kontakt
/
engelsystem
3
0
Fork 0
Code Issues 12 Pull Requests Projects Releases Wiki Activity

bootstrapping

Browse Source
main
Philip Häusler 14 years ago
parent a537f4bf73
commit e050c0dc7f
27 changed files with 2622 additions and 2876 deletions
Show Stats Download Patch File Download Diff File

1
config/.gitignore vendored
Unescape Escape View File

@ -2,3 +2,4 @@ config_db.php
config_jabber.php config_jabber.php
config_modem.php config_modem.php
config.php config.php
config_IAX.php

142
www-ssl/admin/EngelType.php
Unescape Escape View File

@ -1,58 +1,49 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "R&auml;ume"; $title = "R&auml;ume";
$header = "Verwaltung der R&auml;ume"; $header = "Verwaltung der R&auml;ume";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include("../../../camp2011/includes/funktion_db.php"); include ("includes/funktion_db.php");
function runSQL( $SQL) function runSQL($SQL) {
{
global $con; global $con;
// hier muesste das SQL ausgefuehrt werden... // hier muesste das SQL ausgefuehrt werden...
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
if ($Erg) if ($Erg) {
{
echo "&Auml;nderung wurde gesichert...<br />"; echo "&Auml;nderung wurde gesichert...<br />";
echo "[$SQL]<br />"; echo "[$SQL]<br />";
return 1; return 1;
} } else {
else
{
echo "Fehler beim speichern... bitte noch ein mal probieren :)"; echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "<br /><br />".mysql_error( $con ). "<br />"; echo "<br /><br />" . mysql_error($con) . "<br />";
echo "[$SQL]<br />"; echo "[$SQL]<br />";
return 0; return 0;
} }
} }
function runSQL_log( $SQL, $commed) function runSQL_log($SQL, $commed) {
{
global $con; global $con;
// hier muesste das SQL ausgefuehrt werden... // hier muesste das SQL ausgefuehrt werden...
$Erg = db_query($SQL, $commed); $Erg = db_query($SQL, $commed);
if ($Erg) if ($Erg) {
{
echo "&Auml;nderung wurde gesichert...<br />"; echo "&Auml;nderung wurde gesichert...<br />";
echo "[$SQL]<br />"; echo "[$SQL]<br />";
return 1; return 1;
} } else {
else
{
echo "Fehler beim speichern... bitte noch ein mal probieren :)"; echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "<br /><br />".mysql_error( $con ). "<br />"; echo "<br /><br />" . mysql_error($con) . "<br />";
echo "[$SQL]<br />"; echo "[$SQL]<br />";
return 0; return 0;
} }
} }
$Sql = "SELECT * FROM `EngelType` ORDER BY `NAME`"; $Sql = "SELECT * FROM `EngelType` ORDER BY `NAME`";
$Erg = mysql_query($Sql, $con); $Erg = mysql_query($Sql, $con);
if( !IsSet($_GET["action"]) ) if (!IsSet ($_GET["action"])) {
{ echo "Hallo " . $_SESSION['Nick'] .
echo "Hallo ".$_SESSION['Nick']. ",<br />\nhier hast du die M&ouml;glichkeit, neue Engeltypen f&uuml;r die Schichtpl&auml;ne einzutragen " .
",<br />\nhier hast du die M&ouml;glichkeit, neue Engeltypen f&uuml;r die Schichtpl&auml;ne einzutragen ".
"oder vorhandene abzu&auml;ndern:<br /><br />\n"; "oder vorhandene abzu&auml;ndern:<br /><br />\n";
echo "<a href=\"./EngelType.php?action=new\">- Neuen EngelType eintragen</a><br />\n"; echo "<a href=\"./EngelType.php?action=new\">- Neuen EngelType eintragen</a><br />\n";
@ -60,39 +51,33 @@ if( !IsSet($_GET["action"]) )
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<tr class=\"contenttopic\">\n"; echo "<tr class=\"contenttopic\">\n";
for( $i = 1; $i < mysql_num_fields($Erg); $i++ ) for ($i = 1; $i < mysql_num_fields($Erg); $i++) {
{ echo "\t<td>" . mysql_field_name($Erg, $i) . "</td>";
echo "\t<td>". mysql_field_name($Erg, $i). "</td>";
} }
echo "\t<td>&Auml;ndern</td>"; echo "\t<td>&Auml;ndern</td>";
echo "</tr>"; echo "</tr>";
for( $t = 0; $t < mysql_num_rows($Erg); $t++ ) for ($t = 0; $t < mysql_num_rows($Erg); $t++) {
{
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
for ($j = 1; $j < mysql_num_fields($Erg); $j++) for ($j = 1; $j < mysql_num_fields($Erg); $j++) {
{ echo "\t\t<td>" . mysql_result($Erg, $t, $j) . "</td>\n";
echo "\t\t<td>".mysql_result($Erg, $t, $j)."</td>\n";
} }
echo "\t\t<td><a href=\"./EngelType.php?action=change&TID=".mysql_result($Erg, $t, "TID")."\">###</a></td>\n"; echo "\t\t<td><a href=\"./EngelType.php?action=change&TID=" . mysql_result($Erg, $t, "TID") . "\">###</a></td>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
} // ende Auflistung Raeume } // ende Auflistung Raeume
echo "</table>"; echo "</table>";
} } else {
else
{
switch ($_GET["action"]) { switch ($_GET["action"]) {
case 'new': case 'new' :
echo "Neuen EngelType einrichten: <br />"; echo "Neuen EngelType einrichten: <br />";
echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; echo "<form action=\"./EngelType.php\" method=\"GET\">\n";
echo "<table>\n"; echo "<table>\n";
for( $Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++ ) for ($Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++) {
{ echo "<td>" . mysql_field_name($Erg, $Uj) . "</td>" .
echo "<td>".mysql_field_name($Erg, $Uj)."</td>". "<td><input type=\"text\" size=\"40\" name=\"" . mysql_field_name($Erg, $Uj) . "\"></td></tr>\n";
"<td><input type=\"text\" size=\"40\" name=\"".mysql_field_name($Erg, $Uj)."\"></td></tr>\n";
} }
echo "</table>\n"; echo "</table>\n";
echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n"; echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n";
@ -100,92 +85,83 @@ case 'new':
echo "</form>"; echo "</form>";
break; break;
case 'newsave': case 'newsave' :
$vars = $_GET; $vars = $_GET;
$count = count($vars) - 1; $count = count($vars) - 1;
$vars = array_splice($vars, 0, $count); $vars = array_splice($vars, 0, $count);
$Keys=""; $Keys = "";
$Values=""; $Values = "";
foreach($vars as $key => $value){ foreach ($vars as $key => $value) {
$Keys .= ", `$key`"; $Keys .= ", `$key`";
$Values .= ", '$value'"; $Values .= ", '$value'";
} }
if( runSQL_log( "INSERT INTO `EngelType` (". substr($Keys, 2). ") VALUES (". substr($Values, 2). ")", if (runSQL_log("INSERT INTO `EngelType` (" . substr($Keys, 2) . ") VALUES (" . substr($Values, 2) . ")", "save new EngelType")) {
"save new EngelType") )
{
SetHeaderGo2Back(); SetHeaderGo2Back();
$SQL2 = "SELECT * FROM `EngelType` WHERE `Name`='". $_GET["Name"]. "'"; $SQL2 = "SELECT * FROM `EngelType` WHERE `Name`='" . $_GET["Name"] . "'";
$ERG = mysql_query($SQL2, $con); $ERG = mysql_query($SQL2, $con);
if( mysql_num_rows($ERG) == 1) if (mysql_num_rows($ERG) == 1)
runSQL_log( "ALTER TABLE `Room` ADD `DEFAULT_EID_". mysql_result( $ERG, 0, 0). runSQL_log("ALTER TABLE `Room` ADD `DEFAULT_EID_" . mysql_result($ERG, 0, 0) .
"` INT DEFAULT '0' NOT NULL;", "` INT DEFAULT '0' NOT NULL;", "add new EngelType in Romm Table");
"add new EngelType in Romm Table");
} }
break; break;
case 'change': case 'change' :
if (! IsSet($_GET["TID"])) if (!IsSet ($_GET["TID"]))
echo "Fehlerhafter Aufruf!"; echo "Fehlerhafter Aufruf!";
else else {
{
echo "Raum ab&auml;ndern:\n"; echo "Raum ab&auml;ndern:\n";
echo "Hier kannst du eintragen, den EngelType &auml;ndern."; echo "Hier kannst du eintragen, den EngelType &auml;ndern.";
echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; echo "<form action=\"./EngelType.php\" method=\"GET\">\n";
echo "<table>\n"; echo "<table>\n";
$SQL2 = "SELECT * FROM `EngelType` WHERE `TID`='". $_GET["TID"]. "'"; $SQL2 = "SELECT * FROM `EngelType` WHERE `TID`='" . $_GET["TID"] . "'";
$ERG = mysql_query($SQL2, $con); $ERG = mysql_query($SQL2, $con);
for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++)
echo "<tr><td>". mysql_field_name($ERG, $Uj). "</td>". echo "<tr><td>" . mysql_field_name($ERG, $Uj) . "</td>" .
"<td><input type=\"text\" size=\"40\" name=\"e". mysql_field_name($ERG, $Uj). "\" ". "<td><input type=\"text\" size=\"40\" name=\"e" . mysql_field_name($ERG, $Uj) . "\" " .
"value=\"". mysql_result($ERG, 0, $Uj). "\"></td></tr>\n"; "value=\"" . mysql_result($ERG, 0, $Uj) . "\"></td></tr>\n";
echo "</table>\n"; echo "</table>\n";
echo "<input type=\"hidden\" name=\"eTID\" value=\"". $_GET["TID"]. "\">\n"; echo "<input type=\"hidden\" name=\"eTID\" value=\"" . $_GET["TID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n"; echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>"; echo "</form>";
echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; echo "<form action=\"./EngelType.php\" method=\"GET\">\n";
echo "<input type=\"hidden\" name=\"TID\" value=\"". $_GET["TID"]. "\">\n"; echo "<input type=\"hidden\" name=\"TID\" value=\"" . $_GET["TID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">"; echo "<input type=\"submit\" value=\"L&ouml;schen...\">";
echo "</form>"; echo "</form>";
} }
break; break;
case 'changesave': case 'changesave' :
$vars = $_GET; $vars = $_GET;
$count = count($vars) - 2; $count = count($vars) - 2;
$vars = array_splice($vars, 0, $count); $vars = array_splice($vars, 0, $count);
$keys=""; $keys = "";
$sql=""; $sql = "";
foreach($vars as $key => $value) foreach ($vars as $key => $value) {
{ $keys = substr($key, 1);
$keys = substr( $key, 1); $sql .= ", `" . $keys . "`='" . $value . "'";
$sql .= ", `". $keys. "`='". $value. "'";
} }
runSQL_log( "UPDATE `EngelType` SET ". substr($sql, 2). " WHERE `TID`='". $_GET["eTID"]. "'", runSQL_log("UPDATE `EngelType` SET " . substr($sql, 2) . " WHERE `TID`='" . $_GET["eTID"] . "'", "Save Change EngelType");
"Save Change EngelType");
SetHeaderGo2Back(); SetHeaderGo2Back();
break; break;
case 'delete': case 'delete' :
if (IsSet($_GET["TID"])) if (IsSet ($_GET["TID"])) {
{ if (runSQL_log("DELETE FROM `EngelType` WHERE `TID`='" . $_GET["TID"] . "'", "delete EngelType"))
if( runSQL_log( "DELETE FROM `EngelType` WHERE `TID`='". $_GET["TID"]. "'", "delete EngelType")) runSQL_log("ALTER TABLE `Room` DROP `DEFAULT_EID_" . $_GET["TID"] . "`;", "delete EngelType in Room Table");
runSQL_log( "ALTER TABLE `Room` DROP `DEFAULT_EID_". $_GET["TID"]. "`;", } else
"delete EngelType in Room Table");
}
else
echo "Fehlerhafter Aufruf"; echo "Fehlerhafter Aufruf";
SetHeaderGo2Back(); SetHeaderGo2Back();
break; break;
} }
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

16
www-ssl/admin/Recentchanges.php
Unescape Escape View File

@ -1,8 +1,9 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "ChangeLog"; $title = "ChangeLog";
$header = "Datenbank-Auszug"; $header = "Datenbank-Auszug";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
$SQL = "SELECT * FROM `ChangeLog` ORDER BY `Time` DESC LIMIT 0,10000"; $SQL = "SELECT * FROM `ChangeLog` ORDER BY `Time` DESC LIMIT 0,10000";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
@ -12,18 +13,17 @@ echo mysql_error($con);
echo "<table border=1>\n"; echo "<table border=1>\n";
echo "<tr>\n\t<th>Time</th>\n\t<th>User</th>\n\t<th>Commend</th>\n\t<th>SQL Commad</th>\n</tr>\n"; echo "<tr>\n\t<th>Time</th>\n\t<th>User</th>\n\t<th>Commend</th>\n\t<th>SQL Commad</th>\n</tr>\n";
for ($n = 0 ; $n < mysql_num_rows($Erg) ; $n++) for ($n = 0; $n < mysql_num_rows($Erg); $n++) {
{
echo "<tr>\n"; echo "<tr>\n";
echo "\t<td>". mysql_result( $Erg, $n, "Time"). "</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Time") . "</td>\n";
echo "\t<td>". UID2Nick(mysql_result( $Erg, $n, "UID")). displayavatar(mysql_result( $Erg, $n, "UID")). "</td>\n"; echo "\t<td>" . UID2Nick(mysql_result($Erg, $n, "UID")) . displayavatar(mysql_result($Erg, $n, "UID")) . "</td>\n";
echo "\t<td>". mysql_result( $Erg, $n, "Commend"). "</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Commend") . "</td>\n";
echo "\t<td>". mysql_result( $Erg, $n, "SQLCommad"). "</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "SQLCommad") . "</td>\n";
echo "</tr>\n"; echo "</tr>\n";
} }
echo "</table>\n"; echo "</table>\n";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

142
www-ssl/admin/UserPicture.php
Unescape Escape View File

@ -1,120 +1,104 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "UserPicture"; $title = "UserPicture";
$header = "Verwaltung der User Picture"; $header = "Verwaltung der User Picture";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php"); include ("includes/funktion_schichtplan_aray.php");
if( IsSet($_GET["action"]) ) if (IsSet ($_GET["action"])) {
{ UnSet ($SQL);
UnSet($SQL);
switch ($_GET["action"]) switch ($_GET["action"]) {
{ case 'FormUpload' :
case 'FormUpload':
echo "Hier kannst Du ein Foto hochladen f&ouml;r:"; echo "Hier kannst Du ein Foto hochladen f&ouml;r:";
echo "<form action=\"./UserPicture.php?action=sendPicture\" method=\"post\" enctype=\"multipart/form-data\">\n"; echo "<form action=\"./UserPicture.php?action=sendPicture\" method=\"post\" enctype=\"multipart/form-data\">\n";
echo "\t<select name=\"UID\">\n"; echo "\t<select name=\"UID\">\n";
$usql="SELECT * FROM `User` ORDER BY `Nick`"; $usql = "SELECT * FROM `User` ORDER BY `Nick`";
$uErg = mysql_query($usql, $con); $uErg = mysql_query($usql, $con);
for ($k=0; $k<mysql_num_rows($uErg); $k++) for ($k = 0; $k < mysql_num_rows($uErg); $k++)
echo "\t\t<option value=\"".mysql_result($uErg, $k, "UID")."\">". mysql_result($uErg, $k, "Nick"). "</option>\n"; echo "\t\t<option value=\"" . mysql_result($uErg, $k, "UID") . "\">" . mysql_result($uErg, $k, "Nick") . "</option>\n";
echo "\t</select>\n"; echo "\t</select>\n";
echo "\t<input type=\"hidden\" name=\"action\" value=\"sendPicture\">\n"; echo "\t<input type=\"hidden\" name=\"action\" value=\"sendPicture\">\n";
echo "\t<input name=\"file\" type=\"file\" size=\"50\" maxlength=\"". get_cfg_var("post_max_size"). "\">\n"; echo "\t<input name=\"file\" type=\"file\" size=\"50\" maxlength=\"" . get_cfg_var("post_max_size") . "\">\n";
echo "\t(max ". get_cfg_var("post_max_size"). "Byte)<br />\n"; echo "\t(max " . get_cfg_var("post_max_size") . "Byte)<br />\n";
echo "\t<input type=\"submit\" value=\"". Get_Text("upload"),"\">\n"; echo "\t<input type=\"submit\" value=\"" . Get_Text("upload"), "\">\n";
echo "</form>\n"; echo "</form>\n";
break; break;
case 'sendPicture': case 'sendPicture' :
if( ($_FILES["file"]["size"] > 0) && (isset( $_POST["UID"])) ) if (($_FILES["file"]["size"] > 0) && (isset ($_POST["UID"]))) {
{ if (($_FILES["file"]["type"] == "image/jpeg") || ($_FILES["file"]["type"] == "image/png") || ($_FILES["file"]["type"] == "image/gif")) {
if( ($_FILES["file"]["type"] == "image/jpeg") ||
($_FILES["file"]["type"] == "image/png") ||
($_FILES["file"]["type"] == "image/gif") )
{
$data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"]))); $data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"])));
if( GetPicturShow( $_POST['UID']) == "") if (GetPicturShow($_POST['UID']) == "")
$SQL = "INSERT INTO `UserPicture` ". $SQL = "INSERT INTO `UserPicture` " .
"( `UID`,`Bild`, `ContentType`, `show`) ". "( `UID`,`Bild`, `ContentType`, `show`) " .
"VALUES ('". $_POST['UID']. "', '$data', '". $_FILES["file"]["type"]. "', 'N')"; "VALUES ('" . $_POST['UID'] . "', '$data', '" . $_FILES["file"]["type"] . "', 'N')";
else
$SQL = "UPDATE `UserPicture` SET ".
"`Bild`='$data', ".
"`ContentType`='". $_FILES["file"]["type"]. "' ".
"WHERE `UID`='". $_POST['UID']. "'";
echo "Upload Pictur:'" . $_FILES["file"]["name"] . "', ".
"MIME-Type: " . $_FILES["file"]["type"]. ", ".
$_FILES["file"]["size"]. " Byte ".
"for ". UID2Nick( $_POST["UID"]);
}
else else
$SQL = "UPDATE `UserPicture` SET " .
"`Bild`='$data', " .
"`ContentType`='" . $_FILES["file"]["type"] . "' " .
"WHERE `UID`='" . $_POST['UID'] . "'";
echo "Upload Pictur:'" . $_FILES["file"]["name"] . "', " .
"MIME-Type: " . $_FILES["file"]["type"] . ", " .
$_FILES["file"]["size"] . " Byte " .
"for " . UID2Nick($_POST["UID"]);
} else
Print_Text("pub_einstellungen_send_KO"); Print_Text("pub_einstellungen_send_KO");
} } else
else
Print_Text("pub_einstellungen_send_KO"); Print_Text("pub_einstellungen_send_KO");
break; break;
case 'SetN': case 'SetN' :
if (IsSet($_GET["UID"])) if (IsSet ($_GET["UID"])) {
{ echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gesperrt:<br />";
echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde gesperrt:<br />"; $SQL = "UPDATE `UserPicture` SET `show`='N' WHERE `UID`='" . $_GET["UID"] . "'";
$SQL = "UPDATE `UserPicture` SET `show`='N' WHERE `UID`='". $_GET["UID"]. "'"; } else
}
else
echo "Fehlerhafter Aufruf"; echo "Fehlerhafter Aufruf";
break; break;
case 'SetY': case 'SetY' :
if (IsSet($_GET["UID"])) if (IsSet ($_GET["UID"])) {
{ echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde Freigegeben:<br />";
echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde Freigegeben:<br />"; $SQL = "UPDATE `UserPicture` SET `show`='Y' WHERE `UID`='" . $_GET["UID"] . "'";
$SQL = "UPDATE `UserPicture` SET `show`='Y' WHERE `UID`='". $_GET["UID"]. "'"; } else
}
else
echo "Fehlerhafter Aufruf"; echo "Fehlerhafter Aufruf";
break; break;
case 'del': case 'del' :
echo "Wollen Sie das Bild von '". UID2Nick( $_GET["UID"]). "' wirklich l&ouml;schen? ". echo "Wollen Sie das Bild von '" . UID2Nick($_GET["UID"]) . "' wirklich l&ouml;schen? " .
"<a href=\"./UserPicture.php?action=delYes&UID=". $_GET["UID"]. "\">Yes</a>"; "<a href=\"./UserPicture.php?action=delYes&UID=" . $_GET["UID"] . "\">Yes</a>";
break; break;
case 'delYes': case 'delYes' :
if (IsSet($_GET["UID"])) if (IsSet ($_GET["UID"])) {
{ echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gel&ouml;scht:<br />";
echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde gel&ouml;scht:<br />"; $SQL = "DELETE FROM `UserPicture` WHERE `UID`='" . $_GET["UID"] . "' LIMIT 1";
$SQL = "DELETE FROM `UserPicture` WHERE `UID`='". $_GET["UID"]. "' LIMIT 1"; } else
}
else
echo "Fehlerhafter Aufruf"; echo "Fehlerhafter Aufruf";
break; break;
default: default :
echo "Fehlerhafter Aufruf"; echo "Fehlerhafter Aufruf";
} //switch } //switch
// Update ??? // Update ???
if (IsSet($SQL)) if (IsSet ($SQL)) {
{
// hier muesste das SQL ausgefuehrt werden... // hier muesste das SQL ausgefuehrt werden...
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
if ($Erg == 1) if ($Erg == 1)
echo "&Auml;nderung wurde gesichert...<br />"; echo "&Auml;nderung wurde gesichert...<br />";
else else {
{
echo "Fehler beim speichern... bitte noch ein mal probieren :)"; echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "<br /><br />".mysql_error( $con ). "<br />($SQL)<br />"; echo "<br /><br />" . mysql_error($con) . "<br />($SQL)<br />";
} }
} // Ende Update } // Ende Update
echo "<br />\n<hr width=\"100%\">\n<br />\n\n"; echo "<br />\n<hr width=\"100%\">\n<br />\n\n";
} //IF IsSet($action) } //IF IsSet($action)
//ausgabe der Liste //ausgabe der Liste
$Sql = "SELECT * FROM `UserPicture` WHERE `UID`>0;"; $Sql = "SELECT * FROM `UserPicture` WHERE `UID`>0;";
$Erg = mysql_query($Sql, $con); $Erg = mysql_query($Sql, $con);
echo "Hallo ". $_SESSION['Nick']. ",<br />\nhier hast du die M&ouml;glichkeit, die Bilder der Engel freizugeben:<br /><br />\n"; echo "Hallo " . $_SESSION['Nick'] . ",<br />\nhier hast du die M&ouml;glichkeit, die Bilder der Engel freizugeben:<br /><br />\n";
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<tr class=\"contenttopic\">\n"; echo "<tr class=\"contenttopic\">\n";
@ -124,20 +108,18 @@ echo "\t<td>Status</td>\n";
echo "\t<td>L&ouml;schen</td>\n"; echo "\t<td>L&ouml;schen</td>\n";
echo "</tr>"; echo "</tr>";
for( $t = 0; $t < mysql_num_rows($Erg); $t++ ) for ($t = 0; $t < mysql_num_rows($Erg); $t++) {
{
$UIDs = mysql_result($Erg, $t, "UID"); $UIDs = mysql_result($Erg, $t, "UID");
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
echo "\t\t<td>". UID2Nick(mysql_result($Erg, $t, "UID")). "</td>\n"; echo "\t\t<td>" . UID2Nick(mysql_result($Erg, $t, "UID")) . "</td>\n";
echo "\t\t<td>". displayPictur( $UIDs, 0). "</td>\n"; echo "\t\t<td>" . displayPictur($UIDs, 0) . "</td>\n";
if( GetPicturShow( $UIDs) == "Y") if (GetPicturShow($UIDs) == "Y")
echo "\t\t<td><a href=\"./UserPicture.php?action=SetN&UID=$UIDs\">sperren</a></td>\n"; echo "\t\t<td><a href=\"./UserPicture.php?action=SetN&UID=$UIDs\">sperren</a></td>\n";
elseif( GetPicturShow( $UIDs) == "N") elseif (GetPicturShow($UIDs) == "N") echo "\t\t<td><a href=\"./UserPicture.php?action=SetY&UID=$UIDs\">freigeben</a></td>\n";
echo "\t\t<td><a href=\"./UserPicture.php?action=SetY&UID=$UIDs\">freigeben</a></td>\n";
else else
echo "\t\t<td>ERROR: show='". GetPicturShow( $UIDs). "'</td>\n"; echo "\t\t<td>ERROR: show='" . GetPicturShow($UIDs) . "'</td>\n";
echo "\t\t<td><a href=\"./UserPicture.php?action=del&UID=$UIDs\">del</a></td>\n"; echo "\t\t<td><a href=\"./UserPicture.php?action=del&UID=$UIDs\">del</a></td>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
} // ende Auflistung Raeume } // ende Auflistung Raeume
@ -145,5 +127,5 @@ echo "</table>";
echo "<br /><a href=\"./UserPicture.php?action=FormUpload\">picture upload</a>\n"; echo "<br /><a href=\"./UserPicture.php?action=FormUpload\">picture upload</a>\n";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

77
www-ssl/admin/aktiv.php
Unescape Escape View File

@ -1,31 +1,31 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "akive Engel"; $title = "akive Engel";
$header = "Liste der aktiven Engel"; $header = "Liste der aktiven Engel";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
echo "<form action=\"./aktiv.php\" method=\"post\">"; echo "<form action=\"./aktiv.php\" method=\"post\">";
echo Get_Text("pub_aktive_Text1")."<br />\n"; echo Get_Text("pub_aktive_Text1") . "<br />\n";
echo Get_Text("pub_aktive_Text2")."<br /><br />\n"; echo Get_Text("pub_aktive_Text2") . "<br /><br />\n";
// auswahlbox // auswahlbox
echo Get_Text("pub_aktive_Text31")."\n"; echo Get_Text("pub_aktive_Text31") . "\n";
echo "<select name=\"Anzahl\">\n"; echo "<select name=\"Anzahl\">\n";
for( $i=0; $i<50; $i++) for ($i = 0; $i < 50; $i++)
echo "\t<option value=\"$i\">$i</option>\n"; echo "\t<option value=\"$i\">$i</option>\n";
echo "</select>"; echo "</select>";
echo Get_Text("pub_aktive_Text32")."<br /><br />\n"; echo Get_Text("pub_aktive_Text32") . "<br /><br />\n";
echo "<input type=\"submit\" name=\"SendType\" value=\"Show..\">\n"; echo "<input type=\"submit\" name=\"SendType\" value=\"Show..\">\n";
echo "<input type=\"submit\" name=\"SendType\" value=\"Write..\">\n"; echo "<input type=\"submit\" name=\"SendType\" value=\"Write..\">\n";
echo "</form>\n"; echo "</form>\n";
echo "<form action=\"./aktiv.php\" method=\"post\">\n"; echo "<form action=\"./aktiv.php\" method=\"post\">\n";
echo "\t<br /><input type=\"submit\" name=\"ResetActive\" value=\"reset Active setting\">\n"; echo "\t<br /><input type=\"submit\" name=\"ResetActive\" value=\"reset Active setting\">\n";
echo "</form>\n"; echo "</form>\n";
if( Isset($_POST["ResetActive"]) ) if (Isset ($_POST["ResetActive"])) {
{
$SQLreset = "UPDATE `User` SET `Aktiv`='0'"; $SQLreset = "UPDATE `User` SET `Aktiv`='0'";
$ErgReset = db_query($SQLreset, "Reset Active"); $ErgReset = db_query($SQLreset, "Reset Active");
if ($ErgReset != 1) if ($ErgReset != 1)
@ -34,22 +34,22 @@ if( Isset($_POST["ResetActive"]) )
echo "Active wurde erfolgreich zurueckgesetzt\n"; echo "Active wurde erfolgreich zurueckgesetzt\n";
} }
if( IsSet($_POST["Anzahl"]) ) if (IsSet ($_POST["Anzahl"]))
echo "<br />\n\n".Get_Text("pub_aktive_Text5_1"). $_POST["Anzahl"]. Get_Text("pub_aktive_Text5_2"). ":"; echo "<br />\n\n" . Get_Text("pub_aktive_Text5_1") . $_POST["Anzahl"] . Get_Text("pub_aktive_Text5_2") . ":";
echo "<br /><br />\n\n"; echo "<br /><br />\n\n";
//ausgabe tabelle //ausgabe tabelle
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<tr class=\"contenttopic\">\n"; echo "<tr class=\"contenttopic\">\n";
echo "\t<td>". Get_Text("pub_aktive_Nick"). "</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Nick") . "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Anzahl"). "</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Anzahl") . "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Time"). "</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Time") . "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Time"). " Weight</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Time") . " Weight</td>\n";
echo "\t<td>Freeloader ". Get_Text("pub_aktive_Anzahl"). "</td>\n"; echo "\t<td>Freeloader " . Get_Text("pub_aktive_Anzahl") . "</td>\n";
echo "\t<td>Freeloader ". Get_Text("pub_aktive_Time"). "</td>\n"; echo "\t<td>Freeloader " . Get_Text("pub_aktive_Time") . "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Time"). " result</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Time") . " result</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Active"). "</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Active") . "</td>\n";
echo "</tr>\n"; echo "</tr>\n";
$SQL = " $SQL = "
@ -65,33 +65,28 @@ $Erg = mysql_query($SQL, $con);
echo mysql_error($con); echo mysql_error($con);
$rowcount = mysql_num_rows($Erg); $rowcount = mysql_num_rows($Erg);
$aktivecount=0; $aktivecount = 0;
for ($i=0; $i<$rowcount; $i++) for ($i = 0; $i < $rowcount; $i++) {
{
echo "\n\n\t<tr class=\"content\">\n"; echo "\n\n\t<tr class=\"content\">\n";
echo "\t\t<td>". UID2Nick(mysql_result($Erg, $i, "UID")). "</td>\n"; echo "\t\t<td>" . UID2Nick(mysql_result($Erg, $i, "UID")) . "</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "nr"). "x</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "nr") . "x</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "len"). "h</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "len") . "h</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "lenWeight"). "h</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "lenWeight") . "h</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "nrFree"). "x</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "nrFree") . "x</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "lenFree"). "h</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "lenFree") . "h</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "lenReal"). "h</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "lenReal") . "h</td>\n";
echo "\t\t<td>"; echo "\t\t<td>";
if (IsSet($_POST["Anzahl"])) if (IsSet ($_POST["Anzahl"])) {
{ if ($_POST["Anzahl"] < mysql_result($Erg, $i, "lenReal")) {
if( $_POST["Anzahl"] < mysql_result($Erg, $i, "lenReal") )
{
$aktivecount++; $aktivecount++;
if( $_POST["SendType"]=="Show..") if ($_POST["SendType"] == "Show..")
echo "show set"; echo "show set";
else else {
{ $SQL2 = "UPDATE `User` SET `Aktiv`='1' WHERE `UID`='" . mysql_result($Erg, $i, "UID") . "' LIMIT 1";
$SQL2="UPDATE `User` SET `Aktiv`='1' WHERE `UID`='". mysql_result($Erg, $i, "UID"). "' LIMIT 1";
$Erg2 = db_query($SQL2, "update Active State"); $Erg2 = db_query($SQL2, "update Active State");
if ($Erg2 != 1) if ($Erg2 != 1)
echo "Fehler beim speichern bei Engel ".UID2Nick(mysql_result($Erg, $i, "UID")); echo "Fehler beim speichern bei Engel " . UID2Nick(mysql_result($Erg, $i, "UID"));
else else
echo "write set"; echo "write set";
} }
@ -105,6 +100,6 @@ echo "</table>";
echo "<br />Anzahl eintraege: $aktivecount / $rowcount (Aktive/Mitschichten)<br /><br />"; echo "<br />Anzahl eintraege: $aktivecount / $rowcount (Aktive/Mitschichten)<br /><br />";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

287
www-ssl/admin/dbUpdateFromXLS.php
Unescape Escape View File

@ -1,8 +1,10 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "DB Update from XML"; $title = "DB Update from XML";
$header = "DB Update from XML"; $header = "DB Update from XML";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_xml.php"); include ("includes/funktion_xml.php");
/////////// ///////////
// DEBUG // // DEBUG //
@ -14,26 +16,23 @@ $EnableSchudleFunctions = 1;
$EnableSchudle = 1; $EnableSchudle = 1;
$EnableSchudleDB = 1; $EnableSchudleDB = 1;
/*############################################################################################## /*##############################################################################################
erstellt Arrays der Reume erstellt Arrays der Reume
##############################################################################################*/ ##############################################################################################*/
function CreateRoomArrays() function CreateRoomArrays() {
{
global $Room, $RoomID, $RoomName, $con; global $Room, $RoomID, $RoomName, $con;
$sql = "SELECT `RID`, `Name` FROM `Room` ". $sql = "SELECT `RID`, `Name` FROM `Room` " .
"WHERE `Show`='Y'". "WHERE `Show`='Y'" .
"ORDER BY `Number`, `Name`;"; "ORDER BY `Number`, `Name`;";
$Erg = mysql_query($sql, $con); $Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg); $rowcount = mysql_num_rows($Erg);
for ($i=0; $i<$rowcount; $i++) for ($i = 0; $i < $rowcount; $i++) {
{
$Room[$i]["RID"] = mysql_result($Erg, $i, "RID"); $Room[$i]["RID"] = mysql_result($Erg, $i, "RID");
$Room[$i]["Name"] = mysql_result($Erg, $i, "Name"); $Room[$i]["Name"] = mysql_result($Erg, $i, "Name");
$RoomID[ mysql_result($Erg, $i, "RID") ] = mysql_result($Erg, $i, "Name"); $RoomID[mysql_result($Erg, $i, "RID")] = mysql_result($Erg, $i, "Name");
$RoomName[ mysql_result($Erg, $i, "Name") ] = mysql_result($Erg, $i, "RID"); $RoomName[mysql_result($Erg, $i, "Name")] = mysql_result($Erg, $i, "RID");
} }
} }
CreateRoomArrays(); CreateRoomArrays();
@ -42,252 +41,212 @@ CreateRoomArrays();
F I L E F I L E
##############################################################################################*/ ##############################################################################################*/
echo "\n\n<br />\n<h1>XML File:</h1>\n"; echo "\n\n<br />\n<h1>XML File:</h1>\n";
if( isset($_POST["PentabarfUser"]) && isset($_POST["password"]) && isset($_POST["PentabarfURL"])) if (isset ($_POST["PentabarfUser"]) && isset ($_POST["password"]) && isset ($_POST["PentabarfURL"])) {
{
echo "Update XCAL-File from Pentabarf.."; echo "Update XCAL-File from Pentabarf..";
if($PentabarfGetWith=="fsockopen") if ($PentabarfGetWith == "fsockopen") {
{
//backup error messeges and delate //backup error messeges and delate
$Backuperror_messages = $error_messages; $Backuperror_messages = $error_messages;
$fp = fsockopen( "ssl://$PentabarfXMLhost", 443, $errno, $errstr, 30); $fp = fsockopen("ssl://$PentabarfXMLhost", 443, $errno, $errstr, 30);
// $error_messages = $Backuperror_messages; // $error_messages = $Backuperror_messages;
if( !$fp) if (!$fp) {
{ echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!" .
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!".
"[$errstr ($errno)]</h2>"; "[$errstr ($errno)]</h2>";
} } else {
else if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) {
{ $head = 'GET /' . $PentabarfXMLpath . $_POST["PentabarfURL"] . ' HTTP/1.1' . "\r\n" .
if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE) 'Host: ' . $PentabarfXMLhost . "\r\n" .
{ 'User-Agent: Engelsystem' . "\r\n" .
$head = 'GET /'. $PentabarfXMLpath. $_POST["PentabarfURL"]. ' HTTP/1.1'."\r\n". 'Authorization: Basic ' .
'Host: '. $PentabarfXMLhost. "\r\n". base64_encode($_POST["PentabarfUser"] . ':' . $_POST["password"]) . "\r\n" .
'User-Agent: Engelsystem'. "\r\n".
'Authorization: Basic '.
base64_encode($_POST["PentabarfUser"]. ':'. $_POST["password"])."\r\n".
"\r\n"; "\r\n";
fputs( $fp, $head); fputs($fp, $head);
$Zeilen = -1; $Zeilen = -1;
while (!feof($fp)) while (!feof($fp)) {
{ $Temp = fgets($fp, 1024);
$Temp= fgets($fp,1024);
// ende des headers // ende des headers
if( $Temp== "f20\r\n" ) if ($Temp == "f20\r\n") {
{
$Zeilen = 0; $Zeilen = 0;
$Temp=""; $Temp = "";
} }
//file ende? //file ende?
if( $Temp=="0\r\n") if ($Temp == "0\r\n")
break; break;
if( ($Zeilen>-1) && ($Temp!="ffb\r\n") ) if (($Zeilen > -1) && ($Temp != "ffb\r\n")) {
{
//steuerzeichen ausfiltern //steuerzeichen ausfiltern
if( strpos( "#$Temp", "\r\n") > 0) if (strpos("#$Temp", "\r\n") > 0)
$Temp = substr($Temp, 0, strlen($Temp)-2); $Temp = substr($Temp, 0, strlen($Temp) - 2);
if( strpos( "#$Temp", "1005") > 0) if (strpos("#$Temp", "1005") > 0)
$Temp = ""; $Temp = "";
if( strpos( "#$Temp", "783") > 0) if (strpos("#$Temp", "783") > 0)
$Temp = ""; $Temp = "";
//schreiben in file //schreiben in file
fputs( $fileOut, $Temp); fputs($fileOut, $Temp);
$Zeilen++; $Zeilen++;
} }
} }
fclose( $fileOut); fclose($fileOut);
echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />";
} } else
else
echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>";
fclose($fp); fclose($fp);
} }
} }
elseif($PentabarfGetWith=="fopen") elseif ($PentabarfGetWith == "fopen") {
{
//user uns password in url einbauen //user uns password in url einbauen
$FileNameIn = "https://". $_POST["PentabarfUser"]. ':'. $_POST["password"]. "@". $FileNameIn = "https://" . $_POST["PentabarfUser"] . ':' . $_POST["password"] . "@" .
$PentabarfXMLhost. "/". $PentabarfXMLpath. $_POST["PentabarfURL"]; $PentabarfXMLhost . "/" . $PentabarfXMLpath . $_POST["PentabarfURL"];
if( ($fileIn = fopen( $FileNameIn, "r")) != FALSE) if (($fileIn = fopen($FileNameIn, "r")) != FALSE) {
{ if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) {
if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE)
{
$Zeilen = 0; $Zeilen = 0;
while (!feof($fileIn)) while (!feof($fileIn)) {
{
$Zeilen++; $Zeilen++;
fputs( $fileOut, fgets( $fileIn)); fputs($fileOut, fgets($fileIn));
} }
fclose( $fileOut); fclose($fileOut);
echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />";
} } else
else
echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>";
fclose( $fileIn); fclose($fileIn);
} } else
else echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!</h2>";
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!</h2>"; }
} elseif ($PentabarfGetWith == "wget") {
elseif( $PentabarfGetWith=="wget") $Command = "wget --http-user=" . $_POST["PentabarfUser"] . " --http-passwd=" . $_POST["password"] . " " .
{ "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] .
$Command = "wget --http-user=". $_POST["PentabarfUser"]. " --http-passwd=".$_POST["password"]. " ". " --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML" .
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"].
" --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML".
" --no-check-certificate"; " --no-check-certificate";
echo system( $Command, $Status); echo system($Command, $Status);
if( $Status==0) if ($Status == 0)
echo "OK.<br />"; echo "OK.<br />";
else else
echo "fail ($Status)($Command).<br />"; echo "fail ($Status)($Command).<br />";
} }
elseif( $PentabarfGetWith=="lynx") elseif ($PentabarfGetWith == "lynx") {
{ $Command = "lynx -auth=" . $_POST["PentabarfUser"] . ":" . $_POST["password"] . " -dump " .
$Command = "lynx -auth=". $_POST["PentabarfUser"]. ":".$_POST["password"]. " -dump ". "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . " > $Tempdir/engelXML";
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. " > $Tempdir/engelXML"; echo system($Command, $Status);
echo system( $Command, $Status); if ($Status == 0)
if( $Status==0)
echo "OK.<br />"; echo "OK.<br />";
else else
echo "fail ($Status)($Command).<br />"; echo "fail ($Status)($Command).<br />";
} }
elseif($PentabarfGetWith=="fopen") elseif ($PentabarfGetWith == "fopen") {
{
//user uns password in url einbauen //user uns password in url einbauen
$FileNameIn = "https://". $_POST["PentabarfUser"]. ':'. $_POST["password"]. "@". $FileNameIn = "https://" . $_POST["PentabarfUser"] . ':' . $_POST["password"] . "@" .
$PentabarfXMLhost. "/". $PentabarfXMLpath. $_POST["PentabarfURL"]; $PentabarfXMLhost . "/" . $PentabarfXMLpath . $_POST["PentabarfURL"];
if (($fileIn = fopen($FileNameIn, "r")) != FALSE) {
if( ($fileIn = fopen( $FileNameIn, "r")) != FALSE) if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) {
{
if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE)
{
$Zeilen = 0; $Zeilen = 0;
while (!feof($fileIn)) while (!feof($fileIn)) {
{
$Zeilen++; $Zeilen++;
fputs( $fileOut, fgets( $fileIn)); fputs($fileOut, fgets($fileIn));
} }
fclose( $fileOut); fclose($fileOut);
echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />";
} } else
else
echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>";
fclose( $fileIn); fclose($fileIn);
} } else
else echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!</h2>";
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!</h2>"; }
} elseif ($PentabarfGetWith == "wget") {
elseif( $PentabarfGetWith=="wget") $Command = "wget --http-user=" . $_POST["PentabarfUser"] . " --http-passwd=" . $_POST["password"] . " " .
{ "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] .
$Command = "wget --http-user=". $_POST["PentabarfUser"]. " --http-passwd=".$_POST["password"]. " ". " --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML" .
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"].
" --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML".
" --no-check-certificate"; " --no-check-certificate";
echo system( $Command, $Status); echo system($Command, $Status);
if( $Status==0) if ($Status == 0)
echo "OK.<br />"; echo "OK.<br />";
else else
echo "fail ($Status)($Command).<br />"; echo "fail ($Status)($Command).<br />";
} }
elseif( $PentabarfGetWith=="lynx") elseif ($PentabarfGetWith == "lynx") {
{ $Command = "lynx -auth=" . $_POST["PentabarfUser"] . ":" . $_POST["password"] . " -dump " .
$Command = "lynx -auth=". $_POST["PentabarfUser"]. ":".$_POST["password"]. " -dump ". "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . " > $Tempdir/engelXML";
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. " > $Tempdir/engelXML"; echo system($Command, $Status);
echo system( $Command, $Status); if ($Status == 0)
if( $Status==0)
echo "OK.<br />"; echo "OK.<br />";
else else
echo "fail ($Status)($Command).<br />"; echo "fail ($Status)($Command).<br />";
} } else
else
echo "<h1>The PentabarfGetWith='$PentabarfGetWith' not supported</h1>"; echo "<h1>The PentabarfGetWith='$PentabarfGetWith' not supported</h1>";
} } else {
else
{
echo "<form action=\"dbUpdateFromXLS.php\" method=\"post\">\n"; echo "<form action=\"dbUpdateFromXLS.php\" method=\"post\">\n";
echo "<table border=\"0\">\n"; echo "<table border=\"0\">\n";
echo "\t<tr><td>XCAL-File: https://$PentabarfXMLhost/$PentabarfXMLpath</td>". echo "\t<tr><td>XCAL-File: https://$PentabarfXMLhost/$PentabarfXMLpath</td>" .
"<td><input name=\"PentabarfURL\" type=\"text\" size=\"4\" maxlength=\"5\" ". "<td><input name=\"PentabarfURL\" type=\"text\" size=\"4\" maxlength=\"5\" " .
"value=\"$PentabarfXMLEventID\"></td></tr>\n"; "value=\"$PentabarfXMLEventID\"></td></tr>\n";
echo "\t<tr><td>Username:</td>". echo "\t<tr><td>Username:</td>" .
"<td><input name=\"PentabarfUser\" type=\"text\" size=\"30\" maxlength=\"30\"></td></tr>\n"; "<td><input name=\"PentabarfUser\" type=\"text\" size=\"30\" maxlength=\"30\"></td></tr>\n";
echo "\t<tr><td>Password:</td>". echo "\t<tr><td>Password:</td>" .
"<td><input name=\"password\" type=\"password\" size=\"30\" maxlength=\"30\"></td></tr>\n"; "<td><input name=\"password\" type=\"password\" size=\"30\" maxlength=\"30\"></td></tr>\n";
echo "\t<tr><td></td><td><input type=\"submit\" name=\"FileUpload\" value=\"upload\"></td></tr>\n"; echo "\t<tr><td></td><td><input type=\"submit\" name=\"FileUpload\" value=\"upload\"></td></tr>\n";
echo "</table>\n"; echo "</table>\n";
echo "</form>\n"; echo "</form>\n";
} }
//readXMLfile("xml.php.xml"); //readXMLfile("xml.php.xml");
if( readXMLfile("$Tempdir/engelXML") == 0) if (readXMLfile("$Tempdir/engelXML") == 0) {
{ $XMLmain = getXMLsubPease($XMLmain, "VCALENDAR");
$XMLmain = getXMLsubPease( $XMLmain, "VCALENDAR");
if ($ShowDataStrukture) {
if( $ShowDataStrukture)
{
echo "<pre><br />"; echo "<pre><br />";
echo $XMLmain->name; echo $XMLmain->name;
echo "<br />"; echo "<br />";
print_r(array_values ($XMLmain->sub)); print_r(array_values($XMLmain->sub));
echo "</pre>"; echo "</pre>";
} }
/* /*
echo "<br />"; echo "<br />";
$Feld=7; $Feld=7;
echo "$Feld#". $XMLmain->sub[$Feld]->name. "<br />"; echo "$Feld#". $XMLmain->sub[$Feld]->name. "<br />";
echo "$Feld#". $XMLmain->sub[$Feld]->sub; echo "$Feld#". $XMLmain->sub[$Feld]->sub;
//print_r(array_values ($XMLmain->sub[$Feld]->sub)); //print_r(array_values ($XMLmain->sub[$Feld]->sub));
while(list($key, $value) = each($XMLmain->sub[$Feld]->sub)) while(list($key, $value) = each($XMLmain->sub[$Feld]->sub))
echo "?ID".$value->sub[1]->data. "=". $value->sub[2]->data. "\n"; echo "?ID".$value->sub[1]->data. "=". $value->sub[2]->data. "\n";
echo "</pre>"; echo "</pre>";
*/ */
/*############################################################################################## /*##############################################################################################
V e r s i o n V e r s i o n
##############################################################################################*/ ##############################################################################################*/
echo "<hr>\n"; echo "<hr>\n";
$XMLrelease = getXMLsubPease( $XMLmain, "X-WR-CALDESC"); $XMLrelease = getXMLsubPease($XMLmain, "X-WR-CALDESC");
echo "release: ". $XMLrelease->data. "<br />\n"; echo "release: " . $XMLrelease->data . "<br />\n";
//$XMLreleaseDate = getXMLsubPease( $XMLmain, "RELEASE-DATE"); //$XMLreleaseDate = getXMLsubPease( $XMLmain, "RELEASE-DATE");
//echo "release date: ". $XMLreleaseDate->data. "<br />\n"; //echo "release date: ". $XMLreleaseDate->data. "<br />\n";
echo "<hr>\n"; echo "<hr>\n";
/*############################################################################################## /*##############################################################################################
V e r s i o n V e r s i o n
##############################################################################################*/ ##############################################################################################*/
if( $EnableRoomFunctions) if ($EnableRoomFunctions)
include("../../../camp2011/includes/funktion_xml_room.php"); include ("includes/funktion_xml_room.php");
if( $EnableSchudleFunctions)
include("../../../camp2011/includes/funktion_xml_schudle.php");
if ($EnableSchudleFunctions)
include ("includes/funktion_xml_schudle.php");
/*############################################################################################## /*##############################################################################################
U P D A T E A L L U P D A T E A L L
##############################################################################################*/ ##############################################################################################*/
echo "\n\n<br />\n<h1>Update ALL:</h1>\n"; echo "\n\n<br />\n<h1>Update ALL:</h1>\n";
echo "<form action=\"dbUpdateFromXLS.php\">\n"; echo "<form action=\"dbUpdateFromXLS.php\">\n";
echo "\t<input type=\"submit\" name=\"UpdateALL\" value=\"now\">\n"; echo "\t<input type=\"submit\" name=\"UpdateALL\" value=\"now\">\n";
echo "</form>\n"; echo "</form>\n";
} //if XMLopenOOK } //if XMLopenOOK
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

37
www-ssl/admin/debug.php
Unescape Escape View File

@ -1,9 +1,10 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Debug-Liste"; $title = "Debug-Liste";
$header = "Datenbank-Auszug"; $header = "Datenbank-Auszug";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
echo "<h1>Web Counter</h1>"; echo "<h1>Web Counter</h1>";
funktion_db_list("Counter"); funktion_db_list("Counter");
@ -31,39 +32,27 @@ echo "Deaktiviert";
*/ */
echo "<hr>\n"; echo "<hr>\n";
funktion_db_element_list_2row( "Tshirt-Size aller engel", funktion_db_element_list_2row("Tshirt-Size aller engel", "SELECT `Size`, COUNT(`Size`) FROM `User` GROUP BY `Size`");
"SELECT `Size`, COUNT(`Size`) FROM `User` GROUP BY `Size`");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Tshirt ausgegeben", funktion_db_element_list_2row("Tshirt ausgegeben", "SELECT `Size`, COUNT(`Size`) FROM `User` WHERE `Tshirt`='1' GROUP BY `Size`");
"SELECT `Size`, COUNT(`Size`) FROM `User` WHERE `Tshirt`='1' GROUP BY `Size`");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Tshirt nicht ausgegeben (Gekommen=1)", funktion_db_element_list_2row("Tshirt nicht ausgegeben (Gekommen=1)", "SELECT COUNT(`Size`), `Size` FROM `User` WHERE `Gekommen`='1' and `Tshirt`='0' GROUP BY `Size`");
"SELECT COUNT(`Size`), `Size` FROM `User` WHERE `Gekommen`='1' and `Tshirt`='0' GROUP BY `Size`");
echo "<hr>\n"; echo "<hr>\n";
funktion_db_element_list_2row( "Hometown", funktion_db_element_list_2row("Hometown", "SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
"SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Engeltypen", funktion_db_element_list_2row("Engeltypen", "SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
"SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
echo "<hr>\n"; echo "<hr>\n";
funktion_db_element_list_2row( "Gesamte Arbeit", funktion_db_element_list_2row("Gesamte Arbeit", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID)");
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID)");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Geleisteter Arbeit", funktion_db_element_list_2row("Geleisteter Arbeit", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0)");
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0)");
echo "<hr>\n"; echo "<hr>\n";
funktion_db_element_list_2row( "Gesamte Arbeit (Ohne Raum aufabau (RID=7)", funktion_db_element_list_2row("Gesamte Arbeit (Ohne Raum aufabau (RID=7)", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (Shifts.RID!=7)");
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (Shifts.RID!=7)");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Geleisteter Arbeit (Ohne Raum aufabau (RID=7)", funktion_db_element_list_2row("Geleisteter Arbeit (Ohne Raum aufabau (RID=7)", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0) AND (Shifts.RID!=7)");
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0) AND (Shifts.RID!=7)");
include ("includes/footer.php");
include ("../../../camp2011/includes/footer.php");
?> ?>

83
www-ssl/admin/dect.php
Unescape Escape View File

@ -1,70 +1,69 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Engelsystem - DECT"; $title = "Engelsystem - DECT";
$header = "DECT send call"; $header = "DECT send call";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/config_IAX.php"); include ("config/config_IAX.php");
//include ("../../../camp2011/includes/funktion_modem.php"); //include ("../../../camp2011/includes/funktion_modem.php");
include ("../../../camp2011/includes/funktion_cron.php"); include ("includes/funktion_cron.php");
if( !isset($_GET["dial"])) $_GET["dial"] = ""; if (!isset ($_GET["dial"]))
if( !isset($_GET["custum"])) $_GET["custum"] = ""; $_GET["dial"] = "";
if (!isset ($_GET["custum"]))
$_GET["custum"] = "";
if( $_GET["dial"]=="dial") if ($_GET["dial"] == "dial") {
{ if ($_GET["DECT"] == "")
if( $_GET["DECT"]=="")
$Number = $_GET["custum"]; $Number = $_GET["custum"];
else else
$Number = $_GET["DECT"]; $Number = $_GET["DECT"];
if( strlen( $_GET["timeh"])== 1) if (strlen($_GET["timeh"]) == 1)
$_GET["timeh"] = "0". $_GET["timeh"]; $_GET["timeh"] = "0" . $_GET["timeh"];
if( strlen( $_GET["timem"])== 1) if (strlen($_GET["timem"]) == 1)
$_GET["timem"] = "0". $_GET["timem"]; $_GET["timem"] = "0" . $_GET["timem"];
// SetWackeup( $Number, $_GET["timeh"], $_GET["timem"]); // SetWackeup( $Number, $_GET["timeh"], $_GET["timem"]);
DialNumberIAX($Number, $_GET["timeh"], $_GET["timem"],0); DialNumberIAX($Number, $_GET["timeh"], $_GET["timem"], 0);
$_GET["custum"] = $Number; $_GET["custum"] = $Number;
} }
echo "<form action=\"./dect.php\" method=\"GET\">\n";
echo "<table>\n";
echo "<form action=\"./dect.php\" method=\"GET\">\n"; echo "<tr><th>Number</th><th>h:m</th><th></th></tr>\n";
echo "<table>\n";
echo "<tr><th>Number</th><th>h:m</th><th></th></tr>\n"; echo "<tr><td>\n";
// Listet alle Nicks auf
echo "<select name=\"DECT\">\n";
echo "\t<option value=\"\">costum</option>\n";
echo "<tr><td>\n"; $usql = "SELECT * FROM `User` WHERE NOT `DECT`='' ORDER BY `Nick`";
// Listet alle Nicks auf $uErg = mysql_query($usql, $con);
echo "<select name=\"DECT\">\n"; $urowcount = mysql_num_rows($uErg);
echo "\t<option value=\"\">costum</option>\n"; for ($k = 0; $k < $urowcount; $k++) {
echo "\t<option value=\"" . mysql_result($uErg, $k, "DECT") . "\">" .
$usql="SELECT * FROM `User` WHERE NOT `DECT`='' ORDER BY `Nick`"; mysql_result($uErg, $k, "Nick") .
$uErg = mysql_query($usql, $con); " (" . mysql_result($uErg, $k, "DECT") . ")" .
$urowcount = mysql_num_rows($uErg);
for ($k=0; $k<$urowcount; $k++)
{
echo "\t<option value=\"".mysql_result($uErg, $k, "DECT")."\">".
mysql_result($uErg, $k, "Nick").
" (". mysql_result($uErg, $k, "DECT"). ")".
"</option>\n"; "</option>\n";
} }
echo "</select>\n"; echo "</select>\n";
echo "<input type=\"text\" name=\"custum\" size=\"4\" maxlength=\"4\" value=\"". $_GET["custum"]. "\">\n";
echo "</td>\n";
echo "<td><input type=\"text\" name=\"timeh\" size=\"2\" maxlength=\"2\" value=\"". gmdate("H", time()+90+3600). "\">:"; echo "<input type=\"text\" name=\"custum\" size=\"4\" maxlength=\"4\" value=\"" . $_GET["custum"] . "\">\n";
echo "<input type=\"text\" name=\"timem\" size=\"2\" maxlength=\"2\" value=\"". gmdate("i", time()+90+3600). "\"></td>\n"; echo "</td>\n";
echo "<td><input type=\"submit\" name=\"dial\" value=\"dial\"></td>\n";
echo "</tr>";
echo "</table>\n";
echo "</form>"; echo "<td><input type=\"text\" name=\"timeh\" size=\"2\" maxlength=\"2\" value=\"" . gmdate("H", time() + 90 + 3600) . "\">:";
echo "<input type=\"text\" name=\"timem\" size=\"2\" maxlength=\"2\" value=\"" . gmdate("i", time() + 90 + 3600) . "\"></td>\n";
echo "<td><input type=\"submit\" name=\"dial\" value=\"dial\"></td>\n";
echo "</tr>";
echo "</table>\n";
echo "</form>";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

5
www-ssl/admin/dect_call.php
Unescape Escape View File

@ -1,7 +1,8 @@
<?php <?php
include ("../../../camp2011/includes/header.php"); require_once ('../bootstrap.php');
include ("includes/header.php");
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

214
www-ssl/admin/faq.php
Unescape Escape View File

@ -1,28 +1,28 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Himmel"; $title = "Himmel";
$header = "FAQ / Fragen an die Erzengel"; $header = "FAQ / Fragen an die Erzengel";
$submenus = 1; $submenus = 1;
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db.php"); include ("includes/funktion_db.php");
//var init //var init
$quest_bearb=0; $quest_bearb = 0;
if (IsSet($_GET["quest"])) if (IsSet ($_GET["quest"])) {
{
switch ($_GET["quest"]) switch ($_GET["quest"]) {
{
// *--------------------------------------------------------------------------- // *---------------------------------------------------------------------------
// * Anfragen - Bearbeitung // * Anfragen - Bearbeitung
// *--------------------------------------------------------------------------- // *---------------------------------------------------------------------------
// * je nach Übergabeoption ($quest) koennen Anfragen beantwortet werden oder // * je nach <20>bergabeoption ($quest) koennen Anfragen beantwortet werden oder
// * als FAQ uebergeben werden // * als FAQ uebergeben werden
// *--------------------------------------------------------------------------- // *---------------------------------------------------------------------------
case "all": case "all" :
$SQL="SELECT * FROM `Questions` ORDER BY QID DESC"; $SQL = "SELECT * FROM `Questions` ORDER BY QID DESC";
?> ?>
Alle Anfragen:<br /> Alle Anfragen:<br />
<table width="100%" class="border" cellpadding="2" cellspacing="1"> <table width="100%" class="border" cellpadding="2" cellspacing="1">
@ -37,96 +37,88 @@ case "all":
<?php <?php
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
// anzahl zeilen // anzahl zeilen
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
for ($n = 0 ; $n < $Zeilen ; $n++) { for ($n = 0; $n < $Zeilen; $n++) {
echo "<tr class=\"content\">\n"; echo "<tr class=\"content\">\n";
echo "<td>".mysql_result($Erg, $n, "Question")."</td>\n"; echo "<td>" . mysql_result($Erg, $n, "Question") . "</td>\n";
echo "<td>".UID2Nick(mysql_result($Erg, $n, "UID"))."</td>\n"; echo "<td>" . UID2Nick(mysql_result($Erg, $n, "UID")) . "</td>\n";
echo "<td>"; echo "<td>";
if (mysql_result($Erg, $n, "AID")>0) if (mysql_result($Erg, $n, "AID") > 0) {
{
echo "Ja</td>\n"; echo "Ja</td>\n";
echo "<td>".mysql_result($Erg, $n, "Answer")."</td>\n"; echo "<td>" . mysql_result($Erg, $n, "Answer") . "</td>\n";
echo "<td>".UID2Nick(mysql_result($Erg, $n, "AID"))."</td>\n"; echo "<td>" . UID2Nick(mysql_result($Erg, $n, "AID")) . "</td>\n";
} } else {
else
{
echo "Nein</td>\n"; echo "Nein</td>\n";
echo "<td>&nbsp;</td>\n"; echo "<td>&nbsp;</td>\n";
echo "<td>&nbsp;</td>\n"; echo "<td>&nbsp;</td>\n";
} }
echo "<td><a href=\"faq.php?quest=edit&QID=".mysql_result($Erg, $n, "QID")."\">xxx</a></td>"; echo "<td><a href=\"faq.php?quest=edit&QID=" . mysql_result($Erg, $n, "QID") . "\">xxx</a></td>";
echo "</tr>\n"; echo "</tr>\n";
} }
echo "</table>\n"; echo "</table>\n";
break; break;
case "open": case "open" :
$SQL="SELECT * FROM `Questions` WHERE `AID`='0' ORDER BY `QID` DESC"; $SQL = "SELECT * FROM `Questions` WHERE `AID`='0' ORDER BY `QID` DESC";
$quest_bearb=1; // Fragenliste anzeigen $quest_bearb = 1; // Fragenliste anzeigen
echo "\t\tOffene Anfragen:<br />\n"; echo "\t\tOffene Anfragen:<br />\n";
break; break;
case "edit": case "edit" :
if (!IsSet($_GET["QID"])) if (!IsSet ($_GET["QID"]))
echo "\t\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n"; echo "\t\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n";
else else {
{ $SQL = "SELECT * FROM `Questions` WHERE `QID`='" . $_GET["QID"] . "'";
$SQL = "SELECT * FROM `Questions` WHERE `QID`='". $_GET["QID"]. "'";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
echo "\t\t<form action=\"./faq.php\" method=\"GET\">\n"; echo "\t\t<form action=\"./faq.php\" method=\"GET\">\n";
echo "\t\tAnfrage von <b>". UID2NICK(mysql_result($Erg, 0, "UID")). "</b>:<br />\n"; echo "\t\tAnfrage von <b>" . UID2NICK(mysql_result($Erg, 0, "UID")) . "</b>:<br />\n";
echo "\t\t<textarea name=\"Question\" rows=\"3\" cols=\"80\">". echo "\t\t<textarea name=\"Question\" rows=\"3\" cols=\"80\">" .
mysql_result($Erg, 0, "Question"). "</textarea>\n"; mysql_result($Erg, 0, "Question") . "</textarea>\n";
echo "<br /><br />Antwort der Erzengel:<br />\n"; echo "<br /><br />Antwort der Erzengel:<br />\n";
if (mysql_result($Erg, 0, "Answer")=="") if (mysql_result($Erg, 0, "Answer") == "")
echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">". echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">" .
"Bitte hier die Antwort eintragen...</textarea><br />\n"; "Bitte hier die Antwort eintragen...</textarea><br />\n";
else else
echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">". echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">" .
mysql_result($Erg, 0, "Answer"). "</textarea>\n<br />\n"; mysql_result($Erg, 0, "Answer") . "</textarea>\n<br />\n";
echo "\t\t<input type=\"hidden\" name=\"QID\" value=\"". $_GET["QID"]. "\">\n"; echo "\t\t<input type=\"hidden\" name=\"QID\" value=\"" . $_GET["QID"] . "\">\n";
echo "\t\t<input type=\"hidden\" name=\"quest\" value=\"save\">\n"; echo "\t\t<input type=\"hidden\" name=\"quest\" value=\"save\">\n";
echo "\t\t<input type=\"submit\" value=\"Sichern...\">\n"; echo "\t\t<input type=\"submit\" value=\"Sichern...\">\n";
echo "\t</form>\n"; echo "\t</form>\n";
if (mysql_result($Erg, 0, "AID")<>"0") if (mysql_result($Erg, 0, "AID") <> "0") {
{
echo "\tDu kannst diese Anfrage so wie sie ist, als Engel-FAQ eintrag &uuml;bernehmen.<br />\n"; echo "\tDu kannst diese Anfrage so wie sie ist, als Engel-FAQ eintrag &uuml;bernehmen.<br />\n";
echo "<a href=\"./faq.php?quest=transfer&QID=". $_GET["QID"]. "\">Als FAQ-Eintrag sichern...</a>\n"; echo "<a href=\"./faq.php?quest=transfer&QID=" . $_GET["QID"] . "\">Als FAQ-Eintrag sichern...</a>\n";
} }
} // Abfrage der QID } // Abfrage der QID
break; break;
case "save": case "save" :
if (!IsSet($_GET["QID"])) if (!IsSet ($_GET["QID"]))
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten..."; echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...";
else else {
{ $SQL = "UPDATE `Questions` SET `Question`='" . $_GET["Question"] .
$SQL = "UPDATE `Questions` SET `Question`='". $_GET["Question"]. "', `AID`='" . $_SESSION['UID'] . "' , `Answer`='" . $_GET["Answer"] . "' " .
"', `AID`='". $_SESSION['UID']. "' , `Answer`='". $_GET["Answer"]. "' ". "WHERE `QID`='" . $_GET["QID"] . "' LIMIT 1";
"WHERE `QID`='". $_GET["QID"]. "' LIMIT 1";
$Erg = db_query($SQL, "save Question"); $Erg = db_query($SQL, "save Question");
if ($Erg == 1) if ($Erg == 1) {
{
echo "\tDer Eintrag wurde ge&auml;ndert<br />\n"; echo "\tDer Eintrag wurde ge&auml;ndert<br />\n";
SetHeaderGo2Back(); SetHeaderGo2Back();
} } else
else
echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n";
} }
break; break;
case "transfer": case "transfer" :
if (!IsSet($_GET["QID"])) if (!IsSet ($_GET["QID"]))
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n";
else else {
{ $SQL1 = "SELECT * FROM `Questions` WHERE `QID`='" . $_GET["QID"] . "'";
$SQL1="SELECT * FROM `Questions` WHERE `QID`='". $_GET["QID"]. "'";
$Erg = mysql_query($SQL1, $con); $Erg = mysql_query($SQL1, $con);
$SQL2="INSERT INTO `FAQ` Values ('', '". $SQL2 = "INSERT INTO `FAQ` Values ('', '" .
mysql_result($Erg, 0, "Question")."', '".mysql_result($Erg, 0, "Answer")."')"; mysql_result($Erg, 0, "Question") . "', '" . mysql_result($Erg, 0, "Answer") . "')";
$Erg = db_query($SQL2, "trasfert to request to the FAQ"); $Erg = db_query($SQL2, "trasfert to request to the FAQ");
if ($Erg == 1) if ($Erg == 1)
echo "\tDer Eintrag wurde &uuml;bertragen.<br />\n"; echo "\tDer Eintrag wurde &uuml;bertragen.<br />\n";
@ -136,14 +128,14 @@ case "transfer":
break; break;
// *--------------------------------------------------------------------------- // *---------------------------------------------------------------------------
// * FAQ - Bearbeitung // * FAQ - Bearbeitung
// *--------------------------------------------------------------------------- // *---------------------------------------------------------------------------
// * je nach Übergabeoption ($quest) koennen FAQ's erfasst werden, // * je nach <20>bergabeoption ($quest) koennen FAQ's erfasst werden,
// * geaendert oder geloscht werden... // * geaendert oder geloscht werden...
// *--------------------------------------------------------------------------- // *---------------------------------------------------------------------------
case "faq": case "faq" :
$quest_bearb=0; // keine Fragenliste anzeigen, FAQ editieren... $quest_bearb = 0; // keine Fragenliste anzeigen, FAQ editieren...
echo "\tFAQ-Liste:<br />"; echo "\tFAQ-Liste:<br />";
echo "<a href=\"./faq.php?quest=faqnew\">Neuen Eintrag</a>"; echo "<a href=\"./faq.php?quest=faqnew\">Neuen Eintrag</a>";
@ -153,22 +145,20 @@ case "faq":
// anzahl zeilen // anzahl zeilen
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
for ($n = 0 ; $n < $Zeilen ; $n++) for ($n = 0; $n < $Zeilen; $n++)
if (mysql_result($Erg, $n, "Antwort")!="") if (mysql_result($Erg, $n, "Antwort") != "") {
{ echo "\t<p class=\"question\">" . mysql_result($Erg, $n, "Frage") . "</p>\n";
echo "\t<p class=\"question\">". mysql_result($Erg, $n, "Frage"). "</p>\n"; echo "\t<p class=\"answetion\">" . mysql_result($Erg, $n, "Antwort") . "</p>\n";
echo "\t<p class=\"answetion\">". mysql_result($Erg, $n, "Antwort")."</p>\n"; echo "\t<a href=\"./faq.php?quest=faqedit&FAQID=" . mysql_result($Erg, $n, "FID") .
echo "\t<a href=\"./faq.php?quest=faqedit&FAQID=". mysql_result($Erg, $n, "FID").
"\">Bearbeiten</a>\n<br />---<br />\n"; "\">Bearbeiten</a>\n<br />---<br />\n";
} }
break; break;
case "faqedit": case "faqedit" :
if (!IsSet($_GET["FAQID"])) if (!IsSet ($_GET["FAQID"]))
echo "\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n"; echo "\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n";
else else {
{ $SQL = "SELECT * FROM `FAQ` WHERE `FID`='" . $_GET["FAQID"] . "'";
$SQL = "SELECT * FROM `FAQ` WHERE `FID`='". $_GET["FAQID"]. "'";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
// anzahl zeilen // anzahl zeilen
@ -190,15 +180,16 @@ case "faqedit":
<input type="submit" value="L&ouml;schen..."> <input type="submit" value="L&ouml;schen...">
</form> </form>
<?php <?php
} }
break; break;
case "faqdelete"; case "faqdelete";
if (!IsSet($_GET["FAQID"])) if (!IsSet ($_GET["FAQID"]))
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n";
else else {
{ $SQL = "DELETE FROM `FAQ` WHERE `FID`='" . $_GET["FAQID"] . "' LIMIT 1";
$SQL = "DELETE FROM `FAQ` WHERE `FID`='". $_GET["FAQID"]. "' LIMIT 1";
$Erg = db_query($SQL, "delate faq item"); $Erg = db_query($SQL, "delate faq item");
if ($Erg == 1) if ($Erg == 1)
echo "\tDer Eintrag wurde gel&ouml;scht<br />\n"; echo "\tDer Eintrag wurde gel&ouml;scht<br />\n";
@ -207,13 +198,12 @@ case "faqdelete";
} }
break; break;
case "faqsave"; case "faqsave";
if (!IsSet($_GET["FAQID"])) if (!IsSet ($_GET["FAQID"]))
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n";
else else {
{ $SQL = "UPDATE `FAQ` SET `Frage`='" . $_GET["Frage"] . "', `Antwort`='" . $_GET["Antwort"] .
$SQL = "UPDATE `FAQ` SET `Frage`='". $_GET["Frage"]. "', `Antwort`='". $_GET["Antwort"]. "' WHERE `FID`='" . $_GET["FAQID"] . "' LIMIT 1";
"' WHERE `FID`='". $_GET["FAQID"]. "' LIMIT 1";
$Erg = db_query($SQL, $con); $Erg = db_query($SQL, $con);
if ($Erg == 1) if ($Erg == 1)
echo "\tDer Eintrag wurde ge&auml;ndert<br />\n"; echo "\tDer Eintrag wurde ge&auml;ndert<br />\n";
@ -222,7 +212,7 @@ case "faqsave";
} }
break; break;
case "faqnew": case "faqnew" :
?> ?>
<form action="./faq.php" method="GET"> <form action="./faq.php" method="GET">
Frage:<br /> Frage:<br />
@ -233,10 +223,12 @@ case "faqnew":
<input type="submit" value="Sichern..."> <input type="submit" value="Sichern...">
</form> </form>
<?php <?php
break; break;
case "faqnewsave"; case "faqnewsave";
$SQL = "INSERT INTO `FAQ` VALUES ('', '". $_GET["Frage"]. "', '". $_GET["Antwort"]. "')"; $SQL = "INSERT INTO `FAQ` VALUES ('', '" . $_GET["Frage"] . "', '" . $_GET["Antwort"] . "')";
$Erg = db_query($SQL, "Save new FAQ entry"); $Erg = db_query($SQL, "Save new FAQ entry");
if ($Erg == 1) if ($Erg == 1)
echo "\tDer Eintrag wurde erfasst.<br />\n"; echo "\tDer Eintrag wurde erfasst.<br />\n";
@ -244,40 +236,36 @@ case "faqnewsave";
echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n";
break; break;
} //switch ($_GET["quest"]) } //switch ($_GET["quest"])
// Hilfsroutine für die Anfragen: // Hilfsroutine f<>r die Anfragen:
// Fragenliste anzeigen??? // Fragenliste anzeigen???
if ($quest_bearb==1) if ($quest_bearb == 1) {
{
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
// anzahl zeilen // anzahl zeilen
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
if ($Zeilen==0) if ($Zeilen == 0)
echo "\tkeine vorhanden...\n"; echo "\tkeine vorhanden...\n";
else else
for ($n = 0 ; $n < $Zeilen ; $n++) for ($n = 0; $n < $Zeilen; $n++) {
{ echo "\t<p>" . nl2br(mysql_result($Erg, $n, "Question")) . "\n</p><br />\n";
echo "\t<p>". nl2br(mysql_result($Erg, $n, "Question"))."\n</p><br />\n"; echo "\t<a href=\"./faq.php?quest=edit&QID=" . mysql_result($Erg, $n, "QID") . "\">Bearbeiten</a>\n";
echo "\t<a href=\"./faq.php?quest=edit&QID=". mysql_result($Erg, $n, "QID"). "\">Bearbeiten</a>\n";
echo "<br />---<br />\n"; echo "<br />---<br />\n";
} }
} }
} //if (IsSet($_GET["quest"])) } //if (IsSet($_GET["quest"]))
else else {
{
echo "Bitte w&auml;hle aus, ob du:\n"; echo "Bitte w&auml;hle aus, ob du:\n";
echo "<ul>\n"; echo "<ul>\n";
echo "\t<li><a href=\"./faq.php?quest=all\">Alle Anfragen anzeigen/bearbeiten m&ouml;chtest</a></li>\n"; echo "\t<li><a href=\"./faq.php?quest=all\">Alle Anfragen anzeigen/bearbeiten m&ouml;chtest</a></li>\n";
echo "\t<li><a href=\"./faq.php?quest=open\">Alle offenen Anfragen anzeigen/bearbeiten m&ouml;chtest (". echo "\t<li><a href=\"./faq.php?quest=open\">Alle offenen Anfragen anzeigen/bearbeiten m&ouml;chtest (" .
noAnswer(). ")</a></li>\n"; noAnswer() . ")</a></li>\n";
echo "\t<li><a href=\"./faq.php?quest=faq\">Die FAQ's anzeigen/bearbeiten</a></li>\n"; echo "\t<li><a href=\"./faq.php?quest=faq\">Die FAQ's anzeigen/bearbeiten</a></li>\n";
echo "</ul>\n"; echo "</ul>\n";
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

58
www-ssl/admin/free.php
Unescape Escape View File

@ -1,16 +1,15 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Erzengel"; $title = "Erzengel";
$header = "Freie Engel"; $header = "Freie Engel";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
echo "Hallo " . $_SESSION['Nick'] . ",<br />\n";
echo "Hallo ".$_SESSION['Nick'].",<br />\n";
echo "<br /><br />\n\nHier findest du alle Engel, welche zur Zeit in keiner Schicht verplant sind:<br /><br />\n"; echo "<br /><br />\n\nHier findest du alle Engel, welche zur Zeit in keiner Schicht verplant sind:<br /><br />\n";
####################################################### #######################################################
# Ermitteln freier Engel # Ermitteln freier Engel
# #
@ -33,9 +32,9 @@ $SQL = "SELECT Shifts.*, ShiftEntry.*, User.Nick ".
"INNER JOIN (Shifts INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID) ON User.UID = ShiftEntry.UID ". "INNER JOIN (Shifts INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID) ON User.UID = ShiftEntry.UID ".
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() );"; "WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() );";
*/ */
$SQL = "SELECT Shifts.*, ShiftEntry.* ". $SQL = "SELECT Shifts.*, ShiftEntry.* " .
"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID ". "FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID " .
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);"; "WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);";
//SELECT User.Nick, Schichtplan.*, Schichtbelegung. * FROM User LEFT JOIN Schichtbelegung ON User.UID=Schichtbelegung.UID, Schichtplan LEFT JOIN Schichtbelegung ON Schichtplan.SID = Schichtbelegung.SID WHERE Schichtplan.Date < now() and Schichtplan.EndDate > now() ORDER BY Nick //SELECT User.Nick, Schichtplan.*, Schichtbelegung. * FROM User LEFT JOIN Schichtbelegung ON User.UID=Schichtbelegung.UID, Schichtplan LEFT JOIN Schichtbelegung ON Schichtplan.SID = Schichtbelegung.SID WHERE Schichtplan.Date < now() and Schichtplan.EndDate > now() ORDER BY Nick
@ -47,8 +46,6 @@ $Zeilen = mysql_num_rows($Erg);
// for ($i = 1; $i < mysql_num_fields($Erg); $i++) // for ($i = 1; $i < mysql_num_fields($Erg); $i++)
// echo "|".mysql_field_name($Erg, $i); // echo "|".mysql_field_name($Erg, $i);
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "\t<tr class=\"contenttopic\">\n"; echo "\t<tr class=\"contenttopic\">\n";
echo "\t\t<td>Nick</td>\n"; echo "\t\t<td>Nick</td>\n";
@ -58,47 +55,44 @@ echo "\t\t<td>Von</td>\n";
echo "\t\t<td>Bis</td>\n"; echo "\t\t<td>Bis</td>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
$inuse = "";
$inuse=""; for ($i = 0; $i < $Zeilen; $i++) {
for ($i=0; $i < $Zeilen; $i++)
{
echo "<tr class=\"content\">\n"; echo "<tr class=\"content\">\n";
echo "<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=". mysql_result($Erg, $i, "UID"). "\">". echo "<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=" . mysql_result($Erg, $i, "UID") . "\">" .
UID2Nick(mysql_result($Erg, $i, "UID")). "</td></a>\n"; UID2Nick(mysql_result($Erg, $i, "UID")) . "</td></a>\n";
echo "<td></td>\n"; echo "<td></td>\n";
echo "<td>". mysql_result($Erg, $i, "RID"). "</td>\n"; echo "<td>" . mysql_result($Erg, $i, "RID") . "</td>\n";
echo "<td>". mysql_result($Erg, $i, "DateS"). "</td>\n"; echo "<td>" . mysql_result($Erg, $i, "DateS") . "</td>\n";
echo "<td>". mysql_result($Erg, $i, "DateE"). "</td>\n"; echo "<td>" . mysql_result($Erg, $i, "DateE") . "</td>\n";
echo "</tr>\n"; echo "</tr>\n";
if ($inuse!="") if ($inuse != "")
$inuse.= " OR "; $inuse .= " OR ";
$inuse.= "(Nick = \"". UID2Nick(mysql_result($Erg, $i, "UID")). "\")"; $inuse .= "(Nick = \"" . UID2Nick(mysql_result($Erg, $i, "UID")) . "\")";
} }
if ($inuse!="") if ($inuse != "")
$inuse=" WHERE NOT (".$inuse.")"; $inuse = " WHERE NOT (" .
$inuse . ")";
echo "</table>\n"; echo "</table>\n";
//########################################################################################################## //##########################################################################################################
echo "<br /><br />\n\nhier findest du alle Engel, welche zur Zeit in keiner Schichten verplant sind:<br /><br />\n"; echo "<br /><br />\n\nhier findest du alle Engel, welche zur Zeit in keiner Schichten verplant sind:<br /><br />\n";
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\"\>\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\"\>\n";
echo "\t<tr class=\"contenttopic\">\n\t\t<td>Nick</td>\n\t\t<td>DECT</td>\n\t</tr>\n"; echo "\t<tr class=\"contenttopic\">\n\t\t<td>Nick</td>\n\t\t<td>DECT</td>\n\t</tr>\n";
$SQL = "SELECT Nick, UID, DECT FROM User".$inuse.";"; $SQL = "SELECT Nick, UID, DECT FROM User" . $inuse . ";";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
for ($i=0; $i < $Zeilen; $i++) for ($i = 0; $i < $Zeilen; $i++) {
{
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
echo "\t\t<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=". mysql_result($Erg, $i, "UID"). "\">". echo "\t\t<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=" . mysql_result($Erg, $i, "UID") . "\">" .
mysql_result($Erg, $i, "Nick"). "</a></td>\n"; mysql_result($Erg, $i, "Nick") . "</a></td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "DECT"). "</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "DECT") . "</td>\n";
echo "\n</tr>\n"; echo "\n</tr>\n";
} }
echo "</table>\n"; echo "</table>\n";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

67
www-ssl/admin/free_DECT.php
Unescape Escape View File

@ -1,9 +1,9 @@
<?php <?php
require_once ('../bootstrap.php');
include ("../../../camp2011/includes/config_db.php"); include ("config/config_db.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
include ("../../../camp2011/includes/funktion_user.php"); include ("includes/funktion_user.php");
####################################################### #######################################################
# Ermitteln freier Engel # Ermitteln freier Engel
@ -11,68 +11,55 @@ include ("../../../camp2011/includes/funktion_user.php");
# auslesen aller Engel und dazugehoerige Schichten # auslesen aller Engel und dazugehoerige Schichten
####################################################### #######################################################
$SQL = "SELECT Shifts.*, ShiftEntry.* ". $SQL = "SELECT Shifts.*, ShiftEntry.* " .
"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID ". "FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID " .
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);"; "WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
$inuse=""; $inuse = "";
for ($i=0; $i < $Zeilen; $i++) for ($i = 0; $i < $Zeilen; $i++) {
{ if ($inuse != "")
if ($inuse!="") $inuse .= " OR ";
$inuse.= " OR "; $inuse .= "(UID = \"" . mysql_result($Erg, $i, "UID") . "\")";
$inuse.= "(UID = \"". mysql_result($Erg, $i, "UID"). "\")";
}
if ($inuse!="")
{
$inuse=" WHERE (NOT (".$inuse.")) AND (DECT!='')";
} }
else if ($inuse != "") {
{ $inuse = " WHERE (NOT (" . $inuse . ")) AND (DECT!='')";
$inuse=" WHERE (DECT!='')"; } else {
$inuse = " WHERE (DECT!='')";
} }
//########################################################################################################## //##########################################################################################################
$SQL = "SELECT * FROM User".$inuse.";"; $SQL = "SELECT * FROM User" . $inuse . ";";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
for ($i=0; $i < $Zeilen; $i++) for ($i = 0; $i < $Zeilen; $i++) {
{
// get DECT number // get DECT number
echo mysql_result($Erg, $i, "DECT"). "\t"; echo mysql_result($Erg, $i, "DECT") . "\t";
// get all user rights // get all user rights
$SQL_RIGHT = "SELECT * FROM UserCVS WHERE UID=". mysql_result($Erg, $i, "UID"). ";"; $SQL_RIGHT = "SELECT * FROM UserCVS WHERE UID=" . mysql_result($Erg, $i, "UID") . ";";
$Erg_RIGHT = mysql_query($SQL_RIGHT, $con); $Erg_RIGHT = mysql_query($SQL_RIGHT, $con);
$UserRights = mysql_fetch_array($Erg_RIGHT); $UserRights = mysql_fetch_array($Erg_RIGHT);
foreach( $UserRights as $Var => $Value) foreach ($UserRights as $Var => $Value) {
{ if ((strpos($Var, ".php") === false) AND (strpos($Var, "/") === false) AND (strpos($Var, "UID") === false) AND (is_numeric($Var) === false)) {
if( (strpos( $Var, ".php") === false) AND echo "\"" . $Var . "\"=" . $Value . "\t";
(strpos( $Var, "/") === false) AND
(strpos( $Var, "UID") === false) AND
(is_numeric($Var) === false) )
{
echo "\"".$Var. "\"=". $Value. "\t";
} }
} }
// get shift types // get shift types
$SQL_TYPES = "SELECT TID FROM `ShiftEntry` WHERE UID=". mysql_result($Erg, $i, "UID"). " GROUP BY TID;"; $SQL_TYPES = "SELECT TID FROM `ShiftEntry` WHERE UID=" . mysql_result($Erg, $i, "UID") . " GROUP BY TID;";
$Erg_TYPES = mysql_query($SQL_TYPES, $con); $Erg_TYPES = mysql_query($SQL_TYPES, $con);
$Zeilen_Typen = mysql_num_rows($Erg_TYPES); $Zeilen_Typen = mysql_num_rows($Erg_TYPES);
for ($j=0; $j < $Zeilen_Typen; $j++) for ($j = 0; $j < $Zeilen_Typen; $j++) {
{ echo "\"TID_" . TID2Type(mysql_result($Erg_TYPES, $j, "TID")) . "\"=Y\t";
echo "\"TID_". TID2Type( mysql_result($Erg_TYPES, $j, "TID")). "\"=Y\t";
} }
echo "\n"; echo "\n";
// echo "<br />"; // echo "<br />";
} }
?> ?>

18
www-ssl/admin/group.php
Unescape Escape View File

@ -1,12 +1,12 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Editieren der Engelliste"; $header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
if (!IsSet($_GET["enterGID"])) if (!IsSet ($_GET["enterGID"])) {
{
// Userliste, keine UID uebergeben... // Userliste, keine UID uebergeben...
$SQL = "SELECT * FROM `UserGroups` ORDER BY `Name` ASC"; $SQL = "SELECT * FROM `UserGroups` ORDER BY `Name` ASC";
@ -22,12 +22,12 @@ if (!IsSet($_GET["enterGID"]))
echo "\t<td>Link</td>\n"; echo "\t<td>Link</td>\n";
echo "</tr>\n"; echo "</tr>\n";
for ($n = 0 ; $n < $Zeilen ; $n++) { for ($n = 0; $n < $Zeilen; $n++) {
echo "<tr class=\"content\">\n"; echo "<tr class=\"content\">\n";
echo "\t<td>".mysql_result($Erg, $n, "Name")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Name") . "</td>\n";
echo "<td><a href=\"./userChangeSecure.php?enterUID=". echo "<td><a href=\"./userChangeSecure.php?enterUID=" .
mysql_result($Erg, $n, "UID")."&Type=Secure\">change</a></td>\n"; mysql_result($Erg, $n, "UID") . "&Type=Secure\">change</a></td>\n";
echo "</tr>\n"; echo "</tr>\n";
} }
@ -43,7 +43,7 @@ if (!IsSet($_GET["enterGID"]))
// Ende Userliste // Ende Userliste
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

12
www-ssl/admin/index.php
Unescape Escape View File

@ -1,12 +1,12 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Erzengel"; $title = "Erzengel";
$header = "Index"; $header = "Index";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
echo "Hallo Erzengel ".$_SESSION['Nick'].",<br />\n";
echo "Hallo Erzengel " . $_SESSION['Nick'] . ",<br />\n";
?> ?>
du bist jetzt im Erzengel-Bereich. Hier kannst du die Engel-Verwaltung vornehmen.<br /><br /> du bist jetzt im Erzengel-Bereich. Hier kannst du die Engel-Verwaltung vornehmen.<br /><br />
@ -14,6 +14,8 @@ du bist jetzt im Erzengel-Bereich. Hier kannst du die Engel-Verwaltung vornehmen
Bitte melde dich <a href="../logout.php">hier</a> nach getaner Arbeit immer ab, damit kein anderer hier &Auml;nderungen vornehmen kann. Bitte melde dich <a href="../logout.php">hier</a> nach getaner Arbeit immer ab, damit kein anderer hier &Auml;nderungen vornehmen kann.
<?php <?php
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?> ?>

165
www-ssl/admin/room.php
Unescape Escape View File

@ -1,16 +1,17 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "R&auml;ume"; $title = "R&auml;ume";
$header = "Verwaltung der R&auml;ume"; $header = "Verwaltung der R&auml;ume";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php"); include ("funktion_schichtplan_aray.php");
$Sql = "SELECT * FROM `Room` ORDER BY `Number`, `Name`"; $Sql = "SELECT * FROM `Room` ORDER BY `Number`, `Name`";
$Erg = mysql_query($Sql, $con); $Erg = mysql_query($Sql, $con);
if( !IsSet($_GET["action"]) ) if (!IsSet ($_GET["action"])) {
{ echo "Hallo " . $_SESSION['Nick'] .
echo "Hallo ".$_SESSION['Nick']. ",<br />\nhier hast du die M&ouml;glichkeit, neue R&auml;ume f&uuml;r die Schichtpl&auml;ne einzutragen " .
",<br />\nhier hast du die M&ouml;glichkeit, neue R&auml;ume f&uuml;r die Schichtpl&auml;ne einzutragen ".
"oder vorhandene abzu&auml;ndern:<br /><br />\n"; "oder vorhandene abzu&auml;ndern:<br /><br />\n";
echo "<a href=\"./room.php?action=new\">- Neuen Raum/Ort eintragen</a><br />\n"; echo "<a href=\"./room.php?action=new\">- Neuen Raum/Ort eintragen</a><br />\n";
@ -18,60 +19,51 @@ if( !IsSet($_GET["action"]) )
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<tr class=\"contenttopic\">\n"; echo "<tr class=\"contenttopic\">\n";
for( $i = 1; $i < mysql_num_fields($Erg); $i++ ) for ($i = 1; $i < mysql_num_fields($Erg); $i++) {
{ if (substr(mysql_field_name($Erg, $i), 0, 12) == "DEFAULT_EID_")
if( substr( mysql_field_name($Erg, $i), 0, 12) == "DEFAULT_EID_") echo "\t<td> Anzahl " . $EngelTypeID[substr(mysql_field_name($Erg, $i), 12)] . "</td>";
echo "\t<td> Anzahl ". $EngelTypeID[substr( mysql_field_name($Erg, $i), 12)]. "</td>";
else else
echo "\t<td>". mysql_field_name($Erg, $i)."</td>"; echo "\t<td>" . mysql_field_name($Erg, $i) . "</td>";
} }
echo "\t<td>&Auml;ndern</td>"; echo "\t<td>&Auml;ndern</td>";
echo "</tr>"; echo "</tr>";
for( $t = 0; $t < mysql_num_rows($Erg); $t++ ) for ($t = 0; $t < mysql_num_rows($Erg); $t++) {
{
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
for ($j = 1; $j < mysql_num_fields($Erg); $j++) for ($j = 1; $j < mysql_num_fields($Erg); $j++) {
{ echo "\t\t<td>" . mysql_result($Erg, $t, $j) . "</td>\n";
echo "\t\t<td>".mysql_result($Erg, $t, $j)."</td>\n";
} }
echo "\t\t<td><a href=\"./room.php?action=change&RID=".mysql_result($Erg, $t, "RID")."\">###</a></td>\n"; echo "\t\t<td><a href=\"./room.php?action=change&RID=" . mysql_result($Erg, $t, "RID") . "\">###</a></td>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
} // ende Auflistung Raeume } // ende Auflistung Raeume
echo "</table>"; echo "</table>";
} } else {
else
{
UnSet($SQL); UnSet ($SQL);
switch ($_GET["action"]) { switch ($_GET["action"]) {
case 'new': case 'new' :
echo "Neuen Raum einrichten: <br />"; echo "Neuen Raum einrichten: <br />";
echo "<form action=\"./room.php\" method=\"GET\">\n"; echo "<form action=\"./room.php\" method=\"GET\">\n";
echo "<table>\n"; echo "<table>\n";
for( $Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++ ) for ($Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++) {
{ if ((mysql_field_name($Erg, $Uj) == "show") || (mysql_field_name($Erg, $Uj) == "FromPentabarf")) {
if( (mysql_field_name($Erg, $Uj) == "show") || (mysql_field_name($Erg, $Uj) == "FromPentabarf") ) echo "<tr><td>" . mysql_field_name($Erg, $Uj) . "</td>" .
{ "<td>" .
echo "<tr><td>". mysql_field_name($Erg, $Uj). "</td>". "<input type=\"radio\" name=\"" . mysql_field_name($Erg, $Uj) . "\" value=\"Y\">Yes" .
"<td>". "<input type=\"radio\" name=\"" . mysql_field_name($Erg, $Uj) . "\" value=\"N\">No" .
"<input type=\"radio\" name=\"". mysql_field_name($Erg, $Uj). "\" value=\"Y\">Yes".
"<input type=\"radio\" name=\"". mysql_field_name($Erg, $Uj). "\" value=\"N\">No".
"</td></tr>\n"; "</td></tr>\n";
} } else {
else
{
//sonderfall fuer Default Engel //sonderfall fuer Default Engel
if( substr( mysql_field_name($Erg, $Uj), 0, 12) == "DEFAULT_EID_") if (substr(mysql_field_name($Erg, $Uj), 0, 12) == "DEFAULT_EID_")
$FeldName = "Anzahl ". $EngelTypeID[substr( mysql_field_name($Erg, $Uj), 12)]; $FeldName = "Anzahl " . $EngelTypeID[substr(mysql_field_name($Erg, $Uj), 12)];
else else
$FeldName = mysql_field_name($Erg, $Uj); $FeldName = mysql_field_name($Erg, $Uj);
echo "<td>$FeldName</td>". echo "<td>$FeldName</td>" .
"<td><input type=\"text\" size=\"40\" name=\"".mysql_field_name($Erg, $Uj)."\">"; "<td><input type=\"text\" size=\"40\" name=\"" . mysql_field_name($Erg, $Uj) . "\">";
echo "</td></tr>\n"; echo "</td></tr>\n";
} }
} }
@ -81,119 +73,108 @@ case 'new':
echo "</form>"; echo "</form>";
break; break;
case 'newsave': case 'newsave' :
$vars = $_GET; $vars = $_GET;
$count = count($vars) - 1; $count = count($vars) - 1;
$vars = array_splice($vars, 0, $count); $vars = array_splice($vars, 0, $count);
$Keys = ""; $Keys = "";
$Values = ""; $Values = "";
foreach($vars as $key => $value) foreach ($vars as $key => $value) {
{
$Keys .= ", `$key`"; $Keys .= ", `$key`";
$Values .= ", '$value'"; $Values .= ", '$value'";
} }
$SQL = "INSERT INTO `Room` (". substr( $Keys, 2). ") VALUES (". substr( $Values, 2). ")"; $SQL = "INSERT INTO `Room` (" . substr($Keys, 2) . ") VALUES (" . substr($Values, 2) . ")";
SetHeaderGo2Back(); SetHeaderGo2Back();
break; break;
case 'change': case 'change' :
if (! IsSet($_GET["RID"])) if (!IsSet ($_GET["RID"]))
echo "Fehlerhafter Aufruf!"; echo "Fehlerhafter Aufruf!";
else else {
{ $SQL2 = "SELECT * FROM `Room` WHERE `RID`='" . $_GET["RID"] . "'";
$SQL2 = "SELECT * FROM `Room` WHERE `RID`='". $_GET["RID"]. "'";
$ERG = mysql_query($SQL2, $con); $ERG = mysql_query($SQL2, $con);
if( mysql_num_rows( $ERG)>0) if (mysql_num_rows($ERG) > 0) {
{
echo "Raum ab&auml;ndern:\n"; echo "Raum ab&auml;ndern:\n";
echo "Hier kannst du eintragen, welche und wieviele Engel f&uuml;r den Raum zur Verf?gung stehen m&uuml;ssen."; echo "Hier kannst du eintragen, welche und wieviele Engel f&uuml;r den Raum zur Verf?gung stehen m&uuml;ssen.";
echo "<form action=\"./room.php\" method=\"GET\">\n"; echo "<form action=\"./room.php\" method=\"GET\">\n";
echo "<table>\n"; echo "<table>\n";
for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) {
{ if ((mysql_field_name($ERG, $Uj) == "show") || (mysql_field_name($ERG, $Uj) == "FromPentabarf")) {
if( (mysql_field_name($ERG, $Uj) == "show") || (mysql_field_name($ERG, $Uj) == "FromPentabarf") ) echo "<tr><td>" . mysql_field_name($Erg, $Uj) . "</td>" .
{ "<td>" .
echo "<tr><td>". mysql_field_name($Erg, $Uj). "</td>". "<input type=\"radio\" name=\"e" . mysql_field_name($ERG, $Uj) .
"<td>". "\" value=\"Y\"" . (mysql_result($ERG, 0, $Uj) == 'Y' ? " checked" : "") . ">Yes" .
"<input type=\"radio\" name=\"e". mysql_field_name($ERG, $Uj). "<input type=\"radio\" name=\"e" . mysql_field_name($ERG, $Uj) .
"\" value=\"Y\"". (mysql_result($ERG, 0, $Uj)=='Y'? " checked":""). ">Yes". "\" value=\"N\"" . (mysql_result($ERG, 0, $Uj) == 'N' ? " checked" : "") . ">No" .
"<input type=\"radio\" name=\"e". mysql_field_name($ERG, $Uj).
"\" value=\"N\"". (mysql_result($ERG, 0, $Uj)=='N'? " checked":""). ">No".
"</td></tr>\n"; "</td></tr>\n";
} } else {
else if (substr(mysql_field_name($ERG, $Uj), 0, 12) == "DEFAULT_EID_")
{
if( substr( mysql_field_name($ERG, $Uj), 0, 12) == "DEFAULT_EID_")
//sonderfall fuer Default Engel //sonderfall fuer Default Engel
$FeldName = "Anzahl ". $EngelTypeID[substr( mysql_field_name($ERG, $Uj), 12)]; $FeldName = "Anzahl " . $EngelTypeID[substr(mysql_field_name($ERG, $Uj), 12)];
else else
$FeldName = mysql_field_name($ERG, $Uj); $FeldName = mysql_field_name($ERG, $Uj);
echo "<tr><td>$FeldName</td>". echo "<tr><td>$FeldName</td>" .
"<td><input type=\"text\" size=\"40\" name=\"e".mysql_field_name($ERG, $Uj)."\" ". "<td><input type=\"text\" size=\"40\" name=\"e" . mysql_field_name($ERG, $Uj) . "\" " .
"value=\"".mysql_result($ERG, 0, $Uj)."\">". "value=\"" . mysql_result($ERG, 0, $Uj) . "\">" .
"</td></tr>\n"; "</td></tr>\n";
} }
} }
echo "</table>\n"; echo "</table>\n";
echo "<input type=\"hidden\" name=\"eRID\" value=\"". $_GET["RID"]. "\">\n"; echo "<input type=\"hidden\" name=\"eRID\" value=\"" . $_GET["RID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n"; echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>"; echo "</form>";
echo "<form action=\"./room.php\" method=\"GET\">\n"; echo "<form action=\"./room.php\" method=\"GET\">\n";
echo "<input type=\"hidden\" name=\"RID\" value=\"". $_GET["RID"]. "\">\n"; echo "<input type=\"hidden\" name=\"RID\" value=\"" . $_GET["RID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">"; echo "<input type=\"submit\" value=\"L&ouml;schen...\">";
echo "</form>"; echo "</form>";
} } else
else echo "FEHLER: Room ID " . $_GET["RID"] . " nicht gefunden";
echo "FEHLER: Room ID ". $_GET["RID"]. " nicht gefunden";
} }
break; break;
case 'changesave': case 'changesave' :
$sql=""; $sql = "";
$vars = $_GET; $vars = $_GET;
$count = count($vars) - 2; $count = count($vars) - 2;
$vars = array_splice($vars, 0, $count); $vars = array_splice($vars, 0, $count);
foreach($vars as $key => $value) foreach ($vars as $key => $value) {
{ $keys = substr($key, 1);
$keys = substr($key,1); $sql .= ", `" . $keys . "`='" . $value . "' ";
$sql .= ", `".$keys."`='".$value."' ";
} }
$SQL = "UPDATE `Room` SET ". substr($sql, 2). " WHERE `RID`='". $_GET["eRID"]. "'"; $SQL = "UPDATE `Room` SET " . substr($sql, 2) . " WHERE `RID`='" . $_GET["eRID"] . "'";
SetHeaderGo2Back(); SetHeaderGo2Back();
break; break;
case 'delete': case 'delete' :
if (IsSet($_GET["RID"])) { if (IsSet ($_GET["RID"])) {
$SQL="DELETE FROM `Room` WHERE `RID`='". $_GET["RID"]. "'"; $SQL = "DELETE FROM `Room` WHERE `RID`='" . $_GET["RID"] . "'";
} else { } else {
echo "Fehlerhafter Aufruf"; echo "Fehlerhafter Aufruf";
} }
SetHeaderGo2Back(); SetHeaderGo2Back();
break; break;
} //switch } //switch
// Update ??? // Update ???
if (IsSet($SQL)){ if (IsSet ($SQL)) {
// echo $SQL; // echo $SQL;
// hier muesste das SQL ausgefuehrt werden... // hier muesste das SQL ausgefuehrt werden...
$Erg = db_query($SQL, "exec SQL"); $Erg = db_query($SQL, "exec SQL");
if ($Erg == 1) if ($Erg == 1)
echo "&Auml;nderung wurde gesichert...<br />"; echo "&Auml;nderung wurde gesichert...<br />";
else else {
{
echo "Fehler beim speichern... bitte noch ein mal probieren :)"; echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "<br /><br />".mysql_error( $con ). "<br />($SQL)<br />"; echo "<br /><br />" . mysql_error($con) . "<br />($SQL)<br />";
} }
} // Ende Update } // Ende Update
} //IF IsSet($action) } //IF IsSet($action)
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

357
www-ssl/admin/schichtplan.php
Unescape Escape View File

@ -1,32 +1,30 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Schichtplan"; $title = "Schichtplan";
$header = "Neue Schichten erfassen"; $header = "Neue Schichten erfassen";
$submenus = 1; $submenus = 1;
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
function executeSQL( $SQL) function executeSQL($SQL) {
{
global $debug, $con; global $debug, $con;
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
if( $debug ) if ($debug)
echo "DEBUG SQL: $SQL<br />\n"; echo "DEBUG SQL: $SQL<br />\n";
if ($Erg == 1) if ($Erg == 1) {
{
echo "SQL war erfolgreich"; echo "SQL war erfolgreich";
} } else {
else echo "SQL Fehler (" . mysql_error($con) . ")";
{
echo "SQL Fehler (". mysql_error($con).")" ;
} }
} }
if (!IsSet($_GET["action"])) { if (!IsSet ($_GET["action"])) {
echo "Hallo ".$_SESSION['Nick'].",<br />\n"; echo "Hallo " . $_SESSION['Nick'] . ",<br />\n";
echo "hier kannst du Schichten anlegen, &auml;ndern oder l&ouml;schen.<br /><br />"; echo "hier kannst du Schichten anlegen, &auml;ndern oder l&ouml;schen.<br /><br />";
echo "<a href=\"./shiftadd.php\">Neue Schicht einplanen</a><br /><br />\n\n"; echo "<a href=\"./shiftadd.php\">Neue Schicht einplanen</a><br /><br />\n\n";
echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n"; echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n";
?> ?>
<table width="100%" class="border" cellpadding="2" cellspacing="1"> <table width="100%" class="border" cellpadding="2" cellspacing="1">
<tr class="contenttopic"> <tr class="contenttopic">
@ -38,60 +36,56 @@ echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n";
</tr> </tr>
<?php <?php
$sql = "SELECT `SID`, `DateS`, `RID`, `Len` FROM `Shifts` ".
$sql = "SELECT `SID`, `DateS`, `RID`, `Len` FROM `Shifts` " .
"ORDER BY `RID`, `DateS` "; "ORDER BY `RID`, `DateS` ";
$Erg = mysql_query($sql, $con); $Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg); $rowcount = mysql_num_rows($Erg);
for( $i = 0; $i < $rowcount; $i++) for ($i = 0; $i < $rowcount; $i++) {
{
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
echo "\t\t<td><input type=\"checkbox\" name=\"SID". mysql_result($Erg, $i, "SID"). "\" ". echo "\t\t<td><input type=\"checkbox\" name=\"SID" . mysql_result($Erg, $i, "SID") . "\" " .
"value=\"". mysql_result($Erg, $i, "SID"). "\"></td>\n"; "value=\"" . mysql_result($Erg, $i, "SID") . "\"></td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "DateS")."</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "DateS") . "</td>\n";
$sql2= "SELECT `Name` FROM `Room` WHERE `RID`='".mysql_result($Erg, $i, "RID")."'"; $sql2 = "SELECT `Name` FROM `Room` WHERE `RID`='" . mysql_result($Erg, $i, "RID") . "'";
$Erg2 = mysql_query($sql2, $con); $Erg2 = mysql_query($sql2, $con);
if( mysql_num_rows($Erg2) > 0) if (mysql_num_rows($Erg2) > 0)
echo "\t\t<td>".mysql_result($Erg2, 0, "Name")."</td>\n"; echo "\t\t<td>" . mysql_result($Erg2, 0, "Name") . "</td>\n";
else else
echo "\t\t<td>Unbenkannt (RID=". mysql_result($Erg, $i, "RID"). ")</td>\n"; echo "\t\t<td>Unbenkannt (RID=" . mysql_result($Erg, $i, "RID") . ")</td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Len")." Std. </td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "Len") . " Std. </td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=change&SID=". echo "\t\t<td><a href=\"./schichtplan.php?action=change&SID=" .
mysql_result($Erg, $i, "SID")."\">####</a></td>\n"; mysql_result($Erg, $i, "SID") . "\">####</a></td>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
} }
echo "</table>\n"; echo "</table>\n";
echo "<input type=\"hidden\" name=\"action\" value=\"deleteShifs\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n";
echo "</form>\n";
echo "<input type=\"hidden\" name=\"action\" value=\"deleteShifs\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n";
echo "</form>\n";
} else { } else {
// aus sicherheitzgründen wegen späterer genuzung // aus sicherheitzgr<67>nden wegen sp<73>terer genuzung
UnSet($chSQL); UnSet ($chSQL);
switch ($_GET["action"]){ switch ($_GET["action"]) {
case 'change': case 'change' :
if ( !IsSet($_GET["SID"]) ) if (!IsSet ($_GET["SID"])) {
{
echo "Fehlerhafter Aufruf!\n"; echo "Fehlerhafter Aufruf!\n";
} } else {
else
{
$sql = "SELECT * FROM `Shifts` WHERE (`SID` = '". $_GET["SID"]. "' )"; $sql = "SELECT * FROM `Shifts` WHERE (`SID` = '" . $_GET["SID"] . "' )";
$Erg = mysql_query($sql, $con); $Erg = mysql_query($sql, $con);
echo "Schicht ab&auml;ndern: <br />\n"; echo "Schicht ab&auml;ndern: <br />\n";
// Anzeige Allgemeiner schaischt daten // Anzeige Allgemeiner schaischt daten
echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >"; echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >";
echo "<table>\n"; echo "<table>\n";
echo " <tr><td>Schichtbeginn</td>". echo " <tr><td>Schichtbeginn</td>" .
"<td><input value=\"". mysql_result($Erg, 0, "DateS"). "<td><input value=\"" . mysql_result($Erg, 0, "DateS") .
"\" type=\"text\" size=\"40\" name=\"eDate\"></td></tr>\n"; "\" type=\"text\" size=\"40\" name=\"eDate\"></td></tr>\n";
echo " <tr><td>Raum</td><td>\n<select name=\"eRID\">\n"; echo " <tr><td>Raum</td><td>\n<select name=\"eRID\">\n";
@ -99,43 +93,40 @@ case 'change':
$Erg2 = mysql_query($sql2, $con); $Erg2 = mysql_query($sql2, $con);
$rowcount = mysql_num_rows($Erg2); $rowcount = mysql_num_rows($Erg2);
$FromPentabarf = "N"; $FromPentabarf = "N";
for( $i = 0; $i < $rowcount; $i++ ) for ($i = 0; $i < $rowcount; $i++) {
{ $RID = mysql_result($Erg2, $i, "RID");
$RID=mysql_result($Erg2, $i, "RID"); echo " <option value=\"" . $RID . "\"";
echo " <option value=\"".$RID."\""; if ($RID == mysql_result($Erg, 0, "RID")) {
if( $RID == mysql_result($Erg, 0, "RID") )
{
echo " selected"; echo " selected";
$FromPentabarf = mysql_result($Erg2, $i, "FromPentabarf"); $FromPentabarf = mysql_result($Erg2, $i, "FromPentabarf");
} }
echo ">".mysql_result($Erg2, $i, "Name")."</option>\n"; echo ">" . mysql_result($Erg2, $i, "Name") . "</option>\n";
} }
echo " </select>\n</td></tr>\n"; echo " </select>\n</td></tr>\n";
echo " <tr><td>Dauer in h</td>". echo " <tr><td>Dauer in h</td>" .
"<td><input value=\"". mysql_result($Erg, 0, "Len"). "<td><input value=\"" . mysql_result($Erg, 0, "Len") .
"\" type=\"text\" size=\"40\" name=\"eDauer\"></td></tr>\n"; "\" type=\"text\" size=\"40\" name=\"eDauer\"></td></tr>\n";
echo " <tr><td>Beschreibung</td>". echo " <tr><td>Beschreibung</td>" .
"<td><input value=\"". mysql_result($Erg, 0, "Man"). "<td><input value=\"" . mysql_result($Erg, 0, "Man") .
"\" type=\"text\" size=\"40\" name=\"eName\"></td></tr>\n"; "\" type=\"text\" size=\"40\" name=\"eName\"></td></tr>\n";
echo " <tr><td>URL</td>". echo " <tr><td>URL</td>" .
"<td><input value=\"". mysql_result($Erg, 0, "URL"). "<td><input value=\"" . mysql_result($Erg, 0, "URL") .
"\" type=\"text\" size=\"40\" name=\"eURL\"></td></tr>\n"; "\" type=\"text\" size=\"40\" name=\"eURL\"></td></tr>\n";
if( $FromPentabarf == "Y") if ($FromPentabarf == "Y") {
{ echo " <tr><td></td>" .
echo " <tr><td></td>".
"<td><h1>!!! Imported from Pentabarf !!!</h1></td></tr>\n"; "<td><h1>!!! Imported from Pentabarf !!!</h1></td></tr>\n";
} }
echo "</table>\n"; echo "</table>\n";
echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n"; echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n"; echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>\n\n"; echo "</form>\n\n";
// Löschen // L<>schen
echo "<form action=\"". $_SERVER['SCRIPT_NAME']. "\" method=\"GET\" >\n"; echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n";
echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n"; echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n"; echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n";
echo "</form>\n\n"; echo "</form>\n\n";
@ -146,43 +137,41 @@ case 'change':
echo "<br /><hr>\n\n\n\n"; echo "<br /><hr>\n\n\n\n";
//Freie Engelschichten //Freie Engelschichten
$sql3 = "SELECT `TID` FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND `UID`='0'"; $sql3 = "SELECT `TID` FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND `UID`='0'";
$Erg3 = mysql_query($sql3, $con); $Erg3 = mysql_query($sql3, $con);
$rowcount = mysql_num_rows($Erg3); $rowcount = mysql_num_rows($Erg3);
echo "Folgende Engelschichten sind noch nicht vergeben.\n"; echo "Folgende Engelschichten sind noch nicht vergeben.\n";
echo "Und koenen, wenn diese nSchicht nicht benoetigt wird geloet werden:<br />\n"; echo "Und koenen, wenn diese nSchicht nicht benoetigt wird geloet werden:<br />\n";
for ($j=0; $j < $rowcount; $j++) for ($j = 0; $j < $rowcount; $j++) {
{
$TID = mysql_result($Erg3, $j, 0); $TID = mysql_result($Erg3, $j, 0);
echo "<a href=\"./schichtplan.php?action=engelshiftdel&SID=". $_GET["SID"]. "&TID=$TID\">". echo "<a href=\"./schichtplan.php?action=engelshiftdel&SID=" . $_GET["SID"] . "&TID=$TID\">" .
"freie ". TID2Type($TID). Get_Text("inc_schicht_Engel"). "schicht loeschen</a><br />\n"; "freie " . TID2Type($TID) . Get_Text("inc_schicht_Engel") . "schicht loeschen</a><br />\n";
} }
echo "<br /><hr>\n\n\n\n"; echo "<br /><hr>\n\n\n\n";
//Ausgabe eingetragener schischten //Ausgabe eingetragener schischten
$sql3 = "SELECT * FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND NOT `UID`='0'"; $sql3 = "SELECT * FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND NOT `UID`='0'";
$Erg3 = mysql_query($sql3, $con); $Erg3 = mysql_query($sql3, $con);
$rowcount = mysql_num_rows($Erg3); $rowcount = mysql_num_rows($Erg3);
echo "Folgende Engel Sind fuer die Schicht eingetargen.\n"; echo "Folgende Engel Sind fuer die Schicht eingetargen.\n";
echo "Und koennen, wenn diese nicht zu Schicht erschienen sind ausgetragen werden:<br />\n"; echo "Und koennen, wenn diese nicht zu Schicht erschienen sind ausgetragen werden:<br />\n";
echo "<table border=\"1\">\n". echo "<table border=\"1\">\n" .
"<tr class=\"contenttopic\">". "<tr class=\"contenttopic\">" .
"<th>nick</th>". "<th>nick</th>" .
"<th>type</th>". "<th>type</th>" .
"<th>normal</th>". "<th>normal</th>" .
"<th>freeloader :-(</th>". "<th>freeloader :-(</th>" .
"</tr>"; "</tr>";
for ($j=0; $j < $rowcount; $j++) for ($j = 0; $j < $rowcount; $j++) {
{ $userUID = mysql_result($Erg3, $j, "UID");
$userUID=mysql_result($Erg3, $j, "UID");
echo "\t<tr>\n"; echo "\t<tr>\n";
echo "\t\t<td>". UID2Nick($userUID). "</td>\n"; echo "\t\t<td>" . UID2Nick($userUID) . "</td>\n";
echo "\t\t<td>". TID2Type(mysql_result($Erg3, $j, "TID")). Get_Text("inc_schicht_Engel"). "</td>\n"; echo "\t\t<td>" . TID2Type(mysql_result($Erg3, $j, "TID")) . Get_Text("inc_schicht_Engel") . "</td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=". $_GET["SID"]. "&UIDs=$userUID&freeloader=0\">###-austragen-###</a></td>\n"; echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=" . $_GET["SID"] . "&UIDs=$userUID&freeloader=0\">###-austragen-###</a></td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=". $_GET["SID"]. "&UIDs=$userUID&freeloader=1\">###-austragen-freeloader-###</a></td>\n"; echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=" . $_GET["SID"] . "&UIDs=$userUID&freeloader=1\">###-austragen-freeloader-###</a></td>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
} // FOR } // FOR
@ -190,54 +179,50 @@ case 'change':
//Nachtragen von Engeln //Nachtragen von Engeln
echo "Hat ein anderer Engel die Schicht &uuml;bernommen, trage ihn bitte ein:"; echo "Hat ein anderer Engel die Schicht &uuml;bernommen, trage ihn bitte ein:";
echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n"; echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n";
echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n"; echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"engeladd\">\n"; echo "<input type=\"hidden\" name=\"action\" value=\"engeladd\">\n";
// Listet alle Nicks auf // Listet alle Nicks auf
echo "<select name=\"UIDs\">\n"; echo "<select name=\"UIDs\">\n";
if( $FromPentabarf != "Y") if ($FromPentabarf != "Y") {
{
echo "\t<option value=\"0\">--neu--</option>\n"; echo "\t<option value=\"0\">--neu--</option>\n";
} }
$usql="SELECT * FROM `User` ORDER BY `Nick`"; $usql = "SELECT * FROM `User` ORDER BY `Nick`";
$uErg = mysql_query($usql, $con); $uErg = mysql_query($usql, $con);
$urowcount = mysql_num_rows($uErg); $urowcount = mysql_num_rows($uErg);
for ($k=0; $k<$urowcount; $k++) for ($k = 0; $k < $urowcount; $k++) {
{ echo "\t<option value=\"" . mysql_result($uErg, $k, "UID") . "\">" .
echo "\t<option value=\"".mysql_result($uErg, $k, "UID")."\">". mysql_result($uErg, $k, "Nick") .
mysql_result($uErg, $k, "Nick").
"</option>\n"; "</option>\n";
} }
echo "</select>\n"; echo "</select>\n";
echo " als \n"; echo " als \n";
// holt eine liste der benötigten Engel zu dieser Schischt // holt eine liste der ben<65>tigten Engel zu dieser Schischt
$sql3 = "SELECT Count(`TID`) AS `CTID`, `TID` FROM `ShiftEntry` "; $sql3 = "SELECT Count(`TID`) AS `CTID`, `TID` FROM `ShiftEntry` ";
$sql3.= "WHERE (`SID`='". $_GET["SID"]. "' AND `UID`='0') "; $sql3 .= "WHERE (`SID`='" . $_GET["SID"] . "' AND `UID`='0') ";
$sql3.= "GROUP BY `SID`, `TID`, `UID` "; $sql3 .= "GROUP BY `SID`, `TID`, `UID` ";
$Erg3 = mysql_query($sql3, $con); $Erg3 = mysql_query($sql3, $con);
$i=-1; $i = -1;
while( ++$i < mysql_num_rows($Erg3)) while (++ $i < mysql_num_rows($Erg3)) {
{
$EngelNeed[mysql_result($Erg3, $i, "TID")] = mysql_result($Erg3, $i, "CTID"); $EngelNeed[mysql_result($Erg3, $i, "TID")] = mysql_result($Erg3, $i, "CTID");
} }
// Gibt dei möglich Engeltypen aus und zeigt wíefiel noch beötigt werden // Gibt dei m<>glich Engeltypen aus und zeigt w<>efiel noch be<62>tigt werden
echo "<select name=\"TID\">\n"; echo "<select name=\"TID\">\n";
$SQL2 = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`"; $SQL2 = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`";
$Erg2 = mysql_query($SQL2, $con); $Erg2 = mysql_query($SQL2, $con);
for ($l = 0; $l < mysql_num_rows($Erg2); $l++) for ($l = 0; $l < mysql_num_rows($Erg2); $l++) {
{
$EngelTID = mysql_result($Erg2, $l, "TID"); $EngelTID = mysql_result($Erg2, $l, "TID");
echo "<option value=\"$EngelTID\">"; echo "<option value=\"$EngelTID\">";
echo mysql_result($Erg2, $l, "Name"). Get_Text("inc_schicht_engel"); echo mysql_result($Erg2, $l, "Name") . Get_Text("inc_schicht_engel");
if( !isset($EngelNeed[$EngelTID]) ) if (!isset ($EngelNeed[$EngelTID]))
echo " (0)"; echo " (0)";
else else
echo " (".$EngelNeed[$EngelTID].")"; echo " (" . $EngelNeed[$EngelTID] . ")";
echo "</option>\n"; echo "</option>\n";
} }
echo "</select>\n"; echo "</select>\n";
@ -251,47 +236,37 @@ case 'change':
} // IF ISSET( } // IF ISSET(
break; break;
case 'engeladd': case 'engeladd' :
if( $_GET["UIDs"]>0) if ($_GET["UIDs"] > 0) {
{
$SQL = "SELECT * FROM `ShiftEntry` ". $SQL = "SELECT * FROM `ShiftEntry` " .
"WHERE (`SID`='". $_GET["SID"]. "' AND `TID`='". $_GET["TID"]. "' AND `UID`='0')"; "WHERE (`SID`='" . $_GET["SID"] . "' AND `TID`='" . $_GET["TID"] . "' AND `UID`='0')";
$ERG = mysql_query($SQL, $con); $ERG = mysql_query($SQL, $con);
if( mysql_num_rows($ERG) != 0 ) if (mysql_num_rows($ERG) != 0) {
{ $chSQL = "UPDATE `ShiftEntry` SET " .
$chSQL = "UPDATE `ShiftEntry` SET ". "`UID`='" . $_GET["UIDs"] . "', `Comment`='shift added by " . $_SESSION['Nick'] . "' " .
"`UID`='". $_GET["UIDs"]. "', `Comment`='shift added by ".$_SESSION['Nick']."' ". "WHERE (`SID`='" . $_GET["SID"] . "' AND " .
"WHERE (`SID`='". $_GET["SID"]. "' AND ". "`TID`='" . $_GET["TID"] . "' AND `UID`='0' ) LIMIT 1";
"`TID`='". $_GET["TID"]. "' AND `UID`='0' ) LIMIT 1"; } else {
} $chSQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (" .
else "'" . $_GET["SID"] . "', '" . $_GET["TID"] . "', " .
{ "'" . $_GET["UIDs"] . "', 'shift added by " . $_SESSION['Nick'] . "')";
$chSQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (".
"'". $_GET["SID"]. "', '". $_GET["TID"]. "', ".
"'". $_GET["UIDs"]. "', 'shift added by ".$_SESSION['Nick']."')";
} }
echo "Es wird folgende Schicht zus&auml;tzlich eingetragen:<br />\n"; echo "Es wird folgende Schicht zus&auml;tzlich eingetragen:<br />\n";
echo "Engel: ".UID2Nick($_GET["UIDs"])."<br />\n"; echo "Engel: " . UID2Nick($_GET["UIDs"]) . "<br />\n";
echo "Bemerkung: Schicht eingetragen durch Erzengel ".$_SESSION['Nick']."<br />\n<br />\n"; echo "Bemerkung: Schicht eingetragen durch Erzengel " . $_SESSION['Nick'] . "<br />\n<br />\n";
} } else {
else echo "Es wird folgende Schicht wurde " . $_GET["eAnzahlNew"] . "x zus&auml;tzlich eingetragen:<br />\n";
{ for ($i = 0; $i < $_GET["eAnzahlNew"]; $i++) {
echo "Es wird folgende Schicht wurde ". $_GET["eAnzahlNew"]. "x zus&auml;tzlich eingetragen:<br />\n";
for( $i=0; $i<$_GET["eAnzahlNew"]; $i++)
{
echo "$i. <br />\n"; echo "$i. <br />\n";
$SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES ("; $SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (";
$SQL .= "'". $_GET["SID"]. "', '". $_GET["TID"]. "', '0', NULL)"; $SQL .= "'" . $_GET["SID"] . "', '" . $_GET["TID"] . "', '0', NULL)";
$ERG = mysql_query($SQL, $con); $ERG = mysql_query($SQL, $con);
if( $debug ) if ($debug)
echo "DEBUG SQL: $SQL<br />\n"; echo "DEBUG SQL: $SQL<br />\n";
if ($ERG == 1) if ($ERG == 1) {
{
echo "&Auml;nderung wurde gesichert...<br />"; echo "&Auml;nderung wurde gesichert...<br />";
} } else {
else
{
echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />"; echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />";
echo mysql_error($con); echo mysql_error($con);
} }
@ -300,96 +275,88 @@ case 'engeladd':
} }
break; break;
case 'engeldel': case 'engeldel' :
$chSQL = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`= 'NULL' WHERE (`SID`='". $_GET["SID"]. $chSQL = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`= 'NULL' WHERE (`SID`='" . $_GET["SID"] .
"' AND `UID`='". $_GET["UIDs"]. "') LIMIT 1"; "' AND `UID`='" . $_GET["UIDs"] . "') LIMIT 1";
if( isset($_GET["freeloader"]) && $_GET["freeloader"]==1) if (isset ($_GET["freeloader"]) && $_GET["freeloader"] == 1) {
{ $sql = "SELECT * FROM `Shifts` WHERE (`SID` = '" . $_GET["SID"] . "' )";
$sql = "SELECT * FROM `Shifts` WHERE (`SID` = '". $_GET["SID"]. "' )";
$Erg = mysql_query($sql, $con); $Erg = mysql_query($sql, $con);
if( mysql_num_rows( $Erg) == 1) if (mysql_num_rows($Erg) == 1) {
{
$UID = $_GET["UIDs"]; $UID = $_GET["UIDs"];
$Length = mysql_result($Erg, 0, "Len"); $Length = mysql_result($Erg, 0, "Len");
$Comment = "Start: ". mysql_result($Erg, 0, "DateS"). "; ". $Comment = "Start: " . mysql_result($Erg, 0, "DateS") . "; " .
"Beschreibung: ". mysql_result($Erg, 0, "Man"). "; ". "Beschreibung: " . mysql_result($Erg, 0, "Man") . "; " .
"Removed by ". $_SESSION['Nick']; "Removed by " . $_SESSION['Nick'];
$ch2SQL = $ch2SQL = "INSERT INTO `ShiftFreeloader` (`Remove_Time`, `UID`, `Length`, `Comment`) " .
"INSERT INTO `ShiftFreeloader` (`Remove_Time`, `UID`, `Length`, `Comment`) ".
"VALUES ( CURRENT_TIMESTAMP, '$UID', '$Length', '$Comment');"; "VALUES ( CURRENT_TIMESTAMP, '$UID', '$Length', '$Comment');";
} }
} }
break; break;
case 'engelshiftdel': case 'engelshiftdel' :
$chSQL = "DELETE FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND `TID`='". $chSQL = "DELETE FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND `TID`='" .
$_GET["TID"]. "' AND `UID`='0' LIMIT 1"; $_GET["TID"] . "' AND `UID`='0' LIMIT 1";
break; break;
case 'changesave': case 'changesave' :
$query = mysql_query("SELECT DATE_ADD('". $_GET["eDate"]. "', INTERVAL '+0 ". $_GET["eDauer"]. "' DAY_HOUR)", $con); $query = mysql_query("SELECT DATE_ADD('" . $_GET["eDate"] . "', INTERVAL '+0 " . $_GET["eDauer"] . "' DAY_HOUR)", $con);
$enddate = mysql_fetch_row($query); $enddate = mysql_fetch_row($query);
$chSQL = "UPDATE `Shifts` SET ". $chSQL = "UPDATE `Shifts` SET " .
"`DateS`='". $_GET["eDate"]. "', ". "`DateS`='" . $_GET["eDate"] . "', " .
"`DateE`='".$enddate[0]. "', ". "`DateE`='" . $enddate[0] . "', " .
"`RID`='". $_GET["eRID"]. "', ". "`RID`='" . $_GET["eRID"] . "', " .
"`Len`='". $_GET["eDauer"]. "', ". "`Len`='" . $_GET["eDauer"] . "', " .
"`Man`='". $_GET["eName"]. "', ". "`Man`='" . $_GET["eName"] . "', " .
"`URL`='". $_GET["eURL"]. "' ". "`URL`='" . $_GET["eURL"] . "' " .
"WHERE `SID`='". $_GET["SID"]. "'"; "WHERE `SID`='" . $_GET["SID"] . "'";
SetHeaderGo2Back(); SetHeaderGo2Back();
break; break;
case 'delete': case 'delete' :
$chSQL = "DELETE FROM `Shifts` WHERE `SID`='". $_GET["SID"]. "' LIMIT 1"; $chSQL = "DELETE FROM `Shifts` WHERE `SID`='" . $_GET["SID"] . "' LIMIT 1";
$ch2SQL = "DELETE FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "'"; $ch2SQL = "DELETE FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "'";
SetHeaderGo2Back(); SetHeaderGo2Back();
break; break;
case 'deleteShifs': case 'deleteShifs' :
foreach ($_GET as $k => $v) foreach ($_GET as $k => $v)
if( strpos( " ".$k, "SID") == 1) if (strpos(" " . $k, "SID") == 1) {
{ echo "Shifts $v wird gel<65>scht...";
echo "Shifts $v wird gelöscht..."; executeSQL("DELETE FROM `Shifts` WHERE `SID`='$v' LIMIT 1");
executeSQL( "DELETE FROM `Shifts` WHERE `SID`='$v' LIMIT 1");
echo "<br />\n"; echo "<br />\n";
echo "ShiftEntry $v wird gelöscht..."; echo "ShiftEntry $v wird gel<65>scht...";
executeSQL( "DELETE FROM `ShiftEntry` WHERE `SID`='$v'"); executeSQL("DELETE FROM `ShiftEntry` WHERE `SID`='$v'");
echo "<br /><br />\n"; echo "<br /><br />\n";
} }
break; break;
} // end switch } // end switch
if (IsSet($chSQL)){ if (IsSet ($chSQL)) {
// echo $chSQL; // echo $chSQL;
// hier muesste das SQL ausgefuehrt werden... // hier muesste das SQL ausgefuehrt werden...
$Erg = mysql_query($chSQL, $con); $Erg = mysql_query($chSQL, $con);
if( $debug ) if ($debug)
echo "DEBUG SQL: $chSQL<br />\n"; echo "DEBUG SQL: $chSQL<br />\n";
if ($Erg == 1) if ($Erg == 1) {
{
echo "&Auml;nderung wurde gesichert...<br />"; echo "&Auml;nderung wurde gesichert...<br />";
if( $debug ) if ($debug)
echo "DEBUG: ergebniss". $Erg. "<br />\n"; echo "DEBUG: ergebniss" . $Erg . "<br />\n";
if (IsSet($ch2SQL)) if (IsSet ($ch2SQL)) {
{
$Erg = mysql_query($ch2SQL, $con); $Erg = mysql_query($ch2SQL, $con);
if( $debug ) if ($debug)
echo "DEBUG SQL: $ch2SQL<br />\n"; echo "DEBUG SQL: $ch2SQL<br />\n";
if( $debug ) echo "DEBUG: ergebniss". $Erg. "<br />\n"; if ($debug)
} echo "DEBUG: ergebniss" . $Erg . "<br />\n";
} }
else } else {
{
echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />"; echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />";
echo mysql_error($con); echo mysql_error($con);
} }
} // Ende Update } // Ende Update
} }
include ("includes/footer.php");
include ("../../../camp2011/includes/footer.php");
?> ?>

108
www-ssl/admin/schichtplan_druck.php
Unescape Escape View File

@ -1,28 +1,26 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Himmel"; $title = "Himmel";
$header = "Schichtpl&auml;ne"; $header = "Schichtpl&auml;ne";
$submenus = 1; $submenus = 1;
if (!IsSet ($_GET["action"])) {
include ("includes/header.php");
include ("includes/funktionen.php");
include ("includes/funktion_schichtplan_aray.php");
include ("includes/funktion_schichtplan.php");
if (!IsSet($_GET["action"])) echo "Hallo " . $_SESSION['Nick'] . "<br />\n" .
{ "auf dieser Seite kannst du dir den Schichtplan in einer Druckansicht generieren lassen. W&auml;hle hierf&uuml;r ein Datum und den Raum:\n" .
include ("../../../camp2011/includes/header.php");
include ("../../../camp2011/includes/funktionen.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php");
include ("../../../camp2011/includes/funktion_schichtplan.php");
echo "Hallo ". $_SESSION['Nick']. "<br />\n".
"auf dieser Seite kannst du dir den Schichtplan in einer Druckansicht generieren lassen. W&auml;hle hierf&uuml;r ein Datum und den Raum:\n".
"<br />\n"; "<br />\n";
foreach( $VeranstaltungsTage as $k => $v) foreach ($VeranstaltungsTage as $k => $v) {
{
$res = mysql_query("SELECT Name, RID FROM `Room` WHERE `show`!='N' ORDER BY `Name`;",$con); $res = mysql_query("SELECT Name, RID FROM `Room` WHERE `show`!='N' ORDER BY `Name`;", $con);
for ($i = 0; $i < mysql_num_rows($res); $i++) for ($i = 0; $i < mysql_num_rows($res); $i++) {
{
$Tag = $VeranstaltungsTage[$k]; $Tag = $VeranstaltungsTage[$k];
$RID = mysql_result($res,$i,"RID"); $RID = mysql_result($res, $i, "RID");
$Rname = mysql_result($res, $i, "Name"); $Rname = mysql_result($res, $i, "Name");
echo "\t<a href=\"./schichtplan_druck.php?action=1&Raum=$RID&ausdatum=$Tag\" target=\"_blank\">$Tag $Rname</a><br />\n"; echo "\t<a href=\"./schichtplan_druck.php?action=1&Raum=$RID&ausdatum=$Tag\" target=\"_blank\">$Tag $Rname</a><br />\n";
} }
@ -30,25 +28,23 @@ if (!IsSet($_GET["action"]))
} }
echo "<br /><br />"; echo "<br /><br />";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
} } else //#################################################################
else //#################################################################
{
if (IsSet($_GET["Raum"]) AND IsSet($_GET["ausdatum"]))
{ {
if (IsSet ($_GET["Raum"]) AND IsSet ($_GET["ausdatum"])) {
$Raum = $_GET["Raum"]; $Raum = $_GET["Raum"];
$ausdatum = $_GET["ausdatum"]; $ausdatum = $_GET["ausdatum"];
include ("../../../camp2011/includes/config_db.php"); include ("config/config_db.php");
include ("../../../camp2011/includes/config.php"); include ("config/config.php");
include ("../../../camp2011/includes/secure.php"); include ("includes/secure.php");
//var wird nur gesetzt immer edit auszublenden, achtung sesion darf nicht gestart sein !!! //var wird nur gesetzt immer edit auszublenden, achtung sesion darf nicht gestart sein !!!
$_SESSION['CVS'][ "admin/schichtplan.php" ] = "N"; $_SESSION['CVS']["admin/schichtplan.php"] = "N";
include ("../../../camp2011/includes/funktion_lang.php"); include ("includes/funktion_lang.php");
include ("../../../camp2011/includes/funktion_schichtplan.php"); include ("includes/funktion_schichtplan.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php"); include ("includes/funktion_schichtplan_aray.php");
include ("../../../camp2011/includes/funktion_user.php"); include ("includes/funktion_user.php");
?> ?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html> <html>
@ -81,7 +77,7 @@ else //#################################################################
<table border="2" width="650" class="border" cellpadding="2" cellspacing="1"> <table border="2" width="650" class="border" cellpadding="2" cellspacing="1">
<!--Ausgabe Spalten überschrift--> <!--Ausgabe Spalten <EFBFBD>berschrift-->
<tr class="contenttopic"> <tr class="contenttopic">
<th bgcolor="#E0E0E0">Uhrzeit</th> <th bgcolor="#E0E0E0">Uhrzeit</th>
@ -89,41 +85,35 @@ else //#################################################################
</tr> </tr>
<?php <?php
//Zeit Ausgeben
for( $i = 0; $i < 24; $i++ ) //Zeit Ausgeben
for( $j = 0; $j < $GlobalZeileProStunde; $j++) for ($i = 0; $i < 24; $i++)
{ for ($j = 0; $j < $GlobalZeileProStunde; $j++) {
$Spalten[$i * $GlobalZeileProStunde + $j] = $Spalten[$i * $GlobalZeileProStunde + $j] = "\t<tr class=\"content\">\n";
"\t<tr class=\"content\">\n"; if ($j == 0) {
if( $j==0) $Spalten[$i * $GlobalZeileProStunde + $j] .= "\t\t<td rowspan=\"$GlobalZeileProStunde\">";
{ if ($i < 10)
$Spalten[$i * $GlobalZeileProStunde + $j].= $Spalten[$i * $GlobalZeileProStunde + $j] .= "0";
"\t\t<td rowspan=\"$GlobalZeileProStunde\">"; $Spalten[$i * $GlobalZeileProStunde + $j] .= "$i:";
if( $i < 10 ) if ((($j * 60) / $GlobalZeileProStunde) < 10)
$Spalten[$i * $GlobalZeileProStunde + $j].= "0"; $Spalten[$i * $GlobalZeileProStunde + $j] .= "0";
$Spalten[$i * $GlobalZeileProStunde + $j].= "$i:"; $Spalten[$i * $GlobalZeileProStunde + $j] .= (($j * 60) / $GlobalZeileProStunde) . "</td>\n";
if( ( ($j*60) / $GlobalZeileProStunde) < 10 )
$Spalten[$i * $GlobalZeileProStunde + $j].= "0";
$Spalten[$i * $GlobalZeileProStunde + $j].=
( ($j*60) / $GlobalZeileProStunde). "</td>\n";
} }
} }
CreateRoomShifts($Raum);
CreateRoomShifts( $Raum ); // Ausgabe Zeilen
for ($i = 0; $i < (24 * $GlobalZeileProStunde); $i++)
echo $Spalten[$i];
// Ende
echo "</table>\n";
// Ausgabe Zeilen echo "Stand: " . gmdate("Y-m-d H:i") . "\n";
for ($i = 0; $i < (24 * $GlobalZeileProStunde); $i++) echo $Spalten[$i]; echo "</body>\n";
// Ende echo "</html>\n";
echo "</table>\n";
echo "Stand: ". gmdate("Y-m-d H:i"). "\n"; } //isset($Vars)
echo "</body>\n";
echo "</html>\n";
} //isset($Vars)
} //isset($Action) } //isset($Action)
?> ?>

300
www-ssl/admin/shiftadd.php
Unescape Escape View File

@ -1,38 +1,37 @@
<?php <?php
$title = "Schicht Hinzufügen"; require_once ('../bootstrap.php');
$title = "Schicht Hinzufügen";
$header = "Neue Schichten erfassen"; $header = "Neue Schichten erfassen";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
$Time = time()+3600+3600; $Time = time() + 3600 + 3600;
echo "Hallo ".$_SESSION['Nick'].",<br />\n"; echo "Hallo " . $_SESSION['Nick'] . ",<br />\n";
// erstellt ein Array der Reume // erstellt ein Array der Reume
$sql = "SELECT `RID`, `Name` FROM `Room` ORDER BY `Name`"; $sql = "SELECT `RID`, `Name` FROM `Room` ORDER BY `Name`";
$Erg = mysql_query($sql, $con); $Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg); $rowcount = mysql_num_rows($Erg);
for ($i=0; $i<$rowcount; $i++) for ($i = 0; $i < $rowcount; $i++) {
{
$Room[$i]["RID"] = mysql_result($Erg, $i, "RID"); $Room[$i]["RID"] = mysql_result($Erg, $i, "RID");
$Room[$i]["Name"] = mysql_result($Erg, $i, "Name"); $Room[$i]["Name"] = mysql_result($Erg, $i, "Name");
} }
// erstellt ein Aray der Engeltypen // erstellt ein Aray der Engeltypen
$sql = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`"; $sql = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`";
$Erg = mysql_query($sql, $con); $Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg); $rowcount = mysql_num_rows($Erg);
for ($i=0; $i<$rowcount; $i++) for ($i = 0; $i < $rowcount; $i++) {
{
$EngelType[$i]["TID"] = mysql_result($Erg, $i, "TID"); $EngelType[$i]["TID"] = mysql_result($Erg, $i, "TID");
$EngelType[$i]["Name"] = mysql_result($Erg, $i, "Name").Get_Text("inc_schicht_engel"); $EngelType[$i]["Name"] = mysql_result($Erg, $i, "Name") . Get_Text("inc_schicht_engel");
} }
// sesion mit stanadrt werten befüllen // sesion mit stanadrt werten bef<65>llen
if( !isset( $_SESSION['shiftadd.php']['SchichtName'])) if (!isset ($_SESSION['shiftadd.php']['SchichtName'])) {
{
$_SESSION['shiftadd.php']['SchichtName'] = "--???--"; $_SESSION['shiftadd.php']['SchichtName'] = "--???--";
$_SESSION['shiftadd.php']['RID'] = ""; $_SESSION['shiftadd.php']['RID'] = "";
$_SESSION['shiftadd.php']['MonthJahr'] = gmdate("Y-m", $Time); $_SESSION['shiftadd.php']['MonthJahr'] = gmdate("Y-m", $Time);
@ -45,26 +44,22 @@ if( !isset( $_SESSION['shiftadd.php']['SchichtName']))
$_SESSION['shiftadd.php']['NachtON'] = "OFF"; $_SESSION['shiftadd.php']['NachtON'] = "OFF";
$_SESSION['shiftadd.php']['len_night'] = "00-04-08-10-12-14-16-18-20-22-24"; $_SESSION['shiftadd.php']['len_night'] = "00-04-08-10-12-14-16-18-20-22-24";
} }
// wenn werte übergeben in sesion eintragen // wenn werte <EFBFBD>bergeben in sesion eintragen
if( !isset($_GET["NachtON"])) if (!isset ($_GET["NachtON"]))
$_GET["NachtON"] = "OFF"; $_GET["NachtON"] = "OFF";
if( !isset($_GET["MoreThenOne"])) if (!isset ($_GET["MoreThenOne"]))
$_GET["MoreThenOne"] = "OFF"; $_GET["MoreThenOne"] = "OFF";
if( isset( $_GET["SchichtName"])) if (isset ($_GET["SchichtName"])) {
{ foreach ($_GET as $k => $v) {
foreach ($_GET as $k => $v)
{
$_SESSION['shiftadd.php'][$k] = $v; $_SESSION['shiftadd.php'][$k] = $v;
} }
} }
if (!IsSet ($_GET["action"]))
if (!IsSet($_GET["action"]))
$_GET["action"] = "new"; $_GET["action"] = "new";
switch( $_GET["action"]) switch ($_GET["action"]) {
{ case 'new' :
case 'new':
?> ?>
Hier kannst du neue Schichten eintragen. Dazu musst du den Anfang und das Ende der Schichten eintragen. Hier kannst du neue Schichten eintragen. Dazu musst du den Anfang und das Ende der Schichten eintragen.
&Uuml;ber die L&auml;nge der Schichten errechnet sich dadurch die Anzahl dieser. Dadurch k&ouml;nnen gleich &Uuml;ber die L&auml;nge der Schichten errechnet sich dadurch die Anzahl dieser. Dadurch k&ouml;nnen gleich
@ -80,14 +75,15 @@ mehrere Schichten auf einmal erfasst werden:
<td align="right">Ort:</td> <td align="right">Ort:</td>
<td><select name="RID"> <td><select name="RID">
<?php <?php
foreach ($Room As $RTemp)
{
echo "\t<option value=\"". $RTemp["RID"]. "\""; foreach ($Room As $RTemp) {
if( $RTemp["RID"] == $_SESSION["shiftadd.php"]["RID"]) echo "\t<option value=\"" . $RTemp["RID"] . "\"";
if ($RTemp["RID"] == $_SESSION["shiftadd.php"]["RID"])
echo " SELECTED"; echo " SELECTED";
echo ">". $RTemp["Name"]. "</option>\n"; echo ">" . $RTemp["Name"] . "</option>\n";
} }
?> ?>
</select></td> </select></td>
</tr> </tr>
@ -104,9 +100,11 @@ mehrere Schichten auf einmal erfasst werden:
<tr> <tr>
<td align="right">More then One</td> <td align="right">More then One</td>
<td><input type="checkbox" name="MoreThenOne" value="ON" <?php <td><input type="checkbox" name="MoreThenOne" value="ON" <?php
if( $_SESSION["shiftadd.php"]["MoreThenOne"]=="ON")
if ($_SESSION["shiftadd.php"]["MoreThenOne"] == "ON")
echo " CHECKED"; echo " CHECKED";
?>></td> ?>></td>
</tr> </tr>
<tr> <tr>
<td align="right">End:</td> <td align="right">End:</td>
@ -120,9 +118,11 @@ mehrere Schichten auf einmal erfasst werden:
<tr> <tr>
<td align="right">Sonderschichten ein:</td> <td align="right">Sonderschichten ein:</td>
<td><input type="checkbox" name="NachtON" value="ON" <?php <td><input type="checkbox" name="NachtON" value="ON" <?php
if($_SESSION["shiftadd.php"]["NachtON"]=="ON")
if ($_SESSION["shiftadd.php"]["NachtON"] == "ON")
echo " CHECKED"; echo " CHECKED";
?>></td> ?>></td>
</tr> </tr>
<tr> <tr>
<td align="right">Sonder in h (Time;Time):</td> <td align="right">Sonder in h (Time;Time):</td>
@ -131,12 +131,13 @@ mehrere Schichten auf einmal erfasst werden:
<tr><td><u>Anzahl Engel je Type:</u></td></tr> <tr><td><u>Anzahl Engel je Type:</u></td></tr>
<?php <?php
foreach ($EngelType As $TTemp)
{
echo " <tr><td align=\"right\">". $TTemp["Name"]. ":</td>\n"; foreach ($EngelType As $TTemp) {
echo " <td><input type=\"text\" name=\"EngelType". $TTemp["TID"]. "\" size=\"5\" value=\""; echo " <tr><td align=\"right\">" . $TTemp["Name"] . ":</td>\n";
if( isset($_SESSION["shiftadd.php"][ "EngelType". $TTemp["TID"] ])) echo " <td><input type=\"text\" name=\"EngelType" . $TTemp["TID"] . "\" size=\"5\" value=\"";
echo $_SESSION["shiftadd.php"][ "EngelType". $TTemp["TID"] ]; if (isset ($_SESSION["shiftadd.php"]["EngelType" . $TTemp["TID"]]))
echo $_SESSION["shiftadd.php"]["EngelType" . $TTemp["TID"]];
else else
echo "0"; echo "0";
echo "\"></td>\n"; echo "\"></td>\n";
@ -150,22 +151,21 @@ mehrere Schichten auf einmal erfasst werden:
</form> </form>
<?php <?php
break; // Ende new break; // Ende new
case 'newsave': case 'newsave' :
if (isset($_GET["SDatum"]) && ($_GET["len"] > 0)) if (isset ($_GET["SDatum"]) && ($_GET["len"] > 0)) {
{
$lenOrg = $_GET["len"]; $lenOrg = $_GET["len"];
if( $_GET["NachtON"] == "ON" ) if ($_GET["NachtON"] == "ON") {
{ $lenArrayDummy = explode("-", $_GET["len_night"]);
$lenArrayDummy = explode( "-", $_GET["len_night"]); foreach ($lenArrayDummy as $Temp) {
foreach ( $lenArrayDummy as $Temp ) if (isset ($Temp2))
{ $lenArray[intval($Temp2)] = intval($Temp) - intval($Temp2);
if( isset($Temp2) )
$lenArray[intval($Temp2)] = intval($Temp)-intval($Temp2);
$Temp2 = $Temp; $Temp2 = $Temp;
}//foreach } //foreach
}//IF( $NachtON == "ON" ) } //IF( $NachtON == "ON" )
echo "<table border=\"1\">\n"; echo "<table border=\"1\">\n";
echo "<tr>\n"; echo "<tr>\n";
@ -181,66 +181,65 @@ case 'newsave':
$DateEnd = $_GET["SDatum"]; $DateEnd = $_GET["SDatum"];
$TimeEnd = intval($_GET["STime"]); $TimeEnd = intval($_GET["STime"]);
$len=0; $len = 0;
do do {
{
// define Start time // define Start time
$Date = $DateEnd; $Date = $DateEnd;
$Time = $TimeEnd; $Time = $TimeEnd;
$_DateS = $_GET["MonthJahr"]. "-". $Date. " ". $Time. ":00:00"; $_DateS = $_GET["MonthJahr"] . "-" . $Date . " " . $Time . ":00:00";
// define End time // define End time
if( $_GET["NachtON"] == "ON" ) if ($_GET["NachtON"] == "ON") {
{ if (!isset ($lenArray[$Time]))
if( !isset($lenArray[$Time])) die("Zeit $Time h nicht definiert."); die("Zeit $Time h nicht definiert.");
$_GET["len"] = $lenArray[$Time]; $_GET["len"] = $lenArray[$Time];
if( $_GET["len"]<1) die("len <1"); if ($_GET["len"] < 1)
die("len <1");
} }
$TimeEnd = $Time+ $_GET["len"]; $TimeEnd = $Time + $_GET["len"];
//Tagesüberschreitung //Tages<65>berschreitung
while( $TimeEnd >= 24 ) while ($TimeEnd >= 24) {
{
$TimeEnd -= 24; $TimeEnd -= 24;
$DateEnd += 1; $DateEnd += 1;
} }
//ist schischt zu lang dan verkürzen //ist schischt zu lang dan verk<72>rzen
if( $DateEnd > $_GET["EDatum"] || ($DateEnd == $_GET["EDatum"] && $TimeEnd >= $_GET["ETime"]) ) if ($DateEnd > $_GET["EDatum"] || ($DateEnd == $_GET["EDatum"] && $TimeEnd >= $_GET["ETime"])) {
{ $_GET["len"] -= ($DateEnd - $_GET["EDatum"]) * 24;
$_GET["len"] -= ($DateEnd- $_GET["EDatum"])*24; $_GET["len"] -= ($TimeEnd - $_GET["ETime"]); // -(-) ->> +
$_GET["len"] -= ($TimeEnd- $_GET["ETime"]); // -(-) ->> +
$DateEnd = $_GET["EDatum"]; $DateEnd = $_GET["EDatum"];
$TimeEnd = $_GET["ETime"]; $TimeEnd = $_GET["ETime"];
} }
$_DateE = $_GET["MonthJahr"]. "-". $DateEnd. " ". $TimeEnd. ":00:00"; $_DateE = $_GET["MonthJahr"] . "-" . $DateEnd . " " . $TimeEnd . ":00:00";
if( $_DateS != $_DateE ) if ($_DateS != $_DateE)
CreateNewEntry(); CreateNewEntry();
if( $_GET["MoreThenOne"]!="ON" ) break; if ($_GET["MoreThenOne"] != "ON")
if( $DateEnd >= $_GET["EDatum"] && $TimeEnd >= intval($_GET["ETime"]) ) break; break;
} while( true ); if ($DateEnd >= $_GET["EDatum"] && $TimeEnd >= intval($_GET["ETime"]))
break;
}
while (true);
echo "</table>"; echo "</table>";
if( $_GET["OnlyShow"]=="ON" ) if ($_GET["OnlyShow"] == "ON") {
{ echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\">";
echo "<form action=\"". $_SERVER['SCRIPT_NAME']. "\">"; echo "\n\t<Input type=\"hidden\" name=\"SchichtName\" value=\"" . $_GET["SchichtName"] . "\">";
echo "\n\t<Input type=\"hidden\" name=\"SchichtName\" value=\"". $_GET["SchichtName"]. "\">"; echo "\n\t<input type=\"hidden\" name=\"MonthJahr\" value=\"" . $_GET["MonthJahr"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"MonthJahr\" value=\"". $_GET["MonthJahr"]. "\">"; echo "\n\t<input type=\"hidden\" name=\"SDatum\" value=\"" . $_GET["SDatum"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"SDatum\" value=\"". $_GET["SDatum"]. "\">"; echo "\n\t<input type=\"hidden\" name=\"STime\" value=\"" . $_GET["STime"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"STime\" value=\"". $_GET["STime"]. "\">"; echo "\n\t<input type=\"hidden\" name=\"MoreThenOne\" value=\"" . $_GET["MoreThenOne"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"MoreThenOne\" value=\"". $_GET["MoreThenOne"]. "\">"; echo "\n\t<input type=\"hidden\" name=\"EDatum\" value=\"" . $_GET["EDatum"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"EDatum\" value=\"". $_GET["EDatum"]. "\">"; echo "\n\t<input type=\"hidden\" name=\"ETime\" value=\"" . $_GET["ETime"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"ETime\" value=\"". $_GET["ETime"]. "\">"; echo "\n\t<input type=\"hidden\" name=\"len\" value=\"" . $lenOrg . "\">";
echo "\n\t<input type=\"hidden\" name=\"len\" value=\"". $lenOrg. "\">"; echo "\n\t<input type=\"hidden\" name=\"RID\" value=\"" . $_GET["RID"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"RID\" value=\"". $_GET["RID"]. "\">"; echo "\n\t<input type=\"hidden\" name=\"NachtON\" value=\"" . $_GET["NachtON"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"NachtON\" value=\"". $_GET["NachtON"]. "\">"; echo "\n\t<input type=\"hidden\" name=\"len_night\" value=\"" . $_GET["len_night"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"len_night\" value=\"". $_GET["len_night"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"OnlyShow\" value=\"OFF\">"; echo "\n\t<input type=\"hidden\" name=\"OnlyShow\" value=\"OFF\">";
foreach ($EngelType As $TTemp) foreach ($EngelType As $TTemp) {
{ $Temp = "EngelType" . $TTemp["TID"];
$Temp = "EngelType".$TTemp["TID"]; echo "\n\t<input type=\"hidden\" name=\"" . $Temp . "\" value=\"" . $_GET[$Temp] . "\">";
echo "\n\t<input type=\"hidden\" name=\"". $Temp. "\" value=\"". $_GET[$Temp]. "\">";
} }
echo "\n\t<input type=\"hidden\" name=\"action\" value=\"newsave\">"; echo "\n\t<input type=\"hidden\" name=\"action\" value=\"newsave\">";
echo "\n\t<input type=\"submit\" value=\"mach mal Gabriel!\">"; echo "\n\t<input type=\"submit\" value=\"mach mal Gabriel!\">";
@ -249,19 +248,15 @@ case 'newsave':
} //IF } //IF
break; break;
case 'engeldel': case 'engeldel' :
break; break;
} // end switch } // end switch
function CreateNewEntry() {
function CreateNewEntry()
{
global $con, $_DateS, $_DateE, $EngelType, $debug; global $con, $_DateS, $_DateE, $EngelType, $debug;
foreach ($EngelType As $TTemp) foreach ($EngelType As $TTemp) {
{ $Temp = "EngelType" . $TTemp["TID"];
$Temp = "EngelType".$TTemp["TID"];
global $$Temp; global $$Temp;
} }
@ -269,81 +264,78 @@ function CreateNewEntry()
echo "\t<td>$_DateS</td>\n"; echo "\t<td>$_DateS</td>\n";
echo "\t<td>$_DateE</td>\n"; echo "\t<td>$_DateE</td>\n";
echo "\t<td>". $_GET["len"]. "</td>\n"; echo "\t<td>" . $_GET["len"] . "</td>\n";
echo "\t<td>". $_GET["RID"]. "</td>\n"; echo "\t<td>" . $_GET["RID"] . "</td>\n";
echo "\t<td>". $_GET["SchichtName"]. "</td>\n"; echo "\t<td>" . $_GET["SchichtName"] . "</td>\n";
// Ist eintarg schon vorhanden? // Ist eintarg schon vorhanden?
$SQL = "SELECT `SID` FROM `Shifts` "; $SQL = "SELECT `SID` FROM `Shifts` ";
$SQL .= "WHERE (". $SQL .= "WHERE (" .
"`DateS` = '". $_DateS. "' AND ". "`DateS` = '" . $_DateS . "' AND " .
"`DateE` = '". $_DateE. "' AND ". "`DateE` = '" . $_DateE . "' AND " .
"`RID` = '". $_GET["RID"]. "');"; "`RID` = '" . $_GET["RID"] . "');";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
if( mysql_num_rows($Erg) != 0 ) if (mysql_num_rows($Erg) != 0)
echo "\t<td>exists</td>"; echo "\t<td>exists</td>";
elseif( $_GET["OnlyShow"] == "OFF" ) elseif ($_GET["OnlyShow"] == "OFF") {
{ // erstellt Eintrag in Shifts f<>r die algemeine schicht
// erstellt Eintrag in Shifts für die algemeine schicht
$SQL = "INSERT INTO `Shifts` ( `DateS`, `DateE`, `Len`, `RID`, `Man`) VALUES ( "; $SQL = "INSERT INTO `Shifts` ( `DateS`, `DateE`, `Len`, `RID`, `Man`) VALUES ( ";
$SQL .= "'". $_DateS. "', '". $_DateE. "', "; $SQL .= "'" . $_DateS . "', '" . $_DateE . "', ";
$SQL .= "'". $_GET["len"]. "', '". $_GET["RID"]. "', "; $SQL .= "'" . $_GET["len"] . "', '" . $_GET["RID"] . "', ";
$SQL .= "'". $_GET["SchichtName"]. "');"; $SQL .= "'" . $_GET["SchichtName"] . "');";
$Erg = db_query($SQL, "create shift"); $Erg = db_query($SQL, "create shift");
$SQLFail = "\n\t<br />[".$SQL. "]"; $SQLFail = "\n\t<br />[" . $SQL . "]";
if ($Erg == 1) echo "\t<td>pass</td>\n"; if ($Erg == 1)
else echo "\t<td>fail <br />\n<u>". mysql_error($con). "</u>$SQLFail</td>\n"; echo "\t<td>pass</td>\n";
else
echo "\t<td>fail <br />\n<u>" . mysql_error($con) . "</u>$SQLFail</td>\n";
} else } else
echo "\t<td>only show</td>\n"; echo "\t<td>only show</td>\n";
// sucht SID von eingetragennen schiten // sucht SID von eingetragennen schiten
$SQL = "SELECT SID FROM `Shifts` "; $SQL = "SELECT SID FROM `Shifts` ";
$SQL .= "WHERE (". $SQL .= "WHERE (" .
"`DateS` = '". $_DateS. "' AND ". "`DateS` = '" . $_DateS . "' AND " .
"`DateE` = '". $_DateE. "' AND ". "`DateE` = '" . $_DateE . "' AND " .
"`Len` = '". $_GET["len"]. "' AND ". "`Len` = '" . $_GET["len"] . "' AND " .
"`RID` = '". $_GET["RID"]. "');"; "`RID` = '" . $_GET["RID"] . "');";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
if( mysql_num_rows($Erg) == 0 ) if (mysql_num_rows($Erg) == 0)
echo "\t<td>?</td>"; echo "\t<td>?</td>";
else else {
{
$SID = mysql_result($Erg, 0, "SID"); $SID = mysql_result($Erg, 0, "SID");
echo "\t<td>". $SID. "</td>"; echo "\t<td>" . $SID . "</td>";
} }
// erstellt für jeden Engeltypen die eintrage in 'ShiftEntry' // erstellt f<>r jeden Engeltypen die eintrage in 'ShiftEntry'
echo "\t<td>"; echo "\t<td>";
foreach ($EngelType As $TTemp) foreach ($EngelType As $TTemp) {
{ $Temp = "EngelType" . $TTemp["TID"];
$Temp = "EngelType".$TTemp["TID"];
if( $_GET[$Temp] > 0 ) if ($_GET[$Temp] > 0) {
{
$i = 0; $i = 0;
echo $_GET[$Temp]. " ".$TTemp["Name"]. "<br />\t"; echo $_GET[$Temp] . " " . $TTemp["Name"] . "<br />\t";
while( $i++ < $_GET[$Temp] ) while ($i++ < $_GET[$Temp]) {
{ if ($_GET["OnlyShow"] == "OFF") {
if( $_GET["OnlyShow"] == "OFF" )
{
$SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`) VALUES ("; $SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`) VALUES (";
$SQL .= "'". $SID. "', "; $SQL .= "'" . $SID . "', ";
$SQL .= "'". $TTemp["TID"]. "');"; $SQL .= "'" . $TTemp["TID"] . "');";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
if( $debug ) $SQLFail = "\n\t<br />[".$SQL. "]"; if ($debug)
$SQLFail = "\n\t<br />[" . $SQL . "]";
if ($Erg == 1) echo "'pass' ";
else echo "'fail' <u>". mysql_error($con). "</u>$SQLFail</td>\n";
} if ($Erg == 1)
echo "'pass' ";
else else
echo "'fail' <u>" . mysql_error($con) . "</u>$SQLFail</td>\n";
} else
echo "+"; echo "+";
} }
echo "<br />"; echo "<br />";
@ -354,5 +346,5 @@ function CreateNewEntry()
echo "</tr>\n"; echo "</tr>\n";
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

92
www-ssl/admin/sprache.php
Unescape Escape View File

@ -1,57 +1,51 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Sprache"; $title = "Sprache";
$header = "Liste der existierenden Sprcheintr&auml;ge"; $header = "Liste der existierenden Sprcheintr&auml;ge";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
if (!isset ($_GET["TextID"])) {
echo Get_Text("Hello") . $_SESSION['Nick'] . ", <br />\n";
echo Get_Text("pub_sprache_text1") . "<br /><br />\n";
if( !isset( $_GET["TextID"] ) ) echo "<a href=\"?ShowEntry=y\">" . Get_Text("pub_sprache_ShowEntry") . "</a>";
{
echo Get_Text("Hello").$_SESSION['Nick'].", <br />\n";
echo Get_Text("pub_sprache_text1")."<br /><br />\n";
echo "<a href=\"?ShowEntry=y\">". Get_Text("pub_sprache_ShowEntry"). "</a>";
// ausgabe Tabellenueberschift // ausgabe Tabellenueberschift
$SQL_Sprachen = "SELECT `Sprache` FROM `Sprache` GROUP BY `Sprache`;"; $SQL_Sprachen = "SELECT `Sprache` FROM `Sprache` GROUP BY `Sprache`;";
$erg_Sprachen = mysql_query($SQL_Sprachen, $con); $erg_Sprachen = mysql_query($SQL_Sprachen, $con);
echo mysql_error($con); echo mysql_error($con);
for( $i=0; $i<mysql_num_rows( $erg_Sprachen ); $i++ ) for ($i = 0; $i < mysql_num_rows($erg_Sprachen); $i++)
$Sprachen[mysql_result( $erg_Sprachen, $i, "Sprache" )] = $i; $Sprachen[mysql_result($erg_Sprachen, $i, "Sprache")] = $i;
echo "\t<table border=\"0\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n\t\t<tr>"; echo "\t<table border=\"0\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n\t\t<tr>";
echo "\t\t<td class=\"contenttopic\"><b>". Get_Text("pub_sprache_TextID"). "</b></td>"; echo "\t\t<td class=\"contenttopic\"><b>" . Get_Text("pub_sprache_TextID") . "</b></td>";
foreach( $Sprachen as $Name => $Value ) foreach ($Sprachen as $Name => $Value)
echo "<td class=\"contenttopic\"><b>". echo "<td class=\"contenttopic\"><b>" .
Get_Text("pub_sprache_Sprache"). " ". $Name. Get_Text("pub_sprache_Sprache") . " " . $Name .
"</b></td>"; "</b></td>";
echo "\t\t<td class=\"contenttopic\"><b>". Get_Text("pub_sprache_Edit"). "</b></td>"; echo "\t\t<td class=\"contenttopic\"><b>" . Get_Text("pub_sprache_Edit") . "</b></td>";
echo "\t\t</tr>"; echo "\t\t</tr>";
if (isset ($_GET["ShowEntry"])) {
if( isset($_GET["ShowEntry"]))
{
// ausgabe eintraege // ausgabe eintraege
$SQL = "SELECT * FROM `Sprache` ORDER BY `TextID`;"; $SQL = "SELECT * FROM `Sprache` ORDER BY `TextID`;";
$erg = mysql_query($SQL, $con); $erg = mysql_query($SQL, $con);
echo mysql_error($con); echo mysql_error($con);
$TextID_Old = mysql_result( $erg, 0, "TextID" ); $TextID_Old = mysql_result($erg, 0, "TextID");
for( $i=0; $i<mysql_num_rows( $erg ); $i++ ) for ($i = 0; $i < mysql_num_rows($erg); $i++) {
{ $TextID_New = mysql_result($erg, $i, "TextID");
$TextID_New = mysql_result( $erg, $i, "TextID" ); if ($TextID_Old != $TextID_New) {
if( $TextID_Old != $TextID_New )
{
echo "<form action=\"sprache.php\">"; echo "<form action=\"sprache.php\">";
echo "<tr class=\"content\">\n"; echo "<tr class=\"content\">\n";
echo "\t\t<td>$TextID_Old ". echo "\t\t<td>$TextID_Old " .
"<input name=\"TextID\" type=\"hidden\" value=\"$TextID_Old\"> </td>\n"; "<input name=\"TextID\" type=\"hidden\" value=\"$TextID_Old\"> </td>\n";
foreach( $Sprachen as $Name => $Value ) foreach ($Sprachen as $Name => $Value) {
{ $Value = html_entity_decode($Value, ENT_QUOTES);
$Value = html_entity_decode( $Value, ENT_QUOTES);
echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Value</textarea></td>\n"; echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Value</textarea></td>\n";
$Sprachen[ $Name ] = ""; $Sprachen[$Name] = "";
} }
echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n"; echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n";
@ -59,7 +53,7 @@ if( !isset( $_GET["TextID"] ) )
echo "</form>\n"; echo "</form>\n";
$TextID_Old = $TextID_New; $TextID_Old = $TextID_New;
} }
$Sprachen[ mysql_result( $erg, $i, "Sprache" ) ] = mysql_result( $erg, $i, "Text" ); $Sprachen[mysql_result($erg, $i, "Sprache")] = mysql_result($erg, $i, "Text");
} /*FOR*/ } /*FOR*/
} }
@ -68,55 +62,49 @@ if( !isset( $_GET["TextID"] ) )
echo "<tr class=\"content\">\n"; echo "<tr class=\"content\">\n";
echo "\t\t<td><input name=\"TextID\" type=\"text\" size=\"40\" value=\"new\"> </td>\n"; echo "\t\t<td><input name=\"TextID\" type=\"text\" size=\"40\" value=\"new\"> </td>\n";
foreach( $Sprachen as $Name => $Value ) foreach ($Sprachen as $Name => $Value)
echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Name Text</textarea></td>\n"; echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Name Text</textarea></td>\n";
echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n"; echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n";
echo "</tr>"; echo "</tr>";
echo "</form>\n"; echo "</form>\n";
echo "</table>\n"; echo "</table>\n";
} /*if( !isset( $TextID ) )*/ } /*if( !isset( $TextID ) )*/
else else {
{ echo "edit: " . $_GET["TextID"] . "<br /><br />";
echo "edit: ". $_GET["TextID"]. "<br /><br />";
foreach ($_GET as $k => $v) { foreach ($_GET as $k => $v) {
if( $k != "TextID" ) if ($k != "TextID") {
{ $sql_test = "SELECT * FROM `Sprache` " .
$sql_test = "SELECT * FROM `Sprache` ". "WHERE `TextID`='" . $_GET["TextID"] . "' AND `Sprache`='$k'";
"WHERE `TextID`='". $_GET["TextID"]. "' AND `Sprache`='$k'";
$erg_test = mysql_query($sql_test, $con); $erg_test = mysql_query($sql_test, $con);
if( mysql_num_rows($erg_test)==0 ) if (mysql_num_rows($erg_test) == 0) {
{ $sql_save = "INSERT INTO `Sprache` (`TextID`, `Sprache`, `Text`) " .
$sql_save = "INSERT INTO `Sprache` (`TextID`, `Sprache`, `Text`) ". "VALUES ('" . $_GET["TextID"] . "', '$k', '$v')";
"VALUES ('". $_GET["TextID"]. "', '$k', '$v')"; echo $sql_save . "<br />";
echo $sql_save."<br />";
$Erg = mysql_query($sql_save, $con); $Erg = mysql_query($sql_save, $con);
if ($Erg == 1) if ($Erg == 1)
echo "\t $k Save: OK<br />\n"; echo "\t $k Save: OK<br />\n";
else else
echo "\t $k Save: KO<br />\n"; echo "\t $k Save: KO<br />\n";
} } else
else if( mysql_result($erg_test, 0, "Text")!=$v ) if (mysql_result($erg_test, 0, "Text") != $v) {
{ $sql_save = "UPDATE `Sprache` SET `Text`='$v' " .
$sql_save = "UPDATE `Sprache` SET `Text`='$v' ". "WHERE `TextID`='" . $_GET["TextID"] . "' AND `Sprache`='$k' ";
"WHERE `TextID`='". $_GET["TextID"]. "' AND `Sprache`='$k' "; echo $sql_save . "<br />";
echo $sql_save."<br />";
$Erg = mysql_query($sql_save, $con); $Erg = mysql_query($sql_save, $con);
if ($Erg == 1) if ($Erg == 1)
echo "\t $k Update: OK<br />\n"; echo "\t $k Update: OK<br />\n";
else else
echo "\t $k Update: KO<br />\n"; echo "\t $k Update: KO<br />\n";
} } else
else
echo "\t $k no changes<br />\n"; echo "\t $k no changes<br />\n";
} }
} }
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

31
www-ssl/admin/tshirt.php
Unescape Escape View File

@ -1,21 +1,20 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "T-Shirt-Ausgabe"; $title = "T-Shirt-Ausgabe";
$header = "T-Shirt-Ausgabe f&uuml;r aktiven Engel"; $header = "T-Shirt-Ausgabe f&uuml;r aktiven Engel";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
If (IsSet ($_GET["aktiv"])) {
If (IsSet($_GET["aktiv"])) { $SQL = "UPDATE `User` SET `Tshirt`='1' WHERE `UID`='" . $_GET["aktiv"] . "' limit 1";
$SQL="UPDATE `User` SET `Tshirt`='1' WHERE `UID`='". $_GET["aktiv"]. "' limit 1";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
if ($Erg == 1) { if ($Erg == 1) {
} else { } else {
echo "Fehler beim speichern bei Engel ". UID2Nick($_GET["aktive"]). "<br />"; echo "Fehler beim speichern bei Engel " . UID2Nick($_GET["aktive"]) . "<br />";
} }
} }
?> ?>
&Uuml;ber die Suchen-Funktion des Browsers kann diese Liste schnell nach einem Nick abgesucht werden.<br /> &Uuml;ber die Suchen-Funktion des Browsers kann diese Liste schnell nach einem Nick abgesucht werden.<br />
@ -24,6 +23,8 @@ Hinter diesem erscheint ein Link, &uuml;ber den man eintragen kann, dass der Eng
Liste aller aktiven Engel: Liste aller aktiven Engel:
<?php <?php
$SQL = "SELECT * FROM `User` WHERE (`Aktiv`='1') ORDER BY `Nick` ASC"; $SQL = "SELECT * FROM `User` WHERE (`Aktiv`='1') ORDER BY `Nick` ASC";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
@ -37,14 +38,16 @@ $rowcount = mysql_num_rows($Erg);
<td>T-Shirt ausgeben:</td> <td>T-Shirt ausgeben:</td>
</td> </td>
<?php <?php
for ($i=0; $i<$rowcount; $i++){
for ($i = 0; $i < $rowcount; $i++) {
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
$eUID=mysql_result($Erg, $i, "UID"); $eUID = mysql_result($Erg, $i, "UID");
echo "\t\t<td>".UID2Nick($eUID)."</td>\n"; echo "\t\t<td>" . UID2Nick($eUID) . "</td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Aktiv")."</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "Aktiv") . "</td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Size")."</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "Size") . "</td>\n";
if (mysql_result($Erg, $i, "Tshirt") =="1") { if (mysql_result($Erg, $i, "Tshirt") == "1") {
echo "\t\t<td>bereits erhalten</td>"; echo "\t\t<td>bereits erhalten</td>";
} else { } else {
echo "\t\t<td><a href=\"./tshirt.php?aktiv=$eUID\">XXXXXXXX</a></td>"; echo "\t\t<td><a href=\"./tshirt.php?aktiv=$eUID\">XXXXXXXX</a></td>";
@ -54,6 +57,6 @@ for ($i=0; $i<$rowcount; $i++){
echo "</table>"; echo "</table>";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

121
www-ssl/admin/user.php
Unescape Escape View File

@ -1,21 +1,22 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Editieren der Engelliste"; $header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
if (!IsSet($_GET["enterUID"])) if (!IsSet ($_GET["enterUID"])) {
{
// Userliste, keine UID uebergeben... // Userliste, keine UID uebergeben...
echo "<a href=\"../makeuser.php\">Neuen Engel eintragen</a><br /><br />\n"; echo "<a href=\"../makeuser.php\">Neuen Engel eintragen</a><br /><br />\n";
if( !isset($_GET["OrderBy"]) ) $_GET["OrderBy"] = "Nick"; if (!isset ($_GET["OrderBy"]))
$SQL = "SELECT User.*, UserGroups.Name AS 'Group' FROM `User` ". $_GET["OrderBy"] = "Nick";
"LEFT JOIN `UserCVS` ON User.UID = UserCVS.UID ". $SQL = "SELECT User.*, UserGroups.Name AS 'Group' FROM `User` " .
"LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID ". "LEFT JOIN `UserCVS` ON User.UID = UserCVS.UID " .
"ORDER BY `". $_GET["OrderBy"]. "` ASC"; "LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID " .
"ORDER BY `" . $_GET["OrderBy"] . "` ASC";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
echo mysql_error($con); echo mysql_error($con);
@ -23,8 +24,7 @@ if (!IsSet($_GET["enterUID"]))
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
echo "Anzahl Engel: $Zeilen<br /><br />\n"; echo "Anzahl Engel: $Zeilen<br /><br />\n";
?><table width="100%" class="border" cellpadding="2" cellspacing="1">
?><table width="100%" class="border" cellpadding="2" cellspacing="1">
<tr class="contenttopic"> <tr class="contenttopic">
<td> <td>
<a href="<?php echo $_SERVER["PHP_SELF"]; ?>?OrderBy=Nick">Nick</a> | <a href="<?php echo $_SERVER["PHP_SELF"]; ?>?OrderBy=Nick">Nick</a> |
@ -53,88 +53,81 @@ if (!IsSet($_GET["enterUID"]))
<?php <?php
$Gekommen = 0; $Gekommen = 0;
$Active = 0; $Active = 0;
$Tshirt = 0; $Tshirt = 0;
for ($n = 0 ; $n < $Zeilen ; $n++) { for ($n = 0; $n < $Zeilen; $n++) {
echo "<tr class=\"content\">\n"; echo "<tr class=\"content\">\n";
echo "\t<td>".mysql_result($Erg, $n, "Nick"). "<br />(Create: ". mysql_result($Erg, $n, "CreateDate"). ")</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Nick") . "<br />(Create: " . mysql_result($Erg, $n, "CreateDate") . ")</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Name")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Name") . "</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Vorname")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Vorname") . "</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Alter")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Alter") . "</td>\n";
echo "\t<td>"; echo "\t<td>";
if( strlen( mysql_result($Erg, $n, "Telefon"))>0) if (strlen(mysql_result($Erg, $n, "Telefon")) > 0)
echo "\n\t\tTel: ". mysql_result($Erg, $n, "Telefon"). "<br />"; echo "\n\t\tTel: " . mysql_result($Erg, $n, "Telefon") . "<br />";
if( strlen( mysql_result($Erg, $n, "Handy"))>0) if (strlen(mysql_result($Erg, $n, "Handy")) > 0)
echo "\n\t\tHandy: ". mysql_result($Erg, $n, "Handy"). "<br />"; echo "\n\t\tHandy: " . mysql_result($Erg, $n, "Handy") . "<br />";
if( strlen( mysql_result($Erg, $n, "DECT"))>0) if (strlen(mysql_result($Erg, $n, "DECT")) > 0)
echo "\n\t\tDECT: <a href=\"./dect.php?custum=". mysql_result($Erg, $n, "DECT"). "\">". echo "\n\t\tDECT: <a href=\"./dect.php?custum=" . mysql_result($Erg, $n, "DECT") . "\">" .
mysql_result($Erg, $n, "DECT"). "</a><br />"; mysql_result($Erg, $n, "DECT") . "</a><br />";
if( strlen( mysql_result($Erg, $n, "email"))>0) if (strlen(mysql_result($Erg, $n, "email")) > 0)
echo "\n\t\temail: <a href=\"mailto:".mysql_result($Erg, $n, "email")."\">". echo "\n\t\temail: <a href=\"mailto:" . mysql_result($Erg, $n, "email") . "\">" .
mysql_result($Erg, $n, "email")."</a><br />"; mysql_result($Erg, $n, "email") . "</a><br />";
if( strlen( mysql_result($Erg, $n, "Hometown"))>0) if (strlen(mysql_result($Erg, $n, "Hometown")) > 0)
echo "\n\t\tHometown: ". mysql_result($Erg, $n, "Hometown"). "<br />"; echo "\n\t\tHometown: " . mysql_result($Erg, $n, "Hometown") . "<br />";
if( strlen( mysql_result($Erg, $n, "lastLogIn"))>0) if (strlen(mysql_result($Erg, $n, "lastLogIn")) > 0)
echo "\n\t\tlastLogIn: ". mysql_result($Erg, $n, "lastLogIn"). "<br />"; echo "\n\t\tlastLogIn: " . mysql_result($Erg, $n, "lastLogIn") . "<br />";
if( strlen( mysql_result($Erg, $n, "Art"))>0) if (strlen(mysql_result($Erg, $n, "Art")) > 0)
echo "\n\t\tType: ". mysql_result($Erg, $n, "Art"). "<br />"; echo "\n\t\tType: " . mysql_result($Erg, $n, "Art") . "<br />";
if( strlen( mysql_result($Erg, $n, "ICQ"))>0) if (strlen(mysql_result($Erg, $n, "ICQ")) > 0)
echo "\n\t\tICQ: ". mysql_result($Erg, $n, "ICQ"). "<br />"; echo "\n\t\tICQ: " . mysql_result($Erg, $n, "ICQ") . "<br />";
if( strlen( mysql_result($Erg, $n, "jabber"))>0) if (strlen(mysql_result($Erg, $n, "jabber")) > 0)
echo "\n\t\tjabber: ". mysql_result($Erg, $n, "jabber"). "<br />"; echo "\n\t\tjabber: " . mysql_result($Erg, $n, "jabber") . "<br />";
echo "\n\t\tGroup: ". mysql_result($Erg, $n, "Group"). "<br />"; echo "\n\t\tGroup: " . mysql_result($Erg, $n, "Group") . "<br />";
echo "</td>\n"; echo "</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Size")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Size") . "</td>\n";
$Gekommen += mysql_result($Erg, $n, "Gekommen"); $Gekommen += mysql_result($Erg, $n, "Gekommen");
echo "\t<td>".mysql_result($Erg, $n, "Gekommen")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Gekommen") . "</td>\n";
$Active += mysql_result($Erg, $n, "Aktiv"); $Active += mysql_result($Erg, $n, "Aktiv");
echo "\t<td>".mysql_result($Erg, $n, "Aktiv")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Aktiv") . "</td>\n";
$Tshirt += mysql_result($Erg, $n, "Tshirt"); $Tshirt += mysql_result($Erg, $n, "Tshirt");
echo "\t<td>".mysql_result($Erg, $n, "Tshirt")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Tshirt") . "</td>\n";
echo "\t<td>". funktion_isLinkAllowed_addLink_OrEmpty( echo "\t<td>" . funktion_isLinkAllowed_addLink_OrEmpty("admin/userChangeNormal.php?enterUID=" .
"admin/userChangeNormal.php?enterUID=". mysql_result($Erg, $n, "UID") . "&Type=Normal", "&Auml;nd.") .
mysql_result($Erg, $n, "UID")."&Type=Normal",
"&Auml;nd.").
"</td>\n"; "</td>\n";
echo "\t<td>". funktion_isLinkAllowed_addLink_OrEmpty( echo "\t<td>" . funktion_isLinkAllowed_addLink_OrEmpty("admin/userChangeSecure.php?enterUID=" .
"admin/userChangeSecure.php?enterUID=". mysql_result($Erg, $n, "UID") . "&Type=Secure", "Secure") .
mysql_result($Erg, $n, "UID")."&Type=Secure",
"Secure").
"</td>\n"; "</td>\n";
echo "</tr>\n"; echo "</tr>\n";
} }
echo "<tr>". echo "<tr>" .
"<td></td><td></td><td></td><td></td><td></td><td></td>". "<td></td><td></td><td></td><td></td><td></td><td></td>" .
"<td>$Gekommen</td><td>$Active</td><td>$Tshirt</td><td></td></tr>\n"; "<td>$Gekommen</td><td>$Active</td><td>$Tshirt</td><td></td></tr>\n";
echo "\t</table>\n"; echo "\t</table>\n";
// Ende Userliste // Ende Userliste
echo "<h1>Statistics</h1>"; echo "<h1>Statistics</h1>";
funktion_db_element_list_2row( "Hometown", funktion_db_element_list_2row("Hometown", "SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
"SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Engeltypen", funktion_db_element_list_2row("Engeltypen", "SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
"SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Used Groups", funktion_db_element_list_2row("Used Groups", "SELECT UserGroups.Name AS 'GroupName', COUNT(UserGroups.Name) AS Count FROM `UserCVS` " .
"SELECT UserGroups.Name AS 'GroupName', COUNT(UserGroups.Name) AS Count FROM `UserCVS` ". "LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID " .
"LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID ". "WHERE (UserCVS.GroupID!='NULL') " .
"WHERE (UserCVS.GroupID!='NULL') ". "GROUP BY `GroupName` " .
"GROUP BY `GroupName` ".
""); "");
} } else {
else
{
echo "error"; echo "error";
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

41
www-ssl/admin/userArrived.php
Unescape Escape View File

@ -1,24 +1,24 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Engel Arrived"; $title = "Engel Arrived";
$header = "Engel was arrived"; $header = "Engel was arrived";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
If (IsSet ($_GET["arrived"])) {
If (IsSet($_GET["arrived"])) { $SQL = "UPDATE `User` SET `Gekommen`='1' WHERE `UID`='" . $_GET["arrived"] . "' limit 1";
$SQL="UPDATE `User` SET `Gekommen`='1' WHERE `UID`='". $_GET["arrived"]. "' limit 1";
$Erg = db_query($SQL, "Set User as Gekommen"); $Erg = db_query($SQL, "Set User as Gekommen");
if ($Erg == 1) { if ($Erg == 1) {
echo "<h2>". Get_Text("pri_userArrived_WriteOK"). " \"". UID2Nick($_GET["arrived"]). "\"</h2>"; echo "<h2>" . Get_Text("pri_userArrived_WriteOK") . " \"" . UID2Nick($_GET["arrived"]) . "\"</h2>";
} else { } else {
echo "<h1>". Get_Text("pri_userArrived_WriteError"). " \"". UID2Nick($_GET["arrived"]). "\"</h1>"; echo "<h1>" . Get_Text("pri_userArrived_WriteError") . " \"" . UID2Nick($_GET["arrived"]) . "\"</h1>";
} }
} }
echo Get_Text("pri_userArrived_Text1"). "<br />"; echo Get_Text("pri_userArrived_Text1") . "<br />";
echo Get_Text("pri_userArrived_Text2"). "<br /><br />"; echo Get_Text("pri_userArrived_Text2") . "<br /><br />";
echo Get_Text("pri_userArrived_TableToppic"); echo Get_Text("pri_userArrived_TableToppic");
$SQL = "SELECT * FROM `User` ORDER BY `Nick` ASC"; $SQL = "SELECT * FROM `User` ORDER BY `Nick` ASC";
@ -28,27 +28,26 @@ $rowcount = mysql_num_rows($Erg);
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "\t<tr class=\"contenttopic\">\n"; echo "\t<tr class=\"contenttopic\">\n";
echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_Nick"). "</td>\n"; echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_Nick") . "</td>\n";
echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_ArrivedShow"). "</td>\n"; echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_ArrivedShow") . "</td>\n";
echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_ArrivedSet"). "</td>\n"; echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_ArrivedSet") . "</td>\n";
echo "\t</td>\n"; echo "\t</td>\n";
for ($i=0; $i<$rowcount; $i++){ for ($i = 0; $i < $rowcount; $i++) {
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
$eUID=mysql_result($Erg, $i, "UID"); $eUID = mysql_result($Erg, $i, "UID");
echo "\t\t<td>".UID2Nick($eUID)."</td>\n"; echo "\t\t<td>" . UID2Nick($eUID) . "</td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Gekommen")."</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "Gekommen") . "</td>\n";
if (mysql_result($Erg, $i, "Gekommen") =="1") if (mysql_result($Erg, $i, "Gekommen") == "1") {
{ echo "\t\t<td>" . Get_Text("pri_userArrived_TableEntry_Arrived") . "</td>";
echo "\t\t<td>". Get_Text("pri_userArrived_TableEntry_Arrived"). "</td>";
} else { } else {
echo "\t\t<td><a href=\"./userArrived.php?arrived=$eUID\">". Get_Text("pri_userArrived_TableEntry_Set"). "</a></td>"; echo "\t\t<td><a href=\"./userArrived.php?arrived=$eUID\">" . Get_Text("pri_userArrived_TableEntry_Set") . "</a></td>";
} }
echo "\t</tr>\n"; echo "\t</tr>\n";
} }
echo "</table>"; echo "</table>";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

134
www-ssl/admin/userChangeNormal.php
Unescape Escape View File

@ -1,83 +1,82 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Editieren der Engelliste"; $header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
if (IsSet($_GET["enterUID"])) if (IsSet ($_GET["enterUID"])) {
{
// UserID wurde mit uebergeben --> Aendern... // UserID wurde mit uebergeben --> Aendern...
echo "Hallo,<br />". echo "Hallo,<br />" .
"hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' ". "hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' " .
"wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, ". "wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, " .
"dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. ". "dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. " .
"Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel ". "Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel " .
"bereits sein T-Shirt erhalten hat.<br /><br />\n"; "bereits sein T-Shirt erhalten hat.<br /><br />\n";
echo "<form action=\"./userSaveNormal.php?action=change\" method=\"POST\">\n"; echo "<form action=\"./userSaveNormal.php?action=change\" method=\"POST\">\n";
echo "<table border=\"0\">\n"; echo "<table border=\"0\">\n";
echo "<input type=\"hidden\" name=\"Type\" value=\"Normal\">\n"; echo "<input type=\"hidden\" name=\"Type\" value=\"Normal\">\n";
$SQL = "SELECT * FROM `User` WHERE `UID`='". $_GET["enterUID"]. "'"; $SQL = "SELECT * FROM `User` WHERE `UID`='" . $_GET["enterUID"] . "'";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
if (mysql_num_rows($Erg) != 1) if (mysql_num_rows($Erg) != 1)
echo "<tr><td>Sorry, der Engel (UID=". $_GET["enterUID"]. echo "<tr><td>Sorry, der Engel (UID=" . $_GET["enterUID"] .
") wurde in der Liste nicht gefunden.</td></tr>"; ") wurde in der Liste nicht gefunden.</td></tr>";
else else {
{
echo "<tr><td>\n"; echo "<tr><td>\n";
echo "<table>\n"; echo "<table>\n";
echo " <tr><td>Nick</td><td>". echo " <tr><td>Nick</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eNick\" value=\"". "<input type=\"text\" size=\"40\" name=\"eNick\" value=\"" .
mysql_result($Erg, 0, "Nick")."\"></td></tr>\n"; mysql_result($Erg, 0, "Nick") . "\"></td></tr>\n";
echo " <tr><td>lastLogIn</td><td>". echo " <tr><td>lastLogIn</td><td>" .
"<input type=\"text\" size=\"20\" name=\"elastLogIn\" value=\"". "<input type=\"text\" size=\"20\" name=\"elastLogIn\" value=\"" .
mysql_result($Erg, 0, "lastLogIn"). "\" disabled></td></tr>\n"; mysql_result($Erg, 0, "lastLogIn") . "\" disabled></td></tr>\n";
echo " <tr><td>Name</td><td>". echo " <tr><td>Name</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eName\" value=\"". "<input type=\"text\" size=\"40\" name=\"eName\" value=\"" .
mysql_result($Erg, 0, "Name")."\"></td></tr>\n"; mysql_result($Erg, 0, "Name") . "\"></td></tr>\n";
echo " <tr><td>Vorname</td><td>". echo " <tr><td>Vorname</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eVorname\" value=\"". "<input type=\"text\" size=\"40\" name=\"eVorname\" value=\"" .
mysql_result($Erg, 0, "Vorname")."\"></td></tr>\n"; mysql_result($Erg, 0, "Vorname") . "\"></td></tr>\n";
echo " <tr><td>Alter</td><td>". echo " <tr><td>Alter</td><td>" .
"<input type=\"text\" size=\"5\" name=\"eAlter\" value=\"". "<input type=\"text\" size=\"5\" name=\"eAlter\" value=\"" .
mysql_result($Erg, 0, "Alter")."\"></td></tr>\n"; mysql_result($Erg, 0, "Alter") . "\"></td></tr>\n";
echo " <tr><td>Telefon</td><td>". echo " <tr><td>Telefon</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eTelefon\" value=\"". "<input type=\"text\" size=\"40\" name=\"eTelefon\" value=\"" .
mysql_result($Erg, 0, "Telefon")."\"></td></tr>\n"; mysql_result($Erg, 0, "Telefon") . "\"></td></tr>\n";
echo " <tr><td>Handy</td><td>". echo " <tr><td>Handy</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eHandy\" value=\"". "<input type=\"text\" size=\"40\" name=\"eHandy\" value=\"" .
mysql_result($Erg, 0, "Handy")."\"></td></tr>\n"; mysql_result($Erg, 0, "Handy") . "\"></td></tr>\n";
echo " <tr><td>DECT</td><td>". echo " <tr><td>DECT</td><td>" .
"<input type=\"text\" size=\"4\" name=\"eDECT\" value=\"". "<input type=\"text\" size=\"4\" name=\"eDECT\" value=\"" .
mysql_result($Erg, 0, "DECT")."\"></td></tr>\n"; mysql_result($Erg, 0, "DECT") . "\"></td></tr>\n";
echo " <tr><td>email</td><td>". echo " <tr><td>email</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eemail\" value=\"". "<input type=\"text\" size=\"40\" name=\"eemail\" value=\"" .
mysql_result($Erg, 0, "email")."\"></td></tr>\n"; mysql_result($Erg, 0, "email") . "\"></td></tr>\n";
echo " <tr><td>ICQ</td><td>". echo " <tr><td>ICQ</td><td>" .
"<input type=\"text\" size=\"40\" name=\"eICQ\" value=\"". "<input type=\"text\" size=\"40\" name=\"eICQ\" value=\"" .
mysql_result($Erg, 0, "ICQ")."\"></td></tr>\n"; mysql_result($Erg, 0, "ICQ") . "\"></td></tr>\n";
echo " <tr><td>jabber</td><td>". echo " <tr><td>jabber</td><td>" .
"<input type=\"text\" size=\"40\" name=\"ejabber\" value=\"". "<input type=\"text\" size=\"40\" name=\"ejabber\" value=\"" .
mysql_result($Erg, 0, "jabber")."\"></td></tr>\n"; mysql_result($Erg, 0, "jabber") . "\"></td></tr>\n";
echo " <tr><td>Size</td><td>". echo " <tr><td>Size</td><td>" .
"<input type=\"text\" size=\"5\" name=\"eSize\" value=\"". "<input type=\"text\" size=\"5\" name=\"eSize\" value=\"" .
mysql_result($Erg, 0, "Size")."\"></td></tr>\n"; mysql_result($Erg, 0, "Size") . "\"></td></tr>\n";
echo " <tr><td>Passwort</td><td>". echo " <tr><td>Passwort</td><td>" .
"<a href=\"./userSaveNormal.php?action=newpw&eUID=" "<a href=\"./userSaveNormal.php?action=newpw&eUID=" .
.mysql_result($Erg, 0, "UID")."\">neues Kennwort setzen</a></td></tr>\n"; mysql_result($Erg, 0, "UID") . "\">neues Kennwort setzen</a></td></tr>\n";
// Gekommen? // Gekommen?
echo " <tr><td>Gekommen</td><td>\n"; echo " <tr><td>Gekommen</td><td>\n";
echo " <input type=\"radio\" name=\"eGekommen\" value=\"0\""; echo " <input type=\"radio\" name=\"eGekommen\" value=\"0\"";
if (mysql_result($Erg, 0, "Gekommen")=='0') if (mysql_result($Erg, 0, "Gekommen") == '0')
echo " checked"; echo " checked";
echo ">No \n"; echo ">No \n";
echo " <input type=\"radio\" name=\"eGekommen\" value=\"1\""; echo " <input type=\"radio\" name=\"eGekommen\" value=\"1\"";
if (mysql_result($Erg, 0, "Gekommen")=='1') if (mysql_result($Erg, 0, "Gekommen") == '1')
echo " checked"; echo " checked";
echo ">Yes \n"; echo ">Yes \n";
echo "</td></tr>\n"; echo "</td></tr>\n";
@ -85,11 +84,11 @@ if (IsSet($_GET["enterUID"]))
// Aktiv? // Aktiv?
echo " <tr><td>Aktiv</td><td>\n"; echo " <tr><td>Aktiv</td><td>\n";
echo " <input type=\"radio\" name=\"eAktiv\" value=\"0\""; echo " <input type=\"radio\" name=\"eAktiv\" value=\"0\"";
if (mysql_result($Erg, 0, "Aktiv")=='0') if (mysql_result($Erg, 0, "Aktiv") == '0')
echo " checked"; echo " checked";
echo ">No \n"; echo ">No \n";
echo " <input type=\"radio\" name=\"eAktiv\" value=\"1\""; echo " <input type=\"radio\" name=\"eAktiv\" value=\"1\"";
if (mysql_result($Erg, 0, "Aktiv")=='1') if (mysql_result($Erg, 0, "Aktiv") == '1')
echo " checked"; echo " checked";
echo ">Yes \n"; echo ">Yes \n";
echo "</td></tr>\n"; echo "</td></tr>\n";
@ -97,41 +96,38 @@ if (IsSet($_GET["enterUID"]))
// T-Shirt bekommen? // T-Shirt bekommen?
echo " <tr><td>T-Shirt</td><td>\n"; echo " <tr><td>T-Shirt</td><td>\n";
echo " <input type=\"radio\" name=\"eTshirt\" value=\"0\""; echo " <input type=\"radio\" name=\"eTshirt\" value=\"0\"";
if (mysql_result($Erg, 0, "Tshirt")=='0') if (mysql_result($Erg, 0, "Tshirt") == '0')
echo " checked"; echo " checked";
echo ">No \n"; echo ">No \n";
echo " <input type=\"radio\" name=\"eTshirt\" value=\"1\""; echo " <input type=\"radio\" name=\"eTshirt\" value=\"1\"";
if (mysql_result($Erg, 0, "Tshirt")=='1') if (mysql_result($Erg, 0, "Tshirt") == '1')
echo " checked"; echo " checked";
echo ">Yes \n"; echo ">Yes \n";
echo "</td></tr>\n"; echo "</td></tr>\n";
echo " <tr><td>Hometown</td><td>". echo " <tr><td>Hometown</td><td>" .
"<input type=\"text\" size=\"40\" name=\"Hometown\" value=\"". "<input type=\"text\" size=\"40\" name=\"Hometown\" value=\"" .
mysql_result($Erg, 0, "Hometown")."\"></td></tr>\n"; mysql_result($Erg, 0, "Hometown") . "\"></td></tr>\n";
echo "</table>\n</td><td valign=\"top\">". displayavatar($_GET["enterUID"], FALSE). "</td></tr>"; echo "</table>\n</td><td valign=\"top\">" . displayavatar($_GET["enterUID"], FALSE) . "</td></tr>";
} }
echo "</td></tr>\n"; echo "</td></tr>\n";
echo "</table>\n<br />\n"; echo "</table>\n<br />\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n"; echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>"; echo "</form>";
echo "<form action=\"./userSaveNormal.php?action=delete\" method=\"POST\">\n"; echo "<form action=\"./userSaveNormal.php?action=delete\" method=\"POST\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"submit\" value=\"l&ouml;schen...\">\n"; echo "<input type=\"submit\" value=\"l&ouml;schen...\">\n";
echo "</form>"; echo "</form>";
echo "<hr>"; echo "<hr>";
funktion_db_element_list_2row( funktion_db_element_list_2row("Freeloader Shifts", "SELECT `Remove_Time`, `Length`, `Comment` FROM `ShiftFreeloader` WHERE UID=" . $_GET["enterUID"]);
"Freeloader Shifts",
"SELECT `Remove_Time`, `Length`, `Comment` FROM `ShiftFreeloader` WHERE UID=". $_GET["enterUID"]);
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

82
www-ssl/admin/userChangeSecure.php
Unescape Escape View File

@ -1,38 +1,36 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Editieren der Engelliste"; $header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
if (IsSet($_GET["enterUID"])) if (IsSet ($_GET["enterUID"])) {
{
// UserID wurde mit uebergeben --> Aendern... // UserID wurde mit uebergeben --> Aendern...
echo "Hallo,<br />". echo "Hallo,<br />" .
"hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' ". "hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' " .
"wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, ". "wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, " .
"dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. ". "dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. " .
"Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel ". "Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel " .
"bereits sein T-Shirt erhalten hat.<br /><br />\n"; "bereits sein T-Shirt erhalten hat.<br /><br />\n";
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='" . $_GET["enterUID"] . "'";
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='". $_GET["enterUID"]. "'";
$Erg_CVS = mysql_query($SQL_CVS, $con); $Erg_CVS = mysql_query($SQL_CVS, $con);
if( mysql_num_rows($Erg_CVS) != 1) if (mysql_num_rows($Erg_CVS) != 1)
echo "Sorry, der Engel (UID=". $_GET["enterUID"]. ") wurde in der Liste nicht gefunden."; echo "Sorry, der Engel (UID=" . $_GET["enterUID"] . ") wurde in der Liste nicht gefunden.";
else else {
{
// Rename if is an group // Rename if is an group
if( $_GET["enterUID"] < 0 ) { if ($_GET["enterUID"] < 0) {
$SQLname = "SELECT `Name` FROM `UserGroups` WHERE `UID`='". $_GET["enterUID"]. "'"; $SQLname = "SELECT `Name` FROM `UserGroups` WHERE `UID`='" . $_GET["enterUID"] . "'";
$ErgName = mysql_query($SQLname, $con); $ErgName = mysql_query($SQLname, $con);
echo mysql_error($con); echo mysql_error($con);
echo "<form action=\"./userSaveSecure.php?action=changeGroupName\" method=\"POST\">\n"; echo "<form action=\"./userSaveSecure.php?action=changeGroupName\" method=\"POST\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"text\" name=\"GroupName\" value=\"". mysql_result($ErgName, 0, "Name"). "\">\n"; echo "<input type=\"text\" name=\"GroupName\" value=\"" . mysql_result($ErgName, 0, "Name") . "\">\n";
echo "<input type=\"submit\" value=\"rename\">\n"; echo "<input type=\"submit\" value=\"rename\">\n";
echo "</form>"; echo "</form>";
} }
@ -40,49 +38,43 @@ if (IsSet($_GET["enterUID"]))
echo "<form action=\"./userSaveSecure.php?action=change\" method=\"POST\">\n"; echo "<form action=\"./userSaveSecure.php?action=change\" method=\"POST\">\n";
echo "<table border=\"0\">\n"; echo "<table border=\"0\">\n";
echo "<input type=\"hidden\" name=\"Type\" value=\"Secure\">\n"; echo "<input type=\"hidden\" name=\"Type\" value=\"Secure\">\n";
echo " <tr><td><br /><u>Rights of \"". UID2Nick($_GET["enterUID"]). "\":</u></td></tr>\n"; echo " <tr><td><br /><u>Rights of \"" . UID2Nick($_GET["enterUID"]) . "\":</u></td></tr>\n";
$CVS_Data = mysql_fetch_array($Erg_CVS); $CVS_Data = mysql_fetch_array($Erg_CVS);
$CVS_Data_i = 1; $CVS_Data_i = 1;
foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) {
{
$CVS_Data_i++; $CVS_Data_i++;
//nur jeder zweiter sonst wird für jeden text noch die position (Zahl) ausgegeben //nur jeder zweiter sonst wird f<>r jeden text noch die position (Zahl) ausgegeben
if( $CVS_Data_i%2 && $CVS_Data_Name!="UID") if ($CVS_Data_i % 2 && $CVS_Data_Name != "UID") {
{ if ($CVS_Data_Name == "GroupID") {
if($CVS_Data_Name=="GroupID") { if ($_GET["enterUID"] > 0) {
if( $_GET["enterUID"] > 0 ) echo "<tr><td><b>Group</b></td>\n" .
{
echo "<tr><td><b>Group</b></td>\n".
"<td><select name=\"GroupID\">"; "<td><select name=\"GroupID\">";
$SQL_Group = "SELECT * FROM `UserGroups`"; $SQL_Group = "SELECT * FROM `UserGroups`";
$Erg_Group = mysql_query($SQL_Group, $con); $Erg_Group = mysql_query($SQL_Group, $con);
for ($n = 0 ; $n < mysql_num_rows($Erg_Group) ; $n++) for ($n = 0; $n < mysql_num_rows($Erg_Group); $n++) {
{
$UID = mysql_result($Erg_Group, $n, "UID"); $UID = mysql_result($Erg_Group, $n, "UID");
echo "\t<option value=\"$UID\""; echo "\t<option value=\"$UID\"";
if( $CVS_Data_Value == $UID) if ($CVS_Data_Value == $UID)
echo " selected"; echo " selected";
echo ">". mysql_result($Erg_Group, $n, "Name"). "</option>\n"; echo ">" . mysql_result($Erg_Group, $n, "Name") . "</option>\n";
} }
echo "</select></td></tr>"; echo "</select></td></tr>";
} }
} else { } else {
echo "<tr><td>$CVS_Data_Name</td>\n<td>"; echo "<tr><td>$CVS_Data_Name</td>\n<td>";
echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"Y\" "; echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"Y\" ";
if( $CVS_Data_Value == "Y" ) if ($CVS_Data_Value == "Y")
echo " checked"; echo " checked";
echo ">allow \n"; echo ">allow \n";
echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"N\" "; echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"N\" ";
if( $CVS_Data_Value == "N" ) if ($CVS_Data_Value == "N")
echo " checked"; echo " checked";
echo ">denied \n"; echo ">denied \n";
if( $_GET["enterUID"] > 0 ) if ($_GET["enterUID"] > 0) {
{ echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"G\" ";
echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"G\" "; if ($CVS_Data_Value == "G")
if( $CVS_Data_Value == "G" )
echo " checked"; echo " checked";
echo ">group-setting \n"; echo ">group-setting \n";
echo "</td></tr>"; echo "</td></tr>";
@ -95,18 +87,18 @@ if (IsSet($_GET["enterUID"]))
// Ende Formular // Ende Formular
echo "</td></tr>\n"; echo "</td></tr>\n";
echo "</table>\n<br />\n"; echo "</table>\n<br />\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n"; echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>"; echo "</form>";
echo "<br /><form action=\"./userSaveSecure.php?action=delete\" method=\"POST\">\n"; echo "<br /><form action=\"./userSaveSecure.php?action=delete\" method=\"POST\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"submit\" value=\"l&ouml;schen...\">\n"; echo "<input type=\"submit\" value=\"l&ouml;schen...\">\n";
echo "</form>"; echo "</form>";
} }
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

106
www-ssl/admin/userDefaultSetting.php
Unescape Escape View File

@ -1,72 +1,70 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Defalut User Setting"; $title = "Defalut User Setting";
$header = "Defalut User Setting"; $header = "Defalut User Setting";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
echo "Hallo ".$_SESSION['Nick']. echo "Hallo " . $_SESSION['Nick'] .
",<br />\nhier hast du die M&ouml;glichkeit, die Defaulteinstellungen f&uuml;r neue User einzustellen:<br /><br />\n"; ",<br />\nhier hast du die M&ouml;glichkeit, die Defaulteinstellungen f&uuml;r neue User einzustellen:<br /><br />\n";
echo "<table border=\"0\" class=\"border\">\n"; echo "<table border=\"0\" class=\"border\">\n";
echo "\t<tr class=\"contenttopic\">\n"; echo "\t<tr class=\"contenttopic\">\n";
echo "\t\t<th>Page</th>\n\t\t<th>Show</th>\n\t\t<th></th>\n"; echo "\t\t<th>Page</th>\n\t\t<th>Show</th>\n\t\t<th></th>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
if( isset( $_GET["Field"]) && isset( $_GET["Default"]) && isset( $_GET["Send"])) if (isset ($_GET["Field"]) && isset ($_GET["Default"]) && isset ($_GET["Send"])) {
{ switch ($_GET["Send"]) {
switch( $_GET["Send"]) case "New" :
{ $SQL = "ALTER TABLE `UserCVS` ADD `" . $_GET["Field"] . "` " .
case "New": "CHAR( 1 ) DEFAULT '" . $_GET["Default"] . "' NOT NULL";
$SQL = "ALTER TABLE `UserCVS` ADD `". $_GET["Field"]. "` ". $Erg = db_query($SQL, "New user default setting");
"CHAR( 1 ) DEFAULT '". $_GET["Default"]. "' NOT NULL"; if ($Erg == 1)
$Erg = db_query( $SQL, "New user default setting"); echo "<H2>Create " . $_GET["Field"] . " = " . $_GET["Default"] . " succesfull</h2>\n";
if( $Erg == 1)
echo "<H2>Create ".$_GET["Field"]. " = ". $_GET["Default"]. " succesfull</h2>\n";
else else
echo "<H2>Create ".$_GET["Field"]. " = ". $_GET["Default"]. " error...</h2>\n". echo "<H2>Create " . $_GET["Field"] . " = " . $_GET["Default"] . " error...</h2>\n" .
"[". mysql_error(). "]<br /><br />"; "[" . mysql_error() . "]<br /><br />";
break; break;
case "Del": case "Del" :
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
echo "\t\t<form action=\"userDefaultSetting.php\">\n"; echo "\t\t<form action=\"userDefaultSetting.php\">\n";
echo "\t\t\t<td><input name=\"Field\" type=\"text\" value=\"". $_GET["Field"]. "\" readonly></td>\n"; echo "\t\t\t<td><input name=\"Field\" type=\"text\" value=\"" . $_GET["Field"] . "\" readonly></td>\n";
echo "\t\t\t<td><input name=\"Default\" type=\"text\" value=\"". $_GET["Default"]. "\" readonly></td>\n"; echo "\t\t\t<td><input name=\"Default\" type=\"text\" value=\"" . $_GET["Default"] . "\" readonly></td>\n";
echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Del sure\"></td>\n"; echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Del sure\"></td>\n";
echo "\t\t</form>\n"; echo "\t\t</form>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
break; break;
case "Del sure": case "Del sure" :
$SQL = "ALTER TABLE `UserCVS` DROP `". $_GET["Field"]. "` "; $SQL = "ALTER TABLE `UserCVS` DROP `" . $_GET["Field"] . "` ";
$Erg = db_query( $SQL, "del user default setting"); $Erg = db_query($SQL, "del user default setting");
if( $Erg == 1) if ($Erg == 1)
echo "<H2>Delete ".$_GET["Field"]. " succesfull</h2>\n"; echo "<H2>Delete " . $_GET["Field"] . " succesfull</h2>\n";
else else
echo "<H2>Delete ".$_GET["Field"]. " error...</h2>\n". echo "<H2>Delete " . $_GET["Field"] . " error...</h2>\n" .
"[". mysql_error(). "]<br /><br />"; "[" . mysql_error() . "]<br /><br />";
break; break;
case "SetForAllUser": case "SetForAllUser" :
$SQL = "UPDATE `UserCVS` SET `". $_GET["Field"]. "`='". $_GET["Default"]. "' WHERE UID>0"; $SQL = "UPDATE `UserCVS` SET `" . $_GET["Field"] . "`='" . $_GET["Default"] . "' WHERE UID>0";
$Erg = db_query( $SQL, "Set new user default setting for all user"); $Erg = db_query($SQL, "Set new user default setting for all user");
if( $Erg == 1) if ($Erg == 1)
echo "<H2>UPDATE ".$_GET["Field"]. " = ". $_GET["Default"]. " for all Users succesfull</h2>\n"; echo "<H2>UPDATE " . $_GET["Field"] . " = " . $_GET["Default"] . " for all Users succesfull</h2>\n";
else else
echo "<H2>UPDATE ".$_GET["Field"]. " = ". $_GET["Default"]. " for all Users error...</h2>\n". echo "<H2>UPDATE " . $_GET["Field"] . " = " . $_GET["Default"] . " for all Users error...</h2>\n" .
"[". mysql_error(). "]<br /><br />"; "[" . mysql_error() . "]<br /><br />";
case "Save": case "Save" :
$SQL = "ALTER TABLE `UserCVS` CHANGE `". $_GET["Field"]. "` ". $SQL = "ALTER TABLE `UserCVS` CHANGE `" . $_GET["Field"] . "` " .
"`". $_GET["Field"]. "` CHAR( 1 ) NOT NULL DEFAULT '". $_GET["Default"]. "'"; "`" . $_GET["Field"] . "` CHAR( 1 ) NOT NULL DEFAULT '" . $_GET["Default"] . "'";
$Erg = db_query( $SQL, "Save user default setting"); $Erg = db_query($SQL, "Save user default setting");
if( $Erg == 1) if ($Erg == 1)
echo "<H2>Write ".$_GET["Field"]. " = ". $_GET["Default"]. " succesfull</h2>\n"; echo "<H2>Write " . $_GET["Field"] . " = " . $_GET["Default"] . " succesfull</h2>\n";
else else
echo "<H2>Write ".$_GET["Field"]. " = ". $_GET["Default"]. " error...</h2>\n". echo "<H2>Write " . $_GET["Field"] . " = " . $_GET["Default"] . " error...</h2>\n" .
"[". mysql_error(). "]<br /><br />"; "[" . mysql_error() . "]<br /><br />";
break; break;
} //SWITCH } //SWITCH
} //IF( } //IF(
$erg = mysql_query("SHOW COLUMNS FROM `UserCVS`"); $erg = mysql_query("SHOW COLUMNS FROM `UserCVS`");
echo mysql_error(); echo mysql_error();
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
@ -77,13 +75,12 @@ echo "\t\t\t<td><select name=\"GroupID\">";
$SQL_Group = "SELECT * FROM `UserGroups`"; $SQL_Group = "SELECT * FROM `UserGroups`";
$Erg_Group = mysql_query($SQL_Group, $con); $Erg_Group = mysql_query($SQL_Group, $con);
for ($n = 0 ; $n < mysql_num_rows($Erg_Group) ; $n++) for ($n = 0; $n < mysql_num_rows($Erg_Group); $n++) {
{
$UID = mysql_result($Erg_Group, $n, "UID"); $UID = mysql_result($Erg_Group, $n, "UID");
echo "\t<option value=\"$UID\""; echo "\t<option value=\"$UID\"";
if( mysql_result( $erg, 1, "Default") == $UID) if (mysql_result($erg, 1, "Default") == $UID)
echo " selected"; echo " selected";
echo ">". mysql_result($Erg_Group, $n, "Name"). "</option>\n"; echo ">" . mysql_result($Erg_Group, $n, "Name") . "</option>\n";
} }
echo "</select></td>\n"; echo "</select></td>\n";
echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\">\n"; echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\">\n";
@ -91,26 +88,25 @@ echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"SetForAllUser\"></t
echo "\t\t</form>\n"; echo "\t\t</form>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
for( $i=2; $i<mysql_num_rows($erg); $i++) for ($i = 2; $i < mysql_num_rows($erg); $i++) {
{
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
echo "\t\t<form action=\"userDefaultSetting.php\">\n"; echo "\t\t<form action=\"userDefaultSetting.php\">\n";
echo "\t\t\t<input name=\"Field\" type=\"hidden\" value=\"". mysql_result( $erg, $i, "Field"). "\">\n"; echo "\t\t\t<input name=\"Field\" type=\"hidden\" value=\"" . mysql_result($erg, $i, "Field") . "\">\n";
echo "\t\t\t<td>". mysql_result( $erg, $i, "Field"). "</td>\n"; echo "\t\t\t<td>" . mysql_result($erg, $i, "Field") . "</td>\n";
echo "\t\t\t<td>\n"; echo "\t\t\t<td>\n";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"Y\""; echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"Y\"";
if( mysql_result( $erg, $i, "Default") == "Y") if (mysql_result($erg, $i, "Default") == "Y")
echo " checked"; echo " checked";
echo ">allow\n"; echo ">allow\n";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"N\""; echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"N\"";
if( mysql_result( $erg, $i, "Default") == "N") if (mysql_result($erg, $i, "Default") == "N")
echo " checked"; echo " checked";
echo ">denied\n"; echo ">denied\n";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"G\""; echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"G\"";
if( mysql_result( $erg, $i, "Default") == "G") if (mysql_result($erg, $i, "Default") == "G")
echo " checked"; echo " checked";
echo ">group-setting\n"; echo ">group-setting\n";
@ -135,10 +131,8 @@ echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"New\"></td>\n";
echo "\t\t</form>\n"; echo "\t\t</form>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
echo "</table>\n"; echo "</table>\n";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

113
www-ssl/admin/userSaveNormal.php
Unescape Escape View File

@ -1,130 +1,119 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Index"; $header = "Index";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
include ("../../../camp2011/includes/crypt.php"); include ("includes/crypt.php");
include ("../../../camp2011/includes/funktion_db.php"); include ("includes/funktion_db.php");
if (IsSet($_GET["action"])) if (IsSet ($_GET["action"])) {
{
SetHeaderGo2Back(); SetHeaderGo2Back();
echo "Gesendeter Befehl: ". $_GET["action"]. "<br />"; echo "Gesendeter Befehl: " . $_GET["action"] . "<br />";
switch ($_GET["action"]) switch ($_GET["action"]) {
{ case "change" :
case "change": if (IsSet ($_POST["enterUID"])) {
if (IsSet($_POST["enterUID"])) if ($_POST["Type"] == "Normal") {
{
if ($_POST["Type"] == "Normal")
{
$SQL = "UPDATE `User` SET "; $SQL = "UPDATE `User` SET ";
$SQL.= " `Nick` = '". $_POST["eNick"]. "', `Name` = '". $_POST["eName"]. "', ". $SQL .= " `Nick` = '" . $_POST["eNick"] . "', `Name` = '" . $_POST["eName"] . "', " .
"`Vorname` = '". $_POST["eVorname"]. "', ". "`Vorname` = '" . $_POST["eVorname"] . "', " .
"`Telefon` = '". $_POST["eTelefon"]. "', ". "`Telefon` = '" . $_POST["eTelefon"] . "', " .
"`Handy` = '". $_POST["eHandy"]. "', ". "`Handy` = '" . $_POST["eHandy"] . "', " .
"`DECT` = '". $_POST["eDECT"]. "', ". "`DECT` = '" . $_POST["eDECT"] . "', " .
"`email` = '". $_POST["eemail"]. "', ". "`email` = '" . $_POST["eemail"] . "', " .
"`ICQ` = '". $_POST["eICQ"]. "', ". "`ICQ` = '" . $_POST["eICQ"] . "', " .
"`jabber` = '". $_POST["ejabber"]. "', ". "`jabber` = '" . $_POST["ejabber"] . "', " .
"`Size` = '". $_POST["eSize"]. "', ". "`Size` = '" . $_POST["eSize"] . "', " .
"`Gekommen`= '". $_POST["eGekommen"]. "', ". "`Gekommen`= '" . $_POST["eGekommen"] . "', " .
"`Aktiv`= '". $_POST["eAktiv"]. "', ". "`Aktiv`= '" . $_POST["eAktiv"] . "', " .
"`Tshirt` = '". $_POST["eTshirt"]. "', ". "`Tshirt` = '" . $_POST["eTshirt"] . "', " .
"`Hometown` = '". $_POST["Hometown"]. "' ". "`Hometown` = '" . $_POST["Hometown"] . "' " .
"WHERE `UID` = '". $_POST["enterUID"]. "WHERE `UID` = '" . $_POST["enterUID"] .
"' LIMIT 1;"; "' LIMIT 1;";
echo "User-"; echo "User-";
$Erg = db_query($SQL, "change user details"); $Erg = db_query($SQL, "change user details");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
} } else
else echo "<h1>Fehler: Unbekanter Type (" . $_POST["Type"] . ") <20>bergeben\n</h1>\n";
echo "<h1>Fehler: Unbekanter Type (". $_POST["Type"]. ") übergeben\n</h1>\n"; } else
} echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST <20>bergeben</h1>\n";
else
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n";
break; break;
case "delete": case "delete" :
if (IsSet($_POST["enterUID"])) if (IsSet ($_POST["enterUID"])) {
{
echo "delate User..."; echo "delate User...";
$SQL="DELETE FROM `User` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $SQL = "DELETE FROM `User` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL, "User delete"); $Erg = db_query($SQL, "User delete");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
echo "<br />\ndelate UserCVS..."; echo "<br />\ndelate UserCVS...";
$SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL2, "User CVS delete"); $Erg = db_query($SQL2, "User CVS delete");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
echo "<br />\ndelate UserEntry..."; echo "<br />\ndelate UserEntry...";
$SQL3="UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL ". $SQL3 = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL " .
"WHERE `UID`='". $_POST["enterUID"]. "';"; "WHERE `UID`='" . $_POST["enterUID"] . "';";
$Erg = db_query($SQL3, "delate UserEntry"); $Erg = db_query($SQL3, "delate UserEntry");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
} }
break; break;
case "newpw" :
case "newpw":
echo "Bitte neues Kennwort f&uuml;r <b>"; echo "Bitte neues Kennwort f&uuml;r <b>";
// Get Nick // Get Nick
$USQL = "SELECT * FROM `User` WHERE `UID`='". $_GET["eUID"]. "'"; $USQL = "SELECT * FROM `User` WHERE `UID`='" . $_GET["eUID"] . "'";
$Erg = mysql_query($USQL, $con); $Erg = mysql_query($USQL, $con);
echo mysql_result($Erg, 0, "Nick"); echo mysql_result($Erg, 0, "Nick");
echo "</b> eingeben:<br />"; echo "</b> eingeben:<br />";
echo "<form action=\"./userSaveNormal.php?action=newpwsave\" method=\"POST\">\n"; echo "<form action=\"./userSaveNormal.php?action=newpwsave\" method=\"POST\">\n";
echo "<input type=\"Password\" name=\"ePasswort\">"; echo "<input type=\"Password\" name=\"ePasswort\">";
echo "<input type=\"Password\" name=\"ePasswort2\">"; echo "<input type=\"Password\" name=\"ePasswort2\">";
echo "<input type=\"hidden\" name=\"eUID\" value=\"". $_GET["eUID"]. "\">"; echo "<input type=\"hidden\" name=\"eUID\" value=\"" . $_GET["eUID"] . "\">";
echo "<input type=\"submit\" value=\"sichern...\">\n"; echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>"; echo "</form>";
break; break;
case "newpwsave": case "newpwsave" :
if ($_POST["ePasswort"] == $_POST["ePasswort2"]) if ($_POST["ePasswort"] == $_POST["ePasswort2"]) { // beide Passwoerter passen...
{ // beide Passwoerter passen...
$_POST["ePasswort"] = PassCrypt($_POST["ePasswort"]); $_POST["ePasswort"] = PassCrypt($_POST["ePasswort"]);
$SQL = "UPDATE `User` SET `Passwort`='". $_POST["ePasswort"]. "' ". $SQL = "UPDATE `User` SET `Passwort`='" . $_POST["ePasswort"] . "' " .
"WHERE `UID`='". $_POST["eUID"]. "'"; "WHERE `UID`='" . $_POST["eUID"] . "'";
$Erg = db_query($SQL, "User new passwort"); $Erg = db_query($SQL, "User new passwort");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
} } else
else
echo "Das Passwort wurde nicht &uuml;bereinstimmend eingegeben!"; echo "Das Passwort wurde nicht &uuml;bereinstimmend eingegeben!";
break; break;
} // end switch } // end switch
// ende - Action ist gesetzt // ende - Action ist gesetzt
} } else {
else
{
// kein Action gesetzt -> abbruch // kein Action gesetzt -> abbruch
echo "Unzul&auml;ssiger Aufruf.<br />Bitte neu editieren..."; echo "Unzul&auml;ssiger Aufruf.<br />Bitte neu editieren...";
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

147
www-ssl/admin/userSaveSecure.php
Unescape Escape View File

@ -1,171 +1,160 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Index"; $header = "Index";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
include ("../../../camp2011/includes/crypt.php"); include ("includes/crypt.php");
include ("../../../camp2011/includes/funktion_db.php"); include ("includes/funktion_db.php");
if( !IsSet($_POST["enterUID"]) ) if (!IsSet ($_POST["enterUID"])) {
{
$Right = "N"; $Right = "N";
} elseif( $_POST["enterUID"] > 0 ) { }
$Right = $_SESSION['CVS'][ "admin/user.php"]; elseif ($_POST["enterUID"] > 0) {
$Right = $_SESSION['CVS']["admin/user.php"];
} else { } else {
$Right = $_SESSION['CVS'][ "admin/group.php"]; $Right = $_SESSION['CVS']["admin/group.php"];
} }
if ( ($Right=="Y") && IsSet($_GET["action"])) if (($Right == "Y") && IsSet ($_GET["action"])) {
{
SetHeaderGo2Back(); SetHeaderGo2Back();
echo "Gesendeter Befehl: ". $_GET["action"]. "<br />"; echo "Gesendeter Befehl: " . $_GET["action"] . "<br />";
switch ($_GET["action"]) switch ($_GET["action"]) {
{ case "change" :
case "change": if (IsSet ($_POST["enterUID"])) {
if (IsSet($_POST["enterUID"])) if ($_POST["Type"] == "Secure") {
{
if ($_POST["Type"] == "Secure")
{
$SQL2 = "UPDATE `UserCVS` SET "; $SQL2 = "UPDATE `UserCVS` SET ";
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "'"; $SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "'";
$Erg_CVS = mysql_query($SQL_CVS, $con); $Erg_CVS = mysql_query($SQL_CVS, $con);
$CVS_Data = mysql_fetch_array($Erg_CVS); $CVS_Data = mysql_fetch_array($Erg_CVS);
$CVS_Data_i = 1; $CVS_Data_i = 1;
foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) {
{ if (($CVS_Data_i +1) % 2 && $CVS_Data_Name != "UID") {
if( ($CVS_Data_i+1)%2 && $CVS_Data_Name!="UID") { if ($CVS_Data_Name == "GroupID") {
if( $CVS_Data_Name == "GroupID") if ($_POST["enterUID"] > 0)
{ $SQL2 .= "`$CVS_Data_Name` = '" . $_POST["GroupID"] . "', ";
if( $_POST["enterUID"] > 0 )
$SQL2.= "`$CVS_Data_Name` = '". $_POST["GroupID"]."', ";
else else
$SQL2.= "`$CVS_Data_Name` = NULL, "; $SQL2 .= "`$CVS_Data_Name` = NULL, ";
} else { } else {
$SQL2.= "`$CVS_Data_Name` = '". $_POST[$CVS_Data_i]."', "; $SQL2 .= "`$CVS_Data_Name` = '" . $_POST[$CVS_Data_i] . "', ";
} }
} }
$CVS_Data_i++; $CVS_Data_i++;
} }
$SQL2 = substr( $SQL2, 0, strlen($SQL2)-2 ); $SQL2 = substr($SQL2, 0, strlen($SQL2) - 2);
$SQL2.= " WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $SQL2 .= " WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
echo "<br />Secure-"; echo "<br />Secure-";
$Erg = db_query($SQL2, "change user CVS"); $Erg = db_query($SQL2, "change user CVS");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
} }
else } else
echo "<h1>Fehler: Unbekanter Type (". $_POST["Type"]. ") übergeben\n</h1>\n"; echo "<h1>Fehler: Unbekanter Type (" . $_POST["Type"] . ") <20>bergeben\n</h1>\n";
} } else
else echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST <20>bergeben</h1>\n";
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n";
break; break;
case "changeGroupName": case "changeGroupName" :
if (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]<0) ) if (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] < 0)) {
{ $SQL = "UPDATE `UserGroups` SET `Name`='" . $_POST["GroupName"] . "' WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1 ;";
$SQL = "UPDATE `UserGroups` SET `Name`='". $_POST["GroupName"]. "' WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1 ;";
$Erg = db_query($SQL, "Update Group Name"); $Erg = db_query($SQL, "Update Group Name");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
} } else
else echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST <20>bergeben</h1>\n";
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n";
break; break;
case "delete": case "delete" :
if (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]>0) ) if (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] > 0)) {
{
echo "delate User..."; echo "delate User...";
$SQL="DELETE FROM `User` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $SQL = "DELETE FROM `User` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL, "User delete"); $Erg = db_query($SQL, "User delete");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
echo "<br />\ndelate UserCVS..."; echo "<br />\ndelate UserCVS...";
$SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL2, "User CVS delete"); $Erg = db_query($SQL2, "User CVS delete");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
echo "<br />\ndelate UserEntry..."; echo "<br />\ndelate UserEntry...";
$SQL3="UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL ". $SQL3 = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL " .
"WHERE `UID`='". $_POST["enterUID"]. "';"; "WHERE `UID`='" . $_POST["enterUID"] . "';";
$Erg = db_query($SQL3, "delate UserEntry"); $Erg = db_query($SQL3, "delate UserEntry");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
} }
} elseif (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]<0) ) { elseif (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] < 0)) {
echo "delate Group..."; echo "delate Group...";
$SQL="DELETE FROM `UserGroups` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $SQL = "DELETE FROM `UserGroups` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL, "Group delete"); $Erg = db_query($SQL, "Group delete");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
echo "<br />\ndelate UserCVS..."; echo "<br />\ndelate UserCVS...";
$SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL2, "User CVS delete"); $Erg = db_query($SQL2, "User CVS delete");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
} }
break; break;
} // end switch } // end switch
// ende - Action ist gesetzt // ende - Action ist gesetzt
} elseif ( IsSet($_GET["new"]) && ($_SESSION['CVS']["admin/group.php"]=="Y") ) { }
echo "Gesendeter Befehl: ". $_GET["new"]. "<br />"; elseif (IsSet ($_GET["new"]) && ($_SESSION['CVS']["admin/group.php"] == "Y")) {
echo "Gesendeter Befehl: " . $_GET["new"] . "<br />";
switch ($_GET["new"]) switch ($_GET["new"]) {
{ case "newGroup" :
case "newGroup":
echo "\tGenerate new Group ID...\n"; echo "\tGenerate new Group ID...\n";
$SQLid="SELECT MIN(`UID`) FROM `UserCVS`;"; $SQLid = "SELECT MIN(`UID`) FROM `UserCVS`;";
$Erg = mysql_query( $SQLid); $Erg = mysql_query($SQLid);
if( mysql_num_rows($Erg) == 1) { if (mysql_num_rows($Erg) == 1) {
$NewId = mysql_result( $Erg, 0, 0)-1; $NewId = mysql_result($Erg, 0, 0) - 1;
$SQLnew1 = "INSERT INTO `UserGroups` (`UID`, `Name`) VALUES ('$NewId', '". $_POST["GroupName"]. "' );"; $SQLnew1 = "INSERT INTO `UserGroups` (`UID`, `Name`) VALUES ('$NewId', '" . $_POST["GroupName"] . "' );";
$SQLnew2 = "INSERT INTO `UserCVS` (`UID`, `GroupID`) VALUES ('$NewId', NULL );"; $SQLnew2 = "INSERT INTO `UserCVS` (`UID`, `GroupID`) VALUES ('$NewId', NULL );";
echo "\t<br />Generate new UserGroup ...\n"; echo "\t<br />Generate new UserGroup ...\n";
$ErgNew1 = db_query($SQLnew1, "create UserGroups Entry"); $ErgNew1 = db_query($SQLnew1, "create UserGroups Entry");
if ($ErgNew1 == 1) if ($ErgNew1 == 1) {
{
echo "\t<br />Generate new User rights...\n"; echo "\t<br />Generate new User rights...\n";
$ErgNew2 = db_query($SQLnew2, "UserCVS Entry"); $ErgNew2 = db_query($SQLnew2, "UserCVS Entry");
if ($ErgNew1 == 1) { if ($ErgNew1 == 1) {
echo "\t<br />New group was created.\n"; echo "\t<br />New group was created.\n";
} else { } else {
echo "Error on creation\n(". mysql_error($con). ")"; echo "Error on creation\n(" . mysql_error($con) . ")";
} }
} else { } else {
echo "Error on creation\n(". mysql_error($con). ")"; echo "Error on creation\n(" . mysql_error($con) . ")";
} }
} }
break; break;
} }
} else { } else {
@ -173,6 +162,6 @@ if ( ($Right=="Y") && IsSet($_GET["action"]))
echo "Unzul&auml;ssiger Aufruf.<br />Bitte neu editieren..."; echo "Unzul&auml;ssiger Aufruf.<br />Bitte neu editieren...";
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

Write Preview
Loading…
Cancel
Save