feat: add objet field (tfe/thèse/frart) with share-link restriction and site-settings toggles

2026-05-06 11:09:18 +02:00 · 2026-04-22 14:06:05 +02:00
parent dbaabaf8a0
commit d961f9533c
12 changed files with 128 additions and 10 deletions
--- a/app/public/admin/actions/acces-etudiante.php
+++ b/app/public/admin/actions/acces-etudiante.php
@@ -25,13 +25,14 @@ switch ($action) {
        $expiresRaw = !empty($_POST['expires_at']) ? trim($_POST['expires_at']) : null;
        $expiresAt  = null;
        if ($expiresRaw) {
-            // datetime-local gives "YYYY-MM-DDTHH:MM"
            $expiresAt = date('Y-m-d H:i:s', strtotime($expiresRaw));
            if ($expiresAt <= date('Y-m-d H:i:s')) {
                App::redirect('/admin/acces-etudiante.php', error: "La date d'expiration doit être dans le futur.");
            }
        }
-        $shareLink->create(1, $password, $expiresAt);
+        $objetRaw = $_POST['objet_restriction'] ?? '';
+        $objetRestriction = in_array($objetRaw, ['tfe', 'thèse', 'frart'], true) ? $objetRaw : null;
+        $shareLink->create(1, $password, $expiresAt, $objetRestriction);
        App::redirect('/admin/acces-etudiante.php', success: 'Lien d\'accès créé.');
        break;

--- a/app/public/admin/actions/settings.php
+++ b/app/public/admin/actions/settings.php
@@ -17,13 +17,16 @@ $db = new Database();
 $section = $_POST['section'] ?? '';

 if ($section === 'formulaire') {
-    // Save access-type toggle settings
    $allowed = ['access_type_libre_enabled', 'access_type_interne_enabled', 'access_type_interdit_enabled'];
    foreach ($allowed as $key) {
        $value = isset($_POST[$key]) ? '1' : '0';
        $db->setSetting($key, $value);
    }
    App::flash('success', "Paramètres du formulaire mis à jour.");
+} elseif ($section === 'objet_types') {
+    $db->setSetting('objet_these_enabled', isset($_POST['objet_these_enabled']) ? '1' : '0');
+    $db->setSetting('objet_frart_enabled', isset($_POST['objet_frart_enabled']) ? '1' : '0');
+    App::flash('success', "Types de travaux mis à jour.");
 } elseif ($section === 'smtp') {
    $smtpData = [
        'host'       => $_POST['smtp_host'] ?? '',
--- a/app/public/partage/index.php
+++ b/app/public/partage/index.php
@@ -185,6 +185,19 @@ function renderShareLinkForm(string $slug, array $link): void
    $formData      = $_SESSION['form_data_share_' . $slug] ?? [];
    unset($_SESSION['form_data_share_' . $slug]);

+    // Determine allowed objet values for this link
+    $siteSettings = Database::getInstance()->getAllSettings();
+    $objetRestriction = $link['objet_restriction'] ?? null;
+    if ($objetRestriction !== null) {
+        // Link is locked to one type — always show only that
+        $allowedObjet = [$objetRestriction];
+    } else {
+        // Build from enabled site settings
+        $allowedObjet = ['tfe'];
+        if (($siteSettings['objet_these_enabled'] ?? '1') === '1') $allowedObjet[] = 'thèse';
+        if (($siteSettings['objet_frart_enabled']  ?? '1') === '1') $allowedObjet[] = 'frart';
+    }
+
    // Generate a CSRF token specific to this share link (stored in session)
    $shareCsrfKey = 'share_csrf_' . $slug;
    if (empty($_SESSION[$shareCsrfKey])) {
@@ -236,6 +249,23 @@ function renderShareLinkForm(string $slug, array $link): void
                <fieldset>
                    <legend>Informations du TFE</legend>

+                    <?php if (count($allowedObjet) > 1): ?>
+                    <div class="admin-form-group">
+                        <label>Type de travail&nbsp;: <span class="asterisk">*</span></label>
+                        <div class="form-radio-group">
+                        <?php foreach ($allowedObjet as $objetVal): ?>
+                            <label class="admin-checkbox-label">
+                                <input type="radio" name="objet" value="<?= htmlspecialchars($objetVal) ?>"
+                                    <?= (old($formData, 'objet') ?: $allowedObjet[0]) === $objetVal ? 'checked' : '' ?> required>
+                                <?= htmlspecialchars(ucfirst($objetVal)) ?>
+                            </label>
+                        <?php endforeach; ?>
+                        </div>
+                    </div>
+                    <?php else: ?>
+                    <input type="hidden" name="objet" value="<?= htmlspecialchars($allowedObjet[0]) ?>">
+                    <?php endif; ?>
+
                    <?php $name = 'titre'; $label = 'Titre :'; $value = old($formData, 'titre'); $required = true; include APP_ROOT . '/templates/partials/form/text-field.php'; ?>
                    <?php $name = 'subtitle'; $label = 'Sous-titre (si applicable) :'; $value = old($formData, 'subtitle'); $required = false; include APP_ROOT . '/templates/partials/form/text-field.php'; ?>
                    <?php $name = 'auteurice'; $label = 'Auteur·ice(s) :'; $value = old($formData, 'auteurice'); $required = true; $attrs = ['autocomplete' => 'name']; include APP_ROOT . '/templates/partials/form/text-field.php'; ?>