Commit | Line | Data |
---|---|---|
5623205d PM |
1 | <?PHP |
2 | include_once('../slack.php'); | |
3 | include_once('security.php'); | |
c7d45ac6 | 4 | include_once('/var/www/secure.php'); //outside webserver |
6c9432fc | 5 | include_once('functions.php'); |
5623205d PM |
6 | if ($_COOKIE['level'] == 'user'){ |
7 | slack_general('ADMIN: Redirect User Home ('.$_COOKIE['name'].') ('.$_COOKIE['level'].')','md-petition'); | |
8 | header('Location: user_home.php'); | |
9 | } | |
10 | if ($_COOKIE['level'] == 'manager'){ | |
11 | slack_general('ADMIN: Redirect Manager Home ('.$_COOKIE['name'].') ('.$_COOKIE['level'].')','md-petition'); | |
12 | header('Location: manager_home.php'); | |
13 | } | |
73a94d3f | 14 | if (isset($_GET['flag_invalid_signature'])){ |
68e387b9 | 15 | $id = $_GET['flag_invalid_signature']; |
73a94d3f | 16 | $petition->query("update signatures set signature_status = 'flag_invalid_signature' where id = '$id' "); |
c7d45ac6 | 17 | header('Location: abuse.php'); |
73a94d3f | 18 | } |
68e387b9 PM |
19 | if (isset($_GET['flag_duplicate'])){ |
20 | $id = $_GET['flag_duplicate']; | |
21 | $petition->query("update signatures set signature_status = 'flag_duplicate' where id = '$id' "); | |
c7d45ac6 | 22 | header('Location: abuse.php'); |
68e387b9 PM |
23 | } |
24 | if (isset($_GET['flag_ip_address'])){ | |
25 | $ip = $_GET['flag_ip_address']; | |
26 | $petition->query("update signatures set signature_status = 'flag_ip_address' where ip_address = '$ip' "); | |
c7d45ac6 | 27 | header('Location: abuse.php'); |
68e387b9 | 28 | } |
dcc3fc26 PM |
29 | if (isset($_GET['resign_requested'])){ |
30 | $id = $_GET['resign_requested']; | |
31 | $petition->query("update signatures set signature_status = 'resign_requested' where id = '$id' "); | |
32 | header('Location: abuse.php'); | |
33 | } | |
3f8c226b PM |
34 | if (isset($_GET['bot'])){ |
35 | $id = $_GET['bot']; | |
36 | $petition->query("update signatures set signature_status = 'bot' where id = '$id' "); | |
37 | header('Location: abuse.php'); | |
38 | } | |
68e387b9 PM |
39 | if (isset($_GET['flag_VTRID'])){ |
40 | $VTRID = $_GET['flag_VTRID']; | |
41 | $petition->query("update signatures set signature_status = 'flag_VTRID' where VTRID = '$VTRID' "); | |
c7d45ac6 | 42 | header('Location: abuse.php'); |
68e387b9 | 43 | } |
587d1da3 PM |
44 | if (isset($_GET['flag_phone'])){ |
45 | $flag_phone = $_GET['flag_phone']; | |
46 | $petition->query("update signatures set signature_status = 'flag_phone' where contact_phone = '$flag_phone' "); | |
47 | header('Location: abuse.php'); | |
48 | } | |
c7d45ac6 | 49 | include_once('header.php'); |
f49d1b19 PM |
50 | if (isset($_GET['ip_address'])){ |
51 | $ip = $_GET['ip_address']; | |
68e387b9 | 52 | echo "<h1>Review $ip</h1><table width='100%' border='1' cellpadding='5' cellspacing='5'>"; |
6c50c9f6 | 53 | $q = "SELECT * FROM signatures where ip_address = '$ip' order by signature_status desc "; |
45bc6a1e | 54 | $r = $petition->query($q); |
7ce3d9ec | 55 | while($d = mysqli_fetch_array($r)){ |
4fca24b9 PM |
56 | $color = 'white'; |
57 | $pos = strpos($d['date_time_signed'], date('Y-m-d')); | |
58 | if ($pos !== false) { | |
59 | $color= 'yellow'; | |
60 | } | |
61 | echo "<tr style='background-color:$color;'> | |
68e387b9 PM |
62 | <td><b>$d[date_time_signed]</b></td> |
63 | <td><a href='?VTRID=$d[VTRID]'>$d[VTRID]</a></td> | |
6c9432fc | 64 | <td>".id2petition($d['petition_id'])."</td> |
68e387b9 PM |
65 | <td>$d[signed_name_as]</td> |
66 | <td>$d[signed_name_as_circulator]</td> | |
67 | <td>$d[contact_phone]</td> | |
68 | <td>$d[signature_status]</td> | |
69 | <td>$d[printed_status]</td> | |
dcc3fc26 PM |
70 | <td><a href='?flag_invalid_signature=$d[id]'>flag invalid signature</a></td> |
71 | <td><a href='?flag_VTRID=$d[VTRID]'>flag VTRID</a></td> | |
72 | <td><a href='?flag_ip_address=$d[ip_address]'>flag ip address</a></td> | |
73 | <td><a href='?flag_duplicate=$d[id]'>flag duplicate</a></td> | |
74 | <td><a href='?flag_phone=$d[contact_phone]'>contact phone</a></td> | |
ff3013b8 | 75 | <td><a href='?resign_requested=$d[id]'>resign requested</a></td> |
3f8c226b | 76 | <td><a href='?bot=$d[id]'>bot</a></td> |
68e387b9 | 77 | </tr>"; |
7ce3d9ec | 78 | } |
3a0177c8 | 79 | echo "</table>"; |
b331a809 PM |
80 | }elseif(isset($_GET['php_session_id'])){ |
81 | $php_session_id = $_GET['php_session_id']; | |
82 | echo "<h1>Review $php_session_id</h1><table width='100%' border='1' cellpadding='5' cellspacing='5'>"; | |
83 | $q = "SELECT * FROM presign where php_session_id = '$php_session_id' order by id desc "; | |
84 | $r = $petition->query($q); | |
85 | while($d = mysqli_fetch_array($r)){ | |
86 | $color = 'white'; | |
87 | $pos = strpos($d['date_time_signed'], date('Y-m-d')); | |
88 | if ($pos !== false) { | |
89 | $color= 'yellow'; | |
90 | } | |
91 | echo "<tr style='background-color:$color;'> | |
92 | <td><b>$d[action_on]</b></td> | |
93 | <td>$d[php_page]</td> | |
94 | <td>".id2petition($d['petition'])."</td> | |
95 | <td>$d[invite]</td> | |
96 | <td>$d[name]</td> | |
97 | <td>$d[email_for_follow_up]</td> | |
98 | <td>$d[phone_for_validation]</td> | |
99 | <td>$d[presign_status]</td> | |
100 | <td>$d[ip_address]</td> | |
101 | <td>$d[browser_string]</td> | |
102 | </tr>"; | |
103 | } | |
104 | echo "</table>"; | |
f49d1b19 PM |
105 | }elseif (isset($_GET['VTRID'])){ |
106 | $VTRID = $_GET['VTRID']; | |
68e387b9 | 107 | echo "<h1>Review $VTRID</h1><table width='100%' border='1' cellpadding='5' cellspacing='5'>"; |
783d17ee | 108 | $q = "SELECT * FROM signatures where VTRID = '$VTRID' and signature_status <> 'deleted' order by petition_id, id DESC "; |
45bc6a1e | 109 | $r = $petition->query($q); |
7ce3d9ec | 110 | while($d = mysqli_fetch_array($r)){ |
4fca24b9 PM |
111 | $color = 'white'; |
112 | $pos = strpos($d['date_time_signed'], date('Y-m-d')); | |
113 | if ($pos !== false) { | |
114 | $color= 'yellow'; | |
115 | } | |
116 | echo "<tr style='background-color:$color;'> | |
68e387b9 PM |
117 | <td><b>$d[date_time_signed]</b></td> |
118 | <td><a href='?ip_address=$d[ip_address]'>$d[ip_address]</a></td> | |
b6545efe | 119 | <td>".id2petition($d['petition_id'])."</td> |
68e387b9 PM |
120 | <td>$d[signed_name_as]</td> |
121 | <td>$d[signed_name_as_circulator]</td> | |
122 | <td>$d[contact_phone]</td> | |
123 | <td>$d[signature_status]</td> | |
124 | <td>$d[printed_status]</td> | |
dcc3fc26 PM |
125 | <td><a href='?flag_invalid_signature=$d[id]'>flag invalid signature</a></td> |
126 | <td><a href='?flag_VTRID=$d[VTRID]'>flag VTRID</a></td> | |
127 | <td><a href='?flag_ip_address=$d[ip_address]'>flag ip address</a></td> | |
128 | <td><a href='?flag_duplicate=$d[id]'>flag duplicate</a></td> | |
129 | <td><a href='?flag_phone=$d[contact_phone]'>contact phone</a></td> | |
ff3013b8 | 130 | <td><a href='?resign_requested=$d[id]'>resign requested</a></td> |
3f8c226b | 131 | <td><a href='?bot=$d[id]'>bot</a></td> |
68e387b9 | 132 | </tr>"; |
7ce3d9ec | 133 | } |
3a0177c8 | 134 | echo "</table>"; |
f49d1b19 | 135 | } |
5623205d | 136 | ?> |
4b205268 | 137 | |
5623205d | 138 | <h1>Abuses</h1> |
797efc8e PM |
139 | |
140 | <table><tr> | |
141 | ||
142 | <td valign="top"> | |
e0bd2eda | 143 | <h2>IP Address</h2> |
cc84dbb5 | 144 | <div>Watch for duplicates.</div><ol> |
5623205d | 145 | <?PHP |
babf0707 | 146 | $q="SELECT ip_address, petition_id,VTRID, COUNT(*) as count FROM signatures where signature_status = 'verified' group by ip_address, petition_id, VTRID"; |
5623205d PM |
147 | $r = $petition->query($q); |
148 | while($d = mysqli_fetch_array($r)){ | |
4b205268 | 149 | if ($d['count'] > 1){ |
55fd7459 | 150 | echo "<li><a href='?ip_address=$d[ip_address]'>$d[ip_address]</a> <a target='_Blank' href='https://ipinfo.io/$d[ip_address]'>IP INFO</a> <a href='?VTRID=$d[VTRID]'>$d[VTRID]</a> $d[petition_id] <b>$d[count]</b> $d[signed_name_as]</li>"; |
4b205268 | 151 | } |
5623205d | 152 | } |
cc84dbb5 | 153 | ?></ol> |
797efc8e | 154 | </td><td valign="top"> |
e0bd2eda | 155 | <h2>VTRID</h2> |
cc84dbb5 | 156 | <div>Watch for duplicates.</div><ol> |
1b0319d4 | 157 | <?PHP |
870eafe2 | 158 | $q="SELECT VTRID, petition_id, COUNT(*) as count FROM signatures where signature_status = 'verified' group by VTRID, petition_id"; |
1b0319d4 | 159 | $r = $petition->query($q); |
4b205268 PM |
160 | while($d = mysqli_fetch_array($r)){ |
161 | if ($d['count'] > 1){ | |
ea380aa9 | 162 | echo "<li><a href='?VTRID=$d[VTRID]'>$d[VTRID]</a> $d[petition_id] <b>$d[count]</b> $d[signed_name_as]</li>"; |
4b205268 | 163 | } |
1b0319d4 | 164 | } |
cc84dbb5 | 165 | ?></ol> |
e8d1541d | 166 | </td></tr><tr><td valign="top"> |
e0bd2eda | 167 | <h2>VTRID</h2> |
cc84dbb5 | 168 | <div>Watch for 0</div><ol> |
e0bd2eda | 169 | <?PHP |
e8d1541d | 170 | $q="SELECT * FROM signatures where VTRID = '0' and signature_status <> 'bot' and signature_status <> 'flag_invalid_signature' and signature_status <> 'resign_requested'"; |
e0bd2eda PM |
171 | $r = $petition->query($q); |
172 | while($d = mysqli_fetch_array($r)){ | |
55fd7459 | 173 | echo "<li>$d[date_time_signed] <a href='?ip_address=$d[ip_address]'>$d[ip_address]</a> <a target='_Blank' href='https://ipinfo.io/$d[ip_address]'>IP INFO</a> $d[petition_id] $d[signed_name_as]</li>"; |
9b75965d | 174 | } |
cc84dbb5 | 175 | ?></ol> |
797efc8e | 176 | </td><td valign="top"> |
9b75965d | 177 | <h2>petition_id</h2> |
cc84dbb5 | 178 | <div>Watch for 0</div><ol> |
9b75965d | 179 | <?PHP |
e8d1541d | 180 | $q="SELECT * FROM signatures where (petition_id = '0' or petition_id = '') and signature_status <> 'bot' and signature_status <> 'flag_invalid_signature' and signature_status <> 'resign_requested'"; |
9b75965d | 181 | $r = $petition->query($q); |
4931af50 | 182 | while($d = mysqli_fetch_array($r)){ |
55fd7459 | 183 | echo "<li>$d[date_time_signed] <a href='?ip_address=$d[ip_address]'>$d[ip_address]</a> <a target='_Blank' href='https://ipinfo.io/$d[ip_address]'>IP INFO</a> $d[petition_id] $d[signed_name_as]</li>"; |
4931af50 PM |
184 | } |
185 | ?></ol> | |
e8d1541d | 186 | </td></tr><tr><td valign="top"> |
4931af50 | 187 | <h2>resign_requested</h2> |
3f8c226b | 188 | <div>These are most likely from early bugs</div><ol> |
4931af50 | 189 | <?PHP |
68fde5b1 | 190 | $q="SELECT * FROM signatures where signature_status = 'resign_requested' order by ip_address"; |
4931af50 | 191 | $r = $petition->query($q); |
9b75965d | 192 | while($d = mysqli_fetch_array($r)){ |
55fd7459 | 193 | echo "<li>$d[date_time_signed] <a href='?ip_address=$d[ip_address]'>$d[ip_address]</a> <a target='_Blank' href='https://ipinfo.io/$d[ip_address]'>IP INFO</a> <a href='?VTRID=$d[VTRID]'>$d[VTRID]</a> $d[petition_id] $d[signed_name_as]</li>"; |
e0bd2eda | 194 | } |
3f8c226b PM |
195 | ?></ol> |
196 | </td> | |
197 | ||
198 | <td valign="top"> | |
199 | <h2>bots</h2> | |
200 | <div>These are bots on the site.</div><ol> | |
201 | <?PHP | |
68fde5b1 | 202 | $q="SELECT * FROM signatures where signature_status = 'bot' order by ip_address"; |
3f8c226b PM |
203 | $r = $petition->query($q); |
204 | while($d = mysqli_fetch_array($r)){ | |
ab89bfc5 | 205 | echo "<li>$d[date_time_signed] <a href='?ip_address=$d[ip_address]'>$d[ip_address]</a> <a target='_Blank' href='https://ipinfo.io/$d[ip_address]'>IP INFO</a> <a href='?VTRID=$d[VTRID]'>$d[VTRID]</a> $d[petition_id] $d[signed_name_as]</li>"; |
3f8c226b | 206 | } |
cc84dbb5 | 207 | ?></ol> |
797efc8e | 208 | </td> |
5623205d | 209 | |
9b75965d | 210 | |
05fddd22 PM |
211 | </tr> |
212 | <tr> | |
213 | <td valign="top"> | |
bdc1dd01 | 214 | <h2>Pre-Sign</h2> |
9fa521d8 | 215 | <div>Follow up requested - never signed.</div><ol> |
05fddd22 | 216 | <?PHP |
0ef8188c | 217 | $q="SELECT distinct email_for_follow_up, php_session_id, name, petition, invite FROM presign where presign_status = 'NEW' and email_for_follow_up <> '' order by id desc"; |
05fddd22 PM |
218 | $r = $petition->query($q); |
219 | while($d = mysqli_fetch_array($r)){ | |
0ef8188c | 220 | echo "<li><a href='?VTRID=$d[VTRID]'>$d[name] $d[email_for_follow_up] ($d[petition])</a></li>"; |
05fddd22 PM |
221 | } |
222 | ?></ol> | |
223 | </td> | |
224 | <td valign="top"> | |
bdc1dd01 PM |
225 | <h2>Signature</h2> |
226 | <div>Last 10</div><ol> | |
05fddd22 | 227 | <?PHP |
7b154908 | 228 | $q="SELECT * FROM signatures where signature_status = 'verified' order by id desc limit 0, 10"; |
05fddd22 PM |
229 | $r = $petition->query($q); |
230 | while($d = mysqli_fetch_array($r)){ | |
9390413f | 231 | echo "<li>$d[date_time_signed] ".id2petition($d['petition_id'])." $d[signed_name_as]</li>"; |
05fddd22 PM |
232 | } |
233 | ?></ol> | |
234 | </td> | |
235 | ||
236 | </tr> | |
237 | </table> | |
9b75965d PM |
238 | |
239 | ||
5623205d PM |
240 | <?PHP |
241 | include_once('footer.php'); | |
242 | ?> |