["user_id"]]); + +$reports = $stmt->fetchAll(PDO::FETCH_ASSOC); +?> + +<html> + +<head> + <title>Report list - alright.party</title> + <link rel="stylesheet" href="/static/style.css"> +</head> + +<body> + <div class="container"> + <div class="wrapper"> + <?php html_navigation_bar() ?> + <section class="content"> + <section class="box" style="width: 50%;"> + <section class="box navtab"> + Report list + </section> + <section class="box content"> + <table> + <tr> + <th>Contents</th> + <th>Status</th> + <th style="min-width: 96px;"></th> + </tr> + <?php + foreach ($reports as $report) { + echo '<tr>'; + + echo '<td>' . substr($report["contents"], 0, 20) . "..."; + echo ' <span style="font-size:12px; color: gray;">(' . format_timestamp(time() - strtotime($report["sent_at"])) . ' ago)</span>'; + echo '</td>'; + + echo '<td>'; + echo $report["resolved_by"] == null ? "<b style='color:red;'>Unresolved</b>" : "<b style='color:green;'>Resolved</b>"; + echo '</td>'; + + echo '<td style="text-align:center;">'; + echo '<a href="/report?id=' . $report["id"] . '">[ View ]</a>'; + echo '</td>'; + + echo '</tr>'; + } + ?> + </table> + </section> + </section> + </section> + </div> + </div> +</body> + +</html>
\ No newline at end of file diff --git a/public/report/send.php b/public/report/send.php new file mode 100644 index 0000000..0b7abaf --- /dev/null +++ b/public/report/send.php @@ -0,0 +1,35 @@ +<?php +include_once "../../src/accounts.php"; +include_once "../../src/config.php"; +include_once "../../src/utils.php"; +include_once "../../src/alert.php"; + +if (!authorize_user(true)) { + exit; +} + +$db = new PDO(DB_URL, DB_USER, DB_PASS); + +if (!isset($_POST["contents"])) { + generate_alert("/report", "Not enough POST fields"); + exit; +} + +$stmt = $db->prepare("INSERT INTO reports(sender_id, contents) VALUES (?, ?)"); +$stmt->execute([$_SESSION["user_id"], str_safe($_POST["contents"], 200)]); + +$report_id = $db->lastInsertId(); + +$stmt = $db->prepare("SELECT * FROM reports WHERE id = ?"); +$stmt->execute([$report_id]); + +if (CLIENT_REQUIRES_JSON) { + json_response([ + "status_code" => 201, + "message" => null, + "data" => $stmt->fetch(PDO::FETCH_ASSOC) + ], 201); + exit; +} + +generate_alert("/report?id=$report_id", "Thank you for your vigilance! MODS will take action as soon as possible.", 200); |