kontakt
/
engelsystem
3
0
Fork 0
Code Issues 12 Pull Requests Projects Releases Wiki Activity

bootstrapping

Browse Source
main
Philip Häusler 14 years ago
parent a537f4bf73
commit e050c0dc7f
27 changed files with 2622 additions and 2876 deletions
Show Stats Download Patch File Download Diff File

1
config/.gitignore vendored
Unescape Escape View File

@ -2,3 +2,4 @@ config_db.php
config_jabber.php config_jabber.php
config_modem.php config_modem.php
config.php config.php
config_IAX.php

332
www-ssl/admin/EngelType.php
Unescape Escape View File

@ -1,191 +1,167 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "R&auml;ume"; $title = "R&auml;ume";
$header = "Verwaltung der R&auml;ume"; $header = "Verwaltung der R&auml;ume";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include("../../../camp2011/includes/funktion_db.php"); include ("includes/funktion_db.php");
function runSQL( $SQL) function runSQL($SQL) {
{ global $con;
global $con; // hier muesste das SQL ausgefuehrt werden...
// hier muesste das SQL ausgefuehrt werden... $Erg = mysql_query($SQL, $con);
$Erg = mysql_query($SQL, $con); if ($Erg) {
if ($Erg) echo "&Auml;nderung wurde gesichert...<br />";
{ echo "[$SQL]<br />";
echo "&Auml;nderung wurde gesichert...<br />"; return 1;
echo "[$SQL]<br />"; } else {
return 1; echo "Fehler beim speichern... bitte noch ein mal probieren :)";
} echo "<br /><br />" . mysql_error($con) . "<br />";
else echo "[$SQL]<br />";
{ return 0;
echo "Fehler beim speichern... bitte noch ein mal probieren :)"; }
echo "<br /><br />".mysql_error( $con ). "<br />";
echo "[$SQL]<br />";
return 0;
}
} }
function runSQL_log( $SQL, $commed) function runSQL_log($SQL, $commed) {
{ global $con;
global $con; // hier muesste das SQL ausgefuehrt werden...
// hier muesste das SQL ausgefuehrt werden... $Erg = db_query($SQL, $commed);
$Erg = db_query($SQL, $commed); if ($Erg) {
if ($Erg) echo "&Auml;nderung wurde gesichert...<br />";
{ echo "[$SQL]<br />";
echo "&Auml;nderung wurde gesichert...<br />"; return 1;
echo "[$SQL]<br />"; } else {
return 1; echo "Fehler beim speichern... bitte noch ein mal probieren :)";
} echo "<br /><br />" . mysql_error($con) . "<br />";
else echo "[$SQL]<br />";
{ return 0;
echo "Fehler beim speichern... bitte noch ein mal probieren :)"; }
echo "<br /><br />".mysql_error( $con ). "<br />";
echo "[$SQL]<br />";
return 0;
}
} }
$Sql = "SELECT * FROM `EngelType` ORDER BY `NAME`"; $Sql = "SELECT * FROM `EngelType` ORDER BY `NAME`";
$Erg = mysql_query($Sql, $con); $Erg = mysql_query($Sql, $con);
if( !IsSet($_GET["action"]) ) if (!IsSet ($_GET["action"])) {
{ echo "Hallo " . $_SESSION['Nick'] .
echo "Hallo ".$_SESSION['Nick']. ",<br />\nhier hast du die M&ouml;glichkeit, neue Engeltypen f&uuml;r die Schichtpl&auml;ne einzutragen " .
",<br />\nhier hast du die M&ouml;glichkeit, neue Engeltypen f&uuml;r die Schichtpl&auml;ne einzutragen ". "oder vorhandene abzu&auml;ndern:<br /><br />\n";
"oder vorhandene abzu&auml;ndern:<br /><br />\n";
echo "<a href=\"./EngelType.php?action=new\">- Neuen EngelType eintragen</a><br />\n";
echo "<a href=\"./EngelType.php?action=new\">- Neuen EngelType eintragen</a><br />\n";
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<tr class=\"contenttopic\">\n";
echo "<tr class=\"contenttopic\">\n";
for ($i = 1; $i < mysql_num_fields($Erg); $i++) {
for( $i = 1; $i < mysql_num_fields($Erg); $i++ ) echo "\t<td>" . mysql_field_name($Erg, $i) . "</td>";
{ }
echo "\t<td>". mysql_field_name($Erg, $i). "</td>"; echo "\t<td>&Auml;ndern</td>";
} echo "</tr>";
echo "\t<td>&Auml;ndern</td>";
echo "</tr>"; for ($t = 0; $t < mysql_num_rows($Erg); $t++) {
echo "\t<tr class=\"content\">\n";
for( $t = 0; $t < mysql_num_rows($Erg); $t++ ) for ($j = 1; $j < mysql_num_fields($Erg); $j++) {
{ echo "\t\t<td>" . mysql_result($Erg, $t, $j) . "</td>\n";
echo "\t<tr class=\"content\">\n"; }
for ($j = 1; $j < mysql_num_fields($Erg); $j++) echo "\t\t<td><a href=\"./EngelType.php?action=change&TID=" . mysql_result($Erg, $t, "TID") . "\">###</a></td>\n";
{ echo "\t</tr>\n";
echo "\t\t<td>".mysql_result($Erg, $t, $j)."</td>\n"; } // ende Auflistung Raeume
} echo "</table>";
echo "\t\t<td><a href=\"./EngelType.php?action=change&TID=".mysql_result($Erg, $t, "TID")."\">###</a></td>\n"; } else {
echo "\t</tr>\n";
} // ende Auflistung Raeume switch ($_GET["action"]) {
echo "</table>";
} case 'new' :
else echo "Neuen EngelType einrichten: <br />";
{ echo "<form action=\"./EngelType.php\" method=\"GET\">\n";
echo "<table>\n";
switch ($_GET["action"]) {
for ($Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++) {
case 'new': echo "<td>" . mysql_field_name($Erg, $Uj) . "</td>" .
echo "Neuen EngelType einrichten: <br />"; "<td><input type=\"text\" size=\"40\" name=\"" . mysql_field_name($Erg, $Uj) . "\"></td></tr>\n";
echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; }
echo "<table>\n"; echo "</table>\n";
echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n";
for( $Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++ ) echo "<input type=\"submit\" value=\"sichern...\">\n";
{ echo "</form>";
echo "<td>".mysql_field_name($Erg, $Uj)."</td>". break;
"<td><input type=\"text\" size=\"40\" name=\"".mysql_field_name($Erg, $Uj)."\"></td></tr>\n";
} case 'newsave' :
echo "</table>\n"; $vars = $_GET;
echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n"; $count = count($vars) - 1;
echo "<input type=\"submit\" value=\"sichern...\">\n"; $vars = array_splice($vars, 0, $count);
echo "</form>"; $Keys = "";
break; $Values = "";
foreach ($vars as $key => $value) {
case 'newsave': $Keys .= ", `$key`";
$vars = $_GET; $Values .= ", '$value'";
$count = count($vars) - 1; }
$vars = array_splice($vars, 0, $count);
$Keys=""; if (runSQL_log("INSERT INTO `EngelType` (" . substr($Keys, 2) . ") VALUES (" . substr($Values, 2) . ")", "save new EngelType")) {
$Values=""; SetHeaderGo2Back();
foreach($vars as $key => $value){
$Keys .= ", `$key`"; $SQL2 = "SELECT * FROM `EngelType` WHERE `Name`='" . $_GET["Name"] . "'";
$Values .= ", '$value'"; $ERG = mysql_query($SQL2, $con);
}
if (mysql_num_rows($ERG) == 1)
if( runSQL_log( "INSERT INTO `EngelType` (". substr($Keys, 2). ") VALUES (". substr($Values, 2). ")", runSQL_log("ALTER TABLE `Room` ADD `DEFAULT_EID_" . mysql_result($ERG, 0, 0) .
"save new EngelType") ) "` INT DEFAULT '0' NOT NULL;", "add new EngelType in Romm Table");
{ }
SetHeaderGo2Back(); break;
$SQL2 = "SELECT * FROM `EngelType` WHERE `Name`='". $_GET["Name"]. "'"; case 'change' :
$ERG = mysql_query($SQL2, $con); if (!IsSet ($_GET["TID"]))
echo "Fehlerhafter Aufruf!";
if( mysql_num_rows($ERG) == 1) else {
runSQL_log( "ALTER TABLE `Room` ADD `DEFAULT_EID_". mysql_result( $ERG, 0, 0). echo "Raum ab&auml;ndern:\n";
"` INT DEFAULT '0' NOT NULL;", echo "Hier kannst du eintragen, den EngelType &auml;ndern.";
"add new EngelType in Romm Table"); echo "<form action=\"./EngelType.php\" method=\"GET\">\n";
} echo "<table>\n";
break;
$SQL2 = "SELECT * FROM `EngelType` WHERE `TID`='" . $_GET["TID"] . "'";
case 'change': $ERG = mysql_query($SQL2, $con);
if (! IsSet($_GET["TID"]))
echo "Fehlerhafter Aufruf!"; for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++)
else echo "<tr><td>" . mysql_field_name($ERG, $Uj) . "</td>" .
{ "<td><input type=\"text\" size=\"40\" name=\"e" . mysql_field_name($ERG, $Uj) . "\" " .
echo "Raum ab&auml;ndern:\n"; "value=\"" . mysql_result($ERG, 0, $Uj) . "\"></td></tr>\n";
echo "Hier kannst du eintragen, den EngelType &auml;ndern.";
echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; echo "</table>\n";
echo "<table>\n"; echo "<input type=\"hidden\" name=\"eTID\" value=\"" . $_GET["TID"] . "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n";
$SQL2 = "SELECT * FROM `EngelType` WHERE `TID`='". $_GET["TID"]. "'"; echo "<input type=\"submit\" value=\"sichern...\">\n";
$ERG = mysql_query($SQL2, $con); echo "</form>";
echo "<form action=\"./EngelType.php\" method=\"GET\">\n";
for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) echo "<input type=\"hidden\" name=\"TID\" value=\"" . $_GET["TID"] . "\">\n";
echo "<tr><td>". mysql_field_name($ERG, $Uj). "</td>". echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n";
"<td><input type=\"text\" size=\"40\" name=\"e". mysql_field_name($ERG, $Uj). "\" ". echo "<input type=\"submit\" value=\"L&ouml;schen...\">";
"value=\"". mysql_result($ERG, 0, $Uj). "\"></td></tr>\n"; echo "</form>";
}
echo "</table>\n"; break;
echo "<input type=\"hidden\" name=\"eTID\" value=\"". $_GET["TID"]. "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; case 'changesave' :
echo "<input type=\"submit\" value=\"sichern...\">\n"; $vars = $_GET;
echo "</form>"; $count = count($vars) - 2;
echo "<form action=\"./EngelType.php\" method=\"GET\">\n"; $vars = array_splice($vars, 0, $count);
echo "<input type=\"hidden\" name=\"TID\" value=\"". $_GET["TID"]. "\">\n"; $keys = "";
echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; $sql = "";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">"; foreach ($vars as $key => $value) {
echo "</form>"; $keys = substr($key, 1);
} $sql .= ", `" . $keys . "`='" . $value . "'";
break; }
runSQL_log("UPDATE `EngelType` SET " . substr($sql, 2) . " WHERE `TID`='" . $_GET["eTID"] . "'", "Save Change EngelType");
case 'changesave': SetHeaderGo2Back();
$vars = $_GET; break;
$count = count($vars) - 2;
$vars = array_splice($vars, 0, $count); case 'delete' :
$keys=""; if (IsSet ($_GET["TID"])) {
$sql=""; if (runSQL_log("DELETE FROM `EngelType` WHERE `TID`='" . $_GET["TID"] . "'", "delete EngelType"))
foreach($vars as $key => $value) runSQL_log("ALTER TABLE `Room` DROP `DEFAULT_EID_" . $_GET["TID"] . "`;", "delete EngelType in Room Table");
{ } else
$keys = substr( $key, 1); echo "Fehlerhafter Aufruf";
$sql .= ", `". $keys. "`='". $value. "'"; SetHeaderGo2Back();
} break;
runSQL_log( "UPDATE `EngelType` SET ". substr($sql, 2). " WHERE `TID`='". $_GET["eTID"]. "'", }
"Save Change EngelType");
SetHeaderGo2Back();
break;
case 'delete':
if (IsSet($_GET["TID"]))
{
if( runSQL_log( "DELETE FROM `EngelType` WHERE `TID`='". $_GET["TID"]. "'", "delete EngelType"))
runSQL_log( "ALTER TABLE `Room` DROP `DEFAULT_EID_". $_GET["TID"]. "`;",
"delete EngelType in Room Table");
}
else
echo "Fehlerhafter Aufruf";
SetHeaderGo2Back();
break;
}
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

20
www-ssl/admin/Recentchanges.php
Unescape Escape View File

@ -1,8 +1,9 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "ChangeLog"; $title = "ChangeLog";
$header = "Datenbank-Auszug"; $header = "Datenbank-Auszug";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
$SQL = "SELECT * FROM `ChangeLog` ORDER BY `Time` DESC LIMIT 0,10000"; $SQL = "SELECT * FROM `ChangeLog` ORDER BY `Time` DESC LIMIT 0,10000";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
@ -12,18 +13,17 @@ echo mysql_error($con);
echo "<table border=1>\n"; echo "<table border=1>\n";
echo "<tr>\n\t<th>Time</th>\n\t<th>User</th>\n\t<th>Commend</th>\n\t<th>SQL Commad</th>\n</tr>\n"; echo "<tr>\n\t<th>Time</th>\n\t<th>User</th>\n\t<th>Commend</th>\n\t<th>SQL Commad</th>\n</tr>\n";
for ($n = 0 ; $n < mysql_num_rows($Erg) ; $n++) for ($n = 0; $n < mysql_num_rows($Erg); $n++) {
{ echo "<tr>\n";
echo "<tr>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Time") . "</td>\n";
echo "\t<td>". mysql_result( $Erg, $n, "Time"). "</td>\n"; echo "\t<td>" . UID2Nick(mysql_result($Erg, $n, "UID")) . displayavatar(mysql_result($Erg, $n, "UID")) . "</td>\n";
echo "\t<td>". UID2Nick(mysql_result( $Erg, $n, "UID")). displayavatar(mysql_result( $Erg, $n, "UID")). "</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Commend") . "</td>\n";
echo "\t<td>". mysql_result( $Erg, $n, "Commend"). "</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "SQLCommad") . "</td>\n";
echo "\t<td>". mysql_result( $Erg, $n, "SQLCommad"). "</td>\n"; echo "</tr>\n";
echo "</tr>\n";
} }
echo "</table>\n"; echo "</table>\n";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

232
www-ssl/admin/UserPicture.php
Unescape Escape View File

@ -1,120 +1,104 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "UserPicture"; $title = "UserPicture";
$header = "Verwaltung der User Picture"; $header = "Verwaltung der User Picture";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php"); include ("includes/funktion_schichtplan_aray.php");
if (IsSet ($_GET["action"])) {
if( IsSet($_GET["action"]) ) UnSet ($SQL);
{
UnSet($SQL); switch ($_GET["action"]) {
case 'FormUpload' :
switch ($_GET["action"]) echo "Hier kannst Du ein Foto hochladen f&ouml;r:";
{ echo "<form action=\"./UserPicture.php?action=sendPicture\" method=\"post\" enctype=\"multipart/form-data\">\n";
case 'FormUpload': echo "\t<select name=\"UID\">\n";
echo "Hier kannst Du ein Foto hochladen f&ouml;r:"; $usql = "SELECT * FROM `User` ORDER BY `Nick`";
echo "<form action=\"./UserPicture.php?action=sendPicture\" method=\"post\" enctype=\"multipart/form-data\">\n"; $uErg = mysql_query($usql, $con);
echo "\t<select name=\"UID\">\n"; for ($k = 0; $k < mysql_num_rows($uErg); $k++)
$usql="SELECT * FROM `User` ORDER BY `Nick`"; echo "\t\t<option value=\"" . mysql_result($uErg, $k, "UID") . "\">" . mysql_result($uErg, $k, "Nick") . "</option>\n";
$uErg = mysql_query($usql, $con); echo "\t</select>\n";
for ($k=0; $k<mysql_num_rows($uErg); $k++) echo "\t<input type=\"hidden\" name=\"action\" value=\"sendPicture\">\n";
echo "\t\t<option value=\"".mysql_result($uErg, $k, "UID")."\">". mysql_result($uErg, $k, "Nick"). "</option>\n"; echo "\t<input name=\"file\" type=\"file\" size=\"50\" maxlength=\"" . get_cfg_var("post_max_size") . "\">\n";
echo "\t</select>\n"; echo "\t(max " . get_cfg_var("post_max_size") . "Byte)<br />\n";
echo "\t<input type=\"hidden\" name=\"action\" value=\"sendPicture\">\n"; echo "\t<input type=\"submit\" value=\"" . Get_Text("upload"), "\">\n";
echo "\t<input name=\"file\" type=\"file\" size=\"50\" maxlength=\"". get_cfg_var("post_max_size"). "\">\n"; echo "</form>\n";
echo "\t(max ". get_cfg_var("post_max_size"). "Byte)<br />\n"; break;
echo "\t<input type=\"submit\" value=\"". Get_Text("upload"),"\">\n"; case 'sendPicture' :
echo "</form>\n"; if (($_FILES["file"]["size"] > 0) && (isset ($_POST["UID"]))) {
break; if (($_FILES["file"]["type"] == "image/jpeg") || ($_FILES["file"]["type"] == "image/png") || ($_FILES["file"]["type"] == "image/gif")) {
case 'sendPicture': $data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"])));
if( ($_FILES["file"]["size"] > 0) && (isset( $_POST["UID"])) )
{ if (GetPicturShow($_POST['UID']) == "")
if( ($_FILES["file"]["type"] == "image/jpeg") || $SQL = "INSERT INTO `UserPicture` " .
($_FILES["file"]["type"] == "image/png") || "( `UID`,`Bild`, `ContentType`, `show`) " .
($_FILES["file"]["type"] == "image/gif") ) "VALUES ('" . $_POST['UID'] . "', '$data', '" . $_FILES["file"]["type"] . "', 'N')";
{ else
$data = addslashes(fread(fopen($_FILES["file"]["tmp_name"], "r"), filesize($_FILES["file"]["tmp_name"]))); $SQL = "UPDATE `UserPicture` SET " .
"`Bild`='$data', " .
if( GetPicturShow( $_POST['UID']) == "") "`ContentType`='" . $_FILES["file"]["type"] . "' " .
$SQL = "INSERT INTO `UserPicture` ". "WHERE `UID`='" . $_POST['UID'] . "'";
"( `UID`,`Bild`, `ContentType`, `show`) ".
"VALUES ('". $_POST['UID']. "', '$data', '". $_FILES["file"]["type"]. "', 'N')"; echo "Upload Pictur:'" . $_FILES["file"]["name"] . "', " .
else "MIME-Type: " . $_FILES["file"]["type"] . ", " .
$SQL = "UPDATE `UserPicture` SET ". $_FILES["file"]["size"] . " Byte " .
"`Bild`='$data', ". "for " . UID2Nick($_POST["UID"]);
"`ContentType`='". $_FILES["file"]["type"]. "' ". } else
"WHERE `UID`='". $_POST['UID']. "'"; Print_Text("pub_einstellungen_send_KO");
} else
echo "Upload Pictur:'" . $_FILES["file"]["name"] . "', ". Print_Text("pub_einstellungen_send_KO");
"MIME-Type: " . $_FILES["file"]["type"]. ", ". break;
$_FILES["file"]["size"]. " Byte ".
"for ". UID2Nick( $_POST["UID"]); case 'SetN' :
} if (IsSet ($_GET["UID"])) {
else echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gesperrt:<br />";
Print_Text("pub_einstellungen_send_KO"); $SQL = "UPDATE `UserPicture` SET `show`='N' WHERE `UID`='" . $_GET["UID"] . "'";
} } else
else echo "Fehlerhafter Aufruf";
Print_Text("pub_einstellungen_send_KO"); break;
break; case 'SetY' :
if (IsSet ($_GET["UID"])) {
case 'SetN': echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde Freigegeben:<br />";
if (IsSet($_GET["UID"])) $SQL = "UPDATE `UserPicture` SET `show`='Y' WHERE `UID`='" . $_GET["UID"] . "'";
{ } else
echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde gesperrt:<br />"; echo "Fehlerhafter Aufruf";
$SQL = "UPDATE `UserPicture` SET `show`='N' WHERE `UID`='". $_GET["UID"]. "'"; break;
} case 'del' :
else echo "Wollen Sie das Bild von '" . UID2Nick($_GET["UID"]) . "' wirklich l&ouml;schen? " .
echo "Fehlerhafter Aufruf"; "<a href=\"./UserPicture.php?action=delYes&UID=" . $_GET["UID"] . "\">Yes</a>";
break; break;
case 'SetY': case 'delYes' :
if (IsSet($_GET["UID"])) if (IsSet ($_GET["UID"])) {
{ echo "Bild von '" . UID2Nick($_GET["UID"]) . "' wurde gel&ouml;scht:<br />";
echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde Freigegeben:<br />"; $SQL = "DELETE FROM `UserPicture` WHERE `UID`='" . $_GET["UID"] . "' LIMIT 1";
$SQL = "UPDATE `UserPicture` SET `show`='Y' WHERE `UID`='". $_GET["UID"]. "'"; } else
} echo "Fehlerhafter Aufruf";
else break;
echo "Fehlerhafter Aufruf"; default :
break; echo "Fehlerhafter Aufruf";
case 'del':
echo "Wollen Sie das Bild von '". UID2Nick( $_GET["UID"]). "' wirklich l&ouml;schen? ". } //switch
"<a href=\"./UserPicture.php?action=delYes&UID=". $_GET["UID"]. "\">Yes</a>";
break; // Update ???
case 'delYes': if (IsSet ($SQL)) {
if (IsSet($_GET["UID"])) // hier muesste das SQL ausgefuehrt werden...
{ $Erg = mysql_query($SQL, $con);
echo "Bild von '". UID2Nick( $_GET["UID"]). "' wurde gel&ouml;scht:<br />"; if ($Erg == 1)
$SQL = "DELETE FROM `UserPicture` WHERE `UID`='". $_GET["UID"]. "' LIMIT 1"; echo "&Auml;nderung wurde gesichert...<br />";
} else {
else echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "Fehlerhafter Aufruf"; echo "<br /><br />" . mysql_error($con) . "<br />($SQL)<br />";
break; }
default: } // Ende Update
echo "Fehlerhafter Aufruf"; echo "<br />\n<hr width=\"100%\">\n<br />\n\n";
} //switch
// Update ???
if (IsSet($SQL))
{
// hier muesste das SQL ausgefuehrt werden...
$Erg = mysql_query($SQL, $con);
if ($Erg == 1)
echo "&Auml;nderung wurde gesichert...<br />";
else
{
echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "<br /><br />".mysql_error( $con ). "<br />($SQL)<br />";
}
} // Ende Update
echo "<br />\n<hr width=\"100%\">\n<br />\n\n";
} //IF IsSet($action) } //IF IsSet($action)
//ausgabe der Liste //ausgabe der Liste
$Sql = "SELECT * FROM `UserPicture` WHERE `UID`>0;"; $Sql = "SELECT * FROM `UserPicture` WHERE `UID`>0;";
$Erg = mysql_query($Sql, $con); $Erg = mysql_query($Sql, $con);
echo "Hallo ". $_SESSION['Nick']. ",<br />\nhier hast du die M&ouml;glichkeit, die Bilder der Engel freizugeben:<br /><br />\n"; echo "Hallo " . $_SESSION['Nick'] . ",<br />\nhier hast du die M&ouml;glichkeit, die Bilder der Engel freizugeben:<br /><br />\n";
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<tr class=\"contenttopic\">\n"; echo "<tr class=\"contenttopic\">\n";
@ -124,26 +108,24 @@ echo "\t<td>Status</td>\n";
echo "\t<td>L&ouml;schen</td>\n"; echo "\t<td>L&ouml;schen</td>\n";
echo "</tr>"; echo "</tr>";
for( $t = 0; $t < mysql_num_rows($Erg); $t++ ) for ($t = 0; $t < mysql_num_rows($Erg); $t++) {
{ $UIDs = mysql_result($Erg, $t, "UID");
$UIDs = mysql_result($Erg, $t, "UID"); echo "\t<tr class=\"content\">\n";
echo "\t<tr class=\"content\">\n";
echo "\t\t<td>" . UID2Nick(mysql_result($Erg, $t, "UID")) . "</td>\n";
echo "\t\t<td>". UID2Nick(mysql_result($Erg, $t, "UID")). "</td>\n"; echo "\t\t<td>" . displayPictur($UIDs, 0) . "</td>\n";
echo "\t\t<td>". displayPictur( $UIDs, 0). "</td>\n";
if (GetPicturShow($UIDs) == "Y")
if( GetPicturShow( $UIDs) == "Y") echo "\t\t<td><a href=\"./UserPicture.php?action=SetN&UID=$UIDs\">sperren</a></td>\n";
echo "\t\t<td><a href=\"./UserPicture.php?action=SetN&UID=$UIDs\">sperren</a></td>\n"; elseif (GetPicturShow($UIDs) == "N") echo "\t\t<td><a href=\"./UserPicture.php?action=SetY&UID=$UIDs\">freigeben</a></td>\n";
elseif( GetPicturShow( $UIDs) == "N") else
echo "\t\t<td><a href=\"./UserPicture.php?action=SetY&UID=$UIDs\">freigeben</a></td>\n"; echo "\t\t<td>ERROR: show='" . GetPicturShow($UIDs) . "'</td>\n";
else echo "\t\t<td><a href=\"./UserPicture.php?action=del&UID=$UIDs\">del</a></td>\n";
echo "\t\t<td>ERROR: show='". GetPicturShow( $UIDs). "'</td>\n"; echo "\t</tr>\n";
echo "\t\t<td><a href=\"./UserPicture.php?action=del&UID=$UIDs\">del</a></td>\n";
echo "\t</tr>\n";
} // ende Auflistung Raeume } // ende Auflistung Raeume
echo "</table>"; echo "</table>";
echo "<br /><a href=\"./UserPicture.php?action=FormUpload\">picture upload</a>\n"; echo "<br /><a href=\"./UserPicture.php?action=FormUpload\">picture upload</a>\n";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

119
www-ssl/admin/aktiv.php
Unescape Escape View File

@ -1,55 +1,55 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "akive Engel"; $title = "akive Engel";
$header = "Liste der aktiven Engel"; $header = "Liste der aktiven Engel";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
echo "<form action=\"./aktiv.php\" method=\"post\">"; echo "<form action=\"./aktiv.php\" method=\"post\">";
echo Get_Text("pub_aktive_Text1")."<br />\n"; echo Get_Text("pub_aktive_Text1") . "<br />\n";
echo Get_Text("pub_aktive_Text2")."<br /><br />\n"; echo Get_Text("pub_aktive_Text2") . "<br /><br />\n";
// auswahlbox // auswahlbox
echo Get_Text("pub_aktive_Text31")."\n"; echo Get_Text("pub_aktive_Text31") . "\n";
echo "<select name=\"Anzahl\">\n"; echo "<select name=\"Anzahl\">\n";
for( $i=0; $i<50; $i++) for ($i = 0; $i < 50; $i++)
echo "\t<option value=\"$i\">$i</option>\n"; echo "\t<option value=\"$i\">$i</option>\n";
echo "</select>"; echo "</select>";
echo Get_Text("pub_aktive_Text32")."<br /><br />\n"; echo Get_Text("pub_aktive_Text32") . "<br /><br />\n";
echo "<input type=\"submit\" name=\"SendType\" value=\"Show..\">\n"; echo "<input type=\"submit\" name=\"SendType\" value=\"Show..\">\n";
echo "<input type=\"submit\" name=\"SendType\" value=\"Write..\">\n"; echo "<input type=\"submit\" name=\"SendType\" value=\"Write..\">\n";
echo "</form>\n"; echo "</form>\n";
echo "<form action=\"./aktiv.php\" method=\"post\">\n"; echo "<form action=\"./aktiv.php\" method=\"post\">\n";
echo "\t<br /><input type=\"submit\" name=\"ResetActive\" value=\"reset Active setting\">\n"; echo "\t<br /><input type=\"submit\" name=\"ResetActive\" value=\"reset Active setting\">\n";
echo "</form>\n"; echo "</form>\n";
if( Isset($_POST["ResetActive"]) ) if (Isset ($_POST["ResetActive"])) {
{ $SQLreset = "UPDATE `User` SET `Aktiv`='0'";
$SQLreset = "UPDATE `User` SET `Aktiv`='0'"; $ErgReset = db_query($SQLreset, "Reset Active");
$ErgReset = db_query($SQLreset, "Reset Active"); if ($ErgReset != 1)
if ($ErgReset != 1) echo "Fehler beim zuruecksetzen der Activ\n";
echo "Fehler beim zuruecksetzen der Activ\n"; else
else echo "Active wurde erfolgreich zurueckgesetzt\n";
echo "Active wurde erfolgreich zurueckgesetzt\n";
} }
if( IsSet($_POST["Anzahl"]) ) if (IsSet ($_POST["Anzahl"]))
echo "<br />\n\n".Get_Text("pub_aktive_Text5_1"). $_POST["Anzahl"]. Get_Text("pub_aktive_Text5_2"). ":"; echo "<br />\n\n" . Get_Text("pub_aktive_Text5_1") . $_POST["Anzahl"] . Get_Text("pub_aktive_Text5_2") . ":";
echo "<br /><br />\n\n"; echo "<br /><br />\n\n";
//ausgabe tabelle //ausgabe tabelle
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<tr class=\"contenttopic\">\n"; echo "<tr class=\"contenttopic\">\n";
echo "\t<td>". Get_Text("pub_aktive_Nick"). "</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Nick") . "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Anzahl"). "</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Anzahl") . "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Time"). "</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Time") . "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Time"). " Weight</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Time") . " Weight</td>\n";
echo "\t<td>Freeloader ". Get_Text("pub_aktive_Anzahl"). "</td>\n"; echo "\t<td>Freeloader " . Get_Text("pub_aktive_Anzahl") . "</td>\n";
echo "\t<td>Freeloader ". Get_Text("pub_aktive_Time"). "</td>\n"; echo "\t<td>Freeloader " . Get_Text("pub_aktive_Time") . "</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Time"). " result</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Time") . " result</td>\n";
echo "\t<td>". Get_Text("pub_aktive_Active"). "</td>\n"; echo "\t<td>" . Get_Text("pub_aktive_Active") . "</td>\n";
echo "</tr>\n"; echo "</tr>\n";
$SQL = " $SQL = "
@ -65,46 +65,41 @@ $Erg = mysql_query($SQL, $con);
echo mysql_error($con); echo mysql_error($con);
$rowcount = mysql_num_rows($Erg); $rowcount = mysql_num_rows($Erg);
$aktivecount=0; $aktivecount = 0;
for ($i=0; $i<$rowcount; $i++) for ($i = 0; $i < $rowcount; $i++) {
{ echo "\n\n\t<tr class=\"content\">\n";
echo "\n\n\t<tr class=\"content\">\n"; echo "\t\t<td>" . UID2Nick(mysql_result($Erg, $i, "UID")) . "</td>\n";
echo "\t\t<td>". UID2Nick(mysql_result($Erg, $i, "UID")). "</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "nr") . "x</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "nr"). "x</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "len") . "h</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "len"). "h</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "lenWeight") . "h</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "lenWeight"). "h</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "nrFree") . "x</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "nrFree"). "x</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "lenFree") . "h</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "lenFree"). "h</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "lenReal") . "h</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "lenReal"). "h</td>\n";
echo "\t\t<td>";
if (IsSet ($_POST["Anzahl"])) {
echo "\t\t<td>"; if ($_POST["Anzahl"] < mysql_result($Erg, $i, "lenReal")) {
if (IsSet($_POST["Anzahl"])) $aktivecount++;
{ if ($_POST["SendType"] == "Show..")
if( $_POST["Anzahl"] < mysql_result($Erg, $i, "lenReal") ) echo "show set";
{ else {
$aktivecount++; $SQL2 = "UPDATE `User` SET `Aktiv`='1' WHERE `UID`='" . mysql_result($Erg, $i, "UID") . "' LIMIT 1";
if( $_POST["SendType"]=="Show..") $Erg2 = db_query($SQL2, "update Active State");
echo "show set"; if ($Erg2 != 1)
else echo "Fehler beim speichern bei Engel " . UID2Nick(mysql_result($Erg, $i, "UID"));
{ else
$SQL2="UPDATE `User` SET `Aktiv`='1' WHERE `UID`='". mysql_result($Erg, $i, "UID"). "' LIMIT 1"; echo "write set";
$Erg2 = db_query($SQL2, "update Active State"); }
if ($Erg2 != 1) }
echo "Fehler beim speichern bei Engel ".UID2Nick(mysql_result($Erg, $i, "UID")); }
else echo "</td>\n";
echo "write set"; echo "\t</tr>\n";
}
}
}
echo "</td>\n";
echo "\t</tr>\n";
} // ende Auflistung aktive Engel } // ende Auflistung aktive Engel
echo "</table>"; echo "</table>";
echo "<br />Anzahl eintraege: $aktivecount / $rowcount (Aktive/Mitschichten)<br /><br />"; echo "<br />Anzahl eintraege: $aktivecount / $rowcount (Aktive/Mitschichten)<br /><br />";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

481
www-ssl/admin/dbUpdateFromXLS.php
Unescape Escape View File

@ -1,8 +1,10 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "DB Update from XML"; $title = "DB Update from XML";
$header = "DB Update from XML"; $header = "DB Update from XML";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_xml.php"); include ("includes/funktion_xml.php");
/////////// ///////////
// DEBUG // // DEBUG //
@ -14,27 +16,24 @@ $EnableSchudleFunctions = 1;
$EnableSchudle = 1; $EnableSchudle = 1;
$EnableSchudleDB = 1; $EnableSchudleDB = 1;
/*############################################################################################## /*##############################################################################################
erstellt Arrays der Reume erstellt Arrays der Reume
##############################################################################################*/ ##############################################################################################*/
function CreateRoomArrays() function CreateRoomArrays() {
{ global $Room, $RoomID, $RoomName, $con;
global $Room, $RoomID, $RoomName, $con;
$sql = "SELECT `RID`, `Name` FROM `Room` " .
$sql = "SELECT `RID`, `Name` FROM `Room` ". "WHERE `Show`='Y'" .
"WHERE `Show`='Y'". "ORDER BY `Number`, `Name`;";
"ORDER BY `Number`, `Name`;"; $Erg = mysql_query($sql, $con);
$Erg = mysql_query($sql, $con); $rowcount = mysql_num_rows($Erg);
$rowcount = mysql_num_rows($Erg);
for ($i = 0; $i < $rowcount; $i++) {
for ($i=0; $i<$rowcount; $i++) $Room[$i]["RID"] = mysql_result($Erg, $i, "RID");
{ $Room[$i]["Name"] = mysql_result($Erg, $i, "Name");
$Room[$i]["RID"] = mysql_result($Erg, $i, "RID"); $RoomID[mysql_result($Erg, $i, "RID")] = mysql_result($Erg, $i, "Name");
$Room[$i]["Name"] = mysql_result($Erg, $i, "Name"); $RoomName[mysql_result($Erg, $i, "Name")] = mysql_result($Erg, $i, "RID");
$RoomID[ mysql_result($Erg, $i, "RID") ] = mysql_result($Erg, $i, "Name"); }
$RoomName[ mysql_result($Erg, $i, "Name") ] = mysql_result($Erg, $i, "RID");
}
} }
CreateRoomArrays(); CreateRoomArrays();
@ -42,252 +41,212 @@ CreateRoomArrays();
F I L E F I L E
##############################################################################################*/ ##############################################################################################*/
echo "\n\n<br />\n<h1>XML File:</h1>\n"; echo "\n\n<br />\n<h1>XML File:</h1>\n";
if( isset($_POST["PentabarfUser"]) && isset($_POST["password"]) && isset($_POST["PentabarfURL"])) if (isset ($_POST["PentabarfUser"]) && isset ($_POST["password"]) && isset ($_POST["PentabarfURL"])) {
{ echo "Update XCAL-File from Pentabarf..";
echo "Update XCAL-File from Pentabarf.."; if ($PentabarfGetWith == "fsockopen") {
if($PentabarfGetWith=="fsockopen")
{ //backup error messeges and delate
$Backuperror_messages = $error_messages;
//backup error messeges and delate $fp = fsockopen("ssl://$PentabarfXMLhost", 443, $errno, $errstr, 30);
$Backuperror_messages = $error_messages; // $error_messages = $Backuperror_messages;
$fp = fsockopen( "ssl://$PentabarfXMLhost", 443, $errno, $errstr, 30);
// $error_messages = $Backuperror_messages; if (!$fp) {
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!" .
if( !$fp) "[$errstr ($errno)]</h2>";
{ } else {
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!". if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) {
"[$errstr ($errno)]</h2>"; $head = 'GET /' . $PentabarfXMLpath . $_POST["PentabarfURL"] . ' HTTP/1.1' . "\r\n" .
} 'Host: ' . $PentabarfXMLhost . "\r\n" .
else 'User-Agent: Engelsystem' . "\r\n" .
{ 'Authorization: Basic ' .
if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE) base64_encode($_POST["PentabarfUser"] . ':' . $_POST["password"]) . "\r\n" .
{ "\r\n";
$head = 'GET /'. $PentabarfXMLpath. $_POST["PentabarfURL"]. ' HTTP/1.1'."\r\n". fputs($fp, $head);
'Host: '. $PentabarfXMLhost. "\r\n". $Zeilen = -1;
'User-Agent: Engelsystem'. "\r\n". while (!feof($fp)) {
'Authorization: Basic '. $Temp = fgets($fp, 1024);
base64_encode($_POST["PentabarfUser"]. ':'. $_POST["password"])."\r\n".
"\r\n"; // ende des headers
fputs( $fp, $head); if ($Temp == "f20\r\n") {
$Zeilen = -1; $Zeilen = 0;
while (!feof($fp)) $Temp = "";
{ }
$Temp= fgets($fp,1024);
//file ende?
// ende des headers if ($Temp == "0\r\n")
if( $Temp== "f20\r\n" ) break;
{
$Zeilen = 0; if (($Zeilen > -1) && ($Temp != "ffb\r\n")) {
$Temp=""; //steuerzeichen ausfiltern
} if (strpos("#$Temp", "\r\n") > 0)
$Temp = substr($Temp, 0, strlen($Temp) - 2);
//file ende? if (strpos("#$Temp", "1005") > 0)
if( $Temp=="0\r\n") $Temp = "";
break; if (strpos("#$Temp", "783") > 0)
$Temp = "";
if( ($Zeilen>-1) && ($Temp!="ffb\r\n") ) //schreiben in file
{ fputs($fileOut, $Temp);
//steuerzeichen ausfiltern $Zeilen++;
if( strpos( "#$Temp", "\r\n") > 0) }
$Temp = substr($Temp, 0, strlen($Temp)-2); }
if( strpos( "#$Temp", "1005") > 0) fclose($fileOut);
$Temp = "";
if( strpos( "#$Temp", "783") > 0) echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />";
$Temp = ""; } else
//schreiben in file echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>";
fputs( $fileOut, $Temp); fclose($fp);
$Zeilen++; }
} }
} elseif ($PentabarfGetWith == "fopen") {
fclose( $fileOut); //user uns password in url einbauen
$FileNameIn = "https://" . $_POST["PentabarfUser"] . ':' . $_POST["password"] . "@" .
echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; $PentabarfXMLhost . "/" . $PentabarfXMLpath . $_POST["PentabarfURL"];
}
else if (($fileIn = fopen($FileNameIn, "r")) != FALSE) {
echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) {
fclose($fp); $Zeilen = 0;
} while (!feof($fileIn)) {
} $Zeilen++;
elseif($PentabarfGetWith=="fopen") fputs($fileOut, fgets($fileIn));
{ }
//user uns password in url einbauen fclose($fileOut);
$FileNameIn = "https://". $_POST["PentabarfUser"]. ':'. $_POST["password"]. "@". echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />";
$PentabarfXMLhost. "/". $PentabarfXMLpath. $_POST["PentabarfURL"]; } else
echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>";
fclose($fileIn);
if( ($fileIn = fopen( $FileNameIn, "r")) != FALSE) } else
{ echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!</h2>";
if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE) }
{ elseif ($PentabarfGetWith == "wget") {
$Zeilen = 0; $Command = "wget --http-user=" . $_POST["PentabarfUser"] . " --http-passwd=" . $_POST["password"] . " " .
while (!feof($fileIn)) "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] .
{ " --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML" .
$Zeilen++; " --no-check-certificate";
fputs( $fileOut, fgets( $fileIn)); echo system($Command, $Status);
} if ($Status == 0)
fclose( $fileOut); echo "OK.<br />";
echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; else
} echo "fail ($Status)($Command).<br />";
else }
echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; elseif ($PentabarfGetWith == "lynx") {
fclose( $fileIn); $Command = "lynx -auth=" . $_POST["PentabarfUser"] . ":" . $_POST["password"] . " -dump " .
} "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . " > $Tempdir/engelXML";
else echo system($Command, $Status);
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!</h2>"; if ($Status == 0)
} echo "OK.<br />";
elseif( $PentabarfGetWith=="wget") else
{ echo "fail ($Status)($Command).<br />";
$Command = "wget --http-user=". $_POST["PentabarfUser"]. " --http-passwd=".$_POST["password"]. " ". }
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. elseif ($PentabarfGetWith == "fopen") {
" --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML". //user uns password in url einbauen
" --no-check-certificate"; $FileNameIn = "https://" . $_POST["PentabarfUser"] . ':' . $_POST["password"] . "@" .
echo system( $Command, $Status); $PentabarfXMLhost . "/" . $PentabarfXMLpath . $_POST["PentabarfURL"];
if( $Status==0)
echo "OK.<br />"; if (($fileIn = fopen($FileNameIn, "r")) != FALSE) {
else if (($fileOut = fopen("$Tempdir/engelXML", "w")) != FALSE) {
echo "fail ($Status)($Command).<br />"; $Zeilen = 0;
} while (!feof($fileIn)) {
elseif( $PentabarfGetWith=="lynx") $Zeilen++;
{ fputs($fileOut, fgets($fileIn));
$Command = "lynx -auth=". $_POST["PentabarfUser"]. ":".$_POST["password"]. " -dump ". }
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. " > $Tempdir/engelXML"; fclose($fileOut);
echo system( $Command, $Status); echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />";
if( $Status==0) } else
echo "OK.<br />"; echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>";
else fclose($fileIn);
echo "fail ($Status)($Command).<br />"; } else
} echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . "' not readable!</h2>";
elseif($PentabarfGetWith=="fopen") }
{ elseif ($PentabarfGetWith == "wget") {
//user uns password in url einbauen $Command = "wget --http-user=" . $_POST["PentabarfUser"] . " --http-passwd=" . $_POST["password"] . " " .
$FileNameIn = "https://". $_POST["PentabarfUser"]. ':'. $_POST["password"]. "@". "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] .
$PentabarfXMLhost. "/". $PentabarfXMLpath. $_POST["PentabarfURL"]; " --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML" .
" --no-check-certificate";
echo system($Command, $Status);
if( ($fileIn = fopen( $FileNameIn, "r")) != FALSE) if ($Status == 0)
{ echo "OK.<br />";
if( ($fileOut = fopen( "$Tempdir/engelXML", "w")) != FALSE) else
{ echo "fail ($Status)($Command).<br />";
$Zeilen = 0; }
while (!feof($fileIn)) elseif ($PentabarfGetWith == "lynx") {
{ $Command = "lynx -auth=" . $_POST["PentabarfUser"] . ":" . $_POST["password"] . " -dump " .
$Zeilen++; "https://$PentabarfXMLhost/$PentabarfXMLpath" . $_POST["PentabarfURL"] . " > $Tempdir/engelXML";
fputs( $fileOut, fgets( $fileIn)); echo system($Command, $Status);
} if ($Status == 0)
fclose( $fileOut); echo "OK.<br />";
echo "<br />Es wurden $Zeilen Zeilen eingelesen<br />"; else
} echo "fail ($Status)($Command).<br />";
else } else
echo "<h2>fail: File '$Tempdir/engelXML' not writeable!</h2>"; echo "<h1>The PentabarfGetWith='$PentabarfGetWith' not supported</h1>";
fclose( $fileIn); } else {
} echo "<form action=\"dbUpdateFromXLS.php\" method=\"post\">\n";
else echo "<table border=\"0\">\n";
echo "<h2>fail: File 'https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. "' not readable!</h2>"; echo "\t<tr><td>XCAL-File: https://$PentabarfXMLhost/$PentabarfXMLpath</td>" .
} "<td><input name=\"PentabarfURL\" type=\"text\" size=\"4\" maxlength=\"5\" " .
elseif( $PentabarfGetWith=="wget") "value=\"$PentabarfXMLEventID\"></td></tr>\n";
{ echo "\t<tr><td>Username:</td>" .
$Command = "wget --http-user=". $_POST["PentabarfUser"]. " --http-passwd=".$_POST["password"]. " ". "<td><input name=\"PentabarfUser\" type=\"text\" size=\"30\" maxlength=\"30\"></td></tr>\n";
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. echo "\t<tr><td>Password:</td>" .
" --output-file=$Tempdir/engelXMLwgetLog --output-document=$Tempdir/engelXML". "<td><input name=\"password\" type=\"password\" size=\"30\" maxlength=\"30\"></td></tr>\n";
" --no-check-certificate"; echo "\t<tr><td></td><td><input type=\"submit\" name=\"FileUpload\" value=\"upload\"></td></tr>\n";
echo system( $Command, $Status); echo "</table>\n";
if( $Status==0) echo "</form>\n";
echo "OK.<br />";
else
echo "fail ($Status)($Command).<br />";
}
elseif( $PentabarfGetWith=="lynx")
{
$Command = "lynx -auth=". $_POST["PentabarfUser"]. ":".$_POST["password"]. " -dump ".
"https://$PentabarfXMLhost/$PentabarfXMLpath". $_POST["PentabarfURL"]. " > $Tempdir/engelXML";
echo system( $Command, $Status);
if( $Status==0)
echo "OK.<br />";
else
echo "fail ($Status)($Command).<br />";
}
else
echo "<h1>The PentabarfGetWith='$PentabarfGetWith' not supported</h1>";
}
else
{
echo "<form action=\"dbUpdateFromXLS.php\" method=\"post\">\n";
echo "<table border=\"0\">\n";
echo "\t<tr><td>XCAL-File: https://$PentabarfXMLhost/$PentabarfXMLpath</td>".
"<td><input name=\"PentabarfURL\" type=\"text\" size=\"4\" maxlength=\"5\" ".
"value=\"$PentabarfXMLEventID\"></td></tr>\n";
echo "\t<tr><td>Username:</td>".
"<td><input name=\"PentabarfUser\" type=\"text\" size=\"30\" maxlength=\"30\"></td></tr>\n";
echo "\t<tr><td>Password:</td>".
"<td><input name=\"password\" type=\"password\" size=\"30\" maxlength=\"30\"></td></tr>\n";
echo "\t<tr><td></td><td><input type=\"submit\" name=\"FileUpload\" value=\"upload\"></td></tr>\n";
echo "</table>\n";
echo "</form>\n";
} }
//readXMLfile("xml.php.xml"); //readXMLfile("xml.php.xml");
if( readXMLfile("$Tempdir/engelXML") == 0) if (readXMLfile("$Tempdir/engelXML") == 0) {
{ $XMLmain = getXMLsubPease($XMLmain, "VCALENDAR");
$XMLmain = getXMLsubPease( $XMLmain, "VCALENDAR");
if ($ShowDataStrukture) {
echo "<pre><br />";
if( $ShowDataStrukture) echo $XMLmain->name;
{ echo "<br />";
echo "<pre><br />"; print_r(array_values($XMLmain->sub));
echo $XMLmain->name; echo "</pre>";
echo "<br />"; }
print_r(array_values ($XMLmain->sub));
echo "</pre>"; /*
} echo "<br />";
$Feld=7;
/* echo "$Feld#". $XMLmain->sub[$Feld]->name. "<br />";
echo "<br />"; echo "$Feld#". $XMLmain->sub[$Feld]->sub;
$Feld=7; //print_r(array_values ($XMLmain->sub[$Feld]->sub));
echo "$Feld#". $XMLmain->sub[$Feld]->name. "<br />"; while(list($key, $value) = each($XMLmain->sub[$Feld]->sub))
echo "$Feld#". $XMLmain->sub[$Feld]->sub; echo "?ID".$value->sub[1]->data. "=". $value->sub[2]->data. "\n";
//print_r(array_values ($XMLmain->sub[$Feld]->sub)); echo "</pre>";
while(list($key, $value) = each($XMLmain->sub[$Feld]->sub)) */
echo "?ID".$value->sub[1]->data. "=". $value->sub[2]->data. "\n";
echo "</pre>"; /*##############################################################################################
*/ V e r s i o n
##############################################################################################*/
/*############################################################################################## echo "<hr>\n";
V e r s i o n $XMLrelease = getXMLsubPease($XMLmain, "X-WR-CALDESC");
##############################################################################################*/ echo "release: " . $XMLrelease->data . "<br />\n";
//$XMLreleaseDate = getXMLsubPease( $XMLmain, "RELEASE-DATE");
echo "<hr>\n"; //echo "release date: ". $XMLreleaseDate->data. "<br />\n";
$XMLrelease = getXMLsubPease( $XMLmain, "X-WR-CALDESC"); echo "<hr>\n";
echo "release: ". $XMLrelease->data. "<br />\n";
//$XMLreleaseDate = getXMLsubPease( $XMLmain, "RELEASE-DATE"); /*##############################################################################################
//echo "release date: ". $XMLreleaseDate->data. "<br />\n"; V e r s i o n
echo "<hr>\n"; ##############################################################################################*/
if ($EnableRoomFunctions)
include ("includes/funktion_xml_room.php");
/*############################################################################################## if ($EnableSchudleFunctions)
V e r s i o n include ("includes/funktion_xml_schudle.php");
##############################################################################################*/
if( $EnableRoomFunctions) /*##############################################################################################
include("../../../camp2011/includes/funktion_xml_room.php"); U P D A T E A L L
##############################################################################################*/
if( $EnableSchudleFunctions) echo "\n\n<br />\n<h1>Update ALL:</h1>\n";
include("../../../camp2011/includes/funktion_xml_schudle.php");
echo "<form action=\"dbUpdateFromXLS.php\">\n";
echo "\t<input type=\"submit\" name=\"UpdateALL\" value=\"now\">\n";
/*############################################################################################## echo "</form>\n";
U P D A T E A L L
##############################################################################################*/
echo "\n\n<br />\n<h1>Update ALL:</h1>\n";
echo "<form action=\"dbUpdateFromXLS.php\">\n";
echo "\t<input type=\"submit\" name=\"UpdateALL\" value=\"now\">\n";
echo "</form>\n";
} //if XMLopenOOK } //if XMLopenOOK
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

37
www-ssl/admin/debug.php
Unescape Escape View File

@ -1,9 +1,10 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Debug-Liste"; $title = "Debug-Liste";
$header = "Datenbank-Auszug"; $header = "Datenbank-Auszug";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
echo "<h1>Web Counter</h1>"; echo "<h1>Web Counter</h1>";
funktion_db_list("Counter"); funktion_db_list("Counter");
@ -31,39 +32,27 @@ echo "Deaktiviert";
*/ */
echo "<hr>\n"; echo "<hr>\n";
funktion_db_element_list_2row( "Tshirt-Size aller engel", funktion_db_element_list_2row("Tshirt-Size aller engel", "SELECT `Size`, COUNT(`Size`) FROM `User` GROUP BY `Size`");
"SELECT `Size`, COUNT(`Size`) FROM `User` GROUP BY `Size`");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Tshirt ausgegeben", funktion_db_element_list_2row("Tshirt ausgegeben", "SELECT `Size`, COUNT(`Size`) FROM `User` WHERE `Tshirt`='1' GROUP BY `Size`");
"SELECT `Size`, COUNT(`Size`) FROM `User` WHERE `Tshirt`='1' GROUP BY `Size`");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Tshirt nicht ausgegeben (Gekommen=1)", funktion_db_element_list_2row("Tshirt nicht ausgegeben (Gekommen=1)", "SELECT COUNT(`Size`), `Size` FROM `User` WHERE `Gekommen`='1' and `Tshirt`='0' GROUP BY `Size`");
"SELECT COUNT(`Size`), `Size` FROM `User` WHERE `Gekommen`='1' and `Tshirt`='0' GROUP BY `Size`");
echo "<hr>\n"; echo "<hr>\n";
funktion_db_element_list_2row( "Hometown", funktion_db_element_list_2row("Hometown", "SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
"SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Engeltypen", funktion_db_element_list_2row("Engeltypen", "SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
"SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
echo "<hr>\n"; echo "<hr>\n";
funktion_db_element_list_2row( "Gesamte Arbeit", funktion_db_element_list_2row("Gesamte Arbeit", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID)");
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID)");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Geleisteter Arbeit", funktion_db_element_list_2row("Geleisteter Arbeit", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0)");
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0)");
echo "<hr>\n"; echo "<hr>\n";
funktion_db_element_list_2row( "Gesamte Arbeit (Ohne Raum aufabau (RID=7)", funktion_db_element_list_2row("Gesamte Arbeit (Ohne Raum aufabau (RID=7)", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (Shifts.RID!=7)");
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (Shifts.RID!=7)");
echo "<br />\n"; echo "<br />\n";
funktion_db_element_list_2row( "Geleisteter Arbeit (Ohne Raum aufabau (RID=7)", funktion_db_element_list_2row("Geleisteter Arbeit (Ohne Raum aufabau (RID=7)", "SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0) AND (Shifts.RID!=7)");
"SELECT COUNT(*) AS `Count [x]`, SUM(Shifts.Len) as `Sum [h]` from Shifts LEFT JOIN ShiftEntry USING(SID) WHERE (ShiftEntry.UID!=0) AND (Shifts.RID!=7)");
include ("includes/footer.php");
include ("../../../camp2011/includes/footer.php");
?> ?>

93
www-ssl/admin/dect.php
Unescape Escape View File

@ -1,70 +1,69 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Engelsystem - DECT"; $title = "Engelsystem - DECT";
$header = "DECT send call"; $header = "DECT send call";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/config_IAX.php"); include ("config/config_IAX.php");
//include ("../../../camp2011/includes/funktion_modem.php"); //include ("../../../camp2011/includes/funktion_modem.php");
include ("../../../camp2011/includes/funktion_cron.php"); include ("includes/funktion_cron.php");
if( !isset($_GET["dial"])) $_GET["dial"] = ""; if (!isset ($_GET["dial"]))
if( !isset($_GET["custum"])) $_GET["custum"] = ""; $_GET["dial"] = "";
if (!isset ($_GET["custum"]))
$_GET["custum"] = "";
if( $_GET["dial"]=="dial") if ($_GET["dial"] == "dial") {
{ if ($_GET["DECT"] == "")
if( $_GET["DECT"]=="") $Number = $_GET["custum"];
$Number = $_GET["custum"]; else
else $Number = $_GET["DECT"];
$Number = $_GET["DECT"];
if( strlen( $_GET["timeh"])== 1) if (strlen($_GET["timeh"]) == 1)
$_GET["timeh"] = "0". $_GET["timeh"]; $_GET["timeh"] = "0" . $_GET["timeh"];
if( strlen( $_GET["timem"])== 1) if (strlen($_GET["timem"]) == 1)
$_GET["timem"] = "0". $_GET["timem"]; $_GET["timem"] = "0" . $_GET["timem"];
// SetWackeup( $Number, $_GET["timeh"], $_GET["timem"]); // SetWackeup( $Number, $_GET["timeh"], $_GET["timem"]);
DialNumberIAX($Number, $_GET["timeh"], $_GET["timem"],0); DialNumberIAX($Number, $_GET["timeh"], $_GET["timem"], 0);
$_GET["custum"] = $Number; $_GET["custum"] = $Number;
} }
echo "<form action=\"./dect.php\" method=\"GET\">\n";
echo "<table>\n";
echo "<form action=\"./dect.php\" method=\"GET\">\n"; echo "<tr><th>Number</th><th>h:m</th><th></th></tr>\n";
echo "<table>\n";
echo "<tr><th>Number</th><th>h:m</th><th></th></tr>\n"; echo "<tr><td>\n";
// Listet alle Nicks auf
echo "<select name=\"DECT\">\n";
echo "\t<option value=\"\">costum</option>\n";
echo "<tr><td>\n"; $usql = "SELECT * FROM `User` WHERE NOT `DECT`='' ORDER BY `Nick`";
// Listet alle Nicks auf $uErg = mysql_query($usql, $con);
echo "<select name=\"DECT\">\n"; $urowcount = mysql_num_rows($uErg);
echo "\t<option value=\"\">costum</option>\n"; for ($k = 0; $k < $urowcount; $k++) {
echo "\t<option value=\"" . mysql_result($uErg, $k, "DECT") . "\">" .
$usql="SELECT * FROM `User` WHERE NOT `DECT`='' ORDER BY `Nick`"; mysql_result($uErg, $k, "Nick") .
$uErg = mysql_query($usql, $con); " (" . mysql_result($uErg, $k, "DECT") . ")" .
$urowcount = mysql_num_rows($uErg); "</option>\n";
for ($k=0; $k<$urowcount; $k++) }
{ echo "</select>\n";
echo "\t<option value=\"".mysql_result($uErg, $k, "DECT")."\">".
mysql_result($uErg, $k, "Nick").
" (". mysql_result($uErg, $k, "DECT"). ")".
"</option>\n";
}
echo "</select>\n";
echo "<input type=\"text\" name=\"custum\" size=\"4\" maxlength=\"4\" value=\"". $_GET["custum"]. "\">\n";
echo "</td>\n";
echo "<td><input type=\"text\" name=\"timeh\" size=\"2\" maxlength=\"2\" value=\"". gmdate("H", time()+90+3600). "\">:"; echo "<input type=\"text\" name=\"custum\" size=\"4\" maxlength=\"4\" value=\"" . $_GET["custum"] . "\">\n";
echo "<input type=\"text\" name=\"timem\" size=\"2\" maxlength=\"2\" value=\"". gmdate("i", time()+90+3600). "\"></td>\n"; echo "</td>\n";
echo "<td><input type=\"submit\" name=\"dial\" value=\"dial\"></td>\n";
echo "</tr>";
echo "</table>\n";
echo "</form>"; echo "<td><input type=\"text\" name=\"timeh\" size=\"2\" maxlength=\"2\" value=\"" . gmdate("H", time() + 90 + 3600) . "\">:";
echo "<input type=\"text\" name=\"timem\" size=\"2\" maxlength=\"2\" value=\"" . gmdate("i", time() + 90 + 3600) . "\"></td>\n";
echo "<td><input type=\"submit\" name=\"dial\" value=\"dial\"></td>\n";
echo "</tr>";
echo "</table>\n";
echo "</form>";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

5
www-ssl/admin/dect_call.php
Unescape Escape View File

@ -1,7 +1,8 @@
<?php <?php
include ("../../../camp2011/includes/header.php"); require_once ('../bootstrap.php');
include ("includes/header.php");
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

440
www-ssl/admin/faq.php
Unescape Escape View File

@ -1,28 +1,28 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Himmel"; $title = "Himmel";
$header = "FAQ / Fragen an die Erzengel"; $header = "FAQ / Fragen an die Erzengel";
$submenus = 1; $submenus = 1;
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db.php"); include ("includes/funktion_db.php");
//var init //var init
$quest_bearb=0; $quest_bearb = 0;
if (IsSet($_GET["quest"])) if (IsSet ($_GET["quest"])) {
{
switch ($_GET["quest"]) switch ($_GET["quest"]) {
{
// *--------------------------------------------------------------------------- // *---------------------------------------------------------------------------
// * Anfragen - Bearbeitung // * Anfragen - Bearbeitung
// *--------------------------------------------------------------------------- // *---------------------------------------------------------------------------
// * je nach Übergabeoption ($quest) koennen Anfragen beantwortet werden oder // * je nach <20>bergabeoption ($quest) koennen Anfragen beantwortet werden oder
// * als FAQ uebergeben werden // * als FAQ uebergeben werden
// *--------------------------------------------------------------------------- // *---------------------------------------------------------------------------
case "all": case "all" :
$SQL="SELECT * FROM `Questions` ORDER BY QID DESC"; $SQL = "SELECT * FROM `Questions` ORDER BY QID DESC";
?> ?>
Alle Anfragen:<br /> Alle Anfragen:<br />
<table width="100%" class="border" cellpadding="2" cellspacing="1"> <table width="100%" class="border" cellpadding="2" cellspacing="1">
@ -37,142 +37,132 @@ case "all":
<?php <?php
$Erg = mysql_query($SQL, $con);
// anzahl zeilen $Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg); // anzahl zeilen
for ($n = 0 ; $n < $Zeilen ; $n++) { $Zeilen = mysql_num_rows($Erg);
echo "<tr class=\"content\">\n"; for ($n = 0; $n < $Zeilen; $n++) {
echo "<td>".mysql_result($Erg, $n, "Question")."</td>\n"; echo "<tr class=\"content\">\n";
echo "<td>".UID2Nick(mysql_result($Erg, $n, "UID"))."</td>\n"; echo "<td>" . mysql_result($Erg, $n, "Question") . "</td>\n";
echo "<td>"; echo "<td>" . UID2Nick(mysql_result($Erg, $n, "UID")) . "</td>\n";
if (mysql_result($Erg, $n, "AID")>0) echo "<td>";
{ if (mysql_result($Erg, $n, "AID") > 0) {
echo "Ja</td>\n"; echo "Ja</td>\n";
echo "<td>".mysql_result($Erg, $n, "Answer")."</td>\n"; echo "<td>" . mysql_result($Erg, $n, "Answer") . "</td>\n";
echo "<td>".UID2Nick(mysql_result($Erg, $n, "AID"))."</td>\n"; echo "<td>" . UID2Nick(mysql_result($Erg, $n, "AID")) . "</td>\n";
} } else {
else echo "Nein</td>\n";
{ echo "<td>&nbsp;</td>\n";
echo "Nein</td>\n"; echo "<td>&nbsp;</td>\n";
echo "<td>&nbsp;</td>\n"; }
echo "<td>&nbsp;</td>\n"; echo "<td><a href=\"faq.php?quest=edit&QID=" . mysql_result($Erg, $n, "QID") . "\">xxx</a></td>";
} echo "</tr>\n";
echo "<td><a href=\"faq.php?quest=edit&QID=".mysql_result($Erg, $n, "QID")."\">xxx</a></td>"; }
echo "</tr>\n"; echo "</table>\n";
} break;
echo "</table>\n";
break; case "open" :
$SQL = "SELECT * FROM `Questions` WHERE `AID`='0' ORDER BY `QID` DESC";
case "open": $quest_bearb = 1; // Fragenliste anzeigen
$SQL="SELECT * FROM `Questions` WHERE `AID`='0' ORDER BY `QID` DESC"; echo "\t\tOffene Anfragen:<br />\n";
$quest_bearb=1; // Fragenliste anzeigen break;
echo "\t\tOffene Anfragen:<br />\n";
break; case "edit" :
if (!IsSet ($_GET["QID"]))
case "edit": echo "\t\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n";
if (!IsSet($_GET["QID"])) else {
echo "\t\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n"; $SQL = "SELECT * FROM `Questions` WHERE `QID`='" . $_GET["QID"] . "'";
else $Erg = mysql_query($SQL, $con);
{ echo "\t\t<form action=\"./faq.php\" method=\"GET\">\n";
$SQL = "SELECT * FROM `Questions` WHERE `QID`='". $_GET["QID"]. "'"; echo "\t\tAnfrage von <b>" . UID2NICK(mysql_result($Erg, 0, "UID")) . "</b>:<br />\n";
$Erg = mysql_query($SQL, $con); echo "\t\t<textarea name=\"Question\" rows=\"3\" cols=\"80\">" .
echo "\t\t<form action=\"./faq.php\" method=\"GET\">\n"; mysql_result($Erg, 0, "Question") . "</textarea>\n";
echo "\t\tAnfrage von <b>". UID2NICK(mysql_result($Erg, 0, "UID")). "</b>:<br />\n"; echo "<br /><br />Antwort der Erzengel:<br />\n";
echo "\t\t<textarea name=\"Question\" rows=\"3\" cols=\"80\">". if (mysql_result($Erg, 0, "Answer") == "")
mysql_result($Erg, 0, "Question"). "</textarea>\n"; echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">" .
echo "<br /><br />Antwort der Erzengel:<br />\n"; "Bitte hier die Antwort eintragen...</textarea><br />\n";
if (mysql_result($Erg, 0, "Answer")=="") else
echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">". echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">" .
"Bitte hier die Antwort eintragen...</textarea><br />\n"; mysql_result($Erg, 0, "Answer") . "</textarea>\n<br />\n";
else echo "\t\t<input type=\"hidden\" name=\"QID\" value=\"" . $_GET["QID"] . "\">\n";
echo "\t\t<textarea name=\"Answer\" rows=\"5\" cols=\"80\">". echo "\t\t<input type=\"hidden\" name=\"quest\" value=\"save\">\n";
mysql_result($Erg, 0, "Answer"). "</textarea>\n<br />\n"; echo "\t\t<input type=\"submit\" value=\"Sichern...\">\n";
echo "\t\t<input type=\"hidden\" name=\"QID\" value=\"". $_GET["QID"]. "\">\n"; echo "\t</form>\n";
echo "\t\t<input type=\"hidden\" name=\"quest\" value=\"save\">\n"; if (mysql_result($Erg, 0, "AID") <> "0") {
echo "\t\t<input type=\"submit\" value=\"Sichern...\">\n"; echo "\tDu kannst diese Anfrage so wie sie ist, als Engel-FAQ eintrag &uuml;bernehmen.<br />\n";
echo "\t</form>\n"; echo "<a href=\"./faq.php?quest=transfer&QID=" . $_GET["QID"] . "\">Als FAQ-Eintrag sichern...</a>\n";
if (mysql_result($Erg, 0, "AID")<>"0") }
{ } // Abfrage der QID
echo "\tDu kannst diese Anfrage so wie sie ist, als Engel-FAQ eintrag &uuml;bernehmen.<br />\n"; break;
echo "<a href=\"./faq.php?quest=transfer&QID=". $_GET["QID"]. "\">Als FAQ-Eintrag sichern...</a>\n";
} case "save" :
} // Abfrage der QID if (!IsSet ($_GET["QID"]))
break; echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...";
else {
case "save": $SQL = "UPDATE `Questions` SET `Question`='" . $_GET["Question"] .
if (!IsSet($_GET["QID"])) "', `AID`='" . $_SESSION['UID'] . "' , `Answer`='" . $_GET["Answer"] . "' " .
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten..."; "WHERE `QID`='" . $_GET["QID"] . "' LIMIT 1";
else $Erg = db_query($SQL, "save Question");
{ if ($Erg == 1) {
$SQL = "UPDATE `Questions` SET `Question`='". $_GET["Question"]. echo "\tDer Eintrag wurde ge&auml;ndert<br />\n";
"', `AID`='". $_SESSION['UID']. "' , `Answer`='". $_GET["Answer"]. "' ". SetHeaderGo2Back();
"WHERE `QID`='". $_GET["QID"]. "' LIMIT 1"; } else
$Erg = db_query($SQL, "save Question"); echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n";
if ($Erg == 1) }
{ break;
echo "\tDer Eintrag wurde ge&auml;ndert<br />\n";
SetHeaderGo2Back(); case "transfer" :
} if (!IsSet ($_GET["QID"]))
else echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n";
echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; else {
} $SQL1 = "SELECT * FROM `Questions` WHERE `QID`='" . $_GET["QID"] . "'";
break; $Erg = mysql_query($SQL1, $con);
$SQL2 = "INSERT INTO `FAQ` Values ('', '" .
case "transfer": mysql_result($Erg, 0, "Question") . "', '" . mysql_result($Erg, 0, "Answer") . "')";
if (!IsSet($_GET["QID"])) $Erg = db_query($SQL2, "trasfert to request to the FAQ");
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; if ($Erg == 1)
else echo "\tDer Eintrag wurde &uuml;bertragen.<br />\n";
{ else
$SQL1="SELECT * FROM `Questions` WHERE `QID`='". $_GET["QID"]. "'"; echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n";
$Erg = mysql_query($SQL1, $con); }
$SQL2="INSERT INTO `FAQ` Values ('', '".
mysql_result($Erg, 0, "Question")."', '".mysql_result($Erg, 0, "Answer")."')"; break;
$Erg = db_query($SQL2, "trasfert to request to the FAQ");
if ($Erg == 1) // *---------------------------------------------------------------------------
echo "\tDer Eintrag wurde &uuml;bertragen.<br />\n"; // * FAQ - Bearbeitung
else // *---------------------------------------------------------------------------
echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; // * je nach <20>bergabeoption ($quest) koennen FAQ's erfasst werden,
} // * geaendert oder geloscht werden...
// *---------------------------------------------------------------------------
break; case "faq" :
$quest_bearb = 0; // keine Fragenliste anzeigen, FAQ editieren...
// *--------------------------------------------------------------------------- echo "\tFAQ-Liste:<br />";
// * FAQ - Bearbeitung echo "<a href=\"./faq.php?quest=faqnew\">Neuen Eintrag</a>";
// *---------------------------------------------------------------------------
// * je nach Übergabeoption ($quest) koennen FAQ's erfasst werden, $SQL = "SELECT * FROM `FAQ`";
// * geaendert oder geloscht werden... $Erg = mysql_query($SQL, $con);
// *---------------------------------------------------------------------------
case "faq": // anzahl zeilen
$quest_bearb=0; // keine Fragenliste anzeigen, FAQ editieren... $Zeilen = mysql_num_rows($Erg);
echo "\tFAQ-Liste:<br />";
echo "<a href=\"./faq.php?quest=faqnew\">Neuen Eintrag</a>"; for ($n = 0; $n < $Zeilen; $n++)
if (mysql_result($Erg, $n, "Antwort") != "") {
$SQL = "SELECT * FROM `FAQ`"; echo "\t<p class=\"question\">" . mysql_result($Erg, $n, "Frage") . "</p>\n";
$Erg = mysql_query($SQL, $con); echo "\t<p class=\"answetion\">" . mysql_result($Erg, $n, "Antwort") . "</p>\n";
echo "\t<a href=\"./faq.php?quest=faqedit&FAQID=" . mysql_result($Erg, $n, "FID") .
// anzahl zeilen "\">Bearbeiten</a>\n<br />---<br />\n";
$Zeilen = mysql_num_rows($Erg); }
break;
for ($n = 0 ; $n < $Zeilen ; $n++)
if (mysql_result($Erg, $n, "Antwort")!="") case "faqedit" :
{ if (!IsSet ($_GET["FAQID"]))
echo "\t<p class=\"question\">". mysql_result($Erg, $n, "Frage"). "</p>\n"; echo "\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n";
echo "\t<p class=\"answetion\">". mysql_result($Erg, $n, "Antwort")."</p>\n"; else {
echo "\t<a href=\"./faq.php?quest=faqedit&FAQID=". mysql_result($Erg, $n, "FID"). $SQL = "SELECT * FROM `FAQ` WHERE `FID`='" . $_GET["FAQID"] . "'";
"\">Bearbeiten</a>\n<br />---<br />\n"; $Erg = mysql_query($SQL, $con);
}
break; // anzahl zeilen
$Zeilen = mysql_num_rows($Erg);
case "faqedit":
if (!IsSet($_GET["FAQID"]))
echo "\tFehlerhafter Aufruf...<br />Bitte die Bearbeitung nochmals beginnen :)\n";
else
{
$SQL = "SELECT * FROM `FAQ` WHERE `FID`='". $_GET["FAQID"]. "'";
$Erg = mysql_query($SQL, $con);
// anzahl zeilen
$Zeilen = mysql_num_rows($Erg);
?> ?>
<form action="./faq.php" method="GET"> <form action="./faq.php" method="GET">
Frage:<br /> Frage:<br />
@ -190,39 +180,39 @@ case "faqedit":
<input type="submit" value="L&ouml;schen..."> <input type="submit" value="L&ouml;schen...">
</form> </form>
<?php <?php
}
break;
}
case "faqdelete"; break;
if (!IsSet($_GET["FAQID"]))
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; case "faqdelete";
else if (!IsSet ($_GET["FAQID"]))
{ echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n";
$SQL = "DELETE FROM `FAQ` WHERE `FID`='". $_GET["FAQID"]. "' LIMIT 1"; else {
$Erg = db_query($SQL, "delate faq item"); $SQL = "DELETE FROM `FAQ` WHERE `FID`='" . $_GET["FAQID"] . "' LIMIT 1";
if ($Erg == 1) $Erg = db_query($SQL, "delate faq item");
echo "\tDer Eintrag wurde gel&ouml;scht<br />\n"; if ($Erg == 1)
else echo "\tDer Eintrag wurde gel&ouml;scht<br />\n";
echo "\tEin Fehler ist aufgetreten. Ist der Eintag bereits gel&ouml;scht gewesen?\n"; else
} echo "\tEin Fehler ist aufgetreten. Ist der Eintag bereits gel&ouml;scht gewesen?\n";
break; }
break;
case "faqsave";
if (!IsSet($_GET["FAQID"])) case "faqsave";
echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n"; if (!IsSet ($_GET["FAQID"]))
else echo "\tFehlerhafter Aufruf... Bitte die Bearbeitung nochmal starten...\n";
{ else {
$SQL = "UPDATE `FAQ` SET `Frage`='". $_GET["Frage"]. "', `Antwort`='". $_GET["Antwort"]. $SQL = "UPDATE `FAQ` SET `Frage`='" . $_GET["Frage"] . "', `Antwort`='" . $_GET["Antwort"] .
"' WHERE `FID`='". $_GET["FAQID"]. "' LIMIT 1"; "' WHERE `FID`='" . $_GET["FAQID"] . "' LIMIT 1";
$Erg = db_query($SQL, $con); $Erg = db_query($SQL, $con);
if ($Erg == 1) if ($Erg == 1)
echo "\tDer Eintrag wurde ge&auml;ndert<br />\n"; echo "\tDer Eintrag wurde ge&auml;ndert<br />\n";
else else
echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n"; echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n";
} }
break; break;
case "faqnew": case "faqnew" :
?> ?>
<form action="./faq.php" method="GET"> <form action="./faq.php" method="GET">
Frage:<br /> Frage:<br />
@ -233,51 +223,49 @@ case "faqnew":
<input type="submit" value="Sichern..."> <input type="submit" value="Sichern...">
</form> </form>
<?php <?php
break;
case "faqnewsave";
$SQL = "INSERT INTO `FAQ` VALUES ('', '". $_GET["Frage"]. "', '". $_GET["Antwort"]. "')";
$Erg = db_query($SQL, "Save new FAQ entry");
if ($Erg == 1)
echo "\tDer Eintrag wurde erfasst.<br />\n";
else
echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n";
break;
} //switch ($_GET["quest"])
// Hilfsroutine für die Anfragen:
// Fragenliste anzeigen???
if ($quest_bearb==1)
{
$Erg = mysql_query($SQL, $con);
// anzahl zeilen
$Zeilen = mysql_num_rows($Erg);
if ($Zeilen==0)
echo "\tkeine vorhanden...\n";
else
for ($n = 0 ; $n < $Zeilen ; $n++)
{
echo "\t<p>". nl2br(mysql_result($Erg, $n, "Question"))."\n</p><br />\n";
echo "\t<a href=\"./faq.php?quest=edit&QID=". mysql_result($Erg, $n, "QID"). "\">Bearbeiten</a>\n";
echo "<br />---<br />\n";
}
}
break;
case "faqnewsave";
$SQL = "INSERT INTO `FAQ` VALUES ('', '" . $_GET["Frage"] . "', '" . $_GET["Antwort"] . "')";
$Erg = db_query($SQL, "Save new FAQ entry");
if ($Erg == 1)
echo "\tDer Eintrag wurde erfasst.<br />\n";
else
echo "\tEin Fehler ist aufgetreten. Sorry, du kannst es aber ja nochmal probieren :)\n";
break;
} //switch ($_GET["quest"])
// Hilfsroutine f<>r die Anfragen:
// Fragenliste anzeigen???
if ($quest_bearb == 1) {
$Erg = mysql_query($SQL, $con);
// anzahl zeilen
$Zeilen = mysql_num_rows($Erg);
if ($Zeilen == 0)
echo "\tkeine vorhanden...\n";
else
for ($n = 0; $n < $Zeilen; $n++) {
echo "\t<p>" . nl2br(mysql_result($Erg, $n, "Question")) . "\n</p><br />\n";
echo "\t<a href=\"./faq.php?quest=edit&QID=" . mysql_result($Erg, $n, "QID") . "\">Bearbeiten</a>\n";
echo "<br />---<br />\n";
}
}
} //if (IsSet($_GET["quest"])) } //if (IsSet($_GET["quest"]))
else else {
{ echo "Bitte w&auml;hle aus, ob du:\n";
echo "Bitte w&auml;hle aus, ob du:\n"; echo "<ul>\n";
echo "<ul>\n"; echo "\t<li><a href=\"./faq.php?quest=all\">Alle Anfragen anzeigen/bearbeiten m&ouml;chtest</a></li>\n";
echo "\t<li><a href=\"./faq.php?quest=all\">Alle Anfragen anzeigen/bearbeiten m&ouml;chtest</a></li>\n"; echo "\t<li><a href=\"./faq.php?quest=open\">Alle offenen Anfragen anzeigen/bearbeiten m&ouml;chtest (" .
echo "\t<li><a href=\"./faq.php?quest=open\">Alle offenen Anfragen anzeigen/bearbeiten m&ouml;chtest (". noAnswer() . ")</a></li>\n";
noAnswer(). ")</a></li>\n"; echo "\t<li><a href=\"./faq.php?quest=faq\">Die FAQ's anzeigen/bearbeiten</a></li>\n";
echo "\t<li><a href=\"./faq.php?quest=faq\">Die FAQ's anzeigen/bearbeiten</a></li>\n"; echo "</ul>\n";
echo "</ul>\n";
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

74
www-ssl/admin/free.php
Unescape Escape View File

@ -1,16 +1,15 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Erzengel"; $title = "Erzengel";
$header = "Freie Engel"; $header = "Freie Engel";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
echo "Hallo " . $_SESSION['Nick'] . ",<br />\n";
echo "Hallo ".$_SESSION['Nick'].",<br />\n";
echo "<br /><br />\n\nHier findest du alle Engel, welche zur Zeit in keiner Schicht verplant sind:<br /><br />\n"; echo "<br /><br />\n\nHier findest du alle Engel, welche zur Zeit in keiner Schicht verplant sind:<br /><br />\n";
####################################################### #######################################################
# Ermitteln freier Engel # Ermitteln freier Engel
# #
@ -33,22 +32,20 @@ $SQL = "SELECT Shifts.*, ShiftEntry.*, User.Nick ".
"INNER JOIN (Shifts INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID) ON User.UID = ShiftEntry.UID ". "INNER JOIN (Shifts INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID) ON User.UID = ShiftEntry.UID ".
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() );"; "WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() );";
*/ */
$SQL = "SELECT Shifts.*, ShiftEntry.* ". $SQL = "SELECT Shifts.*, ShiftEntry.* " .
"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID ". "FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID " .
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);"; "WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);";
//SELECT User.Nick, Schichtplan.*, Schichtbelegung. * FROM User LEFT JOIN Schichtbelegung ON User.UID=Schichtbelegung.UID, Schichtplan LEFT JOIN Schichtbelegung ON Schichtplan.SID = Schichtbelegung.SID WHERE Schichtplan.Date < now() and Schichtplan.EndDate > now() ORDER BY Nick //SELECT User.Nick, Schichtplan.*, Schichtbelegung. * FROM User LEFT JOIN Schichtbelegung ON User.UID=Schichtbelegung.UID, Schichtplan LEFT JOIN Schichtbelegung ON Schichtplan.SID = Schichtbelegung.SID WHERE Schichtplan.Date < now() and Schichtplan.EndDate > now() ORDER BY Nick
//echo "<pre>$SQL</pre>"; //echo "<pre>$SQL</pre>";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
// for ($i = 1; $i < mysql_num_fields($Erg); $i++) // for ($i = 1; $i < mysql_num_fields($Erg); $i++)
// echo "|".mysql_field_name($Erg, $i); // echo "|".mysql_field_name($Erg, $i);
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "\t<tr class=\"contenttopic\">\n"; echo "\t<tr class=\"contenttopic\">\n";
echo "\t\t<td>Nick</td>\n"; echo "\t\t<td>Nick</td>\n";
@ -58,47 +55,44 @@ echo "\t\t<td>Von</td>\n";
echo "\t\t<td>Bis</td>\n"; echo "\t\t<td>Bis</td>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
$inuse = "";
$inuse=""; for ($i = 0; $i < $Zeilen; $i++) {
for ($i=0; $i < $Zeilen; $i++) echo "<tr class=\"content\">\n";
{ echo "<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=" . mysql_result($Erg, $i, "UID") . "\">" .
echo "<tr class=\"content\">\n"; UID2Nick(mysql_result($Erg, $i, "UID")) . "</td></a>\n";
echo "<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=". mysql_result($Erg, $i, "UID"). "\">". echo "<td></td>\n";
UID2Nick(mysql_result($Erg, $i, "UID")). "</td></a>\n"; echo "<td>" . mysql_result($Erg, $i, "RID") . "</td>\n";
echo "<td></td>\n"; echo "<td>" . mysql_result($Erg, $i, "DateS") . "</td>\n";
echo "<td>". mysql_result($Erg, $i, "RID"). "</td>\n"; echo "<td>" . mysql_result($Erg, $i, "DateE") . "</td>\n";
echo "<td>". mysql_result($Erg, $i, "DateS"). "</td>\n"; echo "</tr>\n";
echo "<td>". mysql_result($Erg, $i, "DateE"). "</td>\n";
echo "</tr>\n"; if ($inuse != "")
$inuse .= " OR ";
if ($inuse!="") $inuse .= "(Nick = \"" . UID2Nick(mysql_result($Erg, $i, "UID")) . "\")";
$inuse.= " OR ";
$inuse.= "(Nick = \"". UID2Nick(mysql_result($Erg, $i, "UID")). "\")";
} }
if ($inuse!="") if ($inuse != "")
$inuse=" WHERE NOT (".$inuse.")"; $inuse = " WHERE NOT (" .
$inuse . ")";
echo "</table>\n"; echo "</table>\n";
//########################################################################################################## //##########################################################################################################
echo "<br /><br />\n\nhier findest du alle Engel, welche zur Zeit in keiner Schichten verplant sind:<br /><br />\n"; echo "<br /><br />\n\nhier findest du alle Engel, welche zur Zeit in keiner Schichten verplant sind:<br /><br />\n";
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\"\>\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\"\>\n";
echo "\t<tr class=\"contenttopic\">\n\t\t<td>Nick</td>\n\t\t<td>DECT</td>\n\t</tr>\n"; echo "\t<tr class=\"contenttopic\">\n\t\t<td>Nick</td>\n\t\t<td>DECT</td>\n\t</tr>\n";
$SQL = "SELECT Nick, UID, DECT FROM User".$inuse.";"; $SQL = "SELECT Nick, UID, DECT FROM User" . $inuse . ";";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
for ($i=0; $i < $Zeilen; $i++) for ($i = 0; $i < $Zeilen; $i++) {
{ echo "\t<tr class=\"content\">\n";
echo "\t<tr class=\"content\">\n"; echo "\t\t<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=" . mysql_result($Erg, $i, "UID") . "\">" .
echo "\t\t<td><a href=\"./userChangeNormal.php?Type=Normal&enterUID=". mysql_result($Erg, $i, "UID"). "\">". mysql_result($Erg, $i, "Nick") . "</a></td>\n";
mysql_result($Erg, $i, "Nick"). "</a></td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "DECT") . "</td>\n";
echo "\t\t<td>". mysql_result($Erg, $i, "DECT"). "</td>\n"; echo "\n</tr>\n";
echo "\n</tr>\n";
} }
echo "</table>\n"; echo "</table>\n";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

93
www-ssl/admin/free_DECT.php
Unescape Escape View File

@ -1,9 +1,9 @@
<?php <?php
require_once ('../bootstrap.php');
include ("../../../camp2011/includes/config_db.php"); include ("config/config_db.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
include ("../../../camp2011/includes/funktion_user.php"); include ("includes/funktion_user.php");
####################################################### #######################################################
# Ermitteln freier Engel # Ermitteln freier Engel
@ -11,68 +11,55 @@ include ("../../../camp2011/includes/funktion_user.php");
# auslesen aller Engel und dazugehoerige Schichten # auslesen aller Engel und dazugehoerige Schichten
####################################################### #######################################################
$SQL = "SELECT Shifts.*, ShiftEntry.* ". $SQL = "SELECT Shifts.*, ShiftEntry.* " .
"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID ". "FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID " .
"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);"; "WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() AND ShiftEntry.UID>0);";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
$inuse=""; $inuse = "";
for ($i=0; $i < $Zeilen; $i++) for ($i = 0; $i < $Zeilen; $i++) {
{ if ($inuse != "")
if ($inuse!="") $inuse .= " OR ";
$inuse.= " OR "; $inuse .= "(UID = \"" . mysql_result($Erg, $i, "UID") . "\")";
$inuse.= "(UID = \"". mysql_result($Erg, $i, "UID"). "\")";
}
if ($inuse!="")
{
$inuse=" WHERE (NOT (".$inuse.")) AND (DECT!='')";
} }
else if ($inuse != "") {
{ $inuse = " WHERE (NOT (" . $inuse . ")) AND (DECT!='')";
$inuse=" WHERE (DECT!='')"; } else {
$inuse = " WHERE (DECT!='')";
} }
//########################################################################################################## //##########################################################################################################
$SQL = "SELECT * FROM User".$inuse.";"; $SQL = "SELECT * FROM User" . $inuse . ";";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
for ($i=0; $i < $Zeilen; $i++) for ($i = 0; $i < $Zeilen; $i++) {
{ // get DECT number
// get DECT number echo mysql_result($Erg, $i, "DECT") . "\t";
echo mysql_result($Erg, $i, "DECT"). "\t";
// get all user rights // get all user rights
$SQL_RIGHT = "SELECT * FROM UserCVS WHERE UID=". mysql_result($Erg, $i, "UID"). ";"; $SQL_RIGHT = "SELECT * FROM UserCVS WHERE UID=" . mysql_result($Erg, $i, "UID") . ";";
$Erg_RIGHT = mysql_query($SQL_RIGHT, $con); $Erg_RIGHT = mysql_query($SQL_RIGHT, $con);
$UserRights = mysql_fetch_array($Erg_RIGHT); $UserRights = mysql_fetch_array($Erg_RIGHT);
foreach( $UserRights as $Var => $Value) foreach ($UserRights as $Var => $Value) {
{ if ((strpos($Var, ".php") === false) AND (strpos($Var, "/") === false) AND (strpos($Var, "UID") === false) AND (is_numeric($Var) === false)) {
if( (strpos( $Var, ".php") === false) AND echo "\"" . $Var . "\"=" . $Value . "\t";
(strpos( $Var, "/") === false) AND }
(strpos( $Var, "UID") === false) AND }
(is_numeric($Var) === false) )
{
echo "\"".$Var. "\"=". $Value. "\t";
}
}
// get shift types // get shift types
$SQL_TYPES = "SELECT TID FROM `ShiftEntry` WHERE UID=". mysql_result($Erg, $i, "UID"). " GROUP BY TID;"; $SQL_TYPES = "SELECT TID FROM `ShiftEntry` WHERE UID=" . mysql_result($Erg, $i, "UID") . " GROUP BY TID;";
$Erg_TYPES = mysql_query($SQL_TYPES, $con); $Erg_TYPES = mysql_query($SQL_TYPES, $con);
$Zeilen_Typen = mysql_num_rows($Erg_TYPES); $Zeilen_Typen = mysql_num_rows($Erg_TYPES);
for ($j=0; $j < $Zeilen_Typen; $j++) for ($j = 0; $j < $Zeilen_Typen; $j++) {
{ echo "\"TID_" . TID2Type(mysql_result($Erg_TYPES, $j, "TID")) . "\"=Y\t";
echo "\"TID_". TID2Type( mysql_result($Erg_TYPES, $j, "TID")). "\"=Y\t"; }
}
echo "\n"; echo "\n";
// echo "<br />"; // echo "<br />";
} }
?> ?>

80
www-ssl/admin/group.php
Unescape Escape View File

@ -1,49 +1,49 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Editieren der Engelliste"; $header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
if (!IsSet($_GET["enterGID"])) if (!IsSet ($_GET["enterGID"])) {
{ // Userliste, keine UID uebergeben...
// Userliste, keine UID uebergeben...
$SQL = "SELECT * FROM `UserGroups` ORDER BY `Name` ASC";
$SQL = "SELECT * FROM `UserGroups` ORDER BY `Name` ASC"; $Erg = mysql_query($SQL, $con);
$Erg = mysql_query($SQL, $con); echo mysql_error($con);
echo mysql_error($con);
// anzahl zeilen
// anzahl zeilen $Zeilen = mysql_num_rows($Erg);
$Zeilen = mysql_num_rows($Erg);
echo "<table class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<table class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<tr class=\"contenttopic\">\n";
echo "<tr class=\"contenttopic\">\n"; echo "\t<td>Groupname</td>\n";
echo "\t<td>Groupname</td>\n"; echo "\t<td>Link</td>\n";
echo "\t<td>Link</td>\n"; echo "</tr>\n";
echo "</tr>\n";
for ($n = 0; $n < $Zeilen; $n++) {
for ($n = 0 ; $n < $Zeilen ; $n++) { echo "<tr class=\"content\">\n";
echo "<tr class=\"content\">\n"; echo "\t<td>" . mysql_result($Erg, $n, "Name") . "</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Name")."</td>\n";
echo "<td><a href=\"./userChangeSecure.php?enterUID=" .
echo "<td><a href=\"./userChangeSecure.php?enterUID=". mysql_result($Erg, $n, "UID") . "&Type=Secure\">change</a></td>\n";
mysql_result($Erg, $n, "UID")."&Type=Secure\">change</a></td>\n"; echo "</tr>\n";
echo "</tr>\n"; }
}
// new form
// new form echo "<tr class=\"content\">\n";
echo "<tr class=\"content\">\n"; echo "\t<form action=\"userSaveSecure.php?new=newGroup\" method=\"POST\">\n";
echo "\t<form action=\"userSaveSecure.php?new=newGroup\" method=\"POST\">\n"; echo "\t\t<td><input name=\"GroupName\" type=\"text\" value=\"--new group--\"></td>\n";
echo "\t\t<td><input name=\"GroupName\" type=\"text\" value=\"--new group--\"></td>\n"; echo "\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\"></td>\n";
echo "\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\"></td>\n"; echo "\t</form>\n";
echo "\t</form>\n"; echo "</tr>\n";
echo "</tr>\n";
echo "\t</table>\n";
echo "\t</table>\n"; // Ende Userliste
// Ende Userliste
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

12
www-ssl/admin/index.php
Unescape Escape View File

@ -1,12 +1,12 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Erzengel"; $title = "Erzengel";
$header = "Index"; $header = "Index";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
echo "Hallo Erzengel ".$_SESSION['Nick'].",<br />\n";
echo "Hallo Erzengel " . $_SESSION['Nick'] . ",<br />\n";
?> ?>
du bist jetzt im Erzengel-Bereich. Hier kannst du die Engel-Verwaltung vornehmen.<br /><br /> du bist jetzt im Erzengel-Bereich. Hier kannst du die Engel-Verwaltung vornehmen.<br /><br />
@ -14,6 +14,8 @@ du bist jetzt im Erzengel-Bereich. Hier kannst du die Engel-Verwaltung vornehmen
Bitte melde dich <a href="../logout.php">hier</a> nach getaner Arbeit immer ab, damit kein anderer hier &Auml;nderungen vornehmen kann. Bitte melde dich <a href="../logout.php">hier</a> nach getaner Arbeit immer ab, damit kein anderer hier &Auml;nderungen vornehmen kann.
<?php <?php
include ("../../../camp2011/includes/footer.php");
include ("includes/footer.php");
?> ?>

357
www-ssl/admin/room.php
Unescape Escape View File

@ -1,199 +1,180 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "R&auml;ume"; $title = "R&auml;ume";
$header = "Verwaltung der R&auml;ume"; $header = "Verwaltung der R&auml;ume";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php"); include ("funktion_schichtplan_aray.php");
$Sql = "SELECT * FROM `Room` ORDER BY `Number`, `Name`"; $Sql = "SELECT * FROM `Room` ORDER BY `Number`, `Name`";
$Erg = mysql_query($Sql, $con); $Erg = mysql_query($Sql, $con);
if( !IsSet($_GET["action"]) ) if (!IsSet ($_GET["action"])) {
{ echo "Hallo " . $_SESSION['Nick'] .
echo "Hallo ".$_SESSION['Nick']. ",<br />\nhier hast du die M&ouml;glichkeit, neue R&auml;ume f&uuml;r die Schichtpl&auml;ne einzutragen " .
",<br />\nhier hast du die M&ouml;glichkeit, neue R&auml;ume f&uuml;r die Schichtpl&auml;ne einzutragen ". "oder vorhandene abzu&auml;ndern:<br /><br />\n";
"oder vorhandene abzu&auml;ndern:<br /><br />\n";
echo "<a href=\"./room.php?action=new\">- Neuen Raum/Ort eintragen</a><br />\n";
echo "<a href=\"./room.php?action=new\">- Neuen Raum/Ort eintragen</a><br />\n";
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<tr class=\"contenttopic\">\n";
echo "<tr class=\"contenttopic\">\n";
for ($i = 1; $i < mysql_num_fields($Erg); $i++) {
for( $i = 1; $i < mysql_num_fields($Erg); $i++ ) if (substr(mysql_field_name($Erg, $i), 0, 12) == "DEFAULT_EID_")
{ echo "\t<td> Anzahl " . $EngelTypeID[substr(mysql_field_name($Erg, $i), 12)] . "</td>";
if( substr( mysql_field_name($Erg, $i), 0, 12) == "DEFAULT_EID_") else
echo "\t<td> Anzahl ". $EngelTypeID[substr( mysql_field_name($Erg, $i), 12)]. "</td>"; echo "\t<td>" . mysql_field_name($Erg, $i) . "</td>";
else }
echo "\t<td>". mysql_field_name($Erg, $i)."</td>"; echo "\t<td>&Auml;ndern</td>";
} echo "</tr>";
echo "\t<td>&Auml;ndern</td>";
echo "</tr>"; for ($t = 0; $t < mysql_num_rows($Erg); $t++) {
echo "\t<tr class=\"content\">\n";
for( $t = 0; $t < mysql_num_rows($Erg); $t++ ) for ($j = 1; $j < mysql_num_fields($Erg); $j++) {
{ echo "\t\t<td>" . mysql_result($Erg, $t, $j) . "</td>\n";
echo "\t<tr class=\"content\">\n"; }
for ($j = 1; $j < mysql_num_fields($Erg); $j++) echo "\t\t<td><a href=\"./room.php?action=change&RID=" . mysql_result($Erg, $t, "RID") . "\">###</a></td>\n";
{ echo "\t</tr>\n";
echo "\t\t<td>".mysql_result($Erg, $t, $j)."</td>\n"; } // ende Auflistung Raeume
} echo "</table>";
echo "\t\t<td><a href=\"./room.php?action=change&RID=".mysql_result($Erg, $t, "RID")."\">###</a></td>\n"; } else {
echo "\t</tr>\n";
} // ende Auflistung Raeume UnSet ($SQL);
echo "</table>";
} switch ($_GET["action"]) {
else
{ case 'new' :
echo "Neuen Raum einrichten: <br />";
UnSet($SQL); echo "<form action=\"./room.php\" method=\"GET\">\n";
echo "<table>\n";
switch ($_GET["action"]) {
for ($Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++) {
case 'new': if ((mysql_field_name($Erg, $Uj) == "show") || (mysql_field_name($Erg, $Uj) == "FromPentabarf")) {
echo "Neuen Raum einrichten: <br />"; echo "<tr><td>" . mysql_field_name($Erg, $Uj) . "</td>" .
echo "<form action=\"./room.php\" method=\"GET\">\n"; "<td>" .
echo "<table>\n"; "<input type=\"radio\" name=\"" . mysql_field_name($Erg, $Uj) . "\" value=\"Y\">Yes" .
"<input type=\"radio\" name=\"" . mysql_field_name($Erg, $Uj) . "\" value=\"N\">No" .
for( $Uj = 1; $Uj < mysql_num_fields($Erg); $Uj++ ) "</td></tr>\n";
{ } else {
if( (mysql_field_name($Erg, $Uj) == "show") || (mysql_field_name($Erg, $Uj) == "FromPentabarf") ) //sonderfall fuer Default Engel
{ if (substr(mysql_field_name($Erg, $Uj), 0, 12) == "DEFAULT_EID_")
echo "<tr><td>". mysql_field_name($Erg, $Uj). "</td>". $FeldName = "Anzahl " . $EngelTypeID[substr(mysql_field_name($Erg, $Uj), 12)];
"<td>". else
"<input type=\"radio\" name=\"". mysql_field_name($Erg, $Uj). "\" value=\"Y\">Yes". $FeldName = mysql_field_name($Erg, $Uj);
"<input type=\"radio\" name=\"". mysql_field_name($Erg, $Uj). "\" value=\"N\">No".
"</td></tr>\n"; echo "<td>$FeldName</td>" .
} "<td><input type=\"text\" size=\"40\" name=\"" . mysql_field_name($Erg, $Uj) . "\">";
else echo "</td></tr>\n";
{ }
//sonderfall fuer Default Engel }
if( substr( mysql_field_name($Erg, $Uj), 0, 12) == "DEFAULT_EID_") echo "</table>\n";
$FeldName = "Anzahl ". $EngelTypeID[substr( mysql_field_name($Erg, $Uj), 12)]; echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n";
else echo "<input type=\"submit\" value=\"sichern...\">\n";
$FeldName = mysql_field_name($Erg, $Uj); echo "</form>";
break;
echo "<td>$FeldName</td>".
"<td><input type=\"text\" size=\"40\" name=\"".mysql_field_name($Erg, $Uj)."\">"; case 'newsave' :
echo "</td></tr>\n"; $vars = $_GET;
} $count = count($vars) - 1;
} $vars = array_splice($vars, 0, $count);
echo "</table>\n"; $Keys = "";
echo "<input type=\"hidden\" name=\"action\" value=\"newsave\">\n"; $Values = "";
echo "<input type=\"submit\" value=\"sichern...\">\n"; foreach ($vars as $key => $value) {
echo "</form>"; $Keys .= ", `$key`";
break; $Values .= ", '$value'";
}
case 'newsave': $SQL = "INSERT INTO `Room` (" . substr($Keys, 2) . ") VALUES (" . substr($Values, 2) . ")";
$vars = $_GET; SetHeaderGo2Back();
$count = count($vars) - 1; break;
$vars = array_splice($vars, 0, $count);
$Keys = ""; case 'change' :
$Values = ""; if (!IsSet ($_GET["RID"]))
foreach($vars as $key => $value) echo "Fehlerhafter Aufruf!";
{ else {
$Keys .= ", `$key`"; $SQL2 = "SELECT * FROM `Room` WHERE `RID`='" . $_GET["RID"] . "'";
$Values .= ", '$value'"; $ERG = mysql_query($SQL2, $con);
}
$SQL = "INSERT INTO `Room` (". substr( $Keys, 2). ") VALUES (". substr( $Values, 2). ")"; if (mysql_num_rows($ERG) > 0) {
SetHeaderGo2Back(); echo "Raum ab&auml;ndern:\n";
break; echo "Hier kannst du eintragen, welche und wieviele Engel f&uuml;r den Raum zur Verf?gung stehen m&uuml;ssen.";
echo "<form action=\"./room.php\" method=\"GET\">\n";
case 'change': echo "<table>\n";
if (! IsSet($_GET["RID"]))
echo "Fehlerhafter Aufruf!"; for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) {
else if ((mysql_field_name($ERG, $Uj) == "show") || (mysql_field_name($ERG, $Uj) == "FromPentabarf")) {
{ echo "<tr><td>" . mysql_field_name($Erg, $Uj) . "</td>" .
$SQL2 = "SELECT * FROM `Room` WHERE `RID`='". $_GET["RID"]. "'"; "<td>" .
$ERG = mysql_query($SQL2, $con); "<input type=\"radio\" name=\"e" . mysql_field_name($ERG, $Uj) .
"\" value=\"Y\"" . (mysql_result($ERG, 0, $Uj) == 'Y' ? " checked" : "") . ">Yes" .
if( mysql_num_rows( $ERG)>0) "<input type=\"radio\" name=\"e" . mysql_field_name($ERG, $Uj) .
{ "\" value=\"N\"" . (mysql_result($ERG, 0, $Uj) == 'N' ? " checked" : "") . ">No" .
echo "Raum ab&auml;ndern:\n"; "</td></tr>\n";
echo "Hier kannst du eintragen, welche und wieviele Engel f&uuml;r den Raum zur Verf?gung stehen m&uuml;ssen."; } else {
echo "<form action=\"./room.php\" method=\"GET\">\n"; if (substr(mysql_field_name($ERG, $Uj), 0, 12) == "DEFAULT_EID_")
echo "<table>\n"; //sonderfall fuer Default Engel
$FeldName = "Anzahl " . $EngelTypeID[substr(mysql_field_name($ERG, $Uj), 12)];
for ($Uj = 1; $Uj < mysql_num_fields($ERG); $Uj++) else
{ $FeldName = mysql_field_name($ERG, $Uj);
if( (mysql_field_name($ERG, $Uj) == "show") || (mysql_field_name($ERG, $Uj) == "FromPentabarf") ) echo "<tr><td>$FeldName</td>" .
{ "<td><input type=\"text\" size=\"40\" name=\"e" . mysql_field_name($ERG, $Uj) . "\" " .
echo "<tr><td>". mysql_field_name($Erg, $Uj). "</td>". "value=\"" . mysql_result($ERG, 0, $Uj) . "\">" .
"<td>". "</td></tr>\n";
"<input type=\"radio\" name=\"e". mysql_field_name($ERG, $Uj). }
"\" value=\"Y\"". (mysql_result($ERG, 0, $Uj)=='Y'? " checked":""). ">Yes". }
"<input type=\"radio\" name=\"e". mysql_field_name($ERG, $Uj). echo "</table>\n";
"\" value=\"N\"". (mysql_result($ERG, 0, $Uj)=='N'? " checked":""). ">No". echo "<input type=\"hidden\" name=\"eRID\" value=\"" . $_GET["RID"] . "\">\n";
"</td></tr>\n"; echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n";
} echo "<input type=\"submit\" value=\"sichern...\">\n";
else echo "</form>";
{ echo "<form action=\"./room.php\" method=\"GET\">\n";
if( substr( mysql_field_name($ERG, $Uj), 0, 12) == "DEFAULT_EID_") echo "<input type=\"hidden\" name=\"RID\" value=\"" . $_GET["RID"] . "\">\n";
//sonderfall fuer Default Engel echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n";
$FeldName = "Anzahl ". $EngelTypeID[substr( mysql_field_name($ERG, $Uj), 12)]; echo "<input type=\"submit\" value=\"L&ouml;schen...\">";
else echo "</form>";
$FeldName = mysql_field_name($ERG, $Uj); } else
echo "<tr><td>$FeldName</td>". echo "FEHLER: Room ID " . $_GET["RID"] . " nicht gefunden";
"<td><input type=\"text\" size=\"40\" name=\"e".mysql_field_name($ERG, $Uj)."\" ". }
"value=\"".mysql_result($ERG, 0, $Uj)."\">". break;
"</td></tr>\n";
} case 'changesave' :
} $sql = "";
echo "</table>\n"; $vars = $_GET;
echo "<input type=\"hidden\" name=\"eRID\" value=\"". $_GET["RID"]. "\">\n"; $count = count($vars) - 2;
echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; $vars = array_splice($vars, 0, $count);
echo "<input type=\"submit\" value=\"sichern...\">\n"; foreach ($vars as $key => $value) {
echo "</form>"; $keys = substr($key, 1);
echo "<form action=\"./room.php\" method=\"GET\">\n"; $sql .= ", `" . $keys . "`='" . $value . "' ";
echo "<input type=\"hidden\" name=\"RID\" value=\"". $_GET["RID"]. "\">\n"; }
echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n"; $SQL = "UPDATE `Room` SET " . substr($sql, 2) . " WHERE `RID`='" . $_GET["eRID"] . "'";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">"; SetHeaderGo2Back();
echo "</form>"; break;
}
else case 'delete' :
echo "FEHLER: Room ID ". $_GET["RID"]. " nicht gefunden"; if (IsSet ($_GET["RID"])) {
} $SQL = "DELETE FROM `Room` WHERE `RID`='" . $_GET["RID"] . "'";
break; } else {
echo "Fehlerhafter Aufruf";
case 'changesave': }
$sql=""; SetHeaderGo2Back();
$vars = $_GET; break;
$count = count($vars) - 2;
$vars = array_splice($vars, 0, $count); } //switch
foreach($vars as $key => $value)
{ // Update ???
$keys = substr($key,1);
$sql .= ", `".$keys."`='".$value."' "; if (IsSet ($SQL)) {
} // echo $SQL;
$SQL = "UPDATE `Room` SET ". substr($sql, 2). " WHERE `RID`='". $_GET["eRID"]. "'"; // hier muesste das SQL ausgefuehrt werden...
SetHeaderGo2Back(); $Erg = db_query($SQL, "exec SQL");
break; if ($Erg == 1)
echo "&Auml;nderung wurde gesichert...<br />";
case 'delete': else {
if (IsSet($_GET["RID"])) { echo "Fehler beim speichern... bitte noch ein mal probieren :)";
$SQL="DELETE FROM `Room` WHERE `RID`='". $_GET["RID"]. "'"; echo "<br /><br />" . mysql_error($con) . "<br />($SQL)<br />";
} else { }
echo "Fehlerhafter Aufruf"; } // Ende Update
}
SetHeaderGo2Back();
break;
} //switch
// Update ???
if (IsSet($SQL)){
// echo $SQL;
// hier muesste das SQL ausgefuehrt werden...
$Erg = db_query($SQL, "exec SQL");
if ($Erg == 1)
echo "&Auml;nderung wurde gesichert...<br />";
else
{
echo "Fehler beim speichern... bitte noch ein mal probieren :)";
echo "<br /><br />".mysql_error( $con ). "<br />($SQL)<br />";
}
} // Ende Update
} //IF IsSet($action) } //IF IsSet($action)
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

705
www-ssl/admin/schichtplan.php
Unescape Escape View File

@ -1,32 +1,30 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Schichtplan"; $title = "Schichtplan";
$header = "Neue Schichten erfassen"; $header = "Neue Schichten erfassen";
$submenus = 1; $submenus = 1;
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
function executeSQL( $SQL) function executeSQL($SQL) {
{ global $debug, $con;
global $debug, $con;
$Erg = mysql_query($SQL, $con);
$Erg = mysql_query($SQL, $con); if ($debug)
if( $debug ) echo "DEBUG SQL: $SQL<br />\n";
echo "DEBUG SQL: $SQL<br />\n"; if ($Erg == 1) {
if ($Erg == 1) echo "SQL war erfolgreich";
{ } else {
echo "SQL war erfolgreich"; echo "SQL Fehler (" . mysql_error($con) . ")";
} }
else
{
echo "SQL Fehler (". mysql_error($con).")" ;
}
} }
if (!IsSet($_GET["action"])) { if (!IsSet ($_GET["action"])) {
echo "Hallo ".$_SESSION['Nick'].",<br />\n"; echo "Hallo " . $_SESSION['Nick'] . ",<br />\n";
echo "hier kannst du Schichten anlegen, &auml;ndern oder l&ouml;schen.<br /><br />"; echo "hier kannst du Schichten anlegen, &auml;ndern oder l&ouml;schen.<br /><br />";
echo "<a href=\"./shiftadd.php\">Neue Schicht einplanen</a><br /><br />\n\n"; echo "<a href=\"./shiftadd.php\">Neue Schicht einplanen</a><br /><br />\n\n";
echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n"; echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n";
?> ?>
<table width="100%" class="border" cellpadding="2" cellspacing="1"> <table width="100%" class="border" cellpadding="2" cellspacing="1">
<tr class="contenttopic"> <tr class="contenttopic">
@ -38,358 +36,327 @@ echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n";
</tr> </tr>
<?php <?php
$sql = "SELECT `SID`, `DateS`, `RID`, `Len` FROM `Shifts` ".
"ORDER BY `RID`, `DateS` ";
$Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg);
for( $i = 0; $i < $rowcount; $i++)
{
echo "\t<tr class=\"content\">\n";
echo "\t\t<td><input type=\"checkbox\" name=\"SID". mysql_result($Erg, $i, "SID"). "\" ".
"value=\"". mysql_result($Erg, $i, "SID"). "\"></td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "DateS")."</td>\n";
$sql2= "SELECT `Name` FROM `Room` WHERE `RID`='".mysql_result($Erg, $i, "RID")."'";
$Erg2 = mysql_query($sql2, $con);
if( mysql_num_rows($Erg2) > 0)
echo "\t\t<td>".mysql_result($Erg2, 0, "Name")."</td>\n";
else
echo "\t\t<td>Unbenkannt (RID=". mysql_result($Erg, $i, "RID"). ")</td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Len")." Std. </td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=change&SID=".
mysql_result($Erg, $i, "SID")."\">####</a></td>\n";
echo "\t</tr>\n";
}
echo "</table>\n";
echo "<input type=\"hidden\" name=\"action\" value=\"deleteShifs\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n";
echo "</form>\n";
$sql = "SELECT `SID`, `DateS`, `RID`, `Len` FROM `Shifts` " .
"ORDER BY `RID`, `DateS` ";
$Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg);
for ($i = 0; $i < $rowcount; $i++) {
echo "\t<tr class=\"content\">\n";
echo "\t\t<td><input type=\"checkbox\" name=\"SID" . mysql_result($Erg, $i, "SID") . "\" " .
"value=\"" . mysql_result($Erg, $i, "SID") . "\"></td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "DateS") . "</td>\n";
$sql2 = "SELECT `Name` FROM `Room` WHERE `RID`='" . mysql_result($Erg, $i, "RID") . "'";
$Erg2 = mysql_query($sql2, $con);
if (mysql_num_rows($Erg2) > 0)
echo "\t\t<td>" . mysql_result($Erg2, 0, "Name") . "</td>\n";
else
echo "\t\t<td>Unbenkannt (RID=" . mysql_result($Erg, $i, "RID") . ")</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "Len") . " Std. </td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=change&SID=" .
mysql_result($Erg, $i, "SID") . "\">####</a></td>\n";
echo "\t</tr>\n";
}
echo "</table>\n";
echo "<input type=\"hidden\" name=\"action\" value=\"deleteShifs\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n";
echo "</form>\n";
} else { } else {
// aus sicherheitzgründen wegen späterer genuzung // aus sicherheitzgr<67>nden wegen sp<73>terer genuzung
UnSet($chSQL); UnSet ($chSQL);
switch ($_GET["action"]){ switch ($_GET["action"]) {
case 'change': case 'change' :
if ( !IsSet($_GET["SID"]) ) if (!IsSet ($_GET["SID"])) {
{ echo "Fehlerhafter Aufruf!\n";
echo "Fehlerhafter Aufruf!\n"; } else {
}
else $sql = "SELECT * FROM `Shifts` WHERE (`SID` = '" . $_GET["SID"] . "' )";
{ $Erg = mysql_query($sql, $con);
$sql = "SELECT * FROM `Shifts` WHERE (`SID` = '". $_GET["SID"]. "' )"; echo "Schicht ab&auml;ndern: <br />\n";
$Erg = mysql_query($sql, $con);
// Anzeige Allgemeiner schaischt daten
echo "Schicht ab&auml;ndern: <br />\n"; echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >";
echo "<table>\n";
// Anzeige Allgemeiner schaischt daten echo " <tr><td>Schichtbeginn</td>" .
echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >"; "<td><input value=\"" . mysql_result($Erg, 0, "DateS") .
echo "<table>\n"; "\" type=\"text\" size=\"40\" name=\"eDate\"></td></tr>\n";
echo " <tr><td>Schichtbeginn</td>". echo " <tr><td>Raum</td><td>\n<select name=\"eRID\">\n";
"<td><input value=\"". mysql_result($Erg, 0, "DateS").
"\" type=\"text\" size=\"40\" name=\"eDate\"></td></tr>\n"; $sql2 = "SELECT `RID`, `Name`, `FromPentabarf` FROM `Room`";
echo " <tr><td>Raum</td><td>\n<select name=\"eRID\">\n"; $Erg2 = mysql_query($sql2, $con);
$rowcount = mysql_num_rows($Erg2);
$sql2 = "SELECT `RID`, `Name`, `FromPentabarf` FROM `Room`"; $FromPentabarf = "N";
$Erg2 = mysql_query($sql2, $con); for ($i = 0; $i < $rowcount; $i++) {
$rowcount = mysql_num_rows($Erg2); $RID = mysql_result($Erg2, $i, "RID");
$FromPentabarf = "N"; echo " <option value=\"" . $RID . "\"";
for( $i = 0; $i < $rowcount; $i++ ) if ($RID == mysql_result($Erg, 0, "RID")) {
{ echo " selected";
$RID=mysql_result($Erg2, $i, "RID"); $FromPentabarf = mysql_result($Erg2, $i, "FromPentabarf");
echo " <option value=\"".$RID."\""; }
if( $RID == mysql_result($Erg, 0, "RID") ) echo ">" . mysql_result($Erg2, $i, "Name") . "</option>\n";
{ }
echo " selected"; echo " </select>\n</td></tr>\n";
$FromPentabarf = mysql_result($Erg2, $i, "FromPentabarf");
} echo " <tr><td>Dauer in h</td>" .
echo ">".mysql_result($Erg2, $i, "Name")."</option>\n"; "<td><input value=\"" . mysql_result($Erg, 0, "Len") .
} "\" type=\"text\" size=\"40\" name=\"eDauer\"></td></tr>\n";
echo " </select>\n</td></tr>\n"; echo " <tr><td>Beschreibung</td>" .
"<td><input value=\"" . mysql_result($Erg, 0, "Man") .
echo " <tr><td>Dauer in h</td>". "\" type=\"text\" size=\"40\" name=\"eName\"></td></tr>\n";
"<td><input value=\"". mysql_result($Erg, 0, "Len"). echo " <tr><td>URL</td>" .
"\" type=\"text\" size=\"40\" name=\"eDauer\"></td></tr>\n"; "<td><input value=\"" . mysql_result($Erg, 0, "URL") .
echo " <tr><td>Beschreibung</td>". "\" type=\"text\" size=\"40\" name=\"eURL\"></td></tr>\n";
"<td><input value=\"". mysql_result($Erg, 0, "Man"). if ($FromPentabarf == "Y") {
"\" type=\"text\" size=\"40\" name=\"eName\"></td></tr>\n"; echo " <tr><td></td>" .
echo " <tr><td>URL</td>". "<td><h1>!!! Imported from Pentabarf !!!</h1></td></tr>\n";
"<td><input value=\"". mysql_result($Erg, 0, "URL"). }
"\" type=\"text\" size=\"40\" name=\"eURL\"></td></tr>\n"; echo "</table>\n";
if( $FromPentabarf == "Y")
{ echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n";
echo " <tr><td></td>". echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n";
"<td><h1>!!! Imported from Pentabarf !!!</h1></td></tr>\n"; echo "<input type=\"submit\" value=\"sichern...\">\n";
} echo "</form>\n\n";
echo "</table>\n";
// L<>schen
echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n"; echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n";
echo "<input type=\"hidden\" name=\"action\" value=\"changesave\">\n"; echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n"; echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n";
echo "</form>\n\n"; echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n";
echo "</form>\n\n";
// Löschen
echo "<form action=\"". $_SERVER['SCRIPT_NAME']. "\" method=\"GET\" >\n"; echo "<b>ACHTUNG:</b><br />\n";
echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n"; echo "Beim L&ouml;schen werden die bisher eingetragenen Engel f&uuml;r diese Schicht mitgel&ouml;scht.<br />\n";
echo "<input type=\"hidden\" name=\"action\" value=\"delete\">\n";
echo "<input type=\"submit\" value=\"L&ouml;schen...\">\n"; echo "<br /><hr>\n\n\n\n";
echo "</form>\n\n";
//Freie Engelschichten
echo "<b>ACHTUNG:</b><br />\n"; $sql3 = "SELECT `TID` FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND `UID`='0'";
echo "Beim L&ouml;schen werden die bisher eingetragenen Engel f&uuml;r diese Schicht mitgel&ouml;scht.<br />\n"; $Erg3 = mysql_query($sql3, $con);
$rowcount = mysql_num_rows($Erg3);
echo "<br /><hr>\n\n\n\n";
echo "Folgende Engelschichten sind noch nicht vergeben.\n";
//Freie Engelschichten echo "Und koenen, wenn diese nSchicht nicht benoetigt wird geloet werden:<br />\n";
$sql3 = "SELECT `TID` FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND `UID`='0'"; for ($j = 0; $j < $rowcount; $j++) {
$Erg3 = mysql_query($sql3, $con); $TID = mysql_result($Erg3, $j, 0);
$rowcount = mysql_num_rows($Erg3); echo "<a href=\"./schichtplan.php?action=engelshiftdel&SID=" . $_GET["SID"] . "&TID=$TID\">" .
"freie " . TID2Type($TID) . Get_Text("inc_schicht_Engel") . "schicht loeschen</a><br />\n";
echo "Folgende Engelschichten sind noch nicht vergeben.\n"; }
echo "Und koenen, wenn diese nSchicht nicht benoetigt wird geloet werden:<br />\n"; echo "<br /><hr>\n\n\n\n";
for ($j=0; $j < $rowcount; $j++)
{ //Ausgabe eingetragener schischten
$TID = mysql_result($Erg3, $j, 0); $sql3 = "SELECT * FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND NOT `UID`='0'";
echo "<a href=\"./schichtplan.php?action=engelshiftdel&SID=". $_GET["SID"]. "&TID=$TID\">". $Erg3 = mysql_query($sql3, $con);
"freie ". TID2Type($TID). Get_Text("inc_schicht_Engel"). "schicht loeschen</a><br />\n"; $rowcount = mysql_num_rows($Erg3);
}
echo "<br /><hr>\n\n\n\n"; echo "Folgende Engel Sind fuer die Schicht eingetargen.\n";
echo "Und koennen, wenn diese nicht zu Schicht erschienen sind ausgetragen werden:<br />\n";
//Ausgabe eingetragener schischten echo "<table border=\"1\">\n" .
$sql3 = "SELECT * FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND NOT `UID`='0'"; "<tr class=\"contenttopic\">" .
$Erg3 = mysql_query($sql3, $con); "<th>nick</th>" .
$rowcount = mysql_num_rows($Erg3); "<th>type</th>" .
"<th>normal</th>" .
echo "Folgende Engel Sind fuer die Schicht eingetargen.\n"; "<th>freeloader :-(</th>" .
echo "Und koennen, wenn diese nicht zu Schicht erschienen sind ausgetragen werden:<br />\n"; "</tr>";
echo "<table border=\"1\">\n".
"<tr class=\"contenttopic\">". for ($j = 0; $j < $rowcount; $j++) {
"<th>nick</th>". $userUID = mysql_result($Erg3, $j, "UID");
"<th>type</th>". echo "\t<tr>\n";
"<th>normal</th>". echo "\t\t<td>" . UID2Nick($userUID) . "</td>\n";
"<th>freeloader :-(</th>". echo "\t\t<td>" . TID2Type(mysql_result($Erg3, $j, "TID")) . Get_Text("inc_schicht_Engel") . "</td>\n";
"</tr>"; echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=" . $_GET["SID"] . "&UIDs=$userUID&freeloader=0\">###-austragen-###</a></td>\n";
echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=" . $_GET["SID"] . "&UIDs=$userUID&freeloader=1\">###-austragen-freeloader-###</a></td>\n";
for ($j=0; $j < $rowcount; $j++) echo "\t</tr>\n";
{ } // FOR
$userUID=mysql_result($Erg3, $j, "UID");
echo "\t<tr>\n"; echo "</table><br /><hr>\n\n\n\n";
echo "\t\t<td>". UID2Nick($userUID). "</td>\n";
echo "\t\t<td>". TID2Type(mysql_result($Erg3, $j, "TID")). Get_Text("inc_schicht_Engel"). "</td>\n"; //Nachtragen von Engeln
echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=". $_GET["SID"]. "&UIDs=$userUID&freeloader=0\">###-austragen-###</a></td>\n"; echo "Hat ein anderer Engel die Schicht &uuml;bernommen, trage ihn bitte ein:";
echo "\t\t<td><a href=\"./schichtplan.php?action=engeldel&SID=". $_GET["SID"]. "&UIDs=$userUID&freeloader=1\">###-austragen-freeloader-###</a></td>\n"; echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\" method=\"GET\" >\n";
echo "\t</tr>\n"; echo "<input type=\"hidden\" name=\"SID\" value=\"" . $_GET["SID"] . "\">\n";
} // FOR echo "<input type=\"hidden\" name=\"action\" value=\"engeladd\">\n";
echo "</table><br /><hr>\n\n\n\n"; // Listet alle Nicks auf
echo "<select name=\"UIDs\">\n";
//Nachtragen von Engeln if ($FromPentabarf != "Y") {
echo "Hat ein anderer Engel die Schicht &uuml;bernommen, trage ihn bitte ein:"; echo "\t<option value=\"0\">--neu--</option>\n";
echo "<form action=\"".$_SERVER['SCRIPT_NAME']."\" method=\"GET\" >\n"; }
echo "<input type=\"hidden\" name=\"SID\" value=\"". $_GET["SID"]. "\">\n";
echo "<input type=\"hidden\" name=\"action\" value=\"engeladd\">\n"; $usql = "SELECT * FROM `User` ORDER BY `Nick`";
$uErg = mysql_query($usql, $con);
// Listet alle Nicks auf $urowcount = mysql_num_rows($uErg);
echo "<select name=\"UIDs\">\n"; for ($k = 0; $k < $urowcount; $k++) {
if( $FromPentabarf != "Y") echo "\t<option value=\"" . mysql_result($uErg, $k, "UID") . "\">" .
{ mysql_result($uErg, $k, "Nick") .
echo "\t<option value=\"0\">--neu--</option>\n"; "</option>\n";
} }
echo "</select>\n";
$usql="SELECT * FROM `User` ORDER BY `Nick`";
$uErg = mysql_query($usql, $con); echo " als \n";
$urowcount = mysql_num_rows($uErg);
for ($k=0; $k<$urowcount; $k++) // holt eine liste der ben<65>tigten Engel zu dieser Schischt
{ $sql3 = "SELECT Count(`TID`) AS `CTID`, `TID` FROM `ShiftEntry` ";
echo "\t<option value=\"".mysql_result($uErg, $k, "UID")."\">". $sql3 .= "WHERE (`SID`='" . $_GET["SID"] . "' AND `UID`='0') ";
mysql_result($uErg, $k, "Nick"). $sql3 .= "GROUP BY `SID`, `TID`, `UID` ";
"</option>\n"; $Erg3 = mysql_query($sql3, $con);
} $i = -1;
echo "</select>\n"; while (++ $i < mysql_num_rows($Erg3)) {
$EngelNeed[mysql_result($Erg3, $i, "TID")] = mysql_result($Erg3, $i, "CTID");
echo " als \n"; }
// holt eine liste der benötigten Engel zu dieser Schischt // Gibt dei m<>glich Engeltypen aus und zeigt w<>efiel noch be<62>tigt werden
$sql3 = "SELECT Count(`TID`) AS `CTID`, `TID` FROM `ShiftEntry` "; echo "<select name=\"TID\">\n";
$sql3.= "WHERE (`SID`='". $_GET["SID"]. "' AND `UID`='0') "; $SQL2 = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`";
$sql3.= "GROUP BY `SID`, `TID`, `UID` "; $Erg2 = mysql_query($SQL2, $con);
$Erg3 = mysql_query($sql3, $con); for ($l = 0; $l < mysql_num_rows($Erg2); $l++) {
$i=-1; $EngelTID = mysql_result($Erg2, $l, "TID");
while( ++$i < mysql_num_rows($Erg3)) echo "<option value=\"$EngelTID\">";
{ echo mysql_result($Erg2, $l, "Name") . Get_Text("inc_schicht_engel");
$EngelNeed[mysql_result($Erg3, $i, "TID")] = mysql_result($Erg3, $i, "CTID"); if (!isset ($EngelNeed[$EngelTID]))
} echo " (0)";
else
// Gibt dei möglich Engeltypen aus und zeigt wíefiel noch beötigt werden echo " (" . $EngelNeed[$EngelTID] . ")";
echo "<select name=\"TID\">\n"; echo "</option>\n";
$SQL2 = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`"; }
$Erg2 = mysql_query($SQL2, $con); echo "</select>\n";
for ($l = 0; $l < mysql_num_rows($Erg2); $l++)
{ echo "<input type=\"submit\" value=\"eintragen...\">\n";
$EngelTID = mysql_result($Erg2, $l, "TID");
echo "<option value=\"$EngelTID\">"; echo "<br />\n<input value=\"1\" type=\"text\" size=\"5\" name=\"eAnzahlNew\"> Anzahl New\n";
echo mysql_result($Erg2, $l, "Name"). Get_Text("inc_schicht_engel");
if( !isset($EngelNeed[$EngelTID]) ) echo "</form>";
echo " (0)";
else } // IF ISSET(
echo " (".$EngelNeed[$EngelTID].")"; break;
echo "</option>\n";
} case 'engeladd' :
echo "</select>\n"; if ($_GET["UIDs"] > 0) {
echo "<input type=\"submit\" value=\"eintragen...\">\n"; $SQL = "SELECT * FROM `ShiftEntry` " .
"WHERE (`SID`='" . $_GET["SID"] . "' AND `TID`='" . $_GET["TID"] . "' AND `UID`='0')";
echo "<br />\n<input value=\"1\" type=\"text\" size=\"5\" name=\"eAnzahlNew\"> Anzahl New\n"; $ERG = mysql_query($SQL, $con);
if (mysql_num_rows($ERG) != 0) {
echo "</form>"; $chSQL = "UPDATE `ShiftEntry` SET " .
"`UID`='" . $_GET["UIDs"] . "', `Comment`='shift added by " . $_SESSION['Nick'] . "' " .
} // IF ISSET( "WHERE (`SID`='" . $_GET["SID"] . "' AND " .
break; "`TID`='" . $_GET["TID"] . "' AND `UID`='0' ) LIMIT 1";
} else {
case 'engeladd': $chSQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (" .
if( $_GET["UIDs"]>0) "'" . $_GET["SID"] . "', '" . $_GET["TID"] . "', " .
{ "'" . $_GET["UIDs"] . "', 'shift added by " . $_SESSION['Nick'] . "')";
}
$SQL = "SELECT * FROM `ShiftEntry` ". echo "Es wird folgende Schicht zus&auml;tzlich eingetragen:<br />\n";
"WHERE (`SID`='". $_GET["SID"]. "' AND `TID`='". $_GET["TID"]. "' AND `UID`='0')"; echo "Engel: " . UID2Nick($_GET["UIDs"]) . "<br />\n";
$ERG = mysql_query($SQL, $con); echo "Bemerkung: Schicht eingetragen durch Erzengel " . $_SESSION['Nick'] . "<br />\n<br />\n";
if( mysql_num_rows($ERG) != 0 ) } else {
{ echo "Es wird folgende Schicht wurde " . $_GET["eAnzahlNew"] . "x zus&auml;tzlich eingetragen:<br />\n";
$chSQL = "UPDATE `ShiftEntry` SET ". for ($i = 0; $i < $_GET["eAnzahlNew"]; $i++) {
"`UID`='". $_GET["UIDs"]. "', `Comment`='shift added by ".$_SESSION['Nick']."' ". echo "$i. <br />\n";
"WHERE (`SID`='". $_GET["SID"]. "' AND ". $SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (";
"`TID`='". $_GET["TID"]. "' AND `UID`='0' ) LIMIT 1"; $SQL .= "'" . $_GET["SID"] . "', '" . $_GET["TID"] . "', '0', NULL)";
} $ERG = mysql_query($SQL, $con);
else if ($debug)
{ echo "DEBUG SQL: $SQL<br />\n";
$chSQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (". if ($ERG == 1) {
"'". $_GET["SID"]. "', '". $_GET["TID"]. "', ". echo "&Auml;nderung wurde gesichert...<br />";
"'". $_GET["UIDs"]. "', 'shift added by ".$_SESSION['Nick']."')"; } else {
} echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />";
echo "Es wird folgende Schicht zus&auml;tzlich eingetragen:<br />\n"; echo mysql_error($con);
echo "Engel: ".UID2Nick($_GET["UIDs"])."<br />\n"; }
echo "Bemerkung: Schicht eingetragen durch Erzengel ".$_SESSION['Nick']."<br />\n<br />\n"; echo "Es wird eine weitere Schicht eingetragen:<br /><br />\n";
} }
else }
{ break;
echo "Es wird folgende Schicht wurde ". $_GET["eAnzahlNew"]. "x zus&auml;tzlich eingetragen:<br />\n";
for( $i=0; $i<$_GET["eAnzahlNew"]; $i++) case 'engeldel' :
{ $chSQL = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`= 'NULL' WHERE (`SID`='" . $_GET["SID"] .
echo "$i. <br />\n"; "' AND `UID`='" . $_GET["UIDs"] . "') LIMIT 1";
$SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES ("; if (isset ($_GET["freeloader"]) && $_GET["freeloader"] == 1) {
$SQL .= "'". $_GET["SID"]. "', '". $_GET["TID"]. "', '0', NULL)"; $sql = "SELECT * FROM `Shifts` WHERE (`SID` = '" . $_GET["SID"] . "' )";
$ERG = mysql_query($SQL, $con); $Erg = mysql_query($sql, $con);
if( $debug ) if (mysql_num_rows($Erg) == 1) {
echo "DEBUG SQL: $SQL<br />\n"; $UID = $_GET["UIDs"];
if ($ERG == 1) $Length = mysql_result($Erg, 0, "Len");
{ $Comment = "Start: " . mysql_result($Erg, 0, "DateS") . "; " .
echo "&Auml;nderung wurde gesichert...<br />"; "Beschreibung: " . mysql_result($Erg, 0, "Man") . "; " .
} "Removed by " . $_SESSION['Nick'];
else $ch2SQL = "INSERT INTO `ShiftFreeloader` (`Remove_Time`, `UID`, `Length`, `Comment`) " .
{ "VALUES ( CURRENT_TIMESTAMP, '$UID', '$Length', '$Comment');";
echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />"; }
echo mysql_error($con); }
} break;
echo "Es wird eine weitere Schicht eingetragen:<br /><br />\n";
} case 'engelshiftdel' :
} $chSQL = "DELETE FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "' AND `TID`='" .
break; $_GET["TID"] . "' AND `UID`='0' LIMIT 1";
break;
case 'engeldel':
$chSQL = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`= 'NULL' WHERE (`SID`='". $_GET["SID"]. case 'changesave' :
"' AND `UID`='". $_GET["UIDs"]. "') LIMIT 1"; $query = mysql_query("SELECT DATE_ADD('" . $_GET["eDate"] . "', INTERVAL '+0 " . $_GET["eDauer"] . "' DAY_HOUR)", $con);
if( isset($_GET["freeloader"]) && $_GET["freeloader"]==1) $enddate = mysql_fetch_row($query);
{
$sql = "SELECT * FROM `Shifts` WHERE (`SID` = '". $_GET["SID"]. "' )"; $chSQL = "UPDATE `Shifts` SET " .
$Erg = mysql_query($sql, $con); "`DateS`='" . $_GET["eDate"] . "', " .
if( mysql_num_rows( $Erg) == 1) "`DateE`='" . $enddate[0] . "', " .
{ "`RID`='" . $_GET["eRID"] . "', " .
$UID = $_GET["UIDs"]; "`Len`='" . $_GET["eDauer"] . "', " .
$Length = mysql_result($Erg, 0, "Len"); "`Man`='" . $_GET["eName"] . "', " .
$Comment = "Start: ". mysql_result($Erg, 0, "DateS"). "; ". "`URL`='" . $_GET["eURL"] . "' " .
"Beschreibung: ". mysql_result($Erg, 0, "Man"). "; ". "WHERE `SID`='" . $_GET["SID"] . "'";
"Removed by ". $_SESSION['Nick']; SetHeaderGo2Back();
$ch2SQL = break;
"INSERT INTO `ShiftFreeloader` (`Remove_Time`, `UID`, `Length`, `Comment`) ".
"VALUES ( CURRENT_TIMESTAMP, '$UID', '$Length', '$Comment');"; case 'delete' :
} $chSQL = "DELETE FROM `Shifts` WHERE `SID`='" . $_GET["SID"] . "' LIMIT 1";
} $ch2SQL = "DELETE FROM `ShiftEntry` WHERE `SID`='" . $_GET["SID"] . "'";
break; SetHeaderGo2Back();
break;
case 'engelshiftdel':
$chSQL = "DELETE FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND `TID`='". case 'deleteShifs' :
$_GET["TID"]. "' AND `UID`='0' LIMIT 1"; foreach ($_GET as $k => $v)
break; if (strpos(" " . $k, "SID") == 1) {
echo "Shifts $v wird gel<65>scht...";
case 'changesave': executeSQL("DELETE FROM `Shifts` WHERE `SID`='$v' LIMIT 1");
$query = mysql_query("SELECT DATE_ADD('". $_GET["eDate"]. "', INTERVAL '+0 ". $_GET["eDauer"]. "' DAY_HOUR)", $con); echo "<br />\n";
$enddate = mysql_fetch_row($query); echo "ShiftEntry $v wird gel<65>scht...";
executeSQL("DELETE FROM `ShiftEntry` WHERE `SID`='$v'");
$chSQL = "UPDATE `Shifts` SET ". echo "<br /><br />\n";
"`DateS`='". $_GET["eDate"]. "', ". }
"`DateE`='".$enddate[0]. "', ". break;
"`RID`='". $_GET["eRID"]. "', ".
"`Len`='". $_GET["eDauer"]. "', ". } // end switch
"`Man`='". $_GET["eName"]. "', ".
"`URL`='". $_GET["eURL"]. "' ". if (IsSet ($chSQL)) {
"WHERE `SID`='". $_GET["SID"]. "'"; // echo $chSQL;
SetHeaderGo2Back(); // hier muesste das SQL ausgefuehrt werden...
break; $Erg = mysql_query($chSQL, $con);
if ($debug)
case 'delete': echo "DEBUG SQL: $chSQL<br />\n";
$chSQL = "DELETE FROM `Shifts` WHERE `SID`='". $_GET["SID"]. "' LIMIT 1"; if ($Erg == 1) {
$ch2SQL = "DELETE FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "'"; echo "&Auml;nderung wurde gesichert...<br />";
SetHeaderGo2Back(); if ($debug)
break; echo "DEBUG: ergebniss" . $Erg . "<br />\n";
if (IsSet ($ch2SQL)) {
case 'deleteShifs': $Erg = mysql_query($ch2SQL, $con);
foreach ($_GET as $k => $v) if ($debug)
if( strpos( " ".$k, "SID") == 1) echo "DEBUG SQL: $ch2SQL<br />\n";
{ if ($debug)
echo "Shifts $v wird gelöscht..."; echo "DEBUG: ergebniss" . $Erg . "<br />\n";
executeSQL( "DELETE FROM `Shifts` WHERE `SID`='$v' LIMIT 1"); }
echo "<br />\n"; } else {
echo "ShiftEntry $v wird gelöscht..."; echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />";
executeSQL( "DELETE FROM `ShiftEntry` WHERE `SID`='$v'"); echo mysql_error($con);
echo "<br /><br />\n"; }
} } // Ende Update
break;
} // end switch
if (IsSet($chSQL)){
// echo $chSQL;
// hier muesste das SQL ausgefuehrt werden...
$Erg = mysql_query($chSQL, $con);
if( $debug )
echo "DEBUG SQL: $chSQL<br />\n";
if ($Erg == 1)
{
echo "&Auml;nderung wurde gesichert...<br />";
if( $debug )
echo "DEBUG: ergebniss". $Erg. "<br />\n";
if (IsSet($ch2SQL))
{
$Erg = mysql_query($ch2SQL, $con);
if( $debug )
echo "DEBUG SQL: $ch2SQL<br />\n";
if( $debug ) echo "DEBUG: ergebniss". $Erg. "<br />\n";
}
}
else
{
echo "Fehler beim speichern... bitte noch ein mal probieren :)<br />";
echo mysql_error($con);
}
} // Ende Update
} }
include ("includes/footer.php");
include ("../../../camp2011/includes/footer.php");
?> ?>

156
www-ssl/admin/schichtplan_druck.php
Unescape Escape View File

@ -1,54 +1,50 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Himmel"; $title = "Himmel";
$header = "Schichtpl&auml;ne"; $header = "Schichtpl&auml;ne";
$submenus = 1; $submenus = 1;
if (!IsSet ($_GET["action"])) {
if (!IsSet($_GET["action"])) include ("includes/header.php");
{ include ("includes/funktionen.php");
include ("../../../camp2011/includes/header.php"); include ("includes/funktion_schichtplan_aray.php");
include ("../../../camp2011/includes/funktionen.php"); include ("includes/funktion_schichtplan.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php");
include ("../../../camp2011/includes/funktion_schichtplan.php"); echo "Hallo " . $_SESSION['Nick'] . "<br />\n" .
"auf dieser Seite kannst du dir den Schichtplan in einer Druckansicht generieren lassen. W&auml;hle hierf&uuml;r ein Datum und den Raum:\n" .
echo "Hallo ". $_SESSION['Nick']. "<br />\n". "<br />\n";
"auf dieser Seite kannst du dir den Schichtplan in einer Druckansicht generieren lassen. W&auml;hle hierf&uuml;r ein Datum und den Raum:\n".
"<br />\n"; foreach ($VeranstaltungsTage as $k => $v) {
foreach( $VeranstaltungsTage as $k => $v) $res = mysql_query("SELECT Name, RID FROM `Room` WHERE `show`!='N' ORDER BY `Name`;", $con);
{ for ($i = 0; $i < mysql_num_rows($res); $i++) {
$Tag = $VeranstaltungsTage[$k];
$res = mysql_query("SELECT Name, RID FROM `Room` WHERE `show`!='N' ORDER BY `Name`;",$con); $RID = mysql_result($res, $i, "RID");
for ($i = 0; $i < mysql_num_rows($res); $i++) $Rname = mysql_result($res, $i, "Name");
{ echo "\t<a href=\"./schichtplan_druck.php?action=1&Raum=$RID&ausdatum=$Tag\" target=\"_blank\">$Tag $Rname</a><br />\n";
$Tag = $VeranstaltungsTage[$k]; }
$RID = mysql_result($res,$i,"RID"); echo "<br />\n";
$Rname = mysql_result($res, $i, "Name"); }
echo "\t<a href=\"./schichtplan_druck.php?action=1&Raum=$RID&ausdatum=$Tag\" target=\"_blank\">$Tag $Rname</a><br />\n"; echo "<br /><br />";
}
echo "<br />\n"; include ("includes/footer.php");
} } else //#################################################################
echo "<br /><br />"; {
if (IsSet ($_GET["Raum"]) AND IsSet ($_GET["ausdatum"])) {
include ("../../../camp2011/includes/footer.php"); $Raum = $_GET["Raum"];
} $ausdatum = $_GET["ausdatum"];
else //#################################################################
{ include ("config/config_db.php");
if (IsSet($_GET["Raum"]) AND IsSet($_GET["ausdatum"])) include ("config/config.php");
{ include ("includes/secure.php");
$Raum = $_GET["Raum"]; //var wird nur gesetzt immer edit auszublenden, achtung sesion darf nicht gestart sein !!!
$ausdatum = $_GET["ausdatum"]; $_SESSION['CVS']["admin/schichtplan.php"] = "N";
include ("includes/funktion_lang.php");
include ("../../../camp2011/includes/config_db.php"); include ("includes/funktion_schichtplan.php");
include ("../../../camp2011/includes/config.php"); include ("includes/funktion_schichtplan_aray.php");
include ("../../../camp2011/includes/secure.php"); include ("includes/funktion_user.php");
//var wird nur gesetzt immer edit auszublenden, achtung sesion darf nicht gestart sein !!! ?>
$_SESSION['CVS'][ "admin/schichtplan.php" ] = "N";
include ("../../../camp2011/includes/funktion_lang.php");
include ("../../../camp2011/includes/funktion_schichtplan.php");
include ("../../../camp2011/includes/funktion_schichtplan_aray.php");
include ("../../../camp2011/includes/funktion_user.php");
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html> <html>
@ -81,7 +77,7 @@ else //#################################################################
<table border="2" width="650" class="border" cellpadding="2" cellspacing="1"> <table border="2" width="650" class="border" cellpadding="2" cellspacing="1">
<!--Ausgabe Spalten überschrift--> <!--Ausgabe Spalten <EFBFBD>berschrift-->
<tr class="contenttopic"> <tr class="contenttopic">
<th bgcolor="#E0E0E0">Uhrzeit</th> <th bgcolor="#E0E0E0">Uhrzeit</th>
@ -89,41 +85,35 @@ else //#################################################################
</tr> </tr>
<?php <?php
//Zeit Ausgeben
for( $i = 0; $i < 24; $i++ )
for( $j = 0; $j < $GlobalZeileProStunde; $j++)
{
$Spalten[$i * $GlobalZeileProStunde + $j] =
"\t<tr class=\"content\">\n";
if( $j==0)
{
$Spalten[$i * $GlobalZeileProStunde + $j].=
"\t\t<td rowspan=\"$GlobalZeileProStunde\">";
if( $i < 10 )
$Spalten[$i * $GlobalZeileProStunde + $j].= "0";
$Spalten[$i * $GlobalZeileProStunde + $j].= "$i:";
if( ( ($j*60) / $GlobalZeileProStunde) < 10 )
$Spalten[$i * $GlobalZeileProStunde + $j].= "0";
$Spalten[$i * $GlobalZeileProStunde + $j].=
( ($j*60) / $GlobalZeileProStunde). "</td>\n";
}
}
CreateRoomShifts( $Raum );
// Ausgabe Zeilen
for ($i = 0; $i < (24 * $GlobalZeileProStunde); $i++) echo $Spalten[$i];
// Ende
echo "</table>\n";
echo "Stand: ". gmdate("Y-m-d H:i"). "\n";
echo "</body>\n";
echo "</html>\n";
} //isset($Vars)
} //isset($Action)
//Zeit Ausgeben
for ($i = 0; $i < 24; $i++)
for ($j = 0; $j < $GlobalZeileProStunde; $j++) {
$Spalten[$i * $GlobalZeileProStunde + $j] = "\t<tr class=\"content\">\n";
if ($j == 0) {
$Spalten[$i * $GlobalZeileProStunde + $j] .= "\t\t<td rowspan=\"$GlobalZeileProStunde\">";
if ($i < 10)
$Spalten[$i * $GlobalZeileProStunde + $j] .= "0";
$Spalten[$i * $GlobalZeileProStunde + $j] .= "$i:";
if ((($j * 60) / $GlobalZeileProStunde) < 10)
$Spalten[$i * $GlobalZeileProStunde + $j] .= "0";
$Spalten[$i * $GlobalZeileProStunde + $j] .= (($j * 60) / $GlobalZeileProStunde) . "</td>\n";
}
}
CreateRoomShifts($Raum);
// Ausgabe Zeilen
for ($i = 0; $i < (24 * $GlobalZeileProStunde); $i++)
echo $Spalten[$i];
// Ende
echo "</table>\n";
echo "Stand: " . gmdate("Y-m-d H:i") . "\n";
echo "</body>\n";
echo "</html>\n";
} //isset($Vars)
} //isset($Action)
?> ?>

544
www-ssl/admin/shiftadd.php
Unescape Escape View File

@ -1,70 +1,65 @@
<?php <?php
$title = "Schicht Hinzufügen"; require_once ('../bootstrap.php');
$title = "Schicht Hinzufügen";
$header = "Neue Schichten erfassen"; $header = "Neue Schichten erfassen";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
$Time = time()+3600+3600; $Time = time() + 3600 + 3600;
echo "Hallo ".$_SESSION['Nick'].",<br />\n"; echo "Hallo " . $_SESSION['Nick'] . ",<br />\n";
// erstellt ein Array der Reume // erstellt ein Array der Reume
$sql = "SELECT `RID`, `Name` FROM `Room` ORDER BY `Name`"; $sql = "SELECT `RID`, `Name` FROM `Room` ORDER BY `Name`";
$Erg = mysql_query($sql, $con); $Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg); $rowcount = mysql_num_rows($Erg);
for ($i=0; $i<$rowcount; $i++) for ($i = 0; $i < $rowcount; $i++) {
{ $Room[$i]["RID"] = mysql_result($Erg, $i, "RID");
$Room[$i]["RID"] = mysql_result($Erg, $i, "RID"); $Room[$i]["Name"] = mysql_result($Erg, $i, "Name");
$Room[$i]["Name"] = mysql_result($Erg, $i, "Name"); }
}
// erstellt ein Aray der Engeltypen // erstellt ein Aray der Engeltypen
$sql = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`"; $sql = "SELECT `TID`, `Name` FROM `EngelType` ORDER BY `Name`";
$Erg = mysql_query($sql, $con); $Erg = mysql_query($sql, $con);
$rowcount = mysql_num_rows($Erg); $rowcount = mysql_num_rows($Erg);
for ($i=0; $i<$rowcount; $i++) for ($i = 0; $i < $rowcount; $i++) {
{ $EngelType[$i]["TID"] = mysql_result($Erg, $i, "TID");
$EngelType[$i]["TID"] = mysql_result($Erg, $i, "TID"); $EngelType[$i]["Name"] = mysql_result($Erg, $i, "Name") . Get_Text("inc_schicht_engel");
$EngelType[$i]["Name"] = mysql_result($Erg, $i, "Name").Get_Text("inc_schicht_engel");
}
// sesion mit stanadrt werten befüllen
if( !isset( $_SESSION['shiftadd.php']['SchichtName']))
{
$_SESSION['shiftadd.php']['SchichtName'] = "--???--";
$_SESSION['shiftadd.php']['RID'] = "";
$_SESSION['shiftadd.php']['MonthJahr'] = gmdate("Y-m", $Time);
$_SESSION['shiftadd.php']['SDatum'] = gmdate("d", $Time);
$_SESSION['shiftadd.php']['STime'] = "10";
$_SESSION['shiftadd.php']['MoreThenOne'] = "ON";
$_SESSION['shiftadd.php']['EDatum'] = gmdate("d", $Time);
$_SESSION['shiftadd.php']['ETime'] = "12";
$_SESSION['shiftadd.php']['len'] = "2";
$_SESSION['shiftadd.php']['NachtON'] = "OFF";
$_SESSION['shiftadd.php']['len_night'] = "00-04-08-10-12-14-16-18-20-22-24";
}
// wenn werte übergeben in sesion eintragen
if( !isset($_GET["NachtON"]))
$_GET["NachtON"] = "OFF";
if( !isset($_GET["MoreThenOne"]))
$_GET["MoreThenOne"] = "OFF";
if( isset( $_GET["SchichtName"]))
{
foreach ($_GET as $k => $v)
{
$_SESSION['shiftadd.php'][$k] = $v;
}
} }
// sesion mit stanadrt werten bef<65>llen
if (!isset ($_SESSION['shiftadd.php']['SchichtName'])) {
$_SESSION['shiftadd.php']['SchichtName'] = "--???--";
$_SESSION['shiftadd.php']['RID'] = "";
$_SESSION['shiftadd.php']['MonthJahr'] = gmdate("Y-m", $Time);
$_SESSION['shiftadd.php']['SDatum'] = gmdate("d", $Time);
$_SESSION['shiftadd.php']['STime'] = "10";
$_SESSION['shiftadd.php']['MoreThenOne'] = "ON";
$_SESSION['shiftadd.php']['EDatum'] = gmdate("d", $Time);
$_SESSION['shiftadd.php']['ETime'] = "12";
$_SESSION['shiftadd.php']['len'] = "2";
$_SESSION['shiftadd.php']['NachtON'] = "OFF";
$_SESSION['shiftadd.php']['len_night'] = "00-04-08-10-12-14-16-18-20-22-24";
}
// wenn werte <20>bergeben in sesion eintragen
if (!isset ($_GET["NachtON"]))
$_GET["NachtON"] = "OFF";
if (!isset ($_GET["MoreThenOne"]))
$_GET["MoreThenOne"] = "OFF";
if (isset ($_GET["SchichtName"])) {
foreach ($_GET as $k => $v) {
$_SESSION['shiftadd.php'][$k] = $v;
}
}
if (!IsSet($_GET["action"])) if (!IsSet ($_GET["action"]))
$_GET["action"] = "new"; $_GET["action"] = "new";
switch( $_GET["action"]) switch ($_GET["action"]) {
{ case 'new' :
case 'new':
?> ?>
Hier kannst du neue Schichten eintragen. Dazu musst du den Anfang und das Ende der Schichten eintragen. Hier kannst du neue Schichten eintragen. Dazu musst du den Anfang und das Ende der Schichten eintragen.
&Uuml;ber die L&auml;nge der Schichten errechnet sich dadurch die Anzahl dieser. Dadurch k&ouml;nnen gleich &Uuml;ber die L&auml;nge der Schichten errechnet sich dadurch die Anzahl dieser. Dadurch k&ouml;nnen gleich
@ -80,14 +75,15 @@ mehrere Schichten auf einmal erfasst werden:
<td align="right">Ort:</td> <td align="right">Ort:</td>
<td><select name="RID"> <td><select name="RID">
<?php <?php
foreach ($Room As $RTemp)
{
echo "\t<option value=\"". $RTemp["RID"]. "\""; foreach ($Room As $RTemp) {
if( $RTemp["RID"] == $_SESSION["shiftadd.php"]["RID"]) echo "\t<option value=\"" . $RTemp["RID"] . "\"";
echo " SELECTED"; if ($RTemp["RID"] == $_SESSION["shiftadd.php"]["RID"])
echo ">". $RTemp["Name"]. "</option>\n"; echo " SELECTED";
} echo ">" . $RTemp["Name"] . "</option>\n";
?> }
?>
</select></td> </select></td>
</tr> </tr>
@ -104,9 +100,11 @@ mehrere Schichten auf einmal erfasst werden:
<tr> <tr>
<td align="right">More then One</td> <td align="right">More then One</td>
<td><input type="checkbox" name="MoreThenOne" value="ON" <?php <td><input type="checkbox" name="MoreThenOne" value="ON" <?php
if( $_SESSION["shiftadd.php"]["MoreThenOne"]=="ON")
echo " CHECKED";
?>></td> if ($_SESSION["shiftadd.php"]["MoreThenOne"] == "ON")
echo " CHECKED";
?>></td>
</tr> </tr>
<tr> <tr>
<td align="right">End:</td> <td align="right">End:</td>
@ -120,9 +118,11 @@ mehrere Schichten auf einmal erfasst werden:
<tr> <tr>
<td align="right">Sonderschichten ein:</td> <td align="right">Sonderschichten ein:</td>
<td><input type="checkbox" name="NachtON" value="ON" <?php <td><input type="checkbox" name="NachtON" value="ON" <?php
if($_SESSION["shiftadd.php"]["NachtON"]=="ON")
echo " CHECKED";
?>></td> if ($_SESSION["shiftadd.php"]["NachtON"] == "ON")
echo " CHECKED";
?>></td>
</tr> </tr>
<tr> <tr>
<td align="right">Sonder in h (Time;Time):</td> <td align="right">Sonder in h (Time;Time):</td>
@ -131,16 +131,17 @@ mehrere Schichten auf einmal erfasst werden:
<tr><td><u>Anzahl Engel je Type:</u></td></tr> <tr><td><u>Anzahl Engel je Type:</u></td></tr>
<?php <?php
foreach ($EngelType As $TTemp)
{
echo " <tr><td align=\"right\">". $TTemp["Name"]. ":</td>\n"; foreach ($EngelType As $TTemp) {
echo " <td><input type=\"text\" name=\"EngelType". $TTemp["TID"]. "\" size=\"5\" value=\""; echo " <tr><td align=\"right\">" . $TTemp["Name"] . ":</td>\n";
if( isset($_SESSION["shiftadd.php"][ "EngelType". $TTemp["TID"] ])) echo " <td><input type=\"text\" name=\"EngelType" . $TTemp["TID"] . "\" size=\"5\" value=\"";
echo $_SESSION["shiftadd.php"][ "EngelType". $TTemp["TID"] ]; if (isset ($_SESSION["shiftadd.php"]["EngelType" . $TTemp["TID"]]))
else echo $_SESSION["shiftadd.php"]["EngelType" . $TTemp["TID"]];
echo "0"; else
echo "\"></td>\n"; echo "0";
} echo "\"></td>\n";
}
?> ?>
</table> </table>
<br /> <br />
@ -150,209 +151,200 @@ mehrere Schichten auf einmal erfasst werden:
</form> </form>
<?php <?php
break; // Ende new
case 'newsave':
if (isset($_GET["SDatum"]) && ($_GET["len"] > 0))
{
$lenOrg = $_GET["len"];
if( $_GET["NachtON"] == "ON" )
{
$lenArrayDummy = explode( "-", $_GET["len_night"]);
foreach ( $lenArrayDummy as $Temp )
{
if( isset($Temp2) )
$lenArray[intval($Temp2)] = intval($Temp)-intval($Temp2);
$Temp2 = $Temp;
}//foreach
}//IF( $NachtON == "ON" )
echo "<table border=\"1\">\n";
echo "<tr>\n";
echo "\t<td valign=\"top\" align=\"center\">Start</td>\n";
echo "\t<td valign=\"top\" align=\"center\">End</td>\n";
echo "\t<td valign=\"top\" align=\"center\">len</td>\n";
echo "\t<td valign=\"top\" align=\"center\">RID</td>\n";
echo "\t<td valign=\"top\" align=\"center\">Beschreibung</td>\n";
echo "\t<td valign=\"top\" align=\"center\">Entry 'Shifts'</td>\n";
echo "\t<td valign=\"top\" align=\"center\">SID</td>\n";
echo "\t<td valign=\"top\" align=\"center\">Entrys</td>\n";
echo "</tr>\n";
$DateEnd = $_GET["SDatum"];
$TimeEnd = intval($_GET["STime"]);
$len=0;
do
{
// define Start time
$Date = $DateEnd;
$Time = $TimeEnd;
$_DateS = $_GET["MonthJahr"]. "-". $Date. " ". $Time. ":00:00";
// define End time
if( $_GET["NachtON"] == "ON" )
{
if( !isset($lenArray[$Time])) die("Zeit $Time h nicht definiert.");
$_GET["len"] = $lenArray[$Time];
if( $_GET["len"]<1) die("len <1");
}
$TimeEnd = $Time+ $_GET["len"];
//Tagesüberschreitung
while( $TimeEnd >= 24 )
{
$TimeEnd -= 24;
$DateEnd += 1;
}
//ist schischt zu lang dan verkürzen
if( $DateEnd > $_GET["EDatum"] || ($DateEnd == $_GET["EDatum"] && $TimeEnd >= $_GET["ETime"]) )
{
$_GET["len"] -= ($DateEnd- $_GET["EDatum"])*24;
$_GET["len"] -= ($TimeEnd- $_GET["ETime"]); // -(-) ->> +
$DateEnd = $_GET["EDatum"];
$TimeEnd = $_GET["ETime"];
}
$_DateE = $_GET["MonthJahr"]. "-". $DateEnd. " ". $TimeEnd. ":00:00";
if( $_DateS != $_DateE )
CreateNewEntry();
if( $_GET["MoreThenOne"]!="ON" ) break;
if( $DateEnd >= $_GET["EDatum"] && $TimeEnd >= intval($_GET["ETime"]) ) break;
} while( true );
echo "</table>";
if( $_GET["OnlyShow"]=="ON" )
{
echo "<form action=\"". $_SERVER['SCRIPT_NAME']. "\">";
echo "\n\t<Input type=\"hidden\" name=\"SchichtName\" value=\"". $_GET["SchichtName"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"MonthJahr\" value=\"". $_GET["MonthJahr"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"SDatum\" value=\"". $_GET["SDatum"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"STime\" value=\"". $_GET["STime"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"MoreThenOne\" value=\"". $_GET["MoreThenOne"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"EDatum\" value=\"". $_GET["EDatum"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"ETime\" value=\"". $_GET["ETime"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"len\" value=\"". $lenOrg. "\">";
echo "\n\t<input type=\"hidden\" name=\"RID\" value=\"". $_GET["RID"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"NachtON\" value=\"". $_GET["NachtON"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"len_night\" value=\"". $_GET["len_night"]. "\">";
echo "\n\t<input type=\"hidden\" name=\"OnlyShow\" value=\"OFF\">";
foreach ($EngelType As $TTemp)
{
$Temp = "EngelType".$TTemp["TID"];
echo "\n\t<input type=\"hidden\" name=\"". $Temp. "\" value=\"". $_GET[$Temp]. "\">";
}
echo "\n\t<input type=\"hidden\" name=\"action\" value=\"newsave\">";
echo "\n\t<input type=\"submit\" value=\"mach mal Gabriel!\">";
echo "\n</form>";
} //if
} //IF
break;
case 'engeldel':
break;
} // end switch
break; // Ende new
case 'newsave' :
if (isset ($_GET["SDatum"]) && ($_GET["len"] > 0)) {
$lenOrg = $_GET["len"];
if ($_GET["NachtON"] == "ON") {
$lenArrayDummy = explode("-", $_GET["len_night"]);
foreach ($lenArrayDummy as $Temp) {
if (isset ($Temp2))
$lenArray[intval($Temp2)] = intval($Temp) - intval($Temp2);
$Temp2 = $Temp;
} //foreach
} //IF( $NachtON == "ON" )
echo "<table border=\"1\">\n";
echo "<tr>\n";
echo "\t<td valign=\"top\" align=\"center\">Start</td>\n";
echo "\t<td valign=\"top\" align=\"center\">End</td>\n";
echo "\t<td valign=\"top\" align=\"center\">len</td>\n";
echo "\t<td valign=\"top\" align=\"center\">RID</td>\n";
echo "\t<td valign=\"top\" align=\"center\">Beschreibung</td>\n";
echo "\t<td valign=\"top\" align=\"center\">Entry 'Shifts'</td>\n";
echo "\t<td valign=\"top\" align=\"center\">SID</td>\n";
echo "\t<td valign=\"top\" align=\"center\">Entrys</td>\n";
echo "</tr>\n";
$DateEnd = $_GET["SDatum"];
$TimeEnd = intval($_GET["STime"]);
$len = 0;
do {
// define Start time
$Date = $DateEnd;
$Time = $TimeEnd;
$_DateS = $_GET["MonthJahr"] . "-" . $Date . " " . $Time . ":00:00";
// define End time
if ($_GET["NachtON"] == "ON") {
if (!isset ($lenArray[$Time]))
die("Zeit $Time h nicht definiert.");
$_GET["len"] = $lenArray[$Time];
if ($_GET["len"] < 1)
die("len <1");
}
$TimeEnd = $Time + $_GET["len"];
//Tages<65>berschreitung
while ($TimeEnd >= 24) {
$TimeEnd -= 24;
$DateEnd += 1;
}
//ist schischt zu lang dan verk<72>rzen
if ($DateEnd > $_GET["EDatum"] || ($DateEnd == $_GET["EDatum"] && $TimeEnd >= $_GET["ETime"])) {
$_GET["len"] -= ($DateEnd - $_GET["EDatum"]) * 24;
$_GET["len"] -= ($TimeEnd - $_GET["ETime"]); // -(-) ->> +
$DateEnd = $_GET["EDatum"];
$TimeEnd = $_GET["ETime"];
}
$_DateE = $_GET["MonthJahr"] . "-" . $DateEnd . " " . $TimeEnd . ":00:00";
if ($_DateS != $_DateE)
CreateNewEntry();
if ($_GET["MoreThenOne"] != "ON")
break;
if ($DateEnd >= $_GET["EDatum"] && $TimeEnd >= intval($_GET["ETime"]))
break;
}
while (true);
echo "</table>";
if ($_GET["OnlyShow"] == "ON") {
echo "<form action=\"" . $_SERVER['SCRIPT_NAME'] . "\">";
echo "\n\t<Input type=\"hidden\" name=\"SchichtName\" value=\"" . $_GET["SchichtName"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"MonthJahr\" value=\"" . $_GET["MonthJahr"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"SDatum\" value=\"" . $_GET["SDatum"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"STime\" value=\"" . $_GET["STime"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"MoreThenOne\" value=\"" . $_GET["MoreThenOne"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"EDatum\" value=\"" . $_GET["EDatum"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"ETime\" value=\"" . $_GET["ETime"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"len\" value=\"" . $lenOrg . "\">";
echo "\n\t<input type=\"hidden\" name=\"RID\" value=\"" . $_GET["RID"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"NachtON\" value=\"" . $_GET["NachtON"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"len_night\" value=\"" . $_GET["len_night"] . "\">";
echo "\n\t<input type=\"hidden\" name=\"OnlyShow\" value=\"OFF\">";
foreach ($EngelType As $TTemp) {
$Temp = "EngelType" . $TTemp["TID"];
echo "\n\t<input type=\"hidden\" name=\"" . $Temp . "\" value=\"" . $_GET[$Temp] . "\">";
}
echo "\n\t<input type=\"hidden\" name=\"action\" value=\"newsave\">";
echo "\n\t<input type=\"submit\" value=\"mach mal Gabriel!\">";
echo "\n</form>";
} //if
} //IF
break;
case 'engeldel' :
break;
} // end switch
function CreateNewEntry() function CreateNewEntry() {
{ global $con, $_DateS, $_DateE, $EngelType, $debug;
global $con, $_DateS, $_DateE, $EngelType, $debug; foreach ($EngelType As $TTemp) {
foreach ($EngelType As $TTemp) $Temp = "EngelType" . $TTemp["TID"];
{ global $$Temp;
$Temp = "EngelType".$TTemp["TID"]; }
global $$Temp;
} echo "<tr>\n";
echo "<tr>\n"; echo "\t<td>$_DateS</td>\n";
echo "\t<td>$_DateE</td>\n";
echo "\t<td>$_DateS</td>\n"; echo "\t<td>" . $_GET["len"] . "</td>\n";
echo "\t<td>$_DateE</td>\n"; echo "\t<td>" . $_GET["RID"] . "</td>\n";
echo "\t<td>". $_GET["len"]. "</td>\n"; echo "\t<td>" . $_GET["SchichtName"] . "</td>\n";
echo "\t<td>". $_GET["RID"]. "</td>\n";
echo "\t<td>". $_GET["SchichtName"]. "</td>\n"; // Ist eintarg schon vorhanden?
$SQL = "SELECT `SID` FROM `Shifts` ";
$SQL .= "WHERE (" .
// Ist eintarg schon vorhanden? "`DateS` = '" . $_DateS . "' AND " .
$SQL = "SELECT `SID` FROM `Shifts` "; "`DateE` = '" . $_DateE . "' AND " .
$SQL .= "WHERE (". "`RID` = '" . $_GET["RID"] . "');";
"`DateS` = '". $_DateS. "' AND ". $Erg = mysql_query($SQL, $con);
"`DateE` = '". $_DateE. "' AND ".
"`RID` = '". $_GET["RID"]. "');"; if (mysql_num_rows($Erg) != 0)
$Erg = mysql_query($SQL, $con); echo "\t<td>exists</td>";
elseif ($_GET["OnlyShow"] == "OFF") {
if( mysql_num_rows($Erg) != 0 ) // erstellt Eintrag in Shifts f<>r die algemeine schicht
echo "\t<td>exists</td>"; $SQL = "INSERT INTO `Shifts` ( `DateS`, `DateE`, `Len`, `RID`, `Man`) VALUES ( ";
elseif( $_GET["OnlyShow"] == "OFF" ) $SQL .= "'" . $_DateS . "', '" . $_DateE . "', ";
{ $SQL .= "'" . $_GET["len"] . "', '" . $_GET["RID"] . "', ";
// erstellt Eintrag in Shifts für die algemeine schicht $SQL .= "'" . $_GET["SchichtName"] . "');";
$SQL = "INSERT INTO `Shifts` ( `DateS`, `DateE`, `Len`, `RID`, `Man`) VALUES ( "; $Erg = db_query($SQL, "create shift");
$SQL .= "'". $_DateS. "', '". $_DateE. "', ";
$SQL .= "'". $_GET["len"]. "', '". $_GET["RID"]. "', "; $SQLFail = "\n\t<br />[" . $SQL . "]";
$SQL .= "'". $_GET["SchichtName"]. "');";
$Erg = db_query($SQL, "create shift"); if ($Erg == 1)
echo "\t<td>pass</td>\n";
$SQLFail = "\n\t<br />[".$SQL. "]"; else
echo "\t<td>fail <br />\n<u>" . mysql_error($con) . "</u>$SQLFail</td>\n";
if ($Erg == 1) echo "\t<td>pass</td>\n";
else echo "\t<td>fail <br />\n<u>". mysql_error($con). "</u>$SQLFail</td>\n"; } else
echo "\t<td>only show</td>\n";
} else
echo "\t<td>only show</td>\n"; // sucht SID von eingetragennen schiten
$SQL = "SELECT SID FROM `Shifts` ";
// sucht SID von eingetragennen schiten $SQL .= "WHERE (" .
$SQL = "SELECT SID FROM `Shifts` "; "`DateS` = '" . $_DateS . "' AND " .
$SQL .= "WHERE (". "`DateE` = '" . $_DateE . "' AND " .
"`DateS` = '". $_DateS. "' AND ". "`Len` = '" . $_GET["len"] . "' AND " .
"`DateE` = '". $_DateE. "' AND ". "`RID` = '" . $_GET["RID"] . "');";
"`Len` = '". $_GET["len"]. "' AND ". $Erg = mysql_query($SQL, $con);
"`RID` = '". $_GET["RID"]. "');"; if (mysql_num_rows($Erg) == 0)
$Erg = mysql_query($SQL, $con); echo "\t<td>?</td>";
if( mysql_num_rows($Erg) == 0 ) else {
echo "\t<td>?</td>"; $SID = mysql_result($Erg, 0, "SID");
else echo "\t<td>" . $SID . "</td>";
{ }
$SID = mysql_result($Erg, 0, "SID");
echo "\t<td>". $SID. "</td>"; // erstellt f<>r jeden Engeltypen die eintrage in 'ShiftEntry'
} echo "\t<td>";
foreach ($EngelType As $TTemp) {
// erstellt für jeden Engeltypen die eintrage in 'ShiftEntry' $Temp = "EngelType" . $TTemp["TID"];
echo "\t<td>";
foreach ($EngelType As $TTemp) if ($_GET[$Temp] > 0) {
{ $i = 0;
$Temp = "EngelType".$TTemp["TID"]; echo $_GET[$Temp] . " " . $TTemp["Name"] . "<br />\t";
while ($i++ < $_GET[$Temp]) {
if( $_GET[$Temp] > 0 ) if ($_GET["OnlyShow"] == "OFF") {
{ $SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`) VALUES (";
$i = 0; $SQL .= "'" . $SID . "', ";
echo $_GET[$Temp]. " ".$TTemp["Name"]. "<br />\t"; $SQL .= "'" . $TTemp["TID"] . "');";
while( $i++ < $_GET[$Temp] )
{ $Erg = mysql_query($SQL, $con);
if( $_GET["OnlyShow"] == "OFF" )
{ if ($debug)
$SQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`) VALUES ("; $SQLFail = "\n\t<br />[" . $SQL . "]";
$SQL .= "'". $SID. "', ";
$SQL .= "'". $TTemp["TID"]. "');"; if ($Erg == 1)
echo "'pass' ";
$Erg = mysql_query($SQL, $con); else
echo "'fail' <u>" . mysql_error($con) . "</u>$SQLFail</td>\n";
if( $debug ) $SQLFail = "\n\t<br />[".$SQL. "]";
} else
if ($Erg == 1) echo "'pass' "; echo "+";
else echo "'fail' <u>". mysql_error($con). "</u>$SQLFail</td>\n"; }
echo "<br />";
} } // IF $$TEMP
else } // FOREACH
echo "+"; echo "</td>";
}
echo "<br />"; echo "</tr>\n";
} // IF $$TEMP
} // FOREACH
echo "</td>";
echo "</tr>\n";
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

212
www-ssl/admin/sprache.php
Unescape Escape View File

@ -1,122 +1,110 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Sprache"; $title = "Sprache";
$header = "Liste der existierenden Sprcheintr&auml;ge"; $header = "Liste der existierenden Sprcheintr&auml;ge";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
if (!isset ($_GET["TextID"])) {
if( !isset( $_GET["TextID"] ) ) echo Get_Text("Hello") . $_SESSION['Nick'] . ", <br />\n";
{ echo Get_Text("pub_sprache_text1") . "<br /><br />\n";
echo Get_Text("Hello").$_SESSION['Nick'].", <br />\n";
echo Get_Text("pub_sprache_text1")."<br /><br />\n"; echo "<a href=\"?ShowEntry=y\">" . Get_Text("pub_sprache_ShowEntry") . "</a>";
// ausgabe Tabellenueberschift
echo "<a href=\"?ShowEntry=y\">". Get_Text("pub_sprache_ShowEntry"). "</a>"; $SQL_Sprachen = "SELECT `Sprache` FROM `Sprache` GROUP BY `Sprache`;";
// ausgabe Tabellenueberschift $erg_Sprachen = mysql_query($SQL_Sprachen, $con);
$SQL_Sprachen = "SELECT `Sprache` FROM `Sprache` GROUP BY `Sprache`;"; echo mysql_error($con);
$erg_Sprachen = mysql_query($SQL_Sprachen, $con);
echo mysql_error($con); for ($i = 0; $i < mysql_num_rows($erg_Sprachen); $i++)
$Sprachen[mysql_result($erg_Sprachen, $i, "Sprache")] = $i;
for( $i=0; $i<mysql_num_rows( $erg_Sprachen ); $i++ )
$Sprachen[mysql_result( $erg_Sprachen, $i, "Sprache" )] = $i; echo "\t<table border=\"0\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n\t\t<tr>";
echo "\t\t<td class=\"contenttopic\"><b>" . Get_Text("pub_sprache_TextID") . "</b></td>";
echo "\t<table border=\"0\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n\t\t<tr>"; foreach ($Sprachen as $Name => $Value)
echo "\t\t<td class=\"contenttopic\"><b>". Get_Text("pub_sprache_TextID"). "</b></td>"; echo "<td class=\"contenttopic\"><b>" .
foreach( $Sprachen as $Name => $Value ) Get_Text("pub_sprache_Sprache") . " " . $Name .
echo "<td class=\"contenttopic\"><b>". "</b></td>";
Get_Text("pub_sprache_Sprache"). " ". $Name. echo "\t\t<td class=\"contenttopic\"><b>" . Get_Text("pub_sprache_Edit") . "</b></td>";
"</b></td>"; echo "\t\t</tr>";
echo "\t\t<td class=\"contenttopic\"><b>". Get_Text("pub_sprache_Edit"). "</b></td>";
echo "\t\t</tr>"; if (isset ($_GET["ShowEntry"])) {
// ausgabe eintraege
$SQL = "SELECT * FROM `Sprache` ORDER BY `TextID`;";
if( isset($_GET["ShowEntry"])) $erg = mysql_query($SQL, $con);
{ echo mysql_error($con);
// ausgabe eintraege
$SQL = "SELECT * FROM `Sprache` ORDER BY `TextID`;"; $TextID_Old = mysql_result($erg, 0, "TextID");
$erg = mysql_query($SQL, $con); for ($i = 0; $i < mysql_num_rows($erg); $i++) {
echo mysql_error($con); $TextID_New = mysql_result($erg, $i, "TextID");
if ($TextID_Old != $TextID_New) {
$TextID_Old = mysql_result( $erg, 0, "TextID" ); echo "<form action=\"sprache.php\">";
for( $i=0; $i<mysql_num_rows( $erg ); $i++ ) echo "<tr class=\"content\">\n";
{ echo "\t\t<td>$TextID_Old " .
$TextID_New = mysql_result( $erg, $i, "TextID" ); "<input name=\"TextID\" type=\"hidden\" value=\"$TextID_Old\"> </td>\n";
if( $TextID_Old != $TextID_New )
{ foreach ($Sprachen as $Name => $Value) {
echo "<form action=\"sprache.php\">"; $Value = html_entity_decode($Value, ENT_QUOTES);
echo "<tr class=\"content\">\n"; echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Value</textarea></td>\n";
echo "\t\t<td>$TextID_Old ". $Sprachen[$Name] = "";
"<input name=\"TextID\" type=\"hidden\" value=\"$TextID_Old\"> </td>\n"; }
foreach( $Sprachen as $Name => $Value ) echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n";
{ echo "</tr>";
$Value = html_entity_decode( $Value, ENT_QUOTES); echo "</form>\n";
echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Value</textarea></td>\n"; $TextID_Old = $TextID_New;
$Sprachen[ $Name ] = ""; }
} $Sprachen[mysql_result($erg, $i, "Sprache")] = mysql_result($erg, $i, "Text");
} /*FOR*/
echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n"; }
echo "</tr>";
echo "</form>\n"; //fuer neu eintraege
$TextID_Old = $TextID_New; echo "<form action=\"sprache.php\">";
} echo "<tr class=\"content\">\n";
$Sprachen[ mysql_result( $erg, $i, "Sprache" ) ] = mysql_result( $erg, $i, "Text" ); echo "\t\t<td><input name=\"TextID\" type=\"text\" size=\"40\" value=\"new\"> </td>\n";
} /*FOR*/
} foreach ($Sprachen as $Name => $Value)
echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Name Text</textarea></td>\n";
//fuer neu eintraege
echo "<form action=\"sprache.php\">"; echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n";
echo "<tr class=\"content\">\n"; echo "</tr>";
echo "\t\t<td><input name=\"TextID\" type=\"text\" size=\"40\" value=\"new\"> </td>\n"; echo "</form>\n";
foreach( $Sprachen as $Name => $Value ) echo "</table>\n";
echo "\t\t<td><textarea name=\"$Name\" cols=\"22\" rows=\"8\">$Name Text</textarea></td>\n";
echo "\t\t<td><input type=\"submit\" value=\"Save\"></td>\n";
echo "</tr>";
echo "</form>\n";
echo "</table>\n";
} /*if( !isset( $TextID ) )*/ } /*if( !isset( $TextID ) )*/
else else {
{ echo "edit: " . $_GET["TextID"] . "<br /><br />";
echo "edit: ". $_GET["TextID"]. "<br /><br />"; foreach ($_GET as $k => $v) {
foreach ($_GET as $k => $v) { if ($k != "TextID") {
if( $k != "TextID" ) $sql_test = "SELECT * FROM `Sprache` " .
{ "WHERE `TextID`='" . $_GET["TextID"] . "' AND `Sprache`='$k'";
$sql_test = "SELECT * FROM `Sprache` ". $erg_test = mysql_query($sql_test, $con);
"WHERE `TextID`='". $_GET["TextID"]. "' AND `Sprache`='$k'";
$erg_test = mysql_query($sql_test, $con); if (mysql_num_rows($erg_test) == 0) {
$sql_save = "INSERT INTO `Sprache` (`TextID`, `Sprache`, `Text`) " .
if( mysql_num_rows($erg_test)==0 ) "VALUES ('" . $_GET["TextID"] . "', '$k', '$v')";
{ echo $sql_save . "<br />";
$sql_save = "INSERT INTO `Sprache` (`TextID`, `Sprache`, `Text`) ". $Erg = mysql_query($sql_save, $con);
"VALUES ('". $_GET["TextID"]. "', '$k', '$v')"; if ($Erg == 1)
echo $sql_save."<br />"; echo "\t $k Save: OK<br />\n";
$Erg = mysql_query($sql_save, $con); else
if ($Erg == 1) echo "\t $k Save: KO<br />\n";
echo "\t $k Save: OK<br />\n"; } else
else if (mysql_result($erg_test, 0, "Text") != $v) {
echo "\t $k Save: KO<br />\n"; $sql_save = "UPDATE `Sprache` SET `Text`='$v' " .
} "WHERE `TextID`='" . $_GET["TextID"] . "' AND `Sprache`='$k' ";
else if( mysql_result($erg_test, 0, "Text")!=$v ) echo $sql_save . "<br />";
{ $Erg = mysql_query($sql_save, $con);
$sql_save = "UPDATE `Sprache` SET `Text`='$v' ". if ($Erg == 1)
"WHERE `TextID`='". $_GET["TextID"]. "' AND `Sprache`='$k' "; echo "\t $k Update: OK<br />\n";
echo $sql_save."<br />"; else
$Erg = mysql_query($sql_save, $con); echo "\t $k Update: KO<br />\n";
if ($Erg == 1) } else
echo "\t $k Update: OK<br />\n"; echo "\t $k no changes<br />\n";
else }
echo "\t $k Update: KO<br />\n"; }
}
else
echo "\t $k no changes<br />\n";
}
}
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

53
www-ssl/admin/tshirt.php
Unescape Escape View File

@ -1,21 +1,20 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "T-Shirt-Ausgabe"; $title = "T-Shirt-Ausgabe";
$header = "T-Shirt-Ausgabe f&uuml;r aktiven Engel"; $header = "T-Shirt-Ausgabe f&uuml;r aktiven Engel";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
If (IsSet ($_GET["aktiv"])) {
If (IsSet($_GET["aktiv"])) { $SQL = "UPDATE `User` SET `Tshirt`='1' WHERE `UID`='" . $_GET["aktiv"] . "' limit 1";
$Erg = mysql_query($SQL, $con);
$SQL="UPDATE `User` SET `Tshirt`='1' WHERE `UID`='". $_GET["aktiv"]. "' limit 1"; if ($Erg == 1) {
$Erg = mysql_query($SQL, $con); } else {
if ($Erg == 1) { echo "Fehler beim speichern bei Engel " . UID2Nick($_GET["aktive"]) . "<br />";
} else { }
echo "Fehler beim speichern bei Engel ". UID2Nick($_GET["aktive"]). "<br />";
}
} }
?> ?>
&Uuml;ber die Suchen-Funktion des Browsers kann diese Liste schnell nach einem Nick abgesucht werden.<br /> &Uuml;ber die Suchen-Funktion des Browsers kann diese Liste schnell nach einem Nick abgesucht werden.<br />
@ -24,6 +23,8 @@ Hinter diesem erscheint ein Link, &uuml;ber den man eintragen kann, dass der Eng
Liste aller aktiven Engel: Liste aller aktiven Engel:
<?php <?php
$SQL = "SELECT * FROM `User` WHERE (`Aktiv`='1') ORDER BY `Nick` ASC"; $SQL = "SELECT * FROM `User` WHERE (`Aktiv`='1') ORDER BY `Nick` ASC";
$Erg = mysql_query($SQL, $con); $Erg = mysql_query($SQL, $con);
@ -37,23 +38,25 @@ $rowcount = mysql_num_rows($Erg);
<td>T-Shirt ausgeben:</td> <td>T-Shirt ausgeben:</td>
</td> </td>
<?php <?php
for ($i=0; $i<$rowcount; $i++){
echo "\t<tr class=\"content\">\n";
$eUID=mysql_result($Erg, $i, "UID"); for ($i = 0; $i < $rowcount; $i++) {
echo "\t\t<td>".UID2Nick($eUID)."</td>\n"; echo "\t<tr class=\"content\">\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Aktiv")."</td>\n"; $eUID = mysql_result($Erg, $i, "UID");
echo "\t\t<td>".mysql_result($Erg, $i, "Size")."</td>\n"; echo "\t\t<td>" . UID2Nick($eUID) . "</td>\n";
echo "\t\t<td>" . mysql_result($Erg, $i, "Aktiv") . "</td>\n";
if (mysql_result($Erg, $i, "Tshirt") =="1") { echo "\t\t<td>" . mysql_result($Erg, $i, "Size") . "</td>\n";
echo "\t\t<td>bereits erhalten</td>";
} else { if (mysql_result($Erg, $i, "Tshirt") == "1") {
echo "\t\t<td><a href=\"./tshirt.php?aktiv=$eUID\">XXXXXXXX</a></td>"; echo "\t\t<td>bereits erhalten</td>";
} } else {
echo "\t</tr>\n"; echo "\t\t<td><a href=\"./tshirt.php?aktiv=$eUID\">XXXXXXXX</a></td>";
}
echo "\t</tr>\n";
} }
echo "</table>"; echo "</table>";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

189
www-ssl/admin/user.php
Unescape Escape View File

@ -1,30 +1,30 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Editieren der Engelliste"; $header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
if (!IsSet($_GET["enterUID"])) if (!IsSet ($_GET["enterUID"])) {
{ // Userliste, keine UID uebergeben...
// Userliste, keine UID uebergeben...
echo "<a href=\"../makeuser.php\">Neuen Engel eintragen</a><br /><br />\n"; echo "<a href=\"../makeuser.php\">Neuen Engel eintragen</a><br /><br />\n";
if( !isset($_GET["OrderBy"]) ) $_GET["OrderBy"] = "Nick"; if (!isset ($_GET["OrderBy"]))
$SQL = "SELECT User.*, UserGroups.Name AS 'Group' FROM `User` ". $_GET["OrderBy"] = "Nick";
"LEFT JOIN `UserCVS` ON User.UID = UserCVS.UID ". $SQL = "SELECT User.*, UserGroups.Name AS 'Group' FROM `User` " .
"LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID ". "LEFT JOIN `UserCVS` ON User.UID = UserCVS.UID " .
"ORDER BY `". $_GET["OrderBy"]. "` ASC"; "LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID " .
$Erg = mysql_query($SQL, $con); "ORDER BY `" . $_GET["OrderBy"] . "` ASC";
echo mysql_error($con); $Erg = mysql_query($SQL, $con);
echo mysql_error($con);
// anzahl zeilen // anzahl zeilen
$Zeilen = mysql_num_rows($Erg); $Zeilen = mysql_num_rows($Erg);
echo "Anzahl Engel: $Zeilen<br /><br />\n"; echo "Anzahl Engel: $Zeilen<br /><br />\n";
?><table width="100%" class="border" cellpadding="2" cellspacing="1">
?><table width="100%" class="border" cellpadding="2" cellspacing="1">
<tr class="contenttopic"> <tr class="contenttopic">
<td> <td>
<a href="<?php echo $_SERVER["PHP_SELF"]; ?>?OrderBy=Nick">Nick</a> | <a href="<?php echo $_SERVER["PHP_SELF"]; ?>?OrderBy=Nick">Nick</a> |
@ -53,88 +53,81 @@ if (!IsSet($_GET["enterUID"]))
<?php <?php
$Gekommen = 0;
$Active = 0;
$Tshirt = 0; $Gekommen = 0;
$Active = 0;
for ($n = 0 ; $n < $Zeilen ; $n++) { $Tshirt = 0;
echo "<tr class=\"content\">\n";
echo "\t<td>".mysql_result($Erg, $n, "Nick"). "<br />(Create: ". mysql_result($Erg, $n, "CreateDate"). ")</td>\n"; for ($n = 0; $n < $Zeilen; $n++) {
echo "\t<td>".mysql_result($Erg, $n, "Name")."</td>\n"; echo "<tr class=\"content\">\n";
echo "\t<td>".mysql_result($Erg, $n, "Vorname")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Nick") . "<br />(Create: " . mysql_result($Erg, $n, "CreateDate") . ")</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Alter")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Name") . "</td>\n";
echo "\t<td>"; echo "\t<td>" . mysql_result($Erg, $n, "Vorname") . "</td>\n";
if( strlen( mysql_result($Erg, $n, "Telefon"))>0) echo "\t<td>" . mysql_result($Erg, $n, "Alter") . "</td>\n";
echo "\n\t\tTel: ". mysql_result($Erg, $n, "Telefon"). "<br />"; echo "\t<td>";
if( strlen( mysql_result($Erg, $n, "Handy"))>0) if (strlen(mysql_result($Erg, $n, "Telefon")) > 0)
echo "\n\t\tHandy: ". mysql_result($Erg, $n, "Handy"). "<br />"; echo "\n\t\tTel: " . mysql_result($Erg, $n, "Telefon") . "<br />";
if( strlen( mysql_result($Erg, $n, "DECT"))>0) if (strlen(mysql_result($Erg, $n, "Handy")) > 0)
echo "\n\t\tDECT: <a href=\"./dect.php?custum=". mysql_result($Erg, $n, "DECT"). "\">". echo "\n\t\tHandy: " . mysql_result($Erg, $n, "Handy") . "<br />";
mysql_result($Erg, $n, "DECT"). "</a><br />"; if (strlen(mysql_result($Erg, $n, "DECT")) > 0)
if( strlen( mysql_result($Erg, $n, "email"))>0) echo "\n\t\tDECT: <a href=\"./dect.php?custum=" . mysql_result($Erg, $n, "DECT") . "\">" .
echo "\n\t\temail: <a href=\"mailto:".mysql_result($Erg, $n, "email")."\">". mysql_result($Erg, $n, "DECT") . "</a><br />";
mysql_result($Erg, $n, "email")."</a><br />"; if (strlen(mysql_result($Erg, $n, "email")) > 0)
if( strlen( mysql_result($Erg, $n, "Hometown"))>0) echo "\n\t\temail: <a href=\"mailto:" . mysql_result($Erg, $n, "email") . "\">" .
echo "\n\t\tHometown: ". mysql_result($Erg, $n, "Hometown"). "<br />"; mysql_result($Erg, $n, "email") . "</a><br />";
if( strlen( mysql_result($Erg, $n, "lastLogIn"))>0) if (strlen(mysql_result($Erg, $n, "Hometown")) > 0)
echo "\n\t\tlastLogIn: ". mysql_result($Erg, $n, "lastLogIn"). "<br />"; echo "\n\t\tHometown: " . mysql_result($Erg, $n, "Hometown") . "<br />";
if( strlen( mysql_result($Erg, $n, "Art"))>0) if (strlen(mysql_result($Erg, $n, "lastLogIn")) > 0)
echo "\n\t\tType: ". mysql_result($Erg, $n, "Art"). "<br />"; echo "\n\t\tlastLogIn: " . mysql_result($Erg, $n, "lastLogIn") . "<br />";
if( strlen( mysql_result($Erg, $n, "ICQ"))>0) if (strlen(mysql_result($Erg, $n, "Art")) > 0)
echo "\n\t\tICQ: ". mysql_result($Erg, $n, "ICQ"). "<br />"; echo "\n\t\tType: " . mysql_result($Erg, $n, "Art") . "<br />";
if( strlen( mysql_result($Erg, $n, "jabber"))>0) if (strlen(mysql_result($Erg, $n, "ICQ")) > 0)
echo "\n\t\tjabber: ". mysql_result($Erg, $n, "jabber"). "<br />"; echo "\n\t\tICQ: " . mysql_result($Erg, $n, "ICQ") . "<br />";
echo "\n\t\tGroup: ". mysql_result($Erg, $n, "Group"). "<br />"; if (strlen(mysql_result($Erg, $n, "jabber")) > 0)
echo "</td>\n"; echo "\n\t\tjabber: " . mysql_result($Erg, $n, "jabber") . "<br />";
echo "\t<td>".mysql_result($Erg, $n, "Size")."</td>\n"; echo "\n\t\tGroup: " . mysql_result($Erg, $n, "Group") . "<br />";
$Gekommen += mysql_result($Erg, $n, "Gekommen"); echo "</td>\n";
echo "\t<td>".mysql_result($Erg, $n, "Gekommen")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Size") . "</td>\n";
$Active += mysql_result($Erg, $n, "Aktiv"); $Gekommen += mysql_result($Erg, $n, "Gekommen");
echo "\t<td>".mysql_result($Erg, $n, "Aktiv")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Gekommen") . "</td>\n";
$Tshirt += mysql_result($Erg, $n, "Tshirt"); $Active += mysql_result($Erg, $n, "Aktiv");
echo "\t<td>".mysql_result($Erg, $n, "Tshirt")."</td>\n"; echo "\t<td>" . mysql_result($Erg, $n, "Aktiv") . "</td>\n";
echo "\t<td>". funktion_isLinkAllowed_addLink_OrEmpty( $Tshirt += mysql_result($Erg, $n, "Tshirt");
"admin/userChangeNormal.php?enterUID=". echo "\t<td>" . mysql_result($Erg, $n, "Tshirt") . "</td>\n";
mysql_result($Erg, $n, "UID")."&Type=Normal", echo "\t<td>" . funktion_isLinkAllowed_addLink_OrEmpty("admin/userChangeNormal.php?enterUID=" .
"&Auml;nd."). mysql_result($Erg, $n, "UID") . "&Type=Normal", "&Auml;nd.") .
"</td>\n"; "</td>\n";
echo "\t<td>". funktion_isLinkAllowed_addLink_OrEmpty( echo "\t<td>" . funktion_isLinkAllowed_addLink_OrEmpty("admin/userChangeSecure.php?enterUID=" .
"admin/userChangeSecure.php?enterUID=". mysql_result($Erg, $n, "UID") . "&Type=Secure", "Secure") .
mysql_result($Erg, $n, "UID")."&Type=Secure", "</td>\n";
"Secure"). echo "</tr>\n";
"</td>\n"; }
echo "</tr>\n"; echo "<tr>" .
} "<td></td><td></td><td></td><td></td><td></td><td></td>" .
echo "<tr>". "<td>$Gekommen</td><td>$Active</td><td>$Tshirt</td><td></td></tr>\n";
"<td></td><td></td><td></td><td></td><td></td><td></td>". echo "\t</table>\n";
"<td>$Gekommen</td><td>$Active</td><td>$Tshirt</td><td></td></tr>\n"; // Ende Userliste
echo "\t</table>\n";
// Ende Userliste echo "<h1>Statistics</h1>";
funktion_db_element_list_2row("Hometown", "SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
echo "<h1>Statistics</h1>";
funktion_db_element_list_2row( "Hometown", echo "<br />\n";
"SELECT COUNT(`Hometown`), `Hometown` FROM `User` GROUP BY `Hometown`");
funktion_db_element_list_2row("Engeltypen", "SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`");
echo "<br />\n";
echo "<br />\n";
funktion_db_element_list_2row( "Engeltypen",
"SELECT COUNT(`Art`), `Art` FROM `User` GROUP BY `Art`"); funktion_db_element_list_2row("Used Groups", "SELECT UserGroups.Name AS 'GroupName', COUNT(UserGroups.Name) AS Count FROM `UserCVS` " .
"LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID " .
echo "<br />\n"; "WHERE (UserCVS.GroupID!='NULL') " .
"GROUP BY `GroupName` " .
funktion_db_element_list_2row( "Used Groups", "");
"SELECT UserGroups.Name AS 'GroupName', COUNT(UserGroups.Name) AS Count FROM `UserCVS` ". } else {
"LEFT JOIN `UserGroups` ON UserGroups.UID = UserCVS.GroupID ". echo "error";
"WHERE (UserCVS.GroupID!='NULL') ".
"GROUP BY `GroupName` ".
"");
}
else
{
echo "error";
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

63
www-ssl/admin/userArrived.php
Unescape Escape View File

@ -1,24 +1,24 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Engel Arrived"; $title = "Engel Arrived";
$header = "Engel was arrived"; $header = "Engel was arrived";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
If (IsSet ($_GET["arrived"])) {
If (IsSet($_GET["arrived"])) {
$SQL = "UPDATE `User` SET `Gekommen`='1' WHERE `UID`='" . $_GET["arrived"] . "' limit 1";
$SQL="UPDATE `User` SET `Gekommen`='1' WHERE `UID`='". $_GET["arrived"]. "' limit 1"; $Erg = db_query($SQL, "Set User as Gekommen");
$Erg = db_query($SQL, "Set User as Gekommen"); if ($Erg == 1) {
if ($Erg == 1) { echo "<h2>" . Get_Text("pri_userArrived_WriteOK") . " \"" . UID2Nick($_GET["arrived"]) . "\"</h2>";
echo "<h2>". Get_Text("pri_userArrived_WriteOK"). " \"". UID2Nick($_GET["arrived"]). "\"</h2>"; } else {
} else { echo "<h1>" . Get_Text("pri_userArrived_WriteError") . " \"" . UID2Nick($_GET["arrived"]) . "\"</h1>";
echo "<h1>". Get_Text("pri_userArrived_WriteError"). " \"". UID2Nick($_GET["arrived"]). "\"</h1>"; }
}
} }
echo Get_Text("pri_userArrived_Text1"). "<br />"; echo Get_Text("pri_userArrived_Text1") . "<br />";
echo Get_Text("pri_userArrived_Text2"). "<br /><br />"; echo Get_Text("pri_userArrived_Text2") . "<br /><br />";
echo Get_Text("pri_userArrived_TableToppic"); echo Get_Text("pri_userArrived_TableToppic");
$SQL = "SELECT * FROM `User` ORDER BY `Nick` ASC"; $SQL = "SELECT * FROM `User` ORDER BY `Nick` ASC";
@ -28,27 +28,26 @@ $rowcount = mysql_num_rows($Erg);
echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n"; echo "<table width=\"100%\" class=\"border\" cellpadding=\"2\" cellspacing=\"1\">\n";
echo "\t<tr class=\"contenttopic\">\n"; echo "\t<tr class=\"contenttopic\">\n";
echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_Nick"). "</td>\n"; echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_Nick") . "</td>\n";
echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_ArrivedShow"). "</td>\n"; echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_ArrivedShow") . "</td>\n";
echo "\t\t<td>". Get_Text("pri_userArrived_TableTD_ArrivedSet"). "</td>\n"; echo "\t\t<td>" . Get_Text("pri_userArrived_TableTD_ArrivedSet") . "</td>\n";
echo "\t</td>\n"; echo "\t</td>\n";
for ($i=0; $i<$rowcount; $i++){ for ($i = 0; $i < $rowcount; $i++) {
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
$eUID=mysql_result($Erg, $i, "UID"); $eUID = mysql_result($Erg, $i, "UID");
echo "\t\t<td>".UID2Nick($eUID)."</td>\n"; echo "\t\t<td>" . UID2Nick($eUID) . "</td>\n";
echo "\t\t<td>".mysql_result($Erg, $i, "Gekommen")."</td>\n"; echo "\t\t<td>" . mysql_result($Erg, $i, "Gekommen") . "</td>\n";
if (mysql_result($Erg, $i, "Gekommen") =="1") if (mysql_result($Erg, $i, "Gekommen") == "1") {
{ echo "\t\t<td>" . Get_Text("pri_userArrived_TableEntry_Arrived") . "</td>";
echo "\t\t<td>". Get_Text("pri_userArrived_TableEntry_Arrived"). "</td>"; } else {
} else { echo "\t\t<td><a href=\"./userArrived.php?arrived=$eUID\">" . Get_Text("pri_userArrived_TableEntry_Set") . "</a></td>";
echo "\t\t<td><a href=\"./userArrived.php?arrived=$eUID\">". Get_Text("pri_userArrived_TableEntry_Set"). "</a></td>"; }
} echo "\t</tr>\n";
echo "\t</tr>\n";
} }
echo "</table>"; echo "</table>";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

252
www-ssl/admin/userChangeNormal.php
Unescape Escape View File

@ -1,137 +1,133 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Editieren der Engelliste"; $header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
if (IsSet($_GET["enterUID"])) if (IsSet ($_GET["enterUID"])) {
{ // UserID wurde mit uebergeben --> Aendern...
// UserID wurde mit uebergeben --> Aendern...
echo "Hallo,<br />" .
echo "Hallo,<br />". "hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' " .
"hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' ". "wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, " .
"wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, ". "dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. " .
"dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. ". "Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel " .
"Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel ". "bereits sein T-Shirt erhalten hat.<br /><br />\n";
"bereits sein T-Shirt erhalten hat.<br /><br />\n";
echo "<form action=\"./userSaveNormal.php?action=change\" method=\"POST\">\n";
echo "<form action=\"./userSaveNormal.php?action=change\" method=\"POST\">\n"; echo "<table border=\"0\">\n";
echo "<table border=\"0\">\n"; echo "<input type=\"hidden\" name=\"Type\" value=\"Normal\">\n";
echo "<input type=\"hidden\" name=\"Type\" value=\"Normal\">\n";
$SQL = "SELECT * FROM `User` WHERE `UID`='" . $_GET["enterUID"] . "'";
$SQL = "SELECT * FROM `User` WHERE `UID`='". $_GET["enterUID"]. "'"; $Erg = mysql_query($SQL, $con);
$Erg = mysql_query($SQL, $con);
if (mysql_num_rows($Erg) != 1)
if (mysql_num_rows($Erg) != 1) echo "<tr><td>Sorry, der Engel (UID=" . $_GET["enterUID"] .
echo "<tr><td>Sorry, der Engel (UID=". $_GET["enterUID"]. ") wurde in der Liste nicht gefunden.</td></tr>";
") wurde in der Liste nicht gefunden.</td></tr>"; else {
else echo "<tr><td>\n";
{ echo "<table>\n";
echo "<tr><td>\n"; echo " <tr><td>Nick</td><td>" .
echo "<table>\n"; "<input type=\"text\" size=\"40\" name=\"eNick\" value=\"" .
echo " <tr><td>Nick</td><td>". mysql_result($Erg, 0, "Nick") . "\"></td></tr>\n";
"<input type=\"text\" size=\"40\" name=\"eNick\" value=\"". echo " <tr><td>lastLogIn</td><td>" .
mysql_result($Erg, 0, "Nick")."\"></td></tr>\n"; "<input type=\"text\" size=\"20\" name=\"elastLogIn\" value=\"" .
echo " <tr><td>lastLogIn</td><td>". mysql_result($Erg, 0, "lastLogIn") . "\" disabled></td></tr>\n";
"<input type=\"text\" size=\"20\" name=\"elastLogIn\" value=\"". echo " <tr><td>Name</td><td>" .
mysql_result($Erg, 0, "lastLogIn"). "\" disabled></td></tr>\n"; "<input type=\"text\" size=\"40\" name=\"eName\" value=\"" .
echo " <tr><td>Name</td><td>". mysql_result($Erg, 0, "Name") . "\"></td></tr>\n";
"<input type=\"text\" size=\"40\" name=\"eName\" value=\"". echo " <tr><td>Vorname</td><td>" .
mysql_result($Erg, 0, "Name")."\"></td></tr>\n"; "<input type=\"text\" size=\"40\" name=\"eVorname\" value=\"" .
echo " <tr><td>Vorname</td><td>". mysql_result($Erg, 0, "Vorname") . "\"></td></tr>\n";
"<input type=\"text\" size=\"40\" name=\"eVorname\" value=\"". echo " <tr><td>Alter</td><td>" .
mysql_result($Erg, 0, "Vorname")."\"></td></tr>\n"; "<input type=\"text\" size=\"5\" name=\"eAlter\" value=\"" .
echo " <tr><td>Alter</td><td>". mysql_result($Erg, 0, "Alter") . "\"></td></tr>\n";
"<input type=\"text\" size=\"5\" name=\"eAlter\" value=\"". echo " <tr><td>Telefon</td><td>" .
mysql_result($Erg, 0, "Alter")."\"></td></tr>\n"; "<input type=\"text\" size=\"40\" name=\"eTelefon\" value=\"" .
echo " <tr><td>Telefon</td><td>". mysql_result($Erg, 0, "Telefon") . "\"></td></tr>\n";
"<input type=\"text\" size=\"40\" name=\"eTelefon\" value=\"". echo " <tr><td>Handy</td><td>" .
mysql_result($Erg, 0, "Telefon")."\"></td></tr>\n"; "<input type=\"text\" size=\"40\" name=\"eHandy\" value=\"" .
echo " <tr><td>Handy</td><td>". mysql_result($Erg, 0, "Handy") . "\"></td></tr>\n";
"<input type=\"text\" size=\"40\" name=\"eHandy\" value=\"". echo " <tr><td>DECT</td><td>" .
mysql_result($Erg, 0, "Handy")."\"></td></tr>\n"; "<input type=\"text\" size=\"4\" name=\"eDECT\" value=\"" .
echo " <tr><td>DECT</td><td>". mysql_result($Erg, 0, "DECT") . "\"></td></tr>\n";
"<input type=\"text\" size=\"4\" name=\"eDECT\" value=\"". echo " <tr><td>email</td><td>" .
mysql_result($Erg, 0, "DECT")."\"></td></tr>\n"; "<input type=\"text\" size=\"40\" name=\"eemail\" value=\"" .
echo " <tr><td>email</td><td>". mysql_result($Erg, 0, "email") . "\"></td></tr>\n";
"<input type=\"text\" size=\"40\" name=\"eemail\" value=\"". echo " <tr><td>ICQ</td><td>" .
mysql_result($Erg, 0, "email")."\"></td></tr>\n"; "<input type=\"text\" size=\"40\" name=\"eICQ\" value=\"" .
echo " <tr><td>ICQ</td><td>". mysql_result($Erg, 0, "ICQ") . "\"></td></tr>\n";
"<input type=\"text\" size=\"40\" name=\"eICQ\" value=\"". echo " <tr><td>jabber</td><td>" .
mysql_result($Erg, 0, "ICQ")."\"></td></tr>\n"; "<input type=\"text\" size=\"40\" name=\"ejabber\" value=\"" .
echo " <tr><td>jabber</td><td>". mysql_result($Erg, 0, "jabber") . "\"></td></tr>\n";
"<input type=\"text\" size=\"40\" name=\"ejabber\" value=\"". echo " <tr><td>Size</td><td>" .
mysql_result($Erg, 0, "jabber")."\"></td></tr>\n"; "<input type=\"text\" size=\"5\" name=\"eSize\" value=\"" .
echo " <tr><td>Size</td><td>". mysql_result($Erg, 0, "Size") . "\"></td></tr>\n";
"<input type=\"text\" size=\"5\" name=\"eSize\" value=\"". echo " <tr><td>Passwort</td><td>" .
mysql_result($Erg, 0, "Size")."\"></td></tr>\n"; "<a href=\"./userSaveNormal.php?action=newpw&eUID=" .
echo " <tr><td>Passwort</td><td>". mysql_result($Erg, 0, "UID") . "\">neues Kennwort setzen</a></td></tr>\n";
"<a href=\"./userSaveNormal.php?action=newpw&eUID="
.mysql_result($Erg, 0, "UID")."\">neues Kennwort setzen</a></td></tr>\n"; // Gekommen?
echo " <tr><td>Gekommen</td><td>\n";
// Gekommen? echo " <input type=\"radio\" name=\"eGekommen\" value=\"0\"";
echo " <tr><td>Gekommen</td><td>\n"; if (mysql_result($Erg, 0, "Gekommen") == '0')
echo " <input type=\"radio\" name=\"eGekommen\" value=\"0\""; echo " checked";
if (mysql_result($Erg, 0, "Gekommen")=='0') echo ">No \n";
echo " checked"; echo " <input type=\"radio\" name=\"eGekommen\" value=\"1\"";
echo ">No \n"; if (mysql_result($Erg, 0, "Gekommen") == '1')
echo " <input type=\"radio\" name=\"eGekommen\" value=\"1\""; echo " checked";
if (mysql_result($Erg, 0, "Gekommen")=='1') echo ">Yes \n";
echo " checked"; echo "</td></tr>\n";
echo ">Yes \n";
echo "</td></tr>\n"; // Aktiv?
echo " <tr><td>Aktiv</td><td>\n";
// Aktiv? echo " <input type=\"radio\" name=\"eAktiv\" value=\"0\"";
echo " <tr><td>Aktiv</td><td>\n"; if (mysql_result($Erg, 0, "Aktiv") == '0')
echo " <input type=\"radio\" name=\"eAktiv\" value=\"0\""; echo " checked";
if (mysql_result($Erg, 0, "Aktiv")=='0') echo ">No \n";
echo " checked"; echo " <input type=\"radio\" name=\"eAktiv\" value=\"1\"";
echo ">No \n"; if (mysql_result($Erg, 0, "Aktiv") == '1')
echo " <input type=\"radio\" name=\"eAktiv\" value=\"1\""; echo " checked";
if (mysql_result($Erg, 0, "Aktiv")=='1') echo ">Yes \n";
echo " checked"; echo "</td></tr>\n";
echo ">Yes \n";
echo "</td></tr>\n"; // T-Shirt bekommen?
echo " <tr><td>T-Shirt</td><td>\n";
// T-Shirt bekommen? echo " <input type=\"radio\" name=\"eTshirt\" value=\"0\"";
echo " <tr><td>T-Shirt</td><td>\n"; if (mysql_result($Erg, 0, "Tshirt") == '0')
echo " <input type=\"radio\" name=\"eTshirt\" value=\"0\""; echo " checked";
if (mysql_result($Erg, 0, "Tshirt")=='0') echo ">No \n";
echo " checked"; echo " <input type=\"radio\" name=\"eTshirt\" value=\"1\"";
echo ">No \n"; if (mysql_result($Erg, 0, "Tshirt") == '1')
echo " <input type=\"radio\" name=\"eTshirt\" value=\"1\""; echo " checked";
if (mysql_result($Erg, 0, "Tshirt")=='1') echo ">Yes \n";
echo " checked"; echo "</td></tr>\n";
echo ">Yes \n";
echo "</td></tr>\n"; echo " <tr><td>Hometown</td><td>" .
"<input type=\"text\" size=\"40\" name=\"Hometown\" value=\"" .
echo " <tr><td>Hometown</td><td>". mysql_result($Erg, 0, "Hometown") . "\"></td></tr>\n";
"<input type=\"text\" size=\"40\" name=\"Hometown\" value=\"".
mysql_result($Erg, 0, "Hometown")."\"></td></tr>\n"; echo "</table>\n</td><td valign=\"top\">" . displayavatar($_GET["enterUID"], FALSE) . "</td></tr>";
}
echo "</table>\n</td><td valign=\"top\">". displayavatar($_GET["enterUID"], FALSE). "</td></tr>";
} echo "</td></tr>\n";
echo "</table>\n<br />\n";
echo "</td></tr>\n"; echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "</table>\n<br />\n"; echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; echo "</form>";
echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>"; echo "<form action=\"./userSaveNormal.php?action=delete\" method=\"POST\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<form action=\"./userSaveNormal.php?action=delete\" method=\"POST\">\n"; echo "<input type=\"submit\" value=\"l&ouml;schen...\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; echo "</form>";
echo "<input type=\"submit\" value=\"l&ouml;schen...\">\n";
echo "</form>"; echo "<hr>";
funktion_db_element_list_2row("Freeloader Shifts", "SELECT `Remove_Time`, `Length`, `Comment` FROM `ShiftFreeloader` WHERE UID=" . $_GET["enterUID"]);
echo "<hr>";
funktion_db_element_list_2row(
"Freeloader Shifts",
"SELECT `Remove_Time`, `Length`, `Comment` FROM `ShiftFreeloader` WHERE UID=". $_GET["enterUID"]);
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

198
www-ssl/admin/userChangeSecure.php
Unescape Escape View File

@ -1,112 +1,104 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Editieren der Engelliste"; $header = "Editieren der Engelliste";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
if (IsSet($_GET["enterUID"])) if (IsSet ($_GET["enterUID"])) {
{ // UserID wurde mit uebergeben --> Aendern...
// UserID wurde mit uebergeben --> Aendern...
echo "Hallo,<br />" .
echo "Hallo,<br />". "hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' " .
"hier kannst du den Eintrag &auml;ndern. Unter dem Punkt 'Gekommen' ". "wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, " .
"wird der Engel als anwesend markiert, ein Ja bei Aktiv bedeutet, ". "dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. " .
"dass der Engel aktiv war und damit ein Anspruch auf ein T-Shirt hat. ". "Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel " .
"Wenn T-Shirt ein 'Ja' enth&auml;lt, bedeutet dies, dass der Engel ". "bereits sein T-Shirt erhalten hat.<br /><br />\n";
"bereits sein T-Shirt erhalten hat.<br /><br />\n";
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='" . $_GET["enterUID"] . "'";
$Erg_CVS = mysql_query($SQL_CVS, $con);
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='". $_GET["enterUID"]. "'";
$Erg_CVS = mysql_query($SQL_CVS, $con); if (mysql_num_rows($Erg_CVS) != 1)
echo "Sorry, der Engel (UID=" . $_GET["enterUID"] . ") wurde in der Liste nicht gefunden.";
if( mysql_num_rows($Erg_CVS) != 1) else {
echo "Sorry, der Engel (UID=". $_GET["enterUID"]. ") wurde in der Liste nicht gefunden."; // Rename if is an group
else if ($_GET["enterUID"] < 0) {
{ $SQLname = "SELECT `Name` FROM `UserGroups` WHERE `UID`='" . $_GET["enterUID"] . "'";
// Rename if is an group $ErgName = mysql_query($SQLname, $con);
if( $_GET["enterUID"] < 0 ) { echo mysql_error($con);
$SQLname = "SELECT `Name` FROM `UserGroups` WHERE `UID`='". $_GET["enterUID"]. "'";
$ErgName = mysql_query($SQLname, $con); echo "<form action=\"./userSaveSecure.php?action=changeGroupName\" method=\"POST\">\n";
echo mysql_error($con); echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
echo "<input type=\"text\" name=\"GroupName\" value=\"" . mysql_result($ErgName, 0, "Name") . "\">\n";
echo "<form action=\"./userSaveSecure.php?action=changeGroupName\" method=\"POST\">\n"; echo "<input type=\"submit\" value=\"rename\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n"; echo "</form>";
echo "<input type=\"text\" name=\"GroupName\" value=\"". mysql_result($ErgName, 0, "Name"). "\">\n"; }
echo "<input type=\"submit\" value=\"rename\">\n";
echo "</form>"; echo "<form action=\"./userSaveSecure.php?action=change\" method=\"POST\">\n";
} echo "<table border=\"0\">\n";
echo "<input type=\"hidden\" name=\"Type\" value=\"Secure\">\n";
echo "<form action=\"./userSaveSecure.php?action=change\" method=\"POST\">\n"; echo " <tr><td><br /><u>Rights of \"" . UID2Nick($_GET["enterUID"]) . "\":</u></td></tr>\n";
echo "<table border=\"0\">\n";
echo "<input type=\"hidden\" name=\"Type\" value=\"Secure\">\n"; $CVS_Data = mysql_fetch_array($Erg_CVS);
echo " <tr><td><br /><u>Rights of \"". UID2Nick($_GET["enterUID"]). "\":</u></td></tr>\n"; $CVS_Data_i = 1;
foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) {
$CVS_Data_i++;
$CVS_Data = mysql_fetch_array($Erg_CVS); //nur jeder zweiter sonst wird f<>r jeden text noch die position (Zahl) ausgegeben
$CVS_Data_i = 1; if ($CVS_Data_i % 2 && $CVS_Data_Name != "UID") {
foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) if ($CVS_Data_Name == "GroupID") {
{ if ($_GET["enterUID"] > 0) {
$CVS_Data_i++; echo "<tr><td><b>Group</b></td>\n" .
//nur jeder zweiter sonst wird für jeden text noch die position (Zahl) ausgegeben "<td><select name=\"GroupID\">";
if( $CVS_Data_i%2 && $CVS_Data_Name!="UID")
{ $SQL_Group = "SELECT * FROM `UserGroups`";
if($CVS_Data_Name=="GroupID") { $Erg_Group = mysql_query($SQL_Group, $con);
if( $_GET["enterUID"] > 0 ) for ($n = 0; $n < mysql_num_rows($Erg_Group); $n++) {
{ $UID = mysql_result($Erg_Group, $n, "UID");
echo "<tr><td><b>Group</b></td>\n". echo "\t<option value=\"$UID\"";
"<td><select name=\"GroupID\">"; if ($CVS_Data_Value == $UID)
echo " selected";
$SQL_Group = "SELECT * FROM `UserGroups`"; echo ">" . mysql_result($Erg_Group, $n, "Name") . "</option>\n";
$Erg_Group = mysql_query($SQL_Group, $con); }
for ($n = 0 ; $n < mysql_num_rows($Erg_Group) ; $n++) echo "</select></td></tr>";
{ }
$UID = mysql_result($Erg_Group, $n, "UID"); } else {
echo "\t<option value=\"$UID\""; echo "<tr><td>$CVS_Data_Name</td>\n<td>";
if( $CVS_Data_Value == $UID) echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"Y\" ";
echo " selected"; if ($CVS_Data_Value == "Y")
echo ">". mysql_result($Erg_Group, $n, "Name"). "</option>\n"; echo " checked";
} echo ">allow \n";
echo "</select></td></tr>"; echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"N\" ";
} if ($CVS_Data_Value == "N")
} else { echo " checked";
echo "<tr><td>$CVS_Data_Name</td>\n<td>"; echo ">denied \n";
echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"Y\" "; if ($_GET["enterUID"] > 0) {
if( $CVS_Data_Value == "Y" ) echo "<input type=\"radio\" name=\"" . ($CVS_Data_i -1) . "\" value=\"G\" ";
echo " checked"; if ($CVS_Data_Value == "G")
echo ">allow \n"; echo " checked";
echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"N\" "; echo ">group-setting \n";
if( $CVS_Data_Value == "N" ) echo "</td></tr>";
echo " checked"; }
echo ">denied \n"; }
if( $_GET["enterUID"] > 0 ) } //IF
{ } //Foreach
echo "<input type=\"radio\" name=\"".($CVS_Data_i-1)."\" value=\"G\" "; echo "</td></tr>\n";
if( $CVS_Data_Value == "G" )
echo " checked"; // Ende Formular
echo ">group-setting \n"; echo "</td></tr>\n";
echo "</td></tr>"; echo "</table>\n<br />\n";
} echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
} echo "<input type=\"submit\" value=\"sichern...\">\n";
} //IF echo "</form>";
} //Foreach
echo "</td></tr>\n"; echo "<br /><form action=\"./userSaveSecure.php?action=delete\" method=\"POST\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"" . $_GET["enterUID"] . "\">\n";
// Ende Formular echo "<input type=\"submit\" value=\"l&ouml;schen...\">\n";
echo "</td></tr>\n"; echo "</form>";
echo "</table>\n<br />\n"; }
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n";
echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>";
echo "<br /><form action=\"./userSaveSecure.php?action=delete\" method=\"POST\">\n";
echo "<input type=\"hidden\" name=\"enterUID\" value=\"". $_GET["enterUID"]. "\">\n";
echo "<input type=\"submit\" value=\"l&ouml;schen...\">\n";
echo "</form>";
}
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

186
www-ssl/admin/userDefaultSetting.php
Unescape Escape View File

@ -1,72 +1,70 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "Defalut User Setting"; $title = "Defalut User Setting";
$header = "Defalut User Setting"; $header = "Defalut User Setting";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
echo "Hallo ".$_SESSION['Nick']. echo "Hallo " . $_SESSION['Nick'] .
",<br />\nhier hast du die M&ouml;glichkeit, die Defaulteinstellungen f&uuml;r neue User einzustellen:<br /><br />\n"; ",<br />\nhier hast du die M&ouml;glichkeit, die Defaulteinstellungen f&uuml;r neue User einzustellen:<br /><br />\n";
echo "<table border=\"0\" class=\"border\">\n"; echo "<table border=\"0\" class=\"border\">\n";
echo "\t<tr class=\"contenttopic\">\n"; echo "\t<tr class=\"contenttopic\">\n";
echo "\t\t<th>Page</th>\n\t\t<th>Show</th>\n\t\t<th></th>\n"; echo "\t\t<th>Page</th>\n\t\t<th>Show</th>\n\t\t<th></th>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
if( isset( $_GET["Field"]) && isset( $_GET["Default"]) && isset( $_GET["Send"])) if (isset ($_GET["Field"]) && isset ($_GET["Default"]) && isset ($_GET["Send"])) {
{ switch ($_GET["Send"]) {
switch( $_GET["Send"]) case "New" :
{ $SQL = "ALTER TABLE `UserCVS` ADD `" . $_GET["Field"] . "` " .
case "New": "CHAR( 1 ) DEFAULT '" . $_GET["Default"] . "' NOT NULL";
$SQL = "ALTER TABLE `UserCVS` ADD `". $_GET["Field"]. "` ". $Erg = db_query($SQL, "New user default setting");
"CHAR( 1 ) DEFAULT '". $_GET["Default"]. "' NOT NULL"; if ($Erg == 1)
$Erg = db_query( $SQL, "New user default setting"); echo "<H2>Create " . $_GET["Field"] . " = " . $_GET["Default"] . " succesfull</h2>\n";
if( $Erg == 1) else
echo "<H2>Create ".$_GET["Field"]. " = ". $_GET["Default"]. " succesfull</h2>\n"; echo "<H2>Create " . $_GET["Field"] . " = " . $_GET["Default"] . " error...</h2>\n" .
else "[" . mysql_error() . "]<br /><br />";
echo "<H2>Create ".$_GET["Field"]. " = ". $_GET["Default"]. " error...</h2>\n". break;
"[". mysql_error(). "]<br /><br />"; case "Del" :
break; echo "\t<tr class=\"content\">\n";
case "Del": echo "\t\t<form action=\"userDefaultSetting.php\">\n";
echo "\t<tr class=\"content\">\n"; echo "\t\t\t<td><input name=\"Field\" type=\"text\" value=\"" . $_GET["Field"] . "\" readonly></td>\n";
echo "\t\t<form action=\"userDefaultSetting.php\">\n"; echo "\t\t\t<td><input name=\"Default\" type=\"text\" value=\"" . $_GET["Default"] . "\" readonly></td>\n";
echo "\t\t\t<td><input name=\"Field\" type=\"text\" value=\"". $_GET["Field"]. "\" readonly></td>\n"; echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Del sure\"></td>\n";
echo "\t\t\t<td><input name=\"Default\" type=\"text\" value=\"". $_GET["Default"]. "\" readonly></td>\n"; echo "\t\t</form>\n";
echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Del sure\"></td>\n"; echo "\t</tr>\n";
echo "\t\t</form>\n"; break;
echo "\t</tr>\n"; case "Del sure" :
break; $SQL = "ALTER TABLE `UserCVS` DROP `" . $_GET["Field"] . "` ";
case "Del sure": $Erg = db_query($SQL, "del user default setting");
$SQL = "ALTER TABLE `UserCVS` DROP `". $_GET["Field"]. "` "; if ($Erg == 1)
$Erg = db_query( $SQL, "del user default setting"); echo "<H2>Delete " . $_GET["Field"] . " succesfull</h2>\n";
if( $Erg == 1) else
echo "<H2>Delete ".$_GET["Field"]. " succesfull</h2>\n"; echo "<H2>Delete " . $_GET["Field"] . " error...</h2>\n" .
else "[" . mysql_error() . "]<br /><br />";
echo "<H2>Delete ".$_GET["Field"]. " error...</h2>\n". break;
"[". mysql_error(). "]<br /><br />"; case "SetForAllUser" :
break; $SQL = "UPDATE `UserCVS` SET `" . $_GET["Field"] . "`='" . $_GET["Default"] . "' WHERE UID>0";
case "SetForAllUser": $Erg = db_query($SQL, "Set new user default setting for all user");
$SQL = "UPDATE `UserCVS` SET `". $_GET["Field"]. "`='". $_GET["Default"]. "' WHERE UID>0"; if ($Erg == 1)
$Erg = db_query( $SQL, "Set new user default setting for all user"); echo "<H2>UPDATE " . $_GET["Field"] . " = " . $_GET["Default"] . " for all Users succesfull</h2>\n";
if( $Erg == 1) else
echo "<H2>UPDATE ".$_GET["Field"]. " = ". $_GET["Default"]. " for all Users succesfull</h2>\n"; echo "<H2>UPDATE " . $_GET["Field"] . " = " . $_GET["Default"] . " for all Users error...</h2>\n" .
else "[" . mysql_error() . "]<br /><br />";
echo "<H2>UPDATE ".$_GET["Field"]. " = ". $_GET["Default"]. " for all Users error...</h2>\n". case "Save" :
"[". mysql_error(). "]<br /><br />"; $SQL = "ALTER TABLE `UserCVS` CHANGE `" . $_GET["Field"] . "` " .
case "Save": "`" . $_GET["Field"] . "` CHAR( 1 ) NOT NULL DEFAULT '" . $_GET["Default"] . "'";
$SQL = "ALTER TABLE `UserCVS` CHANGE `". $_GET["Field"]. "` ". $Erg = db_query($SQL, "Save user default setting");
"`". $_GET["Field"]. "` CHAR( 1 ) NOT NULL DEFAULT '". $_GET["Default"]. "'"; if ($Erg == 1)
$Erg = db_query( $SQL, "Save user default setting"); echo "<H2>Write " . $_GET["Field"] . " = " . $_GET["Default"] . " succesfull</h2>\n";
if( $Erg == 1) else
echo "<H2>Write ".$_GET["Field"]. " = ". $_GET["Default"]. " succesfull</h2>\n"; echo "<H2>Write " . $_GET["Field"] . " = " . $_GET["Default"] . " error...</h2>\n" .
else "[" . mysql_error() . "]<br /><br />";
echo "<H2>Write ".$_GET["Field"]. " = ". $_GET["Default"]. " error...</h2>\n". break;
"[". mysql_error(). "]<br /><br />"; } //SWITCH
break;
} //SWITCH
} //IF( } //IF(
$erg = mysql_query("SHOW COLUMNS FROM `UserCVS`"); $erg = mysql_query("SHOW COLUMNS FROM `UserCVS`");
echo mysql_error(); echo mysql_error();
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
@ -76,14 +74,13 @@ echo "\t\t\t<td>Group</td>\n";
echo "\t\t\t<td><select name=\"GroupID\">"; echo "\t\t\t<td><select name=\"GroupID\">";
$SQL_Group = "SELECT * FROM `UserGroups`"; $SQL_Group = "SELECT * FROM `UserGroups`";
$Erg_Group = mysql_query($SQL_Group, $con); $Erg_Group = mysql_query($SQL_Group, $con);
for ($n = 0 ; $n < mysql_num_rows($Erg_Group) ; $n++) for ($n = 0; $n < mysql_num_rows($Erg_Group); $n++) {
{ $UID = mysql_result($Erg_Group, $n, "UID");
$UID = mysql_result($Erg_Group, $n, "UID"); echo "\t<option value=\"$UID\"";
echo "\t<option value=\"$UID\""; if (mysql_result($erg, 1, "Default") == $UID)
if( mysql_result( $erg, 1, "Default") == $UID) echo " selected";
echo " selected"; echo ">" . mysql_result($Erg_Group, $n, "Name") . "</option>\n";
echo ">". mysql_result($Erg_Group, $n, "Name"). "</option>\n";
} }
echo "</select></td>\n"; echo "</select></td>\n";
echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\">\n"; echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\">\n";
@ -91,35 +88,34 @@ echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"SetForAllUser\"></t
echo "\t\t</form>\n"; echo "\t\t</form>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
for( $i=2; $i<mysql_num_rows($erg); $i++) for ($i = 2; $i < mysql_num_rows($erg); $i++) {
{ echo "\t<tr class=\"content\">\n";
echo "\t<tr class=\"content\">\n"; echo "\t\t<form action=\"userDefaultSetting.php\">\n";
echo "\t\t<form action=\"userDefaultSetting.php\">\n"; echo "\t\t\t<input name=\"Field\" type=\"hidden\" value=\"" . mysql_result($erg, $i, "Field") . "\">\n";
echo "\t\t\t<input name=\"Field\" type=\"hidden\" value=\"". mysql_result( $erg, $i, "Field"). "\">\n"; echo "\t\t\t<td>" . mysql_result($erg, $i, "Field") . "</td>\n";
echo "\t\t\t<td>". mysql_result( $erg, $i, "Field"). "</td>\n"; echo "\t\t\t<td>\n";
echo "\t\t\t<td>\n";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"Y\"";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"Y\""; if (mysql_result($erg, $i, "Default") == "Y")
if( mysql_result( $erg, $i, "Default") == "Y") echo " checked";
echo " checked"; echo ">allow\n";
echo ">allow\n";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"N\"";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"N\""; if (mysql_result($erg, $i, "Default") == "N")
if( mysql_result( $erg, $i, "Default") == "N") echo " checked";
echo " checked"; echo ">denied\n";
echo ">denied\n";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"G\"";
echo "\t\t\t\t<input type=\"radio\" name=\"Default\" value=\"G\""; if (mysql_result($erg, $i, "Default") == "G")
if( mysql_result( $erg, $i, "Default") == "G") echo " checked";
echo " checked"; echo ">group-setting\n";
echo ">group-setting\n";
echo "\t\t\t</td>\n";
echo "\t\t\t</td>\n"; echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\">\n";
echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"Save\">\n"; echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"Del\">\n";
echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"Del\">\n"; echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"SetForAllUser\"></td>\n";
echo "\t\t\t <input type=\"submit\" name=\"Send\" value=\"SetForAllUser\"></td>\n"; echo "\t\t</form>\n";
echo "\t\t</form>\n"; echo "\t</tr>\n";
echo "\t</tr>\n";
} }
echo "\t<tr class=\"content\">\n"; echo "\t<tr class=\"content\">\n";
@ -135,10 +131,8 @@ echo "\t\t\t<td><input type=\"submit\" name=\"Send\" value=\"New\"></td>\n";
echo "\t\t</form>\n"; echo "\t\t</form>\n";
echo "\t</tr>\n"; echo "\t</tr>\n";
echo "</table>\n"; echo "</table>\n";
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

217
www-ssl/admin/userSaveNormal.php
Unescape Escape View File

@ -1,130 +1,119 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Index"; $header = "Index";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
include ("../../../camp2011/includes/crypt.php"); include ("includes/crypt.php");
include ("../../../camp2011/includes/funktion_db.php"); include ("includes/funktion_db.php");
if (IsSet($_GET["action"])) if (IsSet ($_GET["action"])) {
{ SetHeaderGo2Back();
SetHeaderGo2Back(); echo "Gesendeter Befehl: " . $_GET["action"] . "<br />";
echo "Gesendeter Befehl: ". $_GET["action"]. "<br />";
switch ($_GET["action"]) switch ($_GET["action"]) {
{ case "change" :
case "change": if (IsSet ($_POST["enterUID"])) {
if (IsSet($_POST["enterUID"])) if ($_POST["Type"] == "Normal") {
{ $SQL = "UPDATE `User` SET ";
if ($_POST["Type"] == "Normal") $SQL .= " `Nick` = '" . $_POST["eNick"] . "', `Name` = '" . $_POST["eName"] . "', " .
{ "`Vorname` = '" . $_POST["eVorname"] . "', " .
$SQL = "UPDATE `User` SET "; "`Telefon` = '" . $_POST["eTelefon"] . "', " .
$SQL.= " `Nick` = '". $_POST["eNick"]. "', `Name` = '". $_POST["eName"]. "', ". "`Handy` = '" . $_POST["eHandy"] . "', " .
"`Vorname` = '". $_POST["eVorname"]. "', ". "`DECT` = '" . $_POST["eDECT"] . "', " .
"`Telefon` = '". $_POST["eTelefon"]. "', ". "`email` = '" . $_POST["eemail"] . "', " .
"`Handy` = '". $_POST["eHandy"]. "', ". "`ICQ` = '" . $_POST["eICQ"] . "', " .
"`DECT` = '". $_POST["eDECT"]. "', ". "`jabber` = '" . $_POST["ejabber"] . "', " .
"`email` = '". $_POST["eemail"]. "', ". "`Size` = '" . $_POST["eSize"] . "', " .
"`ICQ` = '". $_POST["eICQ"]. "', ". "`Gekommen`= '" . $_POST["eGekommen"] . "', " .
"`jabber` = '". $_POST["ejabber"]. "', ". "`Aktiv`= '" . $_POST["eAktiv"] . "', " .
"`Size` = '". $_POST["eSize"]. "', ". "`Tshirt` = '" . $_POST["eTshirt"] . "', " .
"`Gekommen`= '". $_POST["eGekommen"]. "', ". "`Hometown` = '" . $_POST["Hometown"] . "' " .
"`Aktiv`= '". $_POST["eAktiv"]. "', ". "WHERE `UID` = '" . $_POST["enterUID"] .
"`Tshirt` = '". $_POST["eTshirt"]. "', ". "' LIMIT 1;";
"`Hometown` = '". $_POST["Hometown"]. "' ". echo "User-";
"WHERE `UID` = '". $_POST["enterUID"]. $Erg = db_query($SQL, "change user details");
"' LIMIT 1;"; if ($Erg == 1) {
echo "User-"; echo "&Auml;nderung wurde gesichert...\n";
$Erg = db_query($SQL, "change user details"); } else {
if ($Erg == 1) { echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
echo "&Auml;nderung wurde gesichert...\n"; }
} else { } else
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "<h1>Fehler: Unbekanter Type (" . $_POST["Type"] . ") <20>bergeben\n</h1>\n";
} } else
} echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST <20>bergeben</h1>\n";
else break;
echo "<h1>Fehler: Unbekanter Type (". $_POST["Type"]. ") übergeben\n</h1>\n";
}
else
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n";
break;
case "delete": case "delete" :
if (IsSet($_POST["enterUID"])) if (IsSet ($_POST["enterUID"])) {
{ echo "delate User...";
echo "delate User..."; $SQL = "DELETE FROM `User` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$SQL="DELETE FROM `User` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $Erg = db_query($SQL, "User delete");
$Erg = db_query($SQL, "User delete"); if ($Erg == 1) {
if ($Erg == 1) { echo "&Auml;nderung wurde gesichert...\n";
echo "&Auml;nderung wurde gesichert...\n"; } else {
} else { echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; }
}
echo "<br />\ndelate UserCVS..."; echo "<br />\ndelate UserCVS...";
$SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$Erg = db_query($SQL2, "User CVS delete"); $Erg = db_query($SQL2, "User CVS delete");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
echo "<br />\ndelate UserEntry..."; echo "<br />\ndelate UserEntry...";
$SQL3="UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL ". $SQL3 = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL " .
"WHERE `UID`='". $_POST["enterUID"]. "';"; "WHERE `UID`='" . $_POST["enterUID"] . "';";
$Erg = db_query($SQL3, "delate UserEntry"); $Erg = db_query($SQL3, "delate UserEntry");
if ($Erg == 1) { if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n"; echo "&Auml;nderung wurde gesichert...\n";
} else { } else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} }
} }
break; break;
case "newpw" :
echo "Bitte neues Kennwort f&uuml;r <b>";
// Get Nick
$USQL = "SELECT * FROM `User` WHERE `UID`='" . $_GET["eUID"] . "'";
$Erg = mysql_query($USQL, $con);
echo mysql_result($Erg, 0, "Nick");
echo "</b> eingeben:<br />";
echo "<form action=\"./userSaveNormal.php?action=newpwsave\" method=\"POST\">\n";
echo "<input type=\"Password\" name=\"ePasswort\">";
echo "<input type=\"Password\" name=\"ePasswort2\">";
echo "<input type=\"hidden\" name=\"eUID\" value=\"" . $_GET["eUID"] . "\">";
echo "<input type=\"submit\" value=\"sichern...\">\n";
echo "</form>";
break;
case "newpw": case "newpwsave" :
echo "Bitte neues Kennwort f&uuml;r <b>"; if ($_POST["ePasswort"] == $_POST["ePasswort2"]) { // beide Passwoerter passen...
// Get Nick $_POST["ePasswort"] = PassCrypt($_POST["ePasswort"]);
$USQL = "SELECT * FROM `User` WHERE `UID`='". $_GET["eUID"]. "'"; $SQL = "UPDATE `User` SET `Passwort`='" . $_POST["ePasswort"] . "' " .
$Erg = mysql_query($USQL, $con); "WHERE `UID`='" . $_POST["eUID"] . "'";
echo mysql_result($Erg, 0, "Nick"); $Erg = db_query($SQL, "User new passwort");
echo "</b> eingeben:<br />"; if ($Erg == 1) {
echo "<form action=\"./userSaveNormal.php?action=newpwsave\" method=\"POST\">\n"; echo "&Auml;nderung wurde gesichert...\n";
echo "<input type=\"Password\" name=\"ePasswort\">"; } else {
echo "<input type=\"Password\" name=\"ePasswort2\">"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
echo "<input type=\"hidden\" name=\"eUID\" value=\"". $_GET["eUID"]. "\">"; }
echo "<input type=\"submit\" value=\"sichern...\">\n"; } else
echo "</form>"; echo "Das Passwort wurde nicht &uuml;bereinstimmend eingegeben!";
break; break;
} // end switch
case "newpwsave": // ende - Action ist gesetzt
if ($_POST["ePasswort"] == $_POST["ePasswort2"]) } else {
{ // beide Passwoerter passen... // kein Action gesetzt -> abbruch
$_POST["ePasswort"] = PassCrypt($_POST["ePasswort"]); echo "Unzul&auml;ssiger Aufruf.<br />Bitte neu editieren...";
$SQL = "UPDATE `User` SET `Passwort`='". $_POST["ePasswort"]. "' ".
"WHERE `UID`='". $_POST["eUID"]. "'";
$Erg = db_query($SQL, "User new passwort");
if ($Erg == 1) {
echo "&Auml;nderung wurde gesichert...\n";
} else {
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
}
}
else
echo "Das Passwort wurde nicht &uuml;bereinstimmend eingegeben!";
break;
} // end switch
// ende - Action ist gesetzt
}
else
{
// kein Action gesetzt -> abbruch
echo "Unzul&auml;ssiger Aufruf.<br />Bitte neu editieren...";
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

321
www-ssl/admin/userSaveSecure.php
Unescape Escape View File

@ -1,178 +1,167 @@
<?php <?php
require_once ('../bootstrap.php');
$title = "User-Liste"; $title = "User-Liste";
$header = "Index"; $header = "Index";
include ("../../../camp2011/includes/header.php"); include ("includes/header.php");
include ("../../../camp2011/includes/funktion_db_list.php"); include ("includes/funktion_db_list.php");
include ("../../../camp2011/includes/crypt.php"); include ("includes/crypt.php");
include ("../../../camp2011/includes/funktion_db.php"); include ("includes/funktion_db.php");
if( !IsSet($_POST["enterUID"]) ) if (!IsSet ($_POST["enterUID"])) {
{ $Right = "N";
$Right = "N"; }
} elseif( $_POST["enterUID"] > 0 ) { elseif ($_POST["enterUID"] > 0) {
$Right = $_SESSION['CVS'][ "admin/user.php"]; $Right = $_SESSION['CVS']["admin/user.php"];
} else { } else {
$Right = $_SESSION['CVS'][ "admin/group.php"]; $Right = $_SESSION['CVS']["admin/group.php"];
} }
if ( ($Right=="Y") && IsSet($_GET["action"])) if (($Right == "Y") && IsSet ($_GET["action"])) {
{ SetHeaderGo2Back();
SetHeaderGo2Back(); echo "Gesendeter Befehl: " . $_GET["action"] . "<br />";
echo "Gesendeter Befehl: ". $_GET["action"]. "<br />";
switch ($_GET["action"]) {
switch ($_GET["action"]) case "change" :
{ if (IsSet ($_POST["enterUID"])) {
case "change": if ($_POST["Type"] == "Secure") {
if (IsSet($_POST["enterUID"])) $SQL2 = "UPDATE `UserCVS` SET ";
{ $SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "'";
if ($_POST["Type"] == "Secure") $Erg_CVS = mysql_query($SQL_CVS, $con);
{ $CVS_Data = mysql_fetch_array($Erg_CVS);
$SQL2 = "UPDATE `UserCVS` SET "; $CVS_Data_i = 1;
$SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "'"; foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) {
$Erg_CVS = mysql_query($SQL_CVS, $con); if (($CVS_Data_i +1) % 2 && $CVS_Data_Name != "UID") {
$CVS_Data = mysql_fetch_array($Erg_CVS); if ($CVS_Data_Name == "GroupID") {
$CVS_Data_i = 1; if ($_POST["enterUID"] > 0)
foreach ($CVS_Data as $CVS_Data_Name => $CVS_Data_Value) $SQL2 .= "`$CVS_Data_Name` = '" . $_POST["GroupID"] . "', ";
{ else
if( ($CVS_Data_i+1)%2 && $CVS_Data_Name!="UID") { $SQL2 .= "`$CVS_Data_Name` = NULL, ";
if( $CVS_Data_Name == "GroupID") } else {
{ $SQL2 .= "`$CVS_Data_Name` = '" . $_POST[$CVS_Data_i] . "', ";
if( $_POST["enterUID"] > 0 ) }
$SQL2.= "`$CVS_Data_Name` = '". $_POST["GroupID"]."', "; }
else $CVS_Data_i++;
$SQL2.= "`$CVS_Data_Name` = NULL, "; }
} else { $SQL2 = substr($SQL2, 0, strlen($SQL2) - 2);
$SQL2.= "`$CVS_Data_Name` = '". $_POST[$CVS_Data_i]."', "; $SQL2 .= " WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
} echo "<br />Secure-";
} $Erg = db_query($SQL2, "change user CVS");
$CVS_Data_i++; if ($Erg == 1) {
} echo "&Auml;nderung wurde gesichert...\n";
$SQL2 = substr( $SQL2, 0, strlen($SQL2)-2 ); } else {
$SQL2.= " WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
echo "<br />Secure-"; }
$Erg = db_query($SQL2, "change user CVS"); } else
if ($Erg == 1) { echo "<h1>Fehler: Unbekanter Type (" . $_POST["Type"] . ") <20>bergeben\n</h1>\n";
echo "&Auml;nderung wurde gesichert...\n"; } else
} else { echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST <20>bergeben</h1>\n";
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; break;
}
} case "changeGroupName" :
else if (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] < 0)) {
echo "<h1>Fehler: Unbekanter Type (". $_POST["Type"]. ") übergeben\n</h1>\n"; $SQL = "UPDATE `UserGroups` SET `Name`='" . $_POST["GroupName"] . "' WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1 ;";
} $Erg = db_query($SQL, "Update Group Name");
else if ($Erg == 1) {
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n"; echo "&Auml;nderung wurde gesichert...\n";
break; } else {
echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
case "changeGroupName": }
if (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]<0) ) } else
{ echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST <20>bergeben</h1>\n";
$SQL = "UPDATE `UserGroups` SET `Name`='". $_POST["GroupName"]. "' WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1 ;"; break;
$Erg = db_query($SQL, "Update Group Name");
if ($Erg == 1) { case "delete" :
echo "&Auml;nderung wurde gesichert...\n"; if (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] > 0)) {
} else { echo "delate User...";
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; $SQL = "DELETE FROM `User` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
} $Erg = db_query($SQL, "User delete");
} if ($Erg == 1) {
else echo "&Auml;nderung wurde gesichert...\n";
echo "<h1>Fehler: UserID (enterUID) wurde nicht per POST übergeben</h1>\n"; } else {
break; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
}
case "delete":
if (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]>0) ) echo "<br />\ndelate UserCVS...";
{ $SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
echo "delate User..."; $Erg = db_query($SQL2, "User CVS delete");
$SQL="DELETE FROM `User` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; if ($Erg == 1) {
$Erg = db_query($SQL, "User delete"); echo "&Auml;nderung wurde gesichert...\n";
if ($Erg == 1) { } else {
echo "&Auml;nderung wurde gesichert...\n"; echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
} else { }
echo "Fehler beim speichern...\n(". mysql_error($con). ")";
} echo "<br />\ndelate UserEntry...";
$SQL3 = "UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL " .
echo "<br />\ndelate UserCVS..."; "WHERE `UID`='" . $_POST["enterUID"] . "';";
$SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $Erg = db_query($SQL3, "delate UserEntry");
$Erg = db_query($SQL2, "User CVS delete"); if ($Erg == 1) {
if ($Erg == 1) { echo "&Auml;nderung wurde gesichert...\n";
echo "&Auml;nderung wurde gesichert...\n"; } else {
} else { echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; }
} }
elseif (IsSet ($_POST["enterUID"]) && ($_POST["enterUID"] < 0)) {
echo "<br />\ndelate UserEntry..."; echo "delate Group...";
$SQL3="UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL ". $SQL = "DELETE FROM `UserGroups` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
"WHERE `UID`='". $_POST["enterUID"]. "';"; $Erg = db_query($SQL, "Group delete");
$Erg = db_query($SQL3, "delate UserEntry"); if ($Erg == 1) {
if ($Erg == 1) { echo "&Auml;nderung wurde gesichert...\n";
echo "&Auml;nderung wurde gesichert...\n"; } else {
} else { echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; }
}
} elseif (IsSet($_POST["enterUID"]) && ($_POST["enterUID"]<0) ) { echo "<br />\ndelate UserCVS...";
echo "delate Group..."; $SQL2 = "DELETE FROM `UserCVS` WHERE `UID`='" . $_POST["enterUID"] . "' LIMIT 1;";
$SQL="DELETE FROM `UserGroups` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $Erg = db_query($SQL2, "User CVS delete");
$Erg = db_query($SQL, "Group delete"); if ($Erg == 1) {
if ($Erg == 1) { echo "&Auml;nderung wurde gesichert...\n";
echo "&Auml;nderung wurde gesichert...\n"; } else {
} else { echo "Fehler beim speichern...\n(" . mysql_error($con) . ")";
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; }
}
}
echo "<br />\ndelate UserCVS..."; break;
$SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; } // end switch
$Erg = db_query($SQL2, "User CVS delete");
if ($Erg == 1) { // ende - Action ist gesetzt
echo "&Auml;nderung wurde gesichert...\n"; }
} else { elseif (IsSet ($_GET["new"]) && ($_SESSION['CVS']["admin/group.php"] == "Y")) {
echo "Fehler beim speichern...\n(". mysql_error($con). ")"; echo "Gesendeter Befehl: " . $_GET["new"] . "<br />";
}
switch ($_GET["new"]) {
} case "newGroup" :
break; echo "\tGenerate new Group ID...\n";
} // end switch $SQLid = "SELECT MIN(`UID`) FROM `UserCVS`;";
$Erg = mysql_query($SQLid);
// ende - Action ist gesetzt
} elseif ( IsSet($_GET["new"]) && ($_SESSION['CVS']["admin/group.php"]=="Y") ) { if (mysql_num_rows($Erg) == 1) {
echo "Gesendeter Befehl: ". $_GET["new"]. "<br />"; $NewId = mysql_result($Erg, 0, 0) - 1;
$SQLnew1 = "INSERT INTO `UserGroups` (`UID`, `Name`) VALUES ('$NewId', '" . $_POST["GroupName"] . "' );";
switch ($_GET["new"]) $SQLnew2 = "INSERT INTO `UserCVS` (`UID`, `GroupID`) VALUES ('$NewId', NULL );";
{ echo "\t<br />Generate new UserGroup ...\n";
case "newGroup": $ErgNew1 = db_query($SQLnew1, "create UserGroups Entry");
echo "\tGenerate new Group ID...\n"; if ($ErgNew1 == 1) {
$SQLid="SELECT MIN(`UID`) FROM `UserCVS`;"; echo "\t<br />Generate new User rights...\n";
$Erg = mysql_query( $SQLid); $ErgNew2 = db_query($SQLnew2, "UserCVS Entry");
if ($ErgNew1 == 1) {
if( mysql_num_rows($Erg) == 1) { echo "\t<br />New group was created.\n";
$NewId = mysql_result( $Erg, 0, 0)-1; } else {
$SQLnew1 = "INSERT INTO `UserGroups` (`UID`, `Name`) VALUES ('$NewId', '". $_POST["GroupName"]. "' );"; echo "Error on creation\n(" . mysql_error($con) . ")";
$SQLnew2 = "INSERT INTO `UserCVS` (`UID`, `GroupID`) VALUES ('$NewId', NULL );"; }
echo "\t<br />Generate new UserGroup ...\n"; } else {
$ErgNew1 = db_query($SQLnew1, "create UserGroups Entry"); echo "Error on creation\n(" . mysql_error($con) . ")";
if ($ErgNew1 == 1) }
{
echo "\t<br />Generate new User rights...\n"; }
$ErgNew2 = db_query($SQLnew2, "UserCVS Entry");
if ($ErgNew1 == 1) { break;
echo "\t<br />New group was created.\n"; }
} else {
echo "Error on creation\n(". mysql_error($con). ")";
}
} else {
echo "Error on creation\n(". mysql_error($con). ")";
}
}
break;
}
} else { } else {
// kein Action gesetzt -> abbruch // kein Action gesetzt -> abbruch
echo "Unzul&auml;ssiger Aufruf.<br />Bitte neu editieren..."; echo "Unzul&auml;ssiger Aufruf.<br />Bitte neu editieren...";
} }
include ("../../../camp2011/includes/footer.php"); include ("includes/footer.php");
?> ?>

Write Preview
Loading…
Cancel
Save