package FixMyStreet::App::Controller::Admin;
use Moose;
use namespace::autoclean;
BEGIN { extends 'Catalyst::Controller'; }
use POSIX qw(strftime strcoll);
use Digest::MD5 qw(md5_hex);
=head1 NAME
FixMyStreet::App::Controller::Admin- Catalyst Controller
=head1 DESCRIPTION
Admin pages
=head1 METHODS
=cut
=head2 summary
Redirect to index page. There to make the allowed pages stuff neater
=cut
sub begin : Private {
my ( $self, $c ) = @_;
$c->uri_disposition('relative');
}
sub summary : Path( 'summary' ) : Args(0) {
my ( $self, $c ) = @_;
$c->go( 'index' );
}
=head2 index
Displays some summary information for the requests.
=cut
sub index : Path : Args(0) {
my ( $self, $c ) = @_;
$c->forward('check_page_allowed');
my ( $sql_restriction, $id, $site_restriction ) = $c->cobrand->site_restriction();
my $problems = $c->cobrand->problems->summary_count;
my %prob_counts =
map { $_->state => $_->get_column('state_count') } $problems->all;
%prob_counts =
map { $_ => $prob_counts{$_} || 0 }
('confirmed', 'investigating', 'in progress', 'closed', 'fixed - council',
'fixed - user', 'fixed', 'unconfirmed', 'hidden',
'partial', 'planned');
$c->stash->{problems} = \%prob_counts;
$c->stash->{total_problems_live} += $prob_counts{$_}
for ( FixMyStreet::DB::Result::Problem->visible_states() );
$c->stash->{total_problems_users} = $c->cobrand->problems->unique_users;
my $comments = $c->model('DB::Comment')->summary_count( $site_restriction );
my %comment_counts =
map { $_->state => $_->get_column('state_count') } $comments->all;
$c->stash->{comments} = \%comment_counts;
my $alerts = $c->model('DB::Alert')->summary_count( $c->cobrand->restriction );
my %alert_counts =
map { $_->confirmed => $_->get_column('confirmed_count') } $alerts->all;
$alert_counts{0} ||= 0;
$alert_counts{1} ||= 0;
$c->stash->{alerts} = \%alert_counts;
my $contacts = $c->model('DB::Contact')->summary_count();
my %contact_counts =
map { $_->confirmed => $_->get_column('confirmed_count') } $contacts->all;
$contact_counts{0} ||= 0;
$contact_counts{1} ||= 0;
$contact_counts{total} = $contact_counts{0} + $contact_counts{1};
$c->stash->{contacts} = \%contact_counts;
my $questionnaires = $c->model('DB::Questionnaire')->summary_count( $c->cobrand->restriction );
my %questionnaire_counts = map {
$_->get_column('answered') => $_->get_column('questionnaire_count')
} $questionnaires->all;
$questionnaire_counts{1} ||= 0;
$questionnaire_counts{0} ||= 0;
$questionnaire_counts{total} =
$questionnaire_counts{0} + $questionnaire_counts{1};
$c->stash->{questionnaires_pc} =
$questionnaire_counts{total}
? sprintf( '%.1f',
$questionnaire_counts{1} / $questionnaire_counts{total} * 100 )
: _('n/a');
$c->stash->{questionnaires} = \%questionnaire_counts;
$c->stash->{categories} = $c->cobrand->problems->categories_summary();
return 1;
}
sub timeline : Path( 'timeline' ) : Args(0) {
my ($self, $c) = @_;
$c->forward('check_page_allowed');
my ( $sql_restriction, $id, $site_restriction ) = $c->cobrand->site_restriction();
my %time;
$c->model('DB')->schema->storage->sql_maker->quote_char( '"' );
$c->model('DB')->schema->storage->sql_maker->name_sep( '.' );
my $probs = $c->cobrand->problems->timeline;
foreach ($probs->all) {
push @{$time{$_->created->epoch}}, { type => 'problemCreated', date => $_->created_local, obj => $_ };
push @{$time{$_->confirmed->epoch}}, { type => 'problemConfirmed', date => $_->confirmed_local, obj => $_ } if $_->confirmed;
push @{$time{$_->whensent->epoch}}, { type => 'problemSent', date => $_->whensent_local, obj => $_ } if $_->whensent;
}
my $questionnaires = $c->model('DB::Questionnaire')->timeline( $c->cobrand->restriction );
foreach ($questionnaires->all) {
push @{$time{$_->whensent->epoch}}, { type => 'quesSent', date => $_->whensent_local, obj => $_ };
push @{$time{$_->whenanswered->epoch}}, { type => 'quesAnswered', date => $_->whenanswered_local, obj => $_ } if $_->whenanswered;
}
my $updates = $c->model('DB::Comment')->timeline( $site_restriction );
foreach ($updates->all) {
push @{$time{$_->created->epoch}}, { type => 'update', date => $_->created_local, obj => $_} ;
}
my $alerts = $c->model('DB::Alert')->timeline_created( $c->cobrand->restriction );
foreach ($alerts->all) {
push @{$time{$_->whensubscribed->epoch}}, { type => 'alertSub', date => $_->whensubscribed_local, obj => $_ };
}
$alerts = $c->model('DB::Alert')->timeline_disabled( $c->cobrand->restriction );
foreach ($alerts->all) {
push @{$time{$_->whendisabled->epoch}}, { type => 'alertDel', date => $_->whendisabled_local, obj => $_ };
}
$c->model('DB')->schema->storage->sql_maker->quote_char( '' );
$c->stash->{time} = \%time;
return 1;
}
sub questionnaire : Path('questionnaire') : Args(0) {
my ( $self, $c ) = @_;
$c->forward('check_page_allowed');
my $questionnaires = $c->model('DB::Questionnaire')->search(
{ whenanswered => { '!=', undef } },
{ group_by => [ 'ever_reported' ],
select => [ 'ever_reported', { count => 'me.id' } ],
as => [ qw/reported questionnaire_count/ ] }
);
my %questionnaire_counts = map {
( defined $_->get_column( 'reported' ) ? $_->get_column( 'reported' ) : -1 )
=> $_->get_column( 'questionnaire_count' )
} $questionnaires->all;
$questionnaire_counts{1} ||= 0;
$questionnaire_counts{0} ||= 0;
$questionnaire_counts{total} = $questionnaire_counts{0} + $questionnaire_counts{1};
$c->stash->{questionnaires} = \%questionnaire_counts;
$c->stash->{state_changes_count} = $c->model('DB::Questionnaire')->search(
{ whenanswered => \'is not null' }
)->count;
$c->stash->{state_changes} = $c->model('DB::Questionnaire')->search(
{ whenanswered => \'is not null' },
{
group_by => [ 'old_state', 'new_state' ],
columns => [ 'old_state', 'new_state', { c => { count => 'id' } } ],
},
);
return 1;
}
sub council_list : Path('council_list') : Args(0) {
my ( $self, $c ) = @_;
$c->forward('check_page_allowed');
my $edit_activity = $c->model('DB::ContactsHistory')->search(
undef,
{
select => [ 'editor', { count => 'contacts_history_id', -as => 'c' } ],
as => [ 'editor', 'c' ],
group_by => ['editor'],
order_by => { -desc => 'c' }
}
);
$c->stash->{edit_activity} = $edit_activity;
# Not London, as treated separately
my @area_types = $c->cobrand->moniker eq 'emptyhomes'
? $c->cobrand->area_types
: grep { $_ ne 'LBO' } $c->cobrand->area_types;
my $areas = mySociety::MaPit::call('areas', \@area_types);
my @councils_ids = sort { strcoll($areas->{$a}->{name}, $areas->{$b}->{name}) } keys %$areas;
@councils_ids = $c->cobrand->filter_all_council_ids_list( @councils_ids );
my $contacts = $c->model('DB::Contact')->search(
undef,
{
select => [ 'area_id', { count => 'id' }, { count => \'case when deleted then 1 else null end' },
{ count => \'case when confirmed then 1 else null end' } ],
as => [qw/area_id c deleted confirmed/],
group_by => [ 'area_id' ],
result_class => 'DBIx::Class::ResultClass::HashRefInflator'
}
);
my %council_info = map { $_->{area_id} => $_ } $contacts->all;
my @no_info = grep { !$council_info{$_} } @councils_ids;
my @one_plus_deleted = grep { $council_info{$_} && $council_info{$_}->{deleted} } @councils_ids;
my @unconfirmeds = grep { $council_info{$_} && !$council_info{$_}->{deleted} && $council_info{$_}->{confirmed} != $council_info{$_}->{c} } @councils_ids;
my @all_confirmed = grep { $council_info{$_} && !$council_info{$_}->{deleted} && $council_info{$_}->{confirmed} == $council_info{$_}->{c} } @councils_ids;
$c->stash->{areas} = $areas;
$c->stash->{counts} = \%council_info;
$c->stash->{no_info} = \@no_info;
$c->stash->{one_plus_deleted} = \@one_plus_deleted;
$c->stash->{unconfirmeds} = \@unconfirmeds;
$c->stash->{all_confirmed} = \@all_confirmed;
return 1;
}
sub council_contacts : Path('council_contacts') : Args(1) {
my ( $self, $c, $area_id ) = @_;
$c->forward('check_page_allowed');
my $posted = $c->req->param('posted') || '';
$c->stash->{area_id} = $area_id;
$c->forward( 'get_token' );
if ( $posted ) {
$c->log->debug( 'posted' );
$c->forward('update_contacts');
}
$c->forward('display_contacts');
return 1;
}
sub update_contacts : Private {
my ( $self, $c ) = @_;
my $posted = $c->req->param('posted');
my $editor = $c->req->remote_user || _('*unknown*');
if ( $posted eq 'new' ) {
$c->forward('check_token');
my $category = $self->trim( $c->req->param( 'category' ) );
my $email = $self->trim( $c->req->param( 'email' ) );
$category = 'Empty property' if $c->cobrand->moniker eq 'emptyhomes';
my $contact = $c->model('DB::Contact')->find_or_new(
{
area_id => $c->stash->{area_id},
category => $category,
}
);
$contact->email( $email );
$contact->confirmed( $c->req->param('confirmed') ? 1 : 0 );
$contact->deleted( $c->req->param('deleted') ? 1 : 0 );
$contact->note( $c->req->param('note') );
$contact->whenedited( \'ms_current_timestamp()' );
$contact->editor( $editor );
if ( $contact->in_storage ) {
$c->stash->{updated} = _('Values updated');
# NB: History is automatically stored by a trigger in the database
$contact->update;
} else {
$c->stash->{updated} = _('New category contact added');
$contact->insert;
}
} elsif ( $posted eq 'update' ) {
$c->forward('check_token');
my @categories = $c->req->param('confirmed');
my $contacts = $c->model('DB::Contact')->search(
{
area_id => $c->stash->{area_id},
category => { -in => \@categories },
}
);
$contacts->update(
{
confirmed => 1,
whenedited => \'ms_current_timestamp()',
note => 'Confirmed',
editor => $editor,
}
);
$c->stash->{updated} = _('Values updated');
} elsif ( $posted eq 'open311' ) {
$c->forward('check_token');
my %params = map { $_ => $c->req->param($_) } qw/open311_id endpoint jurisdiction api_key area_id/;
if ( $params{open311_id} ) {
my $conf = $c->model('DB::Open311Conf')->find( { id => $params{open311_id} } );
$conf->endpoint( $params{endpoint} );
$conf->jurisdiction( $params{jurisdiction} );
$conf->api_key( $params{api_key} );
$conf->update();
$c->stash->{updated} = _('Configuration updated');
} else {
my $conf = $c->model('DB::Open311Conf')->find_or_new( { area_id => $params{area_id} } );
$conf->endpoint( $params{endpoint} );
$conf->jurisdiction( $params{jurisdiction} );
$conf->api_key( $params{api_key} );
$conf->insert();
$c->stash->{updated} = _('Configuration updated - contacts will be generated automatically later');
}
}
}
sub display_contacts : Private {
my ( $self, $c ) = @_;
$c->forward('setup_council_details');
my $area_id = $c->stash->{area_id};
my $contacts = $c->model('DB::Contact')->search(
{ area_id => $area_id },
{ order_by => ['category'] }
);
$c->stash->{contacts} = $contacts;
my $open311 = $c->model('DB::Open311Conf')->search(
{ area_id => $area_id }
);
$c->stash->{open311} = $open311;
if ( $c->req->param('text') && $c->req->param('text') == 1 ) {
$c->stash->{template} = 'admin/council_contacts.txt';
$c->res->content_type('text/plain; charset=utf-8');
return 1;
}
return 1;
}
sub setup_council_details : Private {
my ( $self, $c ) = @_;
my $area_id = $c->stash->{area_id};
my $mapit_data = mySociety::MaPit::call('area', $area_id);
$c->stash->{council_name} = $mapit_data->{name};
my $example_postcode = mySociety::MaPit::call('area/example_postcode', $area_id);
if ($example_postcode && ! ref $example_postcode) {
$c->stash->{example_pc} = $example_postcode;
}
return 1;
}
sub council_edit_all : Path('council_edit') {
my ( $self, $c, $area_id, @category ) = @_;
my $category = join( '/', @category );
$c->go( 'council_edit', [ $area_id, $category ] );
}
sub council_edit : Path('council_edit') : Args(2) {
my ( $self, $c, $area_id, $category ) = @_;
$c->forward('check_page_allowed');
$c->stash->{area_id} = $area_id;
$c->forward( 'get_token' );
$c->forward('setup_council_details');
my $contact = $c->model('DB::Contact')->search(
{
area_id => $area_id,
category => $category
}
)->first;
$c->stash->{contact} = $contact;
my $history = $c->model('DB::ContactsHistory')->search(
{
area_id => $area_id,
category => $category
},
{
order_by => ['contacts_history_id']
},
);
$c->stash->{history} = $history;
return 1;
}
sub search_reports : Path('search_reports') {
my ( $self, $c ) = @_;
$c->forward('check_page_allowed');
if (my $search = $c->req->param('search')) {
$c->stash->{searched} = 1;
my ( $site_res_sql, $site_key, $site_restriction ) = $c->cobrand->site_restriction;
my $search_n = 0;
$search_n = int($search) if $search =~ /^\d+$/;
my $like_search = "%$search%";
# when DBIC creates the join it does 'JOIN users user' in the
# SQL which makes PostgreSQL unhappy as user is a reserved
# word, hence we need to quote this SQL. However, the quoting
# makes PostgreSQL unhappy elsewhere so we only want to do
# it for this query and then switch it off afterwards.
$c->model('DB')->schema->storage->sql_maker->quote_char( '"' );
$c->model('DB')->schema->storage->sql_maker->name_sep( '.' );
my $problems = $c->cobrand->problems->search(
{
-or => [
'me.id' => $search_n,
'user.email' => { ilike => $like_search },
'me.name' => { ilike => $like_search },
title => { ilike => $like_search },
detail => { ilike => $like_search },
council => { like => $like_search },
cobrand_data => { like => $like_search },
]
},
{
prefetch => 'user',
order_by => [\"(state='hidden')",'created']
}
);
# we need to pass this in as an array as we can't
# query the object in the template as the quoting
# will have been turned off
$c->stash->{problems} = [ $problems->all ];
$c->stash->{edit_council_contacts} = 1
if ( grep {$_ eq 'councilcontacts'} keys %{$c->stash->{allowed_pages}});
my $updates = $c->model('DB::Comment')->search(
{
-or => [
'me.id' => $search_n,
'problem.id' => $search_n,
'user.email' => { ilike => $like_search },
'me.name' => { ilike => $like_search },
text => { ilike => $like_search },
'me.cobrand_data' => { ilike => $like_search },
%{ $site_restriction },
]
},
{
-select => [ 'me.*', qw/problem.council problem.state/ ],
prefetch => [qw/user problem/],
order_by => [\"(me.state='hidden')",\"(problem.state='hidden')",'me.created']
}
);
$c->stash->{updates} = [ $updates->all ];
# Switch quoting back off. See above for explanation of this.
$c->model('DB')->schema->storage->sql_maker->quote_char( '' );
}
}
sub report_edit : Path('report_edit') : Args(1) {
my ( $self, $c, $id ) = @_;
my ( $site_res_sql, $site_key, $site_restriction ) = $c->cobrand->site_restriction;
my $problem = $c->cobrand->problems->search(
{
id => $id,
}
)->first;
$c->detach( '/page_error_404_not_found',
[ _('The requested URL was not found on this server.') ] )
unless $problem;
$c->stash->{problem} = $problem;
$c->forward('get_token');
$c->forward('check_page_allowed');
$c->forward('check_email_for_abuse', [ $problem->user->email ] );
$c->stash->{updates} =
[ $c->model('DB::Comment')
->search( { problem_id => $problem->id }, { order_by => 'created' } )
->all ];
if ( $c->req->param('resend') ) {
$c->forward('check_token');
$problem->whensent(undef);
$problem->update();
$c->stash->{status_message} =
'' . _('That problem will now be resent.') . '
';
$c->forward( 'log_edit', [ $id, 'problem', 'resend' ] );
}
elsif ( $c->req->param('flaguser') ) {
$c->forward('flag_user');
$c->stash->{problem}->discard_changes;
}
elsif ( $c->req->param('removeuserflag') ) {
$c->forward('remove_user_flag');
$c->stash->{problem}->discard_changes;
}
elsif ( $c->req->param('banuser') ) {
$c->forward('ban_user');
}
elsif ( $c->req->param('rotate_photo') ) {
$c->forward('rotate_photo');
}
elsif ( $c->req->param('submit') ) {
$c->forward('check_token');
my $done = 0;
my $edited = 0;
my $new_state = $c->req->param('state');
my $old_state = $problem->state;
if ( $new_state eq 'confirmed'
&& $problem->state eq 'unconfirmed'
&& $c->cobrand->moniker eq 'emptyhomes' )
{
$c->stash->{status_message} =
''
. _('I am afraid you cannot confirm unconfirmed reports.')
. '
';
$done = 1;
}
my $flagged = $c->req->param('flagged') ? 1 : 0;
# do this here so before we update the values in problem
if ( $c->req->param('anonymous') ne $problem->anonymous
|| $c->req->param('name') ne $problem->name
|| $c->req->param('email') ne $problem->user->email
|| $c->req->param('title') ne $problem->title
|| $c->req->param('detail') ne $problem->detail
|| $flagged != $problem->flagged )
{
$edited = 1;
}
$problem->anonymous( $c->req->param('anonymous') );
$problem->title( $c->req->param('title') );
$problem->detail( $c->req->param('detail') );
$problem->state( $c->req->param('state') );
$problem->name( $c->req->param('name') );
$problem->flagged( $flagged );
if ( $c->req->param('email') ne $problem->user->email ) {
my $user = $c->model('DB::User')->find_or_create(
{ email => $c->req->param('email') }
);
$user->insert unless $user->in_storage;
$problem->user( $user );
}
if ( $c->req->param('remove_photo') ) {
$problem->photo(undef);
}
if ( $new_state ne $old_state ) {
$problem->lastupdate( \'ms_current_timestamp()' );
}
if ( $new_state eq 'confirmed' and $old_state eq 'unconfirmed' ) {
$problem->confirmed( \'ms_current_timestamp()' );
}
if ($done) {
$problem->discard_changes;
}
else {
$problem->update;
if ( $new_state ne $old_state ) {
$c->forward( 'log_edit', [ $id, 'problem', 'state_change' ] );
}
if ($edited) {
$c->forward( 'log_edit', [ $id, 'problem', 'edit' ] );
}
$c->stash->{status_message} =
'' . _('Updated!') . '
';
# do this here otherwise lastupdate and confirmed times
# do not display correctly
$problem->discard_changes;
}
}
return 1;
}
sub search_users: Path('search_users') : Args(0) {
my ( $self, $c ) = @_;
$c->forward('check_page_allowed');
if (my $search = $c->req->param('search')) {
$c->stash->{searched} = 1;
my $search = $c->req->param('search');
my $isearch = '%' . $search . '%';
my $search_n = 0;
$search_n = int($search) if $search =~ /^\d+$/;
my $users = $c->model('DB::User')->search(
{
-or => [
email => { ilike => $isearch },
name => { ilike => $isearch },
from_council => $search_n,
]
}
);
$c->stash->{users} = [ $users->all ];
}
return 1;
}
sub update_edit : Path('update_edit') : Args(1) {
my ( $self, $c, $id ) = @_;
my ( $site_res_sql, $site_key, $site_restriction ) =
$c->cobrand->site_restriction;
my $update = $c->model('DB::Comment')->search(
{
id => $id,
%{$site_restriction},
}
)->first;
$c->detach( '/page_error_404_not_found',
[ _('The requested URL was not found on this server.') ] )
unless $update;
$c->forward('get_token');
$c->forward('check_page_allowed');
$c->stash->{update} = $update;
$c->forward('check_email_for_abuse', [ $update->user->email ] );
if ( $c->req->param('banuser') ) {
$c->forward('ban_user');
}
elsif ( $c->req->param('flaguser') ) {
$c->forward('flag_user');
$c->stash->{update}->discard_changes;
}
elsif ( $c->req->param('removeuserflag') ) {
$c->forward('remove_user_flag');
$c->stash->{update}->discard_changes;
}
elsif ( $c->req->param('submit') ) {
$c->forward('check_token');
my $old_state = $update->state;
my $new_state = $c->req->param('state');
my $edited = 0;
# $update->name can be null which makes ne unhappy
my $name = $update->name || '';
if ( $c->req->param('name') ne $name
|| $c->req->param('email') ne $update->user->email
|| $c->req->param('anonymous') ne $update->anonymous
|| $c->req->param('text') ne $update->text ){
$edited = 1;
}
if ( $c->req->param('remove_photo') ) {
$update->photo(undef);
}
$update->name( $c->req->param('name') || '' );
$update->text( $c->req->param('text') );
$update->anonymous( $c->req->param('anonymous') );
$update->state( $c->req->param('state') );
if ( $c->req->param('email') ne $update->user->email ) {
my $user =
$c->model('DB::User')
->find_or_create( { email => $c->req->param('email') } );
$user->insert unless $user->in_storage;
$update->user($user);
}
if ( $new_state eq 'confirmed' and $old_state eq 'unconfirmed' ) {
$update->confirmed( \'ms_current_timestamp()' );
}
$update->update;
$c->stash->{status_message} = '' . _('Updated!') . '
';
# If we're hiding an update, see if it marked as fixed and unfix if so
if ( $new_state eq 'hidden' && $update->mark_fixed ) {
if ( $update->problem->state =~ /^fixed/ ) {
$update->problem->state('confirmed');
$update->problem->update;
}
$c->stash->{status_message} .=
'' . _('Problem marked as open.') . '
';
}
if ( $new_state ne $old_state ) {
$c->forward( 'log_edit',
[ $update->id, 'update', 'state_change' ] );
}
if ($edited) {
$c->forward( 'log_edit', [ $update->id, 'update', 'edit' ] );
}
}
return 1;
}
sub search_abuse : Path('search_abuse') : Args(0) {
my ( $self, $c ) = @_;
$c->forward('check_page_allowed');
my $search = $c->req->param('search');
if ($search) {
my $emails = $c->model('DB::Abuse')->search(
{
email => { ilike => "\%$search\%" }
}
);
$c->stash->{emails} = [ $emails->all ];
}
return 1;
}
sub user_edit : Path('user_edit') : Args(1) {
my ( $self, $c, $id ) = @_;
$c->forward('check_page_allowed');
$c->forward('get_token');
my $user = $c->model('DB::User')->find( { id => $id } );
$c->stash->{user} = $user;
$c->forward('set_up_council_details');
if ( $c->req->param('submit') ) {
$c->forward('check_token');
my $edited = 0;
if ( $user->email ne $c->req->param('email') ||
$user->name ne $c->req->param('name' ) ||
$user->from_council != $c->req->param('council') ) {
$edited = 1;
}
$user->name( $c->req->param('name') );
$user->email( $c->req->param('email') );
$user->from_council( $c->req->param('council') || undef );
$user->flagged( $c->req->param('flagged') || 0 );
$user->update;
if ($edited) {
$c->forward( 'log_edit', [ $id, 'user', 'edit' ] );
}
$c->stash->{status_message} =
'' . _('Updated!') . '
';
}
return 1;
}
sub list_flagged : Path('list_flagged') : Args(0) {
my ( $self, $c ) = @_;
$c->forward('check_page_allowed');
my $problems = $c->model('DB::Problem')->search( { flagged => 1 } );
# pass in as array ref as using same template as search_reports
# which has to use an array ref for sql quoting reasons
$c->stash->{problems} = [ $problems->all ];
my $users = $c->model('DB::User')->search( { flagged => 1 } );
$c->stash->{users} = $users;
return 1;
}
sub stats : Path('stats') : Args(0) {
my ( $self, $c ) = @_;
$c->forward('check_page_allowed');
$c->forward('set_up_council_details');
if ( $c->req->param('getcounts') ) {
my ( $start_date, $end_date, @errors );
eval {
$start_date = DateTime->new(
year => $c->req->param('start_date_year'),
month => $c->req->param('start_date_month'),
day => $c->req->param('start_date_day'),
);
};
push @errors, _('Invalid start date') if $@;
eval {
$end_date = DateTime->new(
year => $c->req->param('end_date_year'),
month => $c->req->param('end_date_month'),
day => $c->req->param('end_date_day'),
);
};
push @errors, _('Invalid end date') if $@;
$c->stash->{errors} = \@errors;
$c->stash->{start_date} = $start_date;
$c->stash->{end_date} = $end_date;
$c->stash->{unconfirmed} = $c->req->param('unconfirmed') eq 'on' ? 1 : 0;
return 1 if @errors;
my $bymonth = $c->req->param('bymonth');
$c->stash->{bymonth} = $bymonth;
my ( %council, %dates );
$council{council} = { like => $c->req->param('council') }
if $c->req->param('council');
$c->stash->{selected_council} = $c->req->param('council');
my $field = 'confirmed';
$field = 'created' if $c->req->param('unconfirmed');
my $one_day = DateTime::Duration->new( days => 1 );
my %select = (
select => [ 'state', { 'count' => 'me.id' } ],
as => [qw/state count/],
group_by => [ 'state' ],
order_by => [ 'state' ],
);
if ( $c->req->param('bymonth') ) {
%select = (
select => [
{ extract => \"year from $field", -as => 'c_year' },
{ extract => \"month from $field", -as => 'c_month' },
{ 'count' => 'me.id' }
],
as => [qw/c_year c_month count/],
group_by => [qw/c_year c_month/],
order_by => [qw/c_year c_month/],
);
}
my $p = $c->model('DB::Problem')->search(
{
-AND => [
$field => { '>=', $start_date},
$field => { '<=', $end_date + $one_day },
],
%council,
%dates,
},
\%select,
);
# in case the total_report count is 0
$c->stash->{show_count} = 1;
$c->stash->{states} = $p;
}
return 1;
}
=head2 set_allowed_pages
Sets up the allowed_pages stash entry for checking if the current page is
available in the current cobrand.
=cut
sub set_allowed_pages : Private {
my ( $self, $c ) = @_;
my $pages = $c->cobrand->admin_pages;
if( !$pages ) {
$pages = {
'summary' => [_('Summary'), 0],
'council_list' => [_('Council contacts'), 1],
'search_reports' => [_('Search Reports'), 2],
'timeline' => [_('Timeline'), 3],
'questionnaire' => [_('Survey Results'), 4],
'search_users' => [_('Search Users'), 5],
'search_abuse' => [_('Search Abuse'), 5],
'list_flagged' => [_('List Flagged'), 6],
'stats' => [_('Stats'), 6],
'user_edit' => [undef, undef],
'council_contacts' => [undef, undef],
'council_edit' => [undef, undef],
'report_edit' => [undef, undef],
'update_edit' => [undef, undef],
'abuse_edit' => [undef, undef],
}
}
my @allowed_links = sort {$pages->{$a}[1] <=> $pages->{$b}[1]} grep {$pages->{$_}->[0] } keys %$pages;
$c->stash->{allowed_pages} = $pages;
$c->stash->{allowed_links} = \@allowed_links;
return 1;
}
=item get_token
Generate a token based on user and secret
=cut
sub get_token : Private {
my ( $self, $c ) = @_;
my $secret = $c->model('DB::Secret')->search()->first;
my $user = $c->req->remote_user();
$user ||= '';
my $token = md5_hex(($user . $secret->secret));
$c->stash->{token} = $token;
return 1;
}
=item check_token
Check that a token has been set on a request and it's the correct token. If
not then display 404 page
=cut
sub check_token : Private {
my ( $self, $c ) = @_;
if ( !$c->req->param('token') || $c->req->param('token' ) ne $c->stash->{token} ) {
$c->detach( '/page_error_404_not_found', [ _('The requested URL was not found on this server.') ] );
}
return 1;
}
=item log_edit
$c->forward( 'log_edit', [ $object_id, $object_type, $action_performed ] );
Adds an entry into the admin_log table using the current remote_user.
=cut
sub log_edit : Private {
my ( $self, $c, $id, $object_type, $action ) = @_;
$c->model('DB::AdminLog')->create(
{
admin_user => ( $c->req->remote_user() || '' ),
object_type => $object_type,
action => $action,
object_id => $id,
}
)->insert();
}
=head2 ban_user
Add the email address in the email param of the request object to
the abuse table if they are not already in there and sets status_message
accordingly
=cut
sub ban_user : Private {
my ( $self, $c ) = @_;
my $email = $c->req->param('email');
return unless $email;
my $abuse = $c->model('DB::Abuse')->find_or_new({ email => $email });
if ( $abuse->in_storage ) {
$c->stash->{status_message} = _('Email already in abuse list');
} else {
$abuse->insert;
$c->stash->{status_message} = _('Email added to abuse list');
}
$c->stash->{email_in_abuse} = 1;
return 1;
}
=head2 flag_user
Sets the flag on a user with the given email
=cut
sub flag_user : Private {
my ( $self, $c ) = @_;
my $email = $c->req->param('email');
return unless $email;
my $user = $c->model('DB::User')->find({ email => $email });
if ( !$user ) {
$c->stash->{status_message} = _('Could not find user');
} else {
$user->flagged(1);
$user->update;
$c->stash->{status_message} = _('User flagged');
}
$c->stash->{user_flagged} = 1;
return 1;
}
=head2 remove_user_flag
Remove the flag on a user with the given email
=cut
sub remove_user_flag : Private {
my ( $self, $c ) = @_;
my $email = $c->req->param('email');
return unless $email;
my $user = $c->model('DB::User')->find({ email => $email });
if ( !$user ) {
$c->stash->{status_message} = _('Could not find user');
} else {
$user->flagged(0);
$user->update;
$c->stash->{status_message} = _('User flag removed');
}
return 1;
}
=head2 check_email_for_abuse
$c->forward('check_email_for_abuse', [ $email ] );
Checks if $email is in the abuse table and sets email_in_abuse accordingly
=cut
sub check_email_for_abuse : Private {
my ( $self, $c, $email ) =@_;
my $is_abuse = $c->model('DB::Abuse')->find({ email => $email });
$c->stash->{email_in_abuse} = 1 if $is_abuse;
return 1;
}
=head2 rotate_photo
Rotate a photo 90 degrees left or right
=cut
sub rotate_photo : Private {
my ( $self, $c ) =@_;
my $direction = $c->req->param('rotate_photo');
return unless $direction =~ /Left/ or $direction =~ /Right/;
my $photo = _rotate_image( $c->stash->{problem}->photo, $direction =~ /Left/ ? -90 : 90 );
if ( $photo ) {
$c->stash->{rotated} = 1;
$c->stash->{problem}->photo( $photo );
$c->stash->{problem}->update();
}
return 1;
}
=head2 check_page_allowed
Checks if the current catalyst action is in the list of allowed pages and
if not then redirects to 404 error page.
=cut
sub check_page_allowed : Private {
my ( $self, $c ) = @_;
$c->forward('set_allowed_pages');
(my $page = $c->req->action) =~ s#admin/?##;
$page ||= 'summary';
if ( !grep { $_ eq $page } keys %{ $c->stash->{allowed_pages} } ) {
$c->detach( '/page_error_404_not_found', [ _('The requested URL was not found on this server.') ] );
}
return 1;
}
sub set_up_council_details : Private {
my ($self, $c ) = @_;
my @area_types = $c->cobrand->area_types;
my $areas = mySociety::MaPit::call('areas', \@area_types);
my @councils_ids = sort { strcoll($areas->{$a}->{name}, $areas->{$b}->{name}) } keys %$areas;
@councils_ids = $c->cobrand->filter_all_council_ids_list( @councils_ids );
$c->stash->{council_ids} = \@councils_ids;
$c->stash->{council_details} = $areas;
return 1;
}
sub trim {
my $self = shift;
my $e = shift;
$e =~ s/^\s+//;
$e =~ s/\s+$//;
return $e;
}
sub _rotate_image {
my ($photo, $direction) = @_;
use Image::Magick;
my $image = Image::Magick->new;
$image->BlobToImage($photo);
my $err = $image->Rotate($direction);
return 0 if $err;
my @blobs = $image->ImageToBlob();
undef $image;
return $blobs[0];
}
=head1 AUTHOR
Struan Donald
=head1 LICENSE
This library is free software. You can redistribute it and/or modify
it under the same terms as Perl itself.
=cut
__PACKAGE__->meta->make_immutable;
1;