diff options
author | cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8> | 2005-11-06 17:14:25 +0000 |
---|---|---|
committer | cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8> | 2005-11-06 17:14:25 +0000 |
commit | 866c47ec603595e8fe67da5f0e5d162a70b1f7b4 (patch) | |
tree | ef2b85462576150f017ba6bd53ace13dc60dc510 /www-ssl/admin/user2.php | |
parent | fbc8e11b91b0565ae5d23472fc4e5bfc7d879939 (diff) |
move files
git-svn-id: svn://svn.cccv.de/engel-system@20 29ba0400-6e00-0410-a75a-ca02368028f8
Diffstat (limited to 'www-ssl/admin/user2.php')
-rwxr-xr-x | www-ssl/admin/user2.php | 128 |
1 files changed, 128 insertions, 0 deletions
diff --git a/www-ssl/admin/user2.php b/www-ssl/admin/user2.php new file mode 100755 index 00000000..5f94c093 --- /dev/null +++ b/www-ssl/admin/user2.php @@ -0,0 +1,128 @@ +<?PHP + +$title = "User-Liste"; +$header = "Index"; +include ("./inc/header.php"); +include ("./inc/funktion_db_list.php"); +include ("./inc/crypt.php"); + +if (IsSet($_GET["action"])) +{ + + function SQLExec( $SQL ) + { + global $con; + + $Erg = mysql_query($SQL, $con); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n"; + } + + } + + SetHeaderGo2Back(); + echo "Gesendeter Befehl: ". $_GET["action"]. "<br>"; + + switch ($_GET["action"]) + { + case "change": + if (IsSet($_POST["enterUID"])) + { + if ($_POST["Type"] == "Normal") + { + $SQL = "UPDATE `User` SET "; + $SQL.= " `Nick` = '". $_POST["eNick"]. "', `Name` = '". $_POST["eName"]. "', ". + "`Vorname` = '". $_POST["eVorname"]. "', ". + "`Telefon` = '". $_POST["eTelefon"]. "', ". + "`Handy` = '". $_POST["eHandy"]. "', ". + "`DECT` = '". $_POST["eDECT"]. "', ". + "`email` = '". $_POST["eemail"]. "', ". + "`Size` = '". $_POST["eSize"]. "', ". + "`Gekommen`= '". $_POST["eGekommen"]. "', ". + "`Aktiv`= '". $_POST["eAktiv"]. "', ". + "`Tshirt` = '". $_POST["eTshirt"]. "' ". + "WHERE `UID` = '". $_POST["enterUID"]. + "' LIMIT 1;"; + echo "User-"; + SQLExec( $SQL ); + } + if ($_POST["Type"] == "Secure") + { + $SQL2 = "UPDATE `UserCVS` SET "; + $SQL_CVS = "SELECT * FROM `UserCVS` WHERE UID=". $_POST["enterUID"]; + $Erg_CVS = mysql_query($SQL_CVS, $con); + $CVS_Data = mysql_fetch_array($Erg_CVS); + $CVS_Data_i = 1; + foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) + { + if( ($CVS_Data_i+1)%2 && $CVS_Data_Name!="UID") + $SQL2.= "`$CVS_Data_Name` = '". $_POST[$CVS_Data_i]."', "; + $CVS_Data_i++; + } + $SQL2 = substr( $SQL2, 0, strlen($SQL2)-2 ); + $SQL2.= " WHERE `UID` = '". $_POST["enterUID"]. "' LIMIT 1;"; + echo "<br>Secure-"; + SQLExec( $SQL2 ); + } + } + break; + + case "delete": + if (IsSet($_POST["enterUID"])) + { + echo "delate User..."; + $SQL="delete from `User` WHERE `UID` = '". $_POST["enterUID"]. "' LIMIT 1;"; + SQLExec( $SQL ); + echo "<br>\ndelate UserCVS..."; + $SQL2="delete from `UserCVS` WHERE `UID` = '". $_POST["enterUID"]. "' LIMIT 1;"; + SQLExec( $SQL2 ); + echo "<br>\ndelate UserEntry..."; + $SQL3="UPDATE `ShiftEntry` SET `UID` = '0', `Comment` = NULL ". + "WHERE `UID` = '". $_POST["enterUID"]. "' LIMIT 1;"; + SQLExec( $SQL3 ); + } + break; + + + case "newpw": + echo "Bitte neues Kennwort für <b>"; + // Get Nick + $USQL = "SELECT * FROM User where UID=". $_POST["eUID"]; + $Erg = mysql_query($USQL, $con); + echo mysql_result($Erg, 0, "Nick"); + echo "</b> eingeben:<br>"; + echo "<form action=\"./user2.php\" method=\"POST\">\n"; + echo "<input type=\"Password\" name=\"ePasswort\">"; + echo "<input type=\"Password\" name=\"ePasswort2\">"; + echo "<input type=\"hidden\" name=\"eUID\" value=\"". $_POST["eUID"]. "\">"; + echo "<input type=\"hidden\" name=\"action\" value=\"newpwsave\">\n"; + echo "<input type=\"submit\" value=\"sichern...\">\n"; + echo "</form>"; + break; + + case "newpwsave": + if ($_POST["ePasswort"] == $_POST["ePasswort2"]) + { // beide Passwoerter passen... + $_POST["ePasswort"] = PassCrypt($_POST["ePasswort"]); + $SQL = "UPDATE `User` SET `Passwort`='". $_POST["ePasswort"]. "' ". + "where `UID` = '". $_POST["eUID"]. "'"; + SQLExec( $SQL ); + } + else + echo "Das Passwort wurde nicht übereinstimmend eingegeben!"; + break; + } // end switch + +// ende - Action ist gesetzt +} +else +{ + // kein Action gesetzt -> abbruch + echo "Unzulässiger Aufruf.<br>Bitte neu editieren..."; +} + +include ("./inc/footer.php"); +?> + |