false,'message'=>'Invalid request.']); } else echo _html('Invalid Request', '

This link is invalid or has expired.

', 'error'); exit; } // Fetch meeting + attendee $mStmt = $db->prepare("SELECT * FROM meetings WHERE id=? LIMIT 1"); $mStmt->execute([$meetingId]); $m = $mStmt->fetch(); $aStmt = $db->prepare("SELECT * FROM meeting_attendees WHERE id=? AND meeting_id=? LIMIT 1"); $aStmt->execute([$attendeeId, $meetingId]); $att = $aStmt->fetch(); if (!$m || !$att) { if ($isApi) { header('Content-Type: application/json'); echo json_encode(['success'=>false,'message'=>'Not found.']); } else echo _html('Not Found', '

Meeting or attendee not found.

', 'error'); exit; } // Parse proposed changes from note (format: "date:YYYY-MM-DD|time:HH:MM|place:text") $proposed = []; foreach (explode('|', $note ?: ($att['rsvp_note'] ?? '')) as $part) { if (str_starts_with($part, 'date:')) $proposed['date'] = trim(substr($part, 5)); if (str_starts_with($part, 'time:')) $proposed['time'] = trim(substr($part, 5)); if (str_starts_with($part, 'place:')) $proposed['place'] = trim(substr($part, 6)); } $attName = htmlspecialchars($att['name'] ?: $att['email'] ?: 'Attendee'); if ($action === 'accept_reschedule') { // Update meeting date/time/location $updates = []; $params = []; if (!empty($proposed['date'])) { $updates[] = 'meeting_date=?'; $params[] = $proposed['date']; } if (!empty($proposed['time'])) { $updates[] = 'start_time=?'; $params[] = $proposed['time']; } if (!empty($proposed['place'])) { $updates[] = 'location=?'; $params[] = $proposed['place']; } if ($updates) { $params[] = $meetingId; $db->prepare("UPDATE meetings SET " . implode(',', $updates) . " WHERE id=?")->execute($params); } // Mark this attendee as accepted (they proposed it, so they're in) $db->prepare("UPDATE meeting_attendees SET rsvp_status='accepted', rsvp_note=? WHERE id=?") ->execute(["Reschedule accepted by organiser", $attendeeId]); // Reset all OTHER attendees to pending so they get re-invited $db->prepare("UPDATE meeting_attendees SET rsvp_status='pending', invite_sent=0 WHERE meeting_id=? AND id!=?") ->execute([$meetingId, $attendeeId]); // Queue re-invite emails to all other attendees try { $cfg = $db->query("SELECT setting_key, setting_value FROM settings WHERE setting_group='email'")->fetchAll(\PDO::FETCH_KEY_PAIR); if (!empty($cfg['email_enabled']) && $cfg['email_enabled'] === '1') { $appUrl = $cfg['email_app_url'] ?? ''; $compName = $db->query("SELECT setting_value FROM settings WHERE setting_key='company_name' LIMIT 1")->fetchColumn() ?: 'Elegant Work'; $newDate = !empty($proposed['date']) ? date('D, d M Y', strtotime($proposed['date'])) : date('D, d M Y', strtotime($m['meeting_date'])); $newTime = !empty($proposed['time']) ? date('H:i', strtotime($proposed['time'])) : ($m['start_time'] ? date('H:i', strtotime($m['start_time'])) : 'TBC'); $newPlace = !empty($proposed['place']) ? htmlspecialchars($proposed['place']) : htmlspecialchars($m['location'] ?? ''); $newPlaceRow = $newPlace ? "Location{$newPlace}" : ''; $others = $db->prepare("SELECT * FROM meeting_attendees WHERE meeting_id=? AND id!=? AND email IS NOT NULL AND email!=''"); $others->execute([$meetingId, $attendeeId]); foreach ($others->fetchAll() as $oa) { $rsvpUrl = $appUrl . "api/meetings/rsvp.php?token=" . urlencode($oa['rsvp_token']); $subject = "๐Ÿ“… Meeting Rescheduled: " . $m['title']; $name = htmlspecialchars($oa['name'] ?: $oa['email']); $html = <<

๐Ÿ“… Meeting Rescheduled

The date has been updated

Hi {$name},

{$m['title']} has been rescheduled.

{$newPlaceRow}
Date{$newDate}
Time{$newTime}
โœ… Confirm Attendance
{$compName} ยท Meeting System
MAIL; $db->prepare("INSERT INTO email_queue (notification_type, recipient_email, recipient_name, subject, body_html, related_type, related_id) VALUES ('meeting_invite',?,?,?,?,'meeting',?)") ->execute([$oa['email'], $oa['name'], $subject, $html, $meetingId]); $db->prepare("UPDATE meeting_attendees SET invite_sent=1, invite_sent_at=NOW() WHERE id=?")->execute([$oa['id']]); } } } catch (Exception $e) { /* silent */ } $newDateLabel = !empty($proposed['date']) ? date('D, d M Y', strtotime($proposed['date'])) : 'the proposed date'; $msg = "Meeting rescheduled to {$newDateLabel}. All other attendees have been notified and asked to re-confirm."; if ($isApi) { header('Content-Type: application/json'); echo json_encode(['success'=>true,'message'=>'Reschedule accepted.']); } else echo _html('โœ… Reschedule Accepted', "

{$msg}

", 'success'); } else { // keep_original // Mark this attendee as declined (they can't make the original date) $db->prepare("UPDATE meeting_attendees SET rsvp_status='declined', rsvp_note='Could not accommodate reschedule request โ€” original date kept.' WHERE id=?") ->execute([$attendeeId]); // Optionally notify the attendee their reschedule was not accepted try { $cfg = $db->query("SELECT setting_key, setting_value FROM settings WHERE setting_group='email'")->fetchAll(\PDO::FETCH_KEY_PAIR); if (!empty($cfg['email_enabled']) && $cfg['email_enabled'] === '1' && !empty($att['email'])) { $origDate = date('D, d M Y', strtotime($m['meeting_date'])); $origTime = $m['start_time'] ? date('H:i', strtotime($m['start_time'])) : ''; $origTimeStr = $origTime ? " at {$origTime}" : ''; $name = htmlspecialchars($att['name'] ?: $att['email']); $subject = "๐Ÿ“… Regarding your reschedule request: " . $m['title']; $html = <<

๐Ÿ“… Reschedule Update

Hi {$name},

We weren't able to accommodate your reschedule request for {$m['title']}. The meeting will proceed on the original date: {$origDate}{$origTimeStr}.

We're sorry you won't be able to join us. The organiser has been notified.

MAIL; $db->prepare("INSERT INTO email_queue (notification_type, recipient_email, recipient_name, subject, body_html, related_type, related_id) VALUES ('meeting_rsvp',?,?,?,?,'meeting',?)") ->execute([$att['email'], $att['name'], $subject, $html, $meetingId]); } } catch (Exception $e) { /* silent */ } if ($isApi) { header('Content-Type: application/json'); echo json_encode(['success'=>true,'message'=>'Original date kept.']); } else echo _html('๐Ÿ“… Original Date Kept', "

{$attName} has been notified that the original meeting date will be kept. They have been marked as declined.

", 'info'); } function _html(string $heading, string $body, string $type = 'info'): string { $color = ['success'=>'#16a34a','error'=>'#dc2626','info'=>'#0284c7'][$type] ?? '#1b4b8a'; return << Meeting Action

{$heading}

{$body}
Powered by Elegant Work
HTML; }