dashboard_controller.php

<?php

/*
 All Emoncms code is released under the GNU Affero General Public License.
 See COPYRIGHT.txt and LICENSE.txt.

    ---------------------------------------------------------------------
    Emoncms - open source energy visualisation
    Part of the OpenEnergyMonitor project:
    http://openenergymonitor.org
*/

defined('EMONCMS_EXEC') or die('Restricted access');

function dashboard_controller()
{
    global $mysqli, $session, $user, $route, $path;

    require "Modules/dashboard/dashboard_model.php";
    $dashboard = new Dashboard($mysqli);
    // id, userid, content, height, name, alias, description, main, public, published, showdescription, fullscreen
    
    $js_css_version = 16;

    $result = false; $submenu = '';

    if ($route->format == 'html')
    {
        if ($route->action == "list" && $session['write'])
        {
            load_language_files("Modules/dashboard/locale", "dashboard_messages");
            $result = view("Modules/dashboard/Views/dashboard_list.php", array(
                'js_css_version' => $js_css_version,
                'path' => $path,
                'gridjs' => view('Lib/gridjs/grid.html')
            ));
        }

        else if ($route->action == "view")
        {
            // 4 access modes:
            // - as a session user either login or apikey
            // - with a readkey, does not create a session
            // - via public dashboard username
            // - via dashboard id for public dashboard
            // - via dashboard alias for public dashboard with public feeds
            $result = EMPTY_ROUTE;
            $userid = false;
            $apikey = "";
             
            if (isset($session['read']) && $session['read']) {
                $userid = $session['userid'];
                if (isset($_GET['apikey'])) {
                    $apikey = $user->get_apikey_read($session['userid']);
                }
            } else if (isset($_GET['readkey'])) {
                if ($userid = $user->get_id_from_apikey($_GET['readkey'])) {
                    $apikey = $user->get_apikey_read($userid);
                }
            } else if ($session['public_userid']) {
                $userid = (int) $session['public_userid'];
            }
            
            $dashid = (int) get('id');
            if ($dashid) {
                $dash = $dashboard->get($dashid);
            } else if ($route->subaction && $userid) {
                $dash = $dashboard->get_from_alias($userid,$route->subaction);
            } else if ($userid) {
                $dash = $dashboard->get_main($userid);
            } else if (!$userid and $route->subaction) {
               $dash = $dashboard->get_from_public_alias($route->subaction);
            }
            
            if (isset($dash)) {

                $public_userid = 0;
                if (!$session['read'] && $dash['public']) {
                    $public_userid = $dash['userid'];
                }
                
                if ($dash['public'] || $apikey || ($session['read'] && $session['userid']>0 && $dash['userid']==$session['userid'])) {
                    $result = view("Modules/dashboard/Views/dashboard_view.php",array(
                        'dashboard'=>$dash, 
                        'js_css_version'=>$js_css_version, 
                        'apikey'=>$apikey, 
                        'public_userid'=>$public_userid
                    ));
                }
            }
        }

        else if ($route->action == "edit" && $session['write'])
        {
            if ($route->subaction) $dash = $dashboard->get_from_alias($session['userid'],$route->subaction);
            elseif (isset($_GET['id'])) $dash = $dashboard->get(get('id'));
            $result = view("Modules/dashboard/Views/dashboard_edit_view.php",array('dashboard'=>$dash, 'js_css_version'=>$js_css_version));
            $result .= view("Modules/dashboard/Views/dashboard_config.php", array('dashboard'=>$dash, 'js_css_version'=>$js_css_version));

            $submenu = view("Modules/dashboard/Views/dashboard_menu.php", array('id'=>$dash['id'],'type'=>"edit", 'js_css_version'=>$js_css_version));
        }
    }
    else if ($route->format == 'json')
    {
        if ($session['read']) {
            if ($route->action=='list') $result = $dashboard->get_list($session['userid'], false, false);
        }
        
        if ($session['write']) {
            if ($route->action=='set') $result = $dashboard->set($session['userid'],prop('id'),prop('fields'));
            else if ($route->action=='getcontent') $result = $dashboard->get_content($session['userid'],get('id'));
            else if ($route->action=='setcontent') $result = $dashboard->set_content($session['userid'],post('id'),post('content'),post('height'));
            else if ($route->action=='create') $result = $dashboard->create($session['userid']);
            else if ($route->action=='delete') $result = $dashboard->delete(get('id'));
            else if ($route->action=='clone') $result = $dashboard->dashclone($session['userid'], get('id'));
        }
    }
    return array('content'=>$result, 'submenu'=>$submenu);
}