From 57472eab3c7b035392c6a5aa240593ecaa7d1ccf Mon Sep 17 00:00:00 2001
From: ilotterytea <iltsu@alright.party>
Date: Mon, 8 Dec 2025 21:53:36 +0500
Subject: upd: moved all /public/ files to the root folder

---
 report/index.php | 124 +++++++++++++++++++++++++++++++++++++++++++++++++++++++
 report/list.php  |  81 ++++++++++++++++++++++++++++++++++++
 report/send.php  |  45 ++++++++++++++++++++
 3 files changed, 250 insertions(+)
 create mode 100644 report/index.php
 create mode 100644 report/list.php
 create mode 100644 report/send.php

(limited to 'report')

diff --git a/report/index.php b/report/index.php
new file mode 100644
index 0000000..e5014c4
--- /dev/null
+++ b/report/index.php
@@ -0,0 +1,124 @@
+<?php
+include_once "../../src/accounts.php";
+include_once "../../src/config.php";
+include_once "../../src/partials.php";
+include_once "../../src/utils.php";
+include_once "../../src/alert.php";
+
+if (!REPORTS_ENABLE) {
+    generate_alert("/404.php", "Reports are disabled", 403);
+    exit;
+}
+
+if (!authorize_user(true)) {
+    exit;
+}
+
+if (isset($_SESSION["user_role"]) && !$_SESSION["user_role"]["permission_report"]) {
+    generate_alert("/404.php", "Not enough permissions", 403);
+    exit;
+}
+
+$db = new PDO(DB_URL, DB_USER, DB_PASS);
+$report = null;
+$report_id = $_GET["id"] ?? "";
+
+if ($report_id != "") {
+    $stmt = $db->prepare("SELECT * FROM reports WHERE id = ? AND sender_id = ?");
+    $stmt->execute([$report_id, $_SESSION["user_id"]]);
+
+    if ($row = $stmt->fetch(PDO::FETCH_ASSOC)) {
+        $report = $row;
+
+        if (CLIENT_REQUIRES_JSON) {
+            json_response([
+                "status_code" => 201,
+                "message" => null,
+                "data" => $report
+            ], 201);
+            exit;
+        }
+    } else {
+        generate_alert("/report", "Report ID #" . $_GET["id"] . " not found or not accessable");
+        exit;
+    }
+}
+
+$contents = "";
+
+if ($contents == "") {
+    if (isset($_GET["user_id"])) {
+        $contents = "Hi! I want to report user ID #" . $_GET["user_id"] . " because...";
+    } else if (isset($_GET["emote_id"])) {
+        $contents = "Hi! I want to report emote ID #" . $_GET["emote_id"] . " because...";
+    }
+}
+?>
+
+<html>
+
+<head>
+    <title><?php echo ($report == null ? "Send a message to MODS" : "A message to MODS") . ' - ' . INSTANCE_NAME ?>
+    </title>
+    <link rel="stylesheet" href="/static/style.css">
+    <link rel="shortcut icon" href="/static/favicon.ico" type="image/x-icon">
+</head>
+
+<body>
+    <div class="container">
+        <div class="wrapper">
+            <?php html_navigation_bar() ?>
+
+            <section class="content" style="width: 25%;">
+                <?php display_alert() ?>
+                <section class="box">
+                    <div class="box navtab">
+                        <?php echo $report == null ? "Send a message to MODS" : "A message to MODS" ?>
+                    </div>
+                    <?php if ($report == null) {
+                        echo '' ?>
+                        <div class="box content">
+                            <form action="/report/send.php" method="POST">
+                                <textarea name="contents" style="resize: none;height:250px;" autofocus
+                                    required><?php echo $contents; ?></textarea>
+                                <button type="submit">Send</button>
+                            </form>
+                        </div> <?php ;
+                    } else {
+                        echo '' ?>
+                        <div class="box content">
+                            <textarea name="contents" style="resize: none;height:250px;"
+                                disabled><?php echo $report["contents"]; ?></textarea>
+                        </div>
+                    </section>
+                    <section class="box">
+                        <p>Reported <?php echo format_timestamp(time() - strtotime($report["sent_at"])) ?> ago</p>
+                        <p>Status:
+                            <?php echo $report["resolved_by"] == null ? "<b style='color:red;'>Unresolved</b>" : "<b style='color:green;'>Resolved</b>" ?>
+                        </p>
+                    </section>
+                    <?php
+                    if ($report["response_message"]) {
+                        ?>
+                        <section class="box">
+                            <div class="box navtab">
+                                Response from MOD
+                            </div>
+                            <div class="box content">
+                                <textarea name="contents" style="resize: none;height:250px;"
+                                    disabled><?php echo $report["response_message"]; ?></textarea>
+                            </div>
+                        </section>
+                        <?php
+                    }
+                    ?>
+                    <?php ;
+                    }
+                    ?>
+            </section>
+            </section>
+        </div>
+    </div>
+</body>
+
+</html>
\ No newline at end of file
diff --git a/report/list.php b/report/list.php
new file mode 100644
index 0000000..f02731a
--- /dev/null
+++ b/report/list.php
@@ -0,0 +1,81 @@
+<?php
+include_once "../../src/accounts.php";
+include_once "../../src/config.php";
+include_once "../../src/partials.php";
+include_once "../../src/utils.php";
+include_once "../../src/alert.php";
+
+if (!REPORTS_ENABLE) {
+    generate_alert("/404.php", "Reports are disabled", 403);
+    exit;
+}
+
+if (!authorize_user(true)) {
+    exit;
+}
+
+if (isset($_SESSION["user_role"]) && !$_SESSION["user_role"]["permission_report"]) {
+    generate_alert("/404.php", "Not enough permissions", 403);
+    exit;
+}
+
+$db = new PDO(DB_URL, DB_USER, DB_PASS);
+
+$stmt = $db->prepare("SELECT * FROM reports WHERE sender_id = ? ORDER BY sent_at DESC");
+$stmt->execute([$_SESSION["user_id"]]);
+
+$reports = $stmt->fetchAll(PDO::FETCH_ASSOC);
+?>
+
+<html>
+
+<head>
+    <title>Report list - <?php echo INSTANCE_NAME ?></title>
+    <link rel="stylesheet" href="/static/style.css">
+    <link rel="shortcut icon" href="/static/favicon.ico" type="image/x-icon">
+</head>
+
+<body>
+    <div class="container">
+        <div class="wrapper">
+            <?php html_navigation_bar() ?>
+            <section class="content">
+                <section class="box" style="width: 50%;">
+                    <section class="box navtab">
+                        Report list
+                    </section>
+                    <section class="box content">
+                        <table>
+                            <tr>
+                                <th>Contents</th>
+                                <th>Status</th>
+                                <th style="min-width: 96px;"></th>
+                            </tr>
+                            <?php
+                            foreach ($reports as $report) {
+                                echo '<tr>';
+
+                                echo '<td>' . substr($report["contents"], 0, 20) . "...";
+                                echo ' <span style="font-size:12px; color: gray;">(' . format_timestamp(time() - strtotime($report["sent_at"])) . ' ago)</span>';
+                                echo '</td>';
+
+                                echo '<td>';
+                                echo $report["resolved_by"] == null ? "<b style='color:red;'>Unresolved</b>" : "<b style='color:green;'>Resolved</b>";
+                                echo '</td>';
+
+                                echo '<td style="text-align:center;">';
+                                echo '<a href="/report?id=' . $report["id"] . '">[ View ]</a>';
+                                echo '</td>';
+
+                                echo '</tr>';
+                            }
+                            ?>
+                        </table>
+                    </section>
+                </section>
+            </section>
+        </div>
+    </div>
+</body>
+
+</html>
\ No newline at end of file
diff --git a/report/send.php b/report/send.php
new file mode 100644
index 0000000..ab136e1
--- /dev/null
+++ b/report/send.php
@@ -0,0 +1,45 @@
+<?php
+include_once "../../src/accounts.php";
+include_once "../../src/config.php";
+include_once "../../src/utils.php";
+include_once "../../src/alert.php";
+
+if (!REPORTS_ENABLE) {
+    generate_alert("/404.php", "Reports are disabled", 403);
+    exit;
+}
+
+if (!authorize_user(true)) {
+    exit;
+}
+
+if (isset($_SESSION["user_role"]) && !$_SESSION["user_role"]["permission_report"]) {
+    generate_alert("/404.php", "Not enough permissions", 403);
+    exit;
+}
+
+$db = new PDO(DB_URL, DB_USER, DB_PASS);
+
+if (!isset($_POST["contents"])) {
+    generate_alert("/report", "Not enough POST fields");
+    exit;
+}
+
+$stmt = $db->prepare("INSERT INTO reports(sender_id, contents) VALUES (?, ?)");
+$stmt->execute([$_SESSION["user_id"], str_safe($_POST["contents"], 200)]);
+
+$report_id = $db->lastInsertId();
+
+$stmt = $db->prepare("SELECT * FROM reports WHERE id = ?");
+$stmt->execute([$report_id]);
+
+if (CLIENT_REQUIRES_JSON) {
+    json_response([
+        "status_code" => 201,
+        "message" => null,
+        "data" => $stmt->fetch(PDO::FETCH_ASSOC)
+    ], 201);
+    exit;
+}
+
+generate_alert("/report?id=$report_id", "Thank you for your vigilance! MODS will take action as soon as possible.", 200);
-- 
cgit v1.2.3