mirror of
https://codeberg.org/PostERG/xamxam.git
synced 2026-05-06 19:19:19 +02:00
27e1b6828d
Requirements: - parametres.php toggle: 'restricted_files_enabled' enables/disables the feature - Public TFE page: when enabled + access_type=Interne, hides files, shows French restriction message + access request form (metadata/synopsis still visible) - ERG emails (@erg.school / @erg.be): auto-approve, send 24h access link immediately - External emails: show justification textarea, create pending request, notify admin - Admin panel /admin/file-access.php: approve/reject requests with optional notes, sends access email on approval (linked from admin nav with pending count badge) Security: - One-time 24h email tokens (used_at + is_valid=0 on first click) - Token redeemed via POST /validate-access (GET shows confirmation page only) - Long-lived 30-day browser session in file_access_sessions table - Cookie: HttpOnly + Secure + SameSite=Strict - CSRF on all mutations, rate limiting on request submission - Audit trail: IP, UA, event, timestamp in file_access_audit Bug fixes: - admin/file-access.php: $vars never extract()ed → page was blank - Template had self-contained head/footer includes (double-include) - Admin approval URL used $requestId instead of $request['thesis_id'] - App::boot() now starts session so CSRF token works on public pages - Dispatcher routes /validate-access and /request-access through front controller
301 lines
6.0 KiB
CSS
301 lines
6.0 KiB
CSS
/* ============================================================
|
|
TFE INDIVIDUAL PAGE (tfe.php)
|
|
============================================================ */
|
|
|
|
@import url("./variables.css");
|
|
|
|
.tfe-main {
|
|
flex: 1;
|
|
min-height: 0;
|
|
overflow-y: auto;
|
|
padding: var(--space-l) var(--space-m) var(--space-xl);
|
|
}
|
|
|
|
/* Two-column article layout */
|
|
.tfe-layout {
|
|
display: grid;
|
|
grid-template-columns: 1fr 1.4fr;
|
|
gap: var(--space-xl);
|
|
width: 100%;
|
|
max-width: 1200px;
|
|
align-items: start;
|
|
}
|
|
|
|
/* Left column — article header */
|
|
.tfe-left {
|
|
display: flex;
|
|
flex-direction: column;
|
|
gap: var(--space-m);
|
|
}
|
|
|
|
/* Author (p) — above title */
|
|
.tfe-author {
|
|
font-family: var(--font-display);
|
|
font-size: var(--step-1);
|
|
font-weight: 400;
|
|
color: var(--text-primary);
|
|
margin: 0;
|
|
line-height: 1.3;
|
|
}
|
|
|
|
/* Title (h1) — primary heading, very large */
|
|
.tfe-title {
|
|
font-family: var(--font-display);
|
|
font-size: var(--step-3);
|
|
font-weight: 400;
|
|
color: var(--text-primary);
|
|
margin: 0;
|
|
line-height: 1.15;
|
|
letter-spacing: -0.01em;
|
|
}
|
|
|
|
/* Metadata description list — target <dl> directly inside article > header */
|
|
article dl {
|
|
display: flex;
|
|
flex-direction: column;
|
|
gap: var(--space-3xs);
|
|
font-size: var(--step--1);
|
|
line-height: 1.4;
|
|
margin: 0;
|
|
}
|
|
|
|
/* Each dt/dd pair grouped in a <div> inside <dl> */
|
|
article dl > div {
|
|
display: flex;
|
|
gap: var(--space-3xs);
|
|
flex-wrap: wrap;
|
|
}
|
|
|
|
article dl dt {
|
|
color: var(--text-primary);
|
|
font-weight: 400;
|
|
flex-shrink: 0;
|
|
}
|
|
|
|
article dl dd {
|
|
color: var(--text-primary);
|
|
font-weight: 700;
|
|
margin: 0;
|
|
}
|
|
|
|
article dl dd a {
|
|
color: inherit;
|
|
text-decoration: underline;
|
|
text-underline-offset: 2px;
|
|
}
|
|
|
|
/* Note field: align dt/dd to top, value in italics */
|
|
.tfe-meta-note {
|
|
align-items: start;
|
|
}
|
|
|
|
.tfe-note-value {
|
|
font-style: italic;
|
|
}
|
|
|
|
/* Synopsis paragraph */
|
|
.tfe-synopsis-text {
|
|
font-size: var(--step--1);
|
|
line-height: 1.7;
|
|
color: var(--text-primary);
|
|
margin: 0;
|
|
}
|
|
|
|
/* Right column — aside (supplementary media) */
|
|
.tfe-right {
|
|
display: flex;
|
|
flex-direction: column;
|
|
gap: var(--space-m);
|
|
}
|
|
|
|
/* Each file display unit — target <figure> directly inside <aside> */
|
|
aside figure {
|
|
overflow: hidden;
|
|
margin: 0;
|
|
border-radius: 8px;
|
|
}
|
|
|
|
aside figure img {
|
|
width: 100%;
|
|
height: auto;
|
|
display: block;
|
|
border-radius: 8px;
|
|
}
|
|
|
|
aside figure embed,
|
|
aside figure video {
|
|
width: 100%;
|
|
display: block;
|
|
border: none;
|
|
}
|
|
|
|
aside figure video {
|
|
max-height: 500px;
|
|
}
|
|
|
|
aside figure embed {
|
|
height: clamp(300px, 80vh, 700px);
|
|
}
|
|
|
|
/* figcaption under media — target <figcaption> inside <aside> */
|
|
aside figcaption {
|
|
font-size: var(--step--2);
|
|
color: var(--text-secondary);
|
|
margin: var(--space-3xs) 0 0;
|
|
font-style: italic;
|
|
}
|
|
|
|
/* PDF fallback download link */
|
|
.tfe-pdf-fallback {
|
|
font-size: var(--step--1);
|
|
margin: var(--space-3xs) 0 0;
|
|
}
|
|
|
|
.tfe-pdf-fallback a {
|
|
color: var(--text-primary);
|
|
text-decoration: underline;
|
|
text-underline-offset: 2px;
|
|
}
|
|
|
|
/* "Not available" and "no files" notices */
|
|
.tfe-restricted,
|
|
.tfe-no-files {
|
|
font-size: var(--step--1);
|
|
color: var(--text-secondary);
|
|
font-style: italic;
|
|
padding: var(--space-s) 0;
|
|
margin: 0;
|
|
}
|
|
|
|
/* ============================================================
|
|
RESTRICTED ACCESS UI
|
|
============================================================ */
|
|
.tfe-restricted-access {
|
|
background: var(--surface);
|
|
border: 1px solid var(--border);
|
|
border-radius: 8px;
|
|
padding: var(--space-m);
|
|
display: flex;
|
|
flex-direction: column;
|
|
gap: var(--space-m);
|
|
}
|
|
|
|
.tfe-restricted-message {
|
|
font-size: var(--step--1);
|
|
color: var(--text-secondary);
|
|
line-height: 1.6;
|
|
margin: 0;
|
|
}
|
|
|
|
.tfe-restricted-message strong {
|
|
color: var(--text-primary);
|
|
display: block;
|
|
margin-bottom: var(--space-3xs);
|
|
font-size: var(--step-0);
|
|
}
|
|
|
|
.tfe-access-request-form {
|
|
display: flex;
|
|
flex-direction: column;
|
|
gap: var(--space-s);
|
|
}
|
|
|
|
.tfe-access-request-form .form-group {
|
|
display: flex;
|
|
flex-direction: column;
|
|
gap: var(--space-3xs);
|
|
}
|
|
|
|
.tfe-access-request-form label {
|
|
font-size: var(--step--1);
|
|
font-weight: 600;
|
|
color: var(--text-primary);
|
|
}
|
|
|
|
.tfe-access-request-form input[type="email"],
|
|
.tfe-access-request-form textarea {
|
|
font-family: inherit;
|
|
font-size: var(--step--1);
|
|
padding: var(--space-2xs) var(--space-3xs);
|
|
border: 1px solid var(--border);
|
|
border-radius: 4px;
|
|
background: var(--background);
|
|
color: var(--text-primary);
|
|
transition: border-color 0.2s;
|
|
}
|
|
|
|
.tfe-access-request-form input[type="email"]:focus,
|
|
.tfe-access-request-form textarea:focus {
|
|
outline: none;
|
|
border-color: var(--accent);
|
|
}
|
|
|
|
.tfe-access-request-form textarea {
|
|
resize: vertical;
|
|
min-height: 80px;
|
|
}
|
|
|
|
.tfe-btn-request-access {
|
|
font-family: inherit;
|
|
font-size: var(--step--1);
|
|
font-weight: 600;
|
|
padding: var(--space-2xs) var(--space-s);
|
|
background: var(--accent);
|
|
color: white;
|
|
border: none;
|
|
border-radius: 4px;
|
|
cursor: pointer;
|
|
transition: background 0.2s, opacity 0.2s;
|
|
margin-top: var(--space-3xs);
|
|
}
|
|
|
|
.tfe-btn-request-access:hover:not(:disabled) {
|
|
background: var(--accent-dark);
|
|
}
|
|
|
|
.tfe-btn-request-access:disabled {
|
|
opacity: 0.6;
|
|
cursor: not-allowed;
|
|
}
|
|
|
|
.tfe-access-message {
|
|
font-size: var(--step--1);
|
|
padding: var(--space-2xs);
|
|
border-radius: 4px;
|
|
margin-top: var(--space-3xs);
|
|
}
|
|
|
|
.tfe-access-success {
|
|
background: #f0fff4;
|
|
border: 1px solid #48bb78;
|
|
color: #22543d;
|
|
}
|
|
|
|
.tfe-access-error {
|
|
background: #fff5f5;
|
|
border: 1px solid #fc8181;
|
|
color: #742a2a;
|
|
}
|
|
|
|
/* Responsive */
|
|
@media (max-width: 900px) {
|
|
.tfe-layout {
|
|
grid-template-columns: 1fr;
|
|
gap: var(--space-l);
|
|
}
|
|
|
|
.tfe-title {
|
|
font-size: var(--step-2);
|
|
}
|
|
}
|
|
|
|
@media (max-width: 600px) {
|
|
.tfe-main {
|
|
padding: var(--space-m) var(--space-s) var(--space-l);
|
|
}
|
|
|
|
.tfe-title {
|
|
font-size: var(--step-1);
|
|
}
|
|
}
|