diff options
author | Philip Häusler <msquare@notrademark.de> | 2011-06-01 15:02:00 +0200 |
---|---|---|
committer | Philip Häusler <msquare@notrademark.de> | 2011-06-01 15:02:00 +0200 |
commit | e050c0dc7f4c70b13596f8e940a31a9678bb3b52 (patch) | |
tree | ce222f80b4c02d48c1990392627383f63a08a6e9 /www-ssl | |
parent | a537f4bf73101c467af3b01db32fcdb9fd0a91ce (diff) |
bootstrapping
Diffstat (limited to 'www-ssl')
26 files changed, 2621 insertions, 2876 deletions
diff --git a/www-ssl/admin/EngelType.php b/www-ssl/admin/EngelType.php index 1aec80dc..5d1a6cdc 100644 --- a/www-ssl/admin/EngelType.php +++ b/www-ssl/admin/EngelType.php @@ -1,191 +1,167 @@ <?php +require_once ('../bootstrap.php'); + $title = "Räume"; $header = "Verwaltung der Räume"; -include ("../../../camp2011/includes/header.php"); -include("../../../camp2011/includes/funktion_db.php"); - -function runSQL( $SQL) -{ - global $con; - // hier muesste das SQL ausgefuehrt werden... - $Erg = mysql_query($SQL, $con); - if ($Erg) - { - echo "Änderung wurde gesichert...<br />"; - echo "[$SQL]<br />"; - return 1; - } - else - { - echo "Fehler beim speichern... bitte noch ein mal probieren :)"; - echo "<br /><br />".mysql_error( $con ). "<br />"; - echo "[$SQL]<br />"; - return 0; - } +include ("includes/header.php"); +include ("includes/funktion_db.php"); + +function runSQL($SQL) { + global $con; + // hier muesste das SQL ausgefuehrt werden... + $Erg = mysql_query($SQL, $con); + if ($Erg) { + echo "Änderung wurde gesichert...<br />"; + echo "[$SQL]<br />"; + return 1; + } else { + echo "Fehler beim speichern... bitte noch ein mal probieren :)"; + echo "<br /><br />" . mysql_error($con) . "<br />"; + echo "[$SQL]<br />"; + return 0; + } } -function runSQL_log( $SQL, $commed) -{ - global $con; - // hier muesste das SQL ausgefuehrt werden... - $Erg = db_query($SQL, $commed); - if ($Erg) - { - echo "Änderung wurde gesichert...<br />"; - echo "[$SQL]<br />"; - return 1; - } - else - { - echo "Fehler beim speichern... bitte noch ein mal probieren :)"; - echo "<br /><br />".mysql_error( $con ). "<br />"; - echo "[$SQL]<br />"; - return 0; - } +function runSQL_log($SQL, $commed) { + global $con; + // hier muesste das SQL ausgefuehrt werden... + $Erg = db_query($SQL, $commed); + if ($Erg) { + echo "Änderung wurde gesichert...<br />"; + echo "[$SQL]<br />"; + return 1; + } else { + echo "Fehler beim speichern... bitte noch ein mal probieren :)"; + echo "<br /><br />" . mysql_error($con) . "<br />"; + echo "[$SQL]<br />"; + return 0; + } } - - $Sql = "SELECT * FROM `EngelType` ORDER BY `NAME`"; $Erg = mysql_query($Sql, $con); -if( !IsSet($_GET["action"]) ) -{ - echo "Hallo ".$_SESSION['Nick']. - ",<br />\nhier hast du die Möglichkeit, neue Engeltypen für die Schichtpläne einzutragen ". - "oder vorhandene abzuändern:<br /><br />\n"; - - echo "<a href=\"./EngelType.php?action=new\">- Neuen EngelType eintragen</a><br />\n"; - - echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; - echo "<tr class=\"contenttopic\">\n"; - - for( $i = 1; $i < mysql_num_fields($Erg); $i++ ) - { - echo "\t<td>". mysql_field_name($Erg, $i). "</td>"; - } - echo "\t<td>Ändern</td>"; - echo "</tr>"; - - for( $t = 0; $t < mysql_num_rows($Erg); $t++ ) - { - echo "\t<tr class=\"content\">\n"; - for ($j = 1; $j < mysql_num_fields($Erg); $j++) - { - echo "\t\t<td>".mysql_result($Erg, $t, $j)."</td>\n"; - } - echo "\t\t<td><a href=\"./EngelType.php?action=change&TID=".mysql_result($Erg, $t, "TID")."\">###</a></td>\n"; - echo "\t</tr>\n"; - } // ende Auflistung Raeume - echo "</table>"; -} -else -{ - -switch ($_GET["action"]) { - -case 'new': - echo "Neuen EngelType einrichten: <br />"; - echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; - echo "<table>\n"; - - for( $Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++ ) - { - echo "<td>".mysql_field_name($Erg, $Uj)."</td>". - "<td><input type=\"text\" size=\"40\" name=\"".mysql_field_name($Erg, $Uj)."\"></td></tr>\n"; - } - echo "</table>\n"; - echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n"; - echo "<input type=\"submit\" value=\"sichern...\">\n"; - echo "</form>"; - break; - -case 'newsave': - $vars = $_GET; - $count = count($vars) - 1; - $vars = array_splice($vars, 0, $count); - $Keys=""; - $Values=""; - foreach($vars as $key => $value){ - $Keys .= ", `$key`"; - $Values .= ", '$value'"; - } - - if( runSQL_log( "INSERT INTO `EngelType` (". substr($Keys, 2). ") VALUES (". substr($Values, 2). ")", - "save new EngelType") ) - { - SetHeaderGo2Back(); - - $SQL2 = "SELECT * FROM `EngelType` WHERE `Name`='". $_GET["Name"]. "'"; - $ERG = mysql_query($SQL2, $con); - - if( mysql_num_rows($ERG) == 1) - runSQL_log( "ALTER TABLE `Room` ADD `DEFAULT_EID_". mysql_result( $ERG, 0, 0). - "` INT DEFAULT '0' NOT NULL;", - "add new EngelType in Romm Table"); - } - break; - -case 'change': - if (! IsSet($_GET["TID"])) - echo "Fehlerhafter Aufruf!"; - else - { - echo "Raum abändern:\n"; - echo "Hier kannst du eintragen, den EngelType ändern."; - echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; - echo "<table>\n"; - - $SQL2 = "SELECT * FROM `EngelType` WHERE `TID`='". $_GET["TID"]. "'"; - $ERG = mysql_query($SQL2, $con); - - for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) - echo "<tr><td>". mysql_field_name($ERG, $Uj). "</td>". - "<td><input type=\"text\" size=\"40\" name=\"e". mysql_field_name($ERG, $Uj). "\" ". - "value=\"". mysql_result($ERG, 0, $Uj). "\"></td></tr>\n"; - - echo "</table>\n"; - echo "<input type=\"hidden\" name=\"eTID\" value=\"". $_GET["TID"]. "\">\n"; - echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; - echo "<input type=\"submit\" value=\"sichern...\">\n"; - echo "</form>"; - echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; - echo "<input type=\"hidden\" name=\"TID\" value=\"". $_GET["TID"]. "\">\n"; - echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; - echo "<input type=\"submit\" value=\"Löschen...\">"; - echo "</form>"; - } - break; - -case 'changesave': - $vars = $_GET; - $count = count($vars) - 2; - $vars = array_splice($vars, 0, $count); - $keys=""; - $sql=""; - foreach($vars as $key => $value) - { - $keys = substr( $key, 1); - $sql .= ", `". $keys. "`='". $value. "'"; - } - runSQL_log( "UPDATE `EngelType` SET ". substr($sql, 2). " WHERE `TID`='". $_GET["eTID"]. "'", - "Save Change EngelType"); - SetHeaderGo2Back(); - break; - -case 'delete': - if (IsSet($_GET["TID"])) - { - if( runSQL_log( "DELETE FROM `EngelType` WHERE `TID`='". $_GET["TID"]. "'", "delete EngelType")) - runSQL_log( "ALTER TABLE `Room` DROP `DEFAULT_EID_". $_GET["TID"]. "`;", - "delete EngelType in Room Table"); - } - else - echo "Fehlerhafter Aufruf"; - SetHeaderGo2Back(); - break; -} +if (!IsSet ($_GET["action"])) { + echo "Hallo " . $_SESSION['Nick'] . + ",<br />\nhier hast du die Möglichkeit, neue Engeltypen für die Schichtpläne einzutragen " . + "oder vorhandene abzuändern:<br /><br />\n"; + + echo "<a href=\"./EngelType.php?action=new\">- Neuen EngelType eintragen</a><br />\n"; + + echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; + echo "<tr class=\"contenttopic\">\n"; + + for ($i = 1; $i < mysql_num_fields($Erg); $i++) { + echo "\t<td>" . mysql_field_name($Erg, $i) . "</td>"; + } + echo "\t<td>Ändern</td>"; + echo "</tr>"; + + for ($t = 0; $t < mysql_num_rows($Erg); $t++) { + echo "\t<tr class=\"content\">\n"; + for ($j = 1; $j < mysql_num_fields($Erg); $j++) { + echo "\t\t<td>" . mysql_result($Erg, $t, $j) . "</td>\n"; + } + echo "\t\t<td><a href=\"./EngelType.php?action=change&TID=" . mysql_result($Erg, $t, "TID") . "\">###</a></td>\n"; + echo "\t</tr>\n"; + } // ende Auflistung Raeume + echo "</table>"; +} else { + + switch ($_GET["action"]) { + + case 'new' : + echo "Neuen EngelType einrichten: <br />"; + echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; + echo "<table>\n"; + + for ($Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++) { + echo "<td>" . mysql_field_name($Erg, $Uj) . "</td>" . + "<td><input type=\"text\" size=\"40\" name=\"" . mysql_field_name($Erg, $Uj) . "\"></td></tr>\n"; + } + echo "</table>\n"; + echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n"; + echo "<input type=\"submit\" value=\"sichern...\">\n"; + echo "</form>"; + break; + + case 'newsave' : + $vars = $_GET; + $count = count($vars) - 1; + $vars = array_splice($vars, 0, $count); + $Keys = ""; + $Values = ""; + foreach ($vars as $key => $value) { + $Keys .= ", `$key`"; + $Values .= ", '$value'"; + } + + if (runSQL_log("INSERT INTO `EngelType` (" . substr($Keys, 2) . ") VALUES (" . substr($Values, 2) . ")", "save new EngelType")) { + SetHeaderGo2Back(); + + $SQL2 = "SELECT * FROM `EngelType` WHERE `Name`='" . $_GET["Name"] . "'"; + $ERG = mysql_query($SQL2, $con); + + if (mysql_num_rows($ERG) == 1) + runSQL_log("ALTER TABLE `Room` ADD `DEFAULT_EID_" . mysql_result($ERG, 0, 0) . + "` INT DEFAULT '0' NOT NULL;", "add new EngelType in Romm Table"); + } + break; + + case 'change' : + if (!IsSet ($_GET["TID"])) + echo "Fehlerhafter Aufruf!"; + else { + echo "Raum abändern:\n"; + echo "Hier kannst du eintragen, den EngelType ändern."; + echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; + echo "<table>\n"; + + $SQL2 = "SELECT * FROM `EngelType` WHERE `TID`='" . $_GET["TID"] . "'"; + $ERG = mysql_query($SQL2, $con); + + for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) + echo "<tr><td>" . mysql_field_name($ERG, $Uj) . "</td>" . + "<td><input type=\"text\" size=\"40\" name=\"e" . mysql_field_name($ERG, $Uj) . "\" " . + "value=\"" . mysql_result($ERG, 0, $Uj) . "\"></td></tr>\n"; + + echo "</table>\n"; + echo "<input type=\"hidden\" name=\"eTID\" value=\"" . $_GET["TID"] . "\">\n"; + echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; + echo "<input type=\"submit\" value=\"sichern...\">\n"; + echo "</form>"; + echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; + echo "<input type=\"hidden\" name=\"TID\" value=\"" . $_GET["TID"] . "\">\n"; + echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; + echo "<input type=\"submit\" value=\"Löschen...\">"; + echo "</form>"; + } + break; + + case 'changesave' : + $vars = $_GET; + $count = count($vars) - 2; + $vars = array_splice($vars, 0, $count); + $keys = ""; + $sql = ""; + foreach ($vars as $key => $value) { + $keys = substr($key, 1); + $sql .= ", `" . $keys . "`='" . $value . "'"; + } + runSQL_log("UPDATE `EngelType` SET " . substr($sql, 2) . " WHERE `TID`='" . $_GET["eTID"] . "'", "Save Change EngelType"); + SetHeaderGo2Back(); + break; + + case 'delete' : + if (IsSet ($_GET["TID"])) { + if (runSQL_log("DELETE FROM `EngelType` WHERE `TID`='" . $_GET["TID"] . "'", "delete EngelType")) + runSQL_log("ALTER TABLE `Room` DROP `DEFAULT_EID_" . $_GET["TID"] . "`;", "delete EngelType in Room Table"); + } else + echo "Fehlerhafter Aufruf"; + SetHeaderGo2Back(); + break; + } } -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/Recentchanges.php b/www-ssl/admin/Recentchanges.php index 6bb8f59d..26324406 100644 --- a/www-ssl/admin/Recentchanges.php +++ b/www-ssl/admin/Recentchanges.php @@ -1,8 +1,9 @@ <?php +require_once ('../bootstrap.php'); $title = "ChangeLog"; $header = "Datenbank-Auszug"; -include ("../../../camp2011/includes/header.php"); +include ("includes/header.php"); $SQL = "SELECT * FROM `ChangeLog` ORDER BY `Time` DESC LIMIT 0,10000"; $Erg = mysql_query($SQL, $con); @@ -12,18 +13,17 @@ echo mysql_error($con); echo "<table border=1>\n"; echo "<tr>\n\t<th>Time</th>\n\t<th>User</th>\n\t<th>Commend</th>\n\t<th>SQL Commad</th>\n</tr>\n"; -for ($n = 0 ; $n < mysql_num_rows($Erg) ; $n++) -{ - echo "<tr>\n"; - echo "\t<td>". mysql_result( $Erg, $n, "Time"). "</td>\n"; - echo "\t<td>". UID2Nick(mysql_result( $Erg, $n, "UID")). displayavatar(mysql_result( $Erg, $n, "UID")). "</td>\n"; - echo "\t<td>". mysql_result( $Erg, $n, "Commend"). "</td>\n"; - echo "\t<td>". mysql_result( $Erg, $n, "SQLCommad"). "</td>\n"; - echo "</tr>\n"; +for ($n = 0; $n < mysql_num_rows($Erg); $n++) { + echo "<tr>\n"; + echo "\t<td>" . mysql_result($Erg, $n, "Time") . "</td>\n"; + echo "\t<td>" . UID2Nick(mysql_result($Erg, $n, "UID")) . displayavatar(mysql_result($Erg, $n, "UID")) . "</td>\n"; + echo "\t<td>" . mysql_result($Erg, $n, "Commend") . "</td>\n"; + echo "\t<td>" . mysql_result($Erg, $n, "SQLCommad") . "</td>\n"; + echo "</tr>\n"; } echo "</table>\n"; -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/UserPicture.php b/www-ssl/admin/UserPicture.php index 00716329..102d551d 100644 --- a/www-ssl/admin/UserPicture.php +++ b/www-ssl/admin/UserPicture.php @@ -1,120 +1,104 @@ <?php +require_once ('../bootstrap.php'); + $title = "UserPicture"; $header = "Verwaltung der User Picture"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_schichtplan_aray.php"); - - -if( IsSet($_GET["action"]) ) -{ - UnSet($SQL); - - switch ($_GET["action"]) - { - case 'FormUpload': - echo "Hier kannst Du ein Foto hochladen för:"; - echo "<form action=\"./UserPicture.php?action=sendPicture\" method=\"post\" enctype=\"multipart/form-data\">\n"; - echo "\t<select name=\"UID\">\n"; - $usql="SELECT * FROM `User` ORDER BY `Nick`"; - $uErg = mysql_query($usql, $con); - for ($k=0; $k<mysql_num_rows($uErg); $k++) - echo "\t\t<option value=\"".mysql_result($uErg, $k, "UID")."\">". mysql_result($uErg, $k, "Nick"). "</option>\n"; - echo "\t</select>\n"; - echo "\t<input type=\"hidden\" name=\"action\" value=\"sendPicture\">\n"; - echo "\t<input name=\"file\" type=\"file\" size=\"50\" maxlength=\"". get_cfg_var("post_max_size"). "\">\n"; - echo "\t(max ". get_cfg_var("post_max_size"). "Byte)<br />\n"; - echo "\t<input type=\"submit\" value=\"". Get_Text("upload"),"\">\n"; - echo "</form>\n"; - break; - case 'sendPicture': - if( ($_FILES["file"]["size"] > 0) && (isset( $_POST["UID"])) ) - { - if( ($_FILES["file"]["type"] == "image/jpeg") || - ($_FILES["file"]["type"] == "image/png") || - ($_FILES["file"]["type"] == "image/gif") ) - { - $data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"]))); - - if( GetPicturShow( $_POST['UID']) == "") - $SQL = "INSERT INTO `UserPicture` ". - "( `UID`,`Bild`, `ContentType`, `show`) ". - "VALUES ('". $_POST['UID']. "', '$data', '". $_FILES["file"]["type"]. "', 'N')"; - else - $SQL = "UPDATE `UserPicture` SET ". - "`Bild`='$data', ". - "`ContentType`='". $_FILES["file"]["type"]. "' ". - "WHERE `UID`='". $_POST['UID']. "'"; - - echo "Upload Pictur:'" . $_FILES["file"]["name"] . "', ". - "MIME-Type: " . $_FILES["file"]["type"]. ", ". - $_FILES["file"]["size"]. " Byte ". - "for ". UID2Nick( $_POST["UID"]); - } - else - Print_Text("pub_einstellungen_send_KO"); - } - else - Print_Text("pub_einstellungen_send_KO"); - break; - - case 'SetN': - if (IsSet($_GET["UID"])) - { - echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde gesperrt:<br />"; - $SQL = "UPDATE `UserPicture` SET `show`='N' WHERE `UID`='". $_GET["UID"]. "'"; - } - else - echo "Fehlerhafter Aufruf"; - break; - case 'SetY': - if (IsSet($_GET["UID"])) - { - echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde Freigegeben:<br />"; - $SQL = "UPDATE `UserPicture` SET `show`='Y' WHERE `UID`='". $_GET["UID"]. "'"; - } - else - echo "Fehlerhafter Aufruf"; - break; - case 'del': - echo "Wollen Sie das Bild von '". UID2Nick( $_GET["UID"]). "' wirklich löschen? ". - "<a href=\"./UserPicture.php?action=delYes&UID=". $_GET["UID"]. "\">Yes</a>"; - break; - case 'delYes': - if (IsSet($_GET["UID"])) - { - echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde gelöscht:<br />"; - $SQL = "DELETE FROM `UserPicture` WHERE `UID`='". $_GET["UID"]. "' LIMIT 1"; - } - else - echo "Fehlerhafter Aufruf"; - break; - default: - echo "Fehlerhafter Aufruf"; - - } //switch - - // Update ??? - if (IsSet($SQL)) - { - // hier muesste das SQL ausgefuehrt werden... - $Erg = mysql_query($SQL, $con); - if ($Erg == 1) - echo "Änderung wurde gesichert...<br />"; - else - { - echo "Fehler beim speichern... bitte noch ein mal probieren :)"; - echo "<br /><br />".mysql_error( $con ). "<br />($SQL)<br />"; - } - } // Ende Update - echo "<br />\n<hr width=\"100%\">\n<br />\n\n"; -} //IF IsSet($action) +include ("includes/header.php"); +include ("includes/funktion_schichtplan_aray.php"); + +if (IsSet ($_GET["action"])) { + UnSet ($SQL); + + switch ($_GET["action"]) { + case 'FormUpload' : + echo "Hier kannst Du ein Foto hochladen för:"; + echo "<form action=\"./UserPicture.php?action=sendPicture\" method=\"post\" enctype=\"multipart/form-data\">\n"; + echo "\t<select name=\"UID\">\n"; + $usql = "SELECT * FROM `User` ORDER BY `Nick`"; + $uErg = mysql_query($usql, $con); + for ($k = 0; $k < mysql_num_rows($uErg); $k++) + echo "\t\t<option value=\"" . mysql_result($uErg, $k, "UID") . "\">" . mysql_result($uErg, $k, "Nick") . "</option>\n"; + echo "\t</select>\n"; + echo "\t<input type=\"hidden\" name=\"action\" value=\"sendPicture\">\n"; + echo "\t<input name=\"file\" type=\"file\" size=\"50\" maxlength=\"" . get_cfg_var("post_max_size") . "\">\n"; + echo "\t(max " . get_cfg_var("post_max_size") . "Byte)<br />\n"; + echo "\t<input type=\"submit\" value=\"" . Get_Text("upload"), "\">\n"; + echo "</form>\n"; + break; + case 'sendPicture' : + if (($_FILES["file"]["size"] > 0) && (isset ($_POST["UID"]))) { + if (($_FILES["file"]["type"] == "image/jpeg") || ($_FILES["file"]["type"] == "image/png") || ($_FILES["file"]["type"] == "image/gif")) { + $data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"]))); + + if (GetPicturShow($_POST['UID']) == "") + $SQL = "INSERT INTO `UserPicture` " . + "( `UID`,`Bild`, `ContentType`, `show`) " . + "VALUES ('" . $_POST['UID'] . "', '$data', '" . $_FILES["file"]["type"] . "', 'N')"; + else + $SQL = "UPDATE `UserPicture` SET " . + "`Bild`='$data', " . + "`ContentType`='" . $_FILES["file"]["type"] . "' " . + "WHERE `UID`='" . $_POST['UID'] . "'"; + + echo "Upload Pictur:'" . $_FILES["file"]["name"] . "', " . + "MIME-Type: " . $_FILES["file"]["type"] . ", " . + $_FILES["file"]["size"] . " Byte " . + "for " . UID2Nick($_POST["UID"]); + } else + Print_Text("pub_einstellungen_send_KO"); + } else + Print_Text("pub_einstellungen_send_KO"); + break; + case 'SetN' : + if (IsSet ($_GET["UID"])) { + echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gesperrt:<br />"; + $SQL = "UPDATE `UserPicture` SET `show`='N' WHERE `UID`='" . $_GET["UID"] . "'"; + } else + echo "Fehlerhafter Aufruf"; + break; + case 'SetY' : + if (IsSet ($_GET["UID"])) { + echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde Freigegeben:<br />"; + $SQL = "UPDATE `UserPicture` SET `show`='Y' WHERE `UID`='" . $_GET["UID"] . "'"; + } else + echo "Fehlerhafter Aufruf"; + break; + case 'del' : + echo "Wollen Sie das Bild von '" . UID2Nick($_GET["UID"]) . "' wirklich löschen? " . + "<a href=\"./UserPicture.php?action=delYes&UID=" . $_GET["UID"] . "\">Yes</a>"; + break; + case 'delYes' : + if (IsSet ($_GET["UID"])) { + echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gelöscht:<br />"; + $SQL = "DELETE FROM `UserPicture` WHERE `UID`='" . $_GET["UID"] . "' LIMIT 1"; + } else + echo "Fehlerhafter Aufruf"; + break; + default : + echo "Fehlerhafter Aufruf"; + + } //switch + + // Update ??? + if (IsSet ($SQL)) { + // hier muesste das SQL ausgefuehrt werden... + $Erg = mysql_query($SQL, $con); + if ($Erg == 1) + echo "Änderung wurde gesichert...<br />"; + else { + echo "Fehler beim speichern... bitte noch ein mal probieren :)"; + echo "<br /><br />" . mysql_error($con) . "<br />($SQL)<br />"; + } + } // Ende Update + echo "<br />\n<hr width=\"100%\">\n<br />\n\n"; +} //IF IsSet($action) //ausgabe der Liste $Sql = "SELECT * FROM `UserPicture` WHERE `UID`>0;"; $Erg = mysql_query($Sql, $con); - -echo "Hallo ". $_SESSION['Nick']. ",<br />\nhier hast du die Möglichkeit, die Bilder der Engel freizugeben:<br /><br />\n"; + +echo "Hallo " . $_SESSION['Nick'] . ",<br />\nhier hast du die Möglichkeit, die Bilder der Engel freizugeben:<br /><br />\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<tr class=\"contenttopic\">\n"; @@ -124,26 +108,24 @@ echo "\t<td>Status</td>\n"; echo "\t<td>Löschen</td>\n"; echo "</tr>"; -for( $t = 0; $t < mysql_num_rows($Erg); $t++ ) -{ - $UIDs = mysql_result($Erg, $t, "UID"); - echo "\t<tr class=\"content\">\n"; - - echo "\t\t<td>". UID2Nick(mysql_result($Erg, $t, "UID")). "</td>\n"; - echo "\t\t<td>". displayPictur( $UIDs, 0). "</td>\n"; - - if( GetPicturShow( $UIDs) == "Y") - echo "\t\t<td><a href=\"./UserPicture.php?action=SetN&UID=$UIDs\">sperren</a></td>\n"; - elseif( GetPicturShow( $UIDs) == "N") - echo "\t\t<td><a href=\"./UserPicture.php?action=SetY&UID=$UIDs\">freigeben</a></td>\n"; - else - echo "\t\t<td>ERROR: show='". GetPicturShow( $UIDs). "'</td>\n"; - echo "\t\t<td><a href=\"./UserPicture.php?action=del&UID=$UIDs\">del</a></td>\n"; - echo "\t</tr>\n"; +for ($t = 0; $t < mysql_num_rows($Erg); $t++) { + $UIDs = mysql_result($Erg, $t, "UID"); + echo "\t<tr class=\"content\">\n"; + + echo "\t\t<td>" . UID2Nick(mysql_result($Erg, $t, "UID")) . "</td>\n"; + echo "\t\t<td>" . displayPictur($UIDs, 0) . "</td>\n"; + + if (GetPicturShow($UIDs) == "Y") + echo "\t\t<td><a href=\"./UserPicture.php?action=SetN&UID=$UIDs\">sperren</a></td>\n"; + elseif (GetPicturShow($UIDs) == "N") echo "\t\t<td><a href=\"./UserPicture.php?action=SetY&UID=$UIDs\">freigeben</a></td>\n"; + else + echo "\t\t<td>ERROR: show='" . GetPicturShow($UIDs) . "'</td>\n"; + echo "\t\t<td><a href=\"./UserPicture.php?action=del&UID=$UIDs\">del</a></td>\n"; + echo "\t</tr>\n"; } // ende Auflistung Raeume echo "</table>"; echo "<br /><a href=\"./UserPicture.php?action=FormUpload\">picture upload</a>\n"; -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/aktiv.php b/www-ssl/admin/aktiv.php index 68199cfa..8db62f98 100644 --- a/www-ssl/admin/aktiv.php +++ b/www-ssl/admin/aktiv.php @@ -1,57 +1,57 @@ <?php +require_once ('../bootstrap.php'); $title = "akive Engel"; $header = "Liste der aktiven Engel"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); echo "<form action=\"./aktiv.php\" method=\"post\">"; -echo Get_Text("pub_aktive_Text1")."<br />\n"; -echo Get_Text("pub_aktive_Text2")."<br /><br />\n"; - +echo Get_Text("pub_aktive_Text1") . "<br />\n"; +echo Get_Text("pub_aktive_Text2") . "<br /><br />\n"; + // auswahlbox -echo Get_Text("pub_aktive_Text31")."\n"; +echo Get_Text("pub_aktive_Text31") . "\n"; echo "<select name=\"Anzahl\">\n"; -for( $i=0; $i<50; $i++) - echo "\t<option value=\"$i\">$i</option>\n"; +for ($i = 0; $i < 50; $i++) + echo "\t<option value=\"$i\">$i</option>\n"; echo "</select>"; -echo Get_Text("pub_aktive_Text32")."<br /><br />\n"; +echo Get_Text("pub_aktive_Text32") . "<br /><br />\n"; echo "<input type=\"submit\" name=\"SendType\" value=\"Show..\">\n"; echo "<input type=\"submit\" name=\"SendType\" value=\"Write..\">\n"; echo "</form>\n"; echo "<form action=\"./aktiv.php\" method=\"post\">\n"; - echo "\t<br /><input type=\"submit\" name=\"ResetActive\" value=\"reset Active setting\">\n"; +echo "\t<br /><input type=\"submit\" name=\"ResetActive\" value=\"reset Active setting\">\n"; echo "</form>\n"; -if( Isset($_POST["ResetActive"]) ) -{ - $SQLreset = "UPDATE `User` SET `Aktiv`='0'"; - $ErgReset = db_query($SQLreset, "Reset Active"); - if ($ErgReset != 1) - echo "Fehler beim zuruecksetzen der Activ\n"; - else - echo "Active wurde erfolgreich zurueckgesetzt\n"; +if (Isset ($_POST["ResetActive"])) { + $SQLreset = "UPDATE `User` SET `Aktiv`='0'"; + $ErgReset = db_query($SQLreset, "Reset Active"); + if ($ErgReset != 1) + echo "Fehler beim zuruecksetzen der Activ\n"; + else + echo "Active wurde erfolgreich zurueckgesetzt\n"; } -if( IsSet($_POST["Anzahl"]) ) - echo "<br />\n\n".Get_Text("pub_aktive_Text5_1"). $_POST["Anzahl"]. Get_Text("pub_aktive_Text5_2"). ":"; +if (IsSet ($_POST["Anzahl"])) + echo "<br />\n\n" . Get_Text("pub_aktive_Text5_1") . $_POST["Anzahl"] . Get_Text("pub_aktive_Text5_2") . ":"; echo "<br /><br />\n\n"; //ausgabe tabelle echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<tr class=\"contenttopic\">\n"; -echo "\t<td>". Get_Text("pub_aktive_Nick"). "</td>\n"; -echo "\t<td>". Get_Text("pub_aktive_Anzahl"). "</td>\n"; -echo "\t<td>". Get_Text("pub_aktive_Time"). "</td>\n"; -echo "\t<td>". Get_Text("pub_aktive_Time"). " Weight</td>\n"; -echo "\t<td>Freeloader ". Get_Text("pub_aktive_Anzahl"). "</td>\n"; -echo "\t<td>Freeloader ". Get_Text("pub_aktive_Time"). "</td>\n"; -echo "\t<td>". Get_Text("pub_aktive_Time"). " result</td>\n"; -echo "\t<td>". Get_Text("pub_aktive_Active"). "</td>\n"; +echo "\t<td>" . Get_Text("pub_aktive_Nick") . "</td>\n"; +echo "\t<td>" . Get_Text("pub_aktive_Anzahl") . "</td>\n"; +echo "\t<td>" . Get_Text("pub_aktive_Time") . "</td>\n"; +echo "\t<td>" . Get_Text("pub_aktive_Time") . " Weight</td>\n"; +echo "\t<td>Freeloader " . Get_Text("pub_aktive_Anzahl") . "</td>\n"; +echo "\t<td>Freeloader " . Get_Text("pub_aktive_Time") . "</td>\n"; +echo "\t<td>" . Get_Text("pub_aktive_Time") . " result</td>\n"; +echo "\t<td>" . Get_Text("pub_aktive_Active") . "</td>\n"; echo "</tr>\n"; - + $SQL = " SELECT d.UID, d.nr, d.len, d.lenWeight, f.nr AS nrFree, f.len AS lenFree, d.lenWeight - COALESCE(f.len, 0) as lenReal FROM @@ -65,46 +65,41 @@ $Erg = mysql_query($SQL, $con); echo mysql_error($con); $rowcount = mysql_num_rows($Erg); -$aktivecount=0; -for ($i=0; $i<$rowcount; $i++) -{ - echo "\n\n\t<tr class=\"content\">\n"; - echo "\t\t<td>". UID2Nick(mysql_result($Erg, $i, "UID")). "</td>\n"; - echo "\t\t<td>". mysql_result($Erg, $i, "nr"). "x</td>\n"; - echo "\t\t<td>". mysql_result($Erg, $i, "len"). "h</td>\n"; - echo "\t\t<td>". mysql_result($Erg, $i, "lenWeight"). "h</td>\n"; - echo "\t\t<td>". mysql_result($Erg, $i, "nrFree"). "x</td>\n"; - echo "\t\t<td>". mysql_result($Erg, $i, "lenFree"). "h</td>\n"; - echo "\t\t<td>". mysql_result($Erg, $i, "lenReal"). "h</td>\n"; - - - echo "\t\t<td>"; - if (IsSet($_POST["Anzahl"])) - { - if( $_POST["Anzahl"] < mysql_result($Erg, $i, "lenReal") ) - { - $aktivecount++; - if( $_POST["SendType"]=="Show..") - echo "show set"; - else - { - $SQL2="UPDATE `User` SET `Aktiv`='1' WHERE `UID`='". mysql_result($Erg, $i, "UID"). "' LIMIT 1"; - $Erg2 = db_query($SQL2, "update Active State"); - if ($Erg2 != 1) - echo "Fehler beim speichern bei Engel ".UID2Nick(mysql_result($Erg, $i, "UID")); - else - echo "write set"; - } - } - } - echo "</td>\n"; - echo "\t</tr>\n"; +$aktivecount = 0; +for ($i = 0; $i < $rowcount; $i++) { + echo "\n\n\t<tr class=\"content\">\n"; + echo "\t\t<td>" . UID2Nick(mysql_result($Erg, $i, "UID")) . "</td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "nr") . "x</td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "len") . "h</td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "lenWeight") . "h</td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "nrFree") . "x</td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "lenFree") . "h</td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "lenReal") . "h</td>\n"; + + echo "\t\t<td>"; + if (IsSet ($_POST["Anzahl"])) { + if ($_POST["Anzahl"] < mysql_result($Erg, $i, "lenReal")) { + $aktivecount++; + if ($_POST["SendType"] == "Show..") + echo "show set"; + else { + $SQL2 = "UPDATE `User` SET `Aktiv`='1' WHERE `UID`='" . mysql_result($Erg, $i, "UID") . "' LIMIT 1"; + $Erg2 = db_query($SQL2, "update Active State"); + if ($Erg2 != 1) + echo "Fehler beim speichern bei Engel " . UID2Nick(mysql_result($Erg, $i, "UID")); + else + echo "write set"; + } + } + } + echo "</td>\n"; + echo "\t</tr>\n"; } // ende Auflistung aktive Engel echo "</table>"; echo "<br />Anzahl eintraege: $aktivecount / $rowcount (Aktive/Mitschichten)<br /><br />"; -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/dbUpdateFromXLS.php b/www-ssl/admin/dbUpdateFromXLS.php index 9a329355..88879de7 100644 --- a/www-ssl/admin/dbUpdateFromXLS.php +++ b/www-ssl/admin/dbUpdateFromXLS.php @@ -1,8 +1,10 @@ <?php +require_once ('../bootstrap.php'); + $title = "DB Update from XML"; $header = "DB Update from XML"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_xml.php"); +include ("includes/header.php"); +include ("includes/funktion_xml.php"); /////////// // DEBUG // @@ -14,27 +16,24 @@ $EnableSchudleFunctions = 1; $EnableSchudle = 1; $EnableSchudleDB = 1; - /*############################################################################################## erstellt Arrays der Reume ##############################################################################################*/ -function CreateRoomArrays() -{ - global $Room, $RoomID, $RoomName, $con; - - $sql = "SELECT `RID`, `Name` FROM `Room` ". - "WHERE `Show`='Y'". - "ORDER BY `Number`, `Name`;"; - $Erg = mysql_query($sql, $con); - $rowcount = mysql_num_rows($Erg); - - for ($i=0; $i<$rowcount; $i++) - { - $Room[$i]["RID"] = mysql_result($Erg, $i, "RID"); - $Room[$i]["Name"] = mysql_result($Erg, $i, "Name"); - $RoomID[ mysql_result($Erg, $i, "RID") ] = mysql_result($Erg, $i, "Name"); - $RoomName[ mysql_result($Erg, $i, "Name") ] = mysql_result($Erg, $i, "RID"); - } +function CreateRoomArrays() { + global $Room, $RoomID, $RoomName, $con; + + $sql = "SELECT `RID`, `Name` FROM `Room` " . + "WHERE `Show`='Y'" . + "ORDER BY `Number`, `Name`;"; + $Erg = mysql_query($sql, $con); + $rowcount = mysql_num_rows($Erg); + + for ($i = 0; $i < $rowcount; $i++) { + $Room[$i]["RID"] = mysql_result($Erg, $i, "RID"); + $Room[$i]["Name"] = mysql_result($Erg, $i, "Name"); + $RoomID[mysql_result($Erg, $i, "RID")] = mysql_result($Erg, $i, "Name"); + $RoomName[mysql_result($Erg, $i, "Name")] = mysql_result($Erg, $i, "RID"); + } } CreateRoomArrays(); @@ -42,252 +41,212 @@ CreateRoomArrays(); F I L E ##############################################################################################*/ echo "\n\n<br />\n<h1>XML File:</h1>\n"; -if( isset($_POST["PentabarfUser"]) && isset($_POST["password"]) && isset($_POST["PentabarfURL"])) -{ - echo "Update XCAL-File from Pentabarf.."; - if($PentabarfGetWith=="fsockopen") - { - - //backup error messeges and delate - $Backuperror_messages = $error_messages; - $fp = fsockopen( "ssl://$PentabarfXMLhost", 443, $errno, $errstr, 30); -// $error_messages = $Backuperror_messages; - - if( !$fp) - { - echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!". - "[$errstr ($errno)]</h2>"; - } - else - { - if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE) - { - $head = 'GET /'. $PentabarfXMLpath. $_POST["PentabarfURL"]. ' HTTP/1.1'."\r\n". - 'Host: '. $PentabarfXMLhost. "\r\n". - 'User-Agent: Engelsystem'. "\r\n". - 'Authorization: Basic '. - base64_encode($_POST["PentabarfUser"]. ':'. $_POST["password"])."\r\n". - "\r\n"; - fputs( $fp, $head); - $Zeilen = -1; - while (!feof($fp)) - { - $Temp= fgets($fp,1024); - - // ende des headers - if( $Temp== "f20\r\n" ) - { - $Zeilen = 0; - $Temp=""; - } - - //file ende? - if( $Temp=="0\r\n") - break; - - if( ($Zeilen>-1) && ($Temp!="ffb\r\n") ) - { - //steuerzeichen ausfiltern - if( strpos( "#$Temp", "\r\n") > 0) - $Temp = substr($Temp, 0, strlen($Temp)-2); - if( strpos( "#$Temp", "1005") > 0) - $Temp = ""; - if( strpos( "#$Temp", "783") > 0) - $Temp = ""; - //schreiben in file - fputs( $fileOut, $Temp); - $Zeilen++; - } - } - fclose( $fileOut); - - echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; - } - else - echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; - fclose($fp); - } - } - elseif($PentabarfGetWith=="fopen") - { - //user uns password in url einbauen - $FileNameIn = "https://". $_POST["PentabarfUser"]. ':'. $_POST["password"]. "@". - $PentabarfXMLhost. "/". $PentabarfXMLpath. $_POST["PentabarfURL"]; - - - if( ($fileIn = fopen( $FileNameIn, "r")) != FALSE) - { - if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE) - { - $Zeilen = 0; - while (!feof($fileIn)) - { - $Zeilen++; - fputs( $fileOut, fgets( $fileIn)); - } - fclose( $fileOut); - echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; - } - else - echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; - fclose( $fileIn); - } - else - echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!</h2>"; - } - elseif( $PentabarfGetWith=="wget") - { - $Command = "wget --http-user=". $_POST["PentabarfUser"]. " --http-passwd=".$_POST["password"]. " ". - "https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. - " --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML". - " --no-check-certificate"; - echo system( $Command, $Status); - if( $Status==0) - echo "OK.<br />"; - else - echo "fail ($Status)($Command).<br />"; - } - elseif( $PentabarfGetWith=="lynx") - { - $Command = "lynx -auth=". $_POST["PentabarfUser"]. ":".$_POST["password"]. " -dump ". - "https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. " > $Tempdir/engelXML"; - echo system( $Command, $Status); - if( $Status==0) - echo "OK.<br />"; - else - echo "fail ($Status)($Command).<br />"; - } - elseif($PentabarfGetWith=="fopen") - { - //user uns password in url einbauen - $FileNameIn = "https://". $_POST["PentabarfUser"]. ':'. $_POST["password"]. "@". - $PentabarfXMLhost. "/". $PentabarfXMLpath. $_POST["PentabarfURL"]; - - - if( ($fileIn = fopen( $FileNameIn, "r")) != FALSE) - { - if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE) - { - $Zeilen = 0; - while (!feof($fileIn)) - { - $Zeilen++; - fputs( $fileOut, fgets( $fileIn)); - } - fclose( $fileOut); - echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; - } - else - echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; - fclose( $fileIn); - } - else - echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!</h2>"; - } - elseif( $PentabarfGetWith=="wget") - { - $Command = "wget --http-user=". $_POST["PentabarfUser"]. " --http-passwd=".$_POST["password"]. " ". - "https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. - " --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML". - " --no-check-certificate"; - echo system( $Command, $Status); - if( $Status==0) - echo "OK.<br />"; - else - echo "fail ($Status)($Command).<br />"; - } - elseif( $PentabarfGetWith=="lynx") - { - $Command = "lynx -auth=". $_POST["PentabarfUser"]. ":".$_POST["password"]. " -dump ". - "https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. " > $Tempdir/engelXML"; - echo system( $Command, $Status); - if( $Status==0) - echo "OK.<br />"; - else - echo "fail ($Status)($Command).<br />"; - } - else - echo "<h1>The PentabarfGetWith='$PentabarfGetWith' not supported</h1>"; -} -else -{ - echo "<form action=\"dbUpdateFromXLS.php\" method=\"post\">\n"; - echo "<table border=\"0\">\n"; - echo "\t<tr><td>XCAL-File: https://$PentabarfXMLhost/$PentabarfXMLpath</td>". - "<td><input name=\"PentabarfURL\" type=\"text\" size=\"4\" maxlength=\"5\" ". - "value=\"$PentabarfXMLEventID\"></td></tr>\n"; - echo "\t<tr><td>Username:</td>". - "<td><input name=\"PentabarfUser\" type=\"text\" size=\"30\" maxlength=\"30\"></td></tr>\n"; - echo "\t<tr><td>Password:</td>". - "<td><input name=\"password\" type=\"password\" size=\"30\" maxlength=\"30\"></td></tr>\n"; - echo "\t<tr><td></td><td><input type=\"submit\" name=\"FileUpload\" value=\"upload\"></td></tr>\n"; - echo "</table>\n"; - echo "</form>\n"; +if (isset ($_POST["PentabarfUser"]) && isset ($_POST["password"]) && isset ($_POST["PentabarfURL"])) { + echo "Update XCAL-File from Pentabarf.."; + if ($PentabarfGetWith == "fsockopen") { + + //backup error messeges and delate + $Backuperror_messages = $error_messages; + $fp = fsockopen("ssl://$PentabarfXMLhost", 443, $errno, $errstr, 30); + // $error_messages = $Backuperror_messages; + + if (!$fp) { + echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!" . + "[$errstr ($errno)]</h2>"; + } else { + if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) { + $head = 'GET /' . $PentabarfXMLpath . $_POST["PentabarfURL"] . ' HTTP/1.1' . "\r\n" . + 'Host: ' . $PentabarfXMLhost . "\r\n" . + 'User-Agent: Engelsystem' . "\r\n" . + 'Authorization: Basic ' . + base64_encode($_POST["PentabarfUser"] . ':' . $_POST["password"]) . "\r\n" . + "\r\n"; + fputs($fp, $head); + $Zeilen = -1; + while (!feof($fp)) { + $Temp = fgets($fp, 1024); + + // ende des headers + if ($Temp == "f20\r\n") { + $Zeilen = 0; + $Temp = ""; + } + + //file ende? + if ($Temp == "0\r\n") + break; + + if (($Zeilen > -1) && ($Temp != "ffb\r\n")) { + //steuerzeichen ausfiltern + if (strpos("#$Temp", "\r\n") > 0) + $Temp = substr($Temp, 0, strlen($Temp) - 2); + if (strpos("#$Temp", "1005") > 0) + $Temp = ""; + if (strpos("#$Temp", "783") > 0) + $Temp = ""; + //schreiben in file + fputs($fileOut, $Temp); + $Zeilen++; + } + } + fclose($fileOut); + + echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; + } else + echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; + fclose($fp); + } + } + elseif ($PentabarfGetWith == "fopen") { + //user uns password in url einbauen + $FileNameIn = "https://" . $_POST["PentabarfUser"] . ':' . $_POST["password"] . "@" . + $PentabarfXMLhost . "/" . $PentabarfXMLpath . $_POST["PentabarfURL"]; + + if (($fileIn = fopen($FileNameIn, "r")) != FALSE) { + if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) { + $Zeilen = 0; + while (!feof($fileIn)) { + $Zeilen++; + fputs($fileOut, fgets($fileIn)); + } + fclose($fileOut); + echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; + } else + echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; + fclose($fileIn); + } else + echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!</h2>"; + } + elseif ($PentabarfGetWith == "wget") { + $Command = "wget --http-user=" . $_POST["PentabarfUser"] . " --http-passwd=" . $_POST["password"] . " " . + "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . + " --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML" . + " --no-check-certificate"; + echo system($Command, $Status); + if ($Status == 0) + echo "OK.<br />"; + else + echo "fail ($Status)($Command).<br />"; + } + elseif ($PentabarfGetWith == "lynx") { + $Command = "lynx -auth=" . $_POST["PentabarfUser"] . ":" . $_POST["password"] . " -dump " . + "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . " > $Tempdir/engelXML"; + echo system($Command, $Status); + if ($Status == 0) + echo "OK.<br />"; + else + echo "fail ($Status)($Command).<br />"; + } + elseif ($PentabarfGetWith == "fopen") { + //user uns password in url einbauen + $FileNameIn = "https://" . $_POST["PentabarfUser"] . ':' . $_POST["password"] . "@" . + $PentabarfXMLhost . "/" . $PentabarfXMLpath . $_POST["PentabarfURL"]; + + if (($fileIn = fopen($FileNameIn, "r")) != FALSE) { + if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) { + $Zeilen = 0; + while (!feof($fileIn)) { + $Zeilen++; + fputs($fileOut, fgets($fileIn)); + } + fclose($fileOut); + echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; + } else + echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; + fclose($fileIn); + } else + echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!</h2>"; + } + elseif ($PentabarfGetWith == "wget") { + $Command = "wget --http-user=" . $_POST["PentabarfUser"] . " --http-passwd=" . $_POST["password"] . " " . + "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . + " --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML" . + " --no-check-certificate"; + echo system($Command, $Status); + if ($Status == 0) + echo "OK.<br />"; + else + echo "fail ($Status)($Command).<br />"; + } + elseif ($PentabarfGetWith == "lynx") { + $Command = "lynx -auth=" . $_POST["PentabarfUser"] . ":" . $_POST["password"] . " -dump " . + "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . " > $Tempdir/engelXML"; + echo system($Command, $Status); + if ($Status == 0) + echo "OK.<br />"; + else + echo "fail ($Status)($Command).<br />"; + } else + echo "<h1>The PentabarfGetWith='$PentabarfGetWith' not supported</h1>"; +} else { + echo "<form action=\"dbUpdateFromXLS.php\" method=\"post\">\n"; + echo "<table border=\"0\">\n"; + echo "\t<tr><td>XCAL-File: https://$PentabarfXMLhost/$PentabarfXMLpath</td>" . + "<td><input name=\"PentabarfURL\" type=\"text\" size=\"4\" maxlength=\"5\" " . + "value=\"$PentabarfXMLEventID\"></td></tr>\n"; + echo "\t<tr><td>Username:</td>" . + "<td><input name=\"PentabarfUser\" type=\"text\" size=\"30\" maxlength=\"30\"></td></tr>\n"; + echo "\t<tr><td>Password:</td>" . + "<td><input name=\"password\" type=\"password\" size=\"30\" maxlength=\"30\"></td></tr>\n"; + echo "\t<tr><td></td><td><input type=\"submit\" name=\"FileUpload\" value=\"upload\"></td></tr>\n"; + echo "</table>\n"; + echo "</form>\n"; } - - //readXMLfile("xml.php.xml"); -if( readXMLfile("$Tempdir/engelXML") == 0) -{ -$XMLmain = getXMLsubPease( $XMLmain, "VCALENDAR"); - - -if( $ShowDataStrukture) -{ - echo "<pre><br />"; - echo $XMLmain->name; - echo "<br />"; - print_r(array_values ($XMLmain->sub)); - echo "</pre>"; -} - -/* -echo "<br />"; -$Feld=7; -echo "$Feld#". $XMLmain->sub[$Feld]->name. "<br />"; -echo "$Feld#". $XMLmain->sub[$Feld]->sub; -//print_r(array_values ($XMLmain->sub[$Feld]->sub)); -while(list($key, $value) = each($XMLmain->sub[$Feld]->sub)) - echo "?ID".$value->sub[1]->data. "=". $value->sub[2]->data. "\n"; -echo "</pre>"; -*/ - - -/*############################################################################################## - V e r s i o n - ##############################################################################################*/ - -echo "<hr>\n"; -$XMLrelease = getXMLsubPease( $XMLmain, "X-WR-CALDESC"); -echo "release: ". $XMLrelease->data. "<br />\n"; -//$XMLreleaseDate = getXMLsubPease( $XMLmain, "RELEASE-DATE"); -//echo "release date: ". $XMLreleaseDate->data. "<br />\n"; -echo "<hr>\n"; - - - -/*############################################################################################## - V e r s i o n - ##############################################################################################*/ -if( $EnableRoomFunctions) - include("../../../camp2011/includes/funktion_xml_room.php"); - -if( $EnableSchudleFunctions) - include("../../../camp2011/includes/funktion_xml_schudle.php"); - - -/*############################################################################################## - U P D A T E A L L - ##############################################################################################*/ -echo "\n\n<br />\n<h1>Update ALL:</h1>\n"; - -echo "<form action=\"dbUpdateFromXLS.php\">\n"; -echo "\t<input type=\"submit\" name=\"UpdateALL\" value=\"now\">\n"; -echo "</form>\n"; +if (readXMLfile("$Tempdir/engelXML") == 0) { + $XMLmain = getXMLsubPease($XMLmain, "VCALENDAR"); + + if ($ShowDataStrukture) { + echo "<pre><br />"; + echo $XMLmain->name; + echo "<br />"; + print_r(array_values($XMLmain->sub)); + echo "</pre>"; + } + + /* + echo "<br />"; + $Feld=7; + echo "$Feld#". $XMLmain->sub[$Feld]->name. "<br />"; + echo "$Feld#". $XMLmain->sub[$Feld]->sub; + //print_r(array_values ($XMLmain->sub[$Feld]->sub)); + while(list($key, $value) = each($XMLmain->sub[$Feld]->sub)) + echo "?ID".$value->sub[1]->data. "=". $value->sub[2]->data. "\n"; + echo "</pre>"; + */ + + /*############################################################################################## + V e r s i o n + ##############################################################################################*/ + + echo "<hr>\n"; + $XMLrelease = getXMLsubPease($XMLmain, "X-WR-CALDESC"); + echo "release: " . $XMLrelease->data . "<br />\n"; + //$XMLreleaseDate = getXMLsubPease( $XMLmain, "RELEASE-DATE"); + //echo "release date: ". $XMLreleaseDate->data. "<br />\n"; + echo "<hr>\n"; + + /*############################################################################################## + V e r s i o n + ##############################################################################################*/ + if ($EnableRoomFunctions) + include ("includes/funktion_xml_room.php"); + + if ($EnableSchudleFunctions) + include ("includes/funktion_xml_schudle.php"); + + /*############################################################################################## + U P D A T E A L L + ##############################################################################################*/ + echo "\n\n<br />\n<h1>Update ALL:</h1>\n"; + + echo "<form action=\"dbUpdateFromXLS.php\">\n"; + echo "\t<input type=\"submit\" name=\"UpdateALL\" value=\"now\">\n"; + echo "</form>\n"; } //if XMLopenOOK -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/debug.php b/www-ssl/admin/debug.php index b2c6357f..ec1b2c9f 100644 --- a/www-ssl/admin/debug.php +++ b/www-ssl/admin/debug.php @@ -1,9 +1,10 @@ <?php +require_once ('../bootstrap.php'); $title = "Debug-Liste"; $header = "Datenbank-Auszug"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); echo "<h1>Web Counter</h1>"; funktion_db_list("Counter"); @@ -31,39 +32,27 @@ echo "Deaktiviert"; */ echo "<hr>\n"; -funktion_db_element_list_2row( "Tshirt-Size aller engel", - "SELECT `Size`, COUNT(`Size`) FROM `User` GROUP BY `Size`"); +funktion_db_element_list_2row("Tshirt-Size aller engel", "SELECT `Size`, COUNT(`Size`) FROM `User` GROUP BY `Size`"); echo "<br />\n"; -funktion_db_element_list_2row( "Tshirt ausgegeben", - "SELECT `Size`, COUNT(`Size`) FROM `User` WHERE `Tshirt`='1' GROUP BY `Size`"); +funktion_db_element_list_2row("Tshirt ausgegeben", "SELECT `Size`, COUNT(`Size`) FROM `User` WHERE `Tshirt`='1' GROUP BY `Size`"); echo "<br />\n"; -funktion_db_element_list_2row( "Tshirt nicht ausgegeben (Gekommen=1)", - "SELECT COUNT(`Size`), `Size` FROM `User` WHERE `Gekommen`='1' and `Tshirt`='0' GROUP BY `Size`"); +funktion_db_element_list_2row("Tshirt nicht ausgegeben (Gekommen=1)", "SELECT COUNT(`Size`), `Size` FROM `User` WHERE `Gekommen`='1' and `Tshirt`='0' GROUP BY `Size`"); echo "<hr>\n"; -funktion_db_element_list_2row( "Hometown", - "SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`"); +funktion_db_element_list_2row("Hometown", "SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`"); echo "<br />\n"; -funktion_db_element_list_2row( "Engeltypen", - "SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`"); +funktion_db_element_list_2row("Engeltypen", "SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`"); echo "<hr>\n"; -funktion_db_element_list_2row( "Gesamte Arbeit", - "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID)"); +funktion_db_element_list_2row("Gesamte Arbeit", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID)"); echo "<br />\n"; -funktion_db_element_list_2row( "Geleisteter Arbeit", - "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0)"); +funktion_db_element_list_2row("Geleisteter Arbeit", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0)"); echo "<hr>\n"; -funktion_db_element_list_2row( "Gesamte Arbeit (Ohne Raum aufabau (RID=7)", - "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (Shifts.RID!=7)"); +funktion_db_element_list_2row("Gesamte Arbeit (Ohne Raum aufabau (RID=7)", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (Shifts.RID!=7)"); echo "<br />\n"; -funktion_db_element_list_2row( "Geleisteter Arbeit (Ohne Raum aufabau (RID=7)", - "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0) AND (Shifts.RID!=7)"); +funktion_db_element_list_2row("Geleisteter Arbeit (Ohne Raum aufabau (RID=7)", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0) AND (Shifts.RID!=7)"); - - - -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/dect.php b/www-ssl/admin/dect.php index 76409cc6..6ad98c81 100644 --- a/www-ssl/admin/dect.php +++ b/www-ssl/admin/dect.php @@ -1,70 +1,69 @@ <?php +require_once ('../bootstrap.php'); $title = "Engelsystem - DECT"; $header = "DECT send call"; -include ("../../../camp2011/includes/header.php"); +include ("includes/header.php"); -include ("../../../camp2011/includes/config_IAX.php"); +include ("config/config_IAX.php"); //include ("../../../camp2011/includes/funktion_modem.php"); -include ("../../../camp2011/includes/funktion_cron.php"); - -if( !isset($_GET["dial"])) $_GET["dial"] = ""; -if( !isset($_GET["custum"])) $_GET["custum"] = ""; - -if( $_GET["dial"]=="dial") -{ - if( $_GET["DECT"]=="") - $Number = $_GET["custum"]; - else - $Number = $_GET["DECT"]; - - if( strlen( $_GET["timeh"])== 1) - $_GET["timeh"] = "0". $_GET["timeh"]; - - if( strlen( $_GET["timem"])== 1) - $_GET["timem"] = "0". $_GET["timem"]; - -// SetWackeup( $Number, $_GET["timeh"], $_GET["timem"]); - DialNumberIAX($Number, $_GET["timeh"], $_GET["timem"],0); - - $_GET["custum"] = $Number; +include ("includes/funktion_cron.php"); + +if (!isset ($_GET["dial"])) + $_GET["dial"] = ""; +if (!isset ($_GET["custum"])) + $_GET["custum"] = ""; + +if ($_GET["dial"] == "dial") { + if ($_GET["DECT"] == "") + $Number = $_GET["custum"]; + else + $Number = $_GET["DECT"]; + + if (strlen($_GET["timeh"]) == 1) + $_GET["timeh"] = "0" . $_GET["timeh"]; + + if (strlen($_GET["timem"]) == 1) + $_GET["timem"] = "0" . $_GET["timem"]; + + // SetWackeup( $Number, $_GET["timeh"], $_GET["timem"]); + DialNumberIAX($Number, $_GET["timeh"], $_GET["timem"], 0); + + $_GET["custum"] = $Number; } +echo "<form action=\"./dect.php\" method=\"GET\">\n"; +echo "<table>\n"; + +echo "<tr><th>Number</th><th>h:m</th><th></th></tr>\n"; + +echo "<tr><td>\n"; +// Listet alle Nicks auf +echo "<select name=\"DECT\">\n"; +echo "\t<option value=\"\">costum</option>\n"; + +$usql = "SELECT * FROM `User` WHERE NOT `DECT`='' ORDER BY `Nick`"; +$uErg = mysql_query($usql, $con); +$urowcount = mysql_num_rows($uErg); +for ($k = 0; $k < $urowcount; $k++) { + echo "\t<option value=\"" . mysql_result($uErg, $k, "DECT") . "\">" . + mysql_result($uErg, $k, "Nick") . + " (" . mysql_result($uErg, $k, "DECT") . ")" . + "</option>\n"; +} +echo "</select>\n"; + +echo "<input type=\"text\" name=\"custum\" size=\"4\" maxlength=\"4\" value=\"" . $_GET["custum"] . "\">\n"; +echo "</td>\n"; + +echo "<td><input type=\"text\" name=\"timeh\" size=\"2\" maxlength=\"2\" value=\"" . gmdate("H", time() + 90 + 3600) . "\">:"; +echo "<input type=\"text\" name=\"timem\" size=\"2\" maxlength=\"2\" value=\"" . gmdate("i", time() + 90 + 3600) . "\"></td>\n"; +echo "<td><input type=\"submit\" name=\"dial\" value=\"dial\"></td>\n"; +echo "</tr>"; +echo "</table>\n"; + +echo "</form>"; - echo "<form action=\"./dect.php\" method=\"GET\">\n"; - echo "<table>\n"; - - echo "<tr><th>Number</th><th>h:m</th><th></th></tr>\n"; - - echo "<tr><td>\n"; - // Listet alle Nicks auf - echo "<select name=\"DECT\">\n"; - echo "\t<option value=\"\">costum</option>\n"; - - $usql="SELECT * FROM `User` WHERE NOT `DECT`='' ORDER BY `Nick`"; - $uErg = mysql_query($usql, $con); - $urowcount = mysql_num_rows($uErg); - for ($k=0; $k<$urowcount; $k++) - { - echo "\t<option value=\"".mysql_result($uErg, $k, "DECT")."\">". - mysql_result($uErg, $k, "Nick"). - " (". mysql_result($uErg, $k, "DECT"). ")". - "</option>\n"; - } - echo "</select>\n"; - - echo "<input type=\"text\" name=\"custum\" size=\"4\" maxlength=\"4\" value=\"". $_GET["custum"]. "\">\n"; - echo "</td>\n"; - - echo "<td><input type=\"text\" name=\"timeh\" size=\"2\" maxlength=\"2\" value=\"". gmdate("H", time()+90+3600). "\">:"; - echo "<input type=\"text\" name=\"timem\" size=\"2\" maxlength=\"2\" value=\"". gmdate("i", time()+90+3600). "\"></td>\n"; - echo "<td><input type=\"submit\" name=\"dial\" value=\"dial\"></td>\n"; - echo "</tr>"; - echo "</table>\n"; - - echo "</form>"; - - -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/dect_call.php b/www-ssl/admin/dect_call.php index 58c7cfe1..0799c2be 100644 --- a/www-ssl/admin/dect_call.php +++ b/www-ssl/admin/dect_call.php @@ -1,7 +1,8 @@ <?php -include ("../../../camp2011/includes/header.php"); +require_once ('../bootstrap.php'); +include ("includes/header.php"); -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/faq.php b/www-ssl/admin/faq.php index 217e9188..779d8822 100644 --- a/www-ssl/admin/faq.php +++ b/www-ssl/admin/faq.php @@ -1,28 +1,28 @@ <?php +require_once ('../bootstrap.php'); + $title = "Himmel"; $header = "FAQ / Fragen an die Erzengel"; $submenus = 1; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db.php"); +include ("includes/header.php"); +include ("includes/funktion_db.php"); //var init -$quest_bearb=0; +$quest_bearb = 0; -if (IsSet($_GET["quest"])) -{ +if (IsSet ($_GET["quest"])) { -switch ($_GET["quest"]) -{ + switch ($_GET["quest"]) { -// *--------------------------------------------------------------------------- -// * Anfragen - Bearbeitung -// *--------------------------------------------------------------------------- -// * je nach Übergabeoption ($quest) koennen Anfragen beantwortet werden oder -// * als FAQ uebergeben werden -// *--------------------------------------------------------------------------- + // *--------------------------------------------------------------------------- + // * Anfragen - Bearbeitung + // *--------------------------------------------------------------------------- + // * je nach �bergabeoption ($quest) koennen Anfragen beantwortet werden oder + // * als FAQ uebergeben werden + // *--------------------------------------------------------------------------- -case "all": - $SQL="SELECT * FROM `Questions` ORDER BY QID DESC"; + case "all" : + $SQL = "SELECT * FROM `Questions` ORDER BY QID DESC"; ?> Alle Anfragen:<br /> <table width="100%" class="border" cellpadding="2" cellspacing="1"> @@ -37,142 +37,132 @@ case "all": <?php - $Erg = mysql_query($SQL, $con); - // anzahl zeilen - $Zeilen = mysql_num_rows($Erg); - for ($n = 0 ; $n < $Zeilen ; $n++) { - echo "<tr class=\"content\">\n"; - echo "<td>".mysql_result($Erg, $n, "Question")."</td>\n"; - echo "<td>".UID2Nick(mysql_result($Erg, $n, "UID"))."</td>\n"; - echo "<td>"; - if (mysql_result($Erg, $n, "AID")>0) - { - echo "Ja</td>\n"; - echo "<td>".mysql_result($Erg, $n, "Answer")."</td>\n"; - echo "<td>".UID2Nick(mysql_result($Erg, $n, "AID"))."</td>\n"; - } - else - { - echo "Nein</td>\n"; - echo "<td> </td>\n"; - echo "<td> </td>\n"; - } - echo "<td><a href=\"faq.php?quest=edit&QID=".mysql_result($Erg, $n, "QID")."\">xxx</a></td>"; - echo "</tr>\n"; - } - echo "</table>\n"; - break; - -case "open": - $SQL="SELECT * FROM `Questions` WHERE `AID`='0' ORDER BY `QID` DESC"; - $quest_bearb=1; // Fragenliste anzeigen - echo "\t\tOffene Anfragen:<br />\n"; - break; - -case "edit": - if (!IsSet($_GET["QID"])) - echo "\t\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n"; - else - { - $SQL = "SELECT * FROM `Questions` WHERE `QID`='". $_GET["QID"]. "'"; - $Erg = mysql_query($SQL, $con); - echo "\t\t<form action=\"./faq.php\" method=\"GET\">\n"; - echo "\t\tAnfrage von <b>". UID2NICK(mysql_result($Erg, 0, "UID")). "</b>:<br />\n"; - echo "\t\t<textarea name=\"Question\" rows=\"3\" cols=\"80\">". - mysql_result($Erg, 0, "Question"). "</textarea>\n"; - echo "<br /><br />Antwort der Erzengel:<br />\n"; - if (mysql_result($Erg, 0, "Answer")=="") - echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">". - "Bitte hier die Antwort eintragen...</textarea><br />\n"; - else - echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">". - mysql_result($Erg, 0, "Answer"). "</textarea>\n<br />\n"; - echo "\t\t<input type=\"hidden\" name=\"QID\" value=\"". $_GET["QID"]. "\">\n"; - echo "\t\t<input type=\"hidden\" name=\"quest\" value=\"save\">\n"; - echo "\t\t<input type=\"submit\" value=\"Sichern...\">\n"; - echo "\t</form>\n"; - if (mysql_result($Erg, 0, "AID")<>"0") - { - echo "\tDu kannst diese Anfrage so wie sie ist, als Engel-FAQ eintrag übernehmen.<br />\n"; - echo "<a href=\"./faq.php?quest=transfer&QID=". $_GET["QID"]. "\">Als FAQ-Eintrag sichern...</a>\n"; - } - } // Abfrage der QID - break; - -case "save": - if (!IsSet($_GET["QID"])) - echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten..."; - else - { - $SQL = "UPDATE `Questions` SET `Question`='". $_GET["Question"]. - "', `AID`='". $_SESSION['UID']. "' , `Answer`='". $_GET["Answer"]. "' ". - "WHERE `QID`='". $_GET["QID"]. "' LIMIT 1"; - $Erg = db_query($SQL, "save Question"); - if ($Erg == 1) - { - echo "\tDer Eintrag wurde geändert<br />\n"; - SetHeaderGo2Back(); - } - else - echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; - } - break; - -case "transfer": - if (!IsSet($_GET["QID"])) - echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; - else - { - $SQL1="SELECT * FROM `Questions` WHERE `QID`='". $_GET["QID"]. "'"; - $Erg = mysql_query($SQL1, $con); - $SQL2="INSERT INTO `FAQ` Values ('', '". - mysql_result($Erg, 0, "Question")."', '".mysql_result($Erg, 0, "Answer")."')"; - $Erg = db_query($SQL2, "trasfert to request to the FAQ"); - if ($Erg == 1) - echo "\tDer Eintrag wurde übertragen.<br />\n"; - else - echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; - } - - break; - -// *--------------------------------------------------------------------------- -// * FAQ - Bearbeitung -// *--------------------------------------------------------------------------- -// * je nach Übergabeoption ($quest) koennen FAQ's erfasst werden, -// * geaendert oder geloscht werden... -// *--------------------------------------------------------------------------- -case "faq": - $quest_bearb=0; // keine Fragenliste anzeigen, FAQ editieren... - echo "\tFAQ-Liste:<br />"; - echo "<a href=\"./faq.php?quest=faqnew\">Neuen Eintrag</a>"; - - $SQL = "SELECT * FROM `FAQ`"; - $Erg = mysql_query($SQL, $con); - - // anzahl zeilen - $Zeilen = mysql_num_rows($Erg); - - for ($n = 0 ; $n < $Zeilen ; $n++) - if (mysql_result($Erg, $n, "Antwort")!="") - { - echo "\t<p class=\"question\">". mysql_result($Erg, $n, "Frage"). "</p>\n"; - echo "\t<p class=\"answetion\">". mysql_result($Erg, $n, "Antwort")."</p>\n"; - echo "\t<a href=\"./faq.php?quest=faqedit&FAQID=". mysql_result($Erg, $n, "FID"). - "\">Bearbeiten</a>\n<br />---<br />\n"; - } - break; - -case "faqedit": - if (!IsSet($_GET["FAQID"])) - echo "\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n"; - else - { - $SQL = "SELECT * FROM `FAQ` WHERE `FID`='". $_GET["FAQID"]. "'"; - $Erg = mysql_query($SQL, $con); - - // anzahl zeilen - $Zeilen = mysql_num_rows($Erg); + + $Erg = mysql_query($SQL, $con); + // anzahl zeilen + $Zeilen = mysql_num_rows($Erg); + for ($n = 0; $n < $Zeilen; $n++) { + echo "<tr class=\"content\">\n"; + echo "<td>" . mysql_result($Erg, $n, "Question") . "</td>\n"; + echo "<td>" . UID2Nick(mysql_result($Erg, $n, "UID")) . "</td>\n"; + echo "<td>"; + if (mysql_result($Erg, $n, "AID") > 0) { + echo "Ja</td>\n"; + echo "<td>" . mysql_result($Erg, $n, "Answer") . "</td>\n"; + echo "<td>" . UID2Nick(mysql_result($Erg, $n, "AID")) . "</td>\n"; + } else { + echo "Nein</td>\n"; + echo "<td> </td>\n"; + echo "<td> </td>\n"; + } + echo "<td><a href=\"faq.php?quest=edit&QID=" . mysql_result($Erg, $n, "QID") . "\">xxx</a></td>"; + echo "</tr>\n"; + } + echo "</table>\n"; + break; + + case "open" : + $SQL = "SELECT * FROM `Questions` WHERE `AID`='0' ORDER BY `QID` DESC"; + $quest_bearb = 1; // Fragenliste anzeigen + echo "\t\tOffene Anfragen:<br />\n"; + break; + + case "edit" : + if (!IsSet ($_GET["QID"])) + echo "\t\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n"; + else { + $SQL = "SELECT * FROM `Questions` WHERE `QID`='" . $_GET["QID"] . "'"; + $Erg = mysql_query($SQL, $con); + echo "\t\t<form action=\"./faq.php\" method=\"GET\">\n"; + echo "\t\tAnfrage von <b>" . UID2NICK(mysql_result($Erg, 0, "UID")) . "</b>:<br />\n"; + echo "\t\t<textarea name=\"Question\" rows=\"3\" cols=\"80\">" . + mysql_result($Erg, 0, "Question") . "</textarea>\n"; + echo "<br /><br />Antwort der Erzengel:<br />\n"; + if (mysql_result($Erg, 0, "Answer") == "") + echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">" . + "Bitte hier die Antwort eintragen...</textarea><br />\n"; + else + echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">" . + mysql_result($Erg, 0, "Answer") . "</textarea>\n<br />\n"; + echo "\t\t<input type=\"hidden\" name=\"QID\" value=\"" . $_GET["QID"] . "\">\n"; + echo "\t\t<input type=\"hidden\" name=\"quest\" value=\"save\">\n"; + echo "\t\t<input type=\"submit\" value=\"Sichern...\">\n"; + echo "\t</form>\n"; + if (mysql_result($Erg, 0, "AID") <> "0") { + echo "\tDu kannst diese Anfrage so wie sie ist, als Engel-FAQ eintrag übernehmen.<br />\n"; + echo "<a href=\"./faq.php?quest=transfer&QID=" . $_GET["QID"] . "\">Als FAQ-Eintrag sichern...</a>\n"; + } + } // Abfrage der QID + break; + + case "save" : + if (!IsSet ($_GET["QID"])) + echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten..."; + else { + $SQL = "UPDATE `Questions` SET `Question`='" . $_GET["Question"] . + "', `AID`='" . $_SESSION['UID'] . "' , `Answer`='" . $_GET["Answer"] . "' " . + "WHERE `QID`='" . $_GET["QID"] . "' LIMIT 1"; + $Erg = db_query($SQL, "save Question"); + if ($Erg == 1) { + echo "\tDer Eintrag wurde geändert<br />\n"; + SetHeaderGo2Back(); + } else + echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; + } + break; + + case "transfer" : + if (!IsSet ($_GET["QID"])) + echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; + else { + $SQL1 = "SELECT * FROM `Questions` WHERE `QID`='" . $_GET["QID"] . "'"; + $Erg = mysql_query($SQL1, $con); + $SQL2 = "INSERT INTO `FAQ` Values ('', '" . + mysql_result($Erg, 0, "Question") . "', '" . mysql_result($Erg, 0, "Answer") . "')"; + $Erg = db_query($SQL2, "trasfert to request to the FAQ"); + if ($Erg == 1) + echo "\tDer Eintrag wurde übertragen.<br />\n"; + else + echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; + } + + break; + + // *--------------------------------------------------------------------------- + // * FAQ - Bearbeitung + // *--------------------------------------------------------------------------- + // * je nach �bergabeoption ($quest) koennen FAQ's erfasst werden, + // * geaendert oder geloscht werden... + // *--------------------------------------------------------------------------- + case "faq" : + $quest_bearb = 0; // keine Fragenliste anzeigen, FAQ editieren... + echo "\tFAQ-Liste:<br />"; + echo "<a href=\"./faq.php?quest=faqnew\">Neuen Eintrag</a>"; + + $SQL = "SELECT * FROM `FAQ`"; + $Erg = mysql_query($SQL, $con); + + // anzahl zeilen + $Zeilen = mysql_num_rows($Erg); + + for ($n = 0; $n < $Zeilen; $n++) + if (mysql_result($Erg, $n, "Antwort") != "") { + echo "\t<p class=\"question\">" . mysql_result($Erg, $n, "Frage") . "</p>\n"; + echo "\t<p class=\"answetion\">" . mysql_result($Erg, $n, "Antwort") . "</p>\n"; + echo "\t<a href=\"./faq.php?quest=faqedit&FAQID=" . mysql_result($Erg, $n, "FID") . + "\">Bearbeiten</a>\n<br />---<br />\n"; + } + break; + + case "faqedit" : + if (!IsSet ($_GET["FAQID"])) + echo "\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n"; + else { + $SQL = "SELECT * FROM `FAQ` WHERE `FID`='" . $_GET["FAQID"] . "'"; + $Erg = mysql_query($SQL, $con); + + // anzahl zeilen + $Zeilen = mysql_num_rows($Erg); ?> <form action="./faq.php" method="GET"> Frage:<br /> @@ -189,40 +179,40 @@ case "faqedit": <input type="hidden" name="quest" value="faqdelete"> <input type="submit" value="Löschen..."> </form> -<?php - } - break; - -case "faqdelete"; - if (!IsSet($_GET["FAQID"])) - echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; - else - { - $SQL = "DELETE FROM `FAQ` WHERE `FID`='". $_GET["FAQID"]. "' LIMIT 1"; - $Erg = db_query($SQL, "delate faq item"); - if ($Erg == 1) - echo "\tDer Eintrag wurde gelöscht<br />\n"; - else - echo "\tEin Fehler ist aufgetreten. Ist der Eintag bereits gelöscht gewesen?\n"; - } - break; - -case "faqsave"; - if (!IsSet($_GET["FAQID"])) - echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; - else - { - $SQL = "UPDATE `FAQ` SET `Frage`='". $_GET["Frage"]. "', `Antwort`='". $_GET["Antwort"]. - "' WHERE `FID`='". $_GET["FAQID"]. "' LIMIT 1"; - $Erg = db_query($SQL, $con); - if ($Erg == 1) - echo "\tDer Eintrag wurde geändert<br />\n"; - else - echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; - } - break; - -case "faqnew": +<?php + + + } + break; + + case "faqdelete"; + if (!IsSet ($_GET["FAQID"])) + echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; + else { + $SQL = "DELETE FROM `FAQ` WHERE `FID`='" . $_GET["FAQID"] . "' LIMIT 1"; + $Erg = db_query($SQL, "delate faq item"); + if ($Erg == 1) + echo "\tDer Eintrag wurde gelöscht<br />\n"; + else + echo "\tEin Fehler ist aufgetreten. Ist der Eintag bereits gelöscht gewesen?\n"; + } + break; + + case "faqsave"; + if (!IsSet ($_GET["FAQID"])) + echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; + else { + $SQL = "UPDATE `FAQ` SET `Frage`='" . $_GET["Frage"] . "', `Antwort`='" . $_GET["Antwort"] . + "' WHERE `FID`='" . $_GET["FAQID"] . "' LIMIT 1"; + $Erg = db_query($SQL, $con); + if ($Erg == 1) + echo "\tDer Eintrag wurde geändert<br />\n"; + else + echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; + } + break; + + case "faqnew" : ?> <form action="./faq.php" method="GET"> Frage:<br /> @@ -233,51 +223,49 @@ case "faqnew": <input type="submit" value="Sichern..."> </form> <?php - break; - -case "faqnewsave"; - $SQL = "INSERT INTO `FAQ` VALUES ('', '". $_GET["Frage"]. "', '". $_GET["Antwort"]. "')"; - $Erg = db_query($SQL, "Save new FAQ entry"); - if ($Erg == 1) - echo "\tDer Eintrag wurde erfasst.<br />\n"; - else - echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; - break; - -} //switch ($_GET["quest"]) - - -// Hilfsroutine für die Anfragen: -// Fragenliste anzeigen??? -if ($quest_bearb==1) -{ - $Erg = mysql_query($SQL, $con); - // anzahl zeilen - $Zeilen = mysql_num_rows($Erg); - - if ($Zeilen==0) - echo "\tkeine vorhanden...\n"; - else - for ($n = 0 ; $n < $Zeilen ; $n++) - { - echo "\t<p>". nl2br(mysql_result($Erg, $n, "Question"))."\n</p><br />\n"; - echo "\t<a href=\"./faq.php?quest=edit&QID=". mysql_result($Erg, $n, "QID"). "\">Bearbeiten</a>\n"; - echo "<br />---<br />\n"; - } - -} + + + break; + + case "faqnewsave"; + $SQL = "INSERT INTO `FAQ` VALUES ('', '" . $_GET["Frage"] . "', '" . $_GET["Antwort"] . "')"; + $Erg = db_query($SQL, "Save new FAQ entry"); + if ($Erg == 1) + echo "\tDer Eintrag wurde erfasst.<br />\n"; + else + echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; + break; + + } //switch ($_GET["quest"]) + + // Hilfsroutine f�r die Anfragen: + // Fragenliste anzeigen??? + if ($quest_bearb == 1) { + $Erg = mysql_query($SQL, $con); + // anzahl zeilen + $Zeilen = mysql_num_rows($Erg); + + if ($Zeilen == 0) + echo "\tkeine vorhanden...\n"; + else + for ($n = 0; $n < $Zeilen; $n++) { + echo "\t<p>" . nl2br(mysql_result($Erg, $n, "Question")) . "\n</p><br />\n"; + echo "\t<a href=\"./faq.php?quest=edit&QID=" . mysql_result($Erg, $n, "QID") . "\">Bearbeiten</a>\n"; + echo "<br />---<br />\n"; + } + + } } //if (IsSet($_GET["quest"])) -else -{ - echo "Bitte wähle aus, ob du:\n"; - echo "<ul>\n"; - echo "\t<li><a href=\"./faq.php?quest=all\">Alle Anfragen anzeigen/bearbeiten möchtest</a></li>\n"; - echo "\t<li><a href=\"./faq.php?quest=open\">Alle offenen Anfragen anzeigen/bearbeiten möchtest (". - noAnswer(). ")</a></li>\n"; - echo "\t<li><a href=\"./faq.php?quest=faq\">Die FAQ's anzeigen/bearbeiten</a></li>\n"; - echo "</ul>\n"; +else { + echo "Bitte wähle aus, ob du:\n"; + echo "<ul>\n"; + echo "\t<li><a href=\"./faq.php?quest=all\">Alle Anfragen anzeigen/bearbeiten möchtest</a></li>\n"; + echo "\t<li><a href=\"./faq.php?quest=open\">Alle offenen Anfragen anzeigen/bearbeiten möchtest (" . + noAnswer() . ")</a></li>\n"; + echo "\t<li><a href=\"./faq.php?quest=faq\">Die FAQ's anzeigen/bearbeiten</a></li>\n"; + echo "</ul>\n"; } -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/free.php b/www-ssl/admin/free.php index 577ef7be..b45fadcf 100644 --- a/www-ssl/admin/free.php +++ b/www-ssl/admin/free.php @@ -1,16 +1,15 @@ <?php +require_once ('../bootstrap.php'); $title = "Erzengel"; $header = "Freie Engel"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); - -echo "Hallo ".$_SESSION['Nick'].",<br />\n"; +echo "Hallo " . $_SESSION['Nick'] . ",<br />\n"; echo "<br /><br />\n\nHier findest du alle Engel, welche zur Zeit in keiner Schicht verplant sind:<br /><br />\n"; - ####################################################### # Ermitteln freier Engel # @@ -33,22 +32,20 @@ $SQL = "SELECT Shifts.*, ShiftEntry.*, User.Nick ". "INNER JOIN (Shifts INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID) ON User.UID = ShiftEntry.UID ". "WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() );"; */ -$SQL = "SELECT Shifts.*, ShiftEntry.* ". - "FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID ". - "WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);"; +$SQL = "SELECT Shifts.*, ShiftEntry.* " . +"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID " . +"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);"; //SELECT User.Nick, Schichtplan.*, Schichtbelegung. * FROM User LEFT JOIN Schichtbelegung ON User.UID=Schichtbelegung.UID, Schichtplan LEFT JOIN Schichtbelegung ON Schichtplan.SID = Schichtbelegung.SID WHERE Schichtplan.Date < now() and Schichtplan.EndDate > now() ORDER BY Nick //echo "<pre>$SQL</pre>"; $Erg = mysql_query($SQL, $con); -$Zeilen = mysql_num_rows($Erg); +$Zeilen = mysql_num_rows($Erg); // for ($i = 1; $i < mysql_num_fields($Erg); $i++) // echo "|".mysql_field_name($Erg, $i); - - echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "\t<tr class=\"contenttopic\">\n"; echo "\t\t<td>Nick</td>\n"; @@ -58,47 +55,44 @@ echo "\t\t<td>Von</td>\n"; echo "\t\t<td>Bis</td>\n"; echo "\t</tr>\n"; - -$inuse=""; -for ($i=0; $i < $Zeilen; $i++) -{ - echo "<tr class=\"content\">\n"; - echo "<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=". mysql_result($Erg, $i, "UID"). "\">". - UID2Nick(mysql_result($Erg, $i, "UID")). "</td></a>\n"; - echo "<td></td>\n"; - echo "<td>". mysql_result($Erg, $i, "RID"). "</td>\n"; - echo "<td>". mysql_result($Erg, $i, "DateS"). "</td>\n"; - echo "<td>". mysql_result($Erg, $i, "DateE"). "</td>\n"; - echo "</tr>\n"; - - if ($inuse!="") - $inuse.= " OR "; - $inuse.= "(Nick = \"". UID2Nick(mysql_result($Erg, $i, "UID")). "\")"; +$inuse = ""; +for ($i = 0; $i < $Zeilen; $i++) { + echo "<tr class=\"content\">\n"; + echo "<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=" . mysql_result($Erg, $i, "UID") . "\">" . + UID2Nick(mysql_result($Erg, $i, "UID")) . "</td></a>\n"; + echo "<td></td>\n"; + echo "<td>" . mysql_result($Erg, $i, "RID") . "</td>\n"; + echo "<td>" . mysql_result($Erg, $i, "DateS") . "</td>\n"; + echo "<td>" . mysql_result($Erg, $i, "DateE") . "</td>\n"; + echo "</tr>\n"; + + if ($inuse != "") + $inuse .= " OR "; + $inuse .= "(Nick = \"" . UID2Nick(mysql_result($Erg, $i, "UID")) . "\")"; } -if ($inuse!="") - $inuse=" WHERE NOT (".$inuse.")"; +if ($inuse != "") + $inuse = " WHERE NOT (" . + $inuse . ")"; echo "</table>\n"; - //########################################################################################################## echo "<br /><br />\n\nhier findest du alle Engel, welche zur Zeit in keiner Schichten verplant sind:<br /><br />\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\"\>\n"; echo "\t<tr class=\"contenttopic\">\n\t\t<td>Nick</td>\n\t\t<td>DECT</td>\n\t</tr>\n"; -$SQL = "SELECT Nick, UID, DECT FROM User".$inuse.";"; +$SQL = "SELECT Nick, UID, DECT FROM User" . $inuse . ";"; $Erg = mysql_query($SQL, $con); -$Zeilen = mysql_num_rows($Erg); -for ($i=0; $i < $Zeilen; $i++) -{ - echo "\t<tr class=\"content\">\n"; - echo "\t\t<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=". mysql_result($Erg, $i, "UID"). "\">". - mysql_result($Erg, $i, "Nick"). "</a></td>\n"; - echo "\t\t<td>". mysql_result($Erg, $i, "DECT"). "</td>\n"; - echo "\n</tr>\n"; +$Zeilen = mysql_num_rows($Erg); +for ($i = 0; $i < $Zeilen; $i++) { + echo "\t<tr class=\"content\">\n"; + echo "\t\t<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=" . mysql_result($Erg, $i, "UID") . "\">" . + mysql_result($Erg, $i, "Nick") . "</a></td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "DECT") . "</td>\n"; + echo "\n</tr>\n"; } echo "</table>\n"; -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/free_DECT.php b/www-ssl/admin/free_DECT.php index 83a4123f..4b4e3085 100644 --- a/www-ssl/admin/free_DECT.php +++ b/www-ssl/admin/free_DECT.php @@ -1,9 +1,9 @@ <?php +require_once ('../bootstrap.php'); -include ("../../../camp2011/includes/config_db.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); -include ("../../../camp2011/includes/funktion_user.php"); - +include ("config/config_db.php"); +include ("includes/funktion_db_list.php"); +include ("includes/funktion_user.php"); ####################################################### # Ermitteln freier Engel @@ -11,68 +11,55 @@ include ("../../../camp2011/includes/funktion_user.php"); # auslesen aller Engel und dazugehoerige Schichten ####################################################### -$SQL = "SELECT Shifts.*, ShiftEntry.* ". - "FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID ". - "WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);"; +$SQL = "SELECT Shifts.*, ShiftEntry.* " . +"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID " . +"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);"; $Erg = mysql_query($SQL, $con); -$Zeilen = mysql_num_rows($Erg); +$Zeilen = mysql_num_rows($Erg); -$inuse=""; -for ($i=0; $i < $Zeilen; $i++) -{ - if ($inuse!="") - $inuse.= " OR "; - $inuse.= "(UID = \"". mysql_result($Erg, $i, "UID"). "\")"; -} -if ($inuse!="") -{ - $inuse=" WHERE (NOT (".$inuse.")) AND (DECT!='')"; +$inuse = ""; +for ($i = 0; $i < $Zeilen; $i++) { + if ($inuse != "") + $inuse .= " OR "; + $inuse .= "(UID = \"" . mysql_result($Erg, $i, "UID") . "\")"; } -else -{ - $inuse=" WHERE (DECT!='')"; +if ($inuse != "") { + $inuse = " WHERE (NOT (" . $inuse . ")) AND (DECT!='')"; +} else { + $inuse = " WHERE (DECT!='')"; } - //########################################################################################################## -$SQL = "SELECT * FROM User".$inuse.";"; +$SQL = "SELECT * FROM User" . $inuse . ";"; $Erg = mysql_query($SQL, $con); -$Zeilen = mysql_num_rows($Erg); -for ($i=0; $i < $Zeilen; $i++) -{ - // get DECT number - echo mysql_result($Erg, $i, "DECT"). "\t"; +$Zeilen = mysql_num_rows($Erg); +for ($i = 0; $i < $Zeilen; $i++) { + // get DECT number + echo mysql_result($Erg, $i, "DECT") . "\t"; - // get all user rights - $SQL_RIGHT = "SELECT * FROM UserCVS WHERE UID=". mysql_result($Erg, $i, "UID"). ";"; - $Erg_RIGHT = mysql_query($SQL_RIGHT, $con); - $UserRights = mysql_fetch_array($Erg_RIGHT); + // get all user rights + $SQL_RIGHT = "SELECT * FROM UserCVS WHERE UID=" . mysql_result($Erg, $i, "UID") . ";"; + $Erg_RIGHT = mysql_query($SQL_RIGHT, $con); + $UserRights = mysql_fetch_array($Erg_RIGHT); - foreach( $UserRights as $Var => $Value) - { - if( (strpos( $Var, ".php") === false) AND - (strpos( $Var, "/") === false) AND - (strpos( $Var, "UID") === false) AND - (is_numeric($Var) === false) ) - { - echo "\"".$Var. "\"=". $Value. "\t"; - } - } + foreach ($UserRights as $Var => $Value) { + if ((strpos($Var, ".php") === false) AND (strpos($Var, "/") === false) AND (strpos($Var, "UID") === false) AND (is_numeric($Var) === false)) { + echo "\"" . $Var . "\"=" . $Value . "\t"; + } + } - // get shift types - $SQL_TYPES = "SELECT TID FROM `ShiftEntry` WHERE UID=". mysql_result($Erg, $i, "UID"). " GROUP BY TID;"; - $Erg_TYPES = mysql_query($SQL_TYPES, $con); - $Zeilen_Typen = mysql_num_rows($Erg_TYPES); - for ($j=0; $j < $Zeilen_Typen; $j++) - { - echo "\"TID_". TID2Type( mysql_result($Erg_TYPES, $j, "TID")). "\"=Y\t"; - } + // get shift types + $SQL_TYPES = "SELECT TID FROM `ShiftEntry` WHERE UID=" . mysql_result($Erg, $i, "UID") . " GROUP BY TID;"; + $Erg_TYPES = mysql_query($SQL_TYPES, $con); + $Zeilen_Typen = mysql_num_rows($Erg_TYPES); + for ($j = 0; $j < $Zeilen_Typen; $j++) { + echo "\"TID_" . TID2Type(mysql_result($Erg_TYPES, $j, "TID")) . "\"=Y\t"; + } - echo "\n"; -// echo "<br />"; + echo "\n"; + // echo "<br />"; } - ?> diff --git a/www-ssl/admin/group.php b/www-ssl/admin/group.php index f42fea97..b8a52ec2 100644 --- a/www-ssl/admin/group.php +++ b/www-ssl/admin/group.php @@ -1,49 +1,49 @@ <?php +require_once ('../bootstrap.php'); $title = "User-Liste"; $header = "Editieren der Engelliste"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); - -if (!IsSet($_GET["enterGID"])) -{ - // Userliste, keine UID uebergeben... - - $SQL = "SELECT * FROM `UserGroups` ORDER BY `Name` ASC"; - $Erg = mysql_query($SQL, $con); - echo mysql_error($con); - - // anzahl zeilen - $Zeilen = mysql_num_rows($Erg); - - echo "<table class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; - echo "<tr class=\"contenttopic\">\n"; - echo "\t<td>Groupname</td>\n"; - echo "\t<td>Link</td>\n"; - echo "</tr>\n"; - - for ($n = 0 ; $n < $Zeilen ; $n++) { - echo "<tr class=\"content\">\n"; - echo "\t<td>".mysql_result($Erg, $n, "Name")."</td>\n"; - - echo "<td><a href=\"./userChangeSecure.php?enterUID=". - mysql_result($Erg, $n, "UID")."&Type=Secure\">change</a></td>\n"; - echo "</tr>\n"; - } - - // new form - echo "<tr class=\"content\">\n"; - echo "\t<form action=\"userSaveSecure.php?new=newGroup\" method=\"POST\">\n"; - echo "\t\t<td><input name=\"GroupName\" type=\"text\" value=\"--new group--\"></td>\n"; - echo "\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\"></td>\n"; - echo "\t</form>\n"; - echo "</tr>\n"; - - echo "\t</table>\n"; - // Ende Userliste -} - -include ("../../../camp2011/includes/footer.php"); +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); + +if (!IsSet ($_GET["enterGID"])) { + // Userliste, keine UID uebergeben... + + $SQL = "SELECT * FROM `UserGroups` ORDER BY `Name` ASC"; + $Erg = mysql_query($SQL, $con); + echo mysql_error($con); + + // anzahl zeilen + $Zeilen = mysql_num_rows($Erg); + + echo "<table class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; + echo "<tr class=\"contenttopic\">\n"; + echo "\t<td>Groupname</td>\n"; + echo "\t<td>Link</td>\n"; + echo "</tr>\n"; + + for ($n = 0; $n < $Zeilen; $n++) { + echo "<tr class=\"content\">\n"; + echo "\t<td>" . mysql_result($Erg, $n, "Name") . "</td>\n"; + + echo "<td><a href=\"./userChangeSecure.php?enterUID=" . + mysql_result($Erg, $n, "UID") . "&Type=Secure\">change</a></td>\n"; + echo "</tr>\n"; + } + + // new form + echo "<tr class=\"content\">\n"; + echo "\t<form action=\"userSaveSecure.php?new=newGroup\" method=\"POST\">\n"; + echo "\t\t<td><input name=\"GroupName\" type=\"text\" value=\"--new group--\"></td>\n"; + echo "\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\"></td>\n"; + echo "\t</form>\n"; + echo "</tr>\n"; + + echo "\t</table>\n"; + // Ende Userliste +} + +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/index.php b/www-ssl/admin/index.php index e7be285c..4e761078 100644 --- a/www-ssl/admin/index.php +++ b/www-ssl/admin/index.php @@ -1,12 +1,12 @@ <?php +require_once ('../bootstrap.php'); $title = "Erzengel"; $header = "Index"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); - -echo "Hallo Erzengel ".$_SESSION['Nick'].",<br />\n"; +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); +echo "Hallo Erzengel " . $_SESSION['Nick'] . ",<br />\n"; ?> du bist jetzt im Erzengel-Bereich. Hier kannst du die Engel-Verwaltung vornehmen.<br /><br /> @@ -14,6 +14,8 @@ du bist jetzt im Erzengel-Bereich. Hier kannst du die Engel-Verwaltung vornehmen Bitte melde dich <a href="../logout.php">hier</a> nach getaner Arbeit immer ab, damit kein anderer hier Änderungen vornehmen kann. <?php -include ("../../../camp2011/includes/footer.php"); + + +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/room.php b/www-ssl/admin/room.php index 09006675..e3defb23 100644 --- a/www-ssl/admin/room.php +++ b/www-ssl/admin/room.php @@ -1,199 +1,180 @@ <?php +require_once ('../bootstrap.php'); + $title = "Räume"; $header = "Verwaltung der Räume"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_schichtplan_aray.php"); +include ("includes/header.php"); +include ("funktion_schichtplan_aray.php"); $Sql = "SELECT * FROM `Room` ORDER BY `Number`, `Name`"; $Erg = mysql_query($Sql, $con); -if( !IsSet($_GET["action"]) ) -{ - echo "Hallo ".$_SESSION['Nick']. - ",<br />\nhier hast du die Möglichkeit, neue Räume für die Schichtpläne einzutragen ". - "oder vorhandene abzuändern:<br /><br />\n"; - - echo "<a href=\"./room.php?action=new\">- Neuen Raum/Ort eintragen</a><br />\n"; - - echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; - echo "<tr class=\"contenttopic\">\n"; - - for( $i = 1; $i < mysql_num_fields($Erg); $i++ ) - { - if( substr( mysql_field_name($Erg, $i), 0, 12) == "DEFAULT_EID_") - echo "\t<td> Anzahl ". $EngelTypeID[substr( mysql_field_name($Erg, $i), 12)]. "</td>"; - else - echo "\t<td>". mysql_field_name($Erg, $i)."</td>"; - } - echo "\t<td>Ändern</td>"; - echo "</tr>"; - - for( $t = 0; $t < mysql_num_rows($Erg); $t++ ) - { - echo "\t<tr class=\"content\">\n"; - for ($j = 1; $j < mysql_num_fields($Erg); $j++) - { - echo "\t\t<td>".mysql_result($Erg, $t, $j)."</td>\n"; - } - echo "\t\t<td><a href=\"./room.php?action=change&RID=".mysql_result($Erg, $t, "RID")."\">###</a></td>\n"; - echo "\t</tr>\n"; - } // ende Auflistung Raeume - echo "</table>"; -} -else -{ - -UnSet($SQL); - -switch ($_GET["action"]) { - -case 'new': - echo "Neuen Raum einrichten: <br />"; - echo "<form action=\"./room.php\" method=\"GET\">\n"; - echo "<table>\n"; - - for( $Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++ ) - { - if( (mysql_field_name($Erg, $Uj) == "show") || (mysql_field_name($Erg, $Uj) == "FromPentabarf") ) - { - echo "<tr><td>". mysql_field_name($Erg, $Uj). "</td>". - "<td>". - "<input type=\"radio\" name=\"". mysql_field_name($Erg, $Uj). "\" value=\"Y\">Yes". - "<input type=\"radio\" name=\"". mysql_field_name($Erg, $Uj). "\" value=\"N\">No". - "</td></tr>\n"; - } - else - { - //sonderfall fuer Default Engel - if( substr( mysql_field_name($Erg, $Uj), 0, 12) == "DEFAULT_EID_") - $FeldName = "Anzahl ". $EngelTypeID[substr( mysql_field_name($Erg, $Uj), 12)]; - else - $FeldName = mysql_field_name($Erg, $Uj); - - echo "<td>$FeldName</td>". - "<td><input type=\"text\" size=\"40\" name=\"".mysql_field_name($Erg, $Uj)."\">"; - echo "</td></tr>\n"; - } - } - echo "</table>\n"; - echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n"; - echo "<input type=\"submit\" value=\"sichern...\">\n"; - echo "</form>"; - break; - -case 'newsave': - $vars = $_GET; - $count = count($vars) - 1; - $vars = array_splice($vars, 0, $count); - $Keys = ""; - $Values = ""; - foreach($vars as $key => $value) - { - $Keys .= ", `$key`"; - $Values .= ", '$value'"; - } - $SQL = "INSERT INTO `Room` (". substr( $Keys, 2). ") VALUES (". substr( $Values, 2). ")"; - SetHeaderGo2Back(); - break; - -case 'change': - if (! IsSet($_GET["RID"])) - echo "Fehlerhafter Aufruf!"; - else - { - $SQL2 = "SELECT * FROM `Room` WHERE `RID`='". $_GET["RID"]. "'"; - $ERG = mysql_query($SQL2, $con); - - if( mysql_num_rows( $ERG)>0) - { - echo "Raum abändern:\n"; - echo "Hier kannst du eintragen, welche und wieviele Engel für den Raum zur Verf?gung stehen müssen."; - echo "<form action=\"./room.php\" method=\"GET\">\n"; - echo "<table>\n"; - - for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) - { - if( (mysql_field_name($ERG, $Uj) == "show") || (mysql_field_name($ERG, $Uj) == "FromPentabarf") ) - { - echo "<tr><td>". mysql_field_name($Erg, $Uj). "</td>". - "<td>". - "<input type=\"radio\" name=\"e". mysql_field_name($ERG, $Uj). - "\" value=\"Y\"". (mysql_result($ERG, 0, $Uj)=='Y'? " checked":""). ">Yes". - "<input type=\"radio\" name=\"e". mysql_field_name($ERG, $Uj). - "\" value=\"N\"". (mysql_result($ERG, 0, $Uj)=='N'? " checked":""). ">No". - "</td></tr>\n"; - } - else - { - if( substr( mysql_field_name($ERG, $Uj), 0, 12) == "DEFAULT_EID_") - //sonderfall fuer Default Engel - $FeldName = "Anzahl ". $EngelTypeID[substr( mysql_field_name($ERG, $Uj), 12)]; - else - $FeldName = mysql_field_name($ERG, $Uj); - echo "<tr><td>$FeldName</td>". - "<td><input type=\"text\" size=\"40\" name=\"e".mysql_field_name($ERG, $Uj)."\" ". - "value=\"".mysql_result($ERG, 0, $Uj)."\">". - "</td></tr>\n"; - } - } - echo "</table>\n"; - echo "<input type=\"hidden\" name=\"eRID\" value=\"". $_GET["RID"]. "\">\n"; - echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; - echo "<input type=\"submit\" value=\"sichern...\">\n"; - echo "</form>"; - echo "<form action=\"./room.php\" method=\"GET\">\n"; - echo "<input type=\"hidden\" name=\"RID\" value=\"". $_GET["RID"]. "\">\n"; - echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; - echo "<input type=\"submit\" value=\"Löschen...\">"; - echo "</form>"; - } - else - echo "FEHLER: Room ID ". $_GET["RID"]. " nicht gefunden"; - } - break; - -case 'changesave': - $sql=""; - $vars = $_GET; - $count = count($vars) - 2; - $vars = array_splice($vars, 0, $count); - foreach($vars as $key => $value) - { - $keys = substr($key,1); - $sql .= ", `".$keys."`='".$value."' "; - } - $SQL = "UPDATE `Room` SET ". substr($sql, 2). " WHERE `RID`='". $_GET["eRID"]. "'"; - SetHeaderGo2Back(); - break; - -case 'delete': - if (IsSet($_GET["RID"])) { - $SQL="DELETE FROM `Room` WHERE `RID`='". $_GET["RID"]. "'"; - } else { - echo "Fehlerhafter Aufruf"; - } - SetHeaderGo2Back(); - break; - -} //switch - - -// Update ??? - -if (IsSet($SQL)){ -// echo $SQL; - // hier muesste das SQL ausgefuehrt werden... - $Erg = db_query($SQL, "exec SQL"); - if ($Erg == 1) - echo "Änderung wurde gesichert...<br />"; - else - { - echo "Fehler beim speichern... bitte noch ein mal probieren :)"; - echo "<br /><br />".mysql_error( $con ). "<br />($SQL)<br />"; - } -} // Ende Update +if (!IsSet ($_GET["action"])) { + echo "Hallo " . $_SESSION['Nick'] . + ",<br />\nhier hast du die Möglichkeit, neue Räume für die Schichtpläne einzutragen " . + "oder vorhandene abzuändern:<br /><br />\n"; + + echo "<a href=\"./room.php?action=new\">- Neuen Raum/Ort eintragen</a><br />\n"; + + echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; + echo "<tr class=\"contenttopic\">\n"; + + for ($i = 1; $i < mysql_num_fields($Erg); $i++) { + if (substr(mysql_field_name($Erg, $i), 0, 12) == "DEFAULT_EID_") + echo "\t<td> Anzahl " . $EngelTypeID[substr(mysql_field_name($Erg, $i), 12)] . "</td>"; + else + echo "\t<td>" . mysql_field_name($Erg, $i) . "</td>"; + } + echo "\t<td>Ändern</td>"; + echo "</tr>"; + + for ($t = 0; $t < mysql_num_rows($Erg); $t++) { + echo "\t<tr class=\"content\">\n"; + for ($j = 1; $j < mysql_num_fields($Erg); $j++) { + echo "\t\t<td>" . mysql_result($Erg, $t, $j) . "</td>\n"; + } + echo "\t\t<td><a href=\"./room.php?action=change&RID=" . mysql_result($Erg, $t, "RID") . "\">###</a></td>\n"; + echo "\t</tr>\n"; + } // ende Auflistung Raeume + echo "</table>"; +} else { + + UnSet ($SQL); + + switch ($_GET["action"]) { + + case 'new' : + echo "Neuen Raum einrichten: <br />"; + echo "<form action=\"./room.php\" method=\"GET\">\n"; + echo "<table>\n"; + + for ($Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++) { + if ((mysql_field_name($Erg, $Uj) == "show") || (mysql_field_name($Erg, $Uj) == "FromPentabarf")) { + echo "<tr><td>" . mysql_field_name($Erg, $Uj) . "</td>" . + "<td>" . + "<input type=\"radio\" name=\"" . mysql_field_name($Erg, $Uj) . "\" value=\"Y\">Yes" . + "<input type=\"radio\" name=\"" . mysql_field_name($Erg, $Uj) . "\" value=\"N\">No" . + "</td></tr>\n"; + } else { + //sonderfall fuer Default Engel + if (substr(mysql_field_name($Erg, $Uj), 0, 12) == "DEFAULT_EID_") + $FeldName = "Anzahl " . $EngelTypeID[substr(mysql_field_name($Erg, $Uj), 12)]; + else + $FeldName = mysql_field_name($Erg, $Uj); + + echo "<td>$FeldName</td>" . + "<td><input type=\"text\" size=\"40\" name=\"" . mysql_field_name($Erg, $Uj) . "\">"; + echo "</td></tr>\n"; + } + } + echo "</table>\n"; + echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n"; + echo "<input type=\"submit\" value=\"sichern...\">\n"; + echo "</form>"; + break; + + case 'newsave' : + $vars = $_GET; + $count = count($vars) - 1; + $vars = array_splice($vars, 0, $count); + $Keys = ""; + $Values = ""; + foreach ($vars as $key => $value) { + $Keys .= ", `$key`"; + $Values .= ", '$value'"; + } + $SQL = "INSERT INTO `Room` (" . substr($Keys, 2) . ") VALUES (" . substr($Values, 2) . ")"; + SetHeaderGo2Back(); + break; + + case 'change' : + if (!IsSet ($_GET["RID"])) + echo "Fehlerhafter Aufruf!"; + else { + $SQL2 = "SELECT * FROM `Room` WHERE `RID`='" . $_GET["RID"] . "'"; + $ERG = mysql_query($SQL2, $con); + + if (mysql_num_rows($ERG) > 0) { + echo "Raum abändern:\n"; + echo "Hier kannst du eintragen, welche und wieviele Engel für den Raum zur Verf?gung stehen müssen."; + echo "<form action=\"./room.php\" method=\"GET\">\n"; + echo "<table>\n"; + + for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) { + if ((mysql_field_name($ERG, $Uj) == "show") || (mysql_field_name($ERG, $Uj) == "FromPentabarf")) { + echo "<tr><td>" . mysql_field_name($Erg, $Uj) . "</td>" . + "<td>" . + "<input type=\"radio\" name=\"e" . mysql_field_name($ERG, $Uj) . + "\" value=\"Y\"" . (mysql_result($ERG, 0, $Uj) == 'Y' ? " checked" : "") . ">Yes" . + "<input type=\"radio\" name=\"e" . mysql_field_name($ERG, $Uj) . + "\" value=\"N\"" . (mysql_result($ERG, 0, $Uj) == 'N' ? " checked" : "") . ">No" . + "</td></tr>\n"; + } else { + if (substr(mysql_field_name($ERG, $Uj), 0, 12) == "DEFAULT_EID_") + //sonderfall fuer Default Engel + $FeldName = "Anzahl " . $EngelTypeID[substr(mysql_field_name($ERG, $Uj), 12)]; + else + $FeldName = mysql_field_name($ERG, $Uj); + echo "<tr><td>$FeldName</td>" . + "<td><input type=\"text\" size=\"40\" name=\"e" . mysql_field_name($ERG, $Uj) . "\" " . + "value=\"" . mysql_result($ERG, 0, $Uj) . "\">" . + "</td></tr>\n"; + } + } + echo "</table>\n"; + echo "<input type=\"hidden\" name=\"eRID\" value=\"" . $_GET["RID"] . "\">\n"; + echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; + echo "<input type=\"submit\" value=\"sichern...\">\n"; + echo "</form>"; + echo "<form action=\"./room.php\" method=\"GET\">\n"; + echo "<input type=\"hidden\" name=\"RID\" value=\"" . $_GET["RID"] . "\">\n"; + echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; + echo "<input type=\"submit\" value=\"Löschen...\">"; + echo "</form>"; + } else + echo "FEHLER: Room ID " . $_GET["RID"] . " nicht gefunden"; + } + break; + + case 'changesave' : + $sql = ""; + $vars = $_GET; + $count = count($vars) - 2; + $vars = array_splice($vars, 0, $count); + foreach ($vars as $key => $value) { + $keys = substr($key, 1); + $sql .= ", `" . $keys . "`='" . $value . "' "; + } + $SQL = "UPDATE `Room` SET " . substr($sql, 2) . " WHERE `RID`='" . $_GET["eRID"] . "'"; + SetHeaderGo2Back(); + break; + + case 'delete' : + if (IsSet ($_GET["RID"])) { + $SQL = "DELETE FROM `Room` WHERE `RID`='" . $_GET["RID"] . "'"; + } else { + echo "Fehlerhafter Aufruf"; + } + SetHeaderGo2Back(); + break; + + } //switch + + // Update ??? + + if (IsSet ($SQL)) { + // echo $SQL; + // hier muesste das SQL ausgefuehrt werden... + $Erg = db_query($SQL, "exec SQL"); + if ($Erg == 1) + echo "Änderung wurde gesichert...<br />"; + else { + echo "Fehler beim speichern... bitte noch ein mal probieren :)"; + echo "<br /><br />" . mysql_error($con) . "<br />($SQL)<br />"; + } + } // Ende Update } //IF IsSet($action) -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/schichtplan.php b/www-ssl/admin/schichtplan.php index af3cd7d4..70ef5a6a 100644 --- a/www-ssl/admin/schichtplan.php +++ b/www-ssl/admin/schichtplan.php @@ -1,32 +1,30 @@ <?php +require_once ('../bootstrap.php'); + $title = "Schichtplan"; $header = "Neue Schichten erfassen"; $submenus = 1; -include ("../../../camp2011/includes/header.php"); - -function executeSQL( $SQL) -{ - global $debug, $con; - - $Erg = mysql_query($SQL, $con); - if( $debug ) - echo "DEBUG SQL: $SQL<br />\n"; - if ($Erg == 1) - { - echo "SQL war erfolgreich"; - } - else - { - echo "SQL Fehler (". mysql_error($con).")" ; - } +include ("includes/header.php"); + +function executeSQL($SQL) { + global $debug, $con; + + $Erg = mysql_query($SQL, $con); + if ($debug) + echo "DEBUG SQL: $SQL<br />\n"; + if ($Erg == 1) { + echo "SQL war erfolgreich"; + } else { + echo "SQL Fehler (" . mysql_error($con) . ")"; + } } -if (!IsSet($_GET["action"])) { -echo "Hallo ".$_SESSION['Nick'].",<br />\n"; -echo "hier kannst du Schichten anlegen, ändern oder löschen.<br /><br />"; -echo "<a href=\"./shiftadd.php\">Neue Schicht einplanen</a><br /><br />\n\n"; +if (!IsSet ($_GET["action"])) { + echo "Hallo " . $_SESSION['Nick'] . ",<br />\n"; + echo "hier kannst du Schichten anlegen, ändern oder löschen.<br /><br />"; + echo "<a href=\"./shiftadd.php\">Neue Schicht einplanen</a><br /><br />\n\n"; -echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n"; + echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n"; ?> <table width="100%" class="border" cellpadding="2" cellspacing="1"> <tr class="contenttopic"> @@ -38,358 +36,327 @@ echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n"; </tr> <?php -$sql = "SELECT `SID`, `DateS`, `RID`, `Len` FROM `Shifts` ". - "ORDER BY `RID`, `DateS` "; -$Erg = mysql_query($sql, $con); -$rowcount = mysql_num_rows($Erg); -for( $i = 0; $i < $rowcount; $i++) -{ - echo "\t<tr class=\"content\">\n"; - echo "\t\t<td><input type=\"checkbox\" name=\"SID". mysql_result($Erg, $i, "SID"). "\" ". - "value=\"". mysql_result($Erg, $i, "SID"). "\"></td>\n"; - echo "\t\t<td>".mysql_result($Erg, $i, "DateS")."</td>\n"; - - $sql2= "SELECT `Name` FROM `Room` WHERE `RID`='".mysql_result($Erg, $i, "RID")."'"; - $Erg2 = mysql_query($sql2, $con); - if( mysql_num_rows($Erg2) > 0) - echo "\t\t<td>".mysql_result($Erg2, 0, "Name")."</td>\n"; - else - echo "\t\t<td>Unbenkannt (RID=". mysql_result($Erg, $i, "RID"). ")</td>\n"; - echo "\t\t<td>".mysql_result($Erg, $i, "Len")." Std. </td>\n"; - echo "\t\t<td><a href=\"./schichtplan.php?action=change&SID=". - mysql_result($Erg, $i, "SID")."\">####</a></td>\n"; - echo "\t</tr>\n"; -} -echo "</table>\n"; -echo "<input type=\"hidden\" name=\"action\" value=\"deleteShifs\">\n"; -echo "<input type=\"submit\" value=\"Löschen...\">\n"; -echo "</form>\n"; + $sql = "SELECT `SID`, `DateS`, `RID`, `Len` FROM `Shifts` " . + "ORDER BY `RID`, `DateS` "; + $Erg = mysql_query($sql, $con); + $rowcount = mysql_num_rows($Erg); + for ($i = 0; $i < $rowcount; $i++) { + echo "\t<tr class=\"content\">\n"; + echo "\t\t<td><input type=\"checkbox\" name=\"SID" . mysql_result($Erg, $i, "SID") . "\" " . + "value=\"" . mysql_result($Erg, $i, "SID") . "\"></td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "DateS") . "</td>\n"; + + $sql2 = "SELECT `Name` FROM `Room` WHERE `RID`='" . mysql_result($Erg, $i, "RID") . "'"; + $Erg2 = mysql_query($sql2, $con); + if (mysql_num_rows($Erg2) > 0) + echo "\t\t<td>" . mysql_result($Erg2, 0, "Name") . "</td>\n"; + else + echo "\t\t<td>Unbenkannt (RID=" . mysql_result($Erg, $i, "RID") . ")</td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "Len") . " Std. </td>\n"; + echo "\t\t<td><a href=\"./schichtplan.php?action=change&SID=" . + mysql_result($Erg, $i, "SID") . "\">####</a></td>\n"; + echo "\t</tr>\n"; + } + echo "</table>\n"; + echo "<input type=\"hidden\" name=\"action\" value=\"deleteShifs\">\n"; + echo "<input type=\"submit\" value=\"Löschen...\">\n"; + echo "</form>\n"; } else { -// aus sicherheitzgründen wegen späterer genuzung -UnSet($chSQL); - -switch ($_GET["action"]){ - -case 'change': - if ( !IsSet($_GET["SID"]) ) - { - echo "Fehlerhafter Aufruf!\n"; - } - else - { - - $sql = "SELECT * FROM `Shifts` WHERE (`SID` = '". $_GET["SID"]. "' )"; - $Erg = mysql_query($sql, $con); - - echo "Schicht abändern: <br />\n"; - - // Anzeige Allgemeiner schaischt daten - echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >"; - echo "<table>\n"; - echo " <tr><td>Schichtbeginn</td>". - "<td><input value=\"". mysql_result($Erg, 0, "DateS"). - "\" type=\"text\" size=\"40\" name=\"eDate\"></td></tr>\n"; - echo " <tr><td>Raum</td><td>\n<select name=\"eRID\">\n"; - - $sql2 = "SELECT `RID`, `Name`, `FromPentabarf` FROM `Room`"; - $Erg2 = mysql_query($sql2, $con); - $rowcount = mysql_num_rows($Erg2); - $FromPentabarf = "N"; - for( $i = 0; $i < $rowcount; $i++ ) - { - $RID=mysql_result($Erg2, $i, "RID"); - echo " <option value=\"".$RID."\""; - if( $RID == mysql_result($Erg, 0, "RID") ) - { - echo " selected"; - $FromPentabarf = mysql_result($Erg2, $i, "FromPentabarf"); - } - echo ">".mysql_result($Erg2, $i, "Name")."</option>\n"; - } - echo " </select>\n</td></tr>\n"; - - echo " <tr><td>Dauer in h</td>". - "<td><input value=\"". mysql_result($Erg, 0, "Len"). - "\" type=\"text\" size=\"40\" name=\"eDauer\"></td></tr>\n"; - echo " <tr><td>Beschreibung</td>". - "<td><input value=\"". mysql_result($Erg, 0, "Man"). - "\" type=\"text\" size=\"40\" name=\"eName\"></td></tr>\n"; - echo " <tr><td>URL</td>". - "<td><input value=\"". mysql_result($Erg, 0, "URL"). - "\" type=\"text\" size=\"40\" name=\"eURL\"></td></tr>\n"; - if( $FromPentabarf == "Y") - { - echo " <tr><td></td>". - "<td><h1>!!! Imported from Pentabarf !!!</h1></td></tr>\n"; - } - echo "</table>\n"; - - echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n"; - echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; - echo "<input type=\"submit\" value=\"sichern...\">\n"; - echo "</form>\n\n"; - - // Löschen - echo "<form action=\"". $_SERVER['SCRIPT_NAME']. "\" method=\"GET\" >\n"; - echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n"; - echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; - echo "<input type=\"submit\" value=\"Löschen...\">\n"; - echo "</form>\n\n"; - - echo "<b>ACHTUNG:</b><br />\n"; - echo "Beim Löschen werden die bisher eingetragenen Engel für diese Schicht mitgelöscht.<br />\n"; - - echo "<br /><hr>\n\n\n\n"; - - //Freie Engelschichten - $sql3 = "SELECT `TID` FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND `UID`='0'"; - $Erg3 = mysql_query($sql3, $con); - $rowcount = mysql_num_rows($Erg3); - - echo "Folgende Engelschichten sind noch nicht vergeben.\n"; - echo "Und koenen, wenn diese nSchicht nicht benoetigt wird geloet werden:<br />\n"; - for ($j=0; $j < $rowcount; $j++) - { - $TID = mysql_result($Erg3, $j, 0); - echo "<a href=\"./schichtplan.php?action=engelshiftdel&SID=". $_GET["SID"]. "&TID=$TID\">". - "freie ". TID2Type($TID). Get_Text("inc_schicht_Engel"). "schicht loeschen</a><br />\n"; - } - echo "<br /><hr>\n\n\n\n"; - - //Ausgabe eingetragener schischten - $sql3 = "SELECT * FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND NOT `UID`='0'"; - $Erg3 = mysql_query($sql3, $con); - $rowcount = mysql_num_rows($Erg3); - - echo "Folgende Engel Sind fuer die Schicht eingetargen.\n"; - echo "Und koennen, wenn diese nicht zu Schicht erschienen sind ausgetragen werden:<br />\n"; - echo "<table border=\"1\">\n". - "<tr class=\"contenttopic\">". - "<th>nick</th>". - "<th>type</th>". - "<th>normal</th>". - "<th>freeloader :-(</th>". - "</tr>"; - - for ($j=0; $j < $rowcount; $j++) - { - $userUID=mysql_result($Erg3, $j, "UID"); - echo "\t<tr>\n"; - echo "\t\t<td>". UID2Nick($userUID). "</td>\n"; - echo "\t\t<td>". TID2Type(mysql_result($Erg3, $j, "TID")). Get_Text("inc_schicht_Engel"). "</td>\n"; - echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=". $_GET["SID"]. "&UIDs=$userUID&freeloader=0\">###-austragen-###</a></td>\n"; - echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=". $_GET["SID"]. "&UIDs=$userUID&freeloader=1\">###-austragen-freeloader-###</a></td>\n"; - echo "\t</tr>\n"; - } // FOR - - echo "</table><br /><hr>\n\n\n\n"; - - //Nachtragen von Engeln - echo "Hat ein anderer Engel die Schicht übernommen, trage ihn bitte ein:"; - echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n"; - echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n"; - echo "<input type=\"hidden\" name=\"action\" value=\"engeladd\">\n"; - - // Listet alle Nicks auf - echo "<select name=\"UIDs\">\n"; - if( $FromPentabarf != "Y") - { - echo "\t<option value=\"0\">--neu--</option>\n"; - } - - $usql="SELECT * FROM `User` ORDER BY `Nick`"; - $uErg = mysql_query($usql, $con); - $urowcount = mysql_num_rows($uErg); - for ($k=0; $k<$urowcount; $k++) - { - echo "\t<option value=\"".mysql_result($uErg, $k, "UID")."\">". - mysql_result($uErg, $k, "Nick"). - "</option>\n"; - } - echo "</select>\n"; - - echo " als \n"; - - // holt eine liste der benötigten Engel zu dieser Schischt - $sql3 = "SELECT Count(`TID`) AS `CTID`, `TID` FROM `ShiftEntry` "; - $sql3.= "WHERE (`SID`='". $_GET["SID"]. "' AND `UID`='0') "; - $sql3.= "GROUP BY `SID`, `TID`, `UID` "; - $Erg3 = mysql_query($sql3, $con); - $i=-1; - while( ++$i < mysql_num_rows($Erg3)) - { - $EngelNeed[mysql_result($Erg3, $i, "TID")] = mysql_result($Erg3, $i, "CTID"); - } - - // Gibt dei möglich Engeltypen aus und zeigt wíefiel noch beötigt werden - echo "<select name=\"TID\">\n"; - $SQL2 = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`"; - $Erg2 = mysql_query($SQL2, $con); - for ($l = 0; $l < mysql_num_rows($Erg2); $l++) - { - $EngelTID = mysql_result($Erg2, $l, "TID"); - echo "<option value=\"$EngelTID\">"; - echo mysql_result($Erg2, $l, "Name"). Get_Text("inc_schicht_engel"); - if( !isset($EngelNeed[$EngelTID]) ) - echo " (0)"; - else - echo " (".$EngelNeed[$EngelTID].")"; - echo "</option>\n"; - } - echo "</select>\n"; - - echo "<input type=\"submit\" value=\"eintragen...\">\n"; - - echo "<br />\n<input value=\"1\" type=\"text\" size=\"5\" name=\"eAnzahlNew\"> Anzahl New\n"; - - echo "</form>"; - - } // IF ISSET( - break; - -case 'engeladd': - if( $_GET["UIDs"]>0) - { - - $SQL = "SELECT * FROM `ShiftEntry` ". - "WHERE (`SID`='". $_GET["SID"]. "' AND `TID`='". $_GET["TID"]. "' AND `UID`='0')"; - $ERG = mysql_query($SQL, $con); - if( mysql_num_rows($ERG) != 0 ) - { - $chSQL = "UPDATE `ShiftEntry` SET ". - "`UID`='". $_GET["UIDs"]. "', `Comment`='shift added by ".$_SESSION['Nick']."' ". - "WHERE (`SID`='". $_GET["SID"]. "' AND ". - "`TID`='". $_GET["TID"]. "' AND `UID`='0' ) LIMIT 1"; - } - else - { - $chSQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (". - "'". $_GET["SID"]. "', '". $_GET["TID"]. "', ". - "'". $_GET["UIDs"]. "', 'shift added by ".$_SESSION['Nick']."')"; - } - echo "Es wird folgende Schicht zusätzlich eingetragen:<br />\n"; - echo "Engel: ".UID2Nick($_GET["UIDs"])."<br />\n"; - echo "Bemerkung: Schicht eingetragen durch Erzengel ".$_SESSION['Nick']."<br />\n<br />\n"; - } - else - { - echo "Es wird folgende Schicht wurde ". $_GET["eAnzahlNew"]. "x zusätzlich eingetragen:<br />\n"; - for( $i=0; $i<$_GET["eAnzahlNew"]; $i++) - { - echo "$i. <br />\n"; - $SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES ("; - $SQL .= "'". $_GET["SID"]. "', '". $_GET["TID"]. "', '0', NULL)"; - $ERG = mysql_query($SQL, $con); - if( $debug ) - echo "DEBUG SQL: $SQL<br />\n"; - if ($ERG == 1) - { - echo "Änderung wurde gesichert...<br />"; - } - else - { - echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />"; - echo mysql_error($con); - } - echo "Es wird eine weitere Schicht eingetragen:<br /><br />\n"; - } - } - break; - -case 'engeldel': - $chSQL = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`= 'NULL' WHERE (`SID`='". $_GET["SID"]. - "' AND `UID`='". $_GET["UIDs"]. "') LIMIT 1"; - if( isset($_GET["freeloader"]) && $_GET["freeloader"]==1) - { - $sql = "SELECT * FROM `Shifts` WHERE (`SID` = '". $_GET["SID"]. "' )"; - $Erg = mysql_query($sql, $con); - if( mysql_num_rows( $Erg) == 1) - { - $UID = $_GET["UIDs"]; - $Length = mysql_result($Erg, 0, "Len"); - $Comment = "Start: ". mysql_result($Erg, 0, "DateS"). "; ". - "Beschreibung: ". mysql_result($Erg, 0, "Man"). "; ". - "Removed by ". $_SESSION['Nick']; - $ch2SQL = - "INSERT INTO `ShiftFreeloader` (`Remove_Time`, `UID`, `Length`, `Comment`) ". - "VALUES ( CURRENT_TIMESTAMP, '$UID', '$Length', '$Comment');"; - } - } - break; - -case 'engelshiftdel': - $chSQL = "DELETE FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND `TID`='". - $_GET["TID"]. "' AND `UID`='0' LIMIT 1"; - break; - -case 'changesave': - $query = mysql_query("SELECT DATE_ADD('". $_GET["eDate"]. "', INTERVAL '+0 ". $_GET["eDauer"]. "' DAY_HOUR)", $con); - $enddate = mysql_fetch_row($query); - - $chSQL = "UPDATE `Shifts` SET ". - "`DateS`='". $_GET["eDate"]. "', ". - "`DateE`='".$enddate[0]. "', ". - "`RID`='". $_GET["eRID"]. "', ". - "`Len`='". $_GET["eDauer"]. "', ". - "`Man`='". $_GET["eName"]. "', ". - "`URL`='". $_GET["eURL"]. "' ". - "WHERE `SID`='". $_GET["SID"]. "'"; - SetHeaderGo2Back(); - break; - -case 'delete': - $chSQL = "DELETE FROM `Shifts` WHERE `SID`='". $_GET["SID"]. "' LIMIT 1"; - $ch2SQL = "DELETE FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "'"; - SetHeaderGo2Back(); - break; - -case 'deleteShifs': - foreach ($_GET as $k => $v) - if( strpos( " ".$k, "SID") == 1) - { - echo "Shifts $v wird gelöscht..."; - executeSQL( "DELETE FROM `Shifts` WHERE `SID`='$v' LIMIT 1"); - echo "<br />\n"; - echo "ShiftEntry $v wird gelöscht..."; - executeSQL( "DELETE FROM `ShiftEntry` WHERE `SID`='$v'"); - echo "<br /><br />\n"; - } - break; - -} // end switch - -if (IsSet($chSQL)){ -// echo $chSQL; - // hier muesste das SQL ausgefuehrt werden... - $Erg = mysql_query($chSQL, $con); - if( $debug ) - echo "DEBUG SQL: $chSQL<br />\n"; - if ($Erg == 1) - { - echo "Änderung wurde gesichert...<br />"; - if( $debug ) - echo "DEBUG: ergebniss". $Erg. "<br />\n"; - if (IsSet($ch2SQL)) - { - $Erg = mysql_query($ch2SQL, $con); - if( $debug ) - echo "DEBUG SQL: $ch2SQL<br />\n"; - if( $debug ) echo "DEBUG: ergebniss". $Erg. "<br />\n"; - } - } - else - { - echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />"; - echo mysql_error($con); - } -} // Ende Update + // aus sicherheitzgr�nden wegen sp�terer genuzung + UnSet ($chSQL); -} + switch ($_GET["action"]) { + + case 'change' : + if (!IsSet ($_GET["SID"])) { + echo "Fehlerhafter Aufruf!\n"; + } else { + + $sql = "SELECT * FROM `Shifts` WHERE (`SID` = '" . $_GET["SID"] . "' )"; + $Erg = mysql_query($sql, $con); + + echo "Schicht abändern: <br />\n"; + + // Anzeige Allgemeiner schaischt daten + echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >"; + echo "<table>\n"; + echo " <tr><td>Schichtbeginn</td>" . + "<td><input value=\"" . mysql_result($Erg, 0, "DateS") . + "\" type=\"text\" size=\"40\" name=\"eDate\"></td></tr>\n"; + echo " <tr><td>Raum</td><td>\n<select name=\"eRID\">\n"; + + $sql2 = "SELECT `RID`, `Name`, `FromPentabarf` FROM `Room`"; + $Erg2 = mysql_query($sql2, $con); + $rowcount = mysql_num_rows($Erg2); + $FromPentabarf = "N"; + for ($i = 0; $i < $rowcount; $i++) { + $RID = mysql_result($Erg2, $i, "RID"); + echo " <option value=\"" . $RID . "\""; + if ($RID == mysql_result($Erg, 0, "RID")) { + echo " selected"; + $FromPentabarf = mysql_result($Erg2, $i, "FromPentabarf"); + } + echo ">" . mysql_result($Erg2, $i, "Name") . "</option>\n"; + } + echo " </select>\n</td></tr>\n"; + + echo " <tr><td>Dauer in h</td>" . + "<td><input value=\"" . mysql_result($Erg, 0, "Len") . + "\" type=\"text\" size=\"40\" name=\"eDauer\"></td></tr>\n"; + echo " <tr><td>Beschreibung</td>" . + "<td><input value=\"" . mysql_result($Erg, 0, "Man") . + "\" type=\"text\" size=\"40\" name=\"eName\"></td></tr>\n"; + echo " <tr><td>URL</td>" . + "<td><input value=\"" . mysql_result($Erg, 0, "URL") . + "\" type=\"text\" size=\"40\" name=\"eURL\"></td></tr>\n"; + if ($FromPentabarf == "Y") { + echo " <tr><td></td>" . + "<td><h1>!!! Imported from Pentabarf !!!</h1></td></tr>\n"; + } + echo "</table>\n"; + + echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n"; + echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; + echo "<input type=\"submit\" value=\"sichern...\">\n"; + echo "</form>\n\n"; + + // L�schen + echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n"; + echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n"; + echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; + echo "<input type=\"submit\" value=\"Löschen...\">\n"; + echo "</form>\n\n"; + + echo "<b>ACHTUNG:</b><br />\n"; + echo "Beim Löschen werden die bisher eingetragenen Engel für diese Schicht mitgelöscht.<br />\n"; + + echo "<br /><hr>\n\n\n\n"; + + //Freie Engelschichten + $sql3 = "SELECT `TID` FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND `UID`='0'"; + $Erg3 = mysql_query($sql3, $con); + $rowcount = mysql_num_rows($Erg3); + + echo "Folgende Engelschichten sind noch nicht vergeben.\n"; + echo "Und koenen, wenn diese nSchicht nicht benoetigt wird geloet werden:<br />\n"; + for ($j = 0; $j < $rowcount; $j++) { + $TID = mysql_result($Erg3, $j, 0); + echo "<a href=\"./schichtplan.php?action=engelshiftdel&SID=" . $_GET["SID"] . "&TID=$TID\">" . + "freie " . TID2Type($TID) . Get_Text("inc_schicht_Engel") . "schicht loeschen</a><br />\n"; + } + echo "<br /><hr>\n\n\n\n"; + + //Ausgabe eingetragener schischten + $sql3 = "SELECT * FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND NOT `UID`='0'"; + $Erg3 = mysql_query($sql3, $con); + $rowcount = mysql_num_rows($Erg3); + + echo "Folgende Engel Sind fuer die Schicht eingetargen.\n"; + echo "Und koennen, wenn diese nicht zu Schicht erschienen sind ausgetragen werden:<br />\n"; + echo "<table border=\"1\">\n" . + "<tr class=\"contenttopic\">" . + "<th>nick</th>" . + "<th>type</th>" . + "<th>normal</th>" . + "<th>freeloader :-(</th>" . + "</tr>"; + + for ($j = 0; $j < $rowcount; $j++) { + $userUID = mysql_result($Erg3, $j, "UID"); + echo "\t<tr>\n"; + echo "\t\t<td>" . UID2Nick($userUID) . "</td>\n"; + echo "\t\t<td>" . TID2Type(mysql_result($Erg3, $j, "TID")) . Get_Text("inc_schicht_Engel") . "</td>\n"; + echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=" . $_GET["SID"] . "&UIDs=$userUID&freeloader=0\">###-austragen-###</a></td>\n"; + echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=" . $_GET["SID"] . "&UIDs=$userUID&freeloader=1\">###-austragen-freeloader-###</a></td>\n"; + echo "\t</tr>\n"; + } // FOR + + echo "</table><br /><hr>\n\n\n\n"; + //Nachtragen von Engeln + echo "Hat ein anderer Engel die Schicht übernommen, trage ihn bitte ein:"; + echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n"; + echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n"; + echo "<input type=\"hidden\" name=\"action\" value=\"engeladd\">\n"; + + // Listet alle Nicks auf + echo "<select name=\"UIDs\">\n"; + if ($FromPentabarf != "Y") { + echo "\t<option value=\"0\">--neu--</option>\n"; + } + + $usql = "SELECT * FROM `User` ORDER BY `Nick`"; + $uErg = mysql_query($usql, $con); + $urowcount = mysql_num_rows($uErg); + for ($k = 0; $k < $urowcount; $k++) { + echo "\t<option value=\"" . mysql_result($uErg, $k, "UID") . "\">" . + mysql_result($uErg, $k, "Nick") . + "</option>\n"; + } + echo "</select>\n"; + + echo " als \n"; + + // holt eine liste der ben�tigten Engel zu dieser Schischt + $sql3 = "SELECT Count(`TID`) AS `CTID`, `TID` FROM `ShiftEntry` "; + $sql3 .= "WHERE (`SID`='" . $_GET["SID"] . "' AND `UID`='0') "; + $sql3 .= "GROUP BY `SID`, `TID`, `UID` "; + $Erg3 = mysql_query($sql3, $con); + $i = -1; + while (++ $i < mysql_num_rows($Erg3)) { + $EngelNeed[mysql_result($Erg3, $i, "TID")] = mysql_result($Erg3, $i, "CTID"); + } + + // Gibt dei m�glich Engeltypen aus und zeigt w�efiel noch be�tigt werden + echo "<select name=\"TID\">\n"; + $SQL2 = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`"; + $Erg2 = mysql_query($SQL2, $con); + for ($l = 0; $l < mysql_num_rows($Erg2); $l++) { + $EngelTID = mysql_result($Erg2, $l, "TID"); + echo "<option value=\"$EngelTID\">"; + echo mysql_result($Erg2, $l, "Name") . Get_Text("inc_schicht_engel"); + if (!isset ($EngelNeed[$EngelTID])) + echo " (0)"; + else + echo " (" . $EngelNeed[$EngelTID] . ")"; + echo "</option>\n"; + } + echo "</select>\n"; + + echo "<input type=\"submit\" value=\"eintragen...\">\n"; + + echo "<br />\n<input value=\"1\" type=\"text\" size=\"5\" name=\"eAnzahlNew\"> Anzahl New\n"; + + echo "</form>"; + + } // IF ISSET( + break; + + case 'engeladd' : + if ($_GET["UIDs"] > 0) { + + $SQL = "SELECT * FROM `ShiftEntry` " . + "WHERE (`SID`='" . $_GET["SID"] . "' AND `TID`='" . $_GET["TID"] . "' AND `UID`='0')"; + $ERG = mysql_query($SQL, $con); + if (mysql_num_rows($ERG) != 0) { + $chSQL = "UPDATE `ShiftEntry` SET " . + "`UID`='" . $_GET["UIDs"] . "', `Comment`='shift added by " . $_SESSION['Nick'] . "' " . + "WHERE (`SID`='" . $_GET["SID"] . "' AND " . + "`TID`='" . $_GET["TID"] . "' AND `UID`='0' ) LIMIT 1"; + } else { + $chSQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (" . + "'" . $_GET["SID"] . "', '" . $_GET["TID"] . "', " . + "'" . $_GET["UIDs"] . "', 'shift added by " . $_SESSION['Nick'] . "')"; + } + echo "Es wird folgende Schicht zusätzlich eingetragen:<br />\n"; + echo "Engel: " . UID2Nick($_GET["UIDs"]) . "<br />\n"; + echo "Bemerkung: Schicht eingetragen durch Erzengel " . $_SESSION['Nick'] . "<br />\n<br />\n"; + } else { + echo "Es wird folgende Schicht wurde " . $_GET["eAnzahlNew"] . "x zusätzlich eingetragen:<br />\n"; + for ($i = 0; $i < $_GET["eAnzahlNew"]; $i++) { + echo "$i. <br />\n"; + $SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES ("; + $SQL .= "'" . $_GET["SID"] . "', '" . $_GET["TID"] . "', '0', NULL)"; + $ERG = mysql_query($SQL, $con); + if ($debug) + echo "DEBUG SQL: $SQL<br />\n"; + if ($ERG == 1) { + echo "Änderung wurde gesichert...<br />"; + } else { + echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />"; + echo mysql_error($con); + } + echo "Es wird eine weitere Schicht eingetragen:<br /><br />\n"; + } + } + break; + + case 'engeldel' : + $chSQL = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`= 'NULL' WHERE (`SID`='" . $_GET["SID"] . + "' AND `UID`='" . $_GET["UIDs"] . "') LIMIT 1"; + if (isset ($_GET["freeloader"]) && $_GET["freeloader"] == 1) { + $sql = "SELECT * FROM `Shifts` WHERE (`SID` = '" . $_GET["SID"] . "' )"; + $Erg = mysql_query($sql, $con); + if (mysql_num_rows($Erg) == 1) { + $UID = $_GET["UIDs"]; + $Length = mysql_result($Erg, 0, "Len"); + $Comment = "Start: " . mysql_result($Erg, 0, "DateS") . "; " . + "Beschreibung: " . mysql_result($Erg, 0, "Man") . "; " . + "Removed by " . $_SESSION['Nick']; + $ch2SQL = "INSERT INTO `ShiftFreeloader` (`Remove_Time`, `UID`, `Length`, `Comment`) " . + "VALUES ( CURRENT_TIMESTAMP, '$UID', '$Length', '$Comment');"; + } + } + break; + + case 'engelshiftdel' : + $chSQL = "DELETE FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND `TID`='" . + $_GET["TID"] . "' AND `UID`='0' LIMIT 1"; + break; + + case 'changesave' : + $query = mysql_query("SELECT DATE_ADD('" . $_GET["eDate"] . "', INTERVAL '+0 " . $_GET["eDauer"] . "' DAY_HOUR)", $con); + $enddate = mysql_fetch_row($query); + + $chSQL = "UPDATE `Shifts` SET " . + "`DateS`='" . $_GET["eDate"] . "', " . + "`DateE`='" . $enddate[0] . "', " . + "`RID`='" . $_GET["eRID"] . "', " . + "`Len`='" . $_GET["eDauer"] . "', " . + "`Man`='" . $_GET["eName"] . "', " . + "`URL`='" . $_GET["eURL"] . "' " . + "WHERE `SID`='" . $_GET["SID"] . "'"; + SetHeaderGo2Back(); + break; + + case 'delete' : + $chSQL = "DELETE FROM `Shifts` WHERE `SID`='" . $_GET["SID"] . "' LIMIT 1"; + $ch2SQL = "DELETE FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "'"; + SetHeaderGo2Back(); + break; + + case 'deleteShifs' : + foreach ($_GET as $k => $v) + if (strpos(" " . $k, "SID") == 1) { + echo "Shifts $v wird gel�scht..."; + executeSQL("DELETE FROM `Shifts` WHERE `SID`='$v' LIMIT 1"); + echo "<br />\n"; + echo "ShiftEntry $v wird gel�scht..."; + executeSQL("DELETE FROM `ShiftEntry` WHERE `SID`='$v'"); + echo "<br /><br />\n"; + } + break; + + } // end switch + + if (IsSet ($chSQL)) { + // echo $chSQL; + // hier muesste das SQL ausgefuehrt werden... + $Erg = mysql_query($chSQL, $con); + if ($debug) + echo "DEBUG SQL: $chSQL<br />\n"; + if ($Erg == 1) { + echo "Änderung wurde gesichert...<br />"; + if ($debug) + echo "DEBUG: ergebniss" . $Erg . "<br />\n"; + if (IsSet ($ch2SQL)) { + $Erg = mysql_query($ch2SQL, $con); + if ($debug) + echo "DEBUG SQL: $ch2SQL<br />\n"; + if ($debug) + echo "DEBUG: ergebniss" . $Erg . "<br />\n"; + } + } else { + echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />"; + echo mysql_error($con); + } + } // Ende Update + +} -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/schichtplan_druck.php b/www-ssl/admin/schichtplan_druck.php index ef097043..3e856c5e 100644 --- a/www-ssl/admin/schichtplan_druck.php +++ b/www-ssl/admin/schichtplan_druck.php @@ -1,54 +1,50 @@ <?php +require_once ('../bootstrap.php'); + $title = "Himmel"; $header = "Schichtpläne"; $submenus = 1; - -if (!IsSet($_GET["action"])) -{ - include ("../../../camp2011/includes/header.php"); - include ("../../../camp2011/includes/funktionen.php"); - include ("../../../camp2011/includes/funktion_schichtplan_aray.php"); - include ("../../../camp2011/includes/funktion_schichtplan.php"); - - echo "Hallo ". $_SESSION['Nick']. "<br />\n". - "auf dieser Seite kannst du dir den Schichtplan in einer Druckansicht generieren lassen. Wähle hierfür ein Datum und den Raum:\n". - "<br />\n"; - - foreach( $VeranstaltungsTage as $k => $v) - { - - $res = mysql_query("SELECT Name, RID FROM `Room` WHERE `show`!='N' ORDER BY `Name`;",$con); - for ($i = 0; $i < mysql_num_rows($res); $i++) - { - $Tag = $VeranstaltungsTage[$k]; - $RID = mysql_result($res,$i,"RID"); - $Rname = mysql_result($res, $i, "Name"); - echo "\t<a href=\"./schichtplan_druck.php?action=1&Raum=$RID&ausdatum=$Tag\" target=\"_blank\">$Tag $Rname</a><br />\n"; - } - echo "<br />\n"; - } - echo "<br /><br />"; - - include ("../../../camp2011/includes/footer.php"); -} -else //################################################################# -{ - if (IsSet($_GET["Raum"]) AND IsSet($_GET["ausdatum"])) - { - $Raum = $_GET["Raum"]; - $ausdatum = $_GET["ausdatum"]; - - include ("../../../camp2011/includes/config_db.php"); - include ("../../../camp2011/includes/config.php"); - include ("../../../camp2011/includes/secure.php"); - //var wird nur gesetzt immer edit auszublenden, achtung sesion darf nicht gestart sein !!! - $_SESSION['CVS'][ "admin/schichtplan.php" ] = "N"; - include ("../../../camp2011/includes/funktion_lang.php"); - include ("../../../camp2011/includes/funktion_schichtplan.php"); - include ("../../../camp2011/includes/funktion_schichtplan_aray.php"); - include ("../../../camp2011/includes/funktion_user.php"); - ?> +if (!IsSet ($_GET["action"])) { + include ("includes/header.php"); + include ("includes/funktionen.php"); + include ("includes/funktion_schichtplan_aray.php"); + include ("includes/funktion_schichtplan.php"); + + echo "Hallo " . $_SESSION['Nick'] . "<br />\n" . + "auf dieser Seite kannst du dir den Schichtplan in einer Druckansicht generieren lassen. Wähle hierfür ein Datum und den Raum:\n" . + "<br />\n"; + + foreach ($VeranstaltungsTage as $k => $v) { + + $res = mysql_query("SELECT Name, RID FROM `Room` WHERE `show`!='N' ORDER BY `Name`;", $con); + for ($i = 0; $i < mysql_num_rows($res); $i++) { + $Tag = $VeranstaltungsTage[$k]; + $RID = mysql_result($res, $i, "RID"); + $Rname = mysql_result($res, $i, "Name"); + echo "\t<a href=\"./schichtplan_druck.php?action=1&Raum=$RID&ausdatum=$Tag\" target=\"_blank\">$Tag $Rname</a><br />\n"; + } + echo "<br />\n"; + } + echo "<br /><br />"; + + include ("includes/footer.php"); +} else //################################################################# + { + if (IsSet ($_GET["Raum"]) AND IsSet ($_GET["ausdatum"])) { + $Raum = $_GET["Raum"]; + $ausdatum = $_GET["ausdatum"]; + + include ("config/config_db.php"); + include ("config/config.php"); + include ("includes/secure.php"); + //var wird nur gesetzt immer edit auszublenden, achtung sesion darf nicht gestart sein !!! + $_SESSION['CVS']["admin/schichtplan.php"] = "N"; + include ("includes/funktion_lang.php"); + include ("includes/funktion_schichtplan.php"); + include ("includes/funktion_schichtplan_aray.php"); + include ("includes/funktion_user.php"); +?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> @@ -81,7 +77,7 @@ else //################################################################# <table border="2" width="650" class="border" cellpadding="2" cellspacing="1"> -<!--Ausgabe Spalten überschrift--> +<!--Ausgabe Spalten �berschrift--> <tr class="contenttopic"> <th bgcolor="#E0E0E0">Uhrzeit</th> @@ -89,41 +85,35 @@ else //################################################################# </tr> <?php -//Zeit Ausgeben -for( $i = 0; $i < 24; $i++ ) - for( $j = 0; $j < $GlobalZeileProStunde; $j++) - { - $Spalten[$i * $GlobalZeileProStunde + $j] = - "\t<tr class=\"content\">\n"; - if( $j==0) - { - $Spalten[$i * $GlobalZeileProStunde + $j].= - "\t\t<td rowspan=\"$GlobalZeileProStunde\">"; - if( $i < 10 ) - $Spalten[$i * $GlobalZeileProStunde + $j].= "0"; - $Spalten[$i * $GlobalZeileProStunde + $j].= "$i:"; - if( ( ($j*60) / $GlobalZeileProStunde) < 10 ) - $Spalten[$i * $GlobalZeileProStunde + $j].= "0"; - $Spalten[$i * $GlobalZeileProStunde + $j].= - ( ($j*60) / $GlobalZeileProStunde). "</td>\n"; - - } - } - - -CreateRoomShifts( $Raum ); - - -// Ausgabe Zeilen - for ($i = 0; $i < (24 * $GlobalZeileProStunde); $i++) echo $Spalten[$i]; -// Ende -echo "</table>\n"; - -echo "Stand: ". gmdate("Y-m-d H:i"). "\n"; -echo "</body>\n"; -echo "</html>\n"; - -} //isset($Vars) -} //isset($Action) + //Zeit Ausgeben + for ($i = 0; $i < 24; $i++) + for ($j = 0; $j < $GlobalZeileProStunde; $j++) { + $Spalten[$i * $GlobalZeileProStunde + $j] = "\t<tr class=\"content\">\n"; + if ($j == 0) { + $Spalten[$i * $GlobalZeileProStunde + $j] .= "\t\t<td rowspan=\"$GlobalZeileProStunde\">"; + if ($i < 10) + $Spalten[$i * $GlobalZeileProStunde + $j] .= "0"; + $Spalten[$i * $GlobalZeileProStunde + $j] .= "$i:"; + if ((($j * 60) / $GlobalZeileProStunde) < 10) + $Spalten[$i * $GlobalZeileProStunde + $j] .= "0"; + $Spalten[$i * $GlobalZeileProStunde + $j] .= (($j * 60) / $GlobalZeileProStunde) . "</td>\n"; + + } + } + + CreateRoomShifts($Raum); + + // Ausgabe Zeilen + for ($i = 0; $i < (24 * $GlobalZeileProStunde); $i++) + echo $Spalten[$i]; + // Ende + echo "</table>\n"; + + echo "Stand: " . gmdate("Y-m-d H:i") . "\n"; + echo "</body>\n"; + echo "</html>\n"; + + } //isset($Vars) +} //isset($Action) ?> diff --git a/www-ssl/admin/shiftadd.php b/www-ssl/admin/shiftadd.php index 34c248fa..d6b1f8ff 100644 --- a/www-ssl/admin/shiftadd.php +++ b/www-ssl/admin/shiftadd.php @@ -1,70 +1,65 @@ <?php -$title = "Schicht Hinzufügen"; +require_once ('../bootstrap.php'); + +$title = "Schicht Hinzufügen"; $header = "Neue Schichten erfassen"; -include ("../../../camp2011/includes/header.php"); +include ("includes/header.php"); -$Time = time()+3600+3600; +$Time = time() + 3600 + 3600; -echo "Hallo ".$_SESSION['Nick'].",<br />\n"; +echo "Hallo " . $_SESSION['Nick'] . ",<br />\n"; // erstellt ein Array der Reume - $sql = "SELECT `RID`, `Name` FROM `Room` ORDER BY `Name`"; - $Erg = mysql_query($sql, $con); - $rowcount = mysql_num_rows($Erg); +$sql = "SELECT `RID`, `Name` FROM `Room` ORDER BY `Name`"; +$Erg = mysql_query($sql, $con); +$rowcount = mysql_num_rows($Erg); - for ($i=0; $i<$rowcount; $i++) - { - $Room[$i]["RID"] = mysql_result($Erg, $i, "RID"); - $Room[$i]["Name"] = mysql_result($Erg, $i, "Name"); - } +for ($i = 0; $i < $rowcount; $i++) { + $Room[$i]["RID"] = mysql_result($Erg, $i, "RID"); + $Room[$i]["Name"] = mysql_result($Erg, $i, "Name"); +} // erstellt ein Aray der Engeltypen - $sql = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`"; - $Erg = mysql_query($sql, $con); - $rowcount = mysql_num_rows($Erg); - - for ($i=0; $i<$rowcount; $i++) - { - $EngelType[$i]["TID"] = mysql_result($Erg, $i, "TID"); - $EngelType[$i]["Name"] = mysql_result($Erg, $i, "Name").Get_Text("inc_schicht_engel"); - } - -// sesion mit stanadrt werten befüllen -if( !isset( $_SESSION['shiftadd.php']['SchichtName'])) -{ - $_SESSION['shiftadd.php']['SchichtName'] = "--???--"; - $_SESSION['shiftadd.php']['RID'] = ""; - $_SESSION['shiftadd.php']['MonthJahr'] = gmdate("Y-m", $Time); - $_SESSION['shiftadd.php']['SDatum'] = gmdate("d", $Time); - $_SESSION['shiftadd.php']['STime'] = "10"; - $_SESSION['shiftadd.php']['MoreThenOne'] = "ON"; - $_SESSION['shiftadd.php']['EDatum'] = gmdate("d", $Time); - $_SESSION['shiftadd.php']['ETime'] = "12"; - $_SESSION['shiftadd.php']['len'] = "2"; - $_SESSION['shiftadd.php']['NachtON'] = "OFF"; - $_SESSION['shiftadd.php']['len_night'] = "00-04-08-10-12-14-16-18-20-22-24"; -} -// wenn werte übergeben in sesion eintragen -if( !isset($_GET["NachtON"])) - $_GET["NachtON"] = "OFF"; -if( !isset($_GET["MoreThenOne"])) - $_GET["MoreThenOne"] = "OFF"; -if( isset( $_GET["SchichtName"])) -{ - foreach ($_GET as $k => $v) - { - $_SESSION['shiftadd.php'][$k] = $v; - } +$sql = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`"; +$Erg = mysql_query($sql, $con); +$rowcount = mysql_num_rows($Erg); + +for ($i = 0; $i < $rowcount; $i++) { + $EngelType[$i]["TID"] = mysql_result($Erg, $i, "TID"); + $EngelType[$i]["Name"] = mysql_result($Erg, $i, "Name") . Get_Text("inc_schicht_engel"); } +// sesion mit stanadrt werten bef�llen +if (!isset ($_SESSION['shiftadd.php']['SchichtName'])) { + $_SESSION['shiftadd.php']['SchichtName'] = "--???--"; + $_SESSION['shiftadd.php']['RID'] = ""; + $_SESSION['shiftadd.php']['MonthJahr'] = gmdate("Y-m", $Time); + $_SESSION['shiftadd.php']['SDatum'] = gmdate("d", $Time); + $_SESSION['shiftadd.php']['STime'] = "10"; + $_SESSION['shiftadd.php']['MoreThenOne'] = "ON"; + $_SESSION['shiftadd.php']['EDatum'] = gmdate("d", $Time); + $_SESSION['shiftadd.php']['ETime'] = "12"; + $_SESSION['shiftadd.php']['len'] = "2"; + $_SESSION['shiftadd.php']['NachtON'] = "OFF"; + $_SESSION['shiftadd.php']['len_night'] = "00-04-08-10-12-14-16-18-20-22-24"; +} +// wenn werte �bergeben in sesion eintragen +if (!isset ($_GET["NachtON"])) + $_GET["NachtON"] = "OFF"; +if (!isset ($_GET["MoreThenOne"])) + $_GET["MoreThenOne"] = "OFF"; +if (isset ($_GET["SchichtName"])) { + foreach ($_GET as $k => $v) { + $_SESSION['shiftadd.php'][$k] = $v; + } +} -if (!IsSet($_GET["action"])) - $_GET["action"] = "new"; +if (!IsSet ($_GET["action"])) + $_GET["action"] = "new"; -switch( $_GET["action"]) -{ -case 'new': +switch ($_GET["action"]) { + case 'new' : ?> Hier kannst du neue Schichten eintragen. Dazu musst du den Anfang und das Ende der Schichten eintragen. Über die Länge der Schichten errechnet sich dadurch die Anzahl dieser. Dadurch können gleich @@ -80,14 +75,15 @@ mehrere Schichten auf einmal erfasst werden: <td align="right">Ort:</td> <td><select name="RID"> <?php - foreach ($Room As $RTemp) - { - echo "\t<option value=\"". $RTemp["RID"]. "\""; - if( $RTemp["RID"] == $_SESSION["shiftadd.php"]["RID"]) - echo " SELECTED"; - echo ">". $RTemp["Name"]. "</option>\n"; - } - ?> + + + foreach ($Room As $RTemp) { + echo "\t<option value=\"" . $RTemp["RID"] . "\""; + if ($RTemp["RID"] == $_SESSION["shiftadd.php"]["RID"]) + echo " SELECTED"; + echo ">" . $RTemp["Name"] . "</option>\n"; + } +?> </select></td> </tr> @@ -103,10 +99,12 @@ mehrere Schichten auf einmal erfasst werden: </tr> <tr> <td align="right">More then One</td> - <td><input type="checkbox" name="MoreThenOne" value="ON" <?php - if( $_SESSION["shiftadd.php"]["MoreThenOne"]=="ON") - echo " CHECKED"; - ?>></td> + <td><input type="checkbox" name="MoreThenOne" value="ON" <?php + + + if ($_SESSION["shiftadd.php"]["MoreThenOne"] == "ON") + echo " CHECKED"; +?>></td> </tr> <tr> <td align="right">End:</td> @@ -119,10 +117,12 @@ mehrere Schichten auf einmal erfasst werden: </tr> <tr> <td align="right">Sonderschichten ein:</td> - <td><input type="checkbox" name="NachtON" value="ON" <?php - if($_SESSION["shiftadd.php"]["NachtON"]=="ON") - echo " CHECKED"; - ?>></td> + <td><input type="checkbox" name="NachtON" value="ON" <?php + + + if ($_SESSION["shiftadd.php"]["NachtON"] == "ON") + echo " CHECKED"; +?>></td> </tr> <tr> <td align="right">Sonder in h (Time;Time):</td> @@ -131,16 +131,17 @@ mehrere Schichten auf einmal erfasst werden: <tr><td><u>Anzahl Engel je Type:</u></td></tr> <?php - foreach ($EngelType As $TTemp) - { - echo " <tr><td align=\"right\">". $TTemp["Name"]. ":</td>\n"; - echo " <td><input type=\"text\" name=\"EngelType". $TTemp["TID"]. "\" size=\"5\" value=\""; - if( isset($_SESSION["shiftadd.php"][ "EngelType". $TTemp["TID"] ])) - echo $_SESSION["shiftadd.php"][ "EngelType". $TTemp["TID"] ]; - else - echo "0"; - echo "\"></td>\n"; - } + + + foreach ($EngelType As $TTemp) { + echo " <tr><td align=\"right\">" . $TTemp["Name"] . ":</td>\n"; + echo " <td><input type=\"text\" name=\"EngelType" . $TTemp["TID"] . "\" size=\"5\" value=\""; + if (isset ($_SESSION["shiftadd.php"]["EngelType" . $TTemp["TID"]])) + echo $_SESSION["shiftadd.php"]["EngelType" . $TTemp["TID"]]; + else + echo "0"; + echo "\"></td>\n"; + } ?> </table> <br /> @@ -150,209 +151,200 @@ mehrere Schichten auf einmal erfasst werden: </form> <?php - break; // Ende new - -case 'newsave': - if (isset($_GET["SDatum"]) && ($_GET["len"] > 0)) - { - $lenOrg = $_GET["len"]; - if( $_GET["NachtON"] == "ON" ) - { - $lenArrayDummy = explode( "-", $_GET["len_night"]); - foreach ( $lenArrayDummy as $Temp ) - { - if( isset($Temp2) ) - $lenArray[intval($Temp2)] = intval($Temp)-intval($Temp2); - $Temp2 = $Temp; - }//foreach - }//IF( $NachtON == "ON" ) - - echo "<table border=\"1\">\n"; - echo "<tr>\n"; - echo "\t<td valign=\"top\" align=\"center\">Start</td>\n"; - echo "\t<td valign=\"top\" align=\"center\">End</td>\n"; - echo "\t<td valign=\"top\" align=\"center\">len</td>\n"; - echo "\t<td valign=\"top\" align=\"center\">RID</td>\n"; - echo "\t<td valign=\"top\" align=\"center\">Beschreibung</td>\n"; - echo "\t<td valign=\"top\" align=\"center\">Entry 'Shifts'</td>\n"; - echo "\t<td valign=\"top\" align=\"center\">SID</td>\n"; - echo "\t<td valign=\"top\" align=\"center\">Entrys</td>\n"; - echo "</tr>\n"; - - $DateEnd = $_GET["SDatum"]; - $TimeEnd = intval($_GET["STime"]); - $len=0; - do - { - // define Start time - $Date = $DateEnd; - $Time = $TimeEnd; - $_DateS = $_GET["MonthJahr"]. "-". $Date. " ". $Time. ":00:00"; - - // define End time - if( $_GET["NachtON"] == "ON" ) - { - if( !isset($lenArray[$Time])) die("Zeit $Time h nicht definiert."); - $_GET["len"] = $lenArray[$Time]; - if( $_GET["len"]<1) die("len <1"); - } - $TimeEnd = $Time+ $_GET["len"]; - - //Tagesüberschreitung - while( $TimeEnd >= 24 ) - { - $TimeEnd -= 24; - $DateEnd += 1; - } - //ist schischt zu lang dan verkürzen - if( $DateEnd > $_GET["EDatum"] || ($DateEnd == $_GET["EDatum"] && $TimeEnd >= $_GET["ETime"]) ) - { - $_GET["len"] -= ($DateEnd- $_GET["EDatum"])*24; - $_GET["len"] -= ($TimeEnd- $_GET["ETime"]); // -(-) ->> + - $DateEnd = $_GET["EDatum"]; - $TimeEnd = $_GET["ETime"]; - } - $_DateE = $_GET["MonthJahr"]. "-". $DateEnd. " ". $TimeEnd. ":00:00"; - - if( $_DateS != $_DateE ) - CreateNewEntry(); - - if( $_GET["MoreThenOne"]!="ON" ) break; - if( $DateEnd >= $_GET["EDatum"] && $TimeEnd >= intval($_GET["ETime"]) ) break; - } while( true ); - echo "</table>"; - - if( $_GET["OnlyShow"]=="ON" ) - { - echo "<form action=\"". $_SERVER['SCRIPT_NAME']. "\">"; - echo "\n\t<Input type=\"hidden\" name=\"SchichtName\" value=\"". $_GET["SchichtName"]. "\">"; - echo "\n\t<input type=\"hidden\" name=\"MonthJahr\" value=\"". $_GET["MonthJahr"]. "\">"; - echo "\n\t<input type=\"hidden\" name=\"SDatum\" value=\"". $_GET["SDatum"]. "\">"; - echo "\n\t<input type=\"hidden\" name=\"STime\" value=\"". $_GET["STime"]. "\">"; - echo "\n\t<input type=\"hidden\" name=\"MoreThenOne\" value=\"". $_GET["MoreThenOne"]. "\">"; - echo "\n\t<input type=\"hidden\" name=\"EDatum\" value=\"". $_GET["EDatum"]. "\">"; - echo "\n\t<input type=\"hidden\" name=\"ETime\" value=\"". $_GET["ETime"]. "\">"; - echo "\n\t<input type=\"hidden\" name=\"len\" value=\"". $lenOrg. "\">"; - echo "\n\t<input type=\"hidden\" name=\"RID\" value=\"". $_GET["RID"]. "\">"; - echo "\n\t<input type=\"hidden\" name=\"NachtON\" value=\"". $_GET["NachtON"]. "\">"; - echo "\n\t<input type=\"hidden\" name=\"len_night\" value=\"". $_GET["len_night"]. "\">"; - echo "\n\t<input type=\"hidden\" name=\"OnlyShow\" value=\"OFF\">"; - foreach ($EngelType As $TTemp) - { - $Temp = "EngelType".$TTemp["TID"]; - echo "\n\t<input type=\"hidden\" name=\"". $Temp. "\" value=\"". $_GET[$Temp]. "\">"; - } - echo "\n\t<input type=\"hidden\" name=\"action\" value=\"newsave\">"; - echo "\n\t<input type=\"submit\" value=\"mach mal Gabriel!\">"; - echo "\n</form>"; - } //if - } //IF - break; - -case 'engeldel': - break; - -} // end switch + break; // Ende new + + case 'newsave' : + if (isset ($_GET["SDatum"]) && ($_GET["len"] > 0)) { + $lenOrg = $_GET["len"]; + if ($_GET["NachtON"] == "ON") { + $lenArrayDummy = explode("-", $_GET["len_night"]); + foreach ($lenArrayDummy as $Temp) { + if (isset ($Temp2)) + $lenArray[intval($Temp2)] = intval($Temp) - intval($Temp2); + $Temp2 = $Temp; + } //foreach + } //IF( $NachtON == "ON" ) + + echo "<table border=\"1\">\n"; + echo "<tr>\n"; + echo "\t<td valign=\"top\" align=\"center\">Start</td>\n"; + echo "\t<td valign=\"top\" align=\"center\">End</td>\n"; + echo "\t<td valign=\"top\" align=\"center\">len</td>\n"; + echo "\t<td valign=\"top\" align=\"center\">RID</td>\n"; + echo "\t<td valign=\"top\" align=\"center\">Beschreibung</td>\n"; + echo "\t<td valign=\"top\" align=\"center\">Entry 'Shifts'</td>\n"; + echo "\t<td valign=\"top\" align=\"center\">SID</td>\n"; + echo "\t<td valign=\"top\" align=\"center\">Entrys</td>\n"; + echo "</tr>\n"; + + $DateEnd = $_GET["SDatum"]; + $TimeEnd = intval($_GET["STime"]); + $len = 0; + do { + // define Start time + $Date = $DateEnd; + $Time = $TimeEnd; + $_DateS = $_GET["MonthJahr"] . "-" . $Date . " " . $Time . ":00:00"; + + // define End time + if ($_GET["NachtON"] == "ON") { + if (!isset ($lenArray[$Time])) + die("Zeit $Time h nicht definiert."); + $_GET["len"] = $lenArray[$Time]; + if ($_GET["len"] < 1) + die("len <1"); + } + $TimeEnd = $Time + $_GET["len"]; + + //Tages�berschreitung + while ($TimeEnd >= 24) { + $TimeEnd -= 24; + $DateEnd += 1; + } + //ist schischt zu lang dan verk�rzen + if ($DateEnd > $_GET["EDatum"] || ($DateEnd == $_GET["EDatum"] && $TimeEnd >= $_GET["ETime"])) { + $_GET["len"] -= ($DateEnd - $_GET["EDatum"]) * 24; + $_GET["len"] -= ($TimeEnd - $_GET["ETime"]); // -(-) ->> + + $DateEnd = $_GET["EDatum"]; + $TimeEnd = $_GET["ETime"]; + } + $_DateE = $_GET["MonthJahr"] . "-" . $DateEnd . " " . $TimeEnd . ":00:00"; + + if ($_DateS != $_DateE) + CreateNewEntry(); + + if ($_GET["MoreThenOne"] != "ON") + break; + if ($DateEnd >= $_GET["EDatum"] && $TimeEnd >= intval($_GET["ETime"])) + break; + } + while (true); + echo "</table>"; + + if ($_GET["OnlyShow"] == "ON") { + echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\">"; + echo "\n\t<Input type=\"hidden\" name=\"SchichtName\" value=\"" . $_GET["SchichtName"] . "\">"; + echo "\n\t<input type=\"hidden\" name=\"MonthJahr\" value=\"" . $_GET["MonthJahr"] . "\">"; + echo "\n\t<input type=\"hidden\" name=\"SDatum\" value=\"" . $_GET["SDatum"] . "\">"; + echo "\n\t<input type=\"hidden\" name=\"STime\" value=\"" . $_GET["STime"] . "\">"; + echo "\n\t<input type=\"hidden\" name=\"MoreThenOne\" value=\"" . $_GET["MoreThenOne"] . "\">"; + echo "\n\t<input type=\"hidden\" name=\"EDatum\" value=\"" . $_GET["EDatum"] . "\">"; + echo "\n\t<input type=\"hidden\" name=\"ETime\" value=\"" . $_GET["ETime"] . "\">"; + echo "\n\t<input type=\"hidden\" name=\"len\" value=\"" . $lenOrg . "\">"; + echo "\n\t<input type=\"hidden\" name=\"RID\" value=\"" . $_GET["RID"] . "\">"; + echo "\n\t<input type=\"hidden\" name=\"NachtON\" value=\"" . $_GET["NachtON"] . "\">"; + echo "\n\t<input type=\"hidden\" name=\"len_night\" value=\"" . $_GET["len_night"] . "\">"; + echo "\n\t<input type=\"hidden\" name=\"OnlyShow\" value=\"OFF\">"; + foreach ($EngelType As $TTemp) { + $Temp = "EngelType" . $TTemp["TID"]; + echo "\n\t<input type=\"hidden\" name=\"" . $Temp . "\" value=\"" . $_GET[$Temp] . "\">"; + } + echo "\n\t<input type=\"hidden\" name=\"action\" value=\"newsave\">"; + echo "\n\t<input type=\"submit\" value=\"mach mal Gabriel!\">"; + echo "\n</form>"; + } //if + } //IF + break; + + case 'engeldel' : + break; -function CreateNewEntry() -{ - global $con, $_DateS, $_DateE, $EngelType, $debug; - foreach ($EngelType As $TTemp) - { - $Temp = "EngelType".$TTemp["TID"]; - global $$Temp; - } - - echo "<tr>\n"; +} // end switch - echo "\t<td>$_DateS</td>\n"; - echo "\t<td>$_DateE</td>\n"; - echo "\t<td>". $_GET["len"]. "</td>\n"; - echo "\t<td>". $_GET["RID"]. "</td>\n"; - echo "\t<td>". $_GET["SchichtName"]. "</td>\n"; - - - // Ist eintarg schon vorhanden? - $SQL = "SELECT `SID` FROM `Shifts` "; - $SQL .= "WHERE (". - "`DateS` = '". $_DateS. "' AND ". - "`DateE` = '". $_DateE. "' AND ". - "`RID` = '". $_GET["RID"]. "');"; - $Erg = mysql_query($SQL, $con); - - if( mysql_num_rows($Erg) != 0 ) - echo "\t<td>exists</td>"; - elseif( $_GET["OnlyShow"] == "OFF" ) - { - // erstellt Eintrag in Shifts für die algemeine schicht - $SQL = "INSERT INTO `Shifts` ( `DateS`, `DateE`, `Len`, `RID`, `Man`) VALUES ( "; - $SQL .= "'". $_DateS. "', '". $_DateE. "', "; - $SQL .= "'". $_GET["len"]. "', '". $_GET["RID"]. "', "; - $SQL .= "'". $_GET["SchichtName"]. "');"; - $Erg = db_query($SQL, "create shift"); - - $SQLFail = "\n\t<br />[".$SQL. "]"; - - if ($Erg == 1) echo "\t<td>pass</td>\n"; - else echo "\t<td>fail <br />\n<u>". mysql_error($con). "</u>$SQLFail</td>\n"; - - } else - echo "\t<td>only show</td>\n"; - - // sucht SID von eingetragennen schiten - $SQL = "SELECT SID FROM `Shifts` "; - $SQL .= "WHERE (". - "`DateS` = '". $_DateS. "' AND ". - "`DateE` = '". $_DateE. "' AND ". - "`Len` = '". $_GET["len"]. "' AND ". - "`RID` = '". $_GET["RID"]. "');"; - $Erg = mysql_query($SQL, $con); - if( mysql_num_rows($Erg) == 0 ) - echo "\t<td>?</td>"; - else - { - $SID = mysql_result($Erg, 0, "SID"); - echo "\t<td>". $SID. "</td>"; - } - - // erstellt für jeden Engeltypen die eintrage in 'ShiftEntry' - echo "\t<td>"; - foreach ($EngelType As $TTemp) - { - $Temp = "EngelType".$TTemp["TID"]; - - if( $_GET[$Temp] > 0 ) - { - $i = 0; - echo $_GET[$Temp]. " ".$TTemp["Name"]. "<br />\t"; - while( $i++ < $_GET[$Temp] ) - { - if( $_GET["OnlyShow"] == "OFF" ) - { - $SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`) VALUES ("; - $SQL .= "'". $SID. "', "; - $SQL .= "'". $TTemp["TID"]. "');"; - - $Erg = mysql_query($SQL, $con); - - if( $debug ) $SQLFail = "\n\t<br />[".$SQL. "]"; - - if ($Erg == 1) echo "'pass' "; - else echo "'fail' <u>". mysql_error($con). "</u>$SQLFail</td>\n"; - - } - else - echo "+"; - } - echo "<br />"; - } // IF $$TEMP - } // FOREACH - echo "</td>"; - - echo "</tr>\n"; +function CreateNewEntry() { + global $con, $_DateS, $_DateE, $EngelType, $debug; + foreach ($EngelType As $TTemp) { + $Temp = "EngelType" . $TTemp["TID"]; + global $$Temp; + } + + echo "<tr>\n"; + + echo "\t<td>$_DateS</td>\n"; + echo "\t<td>$_DateE</td>\n"; + echo "\t<td>" . $_GET["len"] . "</td>\n"; + echo "\t<td>" . $_GET["RID"] . "</td>\n"; + echo "\t<td>" . $_GET["SchichtName"] . "</td>\n"; + + // Ist eintarg schon vorhanden? + $SQL = "SELECT `SID` FROM `Shifts` "; + $SQL .= "WHERE (" . + "`DateS` = '" . $_DateS . "' AND " . + "`DateE` = '" . $_DateE . "' AND " . + "`RID` = '" . $_GET["RID"] . "');"; + $Erg = mysql_query($SQL, $con); + + if (mysql_num_rows($Erg) != 0) + echo "\t<td>exists</td>"; + elseif ($_GET["OnlyShow"] == "OFF") { + // erstellt Eintrag in Shifts f�r die algemeine schicht + $SQL = "INSERT INTO `Shifts` ( `DateS`, `DateE`, `Len`, `RID`, `Man`) VALUES ( "; + $SQL .= "'" . $_DateS . "', '" . $_DateE . "', "; + $SQL .= "'" . $_GET["len"] . "', '" . $_GET["RID"] . "', "; + $SQL .= "'" . $_GET["SchichtName"] . "');"; + $Erg = db_query($SQL, "create shift"); + + $SQLFail = "\n\t<br />[" . $SQL . "]"; + + if ($Erg == 1) + echo "\t<td>pass</td>\n"; + else + echo "\t<td>fail <br />\n<u>" . mysql_error($con) . "</u>$SQLFail</td>\n"; + + } else + echo "\t<td>only show</td>\n"; + + // sucht SID von eingetragennen schiten + $SQL = "SELECT SID FROM `Shifts` "; + $SQL .= "WHERE (" . + "`DateS` = '" . $_DateS . "' AND " . + "`DateE` = '" . $_DateE . "' AND " . + "`Len` = '" . $_GET["len"] . "' AND " . + "`RID` = '" . $_GET["RID"] . "');"; + $Erg = mysql_query($SQL, $con); + if (mysql_num_rows($Erg) == 0) + echo "\t<td>?</td>"; + else { + $SID = mysql_result($Erg, 0, "SID"); + echo "\t<td>" . $SID . "</td>"; + } + + // erstellt f�r jeden Engeltypen die eintrage in 'ShiftEntry' + echo "\t<td>"; + foreach ($EngelType As $TTemp) { + $Temp = "EngelType" . $TTemp["TID"]; + + if ($_GET[$Temp] > 0) { + $i = 0; + echo $_GET[$Temp] . " " . $TTemp["Name"] . "<br />\t"; + while ($i++ < $_GET[$Temp]) { + if ($_GET["OnlyShow"] == "OFF") { + $SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`) VALUES ("; + $SQL .= "'" . $SID . "', "; + $SQL .= "'" . $TTemp["TID"] . "');"; + + $Erg = mysql_query($SQL, $con); + + if ($debug) + $SQLFail = "\n\t<br />[" . $SQL . "]"; + + if ($Erg == 1) + echo "'pass' "; + else + echo "'fail' <u>" . mysql_error($con) . "</u>$SQLFail</td>\n"; + + } else + echo "+"; + } + echo "<br />"; + } // IF $$TEMP + } // FOREACH + echo "</td>"; + + echo "</tr>\n"; } -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/sprache.php b/www-ssl/admin/sprache.php index ebf1db32..a36bf694 100644 --- a/www-ssl/admin/sprache.php +++ b/www-ssl/admin/sprache.php @@ -1,122 +1,110 @@ <?php +require_once ('../bootstrap.php'); $title = "Sprache"; $header = "Liste der existierenden Sprcheinträge"; -include ("../../../camp2011/includes/header.php"); - - -if( !isset( $_GET["TextID"] ) ) -{ - echo Get_Text("Hello").$_SESSION['Nick'].", <br />\n"; - echo Get_Text("pub_sprache_text1")."<br /><br />\n"; - - echo "<a href=\"?ShowEntry=y\">". Get_Text("pub_sprache_ShowEntry"). "</a>"; - // ausgabe Tabellenueberschift - $SQL_Sprachen = "SELECT `Sprache` FROM `Sprache` GROUP BY `Sprache`;"; - $erg_Sprachen = mysql_query($SQL_Sprachen, $con); - echo mysql_error($con); - - for( $i=0; $i<mysql_num_rows( $erg_Sprachen ); $i++ ) - $Sprachen[mysql_result( $erg_Sprachen, $i, "Sprache" )] = $i; - - echo "\t<table border=\"0\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n\t\t<tr>"; - echo "\t\t<td class=\"contenttopic\"><b>". Get_Text("pub_sprache_TextID"). "</b></td>"; - foreach( $Sprachen as $Name => $Value ) - echo "<td class=\"contenttopic\"><b>". - Get_Text("pub_sprache_Sprache"). " ". $Name. - "</b></td>"; - echo "\t\t<td class=\"contenttopic\"><b>". Get_Text("pub_sprache_Edit"). "</b></td>"; - echo "\t\t</tr>"; - - - if( isset($_GET["ShowEntry"])) - { - // ausgabe eintraege - $SQL = "SELECT * FROM `Sprache` ORDER BY `TextID`;"; - $erg = mysql_query($SQL, $con); - echo mysql_error($con); - - $TextID_Old = mysql_result( $erg, 0, "TextID" ); - for( $i=0; $i<mysql_num_rows( $erg ); $i++ ) - { - $TextID_New = mysql_result( $erg, $i, "TextID" ); - if( $TextID_Old != $TextID_New ) - { - echo "<form action=\"sprache.php\">"; - echo "<tr class=\"content\">\n"; - echo "\t\t<td>$TextID_Old ". - "<input name=\"TextID\" type=\"hidden\" value=\"$TextID_Old\"> </td>\n"; - - foreach( $Sprachen as $Name => $Value ) - { - $Value = html_entity_decode( $Value, ENT_QUOTES); - echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Value</textarea></td>\n"; - $Sprachen[ $Name ] = ""; - } - - echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n"; - echo "</tr>"; - echo "</form>\n"; - $TextID_Old = $TextID_New; - } - $Sprachen[ mysql_result( $erg, $i, "Sprache" ) ] = mysql_result( $erg, $i, "Text" ); - } /*FOR*/ - } - - //fuer neu eintraege - echo "<form action=\"sprache.php\">"; - echo "<tr class=\"content\">\n"; - echo "\t\t<td><input name=\"TextID\" type=\"text\" size=\"40\" value=\"new\"> </td>\n"; - - foreach( $Sprachen as $Name => $Value ) - echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Name Text</textarea></td>\n"; - - echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n"; - echo "</tr>"; - echo "</form>\n"; - - - echo "</table>\n"; +include ("includes/header.php"); + +if (!isset ($_GET["TextID"])) { + echo Get_Text("Hello") . $_SESSION['Nick'] . ", <br />\n"; + echo Get_Text("pub_sprache_text1") . "<br /><br />\n"; + + echo "<a href=\"?ShowEntry=y\">" . Get_Text("pub_sprache_ShowEntry") . "</a>"; + // ausgabe Tabellenueberschift + $SQL_Sprachen = "SELECT `Sprache` FROM `Sprache` GROUP BY `Sprache`;"; + $erg_Sprachen = mysql_query($SQL_Sprachen, $con); + echo mysql_error($con); + + for ($i = 0; $i < mysql_num_rows($erg_Sprachen); $i++) + $Sprachen[mysql_result($erg_Sprachen, $i, "Sprache")] = $i; + + echo "\t<table border=\"0\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n\t\t<tr>"; + echo "\t\t<td class=\"contenttopic\"><b>" . Get_Text("pub_sprache_TextID") . "</b></td>"; + foreach ($Sprachen as $Name => $Value) + echo "<td class=\"contenttopic\"><b>" . + Get_Text("pub_sprache_Sprache") . " " . $Name . + "</b></td>"; + echo "\t\t<td class=\"contenttopic\"><b>" . Get_Text("pub_sprache_Edit") . "</b></td>"; + echo "\t\t</tr>"; + + if (isset ($_GET["ShowEntry"])) { + // ausgabe eintraege + $SQL = "SELECT * FROM `Sprache` ORDER BY `TextID`;"; + $erg = mysql_query($SQL, $con); + echo mysql_error($con); + + $TextID_Old = mysql_result($erg, 0, "TextID"); + for ($i = 0; $i < mysql_num_rows($erg); $i++) { + $TextID_New = mysql_result($erg, $i, "TextID"); + if ($TextID_Old != $TextID_New) { + echo "<form action=\"sprache.php\">"; + echo "<tr class=\"content\">\n"; + echo "\t\t<td>$TextID_Old " . + "<input name=\"TextID\" type=\"hidden\" value=\"$TextID_Old\"> </td>\n"; + + foreach ($Sprachen as $Name => $Value) { + $Value = html_entity_decode($Value, ENT_QUOTES); + echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Value</textarea></td>\n"; + $Sprachen[$Name] = ""; + } + + echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n"; + echo "</tr>"; + echo "</form>\n"; + $TextID_Old = $TextID_New; + } + $Sprachen[mysql_result($erg, $i, "Sprache")] = mysql_result($erg, $i, "Text"); + } /*FOR*/ + } + + //fuer neu eintraege + echo "<form action=\"sprache.php\">"; + echo "<tr class=\"content\">\n"; + echo "\t\t<td><input name=\"TextID\" type=\"text\" size=\"40\" value=\"new\"> </td>\n"; + + foreach ($Sprachen as $Name => $Value) + echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Name Text</textarea></td>\n"; + + echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n"; + echo "</tr>"; + echo "</form>\n"; + + echo "</table>\n"; } /*if( !isset( $TextID ) )*/ -else -{ - echo "edit: ". $_GET["TextID"]. "<br /><br />"; - foreach ($_GET as $k => $v) { - if( $k != "TextID" ) - { - $sql_test = "SELECT * FROM `Sprache` ". - "WHERE `TextID`='". $_GET["TextID"]. "' AND `Sprache`='$k'"; - $erg_test = mysql_query($sql_test, $con); - - if( mysql_num_rows($erg_test)==0 ) - { - $sql_save = "INSERT INTO `Sprache` (`TextID`, `Sprache`, `Text`) ". - "VALUES ('". $_GET["TextID"]. "', '$k', '$v')"; - echo $sql_save."<br />"; - $Erg = mysql_query($sql_save, $con); - if ($Erg == 1) - echo "\t $k Save: OK<br />\n"; - else - echo "\t $k Save: KO<br />\n"; - } - else if( mysql_result($erg_test, 0, "Text")!=$v ) - { - $sql_save = "UPDATE `Sprache` SET `Text`='$v' ". - "WHERE `TextID`='". $_GET["TextID"]. "' AND `Sprache`='$k' "; - echo $sql_save."<br />"; - $Erg = mysql_query($sql_save, $con); - if ($Erg == 1) - echo "\t $k Update: OK<br />\n"; - else - echo "\t $k Update: KO<br />\n"; - } - else - echo "\t $k no changes<br />\n"; - } - } - +else { + echo "edit: " . $_GET["TextID"] . "<br /><br />"; + foreach ($_GET as $k => $v) { + if ($k != "TextID") { + $sql_test = "SELECT * FROM `Sprache` " . + "WHERE `TextID`='" . $_GET["TextID"] . "' AND `Sprache`='$k'"; + $erg_test = mysql_query($sql_test, $con); + + if (mysql_num_rows($erg_test) == 0) { + $sql_save = "INSERT INTO `Sprache` (`TextID`, `Sprache`, `Text`) " . + "VALUES ('" . $_GET["TextID"] . "', '$k', '$v')"; + echo $sql_save . "<br />"; + $Erg = mysql_query($sql_save, $con); + if ($Erg == 1) + echo "\t $k Save: OK<br />\n"; + else + echo "\t $k Save: KO<br />\n"; + } else + if (mysql_result($erg_test, 0, "Text") != $v) { + $sql_save = "UPDATE `Sprache` SET `Text`='$v' " . + "WHERE `TextID`='" . $_GET["TextID"] . "' AND `Sprache`='$k' "; + echo $sql_save . "<br />"; + $Erg = mysql_query($sql_save, $con); + if ($Erg == 1) + echo "\t $k Update: OK<br />\n"; + else + echo "\t $k Update: KO<br />\n"; + } else + echo "\t $k no changes<br />\n"; + } + } + } -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/tshirt.php b/www-ssl/admin/tshirt.php index 6fc3551e..9a8e7010 100644 --- a/www-ssl/admin/tshirt.php +++ b/www-ssl/admin/tshirt.php @@ -1,21 +1,20 @@ <?php +require_once ('../bootstrap.php'); $title = "T-Shirt-Ausgabe"; $header = "T-Shirt-Ausgabe für aktiven Engel"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); +If (IsSet ($_GET["aktiv"])) { -If (IsSet($_GET["aktiv"])) { - - $SQL="UPDATE `User` SET `Tshirt`='1' WHERE `UID`='". $_GET["aktiv"]. "' limit 1"; - $Erg = mysql_query($SQL, $con); - if ($Erg == 1) { - } else { - echo "Fehler beim speichern bei Engel ". UID2Nick($_GET["aktive"]). "<br />"; - } + $SQL = "UPDATE `User` SET `Tshirt`='1' WHERE `UID`='" . $_GET["aktiv"] . "' limit 1"; + $Erg = mysql_query($SQL, $con); + if ($Erg == 1) { + } else { + echo "Fehler beim speichern bei Engel " . UID2Nick($_GET["aktive"]) . "<br />"; + } } - ?> Über die Suchen-Funktion des Browsers kann diese Liste schnell nach einem Nick abgesucht werden.<br /> @@ -24,7 +23,9 @@ Hinter diesem erscheint ein Link, über den man eintragen kann, dass der Eng Liste aller aktiven Engel: <?php -$SQL = "SELECT * FROM `User` WHERE (`Aktiv`='1') ORDER BY `Nick` ASC"; + + +$SQL = "SELECT * FROM `User` WHERE (`Aktiv`='1') ORDER BY `Nick` ASC"; $Erg = mysql_query($SQL, $con); $rowcount = mysql_num_rows($Erg); @@ -37,23 +38,25 @@ $rowcount = mysql_num_rows($Erg); <td>T-Shirt ausgeben:</td> </td> <?php -for ($i=0; $i<$rowcount; $i++){ - echo "\t<tr class=\"content\">\n"; - $eUID=mysql_result($Erg, $i, "UID"); - echo "\t\t<td>".UID2Nick($eUID)."</td>\n"; - echo "\t\t<td>".mysql_result($Erg, $i, "Aktiv")."</td>\n"; - echo "\t\t<td>".mysql_result($Erg, $i, "Size")."</td>\n"; - - if (mysql_result($Erg, $i, "Tshirt") =="1") { - echo "\t\t<td>bereits erhalten</td>"; - } else { - echo "\t\t<td><a href=\"./tshirt.php?aktiv=$eUID\">XXXXXXXX</a></td>"; - } - echo "\t</tr>\n"; + + +for ($i = 0; $i < $rowcount; $i++) { + echo "\t<tr class=\"content\">\n"; + $eUID = mysql_result($Erg, $i, "UID"); + echo "\t\t<td>" . UID2Nick($eUID) . "</td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "Aktiv") . "</td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "Size") . "</td>\n"; + + if (mysql_result($Erg, $i, "Tshirt") == "1") { + echo "\t\t<td>bereits erhalten</td>"; + } else { + echo "\t\t<td><a href=\"./tshirt.php?aktiv=$eUID\">XXXXXXXX</a></td>"; + } + echo "\t</tr>\n"; } echo "</table>"; -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/user.php b/www-ssl/admin/user.php index 7d7c3a62..0b31c97c 100644 --- a/www-ssl/admin/user.php +++ b/www-ssl/admin/user.php @@ -1,30 +1,30 @@ <?php +require_once ('../bootstrap.php'); $title = "User-Liste"; $header = "Editieren der Engelliste"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); -if (!IsSet($_GET["enterUID"])) -{ - // Userliste, keine UID uebergeben... +if (!IsSet ($_GET["enterUID"])) { + // Userliste, keine UID uebergeben... - echo "<a href=\"../makeuser.php\">Neuen Engel eintragen</a><br /><br />\n"; - - if( !isset($_GET["OrderBy"]) ) $_GET["OrderBy"] = "Nick"; - $SQL = "SELECT User.*, UserGroups.Name AS 'Group' FROM `User` ". - "LEFT JOIN `UserCVS` ON User.UID = UserCVS.UID ". - "LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID ". - "ORDER BY `". $_GET["OrderBy"]. "` ASC"; - $Erg = mysql_query($SQL, $con); - echo mysql_error($con); + echo "<a href=\"../makeuser.php\">Neuen Engel eintragen</a><br /><br />\n"; - // anzahl zeilen - $Zeilen = mysql_num_rows($Erg); + if (!isset ($_GET["OrderBy"])) + $_GET["OrderBy"] = "Nick"; + $SQL = "SELECT User.*, UserGroups.Name AS 'Group' FROM `User` " . + "LEFT JOIN `UserCVS` ON User.UID = UserCVS.UID " . + "LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID " . + "ORDER BY `" . $_GET["OrderBy"] . "` ASC"; + $Erg = mysql_query($SQL, $con); + echo mysql_error($con); - echo "Anzahl Engel: $Zeilen<br /><br />\n"; + // anzahl zeilen + $Zeilen = mysql_num_rows($Erg); - ?><table width="100%" class="border" cellpadding="2" cellspacing="1"> + echo "Anzahl Engel: $Zeilen<br /><br />\n"; +?><table width="100%" class="border" cellpadding="2" cellspacing="1"> <tr class="contenttopic"> <td> <a href="<?php echo $_SERVER["PHP_SELF"]; ?>?OrderBy=Nick">Nick</a> | @@ -53,88 +53,81 @@ if (!IsSet($_GET["enterUID"])) <?php - $Gekommen = 0; - $Active = 0; - $Tshirt = 0; - - for ($n = 0 ; $n < $Zeilen ; $n++) { - echo "<tr class=\"content\">\n"; - echo "\t<td>".mysql_result($Erg, $n, "Nick"). "<br />(Create: ". mysql_result($Erg, $n, "CreateDate"). ")</td>\n"; - echo "\t<td>".mysql_result($Erg, $n, "Name")."</td>\n"; - echo "\t<td>".mysql_result($Erg, $n, "Vorname")."</td>\n"; - echo "\t<td>".mysql_result($Erg, $n, "Alter")."</td>\n"; - echo "\t<td>"; - if( strlen( mysql_result($Erg, $n, "Telefon"))>0) - echo "\n\t\tTel: ". mysql_result($Erg, $n, "Telefon"). "<br />"; - if( strlen( mysql_result($Erg, $n, "Handy"))>0) - echo "\n\t\tHandy: ". mysql_result($Erg, $n, "Handy"). "<br />"; - if( strlen( mysql_result($Erg, $n, "DECT"))>0) - echo "\n\t\tDECT: <a href=\"./dect.php?custum=". mysql_result($Erg, $n, "DECT"). "\">". - mysql_result($Erg, $n, "DECT"). "</a><br />"; - if( strlen( mysql_result($Erg, $n, "email"))>0) - echo "\n\t\temail: <a href=\"mailto:".mysql_result($Erg, $n, "email")."\">". - mysql_result($Erg, $n, "email")."</a><br />"; - if( strlen( mysql_result($Erg, $n, "Hometown"))>0) - echo "\n\t\tHometown: ". mysql_result($Erg, $n, "Hometown"). "<br />"; - if( strlen( mysql_result($Erg, $n, "lastLogIn"))>0) - echo "\n\t\tlastLogIn: ". mysql_result($Erg, $n, "lastLogIn"). "<br />"; - if( strlen( mysql_result($Erg, $n, "Art"))>0) - echo "\n\t\tType: ". mysql_result($Erg, $n, "Art"). "<br />"; - if( strlen( mysql_result($Erg, $n, "ICQ"))>0) - echo "\n\t\tICQ: ". mysql_result($Erg, $n, "ICQ"). "<br />"; - if( strlen( mysql_result($Erg, $n, "jabber"))>0) - echo "\n\t\tjabber: ". mysql_result($Erg, $n, "jabber"). "<br />"; - echo "\n\t\tGroup: ". mysql_result($Erg, $n, "Group"). "<br />"; - echo "</td>\n"; - echo "\t<td>".mysql_result($Erg, $n, "Size")."</td>\n"; - $Gekommen += mysql_result($Erg, $n, "Gekommen"); - echo "\t<td>".mysql_result($Erg, $n, "Gekommen")."</td>\n"; - $Active += mysql_result($Erg, $n, "Aktiv"); - echo "\t<td>".mysql_result($Erg, $n, "Aktiv")."</td>\n"; - $Tshirt += mysql_result($Erg, $n, "Tshirt"); - echo "\t<td>".mysql_result($Erg, $n, "Tshirt")."</td>\n"; - echo "\t<td>". funktion_isLinkAllowed_addLink_OrEmpty( - "admin/userChangeNormal.php?enterUID=". - mysql_result($Erg, $n, "UID")."&Type=Normal", - "Änd."). - "</td>\n"; - echo "\t<td>". funktion_isLinkAllowed_addLink_OrEmpty( - "admin/userChangeSecure.php?enterUID=". - mysql_result($Erg, $n, "UID")."&Type=Secure", - "Secure"). - "</td>\n"; - echo "</tr>\n"; - } - echo "<tr>". - "<td></td><td></td><td></td><td></td><td></td><td></td>". - "<td>$Gekommen</td><td>$Active</td><td>$Tshirt</td><td></td></tr>\n"; - echo "\t</table>\n"; - // Ende Userliste - - echo "<h1>Statistics</h1>"; - funktion_db_element_list_2row( "Hometown", - "SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`"); - - echo "<br />\n"; - - funktion_db_element_list_2row( "Engeltypen", - "SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`"); - - echo "<br />\n"; - - funktion_db_element_list_2row( "Used Groups", - "SELECT UserGroups.Name AS 'GroupName', COUNT(UserGroups.Name) AS Count FROM `UserCVS` ". - "LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID ". - "WHERE (UserCVS.GroupID!='NULL') ". - "GROUP BY `GroupName` ". - ""); -} -else -{ - echo "error"; + + + $Gekommen = 0; + $Active = 0; + $Tshirt = 0; + + for ($n = 0; $n < $Zeilen; $n++) { + echo "<tr class=\"content\">\n"; + echo "\t<td>" . mysql_result($Erg, $n, "Nick") . "<br />(Create: " . mysql_result($Erg, $n, "CreateDate") . ")</td>\n"; + echo "\t<td>" . mysql_result($Erg, $n, "Name") . "</td>\n"; + echo "\t<td>" . mysql_result($Erg, $n, "Vorname") . "</td>\n"; + echo "\t<td>" . mysql_result($Erg, $n, "Alter") . "</td>\n"; + echo "\t<td>"; + if (strlen(mysql_result($Erg, $n, "Telefon")) > 0) + echo "\n\t\tTel: " . mysql_result($Erg, $n, "Telefon") . "<br />"; + if (strlen(mysql_result($Erg, $n, "Handy")) > 0) + echo "\n\t\tHandy: " . mysql_result($Erg, $n, "Handy") . "<br />"; + if (strlen(mysql_result($Erg, $n, "DECT")) > 0) + echo "\n\t\tDECT: <a href=\"./dect.php?custum=" . mysql_result($Erg, $n, "DECT") . "\">" . + mysql_result($Erg, $n, "DECT") . "</a><br />"; + if (strlen(mysql_result($Erg, $n, "email")) > 0) + echo "\n\t\temail: <a href=\"mailto:" . mysql_result($Erg, $n, "email") . "\">" . + mysql_result($Erg, $n, "email") . "</a><br />"; + if (strlen(mysql_result($Erg, $n, "Hometown")) > 0) + echo "\n\t\tHometown: " . mysql_result($Erg, $n, "Hometown") . "<br />"; + if (strlen(mysql_result($Erg, $n, "lastLogIn")) > 0) + echo "\n\t\tlastLogIn: " . mysql_result($Erg, $n, "lastLogIn") . "<br />"; + if (strlen(mysql_result($Erg, $n, "Art")) > 0) + echo "\n\t\tType: " . mysql_result($Erg, $n, "Art") . "<br />"; + if (strlen(mysql_result($Erg, $n, "ICQ")) > 0) + echo "\n\t\tICQ: " . mysql_result($Erg, $n, "ICQ") . "<br />"; + if (strlen(mysql_result($Erg, $n, "jabber")) > 0) + echo "\n\t\tjabber: " . mysql_result($Erg, $n, "jabber") . "<br />"; + echo "\n\t\tGroup: " . mysql_result($Erg, $n, "Group") . "<br />"; + echo "</td>\n"; + echo "\t<td>" . mysql_result($Erg, $n, "Size") . "</td>\n"; + $Gekommen += mysql_result($Erg, $n, "Gekommen"); + echo "\t<td>" . mysql_result($Erg, $n, "Gekommen") . "</td>\n"; + $Active += mysql_result($Erg, $n, "Aktiv"); + echo "\t<td>" . mysql_result($Erg, $n, "Aktiv") . "</td>\n"; + $Tshirt += mysql_result($Erg, $n, "Tshirt"); + echo "\t<td>" . mysql_result($Erg, $n, "Tshirt") . "</td>\n"; + echo "\t<td>" . funktion_isLinkAllowed_addLink_OrEmpty("admin/userChangeNormal.php?enterUID=" . + mysql_result($Erg, $n, "UID") . "&Type=Normal", "Änd.") . + "</td>\n"; + echo "\t<td>" . funktion_isLinkAllowed_addLink_OrEmpty("admin/userChangeSecure.php?enterUID=" . + mysql_result($Erg, $n, "UID") . "&Type=Secure", "Secure") . + "</td>\n"; + echo "</tr>\n"; + } + echo "<tr>" . + "<td></td><td></td><td></td><td></td><td></td><td></td>" . + "<td>$Gekommen</td><td>$Active</td><td>$Tshirt</td><td></td></tr>\n"; + echo "\t</table>\n"; + // Ende Userliste + + echo "<h1>Statistics</h1>"; + funktion_db_element_list_2row("Hometown", "SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`"); + + echo "<br />\n"; + + funktion_db_element_list_2row("Engeltypen", "SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`"); + + echo "<br />\n"; + + funktion_db_element_list_2row("Used Groups", "SELECT UserGroups.Name AS 'GroupName', COUNT(UserGroups.Name) AS Count FROM `UserCVS` " . + "LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID " . + "WHERE (UserCVS.GroupID!='NULL') " . + "GROUP BY `GroupName` " . + ""); +} else { + echo "error"; } -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/userArrived.php b/www-ssl/admin/userArrived.php index a8fdb71e..93857d2e 100644 --- a/www-ssl/admin/userArrived.php +++ b/www-ssl/admin/userArrived.php @@ -1,54 +1,53 @@ <?php +require_once ('../bootstrap.php'); $title = "Engel Arrived"; $header = "Engel was arrived"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); - - -If (IsSet($_GET["arrived"])) { - - $SQL="UPDATE `User` SET `Gekommen`='1' WHERE `UID`='". $_GET["arrived"]. "' limit 1"; - $Erg = db_query($SQL, "Set User as Gekommen"); - if ($Erg == 1) { - echo "<h2>". Get_Text("pri_userArrived_WriteOK"). " \"". UID2Nick($_GET["arrived"]). "\"</h2>"; - } else { - echo "<h1>". Get_Text("pri_userArrived_WriteError"). " \"". UID2Nick($_GET["arrived"]). "\"</h1>"; - } +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); + +If (IsSet ($_GET["arrived"])) { + + $SQL = "UPDATE `User` SET `Gekommen`='1' WHERE `UID`='" . $_GET["arrived"] . "' limit 1"; + $Erg = db_query($SQL, "Set User as Gekommen"); + if ($Erg == 1) { + echo "<h2>" . Get_Text("pri_userArrived_WriteOK") . " \"" . UID2Nick($_GET["arrived"]) . "\"</h2>"; + } else { + echo "<h1>" . Get_Text("pri_userArrived_WriteError") . " \"" . UID2Nick($_GET["arrived"]) . "\"</h1>"; + } } -echo Get_Text("pri_userArrived_Text1"). "<br />"; -echo Get_Text("pri_userArrived_Text2"). "<br /><br />"; +echo Get_Text("pri_userArrived_Text1") . "<br />"; +echo Get_Text("pri_userArrived_Text2") . "<br /><br />"; echo Get_Text("pri_userArrived_TableToppic"); -$SQL = "SELECT * FROM `User` ORDER BY `Nick` ASC"; +$SQL = "SELECT * FROM `User` ORDER BY `Nick` ASC"; $Erg = mysql_query($SQL, $con); $rowcount = mysql_num_rows($Erg); echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "\t<tr class=\"contenttopic\">\n"; -echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_Nick"). "</td>\n"; -echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_ArrivedShow"). "</td>\n"; -echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_ArrivedSet"). "</td>\n"; +echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_Nick") . "</td>\n"; +echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_ArrivedShow") . "</td>\n"; +echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_ArrivedSet") . "</td>\n"; echo "\t</td>\n"; -for ($i=0; $i<$rowcount; $i++){ - echo "\t<tr class=\"content\">\n"; - $eUID=mysql_result($Erg, $i, "UID"); - echo "\t\t<td>".UID2Nick($eUID)."</td>\n"; - echo "\t\t<td>".mysql_result($Erg, $i, "Gekommen")."</td>\n"; - - if (mysql_result($Erg, $i, "Gekommen") =="1") - { - echo "\t\t<td>". Get_Text("pri_userArrived_TableEntry_Arrived"). "</td>"; - } else { - echo "\t\t<td><a href=\"./userArrived.php?arrived=$eUID\">". Get_Text("pri_userArrived_TableEntry_Set"). "</a></td>"; - } - echo "\t</tr>\n"; +for ($i = 0; $i < $rowcount; $i++) { + echo "\t<tr class=\"content\">\n"; + $eUID = mysql_result($Erg, $i, "UID"); + echo "\t\t<td>" . UID2Nick($eUID) . "</td>\n"; + echo "\t\t<td>" . mysql_result($Erg, $i, "Gekommen") . "</td>\n"; + + if (mysql_result($Erg, $i, "Gekommen") == "1") { + echo "\t\t<td>" . Get_Text("pri_userArrived_TableEntry_Arrived") . "</td>"; + } else { + echo "\t\t<td><a href=\"./userArrived.php?arrived=$eUID\">" . Get_Text("pri_userArrived_TableEntry_Set") . "</a></td>"; + } + echo "\t</tr>\n"; } echo "</table>"; -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/userChangeNormal.php b/www-ssl/admin/userChangeNormal.php index 6785a030..36eb4b6d 100644 --- a/www-ssl/admin/userChangeNormal.php +++ b/www-ssl/admin/userChangeNormal.php @@ -1,137 +1,133 @@ <?php +require_once ('../bootstrap.php'); $title = "User-Liste"; $header = "Editieren der Engelliste"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); - -if (IsSet($_GET["enterUID"])) -{ - // UserID wurde mit uebergeben --> Aendern... - - echo "Hallo,<br />". - "hier kannst du den Eintrag ändern. Unter dem Punkt 'Gekommen' ". - "wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, ". - "dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. ". - "Wenn T-Shirt ein 'Ja' enthält, bedeutet dies, dass der Engel ". - "bereits sein T-Shirt erhalten hat.<br /><br />\n"; - - echo "<form action=\"./userSaveNormal.php?action=change\" method=\"POST\">\n"; - echo "<table border=\"0\">\n"; - echo "<input type=\"hidden\" name=\"Type\" value=\"Normal\">\n"; - - $SQL = "SELECT * FROM `User` WHERE `UID`='". $_GET["enterUID"]. "'"; - $Erg = mysql_query($SQL, $con); - - if (mysql_num_rows($Erg) != 1) - echo "<tr><td>Sorry, der Engel (UID=". $_GET["enterUID"]. - ") wurde in der Liste nicht gefunden.</td></tr>"; - else - { - echo "<tr><td>\n"; - echo "<table>\n"; - echo " <tr><td>Nick</td><td>". - "<input type=\"text\" size=\"40\" name=\"eNick\" value=\"". - mysql_result($Erg, 0, "Nick")."\"></td></tr>\n"; - echo " <tr><td>lastLogIn</td><td>". - "<input type=\"text\" size=\"20\" name=\"elastLogIn\" value=\"". - mysql_result($Erg, 0, "lastLogIn"). "\" disabled></td></tr>\n"; - echo " <tr><td>Name</td><td>". - "<input type=\"text\" size=\"40\" name=\"eName\" value=\"". - mysql_result($Erg, 0, "Name")."\"></td></tr>\n"; - echo " <tr><td>Vorname</td><td>". - "<input type=\"text\" size=\"40\" name=\"eVorname\" value=\"". - mysql_result($Erg, 0, "Vorname")."\"></td></tr>\n"; - echo " <tr><td>Alter</td><td>". - "<input type=\"text\" size=\"5\" name=\"eAlter\" value=\"". - mysql_result($Erg, 0, "Alter")."\"></td></tr>\n"; - echo " <tr><td>Telefon</td><td>". - "<input type=\"text\" size=\"40\" name=\"eTelefon\" value=\"". - mysql_result($Erg, 0, "Telefon")."\"></td></tr>\n"; - echo " <tr><td>Handy</td><td>". - "<input type=\"text\" size=\"40\" name=\"eHandy\" value=\"". - mysql_result($Erg, 0, "Handy")."\"></td></tr>\n"; - echo " <tr><td>DECT</td><td>". - "<input type=\"text\" size=\"4\" name=\"eDECT\" value=\"". - mysql_result($Erg, 0, "DECT")."\"></td></tr>\n"; - echo " <tr><td>email</td><td>". - "<input type=\"text\" size=\"40\" name=\"eemail\" value=\"". - mysql_result($Erg, 0, "email")."\"></td></tr>\n"; - echo " <tr><td>ICQ</td><td>". - "<input type=\"text\" size=\"40\" name=\"eICQ\" value=\"". - mysql_result($Erg, 0, "ICQ")."\"></td></tr>\n"; - echo " <tr><td>jabber</td><td>". - "<input type=\"text\" size=\"40\" name=\"ejabber\" value=\"". - mysql_result($Erg, 0, "jabber")."\"></td></tr>\n"; - echo " <tr><td>Size</td><td>". - "<input type=\"text\" size=\"5\" name=\"eSize\" value=\"". - mysql_result($Erg, 0, "Size")."\"></td></tr>\n"; - echo " <tr><td>Passwort</td><td>". - "<a href=\"./userSaveNormal.php?action=newpw&eUID=" - .mysql_result($Erg, 0, "UID")."\">neues Kennwort setzen</a></td></tr>\n"; - - // Gekommen? - echo " <tr><td>Gekommen</td><td>\n"; - echo " <input type=\"radio\" name=\"eGekommen\" value=\"0\""; - if (mysql_result($Erg, 0, "Gekommen")=='0') - echo " checked"; - echo ">No \n"; - echo " <input type=\"radio\" name=\"eGekommen\" value=\"1\""; - if (mysql_result($Erg, 0, "Gekommen")=='1') - echo " checked"; - echo ">Yes \n"; - echo "</td></tr>\n"; - - // Aktiv? - echo " <tr><td>Aktiv</td><td>\n"; - echo " <input type=\"radio\" name=\"eAktiv\" value=\"0\""; - if (mysql_result($Erg, 0, "Aktiv")=='0') - echo " checked"; - echo ">No \n"; - echo " <input type=\"radio\" name=\"eAktiv\" value=\"1\""; - if (mysql_result($Erg, 0, "Aktiv")=='1') - echo " checked"; - echo ">Yes \n"; - echo "</td></tr>\n"; - - // T-Shirt bekommen? - echo " <tr><td>T-Shirt</td><td>\n"; - echo " <input type=\"radio\" name=\"eTshirt\" value=\"0\""; - if (mysql_result($Erg, 0, "Tshirt")=='0') - echo " checked"; - echo ">No \n"; - echo " <input type=\"radio\" name=\"eTshirt\" value=\"1\""; - if (mysql_result($Erg, 0, "Tshirt")=='1') - echo " checked"; - echo ">Yes \n"; - echo "</td></tr>\n"; - - echo " <tr><td>Hometown</td><td>". - "<input type=\"text\" size=\"40\" name=\"Hometown\" value=\"". - mysql_result($Erg, 0, "Hometown")."\"></td></tr>\n"; - - echo "</table>\n</td><td valign=\"top\">". displayavatar($_GET["enterUID"], FALSE). "</td></tr>"; - } - - echo "</td></tr>\n"; - echo "</table>\n<br />\n"; - echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; - echo "<input type=\"submit\" value=\"sichern...\">\n"; - echo "</form>"; - - echo "<form action=\"./userSaveNormal.php?action=delete\" method=\"POST\">\n"; - echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; - echo "<input type=\"submit\" value=\"löschen...\">\n"; - echo "</form>"; - - - echo "<hr>"; - funktion_db_element_list_2row( - "Freeloader Shifts", - "SELECT `Remove_Time`, `Length`, `Comment` FROM `ShiftFreeloader` WHERE UID=". $_GET["enterUID"]); +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); + +if (IsSet ($_GET["enterUID"])) { + // UserID wurde mit uebergeben --> Aendern... + + echo "Hallo,<br />" . + "hier kannst du den Eintrag ändern. Unter dem Punkt 'Gekommen' " . + "wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, " . + "dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. " . + "Wenn T-Shirt ein 'Ja' enthält, bedeutet dies, dass der Engel " . + "bereits sein T-Shirt erhalten hat.<br /><br />\n"; + + echo "<form action=\"./userSaveNormal.php?action=change\" method=\"POST\">\n"; + echo "<table border=\"0\">\n"; + echo "<input type=\"hidden\" name=\"Type\" value=\"Normal\">\n"; + + $SQL = "SELECT * FROM `User` WHERE `UID`='" . $_GET["enterUID"] . "'"; + $Erg = mysql_query($SQL, $con); + + if (mysql_num_rows($Erg) != 1) + echo "<tr><td>Sorry, der Engel (UID=" . $_GET["enterUID"] . + ") wurde in der Liste nicht gefunden.</td></tr>"; + else { + echo "<tr><td>\n"; + echo "<table>\n"; + echo " <tr><td>Nick</td><td>" . + "<input type=\"text\" size=\"40\" name=\"eNick\" value=\"" . + mysql_result($Erg, 0, "Nick") . "\"></td></tr>\n"; + echo " <tr><td>lastLogIn</td><td>" . + "<input type=\"text\" size=\"20\" name=\"elastLogIn\" value=\"" . + mysql_result($Erg, 0, "lastLogIn") . "\" disabled></td></tr>\n"; + echo " <tr><td>Name</td><td>" . + "<input type=\"text\" size=\"40\" name=\"eName\" value=\"" . + mysql_result($Erg, 0, "Name") . "\"></td></tr>\n"; + echo " <tr><td>Vorname</td><td>" . + "<input type=\"text\" size=\"40\" name=\"eVorname\" value=\"" . + mysql_result($Erg, 0, "Vorname") . "\"></td></tr>\n"; + echo " <tr><td>Alter</td><td>" . + "<input type=\"text\" size=\"5\" name=\"eAlter\" value=\"" . + mysql_result($Erg, 0, "Alter") . "\"></td></tr>\n"; + echo " <tr><td>Telefon</td><td>" . + "<input type=\"text\" size=\"40\" name=\"eTelefon\" value=\"" . + mysql_result($Erg, 0, "Telefon") . "\"></td></tr>\n"; + echo " <tr><td>Handy</td><td>" . + "<input type=\"text\" size=\"40\" name=\"eHandy\" value=\"" . + mysql_result($Erg, 0, "Handy") . "\"></td></tr>\n"; + echo " <tr><td>DECT</td><td>" . + "<input type=\"text\" size=\"4\" name=\"eDECT\" value=\"" . + mysql_result($Erg, 0, "DECT") . "\"></td></tr>\n"; + echo " <tr><td>email</td><td>" . + "<input type=\"text\" size=\"40\" name=\"eemail\" value=\"" . + mysql_result($Erg, 0, "email") . "\"></td></tr>\n"; + echo " <tr><td>ICQ</td><td>" . + "<input type=\"text\" size=\"40\" name=\"eICQ\" value=\"" . + mysql_result($Erg, 0, "ICQ") . "\"></td></tr>\n"; + echo " <tr><td>jabber</td><td>" . + "<input type=\"text\" size=\"40\" name=\"ejabber\" value=\"" . + mysql_result($Erg, 0, "jabber") . "\"></td></tr>\n"; + echo " <tr><td>Size</td><td>" . + "<input type=\"text\" size=\"5\" name=\"eSize\" value=\"" . + mysql_result($Erg, 0, "Size") . "\"></td></tr>\n"; + echo " <tr><td>Passwort</td><td>" . + "<a href=\"./userSaveNormal.php?action=newpw&eUID=" . + mysql_result($Erg, 0, "UID") . "\">neues Kennwort setzen</a></td></tr>\n"; + + // Gekommen? + echo " <tr><td>Gekommen</td><td>\n"; + echo " <input type=\"radio\" name=\"eGekommen\" value=\"0\""; + if (mysql_result($Erg, 0, "Gekommen") == '0') + echo " checked"; + echo ">No \n"; + echo " <input type=\"radio\" name=\"eGekommen\" value=\"1\""; + if (mysql_result($Erg, 0, "Gekommen") == '1') + echo " checked"; + echo ">Yes \n"; + echo "</td></tr>\n"; + + // Aktiv? + echo " <tr><td>Aktiv</td><td>\n"; + echo " <input type=\"radio\" name=\"eAktiv\" value=\"0\""; + if (mysql_result($Erg, 0, "Aktiv") == '0') + echo " checked"; + echo ">No \n"; + echo " <input type=\"radio\" name=\"eAktiv\" value=\"1\""; + if (mysql_result($Erg, 0, "Aktiv") == '1') + echo " checked"; + echo ">Yes \n"; + echo "</td></tr>\n"; + + // T-Shirt bekommen? + echo " <tr><td>T-Shirt</td><td>\n"; + echo " <input type=\"radio\" name=\"eTshirt\" value=\"0\""; + if (mysql_result($Erg, 0, "Tshirt") == '0') + echo " checked"; + echo ">No \n"; + echo " <input type=\"radio\" name=\"eTshirt\" value=\"1\""; + if (mysql_result($Erg, 0, "Tshirt") == '1') + echo " checked"; + echo ">Yes \n"; + echo "</td></tr>\n"; + + echo " <tr><td>Hometown</td><td>" . + "<input type=\"text\" size=\"40\" name=\"Hometown\" value=\"" . + mysql_result($Erg, 0, "Hometown") . "\"></td></tr>\n"; + + echo "</table>\n</td><td valign=\"top\">" . displayavatar($_GET["enterUID"], FALSE) . "</td></tr>"; + } + + echo "</td></tr>\n"; + echo "</table>\n<br />\n"; + echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n"; + echo "<input type=\"submit\" value=\"sichern...\">\n"; + echo "</form>"; + + echo "<form action=\"./userSaveNormal.php?action=delete\" method=\"POST\">\n"; + echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n"; + echo "<input type=\"submit\" value=\"löschen...\">\n"; + echo "</form>"; + + echo "<hr>"; + funktion_db_element_list_2row("Freeloader Shifts", "SELECT `Remove_Time`, `Length`, `Comment` FROM `ShiftFreeloader` WHERE UID=" . $_GET["enterUID"]); } -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/userChangeSecure.php b/www-ssl/admin/userChangeSecure.php index 2eb84b85..69c4601d 100644 --- a/www-ssl/admin/userChangeSecure.php +++ b/www-ssl/admin/userChangeSecure.php @@ -1,112 +1,104 @@ <?php +require_once ('../bootstrap.php'); $title = "User-Liste"; $header = "Editieren der Engelliste"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); -if (IsSet($_GET["enterUID"])) -{ - // UserID wurde mit uebergeben --> Aendern... +if (IsSet ($_GET["enterUID"])) { + // UserID wurde mit uebergeben --> Aendern... - echo "Hallo,<br />". - "hier kannst du den Eintrag ändern. Unter dem Punkt 'Gekommen' ". - "wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, ". - "dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. ". - "Wenn T-Shirt ein 'Ja' enthält, bedeutet dies, dass der Engel ". - "bereits sein T-Shirt erhalten hat.<br /><br />\n"; + echo "Hallo,<br />" . + "hier kannst du den Eintrag ändern. Unter dem Punkt 'Gekommen' " . + "wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, " . + "dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. " . + "Wenn T-Shirt ein 'Ja' enthält, bedeutet dies, dass der Engel " . + "bereits sein T-Shirt erhalten hat.<br /><br />\n"; + $SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='" . $_GET["enterUID"] . "'"; + $Erg_CVS = mysql_query($SQL_CVS, $con); - $SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='". $_GET["enterUID"]. "'"; - $Erg_CVS = mysql_query($SQL_CVS, $con); - - if( mysql_num_rows($Erg_CVS) != 1) - echo "Sorry, der Engel (UID=". $_GET["enterUID"]. ") wurde in der Liste nicht gefunden."; - else - { - // Rename if is an group - if( $_GET["enterUID"] < 0 ) { - $SQLname = "SELECT `Name` FROM `UserGroups` WHERE `UID`='". $_GET["enterUID"]. "'"; - $ErgName = mysql_query($SQLname, $con); - echo mysql_error($con); + if (mysql_num_rows($Erg_CVS) != 1) + echo "Sorry, der Engel (UID=" . $_GET["enterUID"] . ") wurde in der Liste nicht gefunden."; + else { + // Rename if is an group + if ($_GET["enterUID"] < 0) { + $SQLname = "SELECT `Name` FROM `UserGroups` WHERE `UID`='" . $_GET["enterUID"] . "'"; + $ErgName = mysql_query($SQLname, $con); + echo mysql_error($con); - echo "<form action=\"./userSaveSecure.php?action=changeGroupName\" method=\"POST\">\n"; - echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; - echo "<input type=\"text\" name=\"GroupName\" value=\"". mysql_result($ErgName, 0, "Name"). "\">\n"; - echo "<input type=\"submit\" value=\"rename\">\n"; - echo "</form>"; - } + echo "<form action=\"./userSaveSecure.php?action=changeGroupName\" method=\"POST\">\n"; + echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n"; + echo "<input type=\"text\" name=\"GroupName\" value=\"" . mysql_result($ErgName, 0, "Name") . "\">\n"; + echo "<input type=\"submit\" value=\"rename\">\n"; + echo "</form>"; + } - echo "<form action=\"./userSaveSecure.php?action=change\" method=\"POST\">\n"; - echo "<table border=\"0\">\n"; - echo "<input type=\"hidden\" name=\"Type\" value=\"Secure\">\n"; - echo " <tr><td><br /><u>Rights of \"". UID2Nick($_GET["enterUID"]). "\":</u></td></tr>\n"; + echo "<form action=\"./userSaveSecure.php?action=change\" method=\"POST\">\n"; + echo "<table border=\"0\">\n"; + echo "<input type=\"hidden\" name=\"Type\" value=\"Secure\">\n"; + echo " <tr><td><br /><u>Rights of \"" . UID2Nick($_GET["enterUID"]) . "\":</u></td></tr>\n"; + $CVS_Data = mysql_fetch_array($Erg_CVS); + $CVS_Data_i = 1; + foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) { + $CVS_Data_i++; + //nur jeder zweiter sonst wird f�r jeden text noch die position (Zahl) ausgegeben + if ($CVS_Data_i % 2 && $CVS_Data_Name != "UID") { + if ($CVS_Data_Name == "GroupID") { + if ($_GET["enterUID"] > 0) { + echo "<tr><td><b>Group</b></td>\n" . + "<td><select name=\"GroupID\">"; - $CVS_Data = mysql_fetch_array($Erg_CVS); - $CVS_Data_i = 1; - foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) - { - $CVS_Data_i++; - //nur jeder zweiter sonst wird für jeden text noch die position (Zahl) ausgegeben - if( $CVS_Data_i%2 && $CVS_Data_Name!="UID") - { - if($CVS_Data_Name=="GroupID") { - if( $_GET["enterUID"] > 0 ) - { - echo "<tr><td><b>Group</b></td>\n". - "<td><select name=\"GroupID\">"; + $SQL_Group = "SELECT * FROM `UserGroups`"; + $Erg_Group = mysql_query($SQL_Group, $con); + for ($n = 0; $n < mysql_num_rows($Erg_Group); $n++) { + $UID = mysql_result($Erg_Group, $n, "UID"); + echo "\t<option value=\"$UID\""; + if ($CVS_Data_Value == $UID) + echo " selected"; + echo ">" . mysql_result($Erg_Group, $n, "Name") . "</option>\n"; + } + echo "</select></td></tr>"; + } + } else { + echo "<tr><td>$CVS_Data_Name</td>\n<td>"; + echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"Y\" "; + if ($CVS_Data_Value == "Y") + echo " checked"; + echo ">allow \n"; + echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"N\" "; + if ($CVS_Data_Value == "N") + echo " checked"; + echo ">denied \n"; + if ($_GET["enterUID"] > 0) { + echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"G\" "; + if ($CVS_Data_Value == "G") + echo " checked"; + echo ">group-setting \n"; + echo "</td></tr>"; + } + } + } //IF + } //Foreach + echo "</td></tr>\n"; - $SQL_Group = "SELECT * FROM `UserGroups`"; - $Erg_Group = mysql_query($SQL_Group, $con); - for ($n = 0 ; $n < mysql_num_rows($Erg_Group) ; $n++) - { - $UID = mysql_result($Erg_Group, $n, "UID"); - echo "\t<option value=\"$UID\""; - if( $CVS_Data_Value == $UID) - echo " selected"; - echo ">". mysql_result($Erg_Group, $n, "Name"). "</option>\n"; - } - echo "</select></td></tr>"; - } - } else { - echo "<tr><td>$CVS_Data_Name</td>\n<td>"; - echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"Y\" "; - if( $CVS_Data_Value == "Y" ) - echo " checked"; - echo ">allow \n"; - echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"N\" "; - if( $CVS_Data_Value == "N" ) - echo " checked"; - echo ">denied \n"; - if( $_GET["enterUID"] > 0 ) - { - echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"G\" "; - if( $CVS_Data_Value == "G" ) - echo " checked"; - echo ">group-setting \n"; - echo "</td></tr>"; - } - } - } //IF - } //Foreach - echo "</td></tr>\n"; - - // Ende Formular - echo "</td></tr>\n"; - echo "</table>\n<br />\n"; - echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; - echo "<input type=\"submit\" value=\"sichern...\">\n"; - echo "</form>"; + // Ende Formular + echo "</td></tr>\n"; + echo "</table>\n<br />\n"; + echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n"; + echo "<input type=\"submit\" value=\"sichern...\">\n"; + echo "</form>"; - echo "<br /><form action=\"./userSaveSecure.php?action=delete\" method=\"POST\">\n"; - echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; - echo "<input type=\"submit\" value=\"löschen...\">\n"; - echo "</form>"; - } + echo "<br /><form action=\"./userSaveSecure.php?action=delete\" method=\"POST\">\n"; + echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n"; + echo "<input type=\"submit\" value=\"löschen...\">\n"; + echo "</form>"; + } } -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/userDefaultSetting.php b/www-ssl/admin/userDefaultSetting.php index d4a230de..e7a69925 100644 --- a/www-ssl/admin/userDefaultSetting.php +++ b/www-ssl/admin/userDefaultSetting.php @@ -1,72 +1,70 @@ <?php +require_once ('../bootstrap.php'); $title = "Defalut User Setting"; $header = "Defalut User Setting"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); + +echo "Hallo " . $_SESSION['Nick'] . +",<br />\nhier hast du die Möglichkeit, die Defaulteinstellungen für neue User einzustellen:<br /><br />\n"; -echo "Hallo ".$_SESSION['Nick']. - ",<br />\nhier hast du die Möglichkeit, die Defaulteinstellungen für neue User einzustellen:<br /><br />\n"; - echo "<table border=\"0\" class=\"border\">\n"; echo "\t<tr class=\"contenttopic\">\n"; echo "\t\t<th>Page</th>\n\t\t<th>Show</th>\n\t\t<th></th>\n"; echo "\t</tr>\n"; -if( isset( $_GET["Field"]) && isset( $_GET["Default"]) && isset( $_GET["Send"])) -{ - switch( $_GET["Send"]) - { - case "New": - $SQL = "ALTER TABLE `UserCVS` ADD `". $_GET["Field"]. "` ". - "CHAR( 1 ) DEFAULT '". $_GET["Default"]. "' NOT NULL"; - $Erg = db_query( $SQL, "New user default setting"); - if( $Erg == 1) - echo "<H2>Create ".$_GET["Field"]. " = ". $_GET["Default"]. " succesfull</h2>\n"; - else - echo "<H2>Create ".$_GET["Field"]. " = ". $_GET["Default"]. " error...</h2>\n". - "[". mysql_error(). "]<br /><br />"; - break; - case "Del": - echo "\t<tr class=\"content\">\n"; - echo "\t\t<form action=\"userDefaultSetting.php\">\n"; - echo "\t\t\t<td><input name=\"Field\" type=\"text\" value=\"". $_GET["Field"]. "\" readonly></td>\n"; - echo "\t\t\t<td><input name=\"Default\" type=\"text\" value=\"". $_GET["Default"]. "\" readonly></td>\n"; - echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Del sure\"></td>\n"; - echo "\t\t</form>\n"; - echo "\t</tr>\n"; - break; - case "Del sure": - $SQL = "ALTER TABLE `UserCVS` DROP `". $_GET["Field"]. "` "; - $Erg = db_query( $SQL, "del user default setting"); - if( $Erg == 1) - echo "<H2>Delete ".$_GET["Field"]. " succesfull</h2>\n"; - else - echo "<H2>Delete ".$_GET["Field"]. " error...</h2>\n". - "[". mysql_error(). "]<br /><br />"; - break; - case "SetForAllUser": - $SQL = "UPDATE `UserCVS` SET `". $_GET["Field"]. "`='". $_GET["Default"]. "' WHERE UID>0"; - $Erg = db_query( $SQL, "Set new user default setting for all user"); - if( $Erg == 1) - echo "<H2>UPDATE ".$_GET["Field"]. " = ". $_GET["Default"]. " for all Users succesfull</h2>\n"; - else - echo "<H2>UPDATE ".$_GET["Field"]. " = ". $_GET["Default"]. " for all Users error...</h2>\n". - "[". mysql_error(). "]<br /><br />"; - case "Save": - $SQL = "ALTER TABLE `UserCVS` CHANGE `". $_GET["Field"]. "` ". - "`". $_GET["Field"]. "` CHAR( 1 ) NOT NULL DEFAULT '". $_GET["Default"]. "'"; - $Erg = db_query( $SQL, "Save user default setting"); - if( $Erg == 1) - echo "<H2>Write ".$_GET["Field"]. " = ". $_GET["Default"]. " succesfull</h2>\n"; - else - echo "<H2>Write ".$_GET["Field"]. " = ". $_GET["Default"]. " error...</h2>\n". - "[". mysql_error(). "]<br /><br />"; - break; - } //SWITCH +if (isset ($_GET["Field"]) && isset ($_GET["Default"]) && isset ($_GET["Send"])) { + switch ($_GET["Send"]) { + case "New" : + $SQL = "ALTER TABLE `UserCVS` ADD `" . $_GET["Field"] . "` " . + "CHAR( 1 ) DEFAULT '" . $_GET["Default"] . "' NOT NULL"; + $Erg = db_query($SQL, "New user default setting"); + if ($Erg == 1) + echo "<H2>Create " . $_GET["Field"] . " = " . $_GET["Default"] . " succesfull</h2>\n"; + else + echo "<H2>Create " . $_GET["Field"] . " = " . $_GET["Default"] . " error...</h2>\n" . + "[" . mysql_error() . "]<br /><br />"; + break; + case "Del" : + echo "\t<tr class=\"content\">\n"; + echo "\t\t<form action=\"userDefaultSetting.php\">\n"; + echo "\t\t\t<td><input name=\"Field\" type=\"text\" value=\"" . $_GET["Field"] . "\" readonly></td>\n"; + echo "\t\t\t<td><input name=\"Default\" type=\"text\" value=\"" . $_GET["Default"] . "\" readonly></td>\n"; + echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Del sure\"></td>\n"; + echo "\t\t</form>\n"; + echo "\t</tr>\n"; + break; + case "Del sure" : + $SQL = "ALTER TABLE `UserCVS` DROP `" . $_GET["Field"] . "` "; + $Erg = db_query($SQL, "del user default setting"); + if ($Erg == 1) + echo "<H2>Delete " . $_GET["Field"] . " succesfull</h2>\n"; + else + echo "<H2>Delete " . $_GET["Field"] . " error...</h2>\n" . + "[" . mysql_error() . "]<br /><br />"; + break; + case "SetForAllUser" : + $SQL = "UPDATE `UserCVS` SET `" . $_GET["Field"] . "`='" . $_GET["Default"] . "' WHERE UID>0"; + $Erg = db_query($SQL, "Set new user default setting for all user"); + if ($Erg == 1) + echo "<H2>UPDATE " . $_GET["Field"] . " = " . $_GET["Default"] . " for all Users succesfull</h2>\n"; + else + echo "<H2>UPDATE " . $_GET["Field"] . " = " . $_GET["Default"] . " for all Users error...</h2>\n" . + "[" . mysql_error() . "]<br /><br />"; + case "Save" : + $SQL = "ALTER TABLE `UserCVS` CHANGE `" . $_GET["Field"] . "` " . + "`" . $_GET["Field"] . "` CHAR( 1 ) NOT NULL DEFAULT '" . $_GET["Default"] . "'"; + $Erg = db_query($SQL, "Save user default setting"); + if ($Erg == 1) + echo "<H2>Write " . $_GET["Field"] . " = " . $_GET["Default"] . " succesfull</h2>\n"; + else + echo "<H2>Write " . $_GET["Field"] . " = " . $_GET["Default"] . " error...</h2>\n" . + "[" . mysql_error() . "]<br /><br />"; + break; + } //SWITCH } //IF( - $erg = mysql_query("SHOW COLUMNS FROM `UserCVS`"); echo mysql_error(); echo "\t<tr class=\"content\">\n"; @@ -76,14 +74,13 @@ echo "\t\t\t<td>Group</td>\n"; echo "\t\t\t<td><select name=\"GroupID\">"; $SQL_Group = "SELECT * FROM `UserGroups`"; -$Erg_Group = mysql_query($SQL_Group, $con); -for ($n = 0 ; $n < mysql_num_rows($Erg_Group) ; $n++) -{ - $UID = mysql_result($Erg_Group, $n, "UID"); - echo "\t<option value=\"$UID\""; - if( mysql_result( $erg, 1, "Default") == $UID) - echo " selected"; - echo ">". mysql_result($Erg_Group, $n, "Name"). "</option>\n"; +$Erg_Group = mysql_query($SQL_Group, $con); +for ($n = 0; $n < mysql_num_rows($Erg_Group); $n++) { + $UID = mysql_result($Erg_Group, $n, "UID"); + echo "\t<option value=\"$UID\""; + if (mysql_result($erg, 1, "Default") == $UID) + echo " selected"; + echo ">" . mysql_result($Erg_Group, $n, "Name") . "</option>\n"; } echo "</select></td>\n"; echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\">\n"; @@ -91,37 +88,36 @@ echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"SetForAllUser\"></t echo "\t\t</form>\n"; echo "\t</tr>\n"; -for( $i=2; $i<mysql_num_rows($erg); $i++) -{ - echo "\t<tr class=\"content\">\n"; - echo "\t\t<form action=\"userDefaultSetting.php\">\n"; - echo "\t\t\t<input name=\"Field\" type=\"hidden\" value=\"". mysql_result( $erg, $i, "Field"). "\">\n"; - echo "\t\t\t<td>". mysql_result( $erg, $i, "Field"). "</td>\n"; - echo "\t\t\t<td>\n"; - - echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"Y\""; - if( mysql_result( $erg, $i, "Default") == "Y") - echo " checked"; - echo ">allow\n"; +for ($i = 2; $i < mysql_num_rows($erg); $i++) { + echo "\t<tr class=\"content\">\n"; + echo "\t\t<form action=\"userDefaultSetting.php\">\n"; + echo "\t\t\t<input name=\"Field\" type=\"hidden\" value=\"" . mysql_result($erg, $i, "Field") . "\">\n"; + echo "\t\t\t<td>" . mysql_result($erg, $i, "Field") . "</td>\n"; + echo "\t\t\t<td>\n"; + + echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"Y\""; + if (mysql_result($erg, $i, "Default") == "Y") + echo " checked"; + echo ">allow\n"; - echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"N\""; - if( mysql_result( $erg, $i, "Default") == "N") - echo " checked"; - echo ">denied\n"; + echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"N\""; + if (mysql_result($erg, $i, "Default") == "N") + echo " checked"; + echo ">denied\n"; - echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"G\""; - if( mysql_result( $erg, $i, "Default") == "G") - echo " checked"; - echo ">group-setting\n"; + echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"G\""; + if (mysql_result($erg, $i, "Default") == "G") + echo " checked"; + echo ">group-setting\n"; - echo "\t\t\t</td>\n"; - echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\">\n"; - echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"Del\">\n"; - echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"SetForAllUser\"></td>\n"; - echo "\t\t</form>\n"; - echo "\t</tr>\n"; + echo "\t\t\t</td>\n"; + echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\">\n"; + echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"Del\">\n"; + echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"SetForAllUser\"></td>\n"; + echo "\t\t</form>\n"; + echo "\t</tr>\n"; } - + echo "\t<tr class=\"content\">\n"; echo "\t\t<form action=\"userDefaultSetting.php\">\n"; echo "\t\t\t<input name=\"New\" type=\"hidden\" value=\"New\">\n"; @@ -135,10 +131,8 @@ echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"New\"></td>\n"; echo "\t\t</form>\n"; echo "\t</tr>\n"; - - echo "</table>\n"; -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/userSaveNormal.php b/www-ssl/admin/userSaveNormal.php index b1b42f96..deaf96d9 100644 --- a/www-ssl/admin/userSaveNormal.php +++ b/www-ssl/admin/userSaveNormal.php @@ -1,130 +1,119 @@ <?php +require_once ('../bootstrap.php'); $title = "User-Liste"; $header = "Index"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); -include ("../../../camp2011/includes/crypt.php"); -include ("../../../camp2011/includes/funktion_db.php"); +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); +include ("includes/crypt.php"); +include ("includes/funktion_db.php"); -if (IsSet($_GET["action"])) -{ - SetHeaderGo2Back(); - echo "Gesendeter Befehl: ". $_GET["action"]. "<br />"; +if (IsSet ($_GET["action"])) { + SetHeaderGo2Back(); + echo "Gesendeter Befehl: " . $_GET["action"] . "<br />"; - switch ($_GET["action"]) - { - case "change": - if (IsSet($_POST["enterUID"])) - { - if ($_POST["Type"] == "Normal") - { - $SQL = "UPDATE `User` SET "; - $SQL.= " `Nick` = '". $_POST["eNick"]. "', `Name` = '". $_POST["eName"]. "', ". - "`Vorname` = '". $_POST["eVorname"]. "', ". - "`Telefon` = '". $_POST["eTelefon"]. "', ". - "`Handy` = '". $_POST["eHandy"]. "', ". - "`DECT` = '". $_POST["eDECT"]. "', ". - "`email` = '". $_POST["eemail"]. "', ". - "`ICQ` = '". $_POST["eICQ"]. "', ". - "`jabber` = '". $_POST["ejabber"]. "', ". - "`Size` = '". $_POST["eSize"]. "', ". - "`Gekommen`= '". $_POST["eGekommen"]. "', ". - "`Aktiv`= '". $_POST["eAktiv"]. "', ". - "`Tshirt` = '". $_POST["eTshirt"]. "', ". - "`Hometown` = '". $_POST["Hometown"]. "' ". - "WHERE `UID` = '". $_POST["enterUID"]. - "' LIMIT 1;"; - echo "User-"; - $Erg = db_query($SQL, "change user details"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - } - else - echo "<h1>Fehler: Unbekanter Type (". $_POST["Type"]. ") übergeben\n</h1>\n"; - } - else - echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n"; - break; + switch ($_GET["action"]) { + case "change" : + if (IsSet ($_POST["enterUID"])) { + if ($_POST["Type"] == "Normal") { + $SQL = "UPDATE `User` SET "; + $SQL .= " `Nick` = '" . $_POST["eNick"] . "', `Name` = '" . $_POST["eName"] . "', " . + "`Vorname` = '" . $_POST["eVorname"] . "', " . + "`Telefon` = '" . $_POST["eTelefon"] . "', " . + "`Handy` = '" . $_POST["eHandy"] . "', " . + "`DECT` = '" . $_POST["eDECT"] . "', " . + "`email` = '" . $_POST["eemail"] . "', " . + "`ICQ` = '" . $_POST["eICQ"] . "', " . + "`jabber` = '" . $_POST["ejabber"] . "', " . + "`Size` = '" . $_POST["eSize"] . "', " . + "`Gekommen`= '" . $_POST["eGekommen"] . "', " . + "`Aktiv`= '" . $_POST["eAktiv"] . "', " . + "`Tshirt` = '" . $_POST["eTshirt"] . "', " . + "`Hometown` = '" . $_POST["Hometown"] . "' " . + "WHERE `UID` = '" . $_POST["enterUID"] . + "' LIMIT 1;"; + echo "User-"; + $Erg = db_query($SQL, "change user details"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + } else + echo "<h1>Fehler: Unbekanter Type (" . $_POST["Type"] . ") �bergeben\n</h1>\n"; + } else + echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST �bergeben</h1>\n"; + break; - case "delete": - if (IsSet($_POST["enterUID"])) - { - echo "delate User..."; - $SQL="DELETE FROM `User` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; - $Erg = db_query($SQL, "User delete"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - - echo "<br />\ndelate UserCVS..."; - $SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; - $Erg = db_query($SQL2, "User CVS delete"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - - echo "<br />\ndelate UserEntry..."; - $SQL3="UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL ". - "WHERE `UID`='". $_POST["enterUID"]. "';"; - $Erg = db_query($SQL3, "delate UserEntry"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - } - break; + case "delete" : + if (IsSet ($_POST["enterUID"])) { + echo "delate User..."; + $SQL = "DELETE FROM `User` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;"; + $Erg = db_query($SQL, "User delete"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + echo "<br />\ndelate UserCVS..."; + $SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;"; + $Erg = db_query($SQL2, "User CVS delete"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } - case "newpw": - echo "Bitte neues Kennwort für <b>"; - // Get Nick - $USQL = "SELECT * FROM `User` WHERE `UID`='". $_GET["eUID"]. "'"; - $Erg = mysql_query($USQL, $con); - echo mysql_result($Erg, 0, "Nick"); - echo "</b> eingeben:<br />"; - echo "<form action=\"./userSaveNormal.php?action=newpwsave\" method=\"POST\">\n"; - echo "<input type=\"Password\" name=\"ePasswort\">"; - echo "<input type=\"Password\" name=\"ePasswort2\">"; - echo "<input type=\"hidden\" name=\"eUID\" value=\"". $_GET["eUID"]. "\">"; - echo "<input type=\"submit\" value=\"sichern...\">\n"; - echo "</form>"; - break; + echo "<br />\ndelate UserEntry..."; + $SQL3 = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL " . + "WHERE `UID`='" . $_POST["enterUID"] . "';"; + $Erg = db_query($SQL3, "delate UserEntry"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + } + break; - case "newpwsave": - if ($_POST["ePasswort"] == $_POST["ePasswort2"]) - { // beide Passwoerter passen... - $_POST["ePasswort"] = PassCrypt($_POST["ePasswort"]); - $SQL = "UPDATE `User` SET `Passwort`='". $_POST["ePasswort"]. "' ". - "WHERE `UID`='". $_POST["eUID"]. "'"; - $Erg = db_query($SQL, "User new passwort"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - } - else - echo "Das Passwort wurde nicht übereinstimmend eingegeben!"; - break; - } // end switch + case "newpw" : + echo "Bitte neues Kennwort für <b>"; + // Get Nick + $USQL = "SELECT * FROM `User` WHERE `UID`='" . $_GET["eUID"] . "'"; + $Erg = mysql_query($USQL, $con); + echo mysql_result($Erg, 0, "Nick"); + echo "</b> eingeben:<br />"; + echo "<form action=\"./userSaveNormal.php?action=newpwsave\" method=\"POST\">\n"; + echo "<input type=\"Password\" name=\"ePasswort\">"; + echo "<input type=\"Password\" name=\"ePasswort2\">"; + echo "<input type=\"hidden\" name=\"eUID\" value=\"" . $_GET["eUID"] . "\">"; + echo "<input type=\"submit\" value=\"sichern...\">\n"; + echo "</form>"; + break; -// ende - Action ist gesetzt -} -else -{ - // kein Action gesetzt -> abbruch - echo "Unzulässiger Aufruf.<br />Bitte neu editieren..."; + case "newpwsave" : + if ($_POST["ePasswort"] == $_POST["ePasswort2"]) { // beide Passwoerter passen... + $_POST["ePasswort"] = PassCrypt($_POST["ePasswort"]); + $SQL = "UPDATE `User` SET `Passwort`='" . $_POST["ePasswort"] . "' " . + "WHERE `UID`='" . $_POST["eUID"] . "'"; + $Erg = db_query($SQL, "User new passwort"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + } else + echo "Das Passwort wurde nicht übereinstimmend eingegeben!"; + break; + } // end switch + + // ende - Action ist gesetzt +} else { + // kein Action gesetzt -> abbruch + echo "Unzulässiger Aufruf.<br />Bitte neu editieren..."; } -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> diff --git a/www-ssl/admin/userSaveSecure.php b/www-ssl/admin/userSaveSecure.php index e9ad6135..de4b47ff 100644 --- a/www-ssl/admin/userSaveSecure.php +++ b/www-ssl/admin/userSaveSecure.php @@ -1,178 +1,167 @@ <?php +require_once ('../bootstrap.php'); $title = "User-Liste"; $header = "Index"; -include ("../../../camp2011/includes/header.php"); -include ("../../../camp2011/includes/funktion_db_list.php"); -include ("../../../camp2011/includes/crypt.php"); -include ("../../../camp2011/includes/funktion_db.php"); - -if( !IsSet($_POST["enterUID"]) ) -{ - $Right = "N"; -} elseif( $_POST["enterUID"] > 0 ) { - $Right = $_SESSION['CVS'][ "admin/user.php"]; +include ("includes/header.php"); +include ("includes/funktion_db_list.php"); +include ("includes/crypt.php"); +include ("includes/funktion_db.php"); + +if (!IsSet ($_POST["enterUID"])) { + $Right = "N"; +} +elseif ($_POST["enterUID"] > 0) { + $Right = $_SESSION['CVS']["admin/user.php"]; } else { - $Right = $_SESSION['CVS'][ "admin/group.php"]; + $Right = $_SESSION['CVS']["admin/group.php"]; } -if ( ($Right=="Y") && IsSet($_GET["action"])) -{ - SetHeaderGo2Back(); - echo "Gesendeter Befehl: ". $_GET["action"]. "<br />"; - - switch ($_GET["action"]) - { - case "change": - if (IsSet($_POST["enterUID"])) - { - if ($_POST["Type"] == "Secure") - { - $SQL2 = "UPDATE `UserCVS` SET "; - $SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "'"; - $Erg_CVS = mysql_query($SQL_CVS, $con); - $CVS_Data = mysql_fetch_array($Erg_CVS); - $CVS_Data_i = 1; - foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) - { - if( ($CVS_Data_i+1)%2 && $CVS_Data_Name!="UID") { - if( $CVS_Data_Name == "GroupID") - { - if( $_POST["enterUID"] > 0 ) - $SQL2.= "`$CVS_Data_Name` = '". $_POST["GroupID"]."', "; - else - $SQL2.= "`$CVS_Data_Name` = NULL, "; - } else { - $SQL2.= "`$CVS_Data_Name` = '". $_POST[$CVS_Data_i]."', "; - } - } - $CVS_Data_i++; - } - $SQL2 = substr( $SQL2, 0, strlen($SQL2)-2 ); - $SQL2.= " WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; - echo "<br />Secure-"; - $Erg = db_query($SQL2, "change user CVS"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - } - else - echo "<h1>Fehler: Unbekanter Type (". $_POST["Type"]. ") übergeben\n</h1>\n"; - } - else - echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n"; - break; - - case "changeGroupName": - if (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]<0) ) - { - $SQL = "UPDATE `UserGroups` SET `Name`='". $_POST["GroupName"]. "' WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1 ;"; - $Erg = db_query($SQL, "Update Group Name"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - } - else - echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n"; - break; - - case "delete": - if (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]>0) ) - { - echo "delate User..."; - $SQL="DELETE FROM `User` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; - $Erg = db_query($SQL, "User delete"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - - echo "<br />\ndelate UserCVS..."; - $SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; - $Erg = db_query($SQL2, "User CVS delete"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - - echo "<br />\ndelate UserEntry..."; - $SQL3="UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL ". - "WHERE `UID`='". $_POST["enterUID"]. "';"; - $Erg = db_query($SQL3, "delate UserEntry"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - } elseif (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]<0) ) { - echo "delate Group..."; - $SQL="DELETE FROM `UserGroups` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; - $Erg = db_query($SQL, "Group delete"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - - echo "<br />\ndelate UserCVS..."; - $SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; - $Erg = db_query($SQL2, "User CVS delete"); - if ($Erg == 1) { - echo "Änderung wurde gesichert...\n"; - } else { - echo "Fehler beim speichern...\n(". mysql_error($con). ")"; - } - - } - break; - } // end switch - -// ende - Action ist gesetzt -} elseif ( IsSet($_GET["new"]) && ($_SESSION['CVS']["admin/group.php"]=="Y") ) { - echo "Gesendeter Befehl: ". $_GET["new"]. "<br />"; - - switch ($_GET["new"]) - { - case "newGroup": - echo "\tGenerate new Group ID...\n"; - $SQLid="SELECT MIN(`UID`) FROM `UserCVS`;"; - $Erg = mysql_query( $SQLid); - - if( mysql_num_rows($Erg) == 1) { - $NewId = mysql_result( $Erg, 0, 0)-1; - $SQLnew1 = "INSERT INTO `UserGroups` (`UID`, `Name`) VALUES ('$NewId', '". $_POST["GroupName"]. "' );"; - $SQLnew2 = "INSERT INTO `UserCVS` (`UID`, `GroupID`) VALUES ('$NewId', NULL );"; - echo "\t<br />Generate new UserGroup ...\n"; - $ErgNew1 = db_query($SQLnew1, "create UserGroups Entry"); - if ($ErgNew1 == 1) - { - echo "\t<br />Generate new User rights...\n"; - $ErgNew2 = db_query($SQLnew2, "UserCVS Entry"); - if ($ErgNew1 == 1) { - echo "\t<br />New group was created.\n"; - } else { - echo "Error on creation\n(". mysql_error($con). ")"; - } - } else { - echo "Error on creation\n(". mysql_error($con). ")"; - } - - } - - - break; - } +if (($Right == "Y") && IsSet ($_GET["action"])) { + SetHeaderGo2Back(); + echo "Gesendeter Befehl: " . $_GET["action"] . "<br />"; + + switch ($_GET["action"]) { + case "change" : + if (IsSet ($_POST["enterUID"])) { + if ($_POST["Type"] == "Secure") { + $SQL2 = "UPDATE `UserCVS` SET "; + $SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "'"; + $Erg_CVS = mysql_query($SQL_CVS, $con); + $CVS_Data = mysql_fetch_array($Erg_CVS); + $CVS_Data_i = 1; + foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) { + if (($CVS_Data_i +1) % 2 && $CVS_Data_Name != "UID") { + if ($CVS_Data_Name == "GroupID") { + if ($_POST["enterUID"] > 0) + $SQL2 .= "`$CVS_Data_Name` = '" . $_POST["GroupID"] . "', "; + else + $SQL2 .= "`$CVS_Data_Name` = NULL, "; + } else { + $SQL2 .= "`$CVS_Data_Name` = '" . $_POST[$CVS_Data_i] . "', "; + } + } + $CVS_Data_i++; + } + $SQL2 = substr($SQL2, 0, strlen($SQL2) - 2); + $SQL2 .= " WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;"; + echo "<br />Secure-"; + $Erg = db_query($SQL2, "change user CVS"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + } else + echo "<h1>Fehler: Unbekanter Type (" . $_POST["Type"] . ") �bergeben\n</h1>\n"; + } else + echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST �bergeben</h1>\n"; + break; + + case "changeGroupName" : + if (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] < 0)) { + $SQL = "UPDATE `UserGroups` SET `Name`='" . $_POST["GroupName"] . "' WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1 ;"; + $Erg = db_query($SQL, "Update Group Name"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + } else + echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST �bergeben</h1>\n"; + break; + + case "delete" : + if (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] > 0)) { + echo "delate User..."; + $SQL = "DELETE FROM `User` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;"; + $Erg = db_query($SQL, "User delete"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + + echo "<br />\ndelate UserCVS..."; + $SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;"; + $Erg = db_query($SQL2, "User CVS delete"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + + echo "<br />\ndelate UserEntry..."; + $SQL3 = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL " . + "WHERE `UID`='" . $_POST["enterUID"] . "';"; + $Erg = db_query($SQL3, "delate UserEntry"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + } + elseif (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] < 0)) { + echo "delate Group..."; + $SQL = "DELETE FROM `UserGroups` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;"; + $Erg = db_query($SQL, "Group delete"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + + echo "<br />\ndelate UserCVS..."; + $SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;"; + $Erg = db_query($SQL2, "User CVS delete"); + if ($Erg == 1) { + echo "Änderung wurde gesichert...\n"; + } else { + echo "Fehler beim speichern...\n(" . mysql_error($con) . ")"; + } + + } + break; + } // end switch + + // ende - Action ist gesetzt +} +elseif (IsSet ($_GET["new"]) && ($_SESSION['CVS']["admin/group.php"] == "Y")) { + echo "Gesendeter Befehl: " . $_GET["new"] . "<br />"; + + switch ($_GET["new"]) { + case "newGroup" : + echo "\tGenerate new Group ID...\n"; + $SQLid = "SELECT MIN(`UID`) FROM `UserCVS`;"; + $Erg = mysql_query($SQLid); + + if (mysql_num_rows($Erg) == 1) { + $NewId = mysql_result($Erg, 0, 0) - 1; + $SQLnew1 = "INSERT INTO `UserGroups` (`UID`, `Name`) VALUES ('$NewId', '" . $_POST["GroupName"] . "' );"; + $SQLnew2 = "INSERT INTO `UserCVS` (`UID`, `GroupID`) VALUES ('$NewId', NULL );"; + echo "\t<br />Generate new UserGroup ...\n"; + $ErgNew1 = db_query($SQLnew1, "create UserGroups Entry"); + if ($ErgNew1 == 1) { + echo "\t<br />Generate new User rights...\n"; + $ErgNew2 = db_query($SQLnew2, "UserCVS Entry"); + if ($ErgNew1 == 1) { + echo "\t<br />New group was created.\n"; + } else { + echo "Error on creation\n(" . mysql_error($con) . ")"; + } + } else { + echo "Error on creation\n(" . mysql_error($con) . ")"; + } + + } + + break; + } } else { - // kein Action gesetzt -> abbruch - echo "Unzulässiger Aufruf.<br />Bitte neu editieren..."; + // kein Action gesetzt -> abbruch + echo "Unzulässiger Aufruf.<br />Bitte neu editieren..."; } -include ("../../../camp2011/includes/footer.php"); +include ("includes/footer.php"); ?> |