mirror of
https://codeberg.org/PostERG/xamxam.git
synced 2026-05-07 11:39:18 +02:00
ca5983075d
- AdminLogger: JSON-lines → /var/log/xamxam.log (prod) / storage/logs/admin.log (dev) + best-effort DB mirror to admin_audit_log table - DB: admin_audit_log table, share_links.is_archived column - ShareLink: archive() replaces delete(), toggleActive() returns new state, listActive()/listArchived() split, validateLink blocks archived slugs - All action handlers wired: publish, unpublish, visibility, delete, csv/db export, tfe add/edit, tags, pages, apropos, form-help, access-request, maintenance, settings (formulaire toggles, objet types, smtp update), smtp-test - acces.php: archive button replaces delete; collapsible archived links section - setup-server.sh: provision /var/log/xamxam.log (www-data:xamxam 640)
71 lines
2.1 KiB
PHP
71 lines
2.1 KiB
PHP
<?php
|
|
require_once __DIR__ . '/../../../bootstrap.php';
|
|
require_once __DIR__ . '/../../../src/AdminAuth.php';
|
|
|
|
AdminAuth::requireLogin();
|
|
|
|
require_once __DIR__ . '/../../../src/Database.php';
|
|
require_once __DIR__ . '/../../../src/AdminLogger.php';
|
|
|
|
if (!isset($_POST['csrf_token'], $_SESSION['csrf_token'])
|
|
|| !hash_equals($_SESSION['csrf_token'], $_POST['csrf_token'])) {
|
|
App::flash('error', 'Erreur de sécurité : token invalide.');
|
|
header('Location: ../index.php');
|
|
exit;
|
|
}
|
|
|
|
$action = $_POST['action'] ?? '';
|
|
$isBulk = !empty($_POST['bulk']);
|
|
|
|
if (!in_array($action, ['publish', 'unpublish'], true)) {
|
|
App::flash('error', 'Action invalide.');
|
|
header('Location: ../index.php');
|
|
exit;
|
|
}
|
|
|
|
$published = ($action === 'publish');
|
|
|
|
try {
|
|
$db = new Database();
|
|
|
|
$logger = AdminLogger::make();
|
|
|
|
if ($isBulk) {
|
|
$ids = array_filter(array_map('intval', $_POST['selected_theses'] ?? []), fn($id) => $id > 0);
|
|
|
|
if (empty($ids)) {
|
|
App::flash('error', 'Aucun TFE sélectionné.');
|
|
header('Location: ../index.php');
|
|
exit;
|
|
}
|
|
|
|
$db->bulkSetPublished($ids, $published);
|
|
$logger->logPublish($published, array_values($ids));
|
|
$count = count($ids);
|
|
App::flash('success', $published
|
|
? "$count TFE(s) publié(s) avec succès."
|
|
: "$count TFE(s) retiré(s) de la publication.");
|
|
|
|
} else {
|
|
$thesisId = filter_var($_POST['thesis_id'] ?? '', FILTER_VALIDATE_INT);
|
|
|
|
if (!$thesisId || $thesisId <= 0) {
|
|
App::flash('error', 'ID invalide.');
|
|
header('Location: ../index.php');
|
|
exit;
|
|
}
|
|
|
|
$db->setPublished($thesisId, $published);
|
|
$logger->logPublish($published, [$thesisId]);
|
|
App::flash('success', $published ? 'TFE publié avec succès.' : 'TFE retiré de la publication.');
|
|
}
|
|
|
|
} catch (Exception $e) {
|
|
error_log('publish.php error: ' . $e->getMessage());
|
|
App::flash('error', 'Erreur lors de la modification : ' . $e->getMessage());
|
|
}
|
|
|
|
$_SESSION['csrf_token'] = bin2hex(random_bytes(32));
|
|
header('Location: ../index.php');
|
|
exit;
|