package controllers import ( "errors" "fmt" "strconv" "time" "git.readonly.ch/bouzoure/pop-camarades/helpers" "git.readonly.ch/bouzoure/pop-camarades/models" "github.com/go-playground/validator/v10" "github.com/gofiber/fiber/v2" "gorm.io/gorm" ) type PersonValidation struct { LastName string `validate:"required,min=1,max=100"` FirstName string `validate:"required,min=1,max=100"` Email string `validate:"max=100,email"` Phone string `validate:"max=100"` Mobile string `validate:"max=100"` Address1 string `validate:"max=100"` Address2 string `validate:"max=100"` PostalCode string `validate:"min=4,max=4,number"` City string `validate:"max=100"` Section string `validate:"required,number"` } func Members(c *fiber.Ctx) error { userid, err := helpers.GetSessionUserId(c) if err != nil { return err } allowedSections, err := helpers.PermissionsGetSections( userid, "show_member", ) if err != nil { return err } allowedSectionsArchived, err := helpers.PermissionsGetSections( userid, "show_archived_member", ) if err != nil { return err } permShow := (len(allowedSections) > 0) permShowArchived := (len(allowedSectionsArchived) > 0) if !permShow && !permShowArchived { return fiber.NewError(fiber.StatusForbidden, "Forbidden") } db, err := helpers.GetDatabase() if err != nil { return err } var count int64 db.Model(&models.Person{}).Where( "is_member = ? AND section_id IN ?", true, allowedSections, ).Count(&count) pageQuery := c.Query("p") page, _ := strconv.Atoi(pageQuery) if page <= 0 { page = 1 } pageSize := 50 offset := (page - 1) * pageSize maxPages := 1 if count > int64(pageSize) { maxPages = int(count) / pageSize } var pages []int for i := 1; i <= maxPages; i++ { if i == page { pages = append(pages, i) } else if i >= (page-2) && i < page { pages = append(pages, i) } else if i <= (page+2) && i > page { pages = append(pages, i) } else if page <= 2 && i <= 5 { pages = append(pages, i) } else if page >= (maxPages-2) && i >= (maxPages-5) { pages = append(pages, i) } } var people []models.Person result := db.Offset(offset).Limit(pageSize).Order( "last_name collate nocase asc, first_name collate nocase asc", ).Preload("Section").Find( &people, "is_member = ? AND section_id IN ?", true, allowedSections, ) if result.Error != nil && !errors.Is(result.Error, gorm.ErrRecordNotFound) { return err } return c.Render("people", fiber.Map{ "PageTitle": "Membres", "MembersPage": true, "People": people, "Page": page, "Pages": pages, "MaxPages": maxPages, "PermShow": permShow, "PermShowArchived": permShowArchived, }) } func MemberShow(c *fiber.Ctx) error { id := c.Params("id") db, err := helpers.GetDatabase() if err != nil { return err } var person models.Person result := db.Unscoped().Preload("Section").Find( &person, "id = ? AND is_member", id, true, ) if result.Error != nil { return result.Error } if result.RowsAffected < 1 { return fiber.NewError(fiber.StatusNotFound, "Not found") } userid, err := helpers.GetSessionUserId(c) if err != nil { return err } persmissionName := "show_member" if person.DeletedAt.Valid { persmissionName = "show_archived_member" } allow, err := helpers.PermissionsCheckSection( userid, persmissionName, person.SectionID, ) if err != nil { return err } if !allow { return fiber.NewError(fiber.StatusForbidden, "Forbidden") } title := fmt.Sprintf( "%s %s | Membre", person.LastName, person.FirstName, ) var fields []models.Field db.Order("name collate nocase asc").Preload( "List", ).Find( &fields, "person_type = ?", "member", ) var fieldValues []models.FieldValue db.Preload("ListItem").Find( &fieldValues, "person_id = ?", person.ID, ) permEdit, _ := helpers.PermissionsGetSections(userid, "edit_member") permConvert, _ := helpers.PermissionsGetSections(userid, "convert_member_to_contact") permArchive, _ := helpers.PermissionsGetSections(userid, "archive_member") permRestore, _ := helpers.PermissionsGetSections(userid, "restore_member") permPurge, _ := helpers.PermissionsGetSections(userid, "purge_member") return c.Render("person", fiber.Map{ "PageTitle": title, "Person": person, "Fields": fields, "FieldValues": fieldValues, "PermEdit": permEdit, "PermConvert": permConvert, "PermArchive": permArchive, "PermRestore": permRestore, "PermPurge": permPurge, }) } func MemberAdd(c *fiber.Ctx) error { userid, err := helpers.GetSessionUserId(c) if err != nil { return err } allowedSections, err := helpers.PermissionsGetSections( userid, "create_member", ) if err != nil { return err } if len(allowedSections) < 1 { return fiber.NewError(fiber.StatusForbidden, "Forbidden") } db, err := helpers.GetDatabase() if err != nil { return err } var sections []models.Section db.Order("name collate nocase asc").Find( §ions, "contains_members = ?", true, ) var fields []models.Field db.Preload("List").Preload("List.ListItems").Order( "name collate nocase asc", ).Find( &fields, "person_type = ?", "member", ) var person models.Person var errors []string if c.Method() == "POST" { data := PersonValidation{ LastName: c.FormValue("last_name"), FirstName: c.FormValue("first_name"), Email: c.FormValue("email"), Phone: c.FormValue("phone"), Mobile: c.FormValue("mobile"), Address1: c.FormValue("address1"), Address2: c.FormValue("address2"), PostalCode: c.FormValue("postal_code"), City: c.FormValue("city"), Section: c.FormValue("section"), } validate := validator.New() validErrs := validate.Struct(data) if validErrs != nil { for _, validErr := range validErrs.(validator.ValidationErrors) { switch validErr.Field() { case "LastName": errors = append(errors, "Le nom de famille est requis et ne peut pas contenir plus de 100 caractères") case "FirstName": errors = append(errors, "Le prénom est requis et ne peut pas contenir plus de 100 caractères") case "Email": if len(data.Email) > 0 { errors = append(errors, "L'adresse email doit être valide") } case "Phone": errors = append(errors, "Le numéro de téléphone fixe est trop long") case "Mobile": errors = append(errors, "Le numéro de téléphone mobile est trop long") case "Address1": errors = append(errors, "La ligne 1 de l'adresse est trop longue") case "Address2": errors = append(errors, "La ligne 2 de l'adresse est trop longue") case "PostalCode": if len(data.PostalCode) > 0 { errors = append(errors, "Le code postal n'est pas valide") } case "City": errors = append(errors, "Le lieu est trop long") case "Section": errors = append(errors, "La section n'est pas valide") } } } person.IsContact = false person.IsMember = true person.LastName = data.LastName person.FirstName = data.FirstName person.Email = data.Email person.Phone = data.Phone person.Mobile = data.Mobile person.Address1 = data.Address1 person.Address2 = data.Address2 person.PostalCode = data.PostalCode person.City = data.City sectionID, err := strconv.ParseUint(data.Section, 10, 0) if err == nil { for _, section := range sections { if section.ID == uint(sectionID) { person.SectionID = uint(sectionID) break } } } if person.SectionID == 0 { errors = append(errors, "La section est introuvable") } if len(errors) == 0 { result := db.Create(&person) if result.Error != nil { return result.Error } for _, field := range fields { if field.List.Multi { for _, listItem := range field.List.ListItems { key := fmt.Sprintf("field-%d-%d", field.ID, listItem.ID) value := c.FormValue(key) if value == "on" { var fieldValue models.FieldValue fieldValue.FieldID = field.ID fieldValue.PersonID = person.ID fieldValue.ListItemID = listItem.ID db.Create(&fieldValue) } } } else { key := fmt.Sprintf("field-%d", field.ID) value := c.FormValue(key) if (field.FieldType == "text" || field.FieldType == "longtext") && len(value) > 0 { var fieldValue models.FieldValue fieldValue.FieldID = field.ID fieldValue.PersonID = person.ID err = fieldValue.ValueString.Scan(value) if err != nil { continue } db.Create(&fieldValue) } if field.FieldType == "number" && len(value) > 0 { valueInt, err := strconv.ParseInt(value, 10, 0) if err != nil { continue } var fieldValue models.FieldValue fieldValue.FieldID = field.ID fieldValue.PersonID = person.ID err = fieldValue.ValueInt.Scan(valueInt) if err != nil { continue } db.Create(&fieldValue) } if field.FieldType == "date" && len(value) > 0 { valueDate, err := time.Parse("2006-01-02", value) if err != nil { continue } var fieldValue models.FieldValue fieldValue.FieldID = field.ID fieldValue.PersonID = person.ID err = fieldValue.ValueDate.Scan(valueDate) if err != nil { continue } db.Create(&fieldValue) } if field.FieldType == "list" && len(value) > 0 { valueInt, err := strconv.ParseUint(value, 10, 0) if err != nil { continue } found := false for _, listItem := range field.List.ListItems { if listItem.ID == uint(valueInt) { found = true } } if found { var fieldValue models.FieldValue fieldValue.FieldID = field.ID fieldValue.PersonID = person.ID fieldValue.ListItemID = uint(valueInt) db.Create(&fieldValue) } } } } c.Redirect(fmt.Sprintf( "/members/%d", person.ID, )) } } return c.Render("person_form", fiber.Map{ "PageTitle": "Ajouter un membre", "Person": person, "Sections": sections, "Fields": fields, "Errors": errors, }) } func MemberEdit(c *fiber.Ctx) error { id := c.Params("id") db, err := helpers.GetDatabase() if err != nil { return err } var person models.Person result := db.Find(&person, "id = ?", id) if result.Error != nil { return result.Error } if result.RowsAffected < 1 { return fiber.NewError(fiber.StatusNotFound, "Not found") } userid, err := helpers.GetSessionUserId(c) if err != nil { return err } allow, err := helpers.PermissionsCheckSection( userid, "edit_member", person.SectionID, ) if err != nil { return err } if !allow { return fiber.NewError(fiber.StatusForbidden, "Forbidden") } title := fmt.Sprintf( "%s %s | Modifier membre", person.LastName, person.FirstName, ) var sections []models.Section db.Order("name collate nocase asc").Find( §ions, "contains_members = ?", true, ) var fields []models.Field db.Preload("List").Preload("List.ListItems").Order( "name collate nocase asc", ).Find( &fields, "person_type = ?", "member", ) var fieldValues []models.FieldValue db.Preload("ListItem").Find( &fieldValues, "person_id = ?", person.ID, ) var errors []string if c.Method() == "POST" { data := PersonValidation{ LastName: c.FormValue("last_name"), FirstName: c.FormValue("first_name"), Email: c.FormValue("email"), Phone: c.FormValue("phone"), Mobile: c.FormValue("mobile"), Address1: c.FormValue("address1"), Address2: c.FormValue("address2"), PostalCode: c.FormValue("postal_code"), City: c.FormValue("city"), Section: c.FormValue("section"), } validate := validator.New() validErrs := validate.Struct(data) if validErrs != nil { for _, validErr := range validErrs.(validator.ValidationErrors) { switch validErr.Field() { case "LastName": errors = append(errors, "Le nom de famille est requis et ne peut pas contenir plus de 100 caractères") case "FirstName": errors = append(errors, "Le prénom est requis et ne peut pas contenir plus de 100 caractères") case "Email": if len(data.Email) > 0 { errors = append(errors, "L'adresse email doit être valide") } case "Phone": errors = append(errors, "Le numéro de téléphone fixe est trop long") case "Mobile": errors = append(errors, "Le numéro de téléphone mobile est trop long") case "Address1": errors = append(errors, "La ligne 1 de l'adresse est trop longue") case "Address2": errors = append(errors, "La ligne 2 de l'adresse est trop longue") case "PostalCode": if len(data.PostalCode) > 0 { errors = append(errors, "Le code postal n'est pas valide") } case "City": errors = append(errors, "Le lieu est trop long") case "Section": errors = append(errors, "La section n'est pas valide") } } } person.IsContact = false person.IsMember = true person.LastName = data.LastName person.FirstName = data.FirstName person.Email = data.Email person.Phone = data.Phone person.Mobile = data.Mobile person.Address1 = data.Address1 person.Address2 = data.Address2 person.PostalCode = data.PostalCode person.City = data.City sectionID, err := strconv.ParseUint(data.Section, 10, 0) if err == nil { for _, section := range sections { if section.ID == uint(sectionID) { person.SectionID = uint(sectionID) break } } } if person.SectionID == 0 { errors = append(errors, "La section est introuvable") } for _, field := range fields { db.Unscoped().Delete( &models.FieldValue{}, "person_id = ? AND field_id = ?", person.ID, field.ID, ) if field.List.Multi { for _, listItem := range field.List.ListItems { key := fmt.Sprintf("field-%d-%d", field.ID, listItem.ID) value := c.FormValue(key) if value == "on" { var fieldValue models.FieldValue fieldValue.FieldID = field.ID fieldValue.PersonID = person.ID fieldValue.ListItemID = listItem.ID db.Create(&fieldValue) } } } else { key := fmt.Sprintf("field-%d", field.ID) value := c.FormValue(key) if (field.FieldType == "text" || field.FieldType == "longtext") && len(value) > 0 { var fieldValue models.FieldValue fieldValue.FieldID = field.ID fieldValue.PersonID = person.ID err = fieldValue.ValueString.Scan(value) if err != nil { continue } db.Create(&fieldValue) } if field.FieldType == "number" && len(value) > 0 { valueInt, err := strconv.ParseInt(value, 10, 0) if err != nil { continue } var fieldValue models.FieldValue fieldValue.FieldID = field.ID fieldValue.PersonID = person.ID err = fieldValue.ValueInt.Scan(valueInt) if err != nil { continue } db.Create(&fieldValue) } if field.FieldType == "date" && len(value) > 0 { valueDate, err := time.Parse("2006-01-02", value) if err != nil { continue } var fieldValue models.FieldValue fieldValue.FieldID = field.ID fieldValue.PersonID = person.ID err = fieldValue.ValueDate.Scan(valueDate) if err != nil { continue } db.Create(&fieldValue) } if field.FieldType == "list" && len(value) > 0 { valueInt, err := strconv.ParseUint(value, 10, 0) if err != nil { continue } found := false for _, listItem := range field.List.ListItems { if listItem.ID == uint(valueInt) { found = true } } if found { var fieldValue models.FieldValue fieldValue.FieldID = field.ID fieldValue.PersonID = person.ID fieldValue.ListItemID = uint(valueInt) db.Create(&fieldValue) } } } } if len(errors) == 0 { result := db.Save(&person) if result.Error != nil { return result.Error } c.Redirect(fmt.Sprintf( "/members/%d", person.ID, )) } } return c.Render("person_form", fiber.Map{ "PageTitle": title, "Person": person, "Sections": sections, "Fields": fields, "FieldValues": fieldValues, "Errors": errors, }) } func MemberConvert(c *fiber.Ctx) error { id := c.Params("id") db, err := helpers.GetDatabase() if err != nil { return err } var person models.Person result := db.Find(&person, "id = ?", id) if result.Error != nil { return result.Error } if result.RowsAffected < 1 { return fiber.NewError(fiber.StatusNotFound, "Not found") } userid, err := helpers.GetSessionUserId(c) if err != nil { return err } allow, err := helpers.PermissionsCheckSection( userid, "convert_member_to_contact", person.SectionID, ) if err != nil { return err } if !allow { return fiber.NewError(fiber.StatusForbidden, "Forbidden") } person.IsContact = true person.IsMember = false result = db.Save(&person) if result.Error != nil { return result.Error } return c.Redirect(fmt.Sprintf( "/contacts/%d", person.ID, )) } func MemberArchive(c *fiber.Ctx) error { id := c.Params("id") db, err := helpers.GetDatabase() if err != nil { return err } var person models.Person result := db.Find(&person, "id = ? AND is_member = ? AND deleted_at IS NULL", id, true) if result.Error != nil { return result.Error } if result.RowsAffected < 1 { return fiber.NewError(fiber.StatusNotFound, "Not found") } userid, err := helpers.GetSessionUserId(c) if err != nil { return err } allow, err := helpers.PermissionsCheckSection( userid, "archive_member", person.SectionID, ) if err != nil { return err } if !allow { return fiber.NewError(fiber.StatusForbidden, "Forbidden") } result = db.Delete(&person) if result.Error != nil { return result.Error } return c.Redirect(fmt.Sprintf( "/members/%s", id, )) } func MemberRestore(c *fiber.Ctx) error { id := c.Params("id") db, err := helpers.GetDatabase() if err != nil { return err } var person models.Person result := db.Unscoped().Find( &person, "id = ? AND is_member = ? AND deleted_at IS NOT NULL", id, true, ) if result.Error != nil { return result.Error } if result.RowsAffected < 1 { return fiber.NewError(fiber.StatusNotFound, "Not found") } userid, err := helpers.GetSessionUserId(c) if err != nil { return err } allow, err := helpers.PermissionsCheckSection( userid, "restore_member", person.SectionID, ) if err != nil { return err } if !allow { return fiber.NewError(fiber.StatusForbidden, "Forbidden") } person.DeletedAt.Valid = false result = db.Save(&person) if result.Error != nil { return result.Error } return c.Redirect(fmt.Sprintf( "/members/%s", id, )) } func MemberPurge(c *fiber.Ctx) error { id := c.Params("id") db, err := helpers.GetDatabase() if err != nil { return err } var person models.Person result := db.Unscoped().Find( &person, "id = ? AND is_member = ?", id, true, ) if result.Error != nil { return result.Error } if result.RowsAffected < 1 { return fiber.NewError(fiber.StatusNotFound, "Not found") } userid, err := helpers.GetSessionUserId(c) if err != nil { return err } allow, err := helpers.PermissionsCheckSection( userid, "purge_member", person.SectionID, ) if err != nil { return err } if !allow { return fiber.NewError(fiber.StatusForbidden, "Forbidden") } result = db.Unscoped().Delete( &models.FieldValue{}, "person_id = ?", id, ) if result.Error != nil { return result.Error } result = db.Unscoped().Delete( &models.Person{}, id, ) if result.Error != nil { return result.Error } return c.Redirect("/members") }