Ponlork007/ponlork_1st
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
644b624d2d73a9fedae23124224009f6e38ca575
ponlork_1st/data_owner/manage_my_datasources.php
Sok Ponlork 644b624d2d DSP Project first push, date: 29/01/2026
2026-01-29 14:31:48 +07:00

543 lines
29 KiB
PHP
Raw Blame History

<?php
// data_owner/manage_my_datasources.php
session_start();
require_once '../config.php';
require_once '../includes/auth.php';
require_once '../classes/DataSource.php';
// Ensure only Data Owners can access this page
redirect_if_not_role('Data Owner');
$data_source_manager = new DataSource($pdo);
$user_id = $_SESSION['user_id'];
$owner_person_id = $_SESSION['person_id'];
$action = $_GET['action'] ?? 'list';
$ds_id = $_GET['id'] ?? null;
$datasource_data = [];
// Fetch dropdown data
$data_types = $data_source_manager->getAllDataTypes();
$categories = $data_source_manager->getAllCategories();
$primaryRulesMap = [];
foreach ($data_types as $type) {
$typeName = $type['dspstds_name_en'] ?? null;
$rules = $data_source_manager->getPrimaryFileRulesForType($typeName);
$acceptList = [];
foreach ($rules['extensions'] ?? [] as $ext) {
$acceptList[] = '.' . strtolower($ext);
}
$primaryRulesMap[$type['pkdspstds_id']] = [
'accept' => $acceptList,
'description' => $rules['description'] ?? 'CSV, JSON, PDF, XLS, XLSX',
];
}
$defaultPrimaryRules = $data_source_manager->getPrimaryFileRulesForType(null);
$defaultPrimaryAccept = [];
foreach ($defaultPrimaryRules['extensions'] ?? [] as $ext) {
$defaultPrimaryAccept[] = '.' . strtolower($ext);
}
$initialPrimaryDescription = $defaultPrimaryRules['description'] ?? 'CSV, JSON, PDF, XLS, XLSX';
// Handle form submissions
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$title_en = trim($_POST['title_en'] ?? '');
$title_kh = trim($_POST['title_kh'] ?? '');
$description = trim($_POST['description'] ?? '');
$type_id = filter_var($_POST['type_id'] ?? '', FILTER_SANITIZE_NUMBER_INT);
$category_id = filter_var($_POST['category_id'] ?? '', FILTER_SANITIZE_NUMBER_INT);
$public_date = trim($_POST['public_date'] ?? '');
$status = trim($_POST['status'] ?? 'Pending Review');
$selectedDataType = null;
if (!empty($type_id)) {
$selectedDataType = $data_source_manager->getDataTypeById((int)$type_id);
}
$current_files = [
'dspsds_filename' => trim($_POST['current_filename'] ?? ''),
'dspsds_filename1' => trim($_POST['current_filename1'] ?? ''),
'dspsds_filename2' => trim($_POST['current_filename2'] ?? ''),
'dspsds_filename3' => trim($_POST['current_filename3'] ?? ''),
];
$final_files = $current_files;
$file_inputs = [
'dspsds_filename' => 'data_file',
'dspsds_filename1' => 'data_file1',
'dspsds_filename2' => 'data_file2',
'dspsds_filename3' => 'data_file3',
];
$file_labels = [
'dspsds_filename' => 'Primary Data File',
'dspsds_filename1' => 'Questionnaire / Data Dictionary',
'dspsds_filename2' => 'Protocol / User Guide',
'dspsds_filename3' => 'Other Supporting Document',
];
$remove_files = $_POST['remove_files'] ?? [];
if (!is_array($remove_files)) {
$remove_files = [$remove_files];
}
foreach ($file_inputs as $column => $inputName) {
if (!isset($_FILES[$inputName]) || $_FILES[$inputName]['error'] === UPLOAD_ERR_NO_FILE) {
continue;
}
try {
if ($_FILES[$inputName]['error'] !== UPLOAD_ERR_OK) {
throw new Exception('Upload error code: ' . $_FILES[$inputName]['error']);
}
$fileRules = null;
if ($column === 'dspsds_filename') {
$fileRules = $data_source_manager->getPrimaryFileRulesForType($selectedDataType['dspstds_name_en'] ?? null);
}
$uploadedName = $data_source_manager->handleDataSourceFileUpload($_FILES[$inputName], $fileRules);
if ($uploadedName) {
if (!empty($current_files[$column]) && $current_files[$column] !== $uploadedName) {
$oldPath = $data_source_manager->getUploadDir() . $current_files[$column];
if (is_file($oldPath)) {
unlink($oldPath);
}
}
$final_files[$column] = $uploadedName;
}
} catch (Exception $e) {
$friendlyLabel = $file_labels[$column] ?? $inputName;
set_message('File upload failed for ' . htmlspecialchars($friendlyLabel) . ': ' . $e->getMessage(), 'danger');
$final_files[$column] = $current_files[$column];
}
}
foreach ($remove_files as $column) {
if (!array_key_exists($column, $final_files)) {
continue;
}
if (!empty($current_files[$column])) {
$oldPath = $data_source_manager->getUploadDir() . $current_files[$column];
if (is_file($oldPath)) {
unlink($oldPath);
}
}
$final_files[$column] = '';
}
// Basic validation for required fields
if (empty($title_en) || empty($type_id) || empty($category_id)) {
set_message("Title, Data Type, and Category are required.", "danger");
// Redirect to preserve form data or re-display form with errors
// For now, we'll just redirect to list, but a better UX would be to stay on the form
header("Location: manage_my_datasources.php?action=" . ($action === 'add_submit' ? 'add' : 'edit&id=' . $ds_id));
exit();
}
// Determine the public date to pass to the add/update methods
// The DataSource class's add/update methods have logic for this, so we'll pass it as a string or null
$final_public_date = (!empty($public_date) && $status === 'Active') ? $public_date : null;
if ($action === 'add_submit') {
try {
// Corrected call to addDataSource
if ($data_source_manager->addDataSource(
$type_id,
$category_id,
$owner_person_id, // Data owner is the logged-in person
$final_files['dspsds_filename'],
$title_en,
$title_kh,
$description,
$status,
$user_id, // User who registered it (logged-in user)
$final_files['dspsds_filename1'],
$final_files['dspsds_filename2'],
$final_files['dspsds_filename3']
)) {
set_message("Data source added successfully!", "success");
} else {
set_message("Failed to add data source.", "danger");
}
} catch (Exception $e) {
set_message("Error adding data source: " . $e->getMessage(), "danger");
}
} elseif ($action === 'edit_submit' && $ds_id) {
try {
// Corrected call to updateDataSource
if ($data_source_manager->updateDataSource(
$ds_id,
$type_id,
$category_id,
$owner_person_id, // Data owner is the logged-in person
$final_files['dspsds_filename'],
$title_en,
$title_kh,
$description,
$status,
$user_id, // User who modified it (logged-in user)
$final_files['dspsds_filename1'],
$final_files['dspsds_filename2'],
$final_files['dspsds_filename3']
)) {
set_message("Data source updated successfully!", "success");
} else {
set_message("Failed to update data source.", "danger");
}
} catch (Exception $e) {
set_message("Error updating data source: " . $e->getMessage(), "danger");
}
}
// Redirect after POST to prevent form resubmission
header("Location: manage_my_datasources.php");
exit();
}
// Handle GET actions
if ($action === 'edit' && $ds_id) {
$datasource_data = $data_source_manager->getDataSourceById($ds_id);
// Crucial security check: Ensure the logged-in owner actually owns this data source
if (!$datasource_data || $datasource_data['fkisp_id_of'] != $owner_person_id) {
set_message("Data source not found or you don't have permission to edit it.", "danger");
header("Location: manage_my_datasources.php");
exit();
}
} elseif ($action === 'delete' && $ds_id) {
$datasource = $data_source_manager->getDataSourceById($ds_id);
// Crucial security check: Ensure the logged-in owner actually owns this data source
if ($datasource && $datasource['fkisp_id_of'] == $owner_person_id) {
// Delete associated file on the server
$fileColumns = ['dspsds_filename', 'dspsds_filename1', 'dspsds_filename2', 'dspsds_filename3'];
foreach ($fileColumns as $column) {
if (!empty($datasource[$column])) {
$filePath = $data_source_manager->getUploadDir() . $datasource[$column];
if (is_file($filePath)) {
unlink($filePath);
}
}
}
if ($data_source_manager->deleteDataSource($ds_id)) {
set_message("Data source deleted successfully!", "success");
} else {
set_message("Failed to delete data source.", "danger");
}
} else {
set_message("Data source not found or you don't have permission to delete it.", "warning");
}
header("Location: manage_my_datasources.php");
exit();
}
// Fetch data sources for the current owner for display
$my_data_sources = $data_source_manager->getDataSources($owner_person_id);
$uploadsWebPath = '../uploads/datasources/';
?>
<!DOCTYPE html>
<html lang="en">
<!-- Header -->
<?php
// Include header file for admin pages
include_once("../includes/header_owner.php");
?>
<body>
<div class="wrapper">
<!-- Sidebar -->
<?php
// Include header file for admin pages
include_once("../includes/nav_owner.php");
?>
<!-- Page Content -->
<div class="main-content">
<nav class="navbar navbar-expand-lg navbar-light bg-light mb-4 rounded-3">
<div class="container-fluid">
<a class="navbar-brand" href="#"> My Data Sources</a>
<div class="d-flex">
<span class="navbar-text me-3">
Welcome, <?php echo htmlspecialchars($_SESSION['username']); ?>!
</span>
</div>
</div>
</nav>
<div class="d-flex justify-content-between align-items-center mb-4">
<a href="manage_my_datasources.php?action=add" class="btn btn-primary rounded">
<i class="fas fa-plus-circle me-2"></i> Add New Data Source
</a>
</div>
<?php if (isset($_SESSION['message'])): ?>
<div class="alert alert-<?= $_SESSION['message_type'] ?> alert-dismissible fade show rounded" role="alert">
<?= htmlspecialchars($_SESSION['message']) ?>
<button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>
</div>
<?php
unset($_SESSION['message']);
unset($_SESSION['message_type']);
?>
<?php endif; ?>
<?php if ($action === 'add' || $action === 'edit'): ?>
<div class="card shadow-sm rounded mb-4">
<div class="card-header bg-light rounded-top">
<h5 class="mb-0"><?= ($action === 'add' ? 'Add New' : 'Edit') ?> Data Source</h5>
</div>
<div class="card-body">
<form action="manage_my_datasources.php?action=<?= ($action === 'add' ? 'add_submit' : 'edit_submit&id=' . htmlspecialchars($ds_id)) ?>" method="POST" enctype="multipart/form-data">
<input type="hidden" name="current_filename" value="<?= htmlspecialchars($datasource_data['dspsds_filename'] ?? '') ?>">
<input type="hidden" name="current_filename1" value="<?= htmlspecialchars($datasource_data['dspsds_filename1'] ?? '') ?>">
<input type="hidden" name="current_filename2" value="<?= htmlspecialchars($datasource_data['dspsds_filename2'] ?? '') ?>">
<input type="hidden" name="current_filename3" value="<?= htmlspecialchars($datasource_data['dspsds_filename3'] ?? '') ?>">
<div class="mb-3">
<label for="dsTitleEn" class="form-label">Title (English)</label>
<input type="text" class="form-control rounded" id="dsTitleEn" name="title_en" value="<?= htmlspecialchars($datasource_data['dspsds_title_en'] ?? '') ?>" required>
</div>
<!--
<div class="mb-3">
<label for="dsTitleKh" class="form-label">Title (Khmer)</label>
<input type="text" class="form-control rounded" id="dsTitleKh" name="title_kh" value="<?//= htmlspecialchars($datasource_data['dspsds_title_kh'] ?? '') ?>">
</div>
-->
<div class="mb-3">
<label for="dsDescription" class="form-label">Description</label>
<textarea class="form-control rounded" id="dsDescription" name="description" rows="5"><?= htmlspecialchars($datasource_data['dspsds_description'] ?? '') ?></textarea>
</div>
<div class="mb-3">
<label for="dsType" class="form-label">Data Type</label>
<select class="form-select rounded" id="dsType" name="type_id" required>
<option value="">Select Type...</option>
<?php foreach ($data_types as $type): ?>
<option value="<?= htmlspecialchars($type['pkdspstds_id']) ?>"
<?= (isset($datasource_data['fkdspstds_id']) && $datasource_data['fkdspstds_id'] == $type['pkdspstds_id']) ? 'selected' : '' ?>>
<?= htmlspecialchars($type['dspstds_name_en']) ?>
</option>
<?php endforeach; ?>
</select>
</div>
<div class="mb-3">
<label for="dsCategory" class="form-label">Category</label>
<select class="form-select rounded" id="dsCategory" name="category_id" required>
<option value="">Select Category...</option>
<?php foreach ($categories as $category): ?>
<option value="<?= htmlspecialchars($category['pkdspscate_id']) ?>"
<?= (isset($datasource_data['fkdspscate_id']) && $datasource_data['fkdspscate_id'] == $category['pkdspscate_id']) ? 'selected' : '' ?>>
<?= htmlspecialchars($category['dspscate_title_en']) ?>
</option>
<?php endforeach; ?>
</select>
</div>
<?php
$currentTypeForDescription = $datasource_data['fkdspstds_id'] ?? null;
if ($currentTypeForDescription && isset($primaryRulesMap[$currentTypeForDescription])) {
$initialPrimaryDescription = $primaryRulesMap[$currentTypeForDescription]['description'] ?? $initialPrimaryDescription;
}
$fileInputsConfig = [
[
'label' => 'Primary Data File',
'id' => 'dsDataFile',
'name' => 'data_file',
'column' => 'dspsds_filename',
'help' => 'Upload a file that matches the selected data type.',
],
[
'label' => 'Questionnaire / Data Dictionary',
'id' => 'dsDataFile1',
'name' => 'data_file1',
'column' => 'dspsds_filename1',
'help' => 'Upload a supporting document (PDF, XLSX, etc.)',
],
[
'label' => 'Protocol / User Guide',
'id' => 'dsDataFile2',
'name' => 'data_file2',
'column' => 'dspsds_filename2',
'help' => 'Upload a protocol or user guide (PDF, DOCX, etc.)',
],
[
'label' => 'Other Supporting Document',
'id' => 'dsDataFile3',
'name' => 'data_file3',
'column' => 'dspsds_filename3',
'help' => 'Optional additional document.',
],
];
?>
<?php foreach ($fileInputsConfig as $config): ?>
<?php $existingFile = $datasource_data[$config['column']] ?? ''; ?>
<div class="mb-3">
<label for="<?= htmlspecialchars($config['id']) ?>" class="form-label"><?= htmlspecialchars($config['label']) ?></label>
<input type="file" class="form-control rounded" id="<?= htmlspecialchars($config['id']) ?>" name="<?= htmlspecialchars($config['name']) ?>">
<?php if ($config['column'] === 'dspsds_filename'): ?>
<small class="form-text text-muted">
Allowed formats: <span id="primaryFileFormats"><?= htmlspecialchars($initialPrimaryDescription) ?></span>
</small>
<?php endif; ?>
<?php if (!empty($existingFile)): ?>
<?php
$isUrl = preg_match('/^https?:\/\//i', $existingFile) === 1;
$linkTarget = $isUrl ? $existingFile : $uploadsWebPath . rawurlencode($existingFile);
$linkLabel = $isUrl ? 'View Link' : 'Download File';
?>
<small class="form-text text-muted mt-2">
Current file: <a href="<?= htmlspecialchars($linkTarget) ?>" target="_blank" rel="noopener"><?= htmlspecialchars($linkLabel) ?></a>
</small>
<div class="form-check mt-2">
<input class="form-check-input" type="checkbox" id="remove_<?= htmlspecialchars($config['id']) ?>" name="remove_files[]" value="<?= htmlspecialchars($config['column']) ?>">
<label class="form-check-label" for="remove_<?= htmlspecialchars($config['id']) ?>">Remove existing file</label>
</div>
<?php endif; ?>
<?php if (!empty($config['help'])): ?>
<small class="form-text text-muted"><?= htmlspecialchars($config['help']) ?></small>
<?php endif; ?>
</div>
<?php endforeach; ?>
<div class="mb-3">
<label for="dsPublicDate" class="form-label">Public Date (Optional)</label>
<input type="date" class="form-control rounded" id="dsPublicDate" name="public_date" value="<?= htmlspecialchars($datasource_data['dspsds_public_date'] ?? '') ?>">
</div>
<div class="mb-3">
<label for="dsStatus" class="form-label">Status</label>
<select class="form-select rounded" id="dsStatus" name="status" required>
<option value="Pending Review" <?= (isset($datasource_data['dspsds_status']) && $datasource_data['dspsds_status'] == 'Pending Review') ? 'selected' : '' ?>>Pending Review</option>
<option value="Active" <?= (isset($datasource_data['dspsds_status']) && $datasource_data['dspsds_status'] == 'Active') ? 'selected' : '' ?>>Active</option>
<option value="Inactive" <?= (isset($datasource_data['dspsds_status']) && $datasource_data['dspsds_status'] == 'Inactive') ? 'selected' : '' ?>>Inactive</option>
</select>
</div>
<div class="d-flex justify-content-end gap-2">
<a href="manage_my_datasources.php" class="btn btn-secondary rounded">Cancel</a>
<button type="submit" class="btn btn-primary rounded"><?= ($action === 'add' ? 'Add' : 'Update') ?> Data Source</button>
</div>
</form>
</div>
</div>
<?php endif; ?>
<div class="card shadow-sm rounded">
<div class="card-header bg-light rounded-top">
<h5 class="mb-0">My Data Sources</h5>
</div>
<div class="card-body">
<?php if (!empty($my_data_sources)): ?>
<div class="table-responsive">
<table class="table table-hover table-striped">
<thead>
<tr>
<th>ID</th>
<th>Title (EN)</th>
<th>Type</th>
<th>Category</th>
<th>Status</th>
<th>Data Source</th>
<th>Questionnaire</th>
<th>User Guide</th>
<th>Supporting Doc</th>
<th>Registered Date</th>
<th>Actions</th>
</tr>
</thead>
<tbody>
<?php foreach ($my_data_sources as $ds): ?>
<tr>
<td><?= htmlspecialchars($ds['pkdspsds_id']) ?></td>
<td><?= htmlspecialchars($ds['dspsds_title_en']) ?></td>
<td><?= htmlspecialchars($ds['data_type_name']) ?></td> <!-- Corrected key -->
<td><?= htmlspecialchars($ds['category_name']) ?></td> <!-- Corrected key -->
<td>
<span class="badge <?= ($ds['dspsds_status'] == 'Active' ? 'bg-success' : ($ds['dspsds_status'] == 'Pending Review' ? 'bg-warning' : 'bg-secondary')) ?>">
<?= htmlspecialchars($ds['dspsds_status']) ?>
</span>
</td>
<?php
$primaryFile = $ds['dspsds_filename'] ?? '';
echo '<td>';
if (!empty($primaryFile)) {
$isUrlPrimary = preg_match('/^https?:\/\//i', $primaryFile) === 1;
$primaryTarget = $isUrlPrimary ? $primaryFile : $uploadsWebPath . rawurlencode($primaryFile);
$primaryTitle = $isUrlPrimary ? 'External link' : 'Download Data Source';
echo '<a class="btn btn-sm btn-outline-primary rounded-pill" href="' . htmlspecialchars($primaryTarget) . '" target="_blank" rel="noopener" title="' . htmlspecialchars($primaryTitle) . '"><i class="fas fa-database"></i></a>';
} else {
echo '<span class="text-muted">—</span>';
}
echo '</td>';
?>
<?php
$fileCells = [
'dspsds_filename1' => 'Questionnaire / Data Dictionary',
'dspsds_filename2' => 'Protocol / User Guide',
'dspsds_filename3' => 'Other Supporting Document',
];
foreach ($fileCells as $column => $label) {
$fileName = $ds[$column] ?? '';
echo '<td>';
if (!empty($fileName)) {
$isUrl = preg_match('/^https?:\/\//i', $fileName) === 1;
$linkTarget = $isUrl ? $fileName : $uploadsWebPath . rawurlencode($fileName);
$titleAttr = $isUrl ? 'External link' : 'Download ' . $label;
echo '<a class="btn btn-sm btn-outline-primary rounded-pill" href="' . htmlspecialchars($linkTarget) . '" target="_blank" rel="noopener" title="' . htmlspecialchars($titleAttr) . '"><i class="fas fa-paperclip"></i></a>';
} else {
echo '<span class="text-muted">—</span>';
}
echo '</td>';
}
?>
<td><?= date('Y-m-d H:i', strtotime($ds['dspsds_reg_datetime'])) ?></td>
<td>
<a href="manage_my_datasources.php?action=edit&id=<?= htmlspecialchars($ds['pkdspsds_id']) ?>" class="btn btn-sm btn-info rounded me-1" title="Edit"><i class="fas fa-edit"></i></a>
<a href="manage_my_datasources.php?action=delete&id=<?= htmlspecialchars($ds['pkdspsds_id']) ?>" class="btn btn-sm btn-danger rounded" title="Delete" onclick="return confirm('Are you sure you want to delete this data source? This will also delete related permissions and usage logs.');"><i class="fas fa-trash-alt"></i></a>
</td>
</tr>
<?php endforeach; ?>
</tbody>
</table>
</div>
<?php else: ?>
<div class="alert alert-info rounded mb-0">You have not added any data sources yet.</div>
<?php endif; ?>
</div>
</div>
</div>
</div>
<!-- Footer -->
<?php
// Include Footer file for owner pages
include_once("../includes/footer_owner.php");
?>
<script>
document.addEventListener('DOMContentLoaded', function () {
var typeSelect = document.getElementById('dsType');
var fileInput = document.getElementById('dsDataFile');
var formatsLabel = document.getElementById('primaryFileFormats');
var primaryRules = <?php echo json_encode($primaryRulesMap, JSON_UNESCAPED_SLASHES | JSON_UNESCAPED_UNICODE); ?>;
var defaultRule = <?php echo json_encode([
'accept' => $defaultPrimaryAccept,
'description' => $defaultPrimaryRules['description'] ?? 'CSV, JSON, PDF, XLS, XLSX',
], JSON_UNESCAPED_SLASHES | JSON_UNESCAPED_UNICODE); ?>;
function applyPrimaryFileRules() {
if (!fileInput) {
return;
}
var selected = typeSelect ? typeSelect.value : null;
var rule = (selected && primaryRules[selected]) ? primaryRules[selected] : defaultRule;
if (rule && Array.isArray(rule.accept) && rule.accept.length > 0) {
fileInput.setAttribute('accept', rule.accept.join(','));
} else {
fileInput.removeAttribute('accept');
}
if (formatsLabel && rule && rule.description) {
formatsLabel.textContent = rule.description;
}
}
applyPrimaryFileRules();
if (typeSelect) {
typeSelect.addEventListener('change', applyPrimaryFileRules);
}
});
</script>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink