HCoop / clinton / MarylandElectronicPetitionSignature.git / blob
? search:


8d545fdb57307cc45d10ba570d96da489bd04a52
[clinton/MarylandElectronicPetitionSignature.git] / admin / abuse.php
1 <?PHP
2 include_once('../slack.php');
3 include_once('security.php');
4 include_once('/var/www/secure.php'); //outside webserver
5 include_once('functions.php');
6 if ($_COOKIE['level'] == 'user'){
7 slack_general('ADMIN: Redirect User Home ('.$_COOKIE['name'].') ('.$_COOKIE['level'].')','md-petition');
8 header('Location: user_home.php');
9 }
10 if (isset($_GET['clear_php_session_id'])){
11 $id = $_GET['clear_php_session_id'];
12 $petition->query("update presign set presign_status = 'DONE' where php_session_id = '$id' ");
13 header('Location: abuse.php');
14 }
15 if (isset($_GET['sign_php_session_id'])){
16 $id = $_GET['sign_php_session_id'];
17 $petition->query("update presign set presign_status = 'SIGNED' where php_session_id = '$id' ");
18 header('Location: abuse.php');
19 }
20 if ($_COOKIE['level'] == 'manager'){
21 slack_general('ADMIN: Redirect Manager Home ('.$_COOKIE['name'].') ('.$_COOKIE['level'].')','md-petition');
22 header('Location: manager_home.php');
23 }
24 if (isset($_GET['flag_invalid_signature'])){
25 $id = $_GET['flag_invalid_signature'];
26 $petition->query("update signatures set signature_status = 'flag_invalid_signature' where id = '$id' ");
27 header('Location: abuse.php');
28 }
29 if (isset($_GET['flag_duplicate'])){
30 $id = $_GET['flag_duplicate'];
31 $petition->query("update signatures set signature_status = 'flag_duplicate' where id = '$id' ");
32 header('Location: abuse.php');
33 }
34 if (isset($_GET['flag_ip_address'])){
35 $ip = $_GET['flag_ip_address'];
36 $petition->query("update signatures set signature_status = 'flag_ip_address' where ip_address = '$ip' ");
37 header('Location: abuse.php');
38 }
39 if (isset($_GET['resign_requested'])){
40 $id = $_GET['resign_requested'];
41 $petition->query("update signatures set signature_status = 'resign_requested' where id = '$id' ");
42 header('Location: abuse.php');
43 }
44 if (isset($_GET['bot'])){
45 $id = $_GET['bot'];
46 $petition->query("update signatures set signature_status = 'bot' where id = '$id' ");
47 header('Location: abuse.php');
48 }
49 if (isset($_GET['flag_VTRID'])){
50 $VTRID = $_GET['flag_VTRID'];
51 $petition->query("update signatures set signature_status = 'flag_VTRID' where VTRID = '$VTRID' ");
52 header('Location: abuse.php');
53 }
54 if (isset($_GET['flag_phone'])){
55 $flag_phone = $_GET['flag_phone'];
56 $petition->query("update signatures set signature_status = 'flag_phone' where contact_phone = '$flag_phone' ");
57 header('Location: abuse.php');
58 }
59 include_once('header.php');
60 if (isset($_GET['ip_address'])){
61 $ip = $_GET['ip_address'];
62 echo "<h1>Review $ip</h1><table width='100%' border='1' cellpadding='5' cellspacing='5'>";
63 $q = "SELECT * FROM signatures where ip_address = '$ip' order by signature_status desc ";
64 $r = $petition->query($q);
65 while($d = mysqli_fetch_array($r)){
66 $color = 'white';
67 $pos = strpos($d['date_time_signed'], date('Y-m-d'));
68 if ($pos !== false) {
69 $color= 'yellow';
70 }
71 echo "<tr style='background-color:$color;'>
72 <td><b>$d[date_time_signed]</b></td>
73 <td><a href='?VTRID=$d[VTRID]'>$d[VTRID]</a></td>
74 <td>".id2petition($d['petition_id'])."</td>
75 <td>$d[signed_name_as]</td>
76 <td>$d[signed_name_as_circulator]</td>
77 <td>$d[contact_phone]</td>
78 <td>$d[signature_status]</td>
79 <td>$d[printed_status]</td>
80 <td><a href='?flag_invalid_signature=$d[id]'>flag invalid signature</a></td>
81 <td><a href='?flag_VTRID=$d[VTRID]'>flag VTRID</a></td>
82 <td><a href='?flag_ip_address=$d[ip_address]'>flag ip address</a></td>
83 <td><a href='?flag_duplicate=$d[id]'>flag duplicate</a></td>
84 <td><a href='?flag_phone=$d[contact_phone]'>contact phone</a></td>
85 <td><a href='?resign_requested=$d[id]'>resign requested</a></td>
86 <td><a href='?bot=$d[id]'>bot</a></td>
87 </tr>";
88 }
89 echo "</table>";
90 }elseif(isset($_GET['php_session_id'])){
91 $php_session_id = $_GET['php_session_id'];
92 echo "<h1>Review $php_session_id</h1><table width='100%' border='1' cellpadding='5' cellspacing='5'>";
93 $q = "SELECT * FROM presign where php_session_id = '$php_session_id' order by id desc ";
94 $r = $petition->query($q);
95 while($d = mysqli_fetch_array($r)){
96 $color = 'white';
97 $test = date('Y-m-d',strtotime($d['action_on']));
98 $pos = strpos($test, date('Y-m-d'));
99 if ($pos !== false) {
100 $color= 'yellow';
101 }
102 echo "<tr style='background-color:$color;'>
103 <td style='white-space:pre;'><b>$d[action_on]</b></td>
104 <td style='white-space:pre;'>$d[php_page]</td>
105 <td style='white-space:pre;'>".id2petition($d['petition'])."</td>
106 <td style='white-space:pre;'>$d[invite]</td>
107 <td style='white-space:pre;'>$d[invite_error]</td>
108 <td style='white-space:pre;'>$d[name]</td>
109 <td style='white-space:pre;'>$d[email_for_follow_up]</td>
110 <td style='white-space:pre;'>$d[phone_for_validation]</td>
111 <td style='white-space:pre;'>$d[presign_status]</td>
112 <td style='white-space:pre;'>$d[ip_address]</td>
113 <td style='white-space:pre;'>$d[browser_string]</td>
114 </tr>";
115 }
116 echo "</table><a href='?clear_php_session_id=$php_session_id'>CLEAR ALERT</a> - <a href='?sign_php_session_id=$php_session_id'>SIGNATURE FOUND</a>";
117 }elseif (isset($_GET['VTRID'])){
118 $VTRID = $_GET['VTRID'];
119 echo "<h1>Review $VTRID</h1><table width='100%' border='1' cellpadding='5' cellspacing='5'>";
120 $q = "SELECT * FROM signatures where VTRID = '$VTRID' and signature_status <> 'deleted' order by petition_id, id DESC ";
121 $r = $petition->query($q);
122 while($d = mysqli_fetch_array($r)){
123 $color = 'white';
124 $pos = strpos($d['date_time_signed'], date('Y-m-d'));
125 if ($pos !== false) {
126 $color= 'yellow';
127 }
128 echo "<tr style='background-color:$color;'>
129 <td><b>$d[date_time_signed]</b></td>
130 <td><a href='?ip_address=$d[ip_address]'>$d[ip_address]</a></td>
131 <td>".id2petition($d['petition_id'])."</td>
132 <td>$d[signed_name_as]</td>
133 <td>$d[signed_name_as_circulator]</td>
134 <td>$d[contact_phone]</td>
135 <td>$d[signature_status]</td>
136 <td>$d[printed_status]</td>
137 <td><a href='?flag_invalid_signature=$d[id]'>flag invalid signature</a></td>
138 <td><a href='?flag_VTRID=$d[VTRID]'>flag VTRID</a></td>
139 <td><a href='?flag_ip_address=$d[ip_address]'>flag ip address</a></td>
140 <td><a href='?flag_duplicate=$d[id]'>flag duplicate</a></td>
141 <td><a href='?flag_phone=$d[contact_phone]'>contact phone</a></td>
142 <td><a href='?resign_requested=$d[id]'>resign requested</a></td>
143 <td><a href='?bot=$d[id]'>bot</a></td>
144 </tr>";
145 }
146 echo "</table>";
147 }
148 ?>
149
150 <h1>Signature Quality Control</h1>
151 <h2>NEVER NEVER NEVER CALL OR TEXT ANYONE - ONLY EMAIL!!!</h2>
152 <table><tr>
153
154 <td valign="top">
155 <h2>IP Address</h2>
156 <div>Watch for duplicates.</div><ol>
157 <?PHP
158 $q="SELECT ip_address, petition_id,VTRID, COUNT(*) as count FROM signatures where signature_status = 'verified' group by ip_address, petition_id, VTRID";
159 $r = $petition->query($q);
160 while($d = mysqli_fetch_array($r)){
161 if ($d['count'] > 1){
162 echo "<li><a href='?ip_address=$d[ip_address]'>$d[ip_address]</a> <a target='_Blank' href='https://ipinfo.io/$d[ip_address]'>IP INFO</a> <a href='?VTRID=$d[VTRID]'>$d[VTRID]</a> $d[petition_id] <b>$d[count]</b> $d[signed_name_as]</li>";
163 }
164 }
165 ?></ol>
166 </td><td valign="top">
167 <h2>VTRID</h2>
168 <div>Watch for duplicates.</div><ol>
169 <?PHP
170 $q="SELECT VTRID, petition_id, COUNT(*) as count FROM signatures where signature_status = 'verified' group by VTRID, petition_id";
171 $r = $petition->query($q);
172 while($d = mysqli_fetch_array($r)){
173 if ($d['count'] > 1){
174 echo "<li><a href='?VTRID=$d[VTRID]'>$d[VTRID]</a> $d[petition_id] <b>$d[count]</b> $d[signed_name_as]</li>";
175 }
176 }
177 ?></ol>
178 </td></tr><tr><td valign="top">
179 <h2>VTRID</h2>
180 <div>Watch for 0</div><ol>
181 <?PHP
182 $q="SELECT * FROM signatures where VTRID = '0' and signature_status <> 'bot' and signature_status <> 'flag_invalid_signature' and signature_status <> 'resign_requested'";
183 $r = $petition->query($q);
184 while($d = mysqli_fetch_array($r)){
185 echo "<li>$d[date_time_signed] <a href='?ip_address=$d[ip_address]'>$d[ip_address]</a> <a target='_Blank' href='https://ipinfo.io/$d[ip_address]'>IP INFO</a> $d[petition_id] $d[signed_name_as]</li>";
186 }
187 ?></ol>
188 </td><td valign="top">
189 <h2>petition_id</h2>
190 <div>Watch for 0</div><ol>
191 <?PHP
192 $q="SELECT * FROM signatures where (petition_id = '0' or petition_id = '') and signature_status <> 'bot' and signature_status <> 'flag_invalid_signature' and signature_status <> 'resign_requested'";
193 $r = $petition->query($q);
194 while($d = mysqli_fetch_array($r)){
195 echo "<li>$d[date_time_signed] <a href='?ip_address=$d[ip_address]'>$d[ip_address]</a> <a target='_Blank' href='https://ipinfo.io/$d[ip_address]'>IP INFO</a> $d[petition_id] $d[signed_name_as]</li>";
196 }
197 ?></ol>
198 </td></tr><tr><td valign="top">
199 <h2>resign_requested</h2>
200 <div>These are most likely from early bugs</div><ol>
201 <?PHP
202 $q="SELECT * FROM signatures where signature_status = 'resign_requested' order by ip_address";
203 $r = $petition->query($q);
204 while($d = mysqli_fetch_array($r)){
205 echo "<li>$d[date_time_signed] <a href='?ip_address=$d[ip_address]'>$d[ip_address]</a> <a target='_Blank' href='https://ipinfo.io/$d[ip_address]'>IP INFO</a> <a href='?VTRID=$d[VTRID]'>$d[VTRID]</a> $d[petition_id] $d[signed_name_as]</li>";
206 }
207 ?></ol>
208 </td>
209
210 <td valign="top">
211 <h2>bots</h2>
212 <div>These are bots on the site.</div><ol>
213 <?PHP
214 $q="SELECT * FROM signatures where signature_status = 'bot' order by ip_address";
215 $r = $petition->query($q);
216 while($d = mysqli_fetch_array($r)){
217 echo "<li>$d[date_time_signed] <a href='?ip_address=$d[ip_address]'>$d[ip_address]</a> <a target='_Blank' href='https://ipinfo.io/$d[ip_address]'>IP INFO</a> <a href='?VTRID=$d[VTRID]'>$d[VTRID]</a> $d[petition_id] $d[signed_name_as]</li>";
218 }
219 ?></ol>
220 </td>
221
222
223 </tr>
224 <tr>
225 <td valign="top">
226 <h2>Pre-Sign</h2>
227 <div>Follow up requested - never signed.</div><ol>
228 <?PHP
229 $q="SELECT distinct email_for_follow_up, php_session_id, name, petition, invite FROM presign where presign_status = 'NEW' and email_for_follow_up <> '' order by id desc";
230 $r = $petition->query($q);
231 while($d = mysqli_fetch_array($r)){
232 echo "<li><a href='?php_session_id=$d[php_session_id]'>$d[name] $d[email_for_follow_up] ($d[petition])</a></li>";
233 }
234 ?></ol>
235 </td>
236 <td valign="top">
237 <h2>Signature</h2>
238 <div>Last 10</div><ol>
239 <?PHP
240 $q="SELECT * FROM signatures where signature_status = 'verified' order by id desc limit 0, 10";
241 $r = $petition->query($q);
242 while($d = mysqli_fetch_array($r)){
243 echo "<li>$d[date_time_signed] ".id2petition($d['petition_id'])." $d[signed_name_as]</li>";
244 }
245 ?></ol>
246 </td>
247
248 </tr>
249 </table>
250
251
252 <?PHP
253 include_once('footer.php');
254 ?>
Unnamed repository; edit this file 'description' to name the repository.