'.$current_host.'.'.$current_url.'; this is the Google Redirect URI (which is also displayed below).When you have finished successfully, this page will indicate the authorization was successful.
'; } function gdrsvp_show_settings_text_field($args) { $saved_value = get_option( $args['field_name'], $args['default_value'] ); echo ''; if (!empty($args['description'])) { echo '' . $args['description'] . '
'; } } function gdrsvp_show_settings_label_field($args) { $saved_value = get_option( $args['field_name'], $args['default_value'] ); echo '' . $saved_value . '';
echo '';
if (!empty($args['description'])) {
echo '' . $args['description'] . '
'; } } function gdrsvp_show_settings_radio_field($args) { $saved_value = get_option( $args['field_name'], $args['default_value'] ); if (strcmp($saved_value,"true") == 0) { $true_on = 'checked="checked"'; } else { $false_on = 'checked="checked"'; } echo 'On '; echo 'Off'; } function gdrsvp_show_settings_hotels_field($args) { $saved_value = get_option( $args['field_name'], $args['default_value'] ); echo ' '; echo '' . $args['description'] . '
'; } } function gdrsvp_load_resources() { wp_register_style('gdrsvp.css', plugin_dir_url(__FILE__).'/gdrsvp.css'); wp_enqueue_style('gdrsvp.css'); } function gdrsvp_admin_options() { echo 'Options saved.
'; echo 'Failed to save options.
'; echo 'Please type in the code from your wedding invitation below:
"; $new_outputtext .= ""; return $new_outputtext; } function gdrsvp_my_googledocsrsvp ($text) { //QUIT if the replacement string doesn't exist if (!strstr($text,'gdrsvp-googledocsrsvp')) { return $text; } // Key variables $client_id = get_option('gdrsvp_google_client_id'); $client_secret = get_option('gdrsvp_google_client_secret'); $access_token = get_option('gdrsvp_access_token'); $spreadsheet_name = get_option('gdrsvp_google_spreadsheet_name'); $worksheet_name = get_option('gdrsvp_google_worksheet_name'); $wedding_planner = get_option('gdrsvp_wedding_planner_name'); $wedding_planner_email_address = get_option('gdrsvp_wedding_planner_email_address'); $hotel_reservation_name = get_option('gdrsvp_hotel_reservation_name'); $toggle_hotel = get_option('gdrsvp_toggle_hotel'); $hotelon = !(boolean)strcmp($toggle_hotel,"true"); $num_hotels = get_option('gdrsvp_num_hotels'); $hotel_list = array(); for ($i = 0; $i < $num_hotels; $i+=1) { $hotel_list[$i] = get_option('gdrsvp_hotel'.$i); } //Configuration check if (!$client_id || !$client_secret || !$access_token || !$spreadsheet_name || !$worksheet_name || !$wedding_planner_email_address) { return "This plugin has not been fully configured. Please complete all of the steps described under Settings->Google Docs RSVP."; } $guest_code = $_POST['guest_code'] ? $_POST['guest_code'] : ''; $outputtext = ''; $abort_and_reprint_form = false; // Login // if you have a code and NO answers, pass // if you have a code, but already answered, no pass // if you have bad code, no pass if (isset($_POST['motion'])) { switch ($_POST['motion']) { case ('update'): // (A) Save to the database try { // Prepare access token and retrieve the listFeed for your guestcode gdrsvp_prepare_access_token($client_id, $client_secret, $access_token); $listFeed = gdrsvp_get_listFeed_for_guestcode($access_token, $spreadsheet_name, $worksheet_name, $guest_code); if (is_null($listFeed)) throw new Exception('Worksheet not found, check configuration for worksheet name', 111); // CHECK, did they already fill out the form? $entries = $listFeed->getEntries(); foreach ($entries as $e) { $entry = $e->getValues(); if ($entry['ceremony'] || $entry['banquet']) { $abort_and_reprint_form = true; break; } } if ($abort_and_reprint_form) { break; } $hotel = ''; if (isset($_POST['hotel'])) { $hotel = gdrsvp_clean($_POST['hotel']); } $messagefromguest = ''; if (isset($_POST['messagefromguest'])) { $messagefromguest = gdrsvp_clean($_POST['messagefromguest']); } $ceremony_attendees = array(); $banquet_attendees = array(); $your_hotel = ''; $your_message = ''; if (count($entries) == 0) { $abort_and_reprint_form = true; break; } // Construct for ($i=0; $i < count($entries); $i+=1) { // Grab the data from the http post and construct the array $listEntry = $entries[$i]; $newentry = $listEntry->getValues(); if (isset($_POST['guestname'.$i])) { $newentry["guestname"] = stripslashes($_POST['guestname'.$i]); } if (isset($_POST['ceremony'.$i])) { $newentry["ceremony"] = stripslashes($_POST['ceremony'.$i]); } if (isset($_POST['banquet'.$i])) { $newentry["banquet"] = stripslashes($_POST['banquet'.$i]); } if (isset($_POST['custommessageforguest'.$i])) { $newentry["custommessageforguest"] = stripslashes($_POST['custommessageforguest'.$i]); } // for the hotel information, we'll only add it to the entry if they are attending either the banquet or the ceremony if ($hotelon) { if (strcmp($newentry["ceremony"],"Attending") == 0 || strcmp($newentry["banquet"],"Attending") == 0) { $hotel_index = str_replace("hotel", "", $hotel); $hotel_name = $hotel_list[$hotel_index]; $newentry["hotel"] = $hotel_name; } } // for the comments from the quest, we'll only plug it into the first entry if ($i == 0) { $newentry["messagefromguest"] = stripslashes($messagefromguest); } // guest_code $newentry["code"] = $guest_code; // GO! Update the spreadsheet! // What if it fails? I suppose an exception gets thrown... $listEntry->update($newentry); $checked_entry = $newentry; if ($i == 0) { $your_message = $checked_entry["messagefromguest"]; } if (strcmp($checked_entry["ceremony"],"Attending")==0) { $ceremony_attendees[] = $checked_entry["guestname"]; // Also grab hotel information, yes, this is a bit redundant and will get rewritten a few times $your_hotel = $checked_entry['hotel']; } if (strcmp($checked_entry["banquet"],"Attending")==0) { $banquet_attendees[] = $checked_entry["guestname"]; $your_hotel = $checked_entry['hotel']; } } // (B) Give user confirmation $emailreport = "NEW RSVP! \n"; $outputtext .= ""; $outputtext .= htmlspecialchars(stripslashes($your_message),ENT_QUOTES); $outputtext .= "
Please try again or contact " . $wedding_planner . " at ". $wedding_planner_email_address ." to confirm your response.
"; if ($e->getCode() == 111) { $outputtext .= " Configuration Error: check worksheet name, etc.."; } //$outputtext .= "" . $e->getMessage() . " " . $e->getTraceAsString() . ""; $outputtext = add_guest_code_submission($outputtext); } break; case('edit'): try { // If no code was entered, just abort and break if (strcmp($guest_code,'') == 0) { $abort_and_reprint_form = true; break; } // Prepare access token and retrieve the listFeed for your guestcode gdrsvp_prepare_access_token($client_id, $client_secret, $access_token); $listFeed = gdrsvp_get_listFeed_for_guestcode($access_token, $spreadsheet_name, $worksheet_name, $guest_code); if (is_null($listFeed)) { throw new Exception("listFeed is null", 111); } $already_replied = false; // CHECK, did they already fill out the form? $entries = $listFeed->getEntries(); foreach ($entries as $e) { $entry = $e->getValues(); if ($entry['ceremony'] || $entry['banquet']) { $already_replied = true; break; } } // Careful... entries might be an empty set if (count($entries) > 0 && !$already_replied) { // SUCCESS: We found a party $plural = ''; if (count($entries) != 1) { $plural = "s"; } $outputtext .= "
Thank you for replying online. We look forward to celebrating with you all! Please indicate whether each member of your party will be attending our wedding day events.
We have reserved ".count($entries)." seat".$plural." in your honor.
"; // Initializing the form. And yes, it is one massive form for the whole page. We differentiate among the attendees by adding an index number after each input 'name', e.g. guestname3 $outputtext .= '"; } else { $outputtext .= "If you have already RSVP'd, your code will no longer work. If you would like to change your response, or if you were not able to respond in the first place, please contact " . $wedding_planner . " at ". $wedding_planner_email_address .".
"; $outputtext = add_guest_code_submission($outputtext); } } catch (Exception $e) { $outputtext .= "Please try again or contact " . $wedding_planner . " at ". $wedding_planner_email_address ." to confirm your response.
"; if ($e->getCode() == 111) { $outputtext .= " Configuration Error: check worksheet name, etc.."; } //$outputtext .= "" . $e->getMessage() . " " . $e->getTraceAsString() . ""; $outputtext = add_guest_code_submission($outputtext); } break; } // endswitch on post motion } // endif (isset) else { $outputtext = add_guest_code_submission($outputtext); } // this is covers cases where someone re-posted an update ... it defends against attacks where someone is spamming the update and trying to overwrite entries // TODO This currently covers the case where someone has naively click back and resubmitted a form // TODO I haven't checked whether an attacker can use the feedback to determine which codes are valid. if ($abort_and_reprint_form) { $outputtext .= "
Sorry, our records were not changed.
"; $outputtext = add_guest_code_submission($outputtext); } $text = str_replace('gdrsvp-googledocsrsvp', $outputtext, $text); return $text; } add_action('admin_init', 'gdrsvp_register_settings_fields'); add_action('admin_enqueue_scripts', 'gdrsvp_load_resources'); add_action('admin_menu', 'gdrsvp_modify_menu'); add_action('wp_enqueue_scripts', 'gdrsvp_load_resources'); add_filter('the_content', 'gdrsvp_my_googledocsrsvp'); ?>