-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathindex.php
333 lines (261 loc) · 13.1 KB
/
index.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
<?php
/*
Name: Script de interogare Google spreadsheet privind cotizatiile lunare catre USR S2
Author: [email protected]
GitHub: https://github.com/octavn/cotizatii-usr
*/
// Import PHPMailer classes into the global namespace
// Apparently these must be at the top of your script, not inside a function
// PHPMailer is used for sending emails
use PHPMailer\PHPMailer\PHPMailer;
use PHPMailer\PHPMailer\Exception;
/*
As per https://stackoverflow.com/questions/25523004/fatal-error-curl-reset-undefined-why the workaround below prevents a fatal error I've had when running this on PHP 5.6
PHP Fatal error: Call to undefined function GuzzleHttp\Handler\curl_reset() in /home/addpipe/public_html/usr-s2/vendor/guzzlehttp/guzzle/src/Handler/CurlFactory.php on line 77
*/
if (!function_exists('curl_reset'))
{
function curl_reset(&$ch)
{
$ch = curl_init();
}
}
/*
Helper function to log all requests to HDD in a folder
*/
function log_it($log_msg)
{
$log_folder = "app-logs";
if (!file_exists($log_folder))
{
// create directory/folder
mkdir($log_folder, 0777, true);
}
$log_file_data = $log_folder.'/log_' . date('d-M-Y') . '.log';
// if you don't add `FILE_APPEND`, the file will be erased each time you add a log
file_put_contents($log_file_data, $log_msg . PHP_EOL, FILE_APPEND);
}
if (isset($_GET["email"])){
//when the form get submitted we receive an e-mail through GET (GET also allows us to link directly to this script and execute it)
$email=$_GET["email"];
if (strlen(trim($email))<6){
//email length in bytes is too short
$error="Ați introdus un e-mail prea scurt, încercați din nou.";
//log the attempt
log_it( "User: ".$_SERVER['REMOTE_ADDR'].' - '.date("F j, Y, g:i a")." attempted to request info on ". $email. ": email length in bytes was shorter than 6 bytes");
}else{
if (filter_var($email, FILTER_VALIDATE_EMAIL)) {
//log the attempt
log_it( "User: ".$_SERVER['REMOTE_ADDR'].' - '.date("F j, Y, g:i a")." attempted to request info on ". $email. ": email seems to be valid as per PHP's FILTER_VALIDATE_EMAIL filter");
//Let's get the party started with some Google APIs 1st
require __DIR__ . '/vendor/autoload.php';
$client = new Google_Client();
$client->setApplicationName('Interogare baza de date cu contributii');
$client->setScopes(Google_Service_Sheets::SPREADSHEETS);
$client->setAccessType('offline');
//credentials.json holds the private key needed to authenticate against Google Cloud
//See https://youtu.be/iTZyuszEkxI on how to generate such a .json file for your own project
$client->setAuthConfig(__DIR__.'/credentials.json');
// new service yay
$service = new Google_Service_Sheets($client);
// unique Id of your spreadsheet found in the spreadsheet URL between the /d/ and /edit
$spreadsheetId='1YB6Il-uHUDLA0YOD3hD1_lqVMtjIHfMIzUeP7HHsiF8';
// range of the cells you want to grab, data in sheet starts at pos 4
// A is prenume
// B is nume
// C is email
$range="Cotizatii!A4:C1000";
$response = $service->spreadsheets_values->get($spreadsheetId, $range);
$values = $response->getValues();
if (empty($values)) {
echo 'No data found' . PHP_EOL;
die();
}
//we assume the email is not in the spreadsheet
$emailisindb = false;
//we start searching with the row 4 of the sheet, so we init $position with 3 and increase it in the loop
$position=3;
foreach($values as $row) {
//$row[2] is email
//$row[1] is nume (DE FAMILIE!!!)
//$row[0] is prenume
//increase the position as we enter the for loop
$position++;
//if this is the e-mail we're hunting for
if ($row[2]==$email){
//lower the defenses
$emailisindb=true;
//full name of the user
$full_name = $row[0]. " ".$row[1];
//no point in going through the rest of the data
break;
}
}
if ($emailisindb){
//log the attempt
log_it( "User: ".$_SERVER['REMOTE_ADDR'].' - '.date("F j, Y, g:i a")." attempted to request info on ". $email. ": email has been found in the spreadsheet, attempting to send the data...");
//let's go horizontally and extract all columns related to payments up to and including 2019
$paymentRange="Cotizatii!N".$position.":BC".$position;
if (date("Y")==2020){
//if we're in 2020 we'll extend the row up to column BO
$paymentRange="Cotizatii!N".$position.":BO".$position;
} else if (date("Y")==2021){
//if we're in 2021 we'll extend the row up to column BX
$paymentRange="Cotizatii!N".$position.":BX".$position;
}
$paymentResponse = $service->spreadsheets_values->get($spreadsheetId, $paymentRange);
$paymentColumns = $paymentResponse->getValues();
$rowOfPayments = $paymentColumns[0];
//an array of months, obviously!
$months = array("Ianuarie", "Februarie", "Martie", "Aprilie", "Mai", "Iunie", "Iulie", "August", "Septembrie", "Octombrie","Noiembrie","Decembrie");
//let's begin the email body
$message = "Salut $full_name, \n\niată situația cotizațiilor către USR Sector 2 așa cum apare ea în baza de date a USR S2:\n\n";
//we start with 2016
$year=2016;
//start printing year separators only when we find a cell with contributions, 0 is considered a contribution
$startprinting = false;
//We're going through the list of payments, this relies highly on the sheet not being changed so hold on to something!
for ($x = 0; $x < count($rowOfPayments); $x++) {
//sheet starts with july 2016 so the month position is actually 6 ahead of the $x because july is @ 6 in a 0 index array
$monthindex = $x+6;
if ($rowOfPayments[$x]!=" - " /*&& $rowOfPayments[$x]!=0*/){
//print the situation for the current month
$message .= $months[(($monthindex)%12)]." ".$year.": ".$rowOfPayments[$x]." LEI\n";
$startprinting=true;
}
if (($monthindex+1)%12==0){
//december month, 11 in a 0 index array, add a line and increase the year
$year++;
//we only add the year separator if there's data beforehand and if it's not the last item in the array
if ($startprinting && $x<(count($rowOfPayments)-1)){
$message .= "-----------\n";
}
}
}
//Let's end the email body
$message .= "\nEchipa USR S2\nhttps://sector2.usr.ro";
//let's power up the email sending machine
$mail = new PHPMailer;
//and turn on the character encoding wizardry
$mail->CharSet = 'UTF-8';
$mail->Encoding = 'base64';
/*
//uncomment this block and configure the following to send email with a different SMTP service
$mail->IsSMTP(); // Set mailer to use SMTP
$mail->Host = 'mail.yoursite.com'; // Specify main and backup server
$mail->Port = 465; // Set the SMTP port
$mail->SMTPAuth = true; // Enable SMTP authentication
$mail->Username = 'user'; // SMTP username
$mail->Password = 'parola'; // SMTP password
$mail->SMTPSecure = 'ssl'; // Enable encryption, 'ssl' also accepted
*/
//From email address and name
$mail->From = "[email protected]";
$mail->FromName = "Echipa USR Sector 2";
//Send e-mail as plain text
$mail->isHTML(false);
//Subject of email includes the actual e-mail address to prevent Gmail stacking such emails in development
$mail->Subject = "Situația cotizațiilor către USR Sector 2 pentru membrul cu adresa $email";
//Body of email
$mail->Body = $message;
//To whom to send the email, we could add the name of the user from the sheet here
$mail->addAddress($email, $full_name);
//carbon copy these 2 persons during development
//$mail->addCC('');
//$mail->addCC('');
if(!$mail->send()){
echo "Mailer Error: " . $mail->ErrorInfo;
// a message that is NOT privacy conscious, but only shows up when there's a problem
$error="Din păcate e-mailul nu a putut fi trimis. Detalii eroare: $mail->ErrorInfo;";
//log the attempt
log_it( "User: ".$_SERVER['REMOTE_ADDR'].' - '.date("F j, Y, g:i a")." attempted to request info on ". $email. ": the data could not be emailed because: ".$mail->ErrorInfo);
}else {
//echo "Message has been sent successfully";
// a message that is NOT privacy conscious
//$success="S-a găsit e-mail la USeReu! În scurt timp o să primiți un e-mail pe adresa $email cu detaliile privind cotizația.";
//a privacy conscious message, we're shosing the introduced e-mail address to give the user a chance to view any typos
$success="Dacă adresa dumneavoastră de e-mail (<strong>$email</strong>) e în baza de date, o să primiți un e-mail cu detaliile privind cotizația în câteva minute.";
//log the attempt
log_it( "User: ".$_SERVER['REMOTE_ADDR'].' - '.date("F j, Y, g:i a")." attempted to request info on ". $email. ": the data has now been emailed.");
}
//we now unset the email variable so that the input in the HTML page is cleared to prevent users easily re-submitting the form
unset($email);
}else{
// a message that is NOT privacy conscious
//$error="Acest e-mail nu a fost găsit în baza de date. Vă rugăm verificați e-mailul și încercați din nou.";
//a privacy conscious message, we're shosing the introduced e-mail address to give the user a chance to view any typos
$success="Dacă adresa dumneavoastră de e-mail (<strong>$email</strong>) e în baza de date, o să primiți un e-mail cu detaliile privind cotizația în câteva minute.";
//log the attempt
log_it( "User: ".$_SERVER['REMOTE_ADDR'].' - '.date("F j, Y, g:i a")." attempted to request info on ". $email. ": email was not found in the spreadsheet");
}
}else{
$error="Nu pare să fi introdus un e-mail, încercați din nou.";
//log the attempt
log_it( "User: ".$_SERVER['REMOTE_ADDR'].' - '.date("F j, Y, g:i a")." attempted to request info on ". $email. ": email string did not pass PHP's FILTER_VALIDATE_EMAIL filter");
}
}
}
?>
<!doctype html>
<html lang="en">
<head>
<!-- Required meta tags -->
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
<!-- Bootstrap CSS -->
<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css" integrity="sha384-Gn5384xqQ1aoWXA+058RXPxPg6fy4IWvTNh0E263XmFcJlSAwiGgFAW/dAiS6JXm" crossorigin="anonymous">
<title>USR S2: Verifică situația cotizației</title>
<style type="text/css">
h1, h2, h3 {
color:#ed1c24;
}
input[type="email"] {
border-color: #00a1e4;
}
.btn-outline-primary {
color: #ed1c24;
background-color: transparent;
background-image: none;
border-color: #00a1e4;
}
.btn-outline-primary:hover {
color: #fff;
background-color: #ed1c24;
border-color: #ed1c24;
}
</style>
</head>
<body>
<nav class="navbar navbar-light bg-light">
<a class="navbar-brand" href="https://sector2.usr.ro" title="Către pagina web USR Sector 2">
<img src="logo-usr16-flag_white.png" width="30" height="30" alt="Logo USR">
</a>
</nav>
<div class="row justify-content-center">
<div class="col-11 col-md-11 col-lg-8 mt-4">
<h2>Verifică situația cotizației către USR S2</h2>
<p>Introdu adresa de e-mail mai jos și apasă butonul verifică. Dacă e-mailul există în baza noastră de date cu membrii, pe adresa respectivă va fi trimis un e-mail cu situația privind cotizația.</p>
<?php if (isset($success)){ ?>
<div class="alert alert-success" role="alert"><?=$success?></div>
<?php } ?>
<?php if (isset($error)){ ?>
<div class="alert alert-warning" role="alert"><?=$error?></div>
<?php } ?>
<form method="GET">
<div class="input-group mb-3">
<input type="email" required="required" id="email" name="email" class="form-control" placeholder="Introdu adresa de e-mail" value="<?php if (isset($email)){ echo htmlspecialchars($email, ENT_QUOTES, 'UTF-8');}?>">
<div class="input-group-append">
<button class="btn btn-outline-primary" type="submit">Verifică</button>
</div>
</div>
</form>
</div>
<!--end of col-->
</div>
<!-- Optional JavaScript -->
<!-- jQuery first, then Popper.js, then Bootstrap JS -->
<script src="https://code.jquery.com/jquery-3.2.1.slim.min.js" integrity="sha384-KJ3o2DKtIkvYIK3UENzmM7KCkRr/rE9/Qpg6aAZGJwFDMVNA/GpGFF93hXpG5KkN" crossorigin="anonymous"></script>
<script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js" integrity="sha384-ApNbgh9B+Y1QKtv3Rn7W3mgPxhU9K/ScQsAP7hUibX39j7fakFPskvXusvfa0b4Q" crossorigin="anonymous"></script>
<script src="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js" integrity="sha384-JZR6Spejh4U02d8jOt6vLEHfe/JQGiRRSQQxSfFWpi1MquVdAyjUar5+76PVCmYl" crossorigin="anonymous"></script>
</body>
</html>