Accueil Explorer Aide
Connexion
d3m3vilurr
/
sonyoss-vita-webkit
Suivre 1
Voter 0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Branche: master
Branches Tags
sonyoss-vita...
/
Websites
/
bugs.webkit.org
/
votes.cgi

votes.cgi 13 KB
Lien permanent Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357 
  1. #!/usr/bin/env perl -wT
    2. 

  2. # -*- Mode: perl; indent-tabs-mode: nil -*-
    3. 

  3. #
    4. 

  4. # The contents of this file are subject to the Mozilla Public
    5. 

  5. # License Version 1.1 (the "License"); you may not use this file
    6. 

  6. # except in compliance with the License. You may obtain a copy of
    7. 

  7. # the License at http://www.mozilla.org/MPL/
    8. 

  8. #
    9. 

  9. # Software distributed under the License is distributed on an "AS
    10. 

  10. # IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or
    11. 

  11. # implied. See the License for the specific language governing
    12. 

  12. # rights and limitations under the License.
    13. 

  13. #
    14. 

  14. # The Original Code is the Bugzilla Bug Tracking System.
    15. 

  15. #
    16. 

  16. # The Initial Developer of the Original Code is Netscape Communications
    17. 

  17. # Corporation. Portions created by Netscape are
    18. 

  18. # Copyright (C) 1998 Netscape Communications Corporation. All
    19. 

  19. # Rights Reserved.
    20. 

  20. #
    21. 

  21. # Contributor(s): Terry Weissman <terry@mozilla.org>
    22. 

  22. #                 Stephan Niemz  <st.n@gmx.net>
    23. 

  23. #                 Christopher Aillon <christopher@aillon.com>
    24. 

  24. #                 Gervase Markham <gerv@gerv.net>
    25. 

  25. #                 Frédéric Buclin <LpSolit@gmail.com>
    26. 

  26. 

  27. use strict;
    28. 

  28. use lib qw(. lib);
    29. 

  29. 

  30. use Bugzilla;
    31. 

  31. use Bugzilla::Constants;
    32. 

  32. use Bugzilla::Util;
    33. 

  33. use Bugzilla::Error;
    34. 

  34. use Bugzilla::Bug;
    35. 

  35. use Bugzilla::User;
    36. 

  36. use Bugzilla::Product;
    37. 

  37. 

  38. use List::Util qw(min);
    39. 

  39. 

  40. my $cgi = Bugzilla->cgi;
    41. 

  41. local our $vars = {};
    42. 

  42. 

  43. # If the action is show_bug, you need a bug_id.
    44. 

  44. # If the action is show_user, you can supply a userid to show the votes for
    45. 

  45. # another user, otherwise you see your own.
    46. 

  46. # If the action is vote, your votes are set to those encoded in the URL as 
    47. 

  47. # <bug_id>=<votes>.
    48. 

  48. #
    49. 

  49. # If no action is defined, we default to show_bug if a bug_id is given,
    50. 

  50. # otherwise to show_user.
    51. 

  51. my $bug_id = $cgi->param('bug_id');
    52. 

  52. my $action = $cgi->param('action') || ($bug_id ? "show_bug" : "show_user");
    53. 

  53. 

  54. if ($action eq "show_bug" ||
    55. 

  55.     ($action eq "show_user" && defined $cgi->param('user')))
    56. 

  56. {
    57. 

  57.     Bugzilla->login();
    58. 

  58. }
    59. 

  59. else {
    60. 

  60.     Bugzilla->login(LOGIN_REQUIRED);
    61. 

  61. }
    62. 

  62. 

  63. ################################################################################
    64. 

  64. # Begin Data/Security Validation
    65. 

  65. ################################################################################
    66. 

  66. 

  67. # Make sure the bug ID is a positive integer representing an existing
    68. 

  68. # bug that the user is authorized to access.
    69. 

  69. 

  70. ValidateBugID($bug_id) if defined $bug_id;
    71. 

  71. 

  72. ################################################################################
    73. 

  73. # End Data/Security Validation
    74. 

  74. ################################################################################
    75. 

  75. 

  76. if ($action eq "show_bug") {
    77. 

  77.     show_bug($bug_id);
    78. 

  78. } 
    79. 

  79. elsif ($action eq "show_user") {
    80. 

  80.     show_user($bug_id);
    81. 

  81. }
    82. 

  82. elsif ($action eq "vote") {
    83. 

  83.     record_votes() if Bugzilla->params->{'usevotes'};
    84. 

  84.     show_user($bug_id);
    85. 

  85. }
    86. 

  86. else {
    87. 

  87.     ThrowCodeError("unknown_action", {action => $action});
    88. 

  88. }
    89. 

  89. 

  90. exit;
    91. 

  91. 

  92. # Display the names of all the people voting for this one bug.
    93. 

  93. sub show_bug {
    94. 

  94.     my ($bug_id) = @_;
    95. 

  95.     my $cgi = Bugzilla->cgi;
    96. 

  96.     my $dbh = Bugzilla->dbh;
    97. 

  97.     my $template = Bugzilla->template;
    98. 

  98. 

  99.     ThrowCodeError("missing_bug_id") unless defined $bug_id;
    100. 

  100. 

  101.     $vars->{'bug_id'} = $bug_id;
    102. 

  102.     $vars->{'users'} =
    103. 

  103.         $dbh->selectall_arrayref('SELECT profiles.login_name, votes.vote_count 
    104. 

  104.                                     FROM votes
    105. 

  105.                               INNER JOIN profiles 
    106. 

  106.                                       ON profiles.userid = votes.who
    107. 

  107.                                    WHERE votes.bug_id = ?',
    108. 

  108.                                   {'Slice' => {}}, $bug_id);
    109. 

  109. 

  110.     print $cgi->header();
    111. 

  111.     $template->process("bug/votes/list-for-bug.html.tmpl", $vars)
    112. 

  112.       || ThrowTemplateError($template->error());
    113. 

  113. }
    114. 

  114. 

  115. # Display all the votes for a particular user. If it's the user
    116. 

  116. # doing the viewing, give them the option to edit them too.
    117. 

  117. sub show_user {
    118. 

  118.     my ($bug_id) = @_;
    119. 

  119.     my $cgi = Bugzilla->cgi;
    120. 

  120.     my $dbh = Bugzilla->dbh;
    121. 

  121.     my $user = Bugzilla->user;
    122. 

  122.     my $template = Bugzilla->template;
    123. 

  123. 

  124.     # If a bug_id is given, and we're editing, we'll add it to the votes list.
    125. 

  125.     $bug_id ||= "";
    126. 

  126. 

  127.     my $name = $cgi->param('user') || $user->login;
    128. 

  128.     my $who = login_to_id($name, THROW_ERROR);
    129. 

  129.     my $userid = $user->id;
    130. 

  130. 

  131.     my $canedit = (Bugzilla->params->{'usevotes'} && $userid == $who) ? 1 : 0;
    132. 

  132. 

  133.     $dbh->bz_start_transaction();
    134. 

  134. 

  135.     if ($canedit && $bug_id) {
    136. 

  136.         # Make sure there is an entry for this bug
    137. 

  137.         # in the vote table, just so that things display right.
    138. 

  138.         my $has_votes = $dbh->selectrow_array('SELECT vote_count FROM votes 
    139. 

  139.                                                WHERE bug_id = ? AND who = ?',
    140. 

  140.                                                undef, ($bug_id, $who));
    141. 

  141.         if (!$has_votes) {
    142. 

  142.             $dbh->do('INSERT INTO votes (who, bug_id, vote_count) 
    143. 

  143.                       VALUES (?, ?, 0)', undef, ($who, $bug_id));
    144. 

  144.         }
    145. 

  145.     }
    146. 

  146. 

  147.     my @all_bug_ids;
    148. 

  148.     my @products;
    149. 

  149.     my $products = $user->get_selectable_products;
    150. 

  150.     # Read the votes data for this user for each product.
    151. 

  151.     foreach my $product (@$products) {
    152. 

  152.         next unless ($product->votes_per_user > 0);
    153. 

  153. 

  154.         my @bugs;
    155. 

  155.         my @bug_ids;
    156. 

  156.         my $total = 0;
    157. 

  157.         my $onevoteonly = 0;
    158. 

  158. 

  159.         my $vote_list =
    160. 

  160.             $dbh->selectall_arrayref('SELECT votes.bug_id, votes.vote_count,
    161. 

  161.                                              bugs.short_desc
    162. 

  162.                                         FROM votes
    163. 

  163.                                   INNER JOIN bugs
    164. 

  164.                                           ON votes.bug_id = bugs.bug_id
    165. 

  165.                                        WHERE votes.who = ?
    166. 

  166.                                          AND bugs.product_id = ?
    167. 

  167.                                     ORDER BY votes.bug_id',
    168. 

  168.                                       undef, ($who, $product->id));
    169. 

  169. 

  170.         foreach (@$vote_list) {
    171. 

  171.             my ($id, $count, $summary) = @$_;
    172. 

  172.             $total += $count;
    173. 

  173. 

  174.             # Next if user can't see this bug. So, the totals will be correct
    175. 

  175.             # and they can see there are votes 'missing', but not on what bug
    176. 

  176.             # they are. This seems a reasonable compromise; the alternative is
    177. 

  177.             # to lie in the totals.
    178. 

  178.             next if !$user->can_see_bug($id);
    179. 

  179. 

  180.             push (@bugs, { id => $id, 
    181. 

  181.                            summary => $summary,
    182. 

  182.                            count => $count });
    183. 

  183.             push (@bug_ids, $id);
    184. 

  184.             push (@all_bug_ids, $id);
    185. 

  185.         }
    186. 

  186. 

  187.         $onevoteonly = 1 if (min($product->votes_per_user,
    188. 

  188.                                  $product->max_votes_per_bug) == 1);
    189. 

  189. 

  190.         # Only add the product for display if there are any bugs in it.
    191. 

  191.         if ($#bugs > -1) {
    192. 

  192.             push (@products, { name => $product->name,
    193. 

  193.                                bugs => \@bugs,
    194. 

  194.                                bug_ids => \@bug_ids,
    195. 

  195.                                onevoteonly => $onevoteonly,
    196. 

  196.                                total => $total,
    197. 

  197.                                maxvotes => $product->votes_per_user,
    198. 

  198.                                maxperbug => $product->max_votes_per_bug });
    199. 

  199.         }
    200. 

  200.     }
    201. 

  201. 

  202.     $dbh->do('DELETE FROM votes WHERE vote_count <= 0');
    203. 

  203.     $dbh->bz_commit_transaction();
    204. 

  204. 

  205.     $vars->{'canedit'} = $canedit;
    206. 

  206.     $vars->{'voting_user'} = { "login" => $name };
    207. 

  207.     $vars->{'products'} = \@products;
    208. 

  208.     $vars->{'bug_id'} = $bug_id;
    209. 

  209.     $vars->{'all_bug_ids'} = \@all_bug_ids;
    210. 

  210. 

  211.     print $cgi->header();
    212. 

  212.     $template->process("bug/votes/list-for-user.html.tmpl", $vars)
    213. 

  213.       || ThrowTemplateError($template->error());
    214. 

  214. }
    215. 

  215. 

  216. # Update the user's votes in the database.
    217. 

  217. sub record_votes {
    218. 

  218.     ############################################################################
    219. 

  219.     # Begin Data/Security Validation
    220. 

  220.     ############################################################################
    221. 

  221. 

  222.     my $cgi = Bugzilla->cgi;
    223. 

  223.     my $dbh = Bugzilla->dbh;
    224. 

  224.     my $template = Bugzilla->template;
    225. 

  225. 

  226.     # Build a list of bug IDs for which votes have been submitted.  Votes
    227. 

  227.     # are submitted in form fields in which the field names are the bug 
    228. 

  228.     # IDs and the field values are the number of votes.
    229. 

  229. 

  230.     my @buglist = grep {/^[1-9][0-9]*$/} $cgi->param();
    231. 

  231. 

  232.     # If no bugs are in the buglist, let's make sure the user gets notified
    233. 

  233.     # that their votes will get nuked if they continue.
    234. 

  234.     if (scalar(@buglist) == 0) {
    235. 

  235.         if (!defined $cgi->param('delete_all_votes')) {
    236. 

  236.             print $cgi->header();
    237. 

  237.             $template->process("bug/votes/delete-all.html.tmpl", $vars)
    238. 

  238.               || ThrowTemplateError($template->error());
    239. 

  239.             exit();
    240. 

  240.         }
    241. 

  241.         elsif ($cgi->param('delete_all_votes') == 0) {
    242. 

  242.             print $cgi->redirect("votes.cgi");
    243. 

  243.             exit();
    244. 

  244.         }
    245. 

  245.     }
    246. 

  246. 

  247.     # Call ValidateBugID on each bug ID to make sure it is a positive
    248. 

  248.     # integer representing an existing bug that the user is authorized 
    249. 

  249.     # to access, and make sure the number of votes submitted is also
    250. 

  250.     # a non-negative integer (a series of digits not preceded by a
    251. 

  251.     # minus sign).
    252. 

  252.     my %votes;
    253. 

  253.     foreach my $id (@buglist) {
    254. 

  254.       ValidateBugID($id);
    255. 

  255.       $votes{$id} = $cgi->param($id);
    256. 

  256.       detaint_natural($votes{$id}) 
    257. 

  257.         || ThrowUserError("votes_must_be_nonnegative");
    258. 

  258.     }
    259. 

  259. 

  260.     ############################################################################
    261. 

  261.     # End Data/Security Validation
    262. 

  262.     ############################################################################
    263. 

  263.     my $who = Bugzilla->user->id;
    264. 

  264. 

  265.     # If the user is voting for bugs, make sure they aren't overstuffing
    266. 

  266.     # the ballot box.
    267. 

  267.     if (scalar(@buglist)) {
    268. 

  268.         my %prodcount;
    269. 

  269.         my %products;
    270. 

  270.         # XXX - We really need a $bug->product() method.
    271. 

  271.         foreach my $bug_id (@buglist) {
    272. 

  272.             my $bug = new Bugzilla::Bug($bug_id);
    273. 

  273.             my $prod = $bug->product;
    274. 

  274.             $products{$prod} ||= new Bugzilla::Product({name => $prod});
    275. 

  275.             $prodcount{$prod} ||= 0;
    276. 

  276.             $prodcount{$prod} += $votes{$bug_id};
    277. 

  277. 

  278.             # Make sure we haven't broken the votes-per-bug limit
    279. 

  279.             ($votes{$bug_id} <= $products{$prod}->max_votes_per_bug)
    280. 

  280.               || ThrowUserError("too_many_votes_for_bug",
    281. 

  281.                                 {max => $products{$prod}->max_votes_per_bug,
    282. 

  282.                                  product => $prod,
    283. 

  283.                                  votes => $votes{$bug_id}});
    284. 

  284.         }
    285. 

  285. 

  286.         # Make sure we haven't broken the votes-per-product limit
    287. 

  287.         foreach my $prod (keys(%prodcount)) {
    288. 

  288.             ($prodcount{$prod} <= $products{$prod}->votes_per_user)
    289. 

  289.               || ThrowUserError("too_many_votes_for_product",
    290. 

  290.                                 {max => $products{$prod}->votes_per_user,
    291. 

  291.                                  product => $prod,
    292. 

  292.                                  votes => $prodcount{$prod}});
    293. 

  293.         }
    294. 

  294.     }
    295. 

  295. 

  296.     # Update the user's votes in the database.  If the user did not submit 
    297. 

  297.     # any votes, they may be using a form with checkboxes to remove all their
    298. 

  298.     # votes (checkboxes are not submitted along with other form data when
    299. 

  299.     # they are not checked, and Bugzilla uses them to represent single votes
    300. 

  300.     # for products that only allow one vote per bug).  In that case, we still
    301. 

  301.     # need to clear the user's votes from the database.
    302. 

  302.     my %affected;
    303. 

  303.     $dbh->bz_start_transaction();
    304. 

  304.     
    305. 

  305.     # Take note of, and delete the user's old votes from the database.
    306. 

  306.     my $bug_list = $dbh->selectcol_arrayref('SELECT bug_id FROM votes
    307. 

  307.                                              WHERE who = ?', undef, $who);
    308. 

  308. 

  309.     foreach my $id (@$bug_list) {
    310. 

  310.         $affected{$id} = 1;
    311. 

  311.     }
    312. 

  312.     $dbh->do('DELETE FROM votes WHERE who = ?', undef, $who);
    313. 

  313. 

  314.     my $sth_insertVotes = $dbh->prepare('INSERT INTO votes (who, bug_id, vote_count)
    315. 

  315.                                          VALUES (?, ?, ?)');
    316. 

  316.     # Insert the new values in their place
    317. 

  317.     foreach my $id (@buglist) {
    318. 

  318.         if ($votes{$id} > 0) {
    319. 

  319.             $sth_insertVotes->execute($who, $id, $votes{$id});
    320. 

  320.         }
    321. 

  321.         $affected{$id} = 1;
    322. 

  322.     }
    323. 

  323. 

  324.     # Update the cached values in the bugs table
    325. 

  325.     print $cgi->header();
    326. 

  326.     my @updated_bugs = ();
    327. 

  327. 

  328.     my $sth_getVotes = $dbh->prepare("SELECT SUM(vote_count) FROM votes
    329. 

  329.                                       WHERE bug_id = ?");
    330. 

  330. 

  331.     my $sth_updateVotes = $dbh->prepare("UPDATE bugs SET votes = ?
    332. 

  332.                                          WHERE bug_id = ?");
    333. 

  333. 

  334.     foreach my $id (keys %affected) {
    335. 

  335.         $sth_getVotes->execute($id);
    336. 

  336.         my $v = $sth_getVotes->fetchrow_array || 0;
    337. 

  337.         $sth_updateVotes->execute($v, $id);
    338. 

  338. 

  339.         my $confirmed = CheckIfVotedConfirmed($id, $who);
    340. 

  340.         push (@updated_bugs, $id) if $confirmed;
    341. 

  341.     }
    342. 

  342.     $dbh->bz_commit_transaction();
    343. 

  343. 

  344.     $vars->{'type'} = "votes";
    345. 

  345.     $vars->{'mailrecipients'} = { 'changer' => Bugzilla->user->login };
    346. 

  346.     $vars->{'title_tag'} = 'change_votes';
    347. 

  347. 

  348.     foreach my $bug_id (@updated_bugs) {
    349. 

  349.         $vars->{'id'} = $bug_id;
    350. 

  350.         $template->process("bug/process/results.html.tmpl", $vars)
    351. 

  351.           || ThrowTemplateError($template->error());
    352. 

  352.         # Set header_done to 1 only after the first bug.
    353. 

  353.         $vars->{'header_done'} = 1;
    354. 

  354.     }
    355. 

  355.     $vars->{'votes_recorded'} = 1;
    356. 

  356. }
    357. 

  357.