$title
', '$variable', '$size', '$type', '$vrstni_red')"); $spremenljivka = mysqli_insert_id($GLOBALS['connect_db']); // Gremo cez posamezne vrednosti in jih dodamo if (count($data['Odgovori']) > 0) { $cnt = 1; foreach ($data['Odgovori'] as $vrednost) { $vrednost = $purifier->purify_DB($vrednost); $sql = sisplet_query("INSERT INTO srv_vrednost (id, spr_id, naslov, variable, vrstni_red) VALUES ('', '$spremenljivka', '$vrednost', '$cnt', '$cnt')"); $cnt++; } } else { for ($i = 1; $i <= $size; $i++) { $sql = sisplet_query("INSERT INTO srv_vrednost (id, spr_id, variable, vrstni_red) VALUES ('', '$spremenljivka', '$i', '$i')"); } } if (isset($data['other']) && $data['other'] != '') { $Vpr = new Vprasanje(); $Vpr->vrednost_new($data['other'], 1, null, $spremenljivka); } } } // NAVADNA ANKETA else { $uvod = $data['uvod']; $uvod_besedilo = $purifier->purify_DB($uvod['besedilo']); $show_intro = ($uvod['hide_uvod'] == '1') ? 0 : 1; $zakljucek = $data['zakljucek']; $zakljucek_besedilo = $purifier->purify_DB($zakljucek['besedilo']); $show_concl = ($zakljucek['hide_zakljucek'] == '1') ? 0 : 1; $sql = sisplet_query("INSERT INTO srv_anketa (id, hash, naslov, akronim, db_table, starts, expire, dostop, insert_uid, insert_time, edit_uid, edit_time, cookie, text, url, intro_opomba, survey_type, lang_admin, lang_resp, active, skin, introduction, conclusion, show_intro, show_concl, locked, mobile_created) " . "VALUES ('', '".$hash."', $naslov', '$akronim', '1', $starts, $expire, '0', '$global_user_id', NOW(), '$global_user_id', NOW(), '$SurveyCookie', '', '$url', '', '2', '$lang_admin', '$lang_resp', '$autoActiveSurvey', '1ka', '$uvod_besedilo', '$zakljucek_besedilo', '$show_intro', '$show_concl', '1', '$mobile_created')"); if (!$sql) { $error = mysqli_error($GLOBALS['connect_db']); } $anketa = mysqli_insert_id($GLOBALS['connect_db']); if ($anketa > 0) { $url .= 'a/' . $hash; // vnesemo tudi 1. grupo aka page $sql = sisplet_query("INSERT INTO srv_grupa (id, ank_id, naslov, vrstni_red) VALUES ('', '$anketa', '$lang[srv_stran] 1', '1')"); $grupa = mysqli_insert_id($GLOBALS['connect_db']); // Gremo cez vprasanja in jih dodamo if (isset($data['vprasanja']) && count($data['vprasanja']) > 0) { foreach ($data['vprasanja'] as $vprasanje) { $prasanjedata = array(); $prasanjedata['group_id'] = $grupa; $prasanjedata['title'] = $vprasanje['besedilo_vprasanja']; $prasanjedata['order'] = $vprasanje['mesto_vprasanja']; $prasanjedata['type_code'] = $vprasanje['vrsta_vprasanja']; if (isset($vprasanje['velikost_polja'])) $prasanjedata['taSize'] = $vprasanje['velikost_polja']; $prasanjedata['reminder'] = $vprasanje['reminder']; $prasanjedata['other'] = $vprasanje['other']; $prasanjedata['options'] = $vprasanje['Odgovori']; $this->createQuestion($anketa, $prasanjedata, false); } } } } if ($anketa > 0) { // dodamo se uporabnika v dostop $sql = sisplet_query("INSERT INTO srv_dostop (ank_id, uid) VALUES ('$anketa', '$global_user_id')"); //rabi se, da se naredi vrstica v tabeli srv_branching - na zacetku naredil, //ker drugace ni delalo vredu kopiranje vrednosti pri kopiranju anket new Branching($anketa); $json_array['url'] = $url; $json_array['id'] = $anketa; $json_array['note'] = 'Survey created'; } else { $json_array['error'] = 'Error creating survey'; } return $json_array; } /** * @api {post} https://www.1ka.si/api/createQuestion/survey/:id createQuestion * @apiName createQuestion * @apiGroup Questions and variables * @apiDescription Add new question to survey, put it on last spot of given group/page in survey * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey to add new question to * * @apiParam (POST parameter) {String} title Text of question * @apiParam (POST parameter) {Number} [group_id] Id of page/group to put question in (default is last page/group) * @apiParam (POST parameter) {Number} type_code Type of question (0-radio, 1-checkbox, 2-text) * @apiParam (POST parameter) {Number} [reminder] Reminder code for question (0-no reminder, 1-soft reminder, 2-hard reminder) (default is 0) * @apiParam (POST parameter) {String} [other] Text of option other to add (for cshoose type questions) * @apiParam (POST parameter) {Number} [taSize] Height size in lines of text field (for text question) (default is single line) * @apiParam (POST parameter) {String[]} [options] Array of options to add to question (for cshoose type questions) * @apiParamExample {json} Post-example (For choice-type): { "question": { "title": "This is text of choice type question", "type_code": 1, "group_id": 2027, "reminder": 0, "other": "Other:", "options": ["Text of option 1", "Text of option 2", "Text of option 3"] } } * * @apiParamExample {json} Post-example (For text-type): { "question": { "title": "This is text of text type question", "type_code": 2, "group_id": 2027, "reminder": 1, "taSize": 3 } } * * @apiSuccess {String} que_id ID of new question * @apiSuccessExample {json} Success-Response: * {"que_id":5056,"note":"Question created"} * * @apiVersion 1.0.0 */ private function createQuestion($ank_id, $vprasanje, $prestevilci = true) { global $lang; $purifier = New Purifier(); if (!isset($vprasanje['type_code'])){ $json_array['error'] = 'Type code of question missing'; return $json_array; } //ce ni nastavljene grupe, vprasanje postavimo kar v zadnjo if(!isset($vprasanje['group_id']) || !$vprasanje['group_id']){ $sql = sisplet_query("SELECT id from srv_grupa WHERE ank_id='$ank_id' ORDER BY vrstni_red DESC LIMIT 1;", 'obj'); if($sql->id) $grupa=$sql->id; //ce se ne obstaja grupa, jo kreiramo else{ // vnesemo tudi 1. grupo aka page $sql = sisplet_query("INSERT INTO srv_grupa (id, ank_id, naslov, vrstni_red) VALUES ('', '$ank_id', '$lang[srv_stran] 1', '1')"); $grupa = mysqli_insert_id($GLOBALS['connect_db']); } } else $grupa = $vprasanje['group_id']; //ce ni dolocen vrstni red za spremenljivko, jo postavi na zadnje mesto grupe if(!isset($vprasanje['order']) || !$vprasanje['order']){ $sql = sisplet_query("SELECT vrstni_red from srv_spremenljivka WHERE gru_id='$grupa' ORDER BY vrstni_red DESC LIMIT 1;", 'obj'); if($sql->vrstni_red) $vrstni_red=$sql->vrstni_red+1; } else $vrstni_red = $vprasanje['order']; $reminder = $vprasanje['reminder'] ? $vprasanje['reminder'] : 0; $other = $vprasanje['other'] ? $vprasanje['other'] : ''; $variable = 'Q' . $vrstni_red; $title = (isset($vprasanje['title']) && $vprasanje['title'] != '') ? $purifier->purify_DB($vprasanje['title']) : $variable; $params = ''; // checkbox if ($vprasanje['type_code'] == '1') { $type = 2; $size = (isset($vprasanje['options']) && count($vprasanje['options']) > 0) ? count($vprasanje['options']) : 3; } // textbox elseif ($vprasanje['type_code'] == '2') { $type = 21; $size = 1; if($vprasanje['taSize']) $params = 'taSize=' . $vprasanje['taSize']; } // radio else { $type = 1; $size = (isset($vprasanje['options']) && count($vprasanje['options']) > 0) ? count($vprasanje['options']) : 3; } // Vstavimo vprasanje $sql = sisplet_query("INSERT INTO srv_spremenljivka (id, gru_id, naslov, variable, size, tip, vrstni_red, reminder, params) VALUES ('', '$grupa', '$title
', '$variable', '$size', '$type', '$vrstni_red', '$reminder', '$params')"); $spremenljivka = mysqli_insert_id($GLOBALS['connect_db']); //vnesi vrednost samo za textbox if ($vprasanje['type_code'] == '2') { $sql = sisplet_query("INSERT INTO srv_vrednost (id, spr_id, naslov, variable, vrstni_red) VALUES ('', '$spremenljivka', '" . $variable . "a', '1', '1')"); } // Gremo cez posamezne vrednosti in jih dodamo if (isset($vprasanje['options']) && count($vprasanje['options']) > 0) { $cnt = 1; foreach ($vprasanje['options'] as $vrednost) { $vrednost = $purifier->purify_DB($vrednost); $sql = sisplet_query("INSERT INTO srv_vrednost (id, spr_id, naslov, variable, vrstni_red) VALUES ('', '$spremenljivka', '$vrednost', '$cnt', '$cnt')"); $cnt++; } } //dodamo se OTHER option, ce je nastavljeno if ($other != '') { $Vpr = new Vprasanje(); $Vpr->vrednost_new($other, 1, null, $spremenljivka); } Common::getInstance()->updateEditStamp(); Common::prestevilci($spremenljivka); if ($prestevilci) Common::prestevilci(); //potrebno za branching, da se podatki osvezijo in posodobijo v tabeli srv_branching sisplet_query("UPDATE srv_anketa SET branching='0' WHERE id = '$ank_id'"); //zazeni branching, da se podatki v tabeli srv_branching posodobijo new Branching($ank_id); $json_array['note'] = 'Question created'; $json_array['que_id'] = $spremenljivka; return $json_array; } /** * @api {post} https://www.1ka.si/api/updateQuestion/survey/:id updateQuestion * @apiName updateQuestion * @apiGroup Questions and variables * @apiDescription Update basic question properties * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {String} id_que ID of question * @apiParam (POST parameter) {String} [title] Title/text of question * @apiParam (POST parameter) {String} [reminder] Reminder code for question (0-no reminder, 1-soft reminder, 2-hard reminder) * @apiParam (POST parameter) {String} [other] Text of option "Other" (update or add) * @apiParamExample {json} Post-example: { "question": { "id_que": "8487", "title": "Which city you like most?", "reminder": "1", "other": "Other:" } } * * @apiSuccessExample {json} Success-Response: * {"note":"Question updated"} * * @apiVersion 1.0.0 */ private function updateQuestion($ank_id, $vprasanje) { $purifier = New Purifier(); if($this->isQuestionSiblingOfSurvey($ank_id, $vprasanje['id_que'])){ if(!isset($vprasanje['title']) && !isset($vprasanje['reminder']) && !isset($vprasanje['other']) && !isset($vprasanje['taSize'])){ $json_array['error'] = 'Nothing to update'; return $json_array; } else{ $query = "UPDATE srv_spremenljivka SET"; if (isset($vprasanje['title'])) $query .= " naslov='" . $purifier->purify_DB($vprasanje['title']) . "
',"; if (isset($vprasanje['reminder'])) $query .= " reminder='" . $vprasanje['reminder'] . "',"; $other = isset($vprasanje['other']) ? $vprasanje['other'] : null; $id_spr = $vprasanje['id_que']; //v dokumentaciji to izpustimo, ker pobrise vse druge parametre (v aplikaciji pa se to vseeno uporablja) if (isset($vprasanje['taSize'])) $query .= " params='taSize=" . $vprasanje['taSize'] . "',"; $sql = sisplet_query(substr($query, 0, -1) . " WHERE id='$id_spr';"); if (!$sql) $json_array['error'] = mysqli_error($GLOBALS['connect_db']); // Gremo cez posamezne vrednosti in jih dodamo /* if(count($vprasanje['Odgovori']) > 0){ $cnt = 1; foreach($vprasanje['Odgovori'] as $vrednost){ $sql = sisplet_query("INSERT INTO srv_vrednost (id, spr_id, naslov, variable, vrstni_red) VALUES ('', '$spremenljivka', '$vrednost', '$cnt', '$cnt')"); $cnt++; } } else{ for($i=1; $i<=$size; $i++){ $sql = sisplet_query("INSERT INTO srv_vrednost (id, spr_id, naslov, variable, vrstni_red) VALUES ('', '$spremenljivka', '$i', '$i', '$i')"); } } */ //ce se posodobi other if ($other !== null) { $sql = sisplet_query("SELECT id, naslov, vrstni_red FROM srv_vrednost WHERE spr_id='$id_spr' AND other='1';"); $otherV = mysqli_fetch_assoc($sql); //other obstaja za to spremenljivko if ($otherV) { //samo spremeni title if ($other != '' && $otherV['naslov'] != $other) { sisplet_query("UPDATE srv_vrednost SET naslov='" . $purifier->purify_DB($other) . "' WHERE id='" . $otherV['id'] . "';"); } //delete other elseif ($other == '') { $this->deleteOption($ank_id, $otherV['id']); } } //other ne obstaja za to spremenljivko else { //se ni other v tej spremenljivki, dodaj ga if ($other != '') { $Vpr = new Vprasanje(); $Vpr->vrednost_new($other, 1, null, $id_spr); Common::prestevilci($id_spr); } } } Common::getInstance()->Init($ank_id); Common::getInstance()->updateEditStamp(); $json_array['note'] = 'Question updated'; } } else{ $json_array['error'] = 'Question does not exist or not belong to this survey'; } return $json_array; } /** * @api {post} https://www.1ka.si/api/updateSurvey/survey/:id updateSurvey * @apiName updateSurvey * @apiGroup Surveys * @apiDescription Update basic survey properties * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {String} [title] Title of survey * @apiParam (POST parameter) {String} [que_title] Title/text of question (only voting) * @apiParam (POST parameter) {String} [introduction] Introduction text of survey or form ("" stands for default text) * @apiParam (POST parameter) {String} [conclusion] Conclusion text of survey or form ("" stands for default text) * @apiParam (POST parameter) {String} [show_intro] Do we show introduction (0-hide, 1-show) * @apiParam (POST parameter) {String} [show_concl] Do we show conclusion (0-hide, 1-show) * @apiParamExample {json} Post-example (survey or form): { "title":"A survey", "introduction":"", "conclusion":"Thank you!", "show_intro":"1", "show_concl":"1" } * @apiParamExample {json} Post-example (voting): { "title":"Weekly voting", "que_title":"What is your vote?" } * @apiSuccessExample {json} Success-Response: * {"note":"Survey updated"} * * @apiVersion 1.0.0 */ private function updateSurvey($ank_id, $data) { $purifier = New Purifier(); //get survey type $sqlV = sisplet_query("SELECT survey_type FROM srv_anketa WHERE id='" . $ank_id . "'"); //voting if (mysqli_fetch_assoc($sqlV)['survey_type'] == 0) { if(isset($data['title'])){ $sql = sisplet_query("UPDATE srv_anketa SET naslov='" . $purifier->purify_DB($data['title']) . "', akronim='" . $purifier->purify_DB($data['title']) . "' WHERE id=" . $ank_id . ";"); if (!$sql) $json_array['error'] = mysqli_error($GLOBALS['connect_db']); } if (isset($data['que_title'])){ //get id of question of voting $sqlV = sisplet_query("SELECT s.id AS id FROM srv_anketa a, srv_spremenljivka s, srv_grupa g WHERE g.ank_id='" . $ank_id . "' AND s.gru_id=g.id;"); $sql = sisplet_query("UPDATE srv_spremenljivka SET naslov='" . $purifier->purify_DB($data['que_title']) . "
' WHERE id='" . mysqli_fetch_assoc($sqlV)['id'] . "';"); if (!$sql) $json_array['error'] = mysqli_error($GLOBALS['connect_db']); } if(!isset($data['title']) && !isset($data['que_title'])){ $json_array['note'] = 'Nothing to update'; } else { $json_array['note'] = 'Survey updated'; Common::getInstance()->updateEditStamp(); } } //questionaire or form else { $set_query = ""; if (isset($data['title'])) $set_query .= "naslov='" . $purifier->purify_DB($data['title']) . "', akronim='" . $purifier->purify_DB($data['title']) . "',"; if (isset($data['introduction'])) $set_query .= "introduction='" . $purifier->purify_DB($data['introduction']) . "',"; if (isset($data['conclusion'])) $set_query .= "conclusion='" . $purifier->purify_DB($data['conclusion']) . "',"; if (isset($data['show_intro'])) $set_query .= "show_intro='" . $data['show_intro'] . "',"; if (isset($data['show_concl'])) $set_query .= "show_concl='" . $data['show_concl'] . "',"; if(!$set_query){ $json_array['note'] = 'Nothing to update'; } else{ $sql = sisplet_query("UPDATE srv_anketa SET " . substr($set_query, 0, -1) . " WHERE id=" . $ank_id . ";"); if (!$sql) $json_array['error'] = mysqli_error($GLOBALS['connect_db']); else $json_array['note'] = 'Survey updated'; } } return $json_array; } private function getQuestionIdOfOption($option_id = null) { if ($option_id != null) { $sqlV = sisplet_query("SELECT spr_id FROM srv_vrednost WHERE id='" . $option_id . "'"); $rowV = mysqli_fetch_assoc($sqlV); return $rowV['spr_id']; } return; } /** * @api {post} https://www.1ka.si/api/updateOrCreateOption/survey/:id updateOrCreateOption * @apiName updateOrCreateOption * @apiGroup Questions and variables * @apiDescription Update or add a value/option to question (for picking type of question - single or multiple choice) * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {String} option_text Title/text of option/value * @apiParam (POST parameter) {String} [que_id] ID of question to add new option/value (needed only for adding) * @apiParam (POST parameter) {String} [option_id] ID of option/value to update (needed only for updating) * @apiParamExample {json} Post-example (adding): { "option_text":"First option", "que_id":"3894" } * @apiSuccessExample {json} Success-Response (adding): * {"note":"Option added","opt_id":9619} * * @apiParamExample {json} Post-example (updating): { "option_text":"First option", "option_id":"9618" } * @apiSuccessExample {json} Success-Response (updating): * {"note":"Option updated","opt_id":"9618"} * * @apiVersion 1.0.0 */ private function updateOrCreateOption($ank_id, $data) { $purifier = New Purifier(); if (!isset($data['option_text'])){ $json_array['error'] = 'Option text missing'; return $json_array; } $naslov = $purifier->purify_DB($data['option_text']); if (!isset($data['option_id']) || $data['option_id'] == '') { if (!isset($data['que_id'])){ $json_array['error'] = 'Question ID missing'; return $json_array; } if($this->isQuestionSiblingOfSurvey($ank_id, $data['que_id'])){ $json_array = $this->addQuestionVrednost($ank_id, $data['que_id'], array('naslov' => $data['option_text']), true); } else { $json_array['error'] = "Question does not exist or does not belong to this survey"; } } else { $spr_id = $this->getQuestionIdOfOption($data['option_id']); if($this->isQuestionSiblingOfSurvey($ank_id, $spr_id)){ $s = sisplet_query("UPDATE srv_vrednost SET naslov='" . $naslov . "' WHERE id = '" . $data['option_id'] . "'"); if (!$s) $json_array['error'] = mysqli_error($GLOBALS['connect_db']); else { Common::getInstance()->updateEditStamp(); Common::prestevilci($this->getQuestionIdOfOption($data['option_id'])); $json_array['note'] = 'Option updated'; $json_array['opt_id'] = $data['option_id']; } } else{ $json_array['error'] = "Option does not exist or does not belong to this survey"; } } return $json_array; } /** * @api {delete} https://www.1ka.si/api/deleteOption/survey/:id deleteOption * @apiName deleteOption * @apiGroup Questions and variables * @apiDescription Delete option/value of question (for picking type of question - single or multiple choice) * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {String} option_id ID of option/value to delete * @apiParamExample {json} Post-example: {"option_id":"424"} * @apiSuccessExample {json} Success-Response: * {"note":"Option deleted"} * * @apiVersion 1.0.0 */ private function deleteOption($ank_id, $option_id) { $spr_id = $this->getQuestionIdOfOption($option_id); if($this->isQuestionSiblingOfSurvey($ank_id, $spr_id)){ $Vpr = new Vprasanje(); if ($Vpr->ajax_vrednost_delete($option_id, true)['error'] == 0) { $json_array['note'] = 'Option deleted'; Common::getInstance()->updateEditStamp(); Common::prestevilci($spr_id); } else $json_array['error'] = 'Error has occurred'; } else { $json_array['error'] = 'Option does not exist or does not belong to this survey'; } return $json_array; } /** * @api {delete} https://www.1ka.si/api/deleteSurvey/survey/:id deleteSurvey * @apiName deleteSurvey * @apiGroup Surveys * @apiDescription Delete survey * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey to delete * @apiSuccessExample {json} Success-Response: * {"note":"Survey deleted"} * * @apiVersion 1.0.0 */ private function deleteSurvey($ank_id) { $SM = new SurveyAdmin(); $SM->anketa_delete($ank_id); $json_array['note'] = 'Survey deleted'; return $json_array; } /** * @api {post} https://www.1ka.si/api/addLink/survey/:id addLink * @apiName addLink * @apiGroup Data and analysis * @apiDescription Add new public link (hash link of data or analysis). Example of hash (public) link: https://www.1ka.si/podatki/50/5BABEC6D/ ([SITE_ROOT]/podatki/[SURVEY_ID]/[HASH_CODE]/) * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {String} a Broad type of content of hash link (analysis, data) (if data, parameter m is not needed) * @apiParam (POST parameter) {String} m Specific type of content of hash link (analysis_creport, descriptor, frequency, charts, sumarnik) (when parameter a is "data", this parameter is not needed) * @apiParamExample {json} Post-example: {"a":"analysis", "m":"frequency"} * * @apiSuccessExample {json} Success-Response: * {"note":"Link added"} * * @apiVersion 1.0.0 */ private function addLink($ank_id, $data){ global $global_user_id; $hashUrl = new SurveyUrlLinks($ank_id); $hashUrl->addLinkAPI($global_user_id, $data['a'], $data['m']); $json_array['note'] = 'Link added'; return $json_array; } /** * @api {delete} https://www.1ka.si/api/deleteLink/survey/:id deleteLink * @apiName deleteLink * @apiGroup Data and analysis * @apiDescription Delete specific public link (hash link of data or analysis) * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {String} hash Hash code of public link to delete * @apiParamExample {json} Post-example: {"hash":"5BABEC6D"} * * @apiSuccessExample {json} Success-Response: * {"note":"Link deleted"} * * @apiVersion 1.0.0 */ private function deleteLink($ank_id, $hash){ $sql = "SELECT anketa FROM srv_hash_url WHERE hash='$hash';"; $que = sisplet_query($sql, 'obj'); if($que->anketa == $ank_id){ $hashUrl = new HashUrl($ank_id); $hashUrl->deleteLink($hash); $json_array['note'] = 'Link deleted'; } else{ $json_array['error'] = 'Hash does not exist or does not belong to this survey'; } return $json_array; } /** * @api {delete} https://www.1ka.si/api/deleteQuestion/survey/:id deleteQuestion * @apiName deleteQuestion * @apiGroup Questions and variables * @apiDescription Delete question * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {Number} que_id ID of question to delete * @apiParamExample {json} Post-example: {"que_id":4240} * * @apiSuccessExample {json} Success-Response: * {"note":"Question deleted"} * * @apiVersion 1.0.0 */ private function deleteQuestion($ank_id, $que_id) { if($this->isQuestionSiblingOfSurvey($ank_id, $que_id)){ $sa = new SurveyAdmin(); $sa->brisi_spremenljivko($que_id); Common::getInstance()->updateEditStamp(); Common::prestevilci(); $json_array['note'] = 'Question deleted'; } else { $json_array['error'] = 'Question does not exist or not belong to this survey'; } return $json_array; } /** * @api {put} https://www.1ka.si/api/copySurvey/survey/:id copySurvey * @apiName copySurvey * @apiGroup Surveys * @apiDescription Make a copy of specific survey * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey to copy * * @apiSuccess {Number} id ID of new survey * * @apiSuccessExample {json} Success-Response: * {"id":5194,"note":"Survey copied"} * * @apiVersion 1.0.0 */ private function copySurvey($ank_id) { $lib = new Library(); $json_array['id'] = $lib->ajax_anketa_copy_new($ank_id); $json_array['note'] = 'Survey copied'; return $json_array; } /** * @api {post} https://www.1ka.si/api/copyQuestion/survey/:id copyQuestion * @apiName copyQuestion * @apiGroup Questions and variables * @apiDescription Make a copy of specific question and put it +1 in order to original question on same page * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {Number} que_id ID of question to copy * @apiParamExample {json} Post-example: {"que_id":12240} * * @apiSuccess {Number} que_id ID of new question * @apiSuccessExample {json} Success-Response: * {"id":12831,"note":"Question copied"} * * @apiVersion 1.0.0 */ private function copyQuestion($ank_id, $que_id) { if($this->isQuestionSiblingOfSurvey($ank_id, $que_id)){ $ba = new BranchingAjax($ank_id); $new_id = $ba->spremenljivka_new($que_id, 0, 0, $que_id); $json_array['que_id'] = $new_id; $json_array['note'] = 'Question copied'; Common::getInstance()->updateEditStamp(); Common::prestevilci(); } else { $json_array['error'] = 'Question does not exist or not belong to this survey'; } return $json_array; } /** * Check if question belongs to survey * @param type $ank_id - id of survey * @param type $que_id - id of question * @return boolean Does question belongs this survey */ private function isQuestionSiblingOfSurvey($ank_id, $que_id){ $sql = "SELECT s.gru_id, gru.ank_id FROM srv_spremenljivka as s " . "LEFT JOIN (SELECT id, ank_id FROM srv_grupa) AS gru ON gru.id = gru_id " . "WHERE s.id='$que_id';"; $res = sisplet_query($sql, 'obj'); return $res->ank_id == $ank_id; } /** * @api {delete} https://www.1ka.si/api/deleteSurveyUnit/survey/:id deleteSurveyUnit * @apiName deleteSurveyUnit * @apiGroup Data and analysis * @apiDescription Delete unit/response in survey data (whole response of a respondent) * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {String} srv_unit_id ID of unit/response to delete * @apiParamExample {json} Post-example: {"srv_unit_id":"12774"} * @apiSuccessExample {json} Success-Response: * {"note":"Survey unit deleted"} * * @apiVersion 1.0.0 */ private function deleteSurveyUnit($ank_id, $unit_id) { $sql = "SELECT ank_id FROM srv_user WHERE id='$unit_id';"; $que = sisplet_query($sql, 'obj'); if($que->ank_id == $ank_id){ $sql = "DELETE FROM srv_user WHERE id='$unit_id' AND ank_id='$ank_id';"; if(sisplet_query($sql)) $json_array['note'] = 'Survey unit deleted'; else $json_array['error'] = 'Error has occurred'; } else{ $json_array['error'] = 'Survey unit does not exist or does not belong to this survey'; } return $json_array; } // Doda vrednost v vprasanje // Rather use updateOrCreateOption!!!!!!!!!!!!!!!!! private function addQuestionVrednost($ank_id, $spr_id, $data, $other_to_last = false) { global $lang; global $site_url; global $global_user_id; $purifier = New Purifier(); $json_array = array(); // Preverimo ce imamo osnovne podatke za dodajanje vrednosti if (!isset($data['naslov'])) { $json_array['error'] = 'Option title missing'; return $json_array; } // Preverimo ce obstaja vprasanje $sql = sisplet_query("SELECT s.id FROM srv_spremenljivka s, srv_grupa g WHERE s.id='" . $spr_id . "' AND s.gru_id=g.id AND g.ank_id='" . $ank_id . "'"); if (mysqli_num_rows($sql) > 0) { // Dobimo ustrezen vrstni red $sqlV = sisplet_query("SELECT v.vrstni_red AS vrstni_red, v.other AS other, v.id AS id FROM srv_vrednost v, srv_spremenljivka s, srv_grupa g WHERE v.spr_id='" . $spr_id . "' AND s.gru_id=g.id AND g.ank_id='" . $ank_id . "' ORDER BY v.vrstni_red DESC LIMIT 1"); $rowV = mysqli_fetch_assoc($sqlV); //ce je other zadnji, premakni other za eno naprej po vrsnm redu, in novo vrednost na mesto other if ($other_to_last && $rowV['other'] == 1) { $vrstni_red = (int) $rowV['vrstni_red']; //premakni other $s = sisplet_query("UPDATE srv_vrednost SET vrstni_red='" . ($vrstni_red + 1) . "' WHERE id = '" . $rowV['id'] . "'"); if (!$s) { $json_array['error'] = mysqli_error($GLOBALS['connect_db']); return $json_array; } } else $vrstni_red = (int) $rowV['vrstni_red'] + 1; $title = $purifier->purify_DB($data['naslov']); // Vstavimo vrednost v vprasanje $sql = sisplet_query("INSERT INTO srv_vrednost (id, spr_id, naslov, naslov2, vrstni_red) VALUES ('', '$spr_id', '$title', '$title', '$vrstni_red')"); $opt_id = mysqli_insert_id($GLOBALS['connect_db']); // Prestevilcimo da se nastavi variabla //Common::getInstance()->Init($ank_id); Common::prestevilci($spr_id); Common::getInstance()->updateEditStamp(); $json_array['note'] = 'Option added'; $json_array['opt_id'] = $opt_id; return $json_array; } else { $json_array['error'] = 'Question does not exist'; return $json_array; } } /** * @api {post} https://www.1ka.si/api/SurveyActivation/survey/:id SurveyActivation * @apiName SurveyActivation * @apiGroup Surveys * @apiDescription Activate (for 3 months from now) or deactivate survey (start it or stop it) * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {Number} [active] If this parameter is not set, survey will be deactivated (0-deactivate survey, 1-activate survey) * @apiParamExample {json} Post-example: {"active":1} * @apiSuccessExample {json} Success-Response: * {"note":"Survey activity changed"} * * @apiVersion 1.0.0 */ private function SurveyActivation($ank_id, $data) { global $global_user_id; $active = (isset($data['active'])) ? $data['active'] : 0; $starts = "NOW()"; $expire = "NOW() + INTERVAL 3 MONTH"; $updateActiveTime = ", starts=$starts, expire=$expire"; if ($active == 1) { $activity_insert_string = "INSERT INTO srv_activity (sid, starts, expire, uid) VALUES('" . $ank_id . "', $starts, $expire, '" . $global_user_id . "' )"; $sql_insert = sisplet_query($activity_insert_string); //ignoriraj erorror, ce ze obstaja identicna vrstica /* if (!$sql_insert) $json_array['error'] = mysqli_error($GLOBALS['connect_db']); */ } $sql = sisplet_query("UPDATE srv_anketa SET active=" . $active . ($active == 1 ? $updateActiveTime : '') . " WHERE id=" . $ank_id . ";"); if (!$sql) { $json_array['error'] = mysqli_error($GLOBALS['connect_db']); } else { if (!isset($json_array['error'])) $json_array['note'] = 'Survey activity changed'; } return $json_array; } // Blokiraj ponoven IP (trenutno samo za 24ur) /** * @api {post} https://www.1ka.si/api/BlockRepeatedIP/survey/:id BlockRepeatedIP * @apiName BlockRepeatedIP * @apiGroup Surveys * @apiDescription Block repeated IP (do not allow respondent to respond to survey again for the next x minutes) * * @apiHeader {String} identifier Identifier to access API (https://www.1ka.si/d/en/about/1ka-api/api-key) * @apiHeader {String} token SHA256 hash token calculated with API key (https://www.1ka.si/d/en/about/1ka-api/example2/get-call-example-php) * @apiHeaderExample {json} Request-Example: { "identifier": "abcdefgh01234567", "token": "bd26lo2863dzcyidb8d7rmwo7xydhpoa77kbdamwtlj5ej70akgffb0b7aj30zqh" } * * @apiParam (GET parameter) {Number} id Id of survey * * @apiParam (POST parameter) {Number} [blockIP] In minutes - if this parameter is not set, blocking IP will be turned off (possible options are 10, 20, 30, 60, 720, 1440, 0-ip blocking off) * @apiParamExample {json} Post-example: {"blockIP":1440} * @apiSuccessExample {json} Success-Response: * {"note":"IP blocking changed"} * * @apiVersion 1.0.0 */ private function BlockRepeatedIP($ank_id, $data) { $blockIP = (isset($data['blockIP'])) ? $data['blockIP'] : 0; $sql = sisplet_query("UPDATE srv_anketa SET block_ip=" . $blockIP . " WHERE id=" . $ank_id . ";"); if (!$sql) { $json_array['error'] = mysqli_error($GLOBALS['connect_db']); } else { $json_array['note'] = 'IP blocking changed'; } return $json_array; } // Poslje email vabilo novemu respondentu private function sendEmailInvitation($ank_id, $data) { global $lang; global $global_user_id; global $admin_type; $json_array = array(); // Preverimo ce sploh imamo vklopljena vabila $isEmail = (int) SurveyInfo::getInstance()->checkSurveyModule('email'); $d = new Dostop(); if (!((int) $isEmail > 0)) { $json_array['error'] = 'Invitations are not enabled for this survey!'; return $json_array; exit(); } $email = (isset($data['email'])) ? $data['email'] : ''; $firstname = (isset($data['firstname'])) ? $data['firstname'] : ''; $lastname = (isset($data['lastname'])) ? $data['lastname'] : ''; // Opcijski dodatni parametri, ki jih lahko dodamo url-ju na anketo $param_string = (isset($data['param_string'])) ? $data['param_string'] : ''; // Opcijsko nastavimo tudi cas poteka vabila if(isset($data['expired']) && is_numeric($data['expired'])){ $expired = date('Y-m-d H:i:s', strtotime("+".$data['expired']." days")); } else{ $expired = '0000-00-00 00:00:00'; } // Zaenkrat so vsi 3 parametri obvezni if ($email != '' && $firstname != '' && $lastname != '') { // Preverimo ce obstajajo vse 3 sistemske spremenljivke $sqlVariable = sisplet_query("SELECT s.id FROM srv_spremenljivka s, srv_grupa g WHERE (s.variable='email' OR s.variable='ime' OR s.variable='priimek') AND s.gru_id=g.id AND g.ank_id='" . $ank_id . "'"); if (mysqli_num_rows($sqlVariable) != 3) { $json_array['error'] = 'Missing system variables (variables email, ime and priimek must exist in survey)!'; } else { $SI = new SurveyInvitationsNew($ank_id); // polovimo sistemske spremenljivke z vrednostmi $qrySistemske = sisplet_query("SELECT s.id, s.naslov, s.variable FROM srv_spremenljivka s, srv_grupa g WHERE s.sistem='1' AND s.gru_id=g.id AND g.ank_id='" . $ank_id . "' AND variable IN('email', 'ime', 'priimek') ORDER BY g.vrstni_red, s.vrstni_red"); $sys_vars = array(); $sys_vars_ids = array(); while ($row = mysqli_fetch_assoc($qrySistemske)) { $sys_vars[$row['id']] = array('id' => $row['id'], 'variable' => $row['variable'], 'naslov' => $row['naslov']); $sys_vars_ids[] = $row['id']; } $sqlVrednost = sisplet_query("SELECT spr_id, id AS vre_id, vrstni_red, variable FROM srv_vrednost WHERE spr_id IN(" . implode(',', $sys_vars_ids) . ") ORDER BY vrstni_red ASC "); while ($row = mysqli_fetch_assoc($sqlVrednost)) { $sys_vars[$row['spr_id']]['vre_id'] = $row['vre_id']; } $list_id = ''; // Generiramo kodo za respondenta // katera gesla (code) že imamo v bazi za to anketo $password_in_db = array(); $sql_query = sisplet_query("SELECT password FROM srv_invitations_recipients WHERE ank_id='" . $ank_id . "' AND deleted = '0'"); while ($sql_row = mysqli_fetch_assoc($sql_query)) { $password_in_db[$sql_row['password']] = $sql_row['password']; } // Izberemo random hash, ki se ni v bazi do { list($code, $cookie) = $SI->generateCode(); } while (in_array($code, $password_in_db)); // VSTAVIMO RESPONDENTA V SEZNAM $sql_insert_start = sisplet_query("INSERT INTO srv_invitations_recipients (ank_id, email, firstname, lastname, password, cookie, sent, responded, unsubscribed, deleted, date_inserted, date_expired, inserted_uid, list_id) VALUES ('" . $ank_id . "', '" . $email . "', '" . $firstname . "', '" . $lastname . "', '" . $code . "', '" . $cookie . "', '0', '0', '0', '0', NOW(), ".$expired.", '" . $global_user_id . "', '" . $list_id . "')"); $rec_id = mysqli_insert_id($GLOBALS['connect_db']); // polovimo sporočilo in prejemnike $sql_query_m = sisplet_query("SELECT id, subject_text, body_text, reply_to, isdefault, comment, naslov, url FROM srv_invitations_messages WHERE ank_id = '" . $ank_id . "' AND isdefault='1'"); if (mysqli_num_rows($sql_query_m) > 0) { $sql_row_m = mysqli_fetch_assoc($sql_query_m); } else { // Nimamo še vsebine sporočila $json_array['error'] = 'Email server settings and message not set!'; return $json_array; exit(); } // Kreiramo mail $subject_text = $sql_row_m['subject_text']; $body_text = $sql_row_m['body_text']; // Naslov za odgovor je avtor ankete if ($SI->validEmail($sql_row_m['reply_to'])) { $reply_to = $sql_row_m['reply_to']; } else { $reply_to = Common::getInstance()->getReplyToEmail(); } # če mamo SEO $nice_url = SurveyInfo::getSurveyLink(); $date_sent = date("Y-m-d H:i:s"); $msg_url = $sql_row_m['url']; # odvisno ali imamo url za jezik. if ($msg_url != null && trim($msg_url) != '') { $url = $msg_url . '?code=' . $code; } else { $url = $nice_url . '&code=' . $code; } $url .= '&ai=' . (int) $arch_id; // URL-ju dodamo se opcijske dodatne parametre ce so nastavljeni $url .= '&'.$param_string; #odjava $unsubscribe = $site_url . 'admin/survey/unsubscribe.php?anketa=' . $ank_id . '&code=' . $code; // VSTAVIMO POSILJANJE V ARHIV $arvhive_naslov = 'mailing_' . date("d.m.Y") . ', ' . date("H:i:s"); $sqlQuery = sisplet_query("INSERT INTO srv_invitations_archive (id, ank_id, date_send, subject_text, body_text, uid, comment, naslov, rec_in_db) VALUES (NULL, '$ank_id', '$date_sent', '$subject_text', '$body_text', '$global_user_id', '', '$arvhive_naslov', '1')"); $arch_id = mysqli_insert_id($GLOBALS['connect_db']); $user_body_text = str_replace( array( '#URL#', '#URLLINK#', '#UNSUBSCRIBE#', '#FIRSTNAME#', '#LASTNAME#', '#EMAIL#', '#CODE#', '#PASSWORD#' ), array( '' . $url . '', $url, '' . $lang['user_bye_hl'] . '', $firstname, $lastname, $email, $code, $code ), $body_text ); // POSLJEMO MAIL $resultX = null; try { $MA = new MailAdapter($ank_id, $type='invitation'); $MA->addRecipients($email); $resultX = $MA->sendMail($user_body_text, $subject_text); } catch (Exception $e) { // todo fajn bi bilo zalogirat kaj se dogaja $__error = $e->getMessage(); $__errStack = $e->getTraceAsString(); } // Vabilo OK poslano if ($resultX) { // Updatamo prejemnika - status in sent $sqlQuery = sisplet_query("UPDATE srv_invitations_recipients SET sent='1', date_sent='" . $date_sent . "', last_status='1' WHERE id='" . $rec_id . "'"); // Updatamo se arhiv $sqlQuery = sisplet_query("UPDATE srv_invitations_archive SET cnt_succsess='1', cnt_error='0' WHERE id='" . $arch_id . "'"); // Updatamo arhiv prejemnikov $sqlQuery = sisplet_query("INSERT INTO srv_invitations_archive_recipients (arch_id,rec_id,success) VALUES ('" . $arch_id . "','" . $rec_id . "','1')"); // Updatamo tracking $sqlQueryTracking = sisplet_query("INSERT INTO srv_invitations_tracking (inv_arch_id, time_insert, res_id, status) VALUES ('" . $arch_id . "',NOW(),'" . $rec_id . "','1')"); // Dodamo userje v bazo $sqlUserInsert = sisplet_query("INSERT INTO srv_user (ank_id, email, cookie, pass, last_status, time_insert, inv_res_id) VALUES ('" . $ank_id . "', '" . $email . "', '" . $cookie . "', '" . $code . "', '1', NOW(), '" . $rec_id . "') ON DUPLICATE KEY UPDATE cookie = '" . $cookie . "', pass='" . $code . "'"); $usr_id = mysqli_insert_id($GLOBALS['connect_db']); if ($usr_id) { // vstavimo v srv_userbase sisplet_query("INSERT INTO srv_userbase (usr_id, tip, datetime, admin_id) VALUES ('" . $usr_id . "','0',NOW(),'" . $global_user_id . "')"); // vstavimo v srv_userstatus sisplet_query("INSERT INTO srv_userstatus (usr_id, tip, status, datetime) VALUES ('" . $usr_id . "', '0', '0', NOW())"); // vstavimo v srv_data_text (email, ime, priimek) SurveyInfo::getInstance()->SurveyInit($ank_id); $db_table = SurveyInfo::getInstance()->getSurveyArchiveDBString(); foreach ($sys_vars AS $sid => $spremenljivka) { if ($spremenljivka['variable'] == 'email') sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $email . "', '" . $usr_id . "')"); elseif ($spremenljivka['variable'] == 'ime') sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $firstname . "', '" . $usr_id . "')"); elseif ($spremenljivka['variable'] == 'priimek') sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $lastname . "', '" . $usr_id . "')"); } } else { // lahko da user že obstaja in je šlo za duplicated keys } $json_array['note'] = 'Email succesfully sent.'; } // Vabilo ni bilo poslano else { // Updatamo prejemnika - status in sent $sqlQuery = sisplet_query("UPDATE srv_invitations_recipients SET last_status='2' WHERE id='" . $rec_id . "'"); // Updatamo se arhiv $sqlQuery = sisplet_query("UPDATE srv_invitations_archive SET cnt_succsess='0', cnt_error='1' WHERE id='" . $arch_id . "'"); // Updatamo arhiv prejemnikov $sqlQuery = sisplet_query("INSERT INTO srv_invitations_archive_recipients (arch_id,rec_id,success) VALUES ('" . $arch_id . "','" . $rec_id . "','0')"); // Updatamo tracking $sqlQueryTracking = sisplet_query("INSERT INTO srv_invitations_tracking (inv_arch_id, time_insert, res_id, status) VALUES ('" . $arch_id . "',NOW(),'" . $rec_id . "','2')"); // Dodamo userje v bazo $sqlUserInsert = sisplet_query("INSERT INTO srv_user (ank_id, email, cookie, pass, last_status, time_insert, inv_res_id) VALUES ('" . $ank_id . "', '" . $email . "', '" . $cookie . "', '" . $code . "', '2', NOW(), '" . $rec_id . "') ON DUPLICATE KEY UPDATE cookie = '" . $cookie . "', pass='" . $code . "'"); $usr_id = mysqli_insert_id($GLOBALS['connect_db']); if ($usr_id) { // vstavimo v srv_userbase sisplet_query("INSERT INTO srv_userbase (usr_id, tip, datetime, admin_id) VALUES ('" . $usr_id . "','0',NOW(),'" . $global_user_id . "')"); // vstavimo v srv_userstatus sisplet_query("INSERT INTO srv_userstatus (usr_id, tip, status, datetime) VALUES ('" . $usr_id . "', '0', '0', NOW())"); // vstavimo v srv_data_text (email, ime, priimek) SurveyInfo::getInstance()->SurveyInit($ank_id); $db_table = SurveyInfo::getInstance()->getSurveyArchiveDBString(); foreach ($sys_vars AS $sid => $spremenljivka) { if ($spremenljivka['variable'] == 'email') { $data_insert = sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $email . "', '" . $usr_id . "')"); } elseif ($spremenljivka['variable'] == 'ime') { $data_insert = sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $firstname . "', '" . $usr_id . "')"); } elseif ($spremenljivka['variable'] == 'priimek') { $data_insert = sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $lastname . "', '" . $usr_id . "')"); } } } else { // lahko da user že obstaja in je šlo za duplicated keys } $json_array['error'] = 'Email sending error!'; } } } // Manjkajo parametri (email, firstname, lastname) else { $json_array['error'] = 'Missing parameters (email, firstname and lastname are mandatory)!'; } return $json_array; } // Doda novo skupino private function addGroup($ank_id, $data) { global $lang; global $global_user_id; global $admin_type; global $site_path; $json_array = array(); // Naslov skupine je obvezen $group_naslov = (isset($data['title'])) ? $data['title'] : ''; if ($group_naslov != '') { $ss = new SurveySkupine($ank_id); $spr_id = $ss->hasSkupine(); // Na zacetku moramo ustvarit najprej vprasanje if ($spr_id == 0) { $sqlG = sisplet_query("SELECT id FROM srv_grupa WHERE ank_id='$ank_id' AND vrstni_red='1'"); $rowG = mysqli_fetch_array($sqlG); $gru_id = $rowG['id']; $b = new Branching($ank_id); $spr_id = $b->nova_spremenljivka($grupa = $gru_id, $grupa_vrstni_red = 1, $vrstni_red = 0); $sql = sisplet_query("UPDATE srv_spremenljivka SET naslov='" . $lang['srv_skupina'] . "', variable='" . strtolower($lang['srv_skupina']) . "', variable_custom='1', skupine='1', sistem='1', visible='0', size='0' WHERE id='$spr_id'"); Vprasanje::change_tip($spr_id, 1); } // Ustvarimo vrednost v vprasanju $v = new Vprasanje($ank_id); $v->spremenljivka = $spr_id; $vre_id = $v->vrednost_new($group_naslov); // Preverimo ce imamo nice URL -> dodamo dodatnega za skupine $sql = sisplet_query("SELECT * FROM srv_nice_links WHERE ank_id='$ank_id'"); if (mysqli_num_rows($sql) > 0) { Common::updateEditStamp(); $row = mysqli_fetch_array($sql); $add = false; $anketa = $ank_id; $nice_url = $row['link']; $sql2 = sisplet_query("SELECT variable, vrstni_red FROM srv_vrednost WHERE id='$vre_id'"); $row2 = mysqli_fetch_array($sql2); $nice_url .= '_' . $row2['vrstni_red']; $f = @fopen($site_path . '.htaccess', 'rb'); if ($f !== false) { $add = true; while (!feof($f)) { $r = fgets($f); if (strpos($r, "^" . $nice_url . '\b') !== false) { // preverimo, da ni tak redirect ze dodan $add = false; } } fclose($f); } if (strlen($nice_url) < 3) $add = false; if (SurveyInfo::getInstance()->checkSurveyModule('uporabnost')) $link = 'main/survey/uporabnost.php?anketa=' . $anketa . '&skupina=' . $vre_id; else $link = 'main/survey/index.php?anketa=' . SurveyInfo::getInstance()->getSurveyHash() . '&skupina=' . $vre_id; if ($add) { $f = @fopen($site_path . '.htaccess', 'a'); if ($f !== false) { fwrite($f, "\nRewriteRule ^" . $nice_url . '\b(.*) ' . $link . "&foo=\$1&%{QUERY_STRING}"); fclose($f); $sqlI = sisplet_query("INSERT INTO srv_nice_links_skupine (id,ank_id,nice_link_id,vre_id,link) VALUES ('','$ank_id','$row[id]','$vre_id','$nice_url')"); } } } $sqlVrednost = sisplet_query("SELECT variable FROM srv_vrednost WHERE id='" . $vre_id . "'"); $rowVrednost = mysqli_fetch_array($sqlVrednost); // Vrnemo grupo $json_array['group'] = $rowVrednost['variable']; // Vrnemo tudi url do ankete za ustvarjeno skupino $nice_url = SurveyInfo::getSurveyLink(); $json_array['url'] = $nice_url . '?skupina=' . $rowVrednost['variable']; $json_array['note'] = 'Group succesfully added.'; } else { $json_array['error'] = 'Missing parameter (group title is mandatory)!'; } return $json_array; } // Doda novo skupino za modul Evoli - teammeter private function addGroupTeamMeter($ank_id, $data) { global $lang; global $global_user_id; global $admin_type; global $site_path; $json_array = array(); // Obvezni parametri $group_naslov = (isset($data['title'])) ? $data['title'] : ''; $email = (isset($data['email'])) ? $data['email'] : ''; $language = (isset($data['language'])) ? $data['language'] : ''; $kvota_max = (isset($data['quota'])) ? $data['quota'] : ''; if ($group_naslov != '' && $email != '' && $language != '' && $kvota_max != '') { $ss = new SurveySkupine($ank_id); $spr_id = $ss->hasSkupine(); // Na zacetku moramo ustvarit najprej vprasanje if ($spr_id == 0) { $sqlG = sisplet_query("SELECT id FROM srv_grupa WHERE ank_id='$ank_id' AND vrstni_red='1'"); $rowG = mysqli_fetch_array($sqlG); $gru_id = $rowG['id']; $b = new Branching($ank_id); $spr_id = $b->nova_spremenljivka($grupa = $gru_id, $grupa_vrstni_red = 1, $vrstni_red = 0); $sql = sisplet_query("UPDATE srv_spremenljivka SET naslov='" . $lang['srv_skupina'] . "', variable='skupina', variable_custom='1', skupine='1', sistem='1', visible='0', size='0' WHERE id='$spr_id'"); Vprasanje::change_tip($spr_id, 1); } // Ustvarimo vrednost v vprasanju $v = new Vprasanje($ank_id); $v->spremenljivka = $spr_id; $vre_id = $v->vrednost_new($group_naslov); // Preverimo ce imamo nice URL -> dodamo dodatnega za skupine $sql = sisplet_query("SELECT * FROM srv_nice_links WHERE ank_id='$ank_id'"); if (mysqli_num_rows($sql) > 0) { Common::updateEditStamp(); $row = mysqli_fetch_array($sql); $add = false; $anketa = $ank_id; $nice_url = $row['link']; $sql2 = sisplet_query("SELECT variable, vrstni_red FROM srv_vrednost WHERE id='$vre_id'"); $row2 = mysqli_fetch_array($sql2); $nice_url .= '_' . $row2['vrstni_red']; $f = @fopen($site_path . '.htaccess', 'rb'); if ($f !== false) { $add = true; while (!feof($f)) { $r = fgets($f); if (strpos($r, "^" . $nice_url . '\b') !== false) { // preverimo, da ni tak redirect ze dodan $add = false; } } fclose($f); } if (strlen($nice_url) < 3) $add = false; if (SurveyInfo::getInstance()->checkSurveyModule('uporabnost')) $link = 'main/survey/uporabnost.php?anketa=' . $anketa . '&skupina=' . $vre_id; else $link = 'main/survey/index.php?anketa=' . SurveyInfo::getInstance()->getSurveyHash() . '&skupina=' . $vre_id; if ($add) { $f = @fopen($site_path . '.htaccess', 'a'); if ($f !== false) { fwrite($f, "\nRewriteRule ^" . $nice_url . '\b(.*) ' . $link . "&foo=\$1&%{QUERY_STRING}"); fclose($f); $sqlI = sisplet_query("INSERT INTO srv_nice_links_skupine (id,ank_id,nice_link_id,vre_id,link) VALUES ('','$ank_id','$row[id]','$vre_id','$nice_url')"); } } } if ($language == 'eng') $lang_id = 2; elseif ($language == 'dan') $lang_id = 29; else $lang_id = 1; $nice_url = SurveyInfo::getSurveyLink(); $group_url = $nice_url . '?skupina=' . $vre_id . '&language=' . $lang_id; // Dodamo se vrednosti v posebno tabelo za evoli team meter $sqlI = sisplet_query("INSERT INTO srv_evoli_teammeter (ank_id, skupina_id, email, lang_id, url, kvota_max) VALUES ('" . $ank_id . "', '" . $vre_id . "', '" . $email . "', '" . $lang_id . "', '" . $group_url . "', '" . $kvota_max . "')"); // Vrnemo grupo $json_array['group'] = $vre_id; // Vrnemo tudi url do ankete za ustvarjeno skupino $json_array['url'] = $group_url; $json_array['note'] = 'Group succesfully added.'; } else { $json_array['error'] = 'Missing parameters (group title, email, language id and quota are mandatory)!'; } return $json_array; } // Poslje email vabilo novemu respondentu za modul Evoli - url se uporabi za specificno grupo private function sendEmailInvitationTeamMeter($ank_id, $data) { global $lang; global $global_user_id; global $admin_type; $json_array = array(); // Preverimo ce sploh imamo vklopljena vabila $isEmail = (int) SurveyInfo::getInstance()->checkSurveyModule('email'); $d = new Dostop(); if (!((int) $isEmail > 0)) { $json_array['error'] = 'Invitations are not enabled for this survey!'; return $json_array; exit(); } $email = (isset($data['email'])) ? $data['email'] : ''; $firstname = (isset($data['firstname'])) ? $data['firstname'] : ''; $lastname = (isset($data['lastname'])) ? $data['lastname'] : ''; $group = (isset($data['group'])) ? $data['group'] : ''; // Zaenkrat so vsi 4 parametri obvezni if ($email != '' && $firstname != '' && $lastname != '' && $group != '') { // Preverimo ce obstajajo vse 3 sistemske spremenljivke $sqlVariable = sisplet_query("SELECT s.id FROM srv_spremenljivka s, srv_grupa g WHERE (s.variable='email' OR s.variable='ime' OR s.variable='priimek') AND s.gru_id=g.id AND g.ank_id='" . $ank_id . "'"); if (mysqli_num_rows($sqlVariable) != 3) { $json_array['error'] = 'Missing system variables (variables email, ime and priimek must exist in survey)!'; } else { $skupina_id = 0; $lang_id = 0; // Preverimo ce obstaja skupina $sqlTM = sisplet_query("SELECT tm.*, v.naslov FROM srv_evoli_teammeter tm, srv_vrednost v, srv_spremenljivka s, srv_grupa g WHERE s.gru_id=g.id AND v.spr_id=s.id AND v.id=tm.skupina_id AND g.ank_id='" . $ank_id . "' AND s.skupine='1' AND v.naslov='" . $group . "'"); if (mysqli_num_rows($sqlTM) == 1) { $rowTM = mysqli_fetch_array($sqlTM); $skupina_id = $rowTM['skupina_id']; $lang_id = $rowTM['lang_id']; } if ($skupina_id == 0 || $lang_id == 0) { $json_array['error'] = 'Group "' . $group . '" does not exist!'; return $json_array; exit(); } else { $SI = new SurveyInvitationsNew($ank_id); // polovimo sistemske spremenljivke z vrednostmi $qrySistemske = sisplet_query("SELECT s.id, s.naslov, s.variable FROM srv_spremenljivka s, srv_grupa g WHERE s.sistem='1' AND s.gru_id=g.id AND g.ank_id='" . $ank_id . "' AND variable IN('email', 'ime', 'priimek') ORDER BY g.vrstni_red, s.vrstni_red"); $sys_vars = array(); $sys_vars_ids = array(); while ($row = mysqli_fetch_assoc($qrySistemske)) { $sys_vars[$row['id']] = array('id' => $row['id'], 'variable' => $row['variable'], 'naslov' => $row['naslov']); $sys_vars_ids[] = $row['id']; } $sqlVrednost = sisplet_query("SELECT spr_id, id AS vre_id, vrstni_red, variable FROM srv_vrednost WHERE spr_id IN(" . implode(',', $sys_vars_ids) . ") ORDER BY vrstni_red ASC "); while ($row = mysqli_fetch_assoc($sqlVrednost)) { $sys_vars[$row['spr_id']]['vre_id'] = $row['vre_id']; } $list_id = ''; // Generiramo kodo za respondenta // katera gesla (code) že imamo v bazi za to anketo $password_in_db = array(); $sql_query = sisplet_query("SELECT password FROM srv_invitations_recipients WHERE ank_id='" . $ank_id . "' AND deleted = '0'"); while ($sql_row = mysqli_fetch_assoc($sql_query)) { $password_in_db[$sql_row['password']] = $sql_row['password']; } // Izberemo random hash, ki se ni v bazi do { list($code, $cookie) = $SI->generateCode(); } while (in_array($code, $password_in_db)); // VSTAVIMO RESPONDENTA V SEZNAM $sql_insert_start = sisplet_query("INSERT INTO srv_invitations_recipients (ank_id, email, firstname, lastname, password, cookie, sent, responded, unsubscribed, deleted, date_inserted, inserted_uid, list_id) VALUES ('" . $ank_id . "', '" . $email . "', '" . $firstname . "', '" . $lastname . "', '" . $code . "', '" . $cookie . "', '0', '0', '0', '0', NOW(), '" . $global_user_id . "', '" . $list_id . "')"); $rec_id = mysqli_insert_id($GLOBALS['connect_db']); // polovimo sporočilo in prejemnike $sql_query_m = sisplet_query("SELECT id, subject_text, body_text, reply_to, isdefault, comment, naslov, url FROM srv_invitations_messages WHERE ank_id = '" . $ank_id . "' AND isdefault='1'"); if (mysqli_num_rows($sql_query_m) > 0) { $sql_row_m = mysqli_fetch_assoc($sql_query_m); } else { // Nimamo še vsebine sporočila $json_array['error'] = 'Email server settings and message not set!'; return $json_array; exit(); } // Kreiramo mail $subject_text = $sql_row_m['subject_text']; $body_text = $sql_row_m['body_text']; // Naslov za odgovor je avtor ankete if ($SI->validEmail($sql_row_m['reply_to'])) { $reply_to = $sql_row_m['reply_to']; } else { $reply_to = Common::getInstance()->getReplyToEmail(); } # če mamo SEO $nice_url = SurveyInfo::getSurveyLink(); $date_sent = date("Y-m-d H:i:s"); $msg_url = $sql_row_m['url']; # odvisno ali imamo url za jezik. if ($msg_url != null && trim($msg_url) != '') { $url = $msg_url . '?code=' . $code; } else { $url = $nice_url . '&code=' . $code; } $url .= '&ai=' . (int) $arch_id; // Url-ju dodamo se grupo in jezik $url .= '&skupina=' . $skupina_id . '&language=' . $lang_id; #odjava $unsubscribe = $site_url . 'admin/survey/unsubscribe.php?anketa=' . $ank_id . '&code=' . $code; // VSTAVIMO POSILJANJE V ARHIV $arvhive_naslov = 'mailing_' . date("d.m.Y") . ', ' . date("H:i:s"); $sqlQuery = sisplet_query("INSERT INTO srv_invitations_archive (id, ank_id, date_send, subject_text, body_text, uid, comment, naslov, rec_in_db) VALUES (NULL, '$ank_id', '$date_sent', '$subject_text', '$body_text', '$global_user_id', '', '$arvhive_naslov', '1')"); $arch_id = mysqli_insert_id($GLOBALS['connect_db']); $user_body_text = str_replace( array( '#URL#', '#URLLINK#', '#UNSUBSCRIBE#', '#FIRSTNAME#', '#LASTNAME#', '#EMAIL#', '#CODE#', '#PASSWORD#' ), array( '' . $url . '', $url, '' . $lang['user_bye_hl'] . '', $firstname, $lastname, $email, $code, $code ), $body_text ); // POSLJEMO MAIL $resultX = null; try { $MA = new MailAdapter($ank_id, $type='invitation'); $MA->addRecipients($email); $resultX = $MA->sendMail($user_body_text, $subject_text); } catch (Exception $e) { // todo fajn bi bilo zalogirat kaj se dogaja $__error = $e->getMessage(); $__errStack = $e->getTraceAsString(); } // Vabilo OK poslano if ($resultX) { // Updatamo prejemnika - status in sent $sqlQuery = sisplet_query("UPDATE srv_invitations_recipients SET sent='1', date_sent='" . $date_sent . "', last_status='1' WHERE id='" . $rec_id . "'"); // Updatamo se arhiv $sqlQuery = sisplet_query("UPDATE srv_invitations_archive SET cnt_succsess='1', cnt_error='0' WHERE id='" . $arch_id . "'"); // Updatamo arhiv prejemnikov $sqlQuery = sisplet_query("INSERT INTO srv_invitations_archive_recipients (arch_id,rec_id,success) VALUES ('" . $arch_id . "','" . $rec_id . "','1')"); // Updatamo tracking $sqlQueryTracking = sisplet_query("INSERT INTO srv_invitations_tracking (inv_arch_id, time_insert, res_id, status) VALUES ('" . $arch_id . "',NOW(),'" . $rec_id . "','1')"); // Dodamo userje v bazo $sqlUserInsert = sisplet_query("INSERT INTO srv_user (ank_id, email, cookie, pass, last_status, time_insert, inv_res_id) VALUES ('" . $ank_id . "', '" . $email . "', '" . $cookie . "', '" . $code . "', '1', NOW(), '" . $rec_id . "') ON DUPLICATE KEY UPDATE cookie = '" . $cookie . "', pass='" . $code . "'"); $usr_id = mysqli_insert_id($GLOBALS['connect_db']); if ($usr_id) { // vstavimo v srv_userbase sisplet_query("INSERT INTO srv_userbase (usr_id, tip, datetime, admin_id) VALUES ('" . $usr_id . "','0',NOW(),'" . $global_user_id . "')"); // vstavimo v srv_userstatus sisplet_query("INSERT INTO srv_userstatus (usr_id, tip, status, datetime) VALUES ('" . $usr_id . "', '0', '0', NOW())"); // vstavimo v srv_data_text (email, ime, priimek) SurveyInfo::getInstance()->SurveyInit($ank_id); $db_table = SurveyInfo::getInstance()->getSurveyArchiveDBString(); foreach ($sys_vars AS $sid => $spremenljivka) { if ($spremenljivka['variable'] == 'email') sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $email . "', '" . $usr_id . "')"); elseif ($spremenljivka['variable'] == 'ime') sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $firstname . "', '" . $usr_id . "')"); elseif ($spremenljivka['variable'] == 'priimek') sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $lastname . "', '" . $usr_id . "')"); } } else { // lahko da user že obstaja in je šlo za duplicated keys } $json_array['note'] = 'Email succesfully sent.'; } // Vabilo ni bilo poslano else { // Updatamo prejemnika - status in sent $sqlQuery = sisplet_query("UPDATE srv_invitations_recipients SET last_status='2' WHERE id='" . $rec_id . "'"); // Updatamo se arhiv $sqlQuery = sisplet_query("UPDATE srv_invitations_archive SET cnt_succsess='0', cnt_error='1' WHERE id='" . $arch_id . "'"); // Updatamo arhiv prejemnikov $sqlQuery = sisplet_query("INSERT INTO srv_invitations_archive_recipients (arch_id,rec_id,success) VALUES ('" . $arch_id . "','" . $rec_id . "','0')"); // Updatamo tracking $sqlQueryTracking = sisplet_query("INSERT INTO srv_invitations_tracking (inv_arch_id, time_insert, res_id, status) VALUES ('" . $arch_id . "',NOW(),'" . $rec_id . "','2')"); // Dodamo userje v bazo $sqlUserInsert = sisplet_query("INSERT INTO srv_user (ank_id, email, cookie, pass, last_status, time_insert, inv_res_id) VALUES ('" . $ank_id . "', '" . $email . "', '" . $cookie . "', '" . $code . "', '2', NOW(), '" . $rec_id . "') ON DUPLICATE KEY UPDATE cookie = '" . $cookie . "', pass='" . $code . "'"); $usr_id = mysqli_insert_id($GLOBALS['connect_db']); if ($usr_id) { // vstavimo v srv_userbase sisplet_query("INSERT INTO srv_userbase (usr_id, tip, datetime, admin_id) VALUES ('" . $usr_id . "','0',NOW(),'" . $global_user_id . "')"); // vstavimo v srv_userstatus sisplet_query("INSERT INTO srv_userstatus (usr_id, tip, status, datetime) VALUES ('" . $usr_id . "', '0', '0', NOW())"); // vstavimo v srv_data_text (email, ime, priimek) SurveyInfo::getInstance()->SurveyInit($ank_id); $db_table = SurveyInfo::getInstance()->getSurveyArchiveDBString(); foreach ($sys_vars AS $sid => $spremenljivka) { if ($spremenljivka['variable'] == 'email') { $data_insert = sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $email . "', '" . $usr_id . "')"); } elseif ($spremenljivka['variable'] == 'ime') { $data_insert = sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $firstname . "', '" . $usr_id . "')"); } elseif ($spremenljivka['variable'] == 'priimek') { $data_insert = sisplet_query("INSERT INTO srv_data_text" . $db_table . " (spr_id, vre_id, text, usr_id) VALUES ('" . $sid . "', '" . $spremenljivka['vre_id'] . "', '" . $lastname . "', '" . $usr_id . "')"); } } } else { // lahko da user že obstaja in je šlo za duplicated keys } $json_array['error'] = 'Email sending error!'; } } } } // Manjkajo parametri (email, firstname, lastname) else { $json_array['error'] = 'Missing parameters (email, firstname and lastname are mandatory)!'; } return $json_array; } // Doda kupcu iz trgovine moznost dostopa do evoli landing paga (vrne token za dostop s katerim lahko enkrat izpolni formo in poslje vabila) private function createEvoliPass($ank_id, $email) { global $lang; global $global_user_id; global $admin_type; $json_array = array(); // Oba parametra sta obvezna if ($ank_id != '' && $email != '') { // Zgeneriramo nakljucno geslo, ki se ne obstaja v bazi $pass = substr(md5(microtime()), rand(0, 26), 5); $sql = sisplet_query("SELECT * FROM srv_evoli_landingPage_access WHERE pass='" . $pass . "'"); while (mysqli_num_rows($sql) > 0) { $pass = substr(md5(microtime()), rand(0, 26), 5); $sql = sisplet_query("SELECT * FROM srv_evoli_landingPage_access WHERE pass='" . $pass . "'"); } // Vstavimo kupca v tabelo za dostop $sqlI = sisplet_query("INSERT INTO srv_evoli_landingPage_access (ank_id, email, pass, time_created) VALUES ('" . $ank_id . "', '" . $email . "', '" . $pass . "', NOW())"); $json_array['pass'] = $pass; } // Manjkajo parametri (email, firstname, lastname) else { $json_array['error'] = 'Missing parameters (survey id and email are mandatory)!'; } return $json_array; } // Vrne pass za kupca iz trgovine za moznost dostopa do evoli landing paga (vrne token za dostop s katerim lahko enkrat izpolni formo in poslje vabila) private function getEvoliPass($ank_id, $email) { global $lang; global $global_user_id; global $admin_type; $json_array = array(); // Oba parametra sta obvezna if ($ank_id != '' && $email != '') { $sql = sisplet_query("SELECT pass FROM srv_evoli_landingPage_access WHERE ank_id='" . $ank_id . "' AND email='" . $email . "' AND used='0'"); if (mysqli_num_rows($sql) > 0) { $row = mysqli_fetch_array($sql); $json_array['pass'] = $row['pass']; } else { $json_array['pass'] = '-1'; } } // Manjkajo parametri (email, firstname, lastname) else { $json_array['error'] = 'Missing parameters (survey id and email are mandatory)!'; } return $json_array; } // Vrne verzijo mobilne aplikacije // TRENUTNO SE NE RABI VEC private function getMobileAppVersion() { global $lang; global $global_user_id; $sm = new SurveyMobile(); $mobile_versions = $sm->getMobileVersion(); $obj['note'] = "login OK"; $obj['version'] = $mobile_versions; return $obj; } private function getLang($anketa) { $lang_admin = 0; if ($anketa > 0) { $sql = sisplet_query("SELECT lang_admin FROM srv_anketa WHERE id = '$anketa'"); $row = @mysqli_fetch_array($sql); $lang_admin = $row['lang_admin']; } if ($lang_admin == 0) { //$sql = sisplet_query("SELECT * FROM misc WHERE what = 'SurveyLang_admin'"); $sql = sisplet_query("SELECT lang FROM users WHERE id = '$global_user_id'"); $row = @mysqli_fetch_array($sql); $lang_admin = $row['lang']; } if ($lang_admin == 0) { $sql = sisplet_query("SELECT * FROM misc WHERE what = 'SurveyLang_admin'"); $row = @mysqli_fetch_array($sql); $lang_admin = $row['value']; } if ($lang_admin == 0) $lang_admin = 2; // za vsak slucaj, ce ni v bazi return $lang_admin; } // Ustvari novega uporabnika - zaenkrat dovoljeno samo za Gorenje instalacijo private function createUser($data){ global $pass_salt; global $lang; $json_array = array(); $email = (isset($data['email'])) ? $data['email'] : ''; $name = (isset($data['name'])) ? $data['name'] : ''; $pass = (isset($data['pass'])) ? $data['pass'] : ''; // Email in name sta obvezna, psss je lahko tudi prazen if($email != '' && $name != ''){ // Preverimo ce ze obstaja email $sql = sisplet_query ("SELECT * FROM users WHERE email='".$email."'"); if(mysqli_num_rows($sql) > 0){ $json_array['error'] = 'Uporabnik z izbanim emailom že obstaja!'; return $json_array; exit(); } $kdaj = date('Y-m-d'); $priimek = ''; // Status ima vedno active? //if ($banan == 1) // $status = 0; //elseif ($active == 1) $status = 1; //else // $status = 2; // Zakodiramo geslo ki ga insertamo if($pass == '') $g = ''; else $g = base64_encode((hash(SHA256, $pass . $pass_salt))); // Vstavimo userja v bazo sisplet_query ("INSERT INTO users (type, email, name, surname, pass, status, when_reg, came_from, lang) VALUES ('3', '".$email."', '".$name."', '".$priimek."', '".$g."', '".$status."', '".$kdaj."', '0', '".$lang['id']."')"); $json_array['note'] = 'Uporabnik '.$name.' ('.$email.') uspešno dodan in aktiviran.'; } // Manjkajo parametri (email, name) else{ $json_array['error'] = 'Missing parameters (email and name are mandatory)!'; } return $json_array; } }