Allow user to change type and end date for a given experience.

processes/updateExperience.php

@@ -10,7 +10,15 @@
 		
 
 		$id = mysqli_real_escape_string($connection, trim($_POST['id']));
+		$newTitle = mysqli_real_escape_string($connection, trim($_POST['newTitle']));
+		$newDescription = mysqli_real_escape_string($connection, trim($_POST['newDescription']));
+		$newType = mysqli_real_escape_string($connection, trim($_POST['newType']));
+		$newStart = mysqli_real_escape_string($connection, trim($_POST['newStart']));
+		$newEnd = mysqli_real_escape_string($connection, trim($_POST['newEnd']));
 		
+		
+		
+		// INSPECT EXPERIENCE ID
 		// Check that experience ID is not empty string
 		// And that it's registered in the database
 		if($id === "") {
@@ -22,84 +30,137 @@
 			echo json_encode(array("error" => "Given experience ID ($id) not in database."));
 			exit();
 		}
+		
+		
+		
+		// INSPECT TITLE
+		// Check that experience title is not empty
+		// And that it's less than 60 characters in length (database limit)
+		if($newTitle === "") {
+			http_response_code(400);
+			echo json_encode(array("error" => "Please specify title."));
+			exit();
+		} else if(mb_strlen($newTitle) > 60) {
+			http_response_code(400);
+			echo json_encode(array("error" => "Title too long (max. is 60 characters)."));
+			exit();
+		}
+            
 
-				
-		// UPDATE TITLE
-		if(isset($_POST['newTitle'])) {
 		
-			$newTitle = mysqli_real_escape_string($connection, trim($_POST['newTitle']));
-			
-			// Check that experience title is not empty
-			// And that it's less than 60 characters in length (database limit)
-			if($newTitle === "") {
-				http_response_code(400);
-				echo json_encode(array("error" => "Please specify title."));
-				exit();
-			} else if(mb_strlen($newTitle) > 60) {
-				http_response_code(400);
-				echo json_encode(array("error" => "Title too long (max. is 60 characters)."));
-				exit();
-			}
+		// INSPECT DESCRIPTION
+		// Check that experience title is not empty
+		// And that it's less than 60 characters in length (database limit)
+		if($newDescription === "") {
+			http_response_code(400);
+			echo json_encode(array("error" => "Please specify description."));
+			exit();
+		} else if(mb_strlen($newDescription) > 100) {
+			http_response_code(400);
+			echo json_encode(array("error" => "Description too long (max. is 100 characters)."));
+			exit();
+		}
 			
-			$query = "UPDATE `experience` SET `title` = '$newTitle' WHERE `id` = '$id';";
-			$result = mysqli_query($connection, $query) or die("Error: ".mysqli_error($connection));
+
             
+
+		
+		// INSPECT TYPE
+		// Check that experience type is not empty
+		// And that it's either Test, CBRE or URE
+		if($newType === "") {
+			http_response_code(400);
+			echo json_encode(array("error" => "Please specify type."));
+			exit();
+		} else if($newType !== 'Course-Based Research Experience' AND $newType !== 'Undergraduate Research Experience' AND $newType !== 'Test') {
+			http_response_code(400);
+			echo json_encode(array("error" => "Invalid type ($newType)."));
+			exit();
 		}
 		
-		// UPDATE DESCRIPTION
-		if(isset($_POST['newDescription'])) {
 		
-			$newDescription = mysqli_real_escape_string($connection, trim($_POST['newDescription']));
-			
-			// Check that experience title is not empty
-			// And that it's less than 60 characters in length (database limit)
-			if($newDescription === "") {
-				http_response_code(400);
-				echo json_encode(array("error" => "Please specify description."));
-				exit();
-			} else if(mb_strlen($newDescription) > 100) {
-				http_response_code(400);
-				echo json_encode(array("error" => "Description too long (max. is 100 characters)."));
-				exit();
-			}
-			
-			$query = "UPDATE `experience` SET `description` = '$newDescription' WHERE `id` = '$id';";
-			$result = mysqli_query($connection, $query) or die("Error: ".mysqli_error($connection));
-            
-		}
 		
 		
 		
 		
-		/*** REMEMBER TO VALIDATE INPUT IF THE CODE BELOW IS TO BE USED ***/
+		function validDate($date) {
+			$d = date_create_from_format("Y-m-d", $date);
+			return $d && date_format($d, "Y-m-d") === $date;
+		}
 		
-		// UPDATE TYPE
-// 		if(isset($_POST['newType']) AND $_POST['newType'] != " ") {
-// 			$newType = mysqli_real_escape_string($connection, trim($_POST['newType']));
-// 			$query = "UPDATE `experience` SET `type` = '$newType' WHERE `id` = '$id';";
-// 			$result = mysqli_query($connection, $query) or die("Error: ".mysqli_error($connection)); 
-// 		}
 		
-		// UPDATE DURATION
-// 		if(isset($_POST['newDuration'])) {
-// 			$newDuration = mysqli_real_escape_string($connection, trim($_POST['newDuration']));
-// 			$query = "UPDATE `experience` SET `duration_weeks` = '$newDuration' WHERE `id` = '$id';";
-// 			$result = mysqli_query($connection, $query) or die("Error: ".mysqli_error($connection));  
+		
+		
+		// INSPECT START DATE
+		// Check that startDate is not an empty string
+		// And that startDate is in appropriate format YYYY-MM-DD (e.g. 2222-02-22)
+		// WARNING: only handling AST
+		// HELP: https://www.codexworld.com/how-to/validate-date-input-string-in-php/
+// 		if($newStart === "") {
+// 			http_response_code(400);
+// 			echo json_encode(array("error" => "Please specify experience's start date."));
+// 			exit();
+// 		} else if(!validDate($newStart)) {
+// 			http_response_code(400);
+// 			echo json_encode(array("error" => "Experience's start date ($newStart) given in wrong format (use YYYY-MM-DD instead)."));
+// 			exit();
 // 		}
+
+
+		// INSPECT END DATE
+		// Check that endDate is not an empty string
+		// And that endDate is in appropriate format YYYY-MM-DD (e.g. 2222-02-22)
+		// WARNING: only handling AST
+		// HELP: https://www.codexworld.com/how-to/validate-date-input-string-in-php/
+		if($newEnd === "") {
+			http_response_code(400);
+			echo json_encode(array("error" => "Please specify experience's end date."));
+			exit();
+		} else if(!validDate($newEnd)) {
+			http_response_code(400);
+			echo json_encode(array("error" => "Experience's end date ($newEnd) given in wrong format (use YYYY-MM-DD instead)."));
+			exit();
+		}
+		
+		
+		// Calculate duration in seconds
+		$duration_seconds = strtotime($newEnd) - strtotime($newStart);
+		
+		
+		// Check that endDate occurs after the startDate
+		if($duration_seconds <= 0) {
+			http_response_code(400);
+			echo json_encode(array("error" => "Experience's end date ($newEnd) must occur at least a day after the start date ($newStart)."));
+			exit();
+		}
+		
+		
+		// Change seconds to weeks and round up
+		$duration_weeks = round($duration_seconds / 604800); // 60 * 60 * 24 * 7
+		
+		
+		
+		// UPDATE TITLE, DESCRIPTION, TYPE, END DATE & DURATION
+		$newDuration = mysqli_real_escape_string($connection, trim($duration_weeks));
+		$query = "UPDATE `experience`
+				  SET `title` = '$newTitle',
+				  	  `description` = '$newDescription',
+				  	  `type` = '$newType',
+				  	  `end_date` = '$newEnd',
+				  	  `duration_weeks` = '$newDuration'
+				  WHERE `id` = '$id';";
+		$result = mysqli_query($connection, $query) or die("Error: ".mysqli_error($connection));
+		
+		
+		
+		
 		
 		// UPDATE START DATE
-// 		if(isset($_POST['newStart'])) {
-// 			$newStart = mysqli_real_escape_string($connection, trim($_POST['newStart']));
-// 			$query = "UPDATE `experience` SET `start_date` = '$newStart' WHERE `id` = '$id';";
-// 			$result = mysqli_query($connection, $query) or die("Error: ".mysqli_error($connection));
-// 		}
+// 		$query = "UPDATE `experience` SET `start_date` = '$newStart' WHERE `id` = '$id';";
+// 		$result = mysqli_query($connection, $query) or die("Error: ".mysqli_error($connection));
+
+		
 		
-		// UPDATE END DATE
-// 		if(isset($_POST['newEnd'])) {
-// 			$newEnd = mysqli_real_escape_string($connection, trim($_POST['newEnd']));
-// 			$query = "UPDATE `experience` SET `end_date` = '$newEnd' WHERE `id` = '$id';";
-// 			$result = mysqli_query($connection, $query) or die("Error: ".mysqli_error($connection));
-// 		}
 		
 		
 		

viewExperience.php

@@ -469,7 +469,7 @@
 		<!-- POPUP FOR EDIT EXPERIENCE -->
 <form id="editForm"><!--method='POST' action='processes/updateExperience.php'-->
 		<div class="modal fade" id="Edit" tabindex="-1" role="dialog" aria-labelledby="EditLabel" aria-hidden="true">
-			<div class="modal-dialog" role="document">
+			<div class="modal-dialog modal-lg" role="document">
  				<div class="modal-content">
  				
  					<div class="modal-body">
@@ -508,15 +508,21 @@
 								</div>
 							</div>
 							
-<!--
-							<!~~ NEW TYPE ~~>
-							<div class='form-group'>
-								<label class='control-label col-sm-2 col-sm-offset-1'>Type:</label>
-								<div class='col-sm-7'>
-									<input type='text' class='form-control text-center' name='newType' required value="<?php echo $row1['type']; ?>">
+							<!-- NEW TYPE -->
+							<div class="form-group">
+								<label class="control-label col-sm-2 col-sm-offset-1">Type:</label>
+								<div class="col-sm-7">
+									<select class="form-control text-center" style="text-align-last: center;" name="newType" required>
+										<option <?php echo ($row1['type'] === 'Course-Based Research Experience' ? 'selected' : ''); ?> value="Course-Based Research Experience">Course-Based Research Experience</option>
+										<option <?php echo ($row1['type'] === 'Undergraduate Research Experience' ? 'selected' : ''); ?> value="Undergraduate Research Experience">Undergraduate Research Experience</option>
+										<?php if($_SESSION['dbUserData']['admin'] === '1'): ?>
+											<option selected value="Test">Test</option>
+										<?php endif; ?>
+									</select>
 								</div>
 							</div>
 
+<!-- 
 							<!~~ NEW DURATION ~~>
 							<div class='form-group'>
 								<label class='control-label col-sm-2 col-sm-offset-1'>Duration:</label>
@@ -524,23 +530,27 @@
 									<input type='number' class='form-control text-center' name='newDuration' required value="<?php echo $row1['duration_weeks']; ?>" readonly>
 								</div>
 							</div>
-				
-							<!~~ NEW START DATE ~~>
+ -->
+
+
+							<!-- NEW START DATE -->
 							<div class='form-group'>
 								<label class='control-label col-sm-2 col-sm-offset-1'>Start Date:</label>
 								<div class='col-sm-7'>
-									<input type='date' class='form-control text-center' name='newStart' required value="<?php echo $row1['start_date']; ?>">
+									<input disabled type='date' class='form-control text-center' name='newStart' required value="<?php echo $row1['start_date']; ?>">
 								</div>
 							</div>
 
-							<!~~ NEW END DATE ~~>
+							<!-- NEW END DATE -->
 							<div class='form-group'>
 								<label class='control-label col-sm-2 col-sm-offset-1'>End Date:</label>
 								<div class='col-sm-7'>
 									<input type='date' class='form-control text-center' name='newEnd' required value="<?php echo $row1['end_date']; ?>">
 								</div>
 							</div>
--->
+
+
+
 
 						</div><!--form-horizontal-->
 
@@ -562,7 +572,7 @@
       				<!-- SUBMIT OR CANCEL -->
      				<div class="modal-footer">
        					<button type="button" class="btn btn-default" data-dismiss="modal">Cancel</button>
-        				<button type="submit" class="btn btn-primary" name="updateExperience" disabled>Save Changes</button>
+        				<button type="submit" class="btn btn-primary" name="updateExperience">Save Changes</button>
       				</div>
       				
     			</div><!--modal-content-->
@@ -590,7 +600,7 @@
 		// 2) and both strings (title and description) are not empty
 		function validateEditExperience() {
 			let updateExperience = document.querySelector('[name=updateExperience]');
-			updateExperience.disabled = !newTitle.checkValidity() || !newDescription.checkValidity();
+// 			updateExperience.disabled = !newTitle.checkValidity() || !newDescription.checkValidity();
 		}
 		
 		</script>
@@ -1523,6 +1533,14 @@ var calendar = new FullCalendar.Calendar(calendarElement, {
 			alert('An error occurred! Resetting calendar...');
 			eventDropInfo.revert();
 		});
+	},
+	eventClick: function(info) {
+		const eventObj = info.event;
+		
+		// If clicked event is a milstone, change view to "milestones" tab
+		if(eventObj.id.includes('milestone')) {
+			document.location.hash = '#milestones';
+		}
 	}
 });
 calendar.render();